Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Remove fake adobe flash player virus


  • Please log in to reply
1 reply to this topic

#1 yentl14

yentl14

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:09:14 AM

Posted 12 May 2014 - 09:42 PM

Hello, I have a huge problem with this virus I can't stop since a few days ago.
I have a laptop with Windows 8 and a router with 4 computers connected (Windows XP and Windows Vista)
The Problem is that every time I want to enter a website the browser ask me to update the flash player. As soon as I got this message I realized that something was wrong. So I start to look for a solution over the web
 
I use Google Chrome.
I installed Kaspersky and Malwarebytes.
 
The first thing I did was to run the kaspersky and it found and put on quarantine 2 threats. After that it ask me to reboot. So I did.
Then I run the Malwarebytes and found and put on quarantine 13 threats. After that it ask me to reboot. So I did.
 
Well at this point I thought the virus was gone so I open chrome and surprise. I was still having the update flash player problem. So what I did was to start over again with the Kaspersky and then the Malwarebyte but both found nothing.
 
Every time I open the browser I get a Malwarebyte advice for malicious website blocked.
So now I get this messages for blocked website and cant use the internet at its 100% percent.
 
At this point I found this post: 
 
I follow the order on the post. Run Minitool Box - Run TDSSKiller - Run MBAM - Run FixTDSS - Run aswMBR
 
 
 
 
Here are the logs:
 
Minitool Box Log:
 
MiniToolBox by Farbar  Version: 23-01-2014
Ran by yentl (administrator) on 08-05-2014 at 18:32:01
Running from "C:\Users\yentl\Downloads"
Microsoft Windows 8  (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Configuraci¢n IP de Windows
 
Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================
 
 
 
========================= IP Configuration: ================================
 
Realtek PCIe FE Family Controller = Ethernet (Media disconnected)
Ralink RT3090 802.11n WiFi Adapter = Wi-Fi (Media disconnected)
 
 
# ----------------------------------
# Configuraci¢n de IPv4
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
set interface interface="Local Area Connection* 9" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Wi-Fi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 11" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 12" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
 
 
popd
# Fin de la configuraci¢n de IPv4
 
 
 
Configuraci¢n IP de Windows
 
   Nombre de host. . . . . . . . . : Leon
   Sufijo DNS principal  . . . . . : 
   Tipo de nodo. . . . . . . . . . : h¡brido
   Enrutamiento IP habilitado. . . : no
   Proxy WINS habilitado . . . . . : no
 
Adaptador de LAN inal mbrica Local Area Connection* 11:
 
   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 
   Descripci¢n . . . . . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter
   Direcci¢n f¡sica. . . . . . . . . . . . . : 84-4B-F5-11-AE-46
   DHCP habilitado . . . . . . . . . . . . . : s¡
   Configuraci¢n autom tica habilitada . . . : s¡
 
Adaptador de LAN inal mbrica Wi-Fi:
 
   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 
   Descripci¢n . . . . . . . . . . . . . . . : Ralink RT3090 802.11n WiFi Adapter
   Direcci¢n f¡sica. . . . . . . . . . . . . : 84-4B-F5-11-AE-44
   DHCP habilitado . . . . . . . . . . . . . : s¡
   Configuraci¢n autom tica habilitada . . . : s¡
 
Adaptador de Ethernet Ethernet:
 
   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 
   Descripci¢n . . . . . . . . . . . . . . . : Realtek PCIe FE Family Controller
   Direcci¢n f¡sica. . . . . . . . . . . . . : B8-88-E3-95-47-25
   DHCP habilitado . . . . . . . . . . . . . : s¡
   Configuraci¢n autom tica habilitada . . . : s¡
 
Adaptador de t£nel Teredo Tunneling Pseudo-Interface:
 
   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 
   Descripci¢n . . . . . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Direcci¢n f¡sica. . . . . . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP habilitado . . . . . . . . . . . . . : no
   Configuraci¢n autom tica habilitada . . . : s¡
Servidor:  UnKnown
Address:  127.0.0.1
 
La solicitud de ping no pudo encontrar el host google.com. Compruebe el nombre y
vuelva a intentarlo.
Servidor:  UnKnown
Address:  127.0.0.1
 
La solicitud de ping no pudo encontrar el host yahoo.com. Compruebe el nombre y
vuelva a intentarlo.
 
Haciendo ping a 127.0.0.1 con 32 bytes de datos:
Respuesta desde 127.0.0.1: bytes=32 tiempo<1m TTL=128
Respuesta desde 127.0.0.1: bytes=32 tiempo<1m TTL=128
 
Estad¡sticas de ping para 127.0.0.1:
    Paquetes: enviados = 2, recibidos = 2, perdidos = 0
    (0% perdidos),
Tiempos aproximados de ida y vuelta en milisegundos:
    M¡nimo = 0ms, M ximo = 0ms, Media = 0ms
===========================================================================
ILista de interfaces
 14...84 4b f5 11 ae 46 ......Microsoft Wi-Fi Direct Virtual Adapter
 13...84 4b f5 11 ae 44 ......Ralink RT3090 802.11n WiFi Adapter
 12...b8 88 e3 95 47 25 ......Realtek PCIe FE Family Controller
  1...........................Software Loopback Interface 1
 17...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================
 
IPv4 Tabla de enrutamiento
===========================================================================
Rutas activas:
Destino de red        M scara de red   Puerta de enlace   Interfaz  M‚trica
        127.0.0.0        255.0.0.0      En v¡nculo         127.0.0.1    306
        127.0.0.1  255.255.255.255      En v¡nculo         127.0.0.1    306
  127.255.255.255  255.255.255.255      En v¡nculo         127.0.0.1    306
        224.0.0.0        240.0.0.0      En v¡nculo         127.0.0.1    306
  255.255.255.255  255.255.255.255      En v¡nculo         127.0.0.1    306
===========================================================================
Rutas persistentes:
  Ninguno
 
IPv6 Tabla de enrutamiento
===========================================================================
Rutas activas:
 Cuando destino de red m‚trica      Puerta de enlace
  1    306 ::1/128                  En v¡nculo
  1    306 ff00::/8                 En v¡nculo
===========================================================================
Rutas persistentes:
  Ninguno
========================= Winsock entries =====================================
 
Catalog5 01 C:\windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\windows\SysWOW64\pnrpnsp.dll [67584] (Microsoft Corporation)
Catalog5 03 C:\windows\SysWOW64\pnrpnsp.dll [67584] (Microsoft Corporation)
Catalog5 04 C:\windows\SysWOW64\NLAapi.dll [55296] (Microsoft Corporation)
Catalog5 05 C:\windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog5 06 C:\windows\SysWOW64\winrnr.dll [21504] (Microsoft Corporation)
Catalog9 01 C:\windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 02 C:\windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 03 C:\windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 04 C:\windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 05 C:\windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 06 C:\windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 07 C:\windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 08 C:\windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 09 C:\windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 10 C:\windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [66560] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [85504] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [85504] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [72192] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [53760] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (05/08/2014 06:15:41 PM) (Source: Report Server Windows Service (SQLEXPRESS)) (User: )
Description: Report Server Windows Service (SQLEXPRESS) cannot connect to the report server database.
 
Error: (05/08/2014 06:15:25 PM) (Source: Application Error) (User: )
Description: Nombre de la aplicación con errores: 001531~1.EXE, versión: 7.1.107.0, marca de tiempo: 0x51098160
Nombre del módulo con errores: unknown, versión: 0.0.0.0, marca de tiempo: 0x00000000
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x00000000
Identificador del proceso con errores: 0x6c0
Hora de inicio de la aplicación con errores: 0x001531~1.EXE0
Ruta de acceso de la aplicación con errores: 001531~1.EXE1
Ruta de acceso del módulo con errores: 001531~1.EXE2
Identificador del informe: 001531~1.EXE3
Nombre completo del paquete con errores: 001531~1.EXE4
Identificador de aplicación relativa del paquete con errores: 001531~1.EXE5
 
Error: (05/08/2014 05:04:03 PM) (Source: Google Update) (User: LEON)
Description: Network Request Error.
Error: 0x80042194. Http status code: 404.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80042194. Http status code 404.
 
Error: (05/08/2014 04:27:29 PM) (Source: Application Error) (User: )
Description: Nombre de la aplicación con errores: 001531~1.EXE, versión: 7.1.107.0, marca de tiempo: 0x51098160
Nombre del módulo con errores: unknown, versión: 0.0.0.0, marca de tiempo: 0x00000000
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x00000000
Identificador del proceso con errores: 0x6b8
Hora de inicio de la aplicación con errores: 0x001531~1.EXE0
Ruta de acceso de la aplicación con errores: 001531~1.EXE1
Ruta de acceso del módulo con errores: 001531~1.EXE2
Identificador del informe: 001531~1.EXE3
Nombre completo del paquete con errores: 001531~1.EXE4
Identificador de aplicación relativa del paquete con errores: 001531~1.EXE5
 
Error: (05/08/2014 04:25:11 PM) (Source: MsiInstaller) (User: LEON)
Description: Product: Microsoft Fix it 50267 -- This Microsoft Fix it does not apply to your operating system or application version.
 
Error: (05/08/2014 02:04:05 PM) (Source: Google Update) (User: LEON)
Description: Network Request Error.
Error: 0x80042194. Http status code: 404.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80042194. Http status code 404.
 
Error: (05/08/2014 11:04:10 AM) (Source: Google Update) (User: LEON)
Description: Network Request Error.
Error: 0x80042194. Http status code: 404.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80042194. Http status code 404.
 
Error: (05/08/2014 10:38:52 AM) (Source: Microsoft-Windows-Immersive-Shell) (User: LEON)
Description: No se pudo activar la aplicación Microsoft.SkypeApp_kzf8qxf38zg5c!App debido al error: -2144927142. Consulte el registro Microsoft-Windows-TWinUI/Operational para obtener más información.
 
Error: (05/08/2014 10:38:42 AM) (Source: Microsoft-Windows-Immersive-Shell) (User: LEON)
Description: La aplicación Microsoft.SkypeApp_kzf8qxf38zg5c!App no se inició dentro del tiempo asignado.
 
Error: (05/08/2014 10:37:04 AM) (Source: Report Server Windows Service (SQLEXPRESS)) (User: )
Description: Report Server Windows Service (SQLEXPRESS) cannot connect to the report server database.
 
 
System errors:
=============
Error: (05/08/2014 06:19:23 PM) (Source: Service Control Manager) (User: )
Description: El servicio McAfee Application Installer Cleanup (0015311398870621) se terminó de manera inesperada. Esto ha sucedido 1 veces.
 
Error: (05/08/2014 06:15:03 PM) (Source: EventLog) (User: )
Description: El cierre anterior del sistema a las 5:47:12 p. m. del ?8/?5/?14 resultó inesperado.
 
Error: (05/08/2014 04:30:32 PM) (Source: Service Control Manager) (User: )
Description: El servicio McAfee Application Installer Cleanup (0015311398870621) se terminó de manera inesperada. Esto ha sucedido 1 veces.
 
Error: (05/08/2014 10:39:29 AM) (Source: Service Control Manager) (User: )
Description: El servicio McAfee Application Installer Cleanup (0015311398870621) se terminó de manera inesperada. Esto ha sucedido 1 veces.
 
Error: (05/08/2014 10:26:26 AM) (Source: Service Control Manager) (User: )
Description: El servicio McAfee Application Installer Cleanup (0015311398870621) se terminó de manera inesperada. Esto ha sucedido 1 veces.
 
Error: (05/08/2014 10:22:20 AM) (Source: BugCheck) (User: )
Description: 0xc000021a (0xfffff8a01201ea90, 0x0000000000000000, 0x0000000000000000, 0x0000000000000000)C:\windows\MEMORY.DMP050814-21091-01
 
Error: (05/08/2014 10:21:14 AM) (Source: Service Control Manager) (User: )
Description: El servicio Application Experience no pudo iniciarse debido al siguiente error: 
%%3
 
Error: (05/08/2014 10:21:10 AM) (Source: Service Control Manager) (User: )
Description: El Administrador de control de servicios intentó realizar una acción correctora (Reboot the machine) después de la terminación inesperada del servicio Remote Procedure Call (RPC), pero ocurrió el siguiente error: 
%%1062
 
Error: (05/08/2014 10:21:01 AM) (Source: Service Control Manager) (User: )
Description: El servicio HomeGroup Listener se cerró con el error específico de servicio 
%%2147944153
 
Error: (05/08/2014 10:22:01 AM) (Source: EventLog) (User: )
Description: El cierre anterior del sistema a las 10:11:45 a. m. del ?8/?5/?14 resultó inesperado.
 
 
Microsoft Office Sessions:
=========================
Error: (05/08/2014 06:15:41 PM) (Source: Report Server Windows Service (SQLEXPRESS))(User: )
Description: Report Server Windows Service (SQLEXPRESS)
 
Error: (05/08/2014 06:15:25 PM) (Source: Application Error)(User: )
Description: 001531~1.EXE7.1.107.051098160unknown0.0.0.000000000c0000005000000006c001cf6b1358415512C:\Users\yentl\AppData\Local\Temp\001531~1.EXEunknowna2496d86-d706-11e3-bedc-844bf511ae44
 
Error: (05/08/2014 05:04:03 PM) (Source: Google Update)(User: LEON)
Description: Network Request Error.
Error: 0x80042194. Http status code: 404.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80042194. Http status code 404.
 
Error: (05/08/2014 04:27:29 PM) (Source: Application Error)(User: )
Description: 001531~1.EXE7.1.107.051098160unknown0.0.0.000000000c0000005000000006b801cf6b0447247efcC:\Users\yentl\AppData\Local\Temp\001531~1.EXEunknown8e249359-d6f7-11e3-bedb-b888e3954725
 
Error: (05/08/2014 04:25:11 PM) (Source: MsiInstaller)(User: LEON)
Description: Product: Microsoft Fix it 50267 -- This Microsoft Fix it does not apply to your operating system or application version.(NULL)(NULL)(NULL)(NULL)(NULL)
 
Error: (05/08/2014 02:04:05 PM) (Source: Google Update)(User: LEON)
Description: Network Request Error.
Error: 0x80042194. Http status code: 404.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80042194. Http status code 404.
 
Error: (05/08/2014 11:04:10 AM) (Source: Google Update)(User: LEON)
Description: Network Request Error.
Error: 0x80042194. Http status code: 404.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80042194. Http status code 404.
 
Error: (05/08/2014 10:38:52 AM) (Source: Microsoft-Windows-Immersive-Shell)(User: LEON)
Description: Microsoft.SkypeApp_kzf8qxf38zg5c!App-2144927142
 
Error: (05/08/2014 10:38:42 AM) (Source: Microsoft-Windows-Immersive-Shell)(User: LEON)
Description: Microsoft.SkypeApp_kzf8qxf38zg5c!App
 
Error: (05/08/2014 10:37:04 AM) (Source: Report Server Windows Service (SQLEXPRESS))(User: )
Description: Report Server Windows Service (SQLEXPRESS)
 
 
=========================== Installed Programs ============================
 
µTorrent (Version: 3.3.0.29126)
7-Zip 9.20 (x64 edition) (Version: 9.20.00.0)
Adobe Photoshop CS6 (Version: 13.0)
Adobe Reader XI (11.0.02) - Español (Version: 11.0.02)
AMD Accelerated Video Transcoding (Version: 12.5.100.20906)
AMD APP SDK Runtime (Version: 10.0.938.2)
AMD Catalyst Install Manager (Version: 8.0.881.0)
AMD Fuel (Version: 2012.0911.303.3447)
AMD Quick Stream (Version: 3.3.26.0)
AMD VISION Engine Control Center (Version: 2012.0911.303.3447)
Assassin's Creed® III v1.04 (Version: 1.04)
Blend for Visual Studio 2012 (Version: 5.0.30709.0)
Blend for Visual Studio 2012 ESN resources (Version: 5.0.30709.0)
Canon MP Navigator EX 1.2
Canon MP190 series MP Drivers
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center InstallProxy (Version: 2012.0911.303.3447)
Catalyst Control Center Localization All (Version: 2012.0911.303.3447)
CCC Help Chinese Standard (Version: 2012.0911.0302.3447)
CCC Help Chinese Traditional (Version: 2012.0911.0302.3447)
CCC Help Czech (Version: 2012.0911.0302.3447)
CCC Help Danish (Version: 2012.0911.0302.3447)
CCC Help Dutch (Version: 2012.0911.0302.3447)
CCC Help English (Version: 2012.0911.0302.3447)
CCC Help Finnish (Version: 2012.0911.0302.3447)
CCC Help French (Version: 2012.0911.0302.3447)
CCC Help German (Version: 2012.0911.0302.3447)
CCC Help Greek (Version: 2012.0911.0302.3447)
CCC Help Hungarian (Version: 2012.0911.0302.3447)
CCC Help Italian (Version: 2012.0911.0302.3447)
CCC Help Japanese (Version: 2012.0911.0302.3447)
CCC Help Korean (Version: 2012.0911.0302.3447)
CCC Help Norwegian (Version: 2012.0911.0302.3447)
CCC Help Polish (Version: 2012.0911.0302.3447)
CCC Help Portuguese (Version: 2012.0911.0302.3447)
CCC Help Russian (Version: 2012.0911.0302.3447)
CCC Help Spanish (Version: 2012.0911.0302.3447)
CCC Help Swedish (Version: 2012.0911.0302.3447)
CCC Help Thai (Version: 2012.0911.0302.3447)
CCC Help Turkish (Version: 2012.0911.0302.3447)
ccc-utility64 (Version: 2012.0911.303.3447)
Cool Edit Pro 2.1
Dolby Advanced Audio v2 (Version: 7.2.8000.16)
Dropbox (Version: 2.6.31)
DVD Shrink 3.2
Eines de correcció del Microsoft Office 2013: català (Version: 15.0.4420.1017)
Energy Management (Version: 8.0.2.4)
Facebook Video Calling 2.0.0.447 (Version: 2.0.447)
Ferramentas de verificación de Microsoft Office 2013 - Galego (Version: 15.0.4420.1017)
Firebird SQL Server - MAGIX Edition (Version: 2.1.27.0)
GDR 3128 for SQL Server 2012 (KB2793634) (64-bit) (Version: 11.1.3128.0)
Google Chrome (Version: 34.0.1847.131)
Google Drive (Version: 1.15.6556.8063)
Google Update Helper (Version: 1.3.24.7)
Intel AppUp(SM) center (Version: 3.6.1.33057.10)
Intelligent Touchpad (Version: 2.00.0012.0723)
Java 7 Update 51 (Version: 7.0.510)
Java Auto Updater (Version: 2.1.9.8)
Kaspersky Small Office Security 3 (Version: 13.0.4.233)
KMSnano 25 (Version: KMSnano 25)
Kyocera Product Library (Version: 3.3.0728)
Lenovo EasyCamera (Version: 6.2.8400.10182)
Lenovo OneKey Recovery (Version: 8.0.0.0828)
Lenovo Photos
Lenovo YouCam (Version: 4.1.3127)
Lenovo_Wireless_Driver (Version: 5.0.20)
LinuxLive USB Creator (Version: 2.8)
MAGIX Screenshare (Version: 4.3.6.1987)
MAGIX Speed burnR (MSI) (Version: 7.0.1.27)
MAGIX Video deluxe 17 Premium Versión para descargar (Version: 10.0.0.33)
Malwarebytes Anti-Malware versión 2.0.1.1004 (Version: 2.0.1.1004)
Microsoft .NET Framework 4 Multi-Targeting Pack (Version: 4.0.30319)
Microsoft .NET Framework 4.5 Multi-Targeting Pack (Version: 4.5.50709)
Microsoft .NET Framework 4.5 SDK - Paquete de idioma ESN (Version: 4.5.50709)
Microsoft .NET Framework 4.5 SDK (Version: 4.5.50709)
Microsoft Access MUI (Spanish) 2013 (Version: 15.0.4420.1017)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft DCF MUI (Spanish) 2013 (Version: 15.0.4420.1017)
Microsoft Excel MUI (Spanish) 2013 (Version: 15.0.4420.1017)
Microsoft Groove MUI (Spanish) 2013 (Version: 15.0.4420.1017)
Microsoft Help Viewer 1.0 Language Pack - ESN (Version: 1.0.30319)
Microsoft Help Viewer 1.1 (Version: 1.1.40219)
Microsoft Help Viewer 2.0 (Version: 2.0.50727)
Microsoft InfoPath MUI (Spanish) 2013 (Version: 15.0.4420.1017)
Microsoft Lync MUI (Spanish) 2013 (Version: 15.0.4420.1017)
Microsoft NuGet - Visual Studio 2012 Express for Windows 8 (Version: 2.0.30625.9003)
Microsoft Office 64-bit Components 2013 (Version: 15.0.4420.1017)
Microsoft Office OSM MUI (Spanish) 2013 (Version: 15.0.4420.1017)
Microsoft Office OSM UX MUI (Spanish) 2013 (Version: 15.0.4420.1017)
Microsoft Office Professional Plus 2013 (Version: 15.0.4420.1017)
Microsoft Office Proofing (Spanish) 2013 (Version: 15.0.4420.1017)
Microsoft Office Proofing Tools 2013 - English (Version: 15.0.4420.1017)
Microsoft Office Proofing Tools 2013 - Español (Version: 15.0.4420.1017)
Microsoft Office Shared 64-bit MUI (Spanish) 2013 (Version: 15.0.4420.1017)
Microsoft Office Shared MUI (Spanish) 2013 (Version: 15.0.4420.1017)
Microsoft Office zuzenketa-tresnak 2013 - Euskara (Version: 15.0.4420.1017)
Microsoft OneNote MUI (Spanish) 2013 (Version: 15.0.4420.1017)
Microsoft Outlook MUI (Spanish) 2013 (Version: 15.0.4420.1017)
Microsoft PowerPoint MUI (Spanish) 2013 (Version: 15.0.4420.1017)
Microsoft Publisher MUI (Spanish) 2013 (Version: 15.0.4420.1017)
Microsoft Report Viewer 2012 Runtime (Version: 11.0.2100.60)
Microsoft Silverlight (Version: 5.1.20125.0)
Microsoft SkyDrive (Version: 16.4.6013.0910)
Microsoft SQL Server 2008 R2 Management Objects (Version: 10.51.2500.0)
Microsoft SQL Server 2008 Setup Support Files  (Version: 10.1.2731.0)
Microsoft SQL Server 2012 (64-bit)
Microsoft SQL Server 2012 Data-Tier App Framework  (Version: 11.1.2816.0)
Microsoft SQL Server 2012 Express LocalDB  (Version: 11.1.3128.0)
Microsoft SQL Server 2012 Management Objects  (Version: 11.0.2100.60)
Microsoft SQL Server 2012 Management Objects  (x64) (Version: 11.1.3000.0)
Microsoft SQL Server 2012 Native Client  (Version: 11.1.3000.0)
Microsoft SQL Server 2012 Policies  (Version: 11.0.2100.60)
Microsoft SQL Server 2012 RsFx Driver (Version: 11.1.3000.0)
Microsoft SQL Server 2012 Setup (English) (Version: 11.1.3128.0)
Microsoft SQL Server 2012 Transact-SQL Compiler Service  (Version: 11.1.3128.0)
Microsoft SQL Server 2012 Transact-SQL ScriptDom  (Version: 11.1.3000.0)
Microsoft SQL Server 2012 T-SQL Language Service  (Version: 11.1.3000.0)
Microsoft SQL Server Compact 3.5 SP2 ESN (Version: 3.5.8080.0)
Microsoft SQL Server Compact 3.5 SP2 x64 ESN (Version: 3.5.8080.0)
Microsoft SQL Server Compact 4.0 SP1 x64 ESN (Version: 4.0.8876.1)
Microsoft SQL Server Data Tools – Database Projects – Web installer entry point (Version: 10.3.20116.0)
Microsoft SQL Server System CLR Types (Version: 10.51.2500.0)
Microsoft System CLR Types for SQL Server 2012 (Version: 11.0.2100.60)
Microsoft System CLR Types for SQL Server 2012 (x64) (Version: 11.1.3000.0)
Microsoft Visual Basic 2010 Express - ESN (Version: 10.0.30319)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x64 Runtime - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Runtime - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2012 Compilers - ESN Resources (Version: 11.0.50727)
Microsoft Visual C++ 2012 Compilers (Version: 11.0.50727)
Microsoft Visual C++ 2012 Core Libraries (Version: 11.0.50727)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727)
Microsoft Visual C++ 2012 x64 Debug Runtime - 11.0.50727 (Version: 11.0.50727)
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (Version: 11.0.50727)
Microsoft Visual C++ 2012 x86 Debug Runtime - 11.0.50727 (Version: 11.0.50727)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (Version: 11.0.50727)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (Version: 10.0.30319)
Microsoft Visual Studio 2010 Express Prerequisites x64 - ESN (Version: 10.0.30319)
Microsoft Visual Studio 2010 Shell (Integrated) - ENU (Version: 10.0.40219)
Microsoft Visual Studio 2010 Shell (Isolated) - ENU (Version: 10.0.40219)
Microsoft Visual Studio 2012 Express Prerequisites x64 - ESN (Version: 11.0.50727)
Microsoft Visual Studio 2012 Shell (Minimum) (Version: 11.0.50727)
Microsoft Visual Studio 2012 Shell (Minimum) Interop Assemblies (Version: 11.0.50727)
Microsoft Visual Studio Express 2012 for Windows 8 (Version: 11.0.50727)
Microsoft Visual Studio Express 2012 para Windows 8 - ESN (Version: 11.0.50727)
Microsoft Visual Studio Express 2012 para Windows 8 - ESN (Version: 11.0.50727.1)
Microsoft Visual Studio Team Foundation Server 2012 Object Model (Version: 11.0.50727)
Microsoft Visual Studio Team Foundation Server 2012 Team Explorer (Version: 11.0.50727)
Microsoft Visual Studio Tools for Applications Design-Time 3.0 (Version: 10.0.40220)
Microsoft Visual Studio Tools for Applications x86 Runtime 3.0 (Version: 10.0.40220)
Microsoft Visual Studio Ultimate 2012 XAML UI Designer Core (Version: 11.0.50727)
Microsoft Visual Studio Ultimate 2012 XAML UI Designer esn Resources (Version: 11.0.50727)
Microsoft VSS Writer for SQL Server 2012 (Version: 11.1.3000.0)
Microsoft Word MUI (Spanish) 2013 (Version: 15.0.4420.1017)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Nitro Pro 7 (Version: 7.4.1.21)
Office 15 Click-to-Run Extensibility Component (Version: 15.0.4481.1005)
Office 15 Click-to-Run Licensing Component (Version: 15.0.4481.1005)
Office 15 Click-to-Run Localization Component (Version: 15.0.4481.1005)
Omniquad  ErgoSense 2.0.2
Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4420.1017)
Paquete de idioma de Microsoft Visual Studio Team Foundation Server 2012 Team Explorer - ESN (Version: 11.0.50727)
Paquete de idioma de Visor de Ayuda de Microsoft 2.0 - ESN (Version: 2.0.50727)
Paquete de idioma del modelo de objetos de Microsoft Visual Studio Team Foundation Server 2012 - ESN (Version: 11.0.50727)
Paquete de idioma del Visor de Ayuda de Microsoft 3.0 - ESN (Version: 1.0.30319)
PDF Settings CS6 (Version: 11.0)
Preparación de Microsoft Visual Studio 2012 (Version: 11.0.50727)
Prerequisites for SSDT  (Version: 11.0.2100.60)
PunkBuster Services (Version: 0.991)
Realtek Ethernet Controller Driver (Version: 8.3.730.2012)
Realtek High Definition Audio Driver (Version: 6.0.1.6695)
Realtek USB 2.0 Card Reader (Version: 6.1.8400.39029)
Recursos (mínimos) de Microsoft Visual Studio 2012 Shell (Version: 11.0.50727)
Revisores de Texto do Microsoft Office 2013 – Português do Brasil (Version: 15.0.4420.1017)
RSIGuard Stretch Edition CP (Version: 4.1.16f)
Samsung Kies (Version: 2.5.2.13021_10)
SAMSUNG USB Driver for Mobile Phones (Version: 1.5.18.0)
Service Pack 1 for SQL Server 2012 (KB2674319) (64-bit) (Version: 11.1.3000.0)
Shared C Run-time for x64 (Version: 10.0.0)
SQL Server 2012 BI Development Studio (Version: 11.1.3000.0)
SQL Server 2012 Client Tools (Version: 11.1.3000.0)
SQL Server 2012 Common Files (Version: 11.1.3000.0)
SQL Server 2012 Database Engine Services (Version: 11.1.3000.0)
SQL Server 2012 Database Engine Shared (Version: 11.1.3000.0)
SQL Server 2012 Documentation Components (Version: 11.0.2100.60)
SQL Server 2012 Full text search (Version: 11.1.3000.0)
SQL Server 2012 Management Studio (Version: 11.1.3000.0)
SQL Server 2012 Reporting Services (Version: 11.0.2100.60)
SQL Server 2012 Reporting Services (Version: 11.1.3000.0)
SQL Server 2012 SQL Data Quality Common (Version: 11.1.3000.0)
SQL Server Browser for SQL Server 2012 (Version: 11.1.3000.0)
Sql Server Customer Experience Improvement Program (Version: 11.1.3000.0)
Synaptics Pointing Device Driver (Version: 16.2.10.13)
TortoiseSVN 1.7.11.23600 (64 bit) (Version: 1.7.23600)
UltraISO Premium V9.53
Uplay (Version: 2.0)
UserGuide (Version: 1.0.0.9)
Visual Studio 2010 Prerequisites - English (Version: 10.0.40219)
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ESN (Version: 4.0.8080.0)
Visual Studio Extensions for Windows Library for JavaScript (Version: 1.0.8514.0)
VLC media player 2.0.5 (Version: 2.0.5)
WD SmartWare (Version: 1.4.5.5)
Windows App Certification Kit Native Components (Version: 8.59.25584)
Windows App Certification Kit x64 (Version: 8.59.25584)
Windows Driver Package - Lenovo (ACPIVPC) System  (06/15/2012 8.1.0.1) (Version: 06/15/2012 8.1.0.1)
Windows Driver Package - Lenovo (WUDFRd) LenovoVhid  (06/19/2012 10.13.29.733) (Version: 06/19/2012 10.13.29.733)
Windows Runtime Intellisense Content - es-es (Version: 8.59.25584)
Windows Software Development Kit for Windows Store Apps (Version: 8.59.25584)
Windows Software Development Kit for Windows Store Apps DirectX x64 Remote (Version: 8.59.25584)
Windows Software Development Kit for Windows Store Apps DirectX x86 Remote (Version: 8.59.25584)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 48%
Total physical RAM: 3526.25 MB
Available physical RAM: 1825.82 MB
Total Pagefile: 7110.25 MB
Available Pagefile: 4161.1 MB
Total Virtual: 4095.88 MB
Available Virtual: 3980.57 MB
 
========================= Partitions: =====================================
 
1 Drive c: (Windows8_OS) (Fixed) (Total:209.76 GB) (Free:20.64 GB) NTFS
2 Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:23.03 GB) NTFS
 
========================= Users: ========================================
 
Cuentas de usuario de \\LEON
 
Administrator            Guest                    yentl                    
Se ha completado el comando correctamente.
 
========================= Minidump Files ==================================
 
No minidump file found
 
 
**** End of log ****


BC AdBot (Login to Remove)

 


#2 yentl14

yentl14
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:09:14 AM

Posted 12 May 2014 - 09:44 PM

TDSSKiller Log:
 
18:38:30.0247 6516  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
18:38:30.0247 6516  UEFI system
18:38:30.0362 6516  ============================================================
18:38:30.0362 6516  Current date / time: 2014/05/08 18:38:30.0362
18:38:30.0362 6516  SystemInfo:
18:38:30.0363 6516  
18:38:30.0363 6516  OS Version: 6.2.9200 ServicePack: 0.0
18:38:30.0363 6516  Product type: Workstation
18:38:30.0363 6516  ComputerName: LEON
18:38:30.0363 6516  UserName: yentl
18:38:30.0363 6516  Windows directory: C:\windows
18:38:30.0363 6516  System windows directory: C:\windows
18:38:30.0363 6516  Running under WOW64
18:38:30.0363 6516  Processor architecture: Intel x64
18:38:30.0363 6516  Number of processors: 2
18:38:30.0363 6516  Page size: 0x1000
18:38:30.0363 6516  Boot type: Normal boot
18:38:30.0363 6516  ============================================================
18:38:31.0125 6516  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:38:31.0144 6516  ============================================================
18:38:31.0144 6516  \Device\Harddisk0\DR0:
18:38:31.0144 6516  GPT partitions:
18:38:31.0145 6516  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {2036045B-C1F9-47DF-9C99-854BA326A024}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0x1F4000
18:38:31.0145 6516  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {93B2B2D8-85C8-4C92-8272-563BCE3753F3}, Name: EFI system partition, StartLBA 0x1F4800, BlocksNum 0x82000
18:38:31.0145 6516  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {BFBFAFE7-A34F-448A-9A5B-6213EB736C22}, UniqueGUID: {42A632A3-8DB9-4AF9-AEE1-F00006A49391}, Name: Basic data partition, StartLBA 0x276800, BlocksNum 0x1F4000
18:38:31.0145 6516  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {5345ED42-01F2-44D3-8F32-9F77C07D7AA0}, Name: Microsoft reserved partition, StartLBA 0x46A800, BlocksNum 0x40000
18:38:31.0145 6516  \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {483F9239-DF42-4115-A406-0B222B74C504}, Name: Basic data partition, StartLBA 0x4AA800, BlocksNum 0x1A387000
18:38:31.0145 6516  \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {7692979A-624E-415B-B20F-DF4B81A462A2}, Name: Basic data partition, StartLBA 0x34986000, BlocksNum 0x3200000
18:38:31.0145 6516  \Device\Harddisk0\DR0\Partition7: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {52A95D4B-25F6-4D59-819D-764392B2F991}, Name: Basic data partition, StartLBA 0x37B86000, BlocksNum 0x2800000
18:38:31.0145 6516  MBR partitions:
18:38:31.0145 6516  ============================================================
18:38:31.0171 6516  C: <-> \Device\Harddisk0\DR0\Partition5
18:38:31.0212 6516  D: <-> \Device\Harddisk0\DR0\Partition6
18:38:31.0212 6516  ============================================================
18:38:31.0212 6516  Initialize success
18:38:31.0212 6516  ============================================================
18:39:40.0300 4572  ============================================================
18:39:40.0300 4572  Scan started
18:39:40.0300 4572  Mode: Manual; TDLFS; 
18:39:40.0300 4572  ============================================================
18:39:43.0880 4572  ================ Scan system memory ========================
18:39:43.0880 4572  System memory - ok
18:39:43.0881 4572  ================ Scan services =============================
18:39:44.0022 4572  0015311398870621mcinstcleanup - ok
18:39:44.0135 4572  [ E890C46E4754F0DF51BAFCC8D2E07498 ] 1394ohci        C:\windows\System32\drivers\1394ohci.sys
18:39:44.0138 4572  1394ohci - ok
18:39:44.0163 4572  [ 4F18D4C7EA14F11A7211F60D553C03DB ] 3ware           C:\windows\system32\drivers\3ware.sys
18:39:44.0168 4572  3ware - ok
18:39:44.0219 4572  [ 975AABEB243B800C23626D6B652C5A9C ] ACPI            C:\windows\system32\drivers\ACPI.sys
18:39:44.0226 4572  ACPI - ok
18:39:44.0248 4572  [ DC968C37822117E576B933F34A2D130C ] acpiex          C:\windows\system32\Drivers\acpiex.sys
18:39:44.0251 4572  acpiex - ok
18:39:44.0277 4572  [ 0CA9F7C3A78227C21A0A7854E245CFB2 ] acpipagr        C:\windows\System32\drivers\acpipagr.sys
18:39:44.0279 4572  acpipagr - ok
18:39:44.0293 4572  [ 8EB8DA03B142D3DD1EB9ED8107A76C43 ] AcpiPmi         C:\windows\System32\drivers\acpipmi.sys
18:39:44.0296 4572  AcpiPmi - ok
18:39:44.0316 4572  [ CBCE725C5D86ABA7D2604E22951AA9B8 ] acpitime        C:\windows\System32\drivers\acpitime.sys
18:39:44.0319 4572  acpitime - ok
18:39:44.0351 4572  [ 3B42D95D20CD2AACDB0564471AE43ED7 ] ACPIVPC         C:\windows\System32\drivers\AcpiVpc.sys
18:39:44.0353 4572  ACPIVPC - ok
18:39:44.0438 4572  [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
18:39:44.0440 4572  AdobeARMservice - ok
18:39:44.0472 4572  [ 93C6388592B99925C1D1576E465BC80F ] adp94xx         C:\windows\system32\drivers\adp94xx.sys
18:39:44.0480 4572  adp94xx - ok
18:39:44.0496 4572  [ D27763E0247292654E7F7D16444C7C72 ] adpahci         C:\windows\system32\drivers\adpahci.sys
18:39:44.0502 4572  adpahci - ok
18:39:44.0518 4572  [ 67B90070FF48F794AF19F9FCF0080D75 ] adpu320         C:\windows\system32\drivers\adpu320.sys
18:39:44.0522 4572  adpu320 - ok
18:39:44.0556 4572  [ 974AE60BF5B90E31412D93596C968E5B ] AeLookupSvc     C:\windows\System32\aelupsvc.dll
18:39:44.0558 4572  AeLookupSvc - ok
18:39:44.0605 4572  [ 7C0E0EDF18D6CC565D7BFBB451709FA5 ] AFD             C:\windows\system32\drivers\afd.sys
18:39:44.0614 4572  AFD - ok
18:39:44.0655 4572  [ 01590377A5AB19E792528C628A2A68F9 ] agp440          C:\windows\system32\drivers\agp440.sys
18:39:44.0657 4572  agp440 - ok
18:39:44.0689 4572  [ D1BE8E6E5B3AF23A4393AF1BF867977A ] ALG             C:\windows\System32\alg.exe
18:39:44.0693 4572  ALG - ok
18:39:44.0721 4572  [ 025E8C755BE293E50854D26D1BBE5133 ] AllUserInstallAgent C:\windows\system32\AUInstallAgent.dll
18:39:44.0724 4572  AllUserInstallAgent - ok
18:39:44.0763 4572  [ 88ECCF77788704944688B4CB688E4747 ] AMD External Events Utility C:\windows\system32\atiesrxx.exe
18:39:44.0768 4572  AMD External Events Utility - ok
18:39:44.0799 4572  AMD FUEL Service - ok
18:39:44.0847 4572  [ 5A81054B824004B1ECC04F0034A1CDF9 ] AmdK8           C:\windows\System32\drivers\amdk8.sys
18:39:44.0851 4572  AmdK8 - ok
18:39:45.0065 4572  [ C96D96F4553C9C21A68F76C4409BEE44 ] amdkmdag        C:\windows\system32\DRIVERS\atikmdag.sys
18:39:45.0252 4572  amdkmdag - ok
18:39:45.0276 4572  [ 5CC785FBC567CEFB4389A184AEB38B10 ] amdkmdap        C:\windows\system32\DRIVERS\atikmpag.sys
18:39:45.0283 4572  amdkmdap - ok
18:39:45.0296 4572  [ B849D453E644FAB9BC8EF6DC8CA9C4C6 ] AmdPPM          C:\windows\System32\drivers\amdppm.sys
18:39:45.0298 4572  AmdPPM - ok
18:39:45.0319 4572  [ 35A0EB5AECB0FA3C41A2FB514A562304 ] amdsata         C:\windows\system32\drivers\amdsata.sys
18:39:45.0322 4572  amdsata - ok
18:39:45.0353 4572  [ 00452671904F5EE94B50BF0219C97164 ] amdsbs          C:\windows\system32\drivers\amdsbs.sys
18:39:45.0357 4572  amdsbs - ok
18:39:45.0377 4572  [ EA3FFE53E92E59C87E3ECA9BEB20D9B7 ] amdxata         C:\windows\system32\drivers\amdxata.sys
18:39:45.0379 4572  amdxata - ok
18:39:45.0421 4572  [ 4DE0D5D747A73797C95A97DCCE5018B5 ] androidusb      C:\windows\System32\Drivers\ssadadb.sys
18:39:45.0424 4572  androidusb - ok
18:39:45.0447 4572  [ 83B3682CE922FB0F415734B26D9D6233 ] AppID           C:\windows\system32\drivers\appid.sys
18:39:45.0451 4572  AppID - ok
18:39:45.0489 4572  [ CE2BEAD7F31816FF0AC490D048C969F9 ] AppIDSvc        C:\windows\System32\appidsvc.dll
18:39:45.0492 4572  AppIDSvc - ok
18:39:45.0546 4572  [ 4F750B7EFCB6520AE01E01D082D7D476 ] Appinfo         C:\windows\System32\appinfo.dll
18:39:45.0562 4572  Appinfo - ok
18:39:45.0596 4572  [ 44695679881DEB85CAD7C249B151066E ] APXACC          C:\windows\system32\DRIVERS\appexDrv.sys
18:39:45.0600 4572  APXACC - ok
18:39:45.0618 4572  [ E933401B392387F4BE34DE8BAF1722A7 ] arc             C:\windows\system32\drivers\arc.sys
18:39:45.0620 4572  arc - ok
18:39:45.0632 4572  [ 07CA323EF2E8247A568AB0F3662AD644 ] arcsas          C:\windows\system32\drivers\arcsas.sys
18:39:45.0635 4572  arcsas - ok
18:39:45.0657 4572  [ 74DBAEC35366C4EE7670428808715A6A ] AsyncMac        C:\windows\system32\DRIVERS\asyncmac.sys
18:39:45.0660 4572  AsyncMac - ok
18:39:45.0679 4572  [ A721FF570C2387E383BDDEA9632863C9 ] atapi           C:\windows\system32\drivers\atapi.sys
18:39:45.0682 4572  atapi - ok
18:39:45.0715 4572  [ 506907D2E7F3A5B67DBD39C00A788B7C ] AtiHDAudioService C:\windows\system32\drivers\AtihdW86.sys
18:39:45.0717 4572  AtiHDAudioService - ok
18:39:45.0771 4572  [ BCD7A47EF587DC00DD61D12D9C2D1E44 ] AudioEndpointBuilder C:\windows\System32\AudioEndpointBuilder.dll
18:39:45.0773 4572  AudioEndpointBuilder - ok
18:39:45.0834 4572  [ 599B3F685A263A114FFAF3BE29C49C75 ] Audiosrv        C:\windows\System32\Audiosrv.dll
18:39:45.0842 4572  Audiosrv - ok
18:39:45.0910 4572  [ CF75B4D3CDFB3F14B272EA6799A9F03B ] AVP             C:\Program Files (x86)\Kaspersky Lab\Kaspersky Small Office Security 3\avp.exe
18:39:45.0913 4572  AVP - ok
18:39:45.0942 4572  [ 89491EF71D5EA011127832C588002853 ] AxInstSV        C:\windows\System32\AxInstSV.dll
18:39:45.0946 4572  AxInstSV - ok
18:39:45.0985 4572  [ 87AB5BB072A3F128541D5B815F82FFDD ] b06bdrv         C:\windows\system32\drivers\bxvbda.sys
18:39:45.0994 4572  b06bdrv - ok
18:39:46.0112 4572  [ 81703BC5D68DEDBB086C2368FBE7B334 ] BasicDisplay    C:\windows\System32\drivers\BasicDisplay.sys
18:39:46.0114 4572  BasicDisplay - ok
18:39:46.0131 4572  [ 5EC68164E14D25675C98BBB5F09E8606 ] BasicRender     C:\windows\System32\drivers\BasicRender.sys
18:39:46.0133 4572  BasicRender - ok
18:39:46.0193 4572  [ 89143A7BA7850F5C7E61B43BB44B6418 ] BDESVC          C:\windows\System32\bdesvc.dll
18:39:46.0197 4572  BDESVC - ok
18:39:46.0213 4572  [ 9E7AEA59776D904607985AFFE7E5E183 ] Beep            C:\windows\system32\drivers\Beep.sys
18:39:46.0215 4572  Beep - ok
18:39:46.0282 4572  [ 53AA55632B94622F2DC3695E86EF9363 ] BFE             C:\windows\System32\bfe.dll
18:39:46.0289 4572  BFE - ok
18:39:46.0340 4572  [ D598C44A7072D3108D8D8102EC5E07F7 ] BITS            C:\windows\System32\qmgr.dll
18:39:46.0357 4572  BITS - ok
18:39:46.0370 4572  [ B17AC10B47C7FCB44D22A1F06415840E ] bowser          C:\windows\system32\DRIVERS\bowser.sys
18:39:46.0373 4572  bowser - ok
18:39:46.0430 4572  [ 038FA1B55531E7020DB705B42FCCE373 ] BrokerInfrastructure C:\windows\System32\bisrv.dll
18:39:46.0432 4572  BrokerInfrastructure - ok
18:39:46.0457 4572  [ 310068BDA80B1D55C36580FD8A873FAF ] Browser         C:\windows\System32\browser.dll
18:39:46.0461 4572  Browser - ok
18:39:46.0506 4572  [ 6695200F455E251F0BCC9CE4D0978D59 ] BthAvrcpTg      C:\windows\System32\drivers\BthAvrcpTg.sys
18:39:46.0508 4572  BthAvrcpTg - ok
18:39:46.0546 4572  [ 616EB8748C988AEE98D93DA141C3D3B4 ] BthHFEnum       C:\windows\System32\drivers\bthhfenum.sys
18:39:46.0548 4572  BthHFEnum - ok
18:39:46.0568 4572  [ DCB4EBD928A6FB368BE6CAE522412DE1 ] bthhfhid        C:\windows\System32\drivers\BthHFHid.sys
18:39:46.0570 4572  bthhfhid - ok
18:39:46.0590 4572  [ 033916CE8784A848B9A3D686B7F66D97 ] BTHMODEM        C:\windows\System32\drivers\bthmodem.sys
18:39:46.0593 4572  BTHMODEM - ok
18:39:46.0620 4572  [ A4387C3D271959313E2577DB7BE8BA7A ] bthserv         C:\windows\system32\bthserv.dll
18:39:46.0624 4572  bthserv - ok
18:39:46.0645 4572  [ 990B1BABE6E81FB18E65A87EBEFB1772 ] cdfs            C:\windows\system32\DRIVERS\cdfs.sys
18:39:46.0648 4572  cdfs - ok
18:39:46.0668 4572  [ 339BFF85D788268752DA8C9644B188EE ] cdrom           C:\windows\System32\drivers\cdrom.sys
18:39:46.0671 4572  cdrom - ok
18:39:46.0691 4572  [ BAF8F0F55BC300E5F882E521F054E345 ] CertPropSvc     C:\windows\System32\certprop.dll
18:39:46.0694 4572  CertPropSvc - ok
18:39:46.0704 4572  [ F64B7D1A37CC1D5F421D5359EEC81E2E ] circlass        C:\windows\System32\drivers\circlass.sys
18:39:46.0706 4572  circlass - ok
18:39:46.0729 4572  [ 9905168708DB68849B879B5548F68AB3 ] CLFS            C:\windows\system32\drivers\CLFS.sys
18:39:46.0735 4572  CLFS - ok
18:39:46.0769 4572  [ 2DC8538A2260647484A6C921CA837313 ] CmBatt          C:\windows\System32\drivers\CmBatt.sys
18:39:46.0771 4572  CmBatt - ok
18:39:46.0836 4572  [ E708BFF0473EC6B271EA46B65B16CA56 ] CNG             C:\windows\system32\Drivers\cng.sys
18:39:46.0846 4572  CNG - ok
18:39:46.0871 4572  [ 0E5B1E9E7122EDAAF1F6CE047965CA92 ] CompositeBus    C:\windows\System32\drivers\CompositeBus.sys
18:39:46.0874 4572  CompositeBus - ok
18:39:46.0883 4572  COMSysApp - ok
18:39:46.0898 4572  [ D9CB0782AF819548072AA45B70F8B22D ] condrv          C:\windows\system32\drivers\condrv.sys
18:39:46.0901 4572  condrv - ok
18:39:46.0952 4572  [ 5CE2742F063731EC10C1B2EE386A2C08 ] CryptSvc        C:\windows\system32\cryptsvc.dll
18:39:46.0953 4572  CryptSvc - ok
18:39:47.0000 4572  [ 8128B65589C944622D6809C144972ECF ] CSCrySec        C:\windows\system32\DRIVERS\CSCrySec.sys
18:39:47.0003 4572  CSCrySec - ok
18:39:47.0079 4572  [ 0B7E221689F370C87F640C6D2EED7D3F ] CSObjectsSrv    C:\Program Files (x86)\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe
18:39:47.0093 4572  CSObjectsSrv - ok
18:39:47.0116 4572  [ A6B7212B3735C7B4ABD602E78573F970 ] CSVirtualDiskDrv C:\windows\system32\DRIVERS\CSVirtualDiskDrv.sys
18:39:47.0119 4572  CSVirtualDiskDrv - ok
18:39:47.0156 4572  [ FAEF4C245BE832DB41B15DAAC336AFB7 ] dam             C:\windows\system32\drivers\dam.sys
18:39:47.0158 4572  dam - ok
18:39:47.0197 4572  [ 1EC6E533C954BDDF2A37E7851A7E58FD ] DcomLaunch      C:\windows\system32\rpcss.dll
18:39:47.0207 4572  DcomLaunch - ok
18:39:47.0237 4572  [ C8650D1F61149AA546BDBC99172EBBC1 ] defragsvc       C:\windows\System32\defragsvc.dll
18:39:47.0242 4572  defragsvc - ok
18:39:47.0263 4572  [ 5EAEF67AE2AF4D2DC664B649DB7B2E16 ] DeviceAssociationService C:\windows\system32\das.dll
18:39:47.0269 4572  DeviceAssociationService - ok
18:39:47.0291 4572  [ 799BE46D45D486704CE0F37CA5385262 ] DeviceInstall   C:\windows\system32\umpnpmgr.dll
18:39:47.0296 4572  DeviceInstall - ok
18:39:47.0323 4572  [ 09D9EB9E7898F8E6561473A20CC808B9 ] Dfsc            C:\windows\system32\Drivers\dfsc.sys
18:39:47.0326 4572  Dfsc - ok
18:39:47.0378 4572  [ 73BDD44A6088916964945886F9025409 ] dg_ssudbus      C:\windows\system32\DRIVERS\ssudbus.sys
18:39:47.0381 4572  dg_ssudbus - ok
18:39:47.0435 4572  [ 9E0E72222264745ADEB0E5AC680B0ED6 ] Dhcp            C:\windows\system32\dhcpcore.dll
18:39:47.0440 4572  Dhcp - ok
18:39:47.0453 4572  [ 3C736FAE17BA6F91BA37594AAB139CD0 ] discache        C:\windows\system32\drivers\discache.sys
18:39:47.0455 4572  discache - ok
18:39:47.0504 4572  [ AE3786294CC246A5403783E1B86A0168 ] disk            C:\windows\system32\drivers\disk.sys
18:39:47.0507 4572  disk - ok
18:39:47.0516 4572  [ 82A7C72593793FE1EADA7A305BD1567A ] dmvsc           C:\windows\System32\drivers\dmvsc.sys
18:39:47.0517 4572  dmvsc - ok
18:39:47.0546 4572  [ 066B9710B36AB550E01EEFCA52155968 ] Dnscache        C:\windows\System32\dnsrslvr.dll
18:39:47.0549 4572  Dnscache - ok
18:39:47.0583 4572  [ 9949AD2ABA168A618D46C799D6CC898C ] dot3svc         C:\windows\System32\dot3svc.dll
18:39:47.0589 4572  dot3svc - ok
18:39:47.0608 4572  [ 109FC3F80BF4F4DC5A071058074F13C1 ] DPS             C:\windows\system32\dps.dll
18:39:47.0611 4572  DPS - ok
18:39:47.0652 4572  [ 9C7C183F937951AE17C5B8B3259CF3FF ] drmkaud         C:\windows\system32\drivers\drmkaud.sys
18:39:47.0654 4572  drmkaud - ok
18:39:47.0706 4572  [ F87F4AAAF6664906248D11D5E579A53B ] DsmSvc          C:\windows\System32\DeviceSetupManager.dll
18:39:47.0711 4572  DsmSvc - ok
18:39:47.0790 4572  [ E6AF4DF1817953D73C519B17CF849756 ] DXGKrnl         C:\windows\System32\drivers\dxgkrnl.sys
18:39:47.0826 4572  DXGKrnl - ok
18:39:47.0856 4572  [ 651FBD69A9713D623D456A240F96179C ] e1iexpress      C:\windows\system32\DRIVERS\e1i63x64.sys
18:39:47.0863 4572  e1iexpress - ok
18:39:47.0893 4572  [ 58BA473DD88F5FC1932282BA683AA03E ] Eaphost         C:\windows\System32\eapsvc.dll
18:39:47.0897 4572  Eaphost - ok
18:39:47.0977 4572  [ 5AB97B3282D7D6114949D1EB5C8598E4 ] ebdrv           C:\windows\system32\drivers\evbda.sys
18:39:48.0057 4572  ebdrv - ok
18:39:48.0093 4572  [ F702AB6181513303AB0FC8D59E52708B ] EFS             C:\windows\System32\lsass.exe
18:39:48.0094 4572  EFS - ok
18:39:48.0115 4572  [ 66D60BD9A4C05616ABECA2A901475098 ] EhStorClass     C:\windows\system32\drivers\EhStorClass.sys
18:39:48.0117 4572  EhStorClass - ok
18:39:48.0128 4572  [ A61D0F543024E458C0FE32352E1978E2 ] EhStorTcgDrv    C:\windows\system32\drivers\EhStorTcgDrv.sys
18:39:48.0131 4572  EhStorTcgDrv - ok
18:39:48.0152 4572  [ D790D058D67582DB9C84C2D33695FE6B ] ErrDev          C:\windows\System32\drivers\errdev.sys
18:39:48.0154 4572  ErrDev - ok
18:39:48.0205 4572  [ F9E01C2D9F8BC049E04CF5DC24A5F638 ] EventSystem     C:\windows\system32\es.dll
18:39:48.0215 4572  EventSystem - ok
18:39:48.0240 4572  [ 7A4D6FEB8C52B3FE855E4DCDF9107E03 ] exfat           C:\windows\system32\drivers\exfat.sys
18:39:48.0245 4572  exfat - ok
18:39:48.0290 4572  Fabs - ok
18:39:48.0328 4572  [ 60996602A7111FD2D086E803F33E4282 ] fastfat         C:\windows\system32\drivers\fastfat.sys
18:39:48.0331 4572  fastfat - ok
18:39:48.0366 4572  [ F0E7F8382ED5E138B0DFA4CB5058BCFE ] Fax             C:\windows\system32\fxssvc.exe
18:39:48.0374 4572  Fax - ok
18:39:48.0398 4572  [ 73B2D11DF0B6E03A0CB0323218ACB3E4 ] fdc             C:\windows\System32\drivers\fdc.sys
18:39:48.0400 4572  fdc - ok
18:39:48.0422 4572  [ 0828E3E7BD77C89149EAD3232BFD38DB ] fdPHost         C:\windows\system32\fdPHost.dll
18:39:48.0425 4572  fdPHost - ok
18:39:48.0446 4572  [ 872506AAB591E8908DF4461475AF92DF ] FDResPub        C:\windows\system32\fdrespub.dll
18:39:48.0449 4572  FDResPub - ok
18:39:48.0488 4572  [ 0588950D93A426F97C7AAADB1A9B0458 ] fhsvc           C:\windows\system32\fhsvc.dll
18:39:48.0493 4572  fhsvc - ok
18:39:48.0502 4572  [ 88A9EBACD1058ABB237A6B4E96E7F397 ] FileInfo        C:\windows\system32\drivers\fileinfo.sys
18:39:48.0505 4572  FileInfo - ok
18:39:48.0527 4572  [ 9E4EE3A0B00FF7D5F42A4AF9744CBA02 ] Filetrace       C:\windows\system32\drivers\filetrace.sys
18:39:48.0530 4572  Filetrace - ok
18:39:48.0605 4572  [ FFF1130F7C9FA01D093A1EDFC5CCE8FC ] FirebirdServerMAGIXInstance C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
18:39:48.0678 4572  FirebirdServerMAGIXInstance - ok
18:39:48.0721 4572  [ B1D4C168FF7B8579E3745888658FFB1D ] flpydisk        C:\windows\System32\drivers\flpydisk.sys
18:39:48.0723 4572  flpydisk - ok
18:39:48.0737 4572  [ B33EC133AE4E6C1881D2302D93D2467D ] FltMgr          C:\windows\system32\drivers\fltmgr.sys
18:39:48.0744 4572  FltMgr - ok
18:39:48.0814 4572  [ 0BCDC0FF11B984162B0CF0FF6E9E0146 ] FontCache       C:\windows\system32\FntCache.dll
18:39:48.0826 4572  FontCache - ok
18:39:48.0909 4572  [ 0B56259F5611787222A04A8F254E51D4 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:39:48.0911 4572  FontCache3.0.0.0 - ok
18:39:48.0932 4572  [ A5F7873A39E4E9FAAAE59B7E9E36B705 ] FsDepends       C:\windows\system32\drivers\FsDepends.sys
18:39:48.0935 4572  FsDepends - ok
18:39:48.0966 4572  [ A6DD7D491F587F4BC13FB972977DC8E8 ] Fs_Rec          C:\windows\system32\drivers\Fs_Rec.sys
18:39:48.0968 4572  Fs_Rec - ok
18:39:49.0051 4572  [ 895BA1CFF25E867CE5A52073E905C93B ] fussvc          C:\Program Files (x86)\Windows Kits\8.0\App Certification Kit\fussvc.exe
18:39:49.0055 4572  fussvc - ok
18:39:49.0106 4572  [ C1646A95EAC515F60CDB2A7A8A013C1E ] fvevol          C:\windows\system32\DRIVERS\fvevol.sys
18:39:49.0112 4572  fvevol - ok
18:39:49.0167 4572  [ A969D92973DFA895E7776B4BFE36DBB2 ] FxPPM           C:\windows\System32\drivers\fxppm.sys
18:39:49.0168 4572  FxPPM - ok
18:39:49.0190 4572  [ 52BC441E07A827EBAB70CDC7EAEDB28D ] gagp30kx        C:\windows\system32\drivers\gagp30kx.sys
18:39:49.0192 4572  gagp30kx - ok
18:39:49.0210 4572  [ 721F8EEF5E9747F32670DEFF7FB92541 ] gencounter      C:\windows\System32\drivers\vmgencounter.sys
18:39:49.0212 4572  gencounter - ok
18:39:49.0261 4572  [ FC2B8B06BDBD3B6457F5A3DA9AD2410E ] GPIOClx0101     C:\windows\system32\Drivers\msgpioclx.sys
18:39:49.0265 4572  GPIOClx0101 - ok
18:39:49.0333 4572  [ 5358678C6370F2ADC5291849F6503262 ] gpsvc           C:\windows\System32\gpsvc.dll
18:39:49.0379 4572  gpsvc - ok
18:39:49.0428 4572  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:39:49.0431 4572  gupdate - ok
18:39:49.0438 4572  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:39:49.0440 4572  gupdatem - ok
18:39:49.0491 4572  [ 630555943E5A3FE21010CE91EC7FC84F ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
18:39:49.0498 4572  HdAudAddService - ok
18:39:49.0534 4572  [ 7D87B5B6C7188D553E11B59DC7F0B111 ] HDAudBus        C:\windows\System32\drivers\HDAudBus.sys
18:39:49.0536 4572  HDAudBus - ok
18:39:49.0564 4572  [ 3F76BBA53D65E85A7F53E7A71082082C ] HidBatt         C:\windows\System32\drivers\HidBatt.sys
18:39:49.0565 4572  HidBatt - ok
18:39:49.0588 4572  [ 085F150D002B7F0153D3C06DDF33A143 ] HidBth          C:\windows\System32\drivers\hidbth.sys
18:39:49.0591 4572  HidBth - ok
18:39:49.0621 4572  [ CC4A07E51D89575CAB6F4EB590D87CD4 ] hidi2c          C:\windows\System32\drivers\hidi2c.sys
18:39:49.0694 4572  hidi2c - ok
18:39:49.0722 4572  [ DC96F7DACB777CDEAEF9958A50BFDA06 ] HidIr           C:\windows\System32\drivers\hidir.sys
18:39:49.0725 4572  HidIr - ok
18:39:49.0760 4572  [ FAC37D7B3D6354A5A5E19A45B50B4008 ] hidserv         C:\windows\system32\hidserv.dll
18:39:49.0762 4572  hidserv - ok
18:39:49.0778 4572  [ 012C354B4AB48E9A7A657DF39E3A2073 ] HidUsb          C:\windows\System32\drivers\hidusb.sys
18:39:49.0779 4572  HidUsb - ok
18:39:49.0797 4572  [ 43F884B61A24377567CD0FEB35236334 ] hkmsvc          C:\windows\system32\kmsvc.dll
18:39:49.0801 4572  hkmsvc - ok
18:39:49.0843 4572  [ 33DFC14DFDCCFA7AA10E392F6A8EC1CF ] HomeGroupListener C:\windows\system32\ListSvc.dll
18:39:49.0849 4572  HomeGroupListener - ok
18:39:49.0882 4572  [ E0D9F6FE18FA7F53ADD29AF719CE2B7E ] HomeGroupProvider C:\windows\system32\provsvc.dll
18:39:49.0892 4572  HomeGroupProvider - ok
18:39:49.0902 4572  [ 64DB7A8D97CA53DCCF93D0A1E08342CF ] HpSAMD          C:\windows\system32\drivers\HpSAMD.sys
18:39:49.0905 4572  HpSAMD - ok
18:39:49.0973 4572  [ F4A91D985EB9D1D2717D538F3424603C ] HTTP            C:\windows\system32\drivers\HTTP.sys
18:39:49.0985 4572  HTTP - ok
18:39:50.0007 4572  [ 2A98301068801700906C06649860FE94 ] hwpolicy        C:\windows\system32\drivers\hwpolicy.sys
18:39:50.0010 4572  hwpolicy - ok
18:39:50.0033 4572  [ DC76901D82097C9E297F20C287CB9A27 ] hyperkbd        C:\windows\System32\drivers\hyperkbd.sys
18:39:50.0035 4572  hyperkbd - ok
18:39:50.0044 4572  [ 716413AB3CA12DE0A7222D28C1C9352C ] HyperVideo      C:\windows\system32\DRIVERS\HyperVideo.sys
18:39:50.0046 4572  HyperVideo - ok
18:39:50.0077 4572  [ C9E9CBF73AFFBFE3E801EFB516787BA3 ] i8042prt        C:\windows\System32\drivers\i8042prt.sys
18:39:50.0079 4572  i8042prt - ok
18:39:50.0114 4572  [ 5E394EBD26FD68AA9300332C46BEDD62 ] iaStorV         C:\windows\system32\drivers\iaStorV.sys
18:39:50.0121 4572  iaStorV - ok
18:39:50.0411 4572  [ E5272DDF2C9043411809171715B4633D ] igfx            C:\windows\system32\DRIVERS\igdkmd64.sys
18:39:50.0691 4572  igfx - ok
18:39:50.0710 4572  [ 24847A06B84339FEEDE5CABF3D27D320 ] iirsp           C:\windows\system32\drivers\iirsp.sys
18:39:50.0713 4572  iirsp - ok
18:39:50.0797 4572  [ E455C83E029121270BED73CDAC381F37 ] IKEEXT          C:\windows\System32\ikeext.dll
18:39:50.0832 4572  IKEEXT - ok
18:39:50.0938 4572  [ DDC860724AEF8F8E42AC61E6585769C6 ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
18:39:51.0021 4572  IntcAzAudAddService - ok
18:39:51.0054 4572  [ 4F37726CF764CA18A8A84F85EF3A7F24 ] intelide        C:\windows\system32\drivers\intelide.sys
18:39:51.0057 4572  intelide - ok
18:39:51.0072 4572  [ E15CDF68DD73423F15D4AC404793AF0D ] intelppm        C:\windows\System32\drivers\intelppm.sys
18:39:51.0075 4572  intelppm - ok
18:39:51.0084 4572  [ 8FCA66234A0933D796BB780B7953BAB9 ] IpFilterDriver  C:\windows\system32\DRIVERS\ipfltdrv.sys
18:39:51.0090 4572  IpFilterDriver - ok
18:39:51.0212 4572  [ C217B8D2E58C57A319B16125C3D4B69C ] iphlpsvc        C:\windows\System32\iphlpsvc.dll
18:39:51.0227 4572  iphlpsvc - ok
18:39:51.0238 4572  [ 6E98A046A12AA113F8898AA5D612BD6E ] IPMIDRV         C:\windows\System32\drivers\IPMIDrv.sys
18:39:51.0240 4572  IPMIDRV - ok
18:39:51.0251 4572  [ 3969B9C218DD3FAA9F4ED2FFC3651C02 ] IPNAT           C:\windows\system32\drivers\ipnat.sys
18:39:51.0255 4572  IPNAT - ok
18:39:51.0271 4572  [ 25CD7C4BB2863FFC2B0B311F0AEBF77C ] IRENUM          C:\windows\system32\drivers\irenum.sys
18:39:51.0273 4572  IRENUM - ok
18:39:51.0279 4572  [ D940C5BB9DC92E588533C19ABCC3D2C2 ] isapnp          C:\windows\system32\drivers\isapnp.sys
18:39:51.0282 4572  isapnp - ok
18:39:51.0334 4572  [ 69C8BF0BC2B0EA10F130F4D3104DC2EF ] iScsiPrt        C:\windows\System32\drivers\msiscsi.sys
18:39:51.0340 4572  iScsiPrt - ok
18:39:51.0391 4572  [ 9C6F3F69163133FB8E56AC4A6E163452 ] ISODrive        C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys
18:39:51.0394 4572  ISODrive - ok
18:39:51.0409 4572  [ 8FBD94B69D6423E20ABCD59D86368B21 ] kbdclass        C:\windows\System32\drivers\kbdclass.sys
18:39:51.0411 4572  kbdclass - ok
18:39:51.0439 4572  [ E88C932ABDF8185A62C8F2FC7B051FB6 ] kbdhid          C:\windows\System32\drivers\kbdhid.sys
18:39:51.0441 4572  kbdhid - ok
18:39:51.0468 4572  [ FB6C185092E18011EF49989425C2AA87 ] kdnic           C:\windows\system32\DRIVERS\kdnic.sys
18:39:51.0469 4572  kdnic - ok
18:39:51.0488 4572  [ F702AB6181513303AB0FC8D59E52708B ] KeyIso          C:\windows\system32\lsass.exe
18:39:51.0490 4572  KeyIso - ok
18:39:51.0671 4572  [ 1C6256096A341051509D36AD724830BE ] kl1             C:\windows\system32\DRIVERS\kl1.sys
18:39:51.0813 4572  kl1 - ok
18:39:51.0836 4572  [ 2248A9F2B7704271C72E306001C7FBE0 ] klelam          C:\windows\system32\DRIVERS\klelam.sys
18:39:51.0838 4572  klelam - ok
18:39:51.0899 4572  [ 4B7178D24FBFF250667080F452AC08A4 ] KLIF            C:\windows\system32\DRIVERS\klif.sys
18:39:51.0908 4572  KLIF - ok
18:39:51.0955 4572  [ 1B5B924D27399F41DECD1CC6D706429F ] KLIM6           C:\windows\system32\DRIVERS\klim6.sys
18:39:51.0957 4572  KLIM6 - ok
18:39:51.0983 4572  [ AEEC4E904850525C4D4552AF4A971BA3 ] klkbdflt        C:\windows\system32\DRIVERS\klkbdflt.sys
18:39:51.0986 4572  klkbdflt - ok
18:39:51.0996 4572  [ 8849D8F6259D3494E8C5C9482EE40A08 ] klmouflt        C:\windows\system32\DRIVERS\klmouflt.sys
18:39:51.0997 4572  klmouflt - ok
18:39:52.0024 4572  [ 781EFBB7BDE229C1615892E2A2D98721 ] klwfp           C:\windows\system32\DRIVERS\klwfp.sys
18:39:52.0026 4572  klwfp - ok
18:39:52.0048 4572  [ 1FCB657B581CC4DF17FD6571F93602DE ] kneps           C:\windows\system32\DRIVERS\kneps.sys
18:39:52.0052 4572  kneps - ok
18:39:52.0086 4572  [ DFA480F6DED551464F3A5B959F437800 ] KSecDD          C:\windows\system32\Drivers\ksecdd.sys
18:39:52.0089 4572  KSecDD - ok
18:39:52.0144 4572  [ 127FB0AAD232BAAD2C9BBACD374F4FC5 ] KSecPkg         C:\windows\system32\Drivers\ksecpkg.sys
18:39:52.0148 4572  KSecPkg - ok
18:39:52.0180 4572  [ 81492FEEBF2F26455B00EE8DBAE8A1B0 ] ksthunk         C:\windows\system32\drivers\ksthunk.sys
18:39:52.0182 4572  ksthunk - ok
18:39:52.0228 4572  [ 5825DBACEDC3812B5CF8D40B997BF210 ] KtmRm           C:\windows\system32\msdtckrm.dll
18:39:52.0236 4572  KtmRm - ok
18:39:52.0270 4572  [ 256EE31588257E8A555DBFAA13F1908E ] LanmanServer    C:\windows\system32\srvsvc.dll
18:39:52.0278 4572  LanmanServer - ok
18:39:52.0303 4572  [ 16650912BE5A94B40E0B3B4C39652B56 ] LanmanWorkstation C:\windows\System32\wkssvc.dll
18:39:52.0308 4572  LanmanWorkstation - ok
18:39:52.0337 4572  [ BE166935083F9C38EDFDC21B9A7A679B ] LHDmgr          C:\windows\system32\DRIVERS\LhdX64.sys
18:39:52.0339 4572  LHDmgr - ok
18:39:52.0354 4572  [ CEEFD29FC551F289810B0B9381B321DC ] lltdio          C:\windows\system32\DRIVERS\lltdio.sys
18:39:52.0356 4572  lltdio - ok
18:39:52.0384 4572  [ BCF53485E0A94722CDE3C4A93CD8EB8C ] lltdsvc         C:\windows\System32\lltdsvc.dll
18:39:52.0391 4572  lltdsvc - ok
18:39:52.0409 4572  [ 5A2F7F1CBC2E631A497DAD16164E06D2 ] lmhosts         C:\windows\System32\lmhsvc.dll
18:39:52.0412 4572  lmhosts - ok
18:39:52.0435 4572  [ 022CDD12161B063D7852B1075BF3FFF2 ] LSI_SAS         C:\windows\system32\drivers\lsi_sas.sys
18:39:52.0438 4572  LSI_SAS - ok
18:39:52.0447 4572  [ 07AD59D669B996F29F91817F0ECFA34F ] LSI_SAS2        C:\windows\system32\drivers\lsi_sas2.sys
18:39:52.0450 4572  LSI_SAS2 - ok
18:39:52.0459 4572  [ 216FB796AA4E252ACCE93B1BCB80B5EC ] LSI_SCSI        C:\windows\system32\drivers\lsi_scsi.sys
18:39:52.0462 4572  LSI_SCSI - ok
18:39:52.0474 4572  [ 5E80530AF37102488EE980B4A92AF99F ] LSI_SSS         C:\windows\system32\drivers\lsi_sss.sys
18:39:52.0476 4572  LSI_SSS - ok
18:39:52.0511 4572  [ A57BA284F5996FFD32DCDBC41A4657DB ] LSM             C:\windows\System32\lsm.dll
18:39:52.0520 4572  LSM - ok
18:39:52.0535 4572  [ 2BDC5D711FA61307CE6190D47C956368 ] luafv           C:\windows\system32\drivers\luafv.sys
18:39:52.0538 4572  luafv - ok
18:39:52.0594 4572  [ FD5465B876D55534117963FAAA4B9DFC ] MBAMProtector   C:\windows\system32\drivers\mbam.sys
18:39:52.0595 4572  MBAMProtector - ok
18:39:52.0689 4572  [ 0E08BDD7326E657D59DB40BAD23D8169 ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
18:39:52.0735 4572  MBAMScheduler - ok
18:39:52.0790 4572  [ A8E7F3DB083EB0839DFC1C763CDD2594 ] MBAMService     C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
18:39:52.0803 4572  MBAMService - ok
18:39:52.0879 4572  [ 6140163BFE9D8F2DFDBA088ED5521C13 ] MBAMSwissArmy   C:\windows\system32\drivers\MBAMSwissArmy.sys
18:39:52.0882 4572  MBAMSwissArmy - ok
18:39:52.0946 4572  [ 3FFFB7F54CD7A792099C10402FCF8F56 ] MBAMWebAccessControl C:\windows\system32\drivers\mwac.sys
18:39:52.0949 4572  MBAMWebAccessControl - ok
18:39:52.0986 4572  [ 9B0D829C3BE4E7472DB9DD2B79908E3C ] megasas         C:\windows\system32\drivers\megasas.sys
18:39:52.0988 4572  megasas - ok
18:39:53.0004 4572  [ ECC3F54C7AFC318271C4F0B4606D8DB0 ] MegaSR          C:\windows\system32\drivers\MegaSR.sys
18:39:53.0010 4572  MegaSR - ok
18:39:53.0043 4572  [ EEE908BE7143FCA48CF0CB87214E2AB8 ] MMCSS           C:\windows\system32\mmcss.dll
18:39:53.0046 4572  MMCSS - ok
18:39:53.0068 4572  [ 780098AD5DA8A4822E2563984C85EF7B ] Modem           C:\windows\system32\drivers\modem.sys
18:39:53.0070 4572  Modem - ok
18:39:53.0118 4572  [ EA8EAD3F5B762F889CC7F3966625B48B ] monitor         C:\windows\System32\drivers\monitor.sys
18:39:53.0119 4572  monitor - ok
18:39:53.0134 4572  [ 618446B98C79776654340CE27C73485E ] mouclass        C:\windows\System32\drivers\mouclass.sys
18:39:53.0137 4572  mouclass - ok
18:39:53.0160 4572  [ C0ADEBED913295803B579ED288936CBB ] mouhid          C:\windows\System32\drivers\mouhid.sys
18:39:53.0162 4572  mouhid - ok
18:39:53.0171 4572  [ 89D263DBF08119CE16273991C120D6DD ] mountmgr        C:\windows\system32\drivers\mountmgr.sys
18:39:53.0173 4572  mountmgr - ok
18:39:53.0226 4572  [ 4CCBBD4944777CA100B9A6C2F149A46F ] mpsdrv          C:\windows\system32\drivers\mpsdrv.sys
18:39:53.0229 4572  mpsdrv - ok
18:39:53.0282 4572  [ 9DE3341BD4E14BC5FADFCAD3019F2D0D ] MpsSvc          C:\windows\system32\mpssvc.dll
18:39:53.0292 4572  MpsSvc - ok
18:39:53.0319 4572  [ 3D70147F55F1EC84EB9139ED7FFE48BC ] MRxDAV          C:\windows\system32\drivers\mrxdav.sys
18:39:53.0323 4572  MRxDAV - ok
18:39:53.0357 4572  [ 93179D48066918323628CB016D8C94DC ] mrxsmb          C:\windows\system32\DRIVERS\mrxsmb.sys
18:39:53.0364 4572  mrxsmb - ok
18:39:53.0386 4572  [ 06D5F2FA3C61E8EA91648EA8E9F99FD3 ] mrxsmb10        C:\windows\system32\DRIVERS\mrxsmb10.sys
18:39:53.0392 4572  mrxsmb10 - ok
18:39:53.0404 4572  [ 5C7DD2E5759FFCCD2C7341C1B90F2B26 ] mrxsmb20        C:\windows\system32\DRIVERS\mrxsmb20.sys
18:39:53.0407 4572  mrxsmb20 - ok
18:39:53.0443 4572  [ 98487487D6B3797CA927E9D7B030AE13 ] MsBridge        C:\windows\system32\DRIVERS\bridge.sys
18:39:53.0447 4572  MsBridge - ok
18:39:53.0483 4572  [ 4A07458EB4F17573BD39F22029A991C1 ] MSDTC           C:\windows\System32\msdtc.exe
18:39:53.0488 4572  MSDTC - ok
18:39:53.0525 4572  [ 3886F1F2A4D2900ABAA7E4486BEEE6A2 ] Msfs            C:\windows\system32\drivers\Msfs.sys
18:39:53.0525 4572  Msfs - ok
18:39:53.0554 4572  [ C32A7A39B960A42BA9D4FBE47213CA03 ] msgpiowin32     C:\windows\System32\drivers\msgpiowin32.sys
18:39:53.0556 4572  msgpiowin32 - ok
18:39:53.0578 4572  [ D3857A767B91A061B408CCAB02DA4F40 ] mshidkmdf       C:\windows\System32\drivers\mshidkmdf.sys
18:39:53.0580 4572  mshidkmdf - ok
18:39:53.0597 4572  [ 839B48910FB1E887635C48F3EC11A05E ] mshidumdf       C:\windows\System32\drivers\mshidumdf.sys
18:39:53.0599 4572  mshidumdf - ok
18:39:53.0613 4572  [ 55C0DB741E3AB7463242B185B1C2997C ] msisadrv        C:\windows\system32\drivers\msisadrv.sys
18:39:53.0614 4572  msisadrv - ok
18:39:53.0654 4572  [ 216C6B035A4BA5560E1255BD8E5BB89F ] MSiSCSI         C:\windows\system32\iscsiexe.dll
18:39:53.0659 4572  MSiSCSI - ok
18:39:53.0667 4572  msiserver - ok
18:39:53.0680 4572  [ 509809566E49F4411055864EA8D437CD ] MSKSSRV         C:\windows\system32\drivers\MSKSSRV.sys
18:39:53.0681 4572  MSKSSRV - ok
18:39:53.0702 4572  [ 63145201D6458E4958E572E7D6FC2604 ] MsLldp          C:\windows\system32\DRIVERS\mslldp.sys
18:39:53.0705 4572  MsLldp - ok
18:39:53.0729 4572  [ 99D526E803DB6D7FF290FD98B6204641 ] MSPCLOCK        C:\windows\system32\drivers\MSPCLOCK.sys
18:39:53.0730 4572  MSPCLOCK - ok
18:39:53.0747 4572  [ 06FA77C3E2A491ADCD704C5E73006269 ] MSPQM           C:\windows\system32\drivers\MSPQM.sys
18:39:53.0750 4572  MSPQM - ok
18:39:53.0780 4572  [ E134EC4DE11CF78CB01432D180710D84 ] MsRPC           C:\windows\system32\drivers\MsRPC.sys
18:39:53.0787 4572  MsRPC - ok
18:39:53.0813 4572  [ B5AECF12F09DEE97C9FCAA5BA016CE1E ] mssmbios        C:\windows\System32\drivers\mssmbios.sys
18:39:53.0815 4572  mssmbios - ok
18:39:53.0901 4572  [ CEDC22719DE1B1316BDC556FED989335 ] MSSQL$SQLEXPRESS C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
18:39:53.0907 4572  MSSQL$SQLEXPRESS - ok
18:39:53.0919 4572  [ F4991C8C070C86082E6F0597F73E02D0 ] MSSQLFDLauncher$SQLEXPRESS C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\fdlauncher.exe
18:39:53.0921 4572  MSSQLFDLauncher$SQLEXPRESS - ok
18:39:53.0942 4572  [ 72D66A05E0F99F2528F6C6204FD22AA1 ] MSTEE           C:\windows\system32\drivers\MSTEE.sys
18:39:53.0943 4572  MSTEE - ok
18:39:53.0965 4572  [ 8AAAE399FC255FA105D4158CBA289001 ] MTConfig        C:\windows\System32\drivers\MTConfig.sys
18:39:53.0966 4572  MTConfig - ok
18:39:53.0975 4572  [ 3BCB702F3E6CC622DCAFCAA45D7CDE0A ] Mup             C:\windows\system32\Drivers\mup.sys
18:39:53.0977 4572  Mup - ok
18:39:54.0022 4572  [ 3A1E095277BBD406CEA8EA6B76950664 ] mvumis          C:\windows\system32\drivers\mvumis.sys
18:39:54.0025 4572  mvumis - ok
18:39:54.0075 4572  [ 4B18840511D720BA118D3017E8165875 ] napagent        C:\windows\system32\qagentRT.dll
18:39:54.0085 4572  napagent - ok
18:39:54.0105 4572  [ 43D7388A90A4C6EA346A4D6FF0377479 ] NativeWifiP     C:\windows\system32\DRIVERS\nwifi.sys
18:39:54.0112 4572  NativeWifiP - ok
18:39:54.0156 4572  [ 6A0C3996DA7DAE6D6939676D786EEEC4 ] NcaSvc          C:\windows\System32\ncasvc.dll
18:39:54.0161 4572  NcaSvc - ok
18:39:54.0174 4572  [ C982FE4CC91DECE2259F494FCEB4030F ] NcdAutoSetup    C:\windows\System32\NcdAutoSetup.dll
18:39:54.0178 4572  NcdAutoSetup - ok
18:39:54.0232 4572  [ A10E176F3B2BF83EDE7B5C4658C93B66 ] NDIS            C:\windows\system32\drivers\ndis.sys
18:39:54.0247 4572  NDIS - ok
18:39:54.0266 4572  [ 39C8A1D9D46F5E83A016BCAB72455284 ] NdisCap         C:\windows\system32\DRIVERS\ndiscap.sys
18:39:54.0268 4572  NdisCap - ok
18:39:54.0292 4572  [ 762941932B7E4C588E48A577BA9D6440 ] NdisImPlatform  C:\windows\system32\DRIVERS\NdisImPlatform.sys
18:39:54.0295 4572  NdisImPlatform - ok
18:39:54.0312 4572  [ 7A6F8A6D0E01432EBA294EF29CDD0FA7 ] NdisTapi        C:\windows\system32\DRIVERS\ndistapi.sys
18:39:54.0313 4572  NdisTapi - ok
18:39:54.0323 4572  [ 79AB68BB3FFF974AD4F41FA559F4EC67 ] Ndisuio         C:\windows\system32\DRIVERS\ndisuio.sys
18:39:54.0326 4572  Ndisuio - ok
18:39:54.0347 4572  [ 62C7DBF4F9301F76CF87D4B9D8F57BF8 ] NdisWan         C:\windows\system32\DRIVERS\ndiswan.sys
18:39:54.0351 4572  NdisWan - ok
18:39:54.0359 4572  [ 62C7DBF4F9301F76CF87D4B9D8F57BF8 ] NDISWANLEGACY   C:\windows\system32\DRIVERS\ndiswan.sys
18:39:54.0361 4572  NDISWANLEGACY - ok
18:39:54.0416 4572  [ 3730942D7DB2F8BB5F84542B7FF6F650 ] NDProxy         C:\windows\system32\drivers\NDProxy.sys
18:39:54.0419 4572  NDProxy - ok
18:39:54.0429 4572  [ D3F60A4345FCA9C1BE68AD7D0D6DE770 ] Ndu             C:\windows\system32\drivers\Ndu.sys
18:39:54.0432 4572  Ndu - ok
18:39:54.0442 4572  [ 7C203A76394F9AE68F69EEE5F9612C4A ] NetBIOS         C:\windows\system32\DRIVERS\netbios.sys
18:39:54.0443 4572  NetBIOS - ok
18:39:54.0469 4572  [ 7CEC25C682D319D484630B3952C31A11 ] NetBT           C:\windows\system32\DRIVERS\netbt.sys
18:39:54.0475 4572  NetBT - ok
18:39:54.0495 4572  [ F702AB6181513303AB0FC8D59E52708B ] Netlogon        C:\windows\system32\lsass.exe
18:39:54.0496 4572  Netlogon - ok
18:39:54.0536 4572  [ 89519D29CBEC2121CA65CC29C4D345E0 ] Netman          C:\windows\System32\netman.dll
18:39:54.0543 4572  Netman - ok
18:39:54.0602 4572  [ 79FA9393C67EBBF92A56923592CF7A7C ] netprofm        C:\windows\System32\netprofmsvc.dll
18:39:54.0612 4572  netprofm - ok
18:39:54.0715 4572  [ 080417AC9E51B2B29656EC26B62E87F1 ] netr28x         C:\windows\system32\DRIVERS\netr28x.sys
18:39:54.0773 4572  netr28x - ok
18:39:54.0823 4572  [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:39:54.0827 4572  NetTcpPortSharing - ok
18:39:55.0016 4572  [ 57B9C04D673F236D41FAB03842C8640B ] NETwNs64        C:\windows\system32\DRIVERS\NETwNs64.sys
18:39:55.0182 4572  NETwNs64 - ok
18:39:55.0198 4572  [ 12DD2800E4EEA37DC9AE256AD62423B4 ] nfrd960         C:\windows\system32\drivers\nfrd960.sys
18:39:55.0200 4572  nfrd960 - ok
18:39:55.0269 4572  [ 8CE7F624D791733E8CECFA443B2DF513 ] NitroDriverReadSpool2 C:\Program Files\Common Files\Nitro PDF\Professional\7.0\NitroPDFDriverService2x64.exe
18:39:55.0274 4572  NitroDriverReadSpool2 - ok
18:39:55.0312 4572  [ 80ABCD4C2DE9FD832477303AE0CA3BE5 ] NlaSvc          C:\windows\System32\nlasvc.dll
18:39:55.0318 4572  NlaSvc - ok
18:39:55.0370 4572  [ AAAE3B793B248A3DF86C65928484AB9A ] nlsX86cc        C:\windows\SysWOW64\NLSSRV32.EXE
18:39:55.0373 4572  nlsX86cc - ok
18:39:55.0402 4572  [ 17E19A742FB30C002F8B43575451DBE1 ] Npfs            C:\windows\system32\drivers\Npfs.sys
18:39:55.0403 4572  Npfs - ok
18:39:55.0415 4572  [ 8ED299C30792544264E558BEA79F0947 ] npsvctrig       C:\windows\System32\drivers\npsvctrig.sys
18:39:55.0417 4572  npsvctrig - ok
18:39:55.0434 4572  [ 832B5FDF0B5577713FD7F2465FCD0ACE ] nsi             C:\windows\system32\nsisvc.dll
18:39:55.0437 4572  nsi - ok
18:39:55.0455 4572  [ 689B3B1E95C70ABF7AFF29F9406EF1E0 ] nsiproxy        C:\windows\system32\drivers\nsiproxy.sys
18:39:55.0458 4572  nsiproxy - ok
18:39:55.0526 4572  [ 76929F4A69E425911A63B407E26C2589 ] Ntfs            C:\windows\system32\drivers\Ntfs.sys
18:39:55.0572 4572  Ntfs - ok
18:39:55.0589 4572  [ 4163ADE07DB51843AE31F65B94F5398D ] Null            C:\windows\system32\drivers\Null.sys
18:39:55.0591 4572  Null - ok
18:39:55.0618 4572  [ D6D34118263412D3AAA8348A9572B7F2 ] nvraid          C:\windows\system32\drivers\nvraid.sys
18:39:55.0622 4572  nvraid - ok
18:39:55.0635 4572  [ 27AFC428D1D32ABD04A86763A4EDDEA9 ] nvstor          C:\windows\system32\drivers\nvstor.sys
18:39:55.0638 4572  nvstor - ok
18:39:55.0648 4572  [ 051CFB5107BAAE510419BDC41F8C4036 ] nv_agp          C:\windows\system32\drivers\nv_agp.sys
18:39:55.0652 4572  nv_agp - ok
18:39:55.0705 4572  [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:39:55.0709 4572  ose - ok
18:39:55.0741 4572  [ AB76700D764A342D7475FB8F47CAB18C ] p2pimsvc        C:\windows\system32\pnrpsvc.dll
18:39:55.0750 4572  p2pimsvc - ok
18:39:55.0781 4572  [ 4319FD931DCD796435ECB5DB4A04FBA5 ] p2psvc          C:\windows\system32\p2psvc.dll
18:39:55.0791 4572  p2psvc - ok
18:39:55.0803 4572  [ 4563DAF8C6A740AD7F501E219BD10766 ] Parport         C:\windows\System32\drivers\parport.sys
18:39:55.0805 4572  Parport - ok
18:39:55.0840 4572  [ D6ACCF9F2EEEEA711C14EFD976E573F3 ] partmgr         C:\windows\system32\drivers\partmgr.sys
18:39:55.0843 4572  partmgr - ok
18:39:55.0883 4572  [ 4811D9EC53649105A5A8BEA661B0F936 ] PcaSvc          C:\windows\System32\pcasvc.dll
18:39:55.0889 4572  PcaSvc - ok
18:39:55.0912 4572  [ 4A003E8F718C1E6A2050CA98CD53E3E2 ] pci             C:\windows\system32\drivers\pci.sys
18:39:55.0916 4572  pci - ok
18:39:55.0925 4572  [ F9908D274D458220F91E89B54D78D837 ] pciide          C:\windows\system32\drivers\pciide.sys
18:39:55.0927 4572  pciide - ok
18:39:55.0957 4572  [ 84D19CB6102627932DCB5DFDF89FE269 ] pcmcia          C:\windows\system32\drivers\pcmcia.sys
18:39:55.0962 4572  pcmcia - ok
18:39:55.0981 4572  [ CEBBAD5391C2644560C55628A40BFD27 ] pcw             C:\windows\system32\drivers\pcw.sys
18:39:55.0982 4572  pcw - ok
18:39:56.0027 4572  [ 0698DEDEAD6A00AD0D468C687D830FBF ] pdc             C:\windows\system32\drivers\pdc.sys
18:39:56.0028 4572  pdc - ok
18:39:56.0093 4572  [ 61FE70659CD43E07F94DA4DC31DEC493 ] PEAUTH          C:\windows\system32\drivers\peauth.sys
18:39:56.0106 4572  PEAUTH - ok
18:39:56.0135 4572  [ EB88FA19F0EA05DD04BE9C5FFEEFFE1A ] PerfHost        C:\windows\SysWow64\perfhost.exe
18:39:56.0138 4572  PerfHost - ok
18:39:56.0211 4572  [ 6E84BFF58F7643499277F29DFA2F8C8D ] pla             C:\windows\system32\pla.dll
18:39:56.0233 4572  pla - ok
18:39:56.0256 4572  [ 799BE46D45D486704CE0F37CA5385262 ] PlugPlay        C:\windows\system32\umpnpmgr.dll
18:39:56.0262 4572  PlugPlay - ok
18:39:56.0272 4572  PnkBstrA - ok
18:39:56.0296 4572  [ 8E2414E818C26C4A9C70CB2B8567F04F ] PNRPAutoReg     C:\windows\system32\pnrpauto.dll
18:39:56.0302 4572  PNRPAutoReg - ok
18:39:56.0320 4572  [ AB76700D764A342D7475FB8F47CAB18C ] PNRPsvc         C:\windows\system32\pnrpsvc.dll
18:39:56.0325 4572  PNRPsvc - ok
18:39:56.0357 4572  [ 0108C8E5176D590F242701EF5A62CC26 ] PolicyAgent     C:\windows\System32\ipsecsvc.dll
18:39:56.0366 4572  PolicyAgent - ok
18:39:56.0400 4572  [ F1E067F56373F11EA4B785CAE823740A ] Power           C:\windows\system32\umpo.dll
18:39:56.0404 4572  Power - ok
18:39:56.0436 4572  [ 362D47E5B4D67270DE4B8606036F4ADD ] PptpMiniport    C:\windows\system32\DRIVERS\raspptp.sys
18:39:56.0439 4572  PptpMiniport - ok
18:39:56.0544 4572  [ CC0B8655E4B2A5BBB215CDA8FC3BE4DE ] PrintNotify     C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll
18:39:56.0602 4572  PrintNotify - ok
18:39:56.0646 4572  [ DD979EB6A7212F60E4AFBE96EDC7AE6D ] Processor       C:\windows\System32\drivers\processr.sys
18:39:56.0649 4572  Processor - ok
18:39:56.0691 4572  [ 429E8502AD2227CF88F8840FC5BD590D ] ProfSvc         C:\windows\system32\profsvc.dll
18:39:56.0696 4572  ProfSvc - ok
18:39:56.0714 4572  [ EB8034147D4820CD31BFCB11A2A652DF ] Psched          C:\windows\system32\DRIVERS\pacer.sys
18:39:56.0717 4572  Psched - ok
18:39:56.0743 4572  [ 0AFBF333B6F87A2F598EAB379AF100B8 ] QWAVE           C:\windows\system32\qwave.dll
18:39:56.0751 4572  QWAVE - ok
18:39:56.0773 4572  [ 13D47BB0CCA2FC51BD15F8E85C6A078E ] QWAVEdrv        C:\windows\system32\drivers\qwavedrv.sys
18:39:56.0775 4572  QWAVEdrv - ok
18:39:56.0802 4572  [ 873C60F8178100557740A832FCE10B5F ] RasAcd          C:\windows\system32\DRIVERS\rasacd.sys
18:39:56.0805 4572  RasAcd - ok
18:39:56.0843 4572  [ 69B93F623B130976243ECA3D84CC99CA ] RasAgileVpn     C:\windows\system32\DRIVERS\AgileVpn.sys
18:39:56.0845 4572  RasAgileVpn - ok
18:39:56.0868 4572  [ 005F6E54C4A2DA4EBF68FB0392CE8BB0 ] RasAuto         C:\windows\System32\rasauto.dll
18:39:56.0874 4572  RasAuto - ok
18:39:56.0892 4572  [ A14D625C5AEE5FFE0F47D1A1D419FAAE ] Rasl2tp         C:\windows\system32\DRIVERS\rasl2tp.sys
18:39:56.0896 4572  Rasl2tp - ok
18:39:56.0925 4572  [ C923C785A2DE0B396AD6D13ACAFF2DE9 ] RasMan          C:\windows\System32\rasmans.dll
18:39:56.0933 4572  RasMan - ok
18:39:56.0955 4572  [ 00695B9C2DB6111064499C529E90C042 ] RasPppoe        C:\windows\system32\DRIVERS\raspppoe.sys
18:39:56.0958 4572  RasPppoe - ok
18:39:56.0970 4572  [ A7F24D8CD1956B0A1FDCB86CC5114DE4 ] RasSstp         C:\windows\system32\DRIVERS\rassstp.sys
18:39:56.0972 4572  RasSstp - ok
18:39:57.0039 4572  [ CA03D642ACE58E1BA54E4B383F91CD69 ] rdbss           C:\windows\system32\DRIVERS\rdbss.sys
18:39:57.0046 4572  rdbss - ok
18:39:57.0065 4572  [ CA7DF5EC95D8DE0DD24BE7FF97369F68 ] rdpbus          C:\windows\System32\drivers\rdpbus.sys
18:39:57.0067 4572  rdpbus - ok
18:39:57.0090 4572  [ B2A3AD74FF2E2FFA73AF2567108231B3 ] RDPDR           C:\windows\system32\drivers\rdpdr.sys
18:39:57.0093 4572  RDPDR - ok
18:39:57.0150 4572  [ 57F4787E4602A3FCA719C0A33137C6DA ] RdpVideoMiniport C:\windows\system32\drivers\rdpvideominiport.sys
18:39:57.0151 4572  RdpVideoMiniport - ok
18:39:57.0181 4572  [ B3CB0721E81E30419CE7D837EF4EA151 ] RDPWD           C:\windows\system32\drivers\RDPWD.sys
18:39:57.0186 4572  RDPWD - ok
18:39:57.0200 4572  [ 62C1F8A0685FE07E998AA296C4F697C4 ] rdyboost        C:\windows\system32\drivers\rdyboost.sys
18:39:57.0204 4572  rdyboost - ok
18:39:57.0231 4572  [ 3663CCF243EE0C04E9F6F91ED1737273 ] RemoteAccess    C:\windows\System32\mprdim.dll
18:39:57.0235 4572  RemoteAccess - ok
18:39:57.0273 4572  [ E80DD61E52EDFFF9DA1ED7260A68855B ] RemoteRegistry  C:\windows\system32\regsvc.dll
18:39:57.0280 4572  RemoteRegistry - ok
18:39:57.0434 4572  [ 0D84CB080B36EECBC8201E046C6CE763 ] ReportServer$SQLEXPRESS C:\Program Files\Microsoft SQL Server\MSRS11.SQLEXPRESS\Reporting Services\ReportServer\bin\ReportingServicesService.exe
18:39:57.0481 4572  ReportServer$SQLEXPRESS - ok
18:39:57.0512 4572  [ 7B04C9843921AB1F695FB395422C5360 ] RimUsb          C:\windows\System32\Drivers\RimUsb_AMD64.sys
18:39:57.0514 4572  RimUsb - ok
18:39:57.0543 4572  [ 73F2E030B5C24E4E41401B5F0D59E6FD ] RpcEptMapper    C:\windows\System32\RpcEpMap.dll
18:39:57.0546 4572  RpcEptMapper - ok
18:39:57.0572 4572  [ 10B21284B3D964AB3DC45490E57D422E ] RpcLocator      C:\windows\system32\locator.exe
18:39:57.0575 4572  RpcLocator - ok
18:39:57.0615 4572  [ 1EC6E533C954BDDF2A37E7851A7E58FD ] RpcSs           C:\windows\system32\rpcss.dll
18:39:57.0626 4572  RpcSs - ok
18:39:57.0670 4572  [ 964E8376B0B3FE1354B19907E1A4A692 ] RsFx0201        C:\windows\system32\DRIVERS\RsFx0201.sys
18:39:57.0676 4572  RsFx0201 - ok
18:39:57.0712 4572  [ E04E770DD198B9399640717145E79EBF ] rspndr          C:\windows\system32\DRIVERS\rspndr.sys
18:39:57.0715 4572  rspndr - ok
18:39:57.0748 4572  [ 55E66BAE5B30E09FDE217FBF0CDAA579 ] RSUSBVSTOR      C:\windows\System32\Drivers\RtsUVStor.sys
18:39:57.0754 4572  RSUSBVSTOR - ok
18:39:57.0782 4572  [ 34DA0D14F5C3F1883A331AFB975AB434 ] RTL8168         C:\windows\system32\DRIVERS\Rt630x64.sys
18:39:57.0793 4572  RTL8168 - ok
18:39:57.0975 4572  [ 02FE42ED9CBB4CBE806ED1E906D7AC8F ] rtsuvc          C:\windows\system32\DRIVERS\rtsuvc.sys
18:39:58.0129 4572  rtsuvc - ok
18:39:58.0173 4572  [ 752EC7DCD2F96871A3857EEE6AFE965A ] s3cap           C:\windows\System32\drivers\vms3cap.sys
18:39:58.0175 4572  s3cap - ok
18:39:58.0201 4572  [ F702AB6181513303AB0FC8D59E52708B ] SamSs           C:\windows\system32\lsass.exe
18:39:58.0203 4572  SamSs - ok
18:39:58.0226 4572  [ 9C7B28CE0D136DB226E24DB3BC817F92 ] sbp2port        C:\windows\system32\drivers\sbp2port.sys
18:39:58.0230 4572  sbp2port - ok
18:39:58.0271 4572  [ 14316954FCE79C9DE5A0AFF9D42C83AA ] SCardSvr        C:\windows\System32\SCardSvr.dll
18:39:58.0278 4572  SCardSvr - ok
18:39:58.0293 4572  [ 5D7733A12756B267FCA021672B26BC9E ] scfilter        C:\windows\system32\DRIVERS\scfilter.sys
18:39:58.0296 4572  scfilter - ok
18:39:58.0368 4572  [ ED40ED9A65F3E79A8C43DD50C5FDADBF ] Schedule        C:\windows\system32\schedsvc.dll
18:39:58.0383 4572  Schedule - ok
18:39:58.0408 4572  [ BAF8F0F55BC300E5F882E521F054E345 ] SCPolicySvc     C:\windows\System32\certprop.dll
18:39:58.0410 4572  SCPolicySvc - ok
18:39:58.0458 4572  [ F58B030A0664385C707B8C1C63682041 ] sdbus           C:\windows\System32\drivers\sdbus.sys
18:39:58.0462 4572  sdbus - ok
18:39:58.0494 4572  [ 92968277ED491E4B3DDA361E3952361E ] SDRSVC          C:\windows\System32\SDRSVC.dll
18:39:58.0500 4572  SDRSVC - ok
18:39:58.0525 4572  [ BB107AA9980B0DA4E19A3A90C3BD4460 ] sdstor          C:\windows\System32\drivers\sdstor.sys
18:39:58.0527 4572  sdstor - ok
18:39:58.0549 4572  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\windows\system32\drivers\secdrv.sys
18:39:58.0552 4572  secdrv - ok
18:39:58.0564 4572  [ CD282626738B6BC92B6E7CD0AAE95B63 ] seclogon        C:\windows\system32\seclogon.dll
18:39:58.0568 4572  seclogon - ok
18:39:58.0586 4572  [ 9C51620998F0763039DFA6BF68E475ED ] SENS            C:\windows\System32\sens.dll
18:39:58.0589 4572  SENS - ok
18:39:58.0612 4572  [ DDA4CAF29D8C0A297F886BFE561E6659 ] SensorsSimulatorDriver C:\windows\system32\DRIVERS\WUDFRd.sys
18:39:58.0616 4572  SensorsSimulatorDriver - ok
18:39:58.0638 4572  [ 0D50B4B860DAB65241628D04CD33ACAE ] SensrSvc        C:\windows\system32\sensrsvc.dll
18:39:58.0645 4572  SensrSvc - ok
18:39:58.0664 4572  [ 87C46B239A7EEF30FDFDD5E9BD46130C ] SerCx           C:\windows\system32\drivers\SerCx.sys
18:39:58.0667 4572  SerCx - ok
18:39:58.0674 4572  [ 7A1F9347C85FD55E39B8A76B3A25C5AD ] Serenum         C:\windows\System32\drivers\serenum.sys
18:39:58.0676 4572  Serenum - ok
18:39:58.0688 4572  [ F640A0A218BBF857F1D04A15D7D939F6 ] Serial          C:\windows\System32\drivers\serial.sys
18:39:58.0691 4572  Serial - ok
18:39:58.0701 4572  [ F1A5F56B2620B862CC28FF96A0A6DAAB ] sermouse        C:\windows\System32\drivers\sermouse.sys
18:39:58.0703 4572  sermouse - ok
18:39:58.0739 4572  [ CB60A60340788C8D6DE2A269D28086AB ] SessionEnv      C:\windows\system32\sessenv.dll
18:39:58.0747 4572  SessionEnv - ok
18:39:58.0757 4572  [ 7EE65419B29302C795714FF8073969A1 ] sfloppy         C:\windows\System32\drivers\sfloppy.sys
18:39:58.0760 4572  sfloppy - ok
18:39:58.0795 4572  [ 090AE16F79C8EAD04E6031F863DA85F3 ] SharedAccess    C:\windows\System32\ipnathlp.dll
18:39:58.0803 4572  SharedAccess - ok
18:39:58.0864 4572  [ A77F3ABE13FCC698511E5DEC7ACEBD5F ] ShellHWDetection C:\windows\System32\shsvcs.dll
18:39:58.0872 4572  ShellHWDetection - ok
18:39:58.0883 4572  [ 2560721D6F16D5B611C36A3A9D28C1B2 ] SiSRaid2        C:\windows\system32\drivers\SiSRaid2.sys
18:39:58.0885 4572  SiSRaid2 - ok
18:39:58.0913 4572  [ 3AA8FDE1DBF65BB8B88B053529554A0D ] SiSRaid4        C:\windows\system32\drivers\sisraid4.sys
18:39:58.0917 4572  SiSRaid4 - ok
18:39:58.0938 4572  [ 8F51D468935ACE2AE6E02668202DB36C ] SmbDrv          C:\windows\system32\DRIVERS\Smb_driver_AMDASF.sys
18:39:58.0940 4572  SmbDrv - ok
18:39:58.0963 4572  [ E660156A4588A84305CB772FD2C0DB21 ] SNMPTRAP        C:\windows\System32\snmptrap.exe
18:39:58.0967 4572  SNMPTRAP - ok
18:39:59.0019 4572  [ 9110193D93960E38B8692E4519C75D72 ] spaceport       C:\windows\system32\drivers\spaceport.sys
18:39:59.0024 4572  spaceport - ok
18:39:59.0051 4572  [ 3D8679C8DF52EB26EB7583A4E0A29202 ] SpbCx           C:\windows\system32\drivers\SpbCx.sys
18:39:59.0053 4572  SpbCx - ok
18:39:59.0085 4572  [ 3F215BF2D4D8D6756298B25B579772C2 ] Spooler         C:\windows\System32\spoolsv.exe
18:39:59.0100 4572  Spooler - ok
18:39:59.0230 4572  [ 061A977C920FBE4BF71FF47C966DDDCA ] sppsvc          C:\windows\system32\sppsvc.exe
18:39:59.0325 4572  sppsvc - ok
18:39:59.0400 4572  [ 8009FD3E6CC714005790606A80DE3CF6 ] SQLAgent$SQLEXPRESS C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE
18:39:59.0412 4572  SQLAgent$SQLEXPRESS - ok
18:39:59.0502 4572  [ E9254892A2D74E537BAD3092F0F8EE40 ] SQLBrowser      C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
18:39:59.0509 4572  SQLBrowser - ok
18:39:59.0549 4572  [ 055B0DE7BCDB14FB18279F09DCA07954 ] SQLWriter       C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
18:39:59.0551 4572  SQLWriter - ok
18:39:59.0581 4572  [ 0F1FCD575A03ABDE13FCA9D0ADE4DDA6 ] srv             C:\windows\system32\DRIVERS\srv.sys
18:39:59.0588 4572  srv - ok
18:39:59.0642 4572  [ 56218A571ECF8D55E0CDFF8DF2546CF1 ] srv2            C:\windows\system32\DRIVERS\srv2.sys
18:39:59.0652 4572  srv2 - ok
18:39:59.0702 4572  [ 14FC338B80CFF7E04215133B568D15C4 ] srvnet          C:\windows\system32\DRIVERS\srvnet.sys
18:39:59.0706 4572  srvnet - ok
18:39:59.0743 4572  [ 8F8324ED1DE63FFC7B1A02CD2D963C72 ] ssadbus         C:\windows\System32\drivers\ssadbus.sys
18:39:59.0747 4572  ssadbus - ok
18:39:59.0776 4572  [ 58221EFCB74167B73667F0024C661CE0 ] ssadmdfl        C:\windows\system32\DRIVERS\ssadmdfl.sys
18:39:59.0778 4572  ssadmdfl - ok
18:39:59.0814 4572  [ 4DA7C71BFAC5AD71255B7E4CAB980163 ] ssadmdm         C:\windows\system32\DRIVERS\ssadmdm.sys
18:39:59.0818 4572  ssadmdm - ok
18:39:59.0845 4572  [ D33D1BD3EC0E766211A234F56A12726D ] ssadserd        C:\windows\system32\DRIVERS\ssadserd.sys
18:39:59.0849 4572  ssadserd - ok
18:39:59.0883 4572  [ 7A20882D76D4A78240A5AC9F2C2EBA21 ] SSDPSRV         C:\windows\System32\ssdpsrv.dll
18:39:59.0891 4572  SSDPSRV - ok
18:39:59.0918 4572  [ D233B16999A8E626F6004BD7814C57EC ] SstpSvc         C:\windows\system32\sstpsvc.dll
18:39:59.0923 4572  SstpSvc - ok
18:39:59.0970 4572  [ 5252D7BC56E5E0ED715AEA8FE173A455 ] ssudmdm         C:\windows\system32\DRIVERS\ssudmdm.sys
18:39:59.0974 4572  ssudmdm - ok
18:40:00.0003 4572  [ 117DF2CC1758A097CC30305C4B8908C6 ] ssudobex        C:\windows\system32\DRIVERS\ssudobex.sys
18:40:00.0008 4572  ssudobex - ok
18:40:00.0056 4572  [ 58C89A89D4AF0288DCF432EC0B358438 ] ssudserd        C:\windows\system32\DRIVERS\ssudserd.sys
18:40:00.0061 4572  ssudserd - ok
18:40:00.0093 4572  [ 4E85355B94CFCB67C135F6521A4895A7 ] stexstor        C:\windows\system32\drivers\stexstor.sys
18:40:00.0095 4572  stexstor - ok
18:40:00.0137 4572  [ BAC8A721736AECC55A4F71523AEAB65F ] stisvc          C:\windows\System32\wiaservc.dll
18:40:00.0148 4572  stisvc - ok
18:40:00.0195 4572  [ B240874B2CA0CD02E8CD11E140B14C57 ] storahci        C:\windows\system32\drivers\storahci.sys
18:40:00.0196 4572  storahci - ok
18:40:00.0215 4572  [ F74DBC95A57B1EE866D3732EB5F79BE2 ] storflt         C:\windows\system32\DRIVERS\vmstorfl.sys
18:40:00.0217 4572  storflt - ok
18:40:00.0235 4572  [ 5337E138B49ED1F44CCBA4073BC35C20 ] StorSvc         C:\windows\system32\storsvc.dll
18:40:00.0239 4572  StorSvc - ok
18:40:00.0248 4572  [ 543CD3CC0E05B8D8815E0D4F040B6F59 ] storvsc         C:\windows\system32\drivers\storvsc.sys
18:40:00.0250 4572  storvsc - ok
18:40:00.0261 4572  [ 8BC1C1ED6EF9C985A3FAA6A72F41679A ] svsvc           C:\windows\system32\svsvc.dll
18:40:00.0266 4572  svsvc - ok
18:40:00.0282 4572  [ 4AFD66AAE74FFB5986BC240744DC5FC9 ] swenum          C:\windows\System32\drivers\swenum.sys
18:40:00.0283 4572  swenum - ok
18:40:00.0358 4572  [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard     C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
18:40:00.0367 4572  SwitchBoard - ok
18:40:00.0392 4572  [ 502F9488540051F3E6C39889ECFA76BB ] swprv           C:\windows\System32\swprv.dll
18:40:00.0400 4572  swprv - ok
18:40:00.0440 4572  [ 1436A1A955D758AB6242F7FFC92FCCA4 ] SynTP           C:\windows\system32\DRIVERS\SynTP.sys
18:40:00.0448 4572  SynTP - ok
18:40:00.0530 4572  [ A06CB9269D29EE3D0F3F5630ABB660B8 ] SysMain         C:\windows\system32\sysmain.dll
18:40:00.0576 4572  SysMain - ok
18:40:00.0632 4572  [ 6FB88606C4A71E1BFAF97D63A676C673 ] SystemEventsBroker C:\windows\System32\SystemEventsBrokerServer.dll
18:40:00.0640 4572  SystemEventsBroker - ok
18:40:00.0682 4572  [ A6C06C45C44AD06C70AF8899AEC15BDC ] TabletInputService C:\windows\System32\TabSvc.dll
18:40:00.0686 4572  TabletInputService - ok
18:40:00.0711 4572  [ 88B7721AB551C4325036B25A34A2BF7B ] TapiSrv         C:\windows\System32\tapisrv.dll
18:40:00.0721 4572  TapiSrv - ok
18:40:00.0801 4572  [ 37D85E873C9531A2F88DD9C63D3F8A9E ] Tcpip           C:\windows\system32\drivers\tcpip.sys
18:40:00.0848 4572  Tcpip - ok
18:40:00.0912 4572  [ 37D85E873C9531A2F88DD9C63D3F8A9E ] TCPIP6          C:\windows\system32\DRIVERS\tcpip.sys
18:40:00.0933 4572  TCPIP6 - ok
18:40:00.0974 4572  [ 8F2A13A5DF99D72FDDE87F502A66F989 ] tcpipreg        C:\windows\system32\drivers\tcpipreg.sys
18:40:00.0976 4572  tcpipreg - ok
18:40:00.0998 4572  [ 73DC722CE5DF26D7638CE2446F2655C7 ] tdx             C:\windows\system32\DRIVERS\tdx.sys
18:40:01.0002 4572  tdx - ok
18:40:01.0084 4572  [ BB676D2C7AD5E7131D12417E4691F9B9 ] Te.Service      C:\Program Files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe
18:40:01.0089 4572  Te.Service - ok
18:40:01.0132 4572  [ F7C8AB5D8AFFAA318D6A21093D139BF4 ] terminpt        C:\windows\System32\drivers\terminpt.sys
18:40:01.0134 4572  terminpt - ok
18:40:01.0177 4572  [ 541EE228D0DEF392F7B2DFD885DD021B ] TermService     C:\windows\System32\termsrv.dll
18:40:01.0192 4572  TermService - ok
18:40:01.0224 4572  [ 519A6F672FFF56B7D8EE8C730CEC8ECD ] Themes          C:\windows\system32\themeservice.dll
18:40:01.0227 4572  Themes - ok
18:40:01.0298 4572  [ EEE908BE7143FCA48CF0CB87214E2AB8 ] THREADORDER     C:\windows\system32\mmcss.dll
18:40:01.0301 4572  THREADORDER - ok
18:40:01.0351 4572  [ 4515B9E4140F04FB3907692DF89FCA87 ] TimeBroker      C:\windows\System32\TimeBrokerServer.dll
18:40:01.0356 4572  TimeBroker - ok
18:40:01.0400 4572  [ E94F7A7B48C7638D1F3F8089344C97B7 ] TPM             C:\windows\system32\drivers\tpm.sys
18:40:01.0403 4572  TPM - ok
18:40:01.0424 4572  [ 8C8CF3041B27E7657ADD0EE17F6DBFCA ] TrkWks          C:\windows\System32\trkwks.dll
18:40:01.0429 4572  TrkWks - ok
18:40:01.0482 4572  [ 8ABBB5CE0C62E0A6D28F32F44B7F865C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
18:40:01.0484 4572  TrustedInstaller - ok
18:40:01.0512 4572  [ 4E7C5FB10A50435523DE0CAA37DE2BD3 ] TsUsbFlt        C:\windows\system32\drivers\tsusbflt.sys
18:40:01.0514 4572  TsUsbFlt - ok
18:40:01.0523 4572  [ 16D684A820872EE54F6370703AC0B513 ] TsUsbGD         C:\windows\System32\drivers\TsUsbGD.sys
18:40:01.0525 4572  TsUsbGD - ok
18:40:01.0548 4572  [ 78C9EE193AC2B4CBDBC48B620314D740 ] tunnel          C:\windows\system32\DRIVERS\tunnel.sys
18:40:01.0551 4572  tunnel - ok
18:40:01.0563 4572  [ 6D4F67CA56ACA2085DFA2CD89EAFBC1A ] uagp35          C:\windows\system32\drivers\uagp35.sys
18:40:01.0565 4572  uagp35 - ok
18:40:01.0575 4572  [ 6FD6D03B7752C78712E5CFF29A305026 ] UASPStor        C:\windows\System32\drivers\uaspstor.sys
18:40:01.0578 4572  UASPStor - ok
18:40:01.0601 4572  [ 061BA3EE0D2BE17944990544008CF190 ] UCX01000        C:\windows\System32\drivers\ucx01000.sys
18:40:01.0605 4572  UCX01000 - ok
18:40:01.0657 4572  [ 25C50F4EDF70D0A831E0566BD181CCF2 ] udfs            C:\windows\system32\DRIVERS\udfs.sys
18:40:01.0663 4572  udfs - ok
18:40:01.0708 4572  [ FB3475FEA1CCB0DAEA1EBE44D0E3BB7D ] UI0Detect       C:\windows\system32\UI0Detect.exe
18:40:01.0713 4572  UI0Detect - ok
18:40:01.0734 4572  [ 07FEBCDF24FABA0D47B635D85A0FFB7A ] uliagpkx        C:\windows\system32\drivers\uliagpkx.sys
18:40:01.0737 4572  uliagpkx - ok
18:40:01.0764 4572  [ 02CEB3FE6152668A7BA420B93B664860 ] umbus           C:\windows\System32\drivers\umbus.sys
18:40:01.0767 4572  umbus - ok
18:40:01.0786 4572  [ 991EE6B5FC41EAEF99C8AF5B92F2CA09 ] UmPass          C:\windows\System32\drivers\umpass.sys
18:40:01.0788 4572  UmPass - ok
18:40:01.0818 4572  [ 43FEFB040A0CC30F795FBF544169594D ] UmRdpService    C:\windows\System32\umrdp.dll
18:40:01.0826 4572  UmRdpService - ok
18:40:01.0849 4572  [ 14D22C411854AA2560AFC94CD2D5E61F ] upnphost        C:\windows\System32\upnphost.dll
18:40:01.0861 4572  upnphost - ok
18:40:01.0911 4572  [ C976C4306F9AE133D6BBD47FDFC3BF92 ] usbccgp         C:\windows\System32\drivers\usbccgp.sys
18:40:01.0914 4572  usbccgp - ok
18:40:01.0947 4572  [ 427B6DB8C05A5A977E8C3525370A2595 ] usbcir          C:\windows\System32\drivers\usbcir.sys
18:40:01.0950 4572  usbcir - ok
18:40:01.0998 4572  [ B24FDEB1B18496F1B463782235AA3AF1 ] usbehci         C:\windows\System32\drivers\usbehci.sys
18:40:02.0001 4572  usbehci - ok
18:40:02.0033 4572  [ 4875DC63E548812C75D4FDEF84970C89 ] usbfilter       C:\windows\system32\DRIVERS\usbfilter.sys
18:40:02.0035 4572  usbfilter - ok
18:40:02.0070 4572  [ F8C2A832DF9403F5EA8080CBDBDA95FB ] usbhub          C:\windows\System32\drivers\usbhub.sys
18:40:02.0080 4572  usbhub - ok
18:40:02.0105 4572  [ E5F7328B1D29BCE791862CD3C0DD382A ] USBHUB3         C:\windows\System32\drivers\UsbHub3.sys
18:40:02.0114 4572  USBHUB3 - ok
18:40:02.0144 4572  [ 325F6179009B5A7F6118951A5BA422AB ] usbohci         C:\windows\System32\drivers\usbohci.sys
18:40:02.0146 4572  usbohci - ok
18:40:02.0174 4572  [ 9FDBA6982582A6F2354144980F641E7B ] usbprint        C:\windows\System32\drivers\usbprint.sys
18:40:02.0176 4572  usbprint - ok
18:40:02.0200 4572  [ AD91D1BBE5D3CF4501887DC1C09384FD ] usbscan         C:\windows\System32\drivers\usbscan.sys
18:40:02.0203 4572  usbscan - ok
18:40:02.0223 4572  [ BFC7FE4AAEB61317A921871B4085EF4B ] USBSTOR         C:\windows\System32\drivers\USBSTOR.SYS
18:40:02.0226 4572  USBSTOR - ok
18:40:02.0247 4572  [ 1ABF657259DB57F7E5558E4DF1357C0C ] usbuhci         C:\windows\System32\drivers\usbuhci.sys
18:40:02.0249 4572  usbuhci - ok
18:40:02.0273 4572  [ 9EF7C01D3ACCBC243B5CB1A95865B2FF ] usbvideo        C:\windows\System32\Drivers\usbvideo.sys
18:40:02.0278 4572  usbvideo - ok
18:40:02.0306 4572  [ 8DC398D7B8E02C929A2096E74A170970 ] USBXHCI         C:\windows\System32\drivers\USBXHCI.SYS
18:40:02.0313 4572  USBXHCI - ok
18:40:02.0328 4572  [ F702AB6181513303AB0FC8D59E52708B ] VaultSvc        C:\windows\system32\lsass.exe
18:40:02.0330 4572  VaultSvc - ok
18:40:02.0360 4572  [ BACECBFF9C97F7627A60B0E0F1FE7EE8 ] vdrvroot        C:\windows\system32\drivers\vdrvroot.sys
18:40:02.0362 4572  vdrvroot - ok
18:40:02.0418 4572  [ 1B4488988E5E7512E6C5CD1255E9E973 ] vds             C:\windows\System32\vds.exe
18:40:02.0432 4572  vds - ok
18:40:02.0453 4572  [ 74FA2D4368DE6F6CE14393EDF1F342BE ] VerifierExt     C:\windows\system32\drivers\VerifierExt.sys
18:40:02.0458 4572  VerifierExt - ok
18:40:02.0491 4572  [ 500BE6B2E49883720D0AE8BB859ED7A3 ] vhdmp           C:\windows\System32\drivers\vhdmp.sys
18:40:02.0500 4572  vhdmp - ok
18:40:02.0518 4572  [ F5B4A14B00E89250C50982AC762DDD1D ] viaide          C:\windows\system32\drivers\viaide.sys
18:40:02.0520 4572  viaide - ok
18:40:02.0544 4572  [ 78DB50F7329F6D1311658DABFFFC8BE0 ] vmbus           C:\windows\system32\drivers\vmbus.sys
18:40:02.0548 4572  vmbus - ok
18:40:02.0558 4572  [ ECFEE2F2BA3932C7880D1A8F67D68F91 ] VMBusHID        C:\windows\System32\drivers\VMBusHID.sys
18:40:02.0560 4572  VMBusHID - ok
18:40:02.0606 4572  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicheartbeat   C:\windows\System32\ICSvc.dll
18:40:02.0613 4572  vmicheartbeat - ok
18:40:02.0625 4572  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmickvpexchange C:\windows\System32\ICSvc.dll
18:40:02.0630 4572  vmickvpexchange - ok
18:40:02.0644 4572  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicrdv         C:\windows\System32\ICSvc.dll
18:40:02.0649 4572  vmicrdv - ok
18:40:02.0663 4572  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicshutdown    C:\windows\System32\ICSvc.dll
18:40:02.0667 4572  vmicshutdown - ok
18:40:02.0728 4572  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmictimesync    C:\windows\System32\ICSvc.dll
18:40:02.0732 4572  vmictimesync - ok
18:40:02.0759 4572  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicvss         C:\windows\System32\ICSvc.dll
18:40:02.0764 4572  vmicvss - ok
18:40:02.0776 4572  [ CB60FAAED8B49B812EBBF77EB87D9B18 ] volmgr          C:\windows\system32\drivers\volmgr.sys
18:40:02.0777 4572  volmgr - ok
18:40:02.0794 4572  [ A74101DA9809251BCD0E5A26BAE0F824 ] volmgrx         C:\windows\system32\drivers\volmgrx.sys
18:40:02.0801 4572  volmgrx - ok
18:40:02.0847 4572  [ 78A5BBA3819FFFC62FFEC3E2220D102D ] volsnap         C:\windows\system32\drivers\volsnap.sys
18:40:02.0852 4572  volsnap - ok
18:40:02.0875 4572  [ A8DA1C1B52ECEA3726DEBED4FF1B700D ] vpci            C:\windows\System32\drivers\vpci.sys
18:40:02.0878 4572  vpci - ok
18:40:02.0890 4572  [ 38A60CD9C009C55C6D3B5586F8E6A353 ] vsmraid         C:\windows\system32\drivers\vsmraid.sys
18:40:02.0893 4572  vsmraid - ok
18:40:02.0964 4572  [ D0C69E44BC1E1D4AD290FD84104623D8 ] VSS             C:\windows\system32\vssvc.exe
18:40:02.0980 4572  VSS - ok
18:40:02.0995 4572  [ A0F6FE0FC2F647C22BBFD6BD4249DBCC ] VSTXRAID        C:\windows\system32\drivers\vstxraid.sys
18:40:03.0000 4572  VSTXRAID - ok
18:40:03.0034 4572  [ 62460A45435A26A334907E3F2EA45611 ] vwifibus        C:\windows\System32\drivers\vwifibus.sys
18:40:03.0036 4572  vwifibus - ok
18:40:03.0047 4572  [ 095E943D27025E4D588AF0A72CC2318F ] vwififlt        C:\windows\system32\DRIVERS\vwififlt.sys
18:40:03.0049 4572  vwififlt - ok
18:40:03.0059 4572  [ 73FA1A41A97A5C34ADC03B3577FF1A86 ] vwifimp         C:\windows\system32\DRIVERS\vwifimp.sys
18:40:03.0061 4572  vwifimp - ok
18:40:03.0095 4572  [ F690B6EEAA94576727B24376D7ED3601 ] W32Time         C:\windows\system32\w32time.dll
18:40:03.0104 4572  W32Time - ok
18:40:03.0114 4572  [ 6B806E893714019969E2B50D7EF6A4D9 ] WacomPen        C:\windows\System32\drivers\wacompen.sys
18:40:03.0116 4572  WacomPen - ok
18:40:03.0164 4572  [ 61F6972FF9AC9A8D0B4D62076DC30051 ] Wanarp          C:\windows\system32\DRIVERS\wanarp.sys
18:40:03.0167 4572  Wanarp - ok
18:40:03.0173 4572  [ 61F6972FF9AC9A8D0B4D62076DC30051 ] Wanarpv6        C:\windows\system32\DRIVERS\wanarp.sys
18:40:03.0174 4572  Wanarpv6 - ok
18:40:03.0219 4572  [ 42DF22F8C448E7CD219F6D63743505E2 ] wbengine        C:\windows\system32\wbengine.exe
18:40:03.0255 4572  wbengine - ok
18:40:03.0299 4572  [ 31D37B2F6069C631EF0557D322924812 ] WbioSrvc        C:\windows\System32\wbiosrvc.dll
18:40:03.0308 4572  WbioSrvc - ok
18:40:03.0357 4572  [ AF1349386D4C6786EF4E34FACEF15042 ] Wcmsvc          C:\windows\System32\wcmsvc.dll
18:40:03.0366 4572  Wcmsvc - ok
18:40:03.0433 4572  [ 5B5FEAB51172F5513C2CF7B39CFA6A01 ] wcncsvc         C:\windows\System32\wcncsvc.dll
18:40:03.0444 4572  wcncsvc - ok
18:40:03.0471 4572  [ E19556D414332E2BEBA1F368229006B4 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
18:40:03.0476 4572  WcsPlugInService - ok
18:40:03.0508 4572  [ B3A4D918DAB90505B6BC7B70632913CB ] Wd              C:\windows\system32\drivers\wd.sys
18:40:03.0510 4572  Wd - ok
18:40:03.0552 4572  [ FD47DF026B32969B8A68721A0243E8EE ] WdBoot          C:\windows\system32\drivers\WdBoot.sys
18:40:03.0554 4572  WdBoot - ok
18:40:03.0594 4572  [ A3D04EBF5227886029B4532F20D026F7 ] WDC_SAM         C:\windows\System32\drivers\wdcsam64.sys
18:40:03.0595 4572  WDC_SAM - ok
18:40:03.0635 4572  [ E6050FE6B60FA91188B8ABDB5B1E339F ] WDDMService     C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
18:40:03.0639 4572  WDDMService - ok
18:40:03.0703 4572  [ E2C933EDBC389386EBE6D2BA953F43D8 ] Wdf01000        C:\windows\system32\drivers\Wdf01000.sys
18:40:03.0715 4572  Wdf01000 - ok
18:40:03.0748 4572  [ 5F425D842DD6ADE9F95A51A0616AFAD7 ] WdFilter        C:\windows\system32\drivers\WdFilter.sys
18:40:03.0753 4572  WdFilter - ok
18:40:03.0808 4572  [ B83D5071B32A70BEBDB3330BFA7ACB80 ] WDFME           C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe
18:40:03.0819 4572  WDFME - ok
18:40:03.0862 4572  [ 240FC332484572227CD1DF82407F33E5 ] WdiServiceHost  C:\windows\system32\wdi.dll
18:40:03.0868 4572  WdiServiceHost - ok
18:40:03.0876 4572  [ 240FC332484572227CD1DF82407F33E5 ] WdiSystemHost   C:\windows\system32\wdi.dll
18:40:03.0882 4572  WdiSystemHost - ok
18:40:03.0926 4572  [ 517DE2C5568CBA6B2A24A557AC60C30B ] WDSC            C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSC.exe
18:40:03.0930 4572  WDSC - ok
18:40:03.0987 4572  [ 9B1384CE8E681D2D77BB3524B8E86311 ] WebClient       C:\windows\System32\webclnt.dll
18:40:03.0995 4572  WebClient - ok
18:40:04.0022 4572  [ 35FD720943D4FCD75C3275BF062FF140 ] Wecsvc          C:\windows\system32\wecsvc.dll
18:40:04.0029 4572  Wecsvc - ok
18:40:04.0051 4572  [ 4D2612E3C462B68F499D840B1133263E ] wercplsupport   C:\windows\System32\wercplsupport.dll
18:40:04.0057 4572  wercplsupport - ok
18:40:04.0088 4572  [ 5F70EBFC1F75B487DE79501E3CCBDB54 ] WerSvc          C:\windows\System32\WerSvc.dll
18:40:04.0093 4572  WerSvc - ok
18:40:04.0137 4572  [ 44BB9C31E6242C4BD1CE7C2B440C2533 ] WFPLWFS         C:\windows\system32\DRIVERS\wfplwfs.sys
18:40:04.0140 4572  WFPLWFS - ok
18:40:04.0158 4572  [ 60E0C220593DA4F7C289CB909D2DBAE0 ] WiaRpc          C:\windows\System32\wiarpc.dll
18:40:04.0165 4572  WiaRpc - ok
18:40:04.0197 4572  [ A3C7624A42A3447EF5EDD1ED37FE4E60 ] WIMMount        C:\windows\system32\drivers\wimmount.sys
18:40:04.0199 4572  WIMMount - ok
18:40:04.0232 4572  WinDefend - ok
18:40:04.0308 4572  [ 7911470B6018059A880469A63B65700A ] WinHttpAutoProxySvc C:\windows\system32\winhttp.dll
18:40:04.0322 4572  WinHttpAutoProxySvc - ok
18:40:04.0363 4572  [ 3D6B518B71C75C8FA4115A33615C107A ] Winmgmt         C:\windows\system32\wbem\WMIsvc.dll
18:40:04.0368 4572  Winmgmt - ok
18:40:04.0435 4572  [ 8E212A627F33F6FC3B5F3BB47212F66E ] WinRM           C:\windows\system32\WsmSvc.dll
18:40:04.0492 4572  WinRM - ok
18:40:04.0540 4572  [ BB20956C424531003F7FA6CD36F11D5D ] WinUsb          C:\windows\system32\DRIVERS\WinUsb.sys
18:40:04.0542 4572  WinUsb - ok
18:40:04.0622 4572  [ 6351724B8FA0255C2DBD970297F00B93 ] WlanSvc         C:\windows\System32\wlansvc.dll
18:40:04.0668 4572  WlanSvc - ok
18:40:04.0731 4572  [ B330CE47FB74A6BE9A3FFFF4B3F64D9B ] wlidsvc         C:\windows\system32\wlidsvc.dll
18:40:04.0759 4572  wlidsvc - ok
18:40:04.0786 4572  [ E2A596CACFC6504306CDB7B593B90084 ] WmiAcpi         C:\windows\System32\drivers\wmiacpi.sys
18:40:04.0789 4572  WmiAcpi - ok
18:40:04.0837 4572  [ D113499052C5E541906B727779F0F959 ] wmiApSrv        C:\windows\system32\wbem\WmiApSrv.exe
18:40:04.0841 4572  wmiApSrv - ok
18:40:04.0866 4572  WMPNetworkSvc - ok
18:40:04.0881 4572  [ C6FF953D5D6F2EAE3B8883474D5076B3 ] wpcfltr         C:\windows\system32\DRIVERS\wpcfltr.sys
18:40:04.0883 4572  wpcfltr - ok
18:40:04.0939 4572  [ A6ED163169876BFD2437E872FE2F1509 ] WPCSvc          C:\windows\System32\wpcsvc.dll
18:40:04.0943 4572  WPCSvc - ok
18:40:04.0993 4572  [ 3013658A4D327854BEEC4A08D9655194 ] WPDBusEnum      C:\windows\system32\wpdbusenum.dll
18:40:04.0999 4572  WPDBusEnum - ok
18:40:05.0014 4572  [ 0346CAFC181C91C6E2330332EB332ED6 ] WpdUpFltr       C:\windows\system32\drivers\WpdUpFltr.sys
18:40:05.0016 4572  WpdUpFltr - ok
18:40:05.0042 4572  [ BC8B5CB336E63BB25EAD1CE8EDD34B81 ] ws2ifsl         C:\windows\system32\drivers\ws2ifsl.sys
18:40:05.0044 4572  ws2ifsl - ok
18:40:05.0100 4572  [ 012CFE7F0F95266F554EE3B91EE2128A ] wscsvc          C:\windows\System32\wscsvc.dll
18:40:05.0105 4572  wscsvc - ok
18:40:05.0141 4572  [ 74EFDA0526862C3D8D01A776182798EA ] WSDPrintDevice  C:\windows\System32\drivers\WSDPrint.sys
18:40:05.0143 4572  WSDPrintDevice - ok
18:40:05.0175 4572  [ 6ED437C0BE2280AF78070B4BEDD0D221 ] WSDScan         C:\windows\system32\DRIVERS\WSDScan.sys
18:40:05.0177 4572  WSDScan - ok
18:40:05.0184 4572  WSearch - ok
18:40:05.0288 4572  [ D4D04839F3DFAF09D94BAB1016F7A297 ] WSService       C:\windows\System32\WSService.dll
18:40:05.0344 4572  WSService - ok
18:40:05.0368 4572  [ 72B4E9DF6456C43C42A1419B09486045 ] wsvd            C:\windows\system32\DRIVERS\wsvd.sys
18:40:05.0372 4572  wsvd - ok
18:40:05.0471 4572  [ 311E5E1976E0BD9110A88B93158055D5 ] wuauserv        C:\windows\system32\wuaueng.dll
18:40:05.0541 4572  wuauserv - ok
18:40:05.0566 4572  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\windows\system32\drivers\WudfPf.sys
18:40:05.0570 4572  WudfPf - ok
18:40:05.0581 4572  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\windows\System32\drivers\WUDFRd.sys
18:40:05.0583 4572  WUDFRd - ok
18:40:05.0596 4572  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFSensorLP    C:\windows\system32\DRIVERS\WUDFRd.sys
18:40:05.0599 4572  WUDFSensorLP - ok
18:40:05.0637 4572  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\windows\System32\WUDFSvc.dll
18:40:05.0643 4572  wudfsvc - ok
18:40:05.0654 4572  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFWpdFs       C:\windows\system32\DRIVERS\WUDFRd.sys
18:40:05.0657 4572  WUDFWpdFs - ok
18:40:05.0666 4572  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFWpdMtp      C:\windows\system32\DRIVERS\WUDFRd.sys
18:40:05.0672 4572  WUDFWpdMtp - ok
18:40:05.0727 4572  [ 6D9E07436B6646EC8F7EFFD39B6BA288 ] WwanSvc         C:\windows\System32\wwansvc.dll
18:40:05.0737 4572  WwanSvc - ok
18:40:05.0763 4572  ================ Scan global ===============================
18:40:05.0812 4572  [ DDC1AFBF9DDF880CE9BD3896114D8DED ] C:\windows\system32\basesrv.dll
18:40:05.0839 4572  [ E9343076AE704D20BB0D01F3AF3EFFEF ] C:\windows\system32\winsrv.dll
18:40:05.0863 4572  [ BD7C6949984D19AAA609896B675E7357 ] C:\windows\system32\sxssrv.dll
18:40:05.0908 4572  [ 8F226143046435C75C033B0C52E90FFE ] C:\windows\system32\services.exe
18:40:05.0918 4572  [Global] - ok
18:40:05.0919 4572  ================ Scan MBR ==================================
18:40:05.0935 4572  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
18:40:06.0167 4572  \Device\Harddisk0\DR0 - ok
18:40:06.0169 4572  ================ Scan VBR ==================================
18:40:06.0210 4572  [ 2DED26C5C1D330D82F69B3ACC9D9C595 ] \Device\Harddisk0\DR0\Partition1
18:40:06.0212 4572  \Device\Harddisk0\DR0\Partition1 - ok
18:40:06.0231 4572  [ D575EC62E672EB602C88F1474C533B7B ] \Device\Harddisk0\DR0\Partition2
18:40:06.0233 4572  \Device\Harddisk0\DR0\Partition2 - ok
18:40:06.0246 4572  [ B2194D219B2F5B2B993DEFF24D2C9859 ] \Device\Harddisk0\DR0\Partition3
18:40:06.0248 4572  \Device\Harddisk0\DR0\Partition3 - ok
18:40:06.0259 4572  [ 24CD8A7ED8214801D7BDB2B8C9A4A448 ] \Device\Harddisk0\DR0\Partition4
18:40:06.0260 4572  \Device\Harddisk0\DR0\Partition4 - ok
18:40:06.0274 4572  [ 8947EB7631A210B25DE0A05A2379EDFE ] \Device\Harddisk0\DR0\Partition5
18:40:06.0277 4572  \Device\Harddisk0\DR0\Partition5 - ok
18:40:06.0308 4572  [ 502D4376EDA0D1F58BECE2E2688C57FF ] \Device\Harddisk0\DR0\Partition6
18:40:06.0312 4572  \Device\Harddisk0\DR0\Partition6 - ok
18:40:06.0371 4572  [ B9CFDBB53D69DE8E2E2B8A705F199DB8 ] \Device\Harddisk0\DR0\Partition7
18:40:06.0373 4572  \Device\Harddisk0\DR0\Partition7 - ok
18:40:06.0375 4572  ============================================================
18:40:06.0375 4572  Scan finished
18:40:06.0375 4572  ============================================================
18:40:06.0389 6116  Detected object count: 0
18:40:06.0389 6116  Actual detected object count: 0
18:42:05.0645 2940  Deinitialize success
 
 
 
 
 
 
 
 
 
 
 
 
 
 
MBAM Log: 
 
Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 07/05/14
Scan Time: 12:38:08 p. m.
Logfile: 
Administrator: Yes
 
Version: 2.00.1.1004
Malware Database: v2014.05.07.05
Rootkit Database: v2014.03.27.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Chameleon: Disabled
 
OS: Windows 8
CPU: x64
File System: NTFS
User: yentl
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 561447
Time Elapsed: 1 hr, 49 min, 45 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Shuriken: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 0
(No malicious items detected)
 
Registry Values: 1
Backdoor.Bot, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|Microsoft Update, C:\Users\yentl\AppData\Roaming\hostService.exe, Quarantined, [95fccf7fdba051e5ddbd9c19c73ba25e]
 
Registry Data: 0
(No malicious items detected)
 
Folders: 3
PUP.Optional.Conduit.A, C:\Users\yentl\AppData\Local\Temp\ct3288691, Quarantined, [8d04034bb3c8ad89a4ef91d9e121c53b], 
PUP.Optional.Conduit.A, C:\Users\yentl\AppData\Local\Temp\ct3297268, Quarantined, [dab7113db1caf14563303b2fb052bf41], 
PUP.Optional.Conduit.A, C:\Users\yentl\AppData\Local\Temp\ct3297861, Quarantined, [d2bfdb736e0dd95d791a591114eeb050], 
 
Files: 9
PUP.Optional.OptimizePro.A, C:\Users\yentl\AppData\Local\Temp\OptimizerPro.exe, Quarantined, [eba6f6586219a096f13fb06ef30d4bb5], 
PUP.Optional.Somoto.A, C:\Users\yentl\AppData\Local\Temp\BI_RunOnce (1).exe, Quarantined, [eda48dc15c1fc472f3bc8590996830d0], 
PUP.Optional.Somoto.A, C:\Users\yentl\AppData\Local\Temp\BI_RunOnce.exe, Quarantined, [d0c189c56f0c2412723dcd480cf5f40c], 
PUP.Optional.Delta.A, C:\Users\yentl\AppData\Local\Temp\DeltaTB.exe, Quarantined, [6f22da74abd0f24490b0788d31d0d62a], 
PUP.Optional.Conduit.A, C:\Users\yentl\AppData\Local\Temp\ct3288691\chromeid.txt, Quarantined, [8d04034bb3c8ad89a4ef91d9e121c53b], 
PUP.Optional.Conduit.A, C:\Users\yentl\AppData\Local\Temp\ct3288691\setup.ini.txt, Quarantined, [8d04034bb3c8ad89a4ef91d9e121c53b], 
PUP.Optional.Conduit.A, C:\Users\yentl\AppData\Local\Temp\ct3297268\ism.exe, Quarantined, [dab7113db1caf14563303b2fb052bf41], 
PUP.Optional.Conduit.A, C:\Users\yentl\AppData\Local\Temp\ct3297861\chromeid.txt, Quarantined, [d2bfdb736e0dd95d791a591114eeb050], 
PUP.Optional.Conduit.A, C:\Users\yentl\AppData\Local\Temp\ct3297861\setup.ini.txt, Quarantined, [d2bfdb736e0dd95d791a591114eeb050], 
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)
 
 
 
 
 
 
 
 
 
 
 
 
 
Kaspersky Log:
 
Inactivo setup.exe http://www.facebook.com/ 07/05/14 9:13:36 a. m. Trojan-PSW.Win32.Fareit.aooa 
Inactivo http://www.google.com/ 07/05/14 10:35:54 a. m. HEUR:Trojan.Script.Generic 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
TDSS Fix Tool
MBR check failed, error =c000000bb
No infections were found.
 
 
 
 
 
 
 
 
 
 
aswMBR Log:
 
aswMBR version 0.9.9.1771 Copyright© 2011 AVAST Software
Run date: 2014-05-12 20:32:25
-----------------------------
20:32:25.178    OS Version: Windows x64 6.2.9200 
20:32:25.178    Number of processors: 2 586 0x1001
20:32:25.180    ComputerName: LEON  UserName: 
20:32:25.195    Initialze error C000010E - driver not loaded
20:32:25.274    write error "aswEngin.dll". El proceso no tiene acceso al archivo porque está siendo utilizado por otro proceso.
20:40:49.490    AVAST engine defs: 14051204
20:42:56.830    Service scanning
20:42:57.549    Modules scanning
20:42:57.552    Disk 0 trace - called modules:
20:42:57.617    
20:42:57.622    AVAST engine scan C:\windows
20:42:57.628    AVAST engine scan C:\windows\system32
20:42:57.637    AVAST engine scan C:\windows\system32\drivers
20:42:57.642    AVAST engine scan C:\Users\yentl
20:42:57.647    AVAST engine scan C:\ProgramData
20:42:57.652    Scan finished successfully
20:43:09.342    The log file has been saved successfully to "C:\Users\yentl\Desktop\aswMBR.txt"
 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users