Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Unsigned kernel drivers


  • This topic is locked This topic is locked
2 replies to this topic

#1 ihackedthegibson

ihackedthegibson

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:03:39 AM

Posted 09 October 2013 - 07:03 PM

Here's the most recent dds log:

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 10.0.9200.16686
Run by notnick at 16:53:17 on 2013-10-09
Microsoft Windows 7 Professional   6.1.7601.1.1252.1.1033.18.8191.6352 [GMT -7:00]
.
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
C:\Program Files\AMD\CodeAnalyst\bin\CALoadService.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k NetworkServiceAndNoImpersonation
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\SysWow64\perfhost.exe
C:\Windows\system32\locator.exe
C:\Windows\System32\snmptrap.exe
C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\taskhost.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\Steam\Steam.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Common Files\Steam\SteamService.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
C:\Users\notnick\Downloads\RogueKillerX64.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\notepad.exe
D:\Downloads\unhide.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uRun: [Steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent
uRun: [uTorrent] "C:\Users\notnick\AppData\Roaming\uTorrent\uTorrent.exe"  /MINIMIZED
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
uPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoDrives = dword:0
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{454E2221-692B-4039-8560-7AA9D5DDF8A2} : DHCPNameServer = 192.168.1.1
SSODL: WebCheck - <orphaned>
x64-SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\notnick\AppData\Roaming\Mozilla\Firefox\Profiles\330lt1bq.default-1381315243383\
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll
FF - ExtSQL: 2013-10-09 05:49; {b9db16a4-6edc-47ec-a1f4-b86292ed211d}; C:\Users\notnick\AppData\Roaming\Mozilla\Firefox\Profiles\330lt1bq.default-1381315243383\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
FF - ExtSQL: 2013-10-09 05:50; {d91a2be6-3b56-4dfb-97f5-5e48fe3ed473}; C:\Users\notnick\AppData\Roaming\Mozilla\Firefox\Profiles\330lt1bq.default-1381315243383\extensions\{d91a2be6-3b56-4dfb-97f5-5e48fe3ed473}
FF - ExtSQL: 2013-10-09 06:11; {DDC359D1-844A-42a7-9AA1-88A850A938A8}; C:\Users\notnick\AppData\Roaming\Mozilla\Firefox\Profiles\330lt1bq.default-1381315243383\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi
FF - ExtSQL: 2013-10-09 11:54; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; C:\Users\notnick\AppData\Roaming\Mozilla\Firefox\Profiles\330lt1bq.default-1381315243383\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
.
============= SERVICES / DRIVERS ===============
.
R1 Ext2Fsd;Linux ext2 file system driver;C:\Windows\System32\drivers\ext2fsd.sys [2013-8-22 769816]
R2 AMD FUEL Service;AMD FUEL Service;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-9-5 344064]
R2 CALoadService;CALoadService;C:\Program Files\AMD\CodeAnalyst\bin\CALoadService.exe [2012-6-28 66048]
R2 StorSvc;Storage Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 27136]
R3 amdiox64;AMD IO Driver;C:\Windows\System32\drivers\amdiox64.sys [2013-8-17 46136]
R3 CAPROF;CAPROF;C:\Windows\System32\drivers\caprof.sys [2012-6-28 61688]
R3 CAUTILITY;CAUTILITY;C:\Windows\System32\drivers\CaUtility.sys [2012-6-28 16120]
R3 PCORE;PCORE;C:\Windows\System32\drivers\pcore.sys [2012-6-28 45816]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2009-6-10 187392]
S2 AODDriver4.2.0;AODDriver4.2.0;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys [2013-6-19 34816]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-8-13 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-8-13 124088]
S3 dmvsc;dmvsc;C:\Windows\System32\drivers\dmvsc.sys [2011-4-12 71168]
S3 RTCore64;RTCore64;C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [2013-1-22 13368]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2010-11-20 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2010-11-20 31232]
S3 VsEtwService120;Visual Studio ETW Event Collection Service;D:\New folder (5)\Common7\Packages\Debugger\Services\VsEtwService.exe [2013-8-27 87136]
S4 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2012-7-27 239616]
S4 DirMngr;DirMngr;C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe [2013-8-20 218112]
.
=============== Created Last 30 ================
.
2013-10-09 23:29:49    --------    d-sh--w-    C:\$RECYCLE.BIN
2013-10-09 23:02:31    --------    d-----w-    C:\Users\notnick\AppData\Roaming\Profiles
2013-10-09 23:02:31    --------    d-----w-    C:\Users\notnick\AppData\Roaming\Crash Reports
2013-10-09 23:02:31    --------    d-----w-    C:\Users\notnick\AppData\Local\Profiles
2013-10-09 10:21:38    829264    ----a-w-    C:\Users\notnick\msvcr100.dll
2013-10-09 10:21:38    80    ----a-w-    C:\Users\notnick\miner.bat
2013-10-09 10:21:38    608080    ----a-w-    C:\Users\notnick\msvcp100.dll
2013-10-09 10:21:38    557568    ----a-w-    C:\Users\notnick\mpir.dll
2013-10-09 10:21:38    403456    ----a-w-    C:\Users\notnick\jhPrimeminer-T12.1.exe
2013-10-09 10:21:38    403456    ----a-w-    C:\Users\notnick\jhPrimeminer-T12.1-AVX.exe
2013-10-01 05:26:51    --------    d-----w-    C:\Users\notnick\AppData\Roaming\CodeBlocks
2013-10-01 05:26:25    --------    d-----w-    C:\Program Files (x86)\CodeBlocks
2013-10-01 04:54:19    --------    d-----w-    C:\TDM-GCC-64
2013-09-30 14:03:29    --------    d-----w-    C:\Users\notnick\AppData\Roaming\Wireshark
2013-09-30 13:29:43    --------    d-----w-    C:\Users\notnick\AppData\Roaming\AMD
2013-09-30 11:56:43    --------    d-----w-    C:\Windows\rescache
2013-09-30 03:21:59    --------    d-----w-    C:\Program Files\AMD
2013-09-30 03:21:59    --------    d-----w-    C:\Program Files (x86)\AMD
2013-09-30 03:21:01    --------    d-----w-    C:\Users\notnick\AppData\Local\Downloaded Installations
2013-09-30 03:13:24    --------    d-----w-    C:\Users\notnick\AppData\Roaming\Microsoft FxCop
2013-09-30 02:32:46    --------    d-----w-    C:\Users\notnick\AppData\Roaming\NuGet
2013-09-30 00:55:18    1713632    ----a-w-    C:\ProgramData\Microsoft\WDExpress\12.0\1033\ResourceCache.dll
2013-09-30 00:54:50    --------    d-----w-    C:\ProgramData\NuGet
2013-09-30 00:54:50    --------    d-----w-    C:\Program Files (x86)\NuGet
2013-09-30 00:53:05    --------    d-----w-    C:\Program Files (x86)\Common Files\Merge Modules
2013-09-30 00:51:15    --------    d-----w-    C:\Program Files (x86)\Windows Kits
2013-09-30 00:51:15    --------    d-----w-    C:\Program Files (x86)\Common Files\Microsoft
2013-09-30 00:50:39    --------    d-----w-    C:\Program Files (x86)\Microsoft Help Viewer
2013-09-30 00:50:08    --------    d-----w-    C:\Windows\SysWow64\1033
2013-09-30 00:50:08    --------    d-----w-    C:\Windows\System32\1033
2013-09-30 00:50:02    --------    d-----w-    C:\Program Files\Microsoft SQL Server
2013-09-30 00:50:02    --------    d-----w-    C:\Program Files (x86)\Microsoft SQL Server
2013-09-30 00:41:34    --------    d-----w-    C:\Program Files\Microsoft SQL Server Compact Edition
2013-09-30 00:41:31    --------    d-----w-    C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2013-09-30 00:29:13    --------    d-----w-    C:\Windows\Migration
2013-09-30 00:26:02    --------    d-----w-    C:\ProgramData\regid.1991-06.com.microsoft
2013-09-29 22:19:52    --------    d-----w-    C:\New Folder (2)
2013-09-29 14:22:47    --------    d-----w-    C:\Users\notnick\AppData\Roaming\PeerNetworking
2013-09-29 14:17:25    --------    dc----w-    C:\Users\notnick\AppData\Local\MigWiz
2013-09-29 11:44:14    --------    d--h--w-    C:\Windows\msdownld.tmp
2013-09-29 11:36:30    --------    d-----w-    C:\jhPrimeminer-master
2013-09-29 09:33:43    --------    d-----w-    C:\Windows\System32\MRT
2013-09-29 09:27:06    9728    ----a-w-    C:\Windows\System32\Wdfres.dll
2013-09-29 09:27:06    785512    ----a-w-    C:\Windows\System32\drivers\Wdf01000.sys
2013-09-29 09:27:06    54376    ----a-w-    C:\Windows\System32\drivers\WdfLdr.sys
2013-09-29 09:27:06    2560    ----a-w-    C:\Windows\System32\drivers\en-US\wdf01000.sys.mui
2013-09-29 09:09:55    34304    ----a-w-    C:\Windows\SysWow64\atmlib.dll
2013-09-29 09:09:54    70656    ----a-w-    C:\Windows\SysWow64\fontsub.dll
2013-09-29 09:09:54    46080    ----a-w-    C:\Windows\System32\atmlib.dll
2013-09-29 09:09:54    367616    ----a-w-    C:\Windows\System32\atmfd.dll
2013-09-29 09:09:54    295424    ----a-w-    C:\Windows\SysWow64\atmfd.dll
2013-09-29 09:09:54    100864    ----a-w-    C:\Windows\System32\fontsub.dll
2013-09-29 09:09:00    87040    ----a-w-    C:\Windows\System32\drivers\WUDFPf.sys
2013-09-29 09:09:00    84992    ----a-w-    C:\Windows\System32\WUDFSvc.dll
2013-09-29 09:09:00    198656    ----a-w-    C:\Windows\System32\drivers\WUDFRd.sys
2013-09-29 09:09:00    194048    ----a-w-    C:\Windows\System32\WUDFPlatform.dll
2013-09-29 09:08:59    744448    ----a-w-    C:\Windows\System32\WUDFx.dll
2013-09-29 09:08:59    45056    ----a-w-    C:\Windows\System32\WUDFCoinstaller.dll
2013-09-29 09:08:59    229888    ----a-w-    C:\Windows\System32\WUDFHost.exe
2013-09-29 09:06:30    81408    ----a-w-    C:\Windows\System32\imagehlp.dll
2013-09-29 09:06:30    5120    ----a-w-    C:\Windows\SysWow64\wmi.dll
2013-09-29 09:06:30    5120    ----a-w-    C:\Windows\System32\wmi.dll
2013-09-29 09:06:30    23408    ----a-w-    C:\Windows\System32\drivers\fs_rec.sys
2013-09-29 09:06:30    159232    ----a-w-    C:\Windows\SysWow64\imagehlp.dll
2013-09-29 09:01:57    751104    ----a-w-    C:\Windows\System32\win32spl.dll
2013-09-29 09:00:47    663552    ----a-w-    C:\Windows\SysWow64\rpcrt4.dll
2013-09-29 08:59:44    1395712    ----a-w-    C:\Windows\System32\mfc42.dll
2013-09-29 08:58:59    976896    ----a-w-    C:\Windows\System32\inetcomm.dll
2013-09-29 08:47:38    77312    ----a-w-    C:\Windows\System32\packager.dll
2013-09-29 08:47:38    67072    ----a-w-    C:\Windows\SysWow64\packager.dll
2013-09-29 08:44:23    2622464    ----a-w-    C:\Windows\System32\wucltux.dll
2013-09-29 08:44:19    99840    ----a-w-    C:\Windows\System32\wudriver.dll
2013-09-29 08:44:16    36864    ----a-w-    C:\Windows\System32\wuapp.exe
2013-09-29 08:44:16    186752    ----a-w-    C:\Windows\System32\wuwebv.dll
2013-09-29 06:41:54    --------    d-----w-    C:\FRST
2013-09-29 06:14:35    --------    d-----w-    C:\Program Files\CCleaner
2013-09-29 06:10:02    --------    d-----w-    C:\Users\notnick\AppData\Local\Diagnostics
2013-09-29 05:33:14    --------    d-----w-    C:\Program Files (x86)\IDA Demo 6.4
2013-09-29 05:32:59    --------    d-----w-    C:\Users\notnick\AppData\Roaming\Hex-Rays
2013-09-29 05:31:54    --------    d-----w-    C:\Program Files (x86)\IDA Free
2013-09-29 02:11:50    --------    d-----w-    C:\Program Files (x86)\WinPcap
2013-09-29 02:11:21    --------    d-----w-    C:\Program Files\Wireshark
2013-09-27 18:28:46    --------    d-----w-    C:\Program Files (x86)\ConvertHelper
2013-09-22 03:33:39    --------    d-----w-    C:\Users\notnick\AppData\Local\ElevatedDiagnostics
2013-09-21 22:41:41    708168    ----a-w-    C:\Windows\System32\WinUSBCoInstaller.dll
2013-09-21 22:41:41    1490656    ----a-w-    C:\Windows\System32\WdfCoInstaller01007.dll
2013-09-21 22:41:10    --------    d-----w-    C:\Program Files\SAMSUNG
2013-09-21 22:39:35    --------    d-----w-    C:\ProgramData\Samsung
2013-09-20 00:05:56    --------    d-----w-    C:\ProgramData\TDM-GCC
2013-09-17 07:49:08    --------    d-----w-    C:\cygwin
2013-09-17 07:44:41    --------    d-----w-    C:\Users\notnick\AppData\Roaming\ROOT Builder
2013-09-17 07:26:34    --------    d-----w-    C:\Program Files (x86)\CMake 2.8
2013-09-16 10:34:24    --------    d-----w-    C:\Program Files\ATI Technologies
2013-09-14 05:59:27    99840    ----a-w-    C:\Windows\System32\Spool\prtprocs\x64\CNMPPAM.DLL
2013-09-14 05:59:27    30208    ----a-w-    C:\Windows\System32\Spool\prtprocs\x64\CNMPDAM.DLL
2013-09-14 05:59:22    385024    ----a-w-    C:\Windows\System32\CNMLMAM.DLL
2013-09-14 05:55:05    --------    d--h--w-    C:\ProgramData\CanonIJFAX
2013-09-14 05:55:01    302080    ----a-w-    C:\Windows\System32\CNCALAM.DLL
2013-09-13 03:03:16    --------    d-----w-    C:\Users\notnick\AppData\Local\My Games
2013-09-12 03:58:52    --------    d-----w-    C:\ProgramData\Package Cache
2013-09-10 06:20:57    --------    d-----w-    C:\Program Files (x86)\VideoLAN
2013-09-10 05:31:31    --------    d-----w-    C:\Users\notnick\AppData\Local\SplitMediaLabs
2013-09-10 05:31:06    --------    d-sh--w-    C:\Windows\SysWow64\AI_RecycleBin
2013-09-10 05:30:54    --------    d-----w-    C:\ProgramData\SplitMediaLabs
2013-09-10 05:27:06    --------    d-----w-    C:\Users\notnick\AppData\Roaming\SplitMediaLabs
2013-09-10 04:55:37    --------    d-----w-    C:\Users\notnick\dwhelper
.

==================== Find3M  ====================
.
2013-10-09 23:43:06    71048    ----a-w-    C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-10-09 23:43:06    692616    ----a-w-    C:\Windows\SysWow64\FlashPlayerApp.exe
2013-09-29 11:43:55    9728    ---ha-w-    C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-09-03 00:48:13    1378816    ----a-w-    C:\Windows\System32\curl.exe
2013-08-27 14:53:24    963152    ----a-w-    C:\Windows\System32\msvcr120.dll
2013-08-22 12:40:24    40664    ----a-w-    C:\Windows\System32\drivers\tap0901.sys
2013-08-22 12:17:48    91752    ----a-w-    C:\Windows\System32\vsd3dwarpdebug.dll
2013-08-22 12:17:46    78952    ----a-w-    C:\Windows\System32\VSD3DRefDebug.dll
2013-08-22 12:17:32    8301672    ----a-w-    C:\Windows\System32\dxcapturereplay.dll
2013-08-22 12:17:30    759400    ----a-w-    C:\Windows\System32\d3d11ref.dll
2013-08-22 12:17:30    622184    ----a-w-    C:\Windows\System32\d3d10sdklayers.dll
2013-08-22 12:17:30    491632    ----a-w-    C:\Windows\System32\d3dref9.dll
2013-08-22 12:17:30    480360    ----a-w-    C:\Windows\System32\d2d1debug2.dll
2013-08-22 12:17:30    458856    ----a-w-    C:\Windows\System32\d3d10ref.dll
2013-08-22 12:17:30    250984    ----a-w-    C:\Windows\System32\dxcpl.exe
2013-08-22 12:17:30    167016    ----a-w-    C:\Windows\System32\dxtoolsmonitor.dll
2013-08-22 12:17:30    143464    ----a-w-    C:\Windows\System32\dxgidebug.dll
2013-08-22 12:17:30    1235560    ----a-w-    C:\Windows\System32\d3d11_2sdklayers.dll
2013-08-22 05:03:24    952432    ----a-w-    C:\Windows\SysWow64\d3d11_2sdklayers.dll
2013-08-22 05:03:24    7615600    ----a-w-    C:\Windows\SysWow64\dxcapturereplay.dll
2013-08-22 05:03:24    383080    ----a-w-    C:\Windows\SysWow64\d3dref9.dll
2013-08-22 05:03:24    365160    ----a-w-    C:\Windows\SysWow64\d3d10ref.dll
2013-08-22 05:03:24    348264    ----a-w-    C:\Windows\SysWow64\d2d1debug2.dll
2013-08-22 05:03:22    628848    ----a-w-    C:\Windows\SysWow64\d3d11ref.dll
2013-08-22 05:03:22    475752    ----a-w-    C:\Windows\SysWow64\d3d10sdklayers.dll
2013-08-22 05:03:22    238184    ----a-w-    C:\Windows\SysWow64\dxcpl.exe
2013-08-22 05:03:22    112744    ----a-w-    C:\Windows\SysWow64\dxgidebug.dll
2013-08-22 05:03:16    72816    ----a-w-    C:\Windows\SysWow64\vsd3dwarpdebug.dll
2013-08-22 05:03:16    61040    ----a-w-    C:\Windows\SysWow64\VSD3DRefDebug.dll
2013-08-22 05:03:06    132208    ----a-w-    C:\Windows\SysWow64\dxtoolsmonitor.dll
2013-08-19 00:10:30    528    ----a-r-    C:\Users\notnick\MediaID.bin
2013-08-17 12:51:33    0    ----a-w-    C:\Windows\ativpsrm.bin
2013-08-13 16:44:22    863344    ----a-w-    C:\Windows\SysWow64\msvcr110_clr0400.dll
2013-08-13 16:44:22    501872    ----a-w-    C:\Windows\SysWow64\msvcp110_clr0400.dll
2013-08-13 16:44:22    28776    ----a-w-    C:\Windows\SysWow64\aspnet_counters.dll
2013-08-13 16:44:22    18000    ----a-w-    C:\Windows\SysWow64\msvcr100_clr0400.dll
2013-08-13 15:21:26    855664    ----a-w-    C:\Windows\System32\msvcr110_clr0400.dll
2013-08-13 15:21:26    614000    ----a-w-    C:\Windows\System32\msvcp110_clr0400.dll
2013-08-13 15:21:26    30312    ----a-w-    C:\Windows\System32\aspnet_counters.dll
2013-08-13 15:21:26    18000    ----a-w-    C:\Windows\System32\msvcr100_clr0400.dll
2013-08-08 01:20:43    3155456    ----a-w-    C:\Windows\System32\win32k.sys
2013-08-05 02:25:45    155584    ----a-w-    C:\Windows\System32\drivers\ataport.sys
2013-08-03 06:35:36    887384    ----a-w-    C:\Windows\System32\d3d11_1sdklayers.dll
2013-08-03 06:35:36    713304    ----a-w-    C:\Windows\System32\d3d11sdklayers.dll
2013-08-03 06:35:34    341080    ----a-w-    C:\Windows\System32\d2d1debug1.dll
2013-08-03 05:55:30    713816    ----a-w-    C:\Windows\SysWow64\d3d11_1sdklayers.dll
2013-08-03 05:55:30    590936    ----a-w-    C:\Windows\SysWow64\d3d11sdklayers.dll
2013-08-03 05:55:30    277592    ----a-w-    C:\Windows\SysWow64\d2d1debug1.dll
2013-08-02 02:23:53    5550528    ----a-w-    C:\Windows\System32\ntoskrnl.exe
2013-08-02 02:15:44    1732032    ----a-w-    C:\Windows\System32\ntdll.dll
2013-08-02 02:15:03    362496    ----a-w-    C:\Windows\System32\wow64win.dll
2013-08-02 02:15:03    243712    ----a-w-    C:\Windows\System32\wow64.dll
2013-08-02 02:15:03    13312    ----a-w-    C:\Windows\System32\wow64cpu.dll
2013-08-02 02:14:57    215040    ----a-w-    C:\Windows\System32\winsrv.dll
2013-08-02 02:14:11    16384    ----a-w-    C:\Windows\System32\ntvdm64.dll
2013-08-02 02:13:34    424448    ----a-w-    C:\Windows\System32\KernelBase.dll
2013-08-02 01:59:30    3968960    ----a-w-    C:\Windows\SysWow64\ntkrnlpa.exe
2013-08-02 01:59:30    3913664    ----a-w-    C:\Windows\SysWow64\ntoskrnl.exe
2013-08-02 01:51:23    1292192    ----a-w-    C:\Windows\SysWow64\ntdll.dll
2013-08-02 01:50:42    5120    ----a-w-    C:\Windows\SysWow64\wow32.dll
2013-08-02 01:50:42    274944    ----a-w-    C:\Windows\SysWow64\KernelBase.dll
2013-08-02 01:09:17    338432    ----a-w-    C:\Windows\System32\conhost.exe
2013-08-02 00:59:09    112640    ----a-w-    C:\Windows\System32\smss.exe
2013-08-02 00:45:37    25600    ----a-w-    C:\Windows\SysWow64\setup16.exe
2013-08-02 00:45:36    14336    ----a-w-    C:\Windows\SysWow64\ntvdm64.dll
2013-08-02 00:45:35    7680    ----a-w-    C:\Windows\SysWow64\instnm.exe
2013-08-02 00:45:34    2048    ----a-w-    C:\Windows\SysWow64\user.exe
2013-08-02 00:43:05    6144    ---ha-w-    C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
2013-08-02 00:43:05    4608    ---ha-w-    C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
2013-08-02 00:43:05    3584    ---ha-w-    C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
2013-08-02 00:43:05    3072    ---ha-w-    C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
2013-07-25 09:25:54    1888768    ----a-w-    C:\Windows\System32\WMVDECOD.DLL
2013-07-25 08:57:27    1620992    ----a-w-    C:\Windows\SysWow64\WMVDECOD.DLL
2013-07-19 01:58:42    2048    ----a-w-    C:\Windows\System32\tzres.dll
2013-07-19 01:41:01    2048    ----a-w-    C:\Windows\SysWow64\tzres.dll

 

Tddskiller log:

16:54:45.0867 3800  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
16:54:46.0391 3800  ============================================================
16:54:46.0391 3800  Current date / time: 2013/10/09 16:54:46.0391
16:54:46.0391 3800  SystemInfo:
16:54:46.0391 3800  
16:54:46.0391 3800  OS Version: 6.1.7601 ServicePack: 1.0
16:54:46.0391 3800  Product type: Workstation
16:54:46.0392 3800  ComputerName: NOTNICK-PC
16:54:46.0392 3800  UserName: notnick
16:54:46.0392 3800  Windows directory: C:\Windows
16:54:46.0392 3800  System windows directory: C:\Windows
16:54:46.0392 3800  Running under WOW64
16:54:46.0392 3800  Processor architecture: Intel x64
16:54:46.0392 3800  Number of processors: 4
16:54:46.0392 3800  Page size: 0x1000
16:54:46.0392 3800  Boot type: Normal boot
16:54:46.0392 3800  ============================================================
16:54:54.0627 3800  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:54:54.0643 3800  ============================================================
16:54:54.0643 3800  \Device\Harddisk0\DR0:
16:54:54.0659 3800  MBR partitions:
16:54:54.0659 3800  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x6, StartLBA 0x800, BlocksNum 0x64000
16:54:54.0659 3800  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64800, BlocksNum 0x8545000
16:54:54.0702 3800  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x85AA000, BlocksNum 0x1C4C8800
16:54:54.0844 3800  \Device\Harddisk0\DR0\Partition4: MBR, Type 0x7, StartLBA 0x38FAD000, BlocksNum 0x13D8800
16:54:54.0844 3800  ============================================================
16:54:55.0099 3800  C: <-> \Device\Harddisk0\DR0\Partition2
16:54:56.0030 3800  D: <-> \Device\Harddisk0\DR0\Partition3
16:54:56.0381 3800  E: <-> \Device\Harddisk0\DR0\Partition4
16:54:56.0536 3800  ============================================================
16:54:56.0536 3800  Initialize success
16:54:56.0536 3800  ============================================================
16:54:58.0429 0852  ============================================================
16:54:58.0429 0852  Scan started
16:54:58.0429 0852  Mode: Manual;
16:54:58.0429 0852  ============================================================
16:55:14.0683 0852  ================ Scan system memory ========================
16:55:14.0683 0852  System memory - ok
16:55:14.0684 0852  ================ Scan services =============================
16:55:16.0559 0852  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
16:55:16.0561 0852  1394ohci - ok
16:55:16.0654 0852  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
16:55:16.0655 0852  ACPI - ok
16:55:16.0707 0852  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
16:55:16.0707 0852  AcpiPmi - ok
16:55:20.0457 0852  [ A283108E14F3970432C21AF4C0CB1BCE ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:55:20.0459 0852  AdobeFlashPlayerUpdateSvc - ok
16:55:20.0803 0852  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
16:55:20.0824 0852  adp94xx - ok
16:55:21.0098 0852  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
16:55:21.0101 0852  adpahci - ok
16:55:21.0222 0852  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
16:55:21.0223 0852  adpu320 - ok
16:55:21.0301 0852  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
16:55:21.0327 0852  AeLookupSvc - ok
16:55:21.0556 0852  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
16:55:21.0559 0852  AFD - ok
16:55:21.0650 0852  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
16:55:21.0651 0852  agp440 - ok
16:55:21.0768 0852  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
16:55:21.0783 0852  ALG - ok
16:55:21.0879 0852  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
16:55:21.0879 0852  aliide - ok
16:55:22.0077 0852  [ B3B263B419FC9E7B1D41E61FDAE45BD9 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
16:55:22.0092 0852  AMD External Events Utility - ok
16:55:22.0425 0852  AMD FUEL Service - ok
16:55:22.0489 0852  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
16:55:22.0489 0852  amdide - ok
16:55:22.0590 0852  [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64        C:\Windows\system32\DRIVERS\amdiox64.sys
16:55:22.0591 0852  amdiox64 - ok
16:55:22.0739 0852  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
16:55:22.0740 0852  AmdK8 - ok
16:55:25.0394 0852  [ 9A6E9363F7A5E5A06629D9DDC76EE6B5 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
16:55:25.0438 0852  amdkmdag - ok
16:55:25.0639 0852  [ 957A4C13E1981B1701E600EF1E823C68 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
16:55:25.0641 0852  amdkmdap - ok
16:55:25.0730 0852  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
16:55:25.0731 0852  AmdPPM - ok
16:55:25.0824 0852  [ 6EC6D772EAE38DC17C14AED9B178D24B ] amdsata         C:\Windows\system32\drivers\amdsata.sys
16:55:25.0825 0852  amdsata - ok
16:55:26.0025 0852  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
16:55:26.0027 0852  amdsbs - ok
16:55:26.0125 0852  [ 1142A21DB581A84EA5597B03A26EBAA0 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
16:55:26.0126 0852  amdxata - ok
16:55:26.0237 0852  [ 563EFD021AEB95CAE619643AD82F9D9F ] AODDriver4.2.0  C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
16:55:26.0238 0852  AODDriver4.2.0 - ok
16:55:26.0523 0852  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
16:55:26.0524 0852  AppID - ok
16:55:26.0602 0852  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
16:55:26.0602 0852  AppIDSvc - ok
16:55:26.0699 0852  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\Windows\System32\appinfo.dll
16:55:26.0715 0852  Appinfo - ok
16:55:26.0847 0852  [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt         C:\Windows\System32\appmgmts.dll
16:55:26.0868 0852  AppMgmt - ok
16:55:26.0913 0852  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\drivers\arc.sys
16:55:26.0914 0852  arc - ok
16:55:26.0985 0852  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\drivers\arcsas.sys
16:55:26.0985 0852  arcsas - ok
16:55:27.0784 0852  [ 041672BAC20B34EAEDEB033129655DD8 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
16:55:27.0813 0852  aspnet_state - ok
16:55:27.0919 0852  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
16:55:27.0920 0852  AsyncMac - ok
16:55:28.0000 0852  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
16:55:28.0001 0852  atapi - ok
16:55:28.0358 0852  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:55:28.0378 0852  AudioEndpointBuilder - ok
16:55:28.0557 0852  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
16:55:28.0561 0852  AudioSrv - ok
16:55:28.0746 0852  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
16:55:28.0777 0852  AxInstSV - ok
16:55:29.0011 0852  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
16:55:29.0015 0852  b06bdrv - ok
16:55:29.0266 0852  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
16:55:29.0268 0852  b57nd60a - ok
16:55:29.0460 0852  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
16:55:29.0503 0852  BDESVC - ok
16:55:29.0760 0852  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
16:55:29.0760 0852  Beep - ok
16:55:30.0352 0852  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
16:55:30.0394 0852  BFE - ok
16:55:30.0632 0852  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
16:55:30.0662 0852  BITS - ok
16:55:30.0723 0852  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
16:55:30.0724 0852  blbdrive - ok
16:55:30.0836 0852  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
16:55:30.0837 0852  bowser - ok
16:55:30.0907 0852  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
16:55:30.0908 0852  BrFiltLo - ok
16:55:30.0948 0852  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
16:55:30.0949 0852  BrFiltUp - ok
16:55:31.0060 0852  [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
16:55:31.0061 0852  BridgeMP - ok
16:55:31.0164 0852  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
16:55:31.0177 0852  Browser - ok
16:55:31.0300 0852  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
16:55:31.0301 0852  Brserid - ok
16:55:31.0388 0852  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
16:55:31.0389 0852  BrSerWdm - ok
16:55:31.0410 0852  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
16:55:31.0410 0852  BrUsbMdm - ok
16:55:31.0490 0852  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
16:55:31.0490 0852  BrUsbSer - ok
16:55:31.0537 0852  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
16:55:31.0538 0852  BTHMODEM - ok
16:55:31.0646 0852  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
16:55:31.0677 0852  bthserv - ok
16:55:32.0036 0852  [ AFF161D4CD2F6135CE046D67787C4AA5 ] CALoadService   C:\Program Files\AMD\CodeAnalyst\bin\CALoadService.exe
16:55:32.0037 0852  CALoadService - ok
16:55:32.0154 0852  [ C4135AB275FBCD313BA2DE2326CF681D ] CAPROF          C:\Windows\system32\drivers\CAPROF.sys
16:55:32.0154 0852  CAPROF - ok
16:55:32.0381 0852  catchme - ok
16:55:32.0543 0852  [ C4CD89586C9A60D75988B71261BD418A ] CAUTILITY       C:\Windows\system32\drivers\CAUTILITY.sys
16:55:32.0543 0852  CAUTILITY - ok
16:55:32.0604 0852  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
16:55:32.0605 0852  cdfs - ok
16:55:32.0750 0852  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
16:55:32.0751 0852  cdrom - ok
16:55:32.0945 0852  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
16:55:32.0986 0852  CertPropSvc - ok
16:55:33.0026 0852  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\drivers\circlass.sys
16:55:33.0026 0852  circlass - ok
16:55:33.0188 0852  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
16:55:33.0191 0852  CLFS - ok
16:55:33.0762 0852  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:55:33.0787 0852  clr_optimization_v2.0.50727_32 - ok
16:55:34.0031 0852  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:55:34.0068 0852  clr_optimization_v2.0.50727_64 - ok
16:55:34.0703 0852  [ 397C2677C25CBE213F3270245A401624 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:55:34.0704 0852  clr_optimization_v4.0.30319_32 - ok
16:55:34.0775 0852  [ 29139759FCC4E4E0531ABE2EA82CE646 ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:55:34.0776 0852  clr_optimization_v4.0.30319_64 - ok
16:55:34.0853 0852  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
16:55:34.0854 0852  CmBatt - ok
16:55:34.0870 0852  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
16:55:34.0871 0852  cmdide - ok
16:55:34.0971 0852  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
16:55:34.0973 0852  CNG - ok
16:55:35.0043 0852  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
16:55:35.0043 0852  Compbatt - ok
16:55:35.0093 0852  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
16:55:35.0094 0852  CompositeBus - ok
16:55:35.0126 0852  COMSysApp - ok
16:55:36.0119 0852  cpuz136 - ok
16:55:36.0163 0852  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
16:55:36.0163 0852  crcdisk - ok
16:55:36.0289 0852  [ 6B400F211BEE880A37A1ED0368776BF4 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
16:55:36.0300 0852  CryptSvc - ok
16:55:36.0447 0852  [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC             C:\Windows\system32\drivers\csc.sys
16:55:36.0451 0852  CSC - ok
16:55:36.0660 0852  [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService      C:\Windows\System32\cscsvc.dll
16:55:36.0703 0852  CscService - ok
16:55:36.0924 0852  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
16:55:36.0968 0852  DcomLaunch - ok
16:55:37.0240 0852  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
16:55:37.0259 0852  defragsvc - ok
16:55:37.0287 0852  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
16:55:37.0288 0852  DfsC - ok
16:55:37.0515 0852  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
16:55:37.0523 0852  Dhcp - ok
16:55:37.0942 0852  [ 8B9D1996CA682FB555DD0E9DADAE8EE7 ] DirMngr         C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe
16:55:37.0975 0852  DirMngr - ok
16:55:38.0027 0852  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
16:55:38.0027 0852  discache - ok
16:55:38.0168 0852  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\drivers\disk.sys
16:55:38.0169 0852  Disk - ok
16:55:38.0278 0852  [ 5DB085A8A6600BE6401F2B24EECB5415 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
16:55:38.0279 0852  dmvsc - ok
16:55:38.0476 0852  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
16:55:38.0492 0852  Dnscache - ok
16:55:38.0561 0852  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
16:55:38.0591 0852  dot3svc - ok
16:55:38.0645 0852  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
16:55:38.0681 0852  DPS - ok
16:55:38.0746 0852  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
16:55:38.0747 0852  drmkaud - ok
16:55:38.0883 0852  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
16:55:38.0887 0852  DXGKrnl - ok
16:55:38.0961 0852  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
16:55:38.0976 0852  EapHost - ok
16:55:39.0547 0852  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\drivers\evbda.sys
16:55:39.0561 0852  ebdrv - ok
16:55:39.0607 0852  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
16:55:39.0608 0852  EFS - ok
16:55:39.0750 0852  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
16:55:39.0754 0852  elxstor - ok
16:55:39.0764 0852  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
16:55:39.0764 0852  ErrDev - ok
16:55:39.0822 0852  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
16:55:39.0825 0852  EventSystem - ok
16:55:39.0902 0852  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
16:55:39.0904 0852  exfat - ok
16:55:40.0262 0852  [ 86B0FBC17425B0A00D431B3C8F4D2F9D ] Ext2Fsd         C:\Windows\system32\drivers\Ext2Fsd.sys
16:55:40.0269 0852  Ext2Fsd - ok
16:55:40.0322 0852  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
16:55:40.0323 0852  fastfat - ok
16:55:40.0532 0852  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
16:55:40.0548 0852  Fax - ok
16:55:40.0603 0852  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\drivers\fdc.sys
16:55:40.0603 0852  fdc - ok
16:55:40.0644 0852  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
16:55:40.0664 0852  fdPHost - ok
16:55:40.0687 0852  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
16:55:40.0730 0852  FDResPub - ok
16:55:40.0751 0852  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
16:55:40.0751 0852  FileInfo - ok
16:55:40.0781 0852  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
16:55:40.0781 0852  Filetrace - ok
16:55:40.0901 0852  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
16:55:40.0901 0852  flpydisk - ok
16:55:40.0948 0852  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
16:55:40.0950 0852  FltMgr - ok
16:55:41.0345 0852  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
16:55:41.0362 0852  FontCache - ok
16:55:41.0454 0852  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:55:41.0463 0852  FontCache3.0.0.0 - ok
16:55:41.0504 0852  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
16:55:41.0505 0852  FsDepends - ok
16:55:41.0561 0852  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
16:55:41.0562 0852  Fs_Rec - ok
16:55:41.0700 0852  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
16:55:41.0702 0852  fvevol - ok
16:55:41.0772 0852  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
16:55:41.0773 0852  gagp30kx - ok
16:55:41.0866 0852  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
16:55:41.0875 0852  gpsvc - ok
16:55:41.0925 0852  GPU-Z - ok
16:55:41.0998 0852  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
16:55:41.0999 0852  hcw85cir - ok
16:55:42.0079 0852  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:55:42.0081 0852  HdAudAddService - ok
16:55:42.0134 0852  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
16:55:42.0135 0852  HDAudBus - ok
16:55:42.0157 0852  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
16:55:42.0158 0852  HidBatt - ok
16:55:42.0205 0852  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
16:55:42.0206 0852  HidBth - ok
16:55:42.0237 0852  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\drivers\hidir.sys
16:55:42.0238 0852  HidIr - ok
16:55:42.0279 0852  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\System32\hidserv.dll
16:55:42.0286 0852  hidserv - ok
16:55:42.0383 0852  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
16:55:42.0383 0852  HidUsb - ok
16:55:42.0430 0852  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
16:55:42.0442 0852  hkmsvc - ok
16:55:42.0548 0852  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:55:42.0555 0852  HomeGroupListener - ok
16:55:42.0666 0852  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:55:42.0669 0852  HomeGroupProvider - ok
16:55:42.0824 0852  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
16:55:42.0831 0852  HpSAMD - ok
16:55:43.0002 0852  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
16:55:43.0007 0852  HTTP - ok
16:55:43.0068 0852  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
16:55:43.0069 0852  hwpolicy - ok
16:55:43.0117 0852  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
16:55:43.0118 0852  i8042prt - ok
16:55:43.0238 0852  [ 3DF4395A7CF8B7A72A5F4606366B8C2D ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
16:55:43.0240 0852  iaStorV - ok
16:55:43.0423 0852  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:55:43.0454 0852  idsvc - ok
16:55:43.0507 0852  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
16:55:43.0508 0852  iirsp - ok
16:55:43.0736 0852  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
16:55:43.0768 0852  IKEEXT - ok
16:55:43.0817 0852  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
16:55:43.0817 0852  intelide - ok
16:55:43.0887 0852  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\drivers\intelppm.sys
16:55:43.0888 0852  intelppm - ok
16:55:43.0969 0852  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
16:55:43.0984 0852  IPBusEnum - ok
16:55:44.0029 0852  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:55:44.0030 0852  IpFilterDriver - ok
16:55:44.0135 0852  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
16:55:44.0177 0852  iphlpsvc - ok
16:55:44.0195 0852  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
16:55:44.0195 0852  IPMIDRV - ok
16:55:44.0340 0852  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
16:55:44.0341 0852  IPNAT - ok
16:55:44.0418 0852  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
16:55:44.0419 0852  IRENUM - ok
16:55:44.0444 0852  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
16:55:44.0445 0852  isapnp - ok
16:55:44.0510 0852  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
16:55:44.0512 0852  iScsiPrt - ok
16:55:44.0539 0852  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
16:55:44.0540 0852  kbdclass - ok
16:55:44.0585 0852  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
16:55:44.0585 0852  kbdhid - ok
16:55:44.0608 0852  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
16:55:44.0609 0852  KeyIso - ok
16:55:44.0639 0852  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
16:55:44.0640 0852  KSecDD - ok
16:55:44.0663 0852  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
16:55:44.0664 0852  KSecPkg - ok
16:55:44.0683 0852  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
16:55:44.0683 0852  ksthunk - ok
16:55:44.0743 0852  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
16:55:44.0765 0852  KtmRm - ok
16:55:44.0948 0852  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\System32\srvsvc.dll
16:55:44.0993 0852  LanmanServer - ok
16:55:45.0060 0852  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:55:45.0100 0852  LanmanWorkstation - ok
16:55:45.0194 0852  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
16:55:45.0195 0852  lltdio - ok
16:55:45.0318 0852  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
16:55:45.0330 0852  lltdsvc - ok
16:55:45.0391 0852  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
16:55:45.0399 0852  lmhosts - ok
16:55:45.0439 0852  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
16:55:45.0440 0852  LSI_FC - ok
16:55:45.0538 0852  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
16:55:45.0539 0852  LSI_SAS - ok
16:55:45.0620 0852  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
16:55:45.0621 0852  LSI_SAS2 - ok
16:55:45.0710 0852  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
16:55:45.0711 0852  LSI_SCSI - ok
16:55:45.0777 0852  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
16:55:45.0778 0852  luafv - ok
16:55:45.0825 0852  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\drivers\megasas.sys
16:55:45.0825 0852  megasas - ok
16:55:45.0916 0852  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
16:55:45.0917 0852  MegaSR - ok
16:55:45.0998 0852  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
16:55:46.0015 0852  MMCSS - ok
16:55:46.0063 0852  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
16:55:46.0064 0852  Modem - ok
16:55:46.0122 0852  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
16:55:46.0122 0852  monitor - ok
16:55:46.0211 0852  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
16:55:46.0211 0852  mouclass - ok
16:55:46.0291 0852  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
16:55:46.0292 0852  mouhid - ok
16:55:46.0331 0852  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
16:55:46.0332 0852  mountmgr - ok
16:55:46.0579 0852  [ 0329A45C849C9D77901094B8FFE8BBB9 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
16:55:46.0582 0852  MozillaMaintenance - ok
16:55:46.0638 0852  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
16:55:46.0640 0852  mpio - ok
16:55:46.0704 0852  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
16:55:46.0705 0852  mpsdrv - ok
16:55:46.0947 0852  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
16:55:46.0981 0852  MpsSvc - ok
16:55:47.0052 0852  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
16:55:47.0053 0852  MRxDAV - ok
16:55:47.0168 0852  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
16:55:47.0169 0852  mrxsmb - ok
16:55:47.0347 0852  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:55:47.0349 0852  mrxsmb10 - ok
16:55:47.0412 0852  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:55:47.0414 0852  mrxsmb20 - ok
16:55:47.0435 0852  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
16:55:47.0436 0852  msahci - ok
16:55:47.0486 0852  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
16:55:47.0487 0852  msdsm - ok
16:55:47.0516 0852  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
16:55:47.0536 0852  MSDTC - ok
16:55:47.0604 0852  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
16:55:47.0605 0852  Msfs - ok
16:55:47.0644 0852  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
16:55:47.0645 0852  mshidkmdf - ok
16:55:47.0699 0852  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
16:55:47.0700 0852  msisadrv - ok
16:55:47.0779 0852  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
16:55:47.0814 0852  MSiSCSI - ok
16:55:47.0817 0852  msiserver - ok
16:55:47.0891 0852  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
16:55:47.0891 0852  MSKSSRV - ok
16:55:47.0983 0852  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
16:55:47.0983 0852  MSPCLOCK - ok
16:55:48.0212 0852  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
16:55:48.0213 0852  MSPQM - ok
16:55:48.0271 0852  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
16:55:48.0274 0852  MsRPC - ok
16:55:48.0311 0852  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
16:55:48.0311 0852  mssmbios - ok
16:55:48.0319 0852  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
16:55:48.0319 0852  MSTEE - ok
16:55:48.0345 0852  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
16:55:48.0346 0852  MTConfig - ok
16:55:48.0369 0852  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
16:55:48.0370 0852  Mup - ok
16:55:48.0441 0852  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
16:55:48.0475 0852  napagent - ok
16:55:48.0582 0852  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
16:55:48.0584 0852  NativeWifiP - ok
16:55:48.0734 0852  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
16:55:48.0738 0852  NDIS - ok
16:55:48.0801 0852  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
16:55:48.0802 0852  NdisCap - ok
16:55:48.0989 0852  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
16:55:48.0989 0852  NdisTapi - ok
16:55:49.0249 0852  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
16:55:49.0250 0852  Ndisuio - ok
16:55:49.0292 0852  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
16:55:49.0293 0852  NdisWan - ok
16:55:49.0332 0852  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
16:55:49.0333 0852  NDProxy - ok
16:55:49.0370 0852  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
16:55:49.0370 0852  NetBIOS - ok
16:55:49.0431 0852  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
16:55:49.0433 0852  NetBT - ok
16:55:49.0452 0852  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
16:55:49.0453 0852  Netlogon - ok
16:55:49.0593 0852  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
16:55:49.0599 0852  Netman - ok
16:55:49.0804 0852  [ 9A7D3A1AA5C830744FF6C44BB55A347A ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:55:49.0806 0852  NetMsmqActivator - ok
16:55:49.0842 0852  [ 9A7D3A1AA5C830744FF6C44BB55A347A ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:55:49.0843 0852  NetPipeActivator - ok
16:55:50.0252 0852  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
16:55:50.0268 0852  netprofm - ok
16:55:50.0342 0852  [ 9A7D3A1AA5C830744FF6C44BB55A347A ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:55:50.0343 0852  NetTcpActivator - ok
16:55:50.0356 0852  [ 9A7D3A1AA5C830744FF6C44BB55A347A ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:55:50.0357 0852  NetTcpPortSharing - ok
16:55:50.0408 0852  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
16:55:50.0409 0852  nfrd960 - ok
16:55:50.0680 0852  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
16:55:50.0712 0852  NlaSvc - ok
16:55:51.0081 0852  [ DE7FCC77F4A503AF4CA6A47D49B3713D ] NPF             C:\Windows\system32\drivers\npf.sys
16:55:51.0081 0852  NPF - ok
16:55:51.0302 0852  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
16:55:51.0302 0852  Npfs - ok
16:55:51.0368 0852  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
16:55:51.0392 0852  nsi - ok
16:55:51.0473 0852  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
16:55:51.0474 0852  nsiproxy - ok
16:55:52.0087 0852  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
16:55:52.0098 0852  Ntfs - ok
16:55:52.0155 0852  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
16:55:52.0156 0852  Null - ok
16:55:52.0705 0852  [ 5D9FD91F3D38DC9DA01E3CB5FA89CD48 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
16:55:52.0706 0852  nvraid - ok
16:55:52.0803 0852  [ F7CD50FE7139F07E77DA8AC8033D1832 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
16:55:52.0804 0852  nvstor - ok
16:55:52.0919 0852  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
16:55:52.0920 0852  nv_agp - ok
16:55:53.0076 0852  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
16:55:53.0077 0852  ohci1394 - ok
16:55:53.0269 0852  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
16:55:53.0329 0852  p2pimsvc - ok
16:55:53.0463 0852  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
16:55:53.0479 0852  p2psvc - ok
16:55:53.0800 0852  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\drivers\parport.sys
16:55:53.0801 0852  Parport - ok
16:55:53.0853 0852  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
16:55:53.0853 0852  partmgr - ok
16:55:53.0889 0852  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
16:55:53.0893 0852  PcaSvc - ok
16:55:53.0913 0852  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
16:55:53.0914 0852  pci - ok
16:55:53.0952 0852  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
16:55:53.0953 0852  pciide - ok
16:55:53.0982 0852  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
16:55:53.0983 0852  pcmcia - ok
16:55:54.0032 0852  [ 9C5A3CB8AC4E77DB73B5A23FADA7AFD7 ] PCORE           C:\Windows\system32\drivers\PCORE.sys
16:55:54.0032 0852  PCORE - ok
16:55:54.0052 0852  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
16:55:54.0052 0852  pcw - ok
16:55:54.0107 0852  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
16:55:54.0112 0852  PEAUTH - ok
16:55:54.0160 0852  [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
16:55:54.0175 0852  PeerDistSvc - ok
16:55:54.0818 0852  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
16:55:54.0818 0852  PerfHost - ok
16:55:55.0494 0852  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
16:55:55.0637 0852  pla - ok
16:55:55.0868 0852  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
16:55:55.0886 0852  PlugPlay - ok
16:55:55.0939 0852  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
16:55:55.0960 0852  PNRPAutoReg - ok
16:55:56.0093 0852  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
16:55:56.0097 0852  PNRPsvc - ok
16:55:56.0312 0852  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
16:55:56.0380 0852  PolicyAgent - ok
16:55:56.0434 0852  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
16:55:56.0464 0852  Power - ok
16:55:56.0511 0852  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
16:55:56.0512 0852  PptpMiniport - ok
16:55:56.0531 0852  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\drivers\processr.sys
16:55:56.0531 0852  Processor - ok
16:55:56.0588 0852  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
16:55:56.0599 0852  ProfSvc - ok
16:55:56.0651 0852  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
16:55:56.0652 0852  ProtectedStorage - ok
16:55:56.0774 0852  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
16:55:56.0775 0852  Psched - ok
16:55:57.0498 0852  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
16:55:57.0522 0852  ql2300 - ok
16:55:57.0578 0852  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
16:55:57.0579 0852  ql40xx - ok
16:55:57.0627 0852  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
16:55:57.0647 0852  QWAVE - ok
16:55:57.0674 0852  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
16:55:57.0675 0852  QWAVEdrv - ok
16:55:57.0715 0852  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
16:55:57.0715 0852  RasAcd - ok
16:55:57.0788 0852  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
16:55:57.0789 0852  RasAgileVpn - ok
16:55:57.0878 0852  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
16:55:57.0923 0852  RasAuto - ok
16:55:58.0057 0852  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
16:55:58.0058 0852  Rasl2tp - ok
16:55:58.0164 0852  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
16:55:58.0187 0852  RasMan - ok
16:55:58.0212 0852  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
16:55:58.0212 0852  RasPppoe - ok
16:55:58.0243 0852  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
16:55:58.0243 0852  RasSstp - ok
16:55:58.0351 0852  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
16:55:58.0354 0852  rdbss - ok
16:55:58.0379 0852  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
16:55:58.0380 0852  rdpbus - ok
16:55:58.0401 0852  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
16:55:58.0402 0852  RDPCDD - ok
16:55:58.0463 0852  [ 1B6163C503398B23FF8B939C67747683 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
16:55:58.0464 0852  RDPDR - ok
16:55:58.0558 0852  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
16:55:58.0558 0852  RDPENCDD - ok
16:55:58.0593 0852  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
16:55:58.0594 0852  RDPREFMP - ok
16:55:58.0668 0852  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
16:55:58.0670 0852  RDPWD - ok
16:55:59.0045 0852  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
16:55:59.0046 0852  rdyboost - ok
16:55:59.0265 0852  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
16:55:59.0296 0852  RemoteAccess - ok
16:55:59.0477 0852  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
16:55:59.0744 0852  RemoteRegistry - ok
16:56:00.0405 0852  [ 83A6C2CAFE236652D1559640594A0EA8 ] rpcapd          C:\Program Files (x86)\WinPcap\rpcapd.exe
16:56:00.0427 0852  rpcapd - ok
16:56:00.0466 0852  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
16:56:00.0687 0852  RpcEptMapper - ok
16:56:00.0747 0852  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
16:56:00.0748 0852  RpcLocator - ok
16:56:00.0990 0852  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
16:56:00.0995 0852  RpcSs - ok
16:56:01.0166 0852  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
16:56:01.0167 0852  rspndr - ok
16:56:01.0746 0852  [ 6FA271B6816AFFAEF640808FC51AC8AF ] RTCore64        C:\Program Files (x86)\MSI Afterburner\RTCore64.sys
16:56:01.0770 0852  RTCore64 - ok
16:56:02.0037 0852  [ BAEFEE35D27A5440D35092CE10267BEC ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
16:56:02.0038 0852  RTL8167 - ok
16:56:02.0147 0852  [ E60C0A09F997826C7627B244195AB581 ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
16:56:02.0147 0852  s3cap - ok
16:56:02.0174 0852  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
16:56:02.0175 0852  SamSs - ok
16:56:02.0191 0852  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
16:56:02.0192 0852  sbp2port - ok
16:56:02.0248 0852  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
16:56:02.0260 0852  SCardSvr - ok
16:56:02.0288 0852  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
16:56:02.0289 0852  scfilter - ok
16:56:02.0396 0852  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
16:56:02.0416 0852  Schedule - ok
16:56:02.0467 0852  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
16:56:02.0468 0852  SCPolicySvc - ok
16:56:02.0514 0852  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
16:56:02.0525 0852  SDRSVC - ok
16:56:02.0580 0852  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
16:56:02.0580 0852  secdrv - ok
16:56:02.0962 0852  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
16:56:03.0004 0852  seclogon - ok
16:56:03.0060 0852  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\system32\sens.dll
16:56:03.0090 0852  SENS - ok
16:56:03.0186 0852  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
16:56:03.0231 0852  SensrSvc - ok
16:56:03.0305 0852  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
16:56:03.0306 0852  Serenum - ok
16:56:03.0403 0852  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
16:56:03.0405 0852  Serial - ok
16:56:03.0423 0852  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
16:56:03.0424 0852  sermouse - ok
16:56:03.0524 0852  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
16:56:03.0569 0852  SessionEnv - ok
16:56:03.0730 0852  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
16:56:03.0731 0852  sffdisk - ok
16:56:03.0763 0852  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
16:56:03.0764 0852  sffp_mmc - ok
16:56:03.0945 0852  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
16:56:03.0946 0852  sffp_sd - ok
16:56:03.0992 0852  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
16:56:03.0992 0852  sfloppy - ok
16:56:04.0317 0852  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
16:56:04.0337 0852  SharedAccess - ok
16:56:04.0420 0852  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:56:04.0450 0852  ShellHWDetection - ok
16:56:04.0516 0852  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
16:56:04.0517 0852  SiSRaid2 - ok
16:56:04.0547 0852  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
16:56:04.0548 0852  SiSRaid4 - ok
16:56:04.0642 0852  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
16:56:04.0643 0852  Smb - ok
16:56:04.0738 0852  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
16:56:04.0740 0852  SNMPTRAP - ok
16:56:05.0233 0852  [ 0FFE35F0B0CD5A324BBE22F02569AE3B ] speedfan        C:\Windows\syswow64\speedfan.sys
16:56:05.0234 0852  speedfan - ok
16:56:05.0269 0852  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
16:56:05.0270 0852  spldr - ok
16:56:05.0642 0852  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
16:56:05.0647 0852  Spooler - ok
16:56:06.0246 0852  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
16:56:06.0262 0852  sppsvc - ok
16:56:06.0276 0852  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
16:56:06.0303 0852  sppuinotify - ok
16:56:06.0632 0852  [ 055B0DE7BCDB14FB18279F09DCA07954 ] SQLWriter       C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
16:56:06.0633 0852  SQLWriter - ok
16:56:06.0976 0852  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
16:56:06.0979 0852  srv - ok
16:56:07.0302 0852  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
16:56:07.0305 0852  srv2 - ok
16:56:07.0434 0852  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
16:56:07.0436 0852  srvnet - ok
16:56:08.0022 0852  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
16:56:08.0101 0852  SSDPSRV - ok
16:56:08.0194 0852  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
16:56:08.0198 0852  SstpSvc - ok
16:56:08.0624 0852  [ 3B273794CDC563C92314D01B9BFD40F7 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
16:56:08.0628 0852  Steam Client Service - ok
16:56:08.0679 0852  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\drivers\stexstor.sys
16:56:08.0680 0852  stexstor - ok
16:56:08.0765 0852  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
16:56:08.0801 0852  stisvc - ok
16:56:08.0940 0852  [ 7785DC213270D2FC066538DAF94087E7 ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
16:56:08.0941 0852  storflt - ok
16:56:08.0985 0852  [ C40841817EF57D491F22EB103DA587CC ] StorSvc         C:\Windows\system32\storsvc.dll
16:56:08.0999 0852  StorSvc - ok
16:56:09.0248 0852  [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
16:56:09.0248 0852  storvsc - ok
16:56:09.0447 0852  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
16:56:09.0447 0852  swenum - ok
16:56:09.0735 0852  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
16:56:09.0758 0852  swprv - ok
16:56:10.0885 0852  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
16:56:10.0949 0852  SysMain - ok
16:56:11.0024 0852  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:56:11.0059 0852  TabletInputService - ok
16:56:11.0142 0852  [ 3C32FF010F869BC184DF71290477384E ] tap0901         C:\Windows\system32\DRIVERS\tap0901.sys
16:56:11.0142 0852  tap0901 - ok
16:56:11.0197 0852  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
16:56:11.0207 0852  TapiSrv - ok
16:56:11.0227 0852  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
16:56:11.0229 0852  TBS - ok
16:56:11.0675 0852  [ DB74544B75566C974815E79A62433F29 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
16:56:11.0684 0852  Tcpip - ok
16:56:12.0073 0852  [ DB74544B75566C974815E79A62433F29 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
16:56:12.0081 0852  TCPIP6 - ok
16:56:12.0118 0852  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
16:56:12.0118 0852  tcpipreg - ok
16:56:12.0158 0852  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
16:56:12.0158 0852  TDPIPE - ok
16:56:12.0197 0852  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
16:56:12.0197 0852  TDTCP - ok
16:56:12.0253 0852  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
16:56:12.0254 0852  tdx - ok
16:56:12.0301 0852  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
16:56:12.0302 0852  TermDD - ok
16:56:12.0513 0852  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
16:56:12.0550 0852  TermService - ok
16:56:12.0583 0852  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
16:56:12.0586 0852  Themes - ok
16:56:12.0629 0852  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
16:56:12.0631 0852  THREADORDER - ok
16:56:12.0667 0852  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
16:56:12.0700 0852  TrkWks - ok
16:56:12.0785 0852  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:56:12.0788 0852  TrustedInstaller - ok
16:56:12.0835 0852  [ 4CE278FC9671BA81A138D70823FCAA09 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
16:56:12.0836 0852  tssecsrv - ok
16:56:12.0907 0852  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
16:56:12.0907 0852  TsUsbFlt - ok
16:56:12.0942 0852  [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
16:56:12.0943 0852  TsUsbGD - ok
16:56:13.0259 0852  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
16:56:13.0261 0852  tunnel - ok
16:56:13.0286 0852  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
16:56:13.0287 0852  uagp35 - ok
16:56:13.0308 0852  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
16:56:13.0309 0852  udfs - ok
16:56:13.0348 0852  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
16:56:13.0351 0852  UI0Detect - ok
16:56:13.0458 0852  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
16:56:13.0459 0852  uliagpkx - ok
16:56:13.0502 0852  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
16:56:13.0502 0852  umbus - ok
16:56:13.0594 0852  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\drivers\umpass.sys
16:56:13.0594 0852  UmPass - ok
16:56:13.0639 0852  [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService    C:\Windows\System32\umrdp.dll
16:56:13.0713 0852  UmRdpService - ok
16:56:13.0753 0852  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
16:56:13.0758 0852  upnphost - ok
16:56:13.0860 0852  [ 481DFF26B4DCA8F4CBAC1F7DCE1D6829 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
16:56:13.0861 0852  usbccgp - ok
16:56:13.0872 0852  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
16:56:13.0873 0852  usbcir - ok
16:56:13.0913 0852  [ 74EE782B1D9C241EFE425565854C661C ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
16:56:13.0913 0852  usbehci - ok
16:56:13.0965 0852  [ DC96BD9CCB8403251BCF25047573558E ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
16:56:13.0968 0852  usbhub - ok
16:56:13.0983 0852  [ 58E546BBAF87664FC57E0F6081E4F609 ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
16:56:13.0984 0852  usbohci - ok
16:56:14.0054 0852  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\drivers\usbprint.sys
16:56:14.0054 0852  usbprint - ok
16:56:14.0085 0852  [ D76510CFA0FC09023077F22C2F979D86 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:56:14.0086 0852  USBSTOR - ok
16:56:14.0114 0852  [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
16:56:14.0114 0852  usbuhci - ok
16:56:14.0153 0852  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
16:56:14.0162 0852  UxSms - ok
16:56:14.0184 0852  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
16:56:14.0185 0852  VaultSvc - ok
16:56:14.0290 0852  [ 68EF855725F65A5C3C24F78D33388F30 ] VBoxDrv         C:\Windows\system32\DRIVERS\VBoxDrv.sys
16:56:14.0292 0852  VBoxDrv - ok
16:56:14.0331 0852  [ 7FFC48B516856FD40B9F55687C8D70A2 ] VBoxNetAdp      C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
16:56:14.0332 0852  VBoxNetAdp - ok
16:56:14.0363 0852  [ 7A92E82A1DCC528F4E7D3F655BDEA6AA ] VBoxNetFlt      C:\Windows\system32\DRIVERS\VBoxNetFlt.sys
16:56:14.0364 0852  VBoxNetFlt - ok
16:56:14.0443 0852  [ F3CF9F56C2A8AEB50EB679DC76902BE0 ] VBoxUSBMon      C:\Windows\system32\DRIVERS\VBoxUSBMon.sys
16:56:14.0444 0852  VBoxUSBMon - ok
16:56:14.0492 0852  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
16:56:14.0492 0852  vdrvroot - ok
16:56:14.0557 0852  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
16:56:14.0573 0852  vds - ok
16:56:14.0638 0852  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
16:56:14.0639 0852  vga - ok
16:56:14.0667 0852  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
16:56:14.0668 0852  VgaSave - ok
16:56:14.0697 0852  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\DRIVERS\vhdmp.sys
16:56:14.0698 0852  vhdmp - ok
16:56:14.0750 0852  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
16:56:14.0750 0852  viaide - ok
16:56:14.0785 0852  [ 86EA3E79AE350FEA5331A1303054005F ] vmbus           C:\Windows\system32\drivers\vmbus.sys
16:56:14.0786 0852  vmbus - ok
16:56:14.0876 0852  [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
16:56:14.0877 0852  VMBusHID - ok
16:56:15.0096 0852  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
16:56:15.0096 0852  volmgr - ok
16:56:15.0216 0852  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
16:56:15.0219 0852  volmgrx - ok
16:56:15.0272 0852  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
16:56:15.0274 0852  volsnap - ok
16:56:15.0728 0852  [ 7230F5911D152B0B7263B9A5E58B91B4 ] VsEtwService120 D:\New folder (5)\Common7\Packages\Debugger\Services\VsEtwService.exe
16:56:15.0730 0852  VsEtwService120 - ok
16:56:15.0842 0852  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
16:56:15.0843 0852  vsmraid - ok
16:56:15.0957 0852  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
16:56:15.0986 0852  VSS - ok
16:56:16.0026 0852  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
16:56:16.0027 0852  vwifibus - ok
16:56:16.0228 0852  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
16:56:16.0255 0852  W32Time - ok
16:56:16.0295 0852  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
16:56:16.0296 0852  WacomPen - ok
16:56:16.0344 0852  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
16:56:16.0345 0852  WANARP - ok
16:56:16.0348 0852  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
16:56:16.0349 0852  Wanarpv6 - ok
16:56:16.0400 0852  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
16:56:16.0435 0852  wbengine - ok
16:56:16.0471 0852  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
16:56:16.0475 0852  WbioSrvc - ok
16:56:16.0529 0852  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
16:56:16.0542 0852  wcncsvc - ok
16:56:16.0578 0852  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:56:16.0586 0852  WcsPlugInService - ok
16:56:16.0626 0852  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\drivers\wd.sys
16:56:16.0627 0852  Wd - ok
16:56:16.0747 0852  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
16:56:16.0752 0852  Wdf01000 - ok
16:56:16.0786 0852  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
16:56:16.0796 0852  WdiServiceHost - ok
16:56:16.0843 0852  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
16:56:16.0845 0852  WdiSystemHost - ok
16:56:16.0932 0852  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
16:56:16.0943 0852  WebClient - ok
16:56:17.0009 0852  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
16:56:17.0032 0852  Wecsvc - ok
16:56:17.0059 0852  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
16:56:17.0060 0852  wercplsupport - ok
16:56:17.0144 0852  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
16:56:17.0161 0852  WerSvc - ok
16:56:17.0316 0852  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
16:56:17.0316 0852  WfpLwf - ok
16:56:17.0372 0852  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
16:56:17.0372 0852  WIMMount - ok
16:56:17.0433 0852  WinDefend - ok
16:56:17.0485 0852  WinHttpAutoProxySvc - ok
16:56:17.0643 0852  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
16:56:17.0645 0852  Winmgmt - ok
16:56:17.0746 0852  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
16:56:17.0801 0852  WinRM - ok
16:56:17.0836 0852  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
16:56:17.0837 0852  WinUsb - ok
16:56:17.0879 0852  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
16:56:17.0899 0852  Wlansvc - ok
16:56:17.0921 0852  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
16:56:17.0921 0852  WmiAcpi - ok
16:56:17.0974 0852  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
16:56:17.0978 0852  wmiApSrv - ok
16:56:18.0016 0852  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
16:56:18.0018 0852  WPCSvc - ok
16:56:18.0042 0852  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
16:56:18.0051 0852  WPDBusEnum - ok
16:56:18.0072 0852  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
16:56:18.0073 0852  ws2ifsl - ok
16:56:18.0103 0852  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
16:56:18.0105 0852  wscsvc - ok
16:56:18.0108 0852  WSearch - ok
16:56:18.0247 0852  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
16:56:18.0319 0852  wuauserv - ok
16:56:18.0375 0852  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
16:56:18.0376 0852  WudfPf - ok
16:56:18.0542 0852  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
16:56:18.0543 0852  WUDFRd - ok
16:56:18.0594 0852  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
16:56:18.0606 0852  wudfsvc - ok
16:56:18.0675 0852  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\Windows\System32\wwansvc.dll
16:56:18.0687 0852  WwanSvc - ok
16:56:18.0728 0852  ================ Scan global ===============================
16:56:18.0770 0852  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
16:56:18.0889 0852  [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
16:56:19.0012 0852  [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
16:56:19.0141 0852  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
16:56:19.0734 0852  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
16:56:19.0736 0852  [Global] - ok
16:56:19.0737 0852  ================ Scan MBR ==================================
16:56:19.0747 0852  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
16:56:21.0611 0852  \Device\Harddisk0\DR0 - ok
16:56:21.0611 0852  ================ Scan VBR ==================================
16:56:21.0644 0852  [ A1A1CC4BA4AE1C51FC0245E9B1587FFB ] \Device\Harddisk0\DR0\Partition1
16:56:21.0645 0852  \Device\Harddisk0\DR0\Partition1 - ok
16:56:21.0652 0852  [ A7065DFF2A185DF61DA94839652A5949 ] \Device\Harddisk0\DR0\Partition2
16:56:21.0676 0852  \Device\Harddisk0\DR0\Partition2 - ok
16:56:21.0700 0852  [ DBB87BA5D16BCEE808EE401CC3C004EC ] \Device\Harddisk0\DR0\Partition3
16:56:21.0710 0852  \Device\Harddisk0\DR0\Partition3 - ok
16:56:21.0741 0852  [ 90D65146A4D9989A8205ECDF8CF2E470 ] \Device\Harddisk0\DR0\Partition4
16:56:21.0778 0852  \Device\Harddisk0\DR0\Partition4 - ok
16:56:21.0778 0852  ============================================================
16:56:21.0778 0852  Scan finished
16:56:21.0778 0852  ============================================================
16:56:21.0788 3536  Detected object count: 0
16:56:21.0788 3536  Actual detected object count: 0
16:58:18.0779 3556  ============================================================
16:58:18.0779 3556  Scan started
16:58:18.0779 3556  Mode: Manual; SigCheck; TDLFS;
16:58:18.0779 3556  ============================================================
16:58:30.0191 3556  ================ Scan system memory ========================
16:58:30.0191 3556  System memory - ok
16:58:30.0191 3556  ================ Scan services =============================
16:58:30.0509 3556  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
16:58:30.0556 3556  1394ohci - ok
16:58:30.0622 3556  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
16:58:30.0637 3556  ACPI - ok
16:58:30.0656 3556  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
16:58:30.0691 3556  AcpiPmi - ok
16:58:30.0995 3556  [ A283108E14F3970432C21AF4C0CB1BCE ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:58:31.0005 3556  AdobeFlashPlayerUpdateSvc - ok
16:58:31.0041 3556  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
16:58:31.0054 3556  adp94xx - ok
16:58:31.0160 3556  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
16:58:31.0175 3556  adpahci - ok
16:58:31.0187 3556  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
16:58:31.0196 3556  adpu320 - ok
16:58:31.0229 3556  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
16:58:31.0271 3556  AeLookupSvc - ok
16:58:31.0329 3556  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
16:58:31.0343 3556  AFD - ok
16:58:31.0377 3556  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
16:58:31.0386 3556  agp440 - ok
16:58:31.0407 3556  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
16:58:31.0430 3556  ALG - ok
16:58:31.0473 3556  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
16:58:31.0480 3556  aliide - ok
16:58:31.0538 3556  [ B3B263B419FC9E7B1D41E61FDAE45BD9 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
16:58:31.0552 3556  AMD External Events Utility - ok
16:58:31.0631 3556  AMD FUEL Service - ok
16:58:31.0661 3556  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
16:58:31.0669 3556  amdide - ok
16:58:31.0696 3556  [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64        C:\Windows\system32\DRIVERS\amdiox64.sys
16:58:31.0705 3556  amdiox64 - ok
16:58:31.0722 3556  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
16:58:31.0742 3556  AmdK8 - ok
16:58:32.0122 3556  [ 9A6E9363F7A5E5A06629D9DDC76EE6B5 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
16:58:32.0237 3556  amdkmdag - ok
16:58:32.0268 3556  [ 957A4C13E1981B1701E600EF1E823C68 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
16:58:32.0299 3556  amdkmdap - ok
16:58:32.0323 3556  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
16:58:32.0361 3556  AmdPPM - ok
16:58:32.0373 3556  [ 6EC6D772EAE38DC17C14AED9B178D24B ] amdsata         C:\Windows\system32\drivers\amdsata.sys
16:58:32.0381 3556  amdsata - ok
16:58:32.0442 3556  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
16:58:32.0453 3556  amdsbs - ok
16:58:32.0463 3556  [ 1142A21DB581A84EA5597B03A26EBAA0 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
16:58:32.0471 3556  amdxata - ok
16:58:32.0509 3556  [ 563EFD021AEB95CAE619643AD82F9D9F ] AODDriver4.2.0  C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
16:58:32.0512 3556  AODDriver4.2.0 ( UnsignedFile.Multi.Generic ) - warning
16:58:32.0512 3556  AODDriver4.2.0 - detected UnsignedFile.Multi.Generic (1)
16:58:32.0528 3556  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
16:58:32.0572 3556  AppID - ok
16:58:32.0629 3556  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
16:58:32.0653 3556  AppIDSvc - ok
16:58:32.0681 3556  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\Windows\System32\appinfo.dll
16:58:32.0701 3556  Appinfo - ok
16:58:32.0737 3556  [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt         C:\Windows\System32\appmgmts.dll
16:58:32.0760 3556  AppMgmt - ok
16:58:32.0785 3556  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\drivers\arc.sys
16:58:32.0793 3556  arc - ok
16:58:32.0834 3556  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\drivers\arcsas.sys
16:58:32.0842 3556  arcsas - ok
16:58:33.0066 3556  [ 041672BAC20B34EAEDEB033129655DD8 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
16:58:33.0078 3556  aspnet_state - ok
16:58:33.0124 3556  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
16:58:33.0156 3556  AsyncMac - ok
16:58:33.0183 3556  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
16:58:33.0192 3556  atapi - ok
16:58:33.0252 3556  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:58:33.0282 3556  AudioEndpointBuilder - ok
16:58:33.0307 3556  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
16:58:33.0335 3556  AudioSrv - ok
16:58:33.0351 3556  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
16:58:33.0363 3556  AxInstSV - ok
16:58:33.0393 3556  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
16:58:33.0415 3556  b06bdrv - ok
16:58:33.0447 3556  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
16:58:33.0469 3556  b57nd60a - ok
16:58:33.0509 3556  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
16:58:33.0517 3556  BDESVC - ok
16:58:33.0542 3556  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
16:58:33.0587 3556  Beep - ok
16:58:33.0644 3556  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
16:58:33.0716 3556  BFE - ok
16:58:33.0752 3556  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
16:58:33.0792 3556  BITS - ok
16:58:33.0839 3556  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
16:58:33.0852 3556  blbdrive - ok
16:58:33.0874 3556  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
16:58:33.0902 3556  bowser - ok
16:58:33.0946 3556  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
16:58:33.0958 3556  BrFiltLo - ok
16:58:33.0965 3556  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
16:58:33.0974 3556  BrFiltUp - ok
16:58:33.0988 3556  [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
16:58:34.0018 3556  BridgeMP - ok
16:58:34.0042 3556  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
16:58:34.0052 3556  Browser - ok
16:58:34.0077 3556  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
16:58:34.0087 3556  Brserid - ok
16:58:34.0104 3556  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
16:58:34.0139 3556  BrSerWdm - ok
16:58:34.0170 3556  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
16:58:34.0206 3556  BrUsbMdm - ok
16:58:34.0217 3556  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
16:58:34.0243 3556  BrUsbSer - ok
16:58:34.0265 3556  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
16:58:34.0285 3556  BTHMODEM - ok
16:58:34.0307 3556  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
16:58:34.0355 3556  bthserv - ok
16:58:34.0441 3556  [ AFF161D4CD2F6135CE046D67787C4AA5 ] CALoadService   C:\Program Files\AMD\CodeAnalyst\bin\CALoadService.exe
16:58:34.0444 3556  CALoadService ( UnsignedFile.Multi.Generic ) - warning
16:58:34.0444 3556  CALoadService - detected UnsignedFile.Multi.Generic (1)
16:58:34.0481 3556  [ C4135AB275FBCD313BA2DE2326CF681D ] CAPROF          C:\Windows\system32\drivers\CAPROF.sys
16:58:34.0489 3556  CAPROF - ok
16:58:34.0508 3556  catchme - ok
16:58:34.0537 3556  [ C4CD89586C9A60D75988B71261BD418A ] CAUTILITY       C:\Windows\system32\drivers\CAUTILITY.sys
16:58:34.0543 3556  CAUTILITY - ok
16:58:34.0565 3556  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
16:58:34.0592 3556  cdfs - ok
16:58:34.0645 3556  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
16:58:34.0656 3556  cdrom - ok
16:58:34.0706 3556  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
16:58:34.0742 3556  CertPropSvc - ok
16:58:34.0753 3556  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\drivers\circlass.sys
16:58:34.0770 3556  circlass - ok
16:58:34.0807 3556  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
16:58:34.0819 3556  CLFS - ok
16:58:34.0912 3556  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:58:34.0919 3556  clr_optimization_v2.0.50727_32 - ok
16:58:34.0947 3556  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:58:34.0954 3556  clr_optimization_v2.0.50727_64 - ok
16:58:35.0030 3556  [ 397C2677C25CBE213F3270245A401624 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:58:35.0045 3556  clr_optimization_v4.0.30319_32 - ok
16:58:35.0091 3556  [ 29139759FCC4E4E0531ABE2EA82CE646 ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:58:35.0106 3556  clr_optimization_v4.0.30319_64 - ok
16:58:35.0215 3556  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
16:58:35.0230 3556  CmBatt - ok
16:58:35.0288 3556  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
16:58:35.0297 3556  cmdide - ok
16:58:35.0397 3556  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
16:58:35.0415 3556  CNG - ok
16:58:35.0482 3556  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
16:58:35.0493 3556  Compbatt - ok
16:58:35.0511 3556  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
16:58:35.0537 3556  CompositeBus - ok
16:58:35.0555 3556  COMSysApp - ok
16:58:35.0702 3556  cpuz136 - ok
16:58:35.0758 3556  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
16:58:35.0767 3556  crcdisk - ok
16:58:35.0826 3556  [ 6B400F211BEE880A37A1ED0368776BF4 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
16:58:35.0840 3556  CryptSvc - ok
16:58:35.0895 3556  [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC             C:\Windows\system32\drivers\csc.sys
16:58:35.0908 3556  CSC - ok
16:58:35.0942 3556  [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService      C:\Windows\System32\cscsvc.dll
16:58:35.0979 3556  CscService - ok
16:58:36.0066 3556  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
16:58:36.0103 3556  DcomLaunch - ok
16:58:36.0155 3556  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
16:58:36.0196 3556  defragsvc - ok
16:58:36.0216 3556  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
16:58:36.0240 3556  DfsC - ok
16:58:36.0246 3556  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
16:58:36.0264 3556  Dhcp - ok
16:58:36.0359 3556  [ 8B9D1996CA682FB555DD0E9DADAE8EE7 ] DirMngr         C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe
16:58:36.0379 3556  DirMngr ( UnsignedFile.Multi.Generic ) - warning
16:58:36.0379 3556  DirMngr - detected UnsignedFile.Multi.Generic (1)
16:58:36.0411 3556  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
16:58:36.0437 3556  discache - ok
16:58:36.0453 3556  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\drivers\disk.sys
16:58:36.0461 3556  Disk - ok
16:58:36.0485 3556  [ 5DB085A8A6600BE6401F2B24EECB5415 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
16:58:36.0494 3556  dmvsc - ok
16:58:36.0534 3556  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
16:58:36.0554 3556  Dnscache - ok
16:58:36.0586 3556  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
16:58:36.0627 3556  dot3svc - ok
16:58:36.0632 3556  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
16:58:36.0665 3556  DPS - ok
16:58:36.0708 3556  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
16:58:36.0727 3556  drmkaud - ok
16:58:36.0768 3556  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
16:58:36.0785 3556  DXGKrnl - ok
16:58:36.0812 3556  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
16:58:36.0838 3556  EapHost - ok
16:58:36.0905 3556  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\drivers\evbda.sys
16:58:36.0938 3556  ebdrv - ok
16:58:37.0036 3556  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
16:58:37.0045 3556  EFS - ok
16:58:37.0066 3556  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
16:58:37.0080 3556  elxstor - ok
16:58:37.0093 3556  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
16:58:37.0109 3556  ErrDev - ok
16:58:37.0137 3556  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
16:58:37.0164 3556  EventSystem - ok
16:58:37.0209 3556  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
16:58:37.0238 3556  exfat - ok
16:58:37.0278 3556  [ 86B0FBC17425B0A00D431B3C8F4D2F9D ] Ext2Fsd         C:\Windows\system32\drivers\Ext2Fsd.sys
16:58:37.0293 3556  Ext2Fsd - ok
16:58:37.0298 3556  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
16:58:37.0334 3556  fastfat - ok
16:58:37.0381 3556  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
16:58:37.0405 3556  Fax - ok
16:58:37.0431 3556  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\drivers\fdc.sys
16:58:37.0470 3556  fdc - ok
16:58:37.0505 3556  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
16:58:37.0542 3556  fdPHost - ok
16:58:37.0570 3556  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
16:58:37.0594 3556  FDResPub - ok
16:58:37.0612 3556  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
16:58:37.0620 3556  FileInfo - ok
16:58:37.0642 3556  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
16:58:37.0666 3556  Filetrace - ok
16:58:37.0684 3556  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
16:58:37.0692 3556  flpydisk - ok
16:58:37.0706 3556  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
16:58:37.0716 3556  FltMgr - ok
16:58:37.0784 3556  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
16:58:37.0803 3556  FontCache - ok
16:58:37.0848 3556  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:58:37.0858 3556  FontCache3.0.0.0 - ok
16:58:37.0876 3556  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
16:58:37.0884 3556  FsDepends - ok
16:58:37.0912 3556  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
16:58:37.0920 3556  Fs_Rec - ok
16:58:37.0961 3556  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
16:58:37.0973 3556  fvevol - ok
16:58:38.0000 3556  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
16:58:38.0010 3556  gagp30kx - ok
16:58:38.0059 3556  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
16:58:38.0088 3556  gpsvc - ok
16:58:38.0091 3556  GPU-Z - ok
16:58:38.0115 3556  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
16:58:38.0133 3556  hcw85cir - ok
16:58:38.0173 3556  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:58:38.0201 3556  HdAudAddService - ok
16:58:38.0218 3556  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
16:58:38.0243 3556  HDAudBus - ok
16:58:38.0252 3556  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
16:58:38.0274 3556  HidBatt - ok
16:58:38.0300 3556  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
16:58:38.0322 3556  HidBth - ok
16:58:38.0354 3556  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\drivers\hidir.sys
16:58:38.0367 3556  HidIr - ok
16:58:38.0396 3556  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\System32\hidserv.dll
16:58:38.0441 3556  hidserv - ok
16:58:38.0455 3556  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
16:58:38.0463 3556  HidUsb - ok
16:58:38.0492 3556  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
16:58:38.0550 3556  hkmsvc - ok
16:58:38.0575 3556  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:58:38.0611 3556  HomeGroupListener - ok
16:58:38.0644 3556  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:58:38.0664 3556  HomeGroupProvider - ok
16:58:38.0674 3556  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
16:58:38.0682 3556  HpSAMD - ok
16:58:38.0706 3556  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
16:58:38.0750 3556  HTTP - ok
16:58:38.0785 3556  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
16:58:38.0794 3556  hwpolicy - ok
16:58:38.0811 3556  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
16:58:38.0820 3556  i8042prt - ok
16:58:38.0849 3556  [ 3DF4395A7CF8B7A72A5F4606366B8C2D ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
16:58:38.0861 3556  iaStorV - ok
16:58:38.0940 3556  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:58:38.0956 3556  idsvc - ok
16:58:38.0968 3556  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
16:58:38.0975 3556  iirsp - ok
16:58:39.0308 3556  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
16:58:39.0357 3556  IKEEXT - ok
16:58:39.0412 3556  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
16:58:39.0423 3556  intelide - ok
16:58:39.0459 3556  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\drivers\intelppm.sys
16:58:39.0485 3556  intelppm - ok
16:58:39.0541 3556  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
16:58:39.0584 3556  IPBusEnum - ok
16:58:39.0601 3556  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:58:39.0652 3556  IpFilterDriver - ok
16:58:39.0747 3556  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
16:58:39.0776 3556  iphlpsvc - ok
16:58:39.0789 3556  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
16:58:39.0798 3556  IPMIDRV - ok
16:58:39.0812 3556  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
16:58:39.0862 3556  IPNAT - ok
16:58:39.0891 3556  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
16:58:39.0904 3556  IRENUM - ok
16:58:39.0928 3556  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
16:58:39.0935 3556  isapnp - ok
16:58:39.0970 3556  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
16:58:39.0981 3556  iScsiPrt - ok
16:58:40.0001 3556  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
16:58:40.0008 3556  kbdclass - ok
16:58:40.0046 3556  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
16:58:40.0071 3556  kbdhid - ok
16:58:40.0102 3556  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
16:58:40.0112 3556  KeyIso - ok
16:58:40.0167 3556  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
16:58:40.0177 3556  KSecDD - ok
16:58:40.0291 3556  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
16:58:40.0305 3556  KSecPkg - ok
16:58:40.0344 3556  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
16:58:40.0391 3556  ksthunk - ok
16:58:40.0415 3556  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
16:58:40.0457 3556  KtmRm - ok
16:58:40.0580 3556  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\System32\srvsvc.dll
16:58:40.0659 3556  LanmanServer - ok
16:58:40.0943 3556  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:58:40.0985 3556  LanmanWorkstation - ok
16:58:41.0044 3556  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
16:58:41.0073 3556  lltdio - ok
16:58:41.0108 3556  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
16:58:41.0269 3556  lltdsvc - ok
16:58:41.0353 3556  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
16:58:41.0377 3556  lmhosts - ok
16:58:41.0411 3556  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
16:58:41.0420 3556  LSI_FC - ok
16:58:41.0522 3556  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
16:58:41.0530 3556  LSI_SAS - ok
16:58:41.0559 3556  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
16:58:41.0567 3556  LSI_SAS2 - ok
16:58:41.0682 3556  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
16:58:41.0692 3556  LSI_SCSI - ok
16:58:41.0738 3556  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
16:58:41.0774 3556  luafv - ok
16:58:41.0853 3556  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\drivers\megasas.sys
16:58:41.0864 3556  megasas - ok
16:58:41.0908 3556  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
16:58:41.0919 3556  MegaSR - ok
16:58:41.0947 3556  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
16:58:41.0991 3556  MMCSS - ok
16:58:42.0013 3556  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
16:58:42.0050 3556  Modem - ok
16:58:42.0061 3556  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
16:58:42.0079 3556  monitor - ok
16:58:42.0183 3556  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
16:58:42.0195 3556  mouclass - ok
16:58:42.0230 3556  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
16:58:42.0279 3556  mouhid - ok
16:58:42.0303 3556  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
16:58:42.0311 3556  mountmgr - ok
16:58:42.0363 3556  [ 0329A45C849C9D77901094B8FFE8BBB9 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
16:58:42.0375 3556  MozillaMaintenance - ok
16:58:42.0448 3556  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
16:58:42.0458 3556  mpio - ok
16:58:42.0509 3556  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
16:58:42.0540 3556  mpsdrv - ok
16:58:42.0620 3556  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
16:58:42.0666 3556  MpsSvc - ok
16:58:42.0692 3556  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
16:58:42.0727 3556  MRxDAV - ok
16:58:42.0818 3556  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
16:58:42.0861 3556  mrxsmb - ok
16:58:42.0951 3556  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:58:42.0965 3556  mrxsmb10 - ok
16:58:42.0996 3556  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:58:43.0006 3556  mrxsmb20 - ok
16:58:43.0096 3556  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
16:58:43.0122 3556  msahci - ok
16:58:43.0158 3556  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
16:58:43.0171 3556  msdsm - ok
16:58:43.0195 3556  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
16:58:43.0227 3556  MSDTC - ok
16:58:43.0265 3556  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
16:58:43.0291 3556  Msfs - ok
16:58:43.0306 3556  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
16:58:43.0354 3556  mshidkmdf - ok
16:58:43.0371 3556  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
16:58:43.0379 3556  msisadrv - ok
16:58:43.0406 3556  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
16:58:43.0446 3556  MSiSCSI - ok
16:58:43.0449 3556  msiserver - ok
16:58:43.0507 3556  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
16:58:43.0539 3556  MSKSSRV - ok
16:58:43.0555 3556  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
16:58:43.0579 3556  MSPCLOCK - ok
16:58:43.0674 3556  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
16:58:43.0721 3556  MSPQM - ok
16:58:43.0737 3556  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
16:58:43.0748 3556  MsRPC - ok
16:58:43.0828 3556  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
16:58:43.0836 3556  mssmbios - ok
16:58:43.0897 3556  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
16:58:43.0940 3556  MSTEE - ok
16:58:44.0018 3556  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
16:58:44.0029 3556  MTConfig - ok
16:58:44.0086 3556  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
16:58:44.0098 3556  Mup - ok
16:58:44.0245 3556  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
16:58:44.0280 3556  napagent - ok
16:58:44.0378 3556  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
16:58:44.0406 3556  NativeWifiP - ok
16:58:44.0603 3556  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
16:58:44.0637 3556  NDIS - ok
16:58:44.0663 3556  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
16:58:44.0714 3556  NdisCap - ok
16:58:44.0728 3556  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
16:58:44.0751 3556  NdisTapi - ok
16:58:44.0799 3556  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
16:58:44.0853 3556  Ndisuio - ok
16:58:44.0891 3556  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
16:58:44.0939 3556  NdisWan - ok
16:58:44.0994 3556  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
16:58:45.0020 3556  NDProxy - ok
16:58:45.0042 3556  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
16:58:45.0066 3556  NetBIOS - ok
16:58:45.0119 3556  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
16:58:45.0180 3556  NetBT - ok
16:58:45.0202 3556  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
16:58:45.0211 3556  Netlogon - ok
16:58:45.0307 3556  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
16:58:45.0351 3556  Netman - ok
16:58:45.0430 3556  [ 9A7D3A1AA5C830744FF6C44BB55A347A ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:58:45.0443 3556  NetMsmqActivator - ok
16:58:45.0464 3556  [ 9A7D3A1AA5C830744FF6C44BB55A347A ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:58:45.0502 3556  NetPipeActivator - ok
16:58:45.0610 3556  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
16:58:46.0170 3556  netprofm - ok
16:58:46.0211 3556  [ 9A7D3A1AA5C830744FF6C44BB55A347A ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:58:46.0223 3556  NetTcpActivator - ok
16:58:46.0240 3556  [ 9A7D3A1AA5C830744FF6C44BB55A347A ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:58:46.0250 3556  NetTcpPortSharing - ok
16:58:46.0281 3556  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
16:58:46.0288 3556  nfrd960 - ok
16:58:46.0378 3556  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
16:58:46.0390 3556  NlaSvc - ok
16:58:46.0431 3556  [ DE7FCC77F4A503AF4CA6A47D49B3713D ] NPF             C:\Windows\system32\drivers\npf.sys
16:58:46.0441 3556  NPF - ok
16:58:46.0463 3556  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
16:58:46.0487 3556  Npfs - ok
16:58:46.0518 3556  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
16:58:46.0545 3556  nsi - ok
16:58:46.0579 3556  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
16:58:46.0605 3556  nsiproxy - ok
16:58:47.0195 3556  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
16:58:47.0219 3556  Ntfs - ok
16:58:47.0250 3556  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
16:58:47.0274 3556  Null - ok
16:58:47.0288 3556  [ 5D9FD91F3D38DC9DA01E3CB5FA89CD48 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
16:58:47.0297 3556  nvraid - ok
16:58:47.0321 3556  [ F7CD50FE7139F07E77DA8AC8033D1832 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
16:58:47.0330 3556  nvstor - ok
16:58:47.0347 3556  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
16:58:47.0355 3556  nv_agp - ok
16:58:47.0370 3556  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
16:58:47.0379 3556  ohci1394 - ok
16:58:47.0428 3556  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
16:58:47.0452 3556  p2pimsvc - ok
16:58:47.0493 3556  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
16:58:47.0508 3556  p2psvc - ok
16:58:47.0528 3556  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\drivers\parport.sys
16:58:47.0537 3556  Parport - ok
16:58:47.0581 3556  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
16:58:47.0590 3556  partmgr - ok
16:58:47.0613 3556  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
16:58:47.0638 3556  PcaSvc - ok
16:58:47.0652 3556  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
16:58:47.0661 3556  pci - ok
16:58:47.0703 3556  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
16:58:47.0710 3556  pciide - ok
16:58:47.0743 3556  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
16:58:47.0753 3556  pcmcia - ok
16:58:47.0782 3556  [ 9C5A3CB8AC4E77DB73B5A23FADA7AFD7 ] PCORE           C:\Windows\system32\drivers\PCORE.sys
16:58:47.0788 3556  PCORE - ok
16:58:47.0813 3556  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
16:58:47.0821 3556  pcw - ok
16:58:47.0906 3556  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
16:58:47.0935 3556  PEAUTH - ok
16:58:48.0008 3556  [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
16:58:48.0042 3556  PeerDistSvc - ok
16:58:48.0246 3556  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
16:58:48.0255 3556  PerfHost - ok
16:58:48.0331 3556  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
16:58:48.0374 3556  pla - ok
16:58:48.0430 3556  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
16:58:48.0459 3556  PlugPlay - ok
16:58:48.0478 3556  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
16:58:48.0503 3556  PNRPAutoReg - ok
16:58:48.0524 3556  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
16:58:48.0535 3556  PNRPsvc - ok
16:58:48.0563 3556  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
16:58:48.0605 3556  PolicyAgent - ok
16:58:48.0663 3556  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
16:58:48.0716 3556  Power - ok
16:58:48.0773 3556  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
16:58:48.0821 3556  PptpMiniport - ok
16:58:48.0870 3556  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\drivers\processr.sys
16:58:48.0882 3556  Processor - ok
16:58:48.0947 3556  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
16:58:48.0972 3556  ProfSvc - ok
16:58:48.0990 3556  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
16:58:48.0998 3556  ProtectedStorage - ok
16:58:49.0041 3556  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
16:58:49.0066 3556  Psched - ok
16:58:49.0151 3556  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
16:58:49.0177 3556  ql2300 - ok
16:58:49.0196 3556  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
16:58:49.0204 3556  ql40xx - ok
16:58:49.0264 3556  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
16:58:49.0282 3556  QWAVE - ok
16:58:49.0302 3556  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
16:58:49.0336 3556  QWAVEdrv - ok
16:58:49.0354 3556  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
16:58:49.0405 3556  RasAcd - ok
16:58:49.0460 3556  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
16:58:49.0488 3556  RasAgileVpn - ok
16:58:49.0539 3556  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
16:58:49.0587 3556  RasAuto - ok
16:58:49.0606 3556  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
16:58:49.0654 3556  Rasl2tp - ok
16:58:49.0695 3556  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
16:58:49.0727 3556  RasMan - ok
16:58:49.0750 3556  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
16:58:49.0793 3556  RasPppoe - ok
16:58:49.0814 3556  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
16:58:49.0858 3556  RasSstp - ok
16:58:49.0930 3556  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
16:58:49.0955 3556  rdbss - ok
16:58:49.0984 3556  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
16:58:50.0019 3556  rdpbus - ok
16:58:50.0029 3556  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
16:58:50.0053 3556  RDPCDD - ok
16:58:50.0084 3556  [ 1B6163C503398B23FF8B939C67747683 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
16:58:50.0092 3556  RDPDR - ok
16:58:50.0118 3556  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
16:58:50.0145 3556  RDPENCDD - ok
16:58:50.0165 3556  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
16:58:50.0189 3556  RDPREFMP - ok
16:58:50.0263 3556  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
16:58:50.0273 3556  RDPWD - ok
16:58:50.0292 3556  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
16:58:50.0302 3556  rdyboost - ok
16:58:50.0348 3556  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
16:58:50.0390 3556  RemoteAccess - ok
16:58:50.0427 3556  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
16:58:50.0457 3556  RemoteRegistry - ok
16:58:50.0555 3556  [ 83A6C2CAFE236652D1559640594A0EA8 ] rpcapd          C:\Program Files (x86)\WinPcap\rpcapd.exe
16:58:50.0564 3556  rpcapd - ok
16:58:50.0582 3556  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
16:58:50.0623 3556  RpcEptMapper - ok
16:58:50.0652 3556  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
16:58:50.0661 3556  RpcLocator - ok
16:58:50.0725 3556  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
16:58:50.0756 3556  RpcSs - ok
16:58:50.0793 3556  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
16:58:50.0820 3556  rspndr - ok
16:58:50.0918 3556  [ 6FA271B6816AFFAEF640808FC51AC8AF ] RTCore64        C:\Program Files (x86)\MSI Afterburner\RTCore64.sys
16:58:50.0929 3556  RTCore64 - ok
16:58:50.0959 3556  [ BAEFEE35D27A5440D35092CE10267BEC ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
16:58:50.0984 3556  RTL8167 - ok
16:58:51.0019 3556  [ E60C0A09F997826C7627B244195AB581 ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
16:58:51.0050 3556  s3cap - ok
16:58:51.0068 3556  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
16:58:51.0076 3556  SamSs - ok
16:58:51.0096 3556  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
16:58:51.0105 3556  sbp2port - ok
16:58:51.0168 3556  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
16:58:51.0199 3556  SCardSvr - ok
16:58:51.0227 3556  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
16:58:51.0275 3556  scfilter - ok
16:58:51.0310 3556  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
16:58:51.0353 3556  Schedule - ok
16:58:51.0372 3556  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
16:58:51.0397 3556  SCPolicySvc - ok
16:58:51.0456 3556  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
16:58:51.0494 3556  SDRSVC - ok
16:58:51.0541 3556  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
16:58:51.0584 3556  secdrv - ok
16:58:51.0600 3556  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
16:58:51.0626 3556  seclogon - ok
16:58:51.0643 3556  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\system32\sens.dll
16:58:51.0693 3556  SENS - ok
16:58:51.0725 3556  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
16:58:51.0735 3556  SensrSvc - ok
16:58:51.0755 3556  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
16:58:51.0763 3556  Serenum - ok
16:58:51.0798 3556  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
16:58:51.0806 3556  Serial - ok
16:58:51.0829 3556  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
16:58:51.0865 3556  sermouse - ok
16:58:51.0907 3556  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
16:58:51.0934 3556  SessionEnv - ok
16:58:51.0958 3556  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
16:58:51.0967 3556  sffdisk - ok
16:58:51.0991 3556  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
16:58:52.0001 3556  sffp_mmc - ok
16:58:52.0028 3556  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
16:58:52.0052 3556  sffp_sd - ok
16:58:52.0086 3556  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
16:58:52.0130 3556  sfloppy - ok
16:58:52.0162 3556  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
16:58:52.0195 3556  SharedAccess - ok
16:58:52.0360 3556  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:58:52.0434 3556  ShellHWDetection - ok
16:58:52.0477 3556  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
16:58:52.0484 3556  SiSRaid2 - ok
16:58:52.0519 3556  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
16:58:52.0531 3556  SiSRaid4 - ok
16:58:52.0581 3556  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
16:58:52.0646 3556  Smb - ok
16:58:52.0700 3556  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
16:58:52.0709 3556  SNMPTRAP - ok
16:58:52.0750 3556  [ 0FFE35F0B0CD5A324BBE22F02569AE3B ] speedfan        C:\Windows\syswow64\speedfan.sys
16:58:52.0760 3556  speedfan - ok
16:58:52.0787 3556  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
16:58:52.0794 3556  spldr - ok
16:58:52.0882 3556  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
16:58:52.0898 3556  Spooler - ok
16:58:53.0196 3556  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
16:58:53.0247 3556  sppsvc - ok
16:58:53.0271 3556  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
16:58:53.0298 3556  sppuinotify - ok
16:58:53.0405 3556  [ 055B0DE7BCDB14FB18279F09DCA07954 ] SQLWriter       C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
16:58:53.0420 3556  SQLWriter - ok
16:58:53.0547 3556  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
16:58:53.0573 3556  srv - ok
16:58:53.0592 3556  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
16:58:53.0616 3556  srv2 - ok
16:58:53.0667 3556  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
16:58:53.0676 3556  srvnet - ok
16:58:53.0715 3556  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
16:58:53.0756 3556  SSDPSRV - ok
16:58:53.0801 3556  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
16:58:53.0826 3556  SstpSvc - ok
16:58:53.0989 3556  [ 3B273794CDC563C92314D01B9BFD40F7 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
16:58:54.0002 3556  Steam Client Service - ok
16:58:54.0030 3556  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\drivers\stexstor.sys
16:58:54.0038 3556  stexstor - ok
16:58:54.0063 3556  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
16:58:54.0080 3556  stisvc - ok
16:58:54.0114 3556  [ 7785DC213270D2FC066538DAF94087E7 ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
16:58:54.0123 3556  storflt - ok
16:58:54.0147 3556  [ C40841817EF57D491F22EB103DA587CC ] StorSvc         C:\Windows\system32\storsvc.dll
16:58:54.0171 3556  StorSvc - ok
16:58:54.0199 3556  [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
16:58:54.0208 3556  storvsc - ok
16:58:54.0254 3556  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
16:58:54.0265 3556  swenum - ok
16:58:54.0297 3556  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
16:58:54.0326 3556  swprv - ok
16:58:54.0542 3556  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
16:58:54.0592 3556  SysMain - ok
16:58:54.0630 3556  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:58:54.0653 3556  TabletInputService - ok
16:58:54.0693 3556  [ 3C32FF010F869BC184DF71290477384E ] tap0901         C:\Windows\system32\DRIVERS\tap0901.sys
16:58:54.0705 3556  tap0901 - ok
16:58:54.0749 3556  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
16:58:54.0785 3556  TapiSrv - ok
16:58:54.0801 3556  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
16:58:54.0826 3556  TBS - ok
16:58:54.0949 3556  [ DB74544B75566C974815E79A62433F29 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
16:58:54.0976 3556  Tcpip - ok
16:58:55.0054 3556  [ DB74544B75566C974815E79A62433F29 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
16:58:55.0080 3556  TCPIP6 - ok
16:58:55.0113 3556  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
16:58:55.0121 3556  tcpipreg - ok
16:58:55.0142 3556  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
16:58:55.0158 3556  TDPIPE - ok
16:58:55.0226 3556  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
16:58:55.0255 3556  TDTCP - ok
16:58:55.0281 3556  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
16:58:55.0307 3556  tdx - ok
16:58:55.0330 3556  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
16:58:55.0338 3556  TermDD - ok
16:58:55.0391 3556  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
16:58:55.0435 3556  TermService - ok
16:58:55.0446 3556  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
16:58:55.0459 3556  Themes - ok
16:58:55.0492 3556  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
16:58:55.0519 3556  THREADORDER - ok
16:58:55.0552 3556  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
16:58:55.0579 3556  TrkWks - ok
16:58:55.0673 3556  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:58:55.0699 3556  TrustedInstaller - ok
16:58:55.0775 3556  [ 4CE278FC9671BA81A138D70823FCAA09 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
16:58:55.0797 3556  tssecsrv - ok
16:58:55.0813 3556  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
16:58:55.0822 3556  TsUsbFlt - ok
16:58:55.0849 3556  [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
16:58:55.0877 3556  TsUsbGD - ok
16:58:55.0900 3556  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
16:58:55.0924 3556  tunnel - ok
16:58:55.0949 3556  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
16:58:55.0957 3556  uagp35 - ok
16:58:55.0980 3556  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
16:58:56.0020 3556  udfs - ok
16:58:56.0077 3556  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
16:58:56.0087 3556  UI0Detect - ok
16:58:56.0120 3556  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
16:58:56.0128 3556  uliagpkx - ok
16:58:56.0142 3556  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
16:58:56.0167 3556  umbus - ok
16:58:56.0179 3556  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\drivers\umpass.sys
16:58:56.0200 3556  UmPass - ok
16:58:56.0224 3556  [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService    C:\Windows\System32\umrdp.dll
16:58:56.0234 3556  UmRdpService - ok
16:58:56.0282 3556  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
16:58:56.0313 3556  upnphost - ok
16:58:56.0355 3556  [ 481DFF26B4DCA8F4CBAC1F7DCE1D6829 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
16:58:56.0366 3556  usbccgp - ok
16:58:56.0379 3556  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
16:58:56.0390 3556  usbcir - ok
16:58:56.0409 3556  [ 74EE782B1D9C241EFE425565854C661C ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
16:58:56.0439 3556  usbehci - ok
16:58:56.0505 3556  [ DC96BD9CCB8403251BCF25047573558E ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
16:58:56.0537 3556  usbhub - ok
16:58:56.0557 3556  [ 58E546BBAF87664FC57E0F6081E4F609 ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
16:58:56.0566 3556  usbohci - ok
16:58:56.0583 3556  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\drivers\usbprint.sys
16:58:56.0623 3556  usbprint - ok
16:58:56.0648 3556  [ D76510CFA0FC09023077F22C2F979D86 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:58:56.0674 3556  USBSTOR - ok
16:58:56.0699 3556  [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
16:58:56.0729 3556  usbuhci - ok
16:58:56.0759 3556  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
16:58:56.0799 3556  UxSms - ok
16:58:56.0813 3556  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
16:58:56.0837 3556  VaultSvc - ok
16:58:56.0897 3556  [ 68EF855725F65A5C3C24F78D33388F30 ] VBoxDrv         C:\Windows\system32\DRIVERS\VBoxDrv.sys
16:58:56.0906 3556  VBoxDrv - ok
16:58:56.0938 3556  [ 7FFC48B516856FD40B9F55687C8D70A2 ] VBoxNetAdp      C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
16:58:56.0946 3556  VBoxNetAdp - ok
16:58:56.0970 3556  [ 7A92E82A1DCC528F4E7D3F655BDEA6AA ] VBoxNetFlt      C:\Windows\system32\DRIVERS\VBoxNetFlt.sys
16:58:56.0978 3556  VBoxNetFlt - ok
16:58:57.0005 3556  [ F3CF9F56C2A8AEB50EB679DC76902BE0 ] VBoxUSBMon      C:\Windows\system32\DRIVERS\VBoxUSBMon.sys
16:58:57.0015 3556  VBoxUSBMon - ok
16:58:57.0032 3556  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
16:58:57.0040 3556  vdrvroot - ok
16:58:57.0117 3556  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
16:58:57.0166 3556  vds - ok
16:58:57.0189 3556  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
16:58:57.0199 3556  vga - ok
16:58:57.0218 3556  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
16:58:57.0243 3556  VgaSave - ok
16:58:57.0270 3556  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\DRIVERS\vhdmp.sys
16:58:57.0280 3556  vhdmp - ok
16:58:57.0323 3556  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
16:58:57.0332 3556  viaide - ok
16:58:57.0403 3556  [ 86EA3E79AE350FEA5331A1303054005F ] vmbus           C:\Windows\system32\drivers\vmbus.sys
16:58:57.0414 3556  vmbus - ok
16:58:57.0439 3556  [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
16:58:57.0473 3556  VMBusHID - ok
16:58:57.0502 3556  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
16:58:57.0510 3556  volmgr - ok
16:58:57.0525 3556  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
16:58:57.0536 3556  volmgrx - ok
16:58:57.0566 3556  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
16:58:57.0577 3556  volsnap - ok
16:58:57.0700 3556  [ 7230F5911D152B0B7263B9A5E58B91B4 ] VsEtwService120 D:\New folder (5)\Common7\Packages\Debugger\Services\VsEtwService.exe
16:58:57.0710 3556  VsEtwService120 - ok
16:58:57.0803 3556  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
16:58:57.0815 3556  vsmraid - ok
16:58:57.0913 3556  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
16:58:57.0967 3556  VSS - ok
16:58:57.0977 3556  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
16:58:57.0994 3556  vwifibus - ok
16:58:58.0017 3556  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
16:58:58.0046 3556  W32Time - ok
16:58:58.0090 3556  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
16:58:58.0120 3556  WacomPen - ok
16:58:58.0139 3556  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
16:58:58.0163 3556  WANARP - ok
16:58:58.0177 3556  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
16:58:58.0200 3556  Wanarpv6 - ok
16:58:58.0251 3556  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
16:58:58.0290 3556  wbengine - ok
16:58:58.0321 3556  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
16:58:58.0335 3556  WbioSrvc - ok
16:58:58.0347 3556  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
16:58:58.0381 3556  wcncsvc - ok
16:58:58.0395 3556  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:58:58.0404 3556  WcsPlugInService - ok
16:58:58.0432 3556  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\drivers\wd.sys
16:58:58.0441 3556  Wd - ok
16:58:58.0573 3556  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
16:58:58.0592 3556  Wdf01000 - ok
16:58:58.0625 3556  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
16:58:58.0665 3556  WdiServiceHost - ok
16:58:58.0669 3556  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
16:58:58.0682 3556  WdiSystemHost - ok
16:58:58.0693 3556  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
16:58:58.0727 3556  WebClient - ok
16:58:58.0748 3556  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
16:58:58.0789 3556  Wecsvc - ok
16:58:58.0809 3556  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
16:58:58.0834 3556  wercplsupport - ok
16:58:58.0872 3556  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
16:58:58.0898 3556  WerSvc - ok
16:58:58.0933 3556  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
16:58:58.0957 3556  WfpLwf - ok
16:58:58.0978 3556  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
16:58:58.0985 3556  WIMMount - ok
16:58:59.0006 3556  WinDefend - ok
16:58:59.0011 3556  WinHttpAutoProxySvc - ok
16:58:59.0118 3556  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
16:58:59.0149 3556  Winmgmt - ok
16:58:59.0204 3556  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
16:58:59.0244 3556  WinRM - ok
16:58:59.0287 3556  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
16:58:59.0299 3556  WinUsb - ok
16:58:59.0430 3556  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
16:58:59.0473 3556  Wlansvc - ok
16:58:59.0504 3556  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
16:58:59.0545 3556  WmiAcpi - ok
16:58:59.0581 3556  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
16:58:59.0603 3556  wmiApSrv - ok
16:58:59.0622 3556  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
16:58:59.0630 3556  WPCSvc - ok
16:58:59.0659 3556  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
16:58:59.0670 3556  WPDBusEnum - ok
16:58:59.0689 3556  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
16:58:59.0713 3556  ws2ifsl - ok
16:58:59.0731 3556  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
16:58:59.0764 3556  wscsvc - ok
16:58:59.0767 3556  WSearch - ok
16:58:59.0919 3556  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
16:58:59.0953 3556  wuauserv - ok
16:58:59.0992 3556  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
16:59:00.0034 3556  WudfPf - ok
16:59:00.0082 3556  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
16:59:00.0110 3556  WUDFRd - ok
16:59:00.0156 3556  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
16:59:00.0177 3556  wudfsvc - ok
16:59:00.0248 3556  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\Windows\System32\wwansvc.dll
16:59:00.0271 3556  WwanSvc - ok
16:59:00.0276 3556  ================ Scan global ===============================
16:59:00.0320 3556  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
16:59:00.0405 3556  [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
16:59:00.0426 3556  [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
16:59:00.0469 3556  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
16:59:00.0535 3556  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
16:59:00.0537 3556  [Global] - ok
16:59:00.0538 3556  ================ Scan MBR ==================================
16:59:00.0564 3556  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
16:59:02.0546 3556  \Device\Harddisk0\DR0 - ok
16:59:02.0546 3556  ================ Scan VBR ==================================
16:59:02.0573 3556  [ A1A1CC4BA4AE1C51FC0245E9B1587FFB ] \Device\Harddisk0\DR0\Partition1
16:59:02.0573 3556  \Device\Harddisk0\DR0\Partition1 - ok
16:59:02.0603 3556  [ A7065DFF2A185DF61DA94839652A5949 ] \Device\Harddisk0\DR0\Partition2
16:59:02.0611 3556  \Device\Harddisk0\DR0\Partition2 - ok
16:59:02.0621 3556  [ DBB87BA5D16BCEE808EE401CC3C004EC ] \Device\Harddisk0\DR0\Partition3
16:59:02.0623 3556  \Device\Harddisk0\DR0\Partition3 - ok
16:59:02.0647 3556  [ 90D65146A4D9989A8205ECDF8CF2E470 ] \Device\Harddisk0\DR0\Partition4
16:59:02.0650 3556  \Device\Harddisk0\DR0\Partition4 - ok
16:59:02.0650 3556  ============================================================
16:59:02.0650 3556  Scan finished
16:59:02.0650 3556  ============================================================
16:59:02.0658 1672  Detected object count: 3
16:59:02.0658 1672  Actual detected object count: 3
16:59:15.0932 1672  C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys - copied to quarantine
16:59:15.0932 1672  HKLM\SYSTEM\ControlSet001\services\AODDriver4.2.0 - will be deleted on reboot
16:59:15.0963 1672  HKLM\SYSTEM\ControlSet002\services\AODDriver4.2.0 - will be deleted on reboot
16:59:16.0194 1672  C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys - will be deleted on reboot
16:59:16.0194 1672  AODDriver4.2.0 ( UnsignedFile.Multi.Generic ) - User select action: Delete
16:59:16.0298 1672  C:\Program Files\AMD\CodeAnalyst\bin\CALoadService.exe - copied to quarantine
16:59:16.0298 1672  HKLM\SYSTEM\ControlSet001\services\CALoadService - will be deleted on reboot
16:59:16.0319 1672  HKLM\SYSTEM\ControlSet002\services\CALoadService - will be deleted on reboot
16:59:16.0323 1672  C:\Program Files\AMD\CodeAnalyst\bin\CALoadService.exe - will be deleted on reboot
16:59:16.0323 1672  CALoadService ( UnsignedFile.Multi.Generic ) - User select action: Delete
16:59:16.0406 1672  C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe - copied to quarantine
16:59:16.0406 1672  HKLM\SYSTEM\ControlSet001\services\DirMngr - will be deleted on reboot
16:59:16.0423 1672  HKLM\SYSTEM\ControlSet002\services\DirMngr - will be deleted on reboot
16:59:16.0425 1672  C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe - will be deleted on reboot
16:59:16.0426 1672  DirMngr ( UnsignedFile.Multi.Generic ) - User select action: Delete
 

 



BC AdBot (Login to Remove)

 


#2 nasdaq

nasdaq

  • Malware Response Team
  • 38,764 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:04:39 AM

Posted 12 October 2013 - 09:09 AM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

--RogueKiller--
  • Download & SAVE to your Desktop RogueKiller for 32bit or Roguekiller for 64bit
  • Quit all programs that you may have started.
  • Please disconnect any USB or external drives from the computer before you run this scan!
  • For Vista or Windows 7, right-click and select "Run as Administrator to start"
  • For Windows XP, double-click to start.
  • Wait until Prescan has finished ...
  • Then Click on "Scan" button
  • Wait until the Status box shows "Scan Finished"
  • click on "delete"
  • Wait until the Status box shows "Deleting Finished"
  • Click on "Report" and copy/paste the content of the Notepad into your next reply.
  • The log should be found in RKreport[1].txt on your Desktop
  • Exit/Close RogueKiller+
===

Please download AdwCleaner by Xplode onto your Desktop.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click the Scan button and wait for the process to complete.
  • Click the Report button and the report will open in Notepad.
IMPORTANT
  • If you click the Clean button all items listed in the report will be removed.
If you find some false positive items or programs that you wish to keep, Close the AdwCleaner windows.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click the Scan button and wait for the process to complete.
  • Check off the element(s) you wish to keep.
  • Click on the Clean button follow the prompts.
  • A log file will automatically open after the scan has finished.
  • Please post the content of that log file with your next answer.
  • You can find the log file at C:\AdwCleaner[Sn].txt (n is a number).
thisisujrt.gif Please download
Junkware Removal Tool to your Desktop.
  • Please close your security software to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista or 7, right-mouse click it and select Run as administrator.
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete, depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your Desktop and will automatically open.
  • Please post the contents of JRT.txt into your reply.
===

Please download ComboFix from any of the links below, and save it to your desktop. For information regarding this download, please visit this web page: Turorial
Link 1
Link 2

IMPORTANT !!! Save ComboFix.exe to your Desktop

1. Close any open browsers.
2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.
3. Do not install any other programs until this if fixed.


How to : Disable Anti-virus and Firewall...
http://www.bleepingcomputer.com/forums/topic114351.html

Double click on ComboFix.exe and follow the prompts.
  • When finished, it will produce a report for you.
  • Please post the C:\ComboFix.txt
Note: Do not mouse click ComboFix's window while it's running. That may cause it to stall

Note: If you have difficulty properly disabling your protective programs, refer to this link --> http://www.bleepingcomputer.com/forums/topic114351.html

Note: If after running ComboFix you get this error message "Illegal operation attempted on a registry key that has been marked for deletion." when attempting to run a program all you need to do is restart the computer to reset the registry.
===

Please paste the logs in your next reply DO NOT ATTACH THEM.
Let me know what problem persists.

#3 nasdaq

nasdaq

  • Malware Response Team
  • 38,764 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:04:39 AM

Posted 18 October 2013 - 08:56 AM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

Please include a link to your topic in the Private Message. Thank you.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users