IPB

Welcome Guest ( Log In | Register )

 
Reply to this topicStart new topic
> TDSSKiller did not remove Rootkit.Boot.Pihar.c
RichZ
post 19.07.2012 04:13
Post #1


Newbie
*

Group: Members
Posts: 2
Joined: 18.07.2012




I am running Windows 7 Professional on a tablet - HP Slate 500. I started getting the BSOD a few minutes after boot with a stop at 0x000008E.

I tried TDSSKiller, which detects the problem. The screen says its cured and the log says it's copied to quarantine but it's still there.

One observation - I can't shut-down. It always goes blue screen.

My log:

14:46:58.0899 4296 TDSS rootkit removing tool 2.7.46.0 Jul 16 2012 22:10:11
14:46:58.0993 4296 ============================================================
14:46:58.0993 4296 Current date / time: 2012/07/18 14:46:58.0993
14:46:58.0993 4296 SystemInfo:
14:46:58.0993 4296
14:46:58.0993 4296 OS Version: 6.1.7600 ServicePack: 0.0
14:46:58.0993 4296 Product type: Workstation
14:46:58.0993 4296 ComputerName: OMNISLATE
14:46:58.0993 4296 UserName: Rich
14:46:58.0993 4296 Windows directory: C:\Windows
14:46:58.0993 4296 System windows directory: C:\Windows
14:46:58.0993 4296 Processor architecture: Intel x86
14:46:58.0993 4296 Number of processors: 2
14:46:58.0993 4296 Page size: 0x1000
14:46:58.0993 4296 Boot type: Normal boot
14:46:58.0993 4296 ============================================================
14:47:02.0440 4296 Drive \Device\Harddisk0\DR0 - Size: 0xEE8156000 (59.63 Gb), SectorSize: 0x200, Cylinders: 0x1E67, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
14:47:02.0534 4296 Drive \Device\Harddisk1\DR1 - Size: 0x1DDBF8000 (7.46 Gb), SectorSize: 0x200, Cylinders: 0x3CE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
14:47:02.0768 4296 Drive \Device\Harddisk2\DR2 - Size: 0xFAE100000 (62.72 Gb), SectorSize: 0x200, Cylinders: 0x1FFB, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
14:47:02.0768 4296 ============================================================
14:47:02.0768 4296 \Device\Harddisk0\DR0:
14:47:02.0768 4296 MBR partitions:
14:47:02.0768 4296 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
14:47:02.0768 4296 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x76A7000
14:47:02.0768 4296 \Device\Harddisk0\DR0\Partition2: MBR, Type 0xC, StartLBA 0x770B000, BlocksNum 0x352B0
14:47:02.0768 4296 \Device\Harddisk1\DR1:
14:47:02.0768 4296 MBR partitions:
14:47:02.0768 4296 \Device\Harddisk1\DR1\Partition0: MBR, Type 0xB, StartLBA 0x3F, BlocksNum 0xEEDD21
14:47:02.0768 4296 \Device\Harddisk2\DR2:
14:47:02.0768 4296 MBR partitions:
14:47:02.0768 4296 ============================================================
14:47:02.0783 4296 C: <-> \Device\Harddisk0\DR0\Partition1
14:47:02.0783 4296 D: <-> \Device\Harddisk0\DR0\Partition2
14:47:02.0783 4296 ============================================================
14:47:02.0783 4296 Initialize success
14:47:02.0783 4296 ============================================================
14:47:05.0747 4716 ============================================================
14:47:05.0747 4716 Scan started
14:47:05.0747 4716 Mode: Manual;
14:47:05.0747 4716 ============================================================
14:47:08.0462 4716 06683176 - ok
14:47:08.0540 4716 1394ohci (6d2aca41739bfe8cb86ee8e85f29697d) C:\Windows\system32\DRIVERS\1394ohci.sys
14:47:08.0571 4716 1394ohci - ok
14:47:08.0602 4716 19493598 - ok
14:47:08.0665 4716 43949708 - ok
14:47:08.0774 4716 ACPI (f0e07d144c8685b8774bc32fc8da4df0) C:\Windows\system32\DRIVERS\ACPI.sys
14:47:08.0789 4716 ACPI - ok
14:47:08.0805 4716 AcpiPmi (98d81ca942d19f7d9153b095162ac013) C:\Windows\system32\DRIVERS\acpipmi.sys
14:47:08.0821 4716 AcpiPmi - ok
14:47:08.0852 4716 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
14:47:08.0867 4716 AdobeARMservice - ok
14:47:08.0930 4716 AdobeFlashPlayerUpdateSvc (5e1a953c6472e7bb644892a4d0df5e72) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
14:47:08.0945 4716 AdobeFlashPlayerUpdateSvc - ok
14:47:09.0023 4716 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
14:47:09.0039 4716 adp94xx - ok
14:47:09.0086 4716 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
14:47:09.0101 4716 adpahci - ok
14:47:09.0133 4716 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
14:47:09.0148 4716 adpu320 - ok
14:47:09.0273 4716 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\Windows\System32\aelupsvc.dll
14:47:09.0273 4716 AeLookupSvc - ok
14:47:09.0429 4716 AESTFilters (827dbc22c96eecf6d36a13162fabafd3) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_7293d4b16ec87cbb\aestsrv.exe
14:47:09.0445 4716 AESTFilters - ok
14:47:10.0833 4716 AFD (0db7a48388d54d154ebec120461a0fcd) C:\Windows\system32\drivers\afd.sys
14:47:10.0864 4716 AFD - ok
14:47:11.0239 4716 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\DRIVERS\agp440.sys
14:47:11.0270 4716 agp440 - ok
14:47:11.0301 4716 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
14:47:11.0332 4716 aic78xx - ok
14:47:11.0379 4716 ALG (18a54e132947cd98fea9accc57f98f13) C:\Windows\System32\alg.exe
14:47:11.0441 4716 ALG - ok
14:47:11.0457 4716 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\DRIVERS\aliide.sys
14:47:11.0473 4716 aliide - ok
14:47:11.0488 4716 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\DRIVERS\amdagp.sys
14:47:11.0504 4716 amdagp - ok
14:47:11.0535 4716 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\DRIVERS\amdide.sys
14:47:11.0551 4716 amdide - ok
14:47:11.0582 4716 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
14:47:11.0597 4716 AmdK8 - ok
14:47:11.0629 4716 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
14:47:11.0660 4716 AmdPPM - ok
14:47:11.0675 4716 amdsata (19ce906b4cdc11fc4fef5745f33a63b6) C:\Windows\system32\drivers\amdsata.sys
14:47:11.0691 4716 amdsata - ok
14:47:11.0738 4716 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
14:47:11.0753 4716 amdsbs - ok
14:47:11.0769 4716 amdxata (869e67d66be326a5a9159fba8746fa70) C:\Windows\system32\drivers\amdxata.sys
14:47:11.0785 4716 amdxata - ok
14:47:11.0816 4716 AppID (feb834c02ce1e84b6a38f953ca067706) C:\Windows\system32\drivers\appid.sys
14:47:11.0831 4716 AppID - ok
14:47:11.0863 4716 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\Windows\System32\appidsvc.dll
14:47:11.0878 4716 AppIDSvc - ok
14:47:11.0894 4716 Appinfo (7dead9e3f65dcb2794f2711003bbf650) C:\Windows\System32\appinfo.dll
14:47:11.0909 4716 Appinfo - ok
14:47:11.0956 4716 AppMgmt (a45d184df6a8803da13a0b329517a64a) C:\Windows\System32\appmgmts.dll
14:47:11.0972 4716 AppMgmt - ok
14:47:12.0003 4716 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
14:47:12.0128 4716 arc - ok
14:47:12.0143 4716 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
14:47:12.0237 4716 arcsas - ok
14:47:12.0284 4716 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
14:47:12.0315 4716 AsyncMac - ok
14:47:12.0393 4716 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\DRIVERS\atapi.sys
14:47:12.0393 4716 atapi - ok
14:47:12.0845 4716 AudioEndpointBuilder (510c873bfa135aa829f4180352772734) C:\Windows\System32\Audiosrv.dll
14:47:13.0048 4716 AudioEndpointBuilder - ok
14:47:13.0073 4716 Audiosrv (510c873bfa135aa829f4180352772734) C:\Windows\System32\Audiosrv.dll
14:47:13.0088 4716 Audiosrv - ok
14:47:13.0167 4716 AxInstSV (dd6a431b43e34b91a767d1ce33728175) C:\Windows\System32\AxInstSV.dll
14:47:13.0223 4716 AxInstSV - ok
14:47:13.0299 4716 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
14:47:13.0396 4716 b06bdrv - ok
14:47:13.0495 4716 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
14:47:13.0621 4716 b57nd60x - ok
14:47:13.0935 4716 BBSvc (0d1ea7509f394d8b705b239ee71f5118) C:\Program Files\Microsoft\BingBar\BBSvc.EXE
14:47:14.0191 4716 BBSvc - ok
14:47:14.0262 4716 bcm (54c533ae49cdf9c4630e80379a1090fe) C:\Windows\system32\DRIVERS\drxvi314.sys
14:47:14.0972 4716 bcm - ok
14:47:37.0059 4716 BCM43XX (9c3b534854f0152ed4711d936a2192eb) C:\Windows\system32\DRIVERS\bcmwl6.sys
14:47:37.0200 4716 BCM43XX - ok
14:47:37.0356 4716 bcmbusctr (44a70e32615770a4ec60e0267c0c8408) C:\Windows\system32\DRIVERS\BcmBusCtr.sys
14:47:37.0715 4716 bcmbusctr - ok
14:47:37.0730 4716 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\Windows\System32\bdesvc.dll
14:47:37.0824 4716 BDESVC - ok
14:47:37.0839 4716 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
14:47:37.0949 4716 Beep - ok
14:47:38.0042 4716 BFE (85ac71c045ceb054ed48a7841aae0c11) C:\Windows\System32\bfe.dll
14:47:38.0058 4716 BFE - ok
14:47:38.0183 4716 BITS (53f476476f55a27f580661bde09c4ec4) C:\Windows\System32\qmgr.dll
14:47:38.0370 4716 BITS - ok
14:47:38.0401 4716 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
14:47:38.0479 4716 blbdrive - ok
14:47:38.0510 4716 bowser (9a5c671b7fbae4865149bb11f59b91b2) C:\Windows\system32\DRIVERS\bowser.sys
14:47:38.0510 4716 bowser - ok
14:47:38.0557 4716 BRCMDECO (4f4b36b401f03178f805b1fde1b030d4) C:\Windows\system32\DRIVERS\BRCMHD32.sys
14:47:38.0588 4716 BRCMDECO - ok
14:47:38.0604 4716 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
14:47:38.0697 4716 BrFiltLo - ok
14:47:38.0713 4716 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
14:47:38.0807 4716 BrFiltUp - ok
14:47:38.0838 4716 Browser (598e1280e7ff3744f4b8329366cc5635) C:\Windows\System32\browser.dll
14:47:38.0853 4716 Browser - ok
14:47:38.0916 4716 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
14:47:38.0978 4716 Brserid - ok
14:47:39.0009 4716 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
14:47:39.0072 4716 BrSerWdm - ok
14:47:39.0119 4716 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
14:47:39.0165 4716 BrUsbMdm - ok
14:47:39.0181 4716 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
14:47:39.0259 4716 BrUsbSer - ok
14:47:39.0306 4716 BthEnum (2865a5c8e98c70c605f417908cebb3a4) C:\Windows\system32\drivers\BthEnum.sys
14:47:39.0384 4716 BthEnum - ok
14:47:39.0399 4716 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
14:47:39.0446 4716 BTHMODEM - ok
14:47:39.0477 4716 BthPan (ad1872e5829e8a2c3b5b4b641c3eab0e) C:\Windows\system32\DRIVERS\bthpan.sys
14:47:39.0524 4716 BthPan - ok
14:47:39.0602 4716 BTHPORT (63f969e2100b255430d624727c26fa08) C:\Windows\System32\Drivers\BTHport.sys
14:47:39.0633 4716 BTHPORT - ok
14:47:39.0680 4716 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\Windows\system32\bthserv.dll
14:47:39.0711 4716 bthserv - ok
14:47:39.0758 4716 BTHUSB (1c786c1eadf2e19c55153d4653c1eafd) C:\Windows\System32\Drivers\BTHUSB.sys
14:47:39.0789 4716 BTHUSB - ok
14:47:39.0836 4716 btwampfl (7061fe1715e5aded120fe4c608609357) C:\Windows\system32\drivers\btwampfl.sys
14:47:39.0914 4716 btwampfl - ok
14:47:39.0961 4716 btwaudio (a95b2fb3ca7b555b5cb306153f48ced8) C:\Windows\system32\drivers\btwaudio.sys
14:47:40.0086 4716 btwaudio - ok
14:47:40.0133 4716 btwavdt (1f9cd885f1c548be93962ccabdb632e4) C:\Windows\system32\drivers\btwavdt.sys
14:47:40.0179 4716 btwavdt - ok
14:47:40.0304 4716 btwdins (e1f6f7409bd843cfa05e2c314fe2c3bf) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
14:47:40.0320 4716 btwdins - ok
14:47:40.0335 4716 btwl2cap (de53089f0678cb5f0afeb867acb0fb05) C:\Windows\system32\DRIVERS\btwl2cap.sys
14:47:40.0413 4716 btwl2cap - ok
14:47:40.0445 4716 btwrchid (a2d6c7b7b62a6c42dcb01204a6bd6fc2) C:\Windows\system32\DRIVERS\btwrchid.sys
14:47:40.0507 4716 btwrchid - ok
14:47:40.0523 4716 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
14:47:40.0601 4716 cdfs - ok
14:47:40.0647 4716 cdrom (ba6e70aa0e6091bc39de29477d866a77) C:\Windows\system32\DRIVERS\cdrom.sys
14:47:40.0694 4716 cdrom - ok
14:47:40.0710 4716 CertPropSvc (628a9e30ec5e18dd5de6be4dbdc12198) C:\Windows\System32\certprop.dll
14:47:40.0772 4716 CertPropSvc - ok
14:47:40.0788 4716 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
14:47:40.0835 4716 circlass - ok
14:47:40.0897 4716 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
14:47:40.0913 4716 CLFS - ok
14:47:40.0959 4716 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:47:41.0006 4716 clr_optimization_v2.0.50727_32 - ok
14:47:41.0084 4716 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:47:41.0131 4716 clr_optimization_v4.0.30319_32 - ok
14:47:41.0162 4716 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
14:47:41.0209 4716 CmBatt - ok
14:47:41.0225 4716 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\DRIVERS\cmdide.sys
14:47:41.0287 4716 cmdide - ok
14:47:41.0349 4716 CNG (db5e008b3744dd60c8498cbbf2a1cfa6) C:\Windows\system32\Drivers\cng.sys
14:47:41.0349 4716 CNG - ok
14:47:41.0381 4716 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
14:47:41.0381 4716 Compbatt - ok
14:47:41.0412 4716 CompositeBus (f1724ba27e97d627f808fb0ba77a28a6) C:\Windows\system32\DRIVERS\CompositeBus.sys
14:47:41.0474 4716 CompositeBus - ok
14:47:41.0490 4716 COMSysApp - ok
14:47:41.0537 4716 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
14:47:41.0583 4716 crcdisk - ok
14:47:41.0646 4716 CryptSvc (520a108a2657f4bca7fced9ca7d885de) C:\Windows\system32\cryptsvc.dll
14:47:41.0646 4716 CryptSvc - ok
14:47:41.0708 4716 CSC (27c9490bdd0ae48911ab8cf1932591ed) C:\Windows\system32\drivers\csc.sys
14:47:41.0833 4716 CSC - ok
14:47:41.0927 4716 CscService (56fb5f222ea30d3d3fc459879772cb73) C:\Windows\System32\cscsvc.dll
14:47:41.0942 4716 CscService - ok
14:47:41.0973 4716 dc3d (94010220445f181ade8e7ca9c3a98bf4) C:\Windows\system32\DRIVERS\dc3d.sys
14:47:42.0020 4716 dc3d - ok
14:47:42.0145 4716 DcomLaunch (b82cd39e336973359d7c9bf911e8e84f) C:\Windows\system32\rpcss.dll
14:47:42.0161 4716 DcomLaunch - ok
14:47:42.0223 4716 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\Windows\System32\defragsvc.dll
14:47:42.0285 4716 defragsvc - ok
14:47:42.0317 4716 DfsC (83d1ecea8faae75604c0fa49ac7ad996) C:\Windows\system32\Drivers\dfsc.sys
14:47:42.0348 4716 DfsC - ok
14:47:42.0410 4716 Dhcp (c56495fbd770712367cad35e5de72da6) C:\Windows\system32\dhcpcore.dll
14:47:42.0426 4716 Dhcp - ok
14:47:42.0457 4716 DIFMBUS (3a3b89d0b10a24cc031f98d2afdca5ce) C:\Windows\system32\DRIVERS\DIFMBUS.sys
14:47:42.0519 4716 DIFMBUS - ok
14:47:42.0582 4716 DIFMCVsp (2ac5571844e89e2acfee99a79eb7dab9) C:\Windows\system32\DRIVERS\DIFMCVsp.sys
14:47:42.0800 4716 DIFMCVsp - ok
14:47:42.0863 4716 DIFMMdm (daa170e853a84d01516a75de8b96ac9a) C:\Windows\system32\DRIVERS\DIFMMdm.sys
14:47:42.0909 4716 DIFMMdm - ok
14:47:42.0941 4716 DIFMNET (d1563cf53d3347a40d548f2b7c209d9f) C:\Windows\system32\DRIVERS\DIFMNET.sys
14:47:42.0987 4716 DIFMNET - ok
14:47:43.0034 4716 DIFMNVsp (6f847c47daf9ab1cc06e85778877ff0c) C:\Windows\system32\DRIVERS\DIFMNVsp.sys
14:47:43.0065 4716 DIFMNVsp - ok
14:47:43.0112 4716 DIFMVsp (d1a8366667c084c23673707d7af0dc3d) C:\Windows\system32\DRIVERS\DIFMVsp.sys
14:47:43.0143 4716 DIFMVsp - ok
14:47:43.0206 4716 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
14:47:43.0221 4716 discache - ok
14:47:43.0268 4716 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
14:47:43.0268 4716 Disk - ok
14:47:43.0299 4716 Dnscache (b15be77a2bacf9c3177d27518afe26a9) C:\Windows\System32\dnsrslvr.dll
14:47:43.0315 4716 Dnscache - ok
14:47:43.0362 4716 dnWhoDisp (201d48cd1c4e874e071444ce7c874813) C:\Program Files\Rockwell Software\RSLINX\dnwhodisp.exe
14:47:43.0970 4716 dnWhoDisp - ok
14:47:44.0017 4716 dot3svc (4408c85c21eea48eb0ce486baeef0502) C:\Windows\System32\dot3svc.dll
14:47:44.0095 4716 dot3svc - ok
14:47:44.0142 4716 DPS (7fa81c6e11caa594adb52084da73a1e5) C:\Windows\system32\dps.dll
14:47:44.0157 4716 DPS - ok
14:47:44.0298 4716 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
14:47:44.0345 4716 drmkaud - ok
14:47:44.0516 4716 DXGKrnl (1679a4669326cb1a67cc95658d273234) C:\Windows\System32\drivers\dxgkrnl.sys
14:47:44.0969 4716 DXGKrnl - ok
14:47:45.0062 4716 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\Windows\System32\eapsvc.dll
14:47:45.0062 4716 EapHost - ok
14:48:02.0363 4716 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
14:48:02.0503 4716 ebdrv - ok
14:48:03.0486 4716 EFS (c2243ff9e9aad0c30e8b1a0914da15b6) C:\Windows\System32\lsass.exe
14:48:03.0704 4716 EFS - ok
14:48:04.0625 4716 ehRecvr (1697c39978cd69f6fbc15302edcece1f) C:\Windows\ehome\ehRecvr.exe
14:48:04.0687 4716 ehRecvr - ok
14:48:04.0765 4716 ehSched (d389bff34f80caede417bf9d1507996a) C:\Windows\ehome\ehsched.exe
14:48:04.0781 4716 ehSched - ok
14:48:04.0952 4716 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
14:48:05.0015 4716 elxstor - ok
14:48:05.0030 4716 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\DRIVERS\errdev.sys
14:48:05.0108 4716 ErrDev - ok
14:48:05.0202 4716 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\Windows\system32\es.dll
14:48:05.0217 4716 EventSystem - ok
14:48:05.0264 4716 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
14:48:05.0264 4716 exfat - ok
14:48:05.0327 4716 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
14:48:05.0342 4716 fastfat - ok
14:48:05.0529 4716 Fax (f7ea23cc5e6bf2181f3f399d54f6efc1) C:\Windows\system32\fxssvc.exe
14:48:05.0561 4716 Fax - ok
14:48:05.0685 4716 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
14:48:05.0701 4716 fdc - ok
14:48:05.0748 4716 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\Windows\system32\fdPHost.dll
14:48:05.0763 4716 fdPHost - ok
14:48:05.0810 4716 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\Windows\system32\fdrespub.dll
14:48:05.0810 4716 FDResPub - ok
14:48:05.0857 4716 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
14:48:05.0857 4716 FileInfo - ok
14:48:06.0325 4716 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
14:48:06.0356 4716 Filetrace - ok
14:48:06.0403 4716 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
14:48:06.0481 4716 flpydisk - ok
14:48:06.0528 4716 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
14:48:06.0543 4716 FltMgr - ok
14:48:07.0121 4716 FontCache (7fe4995528a7529a761875151ee3d512) C:\Windows\system32\FntCache.dll
14:48:07.0183 4716 FontCache - ok
14:48:07.0230 4716 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
14:48:07.0261 4716 FontCache3.0.0.0 - ok
14:48:07.0308 4716 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
14:48:07.0323 4716 FsDepends - ok
14:48:07.0370 4716 fssfltr (b0082808a6856a252f7cdd939892ce50) C:\Windows\system32\DRIVERS\fssfltr.sys
14:48:07.0386 4716 fssfltr - ok
14:48:08.0431 4716 fsssvc (28ddeeec44e988657b732cf404d504cb) C:\Program Files\Windows Live\Family Safety\fsssvc.exe
14:48:08.0478 4716 fsssvc - ok
14:48:09.0211 4716 Fs_Rec (500a9814fd9446a8126858a5a7f7d273) C:\Windows\system32\drivers\Fs_Rec.sys
14:48:09.0211 4716 Fs_Rec - ok
14:48:10.0007 4716 fvevol (dafbd9fe39197495aed6d51f3b85b5d2) C:\Windows\system32\DRIVERS\fvevol.sys
14:48:10.0022 4716 fvevol - ok
14:48:10.0069 4716 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
14:48:10.0163 4716 gagp30kx - ok
14:48:10.0256 4716 gpsvc (8ba3c04702bf8f927ab36ae8313ca4ee) C:\Windows\System32\gpsvc.dll
14:48:10.0272 4716 gpsvc - ok
14:48:10.0475 4716 Harmony (732ccd45411dd65fb8e442b12f3dbd7e) C:\Program Files\Rockwell Software\RSCommon\RSOBSERV.EXE
14:48:11.0598 4716 Harmony - ok
14:48:11.0645 4716 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
14:48:11.0754 4716 hcw85cir - ok
14:48:11.0910 4716 HdAudAddService (3530cad25deba7dc7de8bb51632cbc5f) C:\Windows\system32\drivers\HdAudio.sys
14:48:11.0972 4716 HdAudAddService - ok
14:48:12.0003 4716 HDAudBus (717a2207fd6f13ad3e664c7d5a43c7bf) C:\Windows\system32\DRIVERS\HDAudBus.sys
14:48:12.0019 4716 HDAudBus - ok
14:48:12.0081 4716 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
14:48:12.0113 4716 HidBatt - ok
14:48:12.0144 4716 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
14:48:12.0191 4716 HidBth - ok
14:48:12.0284 4716 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
14:48:12.0393 4716 HidIr - ok
14:48:12.0783 4716 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\Windows\system32\hidserv.dll
14:48:12.0815 4716 hidserv - ok
14:48:12.0830 4716 HidUsb (25072fb35ac90b25f9e4e3bacf774102) C:\Windows\system32\DRIVERS\hidusb.sys
14:48:13.0220 4716 HidUsb - ok
14:48:13.0251 4716 hkmsvc (741c2a45ca8407e374aaba3e330b7872) C:\Windows\system32\kmsvc.dll
14:48:13.0314 4716 hkmsvc - ok
14:48:13.0376 4716 HomeGroupListener (a768ca158bb06782a2835b907f4873c3) C:\Windows\system32\ListSvc.dll
14:48:13.0439 4716 HomeGroupListener - ok
14:48:14.0889 4716 HomeGroupProvider (fb08dec5ef43d0c66d83b8e9694e7549) C:\Windows\system32\provsvc.dll
14:48:14.0921 4716 HomeGroupProvider - ok
14:48:15.0014 4716 hpqwmiex (ef3ea06057132138b4e5895a61601dbe) C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
14:48:15.0014 4716 hpqwmiex - ok
14:48:15.0108 4716 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\DRIVERS\HpSAMD.sys
14:48:15.0155 4716 HpSAMD - ok
14:48:15.0201 4716 HPWMISVC (760d9b546ab3ec551d7827c88c026194) C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
14:48:15.0201 4716 HPWMISVC - ok
14:48:15.0342 4716 HTTP (c531c7fd9e8b62021112787c4e2c5a5a) C:\Windows\system32\drivers\HTTP.sys
14:48:15.0373 4716 HTTP - ok
14:48:15.0420 4716 hwpolicy (8305f33cde89ad6c7a0763ed0b5a8d42) C:\Windows\system32\drivers\hwpolicy.sys
14:48:15.0420 4716 hwpolicy - ok
14:48:15.0467 4716 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\DRIVERS\i8042prt.sys
14:48:15.0482 4716 i8042prt - ok
14:48:15.0623 4716 iaStorV (71f1a494fedf4b33c02c4a6a28d6d9e9) C:\Windows\system32\drivers\iaStorV.sys
14:48:15.0638 4716 iaStorV - ok
14:48:15.0888 4716 idsvc (5af815eb5bc9802e5a064e2ba62bfc0c) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
14:48:15.0919 4716 idsvc - ok
14:48:16.0044 4716 igd (56983a00e6c4f38f7b69ca3171a044ad) C:\Windows\system32\DRIVERS\igdkmd32.sys
14:48:16.0106 4716 igd - ok
14:48:16.0153 4716 igfx (56983a00e6c4f38f7b69ca3171a044ad) C:\Windows\system32\DRIVERS\igdkmd32.sys
14:48:16.0153 4716 igfx - ok
14:48:16.0200 4716 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
14:48:16.0231 4716 iirsp - ok
14:48:16.0418 4716 IKEEXT (fac0ee6562b121b1399d6e855583f7a5) C:\Windows\System32\ikeext.dll
14:48:16.0449 4716 IKEEXT - ok
14:48:16.0496 4716 IntcHdmiAddService (5cf0990fc1f6676f7b00366ab224da92) C:\Windows\system32\drivers\IntcHdmi.sys
14:48:16.0512 4716 IntcHdmiAddService - ok
14:48:16.0527 4716 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\DRIVERS\intelide.sys
14:48:16.0574 4716 intelide - ok
14:48:16.0605 4716 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
14:48:16.0621 4716 intelppm - ok
14:48:16.0699 4716 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\Windows\system32\ipbusenum.dll
14:48:16.0793 4716 IPBusEnum - ok
14:48:16.0824 4716 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:48:16.0871 4716 IpFilterDriver - ok
14:48:16.0933 4716 iphlpsvc (477397b432a256a50ee7e4339eb9ea14) C:\Windows\System32\iphlpsvc.dll
14:48:16.0949 4716 iphlpsvc - ok
14:48:16.0980 4716 IPMIDRV (e4454b6c37d7ffd5649611f6496308a7) C:\Windows\system32\DRIVERS\IPMIDrv.sys
14:48:17.0058 4716 IPMIDRV - ok
14:48:17.0089 4716 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
14:48:17.0136 4716 IPNAT - ok
14:48:17.0214 4716 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
14:48:17.0276 4716 IRENUM - ok
14:48:17.0339 4716 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\DRIVERS\isapnp.sys
14:48:17.0354 4716 isapnp - ok
14:48:17.0417 4716 iScsiPrt (ed46c223ae46c6866ab77cdc41c404b7) C:\Windows\system32\DRIVERS\msiscsi.sys
14:48:17.0432 4716 iScsiPrt - ok
14:48:17.0526 4716 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys
14:48:17.0619 4716 kbdclass - ok
14:48:17.0729 4716 kbdhid (3d9f0ebf350edcfd6498057301455964) C:\Windows\system32\DRIVERS\kbdhid.sys
14:48:17.0791 4716 kbdhid - ok
14:48:17.0853 4716 KeyIso (c2243ff9e9aad0c30e8b1a0914da15b6) C:\Windows\system32\lsass.exe
14:48:17.0869 4716 KeyIso - ok
14:48:17.0900 4716 KSecDD (52fc17c8589f11747d01d3cf592673d0) C:\Windows\system32\Drivers\ksecdd.sys
14:48:17.0900 4716 KSecDD - ok
14:48:17.0947 4716 KSecPkg (3e5474b03568cfab834da3c38e8c9efa) C:\Windows\system32\Drivers\ksecpkg.sys
14:48:17.0947 4716 KSecPkg - ok
14:48:18.0072 4716 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\Windows\system32\msdtckrm.dll
14:48:18.0165 4716 KtmRm - ok
14:48:18.0197 4716 LanmanServer (8f6bf790d3168224c16f2af68a84438c) C:\Windows\system32\srvsvc.dll
14:48:18.0212 4716 LanmanServer - ok
14:48:18.0259 4716 LanmanWorkstation (b9891f885dcf1f0513a51cb58493cb1f) C:\Windows\System32\wkssvc.dll
14:48:18.0259 4716 LanmanWorkstation - ok
14:48:18.0306 4716 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
14:48:18.0321 4716 lltdio - ok
14:48:18.0368 4716 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\Windows\System32\lltdsvc.dll
14:48:18.0384 4716 lltdsvc - ok
14:48:18.0446 4716 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\Windows\System32\lmhsvc.dll
14:48:18.0446 4716 lmhosts - ok
14:48:18.0555 4716 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
14:48:18.0587 4716 LSI_FC - ok
14:48:18.0774 4716 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
14:48:18.0774 4716 LSI_SAS - ok
14:48:18.0805 4716 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
14:48:18.0821 4716 LSI_SAS2 - ok
14:48:18.0867 4716 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
14:48:18.0961 4716 LSI_SCSI - ok
14:48:19.0039 4716 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
14:48:19.0148 4716 luafv - ok
14:48:19.0226 4716 massfilter_hs (3c7b3072c3c5cc23f5fd46f8dfda7480) C:\Windows\system32\drivers\massfilter_hs.sys
14:48:19.0289 4716 massfilter_hs - ok
14:48:19.0320 4716 Mcx2Svc (e2b0887816ed336685954e3d8fdaa51d) C:\Windows\system32\Mcx2Svc.dll
14:48:19.0445 4716 Mcx2Svc - ok
14:48:19.0476 4716 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
14:48:19.0507 4716 megasas - ok
14:48:19.0585 4716 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
14:48:19.0601 4716 MegaSR - ok
14:48:19.0632 4716 Microsoft SharePoint Workspace Audit Service - ok
14:48:19.0803 4716 MKCBNX - ok
14:48:19.0975 4716 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
14:48:19.0975 4716 MMCSS - ok
14:48:20.0022 4716 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
14:48:20.0053 4716 Modem - ok
14:48:20.0069 4716 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
14:48:20.0100 4716 monitor - ok
14:48:20.0209 4716 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
14:48:20.0256 4716 mouclass - ok
14:48:20.0287 4716 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
14:48:20.0303 4716 mouhid - ok
14:48:20.0427 4716 mountmgr (921c18727c5920d6c0300736646931c2) C:\Windows\system32\drivers\mountmgr.sys
14:48:20.0443 4716 mountmgr - ok
14:48:20.0505 4716 MpFilter (d993bea500e7382dc4e760bf4f35efcb) C:\Windows\system32\DRIVERS\MpFilter.sys
14:48:20.0505 4716 MpFilter - ok
14:48:20.0552 4716 mpio (2af5997438c55fb79d33d015c30e1974) C:\Windows\system32\DRIVERS\mpio.sys
14:48:20.0568 4716 mpio - ok
14:48:20.0833 4716 MpKsl30b64753 (a69630d039c38018689190234f866d77) c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{CF462509-8BDA-49C0-BADC-579E2C6AECBC}\MpKsl30b64753.sys
14:48:21.0067 4716 MpKsl30b64753 - ok
14:48:21.0083 4716 MpKsl823a7f47 (a69630d039c38018689190234f866d77) c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{CF462509-8BDA-49C0-BADC-579E2C6AECBC}\MpKsl823a7f47.sys
14:48:21.0441 4716 Suspicious file (Forged): c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{CF462509-8BDA-49C0-BADC-579E2C6AECBC}\MpKsl823a7f47.sys. Real md5: a69630d039c38018689190234f866d77, Fake md5: 4137ee420481d10734da3018d0325582
14:48:21.0441 4716 MpKsl823a7f47 ( ForgedFile.Multi.Generic ) - warning
14:48:21.0441 4716 MpKsl823a7f47 - detected ForgedFile.Multi.Generic (1)
14:48:21.0457 4716 MpKsl8616ba10 (a69630d039c38018689190234f866d77) c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{CF462509-8BDA-49C0-BADC-579E2C6AECBC}\MpKsl8616ba10.sys
14:48:22.0019 4716 MpKsl8616ba10 - ok
14:48:22.0097 4716 MpKsla44208f0 (a69630d039c38018689190234f866d77) c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{CF462509-8BDA-49C0-BADC-579E2C6AECBC}\MpKsla44208f0.sys
14:48:22.0377 4716 Suspicious file (Forged): c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{CF462509-8BDA-49C0-BADC-579E2C6AECBC}\MpKsla44208f0.sys. Real md5: a69630d039c38018689190234f866d77, Fake md5: 4137ee420481d10734da3018d0325582
14:48:22.0377 4716 MpKsla44208f0 ( ForgedFile.Multi.Generic ) - warning
14:48:22.0377 4716 MpKsla44208f0 - detected ForgedFile.Multi.Generic (1)
14:48:22.0409 4716 MpKslb218ea72 (a69630d039c38018689190234f866d77) c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{CF462509-8BDA-49C0-BADC-579E2C6AECBC}\MpKslb218ea72.sys
14:48:22.0487 4716 Suspicious file (Forged): c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{CF462509-8BDA-49C0-BADC-579E2C6AECBC}\MpKslb218ea72.sys. Real md5: a69630d039c38018689190234f866d77, Fake md5: 4137ee420481d10734da3018d0325582
14:48:22.0487 4716 MpKslb218ea72 ( ForgedFile.Multi.Generic ) - warning
14:48:22.0487 4716 MpKslb218ea72 - detected ForgedFile.Multi.Generic (1)
14:48:22.0502 4716 MpKslc27215b1 (a69630d039c38018689190234f866d77) c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{CF462509-8BDA-49C0-BADC-579E2C6AECBC}\MpKslc27215b1.sys
14:48:22.0502 4716 MpKslc27215b1 - ok
14:48:22.0565 4716 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
14:48:22.0565 4716 mpsdrv - ok
14:48:22.0705 4716 MpsSvc (5cd996cecf45cbc3e8d109c86b82d69e) C:\Windows\system32\mpssvc.dll
14:48:22.0736 4716 MpsSvc - ok
14:48:22.0767 4716 MRxDAV (b1be47008d20e43da3adc37c24cdb89d) C:\Windows\system32\drivers\mrxdav.sys
14:48:22.0814 4716 MRxDAV - ok
14:48:22.0845 4716 mrxsmb (ca7570e42522e24324a12161db14ec02) C:\Windows\system32\DRIVERS\mrxsmb.sys
14:48:22.0845 4716 mrxsmb - ok
14:48:22.0908 4716 mrxsmb10 (f965c3ab2b2ae5c378f4562486e35051) C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:48:22.0908 4716 mrxsmb10 - ok
14:48:23.0048 4716 mrxsmb20 (25c38264a3c72594dd21d355d70d7a5d) C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:48:23.0064 4716 mrxsmb20 - ok
14:48:23.0079 4716 msahci (5d9e758baefb5a4f3639e755c66625aa) C:\Windows\system32\DRIVERS\msahci.sys
14:48:23.0204 4716 msahci - ok
14:48:23.0235 4716 msdsm (455029c7174a2dbb03dba8a0d8bddd9a) C:\Windows\system32\DRIVERS\msdsm.sys
14:48:23.0267 4716 msdsm - ok
14:48:23.0313 4716 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\Windows\System32\msdtc.exe
14:48:23.0313 4716 MSDTC - ok
14:48:23.0376 4716 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
14:48:23.0407 4716 Msfs - ok
14:48:25.0139 4716 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
14:48:25.0186 4716 mshidkmdf - ok
14:48:25.0217 4716 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\DRIVERS\msisadrv.sys
14:48:25.0232 4716 msisadrv - ok
14:48:25.0279 4716 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\Windows\system32\iscsiexe.dll
14:48:25.0326 4716 MSiSCSI - ok
14:48:25.0357 4716 msiserver - ok
14:48:25.0404 4716 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
14:48:25.0420 4716 MSKSSRV - ok
14:48:25.0451 4716 MsMpSvc (24516bf4e12a46cb67302e2cdcb8cddf) c:\Program Files\Microsoft Security Client\MsMpEng.exe
14:48:25.0451 4716 MsMpSvc - ok
14:48:25.0498 4716 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
14:48:25.0513 4716 MSPCLOCK - ok
14:48:25.0544 4716 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
14:48:25.0638 4716 MSPQM - ok
14:48:25.0685 4716 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
14:48:25.0700 4716 MsRPC - ok
14:48:25.0732 4716 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\DRIVERS\mssmbios.sys
14:48:25.0747 4716 mssmbios - ok
14:48:25.0763 4716 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
14:48:25.0810 4716 MSTEE - ok
14:48:25.0841 4716 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
14:48:25.0950 4716 MTConfig - ok
14:48:25.0981 4716 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
14:48:25.0981 4716 Mup - ok
14:48:26.0075 4716 napagent (80284f1985c70c86f0b5f86da2dfe1df) C:\Windows\system32\qagentRT.dll
14:48:26.0090 4716 napagent - ok
14:48:26.0168 4716 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
14:48:26.0184 4716 NativeWifiP - ok
14:48:26.0293 4716 NDIS (23759d175a0a9baaf04d05047bc135a8) C:\Windows\system32\drivers\ndis.sys
14:48:26.0309 4716 NDIS - ok
14:48:26.0340 4716 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
14:48:26.0356 4716 NdisCap - ok
14:48:26.0387 4716 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
14:48:26.0418 4716 NdisTapi - ok
14:48:26.0449 4716 Ndisuio (b30ae7f2b6d7e343b0df32e6c08fce75) C:\Windows\system32\DRIVERS\ndisuio.sys
14:48:26.0449 4716 Ndisuio - ok
14:48:26.0496 4716 NdisWan (267c415eadcbe53c9ca873dee39cf3a4) C:\Windows\system32\DRIVERS\ndiswan.sys
14:48:26.0512 4716 NdisWan - ok
14:48:26.0543 4716 NDProxy (af7e7c63dcef3f8772726f86039d6eb4) C:\Windows\system32\drivers\NDProxy.sys
14:48:26.0558 4716 NDProxy - ok
14:48:26.0590 4716 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
14:48:26.0605 4716 NetBIOS - ok
14:48:26.0652 4716 NetBT (dd52a733bf4ca5af84562a5e2f963b91) C:\Windows\system32\DRIVERS\netbt.sys
14:48:26.0652 4716 NetBT - ok
14:48:26.0683 4716 Netlogon (c2243ff9e9aad0c30e8b1a0914da15b6) C:\Windows\system32\lsass.exe
14:48:26.0699 4716 Netlogon - ok
14:48:26.0761 4716 Netman (7cccfca7510684768da22092d1fa4db2) C:\Windows\System32\netman.dll
14:48:26.0792 4716 Netman - ok
14:48:26.0855 4716 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\Windows\System32\netprofm.dll
14:48:26.0870 4716 netprofm - ok
14:48:26.0902 4716 NetTcpPortSharing (fe2aa5a684b0dd9b1fae57b7817c198b) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
14:48:26.0995 4716 NetTcpPortSharing - ok
14:48:27.0744 4716 netw5v32 (58218ec6b61b1169cf54aab0d00f5fe2) C:\Windows\system32\DRIVERS\netw5v32.sys
14:48:27.0869 4716 netw5v32 - ok
14:48:28.0025 4716 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
14:48:28.0056 4716 nfrd960 - ok
14:48:28.0087 4716 NisDrv (b52f26bade7d7e4a79706e3fd91834cd) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
14:48:28.0118 4716 NisDrv - ok
14:48:28.0212 4716 NisSrv (290c0d4c4889398797f8df3be00b9698) c:\Program Files\Microsoft Security Client\NisSrv.exe
14:48:28.0337 4716 NisSrv - ok
14:48:28.0462 4716 NlaSvc (2226496e34bd40734946a054b1cd657f) C:\Windows\System32\nlasvc.dll
14:48:28.0462 4716 NlaSvc - ok
14:48:28.0493 4716 Nmea - ok
14:48:28.0540 4716 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
14:48:28.0555 4716 Npfs - ok
14:48:28.0586 4716 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\Windows\system32\nsisvc.dll
14:48:28.0602 4716 nsi - ok
14:48:28.0664 4716 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
14:48:28.0664 4716 nsiproxy - ok
14:48:28.0992 4716 Ntfs (187002ce05693c306f43c873f821381f) C:\Windows\system32\drivers\Ntfs.sys
14:48:29.0023 4716 Ntfs - ok
14:48:29.0164 4716 NtrigDigitizerUSBLowerFilter (c4695f4cd171127a006dd236dfdebfcc) C:\Windows\system32\DRIVERS\NtrigDigitizerUSBLowerFilter.sys
14:48:29.0179 4716 NtrigDigitizerUSBLowerFilter - ok
14:48:29.0210 4716 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
14:48:29.0226 4716 Null - ok
14:48:29.0273 4716 nvraid (f1b0bed906f97e16f6d0c3629d2f21c6) C:\Windows\system32\drivers\nvraid.sys
14:48:29.0304 4716 nvraid - ok
14:48:29.0460 4716 nvstor (4520b63899e867f354ee012d34e11536) C:\Windows\system32\drivers\nvstor.sys
14:48:29.0507 4716 nvstor - ok
14:48:29.0538 4716 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\DRIVERS\nv_agp.sys
14:48:29.0554 4716 nv_agp - ok
14:48:29.0616 4716 NWADI (93213c7ec08e01e37a935bf144e75df6) C:\Windows\system32\DRIVERS\NWADIenum.sys
14:48:29.0632 4716 NWADI - ok
14:48:29.0678 4716 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\DRIVERS\ohci1394.sys
14:48:29.0756 4716 ohci1394 - ok
14:48:29.0803 4716 OpcEnum (a12b32fb9e4c88998997e61db4a07670) C:\Windows\system32\OpcEnum.exe
14:48:30.0162 4716 OpcEnum - ok
14:48:30.0240 4716 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:48:30.0256 4716 ose - ok
14:48:30.0895 4716 osppsvc (358a9cca612c68eb2f07ddad4ce1d8d7) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
14:48:31.0004 4716 osppsvc - ok
14:48:31.0847 4716 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
14:48:31.0862 4716 p2pimsvc - ok
14:48:31.0940 4716 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\Windows\system32\p2psvc.dll
14:48:31.0972 4716 p2psvc - ok
14:48:32.0034 4716 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
14:48:32.0050 4716 Parport - ok
14:48:32.0689 4716 partmgr (66d3415c159741ade7038a277efff99f) C:\Windows\system32\drivers\partmgr.sys
14:48:32.0705 4716 partmgr - ok
14:48:32.0908 4716 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
14:48:32.0908 4716 Parvdm - ok
14:48:33.0017 4716 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\Windows\System32\pcasvc.dll
14:48:33.0064 4716 PcaSvc - ok
14:48:33.0126 4716 pci (c858cb77c577780ecc456a892e7e7d0f) C:\Windows\system32\DRIVERS\pci.sys
14:48:33.0126 4716 pci - ok
14:48:33.0188 4716 pcidnt - ok
14:48:33.0204 4716 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\DRIVERS\pciide.sys
14:48:33.0204 4716 pciide - ok
14:48:33.0282 4716 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
14:48:33.0313 4716 pcmcia - ok
14:48:33.0516 4716 PCTINDIS5 - ok
14:48:33.0563 4716 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
14:48:33.0578 4716 pcw - ok
14:48:33.0766 4716 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
14:48:33.0781 4716 PEAUTH - ok
14:48:33.0906 4716 PeerDistSvc (af4d64d2a57b9772cf3801950b8058a6) C:\Windows\system32\peerdistsvc.dll
14:48:34.0187 4716 PeerDistSvc - ok
14:48:34.0530 4716 pla (9c1bff7910c89a1d12e57343475840cb) C:\Windows\system32\pla.dll
14:48:34.0592 4716 pla - ok
14:48:34.0717 4716 PlugPlay (71def5ec79774c798342d0ea16e41780) C:\Windows\system32\umpnpmgr.dll
14:48:34.0748 4716 PlugPlay - ok
14:48:34.0795 4716 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\Windows\system32\pnrpauto.dll
14:48:34.0826 4716 PNRPAutoReg - ok
14:48:34.0951 4716 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
14:48:34.0967 4716 PNRPsvc - ok
14:48:35.0045 4716 PolicyAgent (48e1b75c6dc0232fd92baae4bd344721) C:\Windows\System32\ipsecsvc.dll
14:48:35.0107 4716 PolicyAgent - ok
14:48:35.0170 4716 Power (dbff83f709a91049621c1d35dd45c92c) C:\Windows\system32\umpo.dll
14:48:35.0216 4716 Power - ok
14:48:35.0248 4716 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
14:48:35.0357 4716 PptpMiniport - ok
14:48:35.0388 4716 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
14:48:35.0466 4716 Processor - ok
14:48:35.0513 4716 ProfSvc (aea3bdbdba667aa6f678cb38907e4f5e) C:\Windows\system32\profsvc.dll
14:48:35.0528 4716 ProfSvc - ok
14:48:35.0560 4716 ProtectedStorage (c2243ff9e9aad0c30e8b1a0914da15b6) C:\Windows\system32\lsass.exe
14:48:35.0560 4716 ProtectedStorage - ok
14:48:35.0622 4716 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
14:48:35.0622 4716 Psched - ok
14:48:35.0981 4716 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
14:48:36.0152 4716 ql2300 - ok
14:48:36.0262 4716 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
14:48:36.0589 4716 ql40xx - ok
14:48:36.0698 4716 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\Windows\system32\qwave.dll
14:48:36.0776 4716 QWAVE - ok
14:48:36.0808 4716 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
14:48:36.0808 4716 QWAVEdrv - ok
14:48:36.0854 4716 RapiMgr (8f97d374ad1857e1eed85a79f29a1d3d) C:\Windows\WindowsMobile\rapimgr.dll
14:48:36.0870 4716 RapiMgr - ok
14:48:36.0901 4716 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
14:48:36.0917 4716 RasAcd - ok
14:48:36.0948 4716 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
14:48:36.0995 4716 RasAgileVpn - ok
14:48:37.0026 4716 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\Windows\System32\rasauto.dll
14:48:37.0151 4716 RasAuto - ok
14:48:37.0182 4716 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
14:48:37.0198 4716 Rasl2tp - ok
14:48:37.0385 4716 RasMan (0ce66ec736b7fc526d78f7624c7d2a94) C:\Windows\System32\rasmans.dll
14:48:37.0416 4716 RasMan - ok
14:48:37.0463 4716 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
14:48:37.0510 4716 RasPppoe - ok
14:48:37.0541 4716 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
14:48:37.0603 4716 RasSstp - ok
14:48:37.0666 4716 rdbss (835d7e81bf517a3b72384bdcc85e1ce6) C:\Windows\system32\DRIVERS\rdbss.sys
14:48:37.0681 4716 rdbss - ok
14:48:37.0728 4716 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
14:48:37.0728 4716 rdpbus - ok
14:48:37.0759 4716 RDPCDD (1e016846895b15a99f9a176a05029075) C:\Windows\system32\DRIVERS\RDPCDD.sys
14:48:37.0759 4716 RDPCDD - ok
14:48:37.0822 4716 RDPDR (c5ff95883ffef704d50c40d21cfb3ab5) C:\Windows\system32\drivers\rdpdr.sys
14:48:37.0837 4716 RDPDR - ok
14:48:37.0868 4716 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
14:48:37.0868 4716 RDPENCDD - ok
14:48:37.0915 4716 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
14:48:37.0931 4716 RDPREFMP - ok
14:48:37.0962 4716 RDPWD (c5b8d47a4688de9d335204ea757c2240) C:\Windows\system32\drivers\RDPWD.sys
14:48:38.0446 4716 RDPWD - ok
14:48:38.0508 4716 rdyboost (4ea225bf1cf05e158853f30a99ca29a7) C:\Windows\system32\drivers\rdyboost.sys
14:48:38.0524 4716 rdyboost - ok
14:48:38.0570 4716 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\Windows\System32\mprdim.dll
14:48:38.0602 4716 RemoteAccess - ok
14:48:38.0664 4716 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\Windows\system32\regsvc.dll
14:48:38.0726 4716 RemoteRegistry - ok
14:48:38.0898 4716 RFCOMM (cb928d9e6daf51879dd6ba8d02f01321) C:\Windows\system32\DRIVERS\rfcomm.sys
14:48:38.0898 4716 RFCOMM - ok
14:48:38.0960 4716 RNADiagnosticsService (dd313735da6029e3364d0a54091874dc) C:\Program Files\Common Files\Rockwell\RNADiagnosticsSrv.exe
14:48:38.0960 4716 RNADiagnosticsService - ok
14:48:39.0038 4716 RNADiagReceiver (18f60539e2b05a25f389765ba212ec48) C:\Program Files\Common Files\Rockwell\RNADiagReceiver.exe
14:48:39.0475 4716 RNADiagReceiver - ok
14:48:39.0506 4716 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\Windows\System32\RpcEpMap.dll
14:48:39.0522 4716 RpcEptMapper - ok
14:48:39.0569 4716 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\Windows\system32\locator.exe
14:48:39.0616 4716 RpcLocator - ok
14:48:39.0709 4716 RpcSs (b82cd39e336973359d7c9bf911e8e84f) C:\Windows\system32\rpcss.dll
14:48:39.0725 4716 RpcSs - ok
14:48:39.0740 4716 RSLinx - ok
14:48:39.0772 4716 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
14:48:39.0787 4716 rspndr - ok
14:48:39.0850 4716 RSSERIAL (b089419975668e2a701178032d652a24) C:\Windows\SYSTEM32\RSSERIAL.SYS
14:48:40.0006 4716 RSSERIAL - ok
14:48:40.0099 4716 RsvcHost (8edd7060ff6599d3ef949aeb698145a4) C:\Program Files\Common Files\Rockwell\RsvcHost.exe
14:48:40.0099 4716 RsvcHost - ok
14:48:40.0146 4716 s3cap (5423d8437051e89dd34749f242c98648) C:\Windows\system32\DRIVERS\vms3cap.sys
14:48:40.0177 4716 s3cap - ok
14:48:40.0208 4716 SamSs (c2243ff9e9aad0c30e8b1a0914da15b6) C:\Windows\system32\lsass.exe
14:48:40.0208 4716 SamSs - ok
14:48:40.0255 4716 sbp2port (34ee0c44b724e3e4ce2eff29126de5b5) C:\Windows\system32\DRIVERS\sbp2port.sys
14:48:40.0271 4716 sbp2port - ok
14:48:40.0333 4716 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\Windows\System32\SCardSvr.dll
14:48:40.0349 4716 SCardSvr - ok
14:48:40.0380 4716 SCDEmu (612a3d69e603dbbe5c3c1079186a0393) C:\Windows\system32\drivers\SCDEmu.sys
14:48:40.0396 4716 SCDEmu - ok
14:48:40.0442 4716 scfilter (a95c54b2ac3cc9c73fcdf9e51a1d6b51) C:\Windows\system32\DRIVERS\scfilter.sys
14:48:40.0474 4716 scfilter - ok
14:48:40.0598 4716 Schedule (df1e5c82e4d09cf8105cc644980c4803) C:\Windows\system32\schedsvc.dll
14:48:40.0630 4716 Schedule - ok
14:48:40.0661 4716 SCPolicySvc (628a9e30ec5e18dd5de6be4dbdc12198) C:\Windows\System32\certprop.dll
14:48:40.0676 4716 SCPolicySvc - ok
14:48:40.0786 4716 sdbus (7b48cff3a475fe849dea65ec4d35c425) C:\Windows\system32\DRIVERS\sdbus.sys
14:48:40.0801 4716 sdbus - ok
14:48:41.0176 4716 SDRSVC (5fd90abdbfaee85986802622cbb03446) C:\Windows\System32\SDRSVC.dll
14:48:41.0316 4716 SDRSVC - ok
14:48:41.0831 4716 SeaPort (78779ee07231c658b483b1f38b5088df) C:\Program Files\Microsoft\BingBar\SeaPort.EXE
14:48:41.0846 4716 SeaPort - ok
14:48:41.0878 4716 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
14:48:41.0893 4716 secdrv - ok
14:48:41.0924 4716 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\Windows\system32\seclogon.dll
14:48:42.0018 4716 seclogon - ok
14:48:42.0299 4716 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\Windows\System32\sens.dll
14:48:42.0330 4716 SENS - ok
14:48:42.0392 4716 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\Windows\system32\sensrsvc.dll
14:48:42.0486 4716 SensrSvc - ok
14:48:42.0533 4716 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
14:48:42.0595 4716 Serenum - ok
14:48:42.0626 4716 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
14:48:42.0658 4716 Serial - ok
14:48:42.0689 4716 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
14:48:42.0704 4716 sermouse - ok
14:48:42.0892 4716 SessionEnv (8f55ce568c543d5adf45c409d16718fc) C:\Windows\system32\sessenv.dll
14:48:42.0970 4716 SessionEnv - ok
14:48:42.0985 4716 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\DRIVERS\sffdisk.sys
14:48:43.0063 4716 sffdisk - ok
14:48:43.0157 4716 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\DRIVERS\sffp_mmc.sys
14:48:43.0157 4716 sffp_mmc - ok
14:48:43.0204 4716 sffp_sd (a0708bbd07d245c06ff9de549ca47185) C:\Windows\system32\DRIVERS\sffp_sd.sys
14:48:43.0266 4716 sffp_sd - ok
14:48:43.0469 4716 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
14:48:43.0500 4716 sfloppy - ok
14:48:43.0578 4716 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\Windows\System32\ipnathlp.dll
14:48:43.0609 4716 SharedAccess - ok
14:48:43.0687 4716 ShellHWDetection (cd2e48fa5b29ee2b3b5858056d246ef2) C:\Windows\System32\shsvcs.dll
14:48:43.0703 4716 ShellHWDetection - ok
14:48:43.0718 4716 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\DRIVERS\sisagp.sys
14:48:43.0734 4716 sisagp - ok
14:48:43.0765 4716 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
14:48:43.0781 4716 SiSRaid2 - ok
14:48:43.0812 4716 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
14:48:43.0812 4716 SiSRaid4 - ok
14:48:43.0859 4716 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
14:48:43.0874 4716 Smb - ok
14:48:43.0906 4716 SMIRegistryTool (6cde3594fce37bc3da45b354e5b0757a) C:\Program Files\Camera Vendor\Virtual WebCam\DriverPackage\XYNTService.exe
14:48:43.0921 4716 SMIRegistryTool - ok
14:48:43.0968 4716 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\Windows\System32\snmptrap.exe
14:48:43.0984 4716 SNMPTRAP - ok
14:48:44.0015 4716 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
14:48:44.0015 4716 spldr - ok
14:48:44.0155 4716 Spooler (d1bb750eb51694de183e08b9c33be5b2) C:\Windows\System32\spoolsv.exe
14:48:44.0171 4716 Spooler - ok
14:48:44.0514 4716 sppsvc (4c287f9069fedbd791178876ee9de536) C:\Windows\system32\sppsvc.exe
14:48:44.0608 4716 sppsvc - ok
14:48:44.0857 4716 sppuinotify (d8e3e19eebdab49dd4a8d3062ead4ec7) C:\Windows\system32\sppuinotify.dll
14:48:44.0888 4716 sppuinotify - ok
14:48:45.0029 4716 srv (c4a027b8c0bd3fc0699f41fa5e9e0c87) C:\Windows\system32\DRIVERS\srv.sys
14:48:45.0060 4716 srv - ok
14:48:45.0762 4716 srv2 (414bb592cad8a79649d01f9d94318fb3) C:\Windows\system32\DRIVERS\srv2.sys
14:48:45.0778 4716 srv2 - ok
14:48:45.0856 4716 SrvHsfHDA (e00fdfaff025e94f9821153750c35a6d) C:\Windows\system32\DRIVERS\VSTAZL3.SYS
14:48:45.0871 4716 SrvHsfHDA - ok
14:48:46.0043 4716 SrvHsfV92 (ceb4e3b6890e1e42dca6694d9e59e1a0) C:\Windows\system32\DRIVERS\VSTDPV3.SYS
14:48:46.0136 4716 SrvHsfV92 - ok
14:48:46.0277 4716 SrvHsfWinac (bc0c7ea89194c299f051c24119000e17) C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
14:48:46.0308 4716 SrvHsfWinac - ok
14:48:46.0355 4716 srvnet (ff207d67700aa18242aaf985d3e7d8f4) C:\Windows\system32\DRIVERS\srvnet.sys
14:48:46.0370 4716 srvnet - ok
14:48:46.0448 4716 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\Windows\System32\ssdpsrv.dll
14:48:46.0464 4716 SSDPSRV - ok
14:48:46.0495 4716 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\Windows\system32\sstpsvc.dll
14:48:46.0511 4716 SstpSvc - ok
14:48:46.0620 4716 STacSV (43dc7ada838f6a24b93b7c7ff2fcd08d) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_7293d4b16ec87cbb\STacSV.exe
14:48:46.0651 4716 STacSV - ok
14:48:46.0682 4716 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
14:48:46.0682 4716 stexstor - ok
14:48:46.0776 4716 STHDA (356cc453b79c35b8ce1a14873dd6322d) C:\Windows\system32\DRIVERS\stwrt.sys
14:48:46.0792 4716 STHDA - ok
14:48:46.0854 4716 StiSvc (a22825e7bb7018e8af3e229a5af17221) C:\Windows\System32\wiaservc.dll
14:48:46.0885 4716 StiSvc - ok
14:48:46.0901 4716 storflt (957e346ca948668f2496a6ccf6ff82cc) C:\Windows\system32\DRIVERS\vmstorfl.sys
14:48:46.0916 4716 storflt - ok
14:48:46.0948 4716 StorSvc (0bf669f0a910beda4a32258d363af2a5) C:\Windows\system32\storsvc.dll
14:48:46.0963 4716 StorSvc - ok
14:48:46.0994 4716 storvsc (d5751969dc3e4b88bf482ac8ec9fe019) C:\Windows\system32\DRIVERS\storvsc.sys
14:48:46.0994 4716 storvsc - ok
14:48:47.0026 4716 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\DRIVERS\swenum.sys
14:48:47.0026 4716 swenum - ok
14:48:47.0104 4716 swprv (a28bd92df340e57b024ba433165d34d7) C:\Windows\System32\swprv.dll
14:48:47.0119 4716 swprv - ok
14:48:47.0291 4716 SysMain (04105c8da62353589c29bdaeb8d88bd8) C:\Windows\system32\sysmain.dll
14:48:47.0322 4716 SysMain - ok
14:48:47.0400 4716 TabletInputService (fcfb6c552fbc0da299799cbd50ad9fd4) C:\Windows\System32\TabSvc.dll
14:48:47.0416 4716 TabletInputService - ok
14:48:47.0478 4716 TapiSrv (2f46b0c70a4adc8c90cf825da3b4feaf) C:\Windows\System32\tapisrv.dll
14:48:47.0540 4716 TapiSrv - ok
14:48:47.0556 4716 TBS (b799d9fdb26111737f58288d8dc172d9) C:\Windows\System32\tbssvc.dll
14:48:47.0650 4716 TBS - ok
14:48:47.0884 4716 Tcpip (55e9965552741f3850cb22cbba9671ed) C:\Windows\system32\drivers\tcpip.sys
14:48:47.0915 4716 Tcpip - ok
14:48:47.0962 4716 TCPIP6 (55e9965552741f3850cb22cbba9671ed) C:\Windows\system32\DRIVERS\tcpip.sys
14:48:47.0993 4716 TCPIP6 - ok
14:48:48.0040 4716 tcpipreg (e64444523add154f86567c469bc0b17f) C:\Windows\system32\drivers\tcpipreg.sys
14:48:48.0055 4716 tcpipreg - ok
14:48:48.0118 4716 TDPIPE (1875c1490d99e70e449e3afae9fcbadf) C:\Windows\system32\drivers\tdpipe.sys
14:48:48.0196 4716 TDPIPE - ok
14:48:48.0242 4716 TDTCP (7156308896d34ea75a582f9a09e50c17) C:\Windows\system32\drivers\tdtcp.sys
14:48:48.0320 4716 TDTCP - ok
14:48:48.0352 4716 tdx (cb39e896a2a83702d1737bfd402b3542) C:\Windows\system32\DRIVERS\tdx.sys
14:48:48.0414 4716 tdx - ok
14:48:48.0461 4716 TermDD (c36f41ee20e6999dbf4b0425963268a5) C:\Windows\system32\DRIVERS\termdd.sys
14:48:48.0508 4716 TermDD - ok
14:48:48.0586 4716 TermService (a01e50a04d7b1960b33e92b9080e6a94) C:\Windows\System32\termsrv.dll
14:48:48.0664 4716 TermService - ok
14:48:48.0695 4716 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\Windows\system32\themeservice.dll
14:48:48.0695 4716 Themes - ok
14:48:48.0742 4716 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
14:48:48.0757 4716 THREADORDER - ok
14:48:48.0788 4716 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\Windows\System32\trkwks.dll
14:48:48.0804 4716 TrkWks - ok
14:48:48.0851 4716 TrustedInstaller (41a4c781d2286208d397d72099304133) C:\Windows\servicing\TrustedInstaller.exe
14:48:48.0898 4716 TrustedInstaller - ok
14:48:48.0944 4716 tssecsrv (98ae6fa07d12cb4ec5cf4a9bfa5f4242) C:\Windows\system32\DRIVERS\tssecsrv.sys
14:48:48.0976 4716 tssecsrv - ok
14:48:49.0007 4716 tunnel (3e461d890a97f9d4c168f5fda36e1d00) C:\Windows\system32\DRIVERS\tunnel.sys
14:48:49.0054 4716 tunnel - ok
14:48:49.0085 4716 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
14:48:49.0132 4716 uagp35 - ok
14:48:49.0178 4716 udfs (6557d75e8b7d6a06cdc21cd39dbf255c) C:\Windows\system32\DRIVERS\udfs.sys
14:48:49.0225 4716 udfs - ok
14:48:49.0350 4716 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\Windows\system32\UI0Detect.exe
14:48:49.0366 4716 UI0Detect - ok
14:48:49.0397 4716 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\DRIVERS\uliagpkx.sys
14:48:49.0444 4716 uliagpkx - ok
14:48:49.0459 4716 umbus (049b3a50b3d646baeeee9eec9b0668dc) C:\Windows\system32\DRIVERS\umbus.sys
14:48:49.0522 4716 umbus - ok
14:48:49.0537 4716 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
14:48:49.0584 4716 UmPass - ok
14:48:49.0631 4716 UmRdpService (8ecaca5454844f66386f7be4ae0d7cd1) C:\Windows\System32\umrdp.dll
14:48:49.0724 4716 UmRdpService - ok
14:48:49.0818 4716 upnphost (833fbb672460efce8011d262175fad33) C:\Windows\System32\upnphost.dll
14:48:49.0849 4716 upnphost - ok
14:48:49.0896 4716 usbaudio (2436a42aab4ad48a9b714e5b0f344627) C:\Windows\system32\drivers\usbaudio.sys
14:48:50.0177 4716 usbaudio - ok
14:48:50.0286 4716 usbccgp (5c233aefb566ee78c1efbc0493fb066a) C:\Windows\system32\DRIVERS\usbccgp.sys
14:48:50.0910 4716 usbccgp - ok
14:48:50.0988 4716 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\DRIVERS\usbcir.sys
14:48:51.0035 4716 usbcir - ok
14:48:51.0113 4716 usbehci (5b71019a6aca0116fd21b368f19c0b91) C:\Windows\system32\drivers\usbehci.sys
14:48:51.0128 4716 usbehci - ok
14:48:51.0206 4716 usbhub (5823d3965c2a4f6f785ed1a3b403f3b8) C:\Windows\system32\DRIVERS\usbhub.sys
14:48:51.0222 4716 usbhub - ok
14:48:51.0253 4716 usbohci (e753ed6c49da13967ebabf9ea616454a) C:\Windows\system32\drivers\usbohci.sys
14:48:51.0269 4716 usbohci - ok
14:48:51.0316 4716 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
14:48:51.0316 4716 usbprint - ok
14:48:51.0362 4716 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys
14:48:51.0378 4716 usbscan - ok
14:48:51.0472 4716 USBSTOR (1c4287739a93594e57e2a9e6a3ed7353) C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:48:51.0472 4716 USBSTOR - ok
14:48:51.0518 4716 usbuhci (6a30928a469ce802600e1ea8c0f2f53f) C:\Windows\system32\drivers\usbuhci.sys
14:48:51.0518 4716 usbuhci - ok
14:48:51.0565 4716 usbvideo (b5f6a992d996282b7fae7048e50af83a) C:\Windows\system32\Drivers\usbvideo.sys
14:48:51.0581 4716 usbvideo - ok
14:48:51.0596 4716 usb_rndisx (d82f43d15fdaa666856c0190cb73e7c9) C:\Windows\system32\DRIVERS\usb8023x.sys
14:48:51.0612 4716 usb_rndisx - ok
14:48:51.0924 4716 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\Windows\System32\uxsms.dll
14:48:51.0924 4716 UxSms - ok
14:48:51.0986 4716 VaultSvc (c2243ff9e9aad0c30e8b1a0914da15b6) C:\Windows\system32\lsass.exe
14:48:51.0986 4716 VaultSvc - ok
14:48:52.0018 4716 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\DRIVERS\vdrvroot.sys
14:48:52.0018 4716 vdrvroot - ok
14:48:52.0142 4716 vds (8c4e7c49d3641bc9e299e466a7f8867d) C:\Windows\System32\vds.exe
14:48:52.0174 4716 vds - ok
14:48:52.0220 4716 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
14:48:52.0220 4716 vga - ok
14:48:52.0252 4716 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
14:48:52.0252 4716 VgaSave - ok
14:48:52.0345 4716 vhdmp (3be6e1f3a4f1afec8cee0d7883f93583) C:\Windows\system32\DRIVERS\vhdmp.sys
14:48:52.0345 4716 vhdmp - ok
14:48:52.0392 4716 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\DRIVERS\viaagp.sys
14:48:52.0392 4716 viaagp - ok
14:48:52.0439 4716 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
14:48:52.0439 4716 ViaC7 - ok
14:48:52.0470 4716 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\DRIVERS\viaide.sys
14:48:52.0470 4716 viaide - ok
14:48:52.0501 4716 VirtualBackplane - ok
14:48:52.0548 4716 vmbus (379b349f65f453d2a6e75ea6b7448e49) C:\Windows\system32\DRIVERS\vmbus.sys
14:48:52.0548 4716 vmbus - ok
14:48:52.0579 4716 VMBusHID (ec2bbab4b84d0738c6c83d2234dc36fe) C:\Windows\system32\DRIVERS\VMBusHID.sys
14:48:52.0595 4716 VMBusHID - ok
14:48:52.0626 4716 volmgr (384e5a2aa49934295171e499f86ba6f3) C:\Windows\system32\DRIVERS\volmgr.sys
14:48:52.0626 4716 volmgr - ok
14:48:52.0704 4716 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
14:48:52.0720 4716 volmgrx - ok
14:48:52.0782 4716 volsnap (58df9d2481a56edde167e51b334d44fd) C:\Windows\system32\DRIVERS\volsnap.sys
14:48:52.0798 4716 volsnap - ok
14:48:52.0844 4716 vpcbus (33e74df34753fcaab06f6f2bdc8cabf5) C:\Windows\system32\DRIVERS\vpchbus.sys
14:48:52.0844 4716 vpcbus - ok
14:48:52.0891 4716 vpcnfltr (5f04362ceb5fb5901037e9d9eadd3760) C:\Windows\system32\DRIVERS\vpcnfltr.sys
14:48:52.0891 4716 vpcnfltr - ok
14:48:52.0938 4716 vpcusb (625088d6ee9ede977fd03cf18d1cd5c5) C:\Windows\system32\DRIVERS\vpcusb.sys
14:48:52.0954 4716 vpcusb - ok
14:48:52.0985 4716 vpcuxd (f49c0d1f8dae860ee47e5f34ac0f6008) C:\Windows\system32\DRIVERS\vpcuxd.sys
14:48:52.0985 4716 vpcuxd - ok
14:48:53.0110 4716 vpcvmm (5ed378d91e32134f3c0b3810860ffd71) C:\Windows\system32\drivers\vpcvmm.sys
14:48:53.0110 4716 vpcvmm - ok
14:48:53.0188 4716 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
14:48:53.0203 4716 vsmraid - ok
14:48:53.0406 4716 VSS (7ea2bcd94d9cfaf4c556f5cc94532a6c) C:\Windows\system32\vssvc.exe
14:48:53.0453 4716 VSS - ok
14:48:53.0484 4716 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\system32\DRIVERS\vwifibus.sys
14:48:53.0484 4716 vwifibus - ok
14:48:53.0531 4716 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\Windows\system32\DRIVERS\vwififlt.sys
14:48:53.0578 4716 vwififlt - ok
14:48:53.0593 4716 vwifimp (a3f04cbea6c2a10e6cb01f8b47611882) C:\Windows\system32\DRIVERS\vwifimp.sys
14:48:53.0609 4716 vwifimp - ok
14:48:53.0687 4716 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\Windows\system32\w32time.dll
14:48:54.0233 4716 W32Time - ok
14:48:54.0280 4716 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
14:48:54.0311 4716 WacomPen - ok
14:48:54.0342 4716 WANARP (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys
14:48:54.0389 4716 WANARP - ok
14:48:54.0404 4716 Wanarpv6 (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys
14:48:54.0420 4716 Wanarpv6 - ok
14:48:54.0607 4716 WatAdminSvc (353a04c273ec58475d8633e75ccd5604) C:\Windows\system32\Wat\WatAdminSvc.exe
14:48:54.0794 4716 WatAdminSvc - ok
14:48:55.0060 4716 wbengine (7790b77fe1e5ee47dcc66247095bb4c9) C:\Windows\system32\wbengine.exe
14:48:55.0122 4716 wbengine - ok
14:48:55.0153 4716 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\Windows\System32\wbiosrvc.dll
14:48:55.0247 4716 WbioSrvc - ok
14:48:55.0309 4716 WcesComm (59e19bd13c3bdb857646b9e436ba27f7) C:\Windows\WindowsMobile\wcescomm.dll
14:48:55.0325 4716 WcesComm - ok
14:48:55.0387 4716 wcncsvc (6d9b75275c3e3a5f51aef81affadb2b6) C:\Windows\System32\wcncsvc.dll
14:48:55.0434 4716 wcncsvc - ok
14:48:55.0450 4716 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\Windows\System32\WcsPlugInService.dll
14:48:55.0465 4716 WcsPlugInService - ok
14:48:55.0512 4716 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
14:48:55.0528 4716 Wd - ok
14:48:55.0606 4716 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
14:48:55.0621 4716 Wdf01000 - ok
14:48:55.0668 4716 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
14:48:55.0684 4716 WdiServiceHost - ok
14:48:55.0715 4716 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
14:48:55.0730 4716 WdiSystemHost - ok
14:48:55.0777 4716 WebClient (bb5ec38f8d4600119b4720bc5d4211f1) C:\Windows\System32\webclnt.dll
14:48:55.0808 4716 WebClient - ok
14:48:55.0855 4716 Wecsvc (760f0afe937a77cff27153206534f275) C:\Windows\system32\wecsvc.dll
14:48:55.0871 4716 Wecsvc - ok
14:48:55.0902 4716 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\Windows\System32\wercplsupport.dll
14:48:55.0918 4716 wercplsupport - ok
14:48:55.0964 4716 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\Windows\System32\WerSvc.dll
14:48:55.0964 4716 WerSvc - ok
14:48:55.0996 4716 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
14:48:56.0011 4716 WfpLwf - ok
14:48:56.0074 4716 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
14:48:56.0105 4716 WIMMount - ok
14:48:56.0214 4716 WinDefend (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll
14:48:56.0261 4716 WinDefend - ok
14:48:56.0292 4716 WinHttpAutoProxySvc - ok
14:48:56.0401 4716 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\Windows\system32\wbem\WMIsvc.dll
14:48:56.0417 4716 Winmgmt - ok
14:48:56.0588 4716 WinRM (c4f5d3901d1b41d602ddc196e0b95b51) C:\Windows\system32\WsmSvc.dll
14:48:56.0682 4716 WinRM - ok
14:48:56.0776 4716 WinUsb (b5ba3cc19d00f2eba92f1cfbebb5d650) C:\Windows\system32\DRIVERS\WinUSB.sys
14:48:56.0854 4716 WinUsb - ok
14:48:57.0041 4716 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\Windows\System32\wlansvc.dll
14:48:57.0072 4716 Wlansvc - ok
14:48:57.0150 4716 wlcrasvc (6067acef367e79914af628fa1e9b5330) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
14:48:57.0197 4716 wlcrasvc - ok
14:48:57.0556 4716 wlidsvc (fb01d4ae207b9efdbabfc55dc95c7e31) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
14:48:57.0602 4716 wlidsvc - ok
14:48:57.0743 4716 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\DRIVERS\wmiacpi.sys
14:48:57.0743 4716 WmiAcpi - ok
14:48:57.0805 4716 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\Windows\system32\wbem\WmiApSrv.exe
14:48:57.0821 4716 wmiApSrv - ok
14:48:58.0024 4716 WMPNetworkSvc (77fbd400984cf72ba0fc4b3489d65f74) C:\Program Files\Windows Media Player\wmpnetwk.exe
14:48:58.0055 4716 WMPNetworkSvc - ok
14:48:58.0086 4716 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\Windows\System32\wpcsvc.dll
14:48:58.0148 4716 WPCSvc - ok
14:48:58.0195 4716 WPDBusEnum (b7f658a2ebc07129538ad9ab35212637) C:\Windows\system32\wpdbusenum.dll
14:48:58.0195 4716 WPDBusEnum - ok
14:48:58.0289 4716 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
14:48:58.0320 4716 ws2ifsl - ok
14:48:58.0367 4716 wscsvc (a661a76333057b383a06e65f0073222f) C:\Windows\System32\wscsvc.dll
14:48:58.0367 4716 wscsvc - ok
14:48:58.0398 4716 WSearch - ok
14:48:58.0632 4716 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) C:\Windows\system32\wuaueng.dll
14:48:58.0710 4716 wuauserv - ok
14:48:58.0804 4716 WudfPf (6f9b6c0c93232cff47d0f72d6db1d21e) C:\Windows\system32\drivers\WudfPf.sys
14:48:58.0819 4716 WudfPf - ok
14:48:58.0866 4716 WUDFRd (f91ff1e51fca30b3c3981db7d5924252) C:\Windows\system32\DRIVERS\WUDFRd.sys
14:48:58.0882 4716 WUDFRd - ok
14:48:58.0944 4716 wudfsvc (ddee3682fe97037c45f4d7ab467cb8b6) C:\Windows\System32\WUDFSvc.dll
14:48:58.0960 4716 wudfsvc - ok
14:48:59.0006 4716 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\Windows\System32\wwansvc.dll
14:48:59.0069 4716 WwanSvc - ok
14:48:59.0147 4716 yukonw7 (b07c5b7efdf936ff93d4f540938725be) C:\Windows\system32\DRIVERS\yk62x86.sys
14:48:59.0178 4716 yukonw7 - ok
14:48:59.0209 4716 zghsmdm (9d175477f8934e6a43e75ba4fbbc8d49) C:\Windows\system32\DRIVERS\zghsmdm.sys
14:48:59.0225 4716 zghsmdm - ok
14:48:59.0833 4716 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
14:48:59.0849 4716 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - infected
14:48:59.0849 4716 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.c (0)
14:48:59.0864 4716 MBR (0x1B8) (ddae9d649db12f6aff24483f2c298989) \Device\Harddisk1\DR1
14:48:59.0880 4716 \Device\Harddisk1\DR1 - ok
14:48:59.0911 4716 MBR (0x1B8) (4defadbcb9d78fb66808f88d693e8c3a) \Device\Harddisk2\DR2
14:49:03.0452 4716 \Device\Harddisk2\DR2 - ok
14:49:03.0452 4716 Boot (0x1200) (963153bac0508b183f122e9e388f3b44) \Device\Harddisk0\DR0\Partition0
14:49:03.0468 4716 \Device\Harddisk0\DR0\Partition0 - ok
14:49:03.0484 4716 Boot (0x1200) (77dc34a9b903afeba8256cd198db8602) \Device\Harddisk0\DR0\Partition1
14:49:03.0499 4716 \Device\Harddisk0\DR0\Partition1 - ok
14:49:03.0515 4716 Boot (0x1200) (4a65eb7fca106128ef109ff9e5cc3357) \Device\Harddisk0\DR0\Partition2
14:49:03.0515 4716 \Device\Harddisk0\DR0\Partition2 - ok
14:49:03.0546 4716 Boot (0x1200) (ab156b64ace9c2b50a82d5253ca2b378) \Device\Harddisk1\DR1\Partition0
14:49:03.0546 4716 \Device\Harddisk1\DR1\Partition0 - ok
14:49:03.0562 4716 ============================================================
14:49:03.0562 4716 Scan finished
14:49:03.0562 4716 ============================================================
14:49:03.0671 4464 Detected object count: 4
14:49:03.0671 4464 Actual detected object count: 4
14:49:05.0995 4464 MpKsl823a7f47 ( ForgedFile.Multi.Generic ) - skipped by user
14:49:05.0995 4464 MpKsl823a7f47 ( ForgedFile.Multi.Generic ) - User select action: Skip
14:49:05.0995 4464 MpKsla44208f0 ( ForgedFile.Multi.Generic ) - skipped by user
14:49:05.0995 4464 MpKsla44208f0 ( ForgedFile.Multi.Generic ) - User select action: Skip
14:49:05.0995 4464 MpKslb218ea72 ( ForgedFile.Multi.Generic ) - skipped by user
14:49:05.0995 4464 MpKslb218ea72 ( ForgedFile.Multi.Generic ) - User select action: Skip
14:49:08.0429 4464 \Device\Harddisk0\DR0\# - copied to quarantine
14:46:58.0899 4296 TDSS rootkit removing tool 2.7.46.0 Jul 16 2012 22:10:11
14:46:58.0993 4296 ============================================================
14:46:58.0993 4296 Current date / time: 2012/07/18 14:46:58.0993
14:46:58.0993 4296 SystemInfo:
14:46:58.0993 4296
14:46:58.0993 4296 OS Version: 6.1.7600 ServicePack: 0.0
14:46:58.0993 4296 Product type: Workstation
14:46:58.0993 4296 ComputerName: OMNISLATE
14:46:58.0993 4296 UserName: Rich
14:46:58.0993 4296 Windows directory: C:\Windows
14:46:58.0993 4296 System windows directory: C:\Windows
14:46:58.0993 4296 Processor architecture: Intel x86
14:46:58.0993 4296 Number of processors: 2
14:46:58.0993 4296 Page size: 0x1000
14:46:58.0993 4296 Boot type: Normal boot
14:46:58.0993 4296 ============================================================
14:47:02.0440 4296 Drive \Device\Harddisk0\DR0 - Size: 0xEE8156000 (59.63 Gb), SectorSize: 0x200, Cylinders: 0x1E67, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
14:47:02.0534 4296 Drive \Device\Harddisk1\DR1 - Size: 0x1DDBF8000 (7.46 Gb), SectorSize: 0x200, Cylinders: 0x3CE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
14:47:02.0768 4296 Drive \Device\Harddisk2\DR2 - Size: 0xFAE100000 (62.72 Gb), SectorSize: 0x200, Cylinders: 0x1FFB, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
14:47:02.0768 4296 ============================================================
14:47:02.0768 4296 \Device\Harddisk0\DR0:
14:47:02.0768 4296 MBR partitions:
14:47:02.0768 4296 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
14:47:02.0768 4296 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x76A7000
14:47:02.0768 4296 \Device\Harddisk0\DR0\Partition2: MBR, Type 0xC, StartLBA 0x770B000, BlocksNum 0x352B0
14:47:02.0768 4296 \Device\Harddisk1\DR1:
14:47:02.0768 4296 MBR partitions:
14:47:02.0768 4296 \Device\Harddisk1\DR1\Partition0: MBR, Type 0xB, StartLBA 0x3F, BlocksNum 0xEEDD21
14:47:02.0768 4296 \Device\Harddisk2\DR2:
14:47:02.0768 4296 MBR partitions:
14:47:02.0768 4296 ============================================================
14:47:02.0783 4296 C: <-> \Device\Harddisk0\DR0\Partition1
14:47:02.0783 4296 D: <-> \Device\Harddisk0\DR0\Partition2
14:47:02.0783 4296 ============================================================
14:47:02.0783 4296 Initialize success
14:47:02.0783 4296 ============================================================
14:47:05.0747 4716 ============================================================
14:47:05.0747 4716 Scan started
14:47:05.0747 4716 Mode: Manual;
14:47:05.0747 4716 ============================================================
14:47:08.0462 4716 06683176 - ok
14:47:08.0540 4716 1394ohci (6d2aca41739bfe8cb86ee8e85f29697d) C:\Windows\system32\DRIVERS\1394ohci.sys
14:47:08.0571 4716 1394ohci - ok
14:47:08.0602 4716 19493598 - ok
14:47:08.0665 4716 43949708 - ok
14:47:08.0774 4716 ACPI (f0e07d144c8685b8774bc32fc8da4df0) C:\Windows\system32\DRIVERS\ACPI.sys
14:47:08.0789 4716 ACPI - ok
14:47:08.0805 4716 AcpiPmi (98d81ca942d19f7d9153b095162ac013) C:\Windows\system32\DRIVERS\acpipmi.sys
14:47:08.0821 4716 AcpiPmi - ok
14:47:08.0852 4716 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
14:47:08.0867 4716 AdobeARMservice - ok
14:47:08.0930 4716 AdobeFlashPlayerUpdateSvc (5e1a953c6472e7bb644892a4d0df5e72) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
14:47:08.0945 4716 AdobeFlashPlayerUpdateSvc - ok
14:47:09.0023 4716 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
14:47:09.0039 4716 adp94xx - ok
14:47:09.0086 4716 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
14:47:09.0101 4716 adpahci - ok
14:47:09.0133 4716 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
14:47:09.0148 4716 adpu320 - ok
14:47:09.0273 4716 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\Windows\System32\aelupsvc.dll
14:47:09.0273 4716 AeLookupSvc - ok
14:47:09.0429 4716 AESTFilters (827dbc22c96eecf6d36a13162fabafd3) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_7293d4b16ec87cbb\aestsrv.exe
14:47:09.0445 4716 AESTFilters - ok
14:47:10.0833 4716 AFD (0db7a48388d54d154ebec120461a0fcd) C:\Windows\system32\drivers\afd.sys
14:47:10.0864 4716 AFD - ok
14:47:11.0239 4716 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\DRIVERS\agp440.sys
14:47:11.0270 4716 agp440 - ok
14:47:11.0301 4716 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
14:47:11.0332 4716 aic78xx - ok
14:47:11.0379 4716 ALG (18a54e132947cd98fea9accc57f98f13) C:\Windows\System32\alg.exe
14:47:11.0441 4716 ALG - ok
14:47:11.0457 4716 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\DRIVERS\aliide.sys
14:47:11.0473 4716 aliide - ok
14:47:11.0488 4716 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\DRIVERS\amdagp.sys
14:47:11.0504 4716 amdagp - ok
14:47:11.0535 4716 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\DRIVERS\amdide.sys
14:47:11.0551 4716 amdide - ok
14:47:11.0582 4716 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
14:47:11.0597 4716 AmdK8 - ok
14:47:11.0629 4716 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
14:47:11.0660 4716 AmdPPM - ok
14:47:11.0675 4716 amdsata (19ce906b4cdc11fc4fef5745f33a63b6) C:\Windows\system32\drivers\amdsata.sys
14:47:11.0691 4716 amdsata - ok
14:47:11.0738 4716 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
14:47:11.0753 4716 amdsbs - ok
14:47:11.0769 4716 amdxata (869e67d66be326a5a9159fba8746fa70) C:\Windows\system32\drivers\amdxata.sys
14:47:11.0785 4716 amdxata - ok
14:47:11.0816 4716 AppID (feb834c02ce1e84b6a38f953ca067706) C:\Windows\system32\drivers\appid.sys
14:47:11.0831 4716 AppID - ok
14:47:11.0863 4716 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\Windows\System32\appidsvc.dll
14:47:11.0878 4716 AppIDSvc - ok
14:47:11.0894 4716 Appinfo (7dead9e3f65dcb2794f2711003bbf650) C:\Windows\System32\appinfo.dll
14:47:11.0909 4716 Appinfo - ok
14:47:11.0956 4716 AppMgmt (a45d184df6a8803da13a0b329517a64a) C:\Windows\System32\appmgmts.dll
14:47:11.0972 4716 AppMgmt - ok
14:47:12.0003 4716 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
14:47:12.0128 4716 arc - ok
14:47:12.0143 4716 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
14:47:12.0237 4716 arcsas - ok
14:47:12.0284 4716 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
14:47:12.0315 4716 AsyncMac - ok
14:47:12.0393 4716 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\DRIVERS\atapi.sys
14:47:12.0393 4716 atapi - ok
14:47:12.0845 4716 AudioEndpointBuilder (510c873bfa135aa829f4180352772734) C:\Windows\System32\Audiosrv.dll
14:47:13.0048 4716 AudioEndpointBuilder - ok
14:47:13.0073 4716 Audiosrv (510c873bfa135aa829f4180352772734) C:\Windows\System32\Audiosrv.dll
14:47:13.0088 4716 Audiosrv - ok
14:47:13.0167 4716 AxInstSV (dd6a431b43e34b91a767d1ce33728175) C:\Windows\System32\AxInstSV.dll
14:47:13.0223 4716 AxInstSV - ok
14:47:13.0299 4716 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
14:47:13.0396 4716 b06bdrv - ok
14:47:13.0495 4716 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
14:47:13.0621 4716 b57nd60x - ok
14:47:13.0935 4716 BBSvc (0d1ea7509f394d8b705b239ee71f5118) C:\Program Files\Microsoft\BingBar\BBSvc.EXE
14:47:14.0191 4716 BBSvc - ok
14:47:14.0262 4716 bcm (54c533ae49cdf9c4630e80379a1090fe) C:\Windows\system32\DRIVERS\drxvi314.sys
14:47:14.0972 4716 bcm - ok
14:47:37.0059 4716 BCM43XX (9c3b534854f0152ed4711d936a2192eb) C:\Windows\system32\DRIVERS\bcmwl6.sys
14:47:37.0200 4716 BCM43XX - ok
14:47:37.0356 4716 bcmbusctr (44a70e32615770a4ec60e0267c0c8408) C:\Windows\system32\DRIVERS\BcmBusCtr.sys
14:47:37.0715 4716 bcmbusctr - ok
14:47:37.0730 4716 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\Windows\System32\bdesvc.dll
14:47:37.0824 4716 BDESVC - ok
14:47:37.0839 4716 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
14:47:37.0949 4716 Beep - ok
14:47:38.0042 4716 BFE (85ac71c045ceb054ed48a7841aae0c11) C:\Windows\System32\bfe.dll
14:47:38.0058 4716 BFE - ok
14:47:38.0183 4716 BITS (53f476476f55a27f580661bde09c4ec4) C:\Windows\System32\qmgr.dll
14:47:38.0370 4716 BITS - ok
14:47:38.0401 4716 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
14:47:38.0479 4716 blbdrive - ok
14:47:38.0510 4716 bowser (9a5c671b7fbae4865149bb11f59b91b2) C:\Windows\system32\DRIVERS\bowser.sys
14:47:38.0510 4716 bowser - ok
14:47:38.0557 4716 BRCMDECO (4f4b36b401f03178f805b1fde1b030d4) C:\Windows\system32\DRIVERS\BRCMHD32.sys
14:47:38.0588 4716 BRCMDECO - ok
14:47:38.0604 4716 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
14:47:38.0697 4716 BrFiltLo - ok
14:47:38.0713 4716 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
14:47:38.0807 4716 BrFiltUp - ok
14:47:38.0838 4716 Browser (598e1280e7ff3744f4b8329366cc5635) C:\Windows\System32\browser.dll
14:47:38.0853 4716 Browser - ok
14:47:38.0916 4716 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
14:47:38.0978 4716 Brserid - ok
14:47:39.0009 4716 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
14:47:39.0072 4716 BrSerWdm - ok
14:47:39.0119 4716 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
14:47:39.0165 4716 BrUsbMdm - ok
14:47:39.0181 4716 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
14:47:39.0259 4716 BrUsbSer - ok
14:47:39.0306 4716 BthEnum (2865a5c8e98c70c605f417908cebb3a4) C:\Windows\system32\drivers\BthEnum.sys
14:47:39.0384 4716 BthEnum - ok
14:47:39.0399 4716 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
14:47:39.0446 4716 BTHMODEM - ok
14:47:39.0477 4716 BthPan (ad1872e5829e8a2c3b5b4b641c3eab0e) C:\Windows\system32\DRIVERS\bthpan.sys
14:47:39.0524 4716 BthPan - ok
14:47:39.0602 4716 BTHPORT (63f969e2100b255430d624727c26fa08) C:\Windows\System32\Drivers\BTHport.sys
14:47:39.0633 4716 BTHPORT - ok
14:47:39.0680 4716 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\Windows\system32\bthserv.dll
14:47:39.0711 4716 bthserv - ok
14:47:39.0758 4716 BTHUSB (1c786c1eadf2e19c55153d4653c1eafd) C:\Windows\System32\Drivers\BTHUSB.sys
14:47:39.0789 4716 BTHUSB - ok
14:47:39.0836 4716 btwampfl (7061fe1715e5aded120fe4c608609357) C:\Windows\system32\drivers\btwampfl.sys
14:47:39.0914 4716 btwampfl - ok
14:47:39.0961 4716 btwaudio (a95b2fb3ca7b555b5cb306153f48ced8) C:\Windows\system32\drivers\btwaudio.sys
14:47:40.0086 4716 btwaudio - ok
14:47:40.0133 4716 btwavdt (1f9cd885f1c548be93962ccabdb632e4) C:\Windows\system32\drivers\btwavdt.sys
14:47:40.0179 4716 btwavdt - ok
14:47:40.0304 4716 btwdins (e1f6f7409bd843cfa05e2c314fe2c3bf) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
14:47:40.0320 4716 btwdins - ok
14:47:40.0335 4716 btwl2cap (de53089f0678cb5f0afeb867acb0fb05) C:\Windows\system32\DRIVERS\btwl2cap.sys
14:47:40.0413 4716 btwl2cap - ok
14:47:40.0445 4716 btwrchid (a2d6c7b7b62a6c42dcb01204a6bd6fc2) C:\Windows\system32\DRIVERS\btwrchid.sys
14:47:40.0507 4716 btwrchid - ok
14:47:40.0523 4716 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
14:47:40.0601 4716 cdfs - ok
14:47:40.0647 4716 cdrom (ba6e70aa0e6091bc39de29477d866a77) C:\Windows\system32\DRIVERS\cdrom.sys
14:47:40.0694 4716 cdrom - ok
14:47:40.0710 4716 CertPropSvc (628a9e30ec5e18dd5de6be4dbdc12198) C:\Windows\System32\certprop.dll
14:47:40.0772 4716 CertPropSvc - ok
14:47:40.0788 4716 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
14:47:40.0835 4716 circlass - ok
14:47:40.0897 4716 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
14:47:40.0913 4716 CLFS - ok
14:47:40.0959 4716 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:47:41.0006 4716 clr_optimization_v2.0.50727_32 - ok
14:47:41.0084 4716 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:47:41.0131 4716 clr_optimization_v4.0.30319_32 - ok
14:47:41.0162 4716 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
14:47:41.0209 4716 CmBatt - ok
14:47:41.0225 4716 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\DRIVERS\cmdide.sys
14:47:41.0287 4716 cmdide - ok
14:47:41.0349 4716 CNG (db5e008b3744dd60c8498cbbf2a1cfa6) C:\Windows\system32\Drivers\cng.sys
14:47:41.0349 4716 CNG - ok
14:47:41.0381 4716 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
14:47:41.0381 4716 Compbatt - ok
14:47:41.0412 4716 CompositeBus (f1724ba27e97d627f808fb0ba77a28a6) C:\Windows\system32\DRIVERS\CompositeBus.sys
14:47:41.0474 4716 CompositeBus - ok
14:47:41.0490 4716 COMSysApp - ok
14:47:41.0537 4716 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
14:47:41.0583 4716 crcdisk - ok
14:47:41.0646 4716 CryptSvc (520a108a2657f4bca7fced9ca7d885de) C:\Windows\system32\cryptsvc.dll
14:47:41.0646 4716 CryptSvc - ok
14:47:41.0708 4716 CSC (27c9490bdd0ae48911ab8cf1932591ed) C:\Windows\system32\drivers\csc.sys
14:47:41.0833 4716 CSC - ok
14:47:41.0927 4716 CscService (56fb5f222ea30d3d3fc459879772cb73) C:\Windows\System32\cscsvc.dll
14:47:41.0942 4716 CscService - ok
14:47:41.0973 4716 dc3d (94010220445f181ade8e7ca9c3a98bf4) C:\Windows\system32\DRIVERS\dc3d.sys
14:47:42.0020 4716 dc3d - ok
14:47:42.0145 4716 DcomLaunch (b82cd39e336973359d7c9bf911e8e84f) C:\Windows\system32\rpcss.dll
14:47:42.0161 4716 DcomLaunch - ok
14:47:42.0223 4716 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\Windows\System32\defragsvc.dll
14:47:42.0285 4716 defragsvc - ok
14:47:42.0317 4716 DfsC (83d1ecea8faae75604c0fa49ac7ad996) C:\Windows\system32\Drivers\dfsc.sys
14:47:42.0348 4716 DfsC - ok
14:47:42.0410 4716 Dhcp (c56495fbd770712367cad35e5de72da6) C:\Windows\system32\dhcpcore.dll
14:47:42.0426 4716 Dhcp - ok
14:47:42.0457 4716 DIFMBUS (3a3b89d0b10a24cc031f98d2afdca5ce) C:\Windows\system32\DRIVERS\DIFMBUS.sys
14:47:42.0519 4716 DIFMBUS - ok
14:47:42.0582 4716 DIFMCVsp (2ac5571844e89e2acfee99a79eb7dab9) C:\Windows\system32\DRIVERS\DIFMCVsp.sys
14:47:42.0800 4716 DIFMCVsp - ok
14:47:42.0863 4716 DIFMMdm (daa170e853a84d01516a75de8b96ac9a) C:\Windows\system32\DRIVERS\DIFMMdm.sys
14:47:42.0909 4716 DIFMMdm - ok
14:47:42.0941 4716 DIFMNET (d1563cf53d3347a40d548f2b7c209d9f) C:\Windows\system32\DRIVERS\DIFMNET.sys
14:47:42.0987 4716 DIFMNET - ok
14:47:43.0034 4716 DIFMNVsp (6f847c47daf9ab1cc06e85778877ff0c) C:\Windows\system32\DRIVERS\DIFMNVsp.sys
14:47:43.0065 4716 DIFMNVsp - ok
14:47:43.0112 4716 DIFMVsp (d1a8366667c084c23673707d7af0dc3d) C:\Windows\system32\DRIVERS\DIFMVsp.sys
14:47:43.0143 4716 DIFMVsp - ok
14:47:43.0206 4716 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
14:47:43.0221 4716 discache - ok
14:47:43.0268 4716 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
14:47:43.0268 4716 Disk - ok
14:47:43.0299 4716 Dnscache (b15be77a2bacf9c3177d27518afe26a9) C:\Windows\System32\dnsrslvr.dll
14:47:43.0315 4716 Dnscache - ok
14:47:43.0362 4716 dnWhoDisp (201d48cd1c4e874e071444ce7c874813) C:\Program Files\Rockwell Software\RSLINX\dnwhodisp.exe
14:47:43.0970 4716 dnWhoDisp - ok
14:47:44.0017 4716 dot3svc (4408c85c21eea48eb0ce486baeef0502) C:\Windows\System32\dot3svc.dll
14:47:44.0095 4716 dot3svc - ok
14:47:44.0142 4716 DPS (7fa81c6e11caa594adb52084da73a1e5) C:\Windows\system32\dps.dll
14:47:44.0157 4716 DPS - ok
14:47:44.0298 4716 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
14:47:44.0345 4716 drmkaud - ok
14:47:44.0516 4716 DXGKrnl (1679a4669326cb1a67cc95658d273234) C:\Windows\System32\drivers\dxgkrnl.sys
14:47:44.0969 4716 DXGKrnl - ok
14:47:45.0062 4716 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\Windows\System32\eapsvc.dll
14:47:45.0062 4716 EapHost - ok
14:48:02.0363 4716 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
14:48:02.0503 4716 ebdrv - ok
14:48:03.0486 4716 EFS (c2243ff9e9aad0c30e8b1a0914da15b6) C:\Windows\System32\lsass.exe
14:48:03.0704 4716 EFS - ok
14:48:04.0625 4716 ehRecvr (1697c39978cd69f6fbc15302edcece1f) C:\Windows\ehome\ehRecvr.exe
14:48:04.0687 4716 ehRecvr - ok
14:48:04.0765 4716 ehSched (d389bff34f80caede417bf9d1507996a) C:\Windows\ehome\ehsched.exe
14:48:04.0781 4716 ehSched - ok
14:48:04.0952 4716 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
14:48:05.0015 4716 elxstor - ok
14:48:05.0030 4716 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\DRIVERS\errdev.sys
14:48:05.0108 4716 ErrDev - ok
14:48:05.0202 4716 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\Windows\system32\es.dll
14:48:05.0217 4716 EventSystem - ok
14:48:05.0264 4716 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
14:48:05.0264 4716 exfat - ok
14:48:05.0327 4716 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
14:48:05.0342 4716 fastfat - ok
14:48:05.0529 4716 Fax (f7ea23cc5e6bf2181f3f399d54f6efc1) C:\Windows\system32\fxssvc.exe
14:48:05.0561 4716 Fax - ok
14:48:05.0685 4716 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
14:48:05.0701 4716 fdc - ok
14:48:05.0748 4716 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\Windows\system32\fdPHost.dll
14:48:05.0763 4716 fdPHost - ok
14:48:05.0810 4716 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\Windows\system32\fdrespub.dll
14:48:05.0810 4716 FDResPub - ok
14:48:05.0857 4716 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
14:48:05.0857 4716 FileInfo - ok
14:48:06.0325 4716 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
14:48:06.0356 4716 Filetrace - ok
14:48:06.0403 4716 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
14:48:06.0481 4716 flpydisk - ok
14:48:06.0528 4716 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
14:48:06.0543 4716 FltMgr - ok
14:48:07.0121 4716 FontCache (7fe4995528a7529a761875151ee3d512) C:\Windows\system32\FntCache.dll
14:48:07.0183 4716 FontCache - ok
14:48:07.0230 4716 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
14:48:07.0261 4716 FontCache3.0.0.0 - ok
14:48:07.0308 4716 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
14:48:07.0323 4716 FsDepends - ok
14:48:07.0370 4716 fssfltr (b0082808a6856a252f7cdd939892ce50) C:\Windows\system32\DRIVERS\fssfltr.sys
14:48:07.0386 4716 fssfltr - ok
14:48:08.0431 4716 fsssvc (28ddeeec44e988657b732cf404d504cb) C:\Program Files\Windows Live\Family Safety\fsssvc.exe
14:48:08.0478 4716 fsssvc - ok
14:48:09.0211 4716 Fs_Rec (500a9814fd9446a8126858a5a7f7d273) C:\Windows\system32\drivers\Fs_Rec.sys
14:48:09.0211 4716 Fs_Rec - ok
14:48:10.0007 4716 fvevol (dafbd9fe39197495aed6d51f3b85b5d2) C:\Windows\system32\DRIVERS\fvevol.sys
14:48:10.0022 4716 fvevol - ok
14:48:10.0069 4716 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
14:48:10.0163 4716 gagp30kx - ok
14:48:10.0256 4716 gpsvc (8ba3c04702bf8f927ab36ae8313ca4ee) C:\Windows\System32\gpsvc.dll
14:48:10.0272 4716 gpsvc - ok
14:48:10.0475 4716 Harmony (732ccd45411dd65fb8e442b12f3dbd7e) C:\Program Files\Rockwell Software\RSCommon\RSOBSERV.EXE
14:48:11.0598 4716 Harmony - ok
14:48:11.0645 4716 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
14:48:11.0754 4716 hcw85cir - ok
14:48:11.0910 4716 HdAudAddService (3530cad25deba7dc7de8bb51632cbc5f) C:\Windows\system32\drivers\HdAudio.sys
14:48:11.0972 4716 HdAudAddService - ok
14:48:12.0003 4716 HDAudBus (717a2207fd6f13ad3e664c7d5a43c7bf) C:\Windows\system32\DRIVERS\HDAudBus.sys
14:48:12.0019 4716 HDAudBus - ok
14:48:12.0081 4716 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
14:48:12.0113 4716 HidBatt - ok
14:48:12.0144 4716 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
14:48:12.0191 4716 HidBth - ok
14:48:12.0284 4716 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
14:48:12.0393 4716 HidIr - ok
14:48:12.0783 4716 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\Windows\system32\hidserv.dll
14:48:12.0815 4716 hidserv - ok
14:48:12.0830 4716 HidUsb (25072fb35ac90b25f9e4e3bacf774102) C:\Windows\system32\DRIVERS\hidusb.sys
14:48:13.0220 4716 HidUsb - ok
14:48:13.0251 4716 hkmsvc (741c2a45ca8407e374aaba3e330b7872) C:\Windows\system32\kmsvc.dll
14:48:13.0314 4716 hkmsvc - ok
14:48:13.0376 4716 HomeGroupListener (a768ca158bb06782a2835b907f4873c3) C:\Windows\system32\ListSvc.dll
14:48:13.0439 4716 HomeGroupListener - ok
14:48:14.0889 4716 HomeGroupProvider (fb08dec5ef43d0c66d83b8e9694e7549) C:\Windows\system32\provsvc.dll
14:48:14.0921 4716 HomeGroupProvider - ok
14:48:15.0014 4716 hpqwmiex (ef3ea06057132138b4e5895a61601dbe) C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
14:48:15.0014 4716 hpqwmiex - ok
14:48:15.0108 4716 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\DRIVERS\HpSAMD.sys
14:48:15.0155 4716 HpSAMD - ok
14:48:15.0201 4716 HPWMISVC (760d9b546ab3ec551d7827c88c026194) C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
14:48:15.0201 4716 HPWMISVC - ok
14:48:15.0342 4716 HTTP (c531c7fd9e8b62021112787c4e2c5a5a) C:\Windows\system32\drivers\HTTP.sys
14:48:15.0373 4716 HTTP - ok
14:48:15.0420 4716 hwpolicy (8305f33cde89ad6c7a0763ed0b5a8d42) C:\Windows\system32\drivers\hwpolicy.sys
14:48:15.0420 4716 hwpolicy - ok
14:48:15.0467 4716 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\DRIVERS\i8042prt.sys
14:48:15.0482 4716 i8042prt - ok
14:48:15.0623 4716 iaStorV (71f1a494fedf4b33c02c4a6a28d6d9e9) C:\Windows\system32\drivers\iaStorV.sys
14:48:15.0638 4716 iaStorV - ok
14:48:15.0888 4716 idsvc (5af815eb5bc9802e5a064e2ba62bfc0c) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
14:48:15.0919 4716 idsvc - ok
14:48:16.0044 4716 igd (56983a00e6c4f38f7b69ca3171a044ad) C:\Windows\system32\DRIVERS\igdkmd32.sys
14:48:16.0106 4716 igd - ok
14:48:16.0153 4716 igfx (56983a00e6c4f38f7b69ca3171a044ad) C:\Windows\system32\DRIVERS\igdkmd32.sys
14:48:16.0153 4716 igfx - ok
14:48:16.0200 4716 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
14:48:16.0231 4716 iirsp - ok
14:48:16.0418 4716 IKEEXT (fac0ee6562b121b1399d6e855583f7a5) C:\Windows\System32\ikeext.dll
14:48:16.0449 4716 IKEEXT - ok
14:48:16.0496 4716 IntcHdmiAddService (5cf0990fc1f6676f7b00366ab224da92) C:\Windows\system32\drivers\IntcHdmi.sys
14:48:16.0512 4716 IntcHdmiAddService - ok
14:48:16.0527 4716 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\DRIVERS\intelide.sys
14:48:16.0574 4716 intelide - ok
14:48:16.0605 4716 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
14:48:16.0621 4716 intelppm - ok
14:48:16.0699 4716 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\Windows\system32\ipbusenum.dll
14:48:16.0793 4716 IPBusEnum - ok
14:48:16.0824 4716 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:48:16.0871 4716 IpFilterDriver - ok
14:48:16.0933 4716 iphlpsvc (477397b432a256a50ee7e4339eb9ea14) C:\Windows\System32\iphlpsvc.dll
14:48:16.0949 4716 iphlpsvc - ok
14:48:16.0980 4716 IPMIDRV (e4454b6c37d7ffd5649611f6496308a7) C:\Windows\system32\DRIVERS\IPMIDrv.sys
14:48:17.0058 4716 IPMIDRV - ok
14:48:17.0089 4716 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
14:48:17.0136 4716 IPNAT - ok
14:48:17.0214 4716 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
14:48:17.0276 4716 IRENUM - ok
14:48:17.0339 4716 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\DRIVERS\isapnp.sys
14:48:17.0354 4716 isapnp - ok
14:48:17.0417 4716 iScsiPrt (ed46c223ae46c6866ab77cdc41c404b7) C:\Windows\system32\DRIVERS\msiscsi.sys
14:48:17.0432 4716 iScsiPrt - ok
14:48:17.0526 4716 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys
14:48:17.0619 4716 kbdclass - ok
14:48:17.0729 4716 kbdhid (3d9f0ebf350edcfd6498057301455964) C:\Windows\system32\DRIVERS\kbdhid.sys
14:48:17.0791 4716 kbdhid - ok
14:48:17.0853 4716 KeyIso (c2243ff9e9aad0c30e8b1a0914da15b6) C:\Windows\system32\lsass.exe
14:48:17.0869 4716 KeyIso - ok
14:48:17.0900 4716 KSecDD (52fc17c8589f11747d01d3cf592673d0) C:\Windows\system32\Drivers\ksecdd.sys
14:48:17.0900 4716 KSecDD - ok
14:48:17.0947 4716 KSecPkg (3e5474b03568cfab834da3c38e8c9efa) C:\Windows\system32\Drivers\ksecpkg.sys
14:48:17.0947 4716 KSecPkg - ok
14:48:18.0072 4716 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\Windows\system32\msdtckrm.dll
14:48:18.0165 4716 KtmRm - ok
14:48:18.0197 4716 LanmanServer (8f6bf790d3168224c16f2af68a84438c) C:\Windows\system32\srvsvc.dll
14:48:18.0212 4716 LanmanServer - ok
14:48:18.0259 4716 LanmanWorkstation (b9891f885dcf1f0513a51cb58493cb1f) C:\Windows\System32\wkssvc.dll
14:48:18.0259 4716 LanmanWorkstation - ok
14:48:18.0306 4716 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
14:48:18.0321 4716 lltdio - ok
14:48:18.0368 4716 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\Windows\System32\lltdsvc.dll
14:48:18.0384 4716 lltdsvc - ok
14:48:18.0446 4716 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\Windows\System32\lmhsvc.dll
14:48:18.0446 4716 lmhosts - ok
14:48:18.0555 4716 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
14:48:18.0587 4716 LSI_FC - ok
14:48:18.0774 4716 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
14:48:18.0774 4716 LSI_SAS - ok
14:48:18.0805 4716 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
14:48:18.0821 4716 LSI_SAS2 - ok
14:48:18.0867 4716 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
14:48:18.0961 4716 LSI_SCSI - ok
14:48:19.0039 4716 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
14:48:19.0148 4716 luafv - ok
14:48:19.0226 4716 massfilter_hs (3c7b3072c3c5cc23f5fd46f8dfda7480) C:\Windows\system32\drivers\massfilter_hs.sys
14:48:19.0289 4716 massfilter_hs - ok
14:48:19.0320 4716 Mcx2Svc (e2b0887816ed336685954e3d8fdaa51d) C:\Windows\system32\Mcx2Svc.dll
14:48:19.0445 4716 Mcx2Svc - ok
14:48:19.0476 4716 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
14:48:19.0507 4716 megasas - ok
14:48:19.0585 4716 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
14:48:19.0601 4716 MegaSR - ok
14:48:19.0632 4716 Microsoft SharePoint Workspace Audit Service - ok
14:48:19.0803 4716 MKCBNX - ok
14:48:19.0975 4716 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
14:48:19.0975 4716 MMCSS - ok
14:48:20.0022 4716 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
14:48:20.0053 4716 Modem - ok
14:48:20.0069 4716 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
14:48:20.0100 4716 monitor - ok
14:48:20.0209 4716 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
14:48:20.0256 4716 mouclass - ok
14:48:20.0287 4716 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
14:48:20.0303 4716 mouhid - ok
14:48:20.0427 4716 mountmgr (921c18727c5920d6c0300736646931c2) C:\Windows\system32\drivers\mountmgr.sys
14:48:20.0443 4716 mountmgr - ok
14:48:20.0505 4716 MpFilter (d993bea500e7382dc4e760bf4f35efcb) C:\Windows\system32\DRIVERS\MpFilter.sys
14:48:20.0505 4716 MpFilter - ok
14:48:20.0552 4716 mpio (2af5997438c55fb79d33d015c30e1974) C:\Windows\system32\DRIVERS\mpio.sys
14:48:20.0568 4716 mpio - ok
14:48:20.0833 4716 MpKsl30b64753 (a69630d039c38018689190234f866d77) c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{CF462509-8BDA-49C0-BADC-579E2C6AECBC}\MpKsl30b64753.sys
14:48:21.0067 4716 MpKsl30b64753 - ok
14:48:21.0083 4716 MpKsl823a7f47 (a69630d039c38018689190234f866d77) c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{CF462509-8BDA-49C0-BADC-579E2C6AECBC}\MpKsl823a7f47.sys
14:48:21.0441 4716 Suspicious file (Forged): c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{CF462509-8BDA-49C0-BADC-579E2C6AECBC}\MpKsl823a7f47.sys. Real md5: a69630d039c38018689190234f866d77, Fake md5: 4137ee420481d10734da3018d0325582
14:48:21.0441 4716 MpKsl823a7f47 ( ForgedFile.Multi.Generic ) - warning
14:48:21.0441 4716 MpKsl823a7f47 - detected ForgedFile.Multi.Generic (1)
14:48:21.0457 4716 MpKsl8616ba10 (a69630d039c38018689190234f866d77) c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{CF462509-8BDA-49C0-BADC-579E2C6AECBC}\MpKsl8616ba10.sys
14:48:22.0019 4716 MpKsl8616ba10 - ok
14:48:22.0097 4716 MpKsla44208f0 (a69630d039c38018689190234f866d77) c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{CF462509-8BDA-49C0-BADC-579E2C6AECBC}\MpKsla44208f0.sys
14:48:22.0377 4716 Suspicious file (Forged): c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{CF462509-8BDA-49C0-BADC-579E2C6AECBC}\MpKsla44208f0.sys. Real md5: a69630d039c38018689190234f866d77, Fake md5: 4137ee420481d10734da3018d0325582
14:48:22.0377 4716 MpKsla44208f0 ( ForgedFile.Multi.Generic ) - warning
14:48:22.0377 4716 MpKsla44208f0 - detected ForgedFile.Multi.Generic (1)
14:48:22.0409 4716 MpKslb218ea72 (a69630d039c38018689190234f866d77) c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{CF462509-8BDA-49C0-BADC-579E2C6AECBC}\MpKslb218ea72.sys
14:48:22.0487 4716 Suspicious file (Forged): c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{CF462509-8BDA-49C0-BADC-579E2C6AECBC}\MpKslb218ea72.sys. Real md5: a69630d039c38018689190234f866d77, Fake md5: 4137ee420481d10734da3018d0325582
14:48:22.0487 4716 MpKslb218ea72 ( ForgedFile.Multi.Generic ) - warning
14:48:22.0487 4716 MpKslb218ea72 - detected ForgedFile.Multi.Generic (1)
14:48:22.0502 4716 MpKslc27215b1 (a69630d039c38018689190234f866d77) c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{CF462509-8BDA-49C0-BADC-579E2C6AECBC}\MpKslc27215b1.sys
14:48:22.0502 4716 MpKslc27215b1 - ok
14:48:22.0565 4716 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
14:48:22.0565 4716 mpsdrv - ok
14:48:22.0705 4716 MpsSvc (5cd996cecf45cbc3e8d109c86b82d69e) C:\Windows\system32\mpssvc.dll
14:48:22.0736 4716 MpsSvc - ok
14:48:22.0767 4716 MRxDAV (b1be47008d20e43da3adc37c24cdb89d) C:\Windows\system32\drivers\mrxdav.sys
14:48:22.0814 4716 MRxDAV - ok
14:48:22.0845 4716 mrxsmb (ca7570e42522e24324a12161db14ec02) C:\Windows\system32\DRIVERS\mrxsmb.sys
14:48:22.0845 4716 mrxsmb - ok
14:48:22.0908 4716 mrxsmb10 (f965c3ab2b2ae5c378f4562486e35051) C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:48:22.0908 4716 mrxsmb10 - ok
14:48:23.0048 4716 mrxsmb20 (25c38264a3c72594dd21d355d70d7a5d) C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:48:23.0064 4716 mrxsmb20 - ok
14:48:23.0079 4716 msahci (5d9e758baefb5a4f3639e755c66625aa) C:\Windows\system32\DRIVERS\msahci.sys
14:48:23.0204 4716 msahci - ok
14:48:23.0235 4716 msdsm (455029c7174a2dbb03dba8a0d8bddd9a) C:\Windows\system32\DRIVERS\msdsm.sys
14:48:23.0267 4716 msdsm - ok
14:48:23.0313 4716 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\Windows\System32\msdtc.exe
14:48:23.0313 4716 MSDTC - ok
14:48:23.0376 4716 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
14:48:23.0407 4716 Msfs - ok
14:48:25.0139 4716 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
14:48:25.0186 4716 mshidkmdf - ok
14:48:25.0217 4716 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\DRIVERS\msisadrv.sys
14:48:25.0232 4716 msisadrv - ok
14:48:25.0279 4716 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\Windows\system32\iscsiexe.dll
14:48:25.0326 4716 MSiSCSI - ok
14:48:25.0357 4716 msiserver - ok
14:48:25.0404 4716 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
14:48:25.0420 4716 MSKSSRV - ok
14:48:25.0451 4716 MsMpSvc (24516bf4e12a46cb67302e2cdcb8cddf) c:\Program Files\Microsoft Security Client\MsMpEng.exe
14:48:25.0451 4716 MsMpSvc - ok
14:48:25.0498 4716 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
14:48:25.0513 4716 MSPCLOCK - ok
14:48:25.0544 4716 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
14:48:25.0638 4716 MSPQM - ok
14:48:25.0685 4716 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
14:48:25.0700 4716 MsRPC - ok
14:48:25.0732 4716 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\DRIVERS\mssmbios.sys
14:48:25.0747 4716 mssmbios - ok
14:48:25.0763 4716 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
14:48:25.0810 4716 MSTEE - ok
14:48:25.0841 4716 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
14:48:25.0950 4716 MTConfig - ok
14:48:25.0981 4716 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
14:48:25.0981 4716 Mup - ok
14:48:26.0075 4716 napagent (80284f1985c70c86f0b5f86da2dfe1df) C:\Windows\system32\qagentRT.dll
14:48:26.0090 4716 napagent - ok
14:48:26.0168 4716 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
14:48:26.0184 4716 NativeWifiP - ok
14:48:26.0293 4716 NDIS (23759d175a0a9baaf04d05047bc135a8) C:\Windows\system32\drivers\ndis.sys
14:48:26.0309 4716 NDIS - ok
14:48:26.0340 4716 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
14:48:26.0356 4716 NdisCap - ok
14:48:26.0387 4716 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
14:48:26.0418 4716 NdisTapi - ok
14:48:26.0449 4716 Ndisuio (b30ae7f2b6d7e343b0df32e6c08fce75) C:\Windows\system32\DRIVERS\ndisuio.sys
14:48:26.0449 4716 Ndisuio - ok
14:48:26.0496 4716 NdisWan (267c415eadcbe53c9ca873dee39cf3a4) C:\Windows\system32\DRIVERS\ndiswan.sys
14:48:26.0512 4716 NdisWan - ok
14:48:26.0543 4716 NDProxy (af7e7c63dcef3f8772726f86039d6eb4) C:\Windows\system32\drivers\NDProxy.sys
14:48:26.0558 4716 NDProxy - ok
14:48:26.0590 4716 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
14:48:26.0605 4716 NetBIOS - ok
14:48:26.0652 4716 NetBT (dd52a733bf4ca5af84562a5e2f963b91) C:\Windows\system32\DRIVERS\netbt.sys
14:48:26.0652 4716 NetBT - ok
14:48:26.0683 4716 Netlogon (c2243ff9e9aad0c30e8b1a0914da15b6) C:\Windows\system32\lsass.exe
14:48:26.0699 4716 Netlogon - ok
14:48:26.0761 4716 Netman (7cccfca7510684768da22092d1fa4db2) C:\Windows\System32\netman.dll
14:48:26.0792 4716 Netman - ok
14:48:26.0855 4716 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\Windows\System32\netprofm.dll
14:48:26.0870 4716 netprofm - ok
14:48:26.0902 4716 NetTcpPortSharing (fe2aa5a684b0dd9b1fae57b7817c198b) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
14:48:26.0995 4716 NetTcpPortSharing - ok
14:48:27.0744 4716 netw5v32 (58218ec6b61b1169cf54aab0d00f5fe2) C:\Windows\system32\DRIVERS\netw5v32.sys
14:48:27.0869 4716 netw5v32 - ok
14:48:28.0025 4716 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
14:48:28.0056 4716 nfrd960 - ok
14:48:28.0087 4716 NisDrv (b52f26bade7d7e4a79706e3fd91834cd) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
14:48:28.0118 4716 NisDrv - ok
14:48:28.0212 4716 NisSrv (290c0d4c4889398797f8df3be00b9698) c:\Program Files\Microsoft Security Client\NisSrv.exe
14:48:28.0337 4716 NisSrv - ok
14:48:28.0462 4716 NlaSvc (2226496e34bd40734946a054b1cd657f) C:\Windows\System32\nlasvc.dll
14:48:28.0462 4716 NlaSvc - ok
14:48:28.0493 4716 Nmea - ok
14:48:28.0540 4716 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
14:48:28.0555 4716 Npfs - ok
14:48:28.0586 4716 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\Windows\system32\nsisvc.dll
14:48:28.0602 4716 nsi - ok
14:48:28.0664 4716 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
14:48:28.0664 4716 nsiproxy - ok
14:48:28.0992 4716 Ntfs (187002ce05693c306f43c873f821381f) C:\Windows\system32\drivers\Ntfs.sys
14:48:29.0023 4716 Ntfs - ok
14:48:29.0164 4716 NtrigDigitizerUSBLowerFilter (c4695f4cd171127a006dd236dfdebfcc) C:\Windows\system32\DRIVERS\NtrigDigitizerUSBLowerFilter.sys
14:48:29.0179 4716 NtrigDigitizerUSBLowerFilter - ok
14:48:29.0210 4716 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
14:48:29.0226 4716 Null - ok
14:48:29.0273 4716 nvraid (f1b0bed906f97e16f6d0c3629d2f21c6) C:\Windows\system32\drivers\nvraid.sys
14:48:29.0304 4716 nvraid - ok
14:48:29.0460 4716 nvstor (4520b63899e867f354ee012d34e11536) C:\Windows\system32\drivers\nvstor.sys
14:48:29.0507 4716 nvstor - ok
14:48:29.0538 4716 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\DRIVERS\nv_agp.sys
14:48:29.0554 4716 nv_agp - ok
14:48:29.0616 4716 NWADI (93213c7ec08e01e37a935bf144e75df6) C:\Windows\system32\DRIVERS\NWADIenum.sys
14:48:29.0632 4716 NWADI - ok
14:48:29.0678 4716 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\DRIVERS\ohci1394.sys
14:48:29.0756 4716 ohci1394 - ok
14:48:29.0803 4716 OpcEnum (a12b32fb9e4c88998997e61db4a07670) C:\Windows\system32\OpcEnum.exe
14:48:30.0162 4716 OpcEnum - ok
14:48:30.0240 4716 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:48:30.0256 4716 ose - ok
14:48:30.0895 4716 osppsvc (358a9cca612c68eb2f07ddad4ce1d8d7) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
14:48:31.0004 4716 osppsvc - ok
14:48:31.0847 4716 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
14:48:31.0862 4716 p2pimsvc - ok
14:48:31.0940 4716 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\Windows\system32\p2psvc.dll
14:48:31.0972 4716 p2psvc - ok
14:48:32.0034 4716 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
14:48:32.0050 4716 Parport - ok
14:48:32.0689 4716 partmgr (66d3415c159741ade7038a277efff99f) C:\Windows\system32\drivers\partmgr.sys
14:48:32.0705 4716 partmgr - ok
14:48:32.0908 4716 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
14:48:32.0908 4716 Parvdm - ok
14:48:33.0017 4716 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\Windows\System32\pcasvc.dll
14:48:33.0064 4716 PcaSvc - ok
14:48:33.0126 4716 pci (c858cb77c577780ecc456a892e7e7d0f) C:\Windows\system32\DRIVERS\pci.sys
14:48:33.0126 4716 pci - ok
14:48:33.0188 4716 pcidnt - ok
14:48:33.0204 4716 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\DRIVERS\pciide.sys
14:48:33.0204 4716 pciide - ok
14:48:33.0282 4716 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
14:48:33.0313 4716 pcmcia - ok
14:48:33.0516 4716 PCTINDIS5 - ok
14:48:33.0563 4716 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
14:48:33.0578 4716 pcw - ok
14:48:33.0766 4716 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
14:48:33.0781 4716 PEAUTH - ok
14:48:33.0906 4716 PeerDistSvc (af4d64d2a57b9772cf3801950b8058a6) C:\Windows\system32\peerdistsvc.dll
14:48:34.0187 4716 PeerDistSvc - ok
14:48:34.0530 4716 pla (9c1bff7910c89a1d12e57343475840cb) C:\Windows\system32\pla.dll
14:48:34.0592 4716 pla - ok
14:48:34.0717 4716 PlugPlay (71def5ec79774c798342d0ea16e41780) C:\Windows\system32\umpnpmgr.dll
14:48:34.0748 4716 PlugPlay - ok
14:48:34.0795 4716 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\Windows\system32\pnrpauto.dll
14:48:34.0826 4716 PNRPAutoReg - ok
14:48:34.0951 4716 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
14:48:34.0967 4716 PNRPsvc - ok
14:48:35.0045 4716 PolicyAgent (48e1b75c6dc0232fd92baae4bd344721) C:\Windows\System32\ipsecsvc.dll
14:48:35.0107 4716 PolicyAgent - ok
14:48:35.0170 4716 Power (dbff83f709a91049621c1d35dd45c92c) C:\Windows\system32\umpo.dll
14:48:35.0216 4716 Power - ok
14:48:35.0248 4716 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
14:48:35.0357 4716 PptpMiniport - ok
14:48:35.0388 4716 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
14:48:35.0466 4716 Processor - ok
14:48:35.0513 4716 ProfSvc (aea3bdbdba667aa6f678cb38907e4f5e) C:\Windows\system32\profsvc.dll
14:48:35.0528 4716 ProfSvc - ok
14:48:35.0560 4716 ProtectedStorage (c2243ff9e9aad0c30e8b1a0914da15b6) C:\Windows\system32\lsass.exe
14:48:35.0560 4716 ProtectedStorage - ok
14:48:35.0622 4716 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
14:48:35.0622 4716 Psched - ok
14:48:35.0981 4716 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
14:48:36.0152 4716 ql2300 - ok
14:48:36.0262 4716 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
14:48:36.0589 4716 ql40xx - ok
14:48:36.0698 4716 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\Windows\system32\qwave.dll
14:48:36.0776 4716 QWAVE - ok
14:48:36.0808 4716 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
14:48:36.0808 4716 QWAVEdrv - ok
14:48:36.0854 4716 RapiMgr (8f97d374ad1857e1eed85a79f29a1d3d) C:\Windows\WindowsMobile\rapimgr.dll
14:48:36.0870 4716 RapiMgr - ok
14:48:36.0901 4716 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
14:48:36.0917 4716 RasAcd - ok
14:48:36.0948 4716 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
14:48:36.0995 4716 RasAgileVpn - ok
14:48:37.0026 4716 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\Windows\System32\rasauto.dll
14:48:37.0151 4716 RasAuto - ok
14:48:37.0182 4716 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
14:48:37.0198 4716 Rasl2tp - ok
14:48:37.0385 4716 RasMan (0ce66ec736b7fc526d78f7624c7d2a94) C:\Windows\System32\rasmans.dll
14:48:37.0416 4716 RasMan - ok
14:48:37.0463 4716 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
14:48:37.0510 4716 RasPppoe - ok
14:48:37.0541 4716 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
14:48:37.0603 4716 RasSstp - ok
14:48:37.0666 4716 rdbss (835d7e81bf517a3b72384bdcc85e1ce6) C:\Windows\system32\DRIVERS\rdbss.sys
14:48:37.0681 4716 rdbss - ok
14:48:37.0728 4716 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
14:48:37.0728 4716 rdpbus - ok
14:48:37.0759 4716 RDPCDD (1e016846895b15a99f9a176a05029075) C:\Windows\system32\DRIVERS\RDPCDD.sys
14:48:37.0759 4716 RDPCDD - ok
14:48:37.0822 4716 RDPDR (c5ff95883ffef704d50c40d21cfb3ab5) C:\Windows\system32\drivers\rdpdr.sys
14:48:37.0837 4716 RDPDR - ok
14:48:37.0868 4716 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
14:48:37.0868 4716 RDPENCDD - ok
14:48:37.0915 4716 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
14:48:37.0931 4716 RDPREFMP - ok
14:48:37.0962 4716 RDPWD (c5b8d47a4688de9d335204ea757c2240) C:\Windows\system32\drivers\RDPWD.sys
14:48:38.0446 4716 RDPWD - ok
14:48:38.0508 4716 rdyboost (4ea225bf1cf05e158853f30a99ca29a7) C:\Windows\system32\drivers\rdyboost.sys
14:48:38.0524 4716 rdyboost - ok
14:48:38.0570 4716 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\Windows\System32\mprdim.dll
14:48:38.0602 4716 RemoteAccess - ok
14:48:38.0664 4716 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\Windows\system32\regsvc.dll
14:48:38.0726 4716 RemoteRegistry - ok
14:48:38.0898 4716 RFCOMM (cb928d9e6daf51879dd6ba8d02f01321) C:\Windows\system32\DRIVERS\rfcomm.sys
14:48:38.0898 4716 RFCOMM - ok
14:48:38.0960 4716 RNADiagnosticsService (dd313735da6029e3364d0a54091874dc) C:\Program Files\Common Files\Rockwell\RNADiagnosticsSrv.exe
14:48:38.0960 4716 RNADiagnosticsService - ok
14:48:39.0038 4716 RNADiagReceiver (18f60539e2b05a25f389765ba212ec48) C:\Program Files\Common Files\Rockwell\RNADiagReceiver.exe
14:48:39.0475 4716 RNADiagReceiver - ok
14:48:39.0506 4716 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\Windows\System32\RpcEpMap.dll
14:48:39.0522 4716 RpcEptMapper - ok
14:48:39.0569 4716 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\Windows\system32\locator.exe
14:48:39.0616 4716 RpcLocator - ok
14:48:39.0709 4716 RpcSs (b82cd39e336973359d7c9bf911e8e84f) C:\Windows\system32\rpcss.dll
14:48:39.0725 4716 RpcSs - ok
14:48:39.0740 4716 RSLinx - ok
14:48:39.0772 4716 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
14:48:39.0787 4716 rspndr - ok
14:48:39.0850 4716 RSSERIAL (b089419975668e2a701178032d652a24) C:\Windows\SYSTEM32\RSSERIAL.SYS
14:48:40.0006 4716 RSSERIAL - ok
14:48:40.0099 4716 RsvcHost (8edd7060ff6599d3ef949aeb698145a4) C:\Program Files\Common Files\Rockwell\RsvcHost.exe
14:48:40.0099 4716 RsvcHost - ok
14:48:40.0146 4716 s3cap (5423d8437051e89dd34749f242c98648) C:\Windows\system32\DRIVERS\vms3cap.sys
14:48:40.0177 4716 s3cap - ok
14:48:40.0208 4716 SamSs (c2243ff9e9aad0c30e8b1a0914da15b6) C:\Windows\system32\lsass.exe
14:48:40.0208 4716 SamSs - ok
14:48:40.0255 4716 sbp2port (34ee0c44b724e3e4ce2eff29126de5b5) C:\Windows\system32\DRIVERS\sbp2port.sys
14:48:40.0271 4716 sbp2port - ok
14:48:40.0333 4716 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\Windows\System32\SCardSvr.dll
14:48:40.0349 4716 SCardSvr - ok
14:48:40.0380 4716 SCDEmu (612a3d69e603dbbe5c3c1079186a0393) C:\Windows\system32\drivers\SCDEmu.sys
14:48:40.0396 4716 SCDEmu - ok
14:48:40.0442 4716 scfilter (a95c54b2ac3cc9c73fcdf9e51a1d6b51) C:\Windows\system32\DRIVERS\scfilter.sys
14:48:40.0474 4716 scfilter - ok
14:48:40.0598 4716 Schedule (df1e5c82e4d09cf8105cc644980c4803) C:\Windows\system32\schedsvc.dll
14:48:40.0630 4716 Schedule - ok
14:48:40.0661 4716 SCPolicySvc (628a9e30ec5e18dd5de6be4dbdc12198) C:\Windows\System32\certprop.dll
14:48:40.0676 4716 SCPolicySvc - ok
14:48:40.0786 4716 sdbus (7b48cff3a475fe849dea65ec4d35c425) C:\Windows\system32\DRIVERS\sdbus.sys
14:48:40.0801 4716 sdbus - ok
14:48:41.0176 4716 SDRSVC (5fd90abdbfaee85986802622cbb03446) C:\Windows\System32\SDRSVC.dll
14:48:41.0316 4716 SDRSVC - ok
14:48:41.0831 4716 SeaPort (78779ee07231c658b483b1f38b5088df) C:\Program Files\Microsoft\BingBar\SeaPort.EXE
14:48:41.0846 4716 SeaPort - ok
14:48:41.0878 4716 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
14:48:41.0893 4716 secdrv - ok
14:48:41.0924 4716 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\Windows\system32\seclogon.dll
14:48:42.0018 4716 seclogon - ok
14:48:42.0299 4716 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\Windows\System32\sens.dll
14:48:42.0330 4716 SENS - ok
14:48:42.0392 4716 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\Windows\system32\sensrsvc.dll
14:48:42.0486 4716 SensrSvc - ok
14:48:42.0533 4716 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
14:48:42.0595 4716 Serenum - ok
14:48:42.0626 4716 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
14:48:42.0658 4716 Serial - ok
14:48:42.0689 4716 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
14:48:42.0704 4716 sermouse - ok
14:48:42.0892 4716 SessionEnv (8f55ce568c543d5adf45c409d16718fc) C:\Windows\system32\sessenv.dll
14:48:42.0970 4716 SessionEnv - ok
14:48:42.0985 4716 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\DRIVERS\sffdisk.sys
14:48:43.0063 4716 sffdisk - ok
14:48:43.0157 4716 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\DRIVERS\sffp_mmc.sys
14:48:43.0157 4716 sffp_mmc - ok
14:48:43.0204 4716 sffp_sd (a0708bbd07d245c06ff9de549ca47185) C:\Windows\system32\DRIVERS\sffp_sd.sys
14:48:43.0266 4716 sffp_sd - ok
14:48:43.0469 4716 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
14:48:43.0500 4716 sfloppy - ok
14:48:43.0578 4716 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\Windows\System32\ipnathlp.dll
14:48:43.0609 4716 SharedAccess - ok
14:48:43.0687 4716 ShellHWDetection (cd2e48fa5b29ee2b3b5858056d246ef2) C:\Windows\System32\shsvcs.dll
14:48:43.0703 4716 ShellHWDetection - ok
14:48:43.0718 4716 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\DRIVERS\sisagp.sys
14:48:43.0734 4716 sisagp - ok
14:48:43.0765 4716 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
14:48:43.0781 4716 SiSRaid2 - ok
14:48:43.0812 4716 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
14:48:43.0812 4716 SiSRaid4 - ok
14:48:43.0859 4716 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
14:48:43.0874 4716 Smb - ok
14:48:43.0906 4716 SMIRegistryTool (6cde3594fce37bc3da45b354e5b0757a) C:\Program Files\Camera Vendor\Virtual WebCam\DriverPackage\XYNTService.exe
14:48:43.0921 4716 SMIRegistryTool - ok
14:48:43.0968 4716 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\Windows\System32\snmptrap.exe
14:48:43.0984 4716 SNMPTRAP - ok
14:48:44.0015 4716 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
14:48:44.0015 4716 spldr - ok
14:48:44.0155 4716 Spooler (d1bb750eb51694de183e08b9c33be5b2) C:\Windows\System32\spoolsv.exe
14:48:44.0171 4716 Spooler - ok
14:48:44.0514 4716 sppsvc (4c287f9069fedbd791178876ee9de536) C:\Windows\system32\sppsvc.exe
14:48:44.0608 4716 sppsvc - ok
14:48:44.0857 4716 sppuinotify (d8e3e19eebdab49dd4a8d3062ead4ec7) C:\Windows\system32\sppuinotify.dll
14:48:44.0888 4716 sppuinotify - ok
14:48:45.0029 4716 srv (c4a027b8c0bd3fc0699f41fa5e9e0c87) C:\Windows\system32\DRIVERS\srv.sys
14:48:45.0060 4716 srv - ok
14:48:45.0762 4716 srv2 (414bb592cad8a79649d01f9d94318fb3) C:\Windows\system32\DRIVERS\srv2.sys
14:48:45.0778 4716 srv2 - ok
14:48:45.0856 4716 SrvHsfHDA (e00fdfaff025e94f9821153750c35a6d) C:\Windows\system32\DRIVERS\VSTAZL3.SYS
14:48:45.0871 4716 SrvHsfHDA - ok
14:48:46.0043 4716 SrvHsfV92 (ceb4e3b6890e1e42dca6694d9e59e1a0) C:\Windows\system32\DRIVERS\VSTDPV3.SYS
14:48:46.0136 4716 SrvHsfV92 - ok
14:48:46.0277 4716 SrvHsfWinac (bc0c7ea89194c299f051c24119000e17) C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
14:48:46.0308 4716 SrvHsfWinac - ok
14:48:46.0355 4716 srvnet (ff207d67700aa18242aaf985d3e7d8f4) C:\Windows\system32\DRIVERS\srvnet.sys
14:48:46.0370 4716 srvnet - ok
14:48:46.0448 4716 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\Windows\System32\ssdpsrv.dll
14:48:46.0464 4716 SSDPSRV - ok
14:48:46.0495 4716 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\Windows\system32\sstpsvc.dll
14:48:46.0511 4716 SstpSvc - ok
14:48:46.0620 4716 STacSV (43dc7ada838f6a24b93b7c7ff2fcd08d) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_7293d4b16ec87cbb\STacSV.exe
14:48:46.0651 4716 STacSV - ok
14:48:46.0682 4716 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
14:48:46.0682 4716 stexstor - ok
14:48:46.0776 4716 STHDA (356cc453b79c35b8ce1a14873dd6322d) C:\Windows\system32\DRIVERS\stwrt.sys
14:48:46.0792 4716 STHDA - ok
14:48:46.0854 4716 StiSvc (a22825e7bb7018e8af3e229a5af17221) C:\Windows\System32\wiaservc.dll
14:48:46.0885 4716 StiSvc - ok
14:48:46.0901 4716 storflt (957e346ca948668f2496a6ccf6ff82cc) C:\Windows\system32\DRIVERS\vmstorfl.sys
14:48:46.0916 4716 storflt - ok
14:48:46.0948 4716 StorSvc (0bf669f0a910beda4a32258d363af2a5) C:\Windows\system32\storsvc.dll
14:48:46.0963 4716 StorSvc - ok
14:48:46.0994 4716 storvsc (d5751969dc3e4b88bf482ac8ec9fe019) C:\Windows\system32\DRIVERS\storvsc.sys
14:48:46.0994 4716 storvsc - ok
14:48:47.0026 4716 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\DRIVERS\swenum.sys
14:48:47.0026 4716 swenum - ok
14:48:47.0104 4716 swprv (a28bd92df340e57b024ba433165d34d7) C:\Windows\System32\swprv.dll
14:48:47.0119 4716 swprv - ok
14:48:47.0291 4716 SysMain (04105c8da62353589c29bdaeb8d88bd8) C:\Windows\system32\sysmain.dll
14:48:47.0322 4716 SysMain - ok
14:48:47.0400 4716 TabletInputService (fcfb6c552fbc0da299799cbd50ad9fd4) C:\Windows\System32\TabSvc.dll
14:48:47.0416 4716 TabletInputService - ok
14:48:47.0478 4716 TapiSrv (2f46b0c70a4adc8c90cf825da3b4feaf) C:\Windows\System32\tapisrv.dll
14:48:47.0540 4716 TapiSrv - ok
14:48:47.0556 4716 TBS (b799d9fdb26111737f58288d8dc172d9) C:\Windows\System32\tbssvc.dll
14:48:47.0650 4716 TBS - ok
14:48:47.0884 4716 Tcpip (55e9965552741f3850cb22cbba9671ed) C:\Windows\system32\drivers\tcpip.sys
14:48:47.0915 4716 Tcpip - ok
14:48:47.0962 4716 TCPIP6 (55e9965552741f3850cb22cbba9671ed) C:\Windows\system32\DRIVERS\tcpip.sys
14:48:47.0993 4716 TCPIP6 - ok
14:48:48.0040 4716 tcpipreg (e64444523add154f86567c469bc0b17f) C:\Windows\system32\drivers\tcpipreg.sys
14:48:48.0055 4716 tcpipreg - ok
14:48:48.0118 4716 TDPIPE (1875c1490d99e70e449e3afae9fcbadf) C:\Windows\system32\drivers\tdpipe.sys
14:48:48.0196 4716 TDPIPE - ok
14:48:48.0242 4716 TDTCP (7156308896d34ea75a582f9a09e50c17) C:\Windows\system32\drivers\tdtcp.sys
14:48:48.0320 4716 TDTCP - ok
14:48:48.0352 4716 tdx (cb39e896a2a83702d1737bfd402b3542) C:\Windows\system32\DRIVERS\tdx.sys
14:48:48.0414 4716 tdx - ok
14:48:48.0461 4716 TermDD (c36f41ee20e6999dbf4b0425963268a5) C:\Windows\system32\DRIVERS\termdd.sys
14:48:48.0508 4716 TermDD - ok
14:48:48.0586 4716 TermService (a01e50a04d7b1960b33e92b9080e6a94) C:\Windows\System32\termsrv.dll
14:48:48.0664 4716 TermService - ok
14:48:48.0695 4716 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\Windows\system32\themeservice.dll
14:48:48.0695 4716 Themes - ok
14:48:48.0742 4716 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
14:48:48.0757 4716 THREADORDER - ok
14:48:48.0788 4716 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\Windows\System32\trkwks.dll
14:48:48.0804 4716 TrkWks - ok
14:48:48.0851 4716 TrustedInstaller (41a4c781d2286208d397d72099304133) C:\Windows\servicing\TrustedInstaller.exe
14:48:48.0898 4716 TrustedInstaller - ok
14:48:48.0944 4716 tssecsrv (98ae6fa07d12cb4ec5cf4a9bfa5f4242) C:\Windows\system32\DRIVERS\tssecsrv.sys
14:48:48.0976 4716 tssecsrv - ok
14:48:49.0007 4716 tunnel (3e461d890a97f9d4c168f5fda36e1d00) C:\Windows\system32\DRIVERS\tunnel.sys
14:48:49.0054 4716 tunnel - ok
14:48:49.0085 4716 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
14:48:49.0132 4716 uagp35 - ok
14:48:49.0178 4716 udfs (6557d75e8b7d6a06cdc21cd39dbf255c) C:\Windows\system32\DRIVERS\udfs.sys
14:48:49.0225 4716 udfs - ok
14:48:49.0350 4716 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\Windows\system32\UI0Detect.exe
14:48:49.0366 4716 UI0Detect - ok
14:48:49.0397 4716 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\DRIVERS\uliagpkx.sys
14:48:49.0444 4716 uliagpkx - ok
14:48:49.0459 4716 umbus (049b3a50b3d646baeeee9eec9b0668dc) C:\Windows\system32\DRIVERS\umbus.sys
14:48:49.0522 4716 umbus - ok
14:48:49.0537 4716 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
14:48:49.0584 4716 UmPass - ok
14:48:49.0631 4716 UmRdpService (8ecaca5454844f66386f7be4ae0d7cd1) C:\Windows\System32\umrdp.dll
14:48:49.0724 4716 UmRdpService - ok
14:48:49.0818 4716 upnphost (833fbb672460efce8011d262175fad33) C:\Windows\System32\upnphost.dll
14:48:49.0849 4716 upnphost - ok
14:48:49.0896 4716 usbaudio (2436a42aab4ad48a9b714e5b0f344627) C:\Windows\system32\drivers\usbaudio.sys
14:48:50.0177 4716 usbaudio - ok
14:48:50.0286 4716 usbccgp (5c233aefb566ee78c1efbc0493fb066a) C:\Windows\system32\DRIVERS\usbccgp.sys
14:48:50.0910 4716 usbccgp - ok
14:48:50.0988 4716 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\DRIVERS\usbcir.sys
14:48:51.0035 4716 usbcir - ok
14:48:51.0113 4716 usbehci (5b71019a6aca0116fd21b368f19c0b91) C:\Windows\system32\drivers\usbehci.sys
14:48:51.0128 4716 usbehci - ok
14:48:51.0206 4716 usbhub (5823d3965c2a4f6f785ed1a3b403f3b8) C:\Windows\system32\DRIVERS\usbhub.sys
14:48:51.0222 4716 usbhub - ok
14:48:51.0253 4716 usbohci (e753ed6c49da13967ebabf9ea616454a) C:\Windows\system32\drivers\usbohci.sys
14:48:51.0269 4716 usbohci - ok
14:48:51.0316 4716 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
14:48:51.0316 4716 usbprint - ok
14:48:51.0362 4716 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys
14:48:51.0378 4716 usbscan - ok
14:48:51.0472 4716 USBSTOR (1c4287739a93594e57e2a9e6a3ed7353) C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:48:51.0472 4716 USBSTOR - ok
14:48:51.0518 4716 usbuhci (6a30928a469ce802600e1ea8c0f2f53f) C:\Windows\system32\drivers\usbuhci.sys
14:48:51.0518 4716 usbuhci - ok
14:48:51.0565 4716 usbvideo (b5f6a992d996282b7fae7048e50af83a) C:\Windows\system32\Drivers\usbvideo.sys
14:48:51.0581 4716 usbvideo - ok
14:48:51.0596 4716 usb_rndisx (d82f43d15fdaa666856c0190cb73e7c9) C:\Windows\system32\DRIVERS\usb8023x.sys
14:48:51.0612 4716 usb_rndisx - ok
14:48:51.0924 4716 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\Windows\System32\uxsms.dll
14:48:51.0924 4716 UxSms - ok
14:48:51.0986 4716 VaultSvc (c2243ff9e9aad0c30e8b1a0914da15b6) C:\Windows\system32\lsass.exe
14:48:51.0986 4716 VaultSvc - ok
14:48:52.0018 4716 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\DRIVERS\vdrvroot.sys
14:48:52.0018 4716 vdrvroot - ok
14:48:52.0142 4716 vds (8c4e7c49d3641bc9e299e466a7f8867d) C:\Windows\System32\vds.exe
14:48:52.0174 4716 vds - ok
14:48:52.0220 4716 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
14:48:52.0220 4716 vga - ok
14:48:52.0252 4716 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
14:48:52.0252 4716 VgaSave - ok
14:48:52.0345 4716 vhdmp (3be6e1f3a4f1afec8cee0d7883f93583) C:\Windows\system32\DRIVERS\vhdmp.sys
14:48:52.0345 4716 vhdmp - ok
14:48:52.0392 4716 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\DRIVERS\viaagp.sys
14:48:52.0392 4716 viaagp - ok
14:48:52.0439 4716 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
14:48:52.0439 4716 ViaC7 - ok
14:48:52.0470 4716 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\DRIVERS\viaide.sys
14:48:52.0470 4716 viaide - ok
14:48:52.0501 4716 VirtualBackplane - ok
14:48:52.0548 4716 vmbus (379b349f65f453d2a6e75ea6b7448e49) C:\Windows\system32\DRIVERS\vmbus.sys
14:48:52.0548 4716 vmbus - ok
14:48:52.0579 4716 VMBusHID (ec2bbab4b84d0738c6c83d2234dc36fe) C:\Windows\system32\DRIVERS\VMBusHID.sys
14:48:52.0595 4716 VMBusHID - ok
14:48:52.0626 4716 volmgr (384e5a2aa49934295171e499f86ba6f3) C:\Windows\system32\DRIVERS\volmgr.sys
14:48:52.0626 4716 volmgr - ok
14:48:52.0704 4716 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
14:48:52.0720 4716 volmgrx - ok
14:48:52.0782 4716 volsnap (58df9d2481a56edde167e51b334d44fd) C:\Windows\system32\DRIVERS\volsnap.sys
14:48:52.0798 4716 volsnap - ok
14:48:52.0844 4716 vpcbus (33e74df34753fcaab06f6f2bdc8cabf5) C:\Windows\system32\DRIVERS\vpchbus.sys
14:48:52.0844 4716 vpcbus - ok
14:48:52.0891 4716 vpcnfltr (5f04362ceb5fb5901037e9d9eadd3760) C:\Windows\system32\DRIVERS\vpcnfltr.sys
14:48:52.0891 4716 vpcnfltr - ok
14:48:52.0938 4716 vpcusb (625088d6ee9ede977fd03cf18d1cd5c5) C:\Windows\system32\DRIVERS\vpcusb.sys
14:48:52.0954 4716 vpcusb - ok
14:48:52.0985 4716 vpcuxd (f49c0d1f8dae860ee47e5f34ac0f6008) C:\Windows\system32\DRIVERS\vpcuxd.sys
14:48:52.0985 4716 vpcuxd - ok
14:48:53.0110 4716 vpcvmm (5ed378d91e32134f3c0b3810860ffd71) C:\Windows\system32\drivers\vpcvmm.sys
14:48:53.0110 4716 vpcvmm - ok
14:48:53.0188 4716 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
14:48:53.0203 4716 vsmraid - ok
14:48:53.0406 4716 VSS (7ea2bcd94d9cfaf4c556f5cc94532a6c) C:\Windows\system32\vssvc.exe
14:48:53.0453 4716 VSS - ok
14:48:53.0484 4716 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\system32\DRIVERS\vwifibus.sys
14:48:53.0484 4716 vwifibus - ok
14:48:53.0531 4716 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\Windows\system32\DRIVERS\vwififlt.sys
14:48:53.0578 4716 vwififlt - ok
14:48:53.0593 4716 vwifimp (a3f04cbea6c2a10e6cb01f8b47611882) C:\Windows\system32\DRIVERS\vwifimp.sys
14:48:53.0609 4716 vwifimp - ok
14:48:53.0687 4716 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\Windows\system32\w32time.dll
14:48:54.0233 4716 W32Time - ok
14:48:54.0280 4716 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
14:48:54.0311 4716 WacomPen - ok
14:48:54.0342 4716 WANARP (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys
14:48:54.0389 4716 WANARP - ok
14:48:54.0404 4716 Wanarpv6 (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys
14:48:54.0420 4716 Wanarpv6 - ok
14:48:54.0607 4716 WatAdminSvc (353a04c273ec58475d8633e75ccd5604) C:\Windows\system32\Wat\WatAdminSvc.exe
14:48:54.0794 4716 WatAdminSvc - ok
14:48:55.0060 4716 wbengine (7790b77fe1e5ee47dcc66247095bb4c9) C:\Windows\system32\wbengine.exe
14:48:55.0122 4716 wbengine - ok
14:48:55.0153 4716 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\Windows\System32\wbiosrvc.dll
14:48:55.0247 4716 WbioSrvc - ok
14:48:55.0309 4716 WcesComm (59e19bd13c3bdb857646b9e436ba27f7) C:\Windows\WindowsMobile\wcescomm.dll
14:48:55.0325 4716 WcesComm - ok
14:48:55.0387 4716 wcncsvc (6d9b75275c3e3a5f51aef81affadb2b6) C:\Windows\System32\wcncsvc.dll
14:48:55.0434 4716 wcncsvc - ok
14:48:55.0450 4716 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\Windows\System32\WcsPlugInService.dll
14:48:55.0465 4716 WcsPlugInService - ok
14:48:55.0512 4716 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
14:48:55.0528 4716 Wd - ok
14:48:55.0606 4716 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
14:48:55.0621 4716 Wdf01000 - ok
14:48:55.0668 4716 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
14:48:55.0684 4716 WdiServiceHost - ok
14:48:55.0715 4716 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
14:48:55.0730 4716 WdiSystemHost - ok
14:48:55.0777 4716 WebClient (bb5ec38f8d4600119b4720bc5d4211f1) C:\Windows\System32\webclnt.dll
14:48:55.0808 4716 WebClient - ok
14:48:55.0855 4716 Wecsvc (760f0afe937a77cff27153206534f275) C:\Windows\system32\wecsvc.dll
14:48:55.0871 4716 Wecsvc - ok
14:48:55.0902 4716 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\Windows\System32\wercplsupport.dll
14:48:55.0918 4716 wercplsupport - ok
14:48:55.0964 4716 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\Windows\System32\WerSvc.dll
14:48:55.0964 4716 WerSvc - ok
14:48:55.0996 4716 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
14:48:56.0011 4716 WfpLwf - ok
14:48:56.0074 4716 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
14:48:56.0105 4716 WIMMount - ok
14:48:56.0214 4716 WinDefend (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll
14:48:56.0261 4716 WinDefend - ok
14:48:56.0292 4716 WinHttpAutoProxySvc - ok
14:48:56.0401 4716 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\Windows\system32\wbem\WMIsvc.dll
14:48:56.0417 4716 Winmgmt - ok
14:48:56.0588 4716 WinRM (c4f5d3901d1b41d602ddc196e0b95b51) C:\Windows\system32\WsmSvc.dll
14:48:56.0682 4716 WinRM - ok
14:48:56.0776 4716 WinUsb (b5ba3cc19d00f2eba92f1cfbebb5d650) C:\Windows\system32\DRIVERS\WinUSB.sys
14:48:56.0854 4716 WinUsb - ok
14:48:57.0041 4716 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\Windows\System32\wlansvc.dll
14:48:57.0072 4716 Wlansvc - ok
14:48:57.0150 4716 wlcrasvc (6067acef367e79914af628fa1e9b5330) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
14:48:57.0197 4716 wlcrasvc - ok
14:48:57.0556 4716 wlidsvc (fb01d4ae207b9efdbabfc55dc95c7e31) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
14:48:57.0602 4716 wlidsvc - ok
14:48:57.0743 4716 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\DRIVERS\wmiacpi.sys
14:48:57.0743 4716 WmiAcpi - ok
14:48:57.0805 4716 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\Windows\system32\wbem\WmiApSrv.exe
14:48:57.0821 4716 wmiApSrv - ok
14:48:58.0024 4716 WMPNetworkSvc (77fbd400984cf72ba0fc4b3489d65f74) C:\Program Files\Windows Media Player\wmpnetwk.exe
14:48:58.0055 4716 WMPNetworkSvc - ok
14:48:58.0086 4716 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\Windows\System32\wpcsvc.dll
14:48:58.0148 4716 WPCSvc - ok
14:48:58.0195 4716 WPDBusEnum (b7f658a2ebc07129538ad9ab35212637) C:\Windows\system32\wpdbusenum.dll
14:48:58.0195 4716 WPDBusEnum - ok
14:48:58.0289 4716 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
14:48:58.0320 4716 ws2ifsl - ok
14:48:58.0367 4716 wscsvc (a661a76333057b383a06e65f0073222f) C:\Windows\System32\wscsvc.dll
14:48:58.0367 4716 wscsvc - ok
14:48:58.0398 4716 WSearch - ok
14:48:58.0632 4716 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) C:\Windows\system32\wuaueng.dll
14:48:58.0710 4716 wuauserv - ok
14:48:58.0804 4716 WudfPf (6f9b6c0c93232cff47d0f72d6db1d21e) C:\Windows\system32\drivers\WudfPf.sys
14:48:58.0819 4716 WudfPf - ok
14:48:58.0866 4716 WUDFRd (f91ff1e51fca30b3c3981db7d5924252) C:\Windows\system32\DRIVERS\WUDFRd.sys
14:48:58.0882 4716 WUDFRd - ok
14:48:58.0944 4716 wudfsvc (ddee3682fe97037c45f4d7ab467cb8b6) C:\Windows\System32\WUDFSvc.dll
14:48:58.0960 4716 wudfsvc - ok
14:48:59.0006 4716 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\Windows\System32\wwansvc.dll
14:48:59.0069 4716 WwanSvc - ok
14:48:59.0147 4716 yukonw7 (b07c5b7efdf936ff93d4f540938725be) C:\Windows\system32\DRIVERS\yk62x86.sys
14:48:59.0178 4716 yukonw7 - ok
14:48:59.0209 4716 zghsmdm (9d175477f8934e6a43e75ba4fbbc8d49) C:\Windows\system32\DRIVERS\zghsmdm.sys
14:48:59.0225 4716 zghsmdm - ok
14:48:59.0833 4716 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
14:48:59.0849 4716 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - infected
14:48:59.0849 4716 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.c (0)
14:48:59.0864 4716 MBR (0x1B8) (ddae9d649db12f6aff24483f2c298989) \Device\Harddisk1\DR1
14:48:59.0880 4716 \Device\Harddisk1\DR1 - ok
14:48:59.0911 4716 MBR (0x1B8) (4defadbcb9d78fb66808f88d693e8c3a) \Device\Harddisk2\DR2
14:49:03.0452 4716 \Device\Harddisk2\DR2 - ok
14:49:03.0452 4716 Boot (0x1200) (963153bac0508b183f122e9e388f3b44) \Device\Harddisk0\DR0\Partition0
14:49:03.0468 4716 \Device\Harddisk0\DR0\Partition0 - ok
14:49:03.0484 4716 Boot (0x1200) (77dc34a9b903afeba8256cd198db8602) \Device\Harddisk0\DR0\Partition1
14:49:03.0499 4716 \Device\Harddisk0\DR0\Partition1 - ok
14:49:03.0515 4716 Boot (0x1200) (4a65eb7fca106128ef109ff9e5cc3357) \Device\Harddisk0\DR0\Partition2
14:49:03.0515 4716 \Device\Harddisk0\DR0\Partition2 - ok
14:49:03.0546 4716 Boot (0x1200) (ab156b64ace9c2b50a82d5253ca2b378) \Device\Harddisk1\DR1\Partition0
14:49:03.0546 4716 \Device\Harddisk1\DR1\Partition0 - ok
14:49:03.0562 4716 ============================================================
14:49:03.0562 4716 Scan finished
14:49:03.0562 4716 ============================================================
14:49:03.0671 4464 Detected object count: 4
14:49:03.0671 4464 Actual detected object count: 4
14:49:05.0995 4464 MpKsl823a7f47 ( ForgedFile.Multi.Generic ) - skipped by user
14:49:05.0995 4464 MpKsl823a7f47 ( ForgedFile.Multi.Generic ) - User select action: Skip
14:49:05.0995 4464 MpKsla44208f0 ( ForgedFile.Multi.Generic ) - skipped by user
14:49:05.0995 4464 MpKsla44208f0 ( ForgedFile.Multi.Generic ) - User select action: Skip
14:49:05.0995 4464 MpKslb218ea72 ( ForgedFile.Multi.Generic ) - skipped by user
14:49:05.0995 4464 MpKslb218ea72 ( ForgedFile.Multi.Generic ) - User select action: Skip
14:49:08.0429 4464 \Device\Harddisk0\DR0\# - copied to quarantine
Go to the top of the page
 
+Quote Post
RichZ
post 24.07.2012 07:20
Post #2


Newbie
*

Group: Members
Posts: 2
Joined: 18.07.2012




Got my answers from another forum using different tools
Go to the top of the page
 
+Quote Post

Reply to this topicStart new topic

 



Lo-Fi Version Time is now: 19.04.2014 09:16