Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

PWS:Win32/Zbot.gen!AP


  • This topic is locked This topic is locked
8 replies to this topic

#1 LEAMIE22

LEAMIE22

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:11:57 AM

Posted 21 December 2013 - 09:34 PM

Severe | Not found | Quarantine

Category: Password Stealer

Description: This program is dangerous and captures user passwords.

Recommended action: Remove this software immediately.

Items:
process:pid:3916

 

Using Microsoft Security Essentials

 

Plus I was originall having trouble with a VIRUS:DOS/ something and it keeps disappearing then reappearing,

any help would be hugely appreciated :)



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,329 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:57 PM

Posted 21 December 2013 - 09:53 PM

Hello, let's also run these then.

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
.
.
.
ADW Cleaner

Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool
  • Click on the Scan button.
  • AdwCleaner will begin to scan your computer like it did before.
  • After the scan has finished...
    <-insert any special instructions here for what to uncheck OR remove this line if there are none->
  • This time click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S#].txt) will open automatically (where the largest value of # represents the most recent report).
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.
  • .
    .
    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
    • Shut down your protection software now to avoid potential conflicts.
    • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
    • The tool will open and start scanning your system.
    • Please be patient as this can take a while to complete depending on your system's specifications.
    • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
    • Post the contents of JRT.txt into your next message.
    .
    .
    .
    .
    • Last run ESET.
      • Hold down Control and click on this link to open ESET OnlineScan in a new window.
      • Click the esetonlinebtn.png button.
      • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
      • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
      • Double click on the esetsmartinstaller_enu.png icon on your desktop.
      • Check "YES, I accept the Terms of Use."
      • Click the Start button.
      • Accept any security warnings from your browser.
      • Under scan settings, check "Scan Archives" and "Remove found threats"
      • Click Advanced settings and select the following:
      • Scan potentially unwanted applications
      • Scan for potentially unsafe applications
      • Enable Anti-Stealth technology
      • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
      • When the scan completes, click List Threats
      • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
      • Click the Back button.
      • Click the Finish button.
      • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 LEAMIE22

LEAMIE22
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:11:57 AM

Posted 22 December 2013 - 05:01 AM

MiniToolBox by Farbar  Version: 18-12-2013
Ran by Liam (administrator) on 22-12-2013 at 14:03:12
Running from "E:\Liam\Downloads"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================
127.0.0.1 hl2rcv.adobe.com ereg.wip3.adobe.com ereg.wip1.adobe.com
127.0.0.1 ood.opsource.net ereg.wip4.adobe.com ereg.wip.adobe.com activate-sjc0.adobe.com practivate.adobe.ipp activate.wip4.adobe.com 3dns-1.adobe.com activate.wip1.adobe.com 3dns.adobe.com
127.0.0.1 practivate.adobe.ntp activate.wip.adobe.com wip1.adobe.com 3dns-4.adobe.com activate.wip2.adobe.com practivate.adobe 3dns-2.adobe.com www.wip4.adobe.com 3dns-3.adobe.com
127.0.0.1 crl.verisign.net adobe-dns-4.adobe.com adobe-dns-1.adobe.com adobe-dns.adobe.com ereg.adobe.com wip4.adobe.com lm.licenses.adobe.com wip3.adobe.com na2m-pr.licenses.adobe.com
127.0.0.1 www.wip1.adobe.com adobeereg.com lmlicenses.wip4.adobe.com www.wip2.adobe.com ereg.wip2.adobe.com www.wip.adobe.com wip2.adobe.com practivate.adobe.newoa wwis-dubc1-vip60.adobe.com
127.0.0.1 wip.adobe.com adobe-dns-3.adobe.com www.adobeereg.com practivate.adobe.com activate-sea.adobe.com activate.wip3.adobe.com activate.adobe.com adobe-dns-2.adobe.com www.wip3.adobe.com
127.0.0.1 hl2rcv.adobe.com ereg.wip3.adobe.com ereg.wip1.adobe.com

========================= IP Configuration: ================================

Intel® Ethernet Connection I217-V = Local Area Connection (Connected)
Hamachi Network Interface = Hamachi (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add route prefix=0.0.0.0/0 interface="Hamachi" nexthop=25.0.0.1 publish=Yes
set interface interface="Hamachi" forwarding=disabled advertise=disabled metric=9000 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled advertisedrouterlifetime=0 advertisedefaultroute=disabled currenthoplimit=0 forcearpndwolpattern=disabled enabledirectedmacwolpattern=disabled


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : Liam-PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Intel® Ethernet Connection I217-V
   Physical Address. . . . . . . . . : BC-5F-F4-B8-D9-AC
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::ec53:4fc7:4897:ed3b%11(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.0.12(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Sunday, 22 December 2013 1:28:46 PM
   Lease Expires . . . . . . . . . . : Sunday, 22 December 2013 2:58:47 PM
   Default Gateway . . . . . . . . . : 192.168.0.1
   DHCP Server . . . . . . . . . . . : 192.168.0.1
   DHCPv6 IAID . . . . . . . . . . . : 247226356
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-19-8B-81-49-BC-5F-F4-B8-D9-AC
   DNS Servers . . . . . . . . . . . : 208.67.222.222
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Hamachi:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Hamachi Network Interface
   Physical Address. . . . . . . . . : 7A-79-19-4C-6A-4E
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2620:9b::194c:6a4e(Preferred)
   Link-local IPv6 Address . . . . . : fe80::387e:6066:6e81:c963%14(Preferred)
   IPv4 Address. . . . . . . . . . . : 25.76.106.78(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.0.0.0
   Lease Obtained. . . . . . . . . . : Sunday, 22 December 2013 1:28:42 PM
   Lease Expires . . . . . . . . . . : Monday, 22 December 2014 1:30:49 PM
   Default Gateway . . . . . . . . . : 2620:9b::1900:1
                                       25.0.0.1
   DHCP Server . . . . . . . . . . . : 25.0.0.1
   DHCPv6 IAID . . . . . . . . . . . : 326793686
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-19-8B-81-49-BC-5F-F4-B8-D9-AC
   DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
                                       fec0:0:0:ffff::2%1
                                       fec0:0:0:ffff::3%1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{F697CF68-6DA3-436A-804C-E32D749D2A87}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:90d7:18dd:9cb:876c:de5e(Preferred)
   Link-local IPv6 Address . . . . . : fe80::18dd:9cb:876c:de5e%13(Preferred)
   Default Gateway . . . . . . . . . :
   NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{DEB21AF5-D6CD-4106-A495-FC2889A8EFCC}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  resolver1.opendns.com
Address:  208.67.222.222

Name:    google.com
Addresses:  2404:6800:4006:805::1004
      74.125.237.163
      74.125.237.167
      74.125.237.174
      74.125.237.161
      74.125.237.162
      74.125.237.160
      74.125.237.165
      74.125.237.166
      74.125.237.164
      74.125.237.169
      74.125.237.168


Pinging google.com [74.125.237.168] with 32 bytes of data:
Reply from 74.125.237.168: bytes=32 time=36ms TTL=51
Reply from 74.125.237.168: bytes=32 time=23ms TTL=51

Ping statistics for 74.125.237.168:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 23ms, Maximum = 36ms, Average = 29ms
Server:  resolver1.opendns.com
Address:  208.67.222.222

Name:    yahoo.com
Addresses:  206.190.36.45
      98.139.183.24
      98.138.253.109


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=245ms TTL=43
Reply from 98.138.253.109: bytes=32 time=310ms TTL=43

Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 245ms, Maximum = 310ms, Average = 277ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=4ms TTL=128
Reply from 127.0.0.1: bytes=32 time=2ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 2ms, Maximum = 4ms, Average = 3ms
===========================================================================
Interface List
 11...bc 5f f4 b8 d9 ac ......Intel® Ethernet Connection I217-V
 14...7a 79 19 4c 6a 4e ......Hamachi Network Interface
  1...........................Software Loopback Interface 1
 12...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 15...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0         25.0.0.1     25.76.106.78   9256
          0.0.0.0          0.0.0.0      192.168.0.1     192.168.0.12     10
         25.0.0.0        255.0.0.0         On-link      25.76.106.78   9256
     25.76.106.78  255.255.255.255         On-link      25.76.106.78   9256
   25.255.255.255  255.255.255.255         On-link      25.76.106.78   9256
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.0.0    255.255.255.0         On-link      192.168.0.12    266
     192.168.0.12  255.255.255.255         On-link      192.168.0.12    266
    192.168.0.255  255.255.255.255         On-link      192.168.0.12    266
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.0.12    266
        224.0.0.0        240.0.0.0         On-link      25.76.106.78   9256
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.0.12    266
  255.255.255.255  255.255.255.255         On-link      25.76.106.78   9256
===========================================================================
Persistent Routes:
  Network Address          Netmask  Gateway Address  Metric
          0.0.0.0          0.0.0.0         25.0.0.1  Default
===========================================================================

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 14   9020 ::/0                     2620:9b::1900:1
  1    306 ::1/128                  On-link
 13     58 2001::/32                On-link
 13    306 2001:0:9d38:90d7:18dd:9cb:876c:de5e/128
                                    On-link
 14    276 2620:9b::/96             On-link
 14    276 2620:9b::194c:6a4e/128   On-link
 11    266 fe80::/64                On-link
 14    276 fe80::/64                On-link
 13    306 fe80::/64                On-link
 13    306 fe80::18dd:9cb:876c:de5e/128
                                    On-link
 14    276 fe80::387e:6066:6e81:c963/128
                                    On-link
 11    266 fe80::ec53:4fc7:4897:ed3b/128
                                    On-link
  1    306 ff00::/8                 On-link
 13    306 ff00::/8                 On-link
 11    266 ff00::/8                 On-link
 14    276 ff00::/8                 On-link
===========================================================================
Persistent Routes:
 If Metric Network Destination      Gateway
  0 4294967295 2620:9b::/96             On-link
  0   9000 ::/0                     2620:9b::1900:1
===========================================================================
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (12/20/2013 10:42:31 PM) (Source: Application Error) (User: )
Description: Faulting application name: speed2.exe, version: 0.0.0.0, time stamp: 0x417d8e48
Faulting module name: speed2.exe, version: 0.0.0.0, time stamp: 0x417d8e48
Exception code: 0x80000003
Fault offset: 0x00040089
Faulting process id: 0x177c
Faulting application start time: 0xspeed2.exe0
Faulting application path: speed2.exe1
Faulting module path: speed2.exe2
Report Id: speed2.exe3

Error: (12/20/2013 09:23:51 PM) (Source: Application Error) (User: )
Description: Faulting application name: speed2.exe, version: 0.0.0.0, time stamp: 0x417d8e48
Faulting module name: speed2.exe, version: 0.0.0.0, time stamp: 0x417d8e48
Exception code: 0xc0000005
Fault offset: 0x002f6859
Faulting process id: 0x10b0
Faulting application start time: 0xspeed2.exe0
Faulting application path: speed2.exe1
Faulting module path: speed2.exe2
Report Id: speed2.exe3

Error: (12/20/2013 06:52:01 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2028

Error: (12/20/2013 06:52:01 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2028

Error: (12/20/2013 06:52:01 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (12/20/2013 06:52:00 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1029

Error: (12/20/2013 06:52:00 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1029

Error: (12/20/2013 06:52:00 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (12/20/2013 05:34:00 PM) (Source: Application Hang) (User: )
Description: The program AutoRun.exe version 1.3.0.335 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1418

Start Time: 01cefd4d6ae4b111

Termination Time: 3

Application Path: C:\Users\Liam\AppData\Local\Temp\AutoRun.exe

Report Id: b1c0cf2a-6940-11e3-8b2d-bc5ff4b8d9ac

Error: (12/19/2013 10:53:13 PM) (Source: Windows Backup) (User: )
Description: The backup was not successful. The error is: The backup storage location is invalid. You cannot use a volume that is included in the backup as a storage location. (0x80780040).


System errors:
=============
Error: (12/22/2013 01:30:14 PM) (Source: Microsoft Antimalware) (User: )
Description: %Virus:DOS/Rovnix.W60 has encountered a critical error when taking action on malware or other potentially unwanted software.

For more information please see the following:
%Virus:DOS/Rovnix.W603

    Name: Virus:DOS/Rovnix.W

    ID: 2147684242

    Severity: %Virus:DOS/Rovnix.W600

    Category: %Virus:DOS/Rovnix.W602

    Path: 4.4.0304.02

    Detection Origin: 4.4.0304.04

    Detection Type: 4.4.0304.08

    Detection Source: %Virus:DOS/Rovnix.W608

    User: {393438D1-5755-49AF-ADDB-6D3695A9A610}9

    Process Name: %Virus:DOS/Rovnix.W609

    Action: {393438D1-5755-49AF-ADDB-6D3695A9A610}1

    Action Status:  {393438D1-5755-49AF-ADDB-6D3695A9A610}8

    Error Code: {393438D1-5755-49AF-ADDB-6D3695A9A610}3

    Error description: {393438D1-5755-49AF-ADDB-6D3695A9A610}4

    Signature Version: 2013-12-22T02:29:07.289Z1

    Engine Version: 2013-12-22T02:29:07.289Z2

Error: (12/22/2013 01:28:14 PM) (Source: Service Control Manager) (User: )
Description: The AVerRECentral service did not shut down properly after receiving a preshutdown control.

Error: (12/22/2013 01:15:15 PM) (Source: Microsoft Antimalware) (User: )
Description: %Virus:DOS/Rovnix.W60 has encountered a critical error when taking action on malware or other potentially unwanted software.

For more information please see the following:
%Virus:DOS/Rovnix.W603

    Name: Virus:DOS/Rovnix.W

    ID: 2147684242

    Severity: %Virus:DOS/Rovnix.W600

    Category: %Virus:DOS/Rovnix.W602

    Path: 4.4.0304.02

    Detection Origin: 4.4.0304.04

    Detection Type: 4.4.0304.08

    Detection Source: %Virus:DOS/Rovnix.W608

    User: {26C98F11-1BBD-4DB1-B42B-269E4E6D2DA2}9

    Process Name: %Virus:DOS/Rovnix.W609

    Action: {26C98F11-1BBD-4DB1-B42B-269E4E6D2DA2}1

    Action Status:  {26C98F11-1BBD-4DB1-B42B-269E4E6D2DA2}8

    Error Code: {26C98F11-1BBD-4DB1-B42B-269E4E6D2DA2}3

    Error description: {26C98F11-1BBD-4DB1-B42B-269E4E6D2DA2}4

    Signature Version: 2013-12-22T02:15:06.529Z1

    Engine Version: 2013-12-22T02:15:06.529Z2

Error: (12/22/2013 01:14:22 PM) (Source: Service Control Manager) (User: )
Description: The AVerRECentral service did not shut down properly after receiving a preshutdown control.

Error: (12/22/2013 01:13:57 PM) (Source: DCOM) (User: )
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}

Error: (12/22/2013 00:49:49 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (12/22/2013 00:49:45 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (12/22/2013 00:49:00 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (12/22/2013 00:48:15 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (12/22/2013 00:47:30 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068


Microsoft Office Sessions:
=========================
Error: (12/20/2013 10:42:31 PM) (Source: Application Error)(User: )
Description: speed2.exe0.0.0.0417d8e48speed2.exe0.0.0.0417d8e488000000300040089177c01cefd7269f437ccC:\Program Files (x86)\EA GAMES\Need for Speed Underground 2\speed2.exeC:\Program Files (x86)\EA GAMES\Need for Speed Underground 2\speed2.execeb9f111-696b-11e3-8b2d-bc5ff4b8d9ac

Error: (12/20/2013 09:23:51 PM) (Source: Application Error)(User: )
Description: speed2.exe0.0.0.0417d8e48speed2.exe0.0.0.0417d8e48c0000005002f685910b001cefd59b4dee1e1C:\Program Files (x86)\EA GAMES\Need for Speed Underground 2\speed2.exeC:\Program Files (x86)\EA GAMES\Need for Speed Underground 2\speed2.exed1631ab9-6960-11e3-8b2d-bc5ff4b8d9ac

Error: (12/20/2013 06:52:01 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2028

Error: (12/20/2013 06:52:01 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2028

Error: (12/20/2013 06:52:01 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (12/20/2013 06:52:00 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1029

Error: (12/20/2013 06:52:00 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1029

Error: (12/20/2013 06:52:00 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (12/20/2013 05:34:00 PM) (Source: Application Hang)(User: )
Description: AutoRun.exe1.3.0.335141801cefd4d6ae4b1113C:\Users\Liam\AppData\Local\Temp\AutoRun.exeb1c0cf2a-6940-11e3-8b2d-bc5ff4b8d9ac

Error: (12/19/2013 10:53:13 PM) (Source: Windows Backup)(User: )
Description: The backup storage location is invalid. You cannot use a volume that is included in the backup as a storage location. (0x80780040)


=========================== Installed Programs ============================

Adobe Flash Player 11 ActiveX (Version: 11.9.900.170)
Adobe Flash Player 11 Plugin (Version: 11.9.900.170)
Adobe Photoshop CS6 (Version: 13.0)
Adobe Reader XI (11.0.05) (Version: 11.0.05)
Apple Application Support (Version: 2.3.6)
Apple Mobile Device Support (Version: 7.0.0.117)
Apple Software Update (Version: 2.1.3.127)
Asmedia ASM106x SATA Host Controller Driver (Version: 1.3.8.000)
ASRock App Charger v1.0.5
Assassin's Creed IV Black Flag
AVerMedia C875 Live Gamer Portable 3.7.64.10 (Version: 3.7.64.10)
AVerMedia RECentral (Version: 1.3.0.45)
Bonjour (Version: 3.0.0.10)
Castle Story
CCleaner (Version: 4.04)
Contagion
Counter-Strike: Source
Creative System Information (Version: 1.10)
DAEMON Tools Lite (Version: 4.48.1.0347)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Facebook Video Calling 1.2.0.287 (Version: 1.2.287)
Force Feedback Driver for XInput (Version: 6.1.7600.16385)
Garry's Mod
Google Chrome (Version: 31.0.1650.63)
Google Update Helper (Version: 1.3.22.3)
Half-Life 2
Half-Life 2: Lost Coast
Halo Combat Evolved
Intel® Manageability Engine Firmware Recovery Agent (Version: 1.0.0.36702)
Intel® Management Engine Components (Version: 9.0.0.1323)
Intel® Network Connections 18.2.63.0 (Version: 18.2.63.0)
Intel® Rapid Storage Technology (Version: 12.5.0.1066)
Intel® Smart Connect Technology 4.1 x64 (Version: 4.1.40.2143)
Intel® USB 3.0 eXtensible Host Controller Driver (Version: 2.0.0.100)
Intel® Trusted Connect Service Client (Version: 1.27.798.1)
iTunes (Version: 11.1.3.8)
Java 7 Update 25 (64-bit) (Version: 7.0.250)
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 31 (Version: 6.0.310)
Left 4 Dead 2 Beta
LogMeIn Hamachi (Version: 2.2.0.109)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Corporation (Version: 9.1.0.0)
Microsoft LifeCam (Version: 3.60.253.0)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.4734.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.4734.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.4734.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.4734.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Security Client (Version: 4.4.0304.0)
Microsoft Security Essentials (Version: 4.4.304.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (Version: 11.0.60610.1)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (Version: 11.0.60610.1)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610)
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (Version: 11.0.60610)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (Version: 11.0.60610)
Microsoft Xbox 360 Accessories 1.2 (Version: 1.20.146.0)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Mozilla Firefox 26.0 (x86 en-US) (Version: 26.0)
Mozilla Maintenance Service (Version: 26.0)
Need for Speed Underground 2
No More Room in Hell
NVIDIA PhysX (Version: 9.12.1031)
Open Broadcaster Software
PDF Settings CS6 (Version: 11.0)
PlanetSide 2 (Version: 1.0.3.183)
Project64 1.6 (Version: 1.6)
PunkBuster Services (Version: 0.991)
Realtek High Definition Audio Driver (Version: 6.0.1.6873)
Revo Uninstaller 1.95 (Version: 1.95)
Revo Uninstaller Pro 3.0.7 (Version: 3.0.7)
Skype Click to Call (Version: 6.13.13771)
Skype™ 6.7 (Version: 6.7.102)
Sleeping Dogs™
Sound Blaster Tactic(3D) Sigma (Version: 1.0)
Steam (Version: 1.0.0.0)
System Requirements Lab CYRI (Version: 6.0.7.0)
Team Fortress 2
The Elder Scrolls V: Skyrim
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (Version: 3)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition
Uplay (Version: 4.0)
VC_CRT_x64 (Version: 1.02.0000)
VLC media player 2.1.2 (Version: 2.1.2)
Vuze (Version: 5.0.0.0)
XSplit Broadcaster (Version: 1.3.1310.1103)

========================= Memory info: ===================================

Percentage of memory in use: 21%
Total physical RAM: 16320.49 MB
Available physical RAM: 12816.03 MB
Total Pagefile: 32639.16 MB
Available Pagefile: 28700.87 MB
Total Virtual: 4095.88 MB
Available Virtual: 3960.32 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:111.51 GB) (Free:50.75 GB) NTFS
2 Drive d: (AC4BFPC_DISK3) (CDROM) (Total:7.34 GB) (Free:0 GB) UDF
3 Drive e: (New Volume) (Fixed) (Total:931.51 GB) (Free:314.86 GB) NTFS
4 Drive f: () (Removable) (Total:3.73 GB) (Free:3.64 GB) FAT32

========================= Users: ========================================

User accounts for \\LIAM-PC

Administrator            Guest                    Liam                     


**** End of log ****
 


14:04:44.0948 5640  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
14:04:46.0142 5640  ============================================================
14:04:46.0142 5640  Current date / time: 2013/12/22 14:04:46.0142
14:04:46.0142 5640  SystemInfo:
14:04:46.0142 5640  
14:04:46.0142 5640  OS Version: 6.1.7601 ServicePack: 1.0
14:04:46.0142 5640  Product type: Workstation
14:04:46.0142 5640  ComputerName: LIAM-PC
14:04:46.0142 5640  UserName: Liam
14:04:46.0142 5640  Windows directory: C:\Windows
14:04:46.0142 5640  System windows directory: C:\Windows
14:04:46.0142 5640  Running under WOW64
14:04:46.0142 5640  Processor architecture: Intel x64
14:04:46.0142 5640  Number of processors: 8
14:04:46.0142 5640  Page size: 0x1000
14:04:46.0142 5640  Boot type: Normal boot
14:04:46.0142 5640  ============================================================
14:04:46.0392 5640  Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:04:46.0407 5640  Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:04:46.0413 5640  Drive \Device\Harddisk2\DR2 - Size: 0xEEB00000 (3.73 Gb), SectorSize: 0x200, Cylinders: 0x1E6, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
14:04:46.0415 5640  ============================================================
14:04:46.0415 5640  \Device\Harddisk0\DR0:
14:04:46.0415 5640  MBR partitions:
14:04:46.0415 5640  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x8D800
14:04:46.0415 5640  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x8E000, BlocksNum 0xDF06000
14:04:46.0415 5640  \Device\Harddisk1\DR1:
14:04:46.0415 5640  MBR partitions:
14:04:46.0415 5640  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705800
14:04:46.0415 5640  \Device\Harddisk2\DR2:
14:04:46.0415 5640  MBR partitions:
14:04:46.0415 5640  \Device\Harddisk2\DR2\Partition1: MBR, Type 0xB, StartLBA 0x20, BlocksNum 0x7757E0
14:04:46.0415 5640  ============================================================
14:04:46.0416 5640  C: <-> \Device\Harddisk0\DR0\Partition2
14:04:46.0444 5640  E: <-> \Device\Harddisk1\DR1\Partition1
14:04:46.0444 5640  ============================================================
14:04:46.0444 5640  Initialize success
14:04:46.0444 5640  ============================================================
14:04:55.0656 3008  ============================================================
14:04:55.0656 3008  Scan started
14:04:55.0656 3008  Mode: Manual;
14:04:55.0656 3008  ============================================================
14:04:55.0938 3008  ================ Scan system memory ========================
14:04:55.0938 3008  System memory - ok
14:04:55.0939 3008  ================ Scan services =============================
14:04:55.0968 3008  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
14:04:55.0969 3008  1394ohci - ok
14:04:55.0973 3008  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
14:04:55.0974 3008  ACPI - ok
14:04:55.0976 3008  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
14:04:55.0977 3008  AcpiPmi - ok
14:04:55.0982 3008  [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
14:04:55.0982 3008  AdobeARMservice - ok
14:04:55.0998 3008  [ 1BA1AB4141A92EB34DA99F1249CA2D4D ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
14:04:55.0999 3008  AdobeFlashPlayerUpdateSvc - ok
14:04:56.0005 3008  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
14:04:56.0007 3008  adp94xx - ok
14:04:56.0013 3008  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
14:04:56.0014 3008  adpahci - ok
14:04:56.0018 3008  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
14:04:56.0019 3008  adpu320 - ok
14:04:56.0023 3008  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
14:04:56.0023 3008  AeLookupSvc - ok
14:04:56.0029 3008  [ 79059559E89D06E8B80CE2944BE20228 ] AFD             C:\Windows\system32\drivers\afd.sys
14:04:56.0031 3008  AFD - ok
14:04:56.0033 3008  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
14:04:56.0034 3008  agp440 - ok
14:04:56.0037 3008  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
14:04:56.0038 3008  ALG - ok
14:04:56.0040 3008  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
14:04:56.0040 3008  aliide - ok
14:04:56.0043 3008  [ B3B263B419FC9E7B1D41E61FDAE45BD9 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
14:04:56.0045 3008  AMD External Events Utility - ok
14:04:56.0049 3008  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
14:04:56.0049 3008  amdide - ok
14:04:56.0052 3008  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
14:04:56.0052 3008  AmdK8 - ok
14:04:56.0119 3008  [ 9A6E9363F7A5E5A06629D9DDC76EE6B5 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
14:04:56.0157 3008  amdkmdag - ok
14:04:56.0164 3008  [ 957A4C13E1981B1701E600EF1E823C68 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
14:04:56.0165 3008  amdkmdap - ok
14:04:56.0168 3008  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
14:04:56.0168 3008  AmdPPM - ok
14:04:56.0170 3008  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
14:04:56.0171 3008  amdsata - ok
14:04:56.0174 3008  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
14:04:56.0175 3008  amdsbs - ok
14:04:56.0178 3008  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
14:04:56.0178 3008  amdxata - ok
14:04:56.0180 3008  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
14:04:56.0181 3008  AppID - ok
14:04:56.0183 3008  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
14:04:56.0183 3008  AppIDSvc - ok
14:04:56.0185 3008  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\Windows\System32\appinfo.dll
14:04:56.0185 3008  Appinfo - ok
14:04:56.0188 3008  [ 30E3850F303EAE5C364782EA78579CC9 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:04:56.0189 3008  Apple Mobile Device - ok
14:04:56.0191 3008  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\drivers\arc.sys
14:04:56.0192 3008  arc - ok
14:04:56.0195 3008  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\drivers\arcsas.sys
14:04:56.0195 3008  arcsas - ok
14:04:56.0198 3008  [ 72B060669EB8A3D1EF1D1B6BE6BE4C28 ] asahci64        C:\Windows\system32\DRIVERS\asahci64.sys
14:04:56.0198 3008  asahci64 - ok
14:04:56.0201 3008  [ E1AFEE1584C74050DE0DD16DE2A54BF3 ] AsrAppCharger   C:\Windows\system32\DRIVERS\AsrAppCharger.sys
14:04:56.0201 3008  AsrAppCharger - ok
14:04:56.0204 3008  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
14:04:56.0204 3008  AsyncMac - ok
14:04:56.0207 3008  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
14:04:56.0207 3008  atapi - ok
14:04:56.0214 3008  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
14:04:56.0216 3008  AudioEndpointBuilder - ok
14:04:56.0222 3008  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
14:04:56.0224 3008  AudioSrv - ok
14:04:56.0235 3008  [ C57310BA787CF93958111A4EAE9C003A ] AVer330C875     C:\Windows\system32\DRIVERS\AVer330C875.sys
14:04:56.0241 3008  AVer330C875 - ok
14:04:56.0246 3008  [ 509C2141A260E5A29B2EC01CF0B80B72 ] AVerRECentral   C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRECentral.exe
14:04:56.0247 3008  AVerRECentral - ok
14:04:56.0251 3008  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
14:04:56.0252 3008  AxInstSV - ok
14:04:56.0256 3008  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
14:04:56.0258 3008  b06bdrv - ok
14:04:56.0261 3008  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
14:04:56.0262 3008  b57nd60a - ok
14:04:56.0266 3008  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
14:04:56.0266 3008  BDESVC - ok
14:04:56.0268 3008  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
14:04:56.0268 3008  Beep - ok
14:04:56.0274 3008  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
14:04:56.0277 3008  BFE - ok
14:04:56.0284 3008  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
14:04:56.0288 3008  BITS - ok
14:04:56.0290 3008  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
14:04:56.0290 3008  blbdrive - ok
14:04:56.0295 3008  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
14:04:56.0297 3008  Bonjour Service - ok
14:04:56.0301 3008  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
14:04:56.0301 3008  bowser - ok
14:04:56.0303 3008  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
14:04:56.0303 3008  BrFiltLo - ok
14:04:56.0305 3008  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
14:04:56.0305 3008  BrFiltUp - ok
14:04:56.0307 3008  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
14:04:56.0308 3008  Browser - ok
14:04:56.0312 3008  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
14:04:56.0313 3008  Brserid - ok
14:04:56.0315 3008  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
14:04:56.0316 3008  BrSerWdm - ok
14:04:56.0317 3008  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
14:04:56.0318 3008  BrUsbMdm - ok
14:04:56.0319 3008  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
14:04:56.0320 3008  BrUsbSer - ok
14:04:56.0322 3008  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
14:04:56.0322 3008  BTHMODEM - ok
14:04:56.0326 3008  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
14:04:56.0326 3008  bthserv - ok
14:04:56.0329 3008  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
14:04:56.0329 3008  cdfs - ok
14:04:56.0334 3008  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
14:04:56.0334 3008  cdrom - ok
14:04:56.0337 3008  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
14:04:56.0338 3008  CertPropSvc - ok
14:04:56.0339 3008  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
14:04:56.0340 3008  circlass - ok
14:04:56.0345 3008  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
14:04:56.0347 3008  CLFS - ok
14:04:56.0351 3008  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:04:56.0351 3008  clr_optimization_v2.0.50727_32 - ok
14:04:56.0356 3008  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
14:04:56.0357 3008  clr_optimization_v2.0.50727_64 - ok
14:04:56.0361 3008  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:04:56.0362 3008  clr_optimization_v4.0.30319_32 - ok
14:04:56.0365 3008  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
14:04:56.0366 3008  clr_optimization_v4.0.30319_64 - ok
14:04:56.0368 3008  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
14:04:56.0368 3008  CmBatt - ok
14:04:56.0370 3008  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
14:04:56.0371 3008  cmdide - ok
14:04:56.0376 3008  [ 49C24E98369E764A206C0DBE9644C7E6 ] CMUSBDAC        C:\Windows\system32\DRIVERS\CMUSBDAC.sys
14:04:56.0378 3008  CMUSBDAC - ok
14:04:56.0382 3008  [ EBF28856F69CF094A902F884CF989706 ] CNG             C:\Windows\system32\Drivers\cng.sys
14:04:56.0384 3008  CNG - ok
14:04:56.0387 3008  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
14:04:56.0387 3008  Compbatt - ok
14:04:56.0389 3008  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
14:04:56.0390 3008  CompositeBus - ok
14:04:56.0392 3008  COMSysApp - ok
14:04:56.0395 3008  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
14:04:56.0395 3008  crcdisk - ok
14:04:56.0397 3008  [ C8BD651E13895B93ED9EC5B4F1DF42BC ] Creative ALchemy AL6 Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
14:04:56.0397 3008  Creative ALchemy AL6 Licensing Service - ok
14:04:56.0400 3008  [ C0EAD9F8AB83D41FF07303C75589C2B8 ] Creative Audio Engine Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
14:04:56.0400 3008  Creative Audio Engine Licensing Service - ok
14:04:56.0405 3008  [ 6B400F211BEE880A37A1ED0368776BF4 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
14:04:56.0406 3008  CryptSvc - ok
14:04:56.0412 3008  [ EDBA1382E5D7D1E71442B43E170CF8D4 ] CTAudSvcService C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
14:04:56.0413 3008  CTAudSvcService - ok
14:04:56.0420 3008  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
14:04:56.0422 3008  DcomLaunch - ok
14:04:56.0426 3008  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
14:04:56.0427 3008  defragsvc - ok
14:04:56.0430 3008  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
14:04:56.0430 3008  DfsC - ok
14:04:56.0434 3008  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
14:04:56.0435 3008  Dhcp - ok
14:04:56.0437 3008  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
14:04:56.0438 3008  discache - ok
14:04:56.0440 3008  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\drivers\disk.sys
14:04:56.0440 3008  Disk - ok
14:04:56.0443 3008  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
14:04:56.0445 3008  Dnscache - ok
14:04:56.0449 3008  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
14:04:56.0450 3008  dot3svc - ok
14:04:56.0454 3008  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
14:04:56.0455 3008  DPS - ok
14:04:56.0457 3008  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
14:04:56.0457 3008  drmkaud - ok
14:04:56.0460 3008  [ 6A0E850DDCB136AA3D2FB7234382DF12 ] dtsoftbus01     C:\Windows\system32\DRIVERS\dtsoftbus01.sys
14:04:56.0462 3008  dtsoftbus01 - ok
14:04:56.0470 3008  [ 88612F1CE3BF42256913BF6E61C70D52 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
14:04:56.0474 3008  DXGKrnl - ok
14:04:56.0479 3008  [ 8020B5D39DDFF589200EBD5592314F83 ] e1dexpress      C:\Windows\system32\DRIVERS\e1d62x64.sys
14:04:56.0481 3008  e1dexpress - ok
14:04:56.0484 3008  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
14:04:56.0485 3008  EapHost - ok
14:04:56.0505 3008  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\drivers\evbda.sys
14:04:56.0517 3008  ebdrv - ok
14:04:56.0520 3008  [ 4D71227301DD8D09097B9E4CC6527E5A ] EFS             C:\Windows\System32\lsass.exe
14:04:56.0521 3008  EFS - ok
14:04:56.0528 3008  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
14:04:56.0530 3008  ehRecvr - ok
14:04:56.0532 3008  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
14:04:56.0533 3008  ehSched - ok
14:04:56.0538 3008  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
14:04:56.0541 3008  elxstor - ok
14:04:56.0544 3008  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
14:04:56.0544 3008  ErrDev - ok
14:04:56.0551 3008  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
14:04:56.0553 3008  EventSystem - ok
14:04:56.0557 3008  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
14:04:56.0558 3008  exfat - ok
14:04:56.0562 3008  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
14:04:56.0562 3008  fastfat - ok
14:04:56.0569 3008  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
14:04:56.0572 3008  Fax - ok
14:04:56.0575 3008  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\drivers\fdc.sys
14:04:56.0575 3008  fdc - ok
14:04:56.0577 3008  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
14:04:56.0578 3008  fdPHost - ok
14:04:56.0580 3008  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
14:04:56.0581 3008  FDResPub - ok
14:04:56.0583 3008  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
14:04:56.0584 3008  FileInfo - ok
14:04:56.0586 3008  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
14:04:56.0586 3008  Filetrace - ok
14:04:56.0588 3008  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
14:04:56.0588 3008  flpydisk - ok
14:04:56.0591 3008  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
14:04:56.0592 3008  FltMgr - ok
14:04:56.0601 3008  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
14:04:56.0605 3008  FontCache - ok
14:04:56.0608 3008  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
14:04:56.0608 3008  FontCache3.0.0.0 - ok
14:04:56.0611 3008  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
14:04:56.0611 3008  FsDepends - ok
14:04:56.0614 3008  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
14:04:56.0614 3008  Fs_Rec - ok
14:04:56.0619 3008  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
14:04:56.0620 3008  fvevol - ok
14:04:56.0622 3008  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
14:04:56.0622 3008  gagp30kx - ok
14:04:56.0625 3008  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
14:04:56.0625 3008  GEARAspiWDM - ok
14:04:56.0632 3008  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
14:04:56.0634 3008  gpsvc - ok
14:04:56.0638 3008  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:04:56.0638 3008  gupdate - ok
14:04:56.0640 3008  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:04:56.0641 3008  gupdatem - ok
14:04:56.0644 3008  [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi         C:\Windows\system32\DRIVERS\hamachi.sys
14:04:56.0644 3008  hamachi - ok
14:04:56.0713 3008  [ E24E88736B13BC54CA93E7F86A0F4FCF ] Hamachi2Svc     E:\Program Files (x86)\hamachi-2.exe
14:04:56.0721 3008  Hamachi2Svc - ok
14:04:56.0724 3008  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
14:04:56.0724 3008  hcw85cir - ok
14:04:56.0729 3008  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
14:04:56.0730 3008  HdAudAddService - ok
14:04:56.0734 3008  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
14:04:56.0735 3008  HDAudBus - ok
14:04:56.0737 3008  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
14:04:56.0738 3008  HidBatt - ok
14:04:56.0740 3008  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
14:04:56.0740 3008  HidBth - ok
14:04:56.0744 3008  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\drivers\hidir.sys
14:04:56.0744 3008  HidIr - ok
14:04:56.0747 3008  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
14:04:56.0748 3008  hidserv - ok
14:04:56.0751 3008  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
14:04:56.0752 3008  HidUsb - ok
14:04:56.0755 3008  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
14:04:56.0756 3008  hkmsvc - ok
14:04:56.0759 3008  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
14:04:56.0760 3008  HomeGroupListener - ok
14:04:56.0763 3008  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
14:04:56.0765 3008  HomeGroupProvider - ok
14:04:56.0769 3008  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
14:04:56.0769 3008  HpSAMD - ok
14:04:56.0775 3008  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
14:04:56.0778 3008  HTTP - ok
14:04:56.0782 3008  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
14:04:56.0782 3008  hwpolicy - ok
14:04:56.0785 3008  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
14:04:56.0786 3008  i8042prt - ok
14:04:56.0792 3008  [ B9E489CC1EA3284FEED33799DC70612D ] iaStorA         C:\Windows\system32\DRIVERS\iaStorA.sys
14:04:56.0794 3008  iaStorA - ok
14:04:56.0798 3008  [ 3AEE4C821114AC707699A28988F27ABB ] IAStorDataMgrSvc C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
14:04:56.0798 3008  IAStorDataMgrSvc - ok
14:04:56.0800 3008  [ CC096E5C9BAABEB8EF12CDFAFFD888CF ] iaStorF         C:\Windows\system32\DRIVERS\iaStorF.sys
14:04:56.0800 3008  iaStorF - ok
14:04:56.0804 3008  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
14:04:56.0805 3008  iaStorV - ok
14:04:56.0814 3008  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
14:04:56.0817 3008  idsvc - ok
14:04:56.0820 3008  IEEtwCollectorService - ok
14:04:56.0822 3008  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
14:04:56.0822 3008  iirsp - ok
14:04:56.0825 3008  [ E18725531054FE222115873AC1CCB02B ] ikbevent        C:\Windows\system32\DRIVERS\ikbevent.sys
14:04:56.0825 3008  ikbevent - ok
14:04:56.0832 3008  [ 344789398EC3EE5A4E00C52B31847946 ] IKEEXT          C:\Windows\System32\ikeext.dll
14:04:56.0835 3008  IKEEXT - ok
14:04:56.0837 3008  [ 45060257BCA3D60204FEC29F6E6DE458 ] imsevent        C:\Windows\system32\DRIVERS\imsevent.sys
14:04:56.0838 3008  imsevent - ok
14:04:56.0865 3008  [ CCEDD47ABD068C58C8513DEB785093BB ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
14:04:56.0877 3008  IntcAzAudAddService - ok
14:04:56.0885 3008  [ DDA8E5AD97231AB50B81FED04C28F64C ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
14:04:56.0888 3008  Intel® Capability Licensing Service Interface - ok
14:04:57.0090 3008  [ 86FE509640D77FB0998FC8B1FF5523C6 ] Intel® Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
14:04:57.0093 3008  Intel® Capability Licensing Service TCP IP Interface - ok
14:04:57.0098 3008  [ EE65488B7294FBCB113EAC9FD492345C ] Intel® ME Service C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
14:04:57.0098 3008  Intel® ME Service - ok
14:04:57.0103 3008  [ 26FBC0AEDE7C6A67781202E0E2ECB6A6 ] Intel® PROSet Monitoring Service C:\Windows\system32\IProsetMonitor.exe
14:04:57.0104 3008  Intel® PROSet Monitoring Service - ok
14:04:57.0107 3008  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
14:04:57.0107 3008  intelide - ok
14:04:57.0110 3008  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
14:04:57.0111 3008  intelppm - ok
14:04:57.0114 3008  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
14:04:57.0115 3008  IPBusEnum - ok
14:04:57.0117 3008  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:04:57.0118 3008  IpFilterDriver - ok
14:04:57.0123 3008  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
14:04:57.0126 3008  iphlpsvc - ok
14:04:57.0128 3008  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
14:04:57.0129 3008  IPMIDRV - ok
14:04:57.0132 3008  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
14:04:57.0133 3008  IPNAT - ok
14:04:57.0139 3008  [ 33B286326BD2B1A7748C43391058FB19 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
14:04:57.0142 3008  iPod Service - ok
14:04:57.0145 3008  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
14:04:57.0145 3008  IRENUM - ok
14:04:57.0147 3008  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
14:04:57.0148 3008  isapnp - ok
14:04:57.0154 3008  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
14:04:57.0155 3008  iScsiPrt - ok
14:04:57.0159 3008  [ 4EE2423C38F43D37F8497A672FD10BDC ] ISCT            C:\Windows\system32\DRIVERS\ISCTD64.sys
14:04:57.0159 3008  ISCT - ok
14:04:57.0162 3008  [ 88CCCCFA8269973C3C3C06F94DA03BAB ] ISCTAgent       C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe
14:04:57.0163 3008  ISCTAgent - ok
14:04:57.0165 3008  [ 897B93573F07C9CB1140516DAC44BC7E ] iusb3hcs        C:\Windows\system32\DRIVERS\iusb3hcs.sys
14:04:57.0165 3008  iusb3hcs - ok
14:04:57.0169 3008  [ 2D15CEDF619796002E8640F73A4BF920 ] iusb3hub        C:\Windows\system32\DRIVERS\iusb3hub.sys
14:04:57.0170 3008  iusb3hub - ok
14:04:57.0178 3008  [ F1E93FE111924D0BC853155AADF8048B ] iusb3xhc        C:\Windows\system32\DRIVERS\iusb3xhc.sys
14:04:57.0180 3008  iusb3xhc - ok
14:04:57.0184 3008  [ BF5D3A2624177C413680DEF19A465AF8 ] jhi_service     C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
14:04:57.0184 3008  jhi_service - ok
14:04:57.0187 3008  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
14:04:57.0187 3008  kbdclass - ok
14:04:57.0190 3008  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
14:04:57.0190 3008  kbdhid - ok
14:04:57.0192 3008  [ 4D71227301DD8D09097B9E4CC6527E5A ] KeyIso          C:\Windows\system32\lsass.exe
14:04:57.0193 3008  KeyIso - ok
14:04:57.0196 3008  [ 8F489706472F7E9A06BAAA198703FA64 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
14:04:57.0197 3008  KSecDD - ok
14:04:57.0200 3008  [ 868A2CAAB12EFC7A021682BCA0EEC54C ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
14:04:57.0201 3008  KSecPkg - ok
14:04:57.0203 3008  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
14:04:57.0204 3008  ksthunk - ok
14:04:57.0209 3008  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
14:04:57.0211 3008  KtmRm - ok
14:04:57.0215 3008  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
14:04:57.0217 3008  LanmanServer - ok
14:04:57.0219 3008  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
14:04:57.0221 3008  LanmanWorkstation - ok
14:04:57.0224 3008  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
14:04:57.0224 3008  lltdio - ok
14:04:57.0228 3008  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
14:04:57.0229 3008  lltdsvc - ok
14:04:57.0231 3008  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
14:04:57.0232 3008  lmhosts - ok
14:04:57.0236 3008  [ 3EA307C51069BC72DD74A4964F2A30A9 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
14:04:57.0238 3008  LMS - ok
14:04:57.0241 3008  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
14:04:57.0242 3008  LSI_FC - ok
14:04:57.0245 3008  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
14:04:57.0245 3008  LSI_SAS - ok
14:04:57.0247 3008  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
14:04:57.0248 3008  LSI_SAS2 - ok
14:04:57.0250 3008  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
14:04:57.0251 3008  LSI_SCSI - ok
14:04:57.0254 3008  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
14:04:57.0255 3008  luafv - ok
14:04:57.0258 3008  [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
14:04:57.0258 3008  MBAMProtector - ok
14:04:57.0267 3008  [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
14:04:57.0268 3008  MBAMScheduler - ok
14:04:57.0274 3008  [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
14:04:57.0277 3008  MBAMService - ok
14:04:57.0279 3008  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
14:04:57.0280 3008  Mcx2Svc - ok
14:04:57.0282 3008  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\drivers\megasas.sys
14:04:57.0282 3008  megasas - ok
14:04:57.0286 3008  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
14:04:57.0287 3008  MegaSR - ok
14:04:57.0289 3008  [ 2BB3EAE2EA641515D4B205CAB29E1624 ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
14:04:57.0289 3008  MEIx64 - ok
14:04:57.0293 3008  Microsoft SharePoint Workspace Audit Service - ok
14:04:57.0297 3008  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
14:04:57.0297 3008  MMCSS - ok
14:04:57.0300 3008  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
14:04:57.0300 3008  Modem - ok
14:04:57.0302 3008  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
14:04:57.0302 3008  monitor - ok
14:04:57.0303 3008  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
14:04:57.0304 3008  mouclass - ok
14:04:57.0307 3008  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
14:04:57.0307 3008  mouhid - ok
14:04:57.0310 3008  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
14:04:57.0310 3008  mountmgr - ok
14:04:57.0313 3008  [ 3B9398E0146855B1DC0E3D9769C80F01 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
14:04:57.0314 3008  MozillaMaintenance - ok
14:04:57.0318 3008  [ C6B88D62F20AC646C6BD5C032EC2FAF9 ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
14:04:57.0318 3008  MpFilter - ok
14:04:57.0322 3008  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
14:04:57.0323 3008  mpio - ok
14:04:57.0328 3008  [ BC3C790A27FFF88DACC787B860E6741F ] MpKslcf9320b4   C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{B0B9D229-65EA-4340-81C0-15B9E5CC1020}\MpKslcf9320b4.sys
14:04:57.0328 3008  MpKslcf9320b4 - ok
14:04:57.0331 3008  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
14:04:57.0331 3008  mpsdrv - ok
14:04:57.0338 3008  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
14:04:57.0341 3008  MpsSvc - ok
14:04:57.0345 3008  [ 1A4F75E63C9FB84B85DFFC6B63FD5404 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
14:04:57.0345 3008  MRxDAV - ok
14:04:57.0348 3008  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
14:04:57.0349 3008  mrxsmb - ok
14:04:57.0353 3008  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:04:57.0355 3008  mrxsmb10 - ok
14:04:57.0357 3008  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:04:57.0358 3008  mrxsmb20 - ok
14:04:57.0360 3008  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
14:04:57.0360 3008  msahci - ok
14:04:57.0363 3008  [ 41FB1D61DF09C36CCAB0B04EEC66F6D5 ] MSCamSvc        C:\Program Files\Microsoft LifeCam\MSCamS64.exe
14:04:57.0364 3008  MSCamSvc - ok
14:04:57.0368 3008  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
14:04:57.0368 3008  msdsm - ok
14:04:57.0371 3008  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
14:04:57.0373 3008  MSDTC - ok
14:04:57.0376 3008  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
14:04:57.0376 3008  Msfs - ok
14:04:57.0378 3008  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
14:04:57.0378 3008  mshidkmdf - ok
14:04:57.0380 3008  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
14:04:57.0380 3008  msisadrv - ok
14:04:57.0383 3008  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
14:04:57.0384 3008  MSiSCSI - ok
14:04:57.0386 3008  msiserver - ok
14:04:57.0388 3008  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
14:04:57.0388 3008  MSKSSRV - ok
14:04:57.0391 3008  [ 7675E15D1B2180745E4DA4D26AAD7385 ] MsMpSvc         C:\Program Files\Microsoft Security Client\MsMpEng.exe
14:04:57.0392 3008  MsMpSvc - ok
14:04:57.0393 3008  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
14:04:57.0394 3008  MSPCLOCK - ok
14:04:57.0396 3008  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
14:04:57.0396 3008  MSPQM - ok
14:04:57.0400 3008  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
14:04:57.0401 3008  MsRPC - ok
14:04:57.0405 3008  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
14:04:57.0405 3008  mssmbios - ok
14:04:57.0407 3008  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
14:04:57.0407 3008  MSTEE - ok
14:04:57.0410 3008  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
14:04:57.0410 3008  MTConfig - ok
14:04:57.0412 3008  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
14:04:57.0412 3008  Mup - ok
14:04:57.0417 3008  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
14:04:57.0419 3008  napagent - ok
14:04:57.0423 3008  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
14:04:57.0425 3008  NativeWifiP - ok
14:04:57.0433 3008  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
14:04:57.0436 3008  NDIS - ok
14:04:57.0438 3008  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
14:04:57.0438 3008  NdisCap - ok
14:04:57.0440 3008  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
14:04:57.0440 3008  NdisTapi - ok
14:04:57.0445 3008  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
14:04:57.0445 3008  Ndisuio - ok
14:04:57.0447 3008  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
14:04:57.0448 3008  NdisWan - ok
14:04:57.0451 3008  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
14:04:57.0451 3008  NDProxy - ok
14:04:57.0453 3008  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
14:04:57.0453 3008  NetBIOS - ok
14:04:57.0457 3008  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
14:04:57.0458 3008  NetBT - ok
14:04:57.0460 3008  [ 4D71227301DD8D09097B9E4CC6527E5A ] Netlogon        C:\Windows\system32\lsass.exe
14:04:57.0461 3008  Netlogon - ok
14:04:57.0465 3008  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
14:04:57.0467 3008  Netman - ok
14:04:57.0471 3008  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
14:04:57.0474 3008  netprofm - ok
14:04:57.0476 3008  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
14:04:57.0477 3008  NetTcpPortSharing - ok
14:04:57.0479 3008  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
14:04:57.0479 3008  nfrd960 - ok
14:04:57.0483 3008  [ ACE8C64C57E4A711473C8BC10ADF692B ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
14:04:57.0483 3008  NisDrv - ok
14:04:57.0488 3008  [ 6247E8B31ED0A9D6BC5A26276E49BEB3 ] NisSrv          C:\Program Files\Microsoft Security Client\NisSrv.exe
14:04:57.0489 3008  NisSrv - ok
14:04:57.0494 3008  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
14:04:57.0496 3008  NlaSvc - ok
14:04:57.0498 3008  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
14:04:57.0498 3008  Npfs - ok
14:04:57.0501 3008  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
14:04:57.0502 3008  nsi - ok
14:04:57.0504 3008  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
14:04:57.0504 3008  nsiproxy - ok
14:04:57.0517 3008  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
14:04:57.0522 3008  Ntfs - ok
14:04:57.0525 3008  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
14:04:57.0525 3008  Null - ok
14:04:57.0527 3008  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
14:04:57.0528 3008  nvraid - ok
14:04:57.0531 3008  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
14:04:57.0532 3008  nvstor - ok
14:04:57.0534 3008  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
14:04:57.0534 3008  nv_agp - ok
14:04:57.0537 3008  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
14:04:57.0537 3008  ohci1394 - ok
14:04:57.0540 3008  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:04:57.0541 3008  ose - ok
14:04:57.0575 3008  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
14:04:57.0591 3008  osppsvc - ok
14:04:57.0598 3008  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
14:04:57.0599 3008  p2pimsvc - ok
14:04:57.0605 3008  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
14:04:57.0607 3008  p2psvc - ok
14:04:57.0610 3008  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\drivers\parport.sys
14:04:57.0611 3008  Parport - ok
14:04:57.0613 3008  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
14:04:57.0613 3008  partmgr - ok
14:04:57.0618 3008  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
14:04:57.0619 3008  PcaSvc - ok
14:04:57.0622 3008  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
14:04:57.0623 3008  pci - ok
14:04:57.0625 3008  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
14:04:57.0626 3008  pciide - ok
14:04:57.0629 3008  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
14:04:57.0630 3008  pcmcia - ok
14:04:57.0633 3008  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
14:04:57.0633 3008  pcw - ok
14:04:57.0638 3008  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
14:04:57.0641 3008  PEAUTH - ok
14:04:57.0655 3008  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
14:04:57.0656 3008  PerfHost - ok
14:04:57.0670 3008  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
14:04:57.0675 3008  pla - ok
14:04:57.0681 3008  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
14:04:57.0683 3008  PlugPlay - ok
14:04:57.0684 3008  PnkBstrA - ok
14:04:57.0687 3008  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
14:04:57.0687 3008  PNRPAutoReg - ok
14:04:57.0691 3008  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
14:04:57.0693 3008  PNRPsvc - ok
14:04:57.0699 3008  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
14:04:57.0701 3008  PolicyAgent - ok
14:04:57.0705 3008  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
14:04:57.0707 3008  Power - ok
14:04:57.0710 3008  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
14:04:57.0710 3008  PptpMiniport - ok
14:04:57.0712 3008  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\drivers\processr.sys
14:04:57.0712 3008  Processor - ok
14:04:57.0716 3008  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
14:04:57.0717 3008  ProfSvc - ok
14:04:57.0719 3008  [ 4D71227301DD8D09097B9E4CC6527E5A ] ProtectedStorage C:\Windows\system32\lsass.exe
14:04:57.0720 3008  ProtectedStorage - ok
14:04:57.0723 3008  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
14:04:57.0723 3008  Psched - ok
14:04:57.0735 3008  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
14:04:57.0741 3008  ql2300 - ok
14:04:57.0745 3008  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
14:04:57.0746 3008  ql40xx - ok
14:04:57.0749 3008  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
14:04:57.0751 3008  QWAVE - ok
14:04:57.0753 3008  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
14:04:57.0754 3008  QWAVEdrv - ok
14:04:57.0756 3008  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
14:04:57.0756 3008  RasAcd - ok
14:04:57.0758 3008  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
14:04:57.0758 3008  RasAgileVpn - ok
14:04:57.0761 3008  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
14:04:57.0762 3008  RasAuto - ok
14:04:57.0764 3008  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
14:04:57.0765 3008  Rasl2tp - ok
14:04:57.0769 3008  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
14:04:57.0771 3008  RasMan - ok
14:04:57.0773 3008  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
14:04:57.0774 3008  RasPppoe - ok
14:04:57.0776 3008  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
14:04:57.0777 3008  RasSstp - ok
14:04:57.0780 3008  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
14:04:57.0782 3008  rdbss - ok
14:04:57.0784 3008  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
14:04:57.0785 3008  rdpbus - ok
14:04:57.0786 3008  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
14:04:57.0787 3008  RDPCDD - ok
14:04:57.0789 3008  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
14:04:57.0789 3008  RDPENCDD - ok
14:04:57.0792 3008  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
14:04:57.0792 3008  RDPREFMP - ok
14:04:57.0796 3008  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
14:04:57.0797 3008  RDPWD - ok
14:04:57.0800 3008  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
14:04:57.0801 3008  rdyboost - ok
14:04:57.0803 3008  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
14:04:57.0804 3008  RemoteAccess - ok
14:04:57.0807 3008  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
14:04:57.0808 3008  RemoteRegistry - ok
14:04:57.0812 3008  [ 9C3AC71A9934B884FAC567A8807E9C4D ] Revoflt         C:\Windows\system32\DRIVERS\revoflt.sys
14:04:57.0812 3008  Revoflt - ok
14:04:57.0814 3008  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
14:04:57.0816 3008  RpcEptMapper - ok
14:04:57.0818 3008  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
14:04:57.0819 3008  RpcLocator - ok
14:04:57.0823 3008  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
14:04:57.0826 3008  RpcSs - ok
14:04:57.0828 3008  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
14:04:57.0829 3008  rspndr - ok
14:04:57.0831 3008  [ 4D71227301DD8D09097B9E4CC6527E5A ] SamSs           C:\Windows\system32\lsass.exe
14:04:57.0831 3008  SamSs - ok
14:04:57.0833 3008  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
14:04:57.0834 3008  sbp2port - ok
14:04:57.0837 3008  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
14:04:57.0838 3008  SCardSvr - ok
14:04:57.0840 3008  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
14:04:57.0841 3008  scfilter - ok
14:04:57.0850 3008  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
14:04:57.0854 3008  Schedule - ok
14:04:57.0858 3008  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
14:04:57.0858 3008  SCPolicySvc - ok
14:04:57.0862 3008  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
14:04:57.0864 3008  SDRSVC - ok
14:04:57.0866 3008  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
14:04:57.0866 3008  secdrv - ok
14:04:57.0868 3008  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
14:04:57.0869 3008  seclogon - ok
14:04:57.0871 3008  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
14:04:57.0872 3008  SENS - ok
14:04:57.0875 3008  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
14:04:57.0876 3008  SensrSvc - ok
14:04:57.0878 3008  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
14:04:57.0878 3008  Serenum - ok
14:04:57.0880 3008  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
14:04:57.0881 3008  Serial - ok
14:04:57.0882 3008  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
14:04:57.0883 3008  sermouse - ok
14:04:57.0888 3008  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
14:04:57.0889 3008  SessionEnv - ok
14:04:57.0891 3008  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
14:04:57.0891 3008  sffdisk - ok
14:04:57.0894 3008  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
14:04:57.0894 3008  sffp_mmc - ok
14:04:57.0896 3008  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
14:04:57.0896 3008  sffp_sd - ok
14:04:57.0898 3008  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
14:04:57.0899 3008  sfloppy - ok
14:04:57.0903 3008  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
14:04:57.0905 3008  SharedAccess - ok
14:04:57.0910 3008  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
14:04:57.0912 3008  ShellHWDetection - ok
14:04:57.0914 3008  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
14:04:57.0914 3008  SiSRaid2 - ok
14:04:57.0917 3008  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
14:04:57.0917 3008  SiSRaid4 - ok
14:04:57.0939 3008  [ 9F712B26EE3B0242DE997A42FD302E2C ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
14:04:57.0951 3008  Skype C2C Service - ok
14:04:57.0955 3008  [ 3E879BF17A4D836E77A354208F79C983 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
14:04:57.0956 3008  SkypeUpdate - ok
14:04:57.0959 3008  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
14:04:57.0959 3008  Smb - ok
14:04:57.0963 3008  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
14:04:57.0964 3008  SNMPTRAP - ok
14:04:57.0967 3008  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
14:04:57.0967 3008  spldr - ok
14:04:57.0972 3008  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
14:04:57.0975 3008  Spooler - ok
14:04:57.0998 3008  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
14:04:58.0012 3008  sppsvc - ok
14:04:58.0015 3008  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
14:04:58.0016 3008  sppuinotify - ok
14:04:58.0022 3008  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
14:04:58.0024 3008  srv - ok
14:04:58.0029 3008  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
14:04:58.0030 3008  srv2 - ok
14:04:58.0034 3008  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
14:04:58.0035 3008  srvnet - ok
14:04:58.0038 3008  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
14:04:58.0039 3008  SSDPSRV - ok
14:04:58.0044 3008  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
14:04:58.0045 3008  SstpSvc - ok
14:04:58.0050 3008  [ A87A39F9B42D82F5D60D36BB1D3CC9D3 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
14:04:58.0052 3008  Steam Client Service - ok
14:04:58.0055 3008  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\drivers\stexstor.sys
14:04:58.0055 3008  stexstor - ok
14:04:58.0061 3008  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
14:04:58.0064 3008  stisvc - ok
14:04:58.0067 3008  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
14:04:58.0067 3008  swenum - ok
14:04:58.0073 3008  [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard     C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
14:04:58.0075 3008  SwitchBoard - ok
14:04:58.0081 3008  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
14:04:58.0083 3008  swprv - ok
14:04:58.0097 3008  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
14:04:58.0103 3008  SysMain - ok
14:04:58.0107 3008  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
14:04:58.0108 3008  TabletInputService - ok
14:04:58.0112 3008  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
14:04:58.0114 3008  TapiSrv - ok
14:04:58.0118 3008  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
14:04:58.0119 3008  TBS - ok
14:04:58.0132 3008  [ 40AF23633D197905F03AB5628C558C51 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
14:04:58.0138 3008  Tcpip - ok
14:04:58.0151 3008  [ 40AF23633D197905F03AB5628C558C51 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
14:04:58.0158 3008  TCPIP6 - ok
14:04:58.0161 3008  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
14:04:58.0161 3008  tcpipreg - ok
14:04:58.0164 3008  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
14:04:58.0164 3008  TDPIPE - ok
14:04:58.0166 3008  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
14:04:58.0167 3008  TDTCP - ok
14:04:58.0170 3008  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
14:04:58.0170 3008  tdx - ok
14:04:58.0172 3008  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
14:04:58.0173 3008  TermDD - ok
14:04:58.0179 3008  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
14:04:58.0182 3008  TermService - ok
14:04:58.0185 3008  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
14:04:58.0186 3008  Themes - ok
14:04:58.0188 3008  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
14:04:58.0188 3008  THREADORDER - ok
14:04:58.0191 3008  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
14:04:58.0192 3008  TrkWks - ok
14:04:58.0195 3008  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
14:04:58.0196 3008  TrustedInstaller - ok
14:04:58.0200 3008  [ 4CE278FC9671BA81A138D70823FCAA09 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
14:04:58.0200 3008  tssecsrv - ok
14:04:58.0203 3008  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
14:04:58.0203 3008  TsUsbFlt - ok
14:04:58.0205 3008  [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
14:04:58.0206 3008  TsUsbGD - ok
14:04:58.0209 3008  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
14:04:58.0210 3008  tunnel - ok
14:04:58.0213 3008  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
14:04:58.0213 3008  uagp35 - ok
14:04:58.0217 3008  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
14:04:58.0218 3008  udfs - ok
14:04:58.0222 3008  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
14:04:58.0223 3008  UI0Detect - ok
14:04:58.0225 3008  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
14:04:58.0225 3008  uliagpkx - ok
14:04:58.0228 3008  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
14:04:58.0228 3008  umbus - ok
14:04:58.0230 3008  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\drivers\umpass.sys
14:04:58.0230 3008  UmPass - ok
14:04:58.0234 3008  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
14:04:58.0236 3008  upnphost - ok
14:04:58.0238 3008  [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
14:04:58.0239 3008  USBAAPL64 - ok
14:04:58.0242 3008  [ B0435098C81D04CAFFF80DDB746CD3A2 ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
14:04:58.0242 3008  usbaudio - ok
14:04:58.0246 3008  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
14:04:58.0247 3008  usbccgp - ok
14:04:58.0251 3008  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
14:04:58.0252 3008  usbcir - ok
14:04:58.0254 3008  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\drivers\usbehci.sys
14:04:58.0254 3008  usbehci - ok
14:04:58.0258 3008  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
14:04:58.0259 3008  usbhub - ok
14:04:58.0262 3008  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
14:04:58.0262 3008  usbohci - ok
14:04:58.0264 3008  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\drivers\usbprint.sys
14:04:58.0264 3008  usbprint - ok
14:04:58.0266 3008  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:04:58.0267 3008  USBSTOR - ok
14:04:58.0269 3008  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
14:04:58.0269 3008  usbuhci - ok
14:04:58.0272 3008  [ 1F775DA4CF1A3A1834207E975A72E9D7 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
14:04:58.0273 3008  usbvideo - ok
14:04:58.0275 3008  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
14:04:58.0276 3008  UxSms - ok
14:04:58.0278 3008  [ 4D71227301DD8D09097B9E4CC6527E5A ] VaultSvc        C:\Windows\system32\lsass.exe
14:04:58.0279 3008  VaultSvc - ok
14:04:58.0281 3008  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
14:04:58.0281 3008  vdrvroot - ok
14:04:58.0286 3008  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
14:04:58.0289 3008  vds - ok
14:04:58.0291 3008  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
14:04:58.0291 3008  vga - ok
14:04:58.0295 3008  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
14:04:58.0295 3008  VgaSave - ok
14:04:58.0299 3008  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
14:04:58.0300 3008  vhdmp - ok
14:04:58.0302 3008  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
14:04:58.0302 3008  viaide - ok
14:04:58.0304 3008  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
14:04:58.0305 3008  volmgr - ok
14:04:58.0309 3008  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
14:04:58.0310 3008  volmgrx - ok
14:04:58.0316 3008  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
14:04:58.0317 3008  volsnap - ok
14:04:58.0320 3008  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
14:04:58.0321 3008  vsmraid - ok
14:04:58.0333 3008  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
14:04:58.0339 3008  VSS - ok
14:04:58.0342 3008  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
14:04:58.0343 3008  vwifibus - ok
14:04:58.0348 3008  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
14:04:58.0350 3008  W32Time - ok
14:04:58.0354 3008  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
14:04:58.0354 3008  WacomPen - ok
14:04:58.0357 3008  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
14:04:58.0357 3008  WANARP - ok
14:04:58.0359 3008  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
14:04:58.0359 3008  Wanarpv6 - ok
14:04:58.0369 3008  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
14:04:58.0374 3008  WatAdminSvc - ok
14:04:58.0385 3008  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
14:04:58.0391 3008  wbengine - ok
14:04:58.0395 3008  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
14:04:58.0397 3008  WbioSrvc - ok
14:04:58.0401 3008  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
14:04:58.0403 3008  wcncsvc - ok
14:04:58.0405 3008  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
14:04:58.0406 3008  WcsPlugInService - ok
14:04:58.0409 3008  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\drivers\wd.sys
14:04:58.0409 3008  Wd - ok
14:04:58.0416 3008  [ E2C933EDBC389386EBE6D2BA953F43D8 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
14:04:58.0419 3008  Wdf01000 - ok
14:04:58.0421 3008  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
14:04:58.0423 3008  WdiServiceHost - ok
14:04:58.0424 3008  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
14:04:58.0426 3008  WdiSystemHost - ok
14:04:58.0430 3008  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D ] WebClient       C:\Windows\System32\webclnt.dll
14:04:58.0432 3008  WebClient - ok
14:04:58.0435 3008  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
14:04:58.0436 3008  Wecsvc - ok
14:04:58.0439 3008  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
14:04:58.0440 3008  wercplsupport - ok
14:04:58.0443 3008  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
14:04:58.0444 3008  WerSvc - ok
14:04:58.0447 3008  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
14:04:58.0448 3008  WfpLwf - ok
14:04:58.0450 3008  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
14:04:58.0451 3008  WIMMount - ok
14:04:58.0452 3008  WinDefend - ok
14:04:58.0454 3008  WinHttpAutoProxySvc - ok
14:04:58.0461 3008  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
14:04:58.0462 3008  Winmgmt - ok
14:04:58.0476 3008  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
14:04:58.0484 3008  WinRM - ok
14:04:58.0490 3008  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
14:04:58.0490 3008  WinUsb - ok
14:04:58.0499 3008  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
14:04:58.0504 3008  Wlansvc - ok
14:04:58.0506 3008  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
14:04:58.0507 3008  WmiAcpi - ok
14:04:58.0511 3008  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
14:04:58.0512 3008  wmiApSrv - ok
14:04:58.0514 3008  WMPNetworkSvc - ok
14:04:58.0516 3008  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
14:04:58.0517 3008  WPCSvc - ok
14:04:58.0521 3008  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
14:04:58.0522 3008  WPDBusEnum - ok
14:04:58.0525 3008  [ 7CA09731EB7FC99B910C7F239E57720F ] WPRO_41_2001    C:\Windows\system32\drivers\WPRO_41_2001.sys
14:04:58.0525 3008  WPRO_41_2001 - ok
14:04:58.0527 3008  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
14:04:58.0527 3008  ws2ifsl - ok
14:04:58.0529 3008  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
14:04:58.0531 3008  wscsvc - ok
14:04:58.0533 3008  WSearch - ok
14:04:58.0552 3008  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
14:04:58.0561 3008  wuauserv - ok
14:04:58.0566 3008  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
14:04:58.0566 3008  WudfPf - ok
14:04:58.0569 3008  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
14:04:58.0570 3008  WUDFRd - ok
14:04:58.0573 3008  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
14:04:58.0574 3008  wudfsvc - ok
14:04:58.0578 3008  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\Windows\System32\wwansvc.dll
14:04:58.0580 3008  WwanSvc - ok
14:04:58.0583 3008  [ 754C8BF43F0DD4B54865F174A62761E9 ] XENfiltv        C:\Windows\system32\drivers\XENfiltv.sys
14:04:58.0584 3008  XENfiltv - ok
14:04:58.0588 3008  [ 2EE48CFCE7CA8E0DB4C44C7476C0943B ] xusb21          C:\Windows\system32\DRIVERS\xusb21.sys
14:04:58.0589 3008  xusb21 - ok
14:04:58.0591 3008  ================ Scan global ===============================
14:04:58.0593 3008  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
14:04:58.0596 3008  [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
14:04:58.0600 3008  [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
14:04:58.0603 3008  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
14:04:58.0606 3008  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
14:04:58.0608 3008  [Global] - ok
14:04:58.0608 3008  ================ Scan MBR ==================================
14:04:58.0610 3008  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
14:04:58.0658 3008  \Device\Harddisk0\DR0 - ok
14:04:58.0691 3008  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
14:04:58.0730 3008  \Device\Harddisk1\DR1 - ok
14:04:58.0735 3008  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk2\DR2
14:04:58.0754 3008  \Device\Harddisk2\DR2 - ok
14:04:58.0754 3008  ================ Scan VBR ==================================
14:04:58.0756 3008  [ 4730AA4284CB53A6F6303198A3276ED2 ] \Device\Harddisk0\DR0\Partition1
14:04:58.0756 3008  \Device\Harddisk0\DR0\Partition1 - ok
14:04:58.0758 3008  [ 8AB44F3B6F2A5DCE9031C4563556DE10 ] \Device\Harddisk0\DR0\Partition2
14:04:58.0758 3008  \Device\Harddisk0\DR0\Partition2 - ok
14:04:58.0760 3008  [ 5200F04202F54291327793F1B3A2848E ] \Device\Harddisk1\DR1\Partition1
14:04:58.0761 3008  \Device\Harddisk1\DR1\Partition1 - ok
14:04:58.0763 3008  [ 51C07A1544E9E1FB07E568F050762CBF ] \Device\Harddisk2\DR2\Partition1
14:04:58.0764 3008  \Device\Harddisk2\DR2\Partition1 - ok
14:04:58.0764 3008  ============================================================
14:04:58.0764 3008  Scan finished
14:04:58.0764 3008  ============================================================
14:04:58.0769 5204  Detected object count: 0
14:04:58.0769 5204  Actual detected object count: 0
14:05:01.0363 9620  ============================================================
14:05:01.0363 9620  Scan started
14:05:01.0363 9620  Mode: Manual;
14:05:01.0363 9620  ============================================================
14:05:01.0495 9620  ================ Scan system memory ========================
14:05:01.0495 9620  System memory - ok
14:05:01.0496 9620  ================ Scan services =============================
14:05:01.0523 9620  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
14:05:01.0523 9620  1394ohci - ok
14:05:01.0528 9620  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
14:05:01.0529 9620  ACPI - ok
14:05:01.0531 9620  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
14:05:01.0531 9620  AcpiPmi - ok
14:05:01.0535 9620  [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
14:05:01.0535 9620  AdobeARMservice - ok
14:05:01.0549 9620  [ 1BA1AB4141A92EB34DA99F1249CA2D4D ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
14:05:01.0550 9620  AdobeFlashPlayerUpdateSvc - ok
14:05:01.0555 9620  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
14:05:01.0557 9620  adp94xx - ok
14:05:01.0562 9620  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
14:05:01.0563 9620  adpahci - ok
14:05:01.0566 9620  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
14:05:01.0567 9620  adpu320 - ok
14:05:01.0570 9620  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
14:05:01.0571 9620  AeLookupSvc - ok
14:05:01.0576 9620  [ 79059559E89D06E8B80CE2944BE20228 ] AFD             C:\Windows\system32\drivers\afd.sys
14:05:01.0578 9620  AFD - ok
14:05:01.0581 9620  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
14:05:01.0581 9620  agp440 - ok
14:05:01.0583 9620  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
14:05:01.0584 9620  ALG - ok
14:05:01.0586 9620  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
14:05:01.0586 9620  aliide - ok
14:05:01.0589 9620  [ B3B263B419FC9E7B1D41E61FDAE45BD9 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
14:05:01.0590 9620  AMD External Events Utility - ok
14:05:01.0592 9620  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
14:05:01.0593 9620  amdide - ok
14:05:01.0595 9620  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
14:05:01.0595 9620  AmdK8 - ok
14:05:01.0658 9620  [ 9A6E9363F7A5E5A06629D9DDC76EE6B5 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
14:05:01.0693 9620  amdkmdag - ok
14:05:01.0700 9620  [ 957A4C13E1981B1701E600EF1E823C68 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
14:05:01.0701 9620  amdkmdap - ok
14:05:01.0704 9620  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
14:05:01.0704 9620  AmdPPM - ok
14:05:01.0707 9620  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
14:05:01.0707 9620  amdsata - ok
14:05:01.0711 9620  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
14:05:01.0712 9620  amdsbs - ok
14:05:01.0714 9620  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
14:05:01.0715 9620  amdxata - ok
14:05:01.0717 9620  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
14:05:01.0717 9620  AppID - ok
14:05:01.0719 9620  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
14:05:01.0719 9620  AppIDSvc - ok
14:05:01.0721 9620  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\Windows\System32\appinfo.dll
14:05:01.0722 9620  Appinfo - ok
14:05:01.0724 9620  [ 30E3850F303EAE5C364782EA78579CC9 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:05:01.0725 9620  Apple Mobile Device - ok
14:05:01.0729 9620  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\drivers\arc.sys
14:05:01.0729 9620  arc - ok
14:05:01.0731 9620  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\drivers\arcsas.sys
14:05:01.0732 9620  arcsas - ok
14:05:01.0734 9620  [ 72B060669EB8A3D1EF1D1B6BE6BE4C28 ] asahci64        C:\Windows\system32\DRIVERS\asahci64.sys
14:05:01.0734 9620  asahci64 - ok
14:05:01.0736 9620  [ E1AFEE1584C74050DE0DD16DE2A54BF3 ] AsrAppCharger   C:\Windows\system32\DRIVERS\AsrAppCharger.sys
14:05:01.0736 9620  AsrAppCharger - ok
14:05:01.0738 9620  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
14:05:01.0739 9620  AsyncMac - ok
14:05:01.0741 9620  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
14:05:01.0741 9620  atapi - ok
14:05:01.0750 9620  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
14:05:01.0753 9620  AudioEndpointBuilder - ok
14:05:01.0758 9620  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
14:05:01.0761 9620  AudioSrv - ok
14:05:01.0772 9620  [ C57310BA787CF93958111A4EAE9C003A ] AVer330C875     C:\Windows\system32\DRIVERS\AVer330C875.sys
14:05:01.0777 9620  AVer330C875 - ok
14:05:01.0782 9620  [ 509C2141A260E5A29B2EC01CF0B80B72 ] AVerRECentral   C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRECentral.exe
14:05:01.0783 9620  AVerRECentral - ok
14:05:01.0786 9620  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
14:05:01.0787 9620  AxInstSV - ok
14:05:01.0791 9620  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
14:05:01.0793 9620  b06bdrv - ok
14:05:01.0797 9620  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
14:05:01.0798 9620  b57nd60a - ok
14:05:01.0803 9620  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
14:05:01.0803 9620  BDESVC - ok
14:05:01.0805 9620  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
14:05:01.0805 9620  Beep - ok
14:05:01.0811 9620  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
14:05:01.0814 9620  BFE - ok
14:05:01.0822 9620  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
14:05:01.0825 9620  BITS - ok
14:05:01.0828 9620  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
14:05:01.0828 9620  blbdrive - ok
14:05:01.0833 9620  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
14:05:01.0835 9620  Bonjour Service - ok
14:05:01.0838 9620  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
14:05:01.0838 9620  bowser - ok
14:05:01.0840 9620  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
14:05:01.0841 9620  BrFiltLo - ok
14:05:01.0843 9620  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
14:05:01.0843 9620  BrFiltUp - ok
14:05:01.0847 9620  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
14:05:01.0848 9620  Browser - ok
14:05:01.0851 9620  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
14:05:01.0852 9620  Brserid - ok
14:05:01.0854 9620  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
14:05:01.0855 9620  BrSerWdm - ok
14:05:01.0857 9620  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
14:05:01.0857 9620  BrUsbMdm - ok
14:05:01.0859 9620  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
14:05:01.0860 9620  BrUsbSer - ok
14:05:01.0863 9620  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
14:05:01.0863 9620  BTHMODEM - ok
14:05:01.0868 9620  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
14:05:01.0868 9620  bthserv - ok
14:05:01.0871 9620  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
14:05:01.0872 9620  cdfs - ok
14:05:01.0875 9620  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
14:05:01.0876 9620  cdrom - ok
14:05:01.0879 9620  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
14:05:01.0879 9620  CertPropSvc - ok
14:05:01.0881 9620  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
14:05:01.0882 9620  circlass - ok
14:05:01.0886 9620  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
14:05:01.0887 9620  CLFS - ok
14:05:01.0891 9620  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:05:01.0891 9620  clr_optimization_v2.0.50727_32 - ok
14:05:01.0896 9620  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
14:05:01.0897 9620  clr_optimization_v2.0.50727_64 - ok
14:05:01.0901 9620  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:05:01.0902 9620  clr_optimization_v4.0.30319_32 - ok
14:05:01.0906 9620  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
14:05:01.0907 9620  clr_optimization_v4.0.30319_64 - ok
14:05:01.0910 9620  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
14:05:01.0910 9620  CmBatt - ok
14:05:01.0912 9620  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
14:05:01.0912 9620  cmdide - ok
14:05:01.0917 9620  [ 49C24E98369E764A206C0DBE9644C7E6 ] CMUSBDAC        C:\Windows\system32\DRIVERS\CMUSBDAC.sys
14:05:01.0918 9620  CMUSBDAC - ok
14:05:01.0924 9620  [ EBF28856F69CF094A902F884CF989706 ] CNG             C:\Windows\system32\Drivers\cng.sys
14:05:01.0925 9620  CNG - ok
14:05:01.0928 9620  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
14:05:01.0928 9620  Compbatt - ok
14:05:01.0930 9620  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
14:05:01.0930 9620  CompositeBus - ok
14:05:01.0932 9620  COMSysApp - ok
14:05:01.0934 9620  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
14:05:01.0934 9620  crcdisk - ok
14:05:01.0936 9620  [ C8BD651E13895B93ED9EC5B4F1DF42BC ] Creative ALchemy AL6 Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
14:05:01.0937 9620  Creative ALchemy AL6 Licensing Service - ok
14:05:01.0939 9620  [ C0EAD9F8AB83D41FF07303C75589C2B8 ] Creative Audio Engine Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
14:05:01.0939 9620  Creative Audio Engine Licensing Service - ok
14:05:01.0966 9620  [ 6B400F211BEE880A37A1ED0368776BF4 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
14:05:01.0967 9620  CryptSvc - ok
14:05:01.0972 9620  [ EDBA1382E5D7D1E71442B43E170CF8D4 ] CTAudSvcService C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
14:05:01.0973 9620  CTAudSvcService - ok
14:05:01.0982 9620  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
14:05:01.0984 9620  DcomLaunch - ok
14:05:01.0988 9620  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
14:05:01.0989 9620  defragsvc - ok
14:05:01.0991 9620  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
14:05:01.0992 9620  DfsC - ok
14:05:01.0996 9620  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
14:05:01.0997 9620  Dhcp - ok
14:05:02.0000 9620  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
14:05:02.0000 9620  discache - ok
14:05:02.0003 9620  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\drivers\disk.sys
14:05:02.0003 9620  Disk - ok
14:05:02.0006 9620  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
14:05:02.0007 9620  Dnscache - ok
14:05:02.0011 9620  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
14:05:02.0012 9620  dot3svc - ok
14:05:02.0015 9620  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
14:05:02.0016 9620  DPS - ok
14:05:02.0018 9620  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
14:05:02.0019 9620  drmkaud - ok
14:05:02.0022 9620  [ 6A0E850DDCB136AA3D2FB7234382DF12 ] dtsoftbus01     C:\Windows\system32\DRIVERS\dtsoftbus01.sys
14:05:02.0023 9620  dtsoftbus01 - ok
14:05:02.0032 9620  [ 88612F1CE3BF42256913BF6E61C70D52 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
14:05:02.0036 9620  DXGKrnl - ok
14:05:02.0041 9620  [ 8020B5D39DDFF589200EBD5592314F83 ] e1dexpress      C:\Windows\system32\DRIVERS\e1d62x64.sys
14:05:02.0043 9620  e1dexpress - ok
14:05:02.0048 9620  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
14:05:02.0049 9620  EapHost - ok
14:05:02.0071 9620  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\drivers\evbda.sys
14:05:02.0083 9620  ebdrv - ok
14:05:02.0087 9620  [ 4D71227301DD8D09097B9E4CC6527E5A ] EFS             C:\Windows\System32\lsass.exe
14:05:02.0087 9620  EFS - ok
14:05:02.0093 9620  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
14:05:02.0096 9620  ehRecvr - ok
14:05:02.0098 9620  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
14:05:02.0099 9620  ehSched - ok
14:05:02.0105 9620  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
14:05:02.0107 9620  elxstor - ok
14:05:02.0110 9620  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
14:05:02.0111 9620  ErrDev - ok
14:05:02.0117 9620  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
14:05:02.0119 9620  EventSystem - ok
14:05:02.0122 9620  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
14:05:02.0123 9620  exfat - ok
14:05:02.0126 9620  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
14:05:02.0127 9620  fastfat - ok
14:05:02.0133 9620  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
14:05:02.0136 9620  Fax - ok
14:05:02.0138 9620  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\drivers\fdc.sys
14:05:02.0138 9620  fdc - ok
14:05:02.0140 9620  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
14:05:02.0140 9620  fdPHost - ok
14:05:02.0142 9620  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
14:05:02.0143 9620  FDResPub - ok
14:05:02.0147 9620  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
14:05:02.0148 9620  FileInfo - ok
14:05:02.0150 9620  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
14:05:02.0150 9620  Filetrace - ok
14:05:02.0152 9620  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
14:05:02.0152 9620  flpydisk - ok
14:05:02.0156 9620  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
14:05:02.0157 9620  FltMgr - ok
14:05:02.0165 9620  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
14:05:02.0169 9620  FontCache - ok
14:05:02.0172 9620  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
14:05:02.0173 9620  FontCache3.0.0.0 - ok
14:05:02.0176 9620  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
14:05:02.0176 9620  FsDepends - ok
14:05:02.0179 9620  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
14:05:02.0179 9620  Fs_Rec - ok
14:05:02.0182 9620  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
14:05:02.0183 9620  fvevol - ok
14:05:02.0185 9620  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
14:05:02.0186 9620  gagp30kx - ok
14:05:02.0187 9620  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
14:05:02.0188 9620  GEARAspiWDM - ok
14:05:02.0195 9620  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
14:05:02.0198 9620  gpsvc - ok
14:05:02.0202 9620  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:05:02.0203 9620  gupdate - ok
14:05:02.0205 9620  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:05:02.0206 9620  gupdatem - ok
14:05:02.0208 9620  [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi         C:\Windows\system32\DRIVERS\hamachi.sys
14:05:02.0208 9620  hamachi - ok
14:05:02.0237 9620  [ E24E88736B13BC54CA93E7F86A0F4FCF ] Hamachi2Svc     E:\Program Files (x86)\hamachi-2.exe
14:05:02.0245 9620  Hamachi2Svc - ok
14:05:02.0247 9620  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
14:05:02.0248 9620  hcw85cir - ok
14:05:02.0252 9620  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
14:05:02.0254 9620  HdAudAddService - ok
14:05:02.0256 9620  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
14:05:02.0257 9620  HDAudBus - ok
14:05:02.0259 9620  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
14:05:02.0260 9620  HidBatt - ok
14:05:02.0262 9620  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
14:05:02.0262 9620  HidBth - ok
14:05:02.0265 9620  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\drivers\hidir.sys
14:05:02.0265 9620  HidIr - ok
14:05:02.0268 9620  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
14:05:02.0268 9620  hidserv - ok
14:05:02.0270 9620  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
14:05:02.0270 9620  HidUsb - ok
14:05:02.0272 9620  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
14:05:02.0273 9620  hkmsvc - ok
14:05:02.0276 9620  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
14:05:02.0278 9620  HomeGroupListener - ok
14:05:02.0281 9620  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
14:05:02.0283 9620  HomeGroupProvider - ok
14:05:02.0285 9620  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
14:05:02.0285 9620  HpSAMD - ok
14:05:02.0291 9620  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
14:05:02.0294 9620  HTTP - ok
14:05:02.0297 9620  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
14:05:02.0298 9620  hwpolicy - ok
14:05:02.0300 9620  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
14:05:02.0301 9620  i8042prt - ok
14:05:02.0307 9620  [ B9E489CC1EA3284FEED33799DC70612D ] iaStorA         C:\Windows\system32\DRIVERS\iaStorA.sys
14:05:02.0309 9620  iaStorA - ok
14:05:02.0312 9620  [ 3AEE4C821114AC707699A28988F27ABB ] IAStorDataMgrSvc C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
14:05:02.0313 9620  IAStorDataMgrSvc - ok
14:05:02.0315 9620  [ CC096E5C9BAABEB8EF12CDFAFFD888CF ] iaStorF         C:\Windows\system32\DRIVERS\iaStorF.sys
14:05:02.0315 9620  iaStorF - ok
14:05:02.0319 9620  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
14:05:02.0321 9620  iaStorV - ok
14:05:02.0328 9620  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
14:05:02.0331 9620  idsvc - ok
14:05:02.0333 9620  IEEtwCollectorService - ok
14:05:02.0335 9620  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
14:05:02.0335 9620  iirsp - ok
14:05:02.0337 9620  [ E18725531054FE222115873AC1CCB02B ] ikbevent        C:\Windows\system32\DRIVERS\ikbevent.sys
14:05:02.0337 9620  ikbevent - ok
14:05:02.0344 9620  [ 344789398EC3EE5A4E00C52B31847946 ] IKEEXT          C:\Windows\System32\ikeext.dll
14:05:02.0348 9620  IKEEXT - ok
14:05:02.0350 9620  [ 45060257BCA3D60204FEC29F6E6DE458 ] imsevent        C:\Windows\system32\DRIVERS\imsevent.sys
14:05:02.0351 9620  imsevent - ok
14:05:02.0374 9620  [ CCEDD47ABD068C58C8513DEB785093BB ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
14:05:02.0386 9620  IntcAzAudAddService - ok
14:05:02.0393 9620  [ DDA8E5AD97231AB50B81FED04C28F64C ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
14:05:02.0396 9620  Intel® Capability Licensing Service Interface - ok
14:05:02.0404 9620  [ 86FE509640D77FB0998FC8B1FF5523C6 ] Intel® Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
14:05:02.0407 9620  Intel® Capability Licensing Service TCP IP Interface - ok
14:05:02.0411 9620  [ EE65488B7294FBCB113EAC9FD492345C ] Intel® ME Service C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
14:05:02.0411 9620  Intel® ME Service - ok
14:05:02.0415 9620  [ 26FBC0AEDE7C6A67781202E0E2ECB6A6 ] Intel® PROSet Monitoring Service C:\Windows\system32\IProsetMonitor.exe
14:05:02.0416 9620  Intel® PROSet Monitoring Service - ok
14:05:02.0420 9620  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
14:05:02.0420 9620  intelide - ok
14:05:02.0422 9620  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
14:05:02.0423 9620  intelppm - ok
14:05:02.0426 9620  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
14:05:02.0427 9620  IPBusEnum - ok
14:05:02.0430 9620  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:05:02.0430 9620  IpFilterDriver - ok
14:05:02.0435 9620  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
14:05:02.0437 9620  iphlpsvc - ok
14:05:02.0440 9620  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
14:05:02.0440 9620  IPMIDRV - ok
14:05:02.0443 9620  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
14:05:02.0444 9620  IPNAT - ok
14:05:02.0450 9620  [ 33B286326BD2B1A7748C43391058FB19 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
14:05:02.0453 9620  iPod Service - ok
14:05:02.0456 9620  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
14:05:02.0457 9620  IRENUM - ok
14:05:02.0461 9620  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
14:05:02.0461 9620  isapnp - ok
14:05:02.0465 9620  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
14:05:02.0466 9620  iScsiPrt - ok
14:05:02.0468 9620  [ 4EE2423C38F43D37F8497A672FD10BDC ] ISCT            C:\Windows\system32\DRIVERS\ISCTD64.sys
14:05:02.0469 9620  ISCT - ok
14:05:02.0472 9620  [ 88CCCCFA8269973C3C3C06F94DA03BAB ] ISCTAgent       C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe
14:05:02.0473 9620  ISCTAgent - ok
14:05:02.0484 9620  [ 897B93573F07C9CB1140516DAC44BC7E ] iusb3hcs        C:\Windows\system32\DRIVERS\iusb3hcs.sys
14:05:02.0485 9620  iusb3hcs - ok
14:05:02.0489 9620  [ 2D15CEDF619796002E8640F73A4BF920 ] iusb3hub        C:\Windows\system32\DRIVERS\iusb3hub.sys
14:05:02.0490 9620  iusb3hub - ok
14:05:02.0498 9620  [ F1E93FE111924D0BC853155AADF8048B ] iusb3xhc        C:\Windows\system32\DRIVERS\iusb3xhc.sys
14:05:02.0500 9620  iusb3xhc - ok
14:05:02.0504 9620  [ BF5D3A2624177C413680DEF19A465AF8 ] jhi_service     C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
14:05:02.0505 9620  jhi_service - ok
14:05:02.0508 9620  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
14:05:02.0509 9620  kbdclass - ok
14:05:02.0511 9620  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
14:05:02.0511 9620  kbdhid - ok
14:05:02.0514 9620  [ 4D71227301DD8D09097B9E4CC6527E5A ] KeyIso          C:\Windows\system32\lsass.exe
14:05:02.0514 9620  KeyIso - ok
14:05:02.0516 9620  [ 8F489706472F7E9A06BAAA198703FA64 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
14:05:02.0517 9620  KSecDD - ok
14:05:02.0520 9620  [ 868A2CAAB12EFC7A021682BCA0EEC54C ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
14:05:02.0521 9620  KSecPkg - ok
14:05:02.0523 9620  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
14:05:02.0523 9620  ksthunk - ok
14:05:02.0528 9620  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
14:05:02.0530 9620  KtmRm - ok
14:05:02.0533 9620  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
14:05:02.0535 9620  LanmanServer - ok
14:05:02.0537 9620  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
14:05:02.0539 9620  LanmanWorkstation - ok
14:05:02.0544 9620  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
14:05:02.0545 9620  lltdio - ok
14:05:02.0550 9620  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
14:05:02.0551 9620  lltdsvc - ok
14:05:02.0553 9620  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
14:05:02.0554 9620  lmhosts - ok
14:05:02.0558 9620  [ 3EA307C51069BC72DD74A4964F2A30A9 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
14:05:02.0559 9620  LMS - ok
14:05:02.0563 9620  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
14:05:02.0564 9620  LSI_FC - ok
14:05:02.0567 9620  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
14:05:02.0567 9620  LSI_SAS - ok
14:05:02.0569 9620  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
14:05:02.0570 9620  LSI_SAS2 - ok
14:05:02.0572 9620  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
14:05:02.0573 9620  LSI_SCSI - ok
14:05:02.0577 9620  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
14:05:02.0578 9620  luafv - ok
14:05:02.0580 9620  [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
14:05:02.0581 9620  MBAMProtector - ok
14:05:02.0585 9620  [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
14:05:02.0586 9620  MBAMScheduler - ok
14:05:02.0592 9620  [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
14:05:02.0595 9620  MBAMService - ok
14:05:02.0597 9620  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
14:05:02.0598 9620  Mcx2Svc - ok
14:05:02.0600 9620  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\drivers\megasas.sys
14:05:02.0600 9620  megasas - ok
14:05:02.0604 9620  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
14:05:02.0605 9620  MegaSR - ok
14:05:02.0608 9620  [ 2BB3EAE2EA641515D4B205CAB29E1624 ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
14:05:02.0608 9620  MEIx64 - ok
14:05:02.0613 9620  Microsoft SharePoint Workspace Audit Service - ok
14:05:02.0615 9620  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
14:05:02.0616 9620  MMCSS - ok
14:05:02.0620 9620  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
14:05:02.0620 9620  Modem - ok
14:05:02.0622 9620  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
14:05:02.0622 9620  monitor - ok
14:05:02.0624 9620  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
14:05:02.0624 9620  mouclass - ok
14:05:02.0626 9620  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
14:05:02.0626 9620  mouhid - ok
14:05:02.0628 9620  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
14:05:02.0629 9620  mountmgr - ok
14:05:02.0631 9620  [ 3B9398E0146855B1DC0E3D9769C80F01 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
14:05:02.0632 9620  MozillaMaintenance - ok
14:05:02.0635 9620  [ C6B88D62F20AC646C6BD5C032EC2FAF9 ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
14:05:02.0636 9620  MpFilter - ok
14:05:02.0639 9620  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
14:05:02.0639 9620  mpio - ok
14:05:02.0643 9620  [ BC3C790A27FFF88DACC787B860E6741F ] MpKslcf9320b4   C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{B0B9D229-65EA-4340-81C0-15B9E5CC1020}\MpKslcf9320b4.sys
14:05:02.0643 9620  MpKslcf9320b4 - ok
14:05:02.0647 9620  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
14:05:02.0647 9620  mpsdrv - ok
14:05:02.0655 9620  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
14:05:02.0659 9620  MpsSvc - ok
14:05:02.0662 9620  [ 1A4F75E63C9FB84B85DFFC6B63FD5404 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
14:05:02.0663 9620  MRxDAV - ok
14:05:02.0666 9620  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
14:05:02.0666 9620  mrxsmb - ok
14:05:02.0670 9620  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:05:02.0672 9620  mrxsmb10 - ok
14:05:02.0674 9620  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:05:02.0675 9620  mrxsmb20 - ok
14:05:02.0677 9620  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
14:05:02.0678 9620  msahci - ok
14:05:02.0681 9620  [ 41FB1D61DF09C36CCAB0B04EEC66F6D5 ] MSCamSvc        C:\Program Files\Microsoft LifeCam\MSCamS64.exe
14:05:02.0682 9620  MSCamSvc - ok
14:05:02.0684 9620  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
14:05:02.0685 9620  msdsm - ok
14:05:02.0687 9620  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
14:05:02.0688 9620  MSDTC - ok
14:05:02.0692 9620  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
14:05:02.0693 9620  Msfs - ok
14:05:02.0695 9620  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
14:05:02.0695 9620  mshidkmdf - ok
14:05:02.0697 9620  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
14:05:02.0697 9620  msisadrv - ok
14:05:02.0700 9620  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
14:05:02.0702 9620  MSiSCSI - ok
14:05:02.0703 9620  msiserver - ok
14:05:02.0705 9620  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
14:05:02.0706 9620  MSKSSRV - ok
14:05:02.0708 9620  [ 7675E15D1B2180745E4DA4D26AAD7385 ] MsMpSvc         C:\Program Files\Microsoft Security Client\MsMpEng.exe
14:05:02.0708 9620  MsMpSvc - ok
14:05:02.0710 9620  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
14:05:02.0711 9620  MSPCLOCK - ok
14:05:02.0713 9620  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
14:05:02.0713 9620  MSPQM - ok
14:05:02.0717 9620  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
14:05:02.0719 9620  MsRPC - ok
14:05:02.0723 9620  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
14:05:02.0723 9620  mssmbios - ok
14:05:02.0726 9620  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
14:05:02.0726 9620  MSTEE - ok
14:05:02.0728 9620  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
14:05:02.0728 9620  MTConfig - ok
14:05:02.0730 9620  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
14:05:02.0730 9620  Mup - ok
14:05:02.0736 9620  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
14:05:02.0738 9620  napagent - ok
14:05:02.0742 9620  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
14:05:02.0744 9620  NativeWifiP - ok
14:05:02.0754 9620  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
14:05:02.0757 9620  NDIS - ok
14:05:02.0760 9620  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
14:05:02.0760 9620  NdisCap - ok
14:05:02.0763 9620  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
14:05:02.0763 9620  NdisTapi - ok
14:05:02.0766 9620  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
14:05:02.0766 9620  Ndisuio - ok
14:05:02.0769 9620  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
14:05:02.0770 9620  NdisWan - ok
14:05:02.0772 9620  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
14:05:02.0772 9620  NDProxy - ok
14:05:02.0775 9620  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
14:05:02.0775 9620  NetBIOS - ok
14:05:02.0779 9620  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
14:05:02.0780 9620  NetBT - ok
14:05:02.0782 9620  [ 4D71227301DD8D09097B9E4CC6527E5A ] Netlogon        C:\Windows\system32\lsass.exe
14:05:02.0783 9620  Netlogon - ok
14:05:02.0787 9620  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
14:05:02.0789 9620  Netman - ok
14:05:02.0793 9620  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
14:05:02.0796 9620  netprofm - ok
14:05:02.0799 9620  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
14:05:02.0800 9620  NetTcpPortSharing - ok
14:05:02.0802 9620  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
14:05:02.0802 9620  nfrd960 - ok
14:05:02.0805 9620  [ ACE8C64C57E4A711473C8BC10ADF692B ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
14:05:02.0806 9620  NisDrv - ok
14:05:02.0810 9620  [ 6247E8B31ED0A9D6BC5A26276E49BEB3 ] NisSrv          C:\Program Files\Microsoft Security Client\NisSrv.exe
14:05:02.0811 9620  NisSrv - ok
14:05:02.0816 9620  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
14:05:02.0818 9620  NlaSvc - ok
14:05:02.0821 9620  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
14:05:02.0821 9620  Npfs - ok
14:05:02.0824 9620  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
14:05:02.0825 9620  nsi - ok
14:05:02.0827 9620  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
14:05:02.0827 9620  nsiproxy - ok
14:05:02.0840 9620  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
14:05:02.0846 9620  Ntfs - ok
14:05:02.0849 9620  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
14:05:02.0849 9620  Null - ok
14:05:02.0852 9620  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
14:05:02.0853 9620  nvraid - ok
14:05:02.0856 9620  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
14:05:02.0857 9620  nvstor - ok
14:05:02.0860 9620  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
14:05:02.0860 9620  nv_agp - ok
14:05:02.0863 9620  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
14:05:02.0863 9620  ohci1394 - ok
14:05:02.0866 9620  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:05:02.0867 9620  ose - ok
14:05:02.0899 9620  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
14:05:02.0916 9620  osppsvc - ok
14:05:02.0923 9620  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
14:05:02.0925 9620  p2pimsvc - ok
14:05:02.0930 9620  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
14:05:02.0932 9620  p2psvc - ok
14:05:02.0935 9620  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\drivers\parport.sys
14:05:02.0935 9620  Parport - ok
14:05:02.0938 9620  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
14:05:02.0938 9620  partmgr - ok
14:05:02.0941 9620  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
14:05:02.0942 9620  PcaSvc - ok
14:05:02.0946 9620  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
14:05:02.0947 9620  pci - ok
14:05:02.0950 9620  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
14:05:02.0950 9620  pciide - ok
14:05:02.0954 9620  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
14:05:02.0955 9620  pcmcia - ok
14:05:02.0957 9620  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
14:05:02.0958 9620  pcw - ok
14:05:02.0963 9620  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
14:05:02.0965 9620  PEAUTH - ok
14:05:02.0978 9620  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
14:05:02.0979 9620  PerfHost - ok
14:05:02.0992 9620  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
14:05:02.0997 9620  pla - ok
14:05:03.0002 9620  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
14:05:03.0004 9620  PlugPlay - ok
14:05:03.0007 9620  PnkBstrA - ok
14:05:03.0009 9620  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
14:05:03.0010 9620  PNRPAutoReg - ok
14:05:03.0014 9620  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
14:05:03.0015 9620  PNRPsvc - ok
14:05:03.0020 9620  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
14:05:03.0022 9620  PolicyAgent - ok
14:05:03.0026 9620  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
14:05:03.0028 9620  Power - ok
14:05:03.0030 9620  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
14:05:03.0031 9620  PptpMiniport - ok
14:05:03.0033 9620  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\drivers\processr.sys
14:05:03.0034 9620  Processor - ok
14:05:03.0037 9620  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
14:05:03.0039 9620  ProfSvc - ok
14:05:03.0041 9620  [ 4D71227301DD8D09097B9E4CC6527E5A ] ProtectedStorage C:\Windows\system32\lsass.exe
14:05:03.0041 9620  ProtectedStorage - ok
14:05:03.0044 9620  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
14:05:03.0045 9620  Psched - ok
14:05:03.0057 9620  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
14:05:03.0062 9620  ql2300 - ok
14:05:03.0065 9620  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
14:05:03.0066 9620  ql40xx - ok
14:05:03.0069 9620  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
14:05:03.0071 9620  QWAVE - ok
14:05:03.0073 9620  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
14:05:03.0073 9620  QWAVEdrv - ok
14:05:03.0075 9620  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
14:05:03.0076 9620  RasAcd - ok
14:05:03.0078 9620  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
14:05:03.0079 9620  RasAgileVpn - ok
14:05:03.0081 9620  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
14:05:03.0082 9620  RasAuto - ok
14:05:03.0084 9620  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
14:05:03.0085 9620  Rasl2tp - ok
14:05:03.0089 9620  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
14:05:03.0090 9620  RasMan - ok
14:05:03.0093 9620  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
14:05:03.0093 9620  RasPppoe - ok
14:05:03.0095 9620  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
14:05:03.0096 9620  RasSstp - ok
14:05:03.0100 9620  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
14:05:03.0101 9620  rdbss - ok
14:05:03.0104 9620  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
14:05:03.0104 9620  rdpbus - ok
14:05:03.0106 9620  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
14:05:03.0106 9620  RDPCDD - ok
14:05:03.0109 9620  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
14:05:03.0109 9620  RDPENCDD - ok
14:05:03.0113 9620  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
14:05:03.0113 9620  RDPREFMP - ok
14:05:03.0117 9620  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
14:05:03.0118 9620  RDPWD - ok
14:05:03.0121 9620  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
14:05:03.0122 9620  rdyboost - ok
14:05:03.0125 9620  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
14:05:03.0126 9620  RemoteAccess - ok
14:05:03.0129 9620  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
14:05:03.0130 9620  RemoteRegistry - ok
14:05:03.0132 9620  [ 9C3AC71A9934B884FAC567A8807E9C4D ] Revoflt         C:\Windows\system32\DRIVERS\revoflt.sys
14:05:03.0132 9620  Revoflt - ok
14:05:03.0135 9620  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
14:05:03.0136 9620  RpcEptMapper - ok
14:05:03.0138 9620  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
14:05:03.0138 9620  RpcLocator - ok
14:05:03.0143 9620  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
14:05:03.0147 9620  RpcSs - ok
14:05:03.0151 9620  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
14:05:03.0151 9620  rspndr - ok
14:05:03.0154 9620  [ 4D71227301DD8D09097B9E4CC6527E5A ] SamSs           C:\Windows\system32\lsass.exe
14:05:03.0155 9620  SamSs - ok
14:05:03.0157 9620  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
14:05:03.0158 9620  sbp2port - ok
14:05:03.0161 9620  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
14:05:03.0163 9620  SCardSvr - ok
14:05:03.0165 9620  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
14:05:03.0166 9620  scfilter - ok
14:05:03.0174 9620  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
14:05:03.0179 9620  Schedule - ok
14:05:03.0182 9620  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
14:05:03.0182 9620  SCPolicySvc - ok
14:05:03.0185 9620  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
14:05:03.0186 9620  SDRSVC - ok
14:05:03.0189 9620  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
14:05:03.0189 9620  secdrv - ok
14:05:03.0191 9620  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
14:05:03.0192 9620  seclogon - ok
14:05:03.0196 9620  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
14:05:03.0197 9620  SENS - ok
14:05:03.0199 9620  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
14:05:03.0200 9620  SensrSvc - ok
14:05:03.0202 9620  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
14:05:03.0203 9620  Serenum - ok
14:05:03.0205 9620  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
14:05:03.0205 9620  Serial - ok
14:05:03.0208 9620  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
14:05:03.0209 9620  sermouse - ok
14:05:03.0215 9620  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
14:05:03.0216 9620  SessionEnv - ok
14:05:03.0218 9620  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
14:05:03.0219 9620  sffdisk - ok
14:05:03.0221 9620  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
14:05:03.0221 9620  sffp_mmc - ok
14:05:03.0223 9620  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
14:05:03.0223 9620  sffp_sd - ok
14:05:03.0225 9620  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
14:05:03.0225 9620  sfloppy - ok
14:05:03.0229 9620  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
14:05:03.0231 9620  SharedAccess - ok
14:05:03.0235 9620  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
14:05:03.0237 9620  ShellHWDetection - ok
14:05:03.0239 9620  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
14:05:03.0240 9620  SiSRaid2 - ok
14:05:03.0242 9620  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
14:05:03.0243 9620  SiSRaid4 - ok
14:05:03.0266 9620  [ 9F712B26EE3B0242DE997A42FD302E2C ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
14:05:03.0278 9620  Skype C2C Service - ok
14:05:03.0282 9620  [ 3E879BF17A4D836E77A354208F79C983 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
14:05:03.0283 9620  SkypeUpdate - ok
14:05:03.0285 9620  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
14:05:03.0286 9620  Smb - ok
14:05:03.0289 9620  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
14:05:03.0290 9620  SNMPTRAP - ok
14:05:03.0292 9620  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
14:05:03.0292 9620  spldr - ok
14:05:03.0300 9620  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
14:05:03.0303 9620  Spooler - ok
14:05:03.0326 9620  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
14:05:03.0339 9620  sppsvc - ok
14:05:03.0341 9620  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
14:05:03.0343 9620  sppuinotify - ok
14:05:03.0349 9620  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
14:05:03.0350 9620  srv - ok
14:05:03.0355 9620  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
14:05:03.0357 9620  srv2 - ok
14:05:03.0361 9620  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
14:05:03.0361 9620  srvnet - ok
14:05:03.0364 9620  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
14:05:03.0366 9620  SSDPSRV - ok
14:05:03.0369 9620  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
14:05:03.0370 9620  SstpSvc - ok
14:05:03.0375 9620  [ A87A39F9B42D82F5D60D36BB1D3CC9D3 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
14:05:03.0377 9620  Steam Client Service - ok
14:05:03.0380 9620  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\drivers\stexstor.sys
14:05:03.0380 9620  stexstor - ok
14:05:03.0385 9620  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
14:05:03.0388 9620  stisvc - ok
14:05:03.0390 9620  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
14:05:03.0391 9620  swenum - ok
14:05:03.0396 9620  [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard     C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
14:05:03.0398 9620  SwitchBoard - ok
14:05:03.0404 9620  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
14:05:03.0406 9620  swprv - ok
14:05:03.0420 9620  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
14:05:03.0426 9620  SysMain - ok
14:05:03.0429 9620  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
14:05:03.0431 9620  TabletInputService - ok
14:05:03.0435 9620  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
14:05:03.0436 9620  TapiSrv - ok
14:05:03.0439 9620  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
14:05:03.0440 9620  TBS - ok
14:05:03.0453 9620  [ 40AF23633D197905F03AB5628C558C51 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
14:05:03.0460 9620  Tcpip - ok
14:05:03.0473 9620  [ 40AF23633D197905F03AB5628C558C51 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
14:05:03.0480 9620  TCPIP6 - ok
14:05:03.0483 9620  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
14:05:03.0484 9620  tcpipreg - ok
14:05:03.0486 9620  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
14:05:03.0487 9620  TDPIPE - ok
14:05:03.0489 9620  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
14:05:03.0490 9620  TDTCP - ok
14:05:03.0492 9620  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
14:05:03.0493 9620  tdx - ok
14:05:03.0496 9620  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
14:05:03.0497 9620  TermDD - ok
14:05:03.0504 9620  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
14:05:03.0508 9620  TermService - ok
14:05:03.0510 9620  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
14:05:03.0511 9620  Themes - ok
14:05:03.0513 9620  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
14:05:03.0513 9620  THREADORDER - ok
14:05:03.0516 9620  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
14:05:03.0517 9620  TrkWks - ok
14:05:03.0520 9620  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
14:05:03.0521 9620  TrustedInstaller - ok
14:05:03.0525 9620  [ 4CE278FC9671BA81A138D70823FCAA09 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
14:05:03.0526 9620  tssecsrv - ok
14:05:03.0528 9620  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
14:05:03.0528 9620  TsUsbFlt - ok
14:05:03.0530 9620  [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
14:05:03.0530 9620  TsUsbGD - ok
14:05:03.0532 9620  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
14:05:03.0533 9620  tunnel - ok
14:05:03.0535 9620  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
14:05:03.0536 9620  uagp35 - ok
14:05:03.0540 9620  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
14:05:03.0541 9620  udfs - ok
14:05:03.0546 9620  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
14:05:03.0548 9620  UI0Detect - ok
14:05:03.0553 9620  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
14:05:03.0553 9620  uliagpkx - ok
14:05:03.0556 9620  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
14:05:03.0556 9620  umbus - ok
14:05:03.0558 9620  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\drivers\umpass.sys
14:05:03.0559 9620  UmPass - ok
14:05:03.0563 9620  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
14:05:03.0565 9620  upnphost - ok
14:05:03.0567 9620  [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
14:05:03.0568 9620  USBAAPL64 - ok
14:05:03.0571 9620  [ B0435098C81D04CAFFF80DDB746CD3A2 ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
14:05:03.0571 9620  usbaudio - ok
14:05:03.0576 9620  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
14:05:03.0577 9620  usbccgp - ok
14:05:03.0580 9620  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
14:05:03.0580 9620  usbcir - ok
14:05:03.0583 9620  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\drivers\usbehci.sys
14:05:03.0583 9620  usbehci - ok
14:05:03.0586 9620  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
14:05:03.0588 9620  usbhub - ok
14:05:03.0590 9620  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
14:05:03.0590 9620  usbohci - ok
14:05:03.0592 9620  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\drivers\usbprint.sys
14:05:03.0592 9620  usbprint - ok
14:05:03.0595 9620  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:05:03.0595 9620  USBSTOR - ok
14:05:03.0598 9620  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
14:05:03.0598 9620  usbuhci - ok
14:05:03.0601 9620  [ 1F775DA4CF1A3A1834207E975A72E9D7 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
14:05:03.0602 9620  usbvideo - ok
14:05:03.0604 9620  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
14:05:03.0605 9620  UxSms - ok
14:05:03.0607 9620  [ 4D71227301DD8D09097B9E4CC6527E5A ] VaultSvc        C:\Windows\system32\lsass.exe
14:05:03.0608 9620  VaultSvc - ok
14:05:03.0610 9620  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
14:05:03.0611 9620  vdrvroot - ok
14:05:03.0616 9620  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
14:05:03.0619 9620  vds - ok
14:05:03.0621 9620  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
14:05:03.0622 9620  vga - ok
14:05:03.0624 9620  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
14:05:03.0624 9620  VgaSave - ok
14:05:03.0628 9620  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
14:05:03.0628 9620  vhdmp - ok
14:05:03.0631 9620  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
14:05:03.0631 9620  viaide - ok
14:05:03.0633 9620  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
14:05:03.0634 9620  volmgr - ok
14:05:03.0638 9620  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
14:05:03.0639 9620  volmgrx - ok
14:05:03.0643 9620  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
14:05:03.0644 9620  volsnap - ok
14:05:03.0649 9620  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
14:05:03.0650 9620  vsmraid - ok
14:05:03.0662 9620  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
14:05:03.0668 9620  VSS - ok
14:05:03.0671 9620  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
14:05:03.0671 9620  vwifibus - ok
14:05:03.0675 9620  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
14:05:03.0678 9620  W32Time - ok
14:05:03.0681 9620  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
14:05:03.0681 9620  WacomPen - ok
14:05:03.0683 9620  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
14:05:03.0684 9620  WANARP - ok
14:05:03.0685 9620  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
14:05:03.0686 9620  Wanarpv6 - ok
14:05:03.0696 9620  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
14:05:03.0701 9620  WatAdminSvc - ok
14:05:03.0712 9620  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
14:05:03.0718 9620  wbengine - ok
14:05:03.0721 9620  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
14:05:03.0723 9620  WbioSrvc - ok
14:05:03.0727 9620  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
14:05:03.0729 9620  wcncsvc - ok
14:05:03.0731 9620  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
14:05:03.0732 9620  WcsPlugInService - ok
14:05:03.0734 9620  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\drivers\wd.sys
14:05:03.0735 9620  Wd - ok
14:05:03.0741 9620  [ E2C933EDBC389386EBE6D2BA953F43D8 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
14:05:03.0745 9620  Wdf01000 - ok
14:05:03.0748 9620  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
14:05:03.0750 9620  WdiServiceHost - ok
14:05:03.0753 9620  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
14:05:03.0754 9620  WdiSystemHost - ok
14:05:03.0758 9620  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D ] WebClient       C:\Windows\System32\webclnt.dll
14:05:03.0760 9620  WebClient - ok
14:05:03.0763 9620  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
14:05:03.0765 9620  Wecsvc - ok
14:05:03.0767 9620  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
14:05:03.0769 9620  wercplsupport - ok
14:05:03.0771 9620  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
14:05:03.0772 9620  WerSvc - ok
14:05:03.0775 9620  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
14:05:03.0775 9620  WfpLwf - ok
14:05:03.0776 9620  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
14:05:03.0777 9620  WIMMount - ok
14:05:03.0778 9620  WinDefend - ok
14:05:03.0781 9620  WinHttpAutoProxySvc - ok
14:05:03.0788 9620  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
14:05:03.0789 9620  Winmgmt - ok
14:05:03.0803 9620  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
14:05:03.0812 9620  WinRM - ok
14:05:03.0816 9620  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
14:05:03.0816 9620  WinUsb - ok
14:05:03.0826 9620  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
14:05:03.0830 9620  Wlansvc - ok
14:05:03.0833 9620  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
14:05:03.0833 9620  WmiAcpi - ok
14:05:03.0837 9620  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
14:05:03.0838 9620  wmiApSrv - ok
14:05:03.0839 9620  WMPNetworkSvc - ok
14:05:03.0842 9620  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
14:05:03.0844 9620  WPCSvc - ok
14:05:03.0847 9620  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
14:05:03.0848 9620  WPDBusEnum - ok
14:05:03.0850 9620  [ 7CA09731EB7FC99B910C7F239E57720F ] WPRO_41_2001    C:\Windows\system32\drivers\WPRO_41_2001.sys
14:05:03.0850 9620  WPRO_41_2001 - ok
14:05:03.0852 9620  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
14:05:03.0853 9620  ws2ifsl - ok
14:05:03.0855 9620  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
14:05:03.0857 9620  wscsvc - ok
14:05:03.0859 9620  WSearch - ok
14:05:03.0878 9620  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
14:05:03.0887 9620  wuauserv - ok
14:05:03.0890 9620  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
14:05:03.0891 9620  WudfPf - ok
14:05:03.0894 9620  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
14:05:03.0895 9620  WUDFRd - ok
14:05:03.0899 9620  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
14:05:03.0901 9620  wudfsvc - ok
14:05:03.0905 9620  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\Windows\System32\wwansvc.dll
14:05:03.0907 9620  WwanSvc - ok
14:05:03.0911 9620  [ 754C8BF43F0DD4B54865F174A62761E9 ] XENfiltv        C:\Windows\system32\drivers\XENfiltv.sys
14:05:03.0911 9620  XENfiltv - ok
14:05:03.0914 9620  [ 2EE48CFCE7CA8E0DB4C44C7476C0943B ] xusb21          C:\Windows\system32\DRIVERS\xusb21.sys
14:05:03.0914 9620  xusb21 - ok
14:05:03.0917 9620  ================ Scan global ===============================
14:05:03.0919 9620  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
14:05:03.0922 9620  [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
14:05:03.0926 9620  [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
14:05:03.0929 9620  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
14:05:03.0934 9620  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
14:05:03.0936 9620  [Global] - ok
14:05:03.0936 9620  ================ Scan MBR ==================================
14:05:03.0937 9620  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
14:05:03.0983 9620  \Device\Harddisk0\DR0 - ok
14:05:03.0984 9620  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
14:05:03.0991 9620  \Device\Harddisk1\DR1 - ok
14:05:03.0995 9620  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk2\DR2
14:05:04.0013 9620  \Device\Harddisk2\DR2 - ok
14:05:04.0013 9620  ================ Scan VBR ==================================
14:05:04.0014 9620  [ 4730AA4284CB53A6F6303198A3276ED2 ] \Device\Harddisk0\DR0\Partition1
14:05:04.0015 9620  \Device\Harddisk0\DR0\Partition1 - ok
14:05:04.0016 9620  [ 8AB44F3B6F2A5DCE9031C4563556DE10 ] \Device\Harddisk0\DR0\Partition2
14:05:04.0017 9620  \Device\Harddisk0\DR0\Partition2 - ok
14:05:04.0018 9620  [ 5200F04202F54291327793F1B3A2848E ] \Device\Harddisk1\DR1\Partition1
14:05:04.0018 9620  \Device\Harddisk1\DR1\Partition1 - ok
14:05:04.0021 9620  [ 51C07A1544E9E1FB07E568F050762CBF ] \Device\Harddisk2\DR2\Partition1
14:05:04.0022 9620  \Device\Harddisk2\DR2\Partition1 - ok
14:05:04.0022 9620  ============================================================
14:05:04.0022 9620  Scan finished
14:05:04.0022 9620  ============================================================
14:05:04.0030 9612  Detected object count: 0
14:05:04.0030 9612  Actual detected object count: 0
 


# AdwCleaner v3.015 - Report created 22/12/2013 at 14:23:57
# Updated 10/12/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Liam - LIAM-PC
# Running from : E:\Liam\Downloads\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****


***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16428


-\\ Mozilla Firefox v26.0 (en-US)

[ File : C:\Users\Liam\AppData\Roaming\Mozilla\Firefox\Profiles\2jhcpstm.default\prefs.js ]


[ File : C:\Users\Liam\AppData\Roaming\Mozilla\Firefox\Profiles\6kdr69d7.default\prefs.js ]


*************************

AdwCleaner[R0].txt - [2337 octets] - [22/12/2013 14:07:44]
AdwCleaner[R1].txt - [980 octets] - [22/12/2013 14:23:36]
AdwCleaner[S0].txt - [2349 octets] - [22/12/2013 14:08:44]
AdwCleaner[S1].txt - [902 octets] - [22/12/2013 14:23:57]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [961 octets] ##########
 


~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 7 Home Premium x64
Ran by Liam on Sun 22/12/2013 at 14:15:46.37
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Windows\syswow64\ai_recyclebin"



~~~ FireFox

Emptied folder: C:\Users\Liam\AppData\Roaming\mozilla\firefox\profiles\2jhcpstm.default\minidumps [5 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sun 22/12/2013 at 14:20:21.12
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 


C:\Users\Liam\AppData\Local\fdavexes.exe    Win32/TrojanDownloader.Zortob.B trojan    cleaned by deleting - quarantined
C:\Users\Liam\AppData\Local\qaksuqgh.exe    a variant of Win32/Injector.AUAW trojan    cleaned by deleting - quarantined
C:\Users\Liam\AppData\Local\Temp\Java_Update_33979c7d.exe    a variant of Win32/Injector.AUAW trojan    cleaned by deleting - quarantined
C:\Users\Liam\AppData\Local\Temp\Java_Update_ac1900d5.exe    a variant of Win32/Injector.AUAW trojan    cleaned by deleting - quarantined
C:\Users\Liam\AppData\Roaming\Anqiir\rewuiv.exe    Win32/Spy.Zbot.ABA trojan    cleaned by deleting - quarantined
C:\Users\Liam\AppData\Roaming\Eguhiwex\usapul.exe    Win32/Spy.Zbot.ABA trojan    cleaned by deleting - quarantined
C:\Users\Liam\AppData\Roaming\Ylinad\aqevt.exe    Win32/Spy.Zbot.ABA trojan    cleaned by deleting - quarantined
E:\Liam\Downloads\ccsetup404.exe    Win32/Bundled.Toolbar.Google.D application    cleaned by deleting - quarantined
E:\Liam\Downloads\DTLite4481-0347.exe    multiple threats    cleaned by deleting - quarantined
E:\Liam\Downloads\WinZip175_mfse_fah.exe    a variant of Win32/InstallCore.FJ application    cleaned by deleting - quarantined
E:\Liam\STEAM\Jedi Knights_Jedi Academy\KotFSetup.exe    Win32/CMDOW.143 application    cleaned by deleting - quarantined
E:\Liam\Users\Liam\Desktop\GEAMES\Antichamber.v1.0.cracked-THETA\Antichamber.exe    a variant of Win32/HackTool.Crack.B application    cleaned by deleting - quarantined
E:\LIAM-PC\Backup Set 2013-08-06 174729\Backup Files 2013-08-11 190000\Backup files 28.zip    a variant of Win32/HackTool.Crack.B application    deleted - quarantined
E:\LIAM-PC\Backup Set 2013-08-06 174729\Backup Files 2013-08-11 190000\Backup files 9.zip    Win32/Bundled.Toolbar.Google.D application    deleted - quarantined
E:\LIAM-PC\Backup Set 2013-08-26 204908\Backup Files 2013-08-26 204908\Backup files 7.zip    Win32/Bundled.Toolbar.Google.D application    deleted - quarantined
E:\Program Files (x86)\Vuze\.install4j\i4j_extf_20_5p83tu.exe    Win32/Somoto.F application    cleaned by deleting - quarantined
E:\Program Files (x86)\Vuze\.install4j\i4j_extf_27_5p83tu.dll    a variant of Win32/Bunndle application    cleaned by deleting - quarantined
E:\Program Files (x86)\Vuze\.install4j\i4j_extf_32_5p83tu.dll    a variant of Win32/Bunndle application    cleaned by deleting - quarantined
E:\Program Files (x86)\Vuze_Remote\ldrtbVuze.dll    a variant of Win32/Toolbar.Conduit.P application    cleaned by deleting - quarantined
E:\Program Files (x86)\Vuze_Remote\prxtbVuze.dll    Win32/Toolbar.Conduit.O application    cleaned by deleting - quarantined
E:\Program Files (x86)\Vuze_Remote\tbVuze.dll    a variant of Win32/Toolbar.Conduit.B application    cleaned by deleting - quarantined
E:\Program Files (x86)\Vuze_Remote\Vuze_RemoteToolbarHelper.exe    Win32/Toolbar.Conduit.Q application    cleaned by deleting - quarantined
Operating memory    Win32/Spy.Zbot.ABA trojan    contained infected files
 



#4 LEAMIE22

LEAMIE22
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:11:57 AM

Posted 22 December 2013 - 08:00 PM

I also went into msconfig to check whats going on in the startup programs and noticed multiple random programs with random names suddenly appearing that I don't believe I saw there beforehand, any relation to the virus?



#5 LEAMIE22

LEAMIE22
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:11:57 AM

Posted 22 December 2013 - 08:05 PM

And also microsoft security essentials keeps trying to get me to restart computer, although I have already done it multiple times, even retried scans and it keeps showing the same virus with the same results of not removing it. :(



#6 LEAMIE22

LEAMIE22
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:11:57 AM

Posted 22 December 2013 - 08:58 PM

I refound the virus I mentioned earlier

its Virus:DOS/Rovnix.W

Severe | Error encountered | Quarantine

 

The following error occurred: Error code 0x800704ec. This program is blocked by group policy. For more information, contact your system administrator.

Category: Virus

Description: This program is dangerous and replicates by infecting other files.

Recommended action: Remove this software immediately.

Items:
containerfile:C:\TDSSKiller_Quarantine\22.12.2013_13.13.29\boot0000\boot0000\tsk0000.dta
file:C:\TDSSKiller_Quarantine\22.12.2013_13.13.29\boot0000\boot0000\tsk0000.dta->[Obfuscator]



#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,329 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:57 PM

Posted 23 December 2013 - 11:37 AM

Ok you have injector file infections.

These keep replicating. To remove these we need to go in deeper and get them.



Please follow this Preparation Guide, do steps 6,7 and 8 and post in a new topic.
Let me know if all went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 LEAMIE22

LEAMIE22
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:11:57 AM

Posted 23 December 2013 - 10:45 PM

Alright I will do that. Thank you boopme for the help! :)



#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,329 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:57 PM

Posted 24 December 2013 - 10:49 PM

You're welcome and Merry Christmas...

Now that your log is properly posted, you should NOT make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by a Malware Removal Team member, nor should you continue to ask for help elsewhere. Doing so can result in system changes which may not show it the log you already posted. Further, any modifications you make on your own may cause confusion for the helper assisting you and could complicate the malware removal process which would extend the time it takes to clean your computer.
From this point on the Malware Removal Team should be the only members that you take advice from, until they have verified your log as clean.
Please be patient. It may take a while to get a response because the Malware Removal Team members are very busy working logs posted before yours. They are volunteers who will help you out as soon as possible. Once you have made your post and are waiting, please DO NOT make another reply until it has been responded to by a member of the Malware Removal Team. Generally the staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response there will be 1 reply. A team member, looking for a new log to work may assume another MRL Team member is already assisting you and not open the thread to respond.
The current wait time is 1 - 5 days and ALL logs are answered.
If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.
To avoid confusion, I am closing this topic.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users