http://novabench.com/
Perhaps that will tell us something.
Reformatted PC and still lag. Is it hardware or strong virus?
Started by
evolnomis
, Feb 07 2013 08:40 AM
#17
Posted 13 February 2013 - 04:51 AM
evolnomis
- Topic Starter
-
- Member
-
- 51 posts
Member
I ran this test after experiencing much lag in video and on the internet:
Verified NovaBench Score: 371
Test run on February 13, 2013
Microsoft Windows 7 Home Premium
Intel Intel Pentium B940 2.00GHz running at 2000 MHz
Intel HD Graphics Family GPU
4044 MB System RAM (Score: 142)
- RAM Speed: 9701 MB/s
CPU Tests (Score: 200)
- Floating Point Operations/Second: 49497016
- Integer Operations/Second: 117253456
- MD5 Hashes Generated/Second: 663072
Graphics Tests (Score: 20)
- 3D Frames Per Second: 72
Hardware Tests (Score: 9)
- Primary Partition Capacity: 60 GB
- Drive Write Speed: 47 MB/s
Thanks!
Verified NovaBench Score: 371
Test run on February 13, 2013
Microsoft Windows 7 Home Premium
Intel Intel Pentium B940 2.00GHz running at 2000 MHz
Intel HD Graphics Family GPU
4044 MB System RAM (Score: 142)
- RAM Speed: 9701 MB/s
CPU Tests (Score: 200)
- Floating Point Operations/Second: 49497016
- Integer Operations/Second: 117253456
- MD5 Hashes Generated/Second: 663072
Graphics Tests (Score: 20)
- 3D Frames Per Second: 72
Hardware Tests (Score: 9)
- Primary Partition Capacity: 60 GB
- Drive Write Speed: 47 MB/s
Thanks!
#18
Posted 13 February 2013 - 12:22 PM
RKinner
-
- Expert
-
- 24,625 posts
Malware Expert
Comparing it to the best with your same processor, RAM and graphics:
http://novabench.com/view/146158
Your Hard drive seems a bit slow. About half the speed of the other one. Your is a MK3265GSXN 5400 rpm 8M cache so just might not be the fastest available. (Lots of them out there run at 7200 and have 16M caches)
If you open Computer, System Properties what Number does it say after Rating? Click on the blue text and it should open to a more detailed page. Click on the Refresh Now or Re-run the Accessment. It will take a few minutes. Does the number change? Click on View or Print Detailed Performance and System Information and then select all of it and Ctrl + c then move to a reply and Ctrl + v.
You should get something like this which is from my HP all-in-one.
More details about my computer
Component Details Subscore Base score
Processor AMD E-350 Processor 3.7 3.7
Determined by lowest subscore
Memory (RAM) 4.00 GB 4.8
Graphics AMD Radeon HD 6310 Graphics 3.9
Gaming graphics 1465 MB Total available graphics memory 5.6
Primary hard disk 885GB Free (1024GB Total) 5.9
Windows 7 Professional
System
--------------------------------------------------------------------------------
Manufacturer Hewlett-Packard
Model HP 100B All-in-One PC
Total amount of system memory 4.00 GB RAM
System type 32-bit operating system
Number of processor cores 2
64-bit capable Yes
Storage
--------------------------------------------------------------------------------
Total size of hard disk(s) 1397 GB
Disk partition (C:) 885 GB Free (1024 GB Total)
Disk partition (D:) 1 GB Free (11 GB Total)
Media drive (E:) CD/DVD
Disk partition (F:) 254 GB Free (362 GB Total)
Graphics
--------------------------------------------------------------------------------
Display adapter type AMD Radeon HD 6310 Graphics
Total available graphics memory 1465 MB
Dedicated graphics memory 384 MB
Dedicated system memory 0 MB
Shared system memory 1081 MB
Display adapter driver version 8.792.0.0
Primary monitor resolution 1600x900
DirectX version DirectX 10
Network
--------------------------------------------------------------------------------
Network Adapter Realtek PCIe GBE Family Controller
Network Adapter 802.11n Wireless LAN Card
Notes
--------------------------------------------------------------------------------
The gaming graphics score is based on the primary graphics adapter. If this system has linked or multiple graphics adapters, some software applications may see additional performance benefits.
http://novabench.com/view/146158
Your Hard drive seems a bit slow. About half the speed of the other one. Your is a MK3265GSXN 5400 rpm 8M cache so just might not be the fastest available. (Lots of them out there run at 7200 and have 16M caches)
If you open Computer, System Properties what Number does it say after Rating? Click on the blue text and it should open to a more detailed page. Click on the Refresh Now or Re-run the Accessment. It will take a few minutes. Does the number change? Click on View or Print Detailed Performance and System Information and then select all of it and Ctrl + c then move to a reply and Ctrl + v.
You should get something like this which is from my HP all-in-one.
More details about my computer
Component Details Subscore Base score
Processor AMD E-350 Processor 3.7 3.7
Determined by lowest subscore
Memory (RAM) 4.00 GB 4.8
Graphics AMD Radeon HD 6310 Graphics 3.9
Gaming graphics 1465 MB Total available graphics memory 5.6
Primary hard disk 885GB Free (1024GB Total) 5.9
Windows 7 Professional
System
--------------------------------------------------------------------------------
Manufacturer Hewlett-Packard
Model HP 100B All-in-One PC
Total amount of system memory 4.00 GB RAM
System type 32-bit operating system
Number of processor cores 2
64-bit capable Yes
Storage
--------------------------------------------------------------------------------
Total size of hard disk(s) 1397 GB
Disk partition (C:) 885 GB Free (1024 GB Total)
Disk partition (D:) 1 GB Free (11 GB Total)
Media drive (E:) CD/DVD
Disk partition (F:) 254 GB Free (362 GB Total)
Graphics
--------------------------------------------------------------------------------
Display adapter type AMD Radeon HD 6310 Graphics
Total available graphics memory 1465 MB
Dedicated graphics memory 384 MB
Dedicated system memory 0 MB
Shared system memory 1081 MB
Display adapter driver version 8.792.0.0
Primary monitor resolution 1600x900
DirectX version DirectX 10
Network
--------------------------------------------------------------------------------
Network Adapter Realtek PCIe GBE Family Controller
Network Adapter 802.11n Wireless LAN Card
Notes
--------------------------------------------------------------------------------
The gaming graphics score is based on the primary graphics adapter. If this system has linked or multiple graphics adapters, some software applications may see additional performance benefits.
#19
Posted 14 February 2013 - 10:29 AM
evolnomis
- Topic Starter
-
- Member
-
- 51 posts
Member
Note: The numbers are exactly the same as the prior update which was on 1/12/13 (right after i formatted my pc)
More details about my computer
Component Details Subscore Base score
Processor Intel® Pentium® CPU B940 @ 2.00GHz 5.9 5.1
Determined by lowest subscore
Memory (RAM) 4.00 GB 7.6
Graphics Intel® HD Graphics Family 5.1
Gaming graphics 1696 MB Total available graphics memory 5.8
Primary hard disk 25GB Free (60GB Total) 5.9
Windows 7 Home Premium
System
--------------------------------------------------------------------------------
Manufacturer TOSHIBA
Model Satellite L755
Total amount of system memory 4.00 GB RAM
System type 64-bit operating system
Number of processor cores 2
Storage
--------------------------------------------------------------------------------
Total size of hard disk(s) 283 GB
Disk partition (C:) 25 GB Free (60 GB Total)
Disk partition (D:) 184 GB Free (223 GB Total)
Media drive (E:) CD/DVD
Media drive (G:) CD/DVD
Graphics
--------------------------------------------------------------------------------
Display adapter type Intel® HD Graphics Family
Total available graphics memory 1696 MB
Dedicated graphics memory 64 MB
Dedicated system memory 0 MB
Shared system memory 1632 MB
Display adapter driver version 8.15.10.2353
Primary monitor resolution 1366x768
DirectX version DirectX 10
Network
--------------------------------------------------------------------------------
Network Adapter Realtek RTL8188CE Wireless LAN 802.11n PCI-E NIC
Network Adapter Atheros AR8152/8158 PCI-E Fast Ethernet Controller (NDIS 6.20)
Notes
--------------------------------------------------------------------------------
The gaming graphics score is based on the primary graphics adapter. If this system has linked or multiple graphics adapters, some software applications may see additional performance benefits.
More details about my computer
Component Details Subscore Base score
Processor Intel® Pentium® CPU B940 @ 2.00GHz 5.9 5.1
Determined by lowest subscore
Memory (RAM) 4.00 GB 7.6
Graphics Intel® HD Graphics Family 5.1
Gaming graphics 1696 MB Total available graphics memory 5.8
Primary hard disk 25GB Free (60GB Total) 5.9
Windows 7 Home Premium
System
--------------------------------------------------------------------------------
Manufacturer TOSHIBA
Model Satellite L755
Total amount of system memory 4.00 GB RAM
System type 64-bit operating system
Number of processor cores 2
Storage
--------------------------------------------------------------------------------
Total size of hard disk(s) 283 GB
Disk partition (C:) 25 GB Free (60 GB Total)
Disk partition (D:) 184 GB Free (223 GB Total)
Media drive (E:) CD/DVD
Media drive (G:) CD/DVD
Graphics
--------------------------------------------------------------------------------
Display adapter type Intel® HD Graphics Family
Total available graphics memory 1696 MB
Dedicated graphics memory 64 MB
Dedicated system memory 0 MB
Shared system memory 1632 MB
Display adapter driver version 8.15.10.2353
Primary monitor resolution 1366x768
DirectX version DirectX 10
Network
--------------------------------------------------------------------------------
Network Adapter Realtek RTL8188CE Wireless LAN 802.11n PCI-E NIC
Network Adapter Atheros AR8152/8158 PCI-E Fast Ethernet Controller (NDIS 6.20)
Notes
--------------------------------------------------------------------------------
The gaming graphics score is based on the primary graphics adapter. If this system has linked or multiple graphics adapters, some software applications may see additional performance benefits.
#20
Posted 14 February 2013 - 06:16 PM
RKinner
-
- Expert
-
- 24,625 posts
Malware Expert
It's hard to fix it if I can't see any signs of it. Is your keyboard or mouse wireless by any chance?
Download Process Monitor:
http://live.sysinter...com/Procmon.exe
Run Process Monitor by right clicking and Run As admin.
As soon as it starts, File, then uncheck Capture Events. Once it stops,
Edit, Clear Display.
Now bring up VLC and start a movie.
Once you see it lagging, File and check Capture Events. Get a few seconds of it doing the lag and then File uncheck Capture Events. (Trying to keep the log as small as possible.)
File, Save, All Events, Format: Comma-Separated Values (CSV) then OK. It should save the file to logfile.csv which should be on your desktop. Close Process Monitor.
Normally these logs get so big that they won't email very well but get winRar from:
http://www.win-rar.c...0&Version=64bit
Press the Download button and it will offer you free support but you don't need to do anything. Just wait and the download will start. Save it and then rightclick on the download and Run As Admin. This will install WinRar.
Now right click on the logfile.csv and select Add to logfile.rar and it should compress it and create the logfile.rar file in the same location as your original. Attach the file to an email (I'll send you a PM with the Address) and use Subject: G2G evol
Ron
Download Process Monitor:
http://live.sysinter...com/Procmon.exe
Run Process Monitor by right clicking and Run As admin.
As soon as it starts, File, then uncheck Capture Events. Once it stops,
Edit, Clear Display.
Now bring up VLC and start a movie.
Once you see it lagging, File and check Capture Events. Get a few seconds of it doing the lag and then File uncheck Capture Events. (Trying to keep the log as small as possible.)
File, Save, All Events, Format: Comma-Separated Values (CSV) then OK. It should save the file to logfile.csv which should be on your desktop. Close Process Monitor.
Normally these logs get so big that they won't email very well but get winRar from:
http://www.win-rar.c...0&Version=64bit
Press the Download button and it will offer you free support but you don't need to do anything. Just wait and the download will start. Save it and then rightclick on the download and Run As Admin. This will install WinRar.
Now right click on the logfile.csv and select Add to logfile.rar and it should compress it and create the logfile.rar file in the same location as your original. Attach the file to an email (I'll send you a PM with the Address) and use Subject: G2G evol
Ron
#21
Posted 16 February 2013 - 01:38 PM
RKinner
-
- Expert
-
- 24,625 posts
Malware Expert
I'm worried about the connection to .za so let's run some scans:
Download aswMBR.exe to your desktop.
Right click aswMBR.exe and Run as Administrator
uncheck trace disk IO calls
Click the "Scan" button to start scan (Accept the Avast Engine)
On completion of the scan if the Fix button is enabled (not the FixMBR button) press it and then run a new scan and click save log, save it to your desktop and post in your next reply
If the Fix button is not enabled then just click save log, save it to your desktop and post in your next reply
ComboFix
:!: It must be saved to your desktop, do not run it from your browser:!:
:!: Disable your Antivirus software when downloading or running Combofix. If it has Script Blocking features, please disable these as well. See: http://www.bleepingc...opic114351.html
Download and Save this file -- to your Desktop -- from either of these two sources:
http://download.blee...Bs/ComboFix.exe
http://subs.geekstogo.com/ComboFix.exe
Rightclick on ComboFix and select Run As Administrator to start the program.
* :!: Important: Have no other programs running. Your Task Bar should be clear of any program entries including your Browser.
* A window may open with a series of Disclaimers. Accept the Disclaimers to start the fix.
A caution - Do not run Combofix more than once. Do not touch your mouse/keyboard until the scan has completed, as this may cause the process to stall or your computer to lock. The scan will temporarily disable your desktop, and if interrupted may leave your desktop disabled. If this occurs, please reboot to restore the desktop. Even when ComboFix appears to be doing nothing, look at your Drive light. If it is flashing, Combofix is still at work.
A file will be created at => C:\Combofix.txt. I'll need to see that in your reply.
Download TDSSKiller:
http://support.kaspe.../tdsskiller.exe
Save it to your desktop then run it by right clicking and Run As Admin.
If TDSSKiller alerts you that the system needs to reboot, please consent.
Run TDSSKiller again but this time:
before you hit the Scan hit Change Parameters and check the two items under Additional Options. OK then Scan.
In this mode it is prone to false positives so do not change the SKIP option to DELETE unless it says TDSS.
When done, a log file should be created on your C: drive named "TDSSKiller.txt" please copy and paste the contents in your next reply.
Malwarebytes' Anti-Malware
:!: If you have a previous version of MalwareBytes', make sure you check for updates first :!:
http://www.malwareby...lwarebytes_free
SAVE Malwarebytes' Anti-Malware to your desktop.
* Right-click mbam-setup.exe and select Run As Administrator to start the program.
* follow the prompts to install the program.
* At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
* If an update is found, it will download and install the latest version.
* Once the program has loaded, select Perform quick scan, then click Scan.
* When the scan is complete, click OK, then Show Results to view the results.
* Be sure that everything is checked, and click Remove Selected.
* When completed, a log will open in Notepad. Please save it to a convenient location.
* The log can also be found here:
C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-date (time).txt
* Post that log back here.
Download aswMBR.exe to your desktop.
Right click aswMBR.exe and Run as Administrator
uncheck trace disk IO calls
Click the "Scan" button to start scan (Accept the Avast Engine)
On completion of the scan if the Fix button is enabled (not the FixMBR button) press it and then run a new scan and click save log, save it to your desktop and post in your next reply
If the Fix button is not enabled then just click save log, save it to your desktop and post in your next reply
ComboFix
:!: It must be saved to your desktop, do not run it from your browser:!:
:!: Disable your Antivirus software when downloading or running Combofix. If it has Script Blocking features, please disable these as well. See: http://www.bleepingc...opic114351.html
Download and Save this file -- to your Desktop -- from either of these two sources:
http://download.blee...Bs/ComboFix.exe
http://subs.geekstogo.com/ComboFix.exe
Rightclick on ComboFix and select Run As Administrator to start the program.
* :!: Important: Have no other programs running. Your Task Bar should be clear of any program entries including your Browser.
* A window may open with a series of Disclaimers. Accept the Disclaimers to start the fix.
A caution - Do not run Combofix more than once. Do not touch your mouse/keyboard until the scan has completed, as this may cause the process to stall or your computer to lock. The scan will temporarily disable your desktop, and if interrupted may leave your desktop disabled. If this occurs, please reboot to restore the desktop. Even when ComboFix appears to be doing nothing, look at your Drive light. If it is flashing, Combofix is still at work.
A file will be created at => C:\Combofix.txt. I'll need to see that in your reply.
Download TDSSKiller:
http://support.kaspe.../tdsskiller.exe
Save it to your desktop then run it by right clicking and Run As Admin.
If TDSSKiller alerts you that the system needs to reboot, please consent.
Run TDSSKiller again but this time:
before you hit the Scan hit Change Parameters and check the two items under Additional Options. OK then Scan.
In this mode it is prone to false positives so do not change the SKIP option to DELETE unless it says TDSS.
When done, a log file should be created on your C: drive named "TDSSKiller.txt" please copy and paste the contents in your next reply.
Malwarebytes' Anti-Malware
:!: If you have a previous version of MalwareBytes', make sure you check for updates first :!:
http://www.malwareby...lwarebytes_free
SAVE Malwarebytes' Anti-Malware to your desktop.
* Right-click mbam-setup.exe and select Run As Administrator to start the program.
* follow the prompts to install the program.
* At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
* If an update is found, it will download and install the latest version.
* Once the program has loaded, select Perform quick scan, then click Scan.
* When the scan is complete, click OK, then Show Results to view the results.
* Be sure that everything is checked, and click Remove Selected.
* When completed, a log will open in Notepad. Please save it to a convenient location.
* The log can also be found here:
C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-date (time).txt
* Post that log back here.
#22
Posted 16 February 2013 - 10:49 PM
evolnomis
- Topic Starter
-
- Member
-
- 51 posts
Member
aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2013-02-17 13:00:46
-----------------------------
13:00:46.221 OS Version: Windows x64 6.1.7601 Service Pack 1
13:00:46.221 Number of processors: 2 586 0x2A07
13:00:46.222 ComputerName: LUVNAMIE-PC UserName: LuvNamie
13:00:47.109 Initialize success
13:01:45.276 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
13:01:45.279 Disk 0 Vendor: TOSHIBA_ GH10 Size: 305245MB BusType: 3
13:01:45.315 Disk 0 MBR read successfully
13:01:45.318 Disk 0 MBR scan
13:01:45.320 Disk 0 Windows VISTA default MBR code
13:01:45.325 Disk 0 Partition 1 80 (A) 27 Hidden NTFS WinRE NTFS 1500 MB offset 2048
13:01:45.343 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 61440 MB offset 3074048
13:01:45.346 Disk 0 Partition - 00 0F Extended LBA 228246 MB offset 128903168
13:01:45.540 Disk 0 Partition 3 00 17 Hidd HPFS/NTFS NTFS 14058 MB offset 596350976
13:01:45.586 Disk 0 Partition 4 00 07 HPFS/NTFS NTFS 228245 MB offset 128905216
13:01:45.632 Disk 0 scanning C:\windows\system32\drivers
13:01:50.515 Service scanning
13:02:33.841 Modules scanning
13:02:33.848 Scan finished successfully
13:03:09.185 Disk 0 MBR has been saved successfully to "C:\Users\LuvNamie\Desktop\MBR.dat"
13:03:09.190 The log file has been saved successfully to "C:\Users\LuvNamie\Desktop\aswMBR.txt"
ComboFix 13-02-15.01 - LuvNamie 02/17/2013 13:16:03.1.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.4044.3145 [GMT 9:00]
Running from: c:\users\LuvNamie\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {3F839487-C7A2-C958-E30C-E2825BA31FB5}
SP: Microsoft Security Essentials *Disabled/Updated* {84E27563-E198-C6D6-D9BC-D9F020245508}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Created a new restore point
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\SysWow64\CKAgent.dat
.
.
((((((((((((((((((((((((( Files Created from 2013-01-17 to 2013-02-17 )))))))))))))))))))))))))))))))
.
.
2013-02-17 04:22 . 2013-02-17 04:22 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-02-16 12:01 . 2013-02-16 12:01 -------- d-----w- c:\users\LuvNamie\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
2013-02-16 11:56 . 2013-02-16 11:56 -------- d-----w- c:\programdata\ALM
2013-02-16 05:44 . 2013-01-08 05:32 9161176 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{C80B8299-A472-4803-99BE-EB6F6009C988}\mpengine.dll
2013-02-15 19:19 . 2013-02-15 19:19 -------- d-----w- c:\users\LuvNamie\AppData\Roaming\Media Player Classic
2013-02-15 19:18 . 2013-02-15 19:18 -------- d-----w- c:\program files (x86)\MPC-HC
2013-02-15 04:47 . 2013-01-08 05:32 9161176 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2013-02-15 04:16 . 2013-01-09 01:10 996352 ----a-w- c:\program files\Common Files\Microsoft Shared\VGX\VGX.dll
2013-02-15 04:16 . 2013-01-08 22:01 768000 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\VGX\VGX.dll
2013-02-14 14:54 . 2013-01-04 03:26 3153408 ----a-w- c:\windows\system32\win32k.sys
2013-02-14 14:43 . 2013-01-05 05:53 5553512 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-02-14 14:43 . 2013-01-05 05:00 3967848 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2013-02-14 14:43 . 2013-01-05 05:00 3913064 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2013-02-14 14:28 . 2013-01-04 05:46 215040 ----a-w- c:\windows\system32\winsrv.dll
2013-02-14 14:28 . 2013-01-04 04:51 5120 ----a-w- c:\windows\SysWow64\wow32.dll
2013-02-14 14:28 . 2013-01-04 02:47 25600 ----a-w- c:\windows\SysWow64\setup16.exe
2013-02-14 14:28 . 2013-01-04 02:47 7680 ----a-w- c:\windows\SysWow64\instnm.exe
2013-02-14 14:28 . 2013-01-04 02:47 14336 ----a-w- c:\windows\SysWow64\ntvdm64.dll
2013-02-14 14:28 . 2013-01-04 02:47 2048 ----a-w- c:\windows\SysWow64\user.exe
2013-02-14 14:25 . 2013-01-03 06:00 1913192 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-02-14 14:25 . 2013-01-03 06:00 288088 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
2013-02-13 10:46 . 2013-02-13 10:46 -------- d-----w- c:\programdata\NovaTech Network
2013-02-13 10:45 . 2009-09-04 08:29 1974616 ----a-w- c:\windows\SysWow64\D3DCompiler_42.dll
2013-02-13 10:45 . 2009-09-04 08:29 1892184 ----a-w- c:\windows\SysWow64\D3DX9_42.dll
2013-02-13 10:44 . 2013-02-13 10:44 -------- d-----w- c:\program files (x86)\Novawave
2013-02-12 08:25 . 2012-02-07 06:36 499712 ----a-w- c:\windows\system32\AUDIOKSE.dll
2013-02-12 08:25 . 2012-02-07 06:32 283648 ----a-w- c:\windows\system32\EncDump.dll
2013-02-12 08:25 . 2012-02-07 06:32 679424 ----a-w- c:\windows\system32\audiosrv.dll
2013-02-12 08:25 . 2012-02-07 06:32 440832 ----a-w- c:\windows\system32\AudioEng.dll
2013-02-12 08:25 . 2012-02-07 06:32 296448 ----a-w- c:\windows\system32\AudioSes.dll
2013-02-12 08:25 . 2012-02-07 05:33 442880 ----a-w- c:\windows\SysWow64\AUDIOKSE.dll
2013-02-12 08:25 . 2012-02-07 05:30 374784 ----a-w- c:\windows\SysWow64\AudioEng.dll
2013-02-12 08:25 . 2012-02-07 05:30 195584 ----a-w- c:\windows\SysWow64\AudioSes.dll
2013-02-11 14:29 . 2013-02-11 14:30 -------- d-----w- c:\users\LuvNamie\AppData\Roaming\calibre
2013-02-11 14:29 . 2013-02-11 14:29 -------- d-----w- c:\program files (x86)\Calibre2
2013-02-11 05:50 . 2009-02-24 09:35 255552 ----a-w- c:\windows\SysWow64\drivers\mcdbus.sys
2013-02-11 05:50 . 2009-02-24 09:35 255552 ----a-w- c:\windows\system32\drivers\mcdbus.sys
2013-02-11 05:50 . 2013-02-11 05:50 -------- d-----w- c:\program files (x86)\MagicDisc
2013-02-11 05:49 . 2013-02-11 05:49 -------- d-----w- c:\program files (x86)\MagicISO
2013-02-10 17:02 . 2013-02-10 17:08 -------- d-----w- c:\program files (x86)\SpeedFan
2013-02-10 07:36 . 2013-02-10 07:36 -------- d-----w- c:\users\LuvNamie\AppData\Local\ElevatedDiagnostics
2013-02-09 07:00 . 2013-02-09 07:00 -------- d-----w- c:\program files (x86)\Common Files\Java
2013-02-09 06:53 . 2013-02-09 06:53 861088 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2013-02-09 06:53 . 2013-02-09 06:53 95648 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-02-05 12:06 . 2013-02-17 04:09 -------- d-----w- c:\users\LuvNamie\AppData\Roaming\BitTorrent
2013-02-04 14:42 . 2013-02-15 16:53 -------- d-----r- c:\users\LuvNamie\Dropbox
2013-02-04 14:39 . 2013-02-16 13:51 -------- d-----w- c:\users\LuvNamie\AppData\Roaming\Dropbox
2013-02-04 13:39 . 2013-02-04 13:39 -------- d-----w- c:\users\LuvNamie\.swt
2013-02-04 13:32 . 2013-02-15 16:40 -------- d-----w- c:\program files (x86)\thinkTDA
2013-02-02 16:09 . 2013-02-16 11:57 -------- d-----w- c:\programdata\regid.1986-12.com.adobe
2013-02-02 16:07 . 2013-02-16 11:56 -------- d-----w- c:\program files\Adobe
2013-02-02 16:03 . 2013-02-16 11:57 -------- d-----w- c:\program files\Common Files\Adobe
2013-02-02 15:55 . 2013-02-16 11:55 -------- d-----w- c:\users\LuvNamie\AppData\Local\Adobe
2013-02-02 14:40 . 2013-02-02 14:40 137128 ----a-r- c:\windows\system32\CKAgent.exe
2013-02-02 14:40 . 2013-02-02 14:40 138320 ----a-r- c:\windows\SysWow64\CKAgent.exe
2013-02-02 07:04 . 2013-02-02 09:32 -------- d-----w- c:\users\LuvNamie\AppData\Roaming\Skype
2013-02-02 07:04 . 2013-02-02 07:04 -------- d-----w- c:\program files (x86)\Common Files\Skype
2013-02-02 07:04 . 2013-02-02 07:04 -------- d-----r- c:\program files (x86)\Skype
2013-02-02 07:03 . 2013-02-02 07:04 -------- d-----w- c:\programdata\Skype
2013-02-01 19:17 . 2013-02-01 19:17 -------- d-----w- c:\program files\Microsoft Silverlight
2013-02-01 19:17 . 2013-02-01 19:17 -------- d-----w- c:\program files (x86)\Microsoft Silverlight
2013-02-01 19:13 . 2013-02-16 11:56 -------- d-----w- c:\program files (x86)\Common Files\Adobe
2013-02-01 17:51 . 2013-02-01 17:51 -------- d-----w- c:\users\LuvNamie\AppData\Local\Macromedia
2013-02-01 17:49 . 2013-02-15 16:49 691568 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-02-01 17:49 . 2013-02-15 16:49 71024 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-02-01 17:49 . 2013-02-01 17:49 -------- d-----w- c:\windows\system32\Macromed
2013-01-20 16:14 . 2013-02-16 18:52 -------- d-----w- c:\users\LuvNamie\AppData\Roaming\vlc
2013-01-20 16:13 . 2013-01-20 16:13 -------- d-----w- c:\program files (x86)\VideoLAN
2013-01-20 06:59 . 2013-01-20 06:59 230320 ----a-w- c:\windows\system32\drivers\MpFilter.sys
2013-01-19 15:19 . 2013-01-19 15:19 -------- d-----w- c:\program files (x86)\INCAInternet
2013-01-19 15:19 . 2013-01-19 15:19 -------- d-----w- c:\program files (x86)\INCAInternet UnInstall
2013-01-19 15:18 . 2013-01-19 15:18 575640 ----a-w- c:\windows\SysWow64\I3GManager.exe
2013-01-19 15:18 . 2013-01-19 15:18 72272 ----a-w- c:\windows\SysWow64\cosa.dll
2013-01-19 15:18 . 2013-01-19 15:18 58600 ----a-w- c:\windows\SysWow64\I3Gescp.dll
2013-01-19 15:18 . 2013-01-19 15:18 477312 ----a-w- c:\windows\SysWow64\I3GManager.dll
2013-01-19 15:18 . 2013-01-19 15:18 211072 ----a-w- c:\windows\SysWow64\I3GEX.exe
2013-01-19 15:18 . 2013-01-19 15:18 15512 ----a-w- c:\windows\SysWow64\IRTrace.dll
2013-01-19 15:18 . 2013-01-19 15:18 -------- d-----w- c:\program files (x86)\Interezen
2013-01-19 15:16 . 2013-01-19 15:16 -------- d-----w- c:\program files\NPKI
2013-01-19 15:16 . 2013-01-19 15:16 -------- d--h--w- c:\windows\yessign
2013-01-19 15:16 . 2013-01-19 15:16 -------- d-----w- C:\XecureSSL
2013-01-19 15:16 . 2013-01-19 15:16 -------- d-----w- c:\program files (x86)\SoftForum
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-02-15 04:20 . 2013-01-13 03:29 70004024 ----a-w- c:\windows\system32\MRT.exe
2013-02-09 06:53 . 2011-03-24 02:26 782240 ----a-w- c:\windows\SysWow64\deployJava1.dll
2013-01-30 10:53 . 2010-11-21 03:27 273840 ------w- c:\windows\system32\MpSigStub.exe
2013-01-20 06:59 . 2012-08-30 13:03 130008 ----a-w- c:\windows\system32\drivers\NisDrvWFP.sys
2013-01-13 04:14 . 2013-01-13 04:14 972264 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{320F267E-5EDF-4301-9E96-999E59AAC312}\gapaengine.dll
2013-01-12 18:22 . 2013-01-12 18:22 91648 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2013-01-12 18:22 . 2013-01-12 18:22 89088 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2013-01-12 18:22 . 2013-01-12 18:22 89088 ----a-w- c:\windows\system32\ie4uinit.exe
2013-01-12 18:22 . 2013-01-12 18:22 86528 ----a-w- c:\windows\SysWow64\iesysprep.dll
2013-01-12 18:22 . 2013-01-12 18:22 85504 ----a-w- c:\windows\system32\iesetup.dll
2013-01-12 18:22 . 2013-01-12 18:22 82432 ----a-w- c:\windows\system32\icardie.dll
2013-01-12 18:22 . 2013-01-12 18:22 76800 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2013-01-12 18:22 . 2013-01-12 18:22 76800 ----a-w- c:\windows\system32\tdc.ocx
2013-01-12 18:22 . 2013-01-12 18:22 74752 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2013-01-12 18:22 . 2013-01-12 18:22 74752 ----a-w- c:\windows\SysWow64\iesetup.dll
2013-01-12 18:22 . 2013-01-12 18:22 65024 ----a-w- c:\windows\system32\pngfilt.dll
2013-01-12 18:22 . 2013-01-12 18:22 63488 ----a-w- c:\windows\SysWow64\tdc.ocx
2013-01-12 18:22 . 2013-01-12 18:22 55296 ----a-w- c:\windows\system32\msfeedsbs.dll
2013-01-12 18:22 . 2013-01-12 18:22 534528 ----a-w- c:\windows\system32\ieapfltr.dll
2013-01-12 18:22 . 2013-01-12 18:22 49664 ----a-w- c:\windows\system32\imgutil.dll
2013-01-12 18:22 . 2013-01-12 18:22 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2013-01-12 18:22 . 2013-01-12 18:22 48640 ----a-w- c:\windows\system32\mshtmler.dll
2013-01-12 18:22 . 2013-01-12 18:22 452608 ----a-w- c:\windows\system32\dxtmsft.dll
2013-01-12 18:22 . 2013-01-12 18:22 448512 ----a-w- c:\windows\system32\html.iec
2013-01-12 18:22 . 2013-01-12 18:22 403248 ----a-w- c:\windows\system32\iedkcs32.dll
2013-01-12 18:22 . 2013-01-12 18:22 39936 ----a-w- c:\windows\system32\iernonce.dll
2013-01-12 18:22 . 2013-01-12 18:22 3695416 ----a-w- c:\windows\system32\ieapfltr.dat
2013-01-12 18:22 . 2013-01-12 18:22 367104 ----a-w- c:\windows\SysWow64\html.iec
2013-01-12 18:22 . 2013-01-12 18:22 35840 ----a-w- c:\windows\SysWow64\imgutil.dll
2013-01-12 18:22 . 2013-01-12 18:22 30720 ----a-w- c:\windows\system32\licmgr10.dll
2013-01-12 18:22 . 2013-01-12 18:22 282112 ----a-w- c:\windows\system32\dxtrans.dll
2013-01-12 18:22 . 2013-01-12 18:22 267776 ----a-w- c:\windows\system32\ieaksie.dll
2013-01-12 18:22 . 2013-01-12 18:22 249344 ----a-w- c:\windows\system32\webcheck.dll
2013-01-12 18:22 . 2013-01-12 18:22 23552 ----a-w- c:\windows\SysWow64\licmgr10.dll
2013-01-12 18:22 . 2013-01-12 18:22 222208 ----a-w- c:\windows\system32\msls31.dll
2013-01-12 18:22 . 2013-01-12 18:22 197120 ----a-w- c:\windows\system32\msrating.dll
2013-01-12 18:22 . 2013-01-12 18:22 165888 ----a-w- c:\windows\system32\iexpress.exe
2013-01-12 18:22 . 2013-01-12 18:22 163840 ----a-w- c:\windows\system32\ieakui.dll
2013-01-12 18:22 . 2013-01-12 18:22 161792 ----a-w- c:\windows\SysWow64\msls31.dll
2013-01-12 18:22 . 2013-01-12 18:22 160256 ----a-w- c:\windows\system32\wextract.exe
2013-01-12 18:22 . 2013-01-12 18:22 160256 ----a-w- c:\windows\system32\ieakeng.dll
2013-01-12 18:22 . 2013-01-12 18:22 152064 ----a-w- c:\windows\SysWow64\wextract.exe
2013-01-12 18:22 . 2013-01-12 18:22 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2013-01-12 18:22 . 2013-01-12 18:22 149504 ----a-w- c:\windows\system32\occache.dll
2013-01-12 18:22 . 2013-01-12 18:22 145920 ----a-w- c:\windows\system32\iepeers.dll
2013-01-12 18:22 . 2013-01-12 18:22 135168 ----a-w- c:\windows\system32\IEAdvpack.dll
2013-01-12 18:22 . 2013-01-12 18:22 12288 ----a-w- c:\windows\system32\mshta.exe
2013-01-12 18:22 . 2013-01-12 18:22 11776 ----a-w- c:\windows\SysWow64\mshta.exe
2013-01-12 18:22 . 2013-01-12 18:22 114176 ----a-w- c:\windows\system32\admparse.dll
2013-01-12 18:22 . 2013-01-12 18:22 111616 ----a-w- c:\windows\system32\iesysprep.dll
2013-01-12 18:22 . 2013-01-12 18:22 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2013-01-12 18:22 . 2013-01-12 18:22 10752 ----a-w- c:\windows\system32\msfeedssync.exe
2013-01-12 18:22 . 2013-01-12 18:22 103936 ----a-w- c:\windows\system32\inseng.dll
2013-01-12 18:22 . 2013-01-12 18:22 101888 ----a-w- c:\windows\SysWow64\admparse.dll
2013-01-12 16:27 . 2013-01-12 16:27 76232 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{B1D5C143-4365-4534-B0C6-85BE1C040A21}\offreg.dll
2013-01-04 04:43 . 2013-02-14 14:28 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2012-12-16 17:11 . 2013-01-12 18:12 46080 ----a-w- c:\windows\system32\atmlib.dll
2012-12-16 14:45 . 2013-01-12 18:12 367616 ----a-w- c:\windows\system32\atmfd.dll
2012-12-16 14:13 . 2013-01-12 18:12 295424 ----a-w- c:\windows\SysWow64\atmfd.dll
2012-12-16 14:13 . 2013-01-12 18:12 34304 ----a-w- c:\windows\SysWow64\atmlib.dll
2012-12-14 07:49 . 2013-01-12 16:29 24176 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-12-07 13:20 . 2013-01-12 16:04 441856 ----a-w- c:\windows\system32\Wpc.dll
2012-12-07 13:15 . 2013-01-12 16:04 2746368 ----a-w- c:\windows\system32\gameux.dll
2012-12-07 12:26 . 2013-01-12 16:04 308736 ----a-w- c:\windows\SysWow64\Wpc.dll
2012-12-07 12:20 . 2013-01-12 16:04 2576384 ----a-w- c:\windows\SysWow64\gameux.dll
2012-12-07 11:20 . 2013-01-12 16:04 30720 ----a-w- c:\windows\system32\usk.rs
2012-12-07 11:20 . 2013-01-12 16:04 43520 ----a-w- c:\windows\system32\csrr.rs
2012-12-07 11:20 . 2013-01-12 16:04 23552 ----a-w- c:\windows\system32\oflc.rs
2012-12-07 11:20 . 2013-01-12 16:04 45568 ----a-w- c:\windows\system32\oflc-nz.rs
2012-12-07 11:20 . 2013-01-12 16:04 44544 ----a-w- c:\windows\system32\pegibbfc.rs
2012-12-07 11:20 . 2013-01-12 16:04 20480 ----a-w- c:\windows\system32\pegi-fi.rs
2012-12-07 11:20 . 2013-01-12 16:04 20480 ----a-w- c:\windows\system32\pegi-pt.rs
2012-12-07 11:19 . 2013-01-12 16:04 20480 ----a-w- c:\windows\system32\pegi.rs
2012-12-07 11:19 . 2013-01-12 16:04 46592 ----a-w- c:\windows\system32\fpb.rs
2012-12-07 11:19 . 2013-01-12 16:04 40960 ----a-w- c:\windows\system32\cob-au.rs
2012-12-07 11:19 . 2013-01-12 16:04 21504 ----a-w- c:\windows\system32\grb.rs
2012-12-07 11:19 . 2013-01-12 16:04 15360 ----a-w- c:\windows\system32\djctq.rs
2012-12-07 11:19 . 2013-01-12 16:04 55296 ----a-w- c:\windows\system32\cero.rs
2012-12-07 11:19 . 2013-01-12 16:04 51712 ----a-w- c:\windows\system32\esrb.rs
2012-12-07 10:46 . 2013-01-12 16:04 43520 ----a-w- c:\windows\SysWow64\csrr.rs
2012-12-07 10:46 . 2013-01-12 16:04 30720 ----a-w- c:\windows\SysWow64\usk.rs
2012-12-07 10:46 . 2013-01-12 16:04 45568 ----a-w- c:\windows\SysWow64\oflc-nz.rs
2012-12-07 10:46 . 2013-01-12 16:04 44544 ----a-w- c:\windows\SysWow64\pegibbfc.rs
2012-12-07 10:46 . 2013-01-12 16:04 20480 ----a-w- c:\windows\SysWow64\pegi-pt.rs
2012-12-07 10:46 . 2013-01-12 16:04 23552 ----a-w- c:\windows\SysWow64\oflc.rs
2012-12-07 10:46 . 2013-01-12 16:04 20480 ----a-w- c:\windows\SysWow64\pegi-fi.rs
2012-12-07 10:46 . 2013-01-12 16:04 46592 ----a-w- c:\windows\SysWow64\fpb.rs
2012-12-07 10:46 . 2013-01-12 16:04 20480 ----a-w- c:\windows\SysWow64\pegi.rs
2012-12-07 10:46 . 2013-01-12 16:04 21504 ----a-w- c:\windows\SysWow64\grb.rs
2012-12-07 10:46 . 2013-01-12 16:04 40960 ----a-w- c:\windows\SysWow64\cob-au.rs
2012-12-07 10:46 . 2013-01-12 16:04 15360 ----a-w- c:\windows\SysWow64\djctq.rs
2012-12-07 10:46 . 2013-01-12 16:04 55296 ----a-w- c:\windows\SysWow64\cero.rs
2012-12-07 10:46 . 2013-01-12 16:04 51712 ----a-w- c:\windows\SysWow64\esrb.rs
2012-11-30 05:45 . 2013-01-12 16:00 362496 ----a-w- c:\windows\system32\wow64win.dll
2012-11-30 05:45 . 2013-01-12 16:00 243200 ----a-w- c:\windows\system32\wow64.dll
2012-11-30 05:45 . 2013-01-12 16:00 13312 ----a-w- c:\windows\system32\wow64cpu.dll
2012-11-30 05:43 . 2013-01-12 16:00 16384 ----a-w- c:\windows\system32\ntvdm64.dll
2012-11-30 05:41 . 2013-01-12 16:00 424448 ----a-w- c:\windows\system32\KernelBase.dll
2012-11-30 05:41 . 2013-01-12 16:00 1161216 ----a-w- c:\windows\system32\kernel32.dll
2012-11-30 05:38 . 2013-01-12 16:00 6144 ---ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 129272 ----a-w- c:\users\LuvNamie\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 129272 ----a-w- c:\users\LuvNamie\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 129272 ----a-w- c:\users\LuvNamie\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Gadwin PrintScreen"="c:\program files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe" [2012-05-30 1842384]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
"GrooveMonitor"="c:\program files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]
"AdobeCS6ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" [2012-03-09 1073312]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-18 946352]
.
c:\users\LuvNamie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dropbox.lnk - c:\users\LuvNamie\AppData\Roaming\Dropbox\bin\Dropbox.exe [2013-1-21 28539272]
MagicDisc.lnk - c:\program files (x86)\MagicDisc\MagicDisc.exe [2013-2-11 576000]
.
c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Best Buy pc app.lnk - c:\programdata\Best Buy pc app\ClickOnceSetup.exe [N/A]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2013-01-08 161536]
R2 taisregispinger;taisregispinger;c:\program files (x86)\TOSHIBA\ToshibaRegistration\TaisRegistPinger.exe [x]
R3 JRSKD24;JRSKD24;c:\windows\system32\JRSKD24.SYS [x]
R3 kcrtx64;kcrtx64;c:\windows\system32\kcrtx64.sys [2013-02-02 141848]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2013-01-20 130008]
R3 NisSrv;Microsoft Network Inspection;c:\program files\Microsoft Security Client\NisSrv.exe [2013-01-27 379360]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2010-12-02 250984]
R3 RSUSBVSTOR;RTSUVSTOR.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RTSUVSTOR.sys [2010-11-30 307304]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS [2009-06-10 292864]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS [2009-06-10 1485312]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS [2009-06-10 740864]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 TMachInfo;TMachInfo;c:\program files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [x]
R3 TPCHSrv;TPCH Service;c:\program files\TOSHIBA\TPHM\TPCHSrv.exe [2010-12-21 822704]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2013-01-12 1255736]
S0 tos_sps64;TOSHIBA tos_sps64 Service;c:\windows\system32\DRIVERS\tos_sps64.sys [2009-06-24 482384]
S2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver;c:\windows\system32\DRIVERS\TVALZFL.sys [2009-06-20 14472]
S2 UNS;Intel® Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2010-12-21 2656280]
S3 IntcDAud;Intel® Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2010-10-15 317440]
S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys [2010-11-08 76912]
S3 PGEffect;Pangu effect driver;c:\windows\system32\DRIVERS\pgeffect.sys [2011-02-09 38096]
S3 QIOMem;Generic IO & Memory Access;c:\windows\system32\DRIVERS\QIOMem.sys [2009-06-15 12800]
S3 RTL8192Ce;Realtek Wireless LAN 802.11n PCI-E NIC Driver;c:\windows\system32\DRIVERS\rtl8192Ce.sys [2011-01-05 1109096]
S3 TOSHIBA HDD SSD Alert Service;TOSHIBA HDD SSD Alert Service;c:\program files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [2010-12-08 137632]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - ASWMBR
*Deregistered* - aswMBR
*Deregistered* - PROCMON23
.
Contents of the 'Scheduled Tasks' folder
.
2013-02-17 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-02-01 16:49]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 162552 ----a-w- c:\users\LuvNamie\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 162552 ----a-w- c:\users\LuvNamie\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 162552 ----a-w- c:\users\LuvNamie\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 162552 ----a-w- c:\users\LuvNamie\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"TosVolRegulator"="c:\program files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe" [2009-11-11 24376]
"TosSENotify"="c:\program files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe" [2010-12-08 710040]
"SmartAudio"="c:\program files\CONEXANT\SAII\SAIICpl.exe" [2010-12-14 316032]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-04-08 418136]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2013-01-27 1281512]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-04-08 167256]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-04-08 391000]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2012-04-03 446392]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://start.toshiba.com/g/
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = <local>
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~4\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 168.126.63.1 168.126.63.2 192.168.10.1
DPF: {967386A1-409E-431A-A93A-FB5FEFF86A58} - hxxp://bank.keb.co.kr/veraport/veraport.cab
FF - ProfilePath - c:\users\LuvNamie\AppData\Roaming\Mozilla\Firefox\Profiles\ps2yaq9o.default\
FF - prefs.js: browser.startup.homepage - hxxp://finance.yahoo.com/
FF - ExtSQL: 2013-01-13 00:36; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; c:\users\LuvNamie\AppData\Roaming\Mozilla\Firefox\Profiles\ps2yaq9o.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF - ExtSQL: 2013-01-13 01:35; {c36177c0-224a-11da-8cd6-0800200c9a91}; c:\users\LuvNamie\AppData\Roaming\Mozilla\Firefox\Profiles\ps2yaq9o.default\extensions\{c36177c0-224a-11da-8cd6-0800200c9a91}.xpi
FF - ExtSQL: 2013-01-13 01:35; {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}; c:\users\LuvNamie\AppData\Roaming\Mozilla\Firefox\Profiles\ps2yaq9o.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
FF - ExtSQL: 2013-01-13 01:35; {77b819fa-95ad-4f2c-ac7c-486b356188a9}; c:\users\LuvNamie\AppData\Roaming\Mozilla\Firefox\Profiles\ps2yaq9o.default\extensions\{77b819fa-95ad-4f2c-ac7c-486b356188a9}
FF - ExtSQL: 2013-01-13 01:35; [email protected]; c:\users\LuvNamie\AppData\Roaming\Mozilla\Firefox\Profiles\ps2yaq9o.default\extensions\[email protected]
FF - ExtSQL: 2013-01-13 01:35; [email protected]; c:\users\LuvNamie\AppData\Roaming\Mozilla\Firefox\Profiles\ps2yaq9o.default\extensions\[email protected]
FF - ExtSQL: 2013-01-13 01:35; [email protected]; c:\users\LuvNamie\AppData\Roaming\Mozilla\Firefox\Profiles\ps2yaq9o.default\extensions\[email protected]
FF - ExtSQL: 2013-01-13 01:35; feedly@devhd; c:\users\LuvNamie\AppData\Roaming\Mozilla\Firefox\Profiles\ps2yaq9o.default\extensions\[email protected]
.
- - - - ORPHANS REMOVED - - - -
.
Toolbar-Locked - (no file)
Wow6432Node-HKCU-Run-AdobeBridge - (no file)
Wow6432Node-HKLM-Run-TSleepSrv - %ProgramFiles(x86)%\TOSHIBA\TOSHIBA Sleep Utility\TSleepSrv.exe
Toolbar-Locked - (no file)
HKLM-Run-TPwrMain - c:\program files (x86)\TOSHIBA\Power Saver\TPwrMain.EXE
HKLM-Run-TosWaitSrv - c:\program files (x86)\TOSHIBA\TPHM\TosWaitSrv.exe
HKLM-Run-TosReelTimeMonitor - c:\program files (x86)\TOSHIBA\ReelTime\TosReelTimeMonitor.exe
HKLM-Run-TosNC - c:\program files (x86)\Toshiba\BulletinBoard\TosNcCore.exe
HKLM-Run-Teco - c:\program files (x86)\TOSHIBA\TECO\Teco.exe
HKLM-Run-TCrdMain - c:\program files (x86)\TOSHIBA\FlashCards\TCrdMain.exe
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
HKLM-Run-HSON - c:\program files (x86)\TOSHIBA\TBS\HSON.exe
AddRemove-VeraPort - c:\windows\system32\VeraPortUninstall.exe
AddRemove-XecureCK - c:\windows\system32\CKSetup32.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_149_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_149_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_149_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_149_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_149.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_149.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_149.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_149.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*]
@="?????????????????? v1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
@="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*]
@="?????????????????? v2"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
@="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2013-02-17 13:25:01
ComboFix-quarantined-files.txt 2013-02-17 04:25
.
Pre-Run: 22,606,442,496 bytes free
Post-Run: 22,342,885,376 bytes free
.
- - End Of File - - EB0F8C67904635B7E33A5FA0CFC9338F
13:26:31.0738 3592 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
13:26:32.0721 3592 ============================================================
13:26:32.0721 3592 Current date / time: 2013/02/17 13:26:32.0721
13:26:32.0721 3592 SystemInfo:
13:26:32.0721 3592
13:26:32.0721 3592 OS Version: 6.1.7601 ServicePack: 1.0
13:26:32.0721 3592 Product type: Workstation
13:26:32.0721 3592 ComputerName: LUVNAMIE-PC
13:26:32.0721 3592 UserName: LuvNamie
13:26:32.0721 3592 Windows directory: C:\windows
13:26:32.0721 3592 System windows directory: C:\windows
13:26:32.0721 3592 Running under WOW64
13:26:32.0721 3592 Processor architecture: Intel x64
13:26:32.0721 3592 Number of processors: 2
13:26:32.0721 3592 Page size: 0x1000
13:26:32.0721 3592 Boot type: Normal boot
13:26:32.0721 3592 ============================================================
13:26:34.0671 3592 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
13:26:34.0671 3592 ============================================================
13:26:34.0671 3592 \Device\Harddisk0\DR0:
13:26:34.0671 3592 MBR partitions:
13:26:34.0671 3592 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x7800000
13:26:34.0702 3592 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x7AEF000, BlocksNum 0x1BDCA800
13:26:34.0702 3592 ============================================================
13:26:34.0718 3592 C: <-> \Device\Harddisk0\DR0\Partition1
13:26:34.0764 3592 D: <-> \Device\Harddisk0\DR0\Partition2
13:26:34.0764 3592 ============================================================
13:26:34.0764 3592 Initialize success
13:26:34.0764 3592 ============================================================
13:26:56.0448 1852 ============================================================
13:26:56.0448 1852 Scan started
13:26:56.0448 1852 Mode: Manual;
13:26:56.0448 1852 ============================================================
13:26:57.0650 1852 ================ Scan system memory ========================
13:26:57.0650 1852 System memory - ok
13:26:57.0650 1852 ================ Scan services =============================
13:26:57.0806 1852 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
13:26:57.0806 1852 1394ohci - ok
13:26:57.0837 1852 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\windows\system32\drivers\ACPI.sys
13:26:57.0852 1852 ACPI - ok
13:26:57.0852 1852 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
13:26:57.0868 1852 AcpiPmi - ok
13:26:57.0962 1852 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
13:26:57.0962 1852 AdobeARMservice - ok
13:26:58.0086 1852 [ 563CDCFEEAEF97163E206AF71A61AA6E ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
13:26:58.0086 1852 AdobeFlashPlayerUpdateSvc - ok
13:26:58.0133 1852 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\drivers\adp94xx.sys
13:26:58.0133 1852 adp94xx - ok
13:26:58.0164 1852 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\drivers\adpahci.sys
13:26:58.0164 1852 adpahci - ok
13:26:58.0180 1852 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\drivers\adpu320.sys
13:26:58.0180 1852 adpu320 - ok
13:26:58.0211 1852 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
13:26:58.0211 1852 AeLookupSvc - ok
13:26:58.0242 1852 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\windows\system32\drivers\afd.sys
13:26:58.0258 1852 AFD - ok
13:26:58.0305 1852 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\drivers\agp440.sys
13:26:58.0305 1852 agp440 - ok
13:26:58.0336 1852 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe
13:26:58.0336 1852 ALG - ok
13:26:58.0367 1852 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\drivers\aliide.sys
13:26:58.0367 1852 aliide - ok
13:26:58.0383 1852 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\drivers\amdide.sys
13:26:58.0383 1852 amdide - ok
13:26:58.0398 1852 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\drivers\amdk8.sys
13:26:58.0398 1852 AmdK8 - ok
13:26:58.0414 1852 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\drivers\amdppm.sys
13:26:58.0414 1852 AmdPPM - ok
13:27:01.0175 1852 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\windows\system32\drivers\amdsata.sys
13:27:01.0175 1852 amdsata - ok
13:27:01.0222 1852 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\drivers\amdsbs.sys
13:27:01.0222 1852 amdsbs - ok
13:27:01.0238 1852 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\windows\system32\drivers\amdxata.sys
13:27:01.0238 1852 amdxata - ok
13:27:01.0284 1852 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\windows\system32\drivers\appid.sys
13:27:01.0284 1852 AppID - ok
13:27:01.0316 1852 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll
13:27:01.0316 1852 AppIDSvc - ok
13:27:01.0331 1852 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\windows\System32\appinfo.dll
13:27:01.0331 1852 Appinfo - ok
13:27:01.0378 1852 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\drivers\arc.sys
13:27:01.0378 1852 arc - ok
13:27:01.0394 1852 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\drivers\arcsas.sys
13:27:01.0394 1852 arcsas - ok
13:27:01.0425 1852 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
13:27:01.0425 1852 AsyncMac - ok
13:27:01.0440 1852 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\drivers\atapi.sys
13:27:01.0440 1852 atapi - ok
13:27:01.0487 1852 [ 0BF3E954F6A0CD505EBA6F74DCE2413A ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
13:27:01.0503 1852 AudioEndpointBuilder - ok
13:27:01.0503 1852 [ 0BF3E954F6A0CD505EBA6F74DCE2413A ] AudioSrv C:\windows\System32\Audiosrv.dll
13:27:01.0518 1852 AudioSrv - ok
13:27:01.0565 1852 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\windows\System32\AxInstSV.dll
13:27:01.0565 1852 AxInstSV - ok
13:27:01.0596 1852 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\drivers\bxvbda.sys
13:27:01.0596 1852 b06bdrv - ok
13:27:01.0628 1852 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
13:27:01.0628 1852 b57nd60a - ok
13:27:01.0690 1852 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll
13:27:01.0690 1852 BDESVC - ok
13:27:01.0721 1852 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys
13:27:01.0721 1852 Beep - ok
13:27:01.0784 1852 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\windows\System32\bfe.dll
13:27:01.0784 1852 BFE - ok
13:27:01.0830 1852 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\windows\system32\qmgr.dll
13:27:01.0846 1852 BITS - ok
13:27:01.0862 1852 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
13:27:01.0862 1852 blbdrive - ok
13:27:01.0893 1852 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\windows\system32\DRIVERS\bowser.sys
13:27:01.0893 1852 bowser - ok
13:27:01.0924 1852 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\drivers\BrFiltLo.sys
13:27:01.0924 1852 BrFiltLo - ok
13:27:01.0924 1852 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\drivers\BrFiltUp.sys
13:27:01.0924 1852 BrFiltUp - ok
13:27:01.0940 1852 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\windows\system32\DRIVERS\bridge.sys
13:27:01.0940 1852 BridgeMP - ok
13:27:01.0986 1852 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\windows\System32\browser.dll
13:27:01.0986 1852 Browser - ok
13:27:02.0002 1852 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys
13:27:02.0002 1852 Brserid - ok
13:27:02.0018 1852 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
13:27:02.0018 1852 BrSerWdm - ok
13:27:02.0033 1852 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
13:27:02.0033 1852 BrUsbMdm - ok
13:27:02.0049 1852 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
13:27:02.0049 1852 BrUsbSer - ok
13:27:02.0049 1852 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\drivers\bthmodem.sys
13:27:02.0049 1852 BTHMODEM - ok
13:27:02.0096 1852 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll
13:27:02.0096 1852 bthserv - ok
13:27:02.0111 1852 catchme - ok
13:27:02.0142 1852 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
13:27:02.0142 1852 cdfs - ok
13:27:02.0174 1852 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
13:27:02.0174 1852 cdrom - ok
13:27:02.0205 1852 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\windows\System32\certprop.dll
13:27:02.0205 1852 CertPropSvc - ok
13:27:02.0236 1852 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\drivers\circlass.sys
13:27:02.0236 1852 circlass - ok
13:27:02.0298 1852 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys
13:27:02.0298 1852 CLFS - ok
13:27:05.0075 1852 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:27:05.0075 1852 clr_optimization_v2.0.50727_32 - ok
13:27:05.0122 1852 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
13:27:05.0122 1852 clr_optimization_v2.0.50727_64 - ok
13:27:05.0200 1852 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:27:05.0200 1852 clr_optimization_v4.0.30319_32 - ok
13:27:05.0262 1852 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
13:27:05.0262 1852 clr_optimization_v4.0.30319_64 - ok
13:27:05.0294 1852 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
13:27:05.0294 1852 CmBatt - ok
13:27:05.0309 1852 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\drivers\cmdide.sys
13:27:05.0309 1852 cmdide - ok
13:27:05.0356 1852 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\windows\system32\Drivers\cng.sys
13:27:05.0356 1852 CNG - ok
13:27:05.0450 1852 [ 66847C979893A11CFCC2280E772D7EA1 ] CnxtHdAudService C:\windows\system32\drivers\CHDRT64.sys
13:27:05.0450 1852 CnxtHdAudService - ok
13:27:05.0512 1852 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\drivers\compbatt.sys
13:27:05.0512 1852 Compbatt - ok
13:27:05.0512 1852 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\windows\system32\DRIVERS\CompositeBus.sys
13:27:05.0512 1852 CompositeBus - ok
13:27:05.0528 1852 COMSysApp - ok
13:27:05.0543 1852 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\drivers\crcdisk.sys
13:27:05.0543 1852 crcdisk - ok
13:27:05.0590 1852 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\windows\system32\cryptsvc.dll
13:27:05.0590 1852 CryptSvc - ok
13:27:05.0637 1852 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\windows\system32\rpcss.dll
13:27:05.0637 1852 DcomLaunch - ok
13:27:05.0684 1852 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll
13:27:05.0699 1852 defragsvc - ok
13:27:05.0746 1852 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\windows\system32\Drivers\dfsc.sys
13:27:05.0746 1852 DfsC - ok
13:27:05.0777 1852 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\windows\system32\dhcpcore.dll
13:27:05.0777 1852 Dhcp - ok
13:27:05.0793 1852 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys
13:27:05.0793 1852 discache - ok
13:27:05.0824 1852 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\drivers\disk.sys
13:27:05.0824 1852 Disk - ok
13:27:05.0855 1852 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\windows\System32\dnsrslvr.dll
13:27:05.0871 1852 Dnscache - ok
13:27:05.0886 1852 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\windows\System32\dot3svc.dll
13:27:05.0886 1852 dot3svc - ok
13:27:05.0902 1852 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\windows\system32\dps.dll
13:27:05.0902 1852 DPS - ok
13:27:05.0933 1852 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
13:27:05.0933 1852 drmkaud - ok
13:27:05.0964 1852 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
13:27:05.0964 1852 DXGKrnl - ok
13:27:05.0996 1852 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll
13:27:05.0996 1852 EapHost - ok
13:27:06.0074 1852 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\drivers\evbda.sys
13:27:06.0089 1852 ebdrv - ok
13:27:06.0120 1852 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\windows\System32\lsass.exe
13:27:06.0120 1852 EFS - ok
13:27:08.0882 1852 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\windows\ehome\ehRecvr.exe
13:27:08.0882 1852 ehRecvr - ok
13:27:08.0897 1852 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe
13:27:08.0897 1852 ehSched - ok
13:27:08.0960 1852 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\drivers\elxstor.sys
13:27:08.0960 1852 elxstor - ok
13:27:08.0975 1852 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\drivers\errdev.sys
13:27:08.0975 1852 ErrDev - ok
13:27:08.0991 1852 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll
13:27:09.0006 1852 EventSystem - ok
13:27:09.0038 1852 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys
13:27:09.0038 1852 exfat - ok
13:27:09.0053 1852 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys
13:27:09.0053 1852 fastfat - ok
13:27:09.0100 1852 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\windows\system32\fxssvc.exe
13:27:09.0116 1852 Fax - ok
13:27:09.0147 1852 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\drivers\fdc.sys
13:27:09.0147 1852 fdc - ok
13:27:09.0194 1852 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll
13:27:09.0194 1852 fdPHost - ok
13:27:09.0209 1852 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll
13:27:09.0209 1852 FDResPub - ok
13:27:09.0225 1852 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
13:27:09.0225 1852 FileInfo - ok
13:27:09.0240 1852 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys
13:27:09.0240 1852 Filetrace - ok
13:27:09.0272 1852 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\drivers\flpydisk.sys
13:27:09.0272 1852 flpydisk - ok
13:27:09.0287 1852 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
13:27:09.0287 1852 FltMgr - ok
13:27:09.0350 1852 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\windows\system32\FntCache.dll
13:27:09.0365 1852 FontCache - ok
13:27:09.0428 1852 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
13:27:09.0428 1852 FontCache3.0.0.0 - ok
13:27:09.0443 1852 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys
13:27:09.0443 1852 FsDepends - ok
13:27:09.0490 1852 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
13:27:09.0490 1852 Fs_Rec - ok
13:27:09.0521 1852 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
13:27:09.0521 1852 fvevol - ok
13:27:09.0552 1852 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\drivers\gagp30kx.sys
13:27:09.0552 1852 gagp30kx - ok
13:27:09.0599 1852 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\windows\System32\gpsvc.dll
13:27:09.0599 1852 gpsvc - ok
13:27:09.0630 1852 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
13:27:09.0630 1852 hcw85cir - ok
13:27:09.0662 1852 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
13:27:09.0677 1852 HdAudAddService - ok
13:27:09.0693 1852 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\windows\system32\DRIVERS\HDAudBus.sys
13:27:09.0693 1852 HDAudBus - ok
13:27:09.0724 1852 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\drivers\HidBatt.sys
13:27:09.0724 1852 HidBatt - ok
13:27:09.0724 1852 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\drivers\hidbth.sys
13:27:09.0724 1852 HidBth - ok
13:27:09.0740 1852 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\drivers\hidir.sys
13:27:09.0740 1852 HidIr - ok
13:27:09.0771 1852 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\System32\hidserv.dll
13:27:09.0771 1852 hidserv - ok
13:27:09.0802 1852 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys
13:27:09.0802 1852 HidUsb - ok
13:27:09.0833 1852 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\windows\system32\kmsvc.dll
13:27:09.0833 1852 hkmsvc - ok
13:27:09.0849 1852 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
13:27:09.0849 1852 HomeGroupListener - ok
13:27:09.0864 1852 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
13:27:09.0864 1852 HomeGroupProvider - ok
13:27:09.0896 1852 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
13:27:09.0896 1852 HpSAMD - ok
13:27:09.0942 1852 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\windows\system32\drivers\HTTP.sys
13:27:09.0942 1852 HTTP - ok
13:27:09.0958 1852 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
13:27:09.0958 1852 hwpolicy - ok
13:27:09.0974 1852 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\DRIVERS\i8042prt.sys
13:27:09.0974 1852 i8042prt - ok
13:27:10.0020 1852 [ D469B77687E12FE43E344806740B624D ] iaStor C:\windows\system32\DRIVERS\iaStor.sys
13:27:10.0020 1852 iaStor - ok
13:27:10.0067 1852 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
13:27:10.0067 1852 iaStorV - ok
13:27:10.0130 1852 [ DAF66902F08796F9C694901660E5A64A ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
13:27:10.0130 1852 IDriverT - ok
13:27:12.0922 1852 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
13:27:12.0938 1852 idsvc - ok
13:27:13.0203 1852 [ 370C2A8629B30F910F740387795DDC6F ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys
13:27:13.0265 1852 igfx - ok
13:27:13.0296 1852 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\drivers\iirsp.sys
13:27:13.0296 1852 iirsp - ok
13:27:13.0328 1852 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\windows\System32\ikeext.dll
13:27:13.0343 1852 IKEEXT - ok
13:27:13.0390 1852 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\windows\system32\DRIVERS\IntcDAud.sys
13:27:13.0390 1852 IntcDAud - ok
13:27:13.0421 1852 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\drivers\intelide.sys
13:27:13.0421 1852 intelide - ok
13:27:13.0452 1852 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
13:27:13.0452 1852 intelppm - ok
13:27:13.0468 1852 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll
13:27:13.0468 1852 IPBusEnum - ok
13:27:13.0499 1852 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
13:27:13.0499 1852 IpFilterDriver - ok
13:27:13.0530 1852 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\windows\System32\iphlpsvc.dll
13:27:13.0546 1852 iphlpsvc - ok
13:27:13.0577 1852 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
13:27:13.0577 1852 IPMIDRV - ok
13:27:13.0593 1852 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys
13:27:13.0593 1852 IPNAT - ok
13:27:13.0624 1852 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys
13:27:13.0624 1852 IRENUM - ok
13:27:13.0624 1852 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\drivers\isapnp.sys
13:27:13.0624 1852 isapnp - ok
13:27:13.0640 1852 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
13:27:13.0640 1852 iScsiPrt - ok
13:27:13.0671 1852 JRSKD24 - ok
13:27:13.0686 1852 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\DRIVERS\kbdclass.sys
13:27:13.0686 1852 kbdclass - ok
13:27:13.0718 1852 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\windows\system32\drivers\kbdhid.sys
13:27:13.0718 1852 kbdhid - ok
13:27:13.0780 1852 [ B2023B8C0ACA7A4FF75A69E877DFB2D4 ] kcrtx64 C:\windows\system32\kcrtx64.sys
13:27:13.0780 1852 kcrtx64 - ok
13:27:13.0811 1852 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\windows\system32\lsass.exe
13:27:13.0811 1852 KeyIso - ok
13:27:13.0827 1852 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
13:27:13.0827 1852 KSecDD - ok
13:27:13.0842 1852 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
13:27:13.0842 1852 KSecPkg - ok
13:27:16.0557 1852 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
13:27:16.0557 1852 ksthunk - ok
13:27:16.0588 1852 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll
13:27:16.0588 1852 KtmRm - ok
13:27:16.0604 1852 [ EBED8B3FF4A823C1A6EEBEED7B29353F ] L1C C:\windows\system32\DRIVERS\L1C62x64.sys
13:27:16.0604 1852 L1C - ok
13:27:16.0635 1852 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\windows\System32\srvsvc.dll
13:27:16.0635 1852 LanmanServer - ok
13:27:16.0666 1852 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
13:27:16.0666 1852 LanmanWorkstation - ok
13:27:16.0697 1852 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
13:27:16.0697 1852 lltdio - ok
13:27:16.0744 1852 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll
13:27:16.0744 1852 lltdsvc - ok
13:27:16.0744 1852 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll
13:27:16.0744 1852 lmhosts - ok
13:27:16.0806 1852 [ 2ED1786B7542CDA261029F6B526EDF44 ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
13:27:16.0806 1852 LMS - ok
13:27:16.0853 1852 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\drivers\lsi_fc.sys
13:27:16.0853 1852 LSI_FC - ok
13:27:16.0900 1852 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\drivers\lsi_sas.sys
13:27:16.0900 1852 LSI_SAS - ok
13:27:16.0900 1852 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\drivers\lsi_sas2.sys
13:27:16.0900 1852 LSI_SAS2 - ok
13:27:16.0900 1852 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\drivers\lsi_scsi.sys
13:27:16.0916 1852 LSI_SCSI - ok
13:27:16.0931 1852 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys
13:27:16.0931 1852 luafv - ok
13:27:16.0962 1852 [ 79D51E7F5926E8CE1B3EBECEBAE28CFF ] mcdbus C:\windows\system32\DRIVERS\mcdbus.sys
13:27:16.0962 1852 mcdbus - ok
13:27:16.0994 1852 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
13:27:16.0994 1852 Mcx2Svc - ok
13:27:17.0009 1852 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\drivers\megasas.sys
13:27:17.0009 1852 megasas - ok
13:27:17.0040 1852 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\drivers\MegaSR.sys
13:27:17.0040 1852 MegaSR - ok
13:27:17.0087 1852 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\windows\system32\DRIVERS\HECIx64.sys
13:27:17.0087 1852 MEIx64 - ok
13:27:17.0165 1852 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
13:27:17.0165 1852 Microsoft Office Groove Audit Service - ok
13:27:17.0196 1852 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll
13:27:17.0196 1852 MMCSS - ok
13:27:17.0228 1852 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys
13:27:17.0228 1852 Modem - ok
13:27:17.0228 1852 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys
13:27:17.0228 1852 monitor - ok
13:27:17.0243 1852 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys
13:27:17.0243 1852 mouclass - ok
13:27:17.0259 1852 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
13:27:17.0259 1852 mouhid - ok
13:27:17.0290 1852 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\windows\system32\drivers\mountmgr.sys
13:27:17.0290 1852 mountmgr - ok
13:27:17.0352 1852 [ 51A84B690DF519DCF656F780243D953E ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
13:27:17.0352 1852 MozillaMaintenance - ok
13:27:17.0399 1852 [ F8A10560B35C66F9DE212F03DAD5BFA7 ] MpFilter C:\windows\system32\DRIVERS\MpFilter.sys
13:27:17.0399 1852 MpFilter - ok
13:27:17.0415 1852 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\windows\system32\drivers\mpio.sys
13:27:17.0430 1852 mpio - ok
13:27:17.0446 1852 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
13:27:17.0446 1852 mpsdrv - ok
13:27:17.0477 1852 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\windows\system32\mpssvc.dll
13:27:17.0477 1852 MpsSvc - ok
13:27:17.0508 1852 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
13:27:17.0508 1852 MRxDAV - ok
13:27:17.0524 1852 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
13:27:17.0524 1852 mrxsmb - ok
13:27:17.0540 1852 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
13:27:17.0555 1852 mrxsmb10 - ok
13:27:17.0571 1852 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
13:27:17.0571 1852 mrxsmb20 - ok
13:27:17.0586 1852 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\windows\system32\DRIVERS\msahci.sys
13:27:17.0586 1852 msahci - ok
13:27:17.0618 1852 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\windows\system32\drivers\msdsm.sys
13:27:17.0618 1852 msdsm - ok
13:27:17.0633 1852 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe
13:27:17.0633 1852 MSDTC - ok
13:27:17.0649 1852 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys
13:27:17.0649 1852 Msfs - ok
13:27:17.0696 1852 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
13:27:17.0696 1852 mshidkmdf - ok
13:27:17.0696 1852 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\drivers\msisadrv.sys
13:27:17.0696 1852 msisadrv - ok
13:27:17.0727 1852 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll
13:27:17.0727 1852 MSiSCSI - ok
13:27:17.0727 1852 msiserver - ok
13:27:17.0758 1852 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
13:27:17.0758 1852 MSKSSRV - ok
13:27:17.0852 1852 [ E07DEC52FF801841BA9B6878A60304FB ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe
13:27:17.0852 1852 MsMpSvc - ok
13:27:17.0883 1852 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
13:27:17.0898 1852 MSPCLOCK - ok
13:27:17.0898 1852 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
13:27:17.0898 1852 MSPQM - ok
13:27:17.0914 1852 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\windows\system32\drivers\MsRPC.sys
13:27:17.0914 1852 MsRPC - ok
13:27:17.0914 1852 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\DRIVERS\mssmbios.sys
13:27:17.0914 1852 mssmbios - ok
13:27:17.0930 1852 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
13:27:17.0930 1852 MSTEE - ok
13:27:17.0945 1852 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\drivers\MTConfig.sys
13:27:17.0945 1852 MTConfig - ok
13:27:17.0961 1852 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys
13:27:17.0961 1852 Mup - ok
13:27:17.0976 1852 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\windows\system32\qagentRT.dll
13:27:17.0992 1852 napagent - ok
13:27:18.0039 1852 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
13:27:18.0039 1852 NativeWifiP - ok
13:27:18.0086 1852 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\windows\system32\drivers\ndis.sys
13:27:18.0101 1852 NDIS - ok
13:27:20.0831 1852 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
13:27:20.0831 1852 NdisCap - ok
13:27:20.0862 1852 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
13:27:20.0862 1852 NdisTapi - ok
13:27:20.0909 1852 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
13:27:20.0909 1852 Ndisuio - ok
13:27:20.0909 1852 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
13:27:20.0909 1852 NdisWan - ok
13:27:20.0925 1852 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
13:27:20.0925 1852 NDProxy - ok
13:27:20.0925 1852 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
13:27:20.0925 1852 NetBIOS - ok
13:27:20.0925 1852 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
13:27:20.0925 1852 NetBT - ok
13:27:20.0956 1852 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\windows\system32\lsass.exe
13:27:20.0956 1852 Netlogon - ok
13:27:21.0003 1852 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll
13:27:21.0003 1852 Netman - ok
13:27:21.0018 1852 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll
13:27:21.0018 1852 netprofm - ok
13:27:21.0050 1852 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
13:27:21.0050 1852 NetTcpPortSharing - ok
13:27:21.0081 1852 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\drivers\nfrd960.sys
13:27:21.0081 1852 nfrd960 - ok
13:27:21.0143 1852 [ 162100E0BC8377710F9D170631921C03 ] NisDrv C:\windows\system32\DRIVERS\NisDrvWFP.sys
13:27:21.0143 1852 NisDrv - ok
13:27:21.0174 1852 [ C6E15F2F95F9C0A6098D43510B604E52 ] NisSrv C:\Program Files\Microsoft Security Client\NisSrv.exe
13:27:21.0174 1852 NisSrv - ok
13:27:21.0221 1852 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\windows\System32\nlasvc.dll
13:27:21.0221 1852 NlaSvc - ok
13:27:21.0237 1852 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys
13:27:21.0237 1852 Npfs - ok
13:27:21.0268 1852 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll
13:27:21.0268 1852 nsi - ok
13:27:21.0268 1852 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
13:27:21.0268 1852 nsiproxy - ok
13:27:21.0330 1852 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\windows\system32\drivers\Ntfs.sys
13:27:21.0330 1852 Ntfs - ok
13:27:21.0377 1852 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys
13:27:21.0377 1852 Null - ok
13:27:21.0393 1852 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\windows\system32\drivers\nvraid.sys
13:27:21.0408 1852 nvraid - ok
13:27:21.0424 1852 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\windows\system32\drivers\nvstor.sys
13:27:21.0424 1852 nvstor - ok
13:27:21.0455 1852 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\drivers\nv_agp.sys
13:27:21.0455 1852 nv_agp - ok
13:27:21.0533 1852 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
13:27:21.0533 1852 odserv - ok
13:27:21.0564 1852 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys
13:27:21.0564 1852 ohci1394 - ok
13:27:21.0596 1852 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:27:21.0596 1852 ose - ok
13:27:21.0627 1852 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll
13:27:21.0627 1852 p2pimsvc - ok
13:27:21.0658 1852 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll
13:27:21.0658 1852 p2psvc - ok
13:27:21.0689 1852 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\drivers\parport.sys
13:27:21.0689 1852 Parport - ok
13:27:21.0720 1852 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\windows\system32\drivers\partmgr.sys
13:27:21.0720 1852 partmgr - ok
13:27:21.0752 1852 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll
13:27:21.0752 1852 PcaSvc - ok
13:27:21.0783 1852 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\windows\system32\drivers\pci.sys
13:27:21.0783 1852 pci - ok
13:27:21.0798 1852 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\DRIVERS\pciide.sys
13:27:21.0798 1852 pciide - ok
13:27:21.0814 1852 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\drivers\pcmcia.sys
13:27:21.0814 1852 pcmcia - ok
13:27:21.0845 1852 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys
13:27:21.0845 1852 pcw - ok
13:27:21.0861 1852 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys
13:27:21.0861 1852 PEAUTH - ok
13:27:21.0939 1852 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe
13:27:21.0939 1852 PerfHost - ok
13:27:21.0970 1852 [ 91111CEBBDE8015E822C46120ED9537C ] PGEffect C:\windows\system32\DRIVERS\pgeffect.sys
13:27:21.0970 1852 PGEffect - ok
13:27:22.0001 1852 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\windows\system32\pla.dll
13:27:22.0017 1852 pla - ok
13:27:22.0048 1852 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\windows\system32\umpnpmgr.dll
13:27:22.0048 1852 PlugPlay - ok
13:27:22.0079 1852 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
13:27:22.0079 1852 PNRPAutoReg - ok
13:27:22.0110 1852 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll
13:27:22.0110 1852 PNRPsvc - ok
13:27:24.0856 1852 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
13:27:24.0856 1852 PolicyAgent - ok
13:27:24.0887 1852 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\windows\system32\umpo.dll
13:27:24.0887 1852 Power - ok
13:27:24.0918 1852 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
13:27:24.0918 1852 PptpMiniport - ok
13:27:24.0934 1852 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\drivers\processr.sys
13:27:24.0934 1852 Processor - ok
13:27:24.0981 1852 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\windows\system32\profsvc.dll
13:27:24.0996 1852 ProfSvc - ok
13:27:25.0012 1852 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
13:27:25.0012 1852 ProtectedStorage - ok
13:27:25.0043 1852 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\windows\system32\DRIVERS\pacer.sys
13:27:25.0043 1852 Psched - ok
13:27:25.0106 1852 [ C8FCB4899F8B70CC34E0D9876A80963C ] QIOMem C:\windows\system32\DRIVERS\QIOMem.sys
13:27:25.0106 1852 QIOMem - ok
13:27:25.0152 1852 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\drivers\ql2300.sys
13:27:25.0152 1852 ql2300 - ok
13:27:25.0199 1852 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\drivers\ql40xx.sys
13:27:25.0199 1852 ql40xx - ok
13:27:25.0215 1852 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll
13:27:25.0215 1852 QWAVE - ok
13:27:25.0230 1852 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
13:27:25.0230 1852 QWAVEdrv - ok
13:27:25.0262 1852 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
13:27:25.0262 1852 RasAcd - ok
13:27:25.0293 1852 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
13:27:25.0293 1852 RasAgileVpn - ok
13:27:25.0308 1852 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll
13:27:25.0308 1852 RasAuto - ok
13:27:25.0324 1852 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
13:27:25.0324 1852 Rasl2tp - ok
13:27:25.0340 1852 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\windows\System32\rasmans.dll
13:27:25.0355 1852 RasMan - ok
13:27:25.0355 1852 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
13:27:25.0355 1852 RasPppoe - ok
13:27:25.0371 1852 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
13:27:25.0371 1852 RasSstp - ok
13:27:25.0386 1852 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
13:27:25.0402 1852 rdbss - ok
13:27:25.0402 1852 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\drivers\rdpbus.sys
13:27:25.0402 1852 rdpbus - ok
13:27:25.0433 1852 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
13:27:25.0433 1852 RDPCDD - ok
13:27:25.0449 1852 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
13:27:25.0449 1852 RDPENCDD - ok
13:27:25.0449 1852 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
13:27:25.0449 1852 RDPREFMP - ok
13:27:25.0480 1852 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\windows\system32\drivers\RDPWD.sys
13:27:25.0480 1852 RDPWD - ok
13:27:25.0511 1852 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\windows\system32\drivers\rdyboost.sys
13:27:25.0511 1852 rdyboost - ok
13:27:25.0542 1852 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll
13:27:25.0542 1852 RemoteAccess - ok
13:27:25.0589 1852 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll
13:27:25.0589 1852 RemoteRegistry - ok
13:27:25.0605 1852 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
13:27:25.0605 1852 RpcEptMapper - ok
13:27:25.0620 1852 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe
13:27:25.0636 1852 RpcLocator - ok
13:27:25.0667 1852 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\windows\System32\rpcss.dll
13:27:25.0667 1852 RpcSs - ok
13:27:25.0698 1852 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
13:27:25.0698 1852 rspndr - ok
13:27:25.0745 1852 [ 135A64530D7699AD48F29D73A658DD11 ] RSUSBSTOR C:\windows\system32\Drivers\RtsUStor.sys
13:27:25.0745 1852 RSUSBSTOR - ok
13:27:25.0761 1852 [ E54A5586A28D0630A79A68BBAB84BFCF ] RSUSBVSTOR C:\windows\system32\Drivers\RTSUVSTOR.sys
13:27:25.0761 1852 RSUSBVSTOR - ok
13:27:25.0823 1852 [ 64FDF4FE366CA42DA2B7D9D424B6E39B ] RTL8192Ce C:\windows\system32\DRIVERS\rtl8192Ce.sys
13:27:25.0823 1852 RTL8192Ce - ok
13:27:25.0839 1852 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\windows\system32\lsass.exe
13:27:25.0839 1852 SamSs - ok
13:27:25.0870 1852 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\windows\system32\drivers\sbp2port.sys
13:27:25.0870 1852 sbp2port - ok
13:27:25.0901 1852 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll
13:27:25.0901 1852 SCardSvr - ok
13:27:25.0917 1852 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
13:27:25.0917 1852 scfilter - ok
13:27:28.0631 1852 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\windows\system32\schedsvc.dll
13:27:28.0631 1852 Schedule - ok
13:27:28.0662 1852 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\windows\System32\certprop.dll
13:27:28.0662 1852 SCPolicySvc - ok
13:27:28.0709 1852 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\windows\System32\SDRSVC.dll
13:27:28.0709 1852 SDRSVC - ok
13:27:28.0740 1852 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys
13:27:28.0756 1852 secdrv - ok
13:27:28.0772 1852 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\windows\system32\seclogon.dll
13:27:28.0772 1852 seclogon - ok
13:27:28.0787 1852 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\system32\sens.dll
13:27:28.0787 1852 SENS - ok
13:27:28.0803 1852 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll
13:27:28.0803 1852 SensrSvc - ok
13:27:28.0834 1852 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\drivers\serenum.sys
13:27:28.0834 1852 Serenum - ok
13:27:28.0850 1852 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\drivers\serial.sys
13:27:28.0850 1852 Serial - ok
13:27:28.0881 1852 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\drivers\sermouse.sys
13:27:28.0881 1852 sermouse - ok
13:27:28.0896 1852 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\windows\system32\sessenv.dll
13:27:28.0912 1852 SessionEnv - ok
13:27:28.0928 1852 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\drivers\sffdisk.sys
13:27:28.0928 1852 sffdisk - ok
13:27:28.0943 1852 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
13:27:28.0943 1852 sffp_mmc - ok
13:27:28.0943 1852 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
13:27:28.0943 1852 sffp_sd - ok
13:27:28.0943 1852 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\drivers\sfloppy.sys
13:27:28.0959 1852 sfloppy - ok
13:27:28.0974 1852 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\windows\System32\ipnathlp.dll
13:27:28.0990 1852 SharedAccess - ok
13:27:29.0021 1852 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
13:27:29.0021 1852 ShellHWDetection - ok
13:27:29.0037 1852 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\drivers\SiSRaid2.sys
13:27:29.0052 1852 SiSRaid2 - ok
13:27:29.0052 1852 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\drivers\sisraid4.sys
13:27:29.0068 1852 SiSRaid4 - ok
13:27:29.0084 1852 [ 2A904CA870C81BB4080D6E55FCB1FED7 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
13:27:29.0084 1852 SkypeUpdate - ok
13:27:29.0115 1852 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys
13:27:29.0115 1852 Smb - ok
13:27:29.0146 1852 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe
13:27:29.0146 1852 SNMPTRAP - ok
13:27:29.0208 1852 [ 12583AF6CBE0050651EAF2723B3AD7B3 ] speedfan C:\windows\syswow64\speedfan.sys
13:27:29.0208 1852 speedfan - ok
13:27:29.0224 1852 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys
13:27:29.0224 1852 spldr - ok
13:27:29.0271 1852 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\windows\System32\spoolsv.exe
13:27:29.0286 1852 Spooler - ok
13:27:29.0364 1852 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\windows\system32\sppsvc.exe
13:27:29.0396 1852 sppsvc - ok
13:27:29.0396 1852 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll
13:27:29.0396 1852 sppuinotify - ok
13:27:29.0427 1852 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\windows\system32\DRIVERS\srv.sys
13:27:29.0427 1852 srv - ok
13:27:29.0442 1852 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
13:27:29.0442 1852 srv2 - ok
13:27:29.0505 1852 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\windows\system32\DRIVERS\VSTAZL6.SYS
13:27:29.0505 1852 SrvHsfHDA - ok
13:27:29.0536 1852 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\windows\system32\DRIVERS\VSTDPV6.SYS
13:27:29.0552 1852 SrvHsfV92 - ok
13:27:29.0598 1852 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\windows\system32\DRIVERS\VSTCNXT6.SYS
13:27:29.0598 1852 SrvHsfWinac - ok
13:27:29.0630 1852 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
13:27:29.0630 1852 srvnet - ok
13:27:29.0661 1852 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
13:27:29.0661 1852 SSDPSRV - ok
13:27:29.0676 1852 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll
13:27:29.0676 1852 SstpSvc - ok
13:27:29.0708 1852 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\drivers\stexstor.sys
13:27:29.0708 1852 stexstor - ok
13:27:29.0754 1852 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\windows\System32\wiaservc.dll
13:27:29.0754 1852 stisvc - ok
13:27:29.0770 1852 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\DRIVERS\swenum.sys
13:27:29.0770 1852 swenum - ok
13:27:29.0848 1852 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
13:27:29.0848 1852 SwitchBoard - ok
13:27:29.0879 1852 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll
13:27:29.0879 1852 swprv - ok
13:27:29.0957 1852 [ F5B46DF59FEAA48A442AED7EEB754D4B ] SynTP C:\windows\system32\DRIVERS\SynTP.sys
13:27:29.0957 1852 SynTP - ok
13:27:30.0035 1852 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\windows\system32\sysmain.dll
13:27:30.0035 1852 SysMain - ok
13:27:30.0051 1852 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
13:27:30.0051 1852 TabletInputService - ok
13:27:30.0098 1852 taisregispinger - ok
13:27:32.0828 1852 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\windows\System32\tapisrv.dll
13:27:32.0828 1852 TapiSrv - ok
13:27:32.0843 1852 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll
13:27:32.0843 1852 TBS - ok
13:27:32.0921 1852 [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip C:\windows\system32\drivers\tcpip.sys
13:27:32.0937 1852 Tcpip - ok
13:27:33.0015 1852 [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
13:27:33.0030 1852 TCPIP6 - ok
13:27:33.0062 1852 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
13:27:33.0062 1852 tcpipreg - ok
13:27:33.0093 1852 [ FD542B661BD22FA69CA789AD0AC58C29 ] tdcmdpst C:\windows\system32\DRIVERS\tdcmdpst.sys
13:27:33.0093 1852 tdcmdpst - ok
13:27:33.0108 1852 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
13:27:33.0108 1852 TDPIPE - ok
13:27:33.0140 1852 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
13:27:33.0140 1852 TDTCP - ok
13:27:33.0155 1852 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\windows\system32\DRIVERS\tdx.sys
13:27:33.0155 1852 tdx - ok
13:27:33.0155 1852 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\windows\system32\DRIVERS\termdd.sys
13:27:33.0155 1852 TermDD - ok
13:27:33.0202 1852 [ 2E648163254233755035B46DD7B89123 ] TermService C:\windows\System32\termsrv.dll
13:27:33.0202 1852 TermService - ok
13:27:33.0202 1852 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll
13:27:33.0218 1852 Themes - ok
13:27:33.0233 1852 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll
13:27:33.0233 1852 THREADORDER - ok
13:27:33.0249 1852 TMachInfo - ok
13:27:33.0280 1852 [ 8E2C799D3476EAC32C3BA0DF7CE6AF19 ] TODDSrv C:\Windows\system32\TODDSrv.exe
13:27:33.0280 1852 TODDSrv - ok
13:27:33.0358 1852 [ CDC97FA5C42B07FB0D4600E17C32F582 ] TosCoSrv C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
13:27:33.0358 1852 TosCoSrv - ok
13:27:33.0389 1852 [ EDB4B432DB13EA3D1EB2356310D33263 ] TOSHIBA HDD SSD Alert Service C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
13:27:33.0389 1852 TOSHIBA HDD SSD Alert Service - ok
13:27:33.0420 1852 [ 09FF7B0B1B5C3D225495CB6F5A9B39F8 ] tos_sps64 C:\windows\system32\DRIVERS\tos_sps64.sys
13:27:33.0420 1852 tos_sps64 - ok
13:27:33.0483 1852 [ D65C6B0C070534336B72005391B6168A ] TPCHSrv C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
13:27:33.0483 1852 TPCHSrv - ok
13:27:33.0530 1852 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll
13:27:33.0530 1852 TrkWks - ok
13:27:33.0577 1852 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
13:27:33.0577 1852 TrustedInstaller - ok
13:27:33.0592 1852 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
13:27:33.0592 1852 tssecsrv - ok
13:27:33.0608 1852 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
13:27:33.0608 1852 TsUsbFlt - ok
13:27:33.0623 1852 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\windows\system32\drivers\TsUsbGD.sys
13:27:33.0623 1852 TsUsbGD - ok
13:27:33.0655 1852 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
13:27:33.0655 1852 tunnel - ok
13:27:33.0701 1852 [ 550B567F9364D8F7684C3FB3EA665A72 ] TVALZ C:\windows\system32\DRIVERS\TVALZ_O.SYS
13:27:33.0701 1852 TVALZ - ok
13:27:33.0733 1852 [ 9C7191F4B2E49BFF47A6C1144B5923FA ] TVALZFL C:\windows\system32\DRIVERS\TVALZFL.sys
13:27:33.0733 1852 TVALZFL - ok
13:27:33.0748 1852 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\drivers\uagp35.sys
13:27:33.0748 1852 uagp35 - ok
13:27:33.0748 1852 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\windows\system32\DRIVERS\udfs.sys
13:27:33.0764 1852 udfs - ok
13:27:33.0779 1852 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe
13:27:33.0779 1852 UI0Detect - ok
13:27:33.0811 1852 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
13:27:33.0811 1852 uliagpkx - ok
13:27:33.0842 1852 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\windows\system32\DRIVERS\umbus.sys
13:27:33.0842 1852 umbus - ok
13:27:33.0842 1852 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\drivers\umpass.sys
13:27:33.0842 1852 UmPass - ok
13:27:33.0967 1852 [ 7E5E1603D0FF2D240AE70295C5C3FEFC ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
13:27:33.0982 1852 UNS - ok
13:27:34.0013 1852 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll
13:27:34.0013 1852 upnphost - ok
13:27:34.0045 1852 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
13:27:34.0045 1852 usbccgp - ok
13:27:34.0091 1852 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\drivers\usbcir.sys
13:27:34.0091 1852 usbcir - ok
13:27:34.0123 1852 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\windows\system32\drivers\usbehci.sys
13:27:34.0123 1852 usbehci - ok
13:27:36.0837 1852 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
13:27:36.0837 1852 usbhub - ok
13:27:36.0853 1852 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\windows\system32\drivers\usbohci.sys
13:27:36.0853 1852 usbohci - ok
13:27:36.0868 1852 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\drivers\usbprint.sys
13:27:36.0868 1852 usbprint - ok
13:27:36.0884 1852 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
13:27:36.0884 1852 USBSTOR - ok
13:27:36.0915 1852 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\windows\system32\drivers\usbuhci.sys
13:27:36.0915 1852 usbuhci - ok
13:27:36.0946 1852 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\windows\system32\Drivers\usbvideo.sys
13:27:36.0946 1852 usbvideo - ok
13:27:36.0977 1852 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll
13:27:36.0977 1852 UxSms - ok
13:27:36.0993 1852 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\windows\system32\lsass.exe
13:27:36.0993 1852 VaultSvc - ok
13:27:37.0024 1852 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
13:27:37.0024 1852 vdrvroot - ok
13:27:37.0055 1852 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\windows\System32\vds.exe
13:27:37.0071 1852 vds - ok
13:27:37.0102 1852 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys
13:27:37.0102 1852 vga - ok
13:27:37.0102 1852 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys
13:27:37.0102 1852 VgaSave - ok
13:27:37.0118 1852 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\windows\system32\drivers\vhdmp.sys
13:27:37.0118 1852 vhdmp - ok
13:27:37.0149 1852 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\drivers\viaide.sys
13:27:37.0149 1852 viaide - ok
13:27:37.0149 1852 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\windows\system32\drivers\volmgr.sys
13:27:37.0149 1852 volmgr - ok
13:27:37.0165 1852 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\windows\system32\drivers\volmgrx.sys
13:27:37.0180 1852 volmgrx - ok
13:27:37.0180 1852 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\windows\system32\drivers\volsnap.sys
13:27:37.0180 1852 volsnap - ok
13:27:37.0196 1852 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\drivers\vsmraid.sys
13:27:37.0211 1852 vsmraid - ok
13:27:37.0258 1852 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\windows\system32\vssvc.exe
13:27:37.0258 1852 VSS - ok
13:27:37.0305 1852 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
13:27:37.0305 1852 vwifibus - ok
13:27:37.0305 1852 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
13:27:37.0305 1852 vwififlt - ok
13:27:37.0352 1852 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll
13:27:37.0352 1852 W32Time - ok
13:27:37.0383 1852 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\drivers\wacompen.sys
13:27:37.0383 1852 WacomPen - ok
13:27:37.0414 1852 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
13:27:37.0414 1852 WANARP - ok
13:27:37.0414 1852 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
13:27:37.0414 1852 Wanarpv6 - ok
13:27:37.0461 1852 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
13:27:37.0477 1852 WatAdminSvc - ok
13:27:37.0523 1852 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\windows\system32\wbengine.exe
13:27:37.0539 1852 wbengine - ok
13:27:37.0539 1852 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
13:27:37.0539 1852 WbioSrvc - ok
13:27:37.0555 1852 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\windows\System32\wcncsvc.dll
13:27:37.0555 1852 wcncsvc - ok
13:27:37.0570 1852 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
13:27:37.0570 1852 WcsPlugInService - ok
13:27:37.0586 1852 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\drivers\wd.sys
13:27:37.0586 1852 Wd - ok
13:27:37.0633 1852 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
13:27:37.0633 1852 Wdf01000 - ok
13:27:37.0648 1852 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll
13:27:37.0648 1852 WdiServiceHost - ok
13:27:37.0664 1852 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll
13:27:37.0664 1852 WdiSystemHost - ok
13:27:37.0664 1852 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\windows\System32\webclnt.dll
13:27:37.0664 1852 WebClient - ok
13:27:37.0679 1852 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll
13:27:37.0679 1852 Wecsvc - ok
13:27:37.0695 1852 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll
13:27:37.0695 1852 wercplsupport - ok
13:27:37.0711 1852 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll
13:27:37.0711 1852 WerSvc - ok
13:27:37.0742 1852 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
13:27:37.0742 1852 WfpLwf - ok
13:27:37.0773 1852 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys
13:27:37.0773 1852 WIMMount - ok
13:27:37.0773 1852 WinDefend - ok
13:27:37.0773 1852 WinHttpAutoProxySvc - ok
13:27:37.0835 1852 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
13:27:37.0835 1852 Winmgmt - ok
13:27:40.0628 1852 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\windows\system32\WsmSvc.dll
13:27:40.0628 1852 WinRM - ok
13:27:40.0690 1852 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\windows\system32\DRIVERS\WinUsb.sys
13:27:40.0690 1852 WinUsb - ok
13:27:40.0721 1852 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll
13:27:40.0737 1852 Wlansvc - ok
13:27:40.0753 1852 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\DRIVERS\wmiacpi.sys
13:27:40.0753 1852 WmiAcpi - ok
13:27:40.0784 1852 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
13:27:40.0784 1852 wmiApSrv - ok
13:27:40.0831 1852 WMPNetworkSvc - ok
13:27:40.0862 1852 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll
13:27:40.0862 1852 WPCSvc - ok
13:27:40.0877 1852 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
13:27:40.0877 1852 WPDBusEnum - ok
13:27:40.0909 1852 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
13:27:40.0909 1852 ws2ifsl - ok
13:27:40.0924 1852 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\windows\system32\wscsvc.dll
13:27:40.0940 1852 wscsvc - ok
13:27:40.0940 1852 WSearch - ok
13:27:41.0002 1852 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\windows\system32\wuaueng.dll
13:27:41.0018 1852 wuauserv - ok
13:27:41.0033 1852 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\windows\system32\drivers\WudfPf.sys
13:27:41.0033 1852 WudfPf - ok
13:27:41.0065 1852 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
13:27:41.0065 1852 WUDFRd - ok
13:27:41.0080 1852 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\windows\System32\WUDFSvc.dll
13:27:41.0080 1852 wudfsvc - ok
13:27:41.0096 1852 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\windows\System32\wwansvc.dll
13:27:41.0096 1852 WwanSvc - ok
13:27:41.0127 1852 ================ Scan global ===============================
13:27:41.0143 1852 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
13:27:41.0174 1852 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\windows\system32\winsrv.dll
13:27:41.0189 1852 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\windows\system32\winsrv.dll
13:27:41.0221 1852 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
13:27:41.0252 1852 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
13:27:41.0252 1852 [Global] - ok
13:27:41.0252 1852 ================ Scan MBR ==================================
13:27:41.0267 1852 [ 5B5E648D12FCADC244C1EC30318E1EB9 ] \Device\Harddisk0\DR0
13:27:41.0439 1852 \Device\Harddisk0\DR0 - ok
13:27:41.0439 1852 ================ Scan VBR ==================================
13:27:41.0439 1852 [ A47C333C7AC2E0501779D8928436FA7F ] \Device\Harddisk0\DR0\Partition1
13:27:41.0455 1852 \Device\Harddisk0\DR0\Partition1 - ok
13:27:41.0470 1852 [ AADB638BF1DCC03B6D572E7EBCDF4ACA ] \Device\Harddisk0\DR0\Partition2
13:27:41.0470 1852 \Device\Harddisk0\DR0\Partition2 - ok
13:27:41.0470 1852 ============================================================
13:27:41.0470 1852 Scan finished
13:27:41.0470 1852 ============================================================
13:27:41.0470 3132 Detected object count: 0
13:27:41.0470 3132 Actual detected object count: 0
13:28:33.0637 4500 ============================================================
13:28:33.0637 4500 Scan started
13:28:33.0637 4500 Mode: Manual; SigCheck; TDLFS;
13:28:33.0637 4500 ============================================================
13:28:37.0100 4500 ================ Scan system memory ========================
13:28:37.0100 4500 System memory - ok
13:28:37.0100 4500 ================ Scan services =============================
13:28:37.0209 4500 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
13:28:37.0271 4500 1394ohci - ok
13:28:37.0287 4500 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\windows\system32\drivers\ACPI.sys
13:28:37.0303 4500 ACPI - ok
13:28:37.0303 4500 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
13:28:37.0349 4500 AcpiPmi - ok
13:28:37.0396 4500 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
13:28:37.0412 4500 AdobeARMservice - ok
13:28:37.0490 4500 [ 563CDCFEEAEF97163E206AF71A61AA6E ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
13:28:37.0505 4500 AdobeFlashPlayerUpdateSvc - ok
13:28:37.0537 4500 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\drivers\adp94xx.sys
13:28:37.0552 4500 adp94xx - ok
13:28:37.0568 4500 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\drivers\adpahci.sys
13:28:37.0583 4500 adpahci - ok
13:28:37.0583 4500 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\drivers\adpu320.sys
13:28:37.0599 4500 adpu320 - ok
13:28:37.0615 4500 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
13:28:37.0661 4500 AeLookupSvc - ok
13:28:37.0708 4500 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\windows\system32\drivers\afd.sys
13:28:37.0724 4500 AFD - ok
13:28:37.0755 4500 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\drivers\agp440.sys
13:28:37.0771 4500 agp440 - ok
13:28:37.0802 4500 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe
13:28:37.0817 4500 ALG - ok
13:28:37.0833 4500 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\drivers\aliide.sys
13:28:37.0849 4500 aliide - ok
13:28:37.0864 4500 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\drivers\amdide.sys
13:28:37.0880 4500 amdide - ok
13:28:37.0880 4500 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\drivers\amdk8.sys
13:28:37.0895 4500 AmdK8 - ok
13:28:37.0895 4500 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\drivers\amdppm.sys
13:28:37.0911 4500 AmdPPM - ok
13:28:37.0942 4500 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\windows\system32\drivers\amdsata.sys
13:28:37.0942 4500 amdsata - ok
13:28:37.0973 4500 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\drivers\amdsbs.sys
13:28:37.0989 4500 amdsbs - ok
13:28:38.0005 4500 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\windows\system32\drivers\amdxata.sys
13:28:38.0020 4500 amdxata - ok
13:28:38.0020 4500 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\windows\system32\drivers\appid.sys
13:28:38.0098 4500 AppID - ok
13:28:38.0114 4500 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll
13:28:38.0161 4500 AppIDSvc - ok
13:28:38.0176 4500 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\windows\System32\appinfo.dll
13:28:38.0207 4500 Appinfo - ok
13:28:38.0223 4500 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\drivers\arc.sys
13:28:38.0223 4500 arc - ok
13:28:38.0239 4500 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\drivers\arcsas.sys
13:28:38.0254 4500 arcsas - ok
13:28:38.0254 4500 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
13:28:38.0301 4500 AsyncMac - ok
13:28:38.0317 4500 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\drivers\atapi.sys
13:28:38.0317 4500 atapi - ok
13:28:38.0363 4500 [ 0BF3E954F6A0CD505EBA6F74DCE2413A ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
13:28:38.0395 4500 AudioEndpointBuilder - ok
13:28:38.0395 4500 [ 0BF3E954F6A0CD505EBA6F74DCE2413A ] AudioSrv C:\windows\System32\Audiosrv.dll
13:28:38.0410 4500 AudioSrv - ok
13:28:38.0441 4500 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\windows\System32\AxInstSV.dll
13:28:38.0504 4500 AxInstSV - ok
13:28:38.0535 4500 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\drivers\bxvbda.sys
13:28:38.0566 4500 b06bdrv - ok
13:28:38.0582 4500 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
13:28:38.0613 4500 b57nd60a - ok
13:28:38.0629 4500 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll
13:28:38.0660 4500 BDESVC - ok
13:28:38.0691 4500 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys
13:28:38.0738 4500 Beep - ok
13:28:38.0753 4500 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\windows\System32\bfe.dll
13:28:38.0816 4500 BFE - ok
13:28:38.0847 4500 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\windows\system32\qmgr.dll
13:28:38.0894 4500 BITS - ok
13:28:38.0894 4500 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
13:28:38.0909 4500 blbdrive - ok
13:28:38.0941 4500 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\windows\system32\DRIVERS\bowser.sys
13:28:38.0972 4500 bowser - ok
13:28:39.0003 4500 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\drivers\BrFiltLo.sys
13:28:39.0019 4500 BrFiltLo - ok
13:28:39.0019 4500 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\drivers\BrFiltUp.sys
13:28:39.0034 4500 BrFiltUp - ok
13:28:39.0034 4500 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\windows\system32\DRIVERS\bridge.sys
13:28:39.0065 4500 BridgeMP - ok
13:28:39.0097 4500 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\windows\System32\browser.dll
13:28:39.0112 4500 Browser - ok
13:28:39.0112 4500 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys
13:28:39.0143 4500 Brserid - ok
13:28:39.0175 4500 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
13:28:39.0206 4500 BrSerWdm - ok
13:28:39.0206 4500 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
13:28:39.0221 4500 BrUsbMdm - ok
13:28:39.0237 4500 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
13:28:39.0237 4500 BrUsbSer - ok
13:28:39.0253 4500 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\drivers\bthmodem.sys
13:28:39.0253 4500 BTHMODEM - ok
13:28:39.0299 4500 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll
13:28:39.0346 4500 bthserv - ok
13:28:39.0346 4500 catchme - ok
13:28:39.0362 4500 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
13:28:39.0393 4500 cdfs - ok
13:28:39.0424 4500 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
13:28:39.0455 4500 cdrom - ok
13:28:39.0487 4500 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\windows\System32\certprop.dll
13:28:39.0533 4500 CertPropSvc - ok
13:28:39.0549 4500 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\drivers\circlass.sys
13:28:39.0565 4500 circlass - ok
13:28:39.0596 4500 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys
13:28:39.0611 4500 CLFS - ok
13:28:39.0674 4500 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:28:39.0689 4500 clr_optimization_v2.0.50727_32 - ok
13:28:39.0752 4500 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
13:28:39.0752 4500 clr_optimization_v2.0.50727_64 - ok
13:28:39.0814 4500 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:28:39.0830 4500 clr_optimization_v4.0.30319_32 - ok
13:28:39.0861 4500 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
13:28:39.0861 4500 clr_optimization_v4.0.30319_64 - ok
13:28:39.0877 4500 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
13:28:39.0908 4500 CmBatt - ok
13:28:39.0923 4500 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\drivers\cmdide.sys
13:28:39.0923 4500 cmdide - ok
13:28:39.0970 4500 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\windows\system32\Drivers\cng.sys
13:28:40.0001 4500 CNG - ok
13:28:40.0048 4500 [ 66847C979893A11CFCC2280E772D7EA1 ] CnxtHdAudService C:\windows\system32\drivers\CHDRT64.sys
13:28:40.0111 4500 CnxtHdAudService - ok
13:28:40.0126 4500 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\drivers\compbatt.sys
13:28:40.0142 4500 Compbatt - ok
13:28:42.0825 4500 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\windows\system32\DRIVERS\CompositeBus.sys
13:28:42.0887 4500 CompositeBus - ok
13:28:42.0887 4500 COMSysApp - ok
13:28:42.0903 4500 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\drivers\crcdisk.sys
13:28:42.0903 4500 crcdisk - ok
13:28:42.0950 4500 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\windows\system32\cryptsvc.dll
13:28:42.0965 4500 CryptSvc - ok
13:28:43.0012 4500 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\windows\system32\rpcss.dll
13:28:43.0043 4500 DcomLaunch - ok
13:28:43.0075 4500 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll
13:28:43.0121 4500 defragsvc - ok
13:28:43.0153 4500 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\windows\system32\Drivers\dfsc.sys
13:28:43.0199 4500 DfsC - ok
13:28:43.0231 4500 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\windows\system32\dhcpcore.dll
13:28:43.0262 4500 Dhcp - ok
13:28:43.0277 4500 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys
13:28:43.0324 4500 discache - ok
13:28:43.0340 4500 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\drivers\disk.sys
13:28:43.0355 4500 Disk - ok
13:28:43.0387 4500 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\windows\System32\dnsrslvr.dll
13:28:43.0418 4500 Dnscache - ok
13:28:43.0449 4500 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\windows\System32\dot3svc.dll
13:28:43.0496 4500 dot3svc - ok
13:28:43.0496 4500 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\windows\system32\dps.dll
13:28:43.0543 4500 DPS - ok
13:28:43.0558 4500 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
13:28:43.0589 4500 drmkaud - ok
13:28:43.0621 4500 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
13:28:43.0636 4500 DXGKrnl - ok
13:28:43.0667 4500 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll
13:28:43.0714 4500 EapHost - ok
13:28:43.0808 4500 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\drivers\evbda.sys
13:28:43.0839 4500 ebdrv - ok
13:28:43.0870 4500 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\windows\System32\lsass.exe
13:28:43.0886 4500 EFS - ok
13:28:43.0933 4500 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\windows\ehome\ehRecvr.exe
13:28:43.0964 4500 ehRecvr - ok
13:28:43.0995 4500 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe
13:28:44.0011 4500 ehSched - ok
13:28:44.0042 4500 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\drivers\elxstor.sys
13:28:44.0057 4500 elxstor - ok
13:28:44.0057 4500 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\drivers\errdev.sys
13:28:44.0089 4500 ErrDev - ok
13:28:44.0120 4500 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll
13:28:44.0167 4500 EventSystem - ok
13:28:44.0182 4500 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys
13:28:44.0213 4500 exfat - ok
13:28:44.0245 4500 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys
13:28:44.0291 4500 fastfat - ok
13:28:44.0323 4500 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\windows\system32\fxssvc.exe
13:28:44.0369 4500 Fax - ok
13:28:44.0401 4500 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\drivers\fdc.sys
13:28:44.0416 4500 fdc - ok
13:28:44.0432 4500 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll
13:28:44.0479 4500 fdPHost - ok
13:28:44.0479 4500 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll
13:28:44.0525 4500 FDResPub - ok
13:28:44.0525 4500 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
13:28:44.0541 4500 FileInfo - ok
13:28:44.0557 4500 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys
13:28:44.0603 4500 Filetrace - ok
13:28:44.0619 4500 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\drivers\flpydisk.sys
13:28:44.0635 4500 flpydisk - ok
13:28:44.0650 4500 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
13:28:44.0666 4500 FltMgr - ok
13:28:44.0713 4500 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\windows\system32\FntCache.dll
13:28:44.0759 4500 FontCache - ok
13:28:44.0806 4500 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
13:28:44.0806 4500 FontCache3.0.0.0 - ok
13:28:44.0822 4500 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys
13:28:44.0837 4500 FsDepends - ok
13:28:44.0869 4500 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
13:28:44.0869 4500 Fs_Rec - ok
13:28:44.0900 4500 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
13:28:44.0915 4500 fvevol - ok
13:28:44.0947 4500 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\drivers\gagp30kx.sys
13:28:44.0947 4500 gagp30kx - ok
13:28:44.0978 4500 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\windows\System32\gpsvc.dll
13:28:45.0025 4500 gpsvc - ok
13:28:45.0056 4500 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
13:28:45.0103 4500 hcw85cir - ok
13:28:45.0118 4500 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
13:28:45.0134 4500 HdAudAddService - ok
13:28:45.0165 4500 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\windows\system32\DRIVERS\HDAudBus.sys
13:28:45.0181 4500 HDAudBus - ok
13:28:45.0212 4500 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\drivers\HidBatt.sys
13:28:45.0227 4500 HidBatt - ok
13:28:45.0243 4500 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\drivers\hidbth.sys
13:28:45.0259 4500 HidBth - ok
13:28:45.0274 4500 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\drivers\hidir.sys
13:28:45.0290 4500 HidIr - ok
13:28:45.0321 4500 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\System32\hidserv.dll
13:28:45.0368 4500 hidserv - ok
13:28:45.0383 4500 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys
13:28:45.0399 4500 HidUsb - ok
13:28:45.0430 4500 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\windows\system32\kmsvc.dll
13:28:45.0477 4500 hkmsvc - ok
13:28:45.0477 4500 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
13:28:45.0508 4500 HomeGroupListener - ok
13:28:45.0539 4500 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
13:28:45.0555 4500 HomeGroupProvider - ok
13:28:45.0586 4500 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
13:28:45.0602 4500 HpSAMD - ok
13:28:45.0633 4500 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\windows\system32\drivers\HTTP.sys
13:28:45.0680 4500 HTTP - ok
13:28:45.0711 4500 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
13:28:45.0727 4500 hwpolicy - ok
13:28:45.0727 4500 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\DRIVERS\i8042prt.sys
13:28:45.0742 4500 i8042prt - ok
13:28:45.0773 4500 [ D469B77687E12FE43E344806740B624D ] iaStor C:\windows\system32\DRIVERS\iaStor.sys
13:28:45.0789 4500 iaStor - ok
13:28:45.0820 4500 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
13:28:45.0836 4500 iaStorV - ok
13:28:45.0883 4500 [ DAF66902F08796F9C694901660E5A64A ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
13:28:45.0898 4500 IDriverT ( UnsignedFile.Multi.Generic ) - warning
13:28:45.0898 4500 IDriverT - detected UnsignedFile.Multi.Generic (1)
13:28:45.0945 4500 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
13:28:45.0961 4500 idsvc - ok
13:28:46.0210 4500 [ 370C2A8629B30F910F740387795DDC6F ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys
13:28:46.0382 4500 igfx - ok
13:28:46.0413 4500 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\drivers\iirsp.sys
13:28:46.0429 4500 iirsp - ok
13:28:46.0460 4500 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\windows\System32\ikeext.dll
13:28:46.0507 4500 IKEEXT - ok
13:28:46.0553 4500 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\windows\system32\DRIVERS\IntcDAud.sys
13:28:46.0569 4500 IntcDAud - ok
13:28:46.0600 4500 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\drivers\intelide.sys
13:28:46.0616 4500 intelide - ok
13:28:46.0631 4500 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
13:28:46.0647 4500 intelppm - ok
13:28:46.0678 4500 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll
13:28:46.0725 4500 IPBusEnum - ok
13:28:46.0741 4500 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
13:28:46.0787 4500 IpFilterDriver - ok
13:28:46.0819 4500 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\windows\System32\iphlpsvc.dll
13:28:46.0850 4500 iphlpsvc - ok
13:28:46.0881 4500 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
13:28:46.0912 4500 IPMIDRV - ok
13:28:46.0912 4500 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys
13:28:46.0959 4500 IPNAT - ok
13:28:46.0975 4500 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys
13:28:46.0990 4500 IRENUM - ok
13:28:46.0990 4500 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\drivers\isapnp.sys
13:28:47.0006 4500 isapnp - ok
13:28:47.0037 4500 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
13:28:47.0053 4500 iScsiPrt - ok
13:28:47.0053 4500 JRSKD24 - ok
13:28:47.0068 4500 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\DRIVERS\kbdclass.sys
13:28:47.0068 4500 kbdclass - ok
13:28:47.0084 4500 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\windows\system32\drivers\kbdhid.sys
13:28:47.0115 4500 kbdhid - ok
13:28:47.0146 4500 [ B2023B8C0ACA7A4FF75A69E877DFB2D4 ] kcrtx64 C:\windows\system32\kcrtx64.sys
13:28:47.0146 4500 kcrtx64 - ok
13:28:47.0177 4500 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\windows\system32\lsass.exe
13:28:47.0177 4500 KeyIso - ok
13:28:47.0209 4500 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
13:28:47.0209 4500 KSecDD - ok
13:28:47.0240 4500 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
13:28:47.0240 4500 KSecPkg - ok
13:28:47.0271 4500 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
13:28:47.0318 4500 ksthunk - ok
13:28:47.0333 4500 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll
13:28:47.0396 4500 KtmRm - ok
13:28:47.0427 4500 [ EBED8B3FF4A823C1A6EEBEED7B29353F ] L1C C:\windows\system32\DRIVERS\L1C62x64.sys
13:28:47.0427 4500 L1C - ok
13:28:47.0443 4500 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\windows\System32\srvsvc.dll
13:28:47.0489 4500 LanmanServer - ok
13:28:47.0521 4500 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
13:28:47.0583 4500 LanmanWorkstation - ok
13:28:47.0583 4500 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
13:28:47.0630 4500 lltdio - ok
13:28:47.0645 4500 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll
13:28:47.0708 4500 lltdsvc - ok
13:28:47.0708 4500 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll
13:28:47.0739 4500 lmhosts - ok
13:28:47.0786 4500 [ 2ED1786B7542CDA261029F6B526EDF44 ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
13:28:47.0801 4500 LMS - ok
13:28:47.0833 4500 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\drivers\lsi_fc.sys
13:28:50.0547 4500 LSI_FC - ok
13:28:50.0547 4500 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\drivers\lsi_sas.sys
13:28:50.0563 4500 LSI_SAS - ok
13:28:50.0563 4500 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\drivers\lsi_sas2.sys
13:28:50.0578 4500 LSI_SAS2 - ok
13:28:50.0578 4500 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\drivers\lsi_scsi.sys
13:28:50.0594 4500 LSI_SCSI - ok
13:28:50.0609 4500 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys
13:28:50.0672 4500 luafv - ok
13:28:50.0687 4500 [ 79D51E7F5926E8CE1B3EBECEBAE28CFF ] mcdbus C:\windows\system32\DRIVERS\mcdbus.sys
13:28:50.0703 4500 mcdbus - ok
13:28:50.0734 4500 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
13:28:50.0750 4500 Mcx2Svc - ok
13:28:50.0765 4500 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\drivers\megasas.sys
13:28:50.0781 4500 megasas - ok
13:28:50.0781 4500 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\drivers\MegaSR.sys
13:28:50.0797 4500 MegaSR - ok
13:28:50.0843 4500 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\windows\system32\DRIVERS\HECIx64.sys
13:28:50.0843 4500 MEIx64 - ok
13:28:50.0906 4500 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
13:28:50.0921 4500 Microsoft Office Groove Audit Service - ok
13:28:50.0937 4500 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll
13:28:50.0984 4500 MMCSS - ok
13:28:51.0015 4500 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys
13:28:51.0062 4500 Modem - ok
13:28:51.0077 4500 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys
13:28:51.0109 4500 monitor - ok
13:28:51.0124 4500 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys
13:28:51.0140 4500 mouclass - ok
13:28:51.0140 4500 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
13:28:51.0155 4500 mouhid - ok
13:28:51.0171 4500 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\windows\system32\drivers\mountmgr.sys
13:28:51.0187 4500 mountmgr - ok
13:28:51.0233 4500 [ 51A84B690DF519DCF656F780243D953E ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
13:28:51.0249 4500 MozillaMaintenance - ok
13:28:51.0280 4500 [ F8A10560B35C66F9DE212F03DAD5BFA7 ] MpFilter C:\windows\system32\DRIVERS\MpFilter.sys
13:28:51.0280 4500 MpFilter - ok
13:28:51.0296 4500 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\windows\system32\drivers\mpio.sys
13:28:51.0311 4500 mpio - ok
13:28:51.0343 4500 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
13:28:51.0374 4500 mpsdrv - ok
13:28:51.0405 4500 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\windows\system32\mpssvc.dll
13:28:51.0452 4500 MpsSvc - ok
13:28:51.0467 4500 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
13:28:51.0499 4500 MRxDAV - ok
13:28:51.0530 4500 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
13:28:51.0561 4500 mrxsmb - ok
13:28:51.0577 4500 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
13:28:51.0592 4500 mrxsmb10 - ok
13:28:51.0608 4500 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
13:28:51.0623 4500 mrxsmb20 - ok
13:28:51.0655 4500 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\windows\system32\DRIVERS\msahci.sys
13:28:51.0655 4500 msahci - ok
13:28:51.0670 4500 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\windows\system32\drivers\msdsm.sys
13:28:51.0686 4500 msdsm - ok
13:28:51.0701 4500 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe
13:28:51.0717 4500 MSDTC - ok
13:28:51.0733 4500 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys
13:28:51.0764 4500 Msfs - ok
13:28:51.0795 4500 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
13:28:51.0842 4500 mshidkmdf - ok
13:28:51.0842 4500 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\drivers\msisadrv.sys
13:28:51.0857 4500 msisadrv - ok
13:28:51.0889 4500 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll
13:28:51.0935 4500 MSiSCSI - ok
13:28:51.0935 4500 msiserver - ok
13:28:51.0951 4500 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
13:28:51.0998 4500 MSKSSRV - ok
13:28:52.0060 4500 [ E07DEC52FF801841BA9B6878A60304FB ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe
13:28:52.0076 4500 MsMpSvc - ok
13:28:52.0107 4500 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
13:28:52.0154 4500 MSPCLOCK - ok
13:28:52.0154 4500 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
13:28:52.0185 4500 MSPQM - ok
13:28:52.0216 4500 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\windows\system32\drivers\MsRPC.sys
13:28:52.0232 4500 MsRPC - ok
13:28:52.0232 4500 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\DRIVERS\mssmbios.sys
13:28:52.0247 4500 mssmbios - ok
13:28:52.0263 4500 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
13:28:52.0294 4500 MSTEE - ok
13:28:52.0310 4500 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\drivers\MTConfig.sys
13:28:52.0310 4500 MTConfig - ok
13:28:52.0325 4500 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys
13:28:52.0325 4500 Mup - ok
13:28:52.0357 4500 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\windows\system32\qagentRT.dll
13:28:52.0403 4500 napagent - ok
13:28:52.0450 4500 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
13:28:52.0481 4500 NativeWifiP - ok
13:28:52.0528 4500 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\windows\system32\drivers\ndis.sys
13:28:52.0544 4500 NDIS - ok
13:28:52.0575 4500 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
13:28:52.0622 4500 NdisCap - ok
13:28:52.0622 4500 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
13:28:52.0653 4500 NdisTapi - ok
13:28:52.0669 4500 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
13:28:52.0700 4500 Ndisuio - ok
13:28:52.0700 4500 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
13:28:52.0747 4500 NdisWan - ok
13:28:52.0747 4500 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
13:28:52.0793 4500 NDProxy - ok
13:28:52.0809 4500 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
13:28:52.0856 4500 NetBIOS - ok
13:28:52.0871 4500 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
13:28:52.0903 4500 NetBT - ok
13:28:52.0918 4500 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\windows\system32\lsass.exe
13:28:52.0934 4500 Netlogon - ok
13:28:55.0664 4500 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll
13:28:55.0711 4500 Netman - ok
13:28:55.0726 4500 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll
13:28:55.0773 4500 netprofm - ok
13:28:55.0804 4500 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
13:28:55.0820 4500 NetTcpPortSharing - ok
13:28:55.0835 4500 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\drivers\nfrd960.sys
13:28:55.0851 4500 nfrd960 - ok
13:28:55.0882 4500 [ 162100E0BC8377710F9D170631921C03 ] NisDrv C:\windows\system32\DRIVERS\NisDrvWFP.sys
13:28:55.0898 4500 NisDrv - ok
13:28:55.0929 4500 [ C6E15F2F95F9C0A6098D43510B604E52 ] NisSrv C:\Program Files\Microsoft Security Client\NisSrv.exe
13:28:55.0945 4500 NisSrv - ok
13:28:55.0960 4500 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\windows\System32\nlasvc.dll
13:28:55.0976 4500 NlaSvc - ok
13:28:55.0991 4500 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys
13:28:56.0038 4500 Npfs - ok
13:28:56.0054 4500 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll
13:28:56.0085 4500 nsi - ok
13:28:56.0101 4500 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
13:28:56.0132 4500 nsiproxy - ok
13:28:56.0179 4500 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\windows\system32\drivers\Ntfs.sys
13:28:56.0225 4500 Ntfs - ok
13:28:56.0241 4500 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys
13:28:56.0288 4500 Null - ok
13:28:56.0303 4500 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\windows\system32\drivers\nvraid.sys
13:28:56.0319 4500 nvraid - ok
13:28:56.0335 4500 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\windows\system32\drivers\nvstor.sys
13:28:56.0350 4500 nvstor - ok
13:28:56.0350 4500 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\drivers\nv_agp.sys
13:28:56.0366 4500 nv_agp - ok
13:28:56.0444 4500 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
13:28:56.0459 4500 odserv - ok
13:28:56.0491 4500 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys
13:28:56.0506 4500 ohci1394 - ok
13:28:56.0537 4500 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:28:56.0537 4500 ose - ok
13:28:56.0569 4500 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll
13:28:56.0600 4500 p2pimsvc - ok
13:28:56.0631 4500 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll
13:28:56.0647 4500 p2psvc - ok
13:28:56.0662 4500 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\drivers\parport.sys
13:28:56.0678 4500 Parport - ok
13:28:56.0709 4500 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\windows\system32\drivers\partmgr.sys
13:28:56.0709 4500 partmgr - ok
13:28:56.0740 4500 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll
13:28:56.0771 4500 PcaSvc - ok
13:28:56.0803 4500 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\windows\system32\drivers\pci.sys
13:28:56.0818 4500 pci - ok
13:28:56.0818 4500 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\DRIVERS\pciide.sys
13:28:56.0834 4500 pciide - ok
13:28:56.0849 4500 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\drivers\pcmcia.sys
13:28:56.0865 4500 pcmcia - ok
13:28:56.0865 4500 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys
13:28:56.0881 4500 pcw - ok
13:28:56.0881 4500 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys
13:28:56.0943 4500 PEAUTH - ok
13:28:57.0005 4500 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe
13:28:57.0037 4500 PerfHost - ok
13:28:57.0068 4500 [ 91111CEBBDE8015E822C46120ED9537C ] PGEffect C:\windows\system32\DRIVERS\pgeffect.sys
13:28:57.0068 4500 PGEffect - ok
13:28:57.0115 4500 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\windows\system32\pla.dll
13:28:57.0193 4500 pla - ok
13:28:57.0224 4500 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\windows\system32\umpnpmgr.dll
13:28:57.0255 4500 PlugPlay - ok
13:28:57.0286 4500 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
13:28:57.0286 4500 PNRPAutoReg - ok
13:28:57.0317 4500 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll
13:28:57.0333 4500 PNRPsvc - ok
13:28:57.0364 4500 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
13:28:57.0427 4500 PolicyAgent - ok
13:28:57.0442 4500 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\windows\system32\umpo.dll
13:28:57.0505 4500 Power - ok
13:28:57.0536 4500 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
13:28:57.0583 4500 PptpMiniport - ok
13:28:57.0598 4500 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\drivers\processr.sys
13:28:57.0614 4500 Processor - ok
13:28:57.0645 4500 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\windows\system32\profsvc.dll
13:28:57.0676 4500 ProfSvc - ok
13:28:57.0692 4500 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
13:28:57.0707 4500 ProtectedStorage - ok
13:28:57.0723 4500 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\windows\system32\DRIVERS\pacer.sys
13:28:57.0770 4500 Psched - ok
13:28:57.0785 4500 [ C8FCB4899F8B70CC34E0D9876A80963C ] QIOMem C:\windows\system32\DRIVERS\QIOMem.sys
13:28:57.0817 4500 QIOMem - ok
13:28:57.0863 4500 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\drivers\ql2300.sys
13:28:57.0895 4500 ql2300 - ok
13:28:57.0910 4500 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\drivers\ql40xx.sys
13:28:57.0926 4500 ql40xx - ok
13:28:57.0941 4500 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll
13:28:57.0973 4500 QWAVE - ok
13:28:57.0973 4500 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
13:28:58.0004 4500 QWAVEdrv - ok
13:28:58.0035 4500 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
13:28:58.0082 4500 RasAcd - ok
13:29:00.0812 4500 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
13:29:00.0843 4500 RasAgileVpn - ok
13:29:00.0874 4500 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll
13:29:00.0937 4500 RasAuto - ok
13:29:00.0952 4500 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
13:29:00.0983 4500 Rasl2tp - ok
13:29:01.0015 4500 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\windows\System32\rasmans.dll
13:29:01.0046 4500 RasMan - ok
13:29:01.0061 4500 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
13:29:01.0093 4500 RasPppoe - ok
13:29:01.0124 4500 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
13:29:01.0155 4500 RasSstp - ok
13:29:01.0171 4500 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
13:29:01.0217 4500 rdbss - ok
13:29:01.0249 4500 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\drivers\rdpbus.sys
13:29:01.0264 4500 rdpbus - ok
13:29:01.0280 4500 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
13:29:01.0342 4500 RDPCDD - ok
13:29:01.0358 4500 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
13:29:01.0389 4500 RDPENCDD - ok
13:29:01.0405 4500 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
13:29:01.0436 4500 RDPREFMP - ok
13:29:01.0451 4500 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\windows\system32\drivers\RDPWD.sys
13:29:01.0483 4500 RDPWD - ok
13:29:01.0498 4500 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\windows\system32\drivers\rdyboost.sys
13:29:01.0514 4500 rdyboost - ok
13:29:01.0529 4500 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll
13:29:01.0592 4500 RemoteAccess - ok
13:29:01.0623 4500 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll
13:29:01.0654 4500 RemoteRegistry - ok
13:29:01.0670 4500 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
13:29:01.0701 4500 RpcEptMapper - ok
13:29:01.0732 4500 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe
13:29:01.0748 4500 RpcLocator - ok
13:29:01.0779 4500 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\windows\System32\rpcss.dll
13:29:01.0826 4500 RpcSs - ok
13:29:01.0841 4500 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
13:29:01.0888 4500 rspndr - ok
13:29:01.0919 4500 [ 135A64530D7699AD48F29D73A658DD11 ] RSUSBSTOR C:\windows\system32\Drivers\RtsUStor.sys
13:29:01.0935 4500 RSUSBSTOR - ok
13:29:01.0951 4500 [ E54A5586A28D0630A79A68BBAB84BFCF ] RSUSBVSTOR C:\windows\system32\Drivers\RTSUVSTOR.sys
13:29:01.0966 4500 RSUSBVSTOR - ok
13:29:02.0013 4500 [ 64FDF4FE366CA42DA2B7D9D424B6E39B ] RTL8192Ce C:\windows\system32\DRIVERS\rtl8192Ce.sys
13:29:02.0029 4500 RTL8192Ce - ok
13:29:02.0044 4500 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\windows\system32\lsass.exe
13:29:02.0060 4500 SamSs - ok
13:29:02.0075 4500 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\windows\system32\drivers\sbp2port.sys
13:29:02.0091 4500 sbp2port - ok
13:29:02.0122 4500 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll
13:29:02.0153 4500 SCardSvr - ok
13:29:02.0169 4500 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
13:29:02.0216 4500 scfilter - ok
13:29:02.0263 4500 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\windows\system32\schedsvc.dll
13:29:02.0309 4500 Schedule - ok
13:29:02.0341 4500 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\windows\System32\certprop.dll
13:29:02.0372 4500 SCPolicySvc - ok
13:29:02.0387 4500 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\windows\System32\SDRSVC.dll
13:29:02.0419 4500 SDRSVC - ok
13:29:02.0450 4500 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys
13:29:02.0497 4500 secdrv - ok
13:29:02.0528 4500 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\windows\system32\seclogon.dll
13:29:02.0559 4500 seclogon - ok
13:29:05.0242 4500 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\system32\sens.dll
13:29:05.0320 4500 SENS - ok
13:29:05.0336 4500 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll
13:29:05.0351 4500 SensrSvc - ok
13:29:05.0398 4500 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\drivers\serenum.sys
13:29:05.0429 4500 Serenum - ok
13:29:05.0429 4500 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\drivers\serial.sys
13:29:05.0461 4500 Serial - ok
13:29:05.0476 4500 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\drivers\sermouse.sys
13:29:05.0492 4500 sermouse - ok
13:29:05.0523 4500 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\windows\system32\sessenv.dll
13:29:05.0570 4500 SessionEnv - ok
13:29:05.0585 4500 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\drivers\sffdisk.sys
13:29:05.0601 4500 sffdisk - ok
13:29:05.0617 4500 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
13:29:05.0648 4500 sffp_mmc - ok
13:29:05.0648 4500 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
13:29:05.0663 4500 sffp_sd - ok
13:29:05.0679 4500 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\drivers\sfloppy.sys
13:29:05.0695 4500 sfloppy - ok
13:29:05.0710 4500 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\windows\System32\ipnathlp.dll
13:29:05.0757 4500 SharedAccess - ok
13:29:05.0788 4500 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
13:29:05.0819 4500 ShellHWDetection - ok
13:29:05.0851 4500 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\drivers\SiSRaid2.sys
13:29:05.0851 4500 SiSRaid2 - ok
13:29:05.0882 4500 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\drivers\sisraid4.sys
13:29:05.0897 4500 SiSRaid4 - ok
13:29:05.0913 4500 [ 2A904CA870C81BB4080D6E55FCB1FED7 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
13:29:05.0929 4500 SkypeUpdate - ok
13:29:05.0929 4500 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys
13:29:05.0975 4500 Smb - ok
13:29:06.0007 4500 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe
13:29:06.0022 4500 SNMPTRAP - ok
13:29:06.0053 4500 [ 12583AF6CBE0050651EAF2723B3AD7B3 ] speedfan C:\windows\syswow64\speedfan.sys
13:29:06.0053 4500 speedfan - ok
13:29:06.0085 4500 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys
13:29:06.0085 4500 spldr - ok
13:29:06.0131 4500 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\windows\System32\spoolsv.exe
13:29:06.0147 4500 Spooler - ok
13:29:06.0241 4500 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\windows\system32\sppsvc.exe
13:29:06.0319 4500 sppsvc - ok
13:29:06.0334 4500 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll
13:29:06.0365 4500 sppuinotify - ok
13:29:06.0397 4500 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\windows\system32\DRIVERS\srv.sys
13:29:06.0443 4500 srv - ok
13:29:06.0475 4500 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
13:29:06.0506 4500 srv2 - ok
13:29:06.0537 4500 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\windows\system32\DRIVERS\VSTAZL6.SYS
13:29:06.0553 4500 SrvHsfHDA - ok
13:29:06.0584 4500 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\windows\system32\DRIVERS\VSTDPV6.SYS
13:29:06.0615 4500 SrvHsfV92 - ok
13:29:06.0646 4500 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\windows\system32\DRIVERS\VSTCNXT6.SYS
13:29:06.0662 4500 SrvHsfWinac - ok
13:29:06.0677 4500 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
13:29:06.0693 4500 srvnet - ok
13:29:06.0724 4500 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
13:29:06.0755 4500 SSDPSRV - ok
13:29:06.0771 4500 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll
13:29:06.0802 4500 SstpSvc - ok
13:29:06.0833 4500 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\drivers\stexstor.sys
13:29:06.0833 4500 stexstor - ok
13:29:06.0880 4500 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\windows\System32\wiaservc.dll
13:29:06.0911 4500 stisvc - ok
13:29:06.0927 4500 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\DRIVERS\swenum.sys
13:29:06.0943 4500 swenum - ok
13:29:07.0005 4500 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
13:29:07.0036 4500 SwitchBoard ( UnsignedFile.Multi.Generic ) - warning
13:29:07.0036 4500 SwitchBoard - detected UnsignedFile.Multi.Generic (1)
13:29:07.0052 4500 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll
13:29:07.0099 4500 swprv - ok
13:29:07.0161 4500 [ F5B46DF59FEAA48A442AED7EEB754D4B ] SynTP C:\windows\system32\DRIVERS\SynTP.sys
13:29:07.0192 4500 SynTP - ok
13:29:07.0239 4500 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\windows\system32\sysmain.dll
13:29:07.0286 4500 SysMain - ok
13:29:07.0301 4500 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
13:29:07.0317 4500 TabletInputService - ok
13:29:07.0348 4500 taisregispinger - ok
13:29:07.0364 4500 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\windows\System32\tapisrv.dll
13:29:07.0411 4500 TapiSrv - ok
13:29:07.0660 4500 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll
13:29:07.0691 4500 TBS - ok
13:29:07.0754 4500 [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip C:\windows\system32\drivers\tcpip.sys
13:29:07.0801 4500 Tcpip - ok
13:29:07.0816 4500 [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
13:29:07.0863 4500 TCPIP6 - ok
13:29:07.0894 4500 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
13:29:07.0910 4500 tcpipreg - ok
13:29:07.0925 4500 [ FD542B661BD22FA69CA789AD0AC58C29 ] tdcmdpst C:\windows\system32\DRIVERS\tdcmdpst.sys
13:29:07.0925 4500 tdcmdpst - ok
13:29:07.0957 4500 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
13:29:08.0003 4500 TDPIPE - ok
13:29:08.0019 4500 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
13:29:08.0035 4500 TDTCP - ok
13:29:08.0050 4500 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\windows\system32\DRIVERS\tdx.sys
13:29:08.0097 4500 tdx - ok
13:29:08.0113 4500 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\windows\system32\DRIVERS\termdd.sys
13:29:08.0113 4500 TermDD - ok
13:29:08.0159 4500 [ 2E648163254233755035B46DD7B89123 ] TermService C:\windows\System32\termsrv.dll
13:29:08.0191 4500 TermService - ok
13:29:08.0206 4500 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll
13:29:08.0222 4500 Themes - ok
13:29:08.0237 4500 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll
13:29:08.0269 4500 THREADORDER - ok
13:29:08.0300 4500 TMachInfo - ok
13:29:08.0331 4500 [ 8E2C799D3476EAC32C3BA0DF7CE6AF19 ] TODDSrv C:\Windows\system32\TODDSrv.exe
13:29:08.0331 4500 TODDSrv - ok
13:29:08.0393 4500 [ CDC97FA5C42B07FB0D4600E17C32F582 ] TosCoSrv C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
13:29:08.0409 4500 TosCoSrv - ok
13:29:08.0425 4500 [ EDB4B432DB13EA3D1EB2356310D33263 ] TOSHIBA HDD SSD Alert Service C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
13:29:08.0440 4500 TOSHIBA HDD SSD Alert Service - ok
13:29:08.0471 4500 [ 09FF7B0B1B5C3D225495CB6F5A9B39F8 ] tos_sps64 C:\windows\system32\DRIVERS\tos_sps64.sys
13:29:08.0471 4500 tos_sps64 - ok
13:29:08.0534 4500 [ D65C6B0C070534336B72005391B6168A ] TPCHSrv C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
13:29:08.0565 4500 TPCHSrv - ok
13:29:08.0596 4500 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll
13:29:08.0627 4500 TrkWks - ok
13:29:08.0690 4500 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
13:29:08.0721 4500 TrustedInstaller - ok
13:29:08.0737 4500 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
13:29:08.0783 4500 tssecsrv - ok
13:29:08.0799 4500 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
13:29:08.0815 4500 TsUsbFlt - ok
13:29:08.0846 4500 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\windows\system32\drivers\TsUsbGD.sys
13:29:08.0861 4500 TsUsbGD - ok
13:29:08.0877 4500 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
13:29:08.0939 4500 tunnel - ok
13:29:08.0955 4500 [ 550B567F9364D8F7684C3FB3EA665A72 ] TVALZ C:\windows\system32\DRIVERS\TVALZ_O.SYS
13:29:08.0971 4500 TVALZ - ok
13:29:08.0986 4500 [ 9C7191F4B2E49BFF47A6C1144B5923FA ] TVALZFL C:\windows\system32\DRIVERS\TVALZFL.sys
13:29:08.0986 4500 TVALZFL - ok
13:29:09.0017 4500 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\drivers\uagp35.sys
13:29:09.0017 4500 uagp35 - ok
13:29:09.0033 4500 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\windows\system32\DRIVERS\udfs.sys
13:29:09.0080 4500 udfs - ok
13:29:09.0111 4500 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe
13:29:09.0142 4500 UI0Detect - ok
13:29:09.0158 4500 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
13:29:09.0173 4500 uliagpkx - ok
13:29:09.0189 4500 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\windows\system32\DRIVERS\umbus.sys
13:29:09.0205 4500 umbus - ok
13:29:09.0205 4500 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\drivers\umpass.sys
13:29:09.0220 4500 UmPass - ok
13:29:09.0329 4500 [ 7E5E1603D0FF2D240AE70295C5C3FEFC ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
13:29:09.0376 4500 UNS - ok
13:29:09.0407 4500 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll
13:29:09.0454 4500 upnphost - ok
13:29:09.0470 4500 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
13:29:09.0501 4500 usbccgp - ok
13:29:09.0532 4500 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\drivers\usbcir.sys
13:29:09.0548 4500 usbcir - ok
13:29:09.0579 4500 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\windows\system32\drivers\usbehci.sys
13:29:09.0579 4500 usbehci - ok
13:29:09.0595 4500 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
13:29:09.0610 4500 usbhub - ok
13:29:09.0641 4500 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\windows\system32\drivers\usbohci.sys
13:29:09.0657 4500 usbohci - ok
13:29:09.0688 4500 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\drivers\usbprint.sys
13:29:09.0704 4500 usbprint - ok
13:29:09.0719 4500 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
13:29:09.0751 4500 USBSTOR - ok
13:29:09.0766 4500 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\windows\system32\drivers\usbuhci.sys
13:29:09.0782 4500 usbuhci - ok
13:29:09.0813 4500 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\windows\system32\Drivers\usbvideo.sys
13:29:09.0829 4500 usbvideo - ok
13:29:09.0860 4500 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll
13:29:09.0907 4500 UxSms - ok
13:29:09.0922 4500 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\windows\system32\lsass.exe
13:29:09.0938 4500 VaultSvc - ok
13:29:09.0969 4500 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
13:29:09.0969 4500 vdrvroot - ok
13:29:10.0000 4500 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\windows\System32\vds.exe
13:29:10.0063 4500 vds - ok
13:29:10.0078 4500 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys
13:29:10.0094 4500 vga - ok
13:29:10.0125 4500 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys
13:29:10.0172 4500 VgaSave - ok
13:29:10.0172 4500 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\windows\system32\drivers\vhdmp.sys
13:29:10.0187 4500 vhdmp - ok
13:29:10.0203 4500 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\drivers\viaide.sys
13:29:10.0203 4500 viaide - ok
13:29:10.0219 4500 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\windows\system32\drivers\volmgr.sys
13:29:10.0219 4500 volmgr - ok
13:29:10.0234 4500 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\windows\system32\drivers\volmgrx.sys
13:29:10.0250 4500 volmgrx - ok
13:29:10.0265 4500 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\windows\system32\drivers\volsnap.sys
13:29:10.0281 4500 volsnap - ok
13:29:10.0297 4500 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\drivers\vsmraid.sys
13:29:10.0297 4500 vsmraid - ok
13:29:10.0359 4500 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\windows\system32\vssvc.exe
13:29:10.0421 4500 VSS - ok
13:29:10.0453 4500 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
13:29:10.0468 4500 vwifibus - ok
13:29:10.0468 4500 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
13:29:10.0499 4500 vwififlt - ok
13:29:10.0546 4500 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll
13:29:10.0577 4500 W32Time - ok
13:29:10.0609 4500 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\drivers\wacompen.sys
13:29:10.0624 4500 WacomPen - ok
13:29:10.0640 4500 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
13:29:10.0671 4500 WANARP - ok
13:29:10.0687 4500 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
13:29:10.0718 4500 Wanarpv6 - ok
13:29:10.0765 4500 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
13:29:10.0796 4500 WatAdminSvc - ok
13:29:10.0843 4500 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\windows\system32\wbengine.exe
13:29:10.0889 4500 wbengine - ok
13:29:10.0905 4500 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
13:29:10.0967 4500 WbioSrvc - ok
13:29:10.0999 4500 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\windows\System32\wcncsvc.dll
13:29:11.0030 4500 wcncsvc - ok
13:29:11.0030 4500 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
13:29:11.0077 4500 WcsPlugInService - ok
13:29:11.0108 4500 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\drivers\wd.sys
13:29:11.0108 4500 Wd - ok
13:29:11.0155 4500 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
13:29:11.0170 4500 Wdf01000 - ok
13:29:11.0201 4500 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll
13:29:11.0248 4500 WdiServiceHost - ok
13:29:11.0248 4500 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll
13:29:11.0264 4500 WdiSystemHost - ok
13:29:11.0295 4500 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\windows\System32\webclnt.dll
13:29:11.0326 4500 WebClient - ok
13:29:11.0342 4500 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll
13:29:11.0373 4500 Wecsvc - ok
13:29:11.0404 4500 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll
13:29:11.0435 4500 wercplsupport - ok
13:29:11.0435 4500 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll
13:29:11.0482 4500 WerSvc - ok
13:29:11.0498 4500 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
13:29:11.0529 4500 WfpLwf - ok
13:29:11.0545 4500 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys
13:29:11.0560 4500 WIMMount - ok
13:29:11.0560 4500 WinDefend - ok
13:29:11.0560 4500 WinHttpAutoProxySvc - ok
13:29:11.0623 4500 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
13:29:11.0654 4500 Winmgmt - ok
13:29:11.0716 4500 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\windows\system32\WsmSvc.dll
13:29:11.0763 4500 WinRM - ok
13:29:11.0794 4500 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\windows\system32\DRIVERS\WinUsb.sys
13:29:11.0810 4500 WinUsb - ok
13:29:11.0841 4500 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll
13:29:11.0888 4500 Wlansvc - ok
13:29:11.0919 4500 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\DRIVERS\wmiacpi.sys
13:29:11.0935 4500 WmiAcpi - ok
13:29:11.0966 4500 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
13:29:11.0997 4500 wmiApSrv - ok
13:29:12.0028 4500 WMPNetworkSvc - ok
13:29:12.0059 4500 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll
13:29:12.0075 4500 WPCSvc - ok
13:29:12.0091 4500 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
13:29:12.0122 4500 WPDBusEnum - ok
13:29:12.0137 4500 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
13:29:12.0169 4500 ws2ifsl - ok
13:29:12.0200 4500 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\windows\system32\wscsvc.dll
13:29:12.0231 4500 wscsvc - ok
13:29:12.0231 4500 WSearch - ok
13:29:12.0293 4500 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\windows\system32\wuaueng.dll
13:29:12.0340 4500 wuauserv - ok
13:29:12.0371 4500 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\windows\system32\drivers\WudfPf.sys
13:29:12.0403 4500 WudfPf - ok
13:29:12.0418 4500 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
13:29:12.0449 4500 WUDFRd - ok
13:29:12.0465 4500 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\windows\System32\WUDFSvc.dll
13:29:12.0496 4500 wudfsvc - ok
13:29:12.0512 4500 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\windows\System32\wwansvc.dll
13:29:12.0527 4500 WwanSvc - ok
13:29:12.0527 4500 ================ Scan global ===============================
13:29:12.0559 4500 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
13:29:12.0590 4500 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\windows\system32\winsrv.dll
13:29:12.0590 4500 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\windows\system32\winsrv.dll
13:29:12.0621 4500 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
13:29:12.0652 4500 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
13:29:12.0652 4500 [Global] - ok
13:29:12.0652 4500 ================ Scan MBR ==================================
13:29:12.0668 4500 [ 5B5E648D12FCADC244C1EC30318E1EB9 ] \Device\Harddisk0\DR0
13:29:13.0713 4500 \Device\Harddisk0\DR0 - ok
13:29:13.0713 4500 ================ Scan VBR ==================================
13:29:13.0729 4500 [ A47C333C7AC2E0501779D8928436FA7F ] \Device\Harddisk0\DR0\Partition1
13:29:13.0744 4500 \Device\Harddisk0\DR0\Partition1 - ok
13:29:13.0760 4500 [ AADB638BF1DCC03B6D572E7EBCDF4ACA ] \Device\Harddisk0\DR0\Partition2
13:29:13.0760 4500 \Device\Harddisk0\DR0\Partition2 - ok
13:29:13.0760 4500 ============================================================
13:29:13.0760 4500 Scan finished
13:29:13.0760 4500 ============================================================
13:29:13.0760 2956 Detected object count: 2
13:29:13.0760 2956 Actual detected object count: 2
13:29:59.0671 2956 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
13:29:59.0671 2956 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:29:59.0686 2956 SwitchBoard ( UnsignedFile.Multi.Generic ) - skipped by user
13:29:59.0686 2956 SwitchBoard ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:31:11.0821 2340 Deinitialize success
Malwarebytes Anti-Malware 1.70.0.1100
www.malwarebytes.org
Database version: v2013.02.17.01
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
LuvNamie :: LUVNAMIE-PC [administrator]
2/17/2013 1:34:05 PM
mbam-log-2013-02-17 (13-34-05).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 230054
Time elapsed: 1 minute(s), 34 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
(end)
thanks!
Run date: 2013-02-17 13:00:46
-----------------------------
13:00:46.221 OS Version: Windows x64 6.1.7601 Service Pack 1
13:00:46.221 Number of processors: 2 586 0x2A07
13:00:46.222 ComputerName: LUVNAMIE-PC UserName: LuvNamie
13:00:47.109 Initialize success
13:01:45.276 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
13:01:45.279 Disk 0 Vendor: TOSHIBA_ GH10 Size: 305245MB BusType: 3
13:01:45.315 Disk 0 MBR read successfully
13:01:45.318 Disk 0 MBR scan
13:01:45.320 Disk 0 Windows VISTA default MBR code
13:01:45.325 Disk 0 Partition 1 80 (A) 27 Hidden NTFS WinRE NTFS 1500 MB offset 2048
13:01:45.343 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 61440 MB offset 3074048
13:01:45.346 Disk 0 Partition - 00 0F Extended LBA 228246 MB offset 128903168
13:01:45.540 Disk 0 Partition 3 00 17 Hidd HPFS/NTFS NTFS 14058 MB offset 596350976
13:01:45.586 Disk 0 Partition 4 00 07 HPFS/NTFS NTFS 228245 MB offset 128905216
13:01:45.632 Disk 0 scanning C:\windows\system32\drivers
13:01:50.515 Service scanning
13:02:33.841 Modules scanning
13:02:33.848 Scan finished successfully
13:03:09.185 Disk 0 MBR has been saved successfully to "C:\Users\LuvNamie\Desktop\MBR.dat"
13:03:09.190 The log file has been saved successfully to "C:\Users\LuvNamie\Desktop\aswMBR.txt"
ComboFix 13-02-15.01 - LuvNamie 02/17/2013 13:16:03.1.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.4044.3145 [GMT 9:00]
Running from: c:\users\LuvNamie\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {3F839487-C7A2-C958-E30C-E2825BA31FB5}
SP: Microsoft Security Essentials *Disabled/Updated* {84E27563-E198-C6D6-D9BC-D9F020245508}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Created a new restore point
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\SysWow64\CKAgent.dat
.
.
((((((((((((((((((((((((( Files Created from 2013-01-17 to 2013-02-17 )))))))))))))))))))))))))))))))
.
.
2013-02-17 04:22 . 2013-02-17 04:22 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-02-16 12:01 . 2013-02-16 12:01 -------- d-----w- c:\users\LuvNamie\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
2013-02-16 11:56 . 2013-02-16 11:56 -------- d-----w- c:\programdata\ALM
2013-02-16 05:44 . 2013-01-08 05:32 9161176 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{C80B8299-A472-4803-99BE-EB6F6009C988}\mpengine.dll
2013-02-15 19:19 . 2013-02-15 19:19 -------- d-----w- c:\users\LuvNamie\AppData\Roaming\Media Player Classic
2013-02-15 19:18 . 2013-02-15 19:18 -------- d-----w- c:\program files (x86)\MPC-HC
2013-02-15 04:47 . 2013-01-08 05:32 9161176 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2013-02-15 04:16 . 2013-01-09 01:10 996352 ----a-w- c:\program files\Common Files\Microsoft Shared\VGX\VGX.dll
2013-02-15 04:16 . 2013-01-08 22:01 768000 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\VGX\VGX.dll
2013-02-14 14:54 . 2013-01-04 03:26 3153408 ----a-w- c:\windows\system32\win32k.sys
2013-02-14 14:43 . 2013-01-05 05:53 5553512 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-02-14 14:43 . 2013-01-05 05:00 3967848 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2013-02-14 14:43 . 2013-01-05 05:00 3913064 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2013-02-14 14:28 . 2013-01-04 05:46 215040 ----a-w- c:\windows\system32\winsrv.dll
2013-02-14 14:28 . 2013-01-04 04:51 5120 ----a-w- c:\windows\SysWow64\wow32.dll
2013-02-14 14:28 . 2013-01-04 02:47 25600 ----a-w- c:\windows\SysWow64\setup16.exe
2013-02-14 14:28 . 2013-01-04 02:47 7680 ----a-w- c:\windows\SysWow64\instnm.exe
2013-02-14 14:28 . 2013-01-04 02:47 14336 ----a-w- c:\windows\SysWow64\ntvdm64.dll
2013-02-14 14:28 . 2013-01-04 02:47 2048 ----a-w- c:\windows\SysWow64\user.exe
2013-02-14 14:25 . 2013-01-03 06:00 1913192 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-02-14 14:25 . 2013-01-03 06:00 288088 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
2013-02-13 10:46 . 2013-02-13 10:46 -------- d-----w- c:\programdata\NovaTech Network
2013-02-13 10:45 . 2009-09-04 08:29 1974616 ----a-w- c:\windows\SysWow64\D3DCompiler_42.dll
2013-02-13 10:45 . 2009-09-04 08:29 1892184 ----a-w- c:\windows\SysWow64\D3DX9_42.dll
2013-02-13 10:44 . 2013-02-13 10:44 -------- d-----w- c:\program files (x86)\Novawave
2013-02-12 08:25 . 2012-02-07 06:36 499712 ----a-w- c:\windows\system32\AUDIOKSE.dll
2013-02-12 08:25 . 2012-02-07 06:32 283648 ----a-w- c:\windows\system32\EncDump.dll
2013-02-12 08:25 . 2012-02-07 06:32 679424 ----a-w- c:\windows\system32\audiosrv.dll
2013-02-12 08:25 . 2012-02-07 06:32 440832 ----a-w- c:\windows\system32\AudioEng.dll
2013-02-12 08:25 . 2012-02-07 06:32 296448 ----a-w- c:\windows\system32\AudioSes.dll
2013-02-12 08:25 . 2012-02-07 05:33 442880 ----a-w- c:\windows\SysWow64\AUDIOKSE.dll
2013-02-12 08:25 . 2012-02-07 05:30 374784 ----a-w- c:\windows\SysWow64\AudioEng.dll
2013-02-12 08:25 . 2012-02-07 05:30 195584 ----a-w- c:\windows\SysWow64\AudioSes.dll
2013-02-11 14:29 . 2013-02-11 14:30 -------- d-----w- c:\users\LuvNamie\AppData\Roaming\calibre
2013-02-11 14:29 . 2013-02-11 14:29 -------- d-----w- c:\program files (x86)\Calibre2
2013-02-11 05:50 . 2009-02-24 09:35 255552 ----a-w- c:\windows\SysWow64\drivers\mcdbus.sys
2013-02-11 05:50 . 2009-02-24 09:35 255552 ----a-w- c:\windows\system32\drivers\mcdbus.sys
2013-02-11 05:50 . 2013-02-11 05:50 -------- d-----w- c:\program files (x86)\MagicDisc
2013-02-11 05:49 . 2013-02-11 05:49 -------- d-----w- c:\program files (x86)\MagicISO
2013-02-10 17:02 . 2013-02-10 17:08 -------- d-----w- c:\program files (x86)\SpeedFan
2013-02-10 07:36 . 2013-02-10 07:36 -------- d-----w- c:\users\LuvNamie\AppData\Local\ElevatedDiagnostics
2013-02-09 07:00 . 2013-02-09 07:00 -------- d-----w- c:\program files (x86)\Common Files\Java
2013-02-09 06:53 . 2013-02-09 06:53 861088 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2013-02-09 06:53 . 2013-02-09 06:53 95648 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-02-05 12:06 . 2013-02-17 04:09 -------- d-----w- c:\users\LuvNamie\AppData\Roaming\BitTorrent
2013-02-04 14:42 . 2013-02-15 16:53 -------- d-----r- c:\users\LuvNamie\Dropbox
2013-02-04 14:39 . 2013-02-16 13:51 -------- d-----w- c:\users\LuvNamie\AppData\Roaming\Dropbox
2013-02-04 13:39 . 2013-02-04 13:39 -------- d-----w- c:\users\LuvNamie\.swt
2013-02-04 13:32 . 2013-02-15 16:40 -------- d-----w- c:\program files (x86)\thinkTDA
2013-02-02 16:09 . 2013-02-16 11:57 -------- d-----w- c:\programdata\regid.1986-12.com.adobe
2013-02-02 16:07 . 2013-02-16 11:56 -------- d-----w- c:\program files\Adobe
2013-02-02 16:03 . 2013-02-16 11:57 -------- d-----w- c:\program files\Common Files\Adobe
2013-02-02 15:55 . 2013-02-16 11:55 -------- d-----w- c:\users\LuvNamie\AppData\Local\Adobe
2013-02-02 14:40 . 2013-02-02 14:40 137128 ----a-r- c:\windows\system32\CKAgent.exe
2013-02-02 14:40 . 2013-02-02 14:40 138320 ----a-r- c:\windows\SysWow64\CKAgent.exe
2013-02-02 07:04 . 2013-02-02 09:32 -------- d-----w- c:\users\LuvNamie\AppData\Roaming\Skype
2013-02-02 07:04 . 2013-02-02 07:04 -------- d-----w- c:\program files (x86)\Common Files\Skype
2013-02-02 07:04 . 2013-02-02 07:04 -------- d-----r- c:\program files (x86)\Skype
2013-02-02 07:03 . 2013-02-02 07:04 -------- d-----w- c:\programdata\Skype
2013-02-01 19:17 . 2013-02-01 19:17 -------- d-----w- c:\program files\Microsoft Silverlight
2013-02-01 19:17 . 2013-02-01 19:17 -------- d-----w- c:\program files (x86)\Microsoft Silverlight
2013-02-01 19:13 . 2013-02-16 11:56 -------- d-----w- c:\program files (x86)\Common Files\Adobe
2013-02-01 17:51 . 2013-02-01 17:51 -------- d-----w- c:\users\LuvNamie\AppData\Local\Macromedia
2013-02-01 17:49 . 2013-02-15 16:49 691568 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-02-01 17:49 . 2013-02-15 16:49 71024 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-02-01 17:49 . 2013-02-01 17:49 -------- d-----w- c:\windows\system32\Macromed
2013-01-20 16:14 . 2013-02-16 18:52 -------- d-----w- c:\users\LuvNamie\AppData\Roaming\vlc
2013-01-20 16:13 . 2013-01-20 16:13 -------- d-----w- c:\program files (x86)\VideoLAN
2013-01-20 06:59 . 2013-01-20 06:59 230320 ----a-w- c:\windows\system32\drivers\MpFilter.sys
2013-01-19 15:19 . 2013-01-19 15:19 -------- d-----w- c:\program files (x86)\INCAInternet
2013-01-19 15:19 . 2013-01-19 15:19 -------- d-----w- c:\program files (x86)\INCAInternet UnInstall
2013-01-19 15:18 . 2013-01-19 15:18 575640 ----a-w- c:\windows\SysWow64\I3GManager.exe
2013-01-19 15:18 . 2013-01-19 15:18 72272 ----a-w- c:\windows\SysWow64\cosa.dll
2013-01-19 15:18 . 2013-01-19 15:18 58600 ----a-w- c:\windows\SysWow64\I3Gescp.dll
2013-01-19 15:18 . 2013-01-19 15:18 477312 ----a-w- c:\windows\SysWow64\I3GManager.dll
2013-01-19 15:18 . 2013-01-19 15:18 211072 ----a-w- c:\windows\SysWow64\I3GEX.exe
2013-01-19 15:18 . 2013-01-19 15:18 15512 ----a-w- c:\windows\SysWow64\IRTrace.dll
2013-01-19 15:18 . 2013-01-19 15:18 -------- d-----w- c:\program files (x86)\Interezen
2013-01-19 15:16 . 2013-01-19 15:16 -------- d-----w- c:\program files\NPKI
2013-01-19 15:16 . 2013-01-19 15:16 -------- d--h--w- c:\windows\yessign
2013-01-19 15:16 . 2013-01-19 15:16 -------- d-----w- C:\XecureSSL
2013-01-19 15:16 . 2013-01-19 15:16 -------- d-----w- c:\program files (x86)\SoftForum
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-02-15 04:20 . 2013-01-13 03:29 70004024 ----a-w- c:\windows\system32\MRT.exe
2013-02-09 06:53 . 2011-03-24 02:26 782240 ----a-w- c:\windows\SysWow64\deployJava1.dll
2013-01-30 10:53 . 2010-11-21 03:27 273840 ------w- c:\windows\system32\MpSigStub.exe
2013-01-20 06:59 . 2012-08-30 13:03 130008 ----a-w- c:\windows\system32\drivers\NisDrvWFP.sys
2013-01-13 04:14 . 2013-01-13 04:14 972264 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{320F267E-5EDF-4301-9E96-999E59AAC312}\gapaengine.dll
2013-01-12 18:22 . 2013-01-12 18:22 91648 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2013-01-12 18:22 . 2013-01-12 18:22 89088 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2013-01-12 18:22 . 2013-01-12 18:22 89088 ----a-w- c:\windows\system32\ie4uinit.exe
2013-01-12 18:22 . 2013-01-12 18:22 86528 ----a-w- c:\windows\SysWow64\iesysprep.dll
2013-01-12 18:22 . 2013-01-12 18:22 85504 ----a-w- c:\windows\system32\iesetup.dll
2013-01-12 18:22 . 2013-01-12 18:22 82432 ----a-w- c:\windows\system32\icardie.dll
2013-01-12 18:22 . 2013-01-12 18:22 76800 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2013-01-12 18:22 . 2013-01-12 18:22 76800 ----a-w- c:\windows\system32\tdc.ocx
2013-01-12 18:22 . 2013-01-12 18:22 74752 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2013-01-12 18:22 . 2013-01-12 18:22 74752 ----a-w- c:\windows\SysWow64\iesetup.dll
2013-01-12 18:22 . 2013-01-12 18:22 65024 ----a-w- c:\windows\system32\pngfilt.dll
2013-01-12 18:22 . 2013-01-12 18:22 63488 ----a-w- c:\windows\SysWow64\tdc.ocx
2013-01-12 18:22 . 2013-01-12 18:22 55296 ----a-w- c:\windows\system32\msfeedsbs.dll
2013-01-12 18:22 . 2013-01-12 18:22 534528 ----a-w- c:\windows\system32\ieapfltr.dll
2013-01-12 18:22 . 2013-01-12 18:22 49664 ----a-w- c:\windows\system32\imgutil.dll
2013-01-12 18:22 . 2013-01-12 18:22 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2013-01-12 18:22 . 2013-01-12 18:22 48640 ----a-w- c:\windows\system32\mshtmler.dll
2013-01-12 18:22 . 2013-01-12 18:22 452608 ----a-w- c:\windows\system32\dxtmsft.dll
2013-01-12 18:22 . 2013-01-12 18:22 448512 ----a-w- c:\windows\system32\html.iec
2013-01-12 18:22 . 2013-01-12 18:22 403248 ----a-w- c:\windows\system32\iedkcs32.dll
2013-01-12 18:22 . 2013-01-12 18:22 39936 ----a-w- c:\windows\system32\iernonce.dll
2013-01-12 18:22 . 2013-01-12 18:22 3695416 ----a-w- c:\windows\system32\ieapfltr.dat
2013-01-12 18:22 . 2013-01-12 18:22 367104 ----a-w- c:\windows\SysWow64\html.iec
2013-01-12 18:22 . 2013-01-12 18:22 35840 ----a-w- c:\windows\SysWow64\imgutil.dll
2013-01-12 18:22 . 2013-01-12 18:22 30720 ----a-w- c:\windows\system32\licmgr10.dll
2013-01-12 18:22 . 2013-01-12 18:22 282112 ----a-w- c:\windows\system32\dxtrans.dll
2013-01-12 18:22 . 2013-01-12 18:22 267776 ----a-w- c:\windows\system32\ieaksie.dll
2013-01-12 18:22 . 2013-01-12 18:22 249344 ----a-w- c:\windows\system32\webcheck.dll
2013-01-12 18:22 . 2013-01-12 18:22 23552 ----a-w- c:\windows\SysWow64\licmgr10.dll
2013-01-12 18:22 . 2013-01-12 18:22 222208 ----a-w- c:\windows\system32\msls31.dll
2013-01-12 18:22 . 2013-01-12 18:22 197120 ----a-w- c:\windows\system32\msrating.dll
2013-01-12 18:22 . 2013-01-12 18:22 165888 ----a-w- c:\windows\system32\iexpress.exe
2013-01-12 18:22 . 2013-01-12 18:22 163840 ----a-w- c:\windows\system32\ieakui.dll
2013-01-12 18:22 . 2013-01-12 18:22 161792 ----a-w- c:\windows\SysWow64\msls31.dll
2013-01-12 18:22 . 2013-01-12 18:22 160256 ----a-w- c:\windows\system32\wextract.exe
2013-01-12 18:22 . 2013-01-12 18:22 160256 ----a-w- c:\windows\system32\ieakeng.dll
2013-01-12 18:22 . 2013-01-12 18:22 152064 ----a-w- c:\windows\SysWow64\wextract.exe
2013-01-12 18:22 . 2013-01-12 18:22 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2013-01-12 18:22 . 2013-01-12 18:22 149504 ----a-w- c:\windows\system32\occache.dll
2013-01-12 18:22 . 2013-01-12 18:22 145920 ----a-w- c:\windows\system32\iepeers.dll
2013-01-12 18:22 . 2013-01-12 18:22 135168 ----a-w- c:\windows\system32\IEAdvpack.dll
2013-01-12 18:22 . 2013-01-12 18:22 12288 ----a-w- c:\windows\system32\mshta.exe
2013-01-12 18:22 . 2013-01-12 18:22 11776 ----a-w- c:\windows\SysWow64\mshta.exe
2013-01-12 18:22 . 2013-01-12 18:22 114176 ----a-w- c:\windows\system32\admparse.dll
2013-01-12 18:22 . 2013-01-12 18:22 111616 ----a-w- c:\windows\system32\iesysprep.dll
2013-01-12 18:22 . 2013-01-12 18:22 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2013-01-12 18:22 . 2013-01-12 18:22 10752 ----a-w- c:\windows\system32\msfeedssync.exe
2013-01-12 18:22 . 2013-01-12 18:22 103936 ----a-w- c:\windows\system32\inseng.dll
2013-01-12 18:22 . 2013-01-12 18:22 101888 ----a-w- c:\windows\SysWow64\admparse.dll
2013-01-12 16:27 . 2013-01-12 16:27 76232 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{B1D5C143-4365-4534-B0C6-85BE1C040A21}\offreg.dll
2013-01-04 04:43 . 2013-02-14 14:28 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2012-12-16 17:11 . 2013-01-12 18:12 46080 ----a-w- c:\windows\system32\atmlib.dll
2012-12-16 14:45 . 2013-01-12 18:12 367616 ----a-w- c:\windows\system32\atmfd.dll
2012-12-16 14:13 . 2013-01-12 18:12 295424 ----a-w- c:\windows\SysWow64\atmfd.dll
2012-12-16 14:13 . 2013-01-12 18:12 34304 ----a-w- c:\windows\SysWow64\atmlib.dll
2012-12-14 07:49 . 2013-01-12 16:29 24176 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-12-07 13:20 . 2013-01-12 16:04 441856 ----a-w- c:\windows\system32\Wpc.dll
2012-12-07 13:15 . 2013-01-12 16:04 2746368 ----a-w- c:\windows\system32\gameux.dll
2012-12-07 12:26 . 2013-01-12 16:04 308736 ----a-w- c:\windows\SysWow64\Wpc.dll
2012-12-07 12:20 . 2013-01-12 16:04 2576384 ----a-w- c:\windows\SysWow64\gameux.dll
2012-12-07 11:20 . 2013-01-12 16:04 30720 ----a-w- c:\windows\system32\usk.rs
2012-12-07 11:20 . 2013-01-12 16:04 43520 ----a-w- c:\windows\system32\csrr.rs
2012-12-07 11:20 . 2013-01-12 16:04 23552 ----a-w- c:\windows\system32\oflc.rs
2012-12-07 11:20 . 2013-01-12 16:04 45568 ----a-w- c:\windows\system32\oflc-nz.rs
2012-12-07 11:20 . 2013-01-12 16:04 44544 ----a-w- c:\windows\system32\pegibbfc.rs
2012-12-07 11:20 . 2013-01-12 16:04 20480 ----a-w- c:\windows\system32\pegi-fi.rs
2012-12-07 11:20 . 2013-01-12 16:04 20480 ----a-w- c:\windows\system32\pegi-pt.rs
2012-12-07 11:19 . 2013-01-12 16:04 20480 ----a-w- c:\windows\system32\pegi.rs
2012-12-07 11:19 . 2013-01-12 16:04 46592 ----a-w- c:\windows\system32\fpb.rs
2012-12-07 11:19 . 2013-01-12 16:04 40960 ----a-w- c:\windows\system32\cob-au.rs
2012-12-07 11:19 . 2013-01-12 16:04 21504 ----a-w- c:\windows\system32\grb.rs
2012-12-07 11:19 . 2013-01-12 16:04 15360 ----a-w- c:\windows\system32\djctq.rs
2012-12-07 11:19 . 2013-01-12 16:04 55296 ----a-w- c:\windows\system32\cero.rs
2012-12-07 11:19 . 2013-01-12 16:04 51712 ----a-w- c:\windows\system32\esrb.rs
2012-12-07 10:46 . 2013-01-12 16:04 43520 ----a-w- c:\windows\SysWow64\csrr.rs
2012-12-07 10:46 . 2013-01-12 16:04 30720 ----a-w- c:\windows\SysWow64\usk.rs
2012-12-07 10:46 . 2013-01-12 16:04 45568 ----a-w- c:\windows\SysWow64\oflc-nz.rs
2012-12-07 10:46 . 2013-01-12 16:04 44544 ----a-w- c:\windows\SysWow64\pegibbfc.rs
2012-12-07 10:46 . 2013-01-12 16:04 20480 ----a-w- c:\windows\SysWow64\pegi-pt.rs
2012-12-07 10:46 . 2013-01-12 16:04 23552 ----a-w- c:\windows\SysWow64\oflc.rs
2012-12-07 10:46 . 2013-01-12 16:04 20480 ----a-w- c:\windows\SysWow64\pegi-fi.rs
2012-12-07 10:46 . 2013-01-12 16:04 46592 ----a-w- c:\windows\SysWow64\fpb.rs
2012-12-07 10:46 . 2013-01-12 16:04 20480 ----a-w- c:\windows\SysWow64\pegi.rs
2012-12-07 10:46 . 2013-01-12 16:04 21504 ----a-w- c:\windows\SysWow64\grb.rs
2012-12-07 10:46 . 2013-01-12 16:04 40960 ----a-w- c:\windows\SysWow64\cob-au.rs
2012-12-07 10:46 . 2013-01-12 16:04 15360 ----a-w- c:\windows\SysWow64\djctq.rs
2012-12-07 10:46 . 2013-01-12 16:04 55296 ----a-w- c:\windows\SysWow64\cero.rs
2012-12-07 10:46 . 2013-01-12 16:04 51712 ----a-w- c:\windows\SysWow64\esrb.rs
2012-11-30 05:45 . 2013-01-12 16:00 362496 ----a-w- c:\windows\system32\wow64win.dll
2012-11-30 05:45 . 2013-01-12 16:00 243200 ----a-w- c:\windows\system32\wow64.dll
2012-11-30 05:45 . 2013-01-12 16:00 13312 ----a-w- c:\windows\system32\wow64cpu.dll
2012-11-30 05:43 . 2013-01-12 16:00 16384 ----a-w- c:\windows\system32\ntvdm64.dll
2012-11-30 05:41 . 2013-01-12 16:00 424448 ----a-w- c:\windows\system32\KernelBase.dll
2012-11-30 05:41 . 2013-01-12 16:00 1161216 ----a-w- c:\windows\system32\kernel32.dll
2012-11-30 05:38 . 2013-01-12 16:00 6144 ---ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 129272 ----a-w- c:\users\LuvNamie\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 129272 ----a-w- c:\users\LuvNamie\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 129272 ----a-w- c:\users\LuvNamie\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Gadwin PrintScreen"="c:\program files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe" [2012-05-30 1842384]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
"GrooveMonitor"="c:\program files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]
"AdobeCS6ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" [2012-03-09 1073312]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-18 946352]
.
c:\users\LuvNamie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dropbox.lnk - c:\users\LuvNamie\AppData\Roaming\Dropbox\bin\Dropbox.exe [2013-1-21 28539272]
MagicDisc.lnk - c:\program files (x86)\MagicDisc\MagicDisc.exe [2013-2-11 576000]
.
c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Best Buy pc app.lnk - c:\programdata\Best Buy pc app\ClickOnceSetup.exe [N/A]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2013-01-08 161536]
R2 taisregispinger;taisregispinger;c:\program files (x86)\TOSHIBA\ToshibaRegistration\TaisRegistPinger.exe [x]
R3 JRSKD24;JRSKD24;c:\windows\system32\JRSKD24.SYS [x]
R3 kcrtx64;kcrtx64;c:\windows\system32\kcrtx64.sys [2013-02-02 141848]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2013-01-20 130008]
R3 NisSrv;Microsoft Network Inspection;c:\program files\Microsoft Security Client\NisSrv.exe [2013-01-27 379360]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2010-12-02 250984]
R3 RSUSBVSTOR;RTSUVSTOR.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RTSUVSTOR.sys [2010-11-30 307304]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS [2009-06-10 292864]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS [2009-06-10 1485312]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS [2009-06-10 740864]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 TMachInfo;TMachInfo;c:\program files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [x]
R3 TPCHSrv;TPCH Service;c:\program files\TOSHIBA\TPHM\TPCHSrv.exe [2010-12-21 822704]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2013-01-12 1255736]
S0 tos_sps64;TOSHIBA tos_sps64 Service;c:\windows\system32\DRIVERS\tos_sps64.sys [2009-06-24 482384]
S2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver;c:\windows\system32\DRIVERS\TVALZFL.sys [2009-06-20 14472]
S2 UNS;Intel® Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2010-12-21 2656280]
S3 IntcDAud;Intel® Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2010-10-15 317440]
S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys [2010-11-08 76912]
S3 PGEffect;Pangu effect driver;c:\windows\system32\DRIVERS\pgeffect.sys [2011-02-09 38096]
S3 QIOMem;Generic IO & Memory Access;c:\windows\system32\DRIVERS\QIOMem.sys [2009-06-15 12800]
S3 RTL8192Ce;Realtek Wireless LAN 802.11n PCI-E NIC Driver;c:\windows\system32\DRIVERS\rtl8192Ce.sys [2011-01-05 1109096]
S3 TOSHIBA HDD SSD Alert Service;TOSHIBA HDD SSD Alert Service;c:\program files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [2010-12-08 137632]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - ASWMBR
*Deregistered* - aswMBR
*Deregistered* - PROCMON23
.
Contents of the 'Scheduled Tasks' folder
.
2013-02-17 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-02-01 16:49]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 162552 ----a-w- c:\users\LuvNamie\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 162552 ----a-w- c:\users\LuvNamie\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 162552 ----a-w- c:\users\LuvNamie\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 162552 ----a-w- c:\users\LuvNamie\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"TosVolRegulator"="c:\program files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe" [2009-11-11 24376]
"TosSENotify"="c:\program files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe" [2010-12-08 710040]
"SmartAudio"="c:\program files\CONEXANT\SAII\SAIICpl.exe" [2010-12-14 316032]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-04-08 418136]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2013-01-27 1281512]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-04-08 167256]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-04-08 391000]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2012-04-03 446392]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://start.toshiba.com/g/
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = <local>
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~4\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 168.126.63.1 168.126.63.2 192.168.10.1
DPF: {967386A1-409E-431A-A93A-FB5FEFF86A58} - hxxp://bank.keb.co.kr/veraport/veraport.cab
FF - ProfilePath - c:\users\LuvNamie\AppData\Roaming\Mozilla\Firefox\Profiles\ps2yaq9o.default\
FF - prefs.js: browser.startup.homepage - hxxp://finance.yahoo.com/
FF - ExtSQL: 2013-01-13 00:36; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; c:\users\LuvNamie\AppData\Roaming\Mozilla\Firefox\Profiles\ps2yaq9o.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF - ExtSQL: 2013-01-13 01:35; {c36177c0-224a-11da-8cd6-0800200c9a91}; c:\users\LuvNamie\AppData\Roaming\Mozilla\Firefox\Profiles\ps2yaq9o.default\extensions\{c36177c0-224a-11da-8cd6-0800200c9a91}.xpi
FF - ExtSQL: 2013-01-13 01:35; {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}; c:\users\LuvNamie\AppData\Roaming\Mozilla\Firefox\Profiles\ps2yaq9o.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
FF - ExtSQL: 2013-01-13 01:35; {77b819fa-95ad-4f2c-ac7c-486b356188a9}; c:\users\LuvNamie\AppData\Roaming\Mozilla\Firefox\Profiles\ps2yaq9o.default\extensions\{77b819fa-95ad-4f2c-ac7c-486b356188a9}
FF - ExtSQL: 2013-01-13 01:35; [email protected]; c:\users\LuvNamie\AppData\Roaming\Mozilla\Firefox\Profiles\ps2yaq9o.default\extensions\[email protected]
FF - ExtSQL: 2013-01-13 01:35; [email protected]; c:\users\LuvNamie\AppData\Roaming\Mozilla\Firefox\Profiles\ps2yaq9o.default\extensions\[email protected]
FF - ExtSQL: 2013-01-13 01:35; [email protected]; c:\users\LuvNamie\AppData\Roaming\Mozilla\Firefox\Profiles\ps2yaq9o.default\extensions\[email protected]
FF - ExtSQL: 2013-01-13 01:35; feedly@devhd; c:\users\LuvNamie\AppData\Roaming\Mozilla\Firefox\Profiles\ps2yaq9o.default\extensions\[email protected]
.
- - - - ORPHANS REMOVED - - - -
.
Toolbar-Locked - (no file)
Wow6432Node-HKCU-Run-AdobeBridge - (no file)
Wow6432Node-HKLM-Run-TSleepSrv - %ProgramFiles(x86)%\TOSHIBA\TOSHIBA Sleep Utility\TSleepSrv.exe
Toolbar-Locked - (no file)
HKLM-Run-TPwrMain - c:\program files (x86)\TOSHIBA\Power Saver\TPwrMain.EXE
HKLM-Run-TosWaitSrv - c:\program files (x86)\TOSHIBA\TPHM\TosWaitSrv.exe
HKLM-Run-TosReelTimeMonitor - c:\program files (x86)\TOSHIBA\ReelTime\TosReelTimeMonitor.exe
HKLM-Run-TosNC - c:\program files (x86)\Toshiba\BulletinBoard\TosNcCore.exe
HKLM-Run-Teco - c:\program files (x86)\TOSHIBA\TECO\Teco.exe
HKLM-Run-TCrdMain - c:\program files (x86)\TOSHIBA\FlashCards\TCrdMain.exe
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
HKLM-Run-HSON - c:\program files (x86)\TOSHIBA\TBS\HSON.exe
AddRemove-VeraPort - c:\windows\system32\VeraPortUninstall.exe
AddRemove-XecureCK - c:\windows\system32\CKSetup32.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_149_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_149_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_149_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_149_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_149.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_149.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_149.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_149.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*]
@="?????????????????? v1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
@="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*]
@="?????????????????? v2"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
@="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2013-02-17 13:25:01
ComboFix-quarantined-files.txt 2013-02-17 04:25
.
Pre-Run: 22,606,442,496 bytes free
Post-Run: 22,342,885,376 bytes free
.
- - End Of File - - EB0F8C67904635B7E33A5FA0CFC9338F
13:26:31.0738 3592 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
13:26:32.0721 3592 ============================================================
13:26:32.0721 3592 Current date / time: 2013/02/17 13:26:32.0721
13:26:32.0721 3592 SystemInfo:
13:26:32.0721 3592
13:26:32.0721 3592 OS Version: 6.1.7601 ServicePack: 1.0
13:26:32.0721 3592 Product type: Workstation
13:26:32.0721 3592 ComputerName: LUVNAMIE-PC
13:26:32.0721 3592 UserName: LuvNamie
13:26:32.0721 3592 Windows directory: C:\windows
13:26:32.0721 3592 System windows directory: C:\windows
13:26:32.0721 3592 Running under WOW64
13:26:32.0721 3592 Processor architecture: Intel x64
13:26:32.0721 3592 Number of processors: 2
13:26:32.0721 3592 Page size: 0x1000
13:26:32.0721 3592 Boot type: Normal boot
13:26:32.0721 3592 ============================================================
13:26:34.0671 3592 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
13:26:34.0671 3592 ============================================================
13:26:34.0671 3592 \Device\Harddisk0\DR0:
13:26:34.0671 3592 MBR partitions:
13:26:34.0671 3592 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x7800000
13:26:34.0702 3592 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x7AEF000, BlocksNum 0x1BDCA800
13:26:34.0702 3592 ============================================================
13:26:34.0718 3592 C: <-> \Device\Harddisk0\DR0\Partition1
13:26:34.0764 3592 D: <-> \Device\Harddisk0\DR0\Partition2
13:26:34.0764 3592 ============================================================
13:26:34.0764 3592 Initialize success
13:26:34.0764 3592 ============================================================
13:26:56.0448 1852 ============================================================
13:26:56.0448 1852 Scan started
13:26:56.0448 1852 Mode: Manual;
13:26:56.0448 1852 ============================================================
13:26:57.0650 1852 ================ Scan system memory ========================
13:26:57.0650 1852 System memory - ok
13:26:57.0650 1852 ================ Scan services =============================
13:26:57.0806 1852 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
13:26:57.0806 1852 1394ohci - ok
13:26:57.0837 1852 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\windows\system32\drivers\ACPI.sys
13:26:57.0852 1852 ACPI - ok
13:26:57.0852 1852 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
13:26:57.0868 1852 AcpiPmi - ok
13:26:57.0962 1852 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
13:26:57.0962 1852 AdobeARMservice - ok
13:26:58.0086 1852 [ 563CDCFEEAEF97163E206AF71A61AA6E ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
13:26:58.0086 1852 AdobeFlashPlayerUpdateSvc - ok
13:26:58.0133 1852 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\drivers\adp94xx.sys
13:26:58.0133 1852 adp94xx - ok
13:26:58.0164 1852 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\drivers\adpahci.sys
13:26:58.0164 1852 adpahci - ok
13:26:58.0180 1852 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\drivers\adpu320.sys
13:26:58.0180 1852 adpu320 - ok
13:26:58.0211 1852 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
13:26:58.0211 1852 AeLookupSvc - ok
13:26:58.0242 1852 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\windows\system32\drivers\afd.sys
13:26:58.0258 1852 AFD - ok
13:26:58.0305 1852 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\drivers\agp440.sys
13:26:58.0305 1852 agp440 - ok
13:26:58.0336 1852 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe
13:26:58.0336 1852 ALG - ok
13:26:58.0367 1852 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\drivers\aliide.sys
13:26:58.0367 1852 aliide - ok
13:26:58.0383 1852 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\drivers\amdide.sys
13:26:58.0383 1852 amdide - ok
13:26:58.0398 1852 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\drivers\amdk8.sys
13:26:58.0398 1852 AmdK8 - ok
13:26:58.0414 1852 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\drivers\amdppm.sys
13:26:58.0414 1852 AmdPPM - ok
13:27:01.0175 1852 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\windows\system32\drivers\amdsata.sys
13:27:01.0175 1852 amdsata - ok
13:27:01.0222 1852 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\drivers\amdsbs.sys
13:27:01.0222 1852 amdsbs - ok
13:27:01.0238 1852 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\windows\system32\drivers\amdxata.sys
13:27:01.0238 1852 amdxata - ok
13:27:01.0284 1852 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\windows\system32\drivers\appid.sys
13:27:01.0284 1852 AppID - ok
13:27:01.0316 1852 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll
13:27:01.0316 1852 AppIDSvc - ok
13:27:01.0331 1852 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\windows\System32\appinfo.dll
13:27:01.0331 1852 Appinfo - ok
13:27:01.0378 1852 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\drivers\arc.sys
13:27:01.0378 1852 arc - ok
13:27:01.0394 1852 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\drivers\arcsas.sys
13:27:01.0394 1852 arcsas - ok
13:27:01.0425 1852 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
13:27:01.0425 1852 AsyncMac - ok
13:27:01.0440 1852 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\drivers\atapi.sys
13:27:01.0440 1852 atapi - ok
13:27:01.0487 1852 [ 0BF3E954F6A0CD505EBA6F74DCE2413A ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
13:27:01.0503 1852 AudioEndpointBuilder - ok
13:27:01.0503 1852 [ 0BF3E954F6A0CD505EBA6F74DCE2413A ] AudioSrv C:\windows\System32\Audiosrv.dll
13:27:01.0518 1852 AudioSrv - ok
13:27:01.0565 1852 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\windows\System32\AxInstSV.dll
13:27:01.0565 1852 AxInstSV - ok
13:27:01.0596 1852 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\drivers\bxvbda.sys
13:27:01.0596 1852 b06bdrv - ok
13:27:01.0628 1852 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
13:27:01.0628 1852 b57nd60a - ok
13:27:01.0690 1852 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll
13:27:01.0690 1852 BDESVC - ok
13:27:01.0721 1852 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys
13:27:01.0721 1852 Beep - ok
13:27:01.0784 1852 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\windows\System32\bfe.dll
13:27:01.0784 1852 BFE - ok
13:27:01.0830 1852 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\windows\system32\qmgr.dll
13:27:01.0846 1852 BITS - ok
13:27:01.0862 1852 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
13:27:01.0862 1852 blbdrive - ok
13:27:01.0893 1852 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\windows\system32\DRIVERS\bowser.sys
13:27:01.0893 1852 bowser - ok
13:27:01.0924 1852 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\drivers\BrFiltLo.sys
13:27:01.0924 1852 BrFiltLo - ok
13:27:01.0924 1852 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\drivers\BrFiltUp.sys
13:27:01.0924 1852 BrFiltUp - ok
13:27:01.0940 1852 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\windows\system32\DRIVERS\bridge.sys
13:27:01.0940 1852 BridgeMP - ok
13:27:01.0986 1852 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\windows\System32\browser.dll
13:27:01.0986 1852 Browser - ok
13:27:02.0002 1852 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys
13:27:02.0002 1852 Brserid - ok
13:27:02.0018 1852 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
13:27:02.0018 1852 BrSerWdm - ok
13:27:02.0033 1852 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
13:27:02.0033 1852 BrUsbMdm - ok
13:27:02.0049 1852 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
13:27:02.0049 1852 BrUsbSer - ok
13:27:02.0049 1852 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\drivers\bthmodem.sys
13:27:02.0049 1852 BTHMODEM - ok
13:27:02.0096 1852 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll
13:27:02.0096 1852 bthserv - ok
13:27:02.0111 1852 catchme - ok
13:27:02.0142 1852 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
13:27:02.0142 1852 cdfs - ok
13:27:02.0174 1852 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
13:27:02.0174 1852 cdrom - ok
13:27:02.0205 1852 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\windows\System32\certprop.dll
13:27:02.0205 1852 CertPropSvc - ok
13:27:02.0236 1852 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\drivers\circlass.sys
13:27:02.0236 1852 circlass - ok
13:27:02.0298 1852 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys
13:27:02.0298 1852 CLFS - ok
13:27:05.0075 1852 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:27:05.0075 1852 clr_optimization_v2.0.50727_32 - ok
13:27:05.0122 1852 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
13:27:05.0122 1852 clr_optimization_v2.0.50727_64 - ok
13:27:05.0200 1852 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:27:05.0200 1852 clr_optimization_v4.0.30319_32 - ok
13:27:05.0262 1852 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
13:27:05.0262 1852 clr_optimization_v4.0.30319_64 - ok
13:27:05.0294 1852 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
13:27:05.0294 1852 CmBatt - ok
13:27:05.0309 1852 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\drivers\cmdide.sys
13:27:05.0309 1852 cmdide - ok
13:27:05.0356 1852 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\windows\system32\Drivers\cng.sys
13:27:05.0356 1852 CNG - ok
13:27:05.0450 1852 [ 66847C979893A11CFCC2280E772D7EA1 ] CnxtHdAudService C:\windows\system32\drivers\CHDRT64.sys
13:27:05.0450 1852 CnxtHdAudService - ok
13:27:05.0512 1852 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\drivers\compbatt.sys
13:27:05.0512 1852 Compbatt - ok
13:27:05.0512 1852 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\windows\system32\DRIVERS\CompositeBus.sys
13:27:05.0512 1852 CompositeBus - ok
13:27:05.0528 1852 COMSysApp - ok
13:27:05.0543 1852 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\drivers\crcdisk.sys
13:27:05.0543 1852 crcdisk - ok
13:27:05.0590 1852 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\windows\system32\cryptsvc.dll
13:27:05.0590 1852 CryptSvc - ok
13:27:05.0637 1852 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\windows\system32\rpcss.dll
13:27:05.0637 1852 DcomLaunch - ok
13:27:05.0684 1852 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll
13:27:05.0699 1852 defragsvc - ok
13:27:05.0746 1852 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\windows\system32\Drivers\dfsc.sys
13:27:05.0746 1852 DfsC - ok
13:27:05.0777 1852 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\windows\system32\dhcpcore.dll
13:27:05.0777 1852 Dhcp - ok
13:27:05.0793 1852 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys
13:27:05.0793 1852 discache - ok
13:27:05.0824 1852 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\drivers\disk.sys
13:27:05.0824 1852 Disk - ok
13:27:05.0855 1852 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\windows\System32\dnsrslvr.dll
13:27:05.0871 1852 Dnscache - ok
13:27:05.0886 1852 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\windows\System32\dot3svc.dll
13:27:05.0886 1852 dot3svc - ok
13:27:05.0902 1852 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\windows\system32\dps.dll
13:27:05.0902 1852 DPS - ok
13:27:05.0933 1852 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
13:27:05.0933 1852 drmkaud - ok
13:27:05.0964 1852 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
13:27:05.0964 1852 DXGKrnl - ok
13:27:05.0996 1852 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll
13:27:05.0996 1852 EapHost - ok
13:27:06.0074 1852 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\drivers\evbda.sys
13:27:06.0089 1852 ebdrv - ok
13:27:06.0120 1852 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\windows\System32\lsass.exe
13:27:06.0120 1852 EFS - ok
13:27:08.0882 1852 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\windows\ehome\ehRecvr.exe
13:27:08.0882 1852 ehRecvr - ok
13:27:08.0897 1852 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe
13:27:08.0897 1852 ehSched - ok
13:27:08.0960 1852 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\drivers\elxstor.sys
13:27:08.0960 1852 elxstor - ok
13:27:08.0975 1852 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\drivers\errdev.sys
13:27:08.0975 1852 ErrDev - ok
13:27:08.0991 1852 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll
13:27:09.0006 1852 EventSystem - ok
13:27:09.0038 1852 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys
13:27:09.0038 1852 exfat - ok
13:27:09.0053 1852 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys
13:27:09.0053 1852 fastfat - ok
13:27:09.0100 1852 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\windows\system32\fxssvc.exe
13:27:09.0116 1852 Fax - ok
13:27:09.0147 1852 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\drivers\fdc.sys
13:27:09.0147 1852 fdc - ok
13:27:09.0194 1852 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll
13:27:09.0194 1852 fdPHost - ok
13:27:09.0209 1852 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll
13:27:09.0209 1852 FDResPub - ok
13:27:09.0225 1852 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
13:27:09.0225 1852 FileInfo - ok
13:27:09.0240 1852 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys
13:27:09.0240 1852 Filetrace - ok
13:27:09.0272 1852 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\drivers\flpydisk.sys
13:27:09.0272 1852 flpydisk - ok
13:27:09.0287 1852 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
13:27:09.0287 1852 FltMgr - ok
13:27:09.0350 1852 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\windows\system32\FntCache.dll
13:27:09.0365 1852 FontCache - ok
13:27:09.0428 1852 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
13:27:09.0428 1852 FontCache3.0.0.0 - ok
13:27:09.0443 1852 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys
13:27:09.0443 1852 FsDepends - ok
13:27:09.0490 1852 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
13:27:09.0490 1852 Fs_Rec - ok
13:27:09.0521 1852 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
13:27:09.0521 1852 fvevol - ok
13:27:09.0552 1852 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\drivers\gagp30kx.sys
13:27:09.0552 1852 gagp30kx - ok
13:27:09.0599 1852 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\windows\System32\gpsvc.dll
13:27:09.0599 1852 gpsvc - ok
13:27:09.0630 1852 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
13:27:09.0630 1852 hcw85cir - ok
13:27:09.0662 1852 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
13:27:09.0677 1852 HdAudAddService - ok
13:27:09.0693 1852 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\windows\system32\DRIVERS\HDAudBus.sys
13:27:09.0693 1852 HDAudBus - ok
13:27:09.0724 1852 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\drivers\HidBatt.sys
13:27:09.0724 1852 HidBatt - ok
13:27:09.0724 1852 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\drivers\hidbth.sys
13:27:09.0724 1852 HidBth - ok
13:27:09.0740 1852 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\drivers\hidir.sys
13:27:09.0740 1852 HidIr - ok
13:27:09.0771 1852 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\System32\hidserv.dll
13:27:09.0771 1852 hidserv - ok
13:27:09.0802 1852 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys
13:27:09.0802 1852 HidUsb - ok
13:27:09.0833 1852 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\windows\system32\kmsvc.dll
13:27:09.0833 1852 hkmsvc - ok
13:27:09.0849 1852 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
13:27:09.0849 1852 HomeGroupListener - ok
13:27:09.0864 1852 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
13:27:09.0864 1852 HomeGroupProvider - ok
13:27:09.0896 1852 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
13:27:09.0896 1852 HpSAMD - ok
13:27:09.0942 1852 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\windows\system32\drivers\HTTP.sys
13:27:09.0942 1852 HTTP - ok
13:27:09.0958 1852 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
13:27:09.0958 1852 hwpolicy - ok
13:27:09.0974 1852 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\DRIVERS\i8042prt.sys
13:27:09.0974 1852 i8042prt - ok
13:27:10.0020 1852 [ D469B77687E12FE43E344806740B624D ] iaStor C:\windows\system32\DRIVERS\iaStor.sys
13:27:10.0020 1852 iaStor - ok
13:27:10.0067 1852 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
13:27:10.0067 1852 iaStorV - ok
13:27:10.0130 1852 [ DAF66902F08796F9C694901660E5A64A ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
13:27:10.0130 1852 IDriverT - ok
13:27:12.0922 1852 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
13:27:12.0938 1852 idsvc - ok
13:27:13.0203 1852 [ 370C2A8629B30F910F740387795DDC6F ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys
13:27:13.0265 1852 igfx - ok
13:27:13.0296 1852 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\drivers\iirsp.sys
13:27:13.0296 1852 iirsp - ok
13:27:13.0328 1852 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\windows\System32\ikeext.dll
13:27:13.0343 1852 IKEEXT - ok
13:27:13.0390 1852 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\windows\system32\DRIVERS\IntcDAud.sys
13:27:13.0390 1852 IntcDAud - ok
13:27:13.0421 1852 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\drivers\intelide.sys
13:27:13.0421 1852 intelide - ok
13:27:13.0452 1852 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
13:27:13.0452 1852 intelppm - ok
13:27:13.0468 1852 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll
13:27:13.0468 1852 IPBusEnum - ok
13:27:13.0499 1852 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
13:27:13.0499 1852 IpFilterDriver - ok
13:27:13.0530 1852 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\windows\System32\iphlpsvc.dll
13:27:13.0546 1852 iphlpsvc - ok
13:27:13.0577 1852 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
13:27:13.0577 1852 IPMIDRV - ok
13:27:13.0593 1852 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys
13:27:13.0593 1852 IPNAT - ok
13:27:13.0624 1852 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys
13:27:13.0624 1852 IRENUM - ok
13:27:13.0624 1852 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\drivers\isapnp.sys
13:27:13.0624 1852 isapnp - ok
13:27:13.0640 1852 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
13:27:13.0640 1852 iScsiPrt - ok
13:27:13.0671 1852 JRSKD24 - ok
13:27:13.0686 1852 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\DRIVERS\kbdclass.sys
13:27:13.0686 1852 kbdclass - ok
13:27:13.0718 1852 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\windows\system32\drivers\kbdhid.sys
13:27:13.0718 1852 kbdhid - ok
13:27:13.0780 1852 [ B2023B8C0ACA7A4FF75A69E877DFB2D4 ] kcrtx64 C:\windows\system32\kcrtx64.sys
13:27:13.0780 1852 kcrtx64 - ok
13:27:13.0811 1852 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\windows\system32\lsass.exe
13:27:13.0811 1852 KeyIso - ok
13:27:13.0827 1852 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
13:27:13.0827 1852 KSecDD - ok
13:27:13.0842 1852 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
13:27:13.0842 1852 KSecPkg - ok
13:27:16.0557 1852 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
13:27:16.0557 1852 ksthunk - ok
13:27:16.0588 1852 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll
13:27:16.0588 1852 KtmRm - ok
13:27:16.0604 1852 [ EBED8B3FF4A823C1A6EEBEED7B29353F ] L1C C:\windows\system32\DRIVERS\L1C62x64.sys
13:27:16.0604 1852 L1C - ok
13:27:16.0635 1852 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\windows\System32\srvsvc.dll
13:27:16.0635 1852 LanmanServer - ok
13:27:16.0666 1852 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
13:27:16.0666 1852 LanmanWorkstation - ok
13:27:16.0697 1852 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
13:27:16.0697 1852 lltdio - ok
13:27:16.0744 1852 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll
13:27:16.0744 1852 lltdsvc - ok
13:27:16.0744 1852 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll
13:27:16.0744 1852 lmhosts - ok
13:27:16.0806 1852 [ 2ED1786B7542CDA261029F6B526EDF44 ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
13:27:16.0806 1852 LMS - ok
13:27:16.0853 1852 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\drivers\lsi_fc.sys
13:27:16.0853 1852 LSI_FC - ok
13:27:16.0900 1852 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\drivers\lsi_sas.sys
13:27:16.0900 1852 LSI_SAS - ok
13:27:16.0900 1852 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\drivers\lsi_sas2.sys
13:27:16.0900 1852 LSI_SAS2 - ok
13:27:16.0900 1852 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\drivers\lsi_scsi.sys
13:27:16.0916 1852 LSI_SCSI - ok
13:27:16.0931 1852 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys
13:27:16.0931 1852 luafv - ok
13:27:16.0962 1852 [ 79D51E7F5926E8CE1B3EBECEBAE28CFF ] mcdbus C:\windows\system32\DRIVERS\mcdbus.sys
13:27:16.0962 1852 mcdbus - ok
13:27:16.0994 1852 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
13:27:16.0994 1852 Mcx2Svc - ok
13:27:17.0009 1852 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\drivers\megasas.sys
13:27:17.0009 1852 megasas - ok
13:27:17.0040 1852 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\drivers\MegaSR.sys
13:27:17.0040 1852 MegaSR - ok
13:27:17.0087 1852 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\windows\system32\DRIVERS\HECIx64.sys
13:27:17.0087 1852 MEIx64 - ok
13:27:17.0165 1852 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
13:27:17.0165 1852 Microsoft Office Groove Audit Service - ok
13:27:17.0196 1852 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll
13:27:17.0196 1852 MMCSS - ok
13:27:17.0228 1852 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys
13:27:17.0228 1852 Modem - ok
13:27:17.0228 1852 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys
13:27:17.0228 1852 monitor - ok
13:27:17.0243 1852 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys
13:27:17.0243 1852 mouclass - ok
13:27:17.0259 1852 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
13:27:17.0259 1852 mouhid - ok
13:27:17.0290 1852 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\windows\system32\drivers\mountmgr.sys
13:27:17.0290 1852 mountmgr - ok
13:27:17.0352 1852 [ 51A84B690DF519DCF656F780243D953E ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
13:27:17.0352 1852 MozillaMaintenance - ok
13:27:17.0399 1852 [ F8A10560B35C66F9DE212F03DAD5BFA7 ] MpFilter C:\windows\system32\DRIVERS\MpFilter.sys
13:27:17.0399 1852 MpFilter - ok
13:27:17.0415 1852 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\windows\system32\drivers\mpio.sys
13:27:17.0430 1852 mpio - ok
13:27:17.0446 1852 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
13:27:17.0446 1852 mpsdrv - ok
13:27:17.0477 1852 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\windows\system32\mpssvc.dll
13:27:17.0477 1852 MpsSvc - ok
13:27:17.0508 1852 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
13:27:17.0508 1852 MRxDAV - ok
13:27:17.0524 1852 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
13:27:17.0524 1852 mrxsmb - ok
13:27:17.0540 1852 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
13:27:17.0555 1852 mrxsmb10 - ok
13:27:17.0571 1852 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
13:27:17.0571 1852 mrxsmb20 - ok
13:27:17.0586 1852 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\windows\system32\DRIVERS\msahci.sys
13:27:17.0586 1852 msahci - ok
13:27:17.0618 1852 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\windows\system32\drivers\msdsm.sys
13:27:17.0618 1852 msdsm - ok
13:27:17.0633 1852 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe
13:27:17.0633 1852 MSDTC - ok
13:27:17.0649 1852 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys
13:27:17.0649 1852 Msfs - ok
13:27:17.0696 1852 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
13:27:17.0696 1852 mshidkmdf - ok
13:27:17.0696 1852 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\drivers\msisadrv.sys
13:27:17.0696 1852 msisadrv - ok
13:27:17.0727 1852 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll
13:27:17.0727 1852 MSiSCSI - ok
13:27:17.0727 1852 msiserver - ok
13:27:17.0758 1852 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
13:27:17.0758 1852 MSKSSRV - ok
13:27:17.0852 1852 [ E07DEC52FF801841BA9B6878A60304FB ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe
13:27:17.0852 1852 MsMpSvc - ok
13:27:17.0883 1852 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
13:27:17.0898 1852 MSPCLOCK - ok
13:27:17.0898 1852 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
13:27:17.0898 1852 MSPQM - ok
13:27:17.0914 1852 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\windows\system32\drivers\MsRPC.sys
13:27:17.0914 1852 MsRPC - ok
13:27:17.0914 1852 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\DRIVERS\mssmbios.sys
13:27:17.0914 1852 mssmbios - ok
13:27:17.0930 1852 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
13:27:17.0930 1852 MSTEE - ok
13:27:17.0945 1852 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\drivers\MTConfig.sys
13:27:17.0945 1852 MTConfig - ok
13:27:17.0961 1852 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys
13:27:17.0961 1852 Mup - ok
13:27:17.0976 1852 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\windows\system32\qagentRT.dll
13:27:17.0992 1852 napagent - ok
13:27:18.0039 1852 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
13:27:18.0039 1852 NativeWifiP - ok
13:27:18.0086 1852 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\windows\system32\drivers\ndis.sys
13:27:18.0101 1852 NDIS - ok
13:27:20.0831 1852 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
13:27:20.0831 1852 NdisCap - ok
13:27:20.0862 1852 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
13:27:20.0862 1852 NdisTapi - ok
13:27:20.0909 1852 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
13:27:20.0909 1852 Ndisuio - ok
13:27:20.0909 1852 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
13:27:20.0909 1852 NdisWan - ok
13:27:20.0925 1852 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
13:27:20.0925 1852 NDProxy - ok
13:27:20.0925 1852 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
13:27:20.0925 1852 NetBIOS - ok
13:27:20.0925 1852 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
13:27:20.0925 1852 NetBT - ok
13:27:20.0956 1852 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\windows\system32\lsass.exe
13:27:20.0956 1852 Netlogon - ok
13:27:21.0003 1852 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll
13:27:21.0003 1852 Netman - ok
13:27:21.0018 1852 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll
13:27:21.0018 1852 netprofm - ok
13:27:21.0050 1852 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
13:27:21.0050 1852 NetTcpPortSharing - ok
13:27:21.0081 1852 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\drivers\nfrd960.sys
13:27:21.0081 1852 nfrd960 - ok
13:27:21.0143 1852 [ 162100E0BC8377710F9D170631921C03 ] NisDrv C:\windows\system32\DRIVERS\NisDrvWFP.sys
13:27:21.0143 1852 NisDrv - ok
13:27:21.0174 1852 [ C6E15F2F95F9C0A6098D43510B604E52 ] NisSrv C:\Program Files\Microsoft Security Client\NisSrv.exe
13:27:21.0174 1852 NisSrv - ok
13:27:21.0221 1852 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\windows\System32\nlasvc.dll
13:27:21.0221 1852 NlaSvc - ok
13:27:21.0237 1852 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys
13:27:21.0237 1852 Npfs - ok
13:27:21.0268 1852 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll
13:27:21.0268 1852 nsi - ok
13:27:21.0268 1852 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
13:27:21.0268 1852 nsiproxy - ok
13:27:21.0330 1852 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\windows\system32\drivers\Ntfs.sys
13:27:21.0330 1852 Ntfs - ok
13:27:21.0377 1852 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys
13:27:21.0377 1852 Null - ok
13:27:21.0393 1852 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\windows\system32\drivers\nvraid.sys
13:27:21.0408 1852 nvraid - ok
13:27:21.0424 1852 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\windows\system32\drivers\nvstor.sys
13:27:21.0424 1852 nvstor - ok
13:27:21.0455 1852 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\drivers\nv_agp.sys
13:27:21.0455 1852 nv_agp - ok
13:27:21.0533 1852 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
13:27:21.0533 1852 odserv - ok
13:27:21.0564 1852 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys
13:27:21.0564 1852 ohci1394 - ok
13:27:21.0596 1852 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:27:21.0596 1852 ose - ok
13:27:21.0627 1852 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll
13:27:21.0627 1852 p2pimsvc - ok
13:27:21.0658 1852 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll
13:27:21.0658 1852 p2psvc - ok
13:27:21.0689 1852 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\drivers\parport.sys
13:27:21.0689 1852 Parport - ok
13:27:21.0720 1852 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\windows\system32\drivers\partmgr.sys
13:27:21.0720 1852 partmgr - ok
13:27:21.0752 1852 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll
13:27:21.0752 1852 PcaSvc - ok
13:27:21.0783 1852 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\windows\system32\drivers\pci.sys
13:27:21.0783 1852 pci - ok
13:27:21.0798 1852 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\DRIVERS\pciide.sys
13:27:21.0798 1852 pciide - ok
13:27:21.0814 1852 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\drivers\pcmcia.sys
13:27:21.0814 1852 pcmcia - ok
13:27:21.0845 1852 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys
13:27:21.0845 1852 pcw - ok
13:27:21.0861 1852 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys
13:27:21.0861 1852 PEAUTH - ok
13:27:21.0939 1852 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe
13:27:21.0939 1852 PerfHost - ok
13:27:21.0970 1852 [ 91111CEBBDE8015E822C46120ED9537C ] PGEffect C:\windows\system32\DRIVERS\pgeffect.sys
13:27:21.0970 1852 PGEffect - ok
13:27:22.0001 1852 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\windows\system32\pla.dll
13:27:22.0017 1852 pla - ok
13:27:22.0048 1852 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\windows\system32\umpnpmgr.dll
13:27:22.0048 1852 PlugPlay - ok
13:27:22.0079 1852 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
13:27:22.0079 1852 PNRPAutoReg - ok
13:27:22.0110 1852 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll
13:27:22.0110 1852 PNRPsvc - ok
13:27:24.0856 1852 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
13:27:24.0856 1852 PolicyAgent - ok
13:27:24.0887 1852 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\windows\system32\umpo.dll
13:27:24.0887 1852 Power - ok
13:27:24.0918 1852 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
13:27:24.0918 1852 PptpMiniport - ok
13:27:24.0934 1852 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\drivers\processr.sys
13:27:24.0934 1852 Processor - ok
13:27:24.0981 1852 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\windows\system32\profsvc.dll
13:27:24.0996 1852 ProfSvc - ok
13:27:25.0012 1852 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
13:27:25.0012 1852 ProtectedStorage - ok
13:27:25.0043 1852 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\windows\system32\DRIVERS\pacer.sys
13:27:25.0043 1852 Psched - ok
13:27:25.0106 1852 [ C8FCB4899F8B70CC34E0D9876A80963C ] QIOMem C:\windows\system32\DRIVERS\QIOMem.sys
13:27:25.0106 1852 QIOMem - ok
13:27:25.0152 1852 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\drivers\ql2300.sys
13:27:25.0152 1852 ql2300 - ok
13:27:25.0199 1852 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\drivers\ql40xx.sys
13:27:25.0199 1852 ql40xx - ok
13:27:25.0215 1852 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll
13:27:25.0215 1852 QWAVE - ok
13:27:25.0230 1852 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
13:27:25.0230 1852 QWAVEdrv - ok
13:27:25.0262 1852 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
13:27:25.0262 1852 RasAcd - ok
13:27:25.0293 1852 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
13:27:25.0293 1852 RasAgileVpn - ok
13:27:25.0308 1852 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll
13:27:25.0308 1852 RasAuto - ok
13:27:25.0324 1852 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
13:27:25.0324 1852 Rasl2tp - ok
13:27:25.0340 1852 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\windows\System32\rasmans.dll
13:27:25.0355 1852 RasMan - ok
13:27:25.0355 1852 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
13:27:25.0355 1852 RasPppoe - ok
13:27:25.0371 1852 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
13:27:25.0371 1852 RasSstp - ok
13:27:25.0386 1852 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
13:27:25.0402 1852 rdbss - ok
13:27:25.0402 1852 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\drivers\rdpbus.sys
13:27:25.0402 1852 rdpbus - ok
13:27:25.0433 1852 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
13:27:25.0433 1852 RDPCDD - ok
13:27:25.0449 1852 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
13:27:25.0449 1852 RDPENCDD - ok
13:27:25.0449 1852 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
13:27:25.0449 1852 RDPREFMP - ok
13:27:25.0480 1852 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\windows\system32\drivers\RDPWD.sys
13:27:25.0480 1852 RDPWD - ok
13:27:25.0511 1852 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\windows\system32\drivers\rdyboost.sys
13:27:25.0511 1852 rdyboost - ok
13:27:25.0542 1852 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll
13:27:25.0542 1852 RemoteAccess - ok
13:27:25.0589 1852 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll
13:27:25.0589 1852 RemoteRegistry - ok
13:27:25.0605 1852 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
13:27:25.0605 1852 RpcEptMapper - ok
13:27:25.0620 1852 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe
13:27:25.0636 1852 RpcLocator - ok
13:27:25.0667 1852 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\windows\System32\rpcss.dll
13:27:25.0667 1852 RpcSs - ok
13:27:25.0698 1852 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
13:27:25.0698 1852 rspndr - ok
13:27:25.0745 1852 [ 135A64530D7699AD48F29D73A658DD11 ] RSUSBSTOR C:\windows\system32\Drivers\RtsUStor.sys
13:27:25.0745 1852 RSUSBSTOR - ok
13:27:25.0761 1852 [ E54A5586A28D0630A79A68BBAB84BFCF ] RSUSBVSTOR C:\windows\system32\Drivers\RTSUVSTOR.sys
13:27:25.0761 1852 RSUSBVSTOR - ok
13:27:25.0823 1852 [ 64FDF4FE366CA42DA2B7D9D424B6E39B ] RTL8192Ce C:\windows\system32\DRIVERS\rtl8192Ce.sys
13:27:25.0823 1852 RTL8192Ce - ok
13:27:25.0839 1852 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\windows\system32\lsass.exe
13:27:25.0839 1852 SamSs - ok
13:27:25.0870 1852 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\windows\system32\drivers\sbp2port.sys
13:27:25.0870 1852 sbp2port - ok
13:27:25.0901 1852 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll
13:27:25.0901 1852 SCardSvr - ok
13:27:25.0917 1852 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
13:27:25.0917 1852 scfilter - ok
13:27:28.0631 1852 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\windows\system32\schedsvc.dll
13:27:28.0631 1852 Schedule - ok
13:27:28.0662 1852 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\windows\System32\certprop.dll
13:27:28.0662 1852 SCPolicySvc - ok
13:27:28.0709 1852 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\windows\System32\SDRSVC.dll
13:27:28.0709 1852 SDRSVC - ok
13:27:28.0740 1852 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys
13:27:28.0756 1852 secdrv - ok
13:27:28.0772 1852 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\windows\system32\seclogon.dll
13:27:28.0772 1852 seclogon - ok
13:27:28.0787 1852 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\system32\sens.dll
13:27:28.0787 1852 SENS - ok
13:27:28.0803 1852 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll
13:27:28.0803 1852 SensrSvc - ok
13:27:28.0834 1852 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\drivers\serenum.sys
13:27:28.0834 1852 Serenum - ok
13:27:28.0850 1852 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\drivers\serial.sys
13:27:28.0850 1852 Serial - ok
13:27:28.0881 1852 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\drivers\sermouse.sys
13:27:28.0881 1852 sermouse - ok
13:27:28.0896 1852 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\windows\system32\sessenv.dll
13:27:28.0912 1852 SessionEnv - ok
13:27:28.0928 1852 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\drivers\sffdisk.sys
13:27:28.0928 1852 sffdisk - ok
13:27:28.0943 1852 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
13:27:28.0943 1852 sffp_mmc - ok
13:27:28.0943 1852 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
13:27:28.0943 1852 sffp_sd - ok
13:27:28.0943 1852 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\drivers\sfloppy.sys
13:27:28.0959 1852 sfloppy - ok
13:27:28.0974 1852 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\windows\System32\ipnathlp.dll
13:27:28.0990 1852 SharedAccess - ok
13:27:29.0021 1852 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
13:27:29.0021 1852 ShellHWDetection - ok
13:27:29.0037 1852 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\drivers\SiSRaid2.sys
13:27:29.0052 1852 SiSRaid2 - ok
13:27:29.0052 1852 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\drivers\sisraid4.sys
13:27:29.0068 1852 SiSRaid4 - ok
13:27:29.0084 1852 [ 2A904CA870C81BB4080D6E55FCB1FED7 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
13:27:29.0084 1852 SkypeUpdate - ok
13:27:29.0115 1852 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys
13:27:29.0115 1852 Smb - ok
13:27:29.0146 1852 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe
13:27:29.0146 1852 SNMPTRAP - ok
13:27:29.0208 1852 [ 12583AF6CBE0050651EAF2723B3AD7B3 ] speedfan C:\windows\syswow64\speedfan.sys
13:27:29.0208 1852 speedfan - ok
13:27:29.0224 1852 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys
13:27:29.0224 1852 spldr - ok
13:27:29.0271 1852 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\windows\System32\spoolsv.exe
13:27:29.0286 1852 Spooler - ok
13:27:29.0364 1852 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\windows\system32\sppsvc.exe
13:27:29.0396 1852 sppsvc - ok
13:27:29.0396 1852 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll
13:27:29.0396 1852 sppuinotify - ok
13:27:29.0427 1852 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\windows\system32\DRIVERS\srv.sys
13:27:29.0427 1852 srv - ok
13:27:29.0442 1852 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
13:27:29.0442 1852 srv2 - ok
13:27:29.0505 1852 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\windows\system32\DRIVERS\VSTAZL6.SYS
13:27:29.0505 1852 SrvHsfHDA - ok
13:27:29.0536 1852 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\windows\system32\DRIVERS\VSTDPV6.SYS
13:27:29.0552 1852 SrvHsfV92 - ok
13:27:29.0598 1852 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\windows\system32\DRIVERS\VSTCNXT6.SYS
13:27:29.0598 1852 SrvHsfWinac - ok
13:27:29.0630 1852 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
13:27:29.0630 1852 srvnet - ok
13:27:29.0661 1852 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
13:27:29.0661 1852 SSDPSRV - ok
13:27:29.0676 1852 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll
13:27:29.0676 1852 SstpSvc - ok
13:27:29.0708 1852 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\drivers\stexstor.sys
13:27:29.0708 1852 stexstor - ok
13:27:29.0754 1852 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\windows\System32\wiaservc.dll
13:27:29.0754 1852 stisvc - ok
13:27:29.0770 1852 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\DRIVERS\swenum.sys
13:27:29.0770 1852 swenum - ok
13:27:29.0848 1852 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
13:27:29.0848 1852 SwitchBoard - ok
13:27:29.0879 1852 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll
13:27:29.0879 1852 swprv - ok
13:27:29.0957 1852 [ F5B46DF59FEAA48A442AED7EEB754D4B ] SynTP C:\windows\system32\DRIVERS\SynTP.sys
13:27:29.0957 1852 SynTP - ok
13:27:30.0035 1852 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\windows\system32\sysmain.dll
13:27:30.0035 1852 SysMain - ok
13:27:30.0051 1852 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
13:27:30.0051 1852 TabletInputService - ok
13:27:30.0098 1852 taisregispinger - ok
13:27:32.0828 1852 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\windows\System32\tapisrv.dll
13:27:32.0828 1852 TapiSrv - ok
13:27:32.0843 1852 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll
13:27:32.0843 1852 TBS - ok
13:27:32.0921 1852 [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip C:\windows\system32\drivers\tcpip.sys
13:27:32.0937 1852 Tcpip - ok
13:27:33.0015 1852 [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
13:27:33.0030 1852 TCPIP6 - ok
13:27:33.0062 1852 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
13:27:33.0062 1852 tcpipreg - ok
13:27:33.0093 1852 [ FD542B661BD22FA69CA789AD0AC58C29 ] tdcmdpst C:\windows\system32\DRIVERS\tdcmdpst.sys
13:27:33.0093 1852 tdcmdpst - ok
13:27:33.0108 1852 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
13:27:33.0108 1852 TDPIPE - ok
13:27:33.0140 1852 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
13:27:33.0140 1852 TDTCP - ok
13:27:33.0155 1852 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\windows\system32\DRIVERS\tdx.sys
13:27:33.0155 1852 tdx - ok
13:27:33.0155 1852 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\windows\system32\DRIVERS\termdd.sys
13:27:33.0155 1852 TermDD - ok
13:27:33.0202 1852 [ 2E648163254233755035B46DD7B89123 ] TermService C:\windows\System32\termsrv.dll
13:27:33.0202 1852 TermService - ok
13:27:33.0202 1852 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll
13:27:33.0218 1852 Themes - ok
13:27:33.0233 1852 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll
13:27:33.0233 1852 THREADORDER - ok
13:27:33.0249 1852 TMachInfo - ok
13:27:33.0280 1852 [ 8E2C799D3476EAC32C3BA0DF7CE6AF19 ] TODDSrv C:\Windows\system32\TODDSrv.exe
13:27:33.0280 1852 TODDSrv - ok
13:27:33.0358 1852 [ CDC97FA5C42B07FB0D4600E17C32F582 ] TosCoSrv C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
13:27:33.0358 1852 TosCoSrv - ok
13:27:33.0389 1852 [ EDB4B432DB13EA3D1EB2356310D33263 ] TOSHIBA HDD SSD Alert Service C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
13:27:33.0389 1852 TOSHIBA HDD SSD Alert Service - ok
13:27:33.0420 1852 [ 09FF7B0B1B5C3D225495CB6F5A9B39F8 ] tos_sps64 C:\windows\system32\DRIVERS\tos_sps64.sys
13:27:33.0420 1852 tos_sps64 - ok
13:27:33.0483 1852 [ D65C6B0C070534336B72005391B6168A ] TPCHSrv C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
13:27:33.0483 1852 TPCHSrv - ok
13:27:33.0530 1852 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll
13:27:33.0530 1852 TrkWks - ok
13:27:33.0577 1852 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
13:27:33.0577 1852 TrustedInstaller - ok
13:27:33.0592 1852 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
13:27:33.0592 1852 tssecsrv - ok
13:27:33.0608 1852 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
13:27:33.0608 1852 TsUsbFlt - ok
13:27:33.0623 1852 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\windows\system32\drivers\TsUsbGD.sys
13:27:33.0623 1852 TsUsbGD - ok
13:27:33.0655 1852 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
13:27:33.0655 1852 tunnel - ok
13:27:33.0701 1852 [ 550B567F9364D8F7684C3FB3EA665A72 ] TVALZ C:\windows\system32\DRIVERS\TVALZ_O.SYS
13:27:33.0701 1852 TVALZ - ok
13:27:33.0733 1852 [ 9C7191F4B2E49BFF47A6C1144B5923FA ] TVALZFL C:\windows\system32\DRIVERS\TVALZFL.sys
13:27:33.0733 1852 TVALZFL - ok
13:27:33.0748 1852 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\drivers\uagp35.sys
13:27:33.0748 1852 uagp35 - ok
13:27:33.0748 1852 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\windows\system32\DRIVERS\udfs.sys
13:27:33.0764 1852 udfs - ok
13:27:33.0779 1852 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe
13:27:33.0779 1852 UI0Detect - ok
13:27:33.0811 1852 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
13:27:33.0811 1852 uliagpkx - ok
13:27:33.0842 1852 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\windows\system32\DRIVERS\umbus.sys
13:27:33.0842 1852 umbus - ok
13:27:33.0842 1852 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\drivers\umpass.sys
13:27:33.0842 1852 UmPass - ok
13:27:33.0967 1852 [ 7E5E1603D0FF2D240AE70295C5C3FEFC ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
13:27:33.0982 1852 UNS - ok
13:27:34.0013 1852 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll
13:27:34.0013 1852 upnphost - ok
13:27:34.0045 1852 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
13:27:34.0045 1852 usbccgp - ok
13:27:34.0091 1852 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\drivers\usbcir.sys
13:27:34.0091 1852 usbcir - ok
13:27:34.0123 1852 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\windows\system32\drivers\usbehci.sys
13:27:34.0123 1852 usbehci - ok
13:27:36.0837 1852 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
13:27:36.0837 1852 usbhub - ok
13:27:36.0853 1852 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\windows\system32\drivers\usbohci.sys
13:27:36.0853 1852 usbohci - ok
13:27:36.0868 1852 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\drivers\usbprint.sys
13:27:36.0868 1852 usbprint - ok
13:27:36.0884 1852 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
13:27:36.0884 1852 USBSTOR - ok
13:27:36.0915 1852 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\windows\system32\drivers\usbuhci.sys
13:27:36.0915 1852 usbuhci - ok
13:27:36.0946 1852 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\windows\system32\Drivers\usbvideo.sys
13:27:36.0946 1852 usbvideo - ok
13:27:36.0977 1852 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll
13:27:36.0977 1852 UxSms - ok
13:27:36.0993 1852 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\windows\system32\lsass.exe
13:27:36.0993 1852 VaultSvc - ok
13:27:37.0024 1852 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
13:27:37.0024 1852 vdrvroot - ok
13:27:37.0055 1852 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\windows\System32\vds.exe
13:27:37.0071 1852 vds - ok
13:27:37.0102 1852 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys
13:27:37.0102 1852 vga - ok
13:27:37.0102 1852 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys
13:27:37.0102 1852 VgaSave - ok
13:27:37.0118 1852 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\windows\system32\drivers\vhdmp.sys
13:27:37.0118 1852 vhdmp - ok
13:27:37.0149 1852 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\drivers\viaide.sys
13:27:37.0149 1852 viaide - ok
13:27:37.0149 1852 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\windows\system32\drivers\volmgr.sys
13:27:37.0149 1852 volmgr - ok
13:27:37.0165 1852 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\windows\system32\drivers\volmgrx.sys
13:27:37.0180 1852 volmgrx - ok
13:27:37.0180 1852 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\windows\system32\drivers\volsnap.sys
13:27:37.0180 1852 volsnap - ok
13:27:37.0196 1852 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\drivers\vsmraid.sys
13:27:37.0211 1852 vsmraid - ok
13:27:37.0258 1852 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\windows\system32\vssvc.exe
13:27:37.0258 1852 VSS - ok
13:27:37.0305 1852 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
13:27:37.0305 1852 vwifibus - ok
13:27:37.0305 1852 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
13:27:37.0305 1852 vwififlt - ok
13:27:37.0352 1852 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll
13:27:37.0352 1852 W32Time - ok
13:27:37.0383 1852 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\drivers\wacompen.sys
13:27:37.0383 1852 WacomPen - ok
13:27:37.0414 1852 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
13:27:37.0414 1852 WANARP - ok
13:27:37.0414 1852 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
13:27:37.0414 1852 Wanarpv6 - ok
13:27:37.0461 1852 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
13:27:37.0477 1852 WatAdminSvc - ok
13:27:37.0523 1852 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\windows\system32\wbengine.exe
13:27:37.0539 1852 wbengine - ok
13:27:37.0539 1852 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
13:27:37.0539 1852 WbioSrvc - ok
13:27:37.0555 1852 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\windows\System32\wcncsvc.dll
13:27:37.0555 1852 wcncsvc - ok
13:27:37.0570 1852 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
13:27:37.0570 1852 WcsPlugInService - ok
13:27:37.0586 1852 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\drivers\wd.sys
13:27:37.0586 1852 Wd - ok
13:27:37.0633 1852 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
13:27:37.0633 1852 Wdf01000 - ok
13:27:37.0648 1852 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll
13:27:37.0648 1852 WdiServiceHost - ok
13:27:37.0664 1852 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll
13:27:37.0664 1852 WdiSystemHost - ok
13:27:37.0664 1852 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\windows\System32\webclnt.dll
13:27:37.0664 1852 WebClient - ok
13:27:37.0679 1852 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll
13:27:37.0679 1852 Wecsvc - ok
13:27:37.0695 1852 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll
13:27:37.0695 1852 wercplsupport - ok
13:27:37.0711 1852 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll
13:27:37.0711 1852 WerSvc - ok
13:27:37.0742 1852 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
13:27:37.0742 1852 WfpLwf - ok
13:27:37.0773 1852 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys
13:27:37.0773 1852 WIMMount - ok
13:27:37.0773 1852 WinDefend - ok
13:27:37.0773 1852 WinHttpAutoProxySvc - ok
13:27:37.0835 1852 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
13:27:37.0835 1852 Winmgmt - ok
13:27:40.0628 1852 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\windows\system32\WsmSvc.dll
13:27:40.0628 1852 WinRM - ok
13:27:40.0690 1852 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\windows\system32\DRIVERS\WinUsb.sys
13:27:40.0690 1852 WinUsb - ok
13:27:40.0721 1852 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll
13:27:40.0737 1852 Wlansvc - ok
13:27:40.0753 1852 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\DRIVERS\wmiacpi.sys
13:27:40.0753 1852 WmiAcpi - ok
13:27:40.0784 1852 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
13:27:40.0784 1852 wmiApSrv - ok
13:27:40.0831 1852 WMPNetworkSvc - ok
13:27:40.0862 1852 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll
13:27:40.0862 1852 WPCSvc - ok
13:27:40.0877 1852 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
13:27:40.0877 1852 WPDBusEnum - ok
13:27:40.0909 1852 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
13:27:40.0909 1852 ws2ifsl - ok
13:27:40.0924 1852 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\windows\system32\wscsvc.dll
13:27:40.0940 1852 wscsvc - ok
13:27:40.0940 1852 WSearch - ok
13:27:41.0002 1852 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\windows\system32\wuaueng.dll
13:27:41.0018 1852 wuauserv - ok
13:27:41.0033 1852 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\windows\system32\drivers\WudfPf.sys
13:27:41.0033 1852 WudfPf - ok
13:27:41.0065 1852 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
13:27:41.0065 1852 WUDFRd - ok
13:27:41.0080 1852 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\windows\System32\WUDFSvc.dll
13:27:41.0080 1852 wudfsvc - ok
13:27:41.0096 1852 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\windows\System32\wwansvc.dll
13:27:41.0096 1852 WwanSvc - ok
13:27:41.0127 1852 ================ Scan global ===============================
13:27:41.0143 1852 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
13:27:41.0174 1852 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\windows\system32\winsrv.dll
13:27:41.0189 1852 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\windows\system32\winsrv.dll
13:27:41.0221 1852 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
13:27:41.0252 1852 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
13:27:41.0252 1852 [Global] - ok
13:27:41.0252 1852 ================ Scan MBR ==================================
13:27:41.0267 1852 [ 5B5E648D12FCADC244C1EC30318E1EB9 ] \Device\Harddisk0\DR0
13:27:41.0439 1852 \Device\Harddisk0\DR0 - ok
13:27:41.0439 1852 ================ Scan VBR ==================================
13:27:41.0439 1852 [ A47C333C7AC2E0501779D8928436FA7F ] \Device\Harddisk0\DR0\Partition1
13:27:41.0455 1852 \Device\Harddisk0\DR0\Partition1 - ok
13:27:41.0470 1852 [ AADB638BF1DCC03B6D572E7EBCDF4ACA ] \Device\Harddisk0\DR0\Partition2
13:27:41.0470 1852 \Device\Harddisk0\DR0\Partition2 - ok
13:27:41.0470 1852 ============================================================
13:27:41.0470 1852 Scan finished
13:27:41.0470 1852 ============================================================
13:27:41.0470 3132 Detected object count: 0
13:27:41.0470 3132 Actual detected object count: 0
13:28:33.0637 4500 ============================================================
13:28:33.0637 4500 Scan started
13:28:33.0637 4500 Mode: Manual; SigCheck; TDLFS;
13:28:33.0637 4500 ============================================================
13:28:37.0100 4500 ================ Scan system memory ========================
13:28:37.0100 4500 System memory - ok
13:28:37.0100 4500 ================ Scan services =============================
13:28:37.0209 4500 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
13:28:37.0271 4500 1394ohci - ok
13:28:37.0287 4500 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\windows\system32\drivers\ACPI.sys
13:28:37.0303 4500 ACPI - ok
13:28:37.0303 4500 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
13:28:37.0349 4500 AcpiPmi - ok
13:28:37.0396 4500 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
13:28:37.0412 4500 AdobeARMservice - ok
13:28:37.0490 4500 [ 563CDCFEEAEF97163E206AF71A61AA6E ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
13:28:37.0505 4500 AdobeFlashPlayerUpdateSvc - ok
13:28:37.0537 4500 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\drivers\adp94xx.sys
13:28:37.0552 4500 adp94xx - ok
13:28:37.0568 4500 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\drivers\adpahci.sys
13:28:37.0583 4500 adpahci - ok
13:28:37.0583 4500 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\drivers\adpu320.sys
13:28:37.0599 4500 adpu320 - ok
13:28:37.0615 4500 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
13:28:37.0661 4500 AeLookupSvc - ok
13:28:37.0708 4500 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\windows\system32\drivers\afd.sys
13:28:37.0724 4500 AFD - ok
13:28:37.0755 4500 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\drivers\agp440.sys
13:28:37.0771 4500 agp440 - ok
13:28:37.0802 4500 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe
13:28:37.0817 4500 ALG - ok
13:28:37.0833 4500 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\drivers\aliide.sys
13:28:37.0849 4500 aliide - ok
13:28:37.0864 4500 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\drivers\amdide.sys
13:28:37.0880 4500 amdide - ok
13:28:37.0880 4500 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\drivers\amdk8.sys
13:28:37.0895 4500 AmdK8 - ok
13:28:37.0895 4500 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\drivers\amdppm.sys
13:28:37.0911 4500 AmdPPM - ok
13:28:37.0942 4500 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\windows\system32\drivers\amdsata.sys
13:28:37.0942 4500 amdsata - ok
13:28:37.0973 4500 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\drivers\amdsbs.sys
13:28:37.0989 4500 amdsbs - ok
13:28:38.0005 4500 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\windows\system32\drivers\amdxata.sys
13:28:38.0020 4500 amdxata - ok
13:28:38.0020 4500 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\windows\system32\drivers\appid.sys
13:28:38.0098 4500 AppID - ok
13:28:38.0114 4500 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll
13:28:38.0161 4500 AppIDSvc - ok
13:28:38.0176 4500 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\windows\System32\appinfo.dll
13:28:38.0207 4500 Appinfo - ok
13:28:38.0223 4500 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\drivers\arc.sys
13:28:38.0223 4500 arc - ok
13:28:38.0239 4500 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\drivers\arcsas.sys
13:28:38.0254 4500 arcsas - ok
13:28:38.0254 4500 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
13:28:38.0301 4500 AsyncMac - ok
13:28:38.0317 4500 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\drivers\atapi.sys
13:28:38.0317 4500 atapi - ok
13:28:38.0363 4500 [ 0BF3E954F6A0CD505EBA6F74DCE2413A ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
13:28:38.0395 4500 AudioEndpointBuilder - ok
13:28:38.0395 4500 [ 0BF3E954F6A0CD505EBA6F74DCE2413A ] AudioSrv C:\windows\System32\Audiosrv.dll
13:28:38.0410 4500 AudioSrv - ok
13:28:38.0441 4500 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\windows\System32\AxInstSV.dll
13:28:38.0504 4500 AxInstSV - ok
13:28:38.0535 4500 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\drivers\bxvbda.sys
13:28:38.0566 4500 b06bdrv - ok
13:28:38.0582 4500 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
13:28:38.0613 4500 b57nd60a - ok
13:28:38.0629 4500 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll
13:28:38.0660 4500 BDESVC - ok
13:28:38.0691 4500 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys
13:28:38.0738 4500 Beep - ok
13:28:38.0753 4500 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\windows\System32\bfe.dll
13:28:38.0816 4500 BFE - ok
13:28:38.0847 4500 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\windows\system32\qmgr.dll
13:28:38.0894 4500 BITS - ok
13:28:38.0894 4500 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
13:28:38.0909 4500 blbdrive - ok
13:28:38.0941 4500 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\windows\system32\DRIVERS\bowser.sys
13:28:38.0972 4500 bowser - ok
13:28:39.0003 4500 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\drivers\BrFiltLo.sys
13:28:39.0019 4500 BrFiltLo - ok
13:28:39.0019 4500 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\drivers\BrFiltUp.sys
13:28:39.0034 4500 BrFiltUp - ok
13:28:39.0034 4500 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\windows\system32\DRIVERS\bridge.sys
13:28:39.0065 4500 BridgeMP - ok
13:28:39.0097 4500 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\windows\System32\browser.dll
13:28:39.0112 4500 Browser - ok
13:28:39.0112 4500 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys
13:28:39.0143 4500 Brserid - ok
13:28:39.0175 4500 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
13:28:39.0206 4500 BrSerWdm - ok
13:28:39.0206 4500 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
13:28:39.0221 4500 BrUsbMdm - ok
13:28:39.0237 4500 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
13:28:39.0237 4500 BrUsbSer - ok
13:28:39.0253 4500 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\drivers\bthmodem.sys
13:28:39.0253 4500 BTHMODEM - ok
13:28:39.0299 4500 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll
13:28:39.0346 4500 bthserv - ok
13:28:39.0346 4500 catchme - ok
13:28:39.0362 4500 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
13:28:39.0393 4500 cdfs - ok
13:28:39.0424 4500 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
13:28:39.0455 4500 cdrom - ok
13:28:39.0487 4500 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\windows\System32\certprop.dll
13:28:39.0533 4500 CertPropSvc - ok
13:28:39.0549 4500 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\drivers\circlass.sys
13:28:39.0565 4500 circlass - ok
13:28:39.0596 4500 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys
13:28:39.0611 4500 CLFS - ok
13:28:39.0674 4500 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:28:39.0689 4500 clr_optimization_v2.0.50727_32 - ok
13:28:39.0752 4500 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
13:28:39.0752 4500 clr_optimization_v2.0.50727_64 - ok
13:28:39.0814 4500 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:28:39.0830 4500 clr_optimization_v4.0.30319_32 - ok
13:28:39.0861 4500 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
13:28:39.0861 4500 clr_optimization_v4.0.30319_64 - ok
13:28:39.0877 4500 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
13:28:39.0908 4500 CmBatt - ok
13:28:39.0923 4500 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\drivers\cmdide.sys
13:28:39.0923 4500 cmdide - ok
13:28:39.0970 4500 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\windows\system32\Drivers\cng.sys
13:28:40.0001 4500 CNG - ok
13:28:40.0048 4500 [ 66847C979893A11CFCC2280E772D7EA1 ] CnxtHdAudService C:\windows\system32\drivers\CHDRT64.sys
13:28:40.0111 4500 CnxtHdAudService - ok
13:28:40.0126 4500 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\drivers\compbatt.sys
13:28:40.0142 4500 Compbatt - ok
13:28:42.0825 4500 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\windows\system32\DRIVERS\CompositeBus.sys
13:28:42.0887 4500 CompositeBus - ok
13:28:42.0887 4500 COMSysApp - ok
13:28:42.0903 4500 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\drivers\crcdisk.sys
13:28:42.0903 4500 crcdisk - ok
13:28:42.0950 4500 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\windows\system32\cryptsvc.dll
13:28:42.0965 4500 CryptSvc - ok
13:28:43.0012 4500 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\windows\system32\rpcss.dll
13:28:43.0043 4500 DcomLaunch - ok
13:28:43.0075 4500 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll
13:28:43.0121 4500 defragsvc - ok
13:28:43.0153 4500 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\windows\system32\Drivers\dfsc.sys
13:28:43.0199 4500 DfsC - ok
13:28:43.0231 4500 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\windows\system32\dhcpcore.dll
13:28:43.0262 4500 Dhcp - ok
13:28:43.0277 4500 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys
13:28:43.0324 4500 discache - ok
13:28:43.0340 4500 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\drivers\disk.sys
13:28:43.0355 4500 Disk - ok
13:28:43.0387 4500 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\windows\System32\dnsrslvr.dll
13:28:43.0418 4500 Dnscache - ok
13:28:43.0449 4500 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\windows\System32\dot3svc.dll
13:28:43.0496 4500 dot3svc - ok
13:28:43.0496 4500 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\windows\system32\dps.dll
13:28:43.0543 4500 DPS - ok
13:28:43.0558 4500 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
13:28:43.0589 4500 drmkaud - ok
13:28:43.0621 4500 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
13:28:43.0636 4500 DXGKrnl - ok
13:28:43.0667 4500 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll
13:28:43.0714 4500 EapHost - ok
13:28:43.0808 4500 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\drivers\evbda.sys
13:28:43.0839 4500 ebdrv - ok
13:28:43.0870 4500 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\windows\System32\lsass.exe
13:28:43.0886 4500 EFS - ok
13:28:43.0933 4500 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\windows\ehome\ehRecvr.exe
13:28:43.0964 4500 ehRecvr - ok
13:28:43.0995 4500 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe
13:28:44.0011 4500 ehSched - ok
13:28:44.0042 4500 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\drivers\elxstor.sys
13:28:44.0057 4500 elxstor - ok
13:28:44.0057 4500 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\drivers\errdev.sys
13:28:44.0089 4500 ErrDev - ok
13:28:44.0120 4500 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll
13:28:44.0167 4500 EventSystem - ok
13:28:44.0182 4500 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys
13:28:44.0213 4500 exfat - ok
13:28:44.0245 4500 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys
13:28:44.0291 4500 fastfat - ok
13:28:44.0323 4500 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\windows\system32\fxssvc.exe
13:28:44.0369 4500 Fax - ok
13:28:44.0401 4500 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\drivers\fdc.sys
13:28:44.0416 4500 fdc - ok
13:28:44.0432 4500 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll
13:28:44.0479 4500 fdPHost - ok
13:28:44.0479 4500 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll
13:28:44.0525 4500 FDResPub - ok
13:28:44.0525 4500 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
13:28:44.0541 4500 FileInfo - ok
13:28:44.0557 4500 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys
13:28:44.0603 4500 Filetrace - ok
13:28:44.0619 4500 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\drivers\flpydisk.sys
13:28:44.0635 4500 flpydisk - ok
13:28:44.0650 4500 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
13:28:44.0666 4500 FltMgr - ok
13:28:44.0713 4500 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\windows\system32\FntCache.dll
13:28:44.0759 4500 FontCache - ok
13:28:44.0806 4500 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
13:28:44.0806 4500 FontCache3.0.0.0 - ok
13:28:44.0822 4500 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys
13:28:44.0837 4500 FsDepends - ok
13:28:44.0869 4500 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
13:28:44.0869 4500 Fs_Rec - ok
13:28:44.0900 4500 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
13:28:44.0915 4500 fvevol - ok
13:28:44.0947 4500 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\drivers\gagp30kx.sys
13:28:44.0947 4500 gagp30kx - ok
13:28:44.0978 4500 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\windows\System32\gpsvc.dll
13:28:45.0025 4500 gpsvc - ok
13:28:45.0056 4500 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
13:28:45.0103 4500 hcw85cir - ok
13:28:45.0118 4500 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
13:28:45.0134 4500 HdAudAddService - ok
13:28:45.0165 4500 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\windows\system32\DRIVERS\HDAudBus.sys
13:28:45.0181 4500 HDAudBus - ok
13:28:45.0212 4500 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\drivers\HidBatt.sys
13:28:45.0227 4500 HidBatt - ok
13:28:45.0243 4500 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\drivers\hidbth.sys
13:28:45.0259 4500 HidBth - ok
13:28:45.0274 4500 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\drivers\hidir.sys
13:28:45.0290 4500 HidIr - ok
13:28:45.0321 4500 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\System32\hidserv.dll
13:28:45.0368 4500 hidserv - ok
13:28:45.0383 4500 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys
13:28:45.0399 4500 HidUsb - ok
13:28:45.0430 4500 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\windows\system32\kmsvc.dll
13:28:45.0477 4500 hkmsvc - ok
13:28:45.0477 4500 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
13:28:45.0508 4500 HomeGroupListener - ok
13:28:45.0539 4500 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
13:28:45.0555 4500 HomeGroupProvider - ok
13:28:45.0586 4500 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
13:28:45.0602 4500 HpSAMD - ok
13:28:45.0633 4500 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\windows\system32\drivers\HTTP.sys
13:28:45.0680 4500 HTTP - ok
13:28:45.0711 4500 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
13:28:45.0727 4500 hwpolicy - ok
13:28:45.0727 4500 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\DRIVERS\i8042prt.sys
13:28:45.0742 4500 i8042prt - ok
13:28:45.0773 4500 [ D469B77687E12FE43E344806740B624D ] iaStor C:\windows\system32\DRIVERS\iaStor.sys
13:28:45.0789 4500 iaStor - ok
13:28:45.0820 4500 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
13:28:45.0836 4500 iaStorV - ok
13:28:45.0883 4500 [ DAF66902F08796F9C694901660E5A64A ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
13:28:45.0898 4500 IDriverT ( UnsignedFile.Multi.Generic ) - warning
13:28:45.0898 4500 IDriverT - detected UnsignedFile.Multi.Generic (1)
13:28:45.0945 4500 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
13:28:45.0961 4500 idsvc - ok
13:28:46.0210 4500 [ 370C2A8629B30F910F740387795DDC6F ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys
13:28:46.0382 4500 igfx - ok
13:28:46.0413 4500 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\drivers\iirsp.sys
13:28:46.0429 4500 iirsp - ok
13:28:46.0460 4500 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\windows\System32\ikeext.dll
13:28:46.0507 4500 IKEEXT - ok
13:28:46.0553 4500 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\windows\system32\DRIVERS\IntcDAud.sys
13:28:46.0569 4500 IntcDAud - ok
13:28:46.0600 4500 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\drivers\intelide.sys
13:28:46.0616 4500 intelide - ok
13:28:46.0631 4500 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
13:28:46.0647 4500 intelppm - ok
13:28:46.0678 4500 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll
13:28:46.0725 4500 IPBusEnum - ok
13:28:46.0741 4500 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
13:28:46.0787 4500 IpFilterDriver - ok
13:28:46.0819 4500 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\windows\System32\iphlpsvc.dll
13:28:46.0850 4500 iphlpsvc - ok
13:28:46.0881 4500 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
13:28:46.0912 4500 IPMIDRV - ok
13:28:46.0912 4500 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys
13:28:46.0959 4500 IPNAT - ok
13:28:46.0975 4500 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys
13:28:46.0990 4500 IRENUM - ok
13:28:46.0990 4500 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\drivers\isapnp.sys
13:28:47.0006 4500 isapnp - ok
13:28:47.0037 4500 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
13:28:47.0053 4500 iScsiPrt - ok
13:28:47.0053 4500 JRSKD24 - ok
13:28:47.0068 4500 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\DRIVERS\kbdclass.sys
13:28:47.0068 4500 kbdclass - ok
13:28:47.0084 4500 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\windows\system32\drivers\kbdhid.sys
13:28:47.0115 4500 kbdhid - ok
13:28:47.0146 4500 [ B2023B8C0ACA7A4FF75A69E877DFB2D4 ] kcrtx64 C:\windows\system32\kcrtx64.sys
13:28:47.0146 4500 kcrtx64 - ok
13:28:47.0177 4500 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\windows\system32\lsass.exe
13:28:47.0177 4500 KeyIso - ok
13:28:47.0209 4500 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
13:28:47.0209 4500 KSecDD - ok
13:28:47.0240 4500 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
13:28:47.0240 4500 KSecPkg - ok
13:28:47.0271 4500 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
13:28:47.0318 4500 ksthunk - ok
13:28:47.0333 4500 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll
13:28:47.0396 4500 KtmRm - ok
13:28:47.0427 4500 [ EBED8B3FF4A823C1A6EEBEED7B29353F ] L1C C:\windows\system32\DRIVERS\L1C62x64.sys
13:28:47.0427 4500 L1C - ok
13:28:47.0443 4500 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\windows\System32\srvsvc.dll
13:28:47.0489 4500 LanmanServer - ok
13:28:47.0521 4500 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
13:28:47.0583 4500 LanmanWorkstation - ok
13:28:47.0583 4500 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
13:28:47.0630 4500 lltdio - ok
13:28:47.0645 4500 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll
13:28:47.0708 4500 lltdsvc - ok
13:28:47.0708 4500 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll
13:28:47.0739 4500 lmhosts - ok
13:28:47.0786 4500 [ 2ED1786B7542CDA261029F6B526EDF44 ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
13:28:47.0801 4500 LMS - ok
13:28:47.0833 4500 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\drivers\lsi_fc.sys
13:28:50.0547 4500 LSI_FC - ok
13:28:50.0547 4500 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\drivers\lsi_sas.sys
13:28:50.0563 4500 LSI_SAS - ok
13:28:50.0563 4500 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\drivers\lsi_sas2.sys
13:28:50.0578 4500 LSI_SAS2 - ok
13:28:50.0578 4500 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\drivers\lsi_scsi.sys
13:28:50.0594 4500 LSI_SCSI - ok
13:28:50.0609 4500 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys
13:28:50.0672 4500 luafv - ok
13:28:50.0687 4500 [ 79D51E7F5926E8CE1B3EBECEBAE28CFF ] mcdbus C:\windows\system32\DRIVERS\mcdbus.sys
13:28:50.0703 4500 mcdbus - ok
13:28:50.0734 4500 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
13:28:50.0750 4500 Mcx2Svc - ok
13:28:50.0765 4500 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\drivers\megasas.sys
13:28:50.0781 4500 megasas - ok
13:28:50.0781 4500 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\drivers\MegaSR.sys
13:28:50.0797 4500 MegaSR - ok
13:28:50.0843 4500 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\windows\system32\DRIVERS\HECIx64.sys
13:28:50.0843 4500 MEIx64 - ok
13:28:50.0906 4500 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
13:28:50.0921 4500 Microsoft Office Groove Audit Service - ok
13:28:50.0937 4500 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll
13:28:50.0984 4500 MMCSS - ok
13:28:51.0015 4500 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys
13:28:51.0062 4500 Modem - ok
13:28:51.0077 4500 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys
13:28:51.0109 4500 monitor - ok
13:28:51.0124 4500 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys
13:28:51.0140 4500 mouclass - ok
13:28:51.0140 4500 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
13:28:51.0155 4500 mouhid - ok
13:28:51.0171 4500 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\windows\system32\drivers\mountmgr.sys
13:28:51.0187 4500 mountmgr - ok
13:28:51.0233 4500 [ 51A84B690DF519DCF656F780243D953E ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
13:28:51.0249 4500 MozillaMaintenance - ok
13:28:51.0280 4500 [ F8A10560B35C66F9DE212F03DAD5BFA7 ] MpFilter C:\windows\system32\DRIVERS\MpFilter.sys
13:28:51.0280 4500 MpFilter - ok
13:28:51.0296 4500 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\windows\system32\drivers\mpio.sys
13:28:51.0311 4500 mpio - ok
13:28:51.0343 4500 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
13:28:51.0374 4500 mpsdrv - ok
13:28:51.0405 4500 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\windows\system32\mpssvc.dll
13:28:51.0452 4500 MpsSvc - ok
13:28:51.0467 4500 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
13:28:51.0499 4500 MRxDAV - ok
13:28:51.0530 4500 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
13:28:51.0561 4500 mrxsmb - ok
13:28:51.0577 4500 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
13:28:51.0592 4500 mrxsmb10 - ok
13:28:51.0608 4500 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
13:28:51.0623 4500 mrxsmb20 - ok
13:28:51.0655 4500 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\windows\system32\DRIVERS\msahci.sys
13:28:51.0655 4500 msahci - ok
13:28:51.0670 4500 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\windows\system32\drivers\msdsm.sys
13:28:51.0686 4500 msdsm - ok
13:28:51.0701 4500 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe
13:28:51.0717 4500 MSDTC - ok
13:28:51.0733 4500 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys
13:28:51.0764 4500 Msfs - ok
13:28:51.0795 4500 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
13:28:51.0842 4500 mshidkmdf - ok
13:28:51.0842 4500 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\drivers\msisadrv.sys
13:28:51.0857 4500 msisadrv - ok
13:28:51.0889 4500 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll
13:28:51.0935 4500 MSiSCSI - ok
13:28:51.0935 4500 msiserver - ok
13:28:51.0951 4500 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
13:28:51.0998 4500 MSKSSRV - ok
13:28:52.0060 4500 [ E07DEC52FF801841BA9B6878A60304FB ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe
13:28:52.0076 4500 MsMpSvc - ok
13:28:52.0107 4500 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
13:28:52.0154 4500 MSPCLOCK - ok
13:28:52.0154 4500 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
13:28:52.0185 4500 MSPQM - ok
13:28:52.0216 4500 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\windows\system32\drivers\MsRPC.sys
13:28:52.0232 4500 MsRPC - ok
13:28:52.0232 4500 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\DRIVERS\mssmbios.sys
13:28:52.0247 4500 mssmbios - ok
13:28:52.0263 4500 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
13:28:52.0294 4500 MSTEE - ok
13:28:52.0310 4500 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\drivers\MTConfig.sys
13:28:52.0310 4500 MTConfig - ok
13:28:52.0325 4500 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys
13:28:52.0325 4500 Mup - ok
13:28:52.0357 4500 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\windows\system32\qagentRT.dll
13:28:52.0403 4500 napagent - ok
13:28:52.0450 4500 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
13:28:52.0481 4500 NativeWifiP - ok
13:28:52.0528 4500 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\windows\system32\drivers\ndis.sys
13:28:52.0544 4500 NDIS - ok
13:28:52.0575 4500 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
13:28:52.0622 4500 NdisCap - ok
13:28:52.0622 4500 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
13:28:52.0653 4500 NdisTapi - ok
13:28:52.0669 4500 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
13:28:52.0700 4500 Ndisuio - ok
13:28:52.0700 4500 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
13:28:52.0747 4500 NdisWan - ok
13:28:52.0747 4500 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
13:28:52.0793 4500 NDProxy - ok
13:28:52.0809 4500 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
13:28:52.0856 4500 NetBIOS - ok
13:28:52.0871 4500 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
13:28:52.0903 4500 NetBT - ok
13:28:52.0918 4500 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\windows\system32\lsass.exe
13:28:52.0934 4500 Netlogon - ok
13:28:55.0664 4500 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll
13:28:55.0711 4500 Netman - ok
13:28:55.0726 4500 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll
13:28:55.0773 4500 netprofm - ok
13:28:55.0804 4500 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
13:28:55.0820 4500 NetTcpPortSharing - ok
13:28:55.0835 4500 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\drivers\nfrd960.sys
13:28:55.0851 4500 nfrd960 - ok
13:28:55.0882 4500 [ 162100E0BC8377710F9D170631921C03 ] NisDrv C:\windows\system32\DRIVERS\NisDrvWFP.sys
13:28:55.0898 4500 NisDrv - ok
13:28:55.0929 4500 [ C6E15F2F95F9C0A6098D43510B604E52 ] NisSrv C:\Program Files\Microsoft Security Client\NisSrv.exe
13:28:55.0945 4500 NisSrv - ok
13:28:55.0960 4500 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\windows\System32\nlasvc.dll
13:28:55.0976 4500 NlaSvc - ok
13:28:55.0991 4500 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys
13:28:56.0038 4500 Npfs - ok
13:28:56.0054 4500 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll
13:28:56.0085 4500 nsi - ok
13:28:56.0101 4500 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
13:28:56.0132 4500 nsiproxy - ok
13:28:56.0179 4500 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\windows\system32\drivers\Ntfs.sys
13:28:56.0225 4500 Ntfs - ok
13:28:56.0241 4500 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys
13:28:56.0288 4500 Null - ok
13:28:56.0303 4500 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\windows\system32\drivers\nvraid.sys
13:28:56.0319 4500 nvraid - ok
13:28:56.0335 4500 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\windows\system32\drivers\nvstor.sys
13:28:56.0350 4500 nvstor - ok
13:28:56.0350 4500 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\drivers\nv_agp.sys
13:28:56.0366 4500 nv_agp - ok
13:28:56.0444 4500 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
13:28:56.0459 4500 odserv - ok
13:28:56.0491 4500 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys
13:28:56.0506 4500 ohci1394 - ok
13:28:56.0537 4500 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:28:56.0537 4500 ose - ok
13:28:56.0569 4500 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll
13:28:56.0600 4500 p2pimsvc - ok
13:28:56.0631 4500 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll
13:28:56.0647 4500 p2psvc - ok
13:28:56.0662 4500 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\drivers\parport.sys
13:28:56.0678 4500 Parport - ok
13:28:56.0709 4500 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\windows\system32\drivers\partmgr.sys
13:28:56.0709 4500 partmgr - ok
13:28:56.0740 4500 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll
13:28:56.0771 4500 PcaSvc - ok
13:28:56.0803 4500 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\windows\system32\drivers\pci.sys
13:28:56.0818 4500 pci - ok
13:28:56.0818 4500 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\DRIVERS\pciide.sys
13:28:56.0834 4500 pciide - ok
13:28:56.0849 4500 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\drivers\pcmcia.sys
13:28:56.0865 4500 pcmcia - ok
13:28:56.0865 4500 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys
13:28:56.0881 4500 pcw - ok
13:28:56.0881 4500 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys
13:28:56.0943 4500 PEAUTH - ok
13:28:57.0005 4500 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe
13:28:57.0037 4500 PerfHost - ok
13:28:57.0068 4500 [ 91111CEBBDE8015E822C46120ED9537C ] PGEffect C:\windows\system32\DRIVERS\pgeffect.sys
13:28:57.0068 4500 PGEffect - ok
13:28:57.0115 4500 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\windows\system32\pla.dll
13:28:57.0193 4500 pla - ok
13:28:57.0224 4500 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\windows\system32\umpnpmgr.dll
13:28:57.0255 4500 PlugPlay - ok
13:28:57.0286 4500 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
13:28:57.0286 4500 PNRPAutoReg - ok
13:28:57.0317 4500 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll
13:28:57.0333 4500 PNRPsvc - ok
13:28:57.0364 4500 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
13:28:57.0427 4500 PolicyAgent - ok
13:28:57.0442 4500 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\windows\system32\umpo.dll
13:28:57.0505 4500 Power - ok
13:28:57.0536 4500 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
13:28:57.0583 4500 PptpMiniport - ok
13:28:57.0598 4500 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\drivers\processr.sys
13:28:57.0614 4500 Processor - ok
13:28:57.0645 4500 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\windows\system32\profsvc.dll
13:28:57.0676 4500 ProfSvc - ok
13:28:57.0692 4500 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
13:28:57.0707 4500 ProtectedStorage - ok
13:28:57.0723 4500 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\windows\system32\DRIVERS\pacer.sys
13:28:57.0770 4500 Psched - ok
13:28:57.0785 4500 [ C8FCB4899F8B70CC34E0D9876A80963C ] QIOMem C:\windows\system32\DRIVERS\QIOMem.sys
13:28:57.0817 4500 QIOMem - ok
13:28:57.0863 4500 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\drivers\ql2300.sys
13:28:57.0895 4500 ql2300 - ok
13:28:57.0910 4500 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\drivers\ql40xx.sys
13:28:57.0926 4500 ql40xx - ok
13:28:57.0941 4500 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll
13:28:57.0973 4500 QWAVE - ok
13:28:57.0973 4500 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
13:28:58.0004 4500 QWAVEdrv - ok
13:28:58.0035 4500 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
13:28:58.0082 4500 RasAcd - ok
13:29:00.0812 4500 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
13:29:00.0843 4500 RasAgileVpn - ok
13:29:00.0874 4500 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll
13:29:00.0937 4500 RasAuto - ok
13:29:00.0952 4500 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
13:29:00.0983 4500 Rasl2tp - ok
13:29:01.0015 4500 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\windows\System32\rasmans.dll
13:29:01.0046 4500 RasMan - ok
13:29:01.0061 4500 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
13:29:01.0093 4500 RasPppoe - ok
13:29:01.0124 4500 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
13:29:01.0155 4500 RasSstp - ok
13:29:01.0171 4500 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
13:29:01.0217 4500 rdbss - ok
13:29:01.0249 4500 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\drivers\rdpbus.sys
13:29:01.0264 4500 rdpbus - ok
13:29:01.0280 4500 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
13:29:01.0342 4500 RDPCDD - ok
13:29:01.0358 4500 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
13:29:01.0389 4500 RDPENCDD - ok
13:29:01.0405 4500 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
13:29:01.0436 4500 RDPREFMP - ok
13:29:01.0451 4500 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\windows\system32\drivers\RDPWD.sys
13:29:01.0483 4500 RDPWD - ok
13:29:01.0498 4500 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\windows\system32\drivers\rdyboost.sys
13:29:01.0514 4500 rdyboost - ok
13:29:01.0529 4500 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll
13:29:01.0592 4500 RemoteAccess - ok
13:29:01.0623 4500 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll
13:29:01.0654 4500 RemoteRegistry - ok
13:29:01.0670 4500 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
13:29:01.0701 4500 RpcEptMapper - ok
13:29:01.0732 4500 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe
13:29:01.0748 4500 RpcLocator - ok
13:29:01.0779 4500 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\windows\System32\rpcss.dll
13:29:01.0826 4500 RpcSs - ok
13:29:01.0841 4500 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
13:29:01.0888 4500 rspndr - ok
13:29:01.0919 4500 [ 135A64530D7699AD48F29D73A658DD11 ] RSUSBSTOR C:\windows\system32\Drivers\RtsUStor.sys
13:29:01.0935 4500 RSUSBSTOR - ok
13:29:01.0951 4500 [ E54A5586A28D0630A79A68BBAB84BFCF ] RSUSBVSTOR C:\windows\system32\Drivers\RTSUVSTOR.sys
13:29:01.0966 4500 RSUSBVSTOR - ok
13:29:02.0013 4500 [ 64FDF4FE366CA42DA2B7D9D424B6E39B ] RTL8192Ce C:\windows\system32\DRIVERS\rtl8192Ce.sys
13:29:02.0029 4500 RTL8192Ce - ok
13:29:02.0044 4500 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\windows\system32\lsass.exe
13:29:02.0060 4500 SamSs - ok
13:29:02.0075 4500 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\windows\system32\drivers\sbp2port.sys
13:29:02.0091 4500 sbp2port - ok
13:29:02.0122 4500 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll
13:29:02.0153 4500 SCardSvr - ok
13:29:02.0169 4500 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
13:29:02.0216 4500 scfilter - ok
13:29:02.0263 4500 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\windows\system32\schedsvc.dll
13:29:02.0309 4500 Schedule - ok
13:29:02.0341 4500 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\windows\System32\certprop.dll
13:29:02.0372 4500 SCPolicySvc - ok
13:29:02.0387 4500 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\windows\System32\SDRSVC.dll
13:29:02.0419 4500 SDRSVC - ok
13:29:02.0450 4500 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys
13:29:02.0497 4500 secdrv - ok
13:29:02.0528 4500 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\windows\system32\seclogon.dll
13:29:02.0559 4500 seclogon - ok
13:29:05.0242 4500 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\system32\sens.dll
13:29:05.0320 4500 SENS - ok
13:29:05.0336 4500 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll
13:29:05.0351 4500 SensrSvc - ok
13:29:05.0398 4500 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\drivers\serenum.sys
13:29:05.0429 4500 Serenum - ok
13:29:05.0429 4500 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\drivers\serial.sys
13:29:05.0461 4500 Serial - ok
13:29:05.0476 4500 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\drivers\sermouse.sys
13:29:05.0492 4500 sermouse - ok
13:29:05.0523 4500 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\windows\system32\sessenv.dll
13:29:05.0570 4500 SessionEnv - ok
13:29:05.0585 4500 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\drivers\sffdisk.sys
13:29:05.0601 4500 sffdisk - ok
13:29:05.0617 4500 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
13:29:05.0648 4500 sffp_mmc - ok
13:29:05.0648 4500 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
13:29:05.0663 4500 sffp_sd - ok
13:29:05.0679 4500 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\drivers\sfloppy.sys
13:29:05.0695 4500 sfloppy - ok
13:29:05.0710 4500 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\windows\System32\ipnathlp.dll
13:29:05.0757 4500 SharedAccess - ok
13:29:05.0788 4500 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
13:29:05.0819 4500 ShellHWDetection - ok
13:29:05.0851 4500 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\drivers\SiSRaid2.sys
13:29:05.0851 4500 SiSRaid2 - ok
13:29:05.0882 4500 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\drivers\sisraid4.sys
13:29:05.0897 4500 SiSRaid4 - ok
13:29:05.0913 4500 [ 2A904CA870C81BB4080D6E55FCB1FED7 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
13:29:05.0929 4500 SkypeUpdate - ok
13:29:05.0929 4500 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys
13:29:05.0975 4500 Smb - ok
13:29:06.0007 4500 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe
13:29:06.0022 4500 SNMPTRAP - ok
13:29:06.0053 4500 [ 12583AF6CBE0050651EAF2723B3AD7B3 ] speedfan C:\windows\syswow64\speedfan.sys
13:29:06.0053 4500 speedfan - ok
13:29:06.0085 4500 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys
13:29:06.0085 4500 spldr - ok
13:29:06.0131 4500 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\windows\System32\spoolsv.exe
13:29:06.0147 4500 Spooler - ok
13:29:06.0241 4500 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\windows\system32\sppsvc.exe
13:29:06.0319 4500 sppsvc - ok
13:29:06.0334 4500 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll
13:29:06.0365 4500 sppuinotify - ok
13:29:06.0397 4500 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\windows\system32\DRIVERS\srv.sys
13:29:06.0443 4500 srv - ok
13:29:06.0475 4500 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
13:29:06.0506 4500 srv2 - ok
13:29:06.0537 4500 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\windows\system32\DRIVERS\VSTAZL6.SYS
13:29:06.0553 4500 SrvHsfHDA - ok
13:29:06.0584 4500 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\windows\system32\DRIVERS\VSTDPV6.SYS
13:29:06.0615 4500 SrvHsfV92 - ok
13:29:06.0646 4500 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\windows\system32\DRIVERS\VSTCNXT6.SYS
13:29:06.0662 4500 SrvHsfWinac - ok
13:29:06.0677 4500 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
13:29:06.0693 4500 srvnet - ok
13:29:06.0724 4500 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
13:29:06.0755 4500 SSDPSRV - ok
13:29:06.0771 4500 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll
13:29:06.0802 4500 SstpSvc - ok
13:29:06.0833 4500 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\drivers\stexstor.sys
13:29:06.0833 4500 stexstor - ok
13:29:06.0880 4500 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\windows\System32\wiaservc.dll
13:29:06.0911 4500 stisvc - ok
13:29:06.0927 4500 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\DRIVERS\swenum.sys
13:29:06.0943 4500 swenum - ok
13:29:07.0005 4500 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
13:29:07.0036 4500 SwitchBoard ( UnsignedFile.Multi.Generic ) - warning
13:29:07.0036 4500 SwitchBoard - detected UnsignedFile.Multi.Generic (1)
13:29:07.0052 4500 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll
13:29:07.0099 4500 swprv - ok
13:29:07.0161 4500 [ F5B46DF59FEAA48A442AED7EEB754D4B ] SynTP C:\windows\system32\DRIVERS\SynTP.sys
13:29:07.0192 4500 SynTP - ok
13:29:07.0239 4500 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\windows\system32\sysmain.dll
13:29:07.0286 4500 SysMain - ok
13:29:07.0301 4500 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
13:29:07.0317 4500 TabletInputService - ok
13:29:07.0348 4500 taisregispinger - ok
13:29:07.0364 4500 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\windows\System32\tapisrv.dll
13:29:07.0411 4500 TapiSrv - ok
13:29:07.0660 4500 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll
13:29:07.0691 4500 TBS - ok
13:29:07.0754 4500 [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip C:\windows\system32\drivers\tcpip.sys
13:29:07.0801 4500 Tcpip - ok
13:29:07.0816 4500 [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
13:29:07.0863 4500 TCPIP6 - ok
13:29:07.0894 4500 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
13:29:07.0910 4500 tcpipreg - ok
13:29:07.0925 4500 [ FD542B661BD22FA69CA789AD0AC58C29 ] tdcmdpst C:\windows\system32\DRIVERS\tdcmdpst.sys
13:29:07.0925 4500 tdcmdpst - ok
13:29:07.0957 4500 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
13:29:08.0003 4500 TDPIPE - ok
13:29:08.0019 4500 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
13:29:08.0035 4500 TDTCP - ok
13:29:08.0050 4500 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\windows\system32\DRIVERS\tdx.sys
13:29:08.0097 4500 tdx - ok
13:29:08.0113 4500 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\windows\system32\DRIVERS\termdd.sys
13:29:08.0113 4500 TermDD - ok
13:29:08.0159 4500 [ 2E648163254233755035B46DD7B89123 ] TermService C:\windows\System32\termsrv.dll
13:29:08.0191 4500 TermService - ok
13:29:08.0206 4500 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll
13:29:08.0222 4500 Themes - ok
13:29:08.0237 4500 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll
13:29:08.0269 4500 THREADORDER - ok
13:29:08.0300 4500 TMachInfo - ok
13:29:08.0331 4500 [ 8E2C799D3476EAC32C3BA0DF7CE6AF19 ] TODDSrv C:\Windows\system32\TODDSrv.exe
13:29:08.0331 4500 TODDSrv - ok
13:29:08.0393 4500 [ CDC97FA5C42B07FB0D4600E17C32F582 ] TosCoSrv C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
13:29:08.0409 4500 TosCoSrv - ok
13:29:08.0425 4500 [ EDB4B432DB13EA3D1EB2356310D33263 ] TOSHIBA HDD SSD Alert Service C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
13:29:08.0440 4500 TOSHIBA HDD SSD Alert Service - ok
13:29:08.0471 4500 [ 09FF7B0B1B5C3D225495CB6F5A9B39F8 ] tos_sps64 C:\windows\system32\DRIVERS\tos_sps64.sys
13:29:08.0471 4500 tos_sps64 - ok
13:29:08.0534 4500 [ D65C6B0C070534336B72005391B6168A ] TPCHSrv C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
13:29:08.0565 4500 TPCHSrv - ok
13:29:08.0596 4500 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll
13:29:08.0627 4500 TrkWks - ok
13:29:08.0690 4500 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
13:29:08.0721 4500 TrustedInstaller - ok
13:29:08.0737 4500 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
13:29:08.0783 4500 tssecsrv - ok
13:29:08.0799 4500 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
13:29:08.0815 4500 TsUsbFlt - ok
13:29:08.0846 4500 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\windows\system32\drivers\TsUsbGD.sys
13:29:08.0861 4500 TsUsbGD - ok
13:29:08.0877 4500 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
13:29:08.0939 4500 tunnel - ok
13:29:08.0955 4500 [ 550B567F9364D8F7684C3FB3EA665A72 ] TVALZ C:\windows\system32\DRIVERS\TVALZ_O.SYS
13:29:08.0971 4500 TVALZ - ok
13:29:08.0986 4500 [ 9C7191F4B2E49BFF47A6C1144B5923FA ] TVALZFL C:\windows\system32\DRIVERS\TVALZFL.sys
13:29:08.0986 4500 TVALZFL - ok
13:29:09.0017 4500 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\drivers\uagp35.sys
13:29:09.0017 4500 uagp35 - ok
13:29:09.0033 4500 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\windows\system32\DRIVERS\udfs.sys
13:29:09.0080 4500 udfs - ok
13:29:09.0111 4500 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe
13:29:09.0142 4500 UI0Detect - ok
13:29:09.0158 4500 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
13:29:09.0173 4500 uliagpkx - ok
13:29:09.0189 4500 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\windows\system32\DRIVERS\umbus.sys
13:29:09.0205 4500 umbus - ok
13:29:09.0205 4500 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\drivers\umpass.sys
13:29:09.0220 4500 UmPass - ok
13:29:09.0329 4500 [ 7E5E1603D0FF2D240AE70295C5C3FEFC ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
13:29:09.0376 4500 UNS - ok
13:29:09.0407 4500 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll
13:29:09.0454 4500 upnphost - ok
13:29:09.0470 4500 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
13:29:09.0501 4500 usbccgp - ok
13:29:09.0532 4500 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\drivers\usbcir.sys
13:29:09.0548 4500 usbcir - ok
13:29:09.0579 4500 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\windows\system32\drivers\usbehci.sys
13:29:09.0579 4500 usbehci - ok
13:29:09.0595 4500 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
13:29:09.0610 4500 usbhub - ok
13:29:09.0641 4500 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\windows\system32\drivers\usbohci.sys
13:29:09.0657 4500 usbohci - ok
13:29:09.0688 4500 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\drivers\usbprint.sys
13:29:09.0704 4500 usbprint - ok
13:29:09.0719 4500 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
13:29:09.0751 4500 USBSTOR - ok
13:29:09.0766 4500 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\windows\system32\drivers\usbuhci.sys
13:29:09.0782 4500 usbuhci - ok
13:29:09.0813 4500 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\windows\system32\Drivers\usbvideo.sys
13:29:09.0829 4500 usbvideo - ok
13:29:09.0860 4500 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll
13:29:09.0907 4500 UxSms - ok
13:29:09.0922 4500 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\windows\system32\lsass.exe
13:29:09.0938 4500 VaultSvc - ok
13:29:09.0969 4500 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
13:29:09.0969 4500 vdrvroot - ok
13:29:10.0000 4500 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\windows\System32\vds.exe
13:29:10.0063 4500 vds - ok
13:29:10.0078 4500 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys
13:29:10.0094 4500 vga - ok
13:29:10.0125 4500 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys
13:29:10.0172 4500 VgaSave - ok
13:29:10.0172 4500 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\windows\system32\drivers\vhdmp.sys
13:29:10.0187 4500 vhdmp - ok
13:29:10.0203 4500 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\drivers\viaide.sys
13:29:10.0203 4500 viaide - ok
13:29:10.0219 4500 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\windows\system32\drivers\volmgr.sys
13:29:10.0219 4500 volmgr - ok
13:29:10.0234 4500 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\windows\system32\drivers\volmgrx.sys
13:29:10.0250 4500 volmgrx - ok
13:29:10.0265 4500 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\windows\system32\drivers\volsnap.sys
13:29:10.0281 4500 volsnap - ok
13:29:10.0297 4500 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\drivers\vsmraid.sys
13:29:10.0297 4500 vsmraid - ok
13:29:10.0359 4500 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\windows\system32\vssvc.exe
13:29:10.0421 4500 VSS - ok
13:29:10.0453 4500 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
13:29:10.0468 4500 vwifibus - ok
13:29:10.0468 4500 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
13:29:10.0499 4500 vwififlt - ok
13:29:10.0546 4500 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll
13:29:10.0577 4500 W32Time - ok
13:29:10.0609 4500 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\drivers\wacompen.sys
13:29:10.0624 4500 WacomPen - ok
13:29:10.0640 4500 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
13:29:10.0671 4500 WANARP - ok
13:29:10.0687 4500 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
13:29:10.0718 4500 Wanarpv6 - ok
13:29:10.0765 4500 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
13:29:10.0796 4500 WatAdminSvc - ok
13:29:10.0843 4500 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\windows\system32\wbengine.exe
13:29:10.0889 4500 wbengine - ok
13:29:10.0905 4500 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
13:29:10.0967 4500 WbioSrvc - ok
13:29:10.0999 4500 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\windows\System32\wcncsvc.dll
13:29:11.0030 4500 wcncsvc - ok
13:29:11.0030 4500 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
13:29:11.0077 4500 WcsPlugInService - ok
13:29:11.0108 4500 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\drivers\wd.sys
13:29:11.0108 4500 Wd - ok
13:29:11.0155 4500 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
13:29:11.0170 4500 Wdf01000 - ok
13:29:11.0201 4500 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll
13:29:11.0248 4500 WdiServiceHost - ok
13:29:11.0248 4500 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll
13:29:11.0264 4500 WdiSystemHost - ok
13:29:11.0295 4500 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\windows\System32\webclnt.dll
13:29:11.0326 4500 WebClient - ok
13:29:11.0342 4500 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll
13:29:11.0373 4500 Wecsvc - ok
13:29:11.0404 4500 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll
13:29:11.0435 4500 wercplsupport - ok
13:29:11.0435 4500 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll
13:29:11.0482 4500 WerSvc - ok
13:29:11.0498 4500 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
13:29:11.0529 4500 WfpLwf - ok
13:29:11.0545 4500 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys
13:29:11.0560 4500 WIMMount - ok
13:29:11.0560 4500 WinDefend - ok
13:29:11.0560 4500 WinHttpAutoProxySvc - ok
13:29:11.0623 4500 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
13:29:11.0654 4500 Winmgmt - ok
13:29:11.0716 4500 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\windows\system32\WsmSvc.dll
13:29:11.0763 4500 WinRM - ok
13:29:11.0794 4500 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\windows\system32\DRIVERS\WinUsb.sys
13:29:11.0810 4500 WinUsb - ok
13:29:11.0841 4500 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll
13:29:11.0888 4500 Wlansvc - ok
13:29:11.0919 4500 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\DRIVERS\wmiacpi.sys
13:29:11.0935 4500 WmiAcpi - ok
13:29:11.0966 4500 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
13:29:11.0997 4500 wmiApSrv - ok
13:29:12.0028 4500 WMPNetworkSvc - ok
13:29:12.0059 4500 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll
13:29:12.0075 4500 WPCSvc - ok
13:29:12.0091 4500 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
13:29:12.0122 4500 WPDBusEnum - ok
13:29:12.0137 4500 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
13:29:12.0169 4500 ws2ifsl - ok
13:29:12.0200 4500 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\windows\system32\wscsvc.dll
13:29:12.0231 4500 wscsvc - ok
13:29:12.0231 4500 WSearch - ok
13:29:12.0293 4500 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\windows\system32\wuaueng.dll
13:29:12.0340 4500 wuauserv - ok
13:29:12.0371 4500 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\windows\system32\drivers\WudfPf.sys
13:29:12.0403 4500 WudfPf - ok
13:29:12.0418 4500 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
13:29:12.0449 4500 WUDFRd - ok
13:29:12.0465 4500 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\windows\System32\WUDFSvc.dll
13:29:12.0496 4500 wudfsvc - ok
13:29:12.0512 4500 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\windows\System32\wwansvc.dll
13:29:12.0527 4500 WwanSvc - ok
13:29:12.0527 4500 ================ Scan global ===============================
13:29:12.0559 4500 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
13:29:12.0590 4500 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\windows\system32\winsrv.dll
13:29:12.0590 4500 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\windows\system32\winsrv.dll
13:29:12.0621 4500 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
13:29:12.0652 4500 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
13:29:12.0652 4500 [Global] - ok
13:29:12.0652 4500 ================ Scan MBR ==================================
13:29:12.0668 4500 [ 5B5E648D12FCADC244C1EC30318E1EB9 ] \Device\Harddisk0\DR0
13:29:13.0713 4500 \Device\Harddisk0\DR0 - ok
13:29:13.0713 4500 ================ Scan VBR ==================================
13:29:13.0729 4500 [ A47C333C7AC2E0501779D8928436FA7F ] \Device\Harddisk0\DR0\Partition1
13:29:13.0744 4500 \Device\Harddisk0\DR0\Partition1 - ok
13:29:13.0760 4500 [ AADB638BF1DCC03B6D572E7EBCDF4ACA ] \Device\Harddisk0\DR0\Partition2
13:29:13.0760 4500 \Device\Harddisk0\DR0\Partition2 - ok
13:29:13.0760 4500 ============================================================
13:29:13.0760 4500 Scan finished
13:29:13.0760 4500 ============================================================
13:29:13.0760 2956 Detected object count: 2
13:29:13.0760 2956 Actual detected object count: 2
13:29:59.0671 2956 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
13:29:59.0671 2956 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:29:59.0686 2956 SwitchBoard ( UnsignedFile.Multi.Generic ) - skipped by user
13:29:59.0686 2956 SwitchBoard ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:31:11.0821 2340 Deinitialize success
Malwarebytes Anti-Malware 1.70.0.1100
www.malwarebytes.org
Database version: v2013.02.17.01
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
LuvNamie :: LUVNAMIE-PC [administrator]
2/17/2013 1:34:05 PM
mbam-log-2013-02-17 (13-34-05).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 230054
Time elapsed: 1 minute(s), 34 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
(end)
thanks!
#23
Posted 17 February 2013 - 12:06 AM
RKinner
-
- Expert
-
- 24,625 posts
Malware Expert
Nothing in your logs. Combofix may have killed your CKAgent. We can undo that if it is a problem.
Looking at your Logfile VLC (where you are watching D:\City) I see that BitTorrent is running. You definitely do not want this running as it can use a lot of your CPU and network.
Turn off Windows Search:
Right click on Computer and select Manage (Continue) then Services and Applications then Services. Find the Windows Search and right click on it and select Properties. Change the Startup Type: to Disabled then Apply. Stop the service.
Can you make another one the same way with the Internet disconnected and no other programs running? Pause your anti-virus too.
Immediately after (before starting up any other programs), copy the next two line:
tasklist /m > \junk.txt
notepad \junk.txt
Start, All Programs, Accessories, right click on Command Prompt and Run as Administrator, Continue. Right click and Paste or Edit then Paste and the copied line should appear.
Hit Enter. Notepad should open. Copy and paste the text from notepad or if it's too big you can attach c:\junk.txt. (Close the Command Window)
I'm going off island tomorrow to a Microsoft convention. Will probably not be back on line until late Sunday night or early Monday.
Looking at your Logfile VLC (where you are watching D:\City) I see that BitTorrent is running. You definitely do not want this running as it can use a lot of your CPU and network.
Turn off Windows Search:
Right click on Computer and select Manage (Continue) then Services and Applications then Services. Find the Windows Search and right click on it and select Properties. Change the Startup Type: to Disabled then Apply. Stop the service.
Can you make another one the same way with the Internet disconnected and no other programs running? Pause your anti-virus too.
Immediately after (before starting up any other programs), copy the next two line:
tasklist /m > \junk.txt
notepad \junk.txt
Start, All Programs, Accessories, right click on Command Prompt and Run as Administrator, Continue. Right click and Paste or Edit then Paste and the copied line should appear.
Hit Enter. Notepad should open. Copy and paste the text from notepad or if it's too big you can attach c:\junk.txt. (Close the Command Window)
I'm going off island tomorrow to a Microsoft convention. Will probably not be back on line until late Sunday night or early Monday.
#24
Posted 17 February 2013 - 12:39 AM
evolnomis
- Topic Starter
-
- Member
-
- 51 posts
Member
I'm sorry but i don't understand:
"Can you make another one the same way with the Internet disconnected and no other programs running? Pause your anti-virus too."
I thought you meant for me to repeat the previous steps again:
"Right click on Computer and select Manage (Continue) then Services and Applications then Services. Find the Windows Search and right click on it and select Properties. Change the Startup Type: to Disabled then Apply. Stop the service."
So, i exited by clicking "okay" and repeated the previous steps, but it wasn't enabled so i wasn't about to anything.
Later, i copied and pasted the two lines into command prompt, but it said that "access is denied"
and when i clicked "enter", notepad opened and it said "cannot find c:\junk.txt. do you want to create a new file." I said yes and the file was blank.
did i do something wrong? thanks and have a good convention!
"Can you make another one the same way with the Internet disconnected and no other programs running? Pause your anti-virus too."
I thought you meant for me to repeat the previous steps again:
"Right click on Computer and select Manage (Continue) then Services and Applications then Services. Find the Windows Search and right click on it and select Properties. Change the Startup Type: to Disabled then Apply. Stop the service."
So, i exited by clicking "okay" and repeated the previous steps, but it wasn't enabled so i wasn't about to anything.
Later, i copied and pasted the two lines into command prompt, but it said that "access is denied"
and when i clicked "enter", notepad opened and it said "cannot find c:\junk.txt. do you want to create a new file." I said yes and the file was blank.
did i do something wrong? thanks and have a good convention!
#25
Posted 17 February 2013 - 07:57 AM
RKinner
-
- Expert
-
- 24,625 posts
Malware Expert
Sorry for being unclear. I wanted another process monitor log.
The tasklist command should work if you right click on Command Prompt and Run As Administrator. If you forget to Run it as Administrator then it will give you access denied.
So what I need is a new Process Monitor log with Windows Search off, the internet disconnected and no other programs running. When you Save it check the
Events Displayed Using Current Filter and Uncheck Also include Profiling Events. Still need it saved as CSV. I also want the junk file from tasklist which should be taken right after creating the process monitor log.
Since we have winRar let's also make a copy of the registry.
Put regedit in the Search box and when regedit.exe comes up select it and hit Enter. (Continue) select the top item which should be Computer and right click and Export (to your desktop) call it AllReg OK. This should create AllReg.reg. Right click on it and have it make AllReg.rar and send that to me to.
The tasklist command should work if you right click on Command Prompt and Run As Administrator. If you forget to Run it as Administrator then it will give you access denied.
So what I need is a new Process Monitor log with Windows Search off, the internet disconnected and no other programs running. When you Save it check the
Events Displayed Using Current Filter and Uncheck Also include Profiling Events. Still need it saved as CSV. I also want the junk file from tasklist which should be taken right after creating the process monitor log.
Since we have winRar let's also make a copy of the registry.
Put regedit in the Search box and when regedit.exe comes up select it and hit Enter. (Continue) select the top item which should be Computer and right click and Export (to your desktop) call it AllReg OK. This should create AllReg.reg. Right click on it and have it make AllReg.rar and send that to me to.
#26
Posted 20 February 2013 - 01:50 AM
evolnomis
- Topic Starter
-
- Member
-
- 51 posts
Member
sorry for the late reply. Junk.txt is here and I will email you the RAR files from the monitor logs and regedit. thanks!
junk.txt:
Image Name PID Modules
========================= ======== ============================================
System Idle Process 0 N/A
System 4 N/A
smss.exe 316 ntdll.dll
csrss.exe 448 ntdll.dll, CSRSRV.dll, basesrv.DLL,
winsrv.DLL, USER32.dll, GDI32.dll,
kernel32.dll, KERNELBASE.dll, LPK.dll,
USP10.dll, msvcrt.dll, sxssrv.DLL, sxs.dll,
RPCRT4.dll, CRYPTBASE.dll, ADVAPI32.dll,
sechost.dll
wininit.exe 500 ntdll.dll, kernel32.dll, KERNELBASE.dll,
USER32.dll, GDI32.dll, LPK.dll, USP10.dll,
msvcrt.dll, RPCRT4.dll, sechost.dll,
profapi.dll, IMM32.DLL, MSCTF.dll,
RpcRtRemote.dll, apphelp.dll,
CRYPTBASE.dll, WS2_32.dll, NSI.dll,
mswsock.dll, wshtcpip.dll, wship6.dll,
secur32.dll, SSPICLI.DLL, credssp.dll,
ADVAPI32.dll
csrss.exe 512 ntdll.dll, CSRSRV.dll, basesrv.DLL,
winsrv.DLL, USER32.dll, GDI32.dll,
kernel32.dll, KERNELBASE.dll, LPK.dll,
USP10.dll, msvcrt.dll, sxssrv.DLL, sxs.dll,
RPCRT4.dll, CRYPTBASE.dll, ADVAPI32.dll,
sechost.dll
winlogon.exe 556 ntdll.dll, kernel32.dll, KERNELBASE.dll,
USER32.dll, GDI32.dll, LPK.dll, USP10.dll,
msvcrt.dll, WINSTA.dll, RPCRT4.dll,
IMM32.DLL, MSCTF.dll, ADVAPI32.dll,
sechost.dll, profapi.dll, RpcRtRemote.dll,
apphelp.dll, UXINIT.dll, UxTheme.dll,
CRYPTSP.dll, rsaenh.dll, CRYPTBASE.dll,
WindowsCodecs.dll, ole32.dll, wkscli.dll,
netjoin.dll, netutils.dll, SspiCli.dll,
slc.dll, MPR.dll, AUTHZ.dll
services.exe 600 ntdll.dll, kernel32.dll, KERNELBASE.dll,
msvcrt.dll, RPCRT4.dll, SspiCli.dll,
profapi.dll, sechost.dll, CRYPTBASE.dll,
scext.dll, USER32.dll, GDI32.dll, LPK.dll,
USP10.dll, Secur32.dll, SCESRV.dll,
srvcli.dll, IMM32.DLL, MSCTF.dll,
RpcRtRemote.dll, credssp.dll, AUTHZ.dll,
UBPM.dll, ADVAPI32.dll, apphelp.dll,
WTSAPI32.dll, WINSTA.dll, WS2_32.dll,
NSI.dll, mswsock.dll, wshtcpip.dll,
wship6.dll
lsass.exe 616 ntdll.dll, kernel32.dll, KERNELBASE.dll,
msvcrt.dll, RPCRT4.dll, SspiSrv.dll,
lsasrv.dll, sechost.dll, SspiCli.dll,
ADVAPI32.dll, USER32.dll, GDI32.dll,
LPK.dll, USP10.dll, SAMSRV.dll,
cryptdll.dll, MSASN1.dll, wevtapi.dll,
IMM32.DLL, MSCTF.dll, cngaudit.dll,
AUTHZ.dll, ncrypt.dll, bcrypt.dll,
msprivs.DLL, netjoin.dll, negoexts.DLL,
Secur32.dll, cryptbase.dll, kerberos.DLL,
CRYPTSP.dll, WS2_32.dll, NSI.dll,
mswsock.dll, wship6.dll, msv1_0.DLL,
netlogon.DLL, DNSAPI.dll, logoncli.dll,
schannel.DLL, CRYPT32.dll, wdigest.DLL,
rsaenh.dll, tspkg.DLL, pku2u.DLL,
bcryptprimitives.dll, RpcRtRemote.dll,
efslsaext.dll, scecli.DLL, credssp.dll,
WINSTA.dll, keyiso.dll, IPHLPAPI.DLL,
WINNSI.DLL, netutils.dll, USERENV.dll,
profapi.dll, wshtcpip.dll, dssenh.dll,
GPAPI.dll, cryptnet.dll, WLDAP32.dll,
certpoleng.dll, wkscli.dll
lsm.exe 624 ntdll.dll, kernel32.dll, KERNELBASE.dll,
msvcrt.dll, sechost.dll, RPCRT4.dll,
SYSNTFY.dll, WMsgAPI.dll, CRYPTBASE.dll,
pcwum.dll, RpcRtRemote.dll, secur32.dll,
SSPICLI.DLL, credssp.dll, ADVAPI32.dll
svchost.exe 744 ntdll.dll, kernel32.dll, KERNELBASE.dll,
msvcrt.dll, sechost.dll, RPCRT4.dll,
umpnpmgr.dll, SPINF.dll, USER32.dll,
GDI32.dll, LPK.dll, USP10.dll, DEVRTL.dll,
IMM32.DLL, MSCTF.dll, RpcRtRemote.dll,
USERENV.dll, profapi.dll, GPAPI.dll,
CRYPTBASE.dll, umpo.dll, WINSTA.dll,
SETUPAPI.dll, CFGMGR32.dll, ADVAPI32.dll,
OLEAUT32.dll, ole32.dll, DEVOBJ.dll,
pcwum.DLL, rpcss.dll, SspiCli.dll,
credssp.dll, CLBCatQ.DLL, apphelp.dll,
ntmarta.dll, WLDAP32.dll, wmidcprv.dll,
FastProx.dll, wbemcomn.dll, WS2_32.dll,
NSI.dll, NTDSAPI.dll, wbemprox.dll,
CRYPTSP.dll, rsaenh.dll, wbemsvc.dll,
wmiutils.dll, WINTRUST.dll, CRYPT32.dll,
MSASN1.dll, WTSAPI32.dll
svchost.exe 824 ntdll.dll, kernel32.dll, KERNELBASE.dll,
msvcrt.dll, sechost.dll, RPCRT4.dll,
rpcepmap.dll, RpcRtRemote.dll, secur32.dll,
SSPICLI.DLL, credssp.dll, CRYPTBASE.dll,
rpcss.dll, ADVAPI32.dll, CRYPTSP.dll,
rsaenh.dll, WS2_32.dll, NSI.dll,
mswsock.dll, user32.dll, GDI32.dll,
LPK.dll, USP10.dll, IMM32.DLL, MSCTF.dll,
wshtcpip.dll, wship6.dll, FirewallAPI.dll,
VERSION.dll, CLBCatQ.DLL, ole32.dll,
OLEAUT32.dll, fwpuclnt.dll, WTSAPI32.dll,
WINSTA.dll
MsMpEng.exe 880 ntdll.dll, kernel32.dll, KERNELBASE.dll,
mpsvc.dll, msvcrt.dll, OLEAUT32.dll,
ole32.dll, GDI32.dll, USER32.dll, LPK.dll,
USP10.dll, RPCRT4.dll, ADVAPI32.dll,
sechost.dll, WTSAPI32.dll, USERENV.dll,
profapi.dll, mpclient.dll, WINTRUST.dll,
CRYPT32.dll, MSASN1.dll, VERSION.dll,
IMM32.DLL, MSCTF.dll, GPAPI.dll,
CRYPTBASE.dll, ntmarta.dll, WLDAP32.dll,
bcrypt.dll, bcryptprimitives.dll,
mprtp.dll, FLTLIB.DLL, psapi.dll,
CRYPTSP.dll, rsaenh.dll, WS2_32.dll,
NSI.dll, secur32.dll, SSPICLI.DLL,
credssp.dll, RpcRtRemote.dll, apphelp.dll,
wscapi.dll, urlmon.dll, SHLWAPI.dll,
iertutil.dll, WININET.dll, Normaliz.dll,
imagehlp.dll, ncrypt.dll, CLBCatQ.DLL,
mpengine.dll, XmlLite.dll, netapi32.dll,
netutils.dll, srvcli.dll, wkscli.dll
svchost.exe 1016 ntdll.dll, kernel32.dll, KERNELBASE.dll,
msvcrt.dll, sechost.dll, RPCRT4.dll,
ole32.dll, GDI32.dll, USER32.dll, LPK.dll,
USP10.dll, IMM32.DLL, MSCTF.dll,
CRYPTBASE.dll, ADVAPI32.dll, wevtsvc.dll,
RpcRtRemote.dll, secur32.dll, SSPICLI.DLL,
credssp.dll, WS2_32.dll, NSI.dll,
mswsock.dll, wshtcpip.dll, wship6.dll,
GPAPI.dll, audiosrv.dll, POWRPROF.dll,
SETUPAPI.dll, CFGMGR32.dll, OLEAUT32.dll,
DEVOBJ.dll, MMDevAPI.DLL, PROPSYS.dll,
AVRT.dll, CLBCatQ.DLL, lmhsvc.dll,
IPHLPAPI.DLL, WINNSI.DLL, nrpsrv.DLL,
dhcpcore.dll, DNSAPI.dll, firewallapi.dll,
VERSION.dll, dhcpcore6.dll, WINSTA.dll,
wscsvc.dll, dbghelp.dll, CRYPTSP.dll,
rsaenh.dll, wbemprox.dll, wbemcomn.dll,
wbemsvc.dll, fastprox.dll, NTDSAPI.dll,
CRYPT32.dll, MSASN1.dll, WINTRUST.DLL,
imagehlp.dll, ncrypt.dll, bcrypt.dll,
bcryptprimitives.dll, wuapi.dll,
Cabinet.dll, SHLWAPI.dll, profapi.dll,
USERENV.dll, wkscli.dll, netutils.dll,
provsvc.dll, actxprxy.dll, npmproxy.dll,
FunDisc.dll, ATL.DLL, msxml6.dll,
fdproxy.dll, P2P.dll, P2PCOLLAB.dll,
SHELL32.dll, ieproxy.dll, dhcpcsvc.DLL,
dhcpcsvc6.DLL, pnrpnsp.dll, XmlLite.dll,
rasadhlp.dll, NLAapi.dll, napinsp.dll,
fwpuclnt.dll, winrnr.dll, EEL64A.dll,
EED64A.dll, audioses.dll
svchost.exe 392 ntdll.dll, kernel32.dll, KERNELBASE.dll,
msvcrt.dll, sechost.dll, RPCRT4.dll,
ole32.dll, GDI32.dll, USER32.dll, LPK.dll,
USP10.dll, IMM32.DLL, MSCTF.dll,
CRYPTBASE.dll, ADVAPI32.dll, audiosrv.dll,
POWRPROF.dll, SETUPAPI.dll, CFGMGR32.dll,
OLEAUT32.dll, DEVOBJ.dll, MMDevAPI.DLL,
PROPSYS.dll, AVRT.dll, CLBCatQ.DLL,
SHLWAPI.dll, uxsms.dll, WTSAPI32.dll,
WINSTA.dll, wlansvc.dll, CRYPT32.dll,
MSASN1.dll, bcrypt.dll, dsrole.dll,
SHELL32.dll, WLANMSM.DLL, WLANSEC.dll,
WS2_32.dll, NSI.dll, OneX.DLL,
eappprxy.dll, AUTHZ.dll, dhcpcsvc.DLL,
IPHLPAPI.DLL, WINNSI.DLL, eappcfg.dll,
wlgpclnt.dll, l2gpstore.dll, wlanutil.dll,
SYSNTFY.dll, WinSCard.dll, msxml6.dll,
CRYPTSP.dll, rsaenh.dll, RpcRtRemote.dll,
secur32.dll, SSPICLI.DLL, credssp.dll,
kerberos.DLL, cryptdll.dll, WINTRUST.dll,
profapi.dll, netcfgx.dll, devrtl.DLL,
netman.dll, pcasvc.dll, apphelp.dll,
AEPIC.dll, sfc.dll, sfc_os.DLL,
VERSION.dll, wevtapi.dll, USERENV.dll,
sysmain.dll, ntmarta.dll, WLDAP32.dll,
trkwks.dll, hidserv.dll, HID.DLL,
GPAPI.dll, PortableDeviceApi.dll,
portabledeviceconnectapi.dll, netshell.dll,
nlaapi.dll, RASDLG.dll, MPRAPI.dll,
RASAPI32.dll, rasman.dll, rtutils.dll,
hnetcfg.dll, ATL.DLL, slc.dll,
wbemprox.dll, wbemcomn.dll, wbemsvc.dll,
fastprox.dll, NTDSAPI.dll, listsvc.dll,
FirewallAPI.dll, actxprxy.dll,
IdListen.dll, XmlLite.dll, NETAPI32.dll,
netutils.dll, srvcli.dll, wkscli.dll,
SAMCLI.DLL, ncrypt.dll, hgprint.dll,
WINSPOOL.DRV, SAMLIB.dll, shacct.dll,
COMCTL32.dll, cscapi.dll, comctl32.dll
svchost.exe 388 ntdll.dll, kernel32.dll, KERNELBASE.dll,
msvcrt.dll, sechost.dll, RPCRT4.dll,
ole32.dll, GDI32.dll, USER32.dll, LPK.dll,
USP10.dll, IMM32.DLL, MSCTF.dll,
CRYPTBASE.dll, ADVAPI32.dll, gpsvc.dll,
GPAPI.dll, WLDAP32.dll, Secur32.dll,
SSPICLI.DLL, NSI.dll, SYSNTFY.dll,
nlaapi.dll, profsvc.dll, OLEAUT32.dll,
USERENV.dll, profapi.dll, SHLWAPI.dll,
ATL.DLL, themeservice.dll, RpcRtRemote.dll,
WINSTA.dll, CLBCatQ.DLL, CRYPTSP.dll,
dsrole.dll, slc.dll, rsaenh.dll, sens.dll,
WS2_32.dll, eapsvc.dll, eapphost.dll,
CRYPT32.dll, MSASN1.dll, umb.dll,
SAMLIB.dll, shsvcs.dll, CFGMGR32.dll,
schedsvc.dll, pcwum.dll, SHELL32.dll,
NETAPI32.dll, netutils.dll, srvcli.dll,
wkscli.dll, wevtapi.dll, AUTHZ.dll,
UBPM.dll, ktmw32.dll, XmlLite.dll,
SETUPAPI.dll, DEVOBJ.dll, WINTRUST.dll,
credssp.dll, FVEAPI.dll, tbs.dll,
FVECERTS.dll, LOGONCLI.DLL, UxTheme.dll,
taskcomp.dll, VERSION.dll, ntmarta.dll,
mswsock.dll, wshtcpip.dll, wship6.dll,
netjoin.dll, WTSAPI32.dll, wiarpc.dll,
comctl32.dll, PROPSYS.dll, ikeext.dll,
fwpuclnt.dll, ncrypt.dll, bcrypt.dll,
bcryptprimitives.dll, IPHLPAPI.DLL,
WINNSI.DLL, dhcpcsvc.DLL, dhcpcsvc6.DLL,
SXS.DLL, seclogon.dll, wmisvc.dll,
wbemcomn.dll, iphlpsvc.dll,
FirewallAPI.dll, rtutils.dll, sqmapi.dll,
WDSCORE.dll, srvsvc.dll, browser.dll,
VSSAPI.DLL, VssTrace.DLL, samcli.dll,
SSCORE.DLL, CLUSAPI.DLL, cryptdll.dll,
RESUTILS.DLL, devrtl.DLL, NCI.dll,
hnetcfg.dll, netprofm.dll, SPINF.dll,
wbemcore.dll, esscli.dll, FastProx.dll,
NTDSAPI.dll, wbemsvc.dll, wmiutils.dll,
repdrvfs.dll, DNSAPI.dll, rasadhlp.dll,
wmiprvsd.dll, NCObjAPI.DLL, wbemess.dll,
rasmans.dll, eappprxy.dll, rastapi.DLL,
TAPI32.dll, rasppp.dll, RASAPI32.dll,
rasman.dll, eappcfg.dll, vpnike.dll,
kerberos.DLL, raschap.dll, credui.dll,
appinfo.dll, npmproxy.dll, apphelp.dll,
ncprov.dll, qmgr.dll, bitsperf.dll,
bitsigd.dll, upnp.dll, WINHTTP.dll,
webio.dll, SSDPAPI.dll, wuaueng.dll,
ESENT.dll, WINSPOOL.DRV, Cabinet.dll,
mspatcha.dll, psapi.dll, WMsgAPI.dll,
wer.dll, wups2.dll, netshell.dll,
schannel.DLL, MPR.dll, msi.dll,
advpack.dll, SensApi.dll, aelupsvc.dll,
netcfgx.dll, msxml3.dll, ndiscapCfg.dll,
rascfg.dll, MPRAPI.dll, tcpipcfg.dll,
wbemprox.dll, ES.DLL
svchost.exe 1036 ntdll.dll, kernel32.dll, KERNELBASE.dll,
msvcrt.dll, sechost.dll, RPCRT4.dll,
ole32.dll, GDI32.dll, USER32.dll, LPK.dll,
USP10.dll, IMM32.DLL, MSCTF.dll,
CRYPTBASE.dll, ADVAPI32.dll, es.dll,
OLEAUT32.dll, CRYPTSP.dll, rsaenh.dll,
RpcRtRemote.dll, CLBCatQ.DLL, nsisvc.dll,
NSI.dll, SXS.DLL, sstpsvc.dll, rtutils.dll,
HTTPAPI.dll, CRYPT32.dll, MSASN1.dll,
WS2_32.dll, webio.dll, IPHLPAPI.DLL,
WINNSI.DLL, netprofm.dll, nlaapi.dll,
wdi.dll, npmproxy.dll, perftrack.dll,
wer.dll, dwmapi.dll, Secur32.dll,
SSPICLI.DLL, AEPIC.dll, sfc.dll,
sfc_os.DLL, VERSION.dll, GPAPI.dll,
winhttp.dll, SHLWAPI.dll, credssp.dll,
DNSAPI.dll, napinsp.dll, pnrpnsp.dll,
mswsock.dll, winrnr.dll, wshtcpip.dll,
wship6.dll, rasadhlp.dll, fwpuclnt.dll,
fdphost.dll, dhcpcsvc.DLL, fdwsd.dll,
ATL.DLL, bcrypt.dll, MLANG.dll, wsdapi.dll,
webservices.dll, FirewallAPI.dll,
dhcpcsvc6.DLL, fdssdp.dll, SSDPAPI.dll,
fdproxy.dll, bcryptprimitives.dll,
XmlLite.dll, FunDisc.dll, msxml6.dll,
propsys.dll, ieproxy.dll
svchost.exe 1112 ntdll.dll, kernel32.dll, KERNELBASE.dll,
msvcrt.dll, sechost.dll, RPCRT4.dll,
ole32.dll, GDI32.dll, USER32.dll, LPK.dll,
USP10.dll, IMM32.DLL, MSCTF.dll,
CRYPTBASE.dll, ADVAPI32.dll, dnsrslvr.dll,
WS2_32.dll, NSI.dll, DNSAPI.dll,
WINNSI.DLL, Fwpuclnt.dll, dnsext.dll,
USERENV.dll, profapi.dll, GPAPI.dll,
RpcRtRemote.dll, mswsock.dll, iphlpapi.dll,
wship6.dll, dhcpcsvc.DLL, dhcpcsvc6.DLL,
wkssvc.dll, netutils.dll, netjoin.dll,
SspiCli.dll, cryptsvc.dll, CRYPTNET.dll,
CRYPT32.dll, MSASN1.dll, WLDAP32.dll,
VSSAPI.DLL, ATL.DLL, VssTrace.DLL,
OLEAUT32.dll, samcli.dll, SAMLIB.dll,
CRYPTSP.dll, rsaenh.dll, CLBCatQ.DLL,
es.dll, PROPSYS.dll, nlasvc.dll,
wevtapi.dll, ncsi.dll, WINHTTP.dll,
webio.dll, CFGMGR32.dll, secur32.dll,
credssp.dll, ssdpapi.dll, wkscli.dll,
tapisrv.dll, rtutils.dll, unimdm.tsp,
uniplat.dll, SETUPAPI.dll, DEVOBJ.dll,
WINTRUST.dll, kmddsp.tsp, ndptsp.tsp,
hidphone.tsp, HID.DLL, WINMM.dll,
WTSAPI32.dll, WINSTA.dll, ESENT.dll,
psapi.dll, SHLWAPI.dll, wshtcpip.dll,
bcrypt.dll, bcryptprimitives.dll,
rasadhlp.dll, SensApi.dll, Cabinet.dll,
DEVRTL.dll, ncrypt.dll
spoolsv.exe 1260 ntdll.dll, kernel32.dll, KERNELBASE.dll,
msvcrt.dll, sechost.dll, RPCRT4.dll,
USER32.dll, GDI32.dll, LPK.dll, USP10.dll,
POWRPROF.dll, SETUPAPI.dll, CFGMGR32.dll,
ADVAPI32.dll, OLEAUT32.dll, ole32.dll,
DEVOBJ.dll, DNSAPI.dll, WS2_32.dll,
NSI.dll, IMM32.DLL, MSCTF.dll,
CRYPTBASE.dll, slc.dll, RpcRtRemote.dll,
secur32.dll, SSPICLI.DLL, credssp.dll,
WTSAPI32.dll, WINSTA.dll, IPHLPAPI.DLL,
WINNSI.DLL, mswsock.dll, wshtcpip.dll,
wship6.dll, rasadhlp.dll, fwpuclnt.dll,
CLBCatQ.DLL, umb.dll, ATL.DLL,
WINTRUST.dll, CRYPT32.dll, MSASN1.dll,
localspl.dll, SPOOLSS.DLL, srvcli.dll,
winspool.drv, PrintIsolationProxy.dll,
FXSMON.DLL, tcpmon.dll, snmpapi.dll,
wsnmp32.dll, msxml6.dll, SHLWAPI.dll,
usbmon.dll, wls0wndh.dll, WSDMon.dll,
wsdapi.dll, webservices.dll,
FirewallAPI.dll, VERSION.dll, FunDisc.dll,
fdPnp.dll, winprint.dll, USERENV.dll,
profapi.dll, GPAPI.dll, dsrole.dll,
win32spl.dll, DEVRTL.dll, SPINF.dll,
inetpp.dll, CRYPTSP.dll, rsaenh.dll,
cscapi.dll, netutils.dll
svchost.exe 1316 ntdll.dll, kernel32.dll, KERNELBASE.dll,
msvcrt.dll, sechost.dll, RPCRT4.dll,
ole32.dll, GDI32.dll, USER32.dll, LPK.dll,
USP10.dll, IMM32.DLL, MSCTF.dll,
CRYPTBASE.dll, ADVAPI32.dll, bfe.dll,
AUTHZ.dll, slc.dll, SspiCli.dll, pcwum.dll,
RpcRtRemote.dll, mpssvc.dll,
FirewallAPI.dll, VERSION.dll, fwpuclnt.dll,
NSI.dll, CFGMGR32.dll, SHLWAPI.dll,
secur32.dll, credssp.dll, USERENV.dll,
profapi.dll, GPAPI.dll, WS2_32.dll,
IPHLPAPI.DLL, WINNSI.DLL, dhcpcsvc.DLL,
dhcpcsvc6.DLL, wfapigp.dll, ntmarta.dll,
WLDAP32.dll, dps.dll, OLEAUT32.dll,
CLBCatQ.DLL, taskschd.dll, wdi.dll,
bcrypt.dll, radardt.dll, WTSAPI32.dll,
wdiasqmmodule.dll, netprofm.dll,
nlaapi.dll, CRYPTSP.dll, rsaenh.dll,
npmproxy.dll, mswsock.dll, wshtcpip.dll,
wship6.dll, WINSTA.dll
armsvc.exe 1408 ntdll.dll, wow64.dll, wow64win.dll,
wow64cpu.dll
svchost.exe 1480 ntdll.dll, kernel32.dll, KERNELBASE.dll,
msvcrt.dll, sechost.dll, RPCRT4.dll,
ole32.dll, GDI32.dll, USER32.dll, LPK.dll,
USP10.dll, IMM32.DLL, MSCTF.dll,
CRYPTBASE.dll, ADVAPI32.dll, fdrespub.dll,
wsdapi.dll, WS2_32.dll, NSI.dll,
IPHLPAPI.DLL, WINNSI.DLL, webservices.dll,
FirewallAPI.dll, VERSION.dll, CLBCatQ.DLL,
OLEAUT32.dll, FunDisc.dll, ATL.DLL,
SHLWAPI.dll, dhcpcsvc.DLL, dhcpcsvc6.DLL,
mswsock.dll, wship6.dll, wshtcpip.dll,
WINHTTP.dll, webio.dll, HTTPAPI.dll,
pcwum.dll, wkscli.dll, netutils.dll,
msxml6.dll, CRYPTSP.dll, rsaenh.dll,
XmlLite.dll, ssdpsrv.dll, secur32.dll,
SSPICLI.DLL, credssp.dll, RpcRtRemote.dll,
fntcache.dll, ktmw32.dll, ntmarta.dll,
WLDAP32.dll, upnphost.dll, SHELL32.dll,
SSDPAPI.dll, USERENV.dll, profapi.dll,
msxml3.dll, DNSAPI.dll, udhisapi.dll
taskhost.exe 1564 ntdll.dll, kernel32.dll, KERNELBASE.dll,
msvcrt.dll, ole32.dll, GDI32.dll,
USER32.dll, LPK.dll, USP10.dll, RPCRT4.dll,
OLEAUT32.dll, IMM32.DLL, MSCTF.dll,
CRYPTBASE.dll, sechost.dll, ADVAPI32.dll,
uxtheme.dll, dwmapi.dll, CLBCatQ.DLL,
PlaySndSrv.dll, RpcRtRemote.dll, WINMM.dll,
HotStartUserAgent.dll, slc.dll,
SHLWAPI.dll, MsCtfMonitor.dll, MSUTB.dll,
WINSTA.dll, WTSAPI32.dll, dimsjob.dll,
taskschd.dll, SspiCli.dll, netprofm.dll,
NSI.dll, nlaapi.dll, CRYPTSP.dll,
rsaenh.dll, npmproxy.dll, dsrole.dll
svchost.exe 1704 ntdll.dll, kernel32.dll, KERNELBASE.dll,
msvcrt.dll, sechost.dll, RPCRT4.dll,
wiaservc.dll, ADVAPI32.dll, USER32.dll,
GDI32.dll, LPK.dll, USP10.dll,
OLEAUT32.dll, ole32.dll, VERSION.dll,
IMM32.DLL, MSCTF.dll, wiatrace.dll,
CRYPTBASE.dll, RpcRtRemote.dll,
secur32.dll, SSPICLI.DLL, credssp.dll,
msv1_0.DLL, cryptdll.dll, CFGMGR32.dll,
CLBCatQ.DLL, CRYPTSP.dll, rsaenh.dll,
SETUPAPI.dll, DEVOBJ.dll, WINTRUST.dll,
CRYPT32.dll, MSASN1.dll
dwm.exe 1712 ntdll.dll, kernel32.dll, KERNELBASE.dll,
GDI32.dll, USER32.dll, LPK.dll, USP10.dll,
msvcrt.dll, UxTheme.dll, IMM32.dll,
MSCTF.dll, dwmredir.dll, dwmcore.dll,
ADVAPI32.dll, sechost.dll, RPCRT4.dll,
WindowsCodecs.dll, ole32.dll, d3d10_1.dll,
d3d10_1core.dll, dxgi.dll, VERSION.dll,
dwmapi.dll, PSAPI.DLL, WINTRUST.dll,
CRYPT32.dll, MSASN1.dll
TODDSrv.exe 1740 ntdll.dll, kernel32.dll, KERNELBASE.dll,
USER32.dll, GDI32.dll, LPK.dll, USP10.dll,
msvcrt.dll, ADVAPI32.dll, sechost.dll,
RPCRT4.dll, SHLWAPI.dll, SETUPAPI.dll,
CFGMGR32.dll, OLEAUT32.dll, ole32.dll,
DEVOBJ.dll, IMM32.DLL, MSCTF.dll,
WINTRUST.dll, CRYPT32.dll, MSASN1.dll
explorer.exe 1768 ntdll.dll, kernel32.dll, KERNELBASE.dll,
ADVAPI32.dll, msvcrt.dll, sechost.dll,
RPCRT4.dll, GDI32.dll, USER32.dll, LPK.dll,
USP10.dll, SHLWAPI.dll, SHELL32.dll,
ole32.dll, OLEAUT32.dll, EXPLORERFRAME.dll,
DUser.dll, DUI70.dll, IMM32.dll, MSCTF.dll,
UxTheme.dll, POWRPROF.dll, SETUPAPI.dll,
CFGMGR32.dll, DEVOBJ.dll, dwmapi.dll,
slc.dll, gdiplus.dll, Secur32.dll,
SSPICLI.DLL, PROPSYS.dll, WINSTA.dll,
CRYPTBASE.dll, comctl32.dll,
WindowsCodecs.dll, profapi.dll,
apphelp.dll, CLBCatQ.DLL,
DropboxExt64.17.dll, dbghelp.dll,
MSVCP90.dll, MSVCR90.dll, EhStorShell.dll,
ntshrui.dll, srvcli.dll, cscapi.dll,
IconCodecService.dll, CRYPTSP.dll,
rsaenh.dll, RpcRtRemote.dll, SndVolSSO.DLL,
HID.DLL, MMDevApi.dll, timedate.cpl,
ATL.DLL, actxprxy.dll, ntmarta.dll,
WLDAP32.dll, shdocvw.dll, LINKINFO.dll,
msutb.dll, USERENV.dll, SAMLIB.dll,
samcli.dll, netutils.dll, gameux.dll,
XmlLite.dll, CRYPT32.dll, MSASN1.dll,
wer.dll, msls31.dll, tiptsf.dll,
authui.dll, CRYPTUI.dll, urlmon.dll,
iertutil.dll, WININET.dll, Normaliz.dll,
msiltcfg.dll, VERSION.dll, msi.dll,
PSAPI.DLL, NetworkExplorer.dll,
stobject.dll, BatMeter.dll, WTSAPI32.dll,
WINTRUST.dll, prnfldr.dll, WINSPOOL.DRV,
es.dll, AUDIOSES.DLL, dxp.dll, Syncreg.dll,
ehSSO.dll, netshell.dll, IPHLPAPI.DLL,
NSI.dll, WINNSI.DLL, nlaapi.dll,
AltTab.dll, wpdshserviceobj.dll,
PortableDeviceTypes.dll,
PortableDeviceApi.dll, pnidui.dll,
QUtil.dll, wevtapi.dll, dhcpcsvc.DLL,
WS2_32.dll, dhcpcsvc6.DLL, credssp.dll,
npmproxy.dll, srchadmin.dll,
Actioncenter.dll, SyncCenter.dll,
Wlanapi.dll, wlanutil.dll, wwanapi.dll,
wwapi.dll, imapi2.dll, QAgent.dll,
bthprops.cpl, ieframe.dll, OLEACC.dll,
hgcpl.dll, provsvc.dll, wkscli.dll,
SXS.DLL, fxsst.dll, FXSAPI.dll,
FXSRESM.DLL, DEVRTL.dll, igfxpph.dll,
hccutils.DLL, igfxrENU.lrc, igfxsrvc.dll,
sbdrop.dll, UIAnimation.dll,
wscinterop.dll, WSCAPI.dll, wscui.cpl,
werconcpl.dll, framedynos.dll,
wercplsupport.dll, msxml6.dll,
hcproviders.dll, ieproxy.dll, van.dll,
RasMM.dll, RASAPI32.dll, rasman.dll,
WWanMM.dll, WlanMM.dll, wlanhlp.dll,
OneX.DLL, eappprxy.dll, eappcfg.dll,
bcrypt.dll, bcryptprimitives.dll, MPR.dll,
mssprxy.dll, MLANG.dll, imagehlp.dll,
ncrypt.dll, GPAPI.dll, drprov.dll,
ntlanman.dll, davclnt.dll, DAVHLPR.dll,
WINMM.dll, dsrole.dll, StructuredQuery.dll,
mf.dll, MFPlat.DLL, AVRT.dll, ksuser.dll,
PhotoBase.dll, rarext64.dll,
PhotoMetadataHandler.dll, cryptnet.dll,
SensApi.dll, twext.dll, mbamext.dll,
misosh64.dll, shellext.dll, msxml3.dll,
DefragglerShell64.dll, syncui.dll,
SYNCENG.dll, acppage.dll, sfc.dll,
sfc_os.DLL, EhStorAPI.dll, shacct.dll,
netprofm.dll, MsftEdit.dll, systemcpl.dll,
WINBRAND.dll, NETAPI32.dll, SPPC.DLL,
wbemprox.dll, wbemcomn.dll, wbemsvc.dll,
fastprox.dll, NTDSAPI.dll, WinSATAPI.dll,
dxgi.dll, SPINF.dll, thumbcache.dll
TosCoSrv.exe 1800 ntdll.dll, kernel32.dll, KERNELBASE.dll,
TPwrReg.dll, RPCRT4.dll, USER32.dll,
GDI32.dll, LPK.dll, USP10.dll, msvcrt.dll,
ADVAPI32.dll, sechost.dll, SHELL32.dll,
SHLWAPI.dll, WTSAPI32.dll, TPwrFunc.dll,
ole32.dll, OLEAUT32.dll, IMM32.DLL,
MSCTF.dll, Powrprof.dll, SETUPAPI.dll,
CFGMGR32.dll, DEVOBJ.dll, CRYPTBASE.dll
igfxpers.exe 2504 ntdll.dll, kernel32.dll, KERNELBASE.dll,
POWRPROF.dll, msvcrt.dll, RPCRT4.dll,
SETUPAPI.dll, CFGMGR32.dll, ADVAPI32.dll,
sechost.dll, GDI32.dll, USER32.dll,
LPK.dll, USP10.dll, OLEAUT32.dll,
ole32.dll, DEVOBJ.dll, SHELL32.dll,
SHLWAPI.dll, hccutils.DLL, IMM32.DLL,
MSCTF.dll, CRYPTBASE.dll, uxtheme.dll,
CLBCatQ.DLL, CRYPTSP.dll, rsaenh.dll,
RpcRtRemote.dll, igfxsrvc.dll, dwmapi.dll,
IccLibDll_x64.dll, PSAPI.DLL, wtsapi32.dll,
WINSTA.dll, WINTRUST.dll, CRYPT32.dll,
MSASN1.dll
msseces.exe 2512 ntdll.dll, kernel32.dll, KERNELBASE.dll,
msvcrt.dll, mpclient.dll, OLEAUT32.dll,
ole32.dll, GDI32.dll, USER32.dll, LPK.dll,
USP10.dll, RPCRT4.dll, ADVAPI32.dll,
sechost.dll, WINTRUST.dll, CRYPT32.dll,
MSASN1.dll, VERSION.dll, USERENV.dll,
profapi.dll, COMCTL32.dll, SHLWAPI.dll,
gdiplus.dll, WININET.dll, Normaliz.dll,
iertutil.dll, urlmon.dll, WTSAPI32.dll,
SHELL32.dll, COMDLG32.dll, PSAPI.DLL,
IMM32.DLL, MSCTF.dll, uxtheme.dll,
CRYPTBASE.dll, CRYPTSP.dll, rsaenh.dll,
imagehlp.dll, ncrypt.dll, bcrypt.dll,
bcryptprimitives.dll, GPAPI.dll,
EppManifest.dll, CLBCatQ.DLL, msxml3.dll,
MSFTEDIT.DLL, WindowsCodecs.dll,
dwmapi.dll, SqmApi.dll
igfxtray.exe 2520 ntdll.dll, kernel32.dll, KERNELBASE.dll,
hccutils.DLL, USER32.dll, GDI32.dll,
LPK.dll, USP10.dll, msvcrt.dll,
ADVAPI32.dll, sechost.dll, RPCRT4.dll,
ole32.dll, OLEAUT32.dll, SHELL32.dll,
SHLWAPI.dll, IMM32.DLL, MSCTF.dll,
CRYPTBASE.dll, uxtheme.dll, dwmapi.dll,
CLBCatQ.DLL, CRYPTSP.dll, rsaenh.dll,
RpcRtRemote.dll, igfxsrvc.dll,
igfxrENU.lrc, igfxress.dll
hkcmd.exe 2528 ntdll.dll, kernel32.dll, KERNELBASE.dll,
hccutils.DLL, USER32.dll, GDI32.dll,
LPK.dll, USP10.dll, msvcrt.dll,
ADVAPI32.dll, sechost.dll, RPCRT4.dll,
ole32.dll, OLEAUT32.dll, SHELL32.dll,
SHLWAPI.dll, IMM32.DLL, MSCTF.dll,
CRYPTBASE.dll, uxtheme.dll, CLBCatQ.DLL,
CRYPTSP.dll, rsaenh.dll, RpcRtRemote.dll,
igfxsrvc.dll, dwmapi.dll, igfxrENU.lrc
PrintScreen.exe 2588 ntdll.dll, wow64.dll, wow64win.dll,
wow64cpu.dll
Dropbox.exe 2648 ntdll.dll, wow64.dll, wow64win.dll,
wow64cpu.dll
MagicDisc.exe 2672 ntdll.dll, wow64.dll, wow64win.dll,
wow64cpu.dll
splwow64.exe 2728 ntdll.dll, kernel32.dll, KERNELBASE.dll,
ADVAPI32.dll, msvcrt.dll, sechost.dll,
RPCRT4.dll, USER32.dll, GDI32.dll, LPK.dll,
USP10.dll, WINSPOOL.DRV, IMM32.DLL,
MSCTF.dll, RpcRtRemote.dll, secur32.dll,
SSPICLI.DLL, credssp.dll, unidrvui.dll,
ole32.dll, VERSION.dll, OLEAUT32.dll,
mxdwdui.DLL, Comctl32.dll, SHLWAPI.dll,
mxdwdrv.dll
jusched.exe 2736 ntdll.dll, wow64.dll, wow64win.dll,
wow64cpu.dll
TCrdMain.exe 2644 ntdll.dll, kernel32.dll, KERNELBASE.dll,
TCrdEvnt.dll, TCrdMain.dll, USER32.dll,
GDI32.dll, LPK.dll, USP10.dll, msvcrt.dll,
ADVAPI32.dll, sechost.dll, RPCRT4.dll,
WTSAPI32.dll, WINSPOOL.DRV, SHELL32.dll,
SHLWAPI.dll, COMCTL32.dll, ole32.dll,
OLEAUT32.dll, gdiplus.dll, IMM32.DLL,
MSCTF.dll, uxtheme.dll, BlackPng.dll,
FnPRTSC.dll, dwmapi.dll, WINSTA.dll,
FnSticky.dll, WINMM.dll, SmoothView.dll,
MSVCR90.dll, TWarnMsg.dll, TBSMain.dll,
Mute.dll, CRYPTBASE.dll, WindowsCodecs.dll,
PROPSYS.dll, comctl32.dll, CLBCatQ.DLL,
ntmarta.dll, WLDAP32.dll, profapi.dll,
urlmon.dll, iertutil.dll, WININET.dll,
Normaliz.dll, Secur32.dll, SSPICLI.DLL,
SETUPAPI.dll, CFGMGR32.dll, DEVOBJ.dll,
apphelp.dll, FnF1.dll, TFunc2.DLL,
FnF3.dll, POWRPROF.dll, FnF4.dll, FnF5.dll,
VERSION.dll, MSVCR80.dll, CRYPTSP.dll,
rsaenh.dll, RpcRtRemote.dll, IGFXEXPS.DLL,
Brightness.dll, MSVCP90.dll, wbemprox.dll,
wbemcomn.dll, WS2_32.dll, NSI.dll,
wbemsvc.dll, FnF8Dll.dll, Wlanapi.dll,
wlanutil.dll, WINTRUST.dll, CRYPT32.dll,
MSASN1.dll, fastprox.dll, NTDSAPI.dll,
Touchpad.dll, FnSpace.dll
igfxext.exe 2784 ntdll.dll, kernel32.dll, KERNELBASE.dll,
USER32.dll, GDI32.dll, LPK.dll, USP10.dll,
msvcrt.dll, ADVAPI32.dll, sechost.dll,
RPCRT4.dll, ole32.dll, OLEAUT32.dll,
IMM32.DLL, MSCTF.dll, CRYPTBASE.dll,
uxtheme.dll, CLBCatQ.DLL, CRYPTSP.dll,
rsaenh.dll, RpcRtRemote.dll, dwmapi.dll,
igfxsrvc.dll, IGFXEXPS.DLL
igfxsrvc.exe 2612 ntdll.dll, kernel32.dll, KERNELBASE.dll,
USER32.dll, GDI32.dll, LPK.dll, USP10.dll,
msvcrt.dll, ADVAPI32.dll, sechost.dll,
RPCRT4.dll, ole32.dll, OLEAUT32.dll,
IMM32.DLL, MSCTF.dll, CRYPTBASE.dll,
uxtheme.dll, CLBCatQ.DLL, CRYPTSP.dll,
rsaenh.dll, RpcRtRemote.dll, igfxsrvc.dll,
igfxdev.dll, dxgi.dll, VERSION.dll,
dwmapi.dll, ntmarta.dll, WLDAP32.dll
LMS.exe 2116 ntdll.dll, wow64.dll, wow64win.dll,
wow64cpu.dll
wmpnetwk.exe 2228 ntdll.dll, kernel32.dll, KERNELBASE.dll,
ADVAPI32.dll, msvcrt.dll, sechost.dll,
RPCRT4.dll, USER32.dll, GDI32.dll, LPK.dll,
USP10.dll, OLEAUT32.dll, ole32.dll,
WSOCK32.dll, WS2_32.dll, NSI.dll,
IPHLPAPI.DLL, WINNSI.DLL, SHLWAPI.dll,
USERENV.dll, profapi.dll, WTSAPI32.dll,
IMM32.DLL, MSCTF.dll, CRYPTBASE.dll,
WINSTA.dll, ntmarta.dll, WLDAP32.dll,
wmdrmdev.dll, drmv2clt.dll, VERSION.dll,
MFPlat.DLL, AVRT.dll, SETUPAPI.dll,
CFGMGR32.dll, DEVOBJ.dll, SHELL32.dll,
WINTRUST.dll, CRYPT32.dll, MSASN1.dll,
CLBCatQ.DLL, CRYPTSP.dll, rsaenh.dll,
RpcRtRemote.dll, upnp.dll, WINHTTP.dll,
webio.dll, SSDPAPI.dll, SXS.DLL,
dhcpcsvc.DLL, dhcpcsvc6.DLL, wmp.dll,
gdiplus.dll, dwmapi.dll, wmploc.dll,
ieproxy.dll, windowscodecs.dll,
provsvc.dll, slc.dll, SspiCli.dll,
NETAPI32.dll, netutils.dll, srvcli.dll,
wkscli.dll, wmpps.dll, wmpmde.dll,
HTTPAPI.dll, pcwum.dll, mswsock.dll,
wshtcpip.dll, wship6.dll, BlackBox.dll,
WinSATAPI.dll, dxgi.dll, msxml6.dll,
urlmon.dll, iertutil.dll, WININET.dll,
Normaliz.dll, PROPSYS.dll, msmpeg2enc.dll,
devenum.dll, WINMM.dll, msdmo.dll,
netprofm.dll, nlaapi.dll, npmproxy.dll,
upnphost.dll, wbemprox.dll, wbemcomn.dll,
wbemsvc.dll, fastprox.dll, NTDSAPI.dll,
GPAPI.dll, credssp.dll, msxml3.dll,
DNSAPI.dll, comctl32.dll, XmlLite.dll,
LINKINFO.dll, apphelp.dll,
NetworkExplorer.dll, MPR.dll, drprov.dll,
ntlanman.dll, davclnt.dll, DAVHLPR.dll,
FirewallAPI.dll
UNS.exe 2288 ntdll.dll, wow64.dll, wow64win.dll,
wow64cpu.dll
TosSmartSrv.exe 2012 ntdll.dll, kernel32.dll, KERNELBASE.dll,
CRYPT32.dll, msvcrt.dll, MSASN1.dll,
USER32.dll, GDI32.dll, LPK.dll, USP10.dll,
ADVAPI32.dll, sechost.dll, RPCRT4.dll,
ole32.dll, OLEAUT32.dll, IMM32.DLL,
MSCTF.dll, CRYPTBASE.dll, CLBCatQ.DLL,
CRYPTSP.dll, rsaenh.dll, RpcRtRemote.dll,
SXS.DLL, SspiCli.dll, SHELL32.dll,
SHLWAPI.dll, profapi.dll, WINTRUST.DLL,
imagehlp.dll, ncrypt.dll, bcrypt.dll,
bcryptprimitives.dll, wbemprox.dll,
wbemcomn.dll, WS2_32.dll, NSI.dll,
wbemsvc.dll, fastprox.dll, NTDSAPI.dll
TosSENotify.exe 2176 ntdll.dll, kernel32.dll, KERNELBASE.dll,
TosIPCWraper.dll, ADVAPI32.dll, msvcrt.dll,
sechost.dll, RPCRT4.dll, TReport.dll,
WTSAPI32.dll, USER32.dll, GDI32.dll,
LPK.dll, USP10.dll, WINSPOOL.DRV,
SHELL32.dll, SHLWAPI.dll, COMCTL32.dll,
ole32.dll, OLEAUT32.dll, IMM32.DLL,
MSCTF.dll, uxtheme.dll, CRYPTBASE.dll,
CLBCatQ.DLL, CRYPTSP.dll, rsaenh.dll,
RpcRtRemote.dll, SXS.DLL, SspiCli.dll,
USERENV.dll, profapi.dll, wbemprox.dll,
wbemcomn.dll, WS2_32.dll, NSI.dll,
wbemsvc.dll, fastprox.dll, NTDSAPI.dll,
dwmapi.dll, WINSTA.dll
svchost.exe 3740 ntdll.dll, kernel32.dll, KERNELBASE.dll,
msvcrt.dll, sechost.dll, RPCRT4.dll,
pnrpsvc.dll, USERENV.dll, profapi.dll,
GPAPI.dll, CRYPTBASE.dll, secur32.dll,
SSPICLI.DLL, credssp.dll, RpcRtRemote.dll,
WS2_32.dll, NSI.dll, mswsock.dll,
user32.dll, GDI32.dll, LPK.dll, USP10.dll,
IMM32.DLL, MSCTF.dll, wship6.dll,
IPHLPAPI.DLL, WINNSI.DLL, dhcpcsvc.DLL,
dhcpcsvc6.DLL, sqmapi.dll, ADVAPI32.dll,
ole32.dll, SSDPAPI.DLL, SHELL32.dll,
SHLWAPI.dll, CRYPT32.dll, MSASN1.dll,
CRYPTSP.dll, rsaenh.dll, ncrypt.dll,
bcrypt.dll, p2psvc.dll, P2PGRAPH.dll,
ESENT.dll, slc.dll, XmlLite.dll, psapi.dll,
OLEAUT32.dll, AUTHZ.dll, pnrpnsp.dll,
rasadhlp.dll, ntmarta.dll, WLDAP32.dll,
schannel.DLL, drttransport.dll, drt.dll,
pcwum.dll, CLBCatQ.DLL
wuauclt.exe 3928 ntdll.dll, kernel32.dll, KERNELBASE.dll,
msvcrt.dll, ole32.dll, GDI32.dll,
USER32.dll, LPK.dll, USP10.dll, RPCRT4.dll,
ADVAPI32.dll, sechost.dll, OLEAUT32.dll,
SHLWAPI.dll, IMM32.DLL, MSCTF.dll,
profapi.dll, wucltux.dll, gdiplus.dll,
MSIMG32.dll, SHELL32.dll, OLEACC.dll,
slc.dll, UxTheme.dll, DUser.dll,
Cabinet.dll, CRYPT32.dll, MSASN1.dll,
WINTRUST.dll, comctl32.dll, CRYPTBASE.dll,
CLBCatQ.DLL, CRYPTSP.dll, rsaenh.dll,
RpcRtRemote.dll, wups2.dll
WmiPrvSE.exe 3192 ntdll.dll, kernel32.dll, KERNELBASE.dll,
ADVAPI32.dll, msvcrt.dll, sechost.dll,
RPCRT4.dll, USER32.dll, GDI32.dll, LPK.dll,
USP10.dll, wbemcomn.dll, OLEAUT32.dll,
ole32.dll, WS2_32.dll, NSI.dll,
FastProx.dll, NTDSAPI.dll, NCObjAPI.DLL,
IMM32.DLL, MSCTF.dll, CRYPTBASE.dll,
ntmarta.dll, WLDAP32.dll, CLBCatQ.DLL,
CRYPTSP.dll, rsaenh.dll, RpcRtRemote.dll,
wbemsvc.dll, wmiutils.dll, wmiprov.dll
sppsvc.exe 3220 ntdll.dll, kernel32.dll, KERNELBASE.dll,
ADVAPI32.dll, msvcrt.dll, sechost.dll,
RPCRT4.dll, ole32.dll, GDI32.dll,
USER32.dll, LPK.dll, USP10.dll, IMM32.DLL,
MSCTF.dll, CRYPTBASE.dll, RpcRtRemote.dll,
CRYPTSP.dll, rsaenh.dll, sppwinob.dll,
sppobjs.dll, DNSAPI.dll, WS2_32.dll,
NSI.dll, OLEAUT32.dll, CLBCatQ.DLL,
SspiCli.dll
cmd.exe 756 ntdll.dll, kernel32.dll, KERNELBASE.dll,
msvcrt.dll, WINBRAND.dll, USER32.dll,
GDI32.dll, LPK.dll, USP10.dll, IMM32.DLL,
MSCTF.dll, apphelp.dll
conhost.exe 772 ntdll.dll, kernel32.dll, KERNELBASE.dll,
GDI32.dll, USER32.dll, LPK.dll, USP10.dll,
msvcrt.dll, IMM32.dll, MSCTF.dll,
ole32.dll, RPCRT4.dll, OLEAUT32.dll,
uxtheme.dll, dwmapi.dll, ADVAPI32.dll,
sechost.dll, comctl32.DLL, SHLWAPI.dll,
CRYPTBASE.dll, CLBCatQ.DLL
tasklist.exe 3104 ntdll.dll, kernel32.dll, KERNELBASE.dll,
ADVAPI32.dll, msvcrt.dll, sechost.dll,
RPCRT4.dll, USER32.dll, GDI32.dll, LPK.dll,
USP10.dll, ole32.dll, VERSION.dll, MPR.dll,
OLEAUT32.dll, Secur32.dll, SSPICLI.DLL,
WS2_32.dll, NSI.dll, framedynos.dll,
WTSAPI32.dll, NETAPI32.dll, netutils.dll,
srvcli.dll, wkscli.dll, dbghelp.dll,
SHLWAPI.dll, IMM32.DLL, MSCTF.dll,
CRYPTBASE.dll, CLBCatQ.DLL, wbemprox.dll,
wbemcomn.dll, Winsta.dll, CRYPTSP.dll,
rsaenh.dll, RpcRtRemote.dll, wbemsvc.dll,
fastprox.dll, NTDSAPI.dll, wmiutils.dll
WmiPrvSE.exe 3884 ntdll.dll, kernel32.dll, KERNELBASE.dll,
ADVAPI32.dll, msvcrt.dll, sechost.dll,
RPCRT4.dll, USER32.dll, GDI32.dll, LPK.dll,
USP10.dll, wbemcomn.dll, OLEAUT32.dll,
ole32.dll, WS2_32.dll, NSI.dll,
FastProx.dll, NTDSAPI.dll, NCObjAPI.DLL,
IMM32.DLL, MSCTF.dll, CRYPTBASE.dll,
ntmarta.dll, WLDAP32.dll, CLBCatQ.DLL,
wbemprox.dll, CRYPTSP.dll, rsaenh.dll,
RpcRtRemote.dll, wbemsvc.dll, wmiutils.dll,
cimwin32.dll, framedynos.dll, SspiCli.dll,
WTSAPI32.dll, WINBRAND.dll
junk.txt:
Image Name PID Modules
========================= ======== ============================================
System Idle Process 0 N/A
System 4 N/A
smss.exe 316 ntdll.dll
csrss.exe 448 ntdll.dll, CSRSRV.dll, basesrv.DLL,
winsrv.DLL, USER32.dll, GDI32.dll,
kernel32.dll, KERNELBASE.dll, LPK.dll,
USP10.dll, msvcrt.dll, sxssrv.DLL, sxs.dll,
RPCRT4.dll, CRYPTBASE.dll, ADVAPI32.dll,
sechost.dll
wininit.exe 500 ntdll.dll, kernel32.dll, KERNELBASE.dll,
USER32.dll, GDI32.dll, LPK.dll, USP10.dll,
msvcrt.dll, RPCRT4.dll, sechost.dll,
profapi.dll, IMM32.DLL, MSCTF.dll,
RpcRtRemote.dll, apphelp.dll,
CRYPTBASE.dll, WS2_32.dll, NSI.dll,
mswsock.dll, wshtcpip.dll, wship6.dll,
secur32.dll, SSPICLI.DLL, credssp.dll,
ADVAPI32.dll
csrss.exe 512 ntdll.dll, CSRSRV.dll, basesrv.DLL,
winsrv.DLL, USER32.dll, GDI32.dll,
kernel32.dll, KERNELBASE.dll, LPK.dll,
USP10.dll, msvcrt.dll, sxssrv.DLL, sxs.dll,
RPCRT4.dll, CRYPTBASE.dll, ADVAPI32.dll,
sechost.dll
winlogon.exe 556 ntdll.dll, kernel32.dll, KERNELBASE.dll,
USER32.dll, GDI32.dll, LPK.dll, USP10.dll,
msvcrt.dll, WINSTA.dll, RPCRT4.dll,
IMM32.DLL, MSCTF.dll, ADVAPI32.dll,
sechost.dll, profapi.dll, RpcRtRemote.dll,
apphelp.dll, UXINIT.dll, UxTheme.dll,
CRYPTSP.dll, rsaenh.dll, CRYPTBASE.dll,
WindowsCodecs.dll, ole32.dll, wkscli.dll,
netjoin.dll, netutils.dll, SspiCli.dll,
slc.dll, MPR.dll, AUTHZ.dll
services.exe 600 ntdll.dll, kernel32.dll, KERNELBASE.dll,
msvcrt.dll, RPCRT4.dll, SspiCli.dll,
profapi.dll, sechost.dll, CRYPTBASE.dll,
scext.dll, USER32.dll, GDI32.dll, LPK.dll,
USP10.dll, Secur32.dll, SCESRV.dll,
srvcli.dll, IMM32.DLL, MSCTF.dll,
RpcRtRemote.dll, credssp.dll, AUTHZ.dll,
UBPM.dll, ADVAPI32.dll, apphelp.dll,
WTSAPI32.dll, WINSTA.dll, WS2_32.dll,
NSI.dll, mswsock.dll, wshtcpip.dll,
wship6.dll
lsass.exe 616 ntdll.dll, kernel32.dll, KERNELBASE.dll,
msvcrt.dll, RPCRT4.dll, SspiSrv.dll,
lsasrv.dll, sechost.dll, SspiCli.dll,
ADVAPI32.dll, USER32.dll, GDI32.dll,
LPK.dll, USP10.dll, SAMSRV.dll,
cryptdll.dll, MSASN1.dll, wevtapi.dll,
IMM32.DLL, MSCTF.dll, cngaudit.dll,
AUTHZ.dll, ncrypt.dll, bcrypt.dll,
msprivs.DLL, netjoin.dll, negoexts.DLL,
Secur32.dll, cryptbase.dll, kerberos.DLL,
CRYPTSP.dll, WS2_32.dll, NSI.dll,
mswsock.dll, wship6.dll, msv1_0.DLL,
netlogon.DLL, DNSAPI.dll, logoncli.dll,
schannel.DLL, CRYPT32.dll, wdigest.DLL,
rsaenh.dll, tspkg.DLL, pku2u.DLL,
bcryptprimitives.dll, RpcRtRemote.dll,
efslsaext.dll, scecli.DLL, credssp.dll,
WINSTA.dll, keyiso.dll, IPHLPAPI.DLL,
WINNSI.DLL, netutils.dll, USERENV.dll,
profapi.dll, wshtcpip.dll, dssenh.dll,
GPAPI.dll, cryptnet.dll, WLDAP32.dll,
certpoleng.dll, wkscli.dll
lsm.exe 624 ntdll.dll, kernel32.dll, KERNELBASE.dll,
msvcrt.dll, sechost.dll, RPCRT4.dll,
SYSNTFY.dll, WMsgAPI.dll, CRYPTBASE.dll,
pcwum.dll, RpcRtRemote.dll, secur32.dll,
SSPICLI.DLL, credssp.dll, ADVAPI32.dll
svchost.exe 744 ntdll.dll, kernel32.dll, KERNELBASE.dll,
msvcrt.dll, sechost.dll, RPCRT4.dll,
umpnpmgr.dll, SPINF.dll, USER32.dll,
GDI32.dll, LPK.dll, USP10.dll, DEVRTL.dll,
IMM32.DLL, MSCTF.dll, RpcRtRemote.dll,
USERENV.dll, profapi.dll, GPAPI.dll,
CRYPTBASE.dll, umpo.dll, WINSTA.dll,
SETUPAPI.dll, CFGMGR32.dll, ADVAPI32.dll,
OLEAUT32.dll, ole32.dll, DEVOBJ.dll,
pcwum.DLL, rpcss.dll, SspiCli.dll,
credssp.dll, CLBCatQ.DLL, apphelp.dll,
ntmarta.dll, WLDAP32.dll, wmidcprv.dll,
FastProx.dll, wbemcomn.dll, WS2_32.dll,
NSI.dll, NTDSAPI.dll, wbemprox.dll,
CRYPTSP.dll, rsaenh.dll, wbemsvc.dll,
wmiutils.dll, WINTRUST.dll, CRYPT32.dll,
MSASN1.dll, WTSAPI32.dll
svchost.exe 824 ntdll.dll, kernel32.dll, KERNELBASE.dll,
msvcrt.dll, sechost.dll, RPCRT4.dll,
rpcepmap.dll, RpcRtRemote.dll, secur32.dll,
SSPICLI.DLL, credssp.dll, CRYPTBASE.dll,
rpcss.dll, ADVAPI32.dll, CRYPTSP.dll,
rsaenh.dll, WS2_32.dll, NSI.dll,
mswsock.dll, user32.dll, GDI32.dll,
LPK.dll, USP10.dll, IMM32.DLL, MSCTF.dll,
wshtcpip.dll, wship6.dll, FirewallAPI.dll,
VERSION.dll, CLBCatQ.DLL, ole32.dll,
OLEAUT32.dll, fwpuclnt.dll, WTSAPI32.dll,
WINSTA.dll
MsMpEng.exe 880 ntdll.dll, kernel32.dll, KERNELBASE.dll,
mpsvc.dll, msvcrt.dll, OLEAUT32.dll,
ole32.dll, GDI32.dll, USER32.dll, LPK.dll,
USP10.dll, RPCRT4.dll, ADVAPI32.dll,
sechost.dll, WTSAPI32.dll, USERENV.dll,
profapi.dll, mpclient.dll, WINTRUST.dll,
CRYPT32.dll, MSASN1.dll, VERSION.dll,
IMM32.DLL, MSCTF.dll, GPAPI.dll,
CRYPTBASE.dll, ntmarta.dll, WLDAP32.dll,
bcrypt.dll, bcryptprimitives.dll,
mprtp.dll, FLTLIB.DLL, psapi.dll,
CRYPTSP.dll, rsaenh.dll, WS2_32.dll,
NSI.dll, secur32.dll, SSPICLI.DLL,
credssp.dll, RpcRtRemote.dll, apphelp.dll,
wscapi.dll, urlmon.dll, SHLWAPI.dll,
iertutil.dll, WININET.dll, Normaliz.dll,
imagehlp.dll, ncrypt.dll, CLBCatQ.DLL,
mpengine.dll, XmlLite.dll, netapi32.dll,
netutils.dll, srvcli.dll, wkscli.dll
svchost.exe 1016 ntdll.dll, kernel32.dll, KERNELBASE.dll,
msvcrt.dll, sechost.dll, RPCRT4.dll,
ole32.dll, GDI32.dll, USER32.dll, LPK.dll,
USP10.dll, IMM32.DLL, MSCTF.dll,
CRYPTBASE.dll, ADVAPI32.dll, wevtsvc.dll,
RpcRtRemote.dll, secur32.dll, SSPICLI.DLL,
credssp.dll, WS2_32.dll, NSI.dll,
mswsock.dll, wshtcpip.dll, wship6.dll,
GPAPI.dll, audiosrv.dll, POWRPROF.dll,
SETUPAPI.dll, CFGMGR32.dll, OLEAUT32.dll,
DEVOBJ.dll, MMDevAPI.DLL, PROPSYS.dll,
AVRT.dll, CLBCatQ.DLL, lmhsvc.dll,
IPHLPAPI.DLL, WINNSI.DLL, nrpsrv.DLL,
dhcpcore.dll, DNSAPI.dll, firewallapi.dll,
VERSION.dll, dhcpcore6.dll, WINSTA.dll,
wscsvc.dll, dbghelp.dll, CRYPTSP.dll,
rsaenh.dll, wbemprox.dll, wbemcomn.dll,
wbemsvc.dll, fastprox.dll, NTDSAPI.dll,
CRYPT32.dll, MSASN1.dll, WINTRUST.DLL,
imagehlp.dll, ncrypt.dll, bcrypt.dll,
bcryptprimitives.dll, wuapi.dll,
Cabinet.dll, SHLWAPI.dll, profapi.dll,
USERENV.dll, wkscli.dll, netutils.dll,
provsvc.dll, actxprxy.dll, npmproxy.dll,
FunDisc.dll, ATL.DLL, msxml6.dll,
fdproxy.dll, P2P.dll, P2PCOLLAB.dll,
SHELL32.dll, ieproxy.dll, dhcpcsvc.DLL,
dhcpcsvc6.DLL, pnrpnsp.dll, XmlLite.dll,
rasadhlp.dll, NLAapi.dll, napinsp.dll,
fwpuclnt.dll, winrnr.dll, EEL64A.dll,
EED64A.dll, audioses.dll
svchost.exe 392 ntdll.dll, kernel32.dll, KERNELBASE.dll,
msvcrt.dll, sechost.dll, RPCRT4.dll,
ole32.dll, GDI32.dll, USER32.dll, LPK.dll,
USP10.dll, IMM32.DLL, MSCTF.dll,
CRYPTBASE.dll, ADVAPI32.dll, audiosrv.dll,
POWRPROF.dll, SETUPAPI.dll, CFGMGR32.dll,
OLEAUT32.dll, DEVOBJ.dll, MMDevAPI.DLL,
PROPSYS.dll, AVRT.dll, CLBCatQ.DLL,
SHLWAPI.dll, uxsms.dll, WTSAPI32.dll,
WINSTA.dll, wlansvc.dll, CRYPT32.dll,
MSASN1.dll, bcrypt.dll, dsrole.dll,
SHELL32.dll, WLANMSM.DLL, WLANSEC.dll,
WS2_32.dll, NSI.dll, OneX.DLL,
eappprxy.dll, AUTHZ.dll, dhcpcsvc.DLL,
IPHLPAPI.DLL, WINNSI.DLL, eappcfg.dll,
wlgpclnt.dll, l2gpstore.dll, wlanutil.dll,
SYSNTFY.dll, WinSCard.dll, msxml6.dll,
CRYPTSP.dll, rsaenh.dll, RpcRtRemote.dll,
secur32.dll, SSPICLI.DLL, credssp.dll,
kerberos.DLL, cryptdll.dll, WINTRUST.dll,
profapi.dll, netcfgx.dll, devrtl.DLL,
netman.dll, pcasvc.dll, apphelp.dll,
AEPIC.dll, sfc.dll, sfc_os.DLL,
VERSION.dll, wevtapi.dll, USERENV.dll,
sysmain.dll, ntmarta.dll, WLDAP32.dll,
trkwks.dll, hidserv.dll, HID.DLL,
GPAPI.dll, PortableDeviceApi.dll,
portabledeviceconnectapi.dll, netshell.dll,
nlaapi.dll, RASDLG.dll, MPRAPI.dll,
RASAPI32.dll, rasman.dll, rtutils.dll,
hnetcfg.dll, ATL.DLL, slc.dll,
wbemprox.dll, wbemcomn.dll, wbemsvc.dll,
fastprox.dll, NTDSAPI.dll, listsvc.dll,
FirewallAPI.dll, actxprxy.dll,
IdListen.dll, XmlLite.dll, NETAPI32.dll,
netutils.dll, srvcli.dll, wkscli.dll,
SAMCLI.DLL, ncrypt.dll, hgprint.dll,
WINSPOOL.DRV, SAMLIB.dll, shacct.dll,
COMCTL32.dll, cscapi.dll, comctl32.dll
svchost.exe 388 ntdll.dll, kernel32.dll, KERNELBASE.dll,
msvcrt.dll, sechost.dll, RPCRT4.dll,
ole32.dll, GDI32.dll, USER32.dll, LPK.dll,
USP10.dll, IMM32.DLL, MSCTF.dll,
CRYPTBASE.dll, ADVAPI32.dll, gpsvc.dll,
GPAPI.dll, WLDAP32.dll, Secur32.dll,
SSPICLI.DLL, NSI.dll, SYSNTFY.dll,
nlaapi.dll, profsvc.dll, OLEAUT32.dll,
USERENV.dll, profapi.dll, SHLWAPI.dll,
ATL.DLL, themeservice.dll, RpcRtRemote.dll,
WINSTA.dll, CLBCatQ.DLL, CRYPTSP.dll,
dsrole.dll, slc.dll, rsaenh.dll, sens.dll,
WS2_32.dll, eapsvc.dll, eapphost.dll,
CRYPT32.dll, MSASN1.dll, umb.dll,
SAMLIB.dll, shsvcs.dll, CFGMGR32.dll,
schedsvc.dll, pcwum.dll, SHELL32.dll,
NETAPI32.dll, netutils.dll, srvcli.dll,
wkscli.dll, wevtapi.dll, AUTHZ.dll,
UBPM.dll, ktmw32.dll, XmlLite.dll,
SETUPAPI.dll, DEVOBJ.dll, WINTRUST.dll,
credssp.dll, FVEAPI.dll, tbs.dll,
FVECERTS.dll, LOGONCLI.DLL, UxTheme.dll,
taskcomp.dll, VERSION.dll, ntmarta.dll,
mswsock.dll, wshtcpip.dll, wship6.dll,
netjoin.dll, WTSAPI32.dll, wiarpc.dll,
comctl32.dll, PROPSYS.dll, ikeext.dll,
fwpuclnt.dll, ncrypt.dll, bcrypt.dll,
bcryptprimitives.dll, IPHLPAPI.DLL,
WINNSI.DLL, dhcpcsvc.DLL, dhcpcsvc6.DLL,
SXS.DLL, seclogon.dll, wmisvc.dll,
wbemcomn.dll, iphlpsvc.dll,
FirewallAPI.dll, rtutils.dll, sqmapi.dll,
WDSCORE.dll, srvsvc.dll, browser.dll,
VSSAPI.DLL, VssTrace.DLL, samcli.dll,
SSCORE.DLL, CLUSAPI.DLL, cryptdll.dll,
RESUTILS.DLL, devrtl.DLL, NCI.dll,
hnetcfg.dll, netprofm.dll, SPINF.dll,
wbemcore.dll, esscli.dll, FastProx.dll,
NTDSAPI.dll, wbemsvc.dll, wmiutils.dll,
repdrvfs.dll, DNSAPI.dll, rasadhlp.dll,
wmiprvsd.dll, NCObjAPI.DLL, wbemess.dll,
rasmans.dll, eappprxy.dll, rastapi.DLL,
TAPI32.dll, rasppp.dll, RASAPI32.dll,
rasman.dll, eappcfg.dll, vpnike.dll,
kerberos.DLL, raschap.dll, credui.dll,
appinfo.dll, npmproxy.dll, apphelp.dll,
ncprov.dll, qmgr.dll, bitsperf.dll,
bitsigd.dll, upnp.dll, WINHTTP.dll,
webio.dll, SSDPAPI.dll, wuaueng.dll,
ESENT.dll, WINSPOOL.DRV, Cabinet.dll,
mspatcha.dll, psapi.dll, WMsgAPI.dll,
wer.dll, wups2.dll, netshell.dll,
schannel.DLL, MPR.dll, msi.dll,
advpack.dll, SensApi.dll, aelupsvc.dll,
netcfgx.dll, msxml3.dll, ndiscapCfg.dll,
rascfg.dll, MPRAPI.dll, tcpipcfg.dll,
wbemprox.dll, ES.DLL
svchost.exe 1036 ntdll.dll, kernel32.dll, KERNELBASE.dll,
msvcrt.dll, sechost.dll, RPCRT4.dll,
ole32.dll, GDI32.dll, USER32.dll, LPK.dll,
USP10.dll, IMM32.DLL, MSCTF.dll,
CRYPTBASE.dll, ADVAPI32.dll, es.dll,
OLEAUT32.dll, CRYPTSP.dll, rsaenh.dll,
RpcRtRemote.dll, CLBCatQ.DLL, nsisvc.dll,
NSI.dll, SXS.DLL, sstpsvc.dll, rtutils.dll,
HTTPAPI.dll, CRYPT32.dll, MSASN1.dll,
WS2_32.dll, webio.dll, IPHLPAPI.DLL,
WINNSI.DLL, netprofm.dll, nlaapi.dll,
wdi.dll, npmproxy.dll, perftrack.dll,
wer.dll, dwmapi.dll, Secur32.dll,
SSPICLI.DLL, AEPIC.dll, sfc.dll,
sfc_os.DLL, VERSION.dll, GPAPI.dll,
winhttp.dll, SHLWAPI.dll, credssp.dll,
DNSAPI.dll, napinsp.dll, pnrpnsp.dll,
mswsock.dll, winrnr.dll, wshtcpip.dll,
wship6.dll, rasadhlp.dll, fwpuclnt.dll,
fdphost.dll, dhcpcsvc.DLL, fdwsd.dll,
ATL.DLL, bcrypt.dll, MLANG.dll, wsdapi.dll,
webservices.dll, FirewallAPI.dll,
dhcpcsvc6.DLL, fdssdp.dll, SSDPAPI.dll,
fdproxy.dll, bcryptprimitives.dll,
XmlLite.dll, FunDisc.dll, msxml6.dll,
propsys.dll, ieproxy.dll
svchost.exe 1112 ntdll.dll, kernel32.dll, KERNELBASE.dll,
msvcrt.dll, sechost.dll, RPCRT4.dll,
ole32.dll, GDI32.dll, USER32.dll, LPK.dll,
USP10.dll, IMM32.DLL, MSCTF.dll,
CRYPTBASE.dll, ADVAPI32.dll, dnsrslvr.dll,
WS2_32.dll, NSI.dll, DNSAPI.dll,
WINNSI.DLL, Fwpuclnt.dll, dnsext.dll,
USERENV.dll, profapi.dll, GPAPI.dll,
RpcRtRemote.dll, mswsock.dll, iphlpapi.dll,
wship6.dll, dhcpcsvc.DLL, dhcpcsvc6.DLL,
wkssvc.dll, netutils.dll, netjoin.dll,
SspiCli.dll, cryptsvc.dll, CRYPTNET.dll,
CRYPT32.dll, MSASN1.dll, WLDAP32.dll,
VSSAPI.DLL, ATL.DLL, VssTrace.DLL,
OLEAUT32.dll, samcli.dll, SAMLIB.dll,
CRYPTSP.dll, rsaenh.dll, CLBCatQ.DLL,
es.dll, PROPSYS.dll, nlasvc.dll,
wevtapi.dll, ncsi.dll, WINHTTP.dll,
webio.dll, CFGMGR32.dll, secur32.dll,
credssp.dll, ssdpapi.dll, wkscli.dll,
tapisrv.dll, rtutils.dll, unimdm.tsp,
uniplat.dll, SETUPAPI.dll, DEVOBJ.dll,
WINTRUST.dll, kmddsp.tsp, ndptsp.tsp,
hidphone.tsp, HID.DLL, WINMM.dll,
WTSAPI32.dll, WINSTA.dll, ESENT.dll,
psapi.dll, SHLWAPI.dll, wshtcpip.dll,
bcrypt.dll, bcryptprimitives.dll,
rasadhlp.dll, SensApi.dll, Cabinet.dll,
DEVRTL.dll, ncrypt.dll
spoolsv.exe 1260 ntdll.dll, kernel32.dll, KERNELBASE.dll,
msvcrt.dll, sechost.dll, RPCRT4.dll,
USER32.dll, GDI32.dll, LPK.dll, USP10.dll,
POWRPROF.dll, SETUPAPI.dll, CFGMGR32.dll,
ADVAPI32.dll, OLEAUT32.dll, ole32.dll,
DEVOBJ.dll, DNSAPI.dll, WS2_32.dll,
NSI.dll, IMM32.DLL, MSCTF.dll,
CRYPTBASE.dll, slc.dll, RpcRtRemote.dll,
secur32.dll, SSPICLI.DLL, credssp.dll,
WTSAPI32.dll, WINSTA.dll, IPHLPAPI.DLL,
WINNSI.DLL, mswsock.dll, wshtcpip.dll,
wship6.dll, rasadhlp.dll, fwpuclnt.dll,
CLBCatQ.DLL, umb.dll, ATL.DLL,
WINTRUST.dll, CRYPT32.dll, MSASN1.dll,
localspl.dll, SPOOLSS.DLL, srvcli.dll,
winspool.drv, PrintIsolationProxy.dll,
FXSMON.DLL, tcpmon.dll, snmpapi.dll,
wsnmp32.dll, msxml6.dll, SHLWAPI.dll,
usbmon.dll, wls0wndh.dll, WSDMon.dll,
wsdapi.dll, webservices.dll,
FirewallAPI.dll, VERSION.dll, FunDisc.dll,
fdPnp.dll, winprint.dll, USERENV.dll,
profapi.dll, GPAPI.dll, dsrole.dll,
win32spl.dll, DEVRTL.dll, SPINF.dll,
inetpp.dll, CRYPTSP.dll, rsaenh.dll,
cscapi.dll, netutils.dll
svchost.exe 1316 ntdll.dll, kernel32.dll, KERNELBASE.dll,
msvcrt.dll, sechost.dll, RPCRT4.dll,
ole32.dll, GDI32.dll, USER32.dll, LPK.dll,
USP10.dll, IMM32.DLL, MSCTF.dll,
CRYPTBASE.dll, ADVAPI32.dll, bfe.dll,
AUTHZ.dll, slc.dll, SspiCli.dll, pcwum.dll,
RpcRtRemote.dll, mpssvc.dll,
FirewallAPI.dll, VERSION.dll, fwpuclnt.dll,
NSI.dll, CFGMGR32.dll, SHLWAPI.dll,
secur32.dll, credssp.dll, USERENV.dll,
profapi.dll, GPAPI.dll, WS2_32.dll,
IPHLPAPI.DLL, WINNSI.DLL, dhcpcsvc.DLL,
dhcpcsvc6.DLL, wfapigp.dll, ntmarta.dll,
WLDAP32.dll, dps.dll, OLEAUT32.dll,
CLBCatQ.DLL, taskschd.dll, wdi.dll,
bcrypt.dll, radardt.dll, WTSAPI32.dll,
wdiasqmmodule.dll, netprofm.dll,
nlaapi.dll, CRYPTSP.dll, rsaenh.dll,
npmproxy.dll, mswsock.dll, wshtcpip.dll,
wship6.dll, WINSTA.dll
armsvc.exe 1408 ntdll.dll, wow64.dll, wow64win.dll,
wow64cpu.dll
svchost.exe 1480 ntdll.dll, kernel32.dll, KERNELBASE.dll,
msvcrt.dll, sechost.dll, RPCRT4.dll,
ole32.dll, GDI32.dll, USER32.dll, LPK.dll,
USP10.dll, IMM32.DLL, MSCTF.dll,
CRYPTBASE.dll, ADVAPI32.dll, fdrespub.dll,
wsdapi.dll, WS2_32.dll, NSI.dll,
IPHLPAPI.DLL, WINNSI.DLL, webservices.dll,
FirewallAPI.dll, VERSION.dll, CLBCatQ.DLL,
OLEAUT32.dll, FunDisc.dll, ATL.DLL,
SHLWAPI.dll, dhcpcsvc.DLL, dhcpcsvc6.DLL,
mswsock.dll, wship6.dll, wshtcpip.dll,
WINHTTP.dll, webio.dll, HTTPAPI.dll,
pcwum.dll, wkscli.dll, netutils.dll,
msxml6.dll, CRYPTSP.dll, rsaenh.dll,
XmlLite.dll, ssdpsrv.dll, secur32.dll,
SSPICLI.DLL, credssp.dll, RpcRtRemote.dll,
fntcache.dll, ktmw32.dll, ntmarta.dll,
WLDAP32.dll, upnphost.dll, SHELL32.dll,
SSDPAPI.dll, USERENV.dll, profapi.dll,
msxml3.dll, DNSAPI.dll, udhisapi.dll
taskhost.exe 1564 ntdll.dll, kernel32.dll, KERNELBASE.dll,
msvcrt.dll, ole32.dll, GDI32.dll,
USER32.dll, LPK.dll, USP10.dll, RPCRT4.dll,
OLEAUT32.dll, IMM32.DLL, MSCTF.dll,
CRYPTBASE.dll, sechost.dll, ADVAPI32.dll,
uxtheme.dll, dwmapi.dll, CLBCatQ.DLL,
PlaySndSrv.dll, RpcRtRemote.dll, WINMM.dll,
HotStartUserAgent.dll, slc.dll,
SHLWAPI.dll, MsCtfMonitor.dll, MSUTB.dll,
WINSTA.dll, WTSAPI32.dll, dimsjob.dll,
taskschd.dll, SspiCli.dll, netprofm.dll,
NSI.dll, nlaapi.dll, CRYPTSP.dll,
rsaenh.dll, npmproxy.dll, dsrole.dll
svchost.exe 1704 ntdll.dll, kernel32.dll, KERNELBASE.dll,
msvcrt.dll, sechost.dll, RPCRT4.dll,
wiaservc.dll, ADVAPI32.dll, USER32.dll,
GDI32.dll, LPK.dll, USP10.dll,
OLEAUT32.dll, ole32.dll, VERSION.dll,
IMM32.DLL, MSCTF.dll, wiatrace.dll,
CRYPTBASE.dll, RpcRtRemote.dll,
secur32.dll, SSPICLI.DLL, credssp.dll,
msv1_0.DLL, cryptdll.dll, CFGMGR32.dll,
CLBCatQ.DLL, CRYPTSP.dll, rsaenh.dll,
SETUPAPI.dll, DEVOBJ.dll, WINTRUST.dll,
CRYPT32.dll, MSASN1.dll
dwm.exe 1712 ntdll.dll, kernel32.dll, KERNELBASE.dll,
GDI32.dll, USER32.dll, LPK.dll, USP10.dll,
msvcrt.dll, UxTheme.dll, IMM32.dll,
MSCTF.dll, dwmredir.dll, dwmcore.dll,
ADVAPI32.dll, sechost.dll, RPCRT4.dll,
WindowsCodecs.dll, ole32.dll, d3d10_1.dll,
d3d10_1core.dll, dxgi.dll, VERSION.dll,
dwmapi.dll, PSAPI.DLL, WINTRUST.dll,
CRYPT32.dll, MSASN1.dll
TODDSrv.exe 1740 ntdll.dll, kernel32.dll, KERNELBASE.dll,
USER32.dll, GDI32.dll, LPK.dll, USP10.dll,
msvcrt.dll, ADVAPI32.dll, sechost.dll,
RPCRT4.dll, SHLWAPI.dll, SETUPAPI.dll,
CFGMGR32.dll, OLEAUT32.dll, ole32.dll,
DEVOBJ.dll, IMM32.DLL, MSCTF.dll,
WINTRUST.dll, CRYPT32.dll, MSASN1.dll
explorer.exe 1768 ntdll.dll, kernel32.dll, KERNELBASE.dll,
ADVAPI32.dll, msvcrt.dll, sechost.dll,
RPCRT4.dll, GDI32.dll, USER32.dll, LPK.dll,
USP10.dll, SHLWAPI.dll, SHELL32.dll,
ole32.dll, OLEAUT32.dll, EXPLORERFRAME.dll,
DUser.dll, DUI70.dll, IMM32.dll, MSCTF.dll,
UxTheme.dll, POWRPROF.dll, SETUPAPI.dll,
CFGMGR32.dll, DEVOBJ.dll, dwmapi.dll,
slc.dll, gdiplus.dll, Secur32.dll,
SSPICLI.DLL, PROPSYS.dll, WINSTA.dll,
CRYPTBASE.dll, comctl32.dll,
WindowsCodecs.dll, profapi.dll,
apphelp.dll, CLBCatQ.DLL,
DropboxExt64.17.dll, dbghelp.dll,
MSVCP90.dll, MSVCR90.dll, EhStorShell.dll,
ntshrui.dll, srvcli.dll, cscapi.dll,
IconCodecService.dll, CRYPTSP.dll,
rsaenh.dll, RpcRtRemote.dll, SndVolSSO.DLL,
HID.DLL, MMDevApi.dll, timedate.cpl,
ATL.DLL, actxprxy.dll, ntmarta.dll,
WLDAP32.dll, shdocvw.dll, LINKINFO.dll,
msutb.dll, USERENV.dll, SAMLIB.dll,
samcli.dll, netutils.dll, gameux.dll,
XmlLite.dll, CRYPT32.dll, MSASN1.dll,
wer.dll, msls31.dll, tiptsf.dll,
authui.dll, CRYPTUI.dll, urlmon.dll,
iertutil.dll, WININET.dll, Normaliz.dll,
msiltcfg.dll, VERSION.dll, msi.dll,
PSAPI.DLL, NetworkExplorer.dll,
stobject.dll, BatMeter.dll, WTSAPI32.dll,
WINTRUST.dll, prnfldr.dll, WINSPOOL.DRV,
es.dll, AUDIOSES.DLL, dxp.dll, Syncreg.dll,
ehSSO.dll, netshell.dll, IPHLPAPI.DLL,
NSI.dll, WINNSI.DLL, nlaapi.dll,
AltTab.dll, wpdshserviceobj.dll,
PortableDeviceTypes.dll,
PortableDeviceApi.dll, pnidui.dll,
QUtil.dll, wevtapi.dll, dhcpcsvc.DLL,
WS2_32.dll, dhcpcsvc6.DLL, credssp.dll,
npmproxy.dll, srchadmin.dll,
Actioncenter.dll, SyncCenter.dll,
Wlanapi.dll, wlanutil.dll, wwanapi.dll,
wwapi.dll, imapi2.dll, QAgent.dll,
bthprops.cpl, ieframe.dll, OLEACC.dll,
hgcpl.dll, provsvc.dll, wkscli.dll,
SXS.DLL, fxsst.dll, FXSAPI.dll,
FXSRESM.DLL, DEVRTL.dll, igfxpph.dll,
hccutils.DLL, igfxrENU.lrc, igfxsrvc.dll,
sbdrop.dll, UIAnimation.dll,
wscinterop.dll, WSCAPI.dll, wscui.cpl,
werconcpl.dll, framedynos.dll,
wercplsupport.dll, msxml6.dll,
hcproviders.dll, ieproxy.dll, van.dll,
RasMM.dll, RASAPI32.dll, rasman.dll,
WWanMM.dll, WlanMM.dll, wlanhlp.dll,
OneX.DLL, eappprxy.dll, eappcfg.dll,
bcrypt.dll, bcryptprimitives.dll, MPR.dll,
mssprxy.dll, MLANG.dll, imagehlp.dll,
ncrypt.dll, GPAPI.dll, drprov.dll,
ntlanman.dll, davclnt.dll, DAVHLPR.dll,
WINMM.dll, dsrole.dll, StructuredQuery.dll,
mf.dll, MFPlat.DLL, AVRT.dll, ksuser.dll,
PhotoBase.dll, rarext64.dll,
PhotoMetadataHandler.dll, cryptnet.dll,
SensApi.dll, twext.dll, mbamext.dll,
misosh64.dll, shellext.dll, msxml3.dll,
DefragglerShell64.dll, syncui.dll,
SYNCENG.dll, acppage.dll, sfc.dll,
sfc_os.DLL, EhStorAPI.dll, shacct.dll,
netprofm.dll, MsftEdit.dll, systemcpl.dll,
WINBRAND.dll, NETAPI32.dll, SPPC.DLL,
wbemprox.dll, wbemcomn.dll, wbemsvc.dll,
fastprox.dll, NTDSAPI.dll, WinSATAPI.dll,
dxgi.dll, SPINF.dll, thumbcache.dll
TosCoSrv.exe 1800 ntdll.dll, kernel32.dll, KERNELBASE.dll,
TPwrReg.dll, RPCRT4.dll, USER32.dll,
GDI32.dll, LPK.dll, USP10.dll, msvcrt.dll,
ADVAPI32.dll, sechost.dll, SHELL32.dll,
SHLWAPI.dll, WTSAPI32.dll, TPwrFunc.dll,
ole32.dll, OLEAUT32.dll, IMM32.DLL,
MSCTF.dll, Powrprof.dll, SETUPAPI.dll,
CFGMGR32.dll, DEVOBJ.dll, CRYPTBASE.dll
igfxpers.exe 2504 ntdll.dll, kernel32.dll, KERNELBASE.dll,
POWRPROF.dll, msvcrt.dll, RPCRT4.dll,
SETUPAPI.dll, CFGMGR32.dll, ADVAPI32.dll,
sechost.dll, GDI32.dll, USER32.dll,
LPK.dll, USP10.dll, OLEAUT32.dll,
ole32.dll, DEVOBJ.dll, SHELL32.dll,
SHLWAPI.dll, hccutils.DLL, IMM32.DLL,
MSCTF.dll, CRYPTBASE.dll, uxtheme.dll,
CLBCatQ.DLL, CRYPTSP.dll, rsaenh.dll,
RpcRtRemote.dll, igfxsrvc.dll, dwmapi.dll,
IccLibDll_x64.dll, PSAPI.DLL, wtsapi32.dll,
WINSTA.dll, WINTRUST.dll, CRYPT32.dll,
MSASN1.dll
msseces.exe 2512 ntdll.dll, kernel32.dll, KERNELBASE.dll,
msvcrt.dll, mpclient.dll, OLEAUT32.dll,
ole32.dll, GDI32.dll, USER32.dll, LPK.dll,
USP10.dll, RPCRT4.dll, ADVAPI32.dll,
sechost.dll, WINTRUST.dll, CRYPT32.dll,
MSASN1.dll, VERSION.dll, USERENV.dll,
profapi.dll, COMCTL32.dll, SHLWAPI.dll,
gdiplus.dll, WININET.dll, Normaliz.dll,
iertutil.dll, urlmon.dll, WTSAPI32.dll,
SHELL32.dll, COMDLG32.dll, PSAPI.DLL,
IMM32.DLL, MSCTF.dll, uxtheme.dll,
CRYPTBASE.dll, CRYPTSP.dll, rsaenh.dll,
imagehlp.dll, ncrypt.dll, bcrypt.dll,
bcryptprimitives.dll, GPAPI.dll,
EppManifest.dll, CLBCatQ.DLL, msxml3.dll,
MSFTEDIT.DLL, WindowsCodecs.dll,
dwmapi.dll, SqmApi.dll
igfxtray.exe 2520 ntdll.dll, kernel32.dll, KERNELBASE.dll,
hccutils.DLL, USER32.dll, GDI32.dll,
LPK.dll, USP10.dll, msvcrt.dll,
ADVAPI32.dll, sechost.dll, RPCRT4.dll,
ole32.dll, OLEAUT32.dll, SHELL32.dll,
SHLWAPI.dll, IMM32.DLL, MSCTF.dll,
CRYPTBASE.dll, uxtheme.dll, dwmapi.dll,
CLBCatQ.DLL, CRYPTSP.dll, rsaenh.dll,
RpcRtRemote.dll, igfxsrvc.dll,
igfxrENU.lrc, igfxress.dll
hkcmd.exe 2528 ntdll.dll, kernel32.dll, KERNELBASE.dll,
hccutils.DLL, USER32.dll, GDI32.dll,
LPK.dll, USP10.dll, msvcrt.dll,
ADVAPI32.dll, sechost.dll, RPCRT4.dll,
ole32.dll, OLEAUT32.dll, SHELL32.dll,
SHLWAPI.dll, IMM32.DLL, MSCTF.dll,
CRYPTBASE.dll, uxtheme.dll, CLBCatQ.DLL,
CRYPTSP.dll, rsaenh.dll, RpcRtRemote.dll,
igfxsrvc.dll, dwmapi.dll, igfxrENU.lrc
PrintScreen.exe 2588 ntdll.dll, wow64.dll, wow64win.dll,
wow64cpu.dll
Dropbox.exe 2648 ntdll.dll, wow64.dll, wow64win.dll,
wow64cpu.dll
MagicDisc.exe 2672 ntdll.dll, wow64.dll, wow64win.dll,
wow64cpu.dll
splwow64.exe 2728 ntdll.dll, kernel32.dll, KERNELBASE.dll,
ADVAPI32.dll, msvcrt.dll, sechost.dll,
RPCRT4.dll, USER32.dll, GDI32.dll, LPK.dll,
USP10.dll, WINSPOOL.DRV, IMM32.DLL,
MSCTF.dll, RpcRtRemote.dll, secur32.dll,
SSPICLI.DLL, credssp.dll, unidrvui.dll,
ole32.dll, VERSION.dll, OLEAUT32.dll,
mxdwdui.DLL, Comctl32.dll, SHLWAPI.dll,
mxdwdrv.dll
jusched.exe 2736 ntdll.dll, wow64.dll, wow64win.dll,
wow64cpu.dll
TCrdMain.exe 2644 ntdll.dll, kernel32.dll, KERNELBASE.dll,
TCrdEvnt.dll, TCrdMain.dll, USER32.dll,
GDI32.dll, LPK.dll, USP10.dll, msvcrt.dll,
ADVAPI32.dll, sechost.dll, RPCRT4.dll,
WTSAPI32.dll, WINSPOOL.DRV, SHELL32.dll,
SHLWAPI.dll, COMCTL32.dll, ole32.dll,
OLEAUT32.dll, gdiplus.dll, IMM32.DLL,
MSCTF.dll, uxtheme.dll, BlackPng.dll,
FnPRTSC.dll, dwmapi.dll, WINSTA.dll,
FnSticky.dll, WINMM.dll, SmoothView.dll,
MSVCR90.dll, TWarnMsg.dll, TBSMain.dll,
Mute.dll, CRYPTBASE.dll, WindowsCodecs.dll,
PROPSYS.dll, comctl32.dll, CLBCatQ.DLL,
ntmarta.dll, WLDAP32.dll, profapi.dll,
urlmon.dll, iertutil.dll, WININET.dll,
Normaliz.dll, Secur32.dll, SSPICLI.DLL,
SETUPAPI.dll, CFGMGR32.dll, DEVOBJ.dll,
apphelp.dll, FnF1.dll, TFunc2.DLL,
FnF3.dll, POWRPROF.dll, FnF4.dll, FnF5.dll,
VERSION.dll, MSVCR80.dll, CRYPTSP.dll,
rsaenh.dll, RpcRtRemote.dll, IGFXEXPS.DLL,
Brightness.dll, MSVCP90.dll, wbemprox.dll,
wbemcomn.dll, WS2_32.dll, NSI.dll,
wbemsvc.dll, FnF8Dll.dll, Wlanapi.dll,
wlanutil.dll, WINTRUST.dll, CRYPT32.dll,
MSASN1.dll, fastprox.dll, NTDSAPI.dll,
Touchpad.dll, FnSpace.dll
igfxext.exe 2784 ntdll.dll, kernel32.dll, KERNELBASE.dll,
USER32.dll, GDI32.dll, LPK.dll, USP10.dll,
msvcrt.dll, ADVAPI32.dll, sechost.dll,
RPCRT4.dll, ole32.dll, OLEAUT32.dll,
IMM32.DLL, MSCTF.dll, CRYPTBASE.dll,
uxtheme.dll, CLBCatQ.DLL, CRYPTSP.dll,
rsaenh.dll, RpcRtRemote.dll, dwmapi.dll,
igfxsrvc.dll, IGFXEXPS.DLL
igfxsrvc.exe 2612 ntdll.dll, kernel32.dll, KERNELBASE.dll,
USER32.dll, GDI32.dll, LPK.dll, USP10.dll,
msvcrt.dll, ADVAPI32.dll, sechost.dll,
RPCRT4.dll, ole32.dll, OLEAUT32.dll,
IMM32.DLL, MSCTF.dll, CRYPTBASE.dll,
uxtheme.dll, CLBCatQ.DLL, CRYPTSP.dll,
rsaenh.dll, RpcRtRemote.dll, igfxsrvc.dll,
igfxdev.dll, dxgi.dll, VERSION.dll,
dwmapi.dll, ntmarta.dll, WLDAP32.dll
LMS.exe 2116 ntdll.dll, wow64.dll, wow64win.dll,
wow64cpu.dll
wmpnetwk.exe 2228 ntdll.dll, kernel32.dll, KERNELBASE.dll,
ADVAPI32.dll, msvcrt.dll, sechost.dll,
RPCRT4.dll, USER32.dll, GDI32.dll, LPK.dll,
USP10.dll, OLEAUT32.dll, ole32.dll,
WSOCK32.dll, WS2_32.dll, NSI.dll,
IPHLPAPI.DLL, WINNSI.DLL, SHLWAPI.dll,
USERENV.dll, profapi.dll, WTSAPI32.dll,
IMM32.DLL, MSCTF.dll, CRYPTBASE.dll,
WINSTA.dll, ntmarta.dll, WLDAP32.dll,
wmdrmdev.dll, drmv2clt.dll, VERSION.dll,
MFPlat.DLL, AVRT.dll, SETUPAPI.dll,
CFGMGR32.dll, DEVOBJ.dll, SHELL32.dll,
WINTRUST.dll, CRYPT32.dll, MSASN1.dll,
CLBCatQ.DLL, CRYPTSP.dll, rsaenh.dll,
RpcRtRemote.dll, upnp.dll, WINHTTP.dll,
webio.dll, SSDPAPI.dll, SXS.DLL,
dhcpcsvc.DLL, dhcpcsvc6.DLL, wmp.dll,
gdiplus.dll, dwmapi.dll, wmploc.dll,
ieproxy.dll, windowscodecs.dll,
provsvc.dll, slc.dll, SspiCli.dll,
NETAPI32.dll, netutils.dll, srvcli.dll,
wkscli.dll, wmpps.dll, wmpmde.dll,
HTTPAPI.dll, pcwum.dll, mswsock.dll,
wshtcpip.dll, wship6.dll, BlackBox.dll,
WinSATAPI.dll, dxgi.dll, msxml6.dll,
urlmon.dll, iertutil.dll, WININET.dll,
Normaliz.dll, PROPSYS.dll, msmpeg2enc.dll,
devenum.dll, WINMM.dll, msdmo.dll,
netprofm.dll, nlaapi.dll, npmproxy.dll,
upnphost.dll, wbemprox.dll, wbemcomn.dll,
wbemsvc.dll, fastprox.dll, NTDSAPI.dll,
GPAPI.dll, credssp.dll, msxml3.dll,
DNSAPI.dll, comctl32.dll, XmlLite.dll,
LINKINFO.dll, apphelp.dll,
NetworkExplorer.dll, MPR.dll, drprov.dll,
ntlanman.dll, davclnt.dll, DAVHLPR.dll,
FirewallAPI.dll
UNS.exe 2288 ntdll.dll, wow64.dll, wow64win.dll,
wow64cpu.dll
TosSmartSrv.exe 2012 ntdll.dll, kernel32.dll, KERNELBASE.dll,
CRYPT32.dll, msvcrt.dll, MSASN1.dll,
USER32.dll, GDI32.dll, LPK.dll, USP10.dll,
ADVAPI32.dll, sechost.dll, RPCRT4.dll,
ole32.dll, OLEAUT32.dll, IMM32.DLL,
MSCTF.dll, CRYPTBASE.dll, CLBCatQ.DLL,
CRYPTSP.dll, rsaenh.dll, RpcRtRemote.dll,
SXS.DLL, SspiCli.dll, SHELL32.dll,
SHLWAPI.dll, profapi.dll, WINTRUST.DLL,
imagehlp.dll, ncrypt.dll, bcrypt.dll,
bcryptprimitives.dll, wbemprox.dll,
wbemcomn.dll, WS2_32.dll, NSI.dll,
wbemsvc.dll, fastprox.dll, NTDSAPI.dll
TosSENotify.exe 2176 ntdll.dll, kernel32.dll, KERNELBASE.dll,
TosIPCWraper.dll, ADVAPI32.dll, msvcrt.dll,
sechost.dll, RPCRT4.dll, TReport.dll,
WTSAPI32.dll, USER32.dll, GDI32.dll,
LPK.dll, USP10.dll, WINSPOOL.DRV,
SHELL32.dll, SHLWAPI.dll, COMCTL32.dll,
ole32.dll, OLEAUT32.dll, IMM32.DLL,
MSCTF.dll, uxtheme.dll, CRYPTBASE.dll,
CLBCatQ.DLL, CRYPTSP.dll, rsaenh.dll,
RpcRtRemote.dll, SXS.DLL, SspiCli.dll,
USERENV.dll, profapi.dll, wbemprox.dll,
wbemcomn.dll, WS2_32.dll, NSI.dll,
wbemsvc.dll, fastprox.dll, NTDSAPI.dll,
dwmapi.dll, WINSTA.dll
svchost.exe 3740 ntdll.dll, kernel32.dll, KERNELBASE.dll,
msvcrt.dll, sechost.dll, RPCRT4.dll,
pnrpsvc.dll, USERENV.dll, profapi.dll,
GPAPI.dll, CRYPTBASE.dll, secur32.dll,
SSPICLI.DLL, credssp.dll, RpcRtRemote.dll,
WS2_32.dll, NSI.dll, mswsock.dll,
user32.dll, GDI32.dll, LPK.dll, USP10.dll,
IMM32.DLL, MSCTF.dll, wship6.dll,
IPHLPAPI.DLL, WINNSI.DLL, dhcpcsvc.DLL,
dhcpcsvc6.DLL, sqmapi.dll, ADVAPI32.dll,
ole32.dll, SSDPAPI.DLL, SHELL32.dll,
SHLWAPI.dll, CRYPT32.dll, MSASN1.dll,
CRYPTSP.dll, rsaenh.dll, ncrypt.dll,
bcrypt.dll, p2psvc.dll, P2PGRAPH.dll,
ESENT.dll, slc.dll, XmlLite.dll, psapi.dll,
OLEAUT32.dll, AUTHZ.dll, pnrpnsp.dll,
rasadhlp.dll, ntmarta.dll, WLDAP32.dll,
schannel.DLL, drttransport.dll, drt.dll,
pcwum.dll, CLBCatQ.DLL
wuauclt.exe 3928 ntdll.dll, kernel32.dll, KERNELBASE.dll,
msvcrt.dll, ole32.dll, GDI32.dll,
USER32.dll, LPK.dll, USP10.dll, RPCRT4.dll,
ADVAPI32.dll, sechost.dll, OLEAUT32.dll,
SHLWAPI.dll, IMM32.DLL, MSCTF.dll,
profapi.dll, wucltux.dll, gdiplus.dll,
MSIMG32.dll, SHELL32.dll, OLEACC.dll,
slc.dll, UxTheme.dll, DUser.dll,
Cabinet.dll, CRYPT32.dll, MSASN1.dll,
WINTRUST.dll, comctl32.dll, CRYPTBASE.dll,
CLBCatQ.DLL, CRYPTSP.dll, rsaenh.dll,
RpcRtRemote.dll, wups2.dll
WmiPrvSE.exe 3192 ntdll.dll, kernel32.dll, KERNELBASE.dll,
ADVAPI32.dll, msvcrt.dll, sechost.dll,
RPCRT4.dll, USER32.dll, GDI32.dll, LPK.dll,
USP10.dll, wbemcomn.dll, OLEAUT32.dll,
ole32.dll, WS2_32.dll, NSI.dll,
FastProx.dll, NTDSAPI.dll, NCObjAPI.DLL,
IMM32.DLL, MSCTF.dll, CRYPTBASE.dll,
ntmarta.dll, WLDAP32.dll, CLBCatQ.DLL,
CRYPTSP.dll, rsaenh.dll, RpcRtRemote.dll,
wbemsvc.dll, wmiutils.dll, wmiprov.dll
sppsvc.exe 3220 ntdll.dll, kernel32.dll, KERNELBASE.dll,
ADVAPI32.dll, msvcrt.dll, sechost.dll,
RPCRT4.dll, ole32.dll, GDI32.dll,
USER32.dll, LPK.dll, USP10.dll, IMM32.DLL,
MSCTF.dll, CRYPTBASE.dll, RpcRtRemote.dll,
CRYPTSP.dll, rsaenh.dll, sppwinob.dll,
sppobjs.dll, DNSAPI.dll, WS2_32.dll,
NSI.dll, OLEAUT32.dll, CLBCatQ.DLL,
SspiCli.dll
cmd.exe 756 ntdll.dll, kernel32.dll, KERNELBASE.dll,
msvcrt.dll, WINBRAND.dll, USER32.dll,
GDI32.dll, LPK.dll, USP10.dll, IMM32.DLL,
MSCTF.dll, apphelp.dll
conhost.exe 772 ntdll.dll, kernel32.dll, KERNELBASE.dll,
GDI32.dll, USER32.dll, LPK.dll, USP10.dll,
msvcrt.dll, IMM32.dll, MSCTF.dll,
ole32.dll, RPCRT4.dll, OLEAUT32.dll,
uxtheme.dll, dwmapi.dll, ADVAPI32.dll,
sechost.dll, comctl32.DLL, SHLWAPI.dll,
CRYPTBASE.dll, CLBCatQ.DLL
tasklist.exe 3104 ntdll.dll, kernel32.dll, KERNELBASE.dll,
ADVAPI32.dll, msvcrt.dll, sechost.dll,
RPCRT4.dll, USER32.dll, GDI32.dll, LPK.dll,
USP10.dll, ole32.dll, VERSION.dll, MPR.dll,
OLEAUT32.dll, Secur32.dll, SSPICLI.DLL,
WS2_32.dll, NSI.dll, framedynos.dll,
WTSAPI32.dll, NETAPI32.dll, netutils.dll,
srvcli.dll, wkscli.dll, dbghelp.dll,
SHLWAPI.dll, IMM32.DLL, MSCTF.dll,
CRYPTBASE.dll, CLBCatQ.DLL, wbemprox.dll,
wbemcomn.dll, Winsta.dll, CRYPTSP.dll,
rsaenh.dll, RpcRtRemote.dll, wbemsvc.dll,
fastprox.dll, NTDSAPI.dll, wmiutils.dll
WmiPrvSE.exe 3884 ntdll.dll, kernel32.dll, KERNELBASE.dll,
ADVAPI32.dll, msvcrt.dll, sechost.dll,
RPCRT4.dll, USER32.dll, GDI32.dll, LPK.dll,
USP10.dll, wbemcomn.dll, OLEAUT32.dll,
ole32.dll, WS2_32.dll, NSI.dll,
FastProx.dll, NTDSAPI.dll, NCObjAPI.DLL,
IMM32.DLL, MSCTF.dll, CRYPTBASE.dll,
ntmarta.dll, WLDAP32.dll, CLBCatQ.DLL,
wbemprox.dll, CRYPTSP.dll, rsaenh.dll,
RpcRtRemote.dll, wbemsvc.dll, wmiutils.dll,
cimwin32.dll, framedynos.dll, SspiCli.dll,
WTSAPI32.dll, WINBRAND.dll
#27
Posted 20 February 2013 - 01:50 PM
RKinner
-
- Expert
-
- 24,625 posts
Malware Expert
I'm on a trip until Thursday night so I probably won't be able to do much with it until Friday.
#28
Posted 21 February 2013 - 07:08 PM
evolnomis
- Topic Starter
-
- Member
-
- 51 posts
Member
not a problem. thanks for all the effort. I know it must take up a lot of your free time.
Simon
Simon
#29
Posted 25 February 2013 - 10:42 AM
RKinner
-
- Expert
-
- 24,625 posts
Malware Expert
I'm still seeing something trying to use the modem. I think it's Intel® Management and Security - which you do not need unless you are part of a large corporation. It is installed by default on Intel computers - lives down in the Bios from what I've read. My win 7 is AMD so doesn't have it.
Follow the instructions here:
http://download.leno.../sf10-d0098.pdf
Until you get to step 4. Then change it to Disabled and Save And exit.
Run OTL, quickscan and post the log so I can see if that turned it off. Then make a new proc mon log with internet disconnected and only vlc playing a video. Is it still lagging?
Follow the instructions here:
http://download.leno.../sf10-d0098.pdf
Until you get to step 4. Then change it to Disabled and Save And exit.
Run OTL, quickscan and post the log so I can see if that turned it off. Then make a new proc mon log with internet disconnected and only vlc playing a video. Is it still lagging?
#30
Posted 26 February 2013 - 01:12 PM
evolnomis
- Topic Starter
-
- Member
-
- 51 posts
Member
I tried to find the BIOS menu after a fresh reboot and was never able to get to the menu. I tried F1, F2, ESC, F8, F12...none worked...they just brought me to other tools or startup menus but none to BIOS.
and I will be on vacation for the next 3 days so i won't be able to do anything from my computer until I return. Sorry and thanks for the help thus far.
and I will be on vacation for the next 3 days so i won't be able to do anything from my computer until I return. Sorry and thanks for the help thus far.
Similar Topics
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users
As Featured On:
Sign In
Create Account
