Jump to content

McAfee deleting a zero access trojan every minute or so but does not remove it

svithost
 Share

Recommended Posts

svithost

svithost

Posted
Posted

Here is the HiJackThis log. Please advise as I dont see anythiing wrong.

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 4:26:15 PM, on 8/2/2012

Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v9.00 (9.00.8112.16446)

Boot mode: Safe mode with network support

Running processes:

C:\Program Files (x86)\Citrix\GoToAssist Remote Support Customer\428\g2ax_user_customer.exe

C:\Program Files (x86)\Citrix\GoToAssist Remote Support Customer\428\g2ax_user_medium_customer.exe

C:\Users\Desk13new\Documents\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/USCON/1

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/USCON/1

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

F2 - REG:system.ini: UserInit=userinit.exe

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll

O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20120629211948.dll

O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll

O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files (x86)\McAfee\SiteAdvisor Enterprise\McIEPlg.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor Enterprise\McIEPlg.dll

O4 - HKLM\..\Run: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

O4 - HKLM\..\Run: [shwiconXP9106] C:\Program Files (x86)\Multimedia Card Reader(9106)\ShwiconXP9106.exe

O4 - HKLM\..\Run: [THX Audio Control Panel] "C:\Program Files (x86)\Creative\THX TruStudio PC\THXAudioCP\THXAudio.exe" /r

O4 - HKLM\..\Run: [updReg] C:\Windows\UpdReg.EXE

O4 - HKLM\..\Run: [Dell Registration] C:\Program Files (x86)\System Registration\prodreg.exe /boot

O4 - HKLM\..\Run: [Dell DataSafe Online] C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe

O4 - HKLM\..\Run: [RoxWatchTray] "C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe"

O4 - HKLM\..\Run: [Desktop Disc Tool] "C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe"

O4 - HKLM\..\Run: [Conime] %windir%\system32\conime.exe

O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [MVS Splash] "C:\Program Files (x86)\McAfee\Managed VirusScan\DesktopUI\XTray.exe"

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

O4 - .DEFAULT User Startup: Dell Dock First Run.lnk = C:\Program Files\Dell\DellDock\DellDock.exe (User 'Default user')

O4 - Startup: Dell Dock.lnk = C:\Program Files\Dell\DellDock\DellDock.exe

O4 - Global Startup: McAfee Security Scan Plus.lnk = ?

O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll

O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Bonjour - {7F9DB11C-E358-4ca6-A83D-ACC663939424} - C:\Program Files (x86)\Bonjour\ExplorerPlugin.dll

O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O15 - Trusted Zone: http://*.mcafee.com (HKLM)

O15 - Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)

O15 - Trusted Zone: http://vs.mcafeeasap.com (HKLM)

O15 - Trusted Zone: http://www.mcafeeasap.com (HKLM)

O15 - ESC Trusted Zone: http://*.mcafee.com (HKLM)

O15 - ESC Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)

O15 - ESC Trusted Zone: http://vs.mcafeeasap.com (HKLM)

O15 - ESC Trusted Zone: http://www.mcafeeasap.com (HKLM)

O16 - DPF: {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} (Performance Viewer Activex Control) - https://secure.logmein.com/activex/ractrl.cab?lmi=724

O18 - Protocol: cozi - {5356518D-FE9C-4E08-9C1F-1E872ECD367F} - c:\Program Files (x86)\Cozi Express\CoziProtocolHandler.dll

O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor Enterprise\McIEPlg.dll

O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor Enterprise\McIEPlg.dll

O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL

O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe

O23 - Service: Dock Login Service (DockLoginService) - Stardock Corporation - C:\Program Files\Dell\DellDock\DockLogin.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: GoToAssist Remote Support Customer - Citrix Online, a division of Citrix Systems, Inc. - C:\Program Files (x86)\Citrix\GoToAssist Remote Support Customer\428\g2ax_service.exe

O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Kodak AiO Network Discovery Service - Eastman Kodak Company - C:\Program Files (x86)\Kodak\AiO\Center\ekdiscovery.exe

O23 - Service: McAfee SiteAdvisor Enterprise Service - McAfee, Inc. - C:\Program Files (x86)\McAfee\SiteAdvisor Enterprise\McSACore.exe

O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files (x86)\McAfee Security Scan\2.1.121\McCHSvc.exe

O23 - Service: McAfee McShield (McShield) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe

O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\Windows\system32\mfevtps.exe (file missing)

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: McAfee Virus and Spyware Protection Service (myAgtSvc) - McAfee, Inc. - C:\Program Files (x86)\McAfee\Managed VirusScan\Agent\myAgtSvc.exe

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Dell DataSafe Online (NOBU) - Dell, Inc. - C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: RoxMediaDB12OEM - Sonic Solutions - C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe

O23 - Service: Roxio Hard Drive Watcher 12 (RoxWatch12) - Sonic Solutions - C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: McAfee Peer Distribution Service (RumorServer) - McAfee, Inc. - C:\Program Files (x86)\McAfee\Managed VirusScan\Agent\myAgtSvc.exe

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: Print Spooler (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--

End of file - 13081 bytes

Link to post
Share on other sites
svithost

svithost

Posted
  • Author
Posted

16:44:02.0907 2060 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32

16:44:03.0157 2060 ============================================================

16:44:03.0157 2060 Current date / time: 2012/08/02 16:44:03.0157

16:44:03.0157 2060 SystemInfo:

16:44:03.0157 2060

16:44:03.0157 2060 OS Version: 6.1.7601 ServicePack: 1.0

16:44:03.0157 2060 Product type: Workstation

16:44:03.0157 2060 ComputerName: DESK13-PC

16:44:03.0157 2060 UserName: Desk13new

16:44:03.0157 2060 Windows directory: C:\Windows

16:44:03.0157 2060 System windows directory: C:\Windows

16:44:03.0157 2060 Running under WOW64

16:44:03.0157 2060 Processor architecture: Intel x64

16:44:03.0157 2060 Number of processors: 4

16:44:03.0157 2060 Page size: 0x1000

16:44:03.0157 2060 Boot type: Safe boot with network

16:44:03.0157 2060 ============================================================

16:44:04.0093 2060 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

16:44:04.0108 2060 ============================================================

16:44:04.0108 2060 \Device\Harddisk0\DR0:

16:44:04.0108 2060 MBR partitions:

16:44:04.0108 2060 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x187F000

16:44:04.0108 2060 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1893000, BlocksNum 0x72E73000

16:44:04.0108 2060 ============================================================

16:44:04.0155 2060 C: <-> \Device\Harddisk0\DR0\Partition1

16:44:04.0155 2060 ============================================================

16:44:04.0155 2060 Initialize success

16:44:04.0155 2060 ============================================================

16:44:06.0479 0996 ============================================================

16:44:06.0479 0996 Scan started

16:44:06.0479 0996 Mode: Manual;

16:44:06.0479 0996 ============================================================

16:44:08.0273 0996 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys

16:44:08.0320 0996 1394ohci - ok

16:44:08.0773 0996 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys

16:44:08.0788 0996 ACPI - ok

16:44:08.0835 0996 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys

16:44:08.0835 0996 AcpiPmi - ok

16:44:09.0241 0996 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys

16:44:09.0272 0996 adp94xx - ok

16:44:09.0443 0996 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys

16:44:09.0459 0996 adpahci - ok

16:44:09.0553 0996 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys

16:44:09.0553 0996 adpu320 - ok

16:44:09.0631 0996 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll

16:44:09.0631 0996 AeLookupSvc - ok

16:44:10.0255 0996 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys

16:44:10.0270 0996 AFD - ok

16:44:10.0379 0996 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys

16:44:10.0379 0996 agp440 - ok

16:44:10.0489 0996 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe

16:44:10.0504 0996 ALG - ok

16:44:10.0535 0996 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys

16:44:10.0551 0996 aliide - ok

16:44:10.0582 0996 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys

16:44:10.0582 0996 amdide - ok

16:44:10.0691 0996 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys

16:44:10.0691 0996 AmdK8 - ok

16:44:10.0769 0996 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys

16:44:10.0801 0996 AmdPPM - ok

16:44:10.0957 0996 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys

16:44:10.0957 0996 amdsata - ok

16:44:11.0175 0996 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys

16:44:11.0175 0996 amdsbs - ok

16:44:11.0222 0996 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys

16:44:11.0237 0996 amdxata - ok

16:44:11.0378 0996 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys

16:44:11.0393 0996 AppID - ok

16:44:11.0456 0996 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll

16:44:11.0487 0996 AppIDSvc - ok

16:44:11.0627 0996 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll

16:44:11.0627 0996 Appinfo - ok

16:44:11.0674 0996 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys

16:44:11.0674 0996 arc - ok

16:44:11.0752 0996 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys

16:44:11.0752 0996 arcsas - ok

16:44:11.0815 0996 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys

16:44:11.0815 0996 AsyncMac - ok

16:44:11.0877 0996 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys

16:44:11.0877 0996 atapi - ok

16:44:12.0142 0996 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll

16:44:12.0173 0996 AudioEndpointBuilder - ok

16:44:12.0173 0996 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll

16:44:12.0189 0996 AudioSrv - ok

16:44:12.0298 0996 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll

16:44:12.0314 0996 AxInstSV - ok

16:44:12.0704 0996 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys

16:44:12.0719 0996 b06bdrv - ok

16:44:13.0016 0996 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys

16:44:13.0031 0996 b57nd60a - ok

16:44:16.0276 0996 BCM43XX (8b5d16d20774fc3727f44e161be2c0ac) C:\Windows\system32\DRIVERS\bcmwl664.sys

16:44:16.0323 0996 BCM43XX - ok

16:44:16.0541 0996 BcmSqlStartupSvc (6163664c7e9cd110af70180c126c3fdc) C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe

16:44:16.0604 0996 BcmSqlStartupSvc - ok

16:44:18.0413 0996 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll

16:44:18.0413 0996 BDESVC - ok

16:44:18.0554 0996 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys

16:44:18.0554 0996 Beep - ok

16:44:18.0632 0996 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys

16:44:18.0632 0996 blbdrive - ok

16:44:18.0944 0996 Bonjour Service (3f56903e124e820aeece6d471583c6c1) C:\Program Files (x86)\Bonjour\mDNSResponder.exe

16:44:18.0944 0996 Bonjour Service - ok

16:44:19.0053 0996 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys

16:44:19.0069 0996 bowser - ok

16:44:19.0100 0996 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys

16:44:19.0100 0996 BrFiltLo - ok

16:44:19.0100 0996 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys

16:44:19.0115 0996 BrFiltUp - ok

16:44:19.0303 0996 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll

16:44:19.0334 0996 Browser - ok

16:44:19.0599 0996 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys

16:44:19.0615 0996 Brserid - ok

16:44:19.0646 0996 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys

16:44:19.0646 0996 BrSerWdm - ok

16:44:19.0646 0996 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys

16:44:19.0661 0996 BrUsbMdm - ok

16:44:19.0677 0996 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys

16:44:19.0677 0996 BrUsbSer - ok

16:44:19.0708 0996 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys

16:44:19.0708 0996 BTHMODEM - ok

16:44:19.0849 0996 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll

16:44:19.0864 0996 bthserv - ok

16:44:19.0927 0996 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys

16:44:19.0927 0996 cdfs - ok

16:44:20.0129 0996 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys

16:44:20.0129 0996 cdrom - ok

16:44:20.0301 0996 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll

16:44:20.0301 0996 CertPropSvc - ok

16:44:20.0332 0996 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys

16:44:20.0332 0996 circlass - ok

16:44:20.0722 0996 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys

16:44:20.0738 0996 CLFS - ok

16:44:20.0972 0996 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

16:44:21.0003 0996 clr_optimization_v2.0.50727_32 - ok

16:44:21.0175 0996 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe

16:44:21.0190 0996 clr_optimization_v2.0.50727_64 - ok

16:44:21.0409 0996 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe

16:44:21.0549 0996 clr_optimization_v4.0.30319_32 - ok

16:44:21.0845 0996 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe

16:44:21.0845 0996 clr_optimization_v4.0.30319_64 - ok

16:44:21.0908 0996 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys

16:44:21.0908 0996 CmBatt - ok

16:44:21.0939 0996 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys

16:44:21.0955 0996 cmdide - ok

16:44:22.0469 0996 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys

16:44:22.0485 0996 CNG - ok

16:44:22.0516 0996 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys

16:44:22.0532 0996 Compbatt - ok

16:44:22.0594 0996 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys

16:44:22.0610 0996 CompositeBus - ok

16:44:22.0625 0996 COMSysApp - ok

16:44:22.0641 0996 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys

16:44:22.0641 0996 crcdisk - ok

16:44:22.0891 0996 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll

16:44:22.0922 0996 CryptSvc - ok

16:44:23.0437 0996 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll

16:44:23.0546 0996 DcomLaunch - ok

16:44:23.0858 0996 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll

16:44:23.0873 0996 defragsvc - ok

16:44:24.0029 0996 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys

16:44:24.0045 0996 DfsC - ok

16:44:24.0466 0996 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll

16:44:24.0466 0996 Dhcp - ok

16:44:24.0544 0996 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys

16:44:24.0544 0996 discache - ok

16:44:24.0669 0996 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys

16:44:24.0669 0996 Disk - ok

16:44:24.0981 0996 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll

16:44:24.0997 0996 Dnscache - ok

16:44:25.0324 0996 DockLoginService (0840abbbdf438691ee65a20040635cbe) C:\Program Files\Dell\DellDock\DockLogin.exe

16:44:25.0324 0996 DockLoginService - ok

16:44:25.0652 0996 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll

16:44:25.0667 0996 dot3svc - ok

16:44:25.0870 0996 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll

16:44:25.0886 0996 DPS - ok

16:44:25.0933 0996 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys

16:44:25.0933 0996 drmkaud - ok

16:44:26.0884 0996 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys

16:44:26.0915 0996 DXGKrnl - ok

16:44:27.0071 0996 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll

16:44:27.0071 0996 EapHost - ok

16:44:29.0536 0996 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys

16:44:29.0599 0996 ebdrv - ok

16:44:30.0020 0996 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe

16:44:30.0020 0996 EFS - ok

16:44:30.0659 0996 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe

16:44:30.0659 0996 ehRecvr - ok

16:44:30.0878 0996 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe

16:44:30.0878 0996 ehSched - ok

16:44:31.0408 0996 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys

16:44:31.0439 0996 elxstor - ok

16:44:31.0455 0996 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys

16:44:31.0455 0996 ErrDev - ok

16:44:31.0829 0996 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll

16:44:31.0861 0996 EventSystem - ok

16:44:32.0048 0996 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys

16:44:32.0063 0996 exfat - ok

16:44:32.0329 0996 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys

16:44:32.0344 0996 fastfat - ok

16:44:33.0062 0996 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe

16:44:33.0093 0996 Fax - ok

16:44:33.0155 0996 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys

16:44:33.0155 0996 fdc - ok

16:44:33.0233 0996 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll

16:44:33.0233 0996 fdPHost - ok

16:44:33.0265 0996 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll

16:44:33.0280 0996 FDResPub - ok

16:44:33.0374 0996 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys

16:44:33.0374 0996 FileInfo - ok

16:44:33.0405 0996 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys

16:44:33.0421 0996 Filetrace - ok

16:44:34.0325 0996 FLEXnet Licensing Service (8669be94f63944e4f899c3950b520241) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

16:44:34.0341 0996 FLEXnet Licensing Service - ok

16:44:34.0419 0996 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys

16:44:34.0419 0996 flpydisk - ok

16:44:34.0778 0996 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys

16:44:34.0778 0996 FltMgr - ok

16:44:35.0979 0996 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll

16:44:36.0010 0996 FontCache - ok

16:44:36.0182 0996 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

16:44:36.0182 0996 FontCache3.0.0.0 - ok

16:44:36.0353 0996 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys

16:44:36.0369 0996 FsDepends - ok

16:44:36.0400 0996 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys

16:44:36.0400 0996 Fs_Rec - ok

16:44:36.0650 0996 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys

16:44:36.0681 0996 fvevol - ok

16:44:36.0821 0996 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys

16:44:36.0821 0996 gagp30kx - ok

16:44:37.0633 0996 GoToAssist Remote Support Customer (9144b18ce0db8debb3ae31d2ed25c384) C:\Program Files (x86)\Citrix\GoToAssist Remote Support Customer\428\g2ax_service.exe

16:44:37.0648 0996 GoToAssist Remote Support Customer - ok

16:44:38.0459 0996 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll

16:44:38.0475 0996 gpsvc - ok

16:44:38.0725 0996 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

16:44:38.0725 0996 gupdate - ok

16:44:38.0787 0996 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

16:44:38.0787 0996 gupdatem - ok

16:44:38.0943 0996 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys

16:44:38.0943 0996 hcw85cir - ok

16:44:39.0099 0996 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys

16:44:39.0115 0996 HDAudBus - ok

16:44:39.0161 0996 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys

16:44:39.0161 0996 HidBatt - ok

16:44:39.0255 0996 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys

16:44:39.0271 0996 HidBth - ok

16:44:39.0333 0996 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys

16:44:39.0333 0996 HidIr - ok

16:44:39.0442 0996 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll

16:44:39.0442 0996 hidserv - ok

16:44:39.0505 0996 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\drivers\hidusb.sys

16:44:39.0505 0996 HidUsb - ok

16:44:39.0614 0996 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll

16:44:39.0629 0996 hkmsvc - ok

16:44:39.0957 0996 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll

16:44:39.0988 0996 HomeGroupListener - ok

16:44:40.0191 0996 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll

16:44:40.0207 0996 HomeGroupProvider - ok

16:44:40.0331 0996 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys

16:44:40.0363 0996 HpSAMD - ok

16:44:41.0283 0996 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys

16:44:41.0299 0996 HTTP - ok

16:44:41.0345 0996 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys

16:44:41.0345 0996 hwpolicy - ok

16:44:41.0455 0996 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys

16:44:41.0470 0996 i8042prt - ok

16:44:41.0876 0996 iaStor (f7ce9be72edac499b713eca6dae5d26f) C:\Windows\system32\DRIVERS\iaStor.sys

16:44:41.0876 0996 iaStor - ok

16:44:42.0063 0996 IAStorDataMgrSvc (b25f192ea1f84a316eb7c19efcccf33d) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

16:44:42.0063 0996 IAStorDataMgrSvc - ok

16:44:42.0531 0996 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys

16:44:42.0547 0996 iaStorV - ok

16:44:43.0623 0996 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe

16:44:43.0654 0996 idsvc - ok

16:44:53.0826 0996 igfx (bc610abb825504272364efe4c831e672) C:\Windows\system32\DRIVERS\igdkmd64.sys

16:44:53.0982 0996 igfx - ok

16:44:54.0902 0996 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys

16:44:54.0918 0996 iirsp - ok

16:44:55.0854 0996 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll

16:44:55.0869 0996 IKEEXT - ok

16:44:56.0056 0996 Impcd (dd587a55390ed2295bce6d36ad567da9) C:\Windows\system32\DRIVERS\Impcd.sys

16:44:56.0119 0996 Impcd - ok

16:44:58.0568 0996 IntcAzAudAddService (235362d403d9d677514649d88db31914) C:\Windows\system32\drivers\RTKVHD64.sys

16:44:58.0599 0996 IntcAzAudAddService - ok

16:44:59.0754 0996 IntcDAud (4429b91b0fe91f9be8e24e93cc960368) C:\Windows\system32\DRIVERS\IntcDAud.sys

16:44:59.0769 0996 IntcDAud - ok

16:44:59.0832 0996 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys

16:44:59.0832 0996 intelide - ok

16:44:59.0910 0996 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys

16:44:59.0910 0996 intelppm - ok

16:45:00.0034 0996 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll

16:45:00.0034 0996 IPBusEnum - ok

16:45:00.0112 0996 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys

16:45:00.0112 0996 IpFilterDriver - ok

16:45:00.0190 0996 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys

16:45:00.0190 0996 IPMIDRV - ok

16:45:00.0300 0996 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys

16:45:00.0315 0996 IPNAT - ok

16:45:00.0346 0996 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys

16:45:00.0362 0996 IRENUM - ok

16:45:00.0409 0996 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys

16:45:00.0424 0996 isapnp - ok

16:45:00.0456 0996 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys

16:45:00.0471 0996 iScsiPrt - ok

16:45:00.0549 0996 k57nd60a (12e27942dbb7c91880163634b0d8a776) C:\Windows\system32\DRIVERS\k57nd60a.sys

16:45:00.0565 0996 k57nd60a - ok

16:45:00.0580 0996 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys

16:45:00.0596 0996 kbdclass - ok

16:45:00.0643 0996 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys

16:45:00.0643 0996 kbdhid - ok

16:45:00.0674 0996 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe

16:45:00.0674 0996 KeyIso - ok

16:45:00.0830 0996 Kodak AiO Network Discovery Service (1a8d8cb042e2724385227f1a19a8decc) C:\Program Files (x86)\Kodak\AiO\Center\ekdiscovery.exe

16:45:00.0830 0996 Kodak AiO Network Discovery Service - ok

16:45:00.0924 0996 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys

16:45:00.0924 0996 KSecDD - ok

16:45:00.0939 0996 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys

16:45:00.0939 0996 KSecPkg - ok

16:45:00.0986 0996 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys

16:45:01.0002 0996 ksthunk - ok

16:45:01.0282 0996 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll

16:45:01.0298 0996 KtmRm - ok

16:45:01.0594 0996 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll

16:45:01.0610 0996 LanmanServer - ok

16:45:01.0797 0996 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll

16:45:01.0797 0996 LanmanWorkstation - ok

16:45:01.0922 0996 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys

16:45:01.0938 0996 lltdio - ok

16:45:02.0125 0996 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll

16:45:02.0125 0996 lltdsvc - ok

16:45:02.0187 0996 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll

16:45:02.0187 0996 lmhosts - ok

16:45:02.0359 0996 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys

16:45:02.0359 0996 LSI_FC - ok

16:45:02.0452 0996 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys

16:45:02.0452 0996 LSI_SAS - ok

16:45:02.0530 0996 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys

16:45:02.0546 0996 LSI_SAS2 - ok

16:45:02.0702 0996 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys

16:45:02.0702 0996 LSI_SCSI - ok

16:45:02.0827 0996 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys

16:45:02.0842 0996 luafv - ok

16:45:02.0905 0996 MBAMProtector (dc8490812a3b72811ae534f423b4c206) C:\Windows\system32\drivers\mbam.sys

16:45:02.0905 0996 MBAMProtector - ok

16:45:03.0482 0996 MBAMService (43683e970f008c93c9429ef428147a54) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

16:45:03.0482 0996 MBAMService - ok

16:45:03.0966 0996 McAfee SiteAdvisor Enterprise Service (4f2d526298cbc517edb82501e8041112) C:\Program Files (x86)\McAfee\SiteAdvisor Enterprise\McSACore.exe

16:45:03.0966 0996 McAfee SiteAdvisor Enterprise Service - ok

16:45:04.0278 0996 McComponentHostService (fd3ad5e1ecdaa94a89d6697f5c5465d6) C:\Program Files (x86)\McAfee Security Scan\2.1.121\McCHSvc.exe

16:45:04.0278 0996 McComponentHostService - ok

16:45:04.0621 0996 McShield (2c883bf52e794e1e71927d9b2ae4d4ef) C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe

16:45:04.0621 0996 McShield - ok

16:45:05.0526 0996 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll

16:45:05.0526 0996 Mcx2Svc - ok

16:45:05.0635 0996 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys

16:45:05.0666 0996 megasas - ok

16:45:05.0931 0996 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys

16:45:05.0947 0996 MegaSR - ok

16:45:06.0072 0996 MEIx64 (1c6e73fc46b509eff9d0086aa37132df) C:\Windows\system32\DRIVERS\HECIx64.sys

16:45:06.0072 0996 MEIx64 - ok

16:45:06.0321 0996 mfeapfk (01884cb7655c8908b43ff5e364fe6fd2) C:\Windows\system32\drivers\mfeapfk.sys

16:45:06.0321 0996 mfeapfk - ok

16:45:06.0540 0996 mfeavfk (dab9a9cdfb04e4d68924492aa043019d) C:\Windows\system32\drivers\mfeavfk.sys

16:45:06.0540 0996 mfeavfk - ok

16:45:06.0820 0996 mfehidk (60cf67458dd29cd17e77f2327b1a9a54) C:\Windows\system32\drivers\mfehidk.sys

16:45:06.0852 0996 mfehidk - ok

16:45:07.0008 0996 mferkdet (5041fa2bd2b3a2693b015771bfbf6dca) C:\Windows\system32\drivers\mferkdet.sys

16:45:07.0023 0996 mferkdet - ok

16:45:07.0179 0996 mfevtp (02b0b1b2f94224ecf9825d81137cd141) C:\Windows\system32\mfevtps.exe

16:45:07.0179 0996 mfevtp - ok

16:45:07.0398 0996 mfewfpk (919c56db14a0e1e2ab6da5d2821dc26e) C:\Windows\system32\drivers\mfewfpk.sys

16:45:07.0398 0996 mfewfpk - ok

16:45:07.0413 0996 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll

16:45:07.0413 0996 MMCSS - ok

16:45:07.0429 0996 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys

16:45:07.0429 0996 Modem - ok

16:45:07.0476 0996 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys

16:45:07.0507 0996 monitor - ok

16:45:07.0616 0996 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\drivers\mouclass.sys

16:45:07.0616 0996 mouclass - ok

16:45:07.0616 0996 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys

16:45:07.0616 0996 mouhid - ok

16:45:07.0725 0996 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys

16:45:07.0725 0996 mountmgr - ok

16:45:07.0788 0996 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys

16:45:07.0788 0996 mpio - ok

16:45:07.0881 0996 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys

16:45:07.0897 0996 mpsdrv - ok

16:45:08.0022 0996 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys

16:45:08.0022 0996 MRxDAV - ok

16:45:08.0037 0996 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys

16:45:08.0037 0996 mrxsmb - ok

16:45:08.0162 0996 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys

16:45:08.0162 0996 mrxsmb10 - ok

16:45:08.0178 0996 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys

16:45:08.0178 0996 mrxsmb20 - ok

16:45:08.0193 0996 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys

16:45:08.0193 0996 msahci - ok

16:45:08.0209 0996 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys

16:45:08.0209 0996 msdsm - ok

16:45:08.0302 0996 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe

16:45:08.0318 0996 MSDTC - ok

16:45:08.0365 0996 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys

16:45:08.0365 0996 Msfs - ok

16:45:08.0380 0996 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys

16:45:08.0380 0996 mshidkmdf - ok

16:45:08.0396 0996 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys

16:45:08.0412 0996 msisadrv - ok

16:45:08.0599 0996 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll

16:45:08.0599 0996 MSiSCSI - ok

16:45:08.0599 0996 msiserver - ok

16:45:08.0630 0996 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys

16:45:08.0630 0996 MSKSSRV - ok

16:45:08.0646 0996 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys

16:45:08.0646 0996 MSPCLOCK - ok

16:45:08.0661 0996 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys

16:45:08.0661 0996 MSPQM - ok

16:45:09.0036 0996 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys

16:45:09.0036 0996 MsRPC - ok

16:45:09.0114 0996 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys

16:45:09.0114 0996 mssmbios - ok

16:45:09.0254 0996 MSSQL$MSSMLBIZ - ok

16:45:09.0472 0996 MSSQLServerADHelper (1d89eb4e2a99cabd4e81225f4f4c4b25) c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqladhlp90.exe

16:45:09.0472 0996 MSSQLServerADHelper - ok

16:45:09.0472 0996 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys

16:45:09.0472 0996 MSTEE - ok

16:45:09.0504 0996 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys

16:45:09.0504 0996 MTConfig - ok

16:45:09.0566 0996 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys

16:45:09.0597 0996 Mup - ok

16:45:10.0050 0996 myAgtSvc (011053c6a37b28a9e3c38ab826465db3) C:\Program Files (x86)\McAfee\Managed VirusScan\Agent\myAgtSvc.exe

16:45:10.0050 0996 myAgtSvc - ok

16:45:10.0346 0996 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll

16:45:10.0362 0996 napagent - ok

16:45:10.0580 0996 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys

16:45:10.0580 0996 NativeWifiP - ok

16:45:10.0736 0996 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys

16:45:10.0752 0996 NDIS - ok

16:45:10.0783 0996 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys

16:45:10.0798 0996 NdisCap - ok

16:45:10.0845 0996 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys

16:45:10.0861 0996 NdisTapi - ok

16:45:10.0954 0996 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys

16:45:10.0986 0996 Ndisuio - ok

16:45:11.0204 0996 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys

16:45:11.0204 0996 NdisWan - ok

16:45:11.0282 0996 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys

16:45:11.0298 0996 NDProxy - ok

16:45:11.0422 0996 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys

16:45:11.0438 0996 NetBIOS - ok

16:45:11.0766 0996 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys

16:45:11.0797 0996 NetBT - ok

16:45:11.0875 0996 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe

16:45:11.0875 0996 Netlogon - ok

16:45:12.0280 0996 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll

16:45:12.0296 0996 Netman - ok

16:45:12.0811 0996 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll

16:45:12.0826 0996 netprofm - ok

16:45:13.0123 0996 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe

16:45:13.0123 0996 NetTcpPortSharing - ok

16:45:13.0185 0996 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys

16:45:13.0201 0996 nfrd960 - ok

16:45:13.0419 0996 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll

16:45:13.0419 0996 NlaSvc - ok

16:45:14.0262 0996 NOBU (b9b72faaaa41d59b73b88fe3dd737ed1) C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe

16:45:14.0277 0996 NOBU - ok

16:45:15.0541 0996 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys

16:45:15.0572 0996 Npfs - ok

16:45:15.0697 0996 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll

16:45:15.0697 0996 nsi - ok

16:45:15.0712 0996 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys

16:45:15.0712 0996 nsiproxy - ok

16:45:16.0227 0996 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys

16:45:16.0274 0996 Ntfs - ok

16:45:17.0803 0996 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys

16:45:17.0803 0996 Null - ok

16:45:17.0896 0996 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys

16:45:17.0896 0996 nvraid - ok

16:45:17.0943 0996 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys

16:45:17.0943 0996 nvstor - ok

16:45:18.0021 0996 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys

16:45:18.0021 0996 nv_agp - ok

16:45:18.0255 0996 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE

16:45:18.0255 0996 odserv - ok

16:45:18.0333 0996 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys

16:45:18.0333 0996 ohci1394 - ok

16:45:18.0427 0996 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE

16:45:18.0427 0996 ose - ok

16:45:18.0567 0996 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll

16:45:18.0598 0996 p2pimsvc - ok

16:45:18.0754 0996 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll

16:45:18.0754 0996 p2psvc - ok

16:45:18.0786 0996 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys

16:45:18.0786 0996 Parport - ok

16:45:18.0879 0996 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys

16:45:18.0879 0996 partmgr - ok

16:45:19.0113 0996 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll

16:45:19.0160 0996 PcaSvc - ok

16:45:19.0191 0996 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys

16:45:19.0191 0996 pci - ok

16:45:19.0207 0996 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys

16:45:19.0207 0996 pciide - ok

16:45:19.0503 0996 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys

16:45:19.0503 0996 pcmcia - ok

16:45:19.0566 0996 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys

16:45:19.0597 0996 pcw - ok

16:45:19.0987 0996 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys

16:45:20.0002 0996 PEAUTH - ok

16:45:20.0252 0996 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe

16:45:20.0283 0996 PerfHost - ok

16:45:20.0548 0996 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll

16:45:20.0564 0996 pla - ok

16:45:20.0970 0996 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll

16:45:20.0985 0996 PlugPlay - ok

16:45:21.0141 0996 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll

16:45:21.0141 0996 PNRPAutoReg - ok

16:45:21.0484 0996 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll

16:45:21.0484 0996 PNRPsvc - ok

16:45:22.0108 0996 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll

16:45:22.0124 0996 PolicyAgent - ok

16:45:22.0374 0996 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll

16:45:22.0374 0996 Power - ok

16:45:22.0732 0996 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys

16:45:22.0732 0996 PptpMiniport - ok

16:45:22.0857 0996 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys

16:45:22.0873 0996 Processor - ok

16:45:23.0169 0996 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll

16:45:23.0169 0996 ProfSvc - ok

16:45:23.0278 0996 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe

16:45:23.0278 0996 ProtectedStorage - ok

16:45:23.0466 0996 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys

16:45:23.0466 0996 Psched - ok

16:45:23.0544 0996 PxHlpa64 (87b04878a6d59d6c79251dc960c674c1) C:\Windows\system32\Drivers\PxHlpa64.sys

16:45:23.0559 0996 PxHlpa64 - ok

16:45:24.0823 0996 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys

16:45:24.0885 0996 ql2300 - ok

16:45:26.0289 0996 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys

16:45:26.0289 0996 ql40xx - ok

16:45:26.0617 0996 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll

16:45:26.0664 0996 QWAVE - ok

16:45:26.0726 0996 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys

16:45:26.0726 0996 QWAVEdrv - ok

16:45:26.0726 0996 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys

16:45:26.0742 0996 RasAcd - ok

16:45:26.0851 0996 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys

16:45:26.0866 0996 RasAgileVpn - ok

16:45:26.0960 0996 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll

16:45:26.0991 0996 RasAuto - ok

16:45:27.0085 0996 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys

16:45:27.0085 0996 Rasl2tp - ok

16:45:27.0522 0996 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll

16:45:27.0553 0996 RasMan - ok

16:45:27.0693 0996 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys

16:45:27.0693 0996 RasPppoe - ok

16:45:27.0818 0996 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys

16:45:27.0818 0996 RasSstp - ok

16:45:28.0146 0996 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys

16:45:28.0161 0996 rdbss - ok

16:45:28.0192 0996 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys

16:45:28.0192 0996 rdpbus - ok

16:45:28.0208 0996 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys

16:45:28.0208 0996 RDPCDD - ok

16:45:28.0255 0996 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys

16:45:28.0255 0996 RDPENCDD - ok

16:45:28.0255 0996 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys

16:45:28.0255 0996 RDPREFMP - ok

16:45:28.0380 0996 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys

16:45:28.0380 0996 RDPWD - ok

16:45:28.0894 0996 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys

16:45:28.0894 0996 rdyboost - ok

16:45:29.0035 0996 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll

16:45:29.0066 0996 RemoteAccess - ok

16:45:29.0222 0996 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll

16:45:29.0238 0996 RemoteRegistry - ok

16:45:30.0298 0996 RoxMediaDB12OEM (bddc447ab46625a54619808575d5cb46) C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe

16:45:30.0298 0996 RoxMediaDB12OEM - ok

16:45:31.0234 0996 RoxWatch12 (ce203243adf512540249df9c264f12dd) C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe

16:45:31.0234 0996 RoxWatch12 - ok

16:45:31.0983 0996 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll

16:45:31.0983 0996 RpcEptMapper - ok

16:45:32.0030 0996 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe

16:45:32.0030 0996 RpcLocator - ok

16:45:32.0826 0996 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll

16:45:32.0826 0996 RpcSs - ok

16:45:33.0028 0996 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys

16:45:33.0028 0996 rspndr - ok

16:45:33.0372 0996 RumorServer (011053c6a37b28a9e3c38ab826465db3) C:\Program Files (x86)\McAfee\Managed VirusScan\Agent\myAgtSvc.exe

16:45:33.0372 0996 RumorServer - ok

16:45:33.0418 0996 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe

16:45:33.0418 0996 SamSs - ok

16:45:33.0559 0996 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys

16:45:33.0559 0996 sbp2port - ok

16:45:33.0886 0996 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll

16:45:33.0902 0996 SCardSvr - ok

16:45:33.0996 0996 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys

16:45:33.0996 0996 scfilter - ok

16:45:35.0540 0996 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll

16:45:35.0556 0996 Schedule - ok

16:45:35.0680 0996 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll

16:45:35.0680 0996 SCPolicySvc - ok

16:45:35.0992 0996 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll

16:45:36.0008 0996 SDRSVC - ok

16:45:36.0180 0996 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys

16:45:36.0195 0996 secdrv - ok

16:45:36.0242 0996 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll

16:45:36.0242 0996 seclogon - ok

16:45:36.0304 0996 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll

16:45:36.0320 0996 SENS - ok

16:45:36.0367 0996 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll

16:45:36.0367 0996 SensrSvc - ok

16:45:36.0492 0996 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys

16:45:36.0570 0996 Serenum - ok

16:45:36.0741 0996 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys

16:45:36.0772 0996 Serial - ok

16:45:36.0819 0996 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys

16:45:36.0835 0996 sermouse - ok

16:45:37.0022 0996 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll

16:45:37.0038 0996 SessionEnv - ok

16:45:37.0178 0996 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys

16:45:37.0178 0996 sffdisk - ok

16:45:37.0256 0996 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys

16:45:37.0256 0996 sffp_mmc - ok

16:45:37.0287 0996 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys

16:45:37.0303 0996 sffp_sd - ok

16:45:37.0318 0996 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys

16:45:37.0318 0996 sfloppy - ok

16:45:37.0724 0996 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll

16:45:37.0724 0996 ShellHWDetection - ok

16:45:37.0802 0996 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys

16:45:37.0802 0996 SiSRaid2 - ok

16:45:37.0864 0996 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys

16:45:37.0880 0996 SiSRaid4 - ok

16:45:37.0974 0996 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys

16:45:37.0974 0996 Smb - ok

16:45:38.0145 0996 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe

16:45:38.0145 0996 SNMPTRAP - ok

16:45:38.0161 0996 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys

16:45:38.0176 0996 spldr - ok

16:45:38.0910 0996 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe

16:45:38.0941 0996 Spooler - ok

16:45:44.0416 0996 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe

16:45:44.0572 0996 sppsvc - ok

16:45:45.0462 0996 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll

16:45:45.0462 0996 sppuinotify - ok

16:45:45.0914 0996 SQLBrowser (86ebd8b1f23e743aad21f4d5b4d40985) c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe

16:45:45.0930 0996 SQLBrowser - ok

16:45:46.0210 0996 SQLWriter (3c432a96363097870995e2a3c8b66abd) c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe

16:45:46.0226 0996 SQLWriter - ok

16:45:47.0256 0996 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys

16:45:47.0287 0996 srv - ok

16:45:47.0739 0996 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys

16:45:47.0755 0996 srv2 - ok

16:45:48.0051 0996 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys

16:45:48.0067 0996 srvnet - ok

16:45:48.0254 0996 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll

16:45:48.0270 0996 SSDPSRV - ok

16:45:48.0316 0996 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll

16:45:48.0332 0996 SstpSvc - ok

16:45:48.0363 0996 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys

16:45:48.0363 0996 stexstor - ok

16:45:48.0940 0996 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll

16:45:48.0956 0996 stisvc - ok

16:45:49.0081 0996 stllssvr (9e182dd94496550a22a392cc1a8e0f52) C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe

16:45:49.0081 0996 stllssvr - ok

16:45:49.0112 0996 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys

16:45:49.0112 0996 swenum - ok

16:45:49.0455 0996 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll

16:45:49.0486 0996 swprv - ok

16:45:51.0717 0996 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll

16:45:51.0748 0996 SysMain - ok

16:45:52.0216 0996 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll

16:45:52.0232 0996 TabletInputService - ok

16:45:52.0404 0996 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll

16:45:52.0747 0996 TapiSrv - ok

16:45:52.0825 0996 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll

16:45:52.0825 0996 TBS - ok

16:45:54.0042 0996 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys

16:45:54.0276 0996 Tcpip - ok

16:45:55.0726 0996 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys

16:45:55.0742 0996 TCPIP6 - ok

16:45:56.0038 0996 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys

16:45:56.0038 0996 tcpipreg - ok

16:45:56.0070 0996 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys

16:45:56.0070 0996 TDPIPE - ok

16:45:56.0101 0996 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys

16:45:56.0101 0996 TDTCP - ok

16:45:56.0163 0996 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys

16:45:56.0163 0996 tdx - ok

16:45:56.0194 0996 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys

16:45:56.0194 0996 TermDD - ok

16:45:56.0818 0996 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll

16:45:56.0865 0996 TermService - ok

16:45:56.0943 0996 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll

16:45:56.0959 0996 Themes - ok

16:45:57.0021 0996 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll

16:45:57.0021 0996 THREADORDER - ok

16:45:57.0037 0996 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll

16:45:57.0037 0996 TrkWks - ok

16:45:57.0224 0996 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe

16:45:57.0240 0996 TrustedInstaller - ok

16:45:57.0302 0996 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys

16:45:57.0302 0996 tssecsrv - ok

16:45:57.0411 0996 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys

16:45:57.0411 0996 TsUsbFlt - ok

16:45:57.0614 0996 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys

16:45:57.0645 0996 tunnel - ok

16:45:57.0708 0996 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys

16:45:57.0708 0996 uagp35 - ok

16:45:57.0988 0996 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys

16:45:58.0004 0996 udfs - ok

16:45:58.0098 0996 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe

16:45:58.0098 0996 UI0Detect - ok

16:45:58.0191 0996 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys

16:45:58.0191 0996 uliagpkx - ok

16:45:58.0285 0996 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys

16:45:58.0285 0996 umbus - ok

16:45:58.0316 0996 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys

16:45:58.0316 0996 UmPass - ok

16:45:58.0394 0996 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll

16:45:58.0394 0996 upnphost - ok

16:45:58.0644 0996 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys

16:45:58.0644 0996 usbccgp - ok

16:45:58.0909 0996 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys

16:45:58.0924 0996 usbcir - ok

16:45:59.0080 0996 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys

16:45:59.0096 0996 usbehci - ok

16:45:59.0424 0996 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys

16:45:59.0439 0996 usbhub - ok

16:45:59.0486 0996 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys

16:45:59.0486 0996 usbohci - ok

16:45:59.0548 0996 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys

16:45:59.0548 0996 usbprint - ok

16:45:59.0611 0996 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys

16:45:59.0611 0996 usbscan - ok

16:45:59.0704 0996 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS

16:45:59.0704 0996 USBSTOR - ok

16:45:59.0736 0996 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys

16:45:59.0736 0996 usbuhci - ok

16:45:59.0798 0996 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll

16:45:59.0814 0996 UxSms - ok

16:45:59.0860 0996 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe

16:45:59.0860 0996 VaultSvc - ok

16:45:59.0923 0996 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys

16:45:59.0923 0996 vdrvroot - ok

16:46:00.0391 0996 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe

16:46:00.0469 0996 vds - ok

16:46:00.0609 0996 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys

16:46:00.0609 0996 vga - ok

16:46:00.0703 0996 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys

16:46:00.0703 0996 VgaSave - ok

16:46:00.0984 0996 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys

16:46:00.0999 0996 vhdmp - ok

16:46:01.0030 0996 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys

16:46:01.0046 0996 viaide - ok

16:46:01.0108 0996 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys

16:46:01.0108 0996 volmgr - ok

16:46:01.0576 0996 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys

16:46:01.0592 0996 volmgrx - ok

16:46:01.0701 0996 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys

16:46:01.0701 0996 volsnap - ok

16:46:01.0842 0996 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys

16:46:01.0857 0996 vsmraid - ok

16:46:02.0949 0996 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe

16:46:02.0980 0996 VSS - ok

16:46:03.0760 0996 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys

16:46:03.0792 0996 vwifibus - ok

16:46:03.0838 0996 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys

16:46:03.0854 0996 vwififlt - ok

16:46:03.0885 0996 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys

16:46:03.0885 0996 vwifimp - ok

16:46:03.0979 0996 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll

16:46:03.0979 0996 W32Time - ok

16:46:04.0010 0996 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys

16:46:04.0010 0996 WacomPen - ok

16:46:04.0150 0996 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys

16:46:04.0166 0996 WANARP - ok

16:46:04.0166 0996 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys

16:46:04.0166 0996 Wanarpv6 - ok

16:46:05.0430 0996 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe

16:46:05.0445 0996 WatAdminSvc - ok

16:46:07.0021 0996 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe

16:46:07.0068 0996 wbengine - ok

16:46:07.0801 0996 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll

16:46:07.0801 0996 WbioSrvc - ok

16:46:08.0191 0996 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll

16:46:08.0222 0996 wcncsvc - ok

16:46:08.0253 0996 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll

16:46:08.0269 0996 WcsPlugInService - ok

16:46:08.0472 0996 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys

16:46:08.0472 0996 Wd - ok

16:46:09.0142 0996 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys

16:46:09.0205 0996 Wdf01000 - ok

16:46:09.0376 0996 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll

16:46:09.0376 0996 WdiServiceHost - ok

16:46:09.0376 0996 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll

16:46:09.0376 0996 WdiSystemHost - ok

16:46:09.0704 0996 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll

16:46:09.0720 0996 WebClient - ok

16:46:10.0016 0996 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll

16:46:10.0016 0996 Wecsvc - ok

16:46:10.0094 0996 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll

16:46:10.0094 0996 wercplsupport - ok

16:46:10.0203 0996 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll

16:46:10.0203 0996 WerSvc - ok

16:46:10.0468 0996 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys

16:46:10.0468 0996 WfpLwf - ok

16:46:10.0484 0996 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys

16:46:10.0484 0996 WIMMount - ok

16:46:10.0500 0996 WinHttpAutoProxySvc - ok

16:46:10.0936 0996 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll

16:46:10.0952 0996 Winmgmt - ok

16:46:12.0964 0996 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll

16:46:12.0996 0996 WinRM - ok

16:46:13.0682 0996 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys

16:46:13.0698 0996 WinUsb - ok

16:46:14.0400 0996 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll

16:46:14.0478 0996 Wlansvc - ok

16:46:14.0727 0996 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe

16:46:14.0727 0996 wlcrasvc - ok

16:46:17.0176 0996 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

16:46:17.0192 0996 wlidsvc - ok

16:46:17.0488 0996 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys

16:46:17.0488 0996 WmiAcpi - ok

16:46:17.0800 0996 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe

16:46:17.0800 0996 wmiApSrv - ok

16:46:17.0832 0996 WMPNetworkSvc - ok

16:46:17.0910 0996 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll

16:46:17.0910 0996 WPCSvc - ok

16:46:18.0066 0996 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll

16:46:18.0066 0996 WPDBusEnum - ok

16:46:18.0112 0996 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys

16:46:18.0112 0996 ws2ifsl - ok

16:46:18.0112 0996 WSearch - ok

16:46:18.0268 0996 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys

16:46:18.0268 0996 WudfPf - ok

16:46:18.0565 0996 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys

16:46:18.0565 0996 WUDFRd - ok

16:46:18.0643 0996 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll

16:46:18.0674 0996 wudfsvc - ok

16:46:18.0939 0996 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll

16:46:18.0955 0996 WwanSvc - ok

16:46:18.0970 0996 MBR (0x1B8) (cdb4de4bbd714f152979da2dcbef57eb) \Device\Harddisk0\DR0

16:46:21.0747 0996 \Device\Harddisk0\DR0 - ok

16:46:21.0778 0996 Boot (0x1200) (88d0cf21190d5f1132e02a06a7029536) \Device\Harddisk0\DR0\Partition0

16:46:21.0778 0996 \Device\Harddisk0\DR0\Partition0 - ok

16:46:21.0810 0996 Boot (0x1200) (4641b6db291d724f787549fd76a8cf89) \Device\Harddisk0\DR0\Partition1

16:46:21.0810 0996 \Device\Harddisk0\DR0\Partition1 - ok

16:46:21.0810 0996 ============================================================

16:46:21.0810 0996 Scan finished

16:46:21.0810 0996 ============================================================

16:46:21.0810 2192 Detected object count: 0

16:46:21.0810 2192 Actual detected object count: 0

16:46:32.0730 1900 Deinitialize success

Link to post
Share on other sites
MrCharlie

MrCharlie

Posted
Posted

Welcome to the forum, please start at the link below:

http://forums.malwar...?showtopic=9573

Post back the 2 logs here.....DDS.txt and Attach.txt

<====><====><====><====><====><====><====><====>

Next.......

Please remove any usb or external drives from the computer before you run this scan!

Please download and run RogueKiller to your desktop.

For Windows XP, double-click to start.

For Vista or Windows 7, do a right-click on the program, select Run as Administrator to start, & when prompted Allow to run.

Click Scan to scan the system.

When the scan completes > Close out the program > Don't Fix anything!

Don't run any other options, they're not all bad!!!!!!!

Post back the report which should be located on your desktop.

MrC

Link to post
Share on other sites
svithost

svithost

Posted
  • Author
Posted

Thanks Ron. I thiink it is gone now. McAfee would not remove it from the PC. Do you have an online SaaS version of Malwarebytes yet? If not you might want to consider it. The client has 8 computers and wants all the computers to report back to one interface where they can all be managed.

Thanks again.

Link to post
Share on other sites
MrCharlie

MrCharlie

Posted
Posted
Thanks Ron. I thiink it is gone now. McAfee would not remove it from the PC. Do you have an online SaaS version of Malwarebytes yet? If not you might want to consider it. The client has 8 computers and wants all the computers to report back to one interface where they can all be managed.

Who are you speaking to??? MrC

Link to post
Share on other sites
Maurice Naggar

Maurice Naggar

Posted
Posted

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites
Guest
This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.