Jump to content


Photo

Check request on desktop


  • This topic is locked This topic is locked
7 replies to this topic

#1 Alien300x

Alien300x

    Member

  • Full Member
  • Pip
  • 88 posts

Posted 11 September 2012 - 10:19 PM

Please check for any spyware/malware on this computer. It is a desktop and I suspect tampering from a skilled hacker. Please report back with what you find ASAP.


Malwarebytes Anti-Malware (Trial) 1.65.0.1400
www.malwarebytes.org

Database version: v2012.09.11.09

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
MCLAUGHLIN :: MCLAUGHLIN-PC [administrator]

Protection: Enabled

9/11/2012 11:16:54 PM
mbam-log-2012-09-11 (23-16-54).txt

Scan type: Full scan (C:\|D:\|F:\|G:\|H:\|I:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 394473
Time elapsed: 48 minute(s), 17 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

.
DDS (Ver_2011-08-26.01) - NTFSAMD64
Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_35
Run by MCLAUGHLIN at 0:10:18 on 2012-09-12
Microsoft Windows 7 Professional 6.1.7601.1.1252.1.1033.18.3959.1719 [GMT -4:00]
.
AV: Microsoft Security Essentials *Enabled/Updated* {9765EA51-0D3C-7DFB-6091-10E4E1F341F6}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Microsoft Security Essentials *Enabled/Updated* {2C040BB5-2B06-7275-5A21-2B969A740B4B}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe
C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Windows\system32\atieclxx.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\WUDFHost.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskhost.exe
C:\Windows\Explorer.EXE
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files\Logitech\SetPointP\SetPoint.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe
C:\Users\MCLAUGHLIN\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe
C:\Windows\system32\conhost.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files (x86)\CyberLink\Shared files\brs.exe
C:\Program Files (x86)\CyberLink\PowerDVD8\PDVD8Serv.exe
C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files (x86)\Ask.com\Updater\Updater.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\DllHost.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_4_402_265_ActiveX.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
C:\Windows\notepad.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\conhost.exe
C:\Windows\SysWOW64\cscript.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uSearch Page = hxxp://www.google.com
uStart Page = hxxp://www.jamaica-gleaner.com/
uSearch Bar = hxxp://www.google.com/ie
uDefault_Search_URL = hxxp://www.google.com/ie
uInternet Settings,ProxyOverride = *.local
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
uURLSearchHooks: UrlSearchHook Class: {00000000-6e41-4fd3-8538-502f5495e5fc} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
mWinlogon: Userinit=userinit.exe
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Java™ Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
BHO: Skype Browser Helper: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
BHO: Ask Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
TB: Ask Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
uRun: [Google Update] "C:\Users\MCLAUGHLIN\AppData\Local\Google\Update\GoogleUpdate.exe" /c
uRun: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
uRun: [MobileDocuments] C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe
mRun: [IAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
mRun: [Name of App] C:\Program Files (x86)\SAMSUNG\FW LiveUpdate\FWManager.exe r
mRun: [CLMLServer] "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
mRun: [UpdateP2GoShortCut] "C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
mRun: [UpdatePSTShortCut] "C:\Program Files (x86)\CyberLink\Blu-ray Disc Suite\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Blu-ray Disc Suite" UpdateWithCreateOnce "Software\CyberLink\PowerStarter"
mRun: [BDRegion] C:\Program Files (x86)\Cyberlink\Shared Files\brs.exe
mRun: [RemoteControl8] "C:\Program Files (x86)\CyberLink\PowerDVD8\PDVD8Serv.exe"
mRun: [PDVD8LanguageShortcut] "C:\Program Files (x86)\CyberLink\PowerDVD8\Language\Language.exe"
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [LWS] C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe -hide
mRun: [IMSS] "C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PIconStartup.exe"
mRun: [AppleSyncNotifier] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [<NO NAME>]
mRun: [ApnUpdater] "C:\Program Files (x86)\Ask.com\Updater\Updater.exe"
mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRunOnce: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
StartupFolder: C:\Users\MCLAUG~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\MCLAUGHLIN\AppData\Roaming\Dropbox\bin\Dropbox.exe
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: Add to Google Photos Screensa&ver - C:\Windows\system32\GPhotos.scr/200
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~3\OFFICE11\EXCEL.EXE/3000
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - C:\PROGRA~2\MICROS~3\OFFICE11\REFIEBAR.DLL
DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} - hxxp://office.microsoft.com/_layouts/ClientBin/ieawsdc32.cab
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab
DPF: {B80CD4E6-5B02-4B6C-99BE-68F1511E9549} - hxxp://plugin.slingbox.com/downloads/pc/1.4.0.111/WebSlingPlayer.cab
DPF: {CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab
DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} - hxxp://d1ylr6sba64qi3.cloudfront.net/global/bin/srldetect_intel_4.1.66.0.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
DPF: {F27237D7-93C8-44C2-AC6E-D6057B9A918F} - hxxps://secure.moffitt.org/dana-cached/sc/JuniperSetupClient.cab
TCP: DhcpNameServer = 192.168.1.1 68.238.112.12
TCP: Interfaces\{A88E4F0C-BA71-45C8-BCB7-6036F5A36315} : DhcpNameServer = 192.168.1.1 68.238.112.12
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO-X64: AcroIEHelperStub - No File
BHO-X64: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
BHO-X64: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO-X64: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
BHO-X64: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
BHO-X64: SkypeIEPluginBHO - No File
BHO-X64: Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
BHO-X64: Ask Toolbar BHO - No File
BHO-X64: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
TB-X64: Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
TB-X64: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
mRun-x64: [IAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
mRun-x64: [Name of App] C:\Program Files (x86)\SAMSUNG\FW LiveUpdate\FWManager.exe r
mRun-x64: [CLMLServer] "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
mRun-x64: [UpdateP2GoShortCut] "C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
mRun-x64: [UpdatePSTShortCut] "C:\Program Files (x86)\CyberLink\Blu-ray Disc Suite\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Blu-ray Disc Suite" UpdateWithCreateOnce "Software\CyberLink\PowerStarter"
mRun-x64: [BDRegion] C:\Program Files (x86)\Cyberlink\Shared Files\brs.exe
mRun-x64: [RemoteControl8] "C:\Program Files (x86)\CyberLink\PowerDVD8\PDVD8Serv.exe"
mRun-x64: [PDVD8LanguageShortcut] "C:\Program Files (x86)\CyberLink\PowerDVD8\Language\Language.exe"
mRun-x64: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun-x64: [LWS] C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe -hide
mRun-x64: [IMSS] "C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PIconStartup.exe"
mRun-x64: [AppleSyncNotifier] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
mRun-x64: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun-x64: [(Default)]
mRun-x64: [ApnUpdater] "C:\Program Files (x86)\Ask.com\Updater\Updater.exe"
mRun-x64: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun-x64: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun-x64: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun-x64: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRunOnce-x64: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\MCLAUGHLIN\AppData\Roaming\Mozilla\Firefox\Profiles\0n7ko1pv.default\
FF - prefs.js: browser.search.defaulturl - hxxp://www.bing.com/search?FORM=IEFM1&q=
FF - prefs.js: browser.search.selectedEngine - Ask.com
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/
FF - prefs.js: keyword.URL - hxxp://www.bing.com/search?FORM=IEFM1&q=
FF - component: C:\Program Files (x86)\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}\components\SkypeFfComponent.dll
FF - plugin: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.57\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.65\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.69\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.79\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrlui.dll
FF - plugin: C:\Users\MCLAUGHLIN\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_271.dll
FF - plugin: C:\Windows\SysWOW64\npdeployJava1.dll
FF - plugin: C:\Windows\SysWOW64\npmproxy.dll
.
============= SERVICES / DRIVERS ===============
.
R0 MpFilter;Microsoft Malware Protection Driver;C:\Windows\system32\DRIVERS\MpFilter.sys --> C:\Windows\system32\DRIVERS\MpFilter.sys [?]
R1 NEOFLTR_719_20893;Juniper Networks TDI Filter Driver (NEOFLTR_719_20893);\??\C:\Windows\system32\Drivers\NEOFLTR_719_20893.SYS --> C:\Windows\system32\Drivers\NEOFLTR_719_20893.SYS [?]
R2 {FE4C91E7-22C2-4D0C-9F6B-82F1B7742054};Power Control [2010/08/21 11:08:41];C:\Program Files (x86)\CyberLink\PowerDVD8\000.fcl [2010-1-12 146928]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\system32\atiesrxx.exe --> C:\Windows\system32\atiesrxx.exe [?]
R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-8-21 13336]
R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-9-11 399432]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-9-11 676936]
R2 TeamViewer6;TeamViewer 6;C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe [2011-2-26 2253688]
R2 TeamViewer7;TeamViewer 7;C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [2012-3-19 2666880]
R2 UMVPFSrv;UMVPFSrv;C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe [2012-1-18 450848]
R2 UNS;Intel® Management & Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2010-9-7 2533400]
R3 amdkmdag;amdkmdag;C:\Windows\system32\DRIVERS\atikmdag.sys --> C:\Windows\system32\DRIVERS\atikmdag.sys [?]
R3 amdkmdap;amdkmdap;C:\Windows\system32\DRIVERS\atikmpag.sys --> C:\Windows\system32\DRIVERS\atikmpag.sys [?]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service;C:\Windows\system32\drivers\AtihdW76.sys --> C:\Windows\system32\drivers\AtihdW76.sys [?]
R3 HECIx64;Intel® Management Engine Interface;C:\Windows\system32\DRIVERS\HECIx64.sys --> C:\Windows\system32\DRIVERS\HECIx64.sys [?]
R3 LVRS64;Logitech RightSound Filter Driver;C:\Windows\system32\DRIVERS\lvrs64.sys --> C:\Windows\system32\DRIVERS\lvrs64.sys [?]
R3 LVUVC64;Logitech HD Webcam C310(UVC);C:\Windows\system32\DRIVERS\lvuvc64.sys --> C:\Windows\system32\DRIVERS\lvuvc64.sys [?]
R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\system32\DRIVERS\Rt64win7.sys --> C:\Windows\system32\DRIVERS\Rt64win7.sys [?]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 gupdate;Google Update Service (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-6-10 136176]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-7-3 160944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-4-7 250568]
S3 gupdatem;Google Update Service (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-6-10 136176]
S3 IntcDAud;Intel® Display Audio;C:\Windows\system32\DRIVERS\IntcDAud.sys --> C:\Windows\system32\DRIVERS\IntcDAud.sys [?]
S3 lvpopf64;Logitech POP Suppression Filter;C:\Windows\system32\DRIVERS\lvpopf64.sys --> C:\Windows\system32\DRIVERS\lvpopf64.sys [?]
S3 LVPr2M64;Logitech LVPr2M64 Driver;C:\Windows\system32\DRIVERS\LVPr2M64.sys --> C:\Windows\system32\DRIVERS\LVPr2M64.sys [?]
S3 MozillaMaintenance;Mozilla Maintenance Service;C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-7-16 114144]
S3 NisDrv;Microsoft Network Inspection System;C:\Windows\system32\DRIVERS\NisDrvWFP.sys --> C:\Windows\system32\DRIVERS\NisDrvWFP.sys [?]
S3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\NisSrv.exe [2012-3-26 291696]
S3 StorSvc;Storage Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 20992]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\system32\Drivers\usbaapl64.sys --> C:\Windows\system32\Drivers\usbaapl64.sys [?]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]
.
=============== Created Last 30 ================
.
2012-09-12 03:15:31 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Roaming\Malwarebytes
2012-09-12 03:15:14 -------- d-----w- C:\ProgramData\Malwarebytes
2012-09-12 03:15:13 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys
2012-09-12 03:15:13 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2012-09-12 02:49:13 9310152 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{F6D7114D-1656-4E03-BFF0-76BD88D8B13E}\mpengine.dll
2012-09-10 11:38:44 9310152 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2012-09-10 07:59:13 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{D51EF46C-E93E-4844-806B-D9CBB4573970}
2012-09-09 19:58:52 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{D9D19895-4A88-4588-BF60-15BD7A4F3EE1}
2012-09-09 14:45:49 99152 ----a-w- C:\Windows\System32\drivers\NEOFLTR_719_20893.SYS
2012-09-09 14:45:34 -------- d-----w- C:\Program Files (x86)\Juniper Networks
2012-09-09 14:45:14 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Roaming\Juniper Networks
2012-09-09 07:58:30 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{3B520729-BE07-4B4D-ABA2-212E2B676D7A}
2012-09-08 19:58:08 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{E94404BF-FB67-4208-8F45-FDAF26516F93}
2012-09-08 07:57:47 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{3DDE01F0-546A-473C-9142-6999E46ABB7D}
2012-09-07 19:57:25 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{05A08596-2AEA-43F4-BC02-0D89D1835947}
2012-09-07 07:57:03 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{EF8A0B73-8DF2-46FD-878F-73D79FE98E2F}
2012-09-06 19:56:41 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{DB1080FE-7016-4835-8BA9-902A0FB1DF8A}
2012-09-06 07:56:19 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{3C0D129C-AC10-4437-9415-8C6966FA8568}
2012-09-05 19:55:57 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{292B8B8B-D3EA-4B74-8E04-0229F02F59CE}
2012-09-05 05:43:03 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{E838988C-D786-403A-B89B-E21B79DDCAED}
2012-09-04 13:36:11 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{90503244-A66A-4734-A1ED-866687359F0C}
2012-09-04 01:35:49 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{98261DF7-F777-4DAD-AD67-441C91F55D01}
2012-09-03 16:01:35 73696 ----a-w- C:\Program Files (x86)\Mozilla Firefox\breakpadinjector.dll
2012-09-03 05:04:39 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{3594F60C-8090-41CE-9BCF-A1BE736735FA}
2012-09-02 05:13:52 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{BEE82693-6137-4708-8B51-0C0369F4BF73}
2012-09-01 16:51:10 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{84CE7C70-236C-4BB2-8490-ED68000A52F1}
2012-09-01 04:30:41 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{E5A3C18A-0E61-4AB1-BC1D-3319BF2FAC61}
2012-08-31 08:57:28 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{9A362518-5EB7-414D-A4DC-B7AAADA2B3B1}
2012-08-30 20:56:54 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{45065369-B078-498B-8F43-C2AAF5E62BC0}
2012-08-30 08:56:20 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{5DDFAA30-30C7-4EFF-A8DF-E07D0EEADEAC}
2012-08-29 20:55:46 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{4385665A-EA04-453B-9F0F-9363461C04B1}
2012-08-29 08:55:12 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{75955BA2-F4B2-4752-A292-786CA0E9CD3D}
2012-08-28 20:54:38 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{60758661-EC4A-4CED-8BB1-1D3A6E119D8B}
2012-08-28 05:49:43 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{16D84B7C-104A-4EC0-96BC-75EDAD5D8403}
2012-08-27 17:49:09 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{2AD54EEE-AE72-49B9-A5F5-09DE4E04BCBD}
2012-08-27 05:48:58 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{856B2202-2B20-4A8A-B7F1-F50D47742184}
2012-08-26 12:30:00 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{9DB52C86-A4F1-42C8-A7EE-677084142936}
2012-08-26 00:29:38 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{AED34714-5C60-45D1-8C62-0915BF200430}
2012-08-25 12:29:04 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{F9CDA25F-CC0B-41BE-A70C-94521580D2A9}
2012-08-25 00:28:30 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{7BBFEF83-5985-49D8-8511-44761DCCE785}
2012-08-24 12:28:09 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{D81E12B5-76A8-46A7-A897-F7D7B0CE8542}
2012-08-24 00:27:35 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{237D2701-9FDA-45A9-BEFC-0A000AC59A33}
2012-08-23 12:27:01 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{1406F356-C42C-43AA-A4AD-EAC4FCEC5ACB}
2012-08-16 18:44:30 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{AE106A08-9087-441D-9046-325DE49EEF9B}
2012-08-16 18:44:08 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{500BEE44-9A41-4AB9-8FF8-58B24181E417}
2012-08-16 06:43:45 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{8925CC57-DF03-4A77-829C-5EBCDCC9299D}
2012-08-16 06:43:24 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{4D28C929-7912-44EC-870F-B924CAEE1D77}
2012-08-15 18:43:13 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{6445BCB1-9C28-42ED-A8EE-9D3B384CE3D3}
2012-08-15 18:42:52 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{5AFC439F-81D1-493B-B253-6301BEB5C6B8}
2012-08-15 06:42:41 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{EDDBF543-85E7-419E-9EC5-52C712BF5A6F}
2012-08-15 06:42:20 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{B39C68A1-9899-4661-9535-88086CADBAB3}
2012-08-15 02:16:55 -------- d-----w- C:\Program Files (x86)\MSECache
2012-08-14 18:42:09 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{3B2D11FE-481A-4C53-A7F0-045230C801F7}
2012-08-14 18:41:48 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{18511257-EAE5-4C01-9D68-1301C6FC044F}
2012-08-14 06:41:37 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{8C8B97FC-476D-465C-BA86-1624416A1BBC}
2012-08-14 06:41:16 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{0756A0C1-AF81-46E5-9C0A-8993B1BABD3D}
2012-08-13 18:41:05 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{C5DCCB3C-D62E-46C2-ABB8-E1B4DBCBDA13}
2012-08-13 18:40:44 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{3B0FFCA9-95BF-4DB9-81E6-EC49B342C849}
2012-08-13 06:40:34 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{4024B2C4-BF72-46B3-B3F6-D6D5DB9DE5BC}
2012-08-13 06:40:13 -------- d-----w- C:\Users\MCLAUGHLIN\AppData\Local\{F85E7BA1-B698-4F52-B6C9-27FD2AB2B0DB}
.
==================== Find3M ====================
.
2012-08-31 11:45:03 73416 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2012-08-31 11:45:03 696520 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2012-08-29 00:24:56 477168 ----a-w- C:\Windows\SysWow64\npdeployJava1.dll
2012-08-29 00:24:53 473072 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2012-07-18 18:15:06 3148800 ----a-w- C:\Windows\System32\win32k.sys
2012-07-04 22:13:27 59392 ----a-w- C:\Windows\System32\browcli.dll
2012-07-04 22:13:27 136704 ----a-w- C:\Windows\System32\browser.dll
2012-07-04 21:14:34 41984 ----a-w- C:\Windows\SysWow64\browcli.dll
2012-06-29 03:56:34 2312704 ----a-w- C:\Windows\System32\jscript9.dll
2012-06-29 03:49:11 1392128 ----a-w- C:\Windows\System32\wininet.dll
2012-06-29 03:48:07 1494528 ----a-w- C:\Windows\System32\inetcpl.cpl
2012-06-29 03:43:49 173056 ----a-w- C:\Windows\System32\ieUnatt.exe
2012-06-29 03:39:48 2382848 ----a-w- C:\Windows\System32\mshtml.tlb
2012-06-29 00:16:58 1800704 ----a-w- C:\Windows\SysWow64\jscript9.dll
2012-06-29 00:09:01 1129472 ----a-w- C:\Windows\SysWow64\wininet.dll
2012-06-29 00:08:59 1427968 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2012-06-29 00:04:43 142848 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2012-06-29 00:00:45 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb
.
============= FINISH: 0:10:50.71 ===============

Results of screen317's Security Check version 0.99.50
Windows 7 Service Pack 1 x64 (UAC is enabled)
Internet Explorer 9
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
Microsoft Security Essentials
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
Malwarebytes Anti-Malware version 1.65.0.1400
Java™ 6 Update 35
Java version out of Date!
Adobe Flash Player 11.3.300.271 Flash Player out of Date!
Adobe Reader 9 Adobe Reader out of Date!
Mozilla Firefox (15.0)
Google Chrome 21.0.1180.83
Google Chrome 21.0.1180.89
````````Process Check: objlist.exe by Laurent````````
Microsoft Security Essentials MSMpEng.exe
Microsoft Security Essentials msseces.exe
Malwarebytes Anti-Malware mbamservice.exe
Malwarebytes Anti-Malware mbamgui.exe
Malwarebytes Anti-Malware mbam.exe
Malwarebytes' Anti-Malware mbamscheduler.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: 0%
````````````````````End of Log``````````````````````

#2 cnm

cnm

    Mother Lion of SWI

  • Retired Staff
  • PipPipPipPipPip
  • 25,317 posts

Posted 12 September 2012 - 02:13 PM

Hello Alien300x.

Please delete any old copy of TDSSKiller that you may have (right-click on it => "Delete")

Please download tdsskiller.exe and save it to your Desktop. Go here for information.

  • Double-click on TDSSKiller.exe to run the application.
  • Click Change Parameters. Check "Detect TDLFS file system"
  • Click on the Start Scan button and wait for the scan and disinfection process to be over.
  • If an infected file is detected, the default action will be Cure, click on Continue
  • If a suspicious file is detected, the default action will be Skip, click on Continue
  • If you are asked to reboot the computer to complete the process, click on the Reboot Now button. A report will be automatically saved at the root of the System drive ((usually C:\) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt" (for example, C:\TDSSKiller.2.2.0_20.12.2009_15.31.43_log.txt). Please copy and paste the contents of that file in your next reply.
  • If no reboot is required, click on Report. A log file will appear. Please copy and paste the contents of that file in your next reply.

Microsoft MVP Windows Security 2005-2006
How camest thou in this pickle? -- William Shakespeare:(1564-1616)
The various helper groups here
UNITE

#3 Alien300x

Alien300x

    Member

  • Full Member
  • Pip
  • 88 posts

Posted 12 September 2012 - 04:12 PM

18:06:10.0822 4004 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
18:06:11.0180 4004 ============================================================
18:06:11.0180 4004 Current date / time: 2012/09/12 18:06:11.0180
18:06:11.0180 4004 SystemInfo:
18:06:11.0180 4004
18:06:11.0180 4004 OS Version: 6.1.7601 ServicePack: 1.0
18:06:11.0180 4004 Product type: Workstation
18:06:11.0180 4004 ComputerName: MCLAUGHLIN-PC
18:06:11.0180 4004 UserName: MCLAUGHLIN
18:06:11.0180 4004 Windows directory: C:\Windows
18:06:11.0180 4004 System windows directory: C:\Windows
18:06:11.0180 4004 Running under WOW64
18:06:11.0180 4004 Processor architecture: Intel x64
18:06:11.0180 4004 Number of processors: 4
18:06:11.0180 4004 Page size: 0x1000
18:06:11.0180 4004 Boot type: Normal boot
18:06:11.0180 4004 ============================================================
18:06:12.0319 4004 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:06:12.0335 4004 ============================================================
18:06:12.0335 4004 \Device\Harddisk0\DR0:
18:06:12.0335 4004 MBR partitions:
18:06:12.0335 4004 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
18:06:12.0335 4004 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x746D3800
18:06:12.0335 4004 ============================================================
18:06:12.0366 4004 C: <-> \Device\Harddisk0\DR0\Partition2
18:06:12.0366 4004 ============================================================
18:06:12.0366 4004 Initialize success
18:06:12.0366 4004 ============================================================
18:06:30.0821 4304 ============================================================
18:06:30.0821 4304 Scan started
18:06:30.0821 4304 Mode: Manual; TDLFS;
18:06:30.0821 4304 ============================================================
18:06:30.0946 4304 ================ Scan system memory ========================
18:06:30.0946 4304 System memory - ok
18:06:30.0946 4304 ================ Scan services =============================
18:06:31.0039 4304 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
18:06:31.0039 4304 1394ohci - ok
18:06:31.0070 4304 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
18:06:31.0086 4304 ACPI - ok
18:06:31.0102 4304 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
18:06:31.0102 4304 AcpiPmi - ok
18:06:31.0195 4304 [ B2B64AF436FACCFA854DD397027C5360 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:06:31.0195 4304 AdobeFlashPlayerUpdateSvc - ok
18:06:31.0226 4304 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
18:06:31.0242 4304 adp94xx - ok
18:06:31.0258 4304 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
18:06:31.0273 4304 adpahci - ok
18:06:31.0289 4304 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
18:06:31.0289 4304 adpu320 - ok
18:06:31.0320 4304 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
18:06:31.0320 4304 AeLookupSvc - ok
18:06:31.0367 4304 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
18:06:31.0367 4304 AFD - ok
18:06:31.0398 4304 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
18:06:31.0398 4304 agp440 - ok
18:06:31.0414 4304 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
18:06:31.0414 4304 ALG - ok
18:06:31.0445 4304 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
18:06:31.0445 4304 aliide - ok
18:06:31.0476 4304 [ A359974EAAC83A435497C52F62A2E590 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
18:06:31.0476 4304 AMD External Events Utility - ok
18:06:31.0492 4304 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
18:06:31.0492 4304 amdide - ok
18:06:31.0492 4304 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
18:06:31.0507 4304 AmdK8 - ok
18:06:31.0663 4304 [ 60216B0E704584DE6D5A9F59E9C34C47 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
18:06:31.0757 4304 amdkmdag - ok
18:06:31.0788 4304 [ 6B4E9261B613B047A9A145F328889968 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
18:06:31.0788 4304 amdkmdap - ok
18:06:31.0804 4304 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
18:06:31.0804 4304 AmdPPM - ok
18:06:31.0835 4304 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
18:06:31.0835 4304 amdsata - ok
18:06:31.0850 4304 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
18:06:31.0850 4304 amdsbs - ok
18:06:31.0866 4304 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
18:06:31.0866 4304 amdxata - ok
18:06:31.0913 4304 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
18:06:31.0913 4304 AppID - ok
18:06:31.0928 4304 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
18:06:31.0928 4304 AppIDSvc - ok
18:06:31.0960 4304 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
18:06:31.0960 4304 Appinfo - ok
18:06:32.0053 4304 [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
18:06:32.0053 4304 Apple Mobile Device - ok
18:06:32.0084 4304 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
18:06:32.0084 4304 AppMgmt - ok
18:06:32.0131 4304 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
18:06:32.0131 4304 arc - ok
18:06:32.0147 4304 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
18:06:32.0147 4304 arcsas - ok
18:06:32.0147 4304 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
18:06:32.0147 4304 AsyncMac - ok
18:06:32.0162 4304 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
18:06:32.0162 4304 atapi - ok
18:06:32.0194 4304 [ CBE5F8B3E54198F5DFE403A55A95DE08 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
18:06:32.0209 4304 AtiHDAudioService - ok
18:06:32.0240 4304 [ 2D648572BA9A610952FCAFBA1E119C2D ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
18:06:32.0240 4304 AtiHdmiService - ok
18:06:32.0381 4304 [ 60216B0E704584DE6D5A9F59E9C34C47 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
18:06:32.0412 4304 atikmdag - ok
18:06:32.0443 4304 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:06:32.0459 4304 AudioEndpointBuilder - ok
18:06:32.0459 4304 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
18:06:32.0459 4304 AudioSrv - ok
18:06:32.0490 4304 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
18:06:32.0490 4304 AxInstSV - ok
18:06:32.0521 4304 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
18:06:32.0537 4304 b06bdrv - ok
18:06:32.0552 4304 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
18:06:32.0552 4304 b57nd60a - ok
18:06:32.0568 4304 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
18:06:32.0568 4304 BDESVC - ok
18:06:32.0584 4304 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
18:06:32.0584 4304 Beep - ok
18:06:32.0646 4304 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
18:06:32.0646 4304 BFE - ok
18:06:32.0677 4304 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
18:06:32.0693 4304 BITS - ok
18:06:32.0708 4304 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
18:06:32.0708 4304 blbdrive - ok
18:06:32.0771 4304 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
18:06:32.0771 4304 Bonjour Service - ok
18:06:32.0818 4304 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
18:06:32.0818 4304 bowser - ok
18:06:32.0818 4304 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:06:32.0818 4304 BrFiltLo - ok
18:06:32.0833 4304 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:06:32.0833 4304 BrFiltUp - ok
18:06:32.0864 4304 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
18:06:32.0864 4304 Browser - ok
18:06:32.0880 4304 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
18:06:32.0896 4304 Brserid - ok
18:06:32.0896 4304 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
18:06:32.0896 4304 BrSerWdm - ok
18:06:32.0896 4304 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
18:06:32.0896 4304 BrUsbMdm - ok
18:06:32.0911 4304 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
18:06:32.0911 4304 BrUsbSer - ok
18:06:32.0911 4304 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
18:06:32.0927 4304 BTHMODEM - ok
18:06:32.0942 4304 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
18:06:32.0942 4304 bthserv - ok
18:06:32.0958 4304 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
18:06:32.0958 4304 cdfs - ok
18:06:32.0989 4304 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
18:06:32.0989 4304 cdrom - ok
18:06:33.0005 4304 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
18:06:33.0005 4304 CertPropSvc - ok
18:06:33.0020 4304 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
18:06:33.0020 4304 circlass - ok
18:06:33.0036 4304 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
18:06:33.0052 4304 CLFS - ok
18:06:33.0083 4304 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:06:33.0083 4304 clr_optimization_v2.0.50727_32 - ok
18:06:33.0130 4304 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:06:33.0130 4304 clr_optimization_v2.0.50727_64 - ok
18:06:33.0176 4304 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:06:33.0176 4304 clr_optimization_v4.0.30319_32 - ok
18:06:33.0208 4304 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:06:33.0208 4304 clr_optimization_v4.0.30319_64 - ok
18:06:33.0223 4304 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
18:06:33.0223 4304 CmBatt - ok
18:06:33.0239 4304 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
18:06:33.0239 4304 cmdide - ok
18:06:33.0254 4304 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
18:06:33.0270 4304 CNG - ok
18:06:33.0270 4304 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
18:06:33.0270 4304 Compbatt - ok
18:06:33.0301 4304 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
18:06:33.0301 4304 CompositeBus - ok
18:06:33.0301 4304 COMSysApp - ok
18:06:33.0317 4304 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
18:06:33.0317 4304 crcdisk - ok
18:06:33.0364 4304 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
18:06:33.0379 4304 CryptSvc - ok
18:06:33.0395 4304 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
18:06:33.0395 4304 CSC - ok
18:06:33.0426 4304 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
18:06:33.0426 4304 CscService - ok
18:06:33.0473 4304 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
18:06:33.0488 4304 DcomLaunch - ok
18:06:33.0504 4304 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
18:06:33.0520 4304 defragsvc - ok
18:06:33.0551 4304 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
18:06:33.0551 4304 DfsC - ok
18:06:33.0582 4304 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
18:06:33.0582 4304 Dhcp - ok
18:06:33.0598 4304 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
18:06:33.0598 4304 discache - ok
18:06:33.0613 4304 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
18:06:33.0613 4304 Disk - ok
18:06:33.0644 4304 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
18:06:33.0660 4304 Dnscache - ok
18:06:33.0691 4304 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
18:06:33.0691 4304 dot3svc - ok
18:06:33.0722 4304 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
18:06:33.0722 4304 DPS - ok
18:06:33.0754 4304 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
18:06:33.0754 4304 drmkaud - ok
18:06:33.0800 4304 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
18:06:33.0800 4304 DXGKrnl - ok
18:06:33.0832 4304 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
18:06:33.0832 4304 EapHost - ok
18:06:33.0894 4304 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
18:06:33.0941 4304 ebdrv - ok
18:06:33.0972 4304 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
18:06:33.0972 4304 EFS - ok
18:06:34.0003 4304 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
18:06:34.0019 4304 ehRecvr - ok
18:06:34.0034 4304 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
18:06:34.0034 4304 ehSched - ok
18:06:34.0066 4304 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
18:06:34.0066 4304 elxstor - ok
18:06:34.0081 4304 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
18:06:34.0081 4304 ErrDev - ok
18:06:34.0112 4304 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
18:06:34.0112 4304 EventSystem - ok
18:06:34.0112 4304 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
18:06:34.0128 4304 exfat - ok
18:06:34.0144 4304 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
18:06:34.0144 4304 fastfat - ok
18:06:34.0175 4304 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
18:06:34.0190 4304 Fax - ok
18:06:34.0206 4304 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
18:06:34.0206 4304 fdc - ok
18:06:34.0222 4304 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
18:06:34.0222 4304 fdPHost - ok
18:06:34.0237 4304 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
18:06:34.0237 4304 FDResPub - ok
18:06:34.0253 4304 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
18:06:34.0253 4304 FileInfo - ok
18:06:34.0253 4304 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
18:06:34.0253 4304 Filetrace - ok
18:06:34.0268 4304 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
18:06:34.0268 4304 flpydisk - ok
18:06:34.0284 4304 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
18:06:34.0284 4304 FltMgr - ok
18:06:34.0315 4304 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
18:06:34.0331 4304 FontCache - ok
18:06:34.0378 4304 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:06:34.0378 4304 FontCache3.0.0.0 - ok
18:06:34.0393 4304 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
18:06:34.0393 4304 FsDepends - ok
18:06:34.0409 4304 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
18:06:34.0424 4304 Fs_Rec - ok
18:06:34.0440 4304 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
18:06:34.0440 4304 fvevol - ok
18:06:34.0456 4304 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
18:06:34.0456 4304 gagp30kx - ok
18:06:34.0487 4304 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
18:06:34.0487 4304 GEARAspiWDM - ok
18:06:34.0518 4304 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
18:06:34.0518 4304 gpsvc - ok
18:06:34.0612 4304 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:06:34.0612 4304 gupdate - ok
18:06:34.0627 4304 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:06:34.0627 4304 gupdatem - ok
18:06:34.0674 4304 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
18:06:34.0674 4304 gusvc - ok
18:06:34.0690 4304 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
18:06:34.0690 4304 hcw85cir - ok
18:06:34.0721 4304 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:06:34.0736 4304 HdAudAddService - ok
18:06:34.0752 4304 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
18:06:34.0752 4304 HDAudBus - ok
18:06:34.0783 4304 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
18:06:34.0783 4304 HECIx64 - ok
18:06:34.0799 4304 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
18:06:34.0799 4304 HidBatt - ok
18:06:34.0814 4304 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
18:06:34.0814 4304 HidBth - ok
18:06:34.0814 4304 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
18:06:34.0814 4304 HidIr - ok
18:06:34.0830 4304 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
18:06:34.0846 4304 hidserv - ok
18:06:34.0892 4304 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
18:06:34.0892 4304 HidUsb - ok
18:06:34.0908 4304 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
18:06:34.0924 4304 hkmsvc - ok
18:06:34.0955 4304 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
18:06:34.0955 4304 HomeGroupListener - ok
18:06:34.0986 4304 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
18:06:35.0002 4304 HomeGroupProvider - ok
18:06:35.0033 4304 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
18:06:35.0033 4304 HpSAMD - ok
18:06:35.0064 4304 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
18:06:35.0080 4304 HTTP - ok
18:06:35.0080 4304 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
18:06:35.0080 4304 hwpolicy - ok
18:06:35.0111 4304 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
18:06:35.0126 4304 i8042prt - ok
18:06:35.0189 4304 [ F7CE9BE72EDAC499B713ECA6DAE5D26F ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
18:06:35.0189 4304 iaStor - ok
18:06:35.0251 4304 [ B25F192EA1F84A316EB7C19EFCCCF33D ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
18:06:35.0251 4304 IAStorDataMgrSvc - ok
18:06:35.0282 4304 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
18:06:35.0282 4304 iaStorV - ok
18:06:35.0329 4304 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:06:35.0329 4304 idsvc - ok
18:06:35.0485 4304 [ 31569A2E836C12014148BF7342716946 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
18:06:35.0579 4304 igfx - ok
18:06:35.0594 4304 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
18:06:35.0594 4304 iirsp - ok
18:06:35.0626 4304 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
18:06:35.0626 4304 IKEEXT - ok
18:06:35.0672 4304 [ F5872A11EB4F6DB170D636CD4E53CA9F ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
18:06:35.0672 4304 IntcAzAudAddService - ok
18:06:35.0704 4304 [ 03C74719D48056A1078F3A51CEB76BAA ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
18:06:35.0704 4304 IntcDAud - ok
18:06:35.0719 4304 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
18:06:35.0719 4304 intelide - ok
18:06:35.0735 4304 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
18:06:35.0735 4304 intelppm - ok
18:06:35.0766 4304 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
18:06:35.0766 4304 IPBusEnum - ok
18:06:35.0797 4304 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:06:35.0797 4304 IpFilterDriver - ok
18:06:35.0828 4304 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
18:06:35.0828 4304 iphlpsvc - ok
18:06:35.0860 4304 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
18:06:35.0860 4304 IPMIDRV - ok
18:06:35.0875 4304 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
18:06:35.0875 4304 IPNAT - ok
18:06:35.0938 4304 [ 50D6CCC6FF5561F9F56946B3E6164FB8 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
18:06:35.0938 4304 iPod Service - ok
18:06:35.0953 4304 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
18:06:35.0969 4304 IRENUM - ok
18:06:36.0000 4304 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
18:06:36.0000 4304 isapnp - ok
18:06:36.0031 4304 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
18:06:36.0031 4304 iScsiPrt - ok
18:06:36.0047 4304 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
18:06:36.0047 4304 kbdclass - ok
18:06:36.0062 4304 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
18:06:36.0062 4304 kbdhid - ok
18:06:36.0078 4304 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
18:06:36.0078 4304 KeyIso - ok
18:06:36.0109 4304 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
18:06:36.0109 4304 KSecDD - ok
18:06:36.0140 4304 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
18:06:36.0140 4304 KSecPkg - ok
18:06:36.0156 4304 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
18:06:36.0156 4304 ksthunk - ok
18:06:36.0172 4304 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
18:06:36.0187 4304 KtmRm - ok
18:06:36.0203 4304 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
18:06:36.0203 4304 LanmanServer - ok
18:06:36.0234 4304 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:06:36.0234 4304 LanmanWorkstation - ok
18:06:36.0312 4304 [ 7447F069CE66633DAFA0B2DEEE7AF5BA ] LBTServ C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
18:06:36.0312 4304 LBTServ - ok
18:06:36.0343 4304 [ 0A7D6ED578D85F0C35353424EE3F5245 ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys
18:06:36.0343 4304 LHidFilt - ok
18:06:36.0359 4304 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
18:06:36.0359 4304 lltdio - ok
18:06:36.0390 4304 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
18:06:36.0390 4304 lltdsvc - ok
18:06:36.0421 4304 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
18:06:36.0421 4304 lmhosts - ok
18:06:36.0421 4304 [ 6542E2E6DB58118FBB1B82A68CE3AFF9 ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys
18:06:36.0421 4304 LMouFilt - ok
18:06:36.0484 4304 [ CE97B09D1BA41802A6FAE3BBED3CC37B ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
18:06:36.0484 4304 LMS - ok
18:06:36.0515 4304 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
18:06:36.0515 4304 LSI_FC - ok
18:06:36.0515 4304 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
18:06:36.0515 4304 LSI_SAS - ok
18:06:36.0530 4304 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:06:36.0530 4304 LSI_SAS2 - ok
18:06:36.0562 4304 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:06:36.0562 4304 LSI_SCSI - ok
18:06:36.0577 4304 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
18:06:36.0577 4304 luafv - ok
18:06:36.0593 4304 [ DA3494DF01C62D821911ED91CE5E1642 ] LUsbFilt C:\Windows\system32\Drivers\LUsbFilt.Sys
18:06:36.0593 4304 LUsbFilt - ok
18:06:36.0640 4304 [ C586CC39820B6E7FE3657FED8329D300 ] lvpopf64 C:\Windows\system32\DRIVERS\lvpopf64.sys
18:06:36.0640 4304 lvpopf64 - ok
18:06:36.0671 4304 [ B3944D06EB4B64D57BD7E5FE89415F58 ] LVPr2M64 C:\Windows\system32\DRIVERS\LVPr2M64.sys
18:06:36.0671 4304 LVPr2M64 - ok
18:06:36.0686 4304 [ B3944D06EB4B64D57BD7E5FE89415F58 ] LVPr2Mon C:\Windows\system32\DRIVERS\LVPr2M64.sys
18:06:36.0686 4304 LVPr2Mon - ok
18:06:36.0718 4304 [ 0C85B2B6FB74B36A251792D45E0EF860 ] LVRS64 C:\Windows\system32\DRIVERS\lvrs64.sys
18:06:36.0718 4304 LVRS64 - ok
18:06:36.0811 4304 [ FF3A488924B0032B1A9CA6948C1FA9E8 ] LVUVC64 C:\Windows\system32\DRIVERS\lvuvc64.sys
18:06:36.0842 4304 LVUVC64 - ok
18:06:36.0874 4304 [ B9FC4CCE5758B816F27DD4D1EED11841 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
18:06:36.0874 4304 MBAMProtector - ok
18:06:36.0920 4304 [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
18:06:36.0936 4304 MBAMScheduler - ok
18:06:36.0952 4304 [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
18:06:36.0967 4304 MBAMService - ok
18:06:36.0998 4304 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
18:06:36.0998 4304 Mcx2Svc - ok
18:06:37.0014 4304 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
18:06:37.0014 4304 megasas - ok
18:06:37.0030 4304 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
18:06:37.0030 4304 MegaSR - ok
18:06:37.0061 4304 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
18:06:37.0061 4304 MMCSS - ok
18:06:37.0076 4304 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
18:06:37.0076 4304 Modem - ok
18:06:37.0123 4304 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
18:06:37.0123 4304 monitor - ok
18:06:37.0139 4304 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
18:06:37.0139 4304 mouclass - ok
18:06:37.0154 4304 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
18:06:37.0154 4304 mouhid - ok
18:06:37.0186 4304 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
18:06:37.0186 4304 mountmgr - ok
18:06:37.0232 4304 [ E8D79312373F254DC13F3965BDB3D521 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
18:06:37.0232 4304 MozillaMaintenance - ok
18:06:37.0279 4304 [ 94C66EDEDCDB6A126880472F9A704D8E ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
18:06:37.0279 4304 MpFilter - ok
18:06:37.0310 4304 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
18:06:37.0310 4304 mpio - ok
18:06:37.0326 4304 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
18:06:37.0326 4304 mpsdrv - ok
18:06:37.0357 4304 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
18:06:37.0373 4304 MpsSvc - ok
18:06:37.0388 4304 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
18:06:37.0404 4304 MRxDAV - ok
18:06:37.0435 4304 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
18:06:37.0435 4304 mrxsmb - ok
18:06:37.0466 4304 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:06:37.0466 4304 mrxsmb10 - ok
18:06:37.0482 4304 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:06:37.0482 4304 mrxsmb20 - ok
18:06:37.0498 4304 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
18:06:37.0498 4304 msahci - ok
18:06:37.0513 4304 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
18:06:37.0513 4304 msdsm - ok
18:06:37.0529 4304 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
18:06:37.0529 4304 MSDTC - ok
18:06:37.0560 4304 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
18:06:37.0560 4304 Msfs - ok
18:06:37.0560 4304 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
18:06:37.0576 4304 mshidkmdf - ok
18:06:37.0591 4304 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
18:06:37.0591 4304 msisadrv - ok
18:06:37.0622 4304 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
18:06:37.0622 4304 MSiSCSI - ok
18:06:37.0638 4304 msiserver - ok
18:06:37.0654 4304 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
18:06:37.0654 4304 MSKSSRV - ok
18:06:37.0700 4304 [ 59FAAF2C83C8169EA20F9E335E418907 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
18:06:37.0700 4304 MsMpSvc - ok
18:06:37.0716 4304 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
18:06:37.0716 4304 MSPCLOCK - ok
18:06:37.0732 4304 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
18:06:37.0732 4304 MSPQM - ok
18:06:37.0763 4304 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
18:06:37.0763 4304 MsRPC - ok
18:06:37.0778 4304 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
18:06:37.0778 4304 mssmbios - ok
18:06:37.0794 4304 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
18:06:37.0794 4304 MSTEE - ok
18:06:37.0810 4304 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
18:06:37.0810 4304 MTConfig - ok
18:06:37.0841 4304 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
18:06:37.0841 4304 Mup - ok
18:06:37.0856 4304 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
18:06:37.0872 4304 napagent - ok
18:06:37.0888 4304 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
18:06:37.0888 4304 NativeWifiP - ok
18:06:37.0934 4304 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
18:06:37.0950 4304 NDIS - ok
18:06:37.0966 4304 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
18:06:37.0966 4304 NdisCap - ok
18:06:37.0966 4304 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
18:06:37.0966 4304 NdisTapi - ok
18:06:38.0012 4304 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
18:06:38.0012 4304 Ndisuio - ok
18:06:38.0044 4304 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
18:06:38.0044 4304 NdisWan - ok
18:06:38.0075 4304 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
18:06:38.0075 4304 NDProxy - ok
18:06:38.0106 4304 [ 54315426DC99D7A42AD498121397FDE5 ] NEOFLTR_719_20893 C:\Windows\system32\Drivers\NEOFLTR_719_20893.SYS
18:06:38.0137 4304 NEOFLTR_719_20893 - ok
18:06:38.0168 4304 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
18:06:38.0168 4304 NetBIOS - ok
18:06:38.0184 4304 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
18:06:38.0184 4304 NetBT - ok
18:06:38.0184 4304 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
18:06:38.0184 4304 Netlogon - ok
18:06:38.0215 4304 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
18:06:38.0231 4304 Netman - ok
18:06:38.0246 4304 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
18:06:38.0246 4304 netprofm - ok
18:06:38.0262 4304 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:06:38.0262 4304 NetTcpPortSharing - ok
18:06:38.0278 4304 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
18:06:38.0278 4304 nfrd960 - ok
18:06:38.0324 4304 [ 91B4E0273D2F6C24EF845F2B41311289 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
18:06:38.0324 4304 NisDrv - ok
18:06:38.0356 4304 [ 10A43829A9E606AF3EEF25A1C1665923 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
18:06:38.0356 4304 NisSrv - ok
18:06:38.0387 4304 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
18:06:38.0402 4304 NlaSvc - ok
18:06:38.0418 4304 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
18:06:38.0418 4304 Npfs - ok
18:06:38.0434 4304 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
18:06:38.0449 4304 nsi - ok
18:06:38.0449 4304 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
18:06:38.0449 4304 nsiproxy - ok
18:06:38.0512 4304 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
18:06:38.0527 4304 Ntfs - ok
18:06:38.0543 4304 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
18:06:38.0543 4304 Null - ok
18:06:38.0558 4304 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
18:06:38.0574 4304 nvraid - ok
18:06:38.0574 4304 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
18:06:38.0590 4304 nvstor - ok
18:06:38.0605 4304 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
18:06:38.0605 4304 nv_agp - ok
18:06:38.0621 4304 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
18:06:38.0621 4304 ohci1394 - ok
18:06:38.0652 4304 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:06:38.0652 4304 ose - ok
18:06:38.0668 4304 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
18:06:38.0683 4304 p2pimsvc - ok
18:06:38.0699 4304 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
18:06:38.0699 4304 p2psvc - ok
18:06:38.0730 4304 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
18:06:38.0730 4304 Parport - ok
18:06:38.0761 4304 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
18:06:38.0761 4304 partmgr - ok
18:06:38.0777 4304 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
18:06:38.0777 4304 PcaSvc - ok
18:06:38.0808 4304 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
18:06:38.0808 4304 pci - ok
18:06:38.0824 4304 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
18:06:38.0824 4304 pciide - ok
18:06:38.0839 4304 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
18:06:38.0839 4304 pcmcia - ok
18:06:38.0855 4304 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
18:06:38.0855 4304 pcw - ok
18:06:38.0870 4304 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
18:06:38.0886 4304 PEAUTH - ok
18:06:38.0917 4304 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
18:06:38.0933 4304 PeerDistSvc - ok
18:06:38.0980 4304 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
18:06:38.0980 4304 PerfHost - ok
18:06:39.0042 4304 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
18:06:39.0058 4304 pla - ok
18:06:39.0089 4304 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
18:06:39.0104 4304 PlugPlay - ok
18:06:39.0104 4304 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
18:06:39.0120 4304 PNRPAutoReg - ok
18:06:39.0120 4304 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
18:06:39.0120 4304 PNRPsvc - ok
18:06:39.0136 4304 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
18:06:39.0151 4304 PolicyAgent - ok
18:06:39.0167 4304 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
18:06:39.0182 4304 Power - ok
18:06:39.0198 4304 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
18:06:39.0198 4304 PptpMiniport - ok
18:06:39.0198 4304 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
18:06:39.0198 4304 Processor - ok
18:06:39.0229 4304 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
18:06:39.0229 4304 ProfSvc - ok
18:06:39.0245 4304 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
18:06:39.0245 4304 ProtectedStorage - ok
18:06:39.0276 4304 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
18:06:39.0292 4304 Psched - ok
18:06:39.0323 4304 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
18:06:39.0338 4304 ql2300 - ok
18:06:39.0354 4304 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
18:06:39.0354 4304 ql40xx - ok
18:06:39.0385 4304 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
18:06:39.0385 4304 QWAVE - ok
18:06:39.0385 4304 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
18:06:39.0385 4304 QWAVEdrv - ok
18:06:39.0401 4304 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
18:06:39.0401 4304 RasAcd - ok
18:06:39.0416 4304 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
18:06:39.0416 4304 RasAgileVpn - ok
18:06:39.0432 4304 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
18:06:39.0432 4304 RasAuto - ok
18:06:39.0448 4304 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
18:06:39.0448 4304 Rasl2tp - ok
18:06:39.0479 4304 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
18:06:39.0479 4304 RasMan - ok
18:06:39.0510 4304 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
18:06:39.0510 4304 RasPppoe - ok
18:06:39.0510 4304 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
18:06:39.0526 4304 RasSstp - ok
18:06:39.0541 4304 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
18:06:39.0541 4304 rdbss - ok
18:06:39.0557 4304 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
18:06:39.0557 4304 rdpbus - ok
18:06:39.0572 4304 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
18:06:39.0572 4304 RDPCDD - ok
18:06:39.0604 4304 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
18:06:39.0604 4304 RDPDR - ok
18:06:39.0619 4304 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
18:06:39.0619 4304 RDPENCDD - ok
18:06:39.0635 4304 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
18:06:39.0635 4304 RDPREFMP - ok
18:06:39.0650 4304 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
18:06:39.0666 4304 RDPWD - ok
18:06:39.0682 4304 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
18:06:39.0682 4304 rdyboost - ok
18:06:39.0697 4304 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
18:06:39.0713 4304 RemoteAccess - ok
18:06:39.0728 4304 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
18:06:39.0728 4304 RemoteRegistry - ok
18:06:39.0806 4304 [ 8CFCA7E2FD4B57C2BEF929C1C1A4C56E ] RichVideo C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
18:06:39.0806 4304 RichVideo - ok
18:06:39.0838 4304 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
18:06:39.0838 4304 RpcEptMapper - ok
18:06:39.0869 4304 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
18:06:39.0869 4304 RpcLocator - ok
18:06:39.0900 4304 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
18:06:39.0900 4304 RpcSs - ok
18:06:39.0916 4304 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
18:06:39.0916 4304 rspndr - ok
18:06:39.0947 4304 [ EE082E06A82FF630351D1E0EBBD3D8D0 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
18:06:39.0962 4304 RTL8167 - ok
18:06:39.0994 4304 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
18:06:39.0994 4304 s3cap - ok
18:06:39.0994 4304 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
18:06:39.0994 4304 SamSs - ok
18:06:40.0009 4304 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
18:06:40.0009 4304 sbp2port - ok
18:06:40.0040 4304 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
18:06:40.0040 4304 SCardSvr - ok
18:06:40.0073 4304 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
18:06:40.0073 4304 scfilter - ok
18:06:40.0119 4304 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
18:06:40.0135 4304 Schedule - ok
18:06:40.0166 4304 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
18:06:40.0166 4304 SCPolicySvc - ok
18:06:40.0166 4304 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
18:06:40.0182 4304 SDRSVC - ok
18:06:40.0182 4304 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
18:06:40.0182 4304 secdrv - ok
18:06:40.0213 4304 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
18:06:40.0213 4304 seclogon - ok
18:06:40.0229 4304 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
18:06:40.0244 4304 SENS - ok
18:06:40.0244 4304 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
18:06:40.0260 4304 SensrSvc - ok
18:06:40.0275 4304 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
18:06:40.0275 4304 Serenum - ok
18:06:40.0275 4304 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
18:06:40.0275 4304 Serial - ok
18:06:40.0307 4304 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
18:06:40.0307 4304 sermouse - ok
18:06:40.0338 4304 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
18:06:40.0338 4304 SessionEnv - ok
18:06:40.0369 4304 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
18:06:40.0385 4304 sffdisk - ok
18:06:40.0385 4304 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
18:06:40.0385 4304 sffp_mmc - ok
18:06:40.0400 4304 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
18:06:40.0400 4304 sffp_sd - ok
18:06:40.0416 4304 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
18:06:40.0416 4304 sfloppy - ok
18:06:40.0447 4304 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
18:06:40.0494 4304 SharedAccess - ok
18:06:40.0525 4304 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:06:40.0541 4304 ShellHWDetection - ok
18:06:40.0556 4304 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:06:40.0572 4304 SiSRaid2 - ok
18:06:40.0587 4304 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
18:06:40.0587 4304 SiSRaid4 - ok
18:06:40.0650 4304 [ EA396139541706B4B433641D62EA53CE ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
18:06:40.0650 4304 SkypeUpdate - ok
18:06:40.0681 4304 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
18:06:40.0681 4304 Smb - ok
18:06:40.0728 4304 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
18:06:40.0728 4304 SNMPTRAP - ok
18:06:40.0759 4304 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
18:06:40.0759 4304 spldr - ok
18:06:40.0806 4304 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
18:06:40.0821 4304 Spooler - ok
18:06:40.0899 4304 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
18:06:40.0946 4304 sppsvc - ok
18:06:40.0962 4304 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
18:06:40.0962 4304 sppuinotify - ok
18:06:41.0009 4304 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
18:06:41.0009 4304 srv - ok
18:06:41.0040 4304 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
18:06:41.0055 4304 srv2 - ok
18:06:41.0071 4304 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
18:06:41.0071 4304 srvnet - ok
18:06:41.0103 4304 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
18:06:41.0103 4304 SSDPSRV - ok
18:06:41.0119 4304 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
18:06:41.0119 4304 SstpSvc - ok
18:06:41.0134 4304 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
18:06:41.0134 4304 stexstor - ok
18:06:41.0166 4304 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
18:06:41.0181 4304 stisvc - ok
18:06:41.0197 4304 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
18:06:41.0197 4304 storflt - ok
18:06:41.0212 4304 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\Windows\system32\storsvc.dll
18:06:41.0212 4304 StorSvc - ok
18:06:41.0228 4304 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
18:06:41.0228 4304 storvsc - ok
18:06:41.0259 4304 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
18:06:41.0259 4304 swenum - ok
18:06:41.0306 4304 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
18:06:41.0322 4304 swprv - ok
18:06:41.0509 4304 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
18:06:41.0540 4304 SysMain - ok
18:06:41.0618 4304 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:06:41.0618 4304 TabletInputService - ok
18:06:41.0649 4304 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
18:06:41.0649 4304 TapiSrv - ok
18:06:41.0680 4304 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
18:06:41.0680 4304 TBS - ok
18:06:41.0758 4304 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
18:06:41.0774 4304 Tcpip - ok
18:06:41.0805 4304 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
18:06:41.0821 4304 TCPIP6 - ok
18:06:41.0852 4304 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
18:06:41.0852 4304 tcpipreg - ok
18:06:41.0868 4304 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
18:06:41.0868 4304 TDPIPE - ok
18:06:41.0883 4304 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
18:06:41.0883 4304 TDTCP - ok
18:06:41.0914 4304 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
18:06:41.0914 4304 tdx - ok
18:06:42.0039 4304 [ FE559178000347D2CA1B7847F0379749 ] TeamViewer6 C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe
18:06:42.0055 4304 TeamViewer6 - ok
18:06:42.0258 4304 [ A4D2CE94B028EF1E437CF4AC3D8FF26C ] TeamViewer7 C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
18:06:42.0273 4304 TeamViewer7 - ok
18:06:42.0289 4304 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
18:06:42.0289 4304 TermDD - ok
18:06:42.0382 4304 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
18:06:42.0398 4304 TermService - ok
18:06:42.0429 4304 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
18:06:42.0429 4304 Themes - ok
18:06:42.0445 4304 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
18:06:42.0445 4304 THREADORDER - ok
18:06:42.0476 4304 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
18:06:42.0476 4304 TrkWks - ok
18:06:42.0538 4304 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:06:42.0538 4304 TrustedInstaller - ok
18:06:42.0570 4304 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
18:06:42.0585 4304 tssecsrv - ok
18:06:42.0601 4304 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
18:06:42.0601 4304 TsUsbFlt - ok
18:06:42.0648 4304 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
18:06:42.0663 4304 tunnel - ok
18:06:42.0694 4304 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows

#4 Alien300x

Alien300x

    Member

  • Full Member
  • Pip
  • 88 posts

Posted 12 September 2012 - 04:12 PM

18:06:10.0822 4004 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
18:06:11.0180 4004 ============================================================
18:06:11.0180 4004 Current date / time: 2012/09/12 18:06:11.0180
18:06:11.0180 4004 SystemInfo:
18:06:11.0180 4004
18:06:11.0180 4004 OS Version: 6.1.7601 ServicePack: 1.0
18:06:11.0180 4004 Product type: Workstation
18:06:11.0180 4004 ComputerName: MCLAUGHLIN-PC
18:06:11.0180 4004 UserName: MCLAUGHLIN
18:06:11.0180 4004 Windows directory: C:\Windows
18:06:11.0180 4004 System windows directory: C:\Windows
18:06:11.0180 4004 Running under WOW64
18:06:11.0180 4004 Processor architecture: Intel x64
18:06:11.0180 4004 Number of processors: 4
18:06:11.0180 4004 Page size: 0x1000
18:06:11.0180 4004 Boot type: Normal boot
18:06:11.0180 4004 ============================================================
18:06:12.0319 4004 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:06:12.0335 4004 ============================================================
18:06:12.0335 4004 \Device\Harddisk0\DR0:
18:06:12.0335 4004 MBR partitions:
18:06:12.0335 4004 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
18:06:12.0335 4004 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x746D3800
18:06:12.0335 4004 ============================================================
18:06:12.0366 4004 C: <-> \Device\Harddisk0\DR0\Partition2
18:06:12.0366 4004 ============================================================
18:06:12.0366 4004 Initialize success
18:06:12.0366 4004 ============================================================
18:06:30.0821 4304 ============================================================
18:06:30.0821 4304 Scan started
18:06:30.0821 4304 Mode: Manual; TDLFS;
18:06:30.0821 4304 ============================================================
18:06:30.0946 4304 ================ Scan system memory ========================
18:06:30.0946 4304 System memory - ok
18:06:30.0946 4304 ================ Scan services =============================
18:06:31.0039 4304 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
18:06:31.0039 4304 1394ohci - ok
18:06:31.0070 4304 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
18:06:31.0086 4304 ACPI - ok
18:06:31.0102 4304 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
18:06:31.0102 4304 AcpiPmi - ok
18:06:31.0195 4304 [ B2B64AF436FACCFA854DD397027C5360 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:06:31.0195 4304 AdobeFlashPlayerUpdateSvc - ok
18:06:31.0226 4304 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
18:06:31.0242 4304 adp94xx - ok
18:06:31.0258 4304 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
18:06:31.0273 4304 adpahci - ok
18:06:31.0289 4304 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
18:06:31.0289 4304 adpu320 - ok
18:06:31.0320 4304 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
18:06:31.0320 4304 AeLookupSvc - ok
18:06:31.0367 4304 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
18:06:31.0367 4304 AFD - ok
18:06:31.0398 4304 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
18:06:31.0398 4304 agp440 - ok
18:06:31.0414 4304 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
18:06:31.0414 4304 ALG - ok
18:06:31.0445 4304 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
18:06:31.0445 4304 aliide - ok
18:06:31.0476 4304 [ A359974EAAC83A435497C52F62A2E590 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
18:06:31.0476 4304 AMD External Events Utility - ok
18:06:31.0492 4304 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
18:06:31.0492 4304 amdide - ok
18:06:31.0492 4304 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
18:06:31.0507 4304 AmdK8 - ok
18:06:31.0663 4304 [ 60216B0E704584DE6D5A9F59E9C34C47 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
18:06:31.0757 4304 amdkmdag - ok
18:06:31.0788 4304 [ 6B4E9261B613B047A9A145F328889968 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
18:06:31.0788 4304 amdkmdap - ok
18:06:31.0804 4304 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
18:06:31.0804 4304 AmdPPM - ok
18:06:31.0835 4304 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
18:06:31.0835 4304 amdsata - ok
18:06:31.0850 4304 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
18:06:31.0850 4304 amdsbs - ok
18:06:31.0866 4304 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
18:06:31.0866 4304 amdxata - ok
18:06:31.0913 4304 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
18:06:31.0913 4304 AppID - ok
18:06:31.0928 4304 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
18:06:31.0928 4304 AppIDSvc - ok
18:06:31.0960 4304 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
18:06:31.0960 4304 Appinfo - ok
18:06:32.0053 4304 [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
18:06:32.0053 4304 Apple Mobile Device - ok
18:06:32.0084 4304 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
18:06:32.0084 4304 AppMgmt - ok
18:06:32.0131 4304 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
18:06:32.0131 4304 arc - ok
18:06:32.0147 4304 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
18:06:32.0147 4304 arcsas - ok
18:06:32.0147 4304 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
18:06:32.0147 4304 AsyncMac - ok
18:06:32.0162 4304 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
18:06:32.0162 4304 atapi - ok
18:06:32.0194 4304 [ CBE5F8B3E54198F5DFE403A55A95DE08 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
18:06:32.0209 4304 AtiHDAudioService - ok
18:06:32.0240 4304 [ 2D648572BA9A610952FCAFBA1E119C2D ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
18:06:32.0240 4304 AtiHdmiService - ok
18:06:32.0381 4304 [ 60216B0E704584DE6D5A9F59E9C34C47 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
18:06:32.0412 4304 atikmdag - ok
18:06:32.0443 4304 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:06:32.0459 4304 AudioEndpointBuilder - ok
18:06:32.0459 4304 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
18:06:32.0459 4304 AudioSrv - ok
18:06:32.0490 4304 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
18:06:32.0490 4304 AxInstSV - ok
18:06:32.0521 4304 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
18:06:32.0537 4304 b06bdrv - ok
18:06:32.0552 4304 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
18:06:32.0552 4304 b57nd60a - ok
18:06:32.0568 4304 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
18:06:32.0568 4304 BDESVC - ok
18:06:32.0584 4304 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
18:06:32.0584 4304 Beep - ok
18:06:32.0646 4304 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
18:06:32.0646 4304 BFE - ok
18:06:32.0677 4304 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
18:06:32.0693 4304 BITS - ok
18:06:32.0708 4304 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
18:06:32.0708 4304 blbdrive - ok
18:06:32.0771 4304 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
18:06:32.0771 4304 Bonjour Service - ok
18:06:32.0818 4304 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
18:06:32.0818 4304 bowser - ok
18:06:32.0818 4304 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:06:32.0818 4304 BrFiltLo - ok
18:06:32.0833 4304 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:06:32.0833 4304 BrFiltUp - ok
18:06:32.0864 4304 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
18:06:32.0864 4304 Browser - ok
18:06:32.0880 4304 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
18:06:32.0896 4304 Brserid - ok
18:06:32.0896 4304 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
18:06:32.0896 4304 BrSerWdm - ok
18:06:32.0896 4304 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
18:06:32.0896 4304 BrUsbMdm - ok
18:06:32.0911 4304 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
18:06:32.0911 4304 BrUsbSer - ok
18:06:32.0911 4304 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
18:06:32.0927 4304 BTHMODEM - ok
18:06:32.0942 4304 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
18:06:32.0942 4304 bthserv - ok
18:06:32.0958 4304 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
18:06:32.0958 4304 cdfs - ok
18:06:32.0989 4304 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
18:06:32.0989 4304 cdrom - ok
18:06:33.0005 4304 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
18:06:33.0005 4304 CertPropSvc - ok
18:06:33.0020 4304 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
18:06:33.0020 4304 circlass - ok
18:06:33.0036 4304 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
18:06:33.0052 4304 CLFS - ok
18:06:33.0083 4304 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:06:33.0083 4304 clr_optimization_v2.0.50727_32 - ok
18:06:33.0130 4304 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:06:33.0130 4304 clr_optimization_v2.0.50727_64 - ok
18:06:33.0176 4304 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:06:33.0176 4304 clr_optimization_v4.0.30319_32 - ok
18:06:33.0208 4304 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:06:33.0208 4304 clr_optimization_v4.0.30319_64 - ok
18:06:33.0223 4304 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
18:06:33.0223 4304 CmBatt - ok
18:06:33.0239 4304 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
18:06:33.0239 4304 cmdide - ok
18:06:33.0254 4304 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
18:06:33.0270 4304 CNG - ok
18:06:33.0270 4304 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
18:06:33.0270 4304 Compbatt - ok
18:06:33.0301 4304 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
18:06:33.0301 4304 CompositeBus - ok
18:06:33.0301 4304 COMSysApp - ok
18:06:33.0317 4304 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
18:06:33.0317 4304 crcdisk - ok
18:06:33.0364 4304 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
18:06:33.0379 4304 CryptSvc - ok
18:06:33.0395 4304 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
18:06:33.0395 4304 CSC - ok
18:06:33.0426 4304 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
18:06:33.0426 4304 CscService - ok
18:06:33.0473 4304 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
18:06:33.0488 4304 DcomLaunch - ok
18:06:33.0504 4304 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
18:06:33.0520 4304 defragsvc - ok
18:06:33.0551 4304 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
18:06:33.0551 4304 DfsC - ok
18:06:33.0582 4304 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
18:06:33.0582 4304 Dhcp - ok
18:06:33.0598 4304 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
18:06:33.0598 4304 discache - ok
18:06:33.0613 4304 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
18:06:33.0613 4304 Disk - ok
18:06:33.0644 4304 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
18:06:33.0660 4304 Dnscache - ok
18:06:33.0691 4304 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
18:06:33.0691 4304 dot3svc - ok
18:06:33.0722 4304 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
18:06:33.0722 4304 DPS - ok
18:06:33.0754 4304 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
18:06:33.0754 4304 drmkaud - ok
18:06:33.0800 4304 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
18:06:33.0800 4304 DXGKrnl - ok
18:06:33.0832 4304 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
18:06:33.0832 4304 EapHost - ok
18:06:33.0894 4304 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
18:06:33.0941 4304 ebdrv - ok
18:06:33.0972 4304 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
18:06:33.0972 4304 EFS - ok
18:06:34.0003 4304 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
18:06:34.0019 4304 ehRecvr - ok
18:06:34.0034 4304 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
18:06:34.0034 4304 ehSched - ok
18:06:34.0066 4304 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
18:06:34.0066 4304 elxstor - ok
18:06:34.0081 4304 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
18:06:34.0081 4304 ErrDev - ok
18:06:34.0112 4304 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
18:06:34.0112 4304 EventSystem - ok
18:06:34.0112 4304 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
18:06:34.0128 4304 exfat - ok
18:06:34.0144 4304 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
18:06:34.0144 4304 fastfat - ok
18:06:34.0175 4304 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
18:06:34.0190 4304 Fax - ok
18:06:34.0206 4304 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
18:06:34.0206 4304 fdc - ok
18:06:34.0222 4304 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
18:06:34.0222 4304 fdPHost - ok
18:06:34.0237 4304 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
18:06:34.0237 4304 FDResPub - ok
18:06:34.0253 4304 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
18:06:34.0253 4304 FileInfo - ok
18:06:34.0253 4304 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
18:06:34.0253 4304 Filetrace - ok
18:06:34.0268 4304 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
18:06:34.0268 4304 flpydisk - ok
18:06:34.0284 4304 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
18:06:34.0284 4304 FltMgr - ok
18:06:34.0315 4304 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
18:06:34.0331 4304 FontCache - ok
18:06:34.0378 4304 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:06:34.0378 4304 FontCache3.0.0.0 - ok
18:06:34.0393 4304 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
18:06:34.0393 4304 FsDepends - ok
18:06:34.0409 4304 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
18:06:34.0424 4304 Fs_Rec - ok
18:06:34.0440 4304 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
18:06:34.0440 4304 fvevol - ok
18:06:34.0456 4304 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
18:06:34.0456 4304 gagp30kx - ok
18:06:34.0487 4304 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
18:06:34.0487 4304 GEARAspiWDM - ok
18:06:34.0518 4304 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
18:06:34.0518 4304 gpsvc - ok
18:06:34.0612 4304 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:06:34.0612 4304 gupdate - ok
18:06:34.0627 4304 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:06:34.0627 4304 gupdatem - ok
18:06:34.0674 4304 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
18:06:34.0674 4304 gusvc - ok
18:06:34.0690 4304 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
18:06:34.0690 4304 hcw85cir - ok
18:06:34.0721 4304 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:06:34.0736 4304 HdAudAddService - ok
18:06:34.0752 4304 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
18:06:34.0752 4304 HDAudBus - ok
18:06:34.0783 4304 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
18:06:34.0783 4304 HECIx64 - ok
18:06:34.0799 4304 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
18:06:34.0799 4304 HidBatt - ok
18:06:34.0814 4304 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
18:06:34.0814 4304 HidBth - ok
18:06:34.0814 4304 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
18:06:34.0814 4304 HidIr - ok
18:06:34.0830 4304 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
18:06:34.0846 4304 hidserv - ok
18:06:34.0892 4304 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
18:06:34.0892 4304 HidUsb - ok
18:06:34.0908 4304 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
18:06:34.0924 4304 hkmsvc - ok
18:06:34.0955 4304 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
18:06:34.0955 4304 HomeGroupListener - ok
18:06:34.0986 4304 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
18:06:35.0002 4304 HomeGroupProvider - ok
18:06:35.0033 4304 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
18:06:35.0033 4304 HpSAMD - ok
18:06:35.0064 4304 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
18:06:35.0080 4304 HTTP - ok
18:06:35.0080 4304 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
18:06:35.0080 4304 hwpolicy - ok
18:06:35.0111 4304 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
18:06:35.0126 4304 i8042prt - ok
18:06:35.0189 4304 [ F7CE9BE72EDAC499B713ECA6DAE5D26F ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
18:06:35.0189 4304 iaStor - ok
18:06:35.0251 4304 [ B25F192EA1F84A316EB7C19EFCCCF33D ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
18:06:35.0251 4304 IAStorDataMgrSvc - ok
18:06:35.0282 4304 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
18:06:35.0282 4304 iaStorV - ok
18:06:35.0329 4304 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:06:35.0329 4304 idsvc - ok
18:06:35.0485 4304 [ 31569A2E836C12014148BF7342716946 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
18:06:35.0579 4304 igfx - ok
18:06:35.0594 4304 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
18:06:35.0594 4304 iirsp - ok
18:06:35.0626 4304 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
18:06:35.0626 4304 IKEEXT - ok
18:06:35.0672 4304 [ F5872A11EB4F6DB170D636CD4E53CA9F ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
18:06:35.0672 4304 IntcAzAudAddService - ok
18:06:35.0704 4304 [ 03C74719D48056A1078F3A51CEB76BAA ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
18:06:35.0704 4304 IntcDAud - ok
18:06:35.0719 4304 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
18:06:35.0719 4304 intelide - ok
18:06:35.0735 4304 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
18:06:35.0735 4304 intelppm - ok
18:06:35.0766 4304 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
18:06:35.0766 4304 IPBusEnum - ok
18:06:35.0797 4304 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:06:35.0797 4304 IpFilterDriver - ok
18:06:35.0828 4304 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
18:06:35.0828 4304 iphlpsvc - ok
18:06:35.0860 4304 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
18:06:35.0860 4304 IPMIDRV - ok
18:06:35.0875 4304 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
18:06:35.0875 4304 IPNAT - ok
18:06:35.0938 4304 [ 50D6CCC6FF5561F9F56946B3E6164FB8 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
18:06:35.0938 4304 iPod Service - ok
18:06:35.0953 4304 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
18:06:35.0969 4304 IRENUM - ok
18:06:36.0000 4304 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
18:06:36.0000 4304 isapnp - ok
18:06:36.0031 4304 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
18:06:36.0031 4304 iScsiPrt - ok
18:06:36.0047 4304 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
18:06:36.0047 4304 kbdclass - ok
18:06:36.0062 4304 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
18:06:36.0062 4304 kbdhid - ok
18:06:36.0078 4304 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
18:06:36.0078 4304 KeyIso - ok
18:06:36.0109 4304 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
18:06:36.0109 4304 KSecDD - ok
18:06:36.0140 4304 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
18:06:36.0140 4304 KSecPkg - ok
18:06:36.0156 4304 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
18:06:36.0156 4304 ksthunk - ok
18:06:36.0172 4304 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
18:06:36.0187 4304 KtmRm - ok
18:06:36.0203 4304 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
18:06:36.0203 4304 LanmanServer - ok
18:06:36.0234 4304 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:06:36.0234 4304 LanmanWorkstation - ok
18:06:36.0312 4304 [ 7447F069CE66633DAFA0B2DEEE7AF5BA ] LBTServ C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
18:06:36.0312 4304 LBTServ - ok
18:06:36.0343 4304 [ 0A7D6ED578D85F0C35353424EE3F5245 ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys
18:06:36.0343 4304 LHidFilt - ok
18:06:36.0359 4304 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
18:06:36.0359 4304 lltdio - ok
18:06:36.0390 4304 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
18:06:36.0390 4304 lltdsvc - ok
18:06:36.0421 4304 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
18:06:36.0421 4304 lmhosts - ok
18:06:36.0421 4304 [ 6542E2E6DB58118FBB1B82A68CE3AFF9 ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys
18:06:36.0421 4304 LMouFilt - ok
18:06:36.0484 4304 [ CE97B09D1BA41802A6FAE3BBED3CC37B ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
18:06:36.0484 4304 LMS - ok
18:06:36.0515 4304 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
18:06:36.0515 4304 LSI_FC - ok
18:06:36.0515 4304 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
18:06:36.0515 4304 LSI_SAS - ok
18:06:36.0530 4304 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:06:36.0530 4304 LSI_SAS2 - ok
18:06:36.0562 4304 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:06:36.0562 4304 LSI_SCSI - ok
18:06:36.0577 4304 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
18:06:36.0577 4304 luafv - ok
18:06:36.0593 4304 [ DA3494DF01C62D821911ED91CE5E1642 ] LUsbFilt C:\Windows\system32\Drivers\LUsbFilt.Sys
18:06:36.0593 4304 LUsbFilt - ok
18:06:36.0640 4304 [ C586CC39820B6E7FE3657FED8329D300 ] lvpopf64 C:\Windows\system32\DRIVERS\lvpopf64.sys
18:06:36.0640 4304 lvpopf64 - ok
18:06:36.0671 4304 [ B3944D06EB4B64D57BD7E5FE89415F58 ] LVPr2M64 C:\Windows\system32\DRIVERS\LVPr2M64.sys
18:06:36.0671 4304 LVPr2M64 - ok
18:06:36.0686 4304 [ B3944D06EB4B64D57BD7E5FE89415F58 ] LVPr2Mon C:\Windows\system32\DRIVERS\LVPr2M64.sys
18:06:36.0686 4304 LVPr2Mon - ok
18:06:36.0718 4304 [ 0C85B2B6FB74B36A251792D45E0EF860 ] LVRS64 C:\Windows\system32\DRIVERS\lvrs64.sys
18:06:36.0718 4304 LVRS64 - ok
18:06:36.0811 4304 [ FF3A488924B0032B1A9CA6948C1FA9E8 ] LVUVC64 C:\Windows\system32\DRIVERS\lvuvc64.sys
18:06:36.0842 4304 LVUVC64 - ok
18:06:36.0874 4304 [ B9FC4CCE5758B816F27DD4D1EED11841 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
18:06:36.0874 4304 MBAMProtector - ok
18:06:36.0920 4304 [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
18:06:36.0936 4304 MBAMScheduler - ok
18:06:36.0952 4304 [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
18:06:36.0967 4304 MBAMService - ok
18:06:36.0998 4304 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
18:06:36.0998 4304 Mcx2Svc - ok
18:06:37.0014 4304 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
18:06:37.0014 4304 megasas - ok
18:06:37.0030 4304 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
18:06:37.0030 4304 MegaSR - ok
18:06:37.0061 4304 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
18:06:37.0061 4304 MMCSS - ok
18:06:37.0076 4304 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
18:06:37.0076 4304 Modem - ok
18:06:37.0123 4304 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
18:06:37.0123 4304 monitor - ok
18:06:37.0139 4304 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
18:06:37.0139 4304 mouclass - ok
18:06:37.0154 4304 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
18:06:37.0154 4304 mouhid - ok
18:06:37.0186 4304 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
18:06:37.0186 4304 mountmgr - ok
18:06:37.0232 4304 [ E8D79312373F254DC13F3965BDB3D521 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
18:06:37.0232 4304 MozillaMaintenance - ok
18:06:37.0279 4304 [ 94C66EDEDCDB6A126880472F9A704D8E ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
18:06:37.0279 4304 MpFilter - ok
18:06:37.0310 4304 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
18:06:37.0310 4304 mpio - ok
18:06:37.0326 4304 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
18:06:37.0326 4304 mpsdrv - ok
18:06:37.0357 4304 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
18:06:37.0373 4304 MpsSvc - ok
18:06:37.0388 4304 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
18:06:37.0404 4304 MRxDAV - ok
18:06:37.0435 4304 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
18:06:37.0435 4304 mrxsmb - ok
18:06:37.0466 4304 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:06:37.0466 4304 mrxsmb10 - ok
18:06:37.0482 4304 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:06:37.0482 4304 mrxsmb20 - ok
18:06:37.0498 4304 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
18:06:37.0498 4304 msahci - ok
18:06:37.0513 4304 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
18:06:37.0513 4304 msdsm - ok
18:06:37.0529 4304 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
18:06:37.0529 4304 MSDTC - ok
18:06:37.0560 4304 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
18:06:37.0560 4304 Msfs - ok
18:06:37.0560 4304 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
18:06:37.0576 4304 mshidkmdf - ok
18:06:37.0591 4304 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
18:06:37.0591 4304 msisadrv - ok
18:06:37.0622 4304 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
18:06:37.0622 4304 MSiSCSI - ok
18:06:37.0638 4304 msiserver - ok
18:06:37.0654 4304 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
18:06:37.0654 4304 MSKSSRV - ok
18:06:37.0700 4304 [ 59FAAF2C83C8169EA20F9E335E418907 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
18:06:37.0700 4304 MsMpSvc - ok
18:06:37.0716 4304 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
18:06:37.0716 4304 MSPCLOCK - ok
18:06:37.0732 4304 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
18:06:37.0732 4304 MSPQM - ok
18:06:37.0763 4304 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
18:06:37.0763 4304 MsRPC - ok
18:06:37.0778 4304 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
18:06:37.0778 4304 mssmbios - ok
18:06:37.0794 4304 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
18:06:37.0794 4304 MSTEE - ok
18:06:37.0810 4304 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
18:06:37.0810 4304 MTConfig - ok
18:06:37.0841 4304 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
18:06:37.0841 4304 Mup - ok
18:06:37.0856 4304 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
18:06:37.0872 4304 napagent - ok
18:06:37.0888 4304 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
18:06:37.0888 4304 NativeWifiP - ok
18:06:37.0934 4304 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
18:06:37.0950 4304 NDIS - ok
18:06:37.0966 4304 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
18:06:37.0966 4304 NdisCap - ok
18:06:37.0966 4304 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
18:06:37.0966 4304 NdisTapi - ok
18:06:38.0012 4304 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
18:06:38.0012 4304 Ndisuio - ok
18:06:38.0044 4304 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
18:06:38.0044 4304 NdisWan - ok
18:06:38.0075 4304 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
18:06:38.0075 4304 NDProxy - ok
18:06:38.0106 4304 [ 54315426DC99D7A42AD498121397FDE5 ] NEOFLTR_719_20893 C:\Windows\system32\Drivers\NEOFLTR_719_20893.SYS
18:06:38.0137 4304 NEOFLTR_719_20893 - ok
18:06:38.0168 4304 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
18:06:38.0168 4304 NetBIOS - ok
18:06:38.0184 4304 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
18:06:38.0184 4304 NetBT - ok
18:06:38.0184 4304 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
18:06:38.0184 4304 Netlogon - ok
18:06:38.0215 4304 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
18:06:38.0231 4304 Netman - ok
18:06:38.0246 4304 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
18:06:38.0246 4304 netprofm - ok
18:06:38.0262 4304 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:06:38.0262 4304 NetTcpPortSharing - ok
18:06:38.0278 4304 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
18:06:38.0278 4304 nfrd960 - ok
18:06:38.0324 4304 [ 91B4E0273D2F6C24EF845F2B41311289 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
18:06:38.0324 4304 NisDrv - ok
18:06:38.0356 4304 [ 10A43829A9E606AF3EEF25A1C1665923 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
18:06:38.0356 4304 NisSrv - ok
18:06:38.0387 4304 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
18:06:38.0402 4304 NlaSvc - ok
18:06:38.0418 4304 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
18:06:38.0418 4304 Npfs - ok
18:06:38.0434 4304 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
18:06:38.0449 4304 nsi - ok
18:06:38.0449 4304 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
18:06:38.0449 4304 nsiproxy - ok
18:06:38.0512 4304 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
18:06:38.0527 4304 Ntfs - ok
18:06:38.0543 4304 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
18:06:38.0543 4304 Null - ok
18:06:38.0558 4304 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
18:06:38.0574 4304 nvraid - ok
18:06:38.0574 4304 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
18:06:38.0590 4304 nvstor - ok
18:06:38.0605 4304 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
18:06:38.0605 4304 nv_agp - ok
18:06:38.0621 4304 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
18:06:38.0621 4304 ohci1394 - ok
18:06:38.0652 4304 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:06:38.0652 4304 ose - ok
18:06:38.0668 4304 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
18:06:38.0683 4304 p2pimsvc - ok
18:06:38.0699 4304 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
18:06:38.0699 4304 p2psvc - ok
18:06:38.0730 4304 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
18:06:38.0730 4304 Parport - ok
18:06:38.0761 4304 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
18:06:38.0761 4304 partmgr - ok
18:06:38.0777 4304 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
18:06:38.0777 4304 PcaSvc - ok
18:06:38.0808 4304 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
18:06:38.0808 4304 pci - ok
18:06:38.0824 4304 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
18:06:38.0824 4304 pciide - ok
18:06:38.0839 4304 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
18:06:38.0839 4304 pcmcia - ok
18:06:38.0855 4304 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
18:06:38.0855 4304 pcw - ok
18:06:38.0870 4304 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
18:06:38.0886 4304 PEAUTH - ok
18:06:38.0917 4304 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
18:06:38.0933 4304 PeerDistSvc - ok
18:06:38.0980 4304 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
18:06:38.0980 4304 PerfHost - ok
18:06:39.0042 4304 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
18:06:39.0058 4304 pla - ok
18:06:39.0089 4304 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
18:06:39.0104 4304 PlugPlay - ok
18:06:39.0104 4304 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
18:06:39.0120 4304 PNRPAutoReg - ok
18:06:39.0120 4304 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
18:06:39.0120 4304 PNRPsvc - ok
18:06:39.0136 4304 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
18:06:39.0151 4304 PolicyAgent - ok
18:06:39.0167 4304 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
18:06:39.0182 4304 Power - ok
18:06:39.0198 4304 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
18:06:39.0198 4304 PptpMiniport - ok
18:06:39.0198 4304 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
18:06:39.0198 4304 Processor - ok
18:06:39.0229 4304 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
18:06:39.0229 4304 ProfSvc - ok
18:06:39.0245 4304 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
18:06:39.0245 4304 ProtectedStorage - ok
18:06:39.0276 4304 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
18:06:39.0292 4304 Psched - ok
18:06:39.0323 4304 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
18:06:39.0338 4304 ql2300 - ok
18:06:39.0354 4304 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
18:06:39.0354 4304 ql40xx - ok
18:06:39.0385 4304 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
18:06:39.0385 4304 QWAVE - ok
18:06:39.0385 4304 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
18:06:39.0385 4304 QWAVEdrv - ok
18:06:39.0401 4304 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
18:06:39.0401 4304 RasAcd - ok
18:06:39.0416 4304 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
18:06:39.0416 4304 RasAgileVpn - ok
18:06:39.0432 4304 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
18:06:39.0432 4304 RasAuto - ok
18:06:39.0448 4304 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
18:06:39.0448 4304 Rasl2tp - ok
18:06:39.0479 4304 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
18:06:39.0479 4304 RasMan - ok
18:06:39.0510 4304 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
18:06:39.0510 4304 RasPppoe - ok
18:06:39.0510 4304 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
18:06:39.0526 4304 RasSstp - ok
18:06:39.0541 4304 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
18:06:39.0541 4304 rdbss - ok
18:06:39.0557 4304 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
18:06:39.0557 4304 rdpbus - ok
18:06:39.0572 4304 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
18:06:39.0572 4304 RDPCDD - ok
18:06:39.0604 4304 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
18:06:39.0604 4304 RDPDR - ok
18:06:39.0619 4304 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
18:06:39.0619 4304 RDPENCDD - ok
18:06:39.0635 4304 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
18:06:39.0635 4304 RDPREFMP - ok
18:06:39.0650 4304 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
18:06:39.0666 4304 RDPWD - ok
18:06:39.0682 4304 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
18:06:39.0682 4304 rdyboost - ok
18:06:39.0697 4304 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
18:06:39.0713 4304 RemoteAccess - ok
18:06:39.0728 4304 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
18:06:39.0728 4304 RemoteRegistry - ok
18:06:39.0806 4304 [ 8CFCA7E2FD4B57C2BEF929C1C1A4C56E ] RichVideo C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
18:06:39.0806 4304 RichVideo - ok
18:06:39.0838 4304 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
18:06:39.0838 4304 RpcEptMapper - ok
18:06:39.0869 4304 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
18:06:39.0869 4304 RpcLocator - ok
18:06:39.0900 4304 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
18:06:39.0900 4304 RpcSs - ok
18:06:39.0916 4304 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
18:06:39.0916 4304 rspndr - ok
18:06:39.0947 4304 [ EE082E06A82FF630351D1E0EBBD3D8D0 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
18:06:39.0962 4304 RTL8167 - ok
18:06:39.0994 4304 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
18:06:39.0994 4304 s3cap - ok
18:06:39.0994 4304 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
18:06:39.0994 4304 SamSs - ok
18:06:40.0009 4304 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
18:06:40.0009 4304 sbp2port - ok
18:06:40.0040 4304 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
18:06:40.0040 4304 SCardSvr - ok
18:06:40.0073 4304 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
18:06:40.0073 4304 scfilter - ok
18:06:40.0119 4304 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
18:06:40.0135 4304 Schedule - ok
18:06:40.0166 4304 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
18:06:40.0166 4304 SCPolicySvc - ok
18:06:40.0166 4304 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
18:06:40.0182 4304 SDRSVC - ok
18:06:40.0182 4304 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
18:06:40.0182 4304 secdrv - ok
18:06:40.0213 4304 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
18:06:40.0213 4304 seclogon - ok
18:06:40.0229 4304 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
18:06:40.0244 4304 SENS - ok
18:06:40.0244 4304 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
18:06:40.0260 4304 SensrSvc - ok
18:06:40.0275 4304 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
18:06:40.0275 4304 Serenum - ok
18:06:40.0275 4304 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
18:06:40.0275 4304 Serial - ok
18:06:40.0307 4304 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
18:06:40.0307 4304 sermouse - ok
18:06:40.0338 4304 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
18:06:40.0338 4304 SessionEnv - ok
18:06:40.0369 4304 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
18:06:40.0385 4304 sffdisk - ok
18:06:40.0385 4304 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
18:06:40.0385 4304 sffp_mmc - ok
18:06:40.0400 4304 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
18:06:40.0400 4304 sffp_sd - ok
18:06:40.0416 4304 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
18:06:40.0416 4304 sfloppy - ok
18:06:40.0447 4304 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
18:06:40.0494 4304 SharedAccess - ok
18:06:40.0525 4304 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:06:40.0541 4304 ShellHWDetection - ok
18:06:40.0556 4304 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:06:40.0572 4304 SiSRaid2 - ok
18:06:40.0587 4304 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
18:06:40.0587 4304 SiSRaid4 - ok
18:06:40.0650 4304 [ EA396139541706B4B433641D62EA53CE ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
18:06:40.0650 4304 SkypeUpdate - ok
18:06:40.0681 4304 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
18:06:40.0681 4304 Smb - ok
18:06:40.0728 4304 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
18:06:40.0728 4304 SNMPTRAP - ok
18:06:40.0759 4304 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
18:06:40.0759 4304 spldr - ok
18:06:40.0806 4304 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
18:06:40.0821 4304 Spooler - ok
18:06:40.0899 4304 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
18:06:40.0946 4304 sppsvc - ok
18:06:40.0962 4304 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
18:06:40.0962 4304 sppuinotify - ok
18:06:41.0009 4304 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
18:06:41.0009 4304 srv - ok
18:06:41.0040 4304 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
18:06:41.0055 4304 srv2 - ok
18:06:41.0071 4304 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
18:06:41.0071 4304 srvnet - ok
18:06:41.0103 4304 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
18:06:41.0103 4304 SSDPSRV - ok
18:06:41.0119 4304 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
18:06:41.0119 4304 SstpSvc - ok
18:06:41.0134 4304 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
18:06:41.0134 4304 stexstor - ok
18:06:41.0166 4304 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
18:06:41.0181 4304 stisvc - ok
18:06:41.0197 4304 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
18:06:41.0197 4304 storflt - ok
18:06:41.0212 4304 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\Windows\system32\storsvc.dll
18:06:41.0212 4304 StorSvc - ok
18:06:41.0228 4304 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
18:06:41.0228 4304 storvsc - ok
18:06:41.0259 4304 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
18:06:41.0259 4304 swenum - ok
18:06:41.0306 4304 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
18:06:41.0322 4304 swprv - ok
18:06:41.0509 4304 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
18:06:41.0540 4304 SysMain - ok
18:06:41.0618 4304 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:06:41.0618 4304 TabletInputService - ok
18:06:41.0649 4304 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
18:06:41.0649 4304 TapiSrv - ok
18:06:41.0680 4304 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
18:06:41.0680 4304 TBS - ok
18:06:41.0758 4304 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
18:06:41.0774 4304 Tcpip - ok
18:06:41.0805 4304 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
18:06:41.0821 4304 TCPIP6 - ok
18:06:41.0852 4304 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
18:06:41.0852 4304 tcpipreg - ok
18:06:41.0868 4304 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
18:06:41.0868 4304 TDPIPE - ok
18:06:41.0883 4304 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
18:06:41.0883 4304 TDTCP - ok
18:06:41.0914 4304 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
18:06:41.0914 4304 tdx - ok
18:06:42.0039 4304 [ FE559178000347D2CA1B7847F0379749 ] TeamViewer6 C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe
18:06:42.0055 4304 TeamViewer6 - ok
18:06:42.0258 4304 [ A4D2CE94B028EF1E437CF4AC3D8FF26C ] TeamViewer7 C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
18:06:42.0273 4304 TeamViewer7 - ok
18:06:42.0289 4304 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
18:06:42.0289 4304 TermDD - ok
18:06:42.0382 4304 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
18:06:42.0398 4304 TermService - ok
18:06:42.0429 4304 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
18:06:42.0429 4304 Themes - ok
18:06:42.0445 4304 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
18:06:42.0445 4304 THREADORDER - ok
18:06:42.0476 4304 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
18:06:42.0476 4304 TrkWks - ok
18:06:42.0538 4304 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:06:42.0538 4304 TrustedInstaller - ok
18:06:42.0570 4304 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
18:06:42.0585 4304 tssecsrv - ok
18:06:42.0601 4304 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
18:06:42.0601 4304 TsUsbFlt - ok
18:06:42.0648 4304 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
18:06:42.0663 4304 tunnel - ok
18:06:42.0694 4304 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows

#5 cnm

cnm

    Mother Lion of SWI

  • Retired Staff
  • PipPipPipPipPip
  • 25,317 posts

Posted 12 September 2012 - 05:21 PM

Good. That log is clean. I see only two things to suggest. Aside from these your PC appears to be clean and well protected:

You need to do some updates.
Please do these important security updates:

Update Adobe Reader (uncheck the option box for McAfee scan)
Update Adobe Flash Player
Updating Java:

  • Go here and download the latest version of Java:
  • Go to Start -> Control Panel -> Add or Remove Programs.
  • Search in the list for all previous installed versions of Java. (J2SE Runtime Environment.... )
    They should have this icon next to any that are there: Posted Image
    Select any found and choose Uninstall.
  • Then install the version you downloaded earlier.


You have the Ask toolbar, which is bundled with many third party applications

I strongly recommend you remove Ask Toolbar from your computer because:

  • It promotes its toolbars on sites targeted at kids.
  • It promotes its toolbars through ads that appear to be part of other companies' sites.
  • It promotes its toolbars through other companies' spyware.
  • It is Installed without any disclosure whatsoever and without any consent from the user whatsoever.
  • It Solicits installations via "deceptive door openers" that do not accurately describe the offer; failing to affirmatively show a license agreement; linking to a EULA via an off-screen link.
  • It makes confusing changes to user's browsers -- increasing Ask's revenues while taking users to pages they didn't intend to visit.

Totally uninstall Ask Toolbar, using the Revo Uninstaller.
Download and run the free version of Revo Uninstaller.
Select the Ask icon and click Uninstall.
Set it to 'Advanced' and click Scan.
Revo will do this:
Step 1. Create restore point.
Step 2. Run the official Ask uninstaller.
Step 3. When uninstaller finishes, click Next in Revo and it will search for remnants. Delete everything found (Select All, Delete All).
Reboot if asked to.
Microsoft MVP Windows Security 2005-2006
How camest thou in this pickle? -- William Shakespeare:(1564-1616)
The various helper groups here
UNITE

#6 Alien300x

Alien300x

    Member

  • Full Member
  • Pip
  • 88 posts

Posted 12 September 2012 - 10:47 PM

It's done. I didn't see any of the last part you were asking about. Any further suggestions?

#7 cnm

cnm

    Mother Lion of SWI

  • Retired Staff
  • PipPipPipPipPip
  • 25,317 posts

Posted 12 September 2012 - 10:52 PM

Nope, you're looking good.

Cleanup:
Delete the DDS files, TDSSKiller, and Security Check folder from your Desktop.

Advice for malware prevention:

Configure Windows to do automatic updates or get into the habit of checking Windows Update regularly. They usually have security updates every month. You can set Windows to notify you of Updates so that you can choose, but only do this if you believe you are able to understand which ones are needed. This is a crucial security measure.

Keep MalwareBytes Anti-Malware updated and run it whenever you suspect a problem.

The free FileHippo Update Checker makes it easy to keep all your programs up to date - run it every few weeks.

Note that there are a lot of rogue programs out there that want to scare you into giving them your money and some malware actually claims to be security programs. If you get a popup for a security program that you did not install yourself, do NOT click on it and ask for help immediately. It is very important to run an antivirus and firewall, but you can't always rely on reviews and ads for information. Ask in a security forum that you trust if you are not sure. If you are unsure and looking for anti-spyware programs, you may be able to find out if it is a rogue here:

http://www.systemloo...p?type=filename

A similar category of programs is now called "scareware." Scareware programs are active infections that will pop-up on your computer and tell you that you are infected. If you look closely, it will usually have a name that looks like it might be legitimate, but it is NOT one of the programs you installed. It tells you to click and install it right away. If you click on any part of it, including the 'X' to close it, you may actually help it infect your computer further. Keeping protection updated and running resident protection can help prevent these infections. If it happens anyway, get offline as quickly as you can. Pull the internet connection cable or shut down the computer if you have to. Contact someone to help by using another computer if possible. These programs are also sometimes called 'rogues', but they are different from the rogues mentioned above.

For much more old but still useful information, read Tony Klein's excellent article: How did I get infected in the first place

I'll keep this thread open for a day or two..
Microsoft MVP Windows Security 2005-2006
How camest thou in this pickle? -- William Shakespeare:(1564-1616)
The various helper groups here
UNITE

#8 cnm

cnm

    Mother Lion of SWI

  • Retired Staff
  • PipPipPipPipPip
  • 25,317 posts

Posted 21 September 2012 - 06:39 PM

Glad we could help. :)

If you need this topic reopened, please tell the moderating team by replying here with the address of the thread. This applies only to the original topic starter. Everyone else please begin a New Topic.
Microsoft MVP Windows Security 2005-2006
How camest thou in this pickle? -- William Shakespeare:(1564-1616)
The various helper groups here
UNITE




Member of UNITE
Support SpywareInfo Forum - click the button