Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Pup virus bProtector


  • Please log in to reply
27 replies to this topic

#1 soule2soule

soule2soule

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:02:07 PM

Posted 22 August 2013 - 01:01 PM

Hi, I am new to the site, but am loving having a place to go for info.  My Mom's computer started loading an extra tab on any of her web browsers.  The tab would go to the Delta page.  This happened after she clicked on a software update for an FLV drive...she knew better, but just was not thinking.  Anyway, I have tried our virus scanners and also tried Rkill (the first one on the list in bleepingcomputer.com/download/Rkill) then ran MBAM, then SuperAntiSpyware.  Seemed to clean it up both times, but it keeps coming back.  I know I am missing something in the scans.  Can you help me clear this up.  Also, bottom right of my desktop now says Window is not a genuine version.  I found this was a symptom of this virus as well.

 

Thanks so much for your help,

Tammy


Edited by hamluis, 25 August 2013 - 08:12 AM.
No logs, moved from MRL to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:07 PM

Posted 26 August 2013 - 06:06 PM


Download tdss killer

http://support.kaspersky.com/downloads/utils/tdsskiller.exe


Right Click it Run As Admin . Click on Change parameters Select TDLFS file system

Hit the Scan button Post the LOG In your next reply

Do not change the default options on scan results



Update and do a quick scan with Malwarebytes remove all that it finds and reboot.
http://www.filehippo.com/download_malwarebytes_anti_malware/download/ecf14848530d11a2f09a94b92a69fcfa/

Post the log here,

 

 

Run a scan with Eset. You will need to disable your antivirus during this scan.
http://www.eset.com/us/online-scanner/
Make sure remove found threats and scan archives is checked.
When the scan finish list found threats save to clipboard copy to notepad Post the log here.



#3 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,909 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:07 PM

Posted 26 August 2013 - 07:42 PM

Can you please also post the Rkill and MBAM log that showed he infections found as that may be vital as to what to do next..
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#4 soule2soule

soule2soule
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:02:07 PM

Posted 28 August 2013 - 04:14 AM

Trying to get the info you requested.  Downloaded and ran tdss killer, but it will not let me copy and paste the log here.  Mom had to go to bed, so I will try again in the morning.  If there is something else I can do, please let me know.  I believe I can get to the original logs if it will let me copy and paste those???  I will contact you tomorrow with more info!



#5 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:07 PM

Posted 28 August 2013 - 08:49 AM

You can find the tdss killer log on the c: drive.

 

Start button.

Computer.

C: drive.

Scroll till you find the log.

Post it here.



#6 soule2soule

soule2soule
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:02:07 PM

Posted 28 August 2013 - 11:10 AM

16:06:52.0566 5452  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
16:06:54.0068 5452  ============================================================
16:06:54.0068 5452  Current date / time: 2013/08/27 16:06:54.0068
16:06:54.0068 5452  SystemInfo:
16:06:54.0068 5452 
16:06:54.0068 5452  OS Version: 6.0.6002 ServicePack: 2.0
16:06:54.0068 5452  Product type: Workstation
16:06:54.0068 5452  ComputerName: BRENDA-PC
16:06:54.0069 5452  UserName: Brenda
16:06:54.0069 5452  Windows directory: C:\Windows
16:06:54.0069 5452  System windows directory: C:\Windows
16:06:54.0069 5452  Processor architecture: Intel x86
16:06:54.0069 5452  Number of processors: 1
16:06:54.0069 5452  Page size: 0x1000
16:06:54.0069 5452  Boot type: Normal boot
16:06:54.0069 5452  ============================================================
16:07:27.0735 5452  Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
16:07:27.0827 5452  ============================================================
16:07:27.0827 5452  \Device\Harddisk0\DR0:
16:07:27.0840 5452  MBR partitions:
16:07:27.0840 5452  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1A00800, BlocksNum 0x11018EB0
16:07:27.0840 5452  ============================================================
16:07:28.0054 5452  C: <-> \Device\Harddisk0\DR0\Partition1
16:07:28.0054 5452  ============================================================
16:07:28.0054 5452  Initialize success
16:07:28.0054 5452  ============================================================
16:08:18.0606 5180  ============================================================
16:08:18.0606 5180  Scan started
16:08:18.0606 5180  Mode: Manual; TDLFS;
16:08:18.0606 5180  ============================================================
16:08:43.0594 5180  ================ Scan system memory ========================
16:08:43.0594 5180  System memory - ok
16:08:43.0596 5180  ================ Scan services =============================
16:08:43.0816 5180  [ 9EBE730D4B5E3FF25EAAF5A59BA6CCFF ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
16:08:43.0861 5180  !SASCORE - ok
16:08:44.0512 5180  [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI            C:\Windows\system32\drivers\acpi.sys
16:08:44.0533 5180  ACPI - ok
16:08:44.0842 5180  [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
16:08:44.0895 5180  AdobeARMservice - ok
16:08:45.0105 5180  [ 476BB014F3F68C0C15EDDD5B444DA8FF ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
16:08:45.0133 5180  AdobeFlashPlayerUpdateSvc - ok
16:08:45.0283 5180  [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
16:08:45.0298 5180  adp94xx - ok
16:08:45.0393 5180  [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci         C:\Windows\system32\drivers\adpahci.sys
16:08:45.0414 5180  adpahci - ok
16:08:45.0467 5180  [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m        C:\Windows\system32\drivers\adpu160m.sys
16:08:45.0490 5180  adpu160m - ok
16:08:45.0559 5180  [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
16:08:45.0564 5180  adpu320 - ok
16:08:45.0648 5180  [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
16:08:45.0650 5180  AeLookupSvc - ok
16:08:45.0696 5180  [ 3911B972B55FEA0478476B2E777B29FA ] AFD             C:\Windows\system32\drivers\afd.sys
16:08:45.0718 5180  AFD - ok
16:08:45.0758 5180  [ 8ED60797908FD394EEE0D6949F493224 ] AgereModemAudio C:\Windows\system32\agrsmsvc.exe
16:08:45.0797 5180  AgereModemAudio - ok
16:08:46.0091 5180  [ BAF68DCBA949633DF0C16D37AF2A2351 ] AgereSoftModem  C:\Windows\system32\DRIVERS\AGRSM.sys
16:08:46.0148 5180  AgereSoftModem - ok
16:08:46.0323 5180  [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440          C:\Windows\system32\drivers\agp440.sys
16:08:46.0338 5180  agp440 - ok
16:08:46.0427 5180  [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
16:08:46.0447 5180  aic78xx - ok
16:08:46.0484 5180  [ A1545B731579895D8CC44FC0481C1192 ] ALG             C:\Windows\System32\alg.exe
16:08:46.0502 5180  ALG - ok
16:08:46.0552 5180  [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide          C:\Windows\system32\drivers\aliide.sys
16:08:46.0609 5180  aliide - ok
16:08:46.0647 5180  [ C47344BC706E5F0B9DCE369516661578 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
16:08:46.0666 5180  amdagp - ok
16:08:46.0714 5180  [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide          C:\Windows\system32\drivers\amdide.sys
16:08:46.0740 5180  amdide - ok
16:08:46.0793 5180  [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7           C:\Windows\system32\drivers\amdk7.sys
16:08:46.0809 5180  AmdK7 - ok
16:08:46.0848 5180  [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
16:08:46.0871 5180  AmdK8 - ok
16:08:46.0921 5180  [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo         C:\Windows\System32\appinfo.dll
16:08:46.0947 5180  Appinfo - ok
16:08:47.0003 5180  [ 5D2888182FB46632511ACEE92FDAD522 ] arc             C:\Windows\system32\drivers\arc.sys
16:08:47.0060 5180  arc - ok
16:08:47.0111 5180  [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
16:08:47.0131 5180  arcsas - ok
16:08:47.0283 5180  [ 8C3A4F8342F1336C960B5EED3128CE31 ] asdrm           C:\Windows\system32\DRIVERS\asdrm.sys
16:08:47.0307 5180  asdrm - ok
16:08:47.0407 5180  [ 67B1C96DF3C34D66190126639A2C0260 ] asdrs           C:\Windows\system32\DRIVERS\asdrs.sys
16:08:47.0408 5180  asdrs - ok
16:08:47.0910 5180  [ B7F30DE0DECDEBAD6EA52E22288987E5 ] asdsrv          C:\Program Files\Anvisoft\Anvi Smart Defender\ASDSrv.exe
16:08:48.0018 5180  asdsrv - ok
16:08:48.0078 5180  [ 4F3BC96F7C45ED12955892C310F1E3DB ] asdws           C:\Windows\system32\DRIVERS\asdws.sys
16:08:48.0095 5180  asdws - ok
16:08:48.0251 5180  [ 4AF5F360BA1E8794D32B366E45A64A0A ] aswFsBlk        C:\Windows\system32\drivers\aswFsBlk.sys
16:08:48.0253 5180  aswFsBlk - ok
16:08:48.0397 5180  [ 1F7094D4268D46F718C51286DC189791 ] aswMonFlt       C:\Windows\system32\drivers\aswMonFlt.sys
16:08:48.0399 5180  aswMonFlt - ok
16:08:48.0479 5180  [ 7B43265F92257A21CBFD88E7A651044C ] aswRdr          C:\Windows\system32\drivers\aswRdr.sys
16:08:48.0481 5180  aswRdr - ok
16:08:48.0588 5180  [ B680134BA1813B78B47FDD1DFF223CA5 ] aswRvrt         C:\Windows\system32\drivers\aswRvrt.sys
16:08:48.0614 5180  aswRvrt - ok
16:08:48.0833 5180  [ CCD565A8A72AF7D45F9A242013870926 ] aswSnx          C:\Windows\system32\drivers\aswSnx.sys
16:08:48.0854 5180  aswSnx - ok
16:08:48.0969 5180  [ 937300BC7C4CDF7576BCCE44E19BBB9D ] aswSP           C:\Windows\system32\drivers\aswSP.sys
16:08:49.0024 5180  aswSP - ok
16:08:49.0067 5180  [ 1F71F170D90E42EFDE9633D81D5E12DC ] aswTdi          C:\Windows\system32\drivers\aswTdi.sys
16:08:49.0128 5180  aswTdi - ok
16:08:49.0221 5180  [ 8CFAA2B965773A653F48F1207A9CB9C4 ] aswVmm          C:\Windows\system32\drivers\aswVmm.sys
16:08:49.0225 5180  aswVmm - ok
16:08:49.0274 5180  [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
16:08:49.0275 5180  AsyncMac - ok
16:08:49.0340 5180  [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi           C:\Windows\system32\drivers\atapi.sys
16:08:49.0366 5180  atapi - ok
16:08:49.0558 5180  [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:08:49.0592 5180  AudioEndpointBuilder - ok
16:08:49.0613 5180  [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv        C:\Windows\System32\Audiosrv.dll
16:08:49.0628 5180  Audiosrv - ok
16:08:49.0750 5180  [ 28D6701C710AD7BA3CB95E75F8F1A9AA ] avast! Antivirus C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
16:08:49.0752 5180  avast! Antivirus - ok
16:08:49.0963 5180  [ DBF43DB0C648DB9101D61041E00DF5C4 ] BBSvc           C:\Program Files\Microsoft\BingBar\BBSvc.EXE
16:08:50.0003 5180  BBSvc - ok
16:08:50.0122 5180  [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep            C:\Windows\system32\drivers\Beep.sys
16:08:50.0143 5180  Beep - ok
16:08:50.0341 5180  [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE             C:\Windows\System32\bfe.dll
16:08:50.0369 5180  BFE - ok
16:08:50.0631 5180  [ 93952506C6D67330367F7E7934B6A02F ] BITS            C:\Windows\System32\qmgr.dll
16:08:50.0676 5180  BITS - ok
16:08:50.0755 5180  [ D4DF28447741FD3D953526E33A617397 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
16:08:50.0758 5180  blbdrive - ok
16:08:50.0850 5180  [ 35F376253F687BDE63976CCB3F2108CA ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
16:08:50.0877 5180  bowser - ok
16:08:50.0992 5180  [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo        C:\Windows\system32\drivers\brfiltlo.sys
16:08:51.0012 5180  BrFiltLo - ok
16:08:51.0073 5180  [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp        C:\Windows\system32\drivers\brfiltup.sys
16:08:51.0097 5180  BrFiltUp - ok
16:08:51.0182 5180  [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser         C:\Windows\System32\browser.dll
16:08:51.0232 5180  Browser - ok
16:08:51.0344 5180  [ B304E75CFF293029EDDF094246747113 ] Brserid         C:\Windows\system32\drivers\brserid.sys
16:08:51.0379 5180  Brserid - ok
16:08:51.0413 5180  [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm        C:\Windows\system32\drivers\brserwdm.sys
16:08:51.0436 5180  BrSerWdm - ok
16:08:51.0485 5180  [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm        C:\Windows\system32\drivers\brusbmdm.sys
16:08:51.0517 5180  BrUsbMdm - ok
16:08:51.0595 5180  [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer        C:\Windows\system32\drivers\brusbser.sys
16:08:51.0599 5180  BrUsbSer - ok
16:08:51.0644 5180  [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
16:08:51.0674 5180  BTHMODEM - ok
16:08:51.0760 5180  [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
16:08:51.0803 5180  cdfs - ok
16:08:51.0902 5180  [ 6B4BFFB9BECD728097024276430DB314 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
16:08:51.0904 5180  cdrom - ok
16:08:51.0936 5180  [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc     C:\Windows\System32\certprop.dll
16:08:51.0958 5180  CertPropSvc - ok
16:08:52.0019 5180  [ E5D4133F37219DBCFE102BC61072589D ] circlass        C:\Windows\system32\drivers\circlass.sys
16:08:52.0021 5180  circlass - ok
16:08:52.0080 5180  [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS            C:\Windows\system32\CLFS.sys
16:08:52.0086 5180  CLFS - ok
16:08:52.0186 5180  [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:08:52.0190 5180  clr_optimization_v2.0.50727_32 - ok
16:08:52.0334 5180  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:08:52.0420 5180  clr_optimization_v4.0.30319_32 - ok
16:08:52.0485 5180  [ 0CA25E686A4928484E9FDABD168AB629 ] cmdide          C:\Windows\system32\drivers\cmdide.sys
16:08:52.0487 5180  cmdide - ok
16:08:52.0524 5180  [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
16:08:52.0526 5180  Compbatt - ok
16:08:52.0536 5180  COMSysApp - ok
16:08:52.0565 5180  [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
16:08:52.0567 5180  crcdisk - ok
16:08:52.0604 5180  [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe          C:\Windows\system32\drivers\crusoe.sys
16:08:52.0620 5180  Crusoe - ok
16:08:52.0695 5180  [ 684C130BBC6DB681BAD4920A4C944AA5 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
16:08:52.0698 5180  CryptSvc - ok
16:08:52.0819 5180  [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch      C:\Windows\system32\rpcss.dll
16:08:52.0845 5180  DcomLaunch - ok
16:08:52.0883 5180  [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
16:08:52.0886 5180  DfsC - ok
16:08:53.0064 5180  [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR            C:\Windows\system32\DFSR.exe
16:08:53.0110 5180  DFSR - ok
16:08:53.0251 5180  [ 9028559C132146FB75EB7ACF384B086A ] Dhcp            C:\Windows\System32\dhcpcsvc.dll
16:08:53.0256 5180  Dhcp - ok
16:08:53.0340 5180  [ 5D4AEFC3386920236A548271F8F1AF6A ] disk            C:\Windows\system32\drivers\disk.sys
16:08:53.0364 5180  disk - ok
16:08:53.0420 5180  [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache        C:\Windows\System32\dnsrslvr.dll
16:08:53.0425 5180  Dnscache - ok
16:08:53.0502 5180  [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc         C:\Windows\System32\dot3svc.dll
16:08:53.0529 5180  dot3svc - ok
16:08:53.0669 5180  [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS             C:\Windows\system32\dps.dll
16:08:53.0681 5180  DPS - ok
16:08:53.0750 5180  [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
16:08:53.0779 5180  drmkaud - ok
16:08:53.0955 5180  [ 5DE0FAEC9E5D1AAE74F8568897891A01 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
16:08:54.0003 5180  DXGKrnl - ok
16:08:54.0059 5180  [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60           C:\Windows\system32\DRIVERS\E1G60I32.sys
16:08:54.0089 5180  E1G60 - ok
16:08:54.0173 5180  [ C0B95E40D85CD807D614E264248A45B9 ] EapHost         C:\Windows\System32\eapsvc.dll
16:08:54.0197 5180  EapHost - ok
16:08:54.0331 5180  [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache          C:\Windows\system32\drivers\ecache.sys
16:08:54.0338 5180  Ecache - ok
16:08:54.0564 5180  [ 23B62471681A124889978F6295B3F4C6 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
16:08:54.0815 5180  elxstor - ok
16:08:55.0016 5180  [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt         C:\Windows\system32\emdmgmt.dll
16:08:55.0077 5180  EMDMgmt - ok
16:08:55.0166 5180  [ 3DB974F3935483555D7148663F726C61 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
16:08:55.0168 5180  ErrDev - ok
16:08:55.0505 5180  [ 4D06D9A26227AC485305133916888DF1 ] ETService       C:\Program Files\EMACHINES\eMachines Recovery Management\Service\ETService.exe
16:08:55.0570 5180  ETService - ok
16:08:55.0705 5180  [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem     C:\Windows\system32\es.dll
16:08:55.0727 5180  EventSystem - ok
16:08:55.0786 5180  [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat           C:\Windows\system32\drivers\exfat.sys
16:08:55.0789 5180  exfat - ok
16:08:55.0870 5180  [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
16:08:55.0873 5180  fastfat - ok
16:08:55.0985 5180  [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
16:08:56.0006 5180  fdc - ok
16:08:56.0070 5180  [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost         C:\Windows\system32\fdPHost.dll
16:08:56.0098 5180  fdPHost - ok
16:08:56.0147 5180  [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub        C:\Windows\system32\fdrespub.dll
16:08:56.0172 5180  FDResPub - ok
16:08:56.0214 5180  [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
16:08:56.0216 5180  FileInfo - ok
16:08:56.0251 5180  [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
16:08:56.0266 5180  Filetrace - ok
16:08:56.0324 5180  [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
16:08:56.0326 5180  flpydisk - ok
16:08:56.0393 5180  [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
16:08:56.0397 5180  FltMgr - ok
16:08:56.0535 5180  [ 119ACA7CADCA75BEA6B38E999443BAA6 ] FontCache       C:\Windows\system32\FntCache.dll
16:08:56.0549 5180  FontCache - ok
16:08:56.0713 5180  [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
16:08:56.0729 5180  FontCache3.0.0.0 - ok
16:08:56.0852 5180  [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
16:08:56.0873 5180  Fs_Rec - ok
16:08:56.0920 5180  [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
16:08:56.0922 5180  gagp30kx - ok
16:08:57.0088 5180  [ 2E7E49077C7BBEB2947BD6D03C8454B5 ] GameConsoleService C:\Program Files\eMachines Games\eMachines Game Console\GameConsoleService.exe
16:08:57.0106 5180  GameConsoleService - ok
16:08:57.0357 5180  [ 9F5F2F0FB0A7F5AA9F16B9A7B6DAD89F ] GoogleDesktopManager-051210-111108 C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
16:08:57.0427 5180  GoogleDesktopManager-051210-111108 - ok
16:08:57.0733 5180  [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc           C:\Windows\System32\gpsvc.dll
16:08:57.0812 5180  gpsvc - ok
16:08:57.0932 5180  [ CC839E8D766CC31A7710C9F38CF3E375 ] gusvc           C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
16:08:57.0937 5180  gusvc - ok
16:08:58.0094 5180  [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:08:58.0138 5180  HdAudAddService - ok
16:08:58.0326 5180  [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
16:08:58.0358 5180  HDAudBus - ok
16:08:58.0456 5180  [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth          C:\Windows\system32\drivers\hidbth.sys
16:08:58.0458 5180  HidBth - ok
16:08:58.0501 5180  [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr           C:\Windows\system32\drivers\hidir.sys
16:08:58.0524 5180  HidIr - ok
16:08:58.0574 5180  [ 84067081F3318162797385E11A8F0582 ] hidserv         C:\Windows\system32\hidserv.dll
16:08:58.0598 5180  hidserv - ok
16:08:58.0655 5180  [ 854CA287AB7FAF949617A788306D967E ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
16:08:58.0698 5180  HidUsb - ok
16:08:58.0773 5180  [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc          C:\Windows\system32\kmsvc.dll
16:08:58.0797 5180  hkmsvc - ok
16:08:58.0851 5180  [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs         C:\Windows\system32\drivers\hpcisss.sys
16:08:58.0854 5180  HpCISSs - ok
16:08:59.0041 5180  [ ED377B3C83FDEA8D906109A085D219BA ] hpqcxs08        C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
16:08:59.0073 5180  hpqcxs08 - ok
16:08:59.0188 5180  [ EE4C7A4CF2316701FFDE90F404520265 ] hpqddsvc        C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
16:08:59.0195 5180  hpqddsvc - ok
16:08:59.0289 5180  [ 0EEECA26C8D4BDE2A4664DB058A81937 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
16:08:59.0356 5180  HTTP - ok
16:08:59.0433 5180  [ C6B032D69650985468160FC9937CF5B4 ] i2omp           C:\Windows\system32\drivers\i2omp.sys
16:08:59.0482 5180  i2omp - ok
16:08:59.0513 5180  [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
16:08:59.0518 5180  i8042prt - ok
16:08:59.0679 5180  [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV         C:\Windows\system32\drivers\iastorv.sys
16:08:59.0705 5180  iaStorV - ok
16:09:00.0058 5180  [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
16:09:00.0121 5180  idsvc - ok
16:09:00.0163 5180  [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
16:09:00.0175 5180  iirsp - ok
16:09:00.0258 5180  [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT          C:\Windows\System32\ikeext.dll
16:09:00.0302 5180  IKEEXT - ok
16:09:00.0426 5180  [ C6E5276C00EBDEB096BB5EF4B797D1B6 ] int15           C:\Windows\system32\drivers\int15.sys
16:09:00.0443 5180  int15 - ok
16:09:01.0420 5180  [ 58628F232A00A3149D7CC7708C521499 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
16:09:01.0625 5180  IntcAzAudAddService - ok
16:09:01.0660 5180  [ 83AA759F3189E6370C30DE5DC5590718 ] intelide        C:\Windows\system32\drivers\intelide.sys
16:09:01.0702 5180  intelide - ok
16:09:01.0737 5180  [ 224191001E78C89DFA78924C3EA595FF ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
16:09:01.0756 5180  intelppm - ok
16:09:01.0843 5180  [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
16:09:01.0862 5180  IPBusEnum - ok
16:09:01.0907 5180  [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:09:01.0930 5180  IpFilterDriver - ok
16:09:02.0052 5180  [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
16:09:02.0064 5180  iphlpsvc - ok
16:09:02.0084 5180  IpInIp - ok
16:09:02.0216 5180  [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV         C:\Windows\system32\drivers\ipmidrv.sys
16:09:02.0218 5180  IPMIDRV - ok
16:09:02.0257 5180  [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT           C:\Windows\system32\DRIVERS\ipnat.sys
16:09:02.0275 5180  IPNAT - ok
16:09:02.0284 5180  IPVNMon - ok
16:09:02.0316 5180  [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
16:09:02.0415 5180  IRENUM - ok
16:09:02.0440 5180  [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
16:09:02.0443 5180  isapnp - ok
16:09:02.0506 5180  [ 232FA340531D940AAC623B121A595034 ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
16:09:02.0510 5180  iScsiPrt - ok
16:09:02.0542 5180  [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi        C:\Windows\system32\drivers\iteatapi.sys
16:09:02.0544 5180  iteatapi - ok
16:09:02.0596 5180  [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid         C:\Windows\system32\drivers\iteraid.sys
16:09:02.0618 5180  iteraid - ok
16:09:02.0726 5180  [ B12F5FF3A2221987AC3A81CE1FE76CC6 ] JL2005C         C:\Windows\system32\Drivers\jl2005c.sys
16:09:02.0732 5180  JL2005C - ok
16:09:02.0762 5180  [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
16:09:02.0766 5180  kbdclass - ok
16:09:02.0842 5180  [ 18247836959BA67E3511B62846B9C2E0 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
16:09:02.0861 5180  kbdhid - ok
16:09:02.0976 5180  [ A3E186B4B935905B829219502557314E ] KeyIso          C:\Windows\system32\lsass.exe
16:09:03.0001 5180  KeyIso - ok
16:09:03.0302 5180  [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
16:09:03.0337 5180  KSecDD - ok
16:09:03.0477 5180  [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm           C:\Windows\system32\msdtckrm.dll
16:09:03.0508 5180  KtmRm - ok
16:09:03.0547 5180  [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer    C:\Windows\system32\srvsvc.dll
16:09:03.0566 5180  LanmanServer - ok
16:09:03.0613 5180  [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:09:03.0656 5180  LanmanWorkstation - ok
16:09:03.0728 5180  [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
16:09:03.0730 5180  lltdio - ok
16:09:03.0780 5180  [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
16:09:03.0804 5180  lltdsvc - ok
16:09:03.0854 5180  [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts         C:\Windows\System32\lmhsvc.dll
16:09:03.0873 5180  lmhosts - ok
16:09:03.0918 5180  [ C7E15E82879BF3235B559563D4185365 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
16:09:03.0939 5180  LSI_FC - ok
16:09:03.0971 5180  [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
16:09:03.0974 5180  LSI_SAS - ok
16:09:04.0023 5180  [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
16:09:04.0026 5180  LSI_SCSI - ok
16:09:04.0075 5180  [ 8F5C7426567798E62A3B3614965D62CC ] luafv           C:\Windows\system32\drivers\luafv.sys
16:09:04.0099 5180  luafv - ok
16:09:04.0108 5180  lxcz_device - ok
16:09:04.0193 5180  [ 4470E3C1E0C3378E4CAB137893C12C3A ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
16:09:04.0195 5180  MBAMProtector - ok
16:09:04.0322 5180  [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler   C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
16:09:04.0337 5180  MBAMScheduler - ok
16:09:04.0611 5180  [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService     C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
16:09:04.0643 5180  MBAMService - ok
16:09:04.0876 5180  [ DDCC236009C707761D60E5C76D639176 ] McComponentHostService C:\Program Files\McAfee Security Scan\3.0.318\McCHSvc.exe
16:09:04.0889 5180  McComponentHostService - ok
16:09:04.0975 5180  [ 0001CE609D66632FA17B84705F658879 ] megasas         C:\Windows\system32\drivers\megasas.sys
16:09:04.0989 5180  megasas - ok
16:09:05.0102 5180  [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR          C:\Windows\system32\drivers\megasr.sys
16:09:05.0117 5180  MegaSR - ok
16:09:05.0219 5180  [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS           C:\Windows\system32\mmcss.dll
16:09:05.0239 5180  MMCSS - ok
16:09:05.0272 5180  [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem           C:\Windows\system32\drivers\modem.sys
16:09:05.0274 5180  Modem - ok
16:09:05.0340 5180  [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
16:09:05.0342 5180  monitor - ok
16:09:05.0357 5180  [ 5BF6A1326A335C5298477754A506D263 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
16:09:05.0359 5180  mouclass - ok
16:09:05.0393 5180  [ 93B8D4869E12CFBE663915502900876F ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
16:09:05.0395 5180  mouhid - ok
16:09:05.0421 5180  [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr        C:\Windows\system32\drivers\mountmgr.sys
16:09:05.0447 5180  MountMgr - ok
16:09:05.0473 5180  [ 511D011289755DD9F9A7579FB0B064E6 ] mpio            C:\Windows\system32\drivers\mpio.sys
16:09:05.0476 5180  mpio - ok
16:09:05.0514 5180  [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
16:09:05.0535 5180  mpsdrv - ok
16:09:05.0673 5180  [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc          C:\Windows\system32\mpssvc.dll
16:09:05.0699 5180  MpsSvc - ok
16:09:05.0788 5180  [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x        C:\Windows\system32\drivers\mraid35x.sys
16:09:05.0791 5180  Mraid35x - ok
16:09:05.0876 5180  [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
16:09:05.0903 5180  MRxDAV - ok
16:09:05.0972 5180  [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
16:09:05.0996 5180  mrxsmb - ok
16:09:06.0119 5180  [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:09:06.0176 5180  mrxsmb10 - ok
16:09:06.0259 5180  [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:09:06.0281 5180  mrxsmb20 - ok
16:09:06.0327 5180  [ 28023E86F17001F7CD9B15A5BC9AE07D ] msahci          C:\Windows\system32\drivers\msahci.sys
16:09:06.0332 5180  msahci - ok
16:09:06.0377 5180  [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
16:09:06.0385 5180  msdsm - ok
16:09:06.0424 5180  [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC           C:\Windows\System32\msdtc.exe
16:09:06.0430 5180  MSDTC - ok
16:09:06.0464 5180  [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
16:09:06.0488 5180  Msfs - ok
16:09:06.0532 5180  [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
16:09:06.0533 5180  msisadrv - ok
16:09:06.0603 5180  [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
16:09:06.0630 5180  MSiSCSI - ok
16:09:06.0643 5180  msiserver - ok
16:09:06.0671 5180  [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
16:09:06.0697 5180  MSKSSRV - ok
16:09:06.0784 5180  [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
16:09:06.0786 5180  MSPCLOCK - ok
16:09:06.0821 5180  [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
16:09:06.0823 5180  MSPQM - ok
16:09:06.0862 5180  [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
16:09:06.0866 5180  MsRPC - ok
16:09:06.0893 5180  [ E384487CB84BE41D09711C30CA79646C ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
16:09:06.0914 5180  mssmbios - ok
16:09:06.0957 5180  [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
16:09:06.0962 5180  MSTEE - ok
16:09:06.0988 5180  [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup             C:\Windows\system32\Drivers\mup.sys
16:09:07.0022 5180  Mup - ok
16:09:07.0198 5180  [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent        C:\Windows\system32\qagentRT.dll
16:09:07.0239 5180  napagent - ok
16:09:07.0331 5180  [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
16:09:07.0362 5180  NativeWifiP - ok
16:09:07.0453 5180  [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS            C:\Windows\system32\drivers\ndis.sys
16:09:07.0571 5180  NDIS - ok
16:09:07.0599 5180  [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
16:09:07.0640 5180  NdisTapi - ok
16:09:07.0716 5180  [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
16:09:07.0718 5180  Ndisuio - ok
16:09:07.0814 5180  [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
16:09:07.0818 5180  NdisWan - ok
16:09:07.0908 5180  [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
16:09:07.0910 5180  NDProxy - ok
16:09:07.0935 5180  [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
16:09:07.0969 5180  NetBIOS - ok
16:09:08.0091 5180  [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt           C:\Windows\system32\DRIVERS\netbt.sys
16:09:08.0133 5180  netbt - ok
16:09:08.0184 5180  [ A3E186B4B935905B829219502557314E ] Netlogon        C:\Windows\system32\lsass.exe
16:09:08.0194 5180  Netlogon - ok
16:09:08.0329 5180  [ C8052711DAECC48B982434C5116CA401 ] Netman          C:\Windows\System32\netman.dll
16:09:08.0338 5180  Netman - ok
16:09:08.0418 5180  [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm        C:\Windows\System32\netprofm.dll
16:09:08.0452 5180  netprofm - ok
16:09:08.0852 5180  [ 55DD234921CED25DF536A02B078DA6F4 ] netr28u         C:\Windows\system32\DRIVERS\netr28u.sys
16:09:08.0986 5180  netr28u - ok
16:09:09.0096 5180  [ D6C4E4A39A36029AC0813D476FBD0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:09:09.0103 5180  NetTcpPortSharing - ok
16:09:09.0171 5180  [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
16:09:09.0249 5180  nfrd960 - ok
16:09:09.0356 5180  [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc          C:\Windows\System32\nlasvc.dll
16:09:09.0364 5180  NlaSvc - ok
16:09:09.0447 5180  [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
16:09:09.0449 5180  Npfs - ok
16:09:09.0548 5180  [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi             C:\Windows\system32\nsisvc.dll
16:09:09.0560 5180  nsi - ok
16:09:09.0642 5180  [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
16:09:09.0661 5180  nsiproxy - ok
16:09:10.0012 5180  [ 2C1121F2B87E9A6B12485DF53CD848C7 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
16:09:10.0666 5180  Ntfs - ok
16:09:10.0755 5180  [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi       C:\Windows\system32\drivers\ntrigdigi.sys
16:09:10.0772 5180  ntrigdigi - ok
16:09:10.0860 5180  [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null            C:\Windows\system32\drivers\Null.sys
16:09:10.0862 5180  Null - ok
16:09:11.0185 5180  [ C39AD3B818502EDFA4B819148B72A0E3 ] NVENETFD        C:\Windows\system32\DRIVERS\nvmfdx32.sys
16:09:11.0249 5180  NVENETFD - ok
16:09:14.0370 5180  [ 9A77B1C13BCCEDDF78DFD7AFC25B4F5E ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
16:09:16.0603 5180  nvlddmkm - ok
16:09:16.0687 5180  [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
16:09:16.0711 5180  nvraid - ok
16:09:16.0770 5180  [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
16:09:16.0789 5180  nvstor - ok
16:09:16.0836 5180  [ D05F6E26AC960474494356FE703D61BE ] nvstor32        C:\Windows\system32\DRIVERS\nvstor32.sys
16:09:16.0840 5180  nvstor32 - ok
16:09:16.0930 5180  [ 31B8835B003CAA6D31BEAD83DDBF98E5 ] nvsvc           C:\Windows\system32\nvvsvc.exe
16:09:16.0945 5180  nvsvc - ok
16:09:17.0200 5180  [ 0629259E3AF6BB0534FCECA208973404 ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
16:09:17.0515 5180  nvUpdatusService - ok
16:09:17.0593 5180  [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
16:09:17.0618 5180  nv_agp - ok
16:09:17.0637 5180  NwlnkFlt - ok
16:09:17.0683 5180  NwlnkFwd - ok
16:09:17.0908 5180  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
16:09:17.0917 5180  odserv - ok
16:09:17.0989 5180  [ BE32DA025A0BE1878F0EE8D6D9386CD5 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
16:09:18.0028 5180  ohci1394 - ok
16:09:18.0192 5180  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:09:18.0251 5180  ose - ok
16:09:18.0564 5180  [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc        C:\Windows\system32\p2psvc.dll
16:09:18.0638 5180  p2pimsvc - ok
16:09:18.0678 5180  [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc          C:\Windows\system32\p2psvc.dll
16:09:18.0701 5180  p2psvc - ok
16:09:18.0825 5180  [ 0FA9B5055484649D63C303FE404E5F4D ] Parport         C:\Windows\system32\drivers\parport.sys
16:09:18.0909 5180  Parport - ok
16:09:19.0025 5180  [ B9C2B89F08670E159F7181891E449CD9 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
16:09:19.0182 5180  partmgr - ok
16:09:19.0277 5180  [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm          C:\Windows\system32\drivers\parvdm.sys
16:09:19.0294 5180  Parvdm - ok
16:09:19.0353 5180  [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc          C:\Windows\System32\pcasvc.dll
16:09:19.0389 5180  PcaSvc - ok
16:09:19.0530 5180  [ 941DC1D19E7E8620F40BBC206981EFDB ] pci             C:\Windows\system32\drivers\pci.sys
16:09:19.0588 5180  pci - ok
16:09:19.0759 5180  [ 1636D43F10416AEB483BC6001097B26C ] pciide          C:\Windows\system32\drivers\pciide.sys
16:09:19.0796 5180  pciide - ok
16:09:19.0925 5180  [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
16:09:19.0986 5180  pcmcia - ok
16:09:20.0481 5180  [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
16:09:20.0841 5180  PEAUTH - ok
16:09:21.0294 5180  [ B1689DF169143F57053F795390C99DB3 ] pla             C:\Windows\system32\pla.dll
16:09:22.0076 5180  pla - ok
16:09:22.0212 5180  [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
16:09:22.0298 5180  PlugPlay - ok
16:09:22.0499 5180  [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg     C:\Windows\system32\p2psvc.dll
16:09:22.0510 5180  PNRPAutoReg - ok
16:09:22.0713 5180  [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc         C:\Windows\system32\p2psvc.dll
16:09:22.0725 5180  PNRPsvc - ok
16:09:22.0830 5180  [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
16:09:22.0941 5180  PolicyAgent - ok
16:09:23.0012 5180  [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
16:09:23.0075 5180  PptpMiniport - ok
16:09:23.0141 5180  [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor       C:\Windows\system32\drivers\processr.sys
16:09:23.0206 5180  Processor - ok
16:09:23.0378 5180  [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc         C:\Windows\system32\profsvc.dll
16:09:23.0474 5180  ProfSvc - ok
16:09:23.0524 5180  [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
16:09:23.0532 5180  ProtectedStorage - ok
16:09:23.0636 5180  [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched          C:\Windows\system32\DRIVERS\pacer.sys
16:09:23.0668 5180  PSched - ok
16:09:24.0127 5180  [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
16:09:24.0859 5180  ql2300 - ok
16:09:24.0920 5180  [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
16:09:24.0982 5180  ql40xx - ok
16:09:25.0056 5180  [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE           C:\Windows\system32\qwave.dll
16:09:25.0304 5180  QWAVE - ok
16:09:25.0379 5180  [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
16:09:25.0453 5180  QWAVEdrv - ok
16:09:25.0783 5180  [ 37C3272E58976598BEF1CDF321019209 ] RalinkRegistryWriter C:\Program Files\NETGEAR\WNDA4100\Service\RaRegistry.exe
16:09:25.0922 5180  RalinkRegistryWriter - ok
16:09:25.0969 5180  [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
16:09:25.0983 5180  RasAcd - ok
16:09:26.0028 5180  [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto         C:\Windows\System32\rasauto.dll
16:09:26.0102 5180  RasAuto - ok
16:09:26.0187 5180  [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
16:09:26.0201 5180  Rasl2tp - ok
16:09:26.0375 5180  [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan          C:\Windows\System32\rasmans.dll
16:09:26.0474 5180  RasMan - ok
16:09:26.0562 5180  [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
16:09:26.0593 5180  RasPppoe - ok
16:09:26.0750 5180  [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
16:09:26.0817 5180  RasSstp - ok
16:09:26.0925 5180  [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
16:09:27.0004 5180  rdbss - ok
16:09:27.0042 5180  [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
16:09:27.0046 5180  RDPCDD - ok
16:09:27.0184 5180  [ FBC0BACD9C3D7F6956853F64A66E252D ] rdpdr           C:\Windows\system32\drivers\rdpdr.sys
16:09:27.0240 5180  rdpdr - ok
16:09:27.0292 5180  [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
16:09:27.0294 5180  RDPENCDD - ok
16:09:27.0446 5180  [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
16:09:27.0790 5180  RDPWD - ok
16:09:27.0923 5180  [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess    C:\Windows\System32\mprdim.dll
16:09:27.0992 5180  RemoteAccess - ok
16:09:28.0030 5180  [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry  C:\Windows\system32\regsvc.dll
16:09:28.0114 5180  RemoteRegistry - ok
16:09:28.0395 5180  [ 06A49B7BDC36CFBF97DD90804F833369 ] RichVideo       C:\Program Files\CyberLink\Shared files\RichVideo.exe
16:09:28.0429 5180  RichVideo - ok
16:09:28.0479 5180  [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator      C:\Windows\system32\locator.exe
16:09:28.0497 5180  RpcLocator - ok
16:09:28.0630 5180  [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs           C:\Windows\system32\rpcss.dll
16:09:28.0642 5180  RpcSs - ok
16:09:28.0727 5180  [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
16:09:28.0768 5180  rspndr - ok
16:09:28.0789 5180  [ A3E186B4B935905B829219502557314E ] SamSs           C:\Windows\system32\lsass.exe
16:09:28.0800 5180  SamSs - ok
16:09:29.0014 5180  [ 39763504067962108505BFF25F024345 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
16:09:29.0041 5180  SASDIFSV - ok
16:09:29.0088 5180  [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
16:09:29.0108 5180  SASKUTIL - ok
16:09:29.0133 5180  [ 3CE8F073A557E172B330109436984E30 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
16:09:29.0179 5180  sbp2port - ok
16:09:29.0256 5180  [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
16:09:29.0312 5180  SCardSvr - ok
16:09:29.0501 5180  [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule        C:\Windows\system32\schedsvc.dll
16:09:29.0629 5180  Schedule - ok
16:09:29.0689 5180  [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc     C:\Windows\System32\certprop.dll
16:09:29.0698 5180  SCPolicySvc - ok
16:09:29.0724 5180  [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
16:09:29.0771 5180  SDRSVC - ok
16:09:29.0877 5180  [ 78779EE07231C658B483B1F38B5088DF ] SeaPort         C:\Program Files\Microsoft\BingBar\SeaPort.EXE
16:09:29.0882 5180  SeaPort - ok
16:09:29.0925 5180  [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
16:09:29.0934 5180  secdrv - ok
16:09:29.0986 5180  [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon        C:\Windows\system32\seclogon.dll
16:09:30.0004 5180  seclogon - ok
16:09:30.0036 5180  [ A9BBAB5759771E523F55563D6CBE140F ] SENS            C:\Windows\System32\sens.dll
16:09:30.0043 5180  SENS - ok
16:09:30.0080 5180  [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum         C:\Windows\system32\drivers\serenum.sys
16:09:30.0082 5180  Serenum - ok
16:09:30.0140 5180  [ C70D69A918B178D3C3B06339B40C2E1B ] Serial          C:\Windows\system32\drivers\serial.sys
16:09:30.0245 5180  Serial - ok
16:09:30.0289 5180  [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
16:09:30.0329 5180  sermouse - ok
16:09:30.0442 5180  [ D2193326F729B163125610DBF3E17D57 ] SessionEnv      C:\Windows\system32\sessenv.dll
16:09:30.0458 5180  SessionEnv - ok
16:09:30.0498 5180  [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
16:09:30.0542 5180  sffdisk - ok
16:09:30.0577 5180  [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
16:09:30.0610 5180  sffp_mmc - ok
16:09:30.0667 5180  [ 3D0EA348784B7AC9EA9BD9F317980979 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
16:09:30.0705 5180  sffp_sd - ok
16:09:30.0733 5180  [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
16:09:30.0756 5180  sfloppy - ok
16:09:30.0929 5180  [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
16:09:30.0962 5180  SharedAccess - ok
16:09:31.0115 5180  [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:09:31.0138 5180  ShellHWDetection - ok
16:09:31.0191 5180  [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp          C:\Windows\system32\drivers\sisagp.sys
16:09:31.0209 5180  sisagp - ok
16:09:31.0302 5180  [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2        C:\Windows\system32\drivers\sisraid2.sys
16:09:31.0329 5180  SiSRaid2 - ok
16:09:31.0379 5180  [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
16:09:31.0419 5180  SiSRaid4 - ok
16:09:31.0655 5180  [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc           C:\Windows\system32\SLsvc.exe
16:09:31.0859 5180  slsvc - ok
16:09:31.0956 5180  [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify      C:\Windows\system32\SLUINotify.dll
16:09:31.0983 5180  SLUINotify - ok
16:09:32.0062 5180  [ 7B75299A4D201D6A6533603D6914AB04 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
16:09:32.0071 5180  Smb - ok
16:09:32.0115 5180  [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
16:09:32.0137 5180  SNMPTRAP - ok
16:09:32.0194 5180  [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr           C:\Windows\system32\drivers\spldr.sys
16:09:32.0197 5180  spldr - ok
16:09:32.0313 5180  [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler         C:\Windows\System32\spoolsv.exe
16:09:32.0333 5180  Spooler - ok
16:09:32.0469 5180  [ 41987F9FC0E61ADF54F581E15029AD91 ] srv             C:\Windows\system32\DRIVERS\srv.sys
16:09:32.0499 5180  srv - ok
16:09:32.0616 5180  [ FF33AFF99564B1AA534F58868CBE41EF ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
16:09:32.0644 5180  srv2 - ok
16:09:32.0686 5180  [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
16:09:32.0735 5180  srvnet - ok
16:09:32.0799 5180  [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
16:09:32.0809 5180  SSDPSRV - ok
16:09:32.0856 5180  [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
16:09:32.0873 5180  SstpSvc - ok
16:09:33.0078 5180  [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc          C:\Windows\System32\wiaservc.dll
16:09:33.0096 5180  stisvc - ok
16:09:33.0226 5180  [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
16:09:33.0248 5180  swenum - ok
16:09:33.0343 5180  [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv           C:\Windows\System32\swprv.dll
16:09:33.0366 5180  swprv - ok
16:09:33.0411 5180  [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx         C:\Windows\system32\drivers\symc8xx.sys
16:09:33.0433 5180  Symc8xx - ok
16:09:33.0510 5180  [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi          C:\Windows\system32\drivers\sym_hi.sys
16:09:33.0515 5180  Sym_hi - ok
16:09:33.0550 5180  [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3          C:\Windows\system32\drivers\sym_u3.sys
16:09:33.0552 5180  Sym_u3 - ok
16:09:33.0611 5180  [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain         C:\Windows\system32\sysmain.dll
16:09:33.0671 5180  SysMain - ok
16:09:33.0736 5180  [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:09:33.0764 5180  TabletInputService - ok
16:09:33.0873 5180  [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv         C:\Windows\System32\tapisrv.dll
16:09:33.0888 5180  TapiSrv - ok
16:09:33.0986 5180  [ CB05822CD9CC6C688168E113C603DBE7 ] TBS             C:\Windows\System32\tbssvc.dll
16:09:33.0993 5180  TBS - ok
16:09:34.0194 5180  [ D18D53974FD715D50FC76F9FFE1C830D ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
16:09:34.0237 5180  Tcpip - ok
16:09:34.0572 5180  [ D18D53974FD715D50FC76F9FFE1C830D ] Tcpip6          C:\Windows\system32\DRIVERS\tcpip.sys
16:09:34.0582 5180  Tcpip6 - ok
16:09:34.0662 5180  [ 608C345A255D82A6289C2D468EB41FD7 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
16:09:34.0720 5180  tcpipreg - ok
16:09:34.0766 5180  [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
16:09:34.0813 5180  TDPIPE - ok
16:09:34.0879 5180  [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
16:09:34.0924 5180  TDTCP - ok
16:09:35.0127 5180  [ 76B06EB8A01FC8624D699E7045303E54 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
16:09:35.0214 5180  tdx - ok
16:09:35.0265 5180  [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
16:09:35.0271 5180  TermDD - ok
16:09:35.0372 5180  [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService     C:\Windows\System32\termsrv.dll
16:09:35.0392 5180  TermService - ok
16:09:35.0460 5180  [ C7230FBEE14437716701C15BE02C27B8 ] Themes          C:\Windows\system32\shsvcs.dll
16:09:35.0469 5180  Themes - ok
16:09:35.0507 5180  [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER     C:\Windows\system32\mmcss.dll
16:09:35.0512 5180  THREADORDER - ok
16:09:35.0549 5180  [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks          C:\Windows\System32\trkwks.dll
16:09:35.0630 5180  TrkWks - ok
16:09:35.0780 5180  [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:09:35.0782 5180  TrustedInstaller - ok
16:09:35.0884 5180  [ F4EAA7ECBCB25DE901C9B7F2CDCDA0B3 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
16:09:35.0920 5180  tssecsrv - ok
16:09:36.0050 5180  [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp           C:\Windows\system32\DRIVERS\tunmp.sys
16:09:36.0117 5180  tunmp - ok
16:09:36.0174 5180  [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
16:09:36.0177 5180  tunnel - ok
16:09:36.0230 5180  [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35          C:\Windows\system32\drivers\uagp35.sys
16:09:36.0245 5180  uagp35 - ok
16:09:36.0281 5180  [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
16:09:36.0286 5180  udfs - ok
16:09:36.0357 5180  [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
16:09:36.0365 5180  UI0Detect - ok
16:09:36.0398 5180  [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
16:09:36.0437 5180  uliagpkx - ok
16:09:36.0469 5180  [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci         C:\Windows\system32\drivers\uliahci.sys
16:09:36.0475 5180  uliahci - ok
16:09:36.0511 5180  [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata          C:\Windows\system32\drivers\ulsata.sys
16:09:36.0514 5180  UlSata - ok
16:09:36.0545 5180  [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2         C:\Windows\system32\drivers\ulsata2.sys
16:09:36.0555 5180  ulsata2 - ok
16:09:36.0593 5180  [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
16:09:36.0612 5180  umbus - ok
16:09:36.0643 5180  [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost        C:\Windows\System32\upnphost.dll
16:09:36.0665 5180  upnphost - ok
16:09:36.0711 5180  [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
16:09:36.0731 5180  usbccgp - ok
16:09:36.0781 5180  [ E9476E6C486E76BC4898074768FB7131 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
16:09:36.0802 5180  usbcir - ok
16:09:36.0845 5180  [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
16:09:36.0848 5180  usbehci - ok
16:09:36.0999 5180  [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
16:09:37.0049 5180  usbhub - ok
16:09:37.0092 5180  [ CE697FEE0D479290D89BEC80DFE793B7 ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
16:09:37.0111 5180  usbohci - ok
16:09:37.0202 5180  [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
16:09:37.0245 5180  usbprint - ok
16:09:37.0326 5180  [ A508C9BD8724980512136B039BBA65E9 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
16:09:37.0349 5180  usbscan - ok
16:09:37.0422 5180  [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:09:37.0444 5180  USBSTOR - ok
16:09:37.0501 5180  [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
16:09:37.0560 5180  usbuhci - ok
16:09:37.0630 5180  [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms           C:\Windows\System32\uxsms.dll
16:09:37.0646 5180  UxSms - ok
16:09:37.0893 5180  [ CD88D1B7776DC17A119049742EC07EB4 ] vds             C:\Windows\System32\vds.exe
16:09:37.0906 5180  vds - ok
16:09:37.0955 5180  [ 87B06E1F30B749A114F74622D013F8D4 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
16:09:37.0979 5180  vga - ok
16:09:38.0020 5180  [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave         C:\Windows\System32\drivers\vga.sys
16:09:38.0046 5180  VgaSave - ok
16:09:38.0072 5180  [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp          C:\Windows\system32\drivers\viaagp.sys
16:09:38.0075 5180  viaagp - ok
16:09:38.0118 5180  [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7           C:\Windows\system32\drivers\viac7.sys
16:09:38.0154 5180  ViaC7 - ok
16:09:38.0185 5180  [ AADF5587A4063F52C2C3FED7887426FC ] viaide          C:\Windows\system32\drivers\viaide.sys
16:09:38.0187 5180  viaide - ok
16:09:38.0215 5180  [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
16:09:38.0238 5180  volmgr - ok
16:09:38.0355 5180  [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
16:09:38.0400 5180  volmgrx - ok
16:09:38.0497 5180  [ 786DB5771F05EF300390399F626BF30A ] volsnap         C:\Windows\system32\drivers\volsnap.sys
16:09:38.0503 5180  volsnap - ok
16:09:38.0544 5180  [ 587253E09325E6BF226B299774B728A9 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
16:09:38.0548 5180  vsmraid - ok
16:09:38.0649 5180  [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS             C:\Windows\system32\vssvc.exe
16:09:38.0699 5180  VSS - ok
16:09:38.0838 5180  [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time         C:\Windows\system32\w32time.dll
16:09:38.0882 5180  W32Time - ok
16:09:39.0002 5180  [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
16:09:39.0066 5180  WacomPen - ok
16:09:39.0125 5180  [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
16:09:39.0149 5180  Wanarp - ok
16:09:39.0159 5180  [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
16:09:39.0161 5180  Wanarpv6 - ok
16:09:39.0344 5180  [ A3CD60FD826381B49F03832590E069AF ] wcncsvc         C:\Windows\System32\wcncsvc.dll
16:09:39.0358 5180  wcncsvc - ok
16:09:39.0426 5180  [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:09:39.0459 5180  WcsPlugInService - ok
16:09:39.0545 5180  [ 78FE9542363F297B18C027B2D7E7C07F ] Wd              C:\Windows\system32\drivers\wd.sys
16:09:39.0547 5180  Wd - ok
16:09:39.0642 5180  [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
16:09:39.0652 5180  Wdf01000 - ok
16:09:39.0779 5180  [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost  C:\Windows\system32\wdi.dll
16:09:39.0798 5180  WdiServiceHost - ok
16:09:39.0810 5180  [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost   C:\Windows\system32\wdi.dll
16:09:39.0817 5180  WdiSystemHost - ok
16:09:39.0874 5180  [ 04C37D8107320312FBAE09926103D5E2 ] WebClient       C:\Windows\System32\webclnt.dll
16:09:39.0884 5180  WebClient - ok
16:09:39.0989 5180  [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc          C:\Windows\system32\wecsvc.dll
16:09:39.0999 5180  Wecsvc - ok
16:09:40.0067 5180  [ 670FF720071ED741206D69BD995EA453 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
16:09:40.0081 5180  wercplsupport - ok
16:09:40.0163 5180  [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc          C:\Windows\System32\WerSvc.dll
16:09:40.0172 5180  WerSvc - ok
16:09:40.0264 5180  [ 4575AA12561C5648483403541D0D7F2B ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
16:09:40.0290 5180  WinDefend - ok
16:09:40.0306 5180  WinHttpAutoProxySvc - ok
16:09:40.0583 5180  [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
16:09:40.0664 5180  Winmgmt - ok
16:09:40.0807 5180  [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM           C:\Windows\system32\WsmSvc.dll
16:09:40.0832 5180  WinRM - ok
16:09:40.0925 5180  [ 30FC6E5448D0CBAAA95280EEEF7FEDAE ] WinUSB          C:\Windows\system32\DRIVERS\WinUSB.sys
16:09:40.0945 5180  WinUSB - ok
16:09:41.0133 5180  [ F720502AAA03FAB627A96E5EAADAA28D ] winzipersvc     C:\Program Files\WinZipper\winzipersvc.exe
16:09:41.0141 5180  winzipersvc - ok
16:09:41.0435 5180  [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc         C:\Windows\System32\wlansvc.dll
16:09:41.0497 5180  Wlansvc - ok
16:09:41.0604 5180  [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
16:09:41.0632 5180  WmiAcpi - ok
16:09:41.0763 5180  [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
16:09:41.0768 5180  wmiApSrv - ok
16:09:41.0993 5180  [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
16:09:42.0007 5180  WMPNetworkSvc - ok
16:09:42.0119 5180  [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
16:09:42.0188 5180  WPCSvc - ok
16:09:42.0263 5180  [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
16:09:42.0284 5180  WPDBusEnum - ok
16:09:42.0512 5180  [ B800EEC15851597405784126C407188C ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
16:09:42.0558 5180  WPFFontCache_v0400 - ok
16:09:42.0622 5180  [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
16:09:42.0635 5180  ws2ifsl - ok
16:09:42.0706 5180  [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc          C:\Windows\System32\wscsvc.dll
16:09:42.0730 5180  wscsvc - ok
16:09:42.0741 5180  WSearch - ok
16:09:43.0013 5180  [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv        C:\Windows\system32\wuaueng.dll
16:09:43.0048 5180  wuauserv - ok
16:09:43.0137 5180  [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
16:09:43.0818 5180  WudfPf - ok
16:09:43.0905 5180  [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
16:09:43.0920 5180  WUDFRd - ok
16:09:43.0987 5180  [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
16:09:44.0001 5180  wudfsvc - ok
16:09:44.0027 5180  ================ Scan global ===============================
16:09:44.0062 5180  [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
16:09:44.0226 5180  [ A508314231C49AEE86987CEA3EAECAD1 ] C:\Windows\system32\winsrv.dll
16:09:44.0247 5180  [ A508314231C49AEE86987CEA3EAECAD1 ] C:\Windows\system32\winsrv.dll
16:09:44.0366 5180  [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
16:09:44.0377 5180  [Global] - ok
16:09:44.0377 5180  ================ Scan MBR ==================================
16:09:44.0408 5180  [ EF932EAA6EF4C94E66A7F6CEEC7EB422 ] \Device\Harddisk0\DR0
16:09:50.0681 5180  \Device\Harddisk0\DR0 - ok
16:09:50.0694 5180  ================ Scan VBR ==================================
16:09:50.0749 5180  [ 895199CAC12672BB41208A268B93B218 ] \Device\Harddisk0\DR0\Partition1
16:09:50.0784 5180  \Device\Harddisk0\DR0\Partition1 - ok
16:09:50.0797 5180  ============================================================
16:09:50.0798 5180  Scan finished
16:09:50.0798 5180  ============================================================
16:09:50.0881 6008  Detected object count: 0
16:09:50.0881 6008  Actual detected object count: 0

 

 



#7 soule2soule

soule2soule
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:02:07 PM

Posted 28 August 2013 - 11:12 AM

16:06:52.0566 5452  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:4216:06:54.0068 5452  ============================================================
16:06:54.0068 5452  Current date / time: 2013/08/27 16:06:54.0068
16:06:54.0068 5452  SystemInfo:
16:06:54.0068 5452 
16:06:54.0068 5452  OS Version: 6.0.6002 ServicePack: 2.0
16:06:54.0068 5452  Product type: Workstation
16:06:54.0068 5452  ComputerName: BRENDA-PC
16:06:54.0069 5452  UserName: Brenda
16:06:54.0069 5452  Windows directory: C:\Windows
16:06:54.0069 5452  System windows directory: C:\Windows
16:06:54.0069 5452  Processor architecture: Intel x86
16:06:54.0069 5452  Number of processors: 1
16:06:54.0069 5452  Page size: 0x1000
16:06:54.0069 5452  Boot type: Normal boot
16:06:54.0069 5452  ============================================================
16:07:27.0735 5452  Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
16:07:27.0827 5452  ============================================================
16:07:27.0827 5452  \Device\Harddisk0\DR0:
16:07:27.0840 5452  MBR partitions:
16:07:27.0840 5452  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1A00800, BlocksNum 0x11018EB0
16:07:27.0840 5452  ============================================================
16:07:28.0054 5452  C: <-> \Device\Harddisk0\DR0\Partition1
16:07:28.0054 5452  ============================================================
16:07:28.0054 5452  Initialize success
16:07:28.0054 5452  ============================================================
16:08:18.0606 5180  ============================================================
16:08:18.0606 5180  Scan started
16:08:18.0606 5180  Mode: Manual; TDLFS;
16:08:18.0606 5180  ============================================================
16:08:43.0594 5180  ================ Scan system memory ========================
16:08:43.0594 5180  System memory - ok
16:08:43.0596 5180  ================ Scan services =============================
16:08:43.0816 5180  [ 9EBE730D4B5E3FF25EAAF5A59BA6CCFF ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
16:08:43.0861 5180  !SASCORE - ok
16:08:44.0512 5180  [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI            C:\Windows\system32\drivers\acpi.sys
16:08:44.0533 5180  ACPI - ok
16:08:44.0842 5180  [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
16:08:44.0895 5180  AdobeARMservice - ok
16:08:45.0105 5180  [ 476BB014F3F68C0C15EDDD5B444DA8FF ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
16:08:45.0133 5180  AdobeFlashPlayerUpdateSvc - ok
16:08:45.0283 5180  [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
16:08:45.0298 5180  adp94xx - ok
16:08:45.0393 5180  [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci         C:\Windows\system32\drivers\adpahci.sys
16:08:45.0414 5180  adpahci - ok
16:08:45.0467 5180  [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m        C:\Windows\system32\drivers\adpu160m.sys
16:08:45.0490 5180  adpu160m - ok
16:08:45.0559 5180  [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
16:08:45.0564 5180  adpu320 - ok
16:08:45.0648 5180  [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
16:08:45.0650 5180  AeLookupSvc - ok
16:08:45.0696 5180  [ 3911B972B55FEA0478476B2E777B29FA ] AFD             C:\Windows\system32\drivers\afd.sys
16:08:45.0718 5180  AFD - ok
16:08:45.0758 5180  [ 8ED60797908FD394EEE0D6949F493224 ] AgereModemAudio C:\Windows\system32\agrsmsvc.exe
16:08:45.0797 5180  AgereModemAudio - ok
16:08:46.0091 5180  [ BAF68DCBA949633DF0C16D37AF2A2351 ] AgereSoftModem  C:\Windows\system32\DRIVERS\AGRSM.sys
16:08:46.0148 5180  AgereSoftModem - ok
16:08:46.0323 5180  [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440          C:\Windows\system32\drivers\agp440.sys
16:08:46.0338 5180  agp440 - ok
16:08:46.0427 5180  [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
16:08:46.0447 5180  aic78xx - ok
16:08:46.0484 5180  [ A1545B731579895D8CC44FC0481C1192 ] ALG             C:\Windows\System32\alg.exe
16:08:46.0502 5180  ALG - ok
16:08:46.0552 5180  [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide          C:\Windows\system32\drivers\aliide.sys
16:08:46.0609 5180  aliide - ok
16:08:46.0647 5180  [ C47344BC706E5F0B9DCE369516661578 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
16:08:46.0666 5180  amdagp - ok
16:08:46.0714 5180  [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide          C:\Windows\system32\drivers\amdide.sys
16:08:46.0740 5180  amdide - ok
16:08:46.0793 5180  [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7           C:\Windows\system32\drivers\amdk7.sys
16:08:46.0809 5180  AmdK7 - ok
16:08:46.0848 5180  [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
16:08:46.0871 5180  AmdK8 - ok
16:08:46.0921 5180  [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo         C:\Windows\System32\appinfo.dll
16:08:46.0947 5180  Appinfo - ok
16:08:47.0003 5180  [ 5D2888182FB46632511ACEE92FDAD522 ] arc             C:\Windows\system32\drivers\arc.sys
16:08:47.0060 5180  arc - ok
16:08:47.0111 5180  [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
16:08:47.0131 5180  arcsas - ok
16:08:47.0283 5180  [ 8C3A4F8342F1336C960B5EED3128CE31 ] asdrm           C:\Windows\system32\DRIVERS\asdrm.sys
16:08:47.0307 5180  asdrm - ok
16:08:47.0407 5180  [ 67B1C96DF3C34D66190126639A2C0260 ] asdrs           C:\Windows\system32\DRIVERS\asdrs.sys
16:08:47.0408 5180  asdrs - ok
16:08:47.0910 5180  [ B7F30DE0DECDEBAD6EA52E22288987E5 ] asdsrv          C:\Program Files\Anvisoft\Anvi Smart Defender\ASDSrv.exe
16:08:48.0018 5180  asdsrv - ok
16:08:48.0078 5180  [ 4F3BC96F7C45ED12955892C310F1E3DB ] asdws           C:\Windows\system32\DRIVERS\asdws.sys
16:08:48.0095 5180  asdws - ok
16:08:48.0251 5180  [ 4AF5F360BA1E8794D32B366E45A64A0A ] aswFsBlk        C:\Windows\system32\drivers\aswFsBlk.sys
16:08:48.0253 5180  aswFsBlk - ok
16:08:48.0397 5180  [ 1F7094D4268D46F718C51286DC189791 ] aswMonFlt       C:\Windows\system32\drivers\aswMonFlt.sys
16:08:48.0399 5180  aswMonFlt - ok
16:08:48.0479 5180  [ 7B43265F92257A21CBFD88E7A651044C ] aswRdr          C:\Windows\system32\drivers\aswRdr.sys
16:08:48.0481 5180  aswRdr - ok
16:08:48.0588 5180  [ B680134BA1813B78B47FDD1DFF223CA5 ] aswRvrt         C:\Windows\system32\drivers\aswRvrt.sys
16:08:48.0614 5180  aswRvrt - ok
16:08:48.0833 5180  [ CCD565A8A72AF7D45F9A242013870926 ] aswSnx          C:\Windows\system32\drivers\aswSnx.sys
16:08:48.0854 5180  aswSnx - ok
16:08:48.0969 5180  [ 937300BC7C4CDF7576BCCE44E19BBB9D ] aswSP           C:\Windows\system32\drivers\aswSP.sys
16:08:49.0024 5180  aswSP - ok
16:08:49.0067 5180  [ 1F71F170D90E42EFDE9633D81D5E12DC ] aswTdi          C:\Windows\system32\drivers\aswTdi.sys
16:08:49.0128 5180  aswTdi - ok
16:08:49.0221 5180  [ 8CFAA2B965773A653F48F1207A9CB9C4 ] aswVmm          C:\Windows\system32\drivers\aswVmm.sys
16:08:49.0225 5180  aswVmm - ok
16:08:49.0274 5180  [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
16:08:49.0275 5180  AsyncMac - ok
16:08:49.0340 5180  [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi           C:\Windows\system32\drivers\atapi.sys
16:08:49.0366 5180  atapi - ok
16:08:49.0558 5180  [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:08:49.0592 5180  AudioEndpointBuilder - ok
16:08:49.0613 5180  [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv        C:\Windows\System32\Audiosrv.dll
16:08:49.0628 5180  Audiosrv - ok
16:08:49.0750 5180  [ 28D6701C710AD7BA3CB95E75F8F1A9AA ] avast! Antivirus C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
16:08:49.0752 5180  avast! Antivirus - ok
16:08:49.0963 5180  [ DBF43DB0C648DB9101D61041E00DF5C4 ] BBSvc           C:\Program Files\Microsoft\BingBar\BBSvc.EXE
16:08:50.0003 5180  BBSvc - ok
16:08:50.0122 5180  [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep            C:\Windows\system32\drivers\Beep.sys
16:08:50.0143 5180  Beep - ok
16:08:50.0341 5180  [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE             C:\Windows\System32\bfe.dll
16:08:50.0369 5180  BFE - ok
16:08:50.0631 5180  [ 93952506C6D67330367F7E7934B6A02F ] BITS            C:\Windows\System32\qmgr.dll
16:08:50.0676 5180  BITS - ok
16:08:50.0755 5180  [ D4DF28447741FD3D953526E33A617397 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
16:08:50.0758 5180  blbdrive - ok
16:08:50.0850 5180  [ 35F376253F687BDE63976CCB3F2108CA ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
16:08:50.0877 5180  bowser - ok
16:08:50.0992 5180  [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo        C:\Windows\system32\drivers\brfiltlo.sys
16:08:51.0012 5180  BrFiltLo - ok
16:08:51.0073 5180  [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp        C:\Windows\system32\drivers\brfiltup.sys
16:08:51.0097 5180  BrFiltUp - ok
16:08:51.0182 5180  [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser         C:\Windows\System32\browser.dll
16:08:51.0232 5180  Browser - ok
16:08:51.0344 5180  [ B304E75CFF293029EDDF094246747113 ] Brserid         C:\Windows\system32\drivers\brserid.sys
16:08:51.0379 5180  Brserid - ok
16:08:51.0413 5180  [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm        C:\Windows\system32\drivers\brserwdm.sys
16:08:51.0436 5180  BrSerWdm - ok
16:08:51.0485 5180  [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm        C:\Windows\system32\drivers\brusbmdm.sys
16:08:51.0517 5180  BrUsbMdm - ok
16:08:51.0595 5180  [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer        C:\Windows\system32\drivers\brusbser.sys
16:08:51.0599 5180  BrUsbSer - ok
16:08:51.0644 5180  [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
16:08:51.0674 5180  BTHMODEM - ok
16:08:51.0760 5180  [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
16:08:51.0803 5180  cdfs - ok
16:08:51.0902 5180  [ 6B4BFFB9BECD728097024276430DB314 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
16:08:51.0904 5180  cdrom - ok
16:08:51.0936 5180  [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc     C:\Windows\System32\certprop.dll
16:08:51.0958 5180  CertPropSvc - ok
16:08:52.0019 5180  [ E5D4133F37219DBCFE102BC61072589D ] circlass        C:\Windows\system32\drivers\circlass.sys
16:08:52.0021 5180  circlass - ok
16:08:52.0080 5180  [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS            C:\Windows\system32\CLFS.sys
16:08:52.0086 5180  CLFS - ok
16:08:52.0186 5180  [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:08:52.0190 5180  clr_optimization_v2.0.50727_32 - ok
16:08:52.0334 5180  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:08:52.0420 5180  clr_optimization_v4.0.30319_32 - ok
16:08:52.0485 5180  [ 0CA25E686A4928484E9FDABD168AB629 ] cmdide          C:\Windows\system32\drivers\cmdide.sys
16:08:52.0487 5180  cmdide - ok
16:08:52.0524 5180  [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
16:08:52.0526 5180  Compbatt - ok
16:08:52.0536 5180  COMSysApp - ok
16:08:52.0565 5180  [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
16:08:52.0567 5180  crcdisk - ok
16:08:52.0604 5180  [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe          C:\Windows\system32\drivers\crusoe.sys
16:08:52.0620 5180  Crusoe - ok
16:08:52.0695 5180  [ 684C130BBC6DB681BAD4920A4C944AA5 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
16:08:52.0698 5180  CryptSvc - ok
16:08:52.0819 5180  [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch      C:\Windows\system32\rpcss.dll
16:08:52.0845 5180  DcomLaunch - ok
16:08:52.0883 5180  [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
16:08:52.0886 5180  DfsC - ok
16:08:53.0064 5180  [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR            C:\Windows\system32\DFSR.exe
16:08:53.0110 5180  DFSR - ok
16:08:53.0251 5180  [ 9028559C132146FB75EB7ACF384B086A ] Dhcp            C:\Windows\System32\dhcpcsvc.dll
16:08:53.0256 5180  Dhcp - ok
16:08:53.0340 5180  [ 5D4AEFC3386920236A548271F8F1AF6A ] disk            C:\Windows\system32\drivers\disk.sys
16:08:53.0364 5180  disk - ok
16:08:53.0420 5180  [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache        C:\Windows\System32\dnsrslvr.dll
16:08:53.0425 5180  Dnscache - ok
16:08:53.0502 5180  [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc         C:\Windows\System32\dot3svc.dll
16:08:53.0529 5180  dot3svc - ok
16:08:53.0669 5180  [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS             C:\Windows\system32\dps.dll
16:08:53.0681 5180  DPS - ok
16:08:53.0750 5180  [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
16:08:53.0779 5180  drmkaud - ok
16:08:53.0955 5180  [ 5DE0FAEC9E5D1AAE74F8568897891A01 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
16:08:54.0003 5180  DXGKrnl - ok
16:08:54.0059 5180  [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60           C:\Windows\system32\DRIVERS\E1G60I32.sys
16:08:54.0089 5180  E1G60 - ok
16:08:54.0173 5180  [ C0B95E40D85CD807D614E264248A45B9 ] EapHost         C:\Windows\System32\eapsvc.dll
16:08:54.0197 5180  EapHost - ok
16:08:54.0331 5180  [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache          C:\Windows\system32\drivers\ecache.sys
16:08:54.0338 5180  Ecache - ok
16:08:54.0564 5180  [ 23B62471681A124889978F6295B3F4C6 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
16:08:54.0815 5180  elxstor - ok
16:08:55.0016 5180  [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt         C:\Windows\system32\emdmgmt.dll
16:08:55.0077 5180  EMDMgmt - ok
16:08:55.0166 5180  [ 3DB974F3935483555D7148663F726C61 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
16:08:55.0168 5180  ErrDev - ok
16:08:55.0505 5180  [ 4D06D9A26227AC485305133916888DF1 ] ETService       C:\Program Files\EMACHINES\eMachines Recovery Management\Service\ETService.exe
16:08:55.0570 5180  ETService - ok
16:08:55.0705 5180  [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem     C:\Windows\system32\es.dll
16:08:55.0727 5180  EventSystem - ok
16:08:55.0786 5180  [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat           C:\Windows\system32\drivers\exfat.sys
16:08:55.0789 5180  exfat - ok
16:08:55.0870 5180  [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
16:08:55.0873 5180  fastfat - ok
16:08:55.0985 5180  [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
16:08:56.0006 5180  fdc - ok
16:08:56.0070 5180  [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost         C:\Windows\system32\fdPHost.dll
16:08:56.0098 5180  fdPHost - ok
16:08:56.0147 5180  [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub        C:\Windows\system32\fdrespub.dll
16:08:56.0172 5180  FDResPub - ok
16:08:56.0214 5180  [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
16:08:56.0216 5180  FileInfo - ok
16:08:56.0251 5180  [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
16:08:56.0266 5180  Filetrace - ok
16:08:56.0324 5180  [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
16:08:56.0326 5180  flpydisk - ok
16:08:56.0393 5180  [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
16:08:56.0397 5180  FltMgr - ok
16:08:56.0535 5180  [ 119ACA7CADCA75BEA6B38E999443BAA6 ] FontCache       C:\Windows\system32\FntCache.dll
16:08:56.0549 5180  FontCache - ok
16:08:56.0713 5180  [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
16:08:56.0729 5180  FontCache3.0.0.0 - ok
16:08:56.0852 5180  [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
16:08:56.0873 5180  Fs_Rec - ok
16:08:56.0920 5180  [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
16:08:56.0922 5180  gagp30kx - ok
16:08:57.0088 5180  [ 2E7E49077C7BBEB2947BD6D03C8454B5 ] GameConsoleService C:\Program Files\eMachines Games\eMachines Game Console\GameConsoleService.exe
16:08:57.0106 5180  GameConsoleService - ok
16:08:57.0357 5180  [ 9F5F2F0FB0A7F5AA9F16B9A7B6DAD89F ] GoogleDesktopManager-051210-111108 C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
16:08:57.0427 5180  GoogleDesktopManager-051210-111108 - ok
16:08:57.0733 5180  [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc           C:\Windows\System32\gpsvc.dll
16:08:57.0812 5180  gpsvc - ok
16:08:57.0932 5180  [ CC839E8D766CC31A7710C9F38CF3E375 ] gusvc           C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
16:08:57.0937 5180  gusvc - ok
16:08:58.0094 5180  [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:08:58.0138 5180  HdAudAddService - ok
16:08:58.0326 5180  [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
16:08:58.0358 5180  HDAudBus - ok
16:08:58.0456 5180  [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth          C:\Windows\system32\drivers\hidbth.sys
16:08:58.0458 5180  HidBth - ok
16:08:58.0501 5180  [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr           C:\Windows\system32\drivers\hidir.sys
16:08:58.0524 5180  HidIr - ok
16:08:58.0574 5180  [ 84067081F3318162797385E11A8F0582 ] hidserv         C:\Windows\system32\hidserv.dll
16:08:58.0598 5180  hidserv - ok
16:08:58.0655 5180  [ 854CA287AB7FAF949617A788306D967E ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
16:08:58.0698 5180  HidUsb - ok
16:08:58.0773 5180  [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc          C:\Windows\system32\kmsvc.dll
16:08:58.0797 5180  hkmsvc - ok
16:08:58.0851 5180  [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs         C:\Windows\system32\drivers\hpcisss.sys
16:08:58.0854 5180  HpCISSs - ok
16:08:59.0041 5180  [ ED377B3C83FDEA8D906109A085D219BA ] hpqcxs08        C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
16:08:59.0073 5180  hpqcxs08 - ok
16:08:59.0188 5180  [ EE4C7A4CF2316701FFDE90F404520265 ] hpqddsvc        C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
16:08:59.0195 5180  hpqddsvc - ok
16:08:59.0289 5180  [ 0EEECA26C8D4BDE2A4664DB058A81937 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
16:08:59.0356 5180  HTTP - ok
16:08:59.0433 5180  [ C6B032D69650985468160FC9937CF5B4 ] i2omp           C:\Windows\system32\drivers\i2omp.sys
16:08:59.0482 5180  i2omp - ok
16:08:59.0513 5180  [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
16:08:59.0518 5180  i8042prt - ok
16:08:59.0679 5180  [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV         C:\Windows\system32\drivers\iastorv.sys
16:08:59.0705 5180  iaStorV - ok
16:09:00.0058 5180  [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
16:09:00.0121 5180  idsvc - ok
16:09:00.0163 5180  [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
16:09:00.0175 5180  iirsp - ok
16:09:00.0258 5180  [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT          C:\Windows\System32\ikeext.dll
16:09:00.0302 5180  IKEEXT - ok
16:09:00.0426 5180  [ C6E5276C00EBDEB096BB5EF4B797D1B6 ] int15           C:\Windows\system32\drivers\int15.sys
16:09:00.0443 5180  int15 - ok
16:09:01.0420 5180  [ 58628F232A00A3149D7CC7708C521499 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
16:09:01.0625 5180  IntcAzAudAddService - ok
16:09:01.0660 5180  [ 83AA759F3189E6370C30DE5DC5590718 ] intelide        C:\Windows\system32\drivers\intelide.sys
16:09:01.0702 5180  intelide - ok
16:09:01.0737 5180  [ 224191001E78C89DFA78924C3EA595FF ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
16:09:01.0756 5180  intelppm - ok
16:09:01.0843 5180  [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
16:09:01.0862 5180  IPBusEnum - ok
16:09:01.0907 5180  [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:09:01.0930 5180  IpFilterDriver - ok
16:09:02.0052 5180  [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
16:09:02.0064 5180  iphlpsvc - ok
16:09:02.0084 5180  IpInIp - ok
16:09:02.0216 5180  [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV         C:\Windows\system32\drivers\ipmidrv.sys
16:09:02.0218 5180  IPMIDRV - ok
16:09:02.0257 5180  [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT           C:\Windows\system32\DRIVERS\ipnat.sys
16:09:02.0275 5180  IPNAT - ok
16:09:02.0284 5180  IPVNMon - ok
16:09:02.0316 5180  [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
16:09:02.0415 5180  IRENUM - ok
16:09:02.0440 5180  [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
16:09:02.0443 5180  isapnp - ok
16:09:02.0506 5180  [ 232FA340531D940AAC623B121A595034 ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
16:09:02.0510 5180  iScsiPrt - ok
16:09:02.0542 5180  [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi        C:\Windows\system32\drivers\iteatapi.sys
16:09:02.0544 5180  iteatapi - ok
16:09:02.0596 5180  [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid         C:\Windows\system32\drivers\iteraid.sys
16:09:02.0618 5180  iteraid - ok
16:09:02.0726 5180  [ B12F5FF3A2221987AC3A81CE1FE76CC6 ] JL2005C         C:\Windows\system32\Drivers\jl2005c.sys
16:09:02.0732 5180  JL2005C - ok
16:09:02.0762 5180  [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
16:09:02.0766 5180  kbdclass - ok
16:09:02.0842 5180  [ 18247836959BA67E3511B62846B9C2E0 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
16:09:02.0861 5180  kbdhid - ok
16:09:02.0976 5180  [ A3E186B4B935905B829219502557314E ] KeyIso          C:\Windows\system32\lsass.exe
16:09:03.0001 5180  KeyIso - ok
16:09:03.0302 5180  [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
16:09:03.0337 5180  KSecDD - ok
16:09:03.0477 5180  [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm           C:\Windows\system32\msdtckrm.dll
16:09:03.0508 5180  KtmRm - ok
16:09:03.0547 5180  [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer    C:\Windows\system32\srvsvc.dll
16:09:03.0566 5180  LanmanServer - ok
16:09:03.0613 5180  [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:09:03.0656 5180  LanmanWorkstation - ok
16:09:03.0728 5180  [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
16:09:03.0730 5180  lltdio - ok
16:09:03.0780 5180  [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
16:09:03.0804 5180  lltdsvc - ok
16:09:03.0854 5180  [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts         C:\Windows\System32\lmhsvc.dll
16:09:03.0873 5180  lmhosts - ok
16:09:03.0918 5180  [ C7E15E82879BF3235B559563D4185365 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
16:09:03.0939 5180  LSI_FC - ok
16:09:03.0971 5180  [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
16:09:03.0974 5180  LSI_SAS - ok
16:09:04.0023 5180  [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
16:09:04.0026 5180  LSI_SCSI - ok
16:09:04.0075 5180  [ 8F5C7426567798E62A3B3614965D62CC ] luafv           C:\Windows\system32\drivers\luafv.sys
16:09:04.0099 5180  luafv - ok
16:09:04.0108 5180  lxcz_device - ok
16:09:04.0193 5180  [ 4470E3C1E0C3378E4CAB137893C12C3A ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
16:09:04.0195 5180  MBAMProtector - ok
16:09:04.0322 5180  [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler   C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
16:09:04.0337 5180  MBAMScheduler - ok
16:09:04.0611 5180  [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService     C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
16:09:04.0643 5180  MBAMService - ok
16:09:04.0876 5180  [ DDCC236009C707761D60E5C76D639176 ] McComponentHostService C:\Program Files\McAfee Security Scan\3.0.318\McCHSvc.exe
16:09:04.0889 5180  McComponentHostService - ok
16:09:04.0975 5180  [ 0001CE609D66632FA17B84705F658879 ] megasas         C:\Windows\system32\drivers\megasas.sys
16:09:04.0989 5180  megasas - ok
16:09:05.0102 5180  [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR          C:\Windows\system32\drivers\megasr.sys
16:09:05.0117 5180  MegaSR - ok
16:09:05.0219 5180  [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS           C:\Windows\system32\mmcss.dll
16:09:05.0239 5180  MMCSS - ok
16:09:05.0272 5180  [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem           C:\Windows\system32\drivers\modem.sys
16:09:05.0274 5180  Modem - ok
16:09:05.0340 5180  [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
16:09:05.0342 5180  monitor - ok
16:09:05.0357 5180  [ 5BF6A1326A335C5298477754A506D263 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
16:09:05.0359 5180  mouclass - ok
16:09:05.0393 5180  [ 93B8D4869E12CFBE663915502900876F ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
16:09:05.0395 5180  mouhid - ok
16:09:05.0421 5180  [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr        C:\Windows\system32\drivers\mountmgr.sys
16:09:05.0447 5180  MountMgr - ok
16:09:05.0473 5180  [ 511D011289755DD9F9A7579FB0B064E6 ] mpio            C:\Windows\system32\drivers\mpio.sys
16:09:05.0476 5180  mpio - ok
16:09:05.0514 5180  [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
16:09:05.0535 5180  mpsdrv - ok
16:09:05.0673 5180  [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc          C:\Windows\system32\mpssvc.dll
16:09:05.0699 5180  MpsSvc - ok
16:09:05.0788 5180  [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x        C:\Windows\system32\drivers\mraid35x.sys
16:09:05.0791 5180  Mraid35x - ok
16:09:05.0876 5180  [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
16:09:05.0903 5180  MRxDAV - ok
16:09:05.0972 5180  [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
16:09:05.0996 5180  mrxsmb - ok
16:09:06.0119 5180  [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:09:06.0176 5180  mrxsmb10 - ok
16:09:06.0259 5180  [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:09:06.0281 5180  mrxsmb20 - ok
16:09:06.0327 5180  [ 28023E86F17001F7CD9B15A5BC9AE07D ] msahci          C:\Windows\system32\drivers\msahci.sys
16:09:06.0332 5180  msahci - ok
16:09:06.0377 5180  [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
16:09:06.0385 5180  msdsm - ok
16:09:06.0424 5180  [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC           C:\Windows\System32\msdtc.exe
16:09:06.0430 5180  MSDTC - ok
16:09:06.0464 5180  [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
16:09:06.0488 5180  Msfs - ok
16:09:06.0532 5180  [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
16:09:06.0533 5180  msisadrv - ok
16:09:06.0603 5180  [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
16:09:06.0630 5180  MSiSCSI - ok
16:09:06.0643 5180  msiserver - ok
16:09:06.0671 5180  [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
16:09:06.0697 5180  MSKSSRV - ok
16:09:06.0784 5180  [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
16:09:06.0786 5180  MSPCLOCK - ok
16:09:06.0821 5180  [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
16:09:06.0823 5180  MSPQM - ok
16:09:06.0862 5180  [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
16:09:06.0866 5180  MsRPC - ok
16:09:06.0893 5180  [ E384487CB84BE41D09711C30CA79646C ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
16:09:06.0914 5180  mssmbios - ok
16:09:06.0957 5180  [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
16:09:06.0962 5180  MSTEE - ok
16:09:06.0988 5180  [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup             C:\Windows\system32\Drivers\mup.sys
16:09:07.0022 5180  Mup - ok
16:09:07.0198 5180  [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent        C:\Windows\system32\qagentRT.dll
16:09:07.0239 5180  napagent - ok
16:09:07.0331 5180  [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
16:09:07.0362 5180  NativeWifiP - ok
16:09:07.0453 5180  [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS            C:\Windows\system32\drivers\ndis.sys
16:09:07.0571 5180  NDIS - ok
16:09:07.0599 5180  [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
16:09:07.0640 5180  NdisTapi - ok
16:09:07.0716 5180  [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
16:09:07.0718 5180  Ndisuio - ok
16:09:07.0814 5180  [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
16:09:07.0818 5180  NdisWan - ok
16:09:07.0908 5180  [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
16:09:07.0910 5180  NDProxy - ok
16:09:07.0935 5180  [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
16:09:07.0969 5180  NetBIOS - ok
16:09:08.0091 5180  [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt           C:\Windows\system32\DRIVERS\netbt.sys
16:09:08.0133 5180  netbt - ok
16:09:08.0184 5180  [ A3E186B4B935905B829219502557314E ] Netlogon        C:\Windows\system32\lsass.exe
16:09:08.0194 5180  Netlogon - ok
16:09:08.0329 5180  [ C8052711DAECC48B982434C5116CA401 ] Netman          C:\Windows\System32\netman.dll
16:09:08.0338 5180  Netman - ok
16:09:08.0418 5180  [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm        C:\Windows\System32\netprofm.dll
16:09:08.0452 5180  netprofm - ok
16:09:08.0852 5180  [ 55DD234921CED25DF536A02B078DA6F4 ] netr28u         C:\Windows\system32\DRIVERS\netr28u.sys
16:09:08.0986 5180  netr28u - ok
16:09:09.0096 5180  [ D6C4E4A39A36029AC0813D476FBD0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:09:09.0103 5180  NetTcpPortSharing - ok
16:09:09.0171 5180  [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
16:09:09.0249 5180  nfrd960 - ok
16:09:09.0356 5180  [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc          C:\Windows\System32\nlasvc.dll
16:09:09.0364 5180  NlaSvc - ok
16:09:09.0447 5180  [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
16:09:09.0449 5180  Npfs - ok
16:09:09.0548 5180  [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi             C:\Windows\system32\nsisvc.dll
16:09:09.0560 5180  nsi - ok
16:09:09.0642 5180  [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
16:09:09.0661 5180  nsiproxy - ok
16:09:10.0012 5180  [ 2C1121F2B87E9A6B12485DF53CD848C7 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
16:09:10.0666 5180  Ntfs - ok
16:09:10.0755 5180  [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi       C:\Windows\system32\drivers\ntrigdigi.sys
16:09:10.0772 5180  ntrigdigi - ok
16:09:10.0860 5180  [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null            C:\Windows\system32\drivers\Null.sys
16:09:10.0862 5180  Null - ok
16:09:11.0185 5180  [ C39AD3B818502EDFA4B819148B72A0E3 ] NVENETFD        C:\Windows\system32\DRIVERS\nvmfdx32.sys
16:09:11.0249 5180  NVENETFD - ok
16:09:14.0370 5180  [ 9A77B1C13BCCEDDF78DFD7AFC25B4F5E ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
16:09:16.0603 5180  nvlddmkm - ok
16:09:16.0687 5180  [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
16:09:16.0711 5180  nvraid - ok
16:09:16.0770 5180  [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
16:09:16.0789 5180  nvstor - ok
16:09:16.0836 5180  [ D05F6E26AC960474494356FE703D61BE ] nvstor32        C:\Windows\system32\DRIVERS\nvstor32.sys
16:09:16.0840 5180  nvstor32 - ok
16:09:16.0930 5180  [ 31B8835B003CAA6D31BEAD83DDBF98E5 ] nvsvc           C:\Windows\system32\nvvsvc.exe
16:09:16.0945 5180  nvsvc - ok
16:09:17.0200 5180  [ 0629259E3AF6BB0534FCECA208973404 ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
16:09:17.0515 5180  nvUpdatusService - ok
16:09:17.0593 5180  [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
16:09:17.0618 5180  nv_agp - ok
16:09:17.0637 5180  NwlnkFlt - ok
16:09:17.0683 5180  NwlnkFwd - ok
16:09:17.0908 5180  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
16:09:17.0917 5180  odserv - ok
16:09:17.0989 5180  [ BE32DA025A0BE1878F0EE8D6D9386CD5 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
16:09:18.0028 5180  ohci1394 - ok
16:09:18.0192 5180  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:09:18.0251 5180  ose - ok
16:09:18.0564 5180  [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc        C:\Windows\system32\p2psvc.dll
16:09:18.0638 5180  p2pimsvc - ok
16:09:18.0678 5180  [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc          C:\Windows\system32\p2psvc.dll
16:09:18.0701 5180  p2psvc - ok
16:09:18.0825 5180  [ 0FA9B5055484649D63C303FE404E5F4D ] Parport         C:\Windows\system32\drivers\parport.sys
16:09:18.0909 5180  Parport - ok
16:09:19.0025 5180  [ B9C2B89F08670E159F7181891E449CD9 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
16:09:19.0182 5180  partmgr - ok
16:09:19.0277 5180  [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm          C:\Windows\system32\drivers\parvdm.sys
16:09:19.0294 5180  Parvdm - ok
16:09:19.0353 5180  [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc          C:\Windows\System32\pcasvc.dll
16:09:19.0389 5180  PcaSvc - ok
16:09:19.0530 5180  [ 941DC1D19E7E8620F40BBC206981EFDB ] pci             C:\Windows\system32\drivers\pci.sys
16:09:19.0588 5180  pci - ok
16:09:19.0759 5180  [ 1636D43F10416AEB483BC6001097B26C ] pciide          C:\Windows\system32\drivers\pciide.sys
16:09:19.0796 5180  pciide - ok
16:09:19.0925 5180  [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
16:09:19.0986 5180  pcmcia - ok
16:09:20.0481 5180  [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
16:09:20.0841 5180  PEAUTH - ok
16:09:21.0294 5180  [ B1689DF169143F57053F795390C99DB3 ] pla             C:\Windows\system32\pla.dll
16:09:22.0076 5180  pla - ok
16:09:22.0212 5180  [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
16:09:22.0298 5180  PlugPlay - ok
16:09:22.0499 5180  [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg     C:\Windows\system32\p2psvc.dll
16:09:22.0510 5180  PNRPAutoReg - ok
16:09:22.0713 5180  [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc         C:\Windows\system32\p2psvc.dll
16:09:22.0725 5180  PNRPsvc - ok
16:09:22.0830 5180  [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
16:09:22.0941 5180  PolicyAgent - ok
16:09:23.0012 5180  [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
16:09:23.0075 5180  PptpMiniport - ok
16:09:23.0141 5180  [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor       C:\Windows\system32\drivers\processr.sys
16:09:23.0206 5180  Processor - ok
16:09:23.0378 5180  [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc         C:\Windows\system32\profsvc.dll
16:09:23.0474 5180  ProfSvc - ok
16:09:23.0524 5180  [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
16:09:23.0532 5180  ProtectedStorage - ok
16:09:23.0636 5180  [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched          C:\Windows\system32\DRIVERS\pacer.sys
16:09:23.0668 5180  PSched - ok
16:09:24.0127 5180  [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
16:09:24.0859 5180  ql2300 - ok
16:09:24.0920 5180  [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
16:09:24.0982 5180  ql40xx - ok
16:09:25.0056 5180  [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE           C:\Windows\system32\qwave.dll
16:09:25.0304 5180  QWAVE - ok
16:09:25.0379 5180  [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
16:09:25.0453 5180  QWAVEdrv - ok
16:09:25.0783 5180  [ 37C3272E58976598BEF1CDF321019209 ] RalinkRegistryWriter C:\Program Files\NETGEAR\WNDA4100\Service\RaRegistry.exe
16:09:25.0922 5180  RalinkRegistryWriter - ok
16:09:25.0969 5180  [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
16:09:25.0983 5180  RasAcd - ok
16:09:26.0028 5180  [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto         C:\Windows\System32\rasauto.dll
16:09:26.0102 5180  RasAuto - ok
16:09:26.0187 5180  [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
16:09:26.0201 5180  Rasl2tp - ok
16:09:26.0375 5180  [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan          C:\Windows\System32\rasmans.dll
16:09:26.0474 5180  RasMan - ok
16:09:26.0562 5180  [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
16:09:26.0593 5180  RasPppoe - ok
16:09:26.0750 5180  [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
16:09:26.0817 5180  RasSstp - ok
16:09:26.0925 5180  [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
16:09:27.0004 5180  rdbss - ok
16:09:27.0042 5180  [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
16:09:27.0046 5180  RDPCDD - ok
16:09:27.0184 5180  [ FBC0BACD9C3D7F6956853F64A66E252D ] rdpdr           C:\Windows\system32\drivers\rdpdr.sys
16:09:27.0240 5180  rdpdr - ok
16:09:27.0292 5180  [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
16:09:27.0294 5180  RDPENCDD - ok
16:09:27.0446 5180  [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
16:09:27.0790 5180  RDPWD - ok
16:09:27.0923 5180  [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess    C:\Windows\System32\mprdim.dll
16:09:27.0992 5180  RemoteAccess - ok
16:09:28.0030 5180  [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry  C:\Windows\system32\regsvc.dll
16:09:28.0114 5180  RemoteRegistry - ok
16:09:28.0395 5180  [ 06A49B7BDC36CFBF97DD90804F833369 ] RichVideo       C:\Program Files\CyberLink\Shared files\RichVideo.exe
16:09:28.0429 5180  RichVideo - ok
16:09:28.0479 5180  [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator      C:\Windows\system32\locator.exe
16:09:28.0497 5180  RpcLocator - ok
16:09:28.0630 5180  [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs           C:\Windows\system32\rpcss.dll
16:09:28.0642 5180  RpcSs - ok
16:09:28.0727 5180  [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
16:09:28.0768 5180  rspndr - ok
16:09:28.0789 5180  [ A3E186B4B935905B829219502557314E ] SamSs           C:\Windows\system32\lsass.exe
16:09:28.0800 5180  SamSs - ok
16:09:29.0014 5180  [ 39763504067962108505BFF25F024345 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
16:09:29.0041 5180  SASDIFSV - ok
16:09:29.0088 5180  [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
16:09:29.0108 5180  SASKUTIL - ok
16:09:29.0133 5180  [ 3CE8F073A557E172B330109436984E30 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
16:09:29.0179 5180  sbp2port - ok
16:09:29.0256 5180  [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
16:09:29.0312 5180  SCardSvr - ok
16:09:29.0501 5180  [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule        C:\Windows\system32\schedsvc.dll
16:09:29.0629 5180  Schedule - ok
16:09:29.0689 5180  [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc     C:\Windows\System32\certprop.dll
16:09:29.0698 5180  SCPolicySvc - ok
16:09:29.0724 5180  [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
16:09:29.0771 5180  SDRSVC - ok
16:09:29.0877 5180  [ 78779EE07231C658B483B1F38B5088DF ] SeaPort         C:\Program Files\Microsoft\BingBar\SeaPort.EXE
16:09:29.0882 5180  SeaPort - ok
16:09:29.0925 5180  [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
16:09:29.0934 5180  secdrv - ok
16:09:29.0986 5180  [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon        C:\Windows\system32\seclogon.dll
16:09:30.0004 5180  seclogon - ok
16:09:30.0036 5180  [ A9BBAB5759771E523F55563D6CBE140F ] SENS            C:\Windows\System32\sens.dll
16:09:30.0043 5180  SENS - ok
16:09:30.0080 5180  [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum         C:\Windows\system32\drivers\serenum.sys
16:09:30.0082 5180  Serenum - ok
16:09:30.0140 5180  [ C70D69A918B178D3C3B06339B40C2E1B ] Serial          C:\Windows\system32\drivers\serial.sys
16:09:30.0245 5180  Serial - ok
16:09:30.0289 5180  [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
16:09:30.0329 5180  sermouse - ok
16:09:30.0442 5180  [ D2193326F729B163125610DBF3E17D57 ] SessionEnv      C:\Windows\system32\sessenv.dll
16:09:30.0458 5180  SessionEnv - ok
16:09:30.0498 5180  [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
16:09:30.0542 5180  sffdisk - ok
16:09:30.0577 5180  [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
16:09:30.0610 5180  sffp_mmc - ok
16:09:30.0667 5180  [ 3D0EA348784B7AC9EA9BD9F317980979 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
16:09:30.0705 5180  sffp_sd - ok
16:09:30.0733 5180  [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
16:09:30.0756 5180  sfloppy - ok
16:09:30.0929 5180  [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
16:09:30.0962 5180  SharedAccess - ok
16:09:31.0115 5180  [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:09:31.0138 5180  ShellHWDetection - ok
16:09:31.0191 5180  [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp          C:\Windows\system32\drivers\sisagp.sys
16:09:31.0209 5180  sisagp - ok
16:09:31.0302 5180  [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2        C:\Windows\system32\drivers\sisraid2.sys
16:09:31.0329 5180  SiSRaid2 - ok
16:09:31.0379 5180  [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
16:09:31.0419 5180  SiSRaid4 - ok
16:09:31.0655 5180  [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc           C:\Windows\system32\SLsvc.exe
16:09:31.0859 5180  slsvc - ok
16:09:31.0956 5180  [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify      C:\Windows\system32\SLUINotify.dll
16:09:31.0983 5180  SLUINotify - ok
16:09:32.0062 5180  [ 7B75299A4D201D6A6533603D6914AB04 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
16:09:32.0071 5180  Smb - ok
16:09:32.0115 5180  [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
16:09:32.0137 5180  SNMPTRAP - ok
16:09:32.0194 5180  [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr           C:\Windows\system32\drivers\spldr.sys
16:09:32.0197 5180  spldr - ok
16:09:32.0313 5180  [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler         C:\Windows\System32\spoolsv.exe
16:09:32.0333 5180  Spooler - ok
16:09:32.0469 5180  [ 41987F9FC0E61ADF54F581E15029AD91 ] srv             C:\Windows\system32\DRIVERS\srv.sys
16:09:32.0499 5180  srv - ok
16:09:32.0616 5180  [ FF33AFF99564B1AA534F58868CBE41EF ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
16:09:32.0644 5180  srv2 - ok
16:09:32.0686 5180  [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
16:09:32.0735 5180  srvnet - ok
16:09:32.0799 5180  [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
16:09:32.0809 5180  SSDPSRV - ok
16:09:32.0856 5180  [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
16:09:32.0873 5180  SstpSvc - ok
16:09:33.0078 5180  [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc          C:\Windows\System32\wiaservc.dll
16:09:33.0096 5180  stisvc - ok
16:09:33.0226 5180  [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
16:09:33.0248 5180  swenum - ok
16:09:33.0343 5180  [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv           C:\Windows\System32\swprv.dll
16:09:33.0366 5180  swprv - ok
16:09:33.0411 5180  [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx         C:\Windows\system32\drivers\symc8xx.sys
16:09:33.0433 5180  Symc8xx - ok
16:09:33.0510 5180  [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi          C:\Windows\system32\drivers\sym_hi.sys
16:09:33.0515 5180  Sym_hi - ok
16:09:33.0550 5180  [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3          C:\Windows\system32\drivers\sym_u3.sys
16:09:33.0552 5180  Sym_u3 - ok
16:09:33.0611 5180  [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain         C:\Windows\system32\sysmain.dll
16:09:33.0671 5180  SysMain - ok
16:09:33.0736 5180  [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:09:33.0764 5180  TabletInputService - ok
16:09:33.0873 5180  [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv         C:\Windows\System32\tapisrv.dll
16:09:33.0888 5180  TapiSrv - ok
16:09:33.0986 5180  [ CB05822CD9CC6C688168E113C603DBE7 ] TBS             C:\Windows\System32\tbssvc.dll
16:09:33.0993 5180  TBS - ok
16:09:34.0194 5180  [ D18D53974FD715D50FC76F9FFE1C830D ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
16:09:34.0237 5180  Tcpip - ok
16:09:34.0572 5180  [ D18D53974FD715D50FC76F9FFE1C830D ] Tcpip6          C:\Windows\system32\DRIVERS\tcpip.sys
16:09:34.0582 5180  Tcpip6 - ok
16:09:34.0662 5180  [ 608C345A255D82A6289C2D468EB41FD7 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
16:09:34.0720 5180  tcpipreg - ok
16:09:34.0766 5180  [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
16:09:34.0813 5180  TDPIPE - ok
16:09:34.0879 5180  [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
16:09:34.0924 5180  TDTCP - ok
16:09:35.0127 5180  [ 76B06EB8A01FC8624D699E7045303E54 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
16:09:35.0214 5180  tdx - ok
16:09:35.0265 5180  [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
16:09:35.0271 5180  TermDD - ok
16:09:35.0372 5180  [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService     C:\Windows\System32\termsrv.dll
16:09:35.0392 5180  TermService - ok
16:09:35.0460 5180  [ C7230FBEE14437716701C15BE02C27B8 ] Themes          C:\Windows\system32\shsvcs.dll
16:09:35.0469 5180  Themes - ok
16:09:35.0507 5180  [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER     C:\Windows\system32\mmcss.dll
16:09:35.0512 5180  THREADORDER - ok
16:09:35.0549 5180  [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks          C:\Windows\System32\trkwks.dll
16:09:35.0630 5180  TrkWks - ok
16:09:35.0780 5180  [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:09:35.0782 5180  TrustedInstaller - ok
16:09:35.0884 5180  [ F4EAA7ECBCB25DE901C9B7F2CDCDA0B3 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
16:09:35.0920 5180  tssecsrv - ok
16:09:36.0050 5180  [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp           C:\Windows\system32\DRIVERS\tunmp.sys
16:09:36.0117 5180  tunmp - ok
16:09:36.0174 5180  [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
16:09:36.0177 5180  tunnel - ok
16:09:36.0230 5180  [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35          C:\Windows\system32\drivers\uagp35.sys
16:09:36.0245 5180  uagp35 - ok
16:09:36.0281 5180  [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
16:09:36.0286 5180  udfs - ok
16:09:36.0357 5180  [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
16:09:36.0365 5180  UI0Detect - ok
16:09:36.0398 5180  [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
16:09:36.0437 5180  uliagpkx - ok
16:09:36.0469 5180  [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci         C:\Windows\system32\drivers\uliahci.sys
16:09:36.0475 5180  uliahci - ok
16:09:36.0511 5180  [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata          C:\Windows\system32\drivers\ulsata.sys
16:09:36.0514 5180  UlSata - ok
16:09:36.0545 5180  [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2         C:\Windows\system32\drivers\ulsata2.sys
16:09:36.0555 5180  ulsata2 - ok
16:09:36.0593 5180  [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
16:09:36.0612 5180  umbus - ok
16:09:36.0643 5180  [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost        C:\Windows\System32\upnphost.dll
16:09:36.0665 5180  upnphost - ok
16:09:36.0711 5180  [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
16:09:36.0731 5180  usbccgp - ok
16:09:36.0781 5180  [ E9476E6C486E76BC4898074768FB7131 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
16:09:36.0802 5180  usbcir - ok
16:09:36.0845 5180  [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
16:09:36.0848 5180  usbehci - ok
16:09:36.0999 5180  [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
16:09:37.0049 5180  usbhub - ok
16:09:37.0092 5180  [ CE697FEE0D479290D89BEC80DFE793B7 ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
16:09:37.0111 5180  usbohci - ok
16:09:37.0202 5180  [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
16:09:37.0245 5180  usbprint - ok
16:09:37.0326 5180  [ A508C9BD8724980512136B039BBA65E9 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
16:09:37.0349 5180  usbscan - ok
16:09:37.0422 5180  [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:09:37.0444 5180  USBSTOR - ok
16:09:37.0501 5180  [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
16:09:37.0560 5180  usbuhci - ok
16:09:37.0630 5180  [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms           C:\Windows\System32\uxsms.dll
16:09:37.0646 5180  UxSms - ok
16:09:37.0893 5180  [ CD88D1B7776DC17A119049742EC07EB4 ] vds             C:\Windows\System32\vds.exe
16:09:37.0906 5180  vds - ok
16:09:37.0955 5180  [ 87B06E1F30B749A114F74622D013F8D4 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
16:09:37.0979 5180  vga - ok
16:09:38.0020 5180  [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave         C:\Windows\System32\drivers\vga.sys
16:09:38.0046 5180  VgaSave - ok
16:09:38.0072 5180  [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp          C:\Windows\system32\drivers\viaagp.sys
16:09:38.0075 5180  viaagp - ok
16:09:38.0118 5180  [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7           C:\Windows\system32\drivers\viac7.sys
16:09:38.0154 5180  ViaC7 - ok
16:09:38.0185 5180  [ AADF5587A4063F52C2C3FED7887426FC ] viaide          C:\Windows\system32\drivers\viaide.sys
16:09:38.0187 5180  viaide - ok
16:09:38.0215 5180  [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
16:09:38.0238 5180  volmgr - ok
16:09:38.0355 5180  [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
16:09:38.0400 5180  volmgrx - ok
16:09:38.0497 5180  [ 786DB5771F05EF300390399F626BF30A ] volsnap         C:\Windows\system32\drivers\volsnap.sys
16:09:38.0503 5180  volsnap - ok
16:09:38.0544 5180  [ 587253E09325E6BF226B299774B728A9 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
16:09:38.0548 5180  vsmraid - ok
16:09:38.0649 5180  [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS             C:\Windows\system32\vssvc.exe
16:09:38.0699 5180  VSS - ok
16:09:38.0838 5180  [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time         C:\Windows\system32\w32time.dll
16:09:38.0882 5180  W32Time - ok
16:09:39.0002 5180  [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
16:09:39.0066 5180  WacomPen - ok
16:09:39.0125 5180  [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
16:09:39.0149 5180  Wanarp - ok
16:09:39.0159 5180  [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
16:09:39.0161 5180  Wanarpv6 - ok
16:09:39.0344 5180  [ A3CD60FD826381B49F03832590E069AF ] wcncsvc         C:\Windows\System32\wcncsvc.dll
16:09:39.0358 5180  wcncsvc - ok
16:09:39.0426 5180  [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:09:39.0459 5180  WcsPlugInService - ok
16:09:39.0545 5180  [ 78FE9542363F297B18C027B2D7E7C07F ] Wd              C:\Windows\system32\drivers\wd.sys
16:09:39.0547 5180  Wd - ok
16:09:39.0642 5180  [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
16:09:39.0652 5180  Wdf01000 - ok
16:09:39.0779 5180  [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost  C:\Windows\system32\wdi.dll
16:09:39.0798 5180  WdiServiceHost - ok
16:09:39.0810 5180  [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost   C:\Windows\system32\wdi.dll
16:09:39.0817 5180  WdiSystemHost - ok
16:09:39.0874 5180  [ 04C37D8107320312FBAE09926103D5E2 ] WebClient       C:\Windows\System32\webclnt.dll
16:09:39.0884 5180  WebClient - ok
16:09:39.0989 5180  [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc          C:\Windows\system32\wecsvc.dll
16:09:39.0999 5180  Wecsvc - ok
16:09:40.0067 5180  [ 670FF720071ED741206D69BD995EA453 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
16:09:40.0081 5180  wercplsupport - ok
16:09:40.0163 5180  [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc          C:\Windows\System32\WerSvc.dll
16:09:40.0172 5180  WerSvc - ok
16:09:40.0264 5180  [ 4575AA12561C5648483403541D0D7F2B ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
16:09:40.0290 5180  WinDefend - ok
16:09:40.0306 5180  WinHttpAutoProxySvc - ok
16:09:40.0583 5180  [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
16:09:40.0664 5180  Winmgmt - ok
16:09:40.0807 5180  [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM           C:\Windows\system32\WsmSvc.dll
16:09:40.0832 5180  WinRM - ok
16:09:40.0925 5180  [ 30FC6E5448D0CBAAA95280EEEF7FEDAE ] WinUSB          C:\Windows\system32\DRIVERS\WinUSB.sys
16:09:40.0945 5180  WinUSB - ok
16:09:41.0133 5180  [ F720502AAA03FAB627A96E5EAADAA28D ] winzipersvc     C:\Program Files\WinZipper\winzipersvc.exe
16:09:41.0141 5180  winzipersvc - ok
16:09:41.0435 5180  [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc         C:\Windows\System32\wlansvc.dll
16:09:41.0497 5180  Wlansvc - ok
16:09:41.0604 5180  [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
16:09:41.0632 5180  WmiAcpi - ok
16:09:41.0763 5180  [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
16:09:41.0768 5180  wmiApSrv - ok
16:09:41.0993 5180  [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
16:09:42.0007 5180  WMPNetworkSvc - ok
16:09:42.0119 5180  [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
16:09:42.0188 5180  WPCSvc - ok
16:09:42.0263 5180  [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
16:09:42.0284 5180  WPDBusEnum - ok
16:09:42.0512 5180  [ B800EEC15851597405784126C407188C ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
16:09:42.0558 5180  WPFFontCache_v0400 - ok
16:09:42.0622 5180  [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
16:09:42.0635 5180  ws2ifsl - ok
16:09:42.0706 5180  [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc          C:\Windows\System32\wscsvc.dll
16:09:42.0730 5180  wscsvc - ok
16:09:42.0741 5180  WSearch - ok
16:09:43.0013 5180  [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv        C:\Windows\system32\wuaueng.dll
16:09:43.0048 5180  wuauserv - ok
16:09:43.0137 5180  [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
16:09:43.0818 5180  WudfPf - ok
16:09:43.0905 5180  [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
16:09:43.0920 5180  WUDFRd - ok
16:09:43.0987 5180  [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
16:09:44.0001 5180  wudfsvc - ok
16:09:44.0027 5180  ================ Scan global ===============================
16:09:44.0062 5180  [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
16:09:44.0226 5180  [ A508314231C49AEE86987CEA3EAECAD1 ] C:\Windows\system32\winsrv.dll
16:09:44.0247 5180  [ A508314231C49AEE86987CEA3EAECAD1 ] C:\Windows\system32\winsrv.dll
16:09:44.0366 5180  [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
16:09:44.0377 5180  [Global] - ok
16:09:44.0377 5180  ================ Scan MBR ==================================
16:09:44.0408 5180  [ EF932EAA6EF4C94E66A7F6CEEC7EB422 ] \Device\Harddisk0\DR0
16:09:50.0681 5180  \Device\Harddisk0\DR0 - ok
16:09:50.0694 5180  ================ Scan VBR ==================================
16:09:50.0749 5180  [ 895199CAC12672BB41208A268B93B218 ] \Device\Harddisk0\DR0\Partition1
16:09:50.0784 5180  \Device\Harddisk0\DR0\Partition1 - ok
16:09:50.0797 5180  ============================================================
16:09:50.0798 5180  Scan finished
16:09:50.0798 5180  ============================================================
16:09:50.0881 6008  Detected object count: 0
16:09:50.0881 6008  Actual detected object count: 0

 

Here is the first one!  On to the next scans!



#8 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:07 PM

Posted 28 August 2013 - 12:09 PM

Ok awaiting the new scan logs.

 

Also run this after.

 

 

Please run the Sophos Virus Removal tool.

http://www.sophos.com/en-us/products/free-tools/virus-removal-tool/download-now.aspx

 

Post the results here.



#9 soule2soule

soule2soule
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:02:07 PM

Posted 28 August 2013 - 01:45 PM

Malware keeps locking up.  Got several logs for you, but can't get it to remove all the infected files and finish.  I am posting the logs from my attempts so far:

 

2013/08/21 10:41:28 -0500 BRENDA-PC Brenda MESSAGE Starting protection
2013/08/21 10:41:28 -0500 BRENDA-PC Brenda MESSAGE Protection started successfully
2013/08/21 10:41:28 -0500 BRENDA-PC Brenda MESSAGE Starting IP protection
2013/08/21 10:42:23 -0500 BRENDA-PC Brenda MESSAGE IP Protection started successfully
2013/08/21 10:44:51 -0500 BRENDA-PC Brenda MESSAGE Starting database refresh
2013/08/21 10:44:51 -0500 BRENDA-PC Brenda MESSAGE Stopping IP protection
2013/08/21 10:44:59 -0500 BRENDA-PC Brenda MESSAGE IP Protection stopped successfully
2013/08/21 10:45:58 -0500 BRENDA-PC Brenda MESSAGE Database refreshed successfully
2013/08/21 10:45:58 -0500 BRENDA-PC Brenda MESSAGE Starting IP protection
2013/08/21 10:46:39 -0500 BRENDA-PC Brenda MESSAGE Executing scheduled update:  Daily
2013/08/21 10:47:02 -0500 BRENDA-PC Brenda MESSAGE IP Protection started successfully
2013/08/21 10:47:34 -0500 BRENDA-PC Brenda MESSAGE Database already up-to-date
2013/08/21 20:48:48 -0500 BRENDA-PC Brenda MESSAGE Starting protection
2013/08/21 20:48:48 -0500 BRENDA-PC Brenda MESSAGE Protection started successfully
2013/08/21 20:48:48 -0500 BRENDA-PC Brenda MESSAGE Starting IP protection
2013/08/21 20:49:02 -0500 BRENDA-PC Brenda MESSAGE IP Protection started successfully
2013/08/21 21:16:48 -0500 BRENDA-PC Brenda MESSAGE Starting protection
2013/08/21 21:16:49 -0500 BRENDA-PC Brenda MESSAGE Protection started successfully
2013/08/21 21:16:49 -0500 BRENDA-PC Brenda MESSAGE Starting IP protection
2013/08/21 21:17:07 -0500 BRENDA-PC Brenda MESSAGE IP Protection started successfully
2013/08/21 21:39:09 -0500 BRENDA-PC Brenda DETECTION C:\Users\Brenda\AppData\Local\TopArcadeHits\uninstaller.exe Adware.GameVance QUARANTINE
 

2013/08/22 01:14:06 -0500 BRENDA-PC Brenda MESSAGE Executing scheduled update:  Daily
2013/08/22 07:48:58 -0500 BRENDA-PC Brenda MESSAGE Scheduled update executed successfully:  database updated from version v2013.08.21.04 to version v2013.08.22.04
2013/08/22 07:48:58 -0500 BRENDA-PC Brenda MESSAGE Starting database refresh
2013/08/22 07:48:58 -0500 BRENDA-PC Brenda MESSAGE Stopping IP protection
2013/08/22 07:49:09 -0500 BRENDA-PC Brenda MESSAGE IP Protection stopped successfully
2013/08/22 07:50:35 -0500 BRENDA-PC Brenda MESSAGE Database refreshed successfully
2013/08/22 07:50:35 -0500 BRENDA-PC Brenda MESSAGE Starting IP protection
2013/08/22 07:50:47 -0500 BRENDA-PC Brenda MESSAGE IP Protection started successfully
2013/08/22 16:24:49 -0500 BRENDA-PC Brenda DETECTION C:\Users\Brenda\AppData\Local\TopArcadeHits\updater.exe Adware.GameVance QUARANTINE
 

2013/08/27 15:48:26 -0500 BRENDA-PC Brenda MESSAGE Starting protection
2013/08/27 15:48:26 -0500 BRENDA-PC Brenda MESSAGE Protection started successfully
2013/08/27 15:48:26 -0500 BRENDA-PC Brenda MESSAGE Starting IP protection
2013/08/27 15:48:31 -0500 BRENDA-PC Brenda MESSAGE IP Protection started successfully
2013/08/27 15:51:19 -0500 BRENDA-PC Brenda MESSAGE Executing scheduled update:  Daily
2013/08/27 15:52:54 -0500 BRENDA-PC Brenda MESSAGE Scheduled update executed successfully:  database updated from version v2013.08.22.04 to version v2013.08.27.08
2013/08/27 15:52:55 -0500 BRENDA-PC Brenda MESSAGE Starting database refresh
2013/08/27 15:52:55 -0500 BRENDA-PC Brenda MESSAGE Stopping IP protection
2013/08/27 15:53:03 -0500 BRENDA-PC Brenda MESSAGE IP Protection stopped successfully
2013/08/27 15:54:11 -0500 BRENDA-PC Brenda MESSAGE Database refreshed successfully
2013/08/27 15:54:11 -0500 BRENDA-PC Brenda MESSAGE Starting IP protection
2013/08/27 15:54:28 -0500 BRENDA-PC Brenda MESSAGE IP Protection started successfully
 

2013/08/28 11:11:21 -0500 BRENDA-PC Brenda MESSAGE Starting database refresh
2013/08/28 11:11:21 -0500 BRENDA-PC Brenda MESSAGE Stopping IP protection
2013/08/28 11:11:28 -0500 BRENDA-PC Brenda MESSAGE IP Protection stopped successfully
2013/08/28 11:11:49 -0500 BRENDA-PC Brenda MESSAGE Database refreshed successfully
2013/08/28 11:11:49 -0500 BRENDA-PC Brenda MESSAGE Starting IP protection
2013/08/28 11:12:05 -0500 BRENDA-PC Brenda MESSAGE IP Protection started successfully
 

Malwarebytes Anti-Malware (Trial) 1.75.0.1300
www.malwarebytes.org

Database version: v2013.08.28.04

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
Brenda :: BRENDA-PC [administrator]

Protection: Enabled

8/28/2013 12:17:30 PM
mbam-log-2013-08-28 (12-17-30).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 246972
Time elapsed: 15 minute(s), 8 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 10
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8} (PUP.Optional.BrowserDefender.A) -> No action taken.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\traking_settings (PUP.Optional.BrowserDefender.A) -> No action taken.
C:\Users\Brenda\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\{0113D088-8ED1-468C-B225-585A9C53B5E3} (PUP.Optional.TopArcadeHits.A) -> No action taken.
C:\Users\Brenda\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\{0113D088-8ED1-468C-B225-585A9C53B5E3}\chrome (PUP.Optional.TopArcadeHits.A) -> No action taken.
C:\Users\Brenda\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\{0113D088-8ED1-468C-B225-585A9C53B5E3}\chrome\content (PUP.Optional.TopArcadeHits.A) -> No action taken.
C:\Users\Brenda\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\{0113D088-8ED1-468C-B225-585A9C53B5E3}\skin (PUP.Optional.TopArcadeHits.A) -> No action taken.
C:\Users\Brenda\AppData\Local\Temp\mt_ffx\Delta (PUP.Optional.Delta.A) -> No action taken.
C:\Users\Brenda\AppData\Local\Temp\mt_ffx\Delta\delta (PUP.Optional.Delta.A) -> No action taken.
C:\Users\Brenda\AppData\Local\Temp\mt_ffx\Delta\delta\1.8.24.5 (PUP.Optional.Delta.A) -> No action taken.
C:\ProgramData\BrowserDefender\2.6.1562.220 (PUP.Optional.BrowserDefender.A) -> Delete on reboot.

Files Detected: 18
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\bl (PUP.Optional.BrowserDefender.A) -> No action taken.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BrowserDefender.dll (PUP.Optional.BrowserDefender.A) -> No action taken.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BrowserDefender.exe (PUP.Optional.BrowserDefender.A) -> No action taken.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BrowserDefender.settings (PUP.Optional.BrowserDefender.A) -> No action taken.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\dm (PUP.Optional.BrowserDefender.A) -> No action taken.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\uninstall.exe (PUP.Optional.BrowserDefender.A) -> No action taken.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\traking_settings\00 (PUP.Optional.BrowserDefender.A) -> No action taken.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\traking_settings\01 (PUP.Optional.BrowserDefender.A) -> No action taken.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\traking_settings\02 (PUP.Optional.BrowserDefender.A) -> No action taken.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\traking_settings\03 (PUP.Optional.BrowserDefender.A) -> No action taken.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\traking_settings\10 (PUP.Optional.BrowserDefender.A) -> No action taken.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\traking_settings\11 (PUP.Optional.BrowserDefender.A) -> No action taken.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\traking_settings\12 (PUP.Optional.BrowserDefender.A) -> No action taken.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\traking_settings\13 (PUP.Optional.BrowserDefender.A) -> No action taken.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\traking_settings\20 (PUP.Optional.BrowserDefender.A) -> No action taken.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\traking_settings\21 (PUP.Optional.BrowserDefender.A) -> No action taken.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\traking_settings\22 (PUP.Optional.BrowserDefender.A) -> No action taken.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\traking_settings\23 (PUP.Optional.BrowserDefender.A) -> No action taken.

(end)

 

 

Still had 28 (app) pup left to delete.  Trying the scan again and then removal???  Pray!!!  LOL



#10 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:07 PM

Posted 28 August 2013 - 04:52 PM

For now skip malwarebytes and run eset and sophos.



#11 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:07 PM

Posted 28 August 2013 - 05:03 PM

Also please disable your antivirus and run this tool.

http://thisisudax.org/

 

 

Post the log here.



#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,909 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:07 PM

Posted 28 August 2013 - 08:09 PM

A reboot is need to complete the removal of the MBAM infections.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#13 soule2soule

soule2soule
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:02:07 PM

Posted 28 August 2013 - 08:12 PM

posted eset results and rkill, but it did not show.  running eset again to get results because the results are now gone???

will post results, then rkill results again, then running sophos.

should be here shortly!



#14 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:07 PM

Posted 28 August 2013 - 08:16 PM

A reboot is need to complete the removal of the MBAM infections.

 

 

A quick read of the thread  and you will see this.

 

Malware keeps locking up.  Got several logs for you, but can't get it to remove all the infected files and finish.  I am posting the logs from my attempts so far:

 

 

 

Also this.

 

 

No action taken.

 

 

:thumbup2:



#15 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:07 PM

Posted 28 August 2013 - 08:19 PM

posted eset results and rkill, but it did not show.  running eset again to get results because the results are now gone???

will post results, then rkill results again, then running sophos.

should be here shortly!

 

 

Ok I would not re-run eset can you remember if anything was found?

 

Please run the junkware removal tool.

And Adware cleaner.

 

Run this program as admin.

http://general-changelog-team.fr/fr/downloads/finish/20-outils-de-xplode/2-adwcleaner

Run it hit the scan button then allow it to finish hit the clean button it will reboot the machine post the log here after the reboot.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users