Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Win32/Injector.AIML trojan and fake adobe update and redirect


  • This topic is locked This topic is locked
2 replies to this topic

#1 ClarkKentBR

ClarkKentBR

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:12:45 PM

Posted 29 August 2013 - 06:08 PM

Hello.
I am new to this forum, I am having a problem with a fake adobe update on my computer.
I use Windows 8 and ChromeReading previous posts, I encountered "
Fake adobe flash player installer and redirect virus" post and did almost everything that was asked there.

 

None of the programs found anything, but ESET that found two variants of the Win32/Injector.AIML trojan. They were removed.

It did not work. 

 

I'm attaching a screenshot of the dialog box that appears. 

aswMBR kept crashing and closing: "avast! Antirootkit - a problem made is stop working. windows wil..."

Below are all the result logs:

 

MiniToolBox by Farbar  Version: 13-07-2013

Ran by Bruno Colli (administrator) on 29-08-2013 at 15:21:12
Running from "C:\Users\Bruno Colli\Desktop"
Microsoft Windows 8 Pro  (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Configuraá∆o de IP do Windows
 
Liberaá∆o do Cache do DNS Resolver bem-sucedida.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================
 
 
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
 
There are 15432 more lines starting with "127.0.0.1"
 
========================= IP Configuration: ================================
 
Realtek PCIe GBE Family Controller = Ethernet (Connected)
Realtek PCIe GBE Family Controller = Ethernet 2 (Media disconnected)
 
 
# ----------------------------------
# Configuraá∆o de IPv4
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
set interface interface="Conex∆o Local* 9" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet 2" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
 
 
popd
# Final da configuraá∆o IPv4
 
 
 
Configuraá∆o de IP do Windows
 
   Nome do host. . . . . . . . . . . . . . . . : Brunno-PC
   Sufixo DNS prim†rio . . . . . . . . . . . . : 
   Tipo de n¢. . . . . . . . . . . . . . . . . : h°brido
   Roteamento de IP ativado. . . . . . . . . . : n∆o
   Proxy WINS ativado. . . . . . . . . . . . . : n∆o
 
Adaptador Ethernet Ethernet 2:
 
   Estado da m°dia. . . . . . . . . . . . . .  : m°dia desconectada
   Sufixo DNS espec°fico de conex∆o. . . . . . : 
   Descriá∆o . . . . . . . . . . . . . . . . . : Realtek PCIe GBE Family Controller #2
   Endereáo F°sico . . . . . . . . . . . . . . : 1C-6F-65-95-46-3F
   DHCP Habilitado . . . . . . . . . . . . . . : Sim
   Configuraá∆o Autom†tica Habilitada. . . . . : Sim
 
Adaptador Ethernet Ethernet:
 
   Sufixo DNS espec°fico de conex∆o. . . . . . : 
   Descriá∆o . . . . . . . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Endereáo F°sico . . . . . . . . . . . . . . : 1C-6F-65-95-46-2F
   DHCP Habilitado . . . . . . . . . . . . . . : Sim
   Configuraá∆o Autom†tica Habilitada. . . . . : Sim
   Endereáo IPv6 de link local . . . . . . . . : fe80::6cae:389a:1edd:a0df%12(Preferencial) 
   Endereáo IPv4. . . . . . . .  . . . . . . . : 192.168.0.107(Preferencial) 
   M†scara de Sub-rede . . . . . . . . . . . . : 255.255.255.0
   Concess∆o Obtida. . . . . . . . . . . . . . : quinta-feira, 29 de agosto de 2013 15:03:53
   Concess∆o Expira. . . . . . . . . . . . . . : sexta-feira, 30 de agosto de 2013 15:03:52
   Gateway Padr∆o. . . . . . . . . . . . . . . : 192.168.0.1
   Servidor DHCP . . . . . . . . . . . . . . . : 192.168.0.1
   IAID de DHCPv6. . . . . . . . . . . . . . . : 253521765
   DUID de Cliente DHCPv6. . . . . . . . . . . : 00-01-00-01-19-93-43-B4-1C-6F-65-95-46-2F
   Servidores DNS. . . . . . . . . . . . . . . : 192.168.0.1
   NetBIOS em Tcpip. . . . . . . . . . . . . . : Habilitado
 
Adaptador de t£nel isatap.{6517CE40-B942-4963-9435-6FF7C07F0885}:
 
   Estado da m°dia. . . . . . . . . . . . . .  : m°dia desconectada
   Sufixo DNS espec°fico de conex∆o. . . . . . : 
   Descriá∆o . . . . . . . . . . . . . . . . . : Adaptador do Microsoft ISATAP
   Endereáo F°sico . . . . . . . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Habilitado . . . . . . . . . . . . . . : N∆o
   Configuraá∆o Autom†tica Habilitada. . . . . : Sim
 
Adaptador de t£nel Teredo Tunneling Pseudo-Interface:
 
   Sufixo DNS espec°fico de conex∆o. . . . . . : 
   Descriá∆o . . . . . . . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Endereáo F°sico . . . . . . . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Habilitado . . . . . . . . . . . . . . : N∆o
   Configuraá∆o Autom†tica Habilitada. . . . . : Sim
   Endereáo IPv6 . . . . . . . . . . : 2001:0:5ef5:79fb:182f:57c:3f57:ff94(Preferencial) 
   Endereáo IPv6 de link local . . . . . . . . : fe80::182f:57c:3f57:ff94%15(Preferencial) 
   Gateway Padr∆o. . . . . . . . . . . . . . . : ::
   NetBIOS em Tcpip. . . . . . . . . . . . . . : Desabilitado
Servidor:  UnKnown
Address:  192.168.0.1
 
Nome:    google.com
Addresses:  2800:3f0:4001:802::1004
 74.125.234.69
 74.125.234.70
 74.125.234.71
 74.125.234.72
 74.125.234.73
 74.125.234.78
 74.125.234.64
 74.125.234.65
 74.125.234.66
 74.125.234.67
 74.125.234.68
 
 
Disparando google.com [74.125.234.68] com 32 bytes de dados:
Resposta de 74.125.234.68: bytes=32 tempo=17ms TTL=55
Resposta de 74.125.234.68: bytes=32 tempo=17ms TTL=55
 
Estat°sticas do Ping para 74.125.234.68:
    Pacotes: Enviados = 2, Recebidos = 2, Perdidos = 0 (0% de
             perda),
Aproximar um n£mero redondo de vezes em milissegundos:
    M°nimo = 17ms, M†ximo = 17ms, MÇdia = 17ms
Servidor:  UnKnown
Address:  192.168.0.1
 
Nome:    yahoo.com
Addresses:  98.138.253.109
 98.139.183.24
 206.190.36.45
 
 
Disparando yahoo.com [206.190.36.45] com 32 bytes de dados:
Resposta de 206.190.36.45: bytes=32 tempo=246ms TTL=51
Resposta de 206.190.36.45: bytes=32 tempo=252ms TTL=51
 
Estat°sticas do Ping para 206.190.36.45:
    Pacotes: Enviados = 2, Recebidos = 2, Perdidos = 0 (0% de
             perda),
Aproximar um n£mero redondo de vezes em milissegundos:
    M°nimo = 246ms, M†ximo = 252ms, MÇdia = 249ms
 
Disparando 127.0.0.1 com 32 bytes de dados:
Resposta de 127.0.0.1: bytes=32 tempo<1ms TTL=128
Resposta de 127.0.0.1: bytes=32 tempo<1ms TTL=128
 
Estat°sticas do Ping para 127.0.0.1:
    Pacotes: Enviados = 2, Recebidos = 2, Perdidos = 0 (0% de
             perda),
Aproximar um n£mero redondo de vezes em milissegundos:
    M°nimo = 0ms, M†ximo = 0ms, MÇdia = 0ms
===========================================================================
Lista de interfaces
 13...1c 6f 65 95 46 3f ......Realtek PCIe GBE Family Controller #2
 12...1c 6f 65 95 46 2f ......Realtek PCIe GBE Family Controller
  1...........................Software Loopback Interface 1
 14...00 00 00 00 00 00 00 e0 Adaptador do Microsoft ISATAP
 15...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================
 
Tabela de rotas IPv4
===========================================================================
Rotas ativas:
Endereáo de rede          M†scara   Ender. gateway       Interface   Custo
          0.0.0.0          0.0.0.0      192.168.0.1    192.168.0.107     10
        127.0.0.0        255.0.0.0      No v°nculo         127.0.0.1    306
        127.0.0.1  255.255.255.255      No v°nculo         127.0.0.1    306
  127.255.255.255  255.255.255.255      No v°nculo         127.0.0.1    306
      192.168.0.0    255.255.255.0      No v°nculo     192.168.0.107    266
    192.168.0.107  255.255.255.255      No v°nculo     192.168.0.107    266
    192.168.0.255  255.255.255.255      No v°nculo     192.168.0.107    266
        224.0.0.0        240.0.0.0      No v°nculo         127.0.0.1    306
        224.0.0.0        240.0.0.0      No v°nculo     192.168.0.107    266
  255.255.255.255  255.255.255.255      No v°nculo         127.0.0.1    306
  255.255.255.255  255.255.255.255      No v°nculo     192.168.0.107    266
===========================================================================
Rotas persistentes:
  Nenhuma
 
Tabela de rotas IPv6
===========================================================================
Rotas ativas:
 Se destino de rede de mÇtrica      Gateway
 15    306 ::/0                     No v°nculo
  1    306 ::1/128                  No v°nculo
 15    306 2001::/32                No v°nculo
 15    306 2001:0:5ef5:79fb:182f:57c:3f57:ff94/128
                                    No v°nculo
 12    266 fe80::/64                No v°nculo
 15    306 fe80::/64                No v°nculo
 15    306 fe80::182f:57c:3f57:ff94/128
                                    No v°nculo
 12    266 fe80::6cae:389a:1edd:a0df/128
                                    No v°nculo
  1    306 ff00::/8                 No v°nculo
 15    306 ff00::/8                 No v°nculo
 12    266 ff00::/8                 No v°nculo
===========================================================================
Rotas persistentes:
  Nenhuma
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\pnrpnsp.dll [67584] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [67584] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\NLAapi.dll [55296] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [21504] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [66560] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [85504] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [85504] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [72192] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [53760] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (08/29/2013 03:04:19 PM) (Source: NvStreamSvc) (User: )
Description: NvStreamSvcNvVAD initialization failed [6]
 
Error: (08/29/2013 03:04:19 PM) (Source: NvStreamSvc) (User: )
Description: NvStreamSvcUnregistering VAD endpoint [0]
 
Error: (08/29/2013 03:04:19 PM) (Source: NvStreamSvc) (User: )
Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0]
 
Error: (08/29/2013 03:03:57 PM) (Source: NvStreamSvc) (User: )
Description: NvStreamSvcNvVAD endpoint registered successfully [0]
 
Error: (08/29/2013 09:43:52 AM) (Source: NvStreamSvc) (User: )
Description: NvStreamSvcNvVAD initialization failed [6]
 
Error: (08/29/2013 09:43:52 AM) (Source: NvStreamSvc) (User: )
Description: NvStreamSvcUnregistering VAD endpoint [0]
 
Error: (08/29/2013 09:43:52 AM) (Source: NvStreamSvc) (User: )
Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0]
 
Error: (08/29/2013 09:43:30 AM) (Source: NvStreamSvc) (User: )
Description: NvStreamSvcNvVAD endpoint registered successfully [0]
 
Error: (08/29/2013 09:41:09 AM) (Source: Application Error) (User: )
Description: Nome do aplicativo com falha: SDUpdate.exe, vers„o: 2.1.18.91, carimbo de data/hora: 0x51949fc0
Nome do mÛdulo com falha: KERNELBASE.dll, vers„o: 6.2.9200.16451, carimbo de data/hora: 0x50988950
CÛdigo de exceÁ„o: 0x0eedfade
Deslocamento da falha: 0x00014b32
ID do processo com falha: 0x1d88
Hora de inÌcio do aplicativo com falha: 0xSDUpdate.exe0
Caminho do aplicativo com falha: SDUpdate.exe1
Caminho do mÛdulo com falha: SDUpdate.exe2
ID do RelatÛrio: SDUpdate.exe3
Nome completo do pacote com falha: SDUpdate.exe4
ID do aplicativo relativo ao pacote com falha: SDUpdate.exe5
 
Error: (08/29/2013 09:04:52 AM) (Source: MsiInstaller) (User: Brunno-PC)
Description: Produto: Microsoft Fix it 50267 -- Este Microsoft Fix it n„o se aplica a seu sistema operacional ou ‡ vers„o de seu aplicativo.
 
 
System errors:
=============
Error: (08/20/2013 09:34:59 AM) (Source: DCOM) (User: AUTORIDADE NT)
Description: especÌfico do aplicativoLocalAtivaÁ„o{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)N„o DisponÌvelN„o DisponÌvel
 
Error: (08/19/2013 02:51:01 PM) (Source: Service Control Manager) (User: )
Description: N„o foi possÌvel iniciar o serviÁo Spybot-S&D 2 Scanner Service devido ao seguinte erro: 
%%1053
 
Error: (08/19/2013 02:51:01 PM) (Source: Service Control Manager) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conex„o do serviÁo Spybot-S&D 2 Scanner Service.
 
Error: (08/19/2013 02:50:31 PM) (Source: Service Control Manager) (User: )
Description: N„o foi possÌvel iniciar o serviÁo Spybot-S&D 2 Updating Service devido ao seguinte erro: 
%%1053
 
Error: (08/19/2013 02:50:31 PM) (Source: Service Control Manager) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conex„o do serviÁo Spybot-S&D 2 Updating Service.
 
Error: (08/19/2013 02:50:00 PM) (Source: Service Control Manager) (User: )
Description: N„o foi possÌvel iniciar o serviÁo Spybot-S&D 2 Scanner Service devido ao seguinte erro: 
%%1053
 
Error: (08/19/2013 02:50:00 PM) (Source: Service Control Manager) (User: )
Description: Tempo limite esgotado (30000 milissegundos) ao aguardar a conex„o do serviÁo Spybot-S&D 2 Scanner Service.
 
Error: (08/19/2013 02:44:49 PM) (Source: Service Control Manager) (User: )
Description: O serviÁo Windows Update n„o foi desligado corretamente apÛs receber um controle de prÈ-desligamento.
 
Error: (08/10/2013 05:56:34 PM) (Source: DCOM) (User: AUTORIDADE NT)
Description: especÌfico do aplicativoLocalAtivaÁ„o{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)N„o DisponÌvelN„o DisponÌvel
 
Error: (08/10/2013 03:00:43 AM) (Source: Service Control Manager) (User: )
Description: O serviÁo Apple Mobile Device foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte aÁ„o corretiva ser· tomada em 60000 milissegundos: Reiniciar o serviÁo.
 
 
Microsoft Office Sessions:
=========================
Error: (08/29/2013 03:04:19 PM) (Source: NvStreamSvc)(User: )
Description: NvStreamSvcNvVAD initialization failed [6]
 
Error: (08/29/2013 03:04:19 PM) (Source: NvStreamSvc)(User: )
Description: NvStreamSvcUnregistering VAD endpoint [0]
 
Error: (08/29/2013 03:04:19 PM) (Source: NvStreamSvc)(User: )
Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0]
 
Error: (08/29/2013 03:03:57 PM) (Source: NvStreamSvc)(User: )
Description: NvStreamSvcNvVAD endpoint registered successfully [0]
 
Error: (08/29/2013 09:43:52 AM) (Source: NvStreamSvc)(User: )
Description: NvStreamSvcNvVAD initialization failed [6]
 
Error: (08/29/2013 09:43:52 AM) (Source: NvStreamSvc)(User: )
Description: NvStreamSvcUnregistering VAD endpoint [0]
 
Error: (08/29/2013 09:43:52 AM) (Source: NvStreamSvc)(User: )
Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0]
 
Error: (08/29/2013 09:43:30 AM) (Source: NvStreamSvc)(User: )
Description: NvStreamSvcNvVAD endpoint registered successfully [0]
 
Error: (08/29/2013 09:41:09 AM) (Source: Application Error)(User: )
Description: SDUpdate.exe2.1.18.9151949fc0KERNELBASE.dll6.2.9200.16451509889500eedfade00014b321d8801cea4b5094efd56C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exeC:\Windows\SYSTEM32\KERNELBASE.dll4728d66d-10a8-11e3-be73-1c6f6595462f
 
Error: (08/29/2013 09:04:52 AM) (Source: MsiInstaller)(User: Brunno-PC)
Description: Produto: Microsoft Fix it 50267 -- Este Microsoft Fix it n„o se aplica a seu sistema operacional ou ‡ vers„o de seu aplicativo.(NULL)(NULL)(NULL)(NULL)(NULL)
 
 
=========================== Installed Programs ============================
 
µTorrent (Version: 3.3.1.30017)
Adobe Creative Cloud (Version: 2.1.0.213)
Adobe Illustrator CC (Version: 17.0)
Adobe Photoshop CS6 (Version: 13.0)
AirPort (Version: 5.6.1.2)
Apple Mobile Device Support (Version: 6.1.0.13)
Apple Software Update (Version: 2.1.3.127)
AtualizaÁıes da NVIDIA 7.2.17 (Version: 7.2.17)
Bonjour (Version: 3.0.0.10)
Central de Mouse e Teclado da Microsoft (Version: 2.2.173.0)
GBBD Banco do Brasil (Version: GBBD Banco do Brasil)
Google Chrome (Version: 29.0.1547.57)
Google Update Helper (Version: 1.3.21.153)
HitmanPro 3.7 (Version: 3.7.7.205)
HP FWUpdateEDO2 (Version: 1.2.0.0)
HP Officejet Pro 8600 Ajuda (Version: 28.0.0)
HP Officejet Pro 8600 Estudo de aprimoramento de produtos (Version: 28.0.1315.0)
HP Officejet Pro 8600 Software b·sico do dispositivo (Version: 28.0.1315.0)
HP Update (Version: 5.003.003.001)
HPDiagnosticAlert (Version: 1.00.0000)
I.R.I.S. OCR (Version: 12.3.4.0)
iCloud (Version: 2.1.2.8)
iTunes (Version: 11.0.5.5)
Kaspersky Internet Security 2013 (Version: 13.0.1.4190)
MacDrive 9 Standard (Version: 9.1.0.21)
Malwarebytes Anti-Malware vers„o 1.75.0.1300 (Version: 1.75.0.1300)
Microsoft Office Home and Business 2013 - pt-br (Version: 15.0.4517.1509)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft SkyDrive (Version: 17.0.2003.1112)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
NVIDIA Driver de ·udio HD 1.3.24.2 (Version: 1.3.24.2)
NVIDIA Driver de controle do 3D Vision 320.49 (Version: 320.49)
NVIDIA Driver de gr·ficos 320.49 (Version: 320.49)
NVIDIA Driver do 3D Vision 320.49 (Version: 320.49)
NVIDIA GeForce Experience 1.6 (Version: 1.6)
NVIDIA Install Application (Version: 2.1002.131.854)
NVIDIA PhysX (Version: 9.13.0604)
NVIDIA Software do sistema PhysX 9.13.0604 (Version: 9.13.0604)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.2049)
NVIDIA Update Components (Version: 7.2.17)
NVIDIA Virtual Audio 1.2.1 (Version: 1.2.1)
Office 15 Click-to-Run Extensibility Component (Version: 15.0.4517.1509)
Office 15 Click-to-Run Licensing Component (Version: 15.0.4517.1509)
Office 15 Click-to-Run Localization Component (Version: 15.0.4517.1509)
Painel de controle da NVIDIA 320.49 (Version: 320.49)
PDF Settings CC (Version: 12.0)
PDF Settings CS6 (Version: 11.0)
SHIELD Streaming (Version: 1.05.19)
Spybot - Search & Destroy (Version: 2.1.21)
Suporte para Aplicativos Apple (Version: 2.3.4)
WinRAR archiver
 
========================= Memory info: ===================================
 
Percentage of memory in use: 8%
Total physical RAM: 32751.3 MB
Available physical RAM: 29908.1 MB
Total Pagefile: 37103.3 MB
Available Pagefile: 34166.64 MB
Total Virtual: 4095.88 MB
Available Virtual: 3962.82 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:931.51 GB) (Free:821.78 GB) NTFS
2 Drive d: (VÕDEOS) (Fixed) (Total:1863.01 GB) (Free:987.1 GB) NTFS
3 Drive e: (IMAGENS) (Fixed) (Total:931.51 GB) (Free:574.44 GB) NTFS
5 Drive g: (MISCEL¬NEA) (Fixed) (Total:931.51 GB) (Free:759.07 GB) NTFS
6 Drive h: (M⁄SICAS) (Fixed) (Total:931.51 GB) (Free:841.67 GB) NTFS
7 Drive i: (Bruno Colli 1) (Fixed) (Total:1863.01 GB) (Free:1491.97 GB) NTFS
8 Drive j: (Bruno Colli 02) (Fixed) (Total:1862.7 GB) (Free:1391.03 GB) HFSJ
 
========================= Users: ========================================
 
Contas de usu†rio para \\BRUNNO-PC
 
Administrador            Bruno Colli              Convidado                
UpdatusUser              
Comando conclu°do com àxito.
 
========================= Minidump Files ==================================
 
No minidump file found
 
 
**** End of log ****
 

 

15:29:29.0936 5260  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
15:29:31.0046 5260  ============================================================
15:29:32.0249 5260  Current date / time: 2013/08/29 15:29:31.0046
15:29:32.0249 5260  SystemInfo:
15:29:32.0249 5260  
15:29:32.0249 5260  OS Version: 6.2.9200 ServicePack: 0.0
15:29:32.0249 5260  Product type: Workstation
15:29:32.0249 5260  ComputerName: BRUNNO-PC
15:29:32.0249 5260  UserName: Bruno Colli
15:29:32.0249 5260  Windows directory: C:\Windows
15:29:32.0249 5260  System windows directory: C:\Windows
15:29:32.0249 5260  Running under WOW64
15:29:32.0249 5260  Processor architecture: Intel x64
15:29:32.0249 5260  Number of processors: 8
15:29:32.0249 5260  Page size: 0x1000
15:29:32.0249 5260  Boot type: Normal boot
15:29:32.0249 5260  ============================================================
15:29:35.0218 5260  Drive \Device\Harddisk0\DR0 - Size: 0x1D1C1116000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:29:35.0265 5260  Drive \Device\Harddisk1\DR1 - Size: 0x1D1C1116000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:29:35.0265 5260  Drive \Device\Harddisk2\DR2 - Size: 0x1D1C1116000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:29:35.0280 5260  Drive \Device\Harddisk3\DR3 - Size: 0x1D1C10FF000 (1863.02 Gb), SectorSize: 0x1000, Cylinders: 0x76C0, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
15:29:35.0296 5260  Drive \Device\Harddisk4\DR4 - Size: 0x1D1C10FF000 (1863.02 Gb), SectorSize: 0x1000, Cylinders: 0x76C0, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
15:29:35.0327 5260  ============================================================
15:29:35.0327 5260  \Device\Harddisk0\DR0:
15:29:35.0327 5260  MBR partitions:
15:29:35.0327 5260  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xE8E07800
15:29:35.0327 5260  \Device\Harddisk1\DR1:
15:29:35.0530 5260  MBR partitions:
15:29:35.0530 5260  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x804, BlocksNum 0x7470330C
15:29:35.0530 5260  \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x74704000, BlocksNum 0x74703800
15:29:35.0530 5260  \Device\Harddisk2\DR2:
15:29:35.0530 5260  MBR partitions:
15:29:35.0530 5260  \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74703800
15:29:35.0530 5260  \Device\Harddisk2\DR2\Partition2: MBR, Type 0x7, StartLBA 0x74704000, BlocksNum 0x74703800
15:29:35.0530 5260  \Device\Harddisk3\DR3:
15:29:35.0530 5260  GPT partitions:
15:29:35.0530 5260  Can't read gpt partition array
15:29:35.0530 5260  MBR partitions:
15:29:35.0530 5260  \Device\Harddisk4\DR4:
15:29:35.0530 5260  MBR partitions:
15:29:35.0530 5260  \Device\Harddisk4\DR4\Partition1: MBR, Type 0x7, StartLBA 0x100, BlocksNum 0x1D1C0E00
15:29:35.0530 5260  ============================================================
15:29:35.0656 5260  C: <-> \Device\Harddisk1\DR1\Partition1
15:29:35.0656 5260  D: <-> \Device\Harddisk0\DR0\Partition1
15:29:35.0656 5260  E: <-> \Device\Harddisk2\DR2\Partition1
15:29:35.0687 5260  G: <-> \Device\Harddisk1\DR1\Partition2
15:29:35.0687 5260  H: <-> \Device\Harddisk2\DR2\Partition2
15:29:35.0687 5260  I: <-> \Device\Harddisk4\DR4\Partition1
15:29:35.0687 5260  ============================================================
15:29:35.0687 5260  Initialize success
15:29:35.0687 5260  ============================================================
15:29:41.0718 5084  ============================================================
15:29:41.0718 5084  Scan started
15:29:41.0718 5084  Mode: Manual; TDLFS; 
15:29:41.0718 5084  ============================================================
15:29:45.0250 5084  ================ Scan system memory ========================
15:29:45.0250 5084  System memory - ok
15:29:45.0250 5084  ================ Scan services =============================
15:29:45.0359 5084  [ E890C46E4754F0DF51BAFCC8D2E07498 ] 1394ohci        C:\Windows\System32\drivers\1394ohci.sys
15:29:45.0359 5084  1394ohci - ok
15:29:45.0375 5084  [ 4F18D4C7EA14F11A7211F60D553C03DB ] 3ware           C:\Windows\system32\drivers\3ware.sys
15:29:45.0375 5084  3ware - ok
15:29:45.0422 5084  [ 975AABEB243B800C23626D6B652C5A9C ] ACPI            C:\Windows\system32\drivers\ACPI.sys
15:29:45.0437 5084  ACPI - ok
15:29:45.0453 5084  [ DC968C37822117E576B933F34A2D130C ] acpiex          C:\Windows\system32\Drivers\acpiex.sys
15:29:45.0453 5084  acpiex - ok
15:29:45.0469 5084  [ 0CA9F7C3A78227C21A0A7854E245CFB2 ] acpipagr        C:\Windows\System32\drivers\acpipagr.sys
15:29:45.0469 5084  acpipagr - ok
15:29:45.0469 5084  [ 8EB8DA03B142D3DD1EB9ED8107A76C43 ] AcpiPmi         C:\Windows\System32\drivers\acpipmi.sys
15:29:45.0469 5084  AcpiPmi - ok
15:29:45.0484 5084  [ CBCE725C5D86ABA7D2604E22951AA9B8 ] acpitime        C:\Windows\System32\drivers\acpitime.sys
15:29:45.0484 5084  acpitime - ok
15:29:45.0500 5084  [ 93C6388592B99925C1D1576E465BC80F ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
15:29:45.0500 5084  adp94xx - ok
15:29:45.0515 5084  [ D27763E0247292654E7F7D16444C7C72 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
15:29:45.0515 5084  adpahci - ok
15:29:45.0531 5084  [ 67B90070FF48F794AF19F9FCF0080D75 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
15:29:45.0531 5084  adpu320 - ok
15:29:45.0547 5084  [ 974AE60BF5B90E31412D93596C968E5B ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
15:29:45.0547 5084  AeLookupSvc - ok
15:29:45.0578 5084  [ 36D6A3201721558A8AFBCC09C2DA4C2C ] AFD             C:\Windows\system32\drivers\afd.sys
15:29:45.0578 5084  AFD - ok
15:29:45.0594 5084  [ 01590377A5AB19E792528C628A2A68F9 ] agp440          C:\Windows\system32\drivers\agp440.sys
15:29:45.0594 5084  agp440 - ok
15:29:45.0609 5084  [ D1BE8E6E5B3AF23A4393AF1BF867977A ] ALG             C:\Windows\System32\alg.exe
15:29:45.0609 5084  ALG - ok
15:29:45.0640 5084  [ 025E8C755BE293E50854D26D1BBE5133 ] AllUserInstallAgent C:\Windows\system32\AUInstallAgent.dll
15:29:45.0640 5084  AllUserInstallAgent - ok
15:29:45.0640 5084  [ 5A81054B824004B1ECC04F0034A1CDF9 ] AmdK8           C:\Windows\System32\drivers\amdk8.sys
15:29:45.0640 5084  AmdK8 - ok
15:29:45.0656 5084  [ B849D453E644FAB9BC8EF6DC8CA9C4C6 ] AmdPPM          C:\Windows\System32\drivers\amdppm.sys
15:29:45.0656 5084  AmdPPM - ok
15:29:45.0656 5084  [ 35A0EB5AECB0FA3C41A2FB514A562304 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
15:29:45.0656 5084  amdsata - ok
15:29:45.0672 5084  [ 00452671904F5EE94B50BF0219C97164 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
15:29:45.0687 5084  amdsbs - ok
15:29:45.0703 5084  [ EA3FFE53E92E59C87E3ECA9BEB20D9B7 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
15:29:45.0703 5084  amdxata - ok
15:29:45.0703 5084  [ 83B3682CE922FB0F415734B26D9D6233 ] AppID           C:\Windows\system32\drivers\appid.sys
15:29:45.0703 5084  AppID - ok
15:29:45.0719 5084  [ CE2BEAD7F31816FF0AC490D048C969F9 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
15:29:45.0719 5084  AppIDSvc - ok
15:29:45.0750 5084  [ 4F750B7EFCB6520AE01E01D082D7D476 ] Appinfo         C:\Windows\System32\appinfo.dll
15:29:45.0750 5084  Appinfo - ok
15:29:45.0812 5084  [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:29:45.0812 5084  Apple Mobile Device - ok
15:29:45.0859 5084  [ 2D14788C5D0836292BEB27BBE109BE56 ] AppMgmt         C:\Windows\System32\appmgmts.dll
15:29:45.0859 5084  AppMgmt - ok
15:29:45.0906 5084  [ E933401B392387F4BE34DE8BAF1722A7 ] arc             C:\Windows\system32\drivers\arc.sys
15:29:45.0906 5084  arc - ok
15:29:45.0937 5084  [ 07CA323EF2E8247A568AB0F3662AD644 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
15:29:45.0937 5084  arcsas - ok
15:29:45.0953 5084  [ 74DBAEC35366C4EE7670428808715A6A ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
15:29:45.0953 5084  AsyncMac - ok
15:29:45.0953 5084  [ A721FF570C2387E383BDDEA9632863C9 ] atapi           C:\Windows\system32\drivers\atapi.sys
15:29:45.0953 5084  atapi - ok
15:29:45.0969 5084  [ BCD7A47EF587DC00DD61D12D9C2D1E44 ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll
15:29:45.0969 5084  AudioEndpointBuilder - ok
15:29:46.0312 5084  [ 599B3F685A263A114FFAF3BE29C49C75 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
15:29:46.0328 5084  Audiosrv - ok
15:29:46.0422 5084  [ 587EFD6A3A30A35A27904D21AE1FB882 ] AVP             C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
15:29:46.0422 5084  AVP - ok
15:29:46.0437 5084  [ 89491EF71D5EA011127832C588002853 ] AxInstSV        C:\Windows\System32\AxInstSV.dll
15:29:46.0437 5084  AxInstSV - ok
15:29:46.0719 5084  [ 87AB5BB072A3F128541D5B815F82FFDD ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
15:29:46.0734 5084  b06bdrv - ok
15:29:46.0734 5084  [ 81703BC5D68DEDBB086C2368FBE7B334 ] BasicDisplay    C:\Windows\System32\drivers\BasicDisplay.sys
15:29:46.0734 5084  BasicDisplay - ok
15:29:46.0765 5084  [ 5EC68164E14D25675C98BBB5F09E8606 ] BasicRender     C:\Windows\System32\drivers\BasicRender.sys
15:29:46.0781 5084  BasicRender - ok
15:29:46.0828 5084  [ 89143A7BA7850F5C7E61B43BB44B6418 ] BDESVC          C:\Windows\System32\bdesvc.dll
15:29:46.0828 5084  BDESVC - ok
15:29:46.0844 5084  [ 9E7AEA59776D904607985AFFE7E5E183 ] Beep            C:\Windows\system32\drivers\Beep.sys
15:29:46.0844 5084  Beep - ok
15:29:46.0890 5084  [ 9E6A544F465C582AB42444A217CF04DC ] BFE             C:\Windows\System32\bfe.dll
15:29:46.0906 5084  BFE - ok
15:29:47.0015 5084  [ D598C44A7072D3108D8D8102EC5E07F7 ] BITS            C:\Windows\System32\qmgr.dll
15:29:47.0015 5084  BITS - ok
15:29:47.0062 5084  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
15:29:47.0062 5084  Bonjour Service - ok
15:29:47.0094 5084  [ B17AC10B47C7FCB44D22A1F06415840E ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
15:29:47.0094 5084  bowser - ok
15:29:47.0140 5084  [ 038FA1B55531E7020DB705B42FCCE373 ] BrokerInfrastructure C:\Windows\System32\bisrv.dll
15:29:47.0140 5084  BrokerInfrastructure - ok
15:29:47.0250 5084  [ 310068BDA80B1D55C36580FD8A873FAF ] Browser         C:\Windows\System32\browser.dll
15:29:47.0250 5084  Browser - ok
15:29:47.0250 5084  [ 6695200F455E251F0BCC9CE4D0978D59 ] BthAvrcpTg      C:\Windows\System32\drivers\BthAvrcpTg.sys
15:29:47.0265 5084  BthAvrcpTg - ok
15:29:47.0344 5084  [ 616EB8748C988AEE98D93DA141C3D3B4 ] BthHFEnum       C:\Windows\System32\drivers\bthhfenum.sys
15:29:47.0344 5084  BthHFEnum - ok
15:29:47.0375 5084  [ DCB4EBD928A6FB368BE6CAE522412DE1 ] bthhfhid        C:\Windows\System32\drivers\BthHFHid.sys
15:29:47.0375 5084  bthhfhid - ok
15:29:47.0453 5084  [ 033916CE8784A848B9A3D686B7F66D97 ] BTHMODEM        C:\Windows\System32\drivers\bthmodem.sys
15:29:47.0453 5084  BTHMODEM - ok
15:29:47.0469 5084  [ A4387C3D271959313E2577DB7BE8BA7A ] bthserv         C:\Windows\system32\bthserv.dll
15:29:47.0469 5084  bthserv - ok
15:29:47.0562 5084  [ B99D91E4CD9017F213645AA2E80EB425 ] CBDisk          C:\Windows\system32\drivers\CBDisk.sys
15:29:47.0562 5084  CBDisk - ok
15:29:47.0594 5084  [ 990B1BABE6E81FB18E65A87EBEFB1772 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
15:29:47.0594 5084  cdfs - ok
15:29:47.0594 5084  [ 339BFF85D788268752DA8C9644B188EE ] cdrom           C:\Windows\System32\drivers\cdrom.sys
15:29:47.0594 5084  cdrom - ok
15:29:47.0625 5084  [ BAF8F0F55BC300E5F882E521F054E345 ] CertPropSvc     C:\Windows\System32\certprop.dll
15:29:47.0625 5084  CertPropSvc - ok
15:29:47.0641 5084  [ F64B7D1A37CC1D5F421D5359EEC81E2E ] circlass        C:\Windows\System32\drivers\circlass.sys
15:29:47.0641 5084  circlass - ok
15:29:47.0750 5084  [ 9905168708DB68849B879B5548F68AB3 ] CLFS            C:\Windows\system32\drivers\CLFS.sys
15:29:47.0766 5084  CLFS - ok
15:29:47.0828 5084  [ 2DC8538A2260647484A6C921CA837313 ] CmBatt          C:\Windows\System32\drivers\CmBatt.sys
15:29:47.0828 5084  CmBatt - ok
15:29:47.0859 5084  [ E708BFF0473EC6B271EA46B65B16CA56 ] CNG             C:\Windows\system32\Drivers\cng.sys
15:29:47.0859 5084  CNG - ok
15:29:48.0047 5084  [ 0E5B1E9E7122EDAAF1F6CE047965CA92 ] CompositeBus    C:\Windows\System32\drivers\CompositeBus.sys
15:29:48.0047 5084  CompositeBus - ok
15:29:48.0047 5084  COMSysApp - ok
15:29:48.0062 5084  [ D9CB0782AF819548072AA45B70F8B22D ] condrv          C:\Windows\system32\drivers\condrv.sys
15:29:48.0062 5084  condrv - ok
15:29:48.0125 5084  [ 5CE2742F063731EC10C1B2EE386A2C08 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
15:29:48.0125 5084  CryptSvc - ok
15:29:48.0172 5084  [ F2C69C3D98249DE14D4B2832516D4FD5 ] CSC             C:\Windows\system32\drivers\csc.sys
15:29:48.0187 5084  CSC - ok
15:29:48.0266 5084  [ 22CCB6AFF617AAC6121DF6CDA5ABF3F4 ] CscService      C:\Windows\System32\cscsvc.dll
15:29:48.0266 5084  CscService - ok
15:29:48.0281 5084  [ C4D01BD86D6B207275FC143EEA951D75 ] dam             C:\Windows\system32\drivers\dam.sys
15:29:48.0281 5084  dam - ok
15:29:48.0312 5084  [ C6E1C081C0849E08FECEC18DF73B10C4 ] dc3d            C:\Windows\System32\drivers\dc3d.sys
15:29:48.0312 5084  dc3d - ok
15:29:48.0328 5084  [ 1EC6E533C954BDDF2A37E7851A7E58FD ] DcomLaunch      C:\Windows\system32\rpcss.dll
15:29:48.0344 5084  DcomLaunch - ok
15:29:48.0344 5084  [ C8650D1F61149AA546BDBC99172EBBC1 ] defragsvc       C:\Windows\System32\defragsvc.dll
15:29:48.0344 5084  defragsvc - ok
15:29:48.0359 5084  [ 5EAEF67AE2AF4D2DC664B649DB7B2E16 ] DeviceAssociationService C:\Windows\system32\das.dll
15:29:48.0359 5084  DeviceAssociationService - ok
15:29:48.0406 5084  [ 799BE46D45D486704CE0F37CA5385262 ] DeviceInstall   C:\Windows\system32\umpnpmgr.dll
15:29:48.0422 5084  DeviceInstall - ok
15:29:48.0422 5084  [ 09D9EB9E7898F8E6561473A20CC808B9 ] Dfsc            C:\Windows\system32\Drivers\dfsc.sys
15:29:48.0422 5084  Dfsc - ok
15:29:48.0469 5084  [ 9E0E72222264745ADEB0E5AC680B0ED6 ] Dhcp            C:\Windows\system32\dhcpcore.dll
15:29:48.0484 5084  Dhcp - ok
15:29:48.0484 5084  [ 3C736FAE17BA6F91BA37594AAB139CD0 ] discache        C:\Windows\system32\drivers\discache.sys
15:29:48.0484 5084  discache - ok
15:29:48.0500 5084  [ 560495FF4CA22E1D9B1972FA18F43B6F ] disk            C:\Windows\system32\drivers\disk.sys
15:29:48.0500 5084  disk - ok
15:29:48.0500 5084  [ 82A7C72593793FE1EADA7A305BD1567A ] dmvsc           C:\Windows\System32\drivers\dmvsc.sys
15:29:48.0500 5084  dmvsc - ok
15:29:48.0828 5084  [ 066B9710B36AB550E01EEFCA52155968 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
15:29:48.0844 5084  Dnscache - ok
15:29:48.0859 5084  [ 9949AD2ABA168A618D46C799D6CC898C ] dot3svc         C:\Windows\System32\dot3svc.dll
15:29:48.0859 5084  dot3svc - ok
15:29:48.0875 5084  [ 109FC3F80BF4F4DC5A071058074F13C1 ] DPS             C:\Windows\system32\dps.dll
15:29:48.0875 5084  DPS - ok
15:29:48.0891 5084  [ 9C7C183F937951AE17C5B8B3259CF3FF ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
15:29:48.0891 5084  drmkaud - ok
15:29:48.0922 5084  [ F87F4AAAF6664906248D11D5E579A53B ] DsmSvc          C:\Windows\System32\DeviceSetupManager.dll
15:29:48.0922 5084  DsmSvc - ok
15:29:48.0969 5084  [ 6D1B8A9A2C0BD4851D8AF1AB43E67AD9 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
15:29:48.0984 5084  DXGKrnl - ok
15:29:49.0141 5084  [ 58BA473DD88F5FC1932282BA683AA03E ] Eaphost         C:\Windows\System32\eapsvc.dll
15:29:49.0141 5084  Eaphost - ok
15:29:49.0187 5084  [ 5AB97B3282D7D6114949D1EB5C8598E4 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
15:29:49.0203 5084  ebdrv - ok
15:29:49.0297 5084  [ F702AB6181513303AB0FC8D59E52708B ] EFS             C:\Windows\System32\lsass.exe
15:29:49.0297 5084  EFS - ok
15:29:49.0297 5084  [ 66D60BD9A4C05616ABECA2A901475098 ] EhStorClass     C:\Windows\system32\drivers\EhStorClass.sys
15:29:49.0312 5084  EhStorClass - ok
15:29:49.0328 5084  [ A61D0F543024E458C0FE32352E1978E2 ] EhStorTcgDrv    C:\Windows\system32\drivers\EhStorTcgDrv.sys
15:29:49.0328 5084  EhStorTcgDrv - ok
15:29:49.0344 5084  [ D790D058D67582DB9C84C2D33695FE6B ] ErrDev          C:\Windows\System32\drivers\errdev.sys
15:29:49.0344 5084  ErrDev - ok
15:29:49.0375 5084  [ F9E01C2D9F8BC049E04CF5DC24A5F638 ] EventSystem     C:\Windows\system32\es.dll
15:29:49.0375 5084  EventSystem - ok
15:29:49.0391 5084  [ 7A4D6FEB8C52B3FE855E4DCDF9107E03 ] exfat           C:\Windows\system32\drivers\exfat.sys
15:29:49.0391 5084  exfat - ok
15:29:49.0406 5084  [ 60996602A7111FD2D086E803F33E4282 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
15:29:49.0406 5084  fastfat - ok
15:29:49.0437 5084  [ F0E7F8382ED5E138B0DFA4CB5058BCFE ] Fax             C:\Windows\system32\fxssvc.exe
15:29:49.0437 5084  Fax - ok
15:29:49.0453 5084  [ 73B2D11DF0B6E03A0CB0323218ACB3E4 ] fdc             C:\Windows\System32\drivers\fdc.sys
15:29:49.0453 5084  fdc - ok
15:29:49.0484 5084  [ 0828E3E7BD77C89149EAD3232BFD38DB ] fdPHost         C:\Windows\system32\fdPHost.dll
15:29:49.0484 5084  fdPHost - ok
15:29:49.0484 5084  [ 872506AAB591E8908DF4461475AF92DF ] FDResPub        C:\Windows\system32\fdrespub.dll
15:29:49.0484 5084  FDResPub - ok
15:29:49.0500 5084  [ 0588950D93A426F97C7AAADB1A9B0458 ] fhsvc           C:\Windows\system32\fhsvc.dll
15:29:49.0500 5084  fhsvc - ok
15:29:49.0516 5084  [ 88A9EBACD1058ABB237A6B4E96E7F397 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
15:29:49.0516 5084  FileInfo - ok
15:29:49.0516 5084  [ 9E4EE3A0B00FF7D5F42A4AF9744CBA02 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
15:29:49.0516 5084  Filetrace - ok
15:29:49.0516 5084  [ B1D4C168FF7B8579E3745888658FFB1D ] flpydisk        C:\Windows\System32\drivers\flpydisk.sys
15:29:49.0516 5084  flpydisk - ok
15:29:49.0531 5084  [ B33EC133AE4E6C1881D2302D93D2467D ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
15:29:49.0547 5084  FltMgr - ok
15:29:49.0562 5084  [ 0BCDC0FF11B984162B0CF0FF6E9E0146 ] FontCache       C:\Windows\system32\FntCache.dll
15:29:49.0578 5084  FontCache - ok
15:29:49.0578 5084  [ A5F7873A39E4E9FAAAE59B7E9E36B705 ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
15:29:49.0578 5084  FsDepends - ok
15:29:49.0594 5084  [ A6DD7D491F587F4BC13FB972977DC8E8 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
15:29:49.0594 5084  Fs_Rec - ok
15:29:49.0641 5084  [ FA228F4BB10DC7ED7E7D131C034E2331 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
15:29:49.0641 5084  fvevol - ok
15:29:49.0641 5084  [ A969D92973DFA895E7776B4BFE36DBB2 ] FxPPM           C:\Windows\System32\drivers\fxppm.sys
15:29:49.0641 5084  FxPPM - ok
15:29:49.0656 5084  [ 52BC441E07A827EBAB70CDC7EAEDB28D ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
15:29:49.0656 5084  gagp30kx - ok
15:29:49.0734 5084  [ 40AF6E444E938BF485B97D97E462AA33 ] GbpSv           C:\PROGRA~2\GbPlugin\GbpSv.exe
15:29:49.0734 5084  GbpSv - ok
15:29:49.0766 5084  [ 721F8EEF5E9747F32670DEFF7FB92541 ] gencounter      C:\Windows\System32\drivers\vmgencounter.sys
15:29:49.0766 5084  gencounter - ok
15:29:49.0781 5084  [ CA18ECFCFFDD638ECE80799A9056B238 ] GPIOClx0101     C:\Windows\system32\Drivers\msgpioclx.sys
15:29:49.0781 5084  GPIOClx0101 - ok
15:29:49.0797 5084  [ 5358678C6370F2ADC5291849F6503262 ] gpsvc           C:\Windows\System32\gpsvc.dll
15:29:49.0812 5084  gpsvc - ok
15:29:49.0859 5084  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:29:49.0859 5084  gupdate - ok
15:29:49.0859 5084  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:29:49.0859 5084  gupdatem - ok
15:29:49.0922 5084  [ C2504AA983B5D411F7D31402E8B57725 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:29:49.0922 5084  HdAudAddService - ok
15:29:49.0937 5084  [ 7D87B5B6C7188D553E11B59DC7F0B111 ] HDAudBus        C:\Windows\System32\drivers\HDAudBus.sys
15:29:49.0937 5084  HDAudBus - ok
15:29:49.0937 5084  [ 3F76BBA53D65E85A7F53E7A71082082C ] HidBatt         C:\Windows\System32\drivers\HidBatt.sys
15:29:49.0937 5084  HidBatt - ok
15:29:49.0953 5084  [ 085F150D002B7F0153D3C06DDF33A143 ] HidBth          C:\Windows\System32\drivers\hidbth.sys
15:29:49.0953 5084  HidBth - ok
15:29:49.0969 5084  [ CC4A07E51D89575CAB6F4EB590D87CD4 ] hidi2c          C:\Windows\System32\drivers\hidi2c.sys
15:29:49.0969 5084  hidi2c - ok
15:29:49.0969 5084  [ DC96F7DACB777CDEAEF9958A50BFDA06 ] HidIr           C:\Windows\System32\drivers\hidir.sys
15:29:49.0969 5084  HidIr - ok
15:29:50.0000 5084  [ FAC37D7B3D6354A5A5E19A45B50B4008 ] hidserv         C:\Windows\system32\hidserv.dll
15:29:50.0000 5084  hidserv - ok
15:29:50.0016 5084  [ 9E11EE0F2E117B2D5A835B2B91752827 ] HidUsb          C:\Windows\System32\drivers\hidusb.sys
15:29:50.0016 5084  HidUsb - ok
15:29:50.0047 5084  [ 3EDAD05F378D4751E14CDA596A5E7E43 ] HitmanProScheduler C:\Program Files\HitmanPro\hmpsched.exe
15:29:50.0047 5084  HitmanProScheduler - ok
15:29:50.0063 5084  [ 43F884B61A24377567CD0FEB35236334 ] hkmsvc          C:\Windows\system32\kmsvc.dll
15:29:50.0063 5084  hkmsvc - ok
15:29:50.0094 5084  [ 33DFC14DFDCCFA7AA10E392F6A8EC1CF ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:29:50.0109 5084  HomeGroupListener - ok
15:29:50.0125 5084  [ E0D9F6FE18FA7F53ADD29AF719CE2B7E ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:29:50.0125 5084  HomeGroupProvider - ok
15:29:50.0141 5084  [ 64DB7A8D97CA53DCCF93D0A1E08342CF ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
15:29:50.0141 5084  HpSAMD - ok
15:29:50.0250 5084  [ F37882F128EFACEFE353E0BAE2766909 ] HPSLPSVC        C:\Users\BRUNOC~1\AppData\Local\Temp\7zS04DF\hpslpsvc64.dll
15:29:50.0266 5084  HPSLPSVC - ok
15:29:50.0297 5084  [ F4A91D985EB9D1D2717D538F3424603C ] HTTP            C:\Windows\system32\drivers\HTTP.sys
15:29:50.0297 5084  HTTP - ok
15:29:50.0313 5084  [ 2A98301068801700906C06649860FE94 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
15:29:50.0313 5084  hwpolicy - ok
15:29:50.0313 5084  [ DC76901D82097C9E297F20C287CB9A27 ] hyperkbd        C:\Windows\System32\drivers\hyperkbd.sys
15:29:50.0313 5084  hyperkbd - ok
15:29:50.0328 5084  [ 716413AB3CA12DE0A7222D28C1C9352C ] HyperVideo      C:\Windows\system32\DRIVERS\HyperVideo.sys
15:29:50.0328 5084  HyperVideo - ok
15:29:50.0328 5084  [ C9E9CBF73AFFBFE3E801EFB516787BA3 ] i8042prt        C:\Windows\System32\drivers\i8042prt.sys
15:29:50.0328 5084  i8042prt - ok
15:29:50.0344 5084  [ 5E394EBD26FD68AA9300332C46BEDD62 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
15:29:50.0359 5084  iaStorV - ok
15:29:50.0375 5084  [ 24847A06B84339FEEDE5CABF3D27D320 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
15:29:50.0375 5084  iirsp - ok
15:29:50.0406 5084  [ 531B5A98145DA689741A0AC18F14EA94 ] IKEEXT          C:\Windows\System32\ikeext.dll
15:29:50.0406 5084  IKEEXT - ok
15:29:50.0422 5084  [ 4F37726CF764CA18A8A84F85EF3A7F24 ] intelide        C:\Windows\system32\drivers\intelide.sys
15:29:50.0422 5084  intelide - ok
15:29:50.0422 5084  [ E15CDF68DD73423F15D4AC404793AF0D ] intelppm        C:\Windows\System32\drivers\intelppm.sys
15:29:50.0422 5084  intelppm - ok
15:29:50.0438 5084  [ 8FCA66234A0933D796BB780B7953BAB9 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:29:50.0438 5084  IpFilterDriver - ok
15:29:50.0469 5084  [ C217B8D2E58C57A319B16125C3D4B69C ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
15:29:50.0469 5084  iphlpsvc - ok
15:29:50.0484 5084  [ 6E98A046A12AA113F8898AA5D612BD6E ] IPMIDRV         C:\Windows\System32\drivers\IPMIDrv.sys
15:29:50.0484 5084  IPMIDRV - ok
15:29:50.0484 5084  [ 3969B9C218DD3FAA9F4ED2FFC3651C02 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
15:29:50.0500 5084  IPNAT - ok
15:29:50.0531 5084  [ 78486992AC657AE5065C4A2135838570 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
15:29:50.0531 5084  iPod Service - ok
15:29:50.0531 5084  [ 25CD7C4BB2863FFC2B0B311F0AEBF77C ] IRENUM          C:\Windows\system32\drivers\irenum.sys
15:29:50.0531 5084  IRENUM - ok
15:29:50.0547 5084  [ D940C5BB9DC92E588533C19ABCC3D2C2 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
15:29:50.0547 5084  isapnp - ok
15:29:50.0563 5084  [ 69C8BF0BC2B0EA10F130F4D3104DC2EF ] iScsiPrt        C:\Windows\System32\drivers\msiscsi.sys
15:29:50.0563 5084  iScsiPrt - ok
15:29:50.0578 5084  [ 8FBD94B69D6423E20ABCD59D86368B21 ] kbdclass        C:\Windows\System32\drivers\kbdclass.sys
15:29:50.0578 5084  kbdclass - ok
15:29:50.0578 5084  [ E88C932ABDF8185A62C8F2FC7B051FB6 ] kbdhid          C:\Windows\System32\drivers\kbdhid.sys
15:29:50.0594 5084  kbdhid - ok
15:29:50.0594 5084  [ FB6C185092E18011EF49989425C2AA87 ] kdnic           C:\Windows\system32\DRIVERS\kdnic.sys
15:29:50.0594 5084  kdnic - ok
15:29:50.0609 5084  [ F702AB6181513303AB0FC8D59E52708B ] KeyIso          C:\Windows\system32\lsass.exe
15:29:50.0609 5084  KeyIso - ok
15:29:50.0641 5084  [ 8B5219318DF5895ABD230C373F2DF18A ] kl1             C:\Windows\system32\DRIVERS\kl1.sys
15:29:50.0641 5084  kl1 - ok
15:29:50.0656 5084  [ F2EB9202FCCC81E0902D3C5A70037A44 ] klelam          C:\Windows\system32\DRIVERS\klelam.sys
15:29:50.0656 5084  klelam - ok
15:29:50.0688 5084  [ 1C1C504316F52184D2E6272F143035A3 ] KLIF            C:\Windows\system32\DRIVERS\klif.sys
15:29:50.0688 5084  KLIF - ok
15:29:50.0719 5084  [ 1B5B924D27399F41DECD1CC6D706429F ] KLIM6           C:\Windows\system32\DRIVERS\klim6.sys
15:29:50.0719 5084  KLIM6 - ok
15:29:50.0719 5084  [ A0B1AE842D7C7F2FDF530A7049CB988D ] klkbdflt        C:\Windows\system32\DRIVERS\klkbdflt.sys
15:29:50.0719 5084  klkbdflt - ok
15:29:50.0734 5084  [ A8FFD74947077D8BD9A80936EC24514D ] klmouflt        C:\Windows\system32\DRIVERS\klmouflt.sys
15:29:50.0734 5084  klmouflt - ok
15:29:50.0734 5084  [ 781EFBB7BDE229C1615892E2A2D98721 ] klwfp           C:\Windows\system32\DRIVERS\klwfp.sys
15:29:50.0734 5084  klwfp - ok
15:29:50.0750 5084  [ 1FCB657B581CC4DF17FD6571F93602DE ] kneps           C:\Windows\system32\DRIVERS\kneps.sys
15:29:50.0750 5084  kneps - ok
15:29:50.0781 5084  [ DFA480F6DED551464F3A5B959F437800 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
15:29:50.0781 5084  KSecDD - ok
15:29:50.0984 5084  [ 127FB0AAD232BAAD2C9BBACD374F4FC5 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
15:29:50.0984 5084  KSecPkg - ok
15:29:51.0000 5084  [ 81492FEEBF2F26455B00EE8DBAE8A1B0 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
15:29:51.0000 5084  ksthunk - ok
15:29:51.0016 5084  [ 5825DBACEDC3812B5CF8D40B997BF210 ] KtmRm           C:\Windows\system32\msdtckrm.dll
15:29:51.0016 5084  KtmRm - ok
15:29:51.0047 5084  [ 256EE31588257E8A555DBFAA13F1908E ] LanmanServer    C:\Windows\system32\srvsvc.dll
15:29:51.0047 5084  LanmanServer - ok
15:29:51.0063 5084  [ 16650912BE5A94B40E0B3B4C39652B56 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:29:51.0063 5084  LanmanWorkstation - ok
15:29:51.0078 5084  [ CEEFD29FC551F289810B0B9381B321DC ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
15:29:51.0078 5084  lltdio - ok
15:29:51.0109 5084  [ BCF53485E0A94722CDE3C4A93CD8EB8C ] lltdsvc         C:\Windows\System32\lltdsvc.dll
15:29:51.0109 5084  lltdsvc - ok
15:29:51.0125 5084  [ 5A2F7F1CBC2E631A497DAD16164E06D2 ] lmhosts         C:\Windows\System32\lmhsvc.dll
15:29:51.0125 5084  lmhosts - ok
15:29:51.0141 5084  [ 022CDD12161B063D7852B1075BF3FFF2 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
15:29:51.0141 5084  LSI_SAS - ok
15:29:51.0156 5084  [ 07AD59D669B996F29F91817F0ECFA34F ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
15:29:51.0172 5084  LSI_SAS2 - ok
15:29:51.0188 5084  [ 216FB796AA4E252ACCE93B1BCB80B5EC ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
15:29:51.0188 5084  LSI_SCSI - ok
15:29:51.0203 5084  [ 5E80530AF37102488EE980B4A92AF99F ] LSI_SSS         C:\Windows\system32\drivers\lsi_sss.sys
15:29:51.0203 5084  LSI_SSS - ok
15:29:51.0219 5084  [ A57BA284F5996FFD32DCDBC41A4657DB ] LSM             C:\Windows\System32\lsm.dll
15:29:51.0219 5084  LSM - ok
15:29:51.0234 5084  [ 2BDC5D711FA61307CE6190D47C956368 ] luafv           C:\Windows\system32\drivers\luafv.sys
15:29:51.0234 5084  luafv - ok
15:29:51.0297 5084  [ FFB2847F8C62220F7013E4492C864127 ] MacDrive9Service C:\Program Files\Mediafour\MacDrive 9\MacDrive9Service.exe
15:29:51.0297 5084  MacDrive9Service - ok
15:29:51.0313 5084  [ 0F98FB90781C225BAEF42504D4862621 ] MDFSYSNT        C:\Windows\system32\drivers\MDFSYSNT.sys
15:29:51.0313 5084  MDFSYSNT - ok
15:29:51.0359 5084  [ 006CFC513360D6FAA62F03402AFE558C ] MDPMGRNT        C:\Windows\system32\DRIVERS\MDPMGRNT.SYS
15:29:51.0359 5084  MDPMGRNT - ok
15:29:51.0375 5084  [ 9B0D829C3BE4E7472DB9DD2B79908E3C ] megasas         C:\Windows\system32\drivers\megasas.sys
15:29:51.0375 5084  megasas - ok
15:29:51.0391 5084  [ ECC3F54C7AFC318271C4F0B4606D8DB0 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
15:29:51.0391 5084  MegaSR - ok
15:29:51.0406 5084  [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64          C:\Windows\System32\drivers\HECIx64.sys
15:29:51.0406 5084  MEIx64 - ok
15:29:51.0422 5084  [ EEE908BE7143FCA48CF0CB87214E2AB8 ] MMCSS           C:\Windows\system32\mmcss.dll
15:29:51.0422 5084  MMCSS - ok
15:29:51.0453 5084  [ 780098AD5DA8A4822E2563984C85EF7B ] Modem           C:\Windows\system32\drivers\modem.sys
15:29:51.0453 5084  Modem - ok
15:29:51.0469 5084  [ EA8EAD3F5B762F889CC7F3966625B48B ] monitor         C:\Windows\System32\drivers\monitor.sys
15:29:51.0469 5084  monitor - ok
15:29:51.0516 5084  [ 618446B98C79776654340CE27C73485E ] mouclass        C:\Windows\System32\drivers\mouclass.sys
15:29:51.0516 5084  mouclass - ok
15:29:51.0531 5084  [ C0ADEBED913295803B579ED288936CBB ] mouhid          C:\Windows\System32\drivers\mouhid.sys
15:29:51.0531 5084  mouhid - ok
15:29:51.0547 5084  [ 89D263DBF08119CE16273991C120D6DD ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
15:29:51.0547 5084  mountmgr - ok
15:29:51.0563 5084  [ 0D1609DD82C7440F5D5BF21A9D4D5C0C ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
15:29:51.0578 5084  mpsdrv - ok
15:29:51.0609 5084  [ 3031573A739DBEE8923851929D0AF423 ] MpsSvc          C:\Windows\system32\mpssvc.dll
15:29:51.0625 5084  MpsSvc - ok
15:29:51.0641 5084  [ 3D70147F55F1EC84EB9139ED7FFE48BC ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
15:29:51.0641 5084  MRxDAV - ok
15:29:51.0672 5084  [ 93179D48066918323628CB016D8C94DC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
15:29:51.0672 5084  mrxsmb - ok
15:29:51.0672 5084  [ 06D5F2FA3C61E8EA91648EA8E9F99FD3 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:29:51.0672 5084  mrxsmb10 - ok
15:29:51.0719 5084  [ 5C7DD2E5759FFCCD2C7341C1B90F2B26 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:29:51.0719 5084  mrxsmb20 - ok
15:29:51.0734 5084  [ 98487487D6B3797CA927E9D7B030AE13 ] MsBridge        C:\Windows\system32\DRIVERS\bridge.sys
15:29:51.0734 5084  MsBridge - ok
15:29:51.0766 5084  [ 4A07458EB4F17573BD39F22029A991C1 ] MSDTC           C:\Windows\System32\msdtc.exe
15:29:51.0766 5084  MSDTC - ok
15:29:51.0781 5084  [ 3886F1F2A4D2900ABAA7E4486BEEE6A2 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
15:29:51.0781 5084  Msfs - ok
15:29:51.0828 5084  [ C32A7A39B960A42BA9D4FBE47213CA03 ] msgpiowin32     C:\Windows\System32\drivers\msgpiowin32.sys
15:29:51.0828 5084  msgpiowin32 - ok
15:29:51.0844 5084  [ D3857A767B91A061B408CCAB02DA4F40 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
15:29:51.0844 5084  mshidkmdf - ok
15:29:51.0844 5084  [ 839B48910FB1E887635C48F3EC11A05E ] mshidumdf       C:\Windows\System32\drivers\mshidumdf.sys
15:29:51.0844 5084  mshidumdf - ok
15:29:51.0859 5084  [ 55C0DB741E3AB7463242B185B1C2997C ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
15:29:51.0859 5084  msisadrv - ok
15:29:51.0875 5084  [ 216C6B035A4BA5560E1255BD8E5BB89F ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
15:29:51.0875 5084  MSiSCSI - ok
15:29:51.0875 5084  msiserver - ok
15:29:51.0891 5084  [ 509809566E49F4411055864EA8D437CD ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
15:29:51.0891 5084  MSKSSRV - ok
15:29:51.0922 5084  [ 63145201D6458E4958E572E7D6FC2604 ] MsLldp          C:\Windows\system32\DRIVERS\mslldp.sys
15:29:51.0938 5084  MsLldp - ok
15:29:51.0938 5084  [ 99D526E803DB6D7FF290FD98B6204641 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
15:29:51.0938 5084  MSPCLOCK - ok
15:29:51.0953 5084  [ 06FA77C3E2A491ADCD704C5E73006269 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
15:29:51.0953 5084  MSPQM - ok
15:29:51.0969 5084  [ E134EC4DE11CF78CB01432D180710D84 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
15:29:51.0969 5084  MsRPC - ok
15:29:52.0000 5084  [ B5AECF12F09DEE97C9FCAA5BA016CE1E ] mssmbios        C:\Windows\System32\drivers\mssmbios.sys
15:29:52.0000 5084  mssmbios - ok
15:29:52.0016 5084  [ 72D66A05E0F99F2528F6C6204FD22AA1 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
15:29:52.0016 5084  MSTEE - ok
15:29:52.0016 5084  [ 8AAAE399FC255FA105D4158CBA289001 ] MTConfig        C:\Windows\System32\drivers\MTConfig.sys
15:29:52.0016 5084  MTConfig - ok
15:29:52.0016 5084  [ 3BCB702F3E6CC622DCAFCAA45D7CDE0A ] Mup             C:\Windows\system32\Drivers\mup.sys
15:29:52.0016 5084  Mup - ok
15:29:52.0031 5084  [ 3A1E095277BBD406CEA8EA6B76950664 ] mvumis          C:\Windows\system32\drivers\mvumis.sys
15:29:52.0031 5084  mvumis - ok
15:29:52.0125 5084  [ 4B18840511D720BA118D3017E8165875 ] napagent        C:\Windows\system32\qagentRT.dll
15:29:52.0125 5084  napagent - ok
15:29:52.0156 5084  [ 43D7388A90A4C6EA346A4D6FF0377479 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
15:29:52.0156 5084  NativeWifiP - ok
15:29:52.0172 5084  [ 6A0C3996DA7DAE6D6939676D786EEEC4 ] NcaSvc          C:\Windows\System32\ncasvc.dll
15:29:52.0172 5084  NcaSvc - ok
15:29:52.0188 5084  [ C982FE4CC91DECE2259F494FCEB4030F ] NcdAutoSetup    C:\Windows\System32\NcdAutoSetup.dll
15:29:52.0188 5084  NcdAutoSetup - ok
15:29:52.0266 5084  [ A10E176F3B2BF83EDE7B5C4658C93B66 ] NDIS            C:\Windows\system32\drivers\ndis.sys
15:29:52.0266 5084  NDIS - ok
15:29:52.0281 5084  [ 39C8A1D9D46F5E83A016BCAB72455284 ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
15:29:52.0281 5084  NdisCap - ok
15:29:52.0297 5084  [ 762941932B7E4C588E48A577BA9D6440 ] NdisImPlatform  C:\Windows\system32\DRIVERS\NdisImPlatform.sys
15:29:52.0297 5084  NdisImPlatform - ok
15:29:52.0344 5084  [ 7A6F8A6D0E01432EBA294EF29CDD0FA7 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
15:29:52.0344 5084  NdisTapi - ok
15:29:52.0360 5084  [ 79AB68BB3FFF974AD4F41FA559F4EC67 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
15:29:52.0360 5084  Ndisuio - ok
15:29:52.0375 5084  [ 62C7DBF4F9301F76CF87D4B9D8F57BF8 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
15:29:52.0375 5084  NdisWan - ok
15:29:52.0375 5084  [ 62C7DBF4F9301F76CF87D4B9D8F57BF8 ] NDISWANLEGACY   C:\Windows\system32\DRIVERS\ndiswan.sys
15:29:52.0375 5084  NDISWANLEGACY - ok
15:29:52.0391 5084  [ 3730942D7DB2F8BB5F84542B7FF6F650 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
15:29:52.0391 5084  NDProxy - ok
15:29:52.0406 5084  [ D3F60A4345FCA9C1BE68AD7D0D6DE770 ] Ndu             C:\Windows\system32\drivers\Ndu.sys
15:29:52.0406 5084  Ndu - ok
15:29:52.0422 5084  [ 7C203A76394F9AE68F69EEE5F9612C4A ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
15:29:52.0422 5084  NetBIOS - ok
15:29:52.0422 5084  [ 7CEC25C682D319D484630B3952C31A11 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
15:29:52.0422 5084  NetBT - ok
15:29:52.0469 5084  [ F702AB6181513303AB0FC8D59E52708B ] Netlogon        C:\Windows\system32\lsass.exe
15:29:52.0469 5084  Netlogon - ok
15:29:52.0485 5084  [ 89519D29CBEC2121CA65CC29C4D345E0 ] Netman          C:\Windows\System32\netman.dll
15:29:52.0500 5084  Netman - ok
15:29:52.0531 5084  [ 79FA9393C67EBBF92A56923592CF7A7C ] netprofm        C:\Windows\System32\netprofmsvc.dll
15:29:52.0531 5084  netprofm - ok
15:29:52.0735 5084  [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:29:52.0735 5084  NetTcpPortSharing - ok
15:29:52.0750 5084  [ 12DD2800E4EEA37DC9AE256AD62423B4 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
15:29:52.0766 5084  nfrd960 - ok
15:29:52.0922 5084  [ 80ABCD4C2DE9FD832477303AE0CA3BE5 ] NlaSvc          C:\Windows\System32\nlasvc.dll
15:29:52.0922 5084  NlaSvc - ok
15:29:52.0938 5084  [ 17E19A742FB30C002F8B43575451DBE1 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
15:29:52.0938 5084  Npfs - ok
15:29:52.0938 5084  [ 8ED299C30792544264E558BEA79F0947 ] npsvctrig       C:\Windows\System32\drivers\npsvctrig.sys
15:29:52.0938 5084  npsvctrig - ok
15:29:52.0953 5084  [ 832B5FDF0B5577713FD7F2465FCD0ACE ] nsi             C:\Windows\system32\nsisvc.dll
15:29:52.0953 5084  nsi - ok
15:29:52.0953 5084  [ 689B3B1E95C70ABF7AFF29F9406EF1E0 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
15:29:52.0953 5084  nsiproxy - ok
15:29:53.0188 5084  [ 76929F4A69E425911A63B407E26C2589 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
15:29:53.0203 5084  Ntfs - ok
15:29:53.0219 5084  [ 4163ADE07DB51843AE31F65B94F5398D ] Null            C:\Windows\system32\drivers\Null.sys
15:29:53.0219 5084  Null - ok
15:29:53.0235 5084  [ 805F0C2B9C07E4C0F74D0EF70E9E827A ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
15:29:53.0250 5084  NVHDA - ok
15:29:53.0516 5084  [ EE6B7B6A54BCAFF516E30B1C15467495 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
15:29:53.0563 5084  nvlddmkm - ok
15:29:53.0656 5084  [ D6D34118263412D3AAA8348A9572B7F2 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
15:29:53.0656 5084  nvraid - ok
15:29:53.0688 5084  [ 27AFC428D1D32ABD04A86763A4EDDEA9 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
15:29:53.0688 5084  nvstor - ok
15:29:54.0797 5084  [ 912602BB857F31BAAD644C993D0E5F8D ] NvStreamSvc     C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
15:29:54.0844 5084  NvStreamSvc - ok
15:29:54.0891 5084  [ 25626309AD2F81D47C829CCB5E46E478 ] nvsvc           C:\Windows\system32\nvvsvc.exe
15:29:54.0891 5084  nvsvc - ok
15:29:54.0953 5084  [ 056EF5C4AF4BD002AEAE417412C8EB71 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
15:29:54.0953 5084  nvUpdatusService - ok
15:29:55.0000 5084  [ 92E4BEE1A9EC0572F794B5BAECC0B599 ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
15:29:55.0000 5084  nvvad_WaveExtensible - ok
15:29:55.0016 5084  [ 051CFB5107BAAE510419BDC41F8C4036 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
15:29:55.0016 5084  nv_agp - ok
15:29:55.0078 5084  [ 5239571EC40C990C6FC4B03685D56777 ] OfficeSvc       C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
15:29:55.0094 5084  OfficeSvc - ok
15:29:55.0203 5084  [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:29:55.0203 5084  ose - ok
15:29:55.0219 5084  [ AB76700D764A342D7475FB8F47CAB18C ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
15:29:55.0219 5084  p2pimsvc - ok
15:29:55.0250 5084  [ 4319FD931DCD796435ECB5DB4A04FBA5 ] p2psvc          C:\Windows\system32\p2psvc.dll
15:29:55.0266 5084  p2psvc - ok
15:29:55.0266 5084  [ 4563DAF8C6A740AD7F501E219BD10766 ] Parport         C:\Windows\System32\drivers\parport.sys
15:29:55.0266 5084  Parport - ok
15:29:55.0297 5084  [ D6ACCF9F2EEEEA711C14EFD976E573F3 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
15:29:55.0297 5084  partmgr - ok
15:29:55.0328 5084  [ 4811D9EC53649105A5A8BEA661B0F936 ] PcaSvc          C:\Windows\System32\pcasvc.dll
15:29:55.0344 5084  PcaSvc - ok
15:29:55.0360 5084  [ 4A003E8F718C1E6A2050CA98CD53E3E2 ] pci             C:\Windows\system32\drivers\pci.sys
15:29:55.0360 5084  pci - ok
15:29:55.0360 5084  [ F9908D274D458220F91E89B54D78D837 ] pciide          C:\Windows\system32\drivers\pciide.sys
15:29:55.0360 5084  pciide - ok
15:29:55.0375 5084  [ 84D19CB6102627932DCB5DFDF89FE269 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
15:29:55.0391 5084  pcmcia - ok
15:29:55.0407 5084  [ CEBBAD5391C2644560C55628A40BFD27 ] pcw             C:\Windows\system32\drivers\pcw.sys
15:29:55.0407 5084  pcw - ok
15:29:55.0438 5084  [ 0698DEDEAD6A00AD0D468C687D830FBF ] pdc             C:\Windows\system32\drivers\pdc.sys
15:29:55.0438 5084  pdc - ok
15:29:55.0469 5084  [ 61FE70659CD43E07F94DA4DC31DEC493 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
15:29:55.0469 5084  PEAUTH - ok
15:29:55.0532 5084  [ DF0D9BDCB600913F40FF125BF8CE1979 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
15:29:55.0547 5084  PeerDistSvc - ok
15:29:55.0641 5084  [ EB88FA19F0EA05DD04BE9C5FFEEFFE1A ] PerfHost        C:\Windows\SysWow64\perfhost.exe
15:29:55.0641 5084  PerfHost - ok
15:29:55.0688 5084  [ 6E84BFF58F7643499277F29DFA2F8C8D ] pla             C:\Windows\system32\pla.dll
15:29:55.0703 5084  pla - ok
15:29:55.0750 5084  [ 799BE46D45D486704CE0F37CA5385262 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
15:29:55.0750 5084  PlugPlay - ok
15:29:55.0766 5084  [ 8E2414E818C26C4A9C70CB2B8567F04F ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
15:29:55.0766 5084  PNRPAutoReg - ok
15:29:55.0782 5084  [ AB76700D764A342D7475FB8F47CAB18C ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
15:29:55.0782 5084  PNRPsvc - ok
15:29:55.0797 5084  [ 520D48ECB54A33821C95EE496A4235AF ] Point64         C:\Windows\System32\drivers\point64.sys
15:29:55.0797 5084  Point64 - ok
15:29:55.0828 5084  [ 0108C8E5176D590F242701EF5A62CC26 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
15:29:55.0828 5084  PolicyAgent - ok
15:29:55.0844 5084  [ F1E067F56373F11EA4B785CAE823740A ] Power           C:\Windows\system32\umpo.dll
15:29:55.0844 5084  Power - ok
15:29:55.0860 5084  [ 362D47E5B4D67270DE4B8606036F4ADD ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
15:29:55.0860 5084  PptpMiniport - ok
15:29:55.0922 5084  [ 9D59831262CAD44E709D695FC9D5E7AB ] PrintNotify     C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll
15:29:55.0922 5084  PrintNotify - ok
15:29:55.0953 5084  [ DD979EB6A7212F60E4AFBE96EDC7AE6D ] Processor       C:\Windows\System32\drivers\processr.sys
15:29:55.0953 5084  Processor - ok
15:29:55.0969 5084  [ 429E8502AD2227CF88F8840FC5BD590D ] ProfSvc         C:\Windows\system32\profsvc.dll
15:29:55.0969 5084  ProfSvc - ok
15:29:55.0985 5084  [ EB8034147D4820CD31BFCB11A2A652DF ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
15:29:55.0985 5084  Psched - ok
15:29:56.0000 5084  [ 0AFBF333B6F87A2F598EAB379AF100B8 ] QWAVE           C:\Windows\system32\qwave.dll
15:29:56.0000 5084  QWAVE - ok
15:29:56.0016 5084  [ 13D47BB0CCA2FC51BD15F8E85C6A078E ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
15:29:56.0016 5084  QWAVEdrv - ok
15:29:56.0016 5084  [ 873C60F8178100557740A832FCE10B5F ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
15:29:56.0016 5084  RasAcd - ok
15:29:56.0032 5084  [ 69B93F623B130976243ECA3D84CC99CA ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
15:29:56.0032 5084  RasAgileVpn - ok
15:29:56.0032 5084  [ 005F6E54C4A2DA4EBF68FB0392CE8BB0 ] RasAuto         C:\Windows\System32\rasauto.dll
15:29:56.0032 5084  RasAuto - ok
15:29:56.0047 5084  [ A14D625C5AEE5FFE0F47D1A1D419FAAE ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
15:29:56.0047 5084  Rasl2tp - ok
15:29:56.0063 5084  [ C923C785A2DE0B396AD6D13ACAFF2DE9 ] RasMan          C:\Windows\System32\rasmans.dll
15:29:56.0063 5084  RasMan - ok
15:29:56.0078 5084  [ 00695B9C2DB6111064499C529E90C042 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
15:29:56.0078 5084  RasPppoe - ok
15:29:56.0094 5084  [ A7F24D8CD1956B0A1FDCB86CC5114DE4 ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
15:29:56.0094 5084  RasSstp - ok
15:29:56.0110 5084  [ CA03D642ACE58E1BA54E4B383F91CD69 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
15:29:56.0110 5084  rdbss - ok
15:29:56.0125 5084  [ CA7DF5EC95D8DE0DD24BE7FF97369F68 ] rdpbus          C:\Windows\System32\drivers\rdpbus.sys
15:29:56.0125 5084  rdpbus - ok
15:29:56.0141 5084  [ B2A3AD74FF2E2FFA73AF2567108231B3 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
15:29:56.0141 5084  RDPDR - ok
15:29:56.0172 5084  [ 57F4787E4602A3FCA719C0A33137C6DA ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
15:29:56.0172 5084  RdpVideoMiniport - ok
15:29:56.0188 5084  [ B3CB0721E81E30419CE7D837EF4EA151 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
15:29:56.0188 5084  RDPWD - ok
15:29:56.0188 5084  [ 62C1F8A0685FE07E998AA296C4F697C4 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
15:29:56.0188 5084  rdyboost - ok
15:29:56.0203 5084  [ 3663CCF243EE0C04E9F6F91ED1737273 ] RemoteAccess    C:\Windows\System32\mprdim.dll
15:29:56.0203 5084  RemoteAccess - ok
15:29:56.0219 5084  [ E80DD61E52EDFFF9DA1ED7260A68855B ] RemoteRegistry  C:\Windows\system32\regsvc.dll
15:29:56.0235 5084  RemoteRegistry - ok
15:29:56.0250 5084  [ 73F2E030B5C24E4E41401B5F0D59E6FD ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
15:29:56.0250 5084  RpcEptMapper - ok
15:29:56.0250 5084  [ 10B21284B3D964AB3DC45490E57D422E ] RpcLocator      C:\Windows\system32\locator.exe
15:29:56.0250 5084  RpcLocator - ok
15:29:56.0266 5084  [ 1EC6E533C954BDDF2A37E7851A7E58FD ] RpcSs           C:\Windows\system32\rpcss.dll
15:29:56.0282 5084  RpcSs - ok
15:29:56.0297 5084  [ E04E770DD198B9399640717145E79EBF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
15:29:56.0297 5084  rspndr - ok
15:29:56.0313 5084  [ 15923AA360F7675D3D43C9669316A0BA ] RTL8168         C:\Windows\system32\DRIVERS\Rt630x64.sys
15:29:56.0328 5084  RTL8168 - ok
15:29:56.0328 5084  [ 752EC7DCD2F96871A3857EEE6AFE965A ] s3cap           C:\Windows\System32\drivers\vms3cap.sys
15:29:56.0328 5084  s3cap - ok
15:29:56.0328 5084  [ F702AB6181513303AB0FC8D59E52708B ] SamSs           C:\Windows\system32\lsass.exe
15:29:56.0328 5084  SamSs - ok
15:29:56.0344 5084  [ 9C7B28CE0D136DB226E24DB3BC817F92 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
15:29:56.0344 5084  sbp2port - ok
15:29:56.0375 5084  [ 14316954FCE79C9DE5A0AFF9D42C83AA ] SCardSvr        C:\Windows\System32\SCardSvr.dll
15:29:56.0375 5084  SCardSvr - ok
15:29:56.0391 5084  [ 5D7733A12756B267FCA021672B26BC9E ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
15:29:56.0391 5084  scfilter - ok
15:29:56.0422 5084  [ ED40ED9A65F3E79A8C43DD50C5FDADBF ] Schedule        C:\Windows\system32\schedsvc.dll
15:29:56.0422 5084  Schedule - ok
15:29:56.0453 5084  [ BAF8F0F55BC300E5F882E521F054E345 ] SCPolicySvc     C:\Windows\System32\certprop.dll
15:29:56.0453 5084  SCPolicySvc - ok
15:29:56.0469 5084  [ 98636FB2973B8876A7F0BECD076CF109 ] sdbus           C:\Windows\System32\drivers\sdbus.sys
15:29:56.0469 5084  sdbus - ok
15:29:56.0469 5084  [ 92968277ED491E4B3DDA361E3952361E ] SDRSVC          C:\Windows\System32\SDRSVC.dll
15:29:56.0469 5084  SDRSVC - ok
15:29:56.0563 5084  [ 95AA9E165C7DE1B64A11E8B18E91E499 ] SDScannerService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
15:29:56.0563 5084  SDScannerService - ok
15:29:56.0594 5084  [ BB107AA9980B0DA4E19A3A90C3BD4460 ] sdstor          C:\Windows\System32\drivers\sdstor.sys
15:29:56.0594 5084  sdstor - ok
15:29:56.0672 5084  [ D31398D4BB4907B517B6E784C2100C4A ] SDUpdateService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
15:29:56.0672 5084  SDUpdateService - ok
15:29:56.0703 5084  [ 6AE8E702D1027A9627DDE2B77BB9992B ] SDWSCService    C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
15:29:56.0703 5084  SDWSCService - ok
15:29:56.0719 5084  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
15:29:56.0719 5084  secdrv - ok
15:29:56.0735 5084  [ CD282626738B6BC92B6E7CD0AAE95B63 ] seclogon        C:\Windows\system32\seclogon.dll
15:29:56.0735 5084  seclogon - ok
15:29:56.0735 5084  [ 9C51620998F0763039DFA6BF68E475ED ] SENS            C:\Windows\System32\sens.dll
15:29:56.0735 5084  SENS - ok
15:29:56.0750 5084  [ 0D50B4B860DAB65241628D04CD33ACAE ] SensrSvc        C:\Windows\system32\sensrsvc.dll
15:29:56.0750 5084  SensrSvc - ok
15:29:56.0766 5084  [ 87C46B239A7EEF30FDFDD5E9BD46130C ] SerCx           C:\Windows\system32\drivers\SerCx.sys
15:29:56.0766 5084  SerCx - ok
15:29:56.0766 5084  [ 7A1F9347C85FD55E39B8A76B3A25C5AD ] Serenum         C:\Windows\System32\drivers\serenum.sys
15:29:56.0766 5084  Serenum - ok
15:29:56.0875 5084  [ F640A0A218BBF857F1D04A15D7D939F6 ] Serial          C:\Windows\System32\drivers\serial.sys
15:29:56.0875 5084  Serial - ok
15:29:56.0875 5084  [ F1A5F56B2620B862CC28FF96A0A6DAAB ] sermouse        C:\Windows\System32\drivers\sermouse.sys
15:29:56.0875 5084  sermouse - ok
15:29:56.0891 5084  [ CB60A60340788C8D6DE2A269D28086AB ] SessionEnv      C:\Windows\system32\sessenv.dll
15:29:56.0891 5084  SessionEnv - ok
15:29:56.0891 5084  [ 7EE65419B29302C795714FF8073969A1 ] sfloppy         C:\Windows\System32\drivers\sfloppy.sys
15:29:56.0907 5084  sfloppy - ok
15:29:56.0922 5084  [ 090AE16F79C8EAD04E6031F863DA85F3 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
15:29:56.0922 5084  SharedAccess - ok
15:29:56.0953 5084  [ A77F3ABE13FCC698511E5DEC7ACEBD5F ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:29:56.0953 5084  ShellHWDetection - ok
15:29:56.0969 5084  [ 2560721D6F16D5B611C36A3A9D28C1B2 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
15:29:56.0969 5084  SiSRaid2 - ok
15:29:57.0000 5084  [ 3AA8FDE1DBF65BB8B88B053529554A0D ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
15:29:57.0000 5084  SiSRaid4 - ok
15:29:57.0016 5084  [ E660156A4588A84305CB772FD2C0DB21 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
15:29:57.0016 5084  SNMPTRAP - ok
15:29:57.0047 5084  [ FD3AF5575B99871BADB94E7699DBCE08 ] spaceport       C:\Windows\system32\drivers\spaceport.sys
15:29:57.0047 5084  spaceport - ok
15:29:57.0063 5084  [ 3D8679C8DF52EB26EB7583A4E0A29202 ] SpbCx           C:\Windows\system32\drivers\SpbCx.sys
15:29:57.0063 5084  SpbCx - ok
15:29:57.0078 5084  [ 3F215BF2D4D8D6756298B25B579772C2 ] Spooler         C:\Windows\System32\spoolsv.exe
15:29:57.0094 5084  Spooler - ok
15:29:57.0188 5084  [ EC84D961501054F87A6878EC5D53388F ] sppsvc          C:\Windows\system32\sppsvc.exe
15:29:57.0204 5084  sppsvc - ok
15:29:57.0219 5084  [ 0F1FCD575A03ABDE13FCA9D0ADE4DDA6 ] srv             C:\Windows\system32\DRIVERS\srv.sys
15:29:57.0219 5084  srv - ok
15:29:57.0250 5084  [ 56218A571ECF8D55E0CDFF8DF2546CF1 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
15:29:57.0250 5084  srv2 - ok
15:29:57.0266 5084  [ 14FC338B80CFF7E04215133B568D15C4 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
15:29:57.0266 5084  srvnet - ok
15:29:57.0282 5084  [ 7A20882D76D4A78240A5AC9F2C2EBA21 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
15:29:57.0297 5084  SSDPSRV - ok
15:29:57.0297 5084  [ D233B16999A8E626F6004BD7814C57EC ] SstpSvc         C:\Windows\system32\sstpsvc.dll
15:29:57.0297 5084  SstpSvc - ok
15:29:58.0094 5084  [ 2222073BE0232E70A397B8302293AA9D ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
15:29:58.0110 5084  Stereo Service - ok
15:29:58.0188 5084  [ 4E85355B94CFCB67C135F6521A4895A7 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
15:29:58.0188 5084  stexstor - ok
15:29:58.0266 5084  [ F38F79114380246B6D40CD53FB2CA28D ] StillCam        C:\Windows\system32\DRIVERS\serscan.sys
15:29:58.0266 5084  StillCam - ok
15:29:58.0344 5084  [ BAC8A721736AECC55A4F71523AEAB65F ] stisvc          C:\Windows\System32\wiaservc.dll
15:29:58.0344 5084  stisvc - ok
15:29:58.0360 5084  [ B240874B2CA0CD02E8CD11E140B14C57 ] storahci        C:\Windows\system32\drivers\storahci.sys
15:29:58.0360 5084  storahci - ok
15:29:58.0375 5084  [ F74DBC95A57B1EE866D3732EB5F79BE2 ] storflt         C:\Windows\system32\DRIVERS\vmstorfl.sys
15:29:58.0375 5084  storflt - ok
15:29:58.0375 5084  [ 5337E138B49ED1F44CCBA4073BC35C20 ] StorSvc         C:\Windows\system32\storsvc.dll
15:29:58.0375 5084  StorSvc - ok
15:29:58.0579 5084  [ 543CD3CC0E05B8D8815E0D4F040B6F59 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
15:29:58.0579 5084  storvsc - ok
15:29:58.0672 5084  [ 1A36AC469140F87CDE62D7F8524E270C ] storvsp         C:\Windows\System32\drivers\storvsp.sys
15:29:58.0672 5084  storvsp - ok
15:29:58.0813 5084  [ 8BC1C1ED6EF9C985A3FAA6A72F41679A ] svsvc           C:\Windows\system32\svsvc.dll
15:29:58.0813 5084  svsvc - ok
15:29:58.0907 5084  [ 4AFD66AAE74FFB5986BC240744DC5FC9 ] swenum          C:\Windows\System32\drivers\swenum.sys
15:29:58.0907 5084  swenum - ok
15:29:58.0969 5084  [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard     C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
15:29:58.0969 5084  SwitchBoard - ok
15:29:58.0985 5084  [ 502F9488540051F3E6C39889ECFA76BB ] swprv           C:\Windows\System32\swprv.dll
15:29:59.0000 5084  swprv - ok
15:29:59.0032 5084  [ A06CB9269D29EE3D0F3F5630ABB660B8 ] SysMain         C:\Windows\system32\sysmain.dll
15:29:59.0032 5084  SysMain - ok
15:29:59.0063 5084  [ 6FB88606C4A71E1BFAF97D63A676C673 ] SystemEventsBroker C:\Windows\System32\SystemEventsBrokerServer.dll
15:29:59.0063 5084  SystemEventsBroker - ok
15:29:59.0079 5084  [ A6C06C45C44AD06C70AF8899AEC15BDC ] TabletInputService C:\Windows\System32\TabSvc.dll
15:29:59.0079 5084  TabletInputService - ok
15:29:59.0079 5084  [ 88B7721AB551C4325036B25A34A2BF7B ] TapiSrv         C:\Windows\System32\tapisrv.dll
15:29:59.0079 5084  TapiSrv - ok
15:29:59.0125 5084  [ 1794C43A000A47D92B3304FC1E3E512A ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
15:29:59.0157 5084  Tcpip - ok
15:29:59.0219 5084  [ 1794C43A000A47D92B3304FC1E3E512A ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
15:29:59.0235 5084  TCPIP6 - ok
15:29:59.0282 5084  [ 8F2A13A5DF99D72FDDE87F502A66F989 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
15:29:59.0297 5084  tcpipreg - ok
15:29:59.0297 5084  [ 73DC722CE5DF26D7638CE2446F2655C7 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
15:29:59.0297 5084  tdx - ok
15:29:59.0313 5084  [ F7C8AB5D8AFFAA318D6A21093D139BF4 ] terminpt        C:\Windows\System32\drivers\terminpt.sys
15:29:59.0313 5084  terminpt - ok
15:29:59.0344 5084  [ 541EE228D0DEF392F7B2DFD885DD021B ] TermService     C:\Windows\System32\termsrv.dll
15:29:59.0344 5084  TermService - ok
15:29:59.0360 5084  [ 519A6F672FFF56B7D8EE8C730CEC8ECD ] Themes          C:\Windows\system32\themeservice.dll
15:29:59.0360 5084  Themes - ok
15:29:59.0375 5084  [ EEE908BE7143FCA48CF0CB87214E2AB8 ] THREADORDER     C:\Windows\system32\mmcss.dll
15:29:59.0391 5084  THREADORDER - ok
15:29:59.0391 5084  [ 4515B9E4140F04FB3907692DF89FCA87 ] TimeBroker      C:\Windows\System32\TimeBrokerServer.dll
15:29:59.0391 5084  TimeBroker - ok
15:29:59.0407 5084  [ 6F0BFF80EE2A5BC841286A51F893CBAD ] TPM             C:\Windows\system32\drivers\tpm.sys
15:29:59.0407 5084  TPM - ok
15:29:59.0422 5084  [ 8C8CF3041B27E7657ADD0EE17F6DBFCA ] TrkWks          C:\Windows\System32\trkwks.dll
15:29:59.0422 5084  TrkWks - ok
15:29:59.0454 5084  [ 8ABBB5CE0C62E0A6D28F32F44B7F865C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:29:59.0454 5084  TrustedInstaller - ok
15:29:59.0469 5084  [ 4E7C5FB10A50435523DE0CAA37DE2BD3 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
15:29:59.0469 5084  TsUsbFlt - ok
15:29:59.0485 5084  [ 16D684A820872EE54F6370703AC0B513 ] TsUsbGD         C:\Windows\System32\drivers\TsUsbGD.sys
15:29:59.0485 5084  TsUsbGD - ok
15:29:59.0500 5084  [ 78C9EE193AC2B4CBDBC48B620314D740 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
15:29:59.0500 5084  tunnel - ok
15:29:59.0500 5084  [ 6D4F67CA56ACA2085DFA2CD89EAFBC1A ] uagp35          C:\Windows\system32\drivers\uagp35.sys
15:29:59.0500 5084  uagp35 - ok
15:29:59.0516 5084  [ 6FD6D03B7752C78712E5CFF29A305026 ] UASPStor        C:\Windows\System32\drivers\uaspstor.sys
15:29:59.0516 5084  UASPStor - ok
15:29:59.0532 5084  [ 4834158B8D06A153FADAB6B85320FBBE ] UCX01000        C:\Windows\System32\drivers\ucx01000.sys
15:29:59.0532 5084  UCX01000 - ok
15:29:59.0547 5084  [ DC5A461591C71AF7F19DC048A81E3F88 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
15:29:59.0547 5084  udfs - ok
15:29:59.0563 5084  [ FB3475FEA1CCB0DAEA1EBE44D0E3BB7D ] UI0Detect       C:\Windows\system32\UI0Detect.exe
15:29:59.0563 5084  UI0Detect - ok
15:29:59.0579 5084  [ 07FEBCDF24FABA0D47B635D85A0FFB7A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
15:29:59.0579 5084  uliagpkx - ok
15:29:59.0594 5084  [ 02CEB3FE6152668A7BA420B93B664860 ] umbus           C:\Windows\System32\drivers\umbus.sys
15:29:59.0594 5084  umbus - ok
15:29:59.0594 5084  [ 991EE6B5FC41EAEF99C8AF5B92F2CA09 ] UmPass          C:\Windows\System32\drivers\umpass.sys
15:29:59.0594 5084  UmPass - ok
15:29:59.0610 5084  [ 43FEFB040A0CC30F795FBF544169594D ] UmRdpService    C:\Windows\System32\umrdp.dll
15:29:59.0610 5084  UmRdpService - ok
15:29:59.0626 5084  [ 14D22C411854AA2560AFC94CD2D5E61F ] upnphost        C:\Windows\System32\upnphost.dll
15:29:59.0626 5084  upnphost - ok
15:29:59.0657 5084  [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64       C:\Windows\System32\Drivers\usbaapl64.sys
15:29:59.0657 5084  USBAAPL64 - ok
15:29:59.0688 5084  [ 3FBE0784E42E7BA93FCC5201D2BAFE23 ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
15:29:59.0688 5084  usbaudio - ok
15:29:59.0704 5084  [ 2AF9F0E16D75B8F783A1ACE74EF51C9B ] usbccgp         C:\Windows\System32\drivers\usbccgp.sys
15:29:59.0704 5084  usbccgp - ok
15:29:59.0704 5084  [ B395B62B62F28106218FA6FB17F4C797 ] usbcir          C:\Windows\System32\drivers\usbcir.sys
15:29:59.0704 5084  usbcir - ok
15:29:59.0719 5084  [ 52F267AEE8CA5AA5CEB88C6A71EE1E86 ] usbehci         C:\Windows\System32\drivers\usbehci.sys
15:29:59.0719 5084  usbehci - ok
15:29:59.0735 5084  [ ADBF89B8E0BB372FEFE2E4B84E1E20AE ] usbhub          C:\Windows\System32\drivers\usbhub.sys
15:29:59.0735 5084  usbhub - ok
15:29:59.0782 5084  [ EA040D4C6C94F315A85F3D0EAA884B37 ] USBHUB3         C:\Windows\System32\drivers\UsbHub3.sys
15:29:59.0782 5084  USBHUB3 - ok
15:29:59.0813 5084  [ 325F6179009B5A7F6118951A5BA422AB ] usbohci         C:\Windows\System32\drivers\usbohci.sys
15:29:59.0813 5084  usbohci - ok
15:29:59.0829 5084  [ BA3ABE0CD1C14B3295BAD0F076B84CAC ] usbprint        C:\Windows\System32\drivers\usbprint.sys
15:29:59.0829 5084  usbprint - ok
15:29:59.0829 5084  [ F77177F6C95B2116EE7AD23B5EF57007 ] USBSTOR         C:\Windows\System32\drivers\USBSTOR.SYS
15:29:59.0829 5084  USBSTOR - ok
15:29:59.0844 5084  [ D25EF4A6EC244C5DE85D88A05B7C149D ] usbuhci         C:\Windows\System32\drivers\usbuhci.sys
15:29:59.0844 5084  usbuhci - ok
15:29:59.0860 5084  [ 1ADCF0A490C2845637B334626669CD6F ] USBXHCI         C:\Windows\System32\drivers\USBXHCI.SYS
15:29:59.0876 5084  USBXHCI - ok
15:29:59.0891 5084  [ F702AB6181513303AB0FC8D59E52708B ] VaultSvc        C:\Windows\system32\lsass.exe
15:29:59.0891 5084  VaultSvc - ok
15:29:59.0907 5084  [ BACECBFF9C97F7627A60B0E0F1FE7EE8 ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
15:29:59.0907 5084  vdrvroot - ok
15:29:59.0938 5084  [ 1B4488988E5E7512E6C5CD1255E9E973 ] vds             C:\Windows\System32\vds.exe
15:29:59.0954 5084  vds - ok
15:30:00.0438 5084  [ 74FA2D4368DE6F6CE14393EDF1F342BE ] VerifierExt     C:\Windows\system32\drivers\VerifierExt.sys
15:30:00.0438 5084  VerifierExt - ok
15:30:00.0454 5084  [ 500BE6B2E49883720D0AE8BB859ED7A3 ] vhdmp           C:\Windows\System32\drivers\vhdmp.sys
15:30:00.0469 5084  vhdmp - ok
15:30:00.0469 5084  [ F5B4A14B00E89250C50982AC762DDD1D ] viaide          C:\Windows\system32\drivers\viaide.sys
15:30:00.0469 5084  viaide - ok
15:30:00.0501 5084  [ 0E43886F01C85B47BA0A3157274BCF59 ] Vid             C:\Windows\System32\drivers\Vid.sys
15:30:00.0501 5084  Vid - ok
15:30:00.0516 5084  [ 78DB50F7329F6D1311658DABFFFC8BE0 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
15:30:00.0516 5084  vmbus - ok
15:30:00.0516 5084  [ ECFEE2F2BA3932C7880D1A8F67D68F91 ] VMBusHID        C:\Windows\System32\drivers\VMBusHID.sys
15:30:00.0516 5084  VMBusHID - ok
15:30:00.0547 5084  [ B4F432A51826FFC66F4DF72A83E8E4B1 ] vmbusr          C:\Windows\System32\drivers\vmbusr.sys
15:30:00.0547 5084  vmbusr - ok
15:30:00.0579 5084  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicheartbeat   C:\Windows\System32\ICSvc.dll
15:30:00.0579 5084  vmicheartbeat - ok
15:30:00.0579 5084  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmickvpexchange C:\Windows\System32\ICSvc.dll
15:30:00.0594 5084  vmickvpexchange - ok
15:30:00.0594 5084  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicrdv         C:\Windows\System32\ICSvc.dll
15:30:00.0610 5084  vmicrdv - ok
15:30:00.0610 5084  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicshutdown    C:\Windows\System32\ICSvc.dll
15:30:00.0610 5084  vmicshutdown - ok
15:30:00.0626 5084  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmictimesync    C:\Windows\System32\ICSvc.dll
15:30:00.0626 5084  vmictimesync - ok
15:30:00.0626 5084  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicvss         C:\Windows\System32\ICSvc.dll
15:30:00.0641 5084  vmicvss - ok
15:30:00.0657 5084  [ CB60FAAED8B49B812EBBF77EB87D9B18 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
15:30:00.0657 5084  volmgr - ok
15:30:00.0672 5084  [ A74101DA9809251BCD0E5A26BAE0F824 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
15:30:00.0672 5084  volmgrx - ok
15:30:00.0985 5084  [ 78A5BBA3819FFFC62FFEC3E2220D102D ] volsnap         C:\Windows\system32\drivers\volsnap.sys
15:30:00.0985 5084  volsnap - ok
15:30:01.0110 5084  [ A8DA1C1B52ECEA3726DEBED4FF1B700D ] vpci            C:\Windows\System32\drivers\vpci.sys
15:30:01.0110 5084  vpci - ok
15:30:01.0188 5084  [ 0190AFFF28F600461C0164353CC7EE27 ] vpcivsp         C:\Windows\System32\drivers\vpcivsp.sys
15:30:01.0188 5084  vpcivsp - ok
15:30:01.0204 5084  [ 38A60CD9C009C55C6D3B5586F8E6A353 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
15:30:01.0204 5084  vsmraid - ok
15:30:01.0251 5084  [ D0C69E44BC1E1D4AD290FD84104623D8 ] VSS             C:\Windows\system32\vssvc.exe
15:30:01.0266 5084  VSS - ok
15:30:01.0282 5084  [ A0F6FE0FC2F647C22BBFD6BD4249DBCC ] VSTXRAID        C:\Windows\system32\drivers\vstxraid.sys
15:30:01.0282 5084  VSTXRAID - ok
15:30:01.0282 5084  [ 62460A45435A26A334907E3F2EA45611 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
15:30:01.0282 5084  vwifibus - ok
15:30:01.0297 5084  [ F690B6EEAA94576727B24376D7ED3601 ] W32Time         C:\Windows\system32\w32time.dll
15:30:01.0297 5084  W32Time - ok
15:30:01.0313 5084  [ 6B806E893714019969E2B50D7EF6A4D9 ] WacomPen        C:\Windows\System32\drivers\wacompen.sys
15:30:01.0313 5084  WacomPen - ok
15:30:01.0438 5084  [ 61F6972FF9AC9A8D0B4D62076DC30051 ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
15:30:01.0438 5084  Wanarp - ok
15:30:01.0438 5084  [ 61F6972FF9AC9A8D0B4D62076DC30051 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
15:30:01.0438 5084  Wanarpv6 - ok
15:30:01.0485 5084  [ 42DF22F8C448E7CD219F6D63743505E2 ] wbengine        C:\Windows\system32\wbengine.exe
15:30:01.0501 5084  wbengine - ok
15:30:01.0547 5084  [ 31D37B2F6069C631EF0557D322924812 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
15:30:01.0547 5084  WbioSrvc - ok
15:30:01.0563 5084  [ D9C1E82651BF19C6FF69CEC6FD400124 ] Wcmsvc          C:\Windows\System32\wcmsvc.dll
15:30:01.0563 5084  Wcmsvc - ok
15:30:01.0594 5084  [ 5B5FEAB51172F5513C2CF7B39CFA6A01 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
15:30:01.0594 5084  wcncsvc - ok
15:30:01.0594 5084  [ E19556D414332E2BEBA1F368229006B4 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:30:01.0594 5084  WcsPlugInService - ok
15:30:01.0610 5084  [ B3A4D918DAB90505B6BC7B70632913CB ] Wd              C:\Windows\system32\drivers\wd.sys
15:30:01.0610 5084  Wd - ok
15:30:01.0610 5084  [ FD47DF026B32969B8A68721A0243E8EE ] WdBoot          C:\Windows\system32\drivers\WdBoot.sys
15:30:01.0610 5084  WdBoot - ok
15:30:01.0672 5084  [ 2ADC985B85A71BD7D99712EC0C24358B ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
15:30:01.0672 5084  Wdf01000 - ok
15:30:01.0688 5084  [ 5F425D842DD6ADE9F95A51A0616AFAD7 ] WdFilter        C:\Windows\system32\drivers\WdFilter.sys
15:30:01.0688 5084  WdFilter - ok
15:30:01.0704 5084  [ 240FC332484572227CD1DF82407F33E5 ] WdiServiceHost  C:\Windows\system32\wdi.dll
15:30:01.0704 5084  WdiServiceHost - ok
15:30:01.0719 5084  [ 240FC332484572227CD1DF82407F33E5 ] WdiSystemHost   C:\Windows\system32\wdi.dll
15:30:01.0719 5084  WdiSystemHost - ok
15:30:01.0719 5084  [ F2002DA5E6B78C15B2CD48CFF8F0FBB6 ] WebClient       C:\Windows\System32\webclnt.dll
15:30:01.0719 5084  WebClient - ok
15:30:01.0751 5084  [ 35FD720943D4FCD75C3275BF062FF140 ] Wecsvc          C:\Windows\system32\wecsvc.dll
15:30:01.0751 5084  Wecsvc - ok
15:30:01.0797 5084  [ 4D2612E3C462B68F499D840B1133263E ] wercplsupport   C:\Windows\System32\wercplsupport.dll
15:30:01.0797 5084  wercplsupport - ok
15:30:01.0813 5084  [ 5F70EBFC1F75B487DE79501E3CCBDB54 ] WerSvc          C:\Windows\System32\WerSvc.dll
15:30:01.0813 5084  WerSvc - ok
15:30:01.0813 5084  [ FE762D3498719C3A23471BBA62F747B4 ] WFPLWFS         C:\Windows\system32\DRIVERS\wfplwfs.sys
15:30:01.0813 5084  WFPLWFS - ok
15:30:01.0829 5084  [ 60E0C220593DA4F7C289CB909D2DBAE0 ] WiaRpc          C:\Windows\System32\wiarpc.dll
15:30:01.0829 5084  WiaRpc - ok
15:30:01.0844 5084  [ A3C7624A42A3447EF5EDD1ED37FE4E60 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
15:30:01.0844 5084  WIMMount - ok
15:30:01.0860 5084  WinDefend - ok
15:30:01.0891 5084  [ 7911470B6018059A880469A63B65700A ] WinHttpAutoProxySvc C:\Windows\system32\winhttp.dll
15:30:01.0891 5084  WinHttpAutoProxySvc - ok
15:30:01.0954 5084  [ 3D6B518B71C75C8FA4115A33615C107A ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
15:30:01.0954 5084  Winmgmt - ok
15:30:02.0016 5084  [ 8E212A627F33F6FC3B5F3BB47212F66E ] WinRM           C:\Windows\system32\WsmSvc.dll
15:30:02.0048 5084  WinRM - ok
15:30:02.0141 5084  [ BB20956C424531003F7FA6CD36F11D5D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
15:30:02.0141 5084  WinUsb - ok
15:30:02.0173 5084  [ 6351724B8FA0255C2DBD970297F00B93 ] WlanSvc         C:\Windows\System32\wlansvc.dll
15:30:02.0188 5084  WlanSvc - ok
15:30:02.0282 5084  [ B330CE47FB74A6BE9A3FFFF4B3F64D9B ] wlidsvc         C:\Windows\system32\wlidsvc.dll
15:30:02.0298 5084  wlidsvc - ok
15:30:02.0344 5084  [ E2A596CACFC6504306CDB7B593B90084 ] WmiAcpi         C:\Windows\System32\drivers\wmiacpi.sys
15:30:02.0344 5084  WmiAcpi - ok
15:30:02.0360 5084  [ D113499052C5E541906B727779F0F959 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
15:30:02.0360 5084  wmiApSrv - ok
15:30:02.0376 5084  WMPNetworkSvc - ok
15:30:02.0391 5084  [ C6FF953D5D6F2EAE3B8883474D5076B3 ] wpcfltr         C:\Windows\system32\DRIVERS\wpcfltr.sys
15:30:02.0391 5084  wpcfltr - ok
15:30:02.0423 5084  [ A6ED163169876BFD2437E872FE2F1509 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
15:30:02.0423 5084  WPCSvc - ok
15:30:02.0438 5084  [ 3013658A4D327854BEEC4A08D9655194 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
15:30:02.0438 5084  WPDBusEnum - ok
15:30:02.0454 5084  [ 0346CAFC181C91C6E2330332EB332ED6 ] WpdUpFltr       C:\Windows\system32\drivers\WpdUpFltr.sys
15:30:02.0454 5084  WpdUpFltr - ok
15:30:02.0469 5084  [ BC8B5CB336E63BB25EAD1CE8EDD34B81 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
15:30:02.0469 5084  ws2ifsl - ok
15:30:02.0485 5084  [ 012CFE7F0F95266F554EE3B91EE2128A ] wscsvc          C:\Windows\System32\wscsvc.dll
15:30:02.0501 5084  wscsvc - ok
15:30:02.0516 5084  [ 74EFDA0526862C3D8D01A776182798EA ] WSDPrintDevice  C:\Windows\System32\drivers\WSDPrint.sys
15:30:02.0516 5084  WSDPrintDevice - ok
15:30:02.0532 5084  WSearch - ok
15:30:02.0594 5084  [ C10BFFEE7E0D7A1366E84F251796C51D ] WSService       C:\Windows\System32\WSService.dll
15:30:02.0610 5084  WSService - ok
15:30:03.0094 5084  [ BE302BABE45EC05995F8DC66E37BBB3D ] wuauserv        C:\Windows\system32\wuaueng.dll
15:30:03.0126 5084  wuauserv - ok
15:30:03.0126 5084  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
15:30:03.0126 5084  WudfPf - ok
15:30:03.0126 5084  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\System32\drivers\WUDFRd.sys
15:30:03.0126 5084  WUDFRd - ok
15:30:03.0126 5084  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFSensorLP    C:\Windows\system32\DRIVERS\WUDFRd.sys
15:30:03.0126 5084  WUDFSensorLP - ok
15:30:03.0157 5084  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
15:30:03.0157 5084  wudfsvc - ok
15:30:03.0157 5084  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFWpdFs       C:\Windows\system32\DRIVERS\WUDFRd.sys
15:30:03.0157 5084  WUDFWpdFs - ok
15:30:03.0157 5084  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFWpdMtp      C:\Windows\system32\DRIVERS\WUDFRd.sys
15:30:03.0157 5084  WUDFWpdMtp - ok
15:30:03.0188 5084  [ FBB9B00D7A5756B0AA8E10BF7619E604 ] WwanSvc         C:\Windows\System32\wwansvc.dll
15:30:03.0204 5084  WwanSvc - ok
15:30:03.0204 5084  ================ Scan global ===============================
15:30:03.0235 5084  [ DDC1AFBF9DDF880CE9BD3896114D8DED ] C:\Windows\system32\basesrv.dll
15:30:03.0251 5084  [ E9343076AE704D20BB0D01F3AF3EFFEF ] C:\Windows\system32\winsrv.dll
15:30:03.0282 5084  [ BD7C6949984D19AAA609896B675E7357 ] C:\Windows\system32\sxssrv.dll
15:30:03.0282 5084  [ 8F226143046435C75C033B0C52E90FFE ] C:\Windows\system32\services.exe
15:30:03.0298 5084  [Global] - ok
15:30:03.0298 5084  ================ Scan MBR ==================================
15:30:03.0298 5084  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
15:30:03.0313 5084  \Device\Harddisk0\DR0 - ok
15:30:03.0376 5084  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
15:30:03.0673 5084  \Device\Harddisk1\DR1 - ok
15:30:03.0673 5084  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk2\DR2
15:30:03.0688 5084  \Device\Harddisk2\DR2 - ok
15:30:03.0719 5084  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk3\DR3
15:30:03.0876 5084  \Device\Harddisk3\DR3 - ok
15:30:03.0907 5084  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk4\DR4
15:30:04.0048 5084  \Device\Harddisk4\DR4 - ok
15:30:04.0048 5084  ================ Scan VBR ==================================
15:30:04.0063 5084  [ C5F68F618B374A73674061D8ECB5A540 ] \Device\Harddisk0\DR0\Partition1
15:30:04.0063 5084  \Device\Harddisk0\DR0\Partition1 - ok
15:30:04.0173 5084  [ 4104AEF3312FEEFCAFEFA90C150E5D0E ] \Device\Harddisk1\DR1\Partition1
15:30:04.0188 5084  \Device\Harddisk1\DR1\Partition1 - ok
15:30:04.0204 5084  [ 908DB6E85A2D0E731FFF74193E8BEFEF ] \Device\Harddisk1\DR1\Partition2
15:30:04.0204 5084  \Device\Harddisk1\DR1\Partition2 - ok
15:30:04.0219 5084  [ ED432995FCAB4B017BF000760005765C ] \Device\Harddisk2\DR2\Partition1
15:30:04.0219 5084  \Device\Harddisk2\DR2\Partition1 - ok
15:30:04.0219 5084  [ B5B1EAD7D0B619C58E1AAD3B318504F3 ] \Device\Harddisk2\DR2\Partition2
15:30:04.0219 5084  \Device\Harddisk2\DR2\Partition2 - ok
15:30:04.0219 5084  [ C8B968B241E163416654F307B808A05E ] \Device\Harddisk4\DR4\Partition1
15:30:04.0219 5084  \Device\Harddisk4\DR4\Partition1 - ok
15:30:04.0219 5084  ============================================================
15:30:04.0219 5084  Scan finished
15:30:04.0219 5084  ============================================================
15:30:04.0235 3288  Detected object count: 0
15:30:04.0235 3288  Actual detected object count: 0
 

 

ESET
 
C:\Users\Bruno Colli\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0010c0 probably a variant of Win32/Injector.AIML trojan deleted - quarantined
I:\BRUNNO-PC\Backup Set 2013-06-27 112326\Backup Files 2013-06-27 112326\Backup files 58.zip Win32/InstallCore.BL application deleted - quarantined

Attached Files


Edited by hamluis, 30 August 2013 - 05:27 AM.
Deleted later dupe - Hamluis.


BC AdBot (Login to Remove)

 


#2 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,600 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:45 AM

Posted 03 September 2013 - 06:10 PM

Hello and welcome to Bleeping Computer!

I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

To help Bleeping Computer better assist you please perform the following steps:

***************************************************

step1.gif In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.

CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/506062 <<< CLICK THIS LINK



If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.

***************************************************

step2.gifIf you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of this page). In that reply, please include the following information:

  • If you have not done so already, include a clear description of the problems you're having, along with any steps you may have performed so far.
  • A new DDS log. For your convenience, you will find the instructions for generating these logs repeated at the bottom of this post.
    • Please do this even if you have previously posted logs for us.
    • If you were unable to produce the logs originally please try once more.
    • If you are unable to create a log please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
    • If you are unsure about any of these characteristics just post what you can and we will guide you.
  • Please tell us if you have your original Windows CD/DVD available.
  • Upon completing the above steps and posting a reply, another staff member will review your topic and do their best to resolve your issues.

Thank you for your patience, and again sorry for the delay.

***************************************************

We need to see some information about what is happening in your machine. Please perform the following scan again:

  • Download DDS by sUBs from the following link if you no longer have it available and save it to your destop.

    DDS.com Download Link
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explanation about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.
Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

Information on A/V control can be found HERE.

As I am just a silly little program running on the BleepingComputer.com servers, please do not send me private messages as I do not know how to read and reply to them! Thanks!

#3 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,600 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:45 AM

Posted 08 September 2013 - 06:15 PM

Hello again!

I haven't heard from you in 5 days. Therefore, I am going to assume that you no longer need our help, and close this topic.

If you do still need help, please send a Private Message to any Moderator within the next five days. Be sure to include a link to your topic in your Private Message.

Thank you for using Bleeping Computer, and have a great day!




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users