Random 'Water Dripping' or 'Tik Tok' sound

GPK1 · June 5, 2013

Hi,

A 'water dripping or 'tik tok' sound is heard at random on my laptop. The sound appears to come from the screen and can be heard when the speakers are muted. MBAM and Spybot could not detect any issues.

Thank You

Logs as requested:

DDS (Ver_2012-11-20.01) - NTFS_AMD64

Internet Explorer: 10.0.9200.16537

Run by gary at 6:47:19 on 2013-06-05

Microsoft Windows 8 6.2.9200.0.1252.44.2057.18.8075.6328 [GMT 1:00]

.

AV: AVG Anti-Virus 2013 *Enabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}

AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

SP: AVG Anti-Virus 2013 *Enabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}

.

============== Running Processes ===============

.

C:\PROGRA~2\AVG\AVG2013\avgrsa.exe

C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\system32\dwm.exe

C:\Windows\system32\atiesrxx.exe

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\atieclxx.exe

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Program Files\IDT\WDM\STacSV64.exe

C:\Windows\system32\Hpservice.exe

C:\Windows\System32\WUDFHost.exe

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\system32\WLANExt.exe

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k WbioSvcGroup

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Windows\system32\svchost.exe -k apphost

C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe

C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe

C:\Program Files\Intel\WiFi\bin\EvtEng.exe

C:\Windows\system32\dashost.exe

C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe

C:\Program Files\Intel\iCLS Client\HeciServer.exe

C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe

C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe

C:\Program Files (x86)\Skype\Updater\Updater.exe

C:\Windows\system32\valWBFPolicyService.exe

C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

C:\Windows\system32\wbem\unsecapp.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Windows\system32\msiexec.exe

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Windows\system32\taskhostex.exe

C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

C:\Windows\Explorer.EXE

C:\Windows\System32\svchost.exe -k LocalServicePeerNet

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe

C:\Program Files (x86)\HP SimplePass\TouchControl.exe

C:\Windows\system32\wbem\unsecapp.exe

C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1114.318_x64__8wekyb3d8bbwe\LiveComm.exe

C:\Program Files (x86)\HP SimplePass\IEWebSiteLogon.exe

C:\Program Files\Common Files\AuthenTec\TrueService.exe

C:\Windows\system32\SearchIndexer.exe

C:\Windows\system32\SearchProtocolHost.exe

C:\Windows\system32\SearchFilterHost.exe

C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE

C:\Program Files (x86)\Mozilla Firefox\firefox.exe

C:\Windows\System32\hkcmd.exe

C:\Windows\System32\igfxpers.exe

C:\Windows\System32\RuntimeBroker.exe

C:\Program Files\IDT\WDM\sttray64.exe

C:\Windows\System32\rundll32.exe

C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe

C:\Users\gary\AppData\Roaming\uTorrent\uTorrent.exe

C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTsysTray.exe

C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe

C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe

C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe

C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe

C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe

C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe

C:\Program Files (x86)\AVG\AVG2013\avgui.exe

C:\Windows\System32\svchost.exe -k WerSvcGroup

C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\System32\cscript.exe

.

============== Pseudo HJT Report ===============

.

mWinlogon: Userinit = userinit.exe,

BHO: HP Network Check Helper: {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll

uRun: [uTorrent] "C:\Users\gary\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED

uRun: [RGSC] C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent

mRun: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

mRun: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe

mRun: [HP CoolSense] C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe -byrunkey

mRun: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY

StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\StartUp\ISCTSY~1.LNK - C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTsysTray.exe

IE: Send to Bluetooth - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm

IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe

.

INFO: HKCU has more than 50 listed domains.

If you wish to scan all of them, select the 'Force scan all domains' option.

.

INFO: HKLM has more than 50 listed domains.

If you wish to scan all of them, select the 'Force scan all domains' option.

.

TCP: NameServer = 192.168.0.1

TCP: Interfaces\{11B2500D-0EDA-41C0-8154-A5D0512BF4E3} : DHCPNameServer = 192.168.0.1

TCP: Interfaces\{ADA4012E-DD59-4E3C-B823-B53527DFB77F} : DHCPNameServer = 100.100.10.24

Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll

Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

SSODL: WebCheck - <orphaned>

x64-Run: [igfxTray] C:\Windows\System32\igfxtray.exe

x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe

x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe

x64-Run: [sysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe

x64-Run: [bTMTrayAgent] rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp

x64-Run: [synTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe

.

INFO: x64-HKLM has more than 50 listed domains.

If you wish to scan all of them, select the 'Force scan all domains' option.

.

x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>

x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>

x64-Notify: igfxcui - igfxdev.dll

x64-SSODL: WebCheck - <orphaned>

Hosts: 127.0.0.1 www.spywareinfo.com

.

================= FIREFOX ===================

.

FF - ProfilePath - C:\Users\gary\AppData\Roaming\Mozilla\Firefox\Profiles\8ni317tu.default\

FF - plugin: C:\Program Files (x86)\HP SimplePass\npffwloplugin.dll

FF - plugin: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll

FF - plugin: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll

FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrlui.dll

FF - plugin: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\1\NP_wtapp.dll

FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

FF - plugin: C:\windows\SysWOW64\Adobe\Director\np32dsw.dll

FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_202.dll

FF - ExtSQL: 2013-04-30 17:24; {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}; C:\Users\gary\AppData\Roaming\Mozilla\Firefox\Profiles\8ni317tu.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}

FF - ExtSQL: 2013-04-30 19:12; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; C:\Users\gary\AppData\Roaming\Mozilla\Firefox\Profiles\8ni317tu.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

.

============= SERVICES / DRIVERS ===============

.

R0 amdkmpfd;AMD PCI Root Bus Lower Filter;C:\Windows\System32\Drivers\amdkmpfd.sys [2012-7-9 35496]

R0 AVGIDSHA;AVGIDSHA;C:\Windows\System32\Drivers\avgidsha.sys [2012-10-15 63328]

R0 Avgloga;AVG Logging Driver;C:\Windows\System32\Drivers\avgloga.sys [2012-9-21 225120]

R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;C:\Windows\System32\Drivers\avgmfx64.sys [2012-11-15 111968]

R0 Avgrkx64;AVG Anti-Rootkit Driver;C:\Windows\System32\Drivers\avgrkx64.sys [2012-9-14 40800]

R0 iaStorA;iaStorA;C:\Windows\System32\Drivers\iaStorA.sys [2012-7-31 645952]

R1 AVGIDSDriver;AVGIDSDriver;C:\Windows\System32\Drivers\avgidsdrivera.sys [2012-10-22 154464]

R1 Avgldx64;AVG AVI Loader Driver;C:\Windows\System32\Drivers\avgldx64.sys [2012-10-2 185696]

R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2012-8-1 239616]

R2 AVGIDSAgent;AVGIDSAgent;C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe [2012-11-15 5814904]

R2 avgwd;AVG WatchDog;C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe [2012-10-22 196664]

R2 Bluetooth Device Monitor;Bluetooth Device Monitor;C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2012-12-25 1091520]

R2 Bluetooth OBEX Service;Bluetooth OBEX Service;C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2012-12-25 1112000]

R2 FPLService;TrueSuiteService;C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe [2012-8-10 1641320]

R2 hpsrv;HP Service;C:\Windows\System32\hpservice.exe [2012-8-10 29600]

R2 HPWMISVC;HPWMISVC;C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2012-7-31 35232]

R2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-4-20 635104]

R2 ISCTAgent;ISCT Always Updated Agent;C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe [2012-7-24 146984]

R2 jhi_service;Intel® Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe [2012-12-25 165760]

R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-5-24 418376]

R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-5-24 701512]

R2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-4-19 161384]

R2 valWBFPolicyService;Validity WBF Policy Service;C:\Windows\System32\valWBFPolicyService.exe [2012-9-6 28160]

R2 ZeroConfigService;Intel® PROSet/Wireless Zero Configuration Service;C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [2012-7-18 2699568]

R3 AMPPAL;Intel® Centrino® Wireless Bluetooth® + High Speed Virtual Adapter;C:\Windows\System32\Drivers\AmpPal.sys [2012-7-17 162344]

R3 ikbevent;Intel Upper keyboard Class Filter Driver;C:\Windows\System32\Drivers\ikbevent.sys [2012-7-24 20968]

R3 imsevent;Intel Upper Mouse Class Filter Driver;C:\Windows\System32\Drivers\imsevent.sys [2012-7-24 19944]

R3 IntcDAud;Intel® Display Audio;C:\Windows\System32\Drivers\IntcDAud.sys [2012-6-19 342528]

R3 intelkmd;intelkmd;C:\Windows\System32\Drivers\igdpmd64.sys [2012-7-25 8982208]

R3 ISCT;Intel® Smart Connect Technology Device Driver;C:\Windows\System32\Drivers\ISCTD64.sys [2012-7-24 46016]

R3 iwdbus;IWD Bus Enumerator;C:\Windows\System32\Drivers\iwdbus.sys [2012-8-9 25568]

R3 MBAMProtector;MBAMProtector;C:\Windows\System32\Drivers\mbam.sys [2013-5-24 25928]

R3 NETwNe64;@oem15.inf,___ %NIC_Service_DispName_WIN8_64%;___ Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 64 Bit;C:\Windows\System32\Drivers\NETwew00.sys [2012-8-7 4273192]

R3 RSBASTOR;Realtek PCIE CardReader Driver - BA;C:\Windows\System32\Drivers\RtsBaStor.sys [2012-12-25 294544]

R3 RTL8168;Realtek 8168 NT Driver;C:\Windows\System32\Drivers\Rt630x64.sys [2012-12-25 690832]

R3 SmbDrvI;SmbDrvI;C:\Windows\System32\Drivers\Smb_driver_Intel.sys [2012-12-25 43832]

R3 TrueService;TrueAPI Service component;C:\Program Files\Common Files\AuthenTec\TrueService.exe [2012-7-16 401256]

R3 WirelessButtonDriver;HP Wireless Button Driver Service;C:\Windows\System32\Drivers\WirelessButtonDriver64.sys [2012-8-31 20800]

R3 WPRO_41_2001;WinPcap Packet Driver (WPRO_41_2001);C:\Windows\System32\Drivers\WPRO_41_2001.sys [2012-12-25 34752]

S0 Avgboota;AVG Early Launch Anti-Malware Driver;C:\Windows\System32\Drivers\avgboota.sys [2012-10-26 20912]

S2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service;C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2012-7-17 731688]

S2 BTHSSecurityMgr;Intel® Centrino® Wireless Bluetooth® + High Speed Security Service;C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2012-5-2 135952]

S2 HP Support Assistant Service;HP Support Assistant Service;C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe [2012-8-10 85504]

S2 UNS;Intel® Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2012-12-25 364416]

S3 AMPPALP;Intel® Centrino® Wireless Bluetooth® + High Speed Protocol;C:\Windows\System32\Drivers\AmpPal.sys [2012-7-17 162344]

S3 BthLEEnum;Bluetooth Low Energy Driver;C:\Windows\System32\Drivers\BthLEEnum.sys [2012-7-26 202752]

S3 btmaux;Intel Bluetooth Auxiliary Service;C:\Windows\System32\Drivers\btmaux.sys [2012-12-25 110592]

S3 btmhsf;btmhsf;C:\Windows\System32\Drivers\btmhsf.sys [2012-12-25 825344]

S3 GamesAppService;GamesAppService;C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]

S3 iBtFltCoex;iBtFltCoex;C:\Windows\System32\Drivers\iBtFltCoex.sys [2012-12-25 55848]

S3 intaud_WaveExtensible;Intel WiDi Audio Device;C:\Windows\System32\Drivers\intelaud.sys [2012-8-9 35296]

S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2012-7-18 272176]

S3 netr28x;Ralink 802.11n Extensible Wireless Driver;C:\Windows\System32\Drivers\netr28x.sys [2012-6-2 1737760]

S3 SmbDrv;SmbDrv;C:\Windows\System32\Drivers\Smb_driver_AMDASF.sys [2012-12-25 41272]

S3 usb3Hub;USB-IF USB 3.0 Hub;C:\Windows\System32\Drivers\usb3Hub.sys [2012-8-9 48096]

S3 XHCIPort;USB-IF xHCI USB Host Controller;C:\Windows\System32\Drivers\xHCIPort.sys [2012-8-9 188384]

.

=============== Created Last 30 ================

.

2013-06-05 05:46:04 94656 ----a-w- C:\Windows\System32\WPRO_41_2001woem.tmp

2013-06-05 03:34:20 222384 ----a-w- C:\ProgramData\Microsoft\Windows\Sqm\Manifest\Sqm10205.bin

2013-06-04 02:01:08 -------- d-----r- C:\Program Files (x86)\Skype

2013-06-03 05:25:52 -------- d-sh--w- C:\Windows\SysWow64\AI_RecycleBin

2013-06-03 05:25:51 -------- d-----w- C:\Program Files (x86)\Reason

2013-05-29 18:58:14 -------- d-----w- C:\Program Files (x86)\SpywareBlaster

2013-05-27 15:26:04 -------- d-----w- C:\_OTL

2013-05-24 10:18:18 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys

2013-05-24 10:18:18 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware

2013-05-20 15:49:36 -------- d-----w- C:\Users\gary\AppData\Roaming\IDT

2013-05-19 08:04:02 68104 ----a-w- C:\Windows\System32\XAPOFX1_0.dll

2013-05-19 08:04:02 65032 ----a-w- C:\Windows\SysWow64\XAPOFX1_0.dll

2013-05-19 08:04:02 511496 ----a-w- C:\Windows\System32\XAudio2_1.dll

2013-05-19 08:04:02 507400 ----a-w- C:\Windows\SysWow64\XAudio2_1.dll

2013-05-19 08:04:02 28168 ----a-w- C:\Windows\System32\X3DAudio1_4.dll

2013-05-19 08:04:02 25608 ----a-w- C:\Windows\SysWow64\X3DAudio1_4.dll

2013-05-19 08:04:02 238088 ----a-w- C:\Windows\SysWow64\xactengine3_1.dll

2013-05-19 08:04:02 177672 ----a-w- C:\Windows\System32\xactengine3_1.dll

2013-05-19 08:04:01 540688 ----a-w- C:\Windows\System32\d3dx10_38.dll

2013-05-19 08:04:01 467984 ----a-w- C:\Windows\SysWow64\d3dx10_38.dll

2013-05-19 08:04:01 1941528 ----a-w- C:\Windows\System32\D3DCompiler_38.dll

2013-05-19 08:04:01 1491992 ----a-w- C:\Windows\SysWow64\D3DCompiler_38.dll

2013-05-19 08:02:54 462864 ----a-w- C:\Windows\SysWow64\d3dx10_37.dll

2013-05-19 08:02:54 1420824 ----a-w- C:\Windows\SysWow64\D3DCompiler_37.dll

2013-05-19 08:02:52 3786760 ----a-w- C:\Windows\SysWow64\D3DX9_37.dll

2013-05-19 08:02:50 81768 ----a-w- C:\Windows\SysWow64\xinput1_3.dll

2013-05-19 08:02:37 -------- d-----w- C:\Windows\SysWow64\xlive

2013-05-19 08:02:37 -------- d-----w- C:\Program Files (x86)\Microsoft Games for Windows - LIVE

2013-05-19 07:31:53 78200 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl

2013-05-19 07:31:52 693112 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe

2013-05-19 07:26:44 -------- d-----w- C:\Users\gary\AppData\Roaming\PowerISO

2013-05-18 15:34:43 -------- d-----w- C:\Users\gary\AppData\Local\CyberLink

2013-05-18 11:02:07 13648384 ----a-w- C:\Windows\System32\Windows.UI.Xaml.dll

2013-05-18 11:02:05 3552768 ----a-w- C:\Windows\System32\tquery.dll

2013-05-18 11:02:02 2107904 ----a-w- C:\Windows\System32\mssrch.dll

2013-05-18 11:02:02 10789888 ----a-w- C:\Windows\SysWow64\Windows.UI.Xaml.dll

2013-05-18 11:02:01 2767360 ----a-w- C:\Windows\SysWow64\tquery.dll

2013-05-18 11:02:01 1593344 ----a-w- C:\Windows\SysWow64\mssrch.dll

2013-05-18 11:02:00 1829408 ----a-w- C:\Windows\System32\ntdll.dll

2013-05-18 11:02:00 1444864 ----a-w- C:\Windows\System32\MSAudDecMFT.dll

2013-05-18 06:39:57 262552 ----a-w- C:\Program Files (x86)\Mozilla Firefox\browser\components\browsercomps.dll

2013-05-15 16:44:35 1455368 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys

2013-05-15 11:28:16 70144 ----a-w- C:\Windows\System32\appinfo.dll

2013-05-15 11:28:16 112872 ----a-w- C:\Windows\System32\consent.exe

2013-05-15 08:22:30 861184 ----a-w- C:\Windows\System32\drivers\http.sys

2013-05-15 07:08:55 2382336 ----a-w- C:\Windows\SysWow64\esent.dll

2013-05-15 07:08:54 2851840 ----a-w- C:\Windows\System32\esent.dll

2013-05-15 06:06:06 6987528 ----a-w- C:\Windows\System32\ntoskrnl.exe

2013-05-12 14:42:23 -------- d-----w- C:\Users\gary\AppData\Local\FullTiltPoker

2013-05-08 03:10:42 11459584 ----a-w- C:\Windows\System32\glcndFilter.dll

2013-05-08 03:09:50 109568 ----a-w- C:\Windows\System32\dskquota.dll

2013-05-08 03:09:48 82944 ----a-w- C:\Windows\SysWow64\dskquota.dll

2013-05-08 03:09:30 929792 ----a-w- C:\Windows\SysWow64\mfnetsrc.dll

2013-05-08 03:09:30 1172992 ----a-w- C:\Windows\System32\mfnetsrc.dll

2013-05-08 03:09:29 677888 ----a-w- C:\Windows\System32\mfnetcore.dll

2013-05-08 03:09:29 673280 ----a-w- C:\Windows\System32\mfmpeg2srcsnk.dll

2013-05-08 03:09:29 568832 ----a-w- C:\Windows\SysWow64\mfnetcore.dll

2013-05-08 03:09:29 513024 ----a-w- C:\Windows\SysWow64\mfmpeg2srcsnk.dll

2013-05-08 03:07:58 368640 ----a-w- C:\Windows\System32\sppwinob.dll

2013-05-08 03:07:27 2367528 ----a-w- C:\Windows\System32\WSService.dll

2013-05-08 03:07:17 3265256 ----a-w- C:\Windows\System32\drivers\evbda.sys

2013-05-08 03:07:06 2397184 ----a-w- C:\Windows\System32\WpcMon.exe

2013-05-08 03:07:04 3847168 ----a-w- C:\Windows\System32\d2d1.dll

2013-05-08 03:07:02 3964416 ----a-w- C:\Windows\System32\WinSAT.exe

2013-05-08 03:05:59 92160 ----a-w- C:\Windows\System32\lpremove.exe

.

==================== Find3M ====================

.

2013-06-05 05:46:04 34752 ----a-w- C:\Windows\System32\drivers\WPRO_41_2001.sys

2013-04-13 05:56:35 444416 ----a-w- C:\Windows\apppatch\AcSpecfc.dll

2013-04-09 23:17:44 2242048 ----a-w- C:\Windows\System32\wininet.dll

2013-04-09 23:17:36 915968 ----a-w- C:\Windows\System32\uxtheme.dll

2013-04-09 23:16:58 3958784 ----a-w- C:\Windows\System32\jscript9.dll

2013-04-09 22:30:26 1767424 ----a-w- C:\Windows\SysWow64\wininet.dll

2013-04-09 22:29:44 2877440 ----a-w- C:\Windows\SysWow64\jscript9.dll

2013-04-09 05:33:02 489576 ----a-w- C:\Windows\System32\AudioEng.dll

2013-04-09 05:33:02 446792 ----a-w- C:\Windows\System32\AudioSes.dll

2013-04-09 05:33:02 253544 ----a-w- C:\Windows\System32\audiodg.exe

2013-04-09 05:27:43 284424 ----a-w- C:\Windows\System32\drivers\spaceport.sys

2013-04-09 05:20:02 86280 ----a-w- C:\Windows\System32\kdnet.dll

2013-04-09 05:20:02 306952 ----a-w- C:\Windows\System32\kd_02_10ec.dll

2013-04-09 05:18:05 77960 ----a-w- C:\Windows\System32\kdvm.dll

2013-04-09 04:52:07 816128 ----a-w- C:\Windows\System32\SearchIndexer.exe

2013-04-09 04:52:07 373760 ----a-w- C:\Windows\System32\SearchProtocolHost.exe

2013-04-09 04:52:07 197120 ----a-w- C:\Windows\System32\SearchFilterHost.exe

2013-04-09 04:52:07 126464 ----a-w- C:\Windows\System32\Robocopy.exe

2013-04-09 04:52:06 804352 ----a-w- C:\Windows\System32\RecoveryDrive.exe

2013-04-09 04:51:51 367616 ----a-w- C:\Windows\System32\conhost.exe

2013-04-09 04:51:45 523264 ----a-w- C:\Windows\System32\XpsGdiConverter.dll

2013-04-09 04:51:41 99840 ----a-w- C:\Windows\System32\wscsvc.dll

2013-04-09 04:51:41 456704 ----a-w- C:\Windows\System32\wpncore.dll

2013-04-09 04:51:17 595456 ----a-w- C:\Windows\System32\Windows.Networking.dll

2013-04-09 04:51:17 391168 ----a-w- C:\Windows\System32\Windows.Networking.BackgroundTransfer.dll

2013-04-09 04:51:05 10116096 ----a-w- C:\Windows\System32\twinui.dll

2013-04-09 04:50:53 414720 ----a-w- C:\Windows\System32\GenuineCenter.dll

2013-04-09 04:50:39 422400 ----a-w- C:\Windows\System32\schannel.dll

2013-04-09 04:50:39 1285632 ----a-w- C:\Windows\System32\schedsvc.dll

2013-04-09 04:50:03 96256 ----a-w- C:\Windows\System32\mssprxy.dll

2013-04-09 04:50:03 745984 ----a-w- C:\Windows\System32\mssvp.dll

2013-04-09 04:50:02 65024 ----a-w- C:\Windows\System32\msscntrs.dll

2013-04-09 04:50:02 435200 ----a-w- C:\Windows\System32\mssph.dll

2013-04-09 04:50:02 13824 ----a-w- C:\Windows\System32\msshooks.dll

2013-04-09 04:49:45 468992 ----a-w- C:\Windows\System32\MFMediaEngine.dll

2013-04-09 04:49:45 281088 ----a-w- C:\Windows\System32\mfreadwrite.dll

2013-04-09 04:49:36 817152 ----a-w- C:\Windows\System32\kerberos.dll

2013-04-09 04:49:33 210432 ----a-w- C:\Windows\System32\iuilp.dll

2013-04-09 04:49:16 50176 ----a-w- C:\Windows\System32\fmifs.dll

2013-04-09 04:49:16 231936 ----a-w- C:\Windows\System32\fhengine.dll

2013-04-09 04:49:09 172544 ----a-w- C:\Windows\System32\dwmredir.dll

2013-04-09 04:49:06 196096 ----a-w- C:\Windows\System32\dmvdsitf.dll

2013-04-09 04:48:43 2303488 ----a-w- C:\Windows\System32\authui.dll

2013-04-09 04:48:42 785408 ----a-w- C:\Windows\System32\audiosrv.dll

2013-04-09 04:48:42 169472 ----a-w- C:\Windows\System32\AudioEndpointBuilder.dll

2013-04-09 04:48:34 419840 ----a-w- C:\Windows\System32\intl.cpl

2013-04-09 02:35:13 4038144 ----a-w- C:\Windows\System32\win32k.sys

2013-04-09 02:34:49 83968 ----a-w- C:\Windows\System32\drivers\hidclass.sys

2013-04-09 02:34:42 27648 ----a-w- C:\Windows\System32\drivers\hidusb.sys

2013-04-09 02:34:30 95744 ----a-w- C:\Windows\System32\drivers\hidbth.sys

2013-04-09 02:33:41 60416 ----a-w- C:\Windows\System32\drivers\ndproxy.sys

2013-04-09 02:33:05 623104 ----a-w- C:\Windows\System32\drivers\srv2.sys

2013-04-09 02:32:02 805376 ----a-w- C:\Windows\System32\drivers\PEAuth.sys

2013-04-09 02:31:14 247808 ----a-w- C:\Windows\System32\drivers\srvnet.sys

2013-04-09 02:31:01 83456 ----a-w- C:\Windows\System32\drivers\wanarp.sys

2013-04-08 23:44:25 123880 ----a-w- C:\Windows\SysWow64\wscapi.dll

2013-04-08 23:39:14 1408896 ----a-w- C:\Windows\SysWow64\ntdll.dll

2013-04-08 23:37:29 426024 ----a-w- C:\Windows\SysWow64\AudioEng.dll

2013-04-08 23:37:29 324368 ----a-w- C:\Windows\SysWow64\AudioSes.dll

2013-04-08 21:52:16 670208 ----a-w- C:\Windows\SysWow64\SearchIndexer.exe

2013-04-08 21:52:16 302592 ----a-w- C:\Windows\SysWow64\SearchProtocolHost.exe

2013-04-08 21:52:16 171008 ----a-w- C:\Windows\SysWow64\SearchFilterHost.exe

2013-04-08 21:52:16 106496 ----a-w- C:\Windows\SysWow64\Robocopy.exe

2013-04-08 21:52:06 364544 ----a-w- C:\Windows\SysWow64\XpsGdiConverter.dll

2013-04-04 23:30:17 503080 ----a-w- C:\Windows\System32\ci.dll

2013-03-30 18:16:05 1403784 ----a-w- C:\Windows\System32\winload.efi

2013-03-30 18:16:05 1267424 ----a-w- C:\Windows\System32\winload.exe

2013-03-28 22:09:09 1093880 ----a-w- C:\Windows\System32\winresume.exe

2013-03-28 22:09:04 1217328 ----a-w- C:\Windows\System32\winresume.efi

2013-03-15 22:05:34 298456 ----a-w- C:\Windows\System32\rsaenh.dll

2013-03-15 22:05:16 252928 ----a-w- C:\Windows\SysWow64\rsaenh.dll

.

============= FINISH: 6:49:00.93 ===============

.

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

.

DDS (Ver_2012-11-20.01)

.

Microsoft Windows 8

Boot Device: \Device\HarddiskVolume2

Install Date: 30/04/2013 16:24:48

System Uptime: 05/06/2013 06:45:18 (0 hours ago)

.

Motherboard: Hewlett-Packard | | 18A5

Processor: Intel® Core i5-3210M CPU @ 2.50GHz | U3E1 | 2501/100mhz

.

==== Disk Partitions =========================

.

C: is FIXED (NTFS) - 910 GiB total, 781.246 GiB free.

D: is FIXED (NTFS) - 21 GiB total, 2.547 GiB free.

E: is CDROM ()

.

==== Disabled Device Manager Items =============

.

Class GUID: {8a2edc79-c759-46f2-88af-9d4efe3b5eee}

Description: USB-IF xHCI USB Host Controller

Device ID: ROOT\UOIP_BUS_DRIVER\0000

Manufacturer: Intel Corporation

Name: USB-IF xHCI USB Host Controller

PNP Device ID: ROOT\UOIP_BUS_DRIVER\0000

Service: XHCIPort

.

Class GUID: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}

Description: Intel® Centrino® Wireless Bluetooth® 4.0 + High Speed Adapter

Device ID: USB\VID_8087&PID_07DA\6&24DAA714&0&3

Manufacturer: Intel Corporation

Name: Intel® Centrino® Wireless Bluetooth® 4.0 + High Speed Adapter

PNP Device ID: USB\VID_8087&PID_07DA\6&24DAA714&0&3

Service: BTHUSB

.

==== System Restore Points ===================

.

RP8: 26/05/2013 03:17:41 - Scheduled Checkpoint

RP9: 27/05/2013 08:16:34 - OTL Restore Point - 27/05/2013 08:16:33

RP10: 28/05/2013 08:48:30 - OTL Restore Point - 28/05/2013 08:48:30

RP11: 29/05/2013 15:38:44 - HPSF Applying updates

RP12: 29/05/2013 15:38:44 - HPSF Applying updates

RP13: 31/05/2013 16:37:06 - Removed Bonjour

RP14: 02/06/2013 17:04:47 - Removed Skype™ 6.3

.

==== Installed Programs ======================

.

7 Wonders II

Adobe Flash Player 11 Plugin

Adobe Shockwave Player 11.6

Aloha TriPeaks

AMD APP SDK Runtime

AMD Catalyst Install Manager

µTorrent

AuthenTec TrueAPI 64-bit

AVG 2013

Bejeweled 3

Build-a-lot 4 - Power Source

Catalyst Control Center

Catalyst Control Center - Branding

Catalyst Control Center Graphics Previews Common

Catalyst Control Center InstallProxy

Catalyst Control Center Localization All

Catalyst Control Center Profiles Mobile

ccc-utility64

CCC Help Chinese Standard

CCC Help Chinese Traditional

CCC Help Czech

CCC Help Danish

CCC Help Dutch

CCC Help English

CCC Help Finnish

CCC Help French

CCC Help German

CCC Help Greek

CCC Help Hungarian

CCC Help Italian

CCC Help Japanese

CCC Help Korean

CCC Help Norwegian

CCC Help Polish

CCC Help Portuguese

CCC Help Russian

CCC Help Spanish

CCC Help Swedish

CCC Help Thai

CCC Help Turkish

Chuzzle Deluxe

Connected Music powered by Universal Music Group version 1.0

Cradle of Rome 2

Crazy Chicken Soccer

CyberLink LabelPrint

CyberLink Media Suite 10

CyberLink PhotoDirector

CyberLink PowerDirector 10

CyberLink YouCam

D3DX10

Energy Star

Farm Frenzy

Final Drive Fury

Free Stopwatch 2.7.0

Governor of Poker 2 Premium Edition

Hewlett-Packard ACLM.NET v1.2.0.0

HP 3D DriveGuard

HP Connected Music (Meridian - installer)

HP CoolSense

HP Customer Experience Enhancements

HP Documentation

HP Games

HP Postscript Converter

HP Quick Launch

HP Recovery Manager

HP Registration Service

HP SimplePass

HP Software Framework

HP Support Assistant

HP Utility Center

HP Wireless Button Driver

IDT Audio

Intel PROSet Wireless

Intel® Display Audio Driver

Intel® Management Engine Components

Intel® PROSet/Wireless for Bluetooth® + High Speed

Intel® PROSet/Wireless Software for Bluetooth® Technology

Intel® Smart Connect Technology 3.0 x64

Intel® WiDi

Intel® PROSet/Wireless WiFi Software

Intel® Trusted Connect Service Client

Jewel Match 3

Jewel Quest II

Jewel Quest Solitaire 2

Mahjongg Artifacts

Malwarebytes Anti-Malware version 1.75.0.1300

Microsoft Application Error Reporting

Microsoft Games for Windows - LIVE Redistributable

Microsoft Office

Microsoft Silverlight

Microsoft SQL Server 2005 Compact Edition [ENU]

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219

Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219

Mozilla Firefox 21.0 (x86 en-US)

Mozilla Maintenance Service

MSVCRT

Mystery of Mortlake Mansion

PokerStars

Polar Bowler

PX Profile Update

Ranch Rush 2 - Premium Edition

Realtek Ethernet Controller Driver

Realtek PCIE Card Reader

Skype™ 6.3

Spybot - Search & Destroy

SpywareBlaster 5.0

swMSM

Synaptics Pointing Device Driver

Trinklit Supreme

Update Installer for WildTangent Games App

Validity WBF DDK

Virtual Families

Visual Studio 2010 x64 Redistributables

Wedding Dash

WildTangent Games

WildTangent Games App

Windows Live Communications Platform

Windows Live Essentials

Windows Live Installer

Windows Live Language Selector

Windows Live Movie Maker

Windows Live Photo Common

Windows Live Photo Gallery

Windows Live PIMT Platform

Windows Live SOXE

Windows Live SOXE Definitions

Windows Live UX Platform

Windows Live UX Platform Language Pack

Windows Live Writer

Windows Live Writer Resources

WinRAR 4.20 (64-bit)

Zuma's Revenge

.

==== Event Viewer Messages From Past Week ========

.

29/05/2013 15:46:49, Error: Service Control Manager [7000] - The CLVirtualDrive service failed to start due to the following error: The system cannot find the file specified.

05/06/2013 06:46:01, Error: Service Control Manager [7006] - The ScRegSetValueExW call failed for FailureActions with the following error: Access is denied.

02/06/2013 09:16:35, Error: Service Control Manager [7022] - The Software Protection service hung on starting.

02/06/2013 09:13:52, Error: Service Control Manager [7022] - The HP Support Assistant Service service hung on starting.

.

==== End Of File ===========================

Psychotic · June 5, 2013

Hi there,

my name is Marius and I will be assisting you with your Malware related problems.

Before we move on, please read the following points carefully.

First, read my instructions completely. If there is anything that you do not understand kindly ask before proceeding.
Perform everything in the correct order. Sometimes one step requires the previous one.
If you have any problems while you are follow my instructions, Stop there and tell me the exact nature of your problem.
Do not run any other scans without instruction or Add/ Remove Software unless I tell you to do so. This would change the output of our tools and could be confusing for me.
Post all Logfiles as a reply rather than as an attachment unless I specifically ask you. If you can not post all logfiles in one reply, feel free to use more posts.
If I don't hear from you within 3 days from this initial or any subsequent post, then this thread will be closed.
Stay with me. I will give you some advice about prevention after the cleanup process. Absence of symptoms does not always mean the computer is clean.
My first language is not english. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.

I see you´ve used OTL. What did you do with this tool?

RP9: 27/05/2013 08:16:34 - OTL Restore Point - 27/05/2013 08:16:33
RP10: 28/05/2013 08:48:30 - OTL Restore Point - 28/05/2013 08:48:30

Also tell me:

Are you in the opinion that this is a sound that is played by your computer or may it be generated by the hardware somehow?

GPK1 · June 6, 2013

Hi Marius,

Re: OTL: I attempted to address my sound issue on another forum with tech support. However my thread was closed due to a delay in my reply. I ran OTL and provided reports to tech support. However the only problem OTL detected was a program I downloaded called ViStart. OTL removed this from my laptop.

The sound appears to be played by the computer and not generated by the hardware.

Many Thanks

Gary

Psychotic · June 6, 2013

Please read and follow these instructions carefully. We do not want it to fix anything yet (if found), we need to see a report first.

Download TDSSKiller.exe and save it to your desktop

Execute TDSSKiller.exe by doubleclicking on it.
Press Start Scan
If Malicious objects are found, do NOT select Cure. Change the action to Skip, and save the log.
Once complete, a log will be produced at the root drive which is typically C:\ ,for example, C:\TDSSKiller.<version_date_time>log.txt

Please post the contents of that log in your next reply.

Scan with aswMBR

Please download aswMBR.exe to your desktop.

Double-click the aswMBR.exe to run it
When prompted with The application can use the Avast! Free Antivirus for scanning >> select No
Now click on the Scan button to start scan
On completion of the scan click Save Log, save it to your desktop and post the contents in your next reply

Note: There will also be a file on your desktop named MBR.dat(or similir) do not delete this for now it is a actual backup of the MBR(master boot record).

GPK1 · June 6, 2013

Hi Marius,

When I run aswMBR and select no to the Avast prompt. I receive an error message to say 'Avast antiroot kit is nit working' ans windows closes the program.

TDSSkiller logs as requested.

08:34:52.0021 9016 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42

08:34:52.0021 9016 UEFI system

08:34:52.0177 9016 ============================================================

08:34:52.0177 9016 Current date / time: 2013/06/06 08:34:52.0177

08:34:52.0177 9016 SystemInfo:

08:34:52.0177 9016

08:34:52.0177 9016 OS Version: 6.2.9200 ServicePack: 0.0

08:34:52.0177 9016 Product type: Workstation

08:34:52.0177 9016 ComputerName: REDMEN

08:34:52.0177 9016 UserName: gary

08:34:52.0177 9016 Windows directory: C:\Windows

08:34:52.0177 9016 System windows directory: C:\Windows

08:34:52.0177 9016 Running under WOW64

08:34:52.0177 9016 Processor architecture: Intel x64

08:34:52.0177 9016 Number of processors: 4

08:34:52.0177 9016 Page size: 0x1000

08:34:52.0177 9016 Boot type: Normal boot

08:34:52.0177 9016 ============================================================

08:34:52.0677 9016 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

08:34:52.0677 9016 ============================================================

08:34:52.0677 9016 \Device\Harddisk0\DR0:

08:34:52.0677 9016 GPT partitions:

08:34:52.0677 9016 \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {91B81A53-2FCE-4D5D-A955-86AB85BD7BF5}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0xC8000

08:34:52.0677 9016 \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {66CE902E-4247-4862-9229-7A36461EE6ED}, Name: EFI system partition, StartLBA 0xC8800, BlocksNum 0x82000

08:34:52.0677 9016 \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {720F874E-5C8C-4A7A-A152-9A442B8F1F93}, Name: Microsoft reserved partition, StartLBA 0x14A800, BlocksNum 0x40000

08:34:52.0677 9016 \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {F91576B8-16FD-4749-A422-14C048B1EB8B}, Name: Basic data partition, StartLBA 0x18A800, BlocksNum 0x71C29800

08:34:52.0677 9016 \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {4D26FCAE-F106-4931-8C45-B0215D4CE729}, Name: Basic data partition, StartLBA 0x71DB4000, BlocksNum 0x294F800

08:34:52.0677 9016 MBR partitions:

08:34:52.0677 9016 ============================================================

08:34:52.0709 9016 C: <-> \Device\Harddisk0\DR0\Partition4

08:34:52.0755 9016 D: <-> \Device\Harddisk0\DR0\Partition5

08:34:52.0755 9016 ============================================================

08:34:52.0755 9016 Initialize success

08:34:52.0755 9016 ============================================================

08:35:04.0506 8252 ============================================================

08:35:04.0506 8252 Scan started

08:35:04.0506 8252 Mode: Manual;

08:35:04.0506 8252 ============================================================

08:35:05.0038 8252 ================ Scan system memory ========================

08:35:05.0038 8252 System memory - ok

08:35:05.0038 8252 ================ Scan services =============================

08:35:05.0163 8252 [ E890C46E4754F0DF51BAFCC8D2E07498 ] 1394ohci C:\Windows\System32\drivers\1394ohci.sys

08:35:05.0163 8252 1394ohci - ok

08:35:05.0178 8252 [ 4F18D4C7EA14F11A7211F60D553C03DB ] 3ware C:\Windows\system32\drivers\3ware.sys

08:35:05.0178 8252 3ware - ok

08:35:05.0209 8252 [ C4C5D1AB35D1F931928056D61A1C4616 ] Accelerometer C:\Windows\system32\DRIVERS\Accelerometer.sys

08:35:05.0209 8252 Accelerometer - ok

08:35:05.0225 8252 [ 975AABEB243B800C23626D6B652C5A9C ] ACPI C:\Windows\system32\drivers\ACPI.sys

08:35:05.0241 8252 ACPI - ok

08:35:05.0256 8252 [ DC968C37822117E576B933F34A2D130C ] acpiex C:\Windows\system32\Drivers\acpiex.sys

08:35:05.0256 8252 acpiex - ok

08:35:05.0272 8252 [ 0CA9F7C3A78227C21A0A7854E245CFB2 ] acpipagr C:\Windows\System32\drivers\acpipagr.sys

08:35:05.0272 8252 acpipagr - ok

08:35:05.0272 8252 [ 8EB8DA03B142D3DD1EB9ED8107A76C43 ] AcpiPmi C:\Windows\System32\drivers\acpipmi.sys

08:35:05.0272 8252 AcpiPmi - ok

08:35:05.0288 8252 [ CBCE725C5D86ABA7D2604E22951AA9B8 ] acpitime C:\Windows\System32\drivers\acpitime.sys

08:35:05.0288 8252 acpitime - ok

08:35:05.0381 8252 [ F040037B149FD0F5A5044AE563390FA7 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

08:35:05.0397 8252 AdobeFlashPlayerUpdateSvc - ok

08:35:05.0413 8252 [ 93C6388592B99925C1D1576E465BC80F ] adp94xx C:\Windows\system32\drivers\adp94xx.sys

08:35:05.0413 8252 adp94xx - ok

08:35:05.0444 8252 [ D27763E0247292654E7F7D16444C7C72 ] adpahci C:\Windows\system32\drivers\adpahci.sys

08:35:05.0444 8252 adpahci - ok

08:35:05.0459 8252 [ 67B90070FF48F794AF19F9FCF0080D75 ] adpu320 C:\Windows\system32\drivers\adpu320.sys

08:35:05.0475 8252 adpu320 - ok

08:35:05.0506 8252 [ 974AE60BF5B90E31412D93596C968E5B ] AeLookupSvc C:\Windows\System32\aelupsvc.dll

08:35:05.0506 8252 AeLookupSvc - ok

08:35:05.0538 8252 [ 36D6A3201721558A8AFBCC09C2DA4C2C ] AFD C:\Windows\system32\drivers\afd.sys

08:35:05.0553 8252 AFD - ok

08:35:05.0584 8252 [ 01590377A5AB19E792528C628A2A68F9 ] agp440 C:\Windows\system32\drivers\agp440.sys

08:35:05.0600 8252 agp440 - ok

08:35:05.0616 8252 [ D1BE8E6E5B3AF23A4393AF1BF867977A ] ALG C:\Windows\System32\alg.exe

08:35:05.0616 8252 ALG - ok

08:35:05.0647 8252 [ 025E8C755BE293E50854D26D1BBE5133 ] AllUserInstallAgent C:\Windows\system32\AUInstallAgent.dll

08:35:05.0647 8252 AllUserInstallAgent - ok

08:35:05.0678 8252 [ 1F500945F87AA517BD2F049256B304DD ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe

08:35:05.0772 8252 AMD External Events Utility - ok

08:35:05.0803 8252 [ 5A81054B824004B1ECC04F0034A1CDF9 ] AmdK8 C:\Windows\System32\drivers\amdk8.sys

08:35:05.0803 8252 AmdK8 - ok

08:35:05.0991 8252 [ 2A831A7F9031B5BBA6EF189381D65228 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys

08:35:06.0256 8252 amdkmdag - ok

08:35:06.0288 8252 [ B9ACB2AA40709E060CDC34F13F1C9C8F ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys

08:35:06.0288 8252 amdkmdap - ok

08:35:06.0303 8252 [ 02CF5AD93538CCE63EB09364EDD3DCF9 ] amdkmpfd C:\Windows\system32\drivers\amdkmpfd.sys

08:35:06.0303 8252 amdkmpfd - ok

08:35:06.0319 8252 [ B849D453E644FAB9BC8EF6DC8CA9C4C6 ] AmdPPM C:\Windows\System32\drivers\amdppm.sys

08:35:06.0319 8252 AmdPPM - ok

08:35:06.0334 8252 [ 35A0EB5AECB0FA3C41A2FB514A562304 ] amdsata C:\Windows\system32\drivers\amdsata.sys

08:35:06.0334 8252 amdsata - ok

08:35:06.0350 8252 [ 00452671904F5EE94B50BF0219C97164 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys

08:35:06.0350 8252 amdsbs - ok

08:35:06.0366 8252 [ EA3FFE53E92E59C87E3ECA9BEB20D9B7 ] amdxata C:\Windows\system32\drivers\amdxata.sys

08:35:06.0366 8252 amdxata - ok

08:35:06.0397 8252 [ FB88245C1815EB1588DBC364A8D24522 ] AMPPAL C:\Windows\System32\drivers\AMPPAL.sys

08:35:06.0397 8252 AMPPAL - ok

08:35:06.0397 8252 [ FB88245C1815EB1588DBC364A8D24522 ] AMPPALP C:\Windows\system32\DRIVERS\amppal.sys

08:35:06.0397 8252 AMPPALP - ok

08:35:06.0475 8252 [ A73CEA1B1B0A4F6D10BFD3B9AD9DC5F9 ] AMPPALR3 C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe

08:35:06.0475 8252 AMPPALR3 - ok

08:35:06.0522 8252 [ 823F34D1DEF120A657BB7529ABF4461F ] AppHostSvc C:\Windows\system32\inetsrv\apphostsvc.dll

08:35:06.0522 8252 AppHostSvc - ok

08:35:06.0538 8252 [ 83B3682CE922FB0F415734B26D9D6233 ] AppID C:\Windows\system32\drivers\appid.sys

08:35:06.0538 8252 AppID - ok

08:35:06.0569 8252 [ CE2BEAD7F31816FF0AC490D048C969F9 ] AppIDSvc C:\Windows\System32\appidsvc.dll

08:35:06.0584 8252 AppIDSvc - ok

08:35:06.0600 8252 [ 4F750B7EFCB6520AE01E01D082D7D476 ] Appinfo C:\Windows\System32\appinfo.dll

08:35:06.0600 8252 Appinfo - ok

08:35:06.0632 8252 [ E933401B392387F4BE34DE8BAF1722A7 ] arc C:\Windows\system32\drivers\arc.sys

08:35:06.0648 8252 arc - ok

08:35:06.0648 8252 [ 07CA323EF2E8247A568AB0F3662AD644 ] arcsas C:\Windows\system32\drivers\arcsas.sys

08:35:06.0648 8252 arcsas - ok

08:35:06.0757 8252 [ 108FB6DDB69E537A2EA53F425363FAE5 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe

08:35:06.0757 8252 aspnet_state - ok

08:35:06.0773 8252 [ 74DBAEC35366C4EE7670428808715A6A ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys

08:35:06.0773 8252 AsyncMac - ok

08:35:06.0789 8252 [ A721FF570C2387E383BDDEA9632863C9 ] atapi C:\Windows\system32\drivers\atapi.sys

08:35:06.0789 8252 atapi - ok

08:35:06.0820 8252 [ BCD7A47EF587DC00DD61D12D9C2D1E44 ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll

08:35:06.0820 8252 AudioEndpointBuilder - ok

08:35:06.0867 8252 [ 810F30FF8490ED5ED510621DF10DE320 ] Audiosrv C:\Windows\System32\Audiosrv.dll

08:35:06.0867 8252 Audiosrv - ok

08:35:06.0898 8252 [ 58D7FAF5C81ECEFFD2EDEDA9C2619D82 ] Avgboota C:\Windows\system32\DRIVERS\avgboota.sys

08:35:06.0898 8252 Avgboota - ok

08:35:07.0085 8252 [ 4AFC14AFA58878FAA1D249E7E90EA54B ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe

08:35:07.0117 8252 AVGIDSAgent - ok

08:35:07.0117 8252 [ 388056EBD5FE6718FE669078DBE37897 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdrivera.sys

08:35:07.0117 8252 AVGIDSDriver - ok

08:35:07.0132 8252 [ 550E981747D6A6C55078C77346FFC2C6 ] AVGIDSHA C:\Windows\system32\DRIVERS\avgidsha.sys

08:35:07.0132 8252 AVGIDSHA - ok

08:35:07.0148 8252 [ 5989592A91A17587799792A81E1541D4 ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys

08:35:07.0148 8252 Avgldx64 - ok

08:35:07.0179 8252 [ 3FC43AA02545FCDDC22817829114DEC8 ] Avgloga C:\Windows\system32\DRIVERS\avgloga.sys

08:35:07.0179 8252 Avgloga - ok

08:35:07.0195 8252 [ 841C40C193889730848849AC220D9242 ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys

08:35:07.0195 8252 Avgmfx64 - ok

08:35:07.0211 8252 [ FE4F444DBE4BBBDFD8FECF49398DEFC7 ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys

08:35:07.0211 8252 Avgrkx64 - ok

08:35:07.0242 8252 [ 6B72E1E329C4E98C6B6FDD2D265E3BA3 ] avgwd C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe

08:35:07.0242 8252 avgwd - ok

08:35:07.0273 8252 [ 89491EF71D5EA011127832C588002853 ] AxInstSV C:\Windows\System32\AxInstSV.dll

08:35:07.0273 8252 AxInstSV - ok

08:35:07.0320 8252 [ 87AB5BB072A3F128541D5B815F82FFDD ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys

08:35:07.0336 8252 b06bdrv - ok

08:35:07.0351 8252 [ 81703BC5D68DEDBB086C2368FBE7B334 ] BasicDisplay C:\Windows\System32\drivers\BasicDisplay.sys

08:35:07.0367 8252 BasicDisplay - ok

08:35:07.0367 8252 [ 5EC68164E14D25675C98BBB5F09E8606 ] BasicRender C:\Windows\System32\drivers\BasicRender.sys

08:35:07.0382 8252 BasicRender - ok

08:35:07.0414 8252 [ 89143A7BA7850F5C7E61B43BB44B6418 ] BDESVC C:\Windows\System32\bdesvc.dll

08:35:07.0429 8252 BDESVC - ok

08:35:07.0445 8252 [ 9E7AEA59776D904607985AFFE7E5E183 ] Beep C:\Windows\system32\drivers\Beep.sys

08:35:07.0445 8252 Beep - ok

08:35:07.0492 8252 [ 9E6A544F465C582AB42444A217CF04DC ] BFE C:\Windows\System32\bfe.dll

08:35:07.0507 8252 BFE - ok

08:35:07.0539 8252 [ D598C44A7072D3108D8D8102EC5E07F7 ] BITS C:\Windows\System32\qmgr.dll

08:35:07.0617 8252 BITS - ok

08:35:07.0711 8252 [ 4AF14827F1584D084BC136A51FAA8397 ] Bluetooth Device Monitor C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe

08:35:07.0711 8252 Bluetooth Device Monitor - ok

08:35:07.0742 8252 [ BC89A4C6A2A9C65E8E88AD0B3BF180FD ] Bluetooth OBEX Service C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe

08:35:07.0757 8252 Bluetooth OBEX Service - ok

08:35:07.0789 8252 [ B17AC10B47C7FCB44D22A1F06415840E ] bowser C:\Windows\system32\DRIVERS\bowser.sys

08:35:07.0789 8252 bowser - ok

08:35:07.0820 8252 [ 975398A3D2C1FEA73FC93931978DF354 ] BrokerInfrastructure C:\Windows\System32\bisrv.dll

08:35:07.0820 8252 BrokerInfrastructure - ok

08:35:07.0851 8252 [ 310068BDA80B1D55C36580FD8A873FAF ] Browser C:\Windows\System32\browser.dll

08:35:07.0851 8252 Browser - ok

08:35:07.0882 8252 [ F17DEEAC7D51D44CF1BFF8DD4F0A2B6D ] BthAvrcpTg C:\Windows\System32\drivers\BthAvrcpTg.sys

08:35:07.0898 8252 BthAvrcpTg - ok

08:35:07.0914 8252 [ A8B20D852B07AE19A13B5D47EC4E4C3B ] BthEnum C:\Windows\System32\drivers\BthEnum.sys

08:35:07.0914 8252 BthEnum - ok

08:35:07.0945 8252 [ 616EB8748C988AEE98D93DA141C3D3B4 ] BthHFEnum C:\Windows\System32\drivers\bthhfenum.sys

08:35:07.0945 8252 BthHFEnum - ok

08:35:07.0961 8252 [ DCB4EBD928A6FB368BE6CAE522412DE1 ] bthhfhid C:\Windows\System32\drivers\BthHFHid.sys

08:35:07.0976 8252 bthhfhid - ok

08:35:07.0992 8252 [ 42201C346F0B8C458E1E9CDE04D68A2C ] BthLEEnum C:\Windows\system32\DRIVERS\BthLEEnum.sys

08:35:07.0992 8252 BthLEEnum - ok

08:35:08.0007 8252 [ 033916CE8784A848B9A3D686B7F66D97 ] BTHMODEM C:\Windows\System32\drivers\bthmodem.sys

08:35:08.0007 8252 BTHMODEM - ok

08:35:08.0023 8252 [ 091BB978E9504D0AD14586929431A957 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys

08:35:08.0023 8252 BthPan - ok

08:35:08.0086 8252 [ 13795CAA34239D97A7211E7F9D96E012 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys

08:35:08.0101 8252 BTHPORT - ok

08:35:08.0132 8252 [ A4387C3D271959313E2577DB7BE8BA7A ] bthserv C:\Windows\system32\bthserv.dll

08:35:08.0132 8252 bthserv - ok

08:35:08.0148 8252 [ 9310C81BE4D5EA33798A99355BB53E94 ] BTHSSecurityMgr C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe

08:35:08.0148 8252 BTHSSecurityMgr - ok

08:35:08.0179 8252 [ 1F715957F5236D30B6020A19A4271F6A ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys

08:35:08.0179 8252 BTHUSB - ok

08:35:08.0211 8252 [ 0E39863E0568BAF18DA8A49F0C5D55EB ] btmaux C:\Windows\system32\DRIVERS\btmaux.sys

08:35:08.0242 8252 btmaux - ok

08:35:08.0273 8252 [ 1134650C2F97611ACCDB02BC904AD35D ] btmhsf C:\Windows\system32\DRIVERS\btmhsf.sys

08:35:08.0289 8252 btmhsf - ok

08:35:08.0304 8252 [ 990B1BABE6E81FB18E65A87EBEFB1772 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys

08:35:08.0304 8252 cdfs - ok

08:35:08.0336 8252 [ 339BFF85D788268752DA8C9644B188EE ] cdrom C:\Windows\System32\drivers\cdrom.sys

08:35:08.0336 8252 cdrom - ok

08:35:08.0367 8252 [ BAF8F0F55BC300E5F882E521F054E345 ] CertPropSvc C:\Windows\System32\certprop.dll

08:35:08.0367 8252 CertPropSvc - ok

08:35:08.0382 8252 [ F64B7D1A37CC1D5F421D5359EEC81E2E ] circlass C:\Windows\System32\drivers\circlass.sys

08:35:08.0382 8252 circlass - ok

08:35:08.0398 8252 [ 9905168708DB68849B879B5548F68AB3 ] CLFS C:\Windows\system32\drivers\CLFS.sys

08:35:08.0398 8252 CLFS - ok

08:35:08.0429 8252 [ 2DC8538A2260647484A6C921CA837313 ] CmBatt C:\Windows\System32\drivers\CmBatt.sys

08:35:08.0429 8252 CmBatt - ok

08:35:08.0461 8252 [ E708BFF0473EC6B271EA46B65B16CA56 ] CNG C:\Windows\system32\Drivers\cng.sys

08:35:08.0461 8252 CNG - ok

08:35:08.0492 8252 [ 0E5B1E9E7122EDAAF1F6CE047965CA92 ] CompositeBus C:\Windows\System32\drivers\CompositeBus.sys

08:35:08.0492 8252 CompositeBus - ok

08:35:08.0507 8252 COMSysApp - ok

08:35:08.0507 8252 [ D9CB0782AF819548072AA45B70F8B22D ] condrv C:\Windows\system32\drivers\condrv.sys

08:35:08.0507 8252 condrv - ok

08:35:08.0586 8252 [ 283048742BEAADEA1B1C1C9B3DFC10F6 ] cphs C:\Windows\SysWow64\IntelCpHeciSvc.exe

08:35:08.0586 8252 cphs - ok

08:35:08.0632 8252 [ F0E78B119D12BA81F163D48C0FF30B9A ] CryptSvc C:\Windows\system32\cryptsvc.dll

08:35:08.0632 8252 CryptSvc - ok

08:35:08.0664 8252 [ C4D01BD86D6B207275FC143EEA951D75 ] dam C:\Windows\system32\drivers\dam.sys

08:35:08.0664 8252 dam - ok

08:35:08.0711 8252 [ 1EC6E533C954BDDF2A37E7851A7E58FD ] DcomLaunch C:\Windows\system32\rpcss.dll

08:35:08.0711 8252 DcomLaunch - ok

08:35:08.0742 8252 [ C8650D1F61149AA546BDBC99172EBBC1 ] defragsvc C:\Windows\System32\defragsvc.dll

08:35:08.0742 8252 defragsvc - ok

08:35:08.0757 8252 [ 5EAEF67AE2AF4D2DC664B649DB7B2E16 ] DeviceAssociationService C:\Windows\system32\das.dll

08:35:08.0773 8252 DeviceAssociationService - ok

08:35:08.0789 8252 [ 799BE46D45D486704CE0F37CA5385262 ] DeviceInstall C:\Windows\system32\umpnpmgr.dll

08:35:08.0804 8252 DeviceInstall - ok

08:35:08.0836 8252 [ 09D9EB9E7898F8E6561473A20CC808B9 ] Dfsc C:\Windows\system32\Drivers\dfsc.sys

08:35:08.0836 8252 Dfsc - ok

08:35:08.0867 8252 [ 9E0E72222264745ADEB0E5AC680B0ED6 ] Dhcp C:\Windows\system32\dhcpcore.dll

08:35:08.0882 8252 Dhcp - ok

08:35:08.0882 8252 [ 3C736FAE17BA6F91BA37594AAB139CD0 ] discache C:\Windows\system32\drivers\discache.sys

08:35:08.0882 8252 discache - ok

08:35:08.0898 8252 [ 560495FF4CA22E1D9B1972FA18F43B6F ] disk C:\Windows\system32\drivers\disk.sys

08:35:08.0898 8252 disk - ok

08:35:08.0914 8252 [ 82A7C72593793FE1EADA7A305BD1567A ] dmvsc C:\Windows\System32\drivers\dmvsc.sys

08:35:08.0914 8252 dmvsc - ok

08:35:08.0945 8252 [ 066B9710B36AB550E01EEFCA52155968 ] Dnscache C:\Windows\System32\dnsrslvr.dll

08:35:08.0945 8252 Dnscache - ok

08:35:08.0992 8252 [ 9949AD2ABA168A618D46C799D6CC898C ] dot3svc C:\Windows\System32\dot3svc.dll

08:35:08.0992 8252 dot3svc - ok

08:35:09.0007 8252 [ 109FC3F80BF4F4DC5A071058074F13C1 ] DPS C:\Windows\system32\dps.dll

08:35:09.0007 8252 DPS - ok

08:35:09.0039 8252 [ 9C7C183F937951AE17C5B8B3259CF3FF ] drmkaud C:\Windows\system32\drivers\drmkaud.sys

08:35:09.0054 8252 drmkaud - ok

08:35:09.0054 8252 [ BF48F32EE248C3D371DA5DC93BBEADA7 ] DsmSvc C:\Windows\System32\DeviceSetupManager.dll

08:35:09.0070 8252 DsmSvc - ok

08:35:09.0117 8252 [ 6D1B8A9A2C0BD4851D8AF1AB43E67AD9 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys

08:35:09.0148 8252 DXGKrnl - ok

08:35:09.0164 8252 [ 58BA473DD88F5FC1932282BA683AA03E ] Eaphost C:\Windows\System32\eapsvc.dll

08:35:09.0164 8252 Eaphost - ok

08:35:09.0242 8252 [ 5AB97B3282D7D6114949D1EB5C8598E4 ] ebdrv C:\Windows\system32\drivers\evbda.sys

08:35:09.0304 8252 ebdrv - ok

08:35:09.0320 8252 [ F702AB6181513303AB0FC8D59E52708B ] EFS C:\Windows\System32\lsass.exe

08:35:09.0336 8252 EFS - ok

08:35:09.0351 8252 [ 66D60BD9A4C05616ABECA2A901475098 ] EhStorClass C:\Windows\system32\drivers\EhStorClass.sys

08:35:09.0351 8252 EhStorClass - ok

08:35:09.0383 8252 [ A61D0F543024E458C0FE32352E1978E2 ] EhStorTcgDrv C:\Windows\system32\drivers\EhStorTcgDrv.sys

08:35:09.0383 8252 EhStorTcgDrv - ok

08:35:09.0398 8252 [ D790D058D67582DB9C84C2D33695FE6B ] ErrDev C:\Windows\System32\drivers\errdev.sys

08:35:09.0398 8252 ErrDev - ok

08:35:09.0429 8252 [ F9E01C2D9F8BC049E04CF5DC24A5F638 ] EventSystem C:\Windows\system32\es.dll

08:35:09.0445 8252 EventSystem - ok

08:35:09.0508 8252 [ E67E289FA8AA393223AD7F9AFB738FD6 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe

08:35:09.0523 8252 EvtEng - ok

08:35:09.0539 8252 [ 7A4D6FEB8C52B3FE855E4DCDF9107E03 ] exfat C:\Windows\system32\drivers\exfat.sys

08:35:09.0539 8252 exfat - ok

08:35:09.0570 8252 [ 60996602A7111FD2D086E803F33E4282 ] fastfat C:\Windows\system32\drivers\fastfat.sys

08:35:09.0570 8252 fastfat - ok

08:35:09.0633 8252 [ F0E7F8382ED5E138B0DFA4CB5058BCFE ] Fax C:\Windows\system32\fxssvc.exe

08:35:09.0633 8252 Fax - ok

08:35:09.0664 8252 [ 73B2D11DF0B6E03A0CB0323218ACB3E4 ] fdc C:\Windows\System32\drivers\fdc.sys

08:35:09.0664 8252 fdc - ok

08:35:09.0679 8252 [ 0828E3E7BD77C89149EAD3232BFD38DB ] fdPHost C:\Windows\system32\fdPHost.dll

08:35:09.0679 8252 fdPHost - ok

08:35:09.0695 8252 [ 872506AAB591E8908DF4461475AF92DF ] FDResPub C:\Windows\system32\fdrespub.dll

08:35:09.0695 8252 FDResPub - ok

08:35:09.0726 8252 [ 0588950D93A426F97C7AAADB1A9B0458 ] fhsvc C:\Windows\system32\fhsvc.dll

08:35:09.0758 8252 fhsvc - ok

08:35:09.0789 8252 [ 88A9EBACD1058ABB237A6B4E96E7F397 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys

08:35:09.0789 8252 FileInfo - ok

08:35:09.0789 8252 [ 9E4EE3A0B00FF7D5F42A4AF9744CBA02 ] Filetrace C:\Windows\system32\drivers\filetrace.sys

08:35:09.0789 8252 Filetrace - ok

08:35:09.0820 8252 [ B1D4C168FF7B8579E3745888658FFB1D ] flpydisk C:\Windows\System32\drivers\flpydisk.sys

08:35:09.0820 8252 flpydisk - ok

08:35:09.0836 8252 [ B33EC133AE4E6C1881D2302D93D2467D ] FltMgr C:\Windows\system32\drivers\fltmgr.sys

08:35:09.0836 8252 FltMgr - ok

08:35:09.0883 8252 [ 0BCDC0FF11B984162B0CF0FF6E9E0146 ] FontCache C:\Windows\system32\FntCache.dll

08:35:09.0898 8252 FontCache - ok

08:35:09.0992 8252 [ 0B56259F5611787222A04A8F254E51D4 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

08:35:09.0992 8252 FontCache3.0.0.0 - ok

08:35:10.0101 8252 [ 5CAD1CAB9AE958339E9B2FFCC74ADC20 ] FPLService C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe

08:35:10.0117 8252 FPLService - ok

08:35:10.0133 8252 [ A5F7873A39E4E9FAAAE59B7E9E36B705 ] FsDepends C:\Windows\system32\drivers\FsDepends.sys

08:35:10.0133 8252 FsDepends - ok

08:35:10.0148 8252 [ A6DD7D491F587F4BC13FB972977DC8E8 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys

08:35:10.0148 8252 Fs_Rec - ok

08:35:10.0179 8252 [ FA228F4BB10DC7ED7E7D131C034E2331 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys

08:35:10.0179 8252 fvevol - ok

08:35:10.0211 8252 [ A969D92973DFA895E7776B4BFE36DBB2 ] FxPPM C:\Windows\System32\drivers\fxppm.sys

08:35:10.0211 8252 FxPPM - ok

08:35:10.0226 8252 [ 52BC441E07A827EBAB70CDC7EAEDB28D ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys

08:35:10.0242 8252 gagp30kx - ok

08:35:10.0289 8252 [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe

08:35:10.0289 8252 GamesAppService - ok

08:35:10.0320 8252 [ 721F8EEF5E9747F32670DEFF7FB92541 ] gencounter C:\Windows\System32\drivers\vmgencounter.sys

08:35:10.0320 8252 gencounter - ok

08:35:10.0351 8252 [ CA18ECFCFFDD638ECE80799A9056B238 ] GPIOClx0101 C:\Windows\system32\Drivers\msgpioclx.sys

08:35:10.0351 8252 GPIOClx0101 - ok

08:35:10.0398 8252 [ 5358678C6370F2ADC5291849F6503262 ] gpsvc C:\Windows\System32\gpsvc.dll

08:35:10.0414 8252 gpsvc - ok

08:35:10.0445 8252 [ C2504AA983B5D411F7D31402E8B57725 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys

08:35:10.0461 8252 HdAudAddService - ok

08:35:10.0492 8252 [ 7D87B5B6C7188D553E11B59DC7F0B111 ] HDAudBus C:\Windows\System32\drivers\HDAudBus.sys

08:35:10.0492 8252 HDAudBus - ok

08:35:10.0508 8252 [ 3F76BBA53D65E85A7F53E7A71082082C ] HidBatt C:\Windows\System32\drivers\HidBatt.sys

08:35:10.0508 8252 HidBatt - ok

08:35:10.0554 8252 [ 085F150D002B7F0153D3C06DDF33A143 ] HidBth C:\Windows\System32\drivers\hidbth.sys

08:35:10.0554 8252 HidBth - ok

08:35:10.0586 8252 [ CC4A07E51D89575CAB6F4EB590D87CD4 ] hidi2c C:\Windows\System32\drivers\hidi2c.sys

08:35:10.0586 8252 hidi2c - ok

08:35:10.0601 8252 [ DC96F7DACB777CDEAEF9958A50BFDA06 ] HidIr C:\Windows\System32\drivers\hidir.sys

08:35:10.0617 8252 HidIr - ok

08:35:10.0648 8252 [ FAC37D7B3D6354A5A5E19A45B50B4008 ] hidserv C:\Windows\system32\hidserv.dll

08:35:10.0664 8252 hidserv - ok

08:35:10.0695 8252 [ 9E11EE0F2E117B2D5A835B2B91752827 ] HidUsb C:\Windows\System32\drivers\hidusb.sys

08:35:10.0711 8252 HidUsb - ok

08:35:10.0726 8252 [ 43F884B61A24377567CD0FEB35236334 ] hkmsvc C:\Windows\system32\kmsvc.dll

08:35:10.0726 8252 hkmsvc - ok

08:35:10.0758 8252 [ 33DFC14DFDCCFA7AA10E392F6A8EC1CF ] HomeGroupListener C:\Windows\system32\ListSvc.dll

08:35:10.0773 8252 HomeGroupListener - ok

08:35:10.0804 8252 [ E0D9F6FE18FA7F53ADD29AF719CE2B7E ] HomeGroupProvider C:\Windows\system32\provsvc.dll

08:35:10.0804 8252 HomeGroupProvider - ok

08:35:10.0867 8252 [ 6515296E8F9D81BB6C4588C4878A9AC1 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe

08:35:11.0008 8252 HP Support Assistant Service - ok

08:35:11.0039 8252 [ EF4BE0BB23BB14879050884E688F5178 ] hpdskflt C:\Windows\system32\DRIVERS\hpdskflt.sys

08:35:11.0039 8252 hpdskflt - ok

08:35:11.0086 8252 [ 9B7EDD3FE7C211C36E921D34D18A3A0A ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe

08:35:11.0086 8252 hpqwmiex - ok

08:35:11.0117 8252 [ 64DB7A8D97CA53DCCF93D0A1E08342CF ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys

08:35:11.0117 8252 HpSAMD - ok

08:35:11.0133 8252 [ 13B51E53073E4555E226871C7FCEF0E8 ] hpsrv C:\Windows\system32\Hpservice.exe

08:35:11.0133 8252 hpsrv - ok

08:35:11.0148 8252 [ F50912B0A861ED396F6062E79C37A4A7 ] HPWMISVC C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe

08:35:11.0164 8252 HPWMISVC - ok

08:35:11.0211 8252 [ F4A91D985EB9D1D2717D538F3424603C ] HTTP C:\Windows\system32\drivers\HTTP.sys

08:35:11.0226 8252 HTTP - ok

08:35:11.0226 8252 [ 2A98301068801700906C06649860FE94 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys

08:35:11.0242 8252 hwpolicy - ok

08:35:11.0258 8252 [ DC76901D82097C9E297F20C287CB9A27 ] hyperkbd C:\Windows\System32\drivers\hyperkbd.sys

08:35:11.0258 8252 hyperkbd - ok

08:35:11.0289 8252 [ 716413AB3CA12DE0A7222D28C1C9352C ] HyperVideo C:\Windows\system32\DRIVERS\HyperVideo.sys

08:35:11.0289 8252 HyperVideo - ok

08:35:11.0289 8252 [ C9E9CBF73AFFBFE3E801EFB516787BA3 ] i8042prt C:\Windows\System32\drivers\i8042prt.sys

08:35:11.0289 8252 i8042prt - ok

08:35:11.0336 8252 [ 050F2539E14F9D5E90A4B61738EC29BD ] iaStorA C:\Windows\system32\drivers\iaStorA.sys

08:35:11.0336 8252 iaStorA - ok

08:35:11.0351 8252 [ 5E394EBD26FD68AA9300332C46BEDD62 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys

08:35:11.0367 8252 iaStorV - ok

08:35:11.0383 8252 [ 43E864824FCEBEE7119E1572B2703EB9 ] iBtFltCoex C:\Windows\system32\DRIVERS\iBtFltCoex.sys

08:35:11.0383 8252 iBtFltCoex - ok

08:35:11.0554 8252 [ 28388795BDF79464E8FDADB127671734 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys

08:35:11.0711 8252 igfx - ok

08:35:11.0726 8252 [ 24847A06B84339FEEDE5CABF3D27D320 ] iirsp C:\Windows\system32\drivers\iirsp.sys

08:35:11.0726 8252 iirsp - ok

08:35:11.0742 8252 [ F2C300C2E56F016B485B88080CD7D2FE ] ikbevent C:\Windows\system32\DRIVERS\ikbevent.sys

08:35:11.0742 8252 ikbevent - ok

08:35:11.0805 8252 [ 531B5A98145DA689741A0AC18F14EA94 ] IKEEXT C:\Windows\System32\ikeext.dll

08:35:11.0820 8252 IKEEXT - ok

08:35:11.0820 8252 [ C1A5061D6E5C328AE030C34B8AAC5C5C ] imsevent C:\Windows\system32\DRIVERS\imsevent.sys

08:35:11.0836 8252 imsevent - ok

08:35:11.0851 8252 [ FD2032D2EAE8D7F3381EBA5FA3E7FEEA ] intaud_WaveExtensible C:\Windows\system32\drivers\intelaud.sys

08:35:11.0851 8252 intaud_WaveExtensible - ok

08:35:11.0898 8252 [ F5495B38BFB9149925F54F65AB40EFBF ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys

08:35:11.0898 8252 IntcDAud - ok

08:35:11.0945 8252 [ C99F8E90DE4B8F0C7FE15BB1CBCD29DC ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe

08:35:11.0961 8252 Intel® Capability Licensing Service Interface - ok

08:35:11.0976 8252 [ 4F37726CF764CA18A8A84F85EF3A7F24 ] intelide C:\Windows\system32\drivers\intelide.sys

08:35:11.0976 8252 intelide - ok

08:35:12.0133 8252 [ 28388795BDF79464E8FDADB127671734 ] intelkmd C:\Windows\system32\DRIVERS\igdpmd64.sys

08:35:12.0289 8252 intelkmd - ok

08:35:12.0305 8252 [ E15CDF68DD73423F15D4AC404793AF0D ] intelppm C:\Windows\System32\drivers\intelppm.sys

08:35:12.0305 8252 intelppm - ok

08:35:12.0320 8252 [ 8FCA66234A0933D796BB780B7953BAB9 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys

08:35:12.0320 8252 IpFilterDriver - ok

08:35:12.0367 8252 [ C217B8D2E58C57A319B16125C3D4B69C ] iphlpsvc C:\Windows\System32\iphlpsvc.dll

08:35:12.0367 8252 iphlpsvc - ok

08:35:12.0383 8252 [ 6E98A046A12AA113F8898AA5D612BD6E ] IPMIDRV C:\Windows\System32\drivers\IPMIDrv.sys

08:35:12.0383 8252 IPMIDRV - ok

08:35:12.0383 8252 [ 3969B9C218DD3FAA9F4ED2FFC3651C02 ] IPNAT C:\Windows\system32\drivers\ipnat.sys

08:35:12.0383 8252 IPNAT - ok

08:35:12.0414 8252 [ 25CD7C4BB2863FFC2B0B311F0AEBF77C ] IRENUM C:\Windows\system32\drivers\irenum.sys

08:35:12.0414 8252 IRENUM - ok

08:35:12.0430 8252 [ D940C5BB9DC92E588533C19ABCC3D2C2 ] isapnp C:\Windows\system32\drivers\isapnp.sys

08:35:12.0430 8252 isapnp - ok

08:35:12.0492 8252 iscFlash - ok

08:35:12.0523 8252 [ 69C8BF0BC2B0EA10F130F4D3104DC2EF ] iScsiPrt C:\Windows\System32\drivers\msiscsi.sys

08:35:12.0523 8252 iScsiPrt - ok

08:35:12.0555 8252 [ 5AB18D8055A4280C0F377A6262F3157E ] ISCT C:\Windows\System32\drivers\ISCTD64.sys

08:35:12.0555 8252 ISCT - ok

08:35:12.0586 8252 [ 4A5810FD46E6CB2C6E689BAB9AAB11D7 ] ISCTAgent C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe

08:35:12.0586 8252 ISCTAgent - ok

08:35:12.0601 8252 [ C59B9CE2855E667809F9E63C20FC44A5 ] iwdbus C:\Windows\System32\drivers\iwdbus.sys

08:35:12.0601 8252 iwdbus - ok

08:35:12.0695 8252 [ 3C4002D339491AF73D663FFC7F6E5ECB ] jhi_service C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe

08:35:12.0695 8252 jhi_service - ok

08:35:12.0726 8252 [ 8FBD94B69D6423E20ABCD59D86368B21 ] kbdclass C:\Windows\System32\drivers\kbdclass.sys

08:35:12.0726 8252 kbdclass - ok

08:35:12.0758 8252 [ E88C932ABDF8185A62C8F2FC7B051FB6 ] kbdhid C:\Windows\System32\drivers\kbdhid.sys

08:35:12.0758 8252 kbdhid - ok

08:35:12.0758 8252 [ FB6C185092E18011EF49989425C2AA87 ] kdnic C:\Windows\system32\DRIVERS\kdnic.sys

08:35:12.0758 8252 kdnic - ok

08:35:12.0773 8252 [ F702AB6181513303AB0FC8D59E52708B ] KeyIso C:\Windows\system32\lsass.exe

08:35:12.0773 8252 KeyIso - ok

08:35:12.0805 8252 [ DFA480F6DED551464F3A5B959F437800 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys

08:35:12.0805 8252 KSecDD - ok

08:35:12.0836 8252 [ 127FB0AAD232BAAD2C9BBACD374F4FC5 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys

08:35:12.0836 8252 KSecPkg - ok

08:35:12.0867 8252 [ 81492FEEBF2F26455B00EE8DBAE8A1B0 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys

08:35:12.0867 8252 ksthunk - ok

08:35:12.0898 8252 [ 5825DBACEDC3812B5CF8D40B997BF210 ] KtmRm C:\Windows\system32\msdtckrm.dll

08:35:12.0898 8252 KtmRm - ok

08:35:12.0930 8252 [ 256EE31588257E8A555DBFAA13F1908E ] LanmanServer C:\Windows\system32\srvsvc.dll

08:35:12.0945 8252 LanmanServer - ok

08:35:12.0976 8252 [ 16650912BE5A94B40E0B3B4C39652B56 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll

08:35:12.0992 8252 LanmanWorkstation - ok

08:35:13.0008 8252 [ CEEFD29FC551F289810B0B9381B321DC ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys

08:35:13.0008 8252 lltdio - ok

08:35:13.0039 8252 [ BCF53485E0A94722CDE3C4A93CD8EB8C ] lltdsvc C:\Windows\System32\lltdsvc.dll

08:35:13.0055 8252 lltdsvc - ok

08:35:13.0070 8252 [ 5A2F7F1CBC2E631A497DAD16164E06D2 ] lmhosts C:\Windows\System32\lmhsvc.dll

08:35:13.0070 8252 lmhosts - ok

08:35:13.0101 8252 [ 4269D44BB47A6DA5D80B11F4C8536458 ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

08:35:13.0101 8252 LMS - ok

08:35:13.0133 8252 [ 022CDD12161B063D7852B1075BF3FFF2 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys

08:35:13.0148 8252 LSI_SAS - ok

08:35:13.0148 8252 [ 07AD59D669B996F29F91817F0ECFA34F ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys

08:35:13.0148 8252 LSI_SAS2 - ok

08:35:13.0164 8252 [ 216FB796AA4E252ACCE93B1BCB80B5EC ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys

08:35:13.0164 8252 LSI_SCSI - ok

08:35:13.0164 8252 [ 5E80530AF37102488EE980B4A92AF99F ] LSI_SSS C:\Windows\system32\drivers\lsi_sss.sys

08:35:13.0164 8252 LSI_SSS - ok

08:35:13.0195 8252 [ A57BA284F5996FFD32DCDBC41A4657DB ] LSM C:\Windows\System32\lsm.dll

08:35:13.0211 8252 LSM - ok

08:35:13.0226 8252 [ 2BDC5D711FA61307CE6190D47C956368 ] luafv C:\Windows\system32\drivers\luafv.sys

08:35:13.0226 8252 luafv - ok

08:35:13.0258 8252 [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys

08:35:13.0273 8252 MBAMProtector - ok

08:35:13.0305 8252 [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe

08:35:13.0305 8252 MBAMScheduler - ok

08:35:13.0336 8252 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

08:35:13.0336 8252 MBAMService - ok

08:35:13.0351 8252 [ 9B0D829C3BE4E7472DB9DD2B79908E3C ] megasas C:\Windows\system32\drivers\megasas.sys

08:35:13.0351 8252 megasas - ok

08:35:13.0383 8252 [ ECC3F54C7AFC318271C4F0B4606D8DB0 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys

08:35:13.0398 8252 MegaSR - ok

08:35:13.0414 8252 [ 772A1DEEDFDBC244183B5C805D1B7D85 ] MEIx64 C:\Windows\System32\drivers\HECIx64.sys

08:35:13.0414 8252 MEIx64 - ok

08:35:13.0461 8252 [ EEE908BE7143FCA48CF0CB87214E2AB8 ] MMCSS C:\Windows\system32\mmcss.dll

08:35:13.0461 8252 MMCSS - ok

08:35:13.0477 8252 [ 780098AD5DA8A4822E2563984C85EF7B ] Modem C:\Windows\system32\drivers\modem.sys

08:35:13.0477 8252 Modem - ok

08:35:13.0508 8252 [ EA8EAD3F5B762F889CC7F3966625B48B ] monitor C:\Windows\System32\drivers\monitor.sys

08:35:13.0508 8252 monitor - ok

08:35:13.0539 8252 [ 618446B98C79776654340CE27C73485E ] mouclass C:\Windows\System32\drivers\mouclass.sys

08:35:13.0539 8252 mouclass - ok

08:35:13.0555 8252 [ C0ADEBED913295803B579ED288936CBB ] mouhid C:\Windows\System32\drivers\mouhid.sys

08:35:13.0570 8252 mouhid - ok

08:35:13.0570 8252 [ 89D263DBF08119CE16273991C120D6DD ] mountmgr C:\Windows\system32\drivers\mountmgr.sys

08:35:13.0570 8252 mountmgr - ok

08:35:13.0602 8252 [ 825BF0E46B4470A463AEB641480C5FCA ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

08:35:13.0617 8252 MozillaMaintenance - ok

08:35:13.0648 8252 [ 0D1609DD82C7440F5D5BF21A9D4D5C0C ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys

08:35:13.0648 8252 mpsdrv - ok

08:35:13.0695 8252 [ 3031573A739DBEE8923851929D0AF423 ] MpsSvc C:\Windows\system32\mpssvc.dll

08:35:13.0695 8252 MpsSvc - ok

08:35:13.0727 8252 [ 3D70147F55F1EC84EB9139ED7FFE48BC ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys

08:35:13.0727 8252 MRxDAV - ok

08:35:13.0789 8252 [ 93179D48066918323628CB016D8C94DC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys

08:35:13.0789 8252 mrxsmb - ok

08:35:13.0820 8252 [ 06D5F2FA3C61E8EA91648EA8E9F99FD3 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys

08:35:13.0820 8252 mrxsmb10 - ok

08:35:13.0852 8252 [ 5C7DD2E5759FFCCD2C7341C1B90F2B26 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys

08:35:13.0852 8252 mrxsmb20 - ok

08:35:13.0883 8252 [ 98487487D6B3797CA927E9D7B030AE13 ] MsBridge C:\Windows\system32\DRIVERS\bridge.sys

08:35:13.0883 8252 MsBridge - ok

08:35:13.0899 8252 [ 4A07458EB4F17573BD39F22029A991C1 ] MSDTC C:\Windows\System32\msdtc.exe

08:35:13.0899 8252 MSDTC - ok

08:35:13.0930 8252 [ 3886F1F2A4D2900ABAA7E4486BEEE6A2 ] Msfs C:\Windows\system32\drivers\Msfs.sys

08:35:13.0930 8252 Msfs - ok

08:35:13.0961 8252 [ C32A7A39B960A42BA9D4FBE47213CA03 ] msgpiowin32 C:\Windows\System32\drivers\msgpiowin32.sys

08:35:13.0961 8252 msgpiowin32 - ok

08:35:13.0977 8252 [ D3857A767B91A061B408CCAB02DA4F40 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys

08:35:13.0977 8252 mshidkmdf - ok

08:35:13.0977 8252 [ 839B48910FB1E887635C48F3EC11A05E ] mshidumdf C:\Windows\System32\drivers\mshidumdf.sys

08:35:13.0992 8252 mshidumdf - ok

08:35:13.0992 8252 [ 55C0DB741E3AB7463242B185B1C2997C ] msisadrv C:\Windows\system32\drivers\msisadrv.sys

08:35:13.0992 8252 msisadrv - ok

08:35:14.0024 8252 [ 216C6B035A4BA5560E1255BD8E5BB89F ] MSiSCSI C:\Windows\system32\iscsiexe.dll

08:35:14.0024 8252 MSiSCSI - ok

08:35:14.0039 8252 msiserver - ok

08:35:14.0055 8252 [ 509809566E49F4411055864EA8D437CD ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys

08:35:14.0055 8252 MSKSSRV - ok

08:35:14.0086 8252 [ 63145201D6458E4958E572E7D6FC2604 ] MsLldp C:\Windows\system32\DRIVERS\mslldp.sys

08:35:14.0086 8252 MsLldp - ok

08:35:14.0102 8252 [ 99D526E803DB6D7FF290FD98B6204641 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys

08:35:14.0102 8252 MSPCLOCK - ok

08:35:14.0102 8252 [ 06FA77C3E2A491ADCD704C5E73006269 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys

08:35:14.0102 8252 MSPQM - ok

08:35:14.0133 8252 [ E134EC4DE11CF78CB01432D180710D84 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys

08:35:14.0148 8252 MsRPC - ok

08:35:14.0148 8252 [ B5AECF12F09DEE97C9FCAA5BA016CE1E ] mssmbios C:\Windows\System32\drivers\mssmbios.sys

08:35:14.0148 8252 mssmbios - ok

08:35:14.0180 8252 [ 72D66A05E0F99F2528F6C6204FD22AA1 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys

08:35:14.0180 8252 MSTEE - ok

08:35:14.0195 8252 [ 8AAAE399FC255FA105D4158CBA289001 ] MTConfig C:\Windows\System32\drivers\MTConfig.sys

08:35:14.0195 8252 MTConfig - ok

08:35:14.0211 8252 [ 3BCB702F3E6CC622DCAFCAA45D7CDE0A ] Mup C:\Windows\system32\Drivers\mup.sys

08:35:14.0211 8252 Mup - ok

08:35:14.0227 8252 [ 3A1E095277BBD406CEA8EA6B76950664 ] mvumis C:\Windows\system32\drivers\mvumis.sys

08:35:14.0227 8252 mvumis - ok

08:35:14.0273 8252 [ 431F065E2A99FC3C670BD20694117C8B ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe

08:35:14.0273 8252 MyWiFiDHCPDNS - ok

08:35:14.0305 8252 [ 4B18840511D720BA118D3017E8165875 ] napagent C:\Windows\system32\qagentRT.dll

08:35:14.0305 8252 napagent - ok

08:35:14.0336 8252 [ 43D7388A90A4C6EA346A4D6FF0377479 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys

08:35:14.0352 8252 NativeWifiP - ok

08:35:14.0367 8252 [ 6A0C3996DA7DAE6D6939676D786EEEC4 ] NcaSvc C:\Windows\System32\ncasvc.dll

08:35:14.0367 8252 NcaSvc - ok

08:35:14.0383 8252 [ C982FE4CC91DECE2259F494FCEB4030F ] NcdAutoSetup C:\Windows\System32\NcdAutoSetup.dll

08:35:14.0383 8252 NcdAutoSetup - ok

08:35:14.0430 8252 [ 03CFE4108D1DE16D6C59455B5C73319C ] NDIS C:\Windows\system32\drivers\ndis.sys

08:35:14.0445 8252 NDIS - ok

08:35:14.0477 8252 [ 39C8A1D9D46F5E83A016BCAB72455284 ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys

08:35:14.0477 8252 NdisCap - ok

08:35:14.0477 8252 [ 762941932B7E4C588E48A577BA9D6440 ] NdisImPlatform C:\Windows\system32\DRIVERS\NdisImPlatform.sys

08:35:14.0477 8252 NdisImPlatform - ok

08:35:14.0508 8252 [ 7A6F8A6D0E01432EBA294EF29CDD0FA7 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys

08:35:14.0524 8252 NdisTapi - ok

08:35:14.0555 8252 [ 79AB68BB3FFF974AD4F41FA559F4EC67 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys

08:35:14.0555 8252 Ndisuio - ok

08:35:14.0555 8252 [ 62C7DBF4F9301F76CF87D4B9D8F57BF8 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys

08:35:14.0570 8252 NdisWan - ok

08:35:14.0570 8252 [ 62C7DBF4F9301F76CF87D4B9D8F57BF8 ] NDISWANLEGACY C:\Windows\system32\DRIVERS\ndiswan.sys

08:35:14.0570 8252 NDISWANLEGACY - ok

08:35:14.0602 8252 [ 3730942D7DB2F8BB5F84542B7FF6F650 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys

08:35:14.0602 8252 NDProxy - ok

08:35:14.0617 8252 [ D3F60A4345FCA9C1BE68AD7D0D6DE770 ] Ndu C:\Windows\system32\drivers\Ndu.sys

08:35:14.0617 8252 Ndu - ok

08:35:14.0633 8252 [ 7C203A76394F9AE68F69EEE5F9612C4A ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys

08:35:14.0633 8252 NetBIOS - ok

08:35:14.0633 8252 [ 7CEC25C682D319D484630B3952C31A11 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys

08:35:14.0633 8252 NetBT - ok

08:35:14.0649 8252 [ F702AB6181513303AB0FC8D59E52708B ] Netlogon C:\Windows\system32\lsass.exe

08:35:14.0649 8252 Netlogon - ok

08:35:14.0680 8252 [ 89519D29CBEC2121CA65CC29C4D345E0 ] Netman C:\Windows\System32\netman.dll

08:35:14.0680 8252 Netman - ok

08:35:14.0727 8252 [ 5FF52E13C72838D87DAF228EC9E92C89 ] netprofm C:\Windows\System32\netprofmsvc.dll

08:35:14.0727 8252 netprofm - ok

08:35:14.0789 8252 [ 019B594CC5D5A3FB5EA788F972F56FFF ] netr28x C:\Windows\system32\DRIVERS\netr28x.sys

08:35:14.0820 8252 netr28x - ok

08:35:14.0867 8252 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

08:35:14.0867 8252 NetTcpPortSharing - ok

08:35:14.0945 8252 [ A92DECBD3D9624F298A49A2B25EDE3B0 ] NETwNe64 C:\Windows\system32\DRIVERS\NETwew00.sys

08:35:15.0024 8252 NETwNe64 - ok

08:35:15.0039 8252 [ 12DD2800E4EEA37DC9AE256AD62423B4 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys

08:35:15.0039 8252 nfrd960 - ok

08:35:15.0070 8252 [ 80ABCD4C2DE9FD832477303AE0CA3BE5 ] NlaSvc C:\Windows\System32\nlasvc.dll

08:35:15.0086 8252 NlaSvc - ok

08:35:15.0086 8252 [ 17E19A742FB30C002F8B43575451DBE1 ] Npfs C:\Windows\system32\drivers\Npfs.sys

08:35:15.0086 8252 Npfs - ok

08:35:15.0133 8252 [ 8ED299C30792544264E558BEA79F0947 ] npsvctrig C:\Windows\System32\drivers\npsvctrig.sys

08:35:15.0133 8252 npsvctrig - ok

08:35:15.0149 8252 [ 832B5FDF0B5577713FD7F2465FCD0ACE ] nsi C:\Windows\system32\nsisvc.dll

08:35:15.0149 8252 nsi - ok

08:35:15.0164 8252 [ 689B3B1E95C70ABF7AFF29F9406EF1E0 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys

08:35:15.0164 8252 nsiproxy - ok

08:35:15.0227 8252 [ 76929F4A69E425911A63B407E26C2589 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys

08:35:15.0227 8252 Ntfs - ok

08:35:15.0258 8252 [ 4163ADE07DB51843AE31F65B94F5398D ] Null C:\Windows\system32\drivers\Null.sys

08:35:15.0258 8252 Null - ok

08:35:15.0274 8252 [ D6D34118263412D3AAA8348A9572B7F2 ] nvraid C:\Windows\system32\drivers\nvraid.sys

08:35:15.0274 8252 nvraid - ok

08:35:15.0289 8252 [ 27AFC428D1D32ABD04A86763A4EDDEA9 ] nvstor C:\Windows\system32\drivers\nvstor.sys

08:35:15.0289 8252 nvstor - ok

08:35:15.0289 8252 [ 051CFB5107BAAE510419BDC41F8C4036 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys

08:35:15.0289 8252 nv_agp - ok

08:35:15.0320 8252 [ AB76700D764A342D7475FB8F47CAB18C ] p2pimsvc C:\Windows\system32\pnrpsvc.dll

08:35:15.0336 8252 p2pimsvc - ok

08:35:15.0352 8252 [ 4319FD931DCD796435ECB5DB4A04FBA5 ] p2psvc C:\Windows\system32\p2psvc.dll

08:35:15.0352 8252 p2psvc - ok

08:35:15.0383 8252 [ 4563DAF8C6A740AD7F501E219BD10766 ] Parport C:\Windows\System32\drivers\parport.sys

08:35:15.0383 8252 Parport - ok

08:35:15.0399 8252 [ D6ACCF9F2EEEEA711C14EFD976E573F3 ] partmgr C:\Windows\system32\drivers\partmgr.sys

08:35:15.0399 8252 partmgr - ok

08:35:15.0445 8252 [ 4811D9EC53649105A5A8BEA661B0F936 ] PcaSvc C:\Windows\System32\pcasvc.dll

08:35:15.0445 8252 PcaSvc - ok

08:35:15.0461 8252 [ 4A003E8F718C1E6A2050CA98CD53E3E2 ] pci C:\Windows\system32\drivers\pci.sys

08:35:15.0461 8252 pci - ok

08:35:15.0477 8252 [ F9908D274D458220F91E89B54D78D837 ] pciide C:\Windows\system32\drivers\pciide.sys

08:35:15.0477 8252 pciide - ok

08:35:15.0508 8252 [ 84D19CB6102627932DCB5DFDF89FE269 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys

08:35:15.0508 8252 pcmcia - ok

08:35:15.0508 8252 [ CEBBAD5391C2644560C55628A40BFD27 ] pcw C:\Windows\system32\drivers\pcw.sys

08:35:15.0508 8252 pcw - ok

08:35:15.0539 8252 [ 0698DEDEAD6A00AD0D468C687D830FBF ] pdc C:\Windows\system32\drivers\pdc.sys

08:35:15.0539 8252 pdc - ok

08:35:15.0586 8252 [ 61FE70659CD43E07F94DA4DC31DEC493 ] PEAUTH C:\Windows\system32\drivers\peauth.sys

08:35:15.0586 8252 PEAUTH - ok

08:35:15.0664 8252 [ EB88FA19F0EA05DD04BE9C5FFEEFFE1A ] PerfHost C:\Windows\SysWow64\perfhost.exe

08:35:15.0664 8252 PerfHost - ok

08:35:15.0789 8252 [ 6E84BFF58F7643499277F29DFA2F8C8D ] pla C:\Windows\system32\pla.dll

08:35:15.0805 8252 pla - ok

08:35:15.0836 8252 [ 799BE46D45D486704CE0F37CA5385262 ] PlugPlay C:\Windows\system32\umpnpmgr.dll

08:35:15.0836 8252 PlugPlay - ok

08:35:15.0852 8252 [ 8E2414E818C26C4A9C70CB2B8567F04F ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll

08:35:15.0852 8252 PNRPAutoReg - ok

08:35:15.0867 8252 [ AB76700D764A342D7475FB8F47CAB18C ] PNRPsvc C:\Windows\system32\pnrpsvc.dll

08:35:15.0867 8252 PNRPsvc - ok

08:35:15.0899 8252 [ 0108C8E5176D590F242701EF5A62CC26 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll

08:35:15.0899 8252 PolicyAgent - ok

08:35:15.0930 8252 [ F1E067F56373F11EA4B785CAE823740A ] Power C:\Windows\system32\umpo.dll

08:35:15.0945 8252 Power - ok

08:35:15.0977 8252 [ 362D47E5B4D67270DE4B8606036F4ADD ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys

08:35:15.0977 8252 PptpMiniport - ok

08:35:16.0086 8252 [ 9D59831262CAD44E709D695FC9D5E7AB ] PrintNotify C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll

08:35:16.0149 8252 PrintNotify - ok

08:35:16.0195 8252 [ DD979EB6A7212F60E4AFBE96EDC7AE6D ] Processor C:\Windows\System32\drivers\processr.sys

08:35:16.0195 8252 Processor - ok

08:35:16.0227 8252 [ 429E8502AD2227CF88F8840FC5BD590D ] ProfSvc C:\Windows\system32\profsvc.dll

08:35:16.0227 8252 ProfSvc - ok

08:35:16.0258 8252 [ EB8034147D4820CD31BFCB11A2A652DF ] Psched C:\Windows\system32\DRIVERS\pacer.sys

08:35:16.0258 8252 Psched - ok

08:35:16.0274 8252 [ 0AFBF333B6F87A2F598EAB379AF100B8 ] QWAVE C:\Windows\system32\qwave.dll

08:35:16.0289 8252 QWAVE - ok

08:35:16.0305 8252 [ 13D47BB0CCA2FC51BD15F8E85C6A078E ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys

08:35:16.0320 8252 QWAVEdrv - ok

08:35:16.0320 8252 [ 873C60F8178100557740A832FCE10B5F ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys

08:35:16.0336 8252 RasAcd - ok

08:35:16.0352 8252 [ 69B93F623B130976243ECA3D84CC99CA ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys

08:35:16.0352 8252 RasAgileVpn - ok

08:35:16.0367 8252 [ 005F6E54C4A2DA4EBF68FB0392CE8BB0 ] RasAuto C:\Windows\System32\rasauto.dll

08:35:16.0383 8252 RasAuto - ok

08:35:16.0399 8252 [ A14D625C5AEE5FFE0F47D1A1D419FAAE ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys

08:35:16.0399 8252 Rasl2tp - ok

08:35:16.0414 8252 [ C923C785A2DE0B396AD6D13ACAFF2DE9 ] RasMan C:\Windows\System32\rasmans.dll

08:35:16.0414 8252 RasMan - ok

08:35:16.0414 8252 [ 00695B9C2DB6111064499C529E90C042 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys

08:35:16.0414 8252 RasPppoe - ok

08:35:16.0430 8252 [ A7F24D8CD1956B0A1FDCB86CC5114DE4 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys

08:35:16.0430 8252 RasSstp - ok

08:35:16.0445 8252 [ B72C33DBD5326B3864CF2091AF8B906B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys

08:35:16.0445 8252 rdbss - ok

08:35:16.0445 8252 [ CA7DF5EC95D8DE0DD24BE7FF97369F68 ] rdpbus C:\Windows\System32\drivers\rdpbus.sys

08:35:16.0477 8252 rdpbus - ok

08:35:16.0477 8252 [ B2A3AD74FF2E2FFA73AF2567108231B3 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys

08:35:16.0477 8252 RDPDR - ok

08:35:16.0524 8252 [ 57F4787E4602A3FCA719C0A33137C6DA ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys

08:35:16.0524 8252 RdpVideoMiniport - ok

08:35:16.0539 8252 [ B3CB0721E81E30419CE7D837EF4EA151 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys

08:35:16.0539 8252 RDPWD - ok

08:35:16.0555 8252 [ 62C1F8A0685FE07E998AA296C4F697C4 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys

08:35:16.0555 8252 rdyboost - ok

08:35:16.0649 8252 [ D4F8266D63800FF9ACFAC838005A974C ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe

08:35:16.0649 8252 RegSrvc - ok

08:35:16.0680 8252 [ 3663CCF243EE0C04E9F6F91ED1737273 ] RemoteAccess C:\Windows\System32\mprdim.dll

08:35:16.0680 8252 RemoteAccess - ok

08:35:16.0711 8252 [ E80DD61E52EDFFF9DA1ED7260A68855B ] RemoteRegistry C:\Windows\system32\regsvc.dll

08:35:16.0711 8252 RemoteRegistry - ok

08:35:16.0742 8252 [ CCBFCABDFE2BC22F0645CEAADDB36004 ] RFCOMM C:\Windows\System32\drivers\rfcomm.sys

08:35:16.0742 8252 RFCOMM - ok

08:35:16.0758 8252 [ 73F2E030B5C24E4E41401B5F0D59E6FD ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll

08:35:16.0758 8252 RpcEptMapper - ok

08:35:16.0789 8252 [ 10B21284B3D964AB3DC45490E57D422E ] RpcLocator C:\Windows\system32\locator.exe

08:35:16.0789 8252 RpcLocator - ok

08:35:16.0836 8252 [ 1EC6E533C954BDDF2A37E7851A7E58FD ] RpcSs C:\Windows\system32\rpcss.dll

08:35:16.0852 8252 RpcSs - ok

08:35:16.0883 8252 [ DCEBA2327CE4F5B735B80BEC9E9CEE72 ] RSBASTOR C:\Windows\system32\DRIVERS\RtsBaStor.sys

08:35:16.0883 8252 RSBASTOR - ok

08:35:16.0899 8252 [ E04E770DD198B9399640717145E79EBF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys

08:35:16.0899 8252 rspndr - ok

08:35:16.0930 8252 [ 34DA0D14F5C3F1883A331AFB975AB434 ] RTL8168 C:\Windows\system32\DRIVERS\Rt630x64.sys

08:35:16.0946 8252 RTL8168 - ok

08:35:16.0977 8252 [ 752EC7DCD2F96871A3857EEE6AFE965A ] s3cap C:\Windows\System32\drivers\vms3cap.sys

08:35:16.0977 8252 s3cap - ok

08:35:17.0008 8252 [ F702AB6181513303AB0FC8D59E52708B ] SamSs C:\Windows\system32\lsass.exe

08:35:17.0008 8252 SamSs - ok

08:35:17.0039 8252 [ 9C7B28CE0D136DB226E24DB3BC817F92 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys

08:35:17.0039 8252 sbp2port - ok

08:35:17.0086 8252 [ 14316954FCE79C9DE5A0AFF9D42C83AA ] SCardSvr C:\Windows\System32\SCardSvr.dll

08:35:17.0086 8252 SCardSvr - ok

08:35:17.0102 8252 [ 5D7733A12756B267FCA021672B26BC9E ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys

08:35:17.0102 8252 scfilter - ok

08:35:17.0164 8252 [ ED40ED9A65F3E79A8C43DD50C5FDADBF ] Schedule C:\Windows\system32\schedsvc.dll

08:35:17.0180 8252 Schedule - ok

08:35:17.0211 8252 [ BAF8F0F55BC300E5F882E521F054E345 ] SCPolicySvc C:\Windows\System32\certprop.dll

08:35:17.0211 8252 SCPolicySvc - ok

08:35:17.0242 8252 [ 047315E75392CEA447ACC86257824C16 ] sdbus C:\Windows\System32\drivers\sdbus.sys

08:35:17.0242 8252 sdbus - ok

08:35:17.0289 8252 [ 92968277ED491E4B3DDA361E3952361E ] SDRSVC C:\Windows\System32\SDRSVC.dll

08:35:17.0289 8252 SDRSVC - ok

08:35:17.0321 8252 [ BB107AA9980B0DA4E19A3A90C3BD4460 ] sdstor C:\Windows\System32\drivers\sdstor.sys

08:35:17.0321 8252 sdstor - ok

08:35:17.0352 8252 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys

08:35:17.0352 8252 secdrv - ok

08:35:17.0367 8252 [ CD282626738B6BC92B6E7CD0AAE95B63 ] seclogon C:\Windows\system32\seclogon.dll

08:35:17.0367 8252 seclogon - ok

08:35:17.0383 8252 [ 9C51620998F0763039DFA6BF68E475ED ] SENS C:\Windows\System32\sens.dll

08:35:17.0383 8252 SENS - ok

08:35:17.0399 8252 [ 0D50B4B860DAB65241628D04CD33ACAE ] SensrSvc C:\Windows\system32\sensrsvc.dll

08:35:17.0399 8252 SensrSvc - ok

08:35:17.0414 8252 [ 87C46B239A7EEF30FDFDD5E9BD46130C ] SerCx C:\Windows\system32\drivers\SerCx.sys

08:35:17.0414 8252 SerCx - ok

08:35:17.0430 8252 [ 7A1F9347C85FD55E39B8A76B3A25C5AD ] Serenum C:\Windows\System32\drivers\serenum.sys

08:35:17.0430 8252 Serenum - ok

08:35:17.0461 8252 [ F640A0A218BBF857F1D04A15D7D939F6 ] Serial C:\Windows\System32\drivers\serial.sys

08:35:17.0461 8252 Serial - ok

08:35:17.0477 8252 [ F1A5F56B2620B862CC28FF96A0A6DAAB ] sermouse C:\Windows\System32\drivers\sermouse.sys

08:35:17.0477 8252 sermouse - ok

08:35:17.0524 8252 [ CB60A60340788C8D6DE2A269D28086AB ] SessionEnv C:\Windows\system32\sessenv.dll

08:35:17.0539 8252 SessionEnv - ok

08:35:17.0555 8252 [ 7EE65419B29302C795714FF8073969A1 ] sfloppy C:\Windows\System32\drivers\sfloppy.sys

08:35:17.0555 8252 sfloppy - ok

08:35:17.0602 8252 [ 090AE16F79C8EAD04E6031F863DA85F3 ] SharedAccess C:\Windows\System32\ipnathlp.dll

08:35:17.0602 8252 SharedAccess - ok

08:35:17.0649 8252 [ A77F3ABE13FCC698511E5DEC7ACEBD5F ] ShellHWDetection C:\Windows\System32\shsvcs.dll

08:35:17.0664 8252 ShellHWDetection - ok

08:35:17.0680 8252 [ 2560721D6F16D5B611C36A3A9D28C1B2 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys

08:35:17.0680 8252 SiSRaid2 - ok

08:35:17.0696 8252 [ 3AA8FDE1DBF65BB8B88B053529554A0D ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys

08:35:17.0696 8252 SiSRaid4 - ok

08:35:17.0758 8252 [ CA355B308AA537C6B9D67CD3A5485AF9 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe

08:35:17.0758 8252 SkypeUpdate - ok

08:35:17.0789 8252 [ AF5CC3F9B88F140D78FC967ABF0F4EC7 ] SmbDrv C:\Windows\System32\drivers\Smb_driver_AMDASF.sys

08:35:17.0789 8252 SmbDrv - ok

08:35:17.0821 8252 [ 19555D03CB179BED8B8AAA239A36BDA4 ] SmbDrvI C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys

08:35:17.0821 8252 SmbDrvI - ok

08:35:17.0852 8252 [ E660156A4588A84305CB772FD2C0DB21 ] SNMPTRAP C:\Windows\System32\snmptrap.exe

08:35:17.0852 8252 SNMPTRAP - ok

08:35:17.0899 8252 [ 872E937681910E2456A054331C7D5A18 ] spaceport C:\Windows\system32\drivers\spaceport.sys

08:35:17.0899 8252 spaceport - ok

08:35:17.0930 8252 [ 3D8679C8DF52EB26EB7583A4E0A29202 ] SpbCx C:\Windows\system32\drivers\SpbCx.sys

08:35:17.0930 8252 SpbCx - ok

08:35:17.0977 8252 [ 3F215BF2D4D8D6756298B25B579772C2 ] Spooler C:\Windows\System32\spoolsv.exe

08:35:17.0977 8252 Spooler - ok

08:35:18.0055 8252 [ EC84D961501054F87A6878EC5D53388F ] sppsvc C:\Windows\system32\sppsvc.exe

08:35:18.0149 8252 sppsvc - ok

08:35:18.0164 8252 [ 0F1FCD575A03ABDE13FCA9D0ADE4DDA6 ] srv C:\Windows\system32\DRIVERS\srv.sys

08:35:18.0164 8252 srv - ok

08:35:18.0196 8252 [ 56218A571ECF8D55E0CDFF8DF2546CF1 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys

08:35:18.0196 8252 srv2 - ok

08:35:18.0211 8252 [ 14FC338B80CFF7E04215133B568D15C4 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys

08:35:18.0227 8252 srvnet - ok

08:35:18.0258 8252 [ 7A20882D76D4A78240A5AC9F2C2EBA21 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll

08:35:18.0258 8252 SSDPSRV - ok

08:35:18.0274 8252 [ D233B16999A8E626F6004BD7814C57EC ] SstpSvc C:\Windows\system32\sstpsvc.dll

08:35:18.0274 8252 SstpSvc - ok

08:35:18.0430 8252 [ 897C1273B7D74E19DDA7EBF495BF0133 ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe

08:35:18.0446 8252 STacSV - ok

08:35:18.0492 8252 [ 4E85355B94CFCB67C135F6521A4895A7 ] stexstor C:\Windows\system32\drivers\stexstor.sys

08:35:18.0492 8252 stexstor - ok

08:35:18.0524 8252 [ A883937A943DCE237B19E4A5558FCBE6 ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys

08:35:18.0555 8252 STHDA - ok

08:35:18.0586 8252 [ BAC8A721736AECC55A4F71523AEAB65F ] stisvc C:\Windows\System32\wiaservc.dll

08:35:18.0602 8252 stisvc - ok

08:35:18.0633 8252 [ B240874B2CA0CD02E8CD11E140B14C57 ] storahci C:\Windows\system32\drivers\storahci.sys

08:35:18.0633 8252 storahci - ok

08:35:18.0664 8252 [ F74DBC95A57B1EE866D3732EB5F79BE2 ] storflt C:\Windows\system32\DRIVERS\vmstorfl.sys

08:35:18.0664 8252 storflt - ok

08:35:18.0680 8252 [ 5337E138B49ED1F44CCBA4073BC35C20 ] StorSvc C:\Windows\system32\storsvc.dll

08:35:18.0680 8252 StorSvc - ok

08:35:18.0696 8252 [ 543CD3CC0E05B8D8815E0D4F040B6F59 ] storvsc C:\Windows\system32\drivers\storvsc.sys

08:35:18.0696 8252 storvsc - ok

08:35:18.0711 8252 [ 8BC1C1ED6EF9C985A3FAA6A72F41679A ] svsvc C:\Windows\system32\svsvc.dll

08:35:18.0711 8252 svsvc - ok

08:35:18.0727 8252 [ 4AFD66AAE74FFB5986BC240744DC5FC9 ] swenum C:\Windows\System32\drivers\swenum.sys

08:35:18.0727 8252 swenum - ok

08:35:18.0774 8252 [ 502F9488540051F3E6C39889ECFA76BB ] swprv C:\Windows\System32\swprv.dll

08:35:18.0789 8252 swprv - ok

08:35:18.0821 8252 [ 3F45C3FE208CA5E68832B65C597A35A6 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys

08:35:18.0821 8252 SynTP - ok

08:35:18.0867 8252 [ DC21E1F06343773D7E24362DCEF7944B ] SysMain C:\Windows\system32\sysmain.dll

08:35:18.0883 8252 SysMain - ok

08:35:18.0930 8252 [ 6FB88606C4A71E1BFAF97D63A676C673 ] SystemEventsBroker C:\Windows\System32\SystemEventsBrokerServer.dll

08:35:18.0930 8252 SystemEventsBroker - ok

08:35:18.0961 8252 [ A6C06C45C44AD06C70AF8899AEC15BDC ] TabletInputService C:\Windows\System32\TabSvc.dll

08:35:18.0961 8252 TabletInputService - ok

08:35:18.0961 8252 [ 88B7721AB551C4325036B25A34A2BF7B ] TapiSrv C:\Windows\System32\tapisrv.dll

08:35:18.0961 8252 TapiSrv - ok

08:35:19.0008 8252 [ B6D52E2C38B49A156E58FF5B9C6CA8BE ] Tcpip C:\Windows\system32\drivers\tcpip.sys

08:35:19.0024 8252 Tcpip - ok

08:35:19.0055 8252 [ B6D52E2C38B49A156E58FF5B9C6CA8BE ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys

08:35:19.0071 8252 TCPIP6 - ok

08:35:19.0102 8252 [ 8F2A13A5DF99D72FDDE87F502A66F989 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys

08:35:19.0102 8252 tcpipreg - ok

08:35:19.0102 8252 [ 73DC722CE5DF26D7638CE2446F2655C7 ] tdx C:\Windows\system32\DRIVERS\tdx.sys

08:35:19.0102 8252 tdx - ok

08:35:19.0118 8252 [ F7C8AB5D8AFFAA318D6A21093D139BF4 ] terminpt C:\Windows\System32\drivers\terminpt.sys

08:35:19.0118 8252 terminpt - ok

08:35:19.0149 8252 [ 541EE228D0DEF392F7B2DFD885DD021B ] TermService C:\Windows\System32\termsrv.dll

08:35:19.0164 8252 TermService - ok

08:35:19.0180 8252 [ 519A6F672FFF56B7D8EE8C730CEC8ECD ] Themes C:\Windows\system32\themeservice.dll

08:35:19.0180 8252 Themes - ok

08:35:19.0211 8252 [ EEE908BE7143FCA48CF0CB87214E2AB8 ] THREADORDER C:\Windows\system32\mmcss.dll

08:35:19.0211 8252 THREADORDER - ok

08:35:19.0258 8252 [ 4515B9E4140F04FB3907692DF89FCA87 ] TimeBroker C:\Windows\System32\TimeBrokerServer.dll

08:35:19.0274 8252 TimeBroker - ok

08:35:19.0305 8252 [ 6F0BFF80EE2A5BC841286A51F893CBAD ] TPM C:\Windows\system32\drivers\tpm.sys

08:35:19.0305 8252 TPM - ok

08:35:19.0336 8252 [ 8C8CF3041B27E7657ADD0EE17F6DBFCA ] TrkWks C:\Windows\System32\trkwks.dll

08:35:19.0336 8252 TrkWks - ok

08:35:19.0383 8252 [ 00629A30B9A95D3CC07E09C12F293BD1 ] TrueService C:\Program Files\Common Files\AuthenTec\TrueService.exe

08:35:19.0399 8252 TrueService - ok

08:35:19.0430 8252 [ 8D516AEF3C1DF980664CF17BB1FF6093 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe

08:35:19.0430 8252 TrustedInstaller - ok

08:35:19.0461 8252 [ 4E7C5FB10A50435523DE0CAA37DE2BD3 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys

08:35:19.0461 8252 TsUsbFlt - ok

08:35:19.0477 8252 [ 16D684A820872EE54F6370703AC0B513 ] TsUsbGD C:\Windows\System32\drivers\TsUsbGD.sys

08:35:19.0477 8252 TsUsbGD - ok

08:35:19.0493 8252 [ 78C9EE193AC2B4CBDBC48B620314D740 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys

08:35:19.0508 8252 tunnel - ok

08:35:19.0524 8252 [ 6D4F67CA56ACA2085DFA2CD89EAFBC1A ] uagp35 C:\Windows\system32\drivers\uagp35.sys

08:35:19.0524 8252 uagp35 - ok

08:35:19.0539 8252 [ 6FD6D03B7752C78712E5CFF29A305026 ] UASPStor C:\Windows\System32\drivers\uaspstor.sys

08:35:19.0539 8252 UASPStor - ok

08:35:19.0571 8252 [ 1ED222DFE6C13DA50FE081ABF90CAFE1 ] UCX01000 C:\Windows\System32\drivers\ucx01000.sys

08:35:19.0571 8252 UCX01000 - ok

08:35:19.0602 8252 [ DC5A461591C71AF7F19DC048A81E3F88 ] udfs C:\Windows\system32\DRIVERS\udfs.sys

08:35:19.0602 8252 udfs - ok

08:35:19.0633 8252 [ FB3475FEA1CCB0DAEA1EBE44D0E3BB7D ] UI0Detect C:\Windows\system32\UI0Detect.exe

08:35:19.0649 8252 UI0Detect - ok

08:35:19.0664 8252 [ 07FEBCDF24FABA0D47B635D85A0FFB7A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys

08:35:19.0664 8252 uliagpkx - ok

08:35:19.0680 8252 [ 02CEB3FE6152668A7BA420B93B664860 ] umbus C:\Windows\System32\drivers\umbus.sys

08:35:19.0680 8252 umbus - ok

08:35:19.0696 8252 [ 991EE6B5FC41EAEF99C8AF5B92F2CA09 ] UmPass C:\Windows\System32\drivers\umpass.sys

08:35:19.0696 8252 UmPass - ok

08:35:19.0727 8252 [ 43FEFB040A0CC30F795FBF544169594D ] UmRdpService C:\Windows\System32\umrdp.dll

08:35:19.0727 8252 UmRdpService - ok

08:35:19.0805 8252 [ DBE2E6388379D5CC78099650541E9566 ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

08:35:19.0805 8252 UNS - ok

08:35:19.0852 8252 [ 14D22C411854AA2560AFC94CD2D5E61F ] upnphost C:\Windows\System32\upnphost.dll

08:35:19.0868 8252 upnphost - ok

08:35:19.0883 8252 [ 30F02F642C2D141CAABD412B48A29D76 ] usb3Hub C:\Windows\System32\drivers\usb3Hub.sys

08:35:19.0899 8252 usb3Hub - ok

08:35:19.0914 8252 [ 2AF9F0E16D75B8F783A1ACE74EF51C9B ] usbccgp C:\Windows\System32\drivers\usbccgp.sys

08:35:19.0914 8252 usbccgp - ok

08:35:19.0930 8252 [ B395B62B62F28106218FA6FB17F4C797 ] usbcir C:\Windows\System32\drivers\usbcir.sys

08:35:19.0930 8252 usbcir - ok

08:35:19.0961 8252 [ 52F267AEE8CA5AA5CEB88C6A71EE1E86 ] usbehci C:\Windows\System32\drivers\usbehci.sys

08:35:19.0977 8252 usbehci - ok

08:35:19.0993 8252 [ ADBF89B8E0BB372FEFE2E4B84E1E20AE ] usbhub C:\Windows\System32\drivers\usbhub.sys

08:35:20.0008 8252 usbhub - ok

08:35:20.0024 8252 [ C5986337DE3BF63ABD9ED4D834D34B89 ] USBHUB3 C:\Windows\System32\drivers\UsbHub3.sys

08:35:20.0039 8252 USBHUB3 - ok

08:35:20.0055 8252 [ 325F6179009B5A7F6118951A5BA422AB ] usbohci C:\Windows\System32\drivers\usbohci.sys

08:35:20.0055 8252 usbohci - ok

08:35:20.0086 8252 [ BA3ABE0CD1C14B3295BAD0F076B84CAC ] usbprint C:\Windows\System32\drivers\usbprint.sys

08:35:20.0086 8252 usbprint - ok

08:35:20.0102 8252 [ F77177F6C95B2116EE7AD23B5EF57007 ] USBSTOR C:\Windows\System32\drivers\USBSTOR.SYS

08:35:20.0118 8252 USBSTOR - ok

08:35:20.0118 8252 [ D25EF4A6EC244C5DE85D88A05B7C149D ] usbuhci C:\Windows\System32\drivers\usbuhci.sys

08:35:20.0118 8252 usbuhci - ok

08:35:20.0149 8252 [ 09799E701B4327097E9F63D3FE221083 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys

08:35:20.0164 8252 usbvideo - ok

08:35:20.0180 8252 [ 11C0CF143D246E2F0E9BDBF17A0CC70B ] USBXHCI C:\Windows\System32\drivers\USBXHCI.SYS

08:35:20.0196 8252 USBXHCI - ok

08:35:20.0211 8252 [ 49F2693BC3D821FA13AD6E7D5C5FEAFF ] valWBFPolicyService C:\Windows\system32\valWBFPolicyService.exe

08:35:20.0227 8252 valWBFPolicyService - ok

08:35:20.0243 8252 [ F702AB6181513303AB0FC8D59E52708B ] VaultSvc C:\Windows\system32\lsass.exe

08:35:20.0243 8252 VaultSvc - ok

08:35:20.0274 8252 [ BACECBFF9C97F7627A60B0E0F1FE7EE8 ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys

08:35:20.0274 8252 vdrvroot - ok

08:35:20.0305 8252 [ 8A8CDA9E3CF2E0B4C6CC19FBC6FB9A71 ] vds C:\Windows\System32\vds.exe

08:35:20.0336 8252 vds - ok

08:35:20.0352 8252 [ 74FA2D4368DE6F6CE14393EDF1F342BE ] VerifierExt C:\Windows\system32\drivers\VerifierExt.sys

08:35:20.0352 8252 VerifierExt - ok

08:35:20.0383 8252 [ 500BE6B2E49883720D0AE8BB859ED7A3 ] vhdmp C:\Windows\System32\drivers\vhdmp.sys

08:35:20.0399 8252 vhdmp - ok

08:35:20.0414 8252 [ F5B4A14B00E89250C50982AC762DDD1D ] viaide C:\Windows\system32\drivers\viaide.sys

08:35:20.0414 8252 viaide - ok

08:35:20.0430 8252 [ 78DB50F7329F6D1311658DABFFFC8BE0 ] vmbus C:\Windows\system32\drivers\vmbus.sys

08:35:20.0430 8252 vmbus - ok

08:35:20.0446 8252 [ ECFEE2F2BA3932C7880D1A8F67D68F91 ] VMBusHID C:\Windows\System32\drivers\VMBusHID.sys

08:35:20.0446 8252 VMBusHID - ok

08:35:20.0477 8252 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicheartbeat C:\Windows\System32\ICSvc.dll

08:35:20.0477 8252 vmicheartbeat - ok

08:35:20.0493 8252 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmickvpexchange C:\Windows\System32\ICSvc.dll

08:35:20.0493 8252 vmickvpexchange - ok

08:35:20.0508 8252 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicrdv C:\Windows\System32\ICSvc.dll

08:35:20.0508 8252 vmicrdv - ok

08:35:20.0524 8252 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicshutdown C:\Windows\System32\ICSvc.dll

08:35:20.0524 8252 vmicshutdown - ok

08:35:20.0524 8252 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmictimesync C:\Windows\System32\ICSvc.dll

08:35:20.0524 8252 vmictimesync - ok

08:35:20.0539 8252 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicvss C:\Windows\System32\ICSvc.dll

08:35:20.0539 8252 vmicvss - ok

08:35:20.0539 8252 [ CB60FAAED8B49B812EBBF77EB87D9B18 ] volmgr C:\Windows\system32\drivers\volmgr.sys

08:35:20.0555 8252 volmgr - ok

08:35:20.0571 8252 [ A74101DA9809251BCD0E5A26BAE0F824 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys

08:35:20.0571 8252 volmgrx - ok

08:35:20.0571 8252 [ 2FB3CDFD5EAF4CD9D4AFAF96877D13AE ] volsnap C:\Windows\system32\drivers\volsnap.sys

08:35:20.0586 8252 volsnap - ok

08:35:20.0586 8252 [ A8DA1C1B52ECEA3726DEBED4FF1B700D ] vpci C:\Windows\System32\drivers\vpci.sys

08:35:20.0586 8252 vpci - ok

08:35:20.0602 8252 [ 38A60CD9C009C55C6D3B5586F8E6A353 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys

08:35:20.0602 8252 vsmraid - ok

08:35:20.0649 8252 [ EA658570314042C914964FC72AB50E6B ] VSS C:\Windows\system32\vssvc.exe

08:35:20.0680 8252 VSS - ok

08:35:20.0711 8252 [ A0F6FE0FC2F647C22BBFD6BD4249DBCC ] VSTXRAID C:\Windows\system32\drivers\vstxraid.sys

08:35:20.0711 8252 VSTXRAID - ok

08:35:20.0727 8252 [ 62460A45435A26A334907E3F2EA45611 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys

08:35:20.0727 8252 vwifibus - ok

08:35:20.0743 8252 [ 095E943D27025E4D588AF0A72CC2318F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys

08:35:20.0743 8252 vwififlt - ok

08:35:20.0789 8252 [ 73FA1A41A97A5C34ADC03B3577FF1A86 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys

08:35:20.0789 8252 vwifimp - ok

08:35:20.0805 8252 [ F690B6EEAA94576727B24376D7ED3601 ] W32Time C:\Windows\system32\w32time.dll

08:35:20.0821 8252 W32Time - ok

08:35:20.0836 8252 [ 6B806E893714019969E2B50D7EF6A4D9 ] WacomPen C:\Windows\System32\drivers\wacompen.sys

08:35:20.0836 8252 WacomPen - ok

08:35:20.0868 8252 [ 61F6972FF9AC9A8D0B4D62076DC30051 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys

08:35:20.0883 8252 Wanarp - ok

08:35:20.0883 8252 [ 61F6972FF9AC9A8D0B4D62076DC30051 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys

08:35:20.0883 8252 Wanarpv6 - ok

08:35:20.0930 8252 [ 901CC968412F8155B08D7ABE0171166A ] WAS C:\Windows\system32\inetsrv\iisw3adm.dll

08:35:20.0946 8252 WAS - ok

08:35:21.0008 8252 [ 42DF22F8C448E7CD219F6D63743505E2 ] wbengine C:\Windows\system32\wbengine.exe

08:35:21.0024 8252 wbengine - ok

08:35:21.0024 8252 [ 31D37B2F6069C631EF0557D322924812 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll

08:35:21.0024 8252 WbioSrvc - ok

08:35:21.0039 8252 [ D9C1E82651BF19C6FF69CEC6FD400124 ] Wcmsvc C:\Windows\System32\wcmsvc.dll

08:35:21.0039 8252 Wcmsvc - ok

08:35:21.0071 8252 [ 5B5FEAB51172F5513C2CF7B39CFA6A01 ] wcncsvc C:\Windows\System32\wcncsvc.dll

08:35:21.0071 8252 wcncsvc - ok

08:35:21.0086 8252 [ E19556D414332E2BEBA1F368229006B4 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll

08:35:21.0086 8252 WcsPlugInService - ok

08:35:21.0118 8252 [ B3A4D918DAB90505B6BC7B70632913CB ] Wd C:\Windows\system32\drivers\wd.sys

08:35:21.0118 8252 Wd - ok

08:35:21.0149 8252 [ 6F4B5DDDC3B86091E94BC47347A78AF7 ] WdBoot C:\Windows\system32\drivers\WdBoot.sys

08:35:21.0149 8252 WdBoot - ok

08:35:21.0180 8252 [ 2ADC985B85A71BD7D99712EC0C24358B ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys

08:35:21.0180 8252 Wdf01000 - ok

08:35:21.0196 8252 [ 99D404A9A0AFC4734E014EBEBAC13F8F ] WdFilter C:\Windows\system32\drivers\WdFilter.sys

08:35:21.0196 8252 WdFilter - ok

08:35:21.0211 8252 [ 240FC332484572227CD1DF82407F33E5 ] WdiServiceHost C:\Windows\system32\wdi.dll

08:35:21.0211 8252 WdiServiceHost - ok

08:35:21.0211 8252 [ 240FC332484572227CD1DF82407F33E5 ] WdiSystemHost C:\Windows\system32\wdi.dll

08:35:21.0227 8252 WdiSystemHost - ok

08:35:21.0243 8252 [ F2002DA5E6B78C15B2CD48CFF8F0FBB6 ] WebClient C:\Windows\System32\webclnt.dll

08:35:21.0243 8252 WebClient - ok

08:35:21.0258 8252 [ 35FD720943D4FCD75C3275BF062FF140 ] Wecsvc C:\Windows\system32\wecsvc.dll

08:35:21.0258 8252 Wecsvc - ok

08:35:21.0274 8252 [ 4D2612E3C462B68F499D840B1133263E ] wercplsupport C:\Windows\System32\wercplsupport.dll

08:35:21.0274 8252 wercplsupport - ok

08:35:21.0305 8252 [ 5F70EBFC1F75B487DE79501E3CCBDB54 ] WerSvc C:\Windows\System32\WerSvc.dll

08:35:21.0305 8252 WerSvc - ok

08:35:21.0321 8252 [ FE762D3498719C3A23471BBA62F747B4 ] WFPLWFS C:\Windows\system32\DRIVERS\wfplwfs.sys

08:35:21.0321 8252 WFPLWFS - ok

08:35:21.0336 8252 [ 60E0C220593DA4F7C289CB909D2DBAE0 ] WiaRpc C:\Windows\System32\wiarpc.dll

08:35:21.0336 8252 WiaRpc - ok

08:35:21.0352 8252 [ A3C7624A42A3447EF5EDD1ED37FE4E60 ] WIMMount C:\Windows\system32\drivers\wimmount.sys

08:35:21.0352 8252 WIMMount - ok

08:35:21.0368 8252 WinDefend - ok

08:35:21.0399 8252 [ 7911470B6018059A880469A63B65700A ] WinHttpAutoProxySvc C:\Windows\system32\winhttp.dll

08:35:21.0399 8252 WinHttpAutoProxySvc - ok

08:35:21.0446 8252 [ 3D6B518B71C75C8FA4115A33615C107A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll

08:35:21.0446 8252 Winmgmt - ok

08:35:21.0524 8252 [ 8E212A627F33F6FC3B5F3BB47212F66E ] WinRM C:\Windows\system32\WsmSvc.dll

08:35:21.0602 8252 WinRM - ok

08:35:21.0618 8252 [ BB20956C424531003F7FA6CD36F11D5D ] WinUsb C:\Windows\System32\drivers\WinUSB.sys

08:35:21.0618 8252 WinUsb - ok

08:35:21.0649 8252 [ 4F2A80D65AE6F845776E2F06AE6782ED ] WirelessButtonDriver C:\Windows\System32\drivers\WirelessButtonDriver64.sys

08:35:21.0649 8252 WirelessButtonDriver - ok

08:35:21.0696 8252 [ 6351724B8FA0255C2DBD970297F00B93 ] WlanSvc C:\Windows\System32\wlansvc.dll

08:35:21.0711 8252 WlanSvc - ok

08:35:21.0758 8252 [ B330CE47FB74A6BE9A3FFFF4B3F64D9B ] wlidsvc C:\Windows\system32\wlidsvc.dll

08:35:21.0758 8252 wlidsvc - ok

08:35:21.0774 8252 [ E2A596CACFC6504306CDB7B593B90084 ] WmiAcpi C:\Windows\System32\drivers\wmiacpi.sys

08:35:21.0774 8252 WmiAcpi - ok

08:35:21.0821 8252 [ D113499052C5E541906B727779F0F959 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe

08:35:21.0821 8252 wmiApSrv - ok

08:35:21.0836 8252 WMPNetworkSvc - ok

08:35:21.0852 8252 [ C6FF953D5D6F2EAE3B8883474D5076B3 ] wpcfltr C:\Windows\system32\DRIVERS\wpcfltr.sys

08:35:21.0852 8252 wpcfltr - ok

08:35:21.0868 8252 [ A6ED163169876BFD2437E872FE2F1509 ] WPCSvc C:\Windows\System32\wpcsvc.dll

08:35:21.0883 8252 WPCSvc - ok

08:35:21.0899 8252 [ 3013658A4D327854BEEC4A08D9655194 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll

08:35:21.0915 8252 WPDBusEnum - ok

08:35:21.0946 8252 [ 0346CAFC181C91C6E2330332EB332ED6 ] WpdUpFltr C:\Windows\system32\drivers\WpdUpFltr.sys

08:35:21.0946 8252 WpdUpFltr - ok

08:35:21.0961 8252 [ 7CA09731EB7FC99B910C7F239E57720F ] WPRO_41_2001 C:\Windows\system32\drivers\WPRO_41_2001.sys

08:35:21.0961 8252 WPRO_41_2001 - ok

08:35:21.0977 8252 [ BC8B5CB336E63BB25EAD1CE8EDD34B81 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys

08:35:21.0993 8252 ws2ifsl - ok

08:35:22.0008 8252 [ 012CFE7F0F95266F554EE3B91EE2128A ] wscsvc C:\Windows\System32\wscsvc.dll

08:35:22.0008 8252 wscsvc - ok

08:35:22.0024 8252 WSearch - ok

08:35:22.0086 8252 [ C10BFFEE7E0D7A1366E84F251796C51D ] WSService C:\Windows\System32\WSService.dll

08:35:22.0102 8252 WSService - ok

08:35:22.0196 8252 [ 79F95469604B77296346DE7DB463EA2A ] wuauserv C:\Windows\system32\wuaueng.dll

08:35:22.0211 8252 wuauserv - ok

08:35:22.0227 8252 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys

08:35:22.0227 8252 WudfPf - ok

08:35:22.0227 8252 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\System32\drivers\WUDFRd.sys

08:35:22.0227 8252 WUDFRd - ok

08:35:22.0243 8252 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFSensorLP C:\Windows\system32\DRIVERS\WUDFRd.sys

08:35:22.0243 8252 WUDFSensorLP - ok

08:35:22.0274 8252 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll

08:35:22.0274 8252 wudfsvc - ok

08:35:22.0274 8252 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFWpdFs C:\Windows\system32\DRIVERS\WUDFRd.sys

08:35:22.0274 8252 WUDFWpdFs - ok

08:35:22.0305 8252 [ F9D8D2E6ECE08B278621D5BF3A7240A6 ] WwanSvc C:\Windows\System32\wwansvc.dll

08:35:22.0321 8252 WwanSvc - ok

08:35:22.0352 8252 [ 6FDEE5E0741A3FFA5E5772C6C94E3F64 ] XHCIPort C:\Windows\System32\drivers\XHCIPort.sys

08:35:22.0368 8252 XHCIPort - ok

08:35:22.0477 8252 [ 97D3DCBBF3915782644DB56F5C191B9F ] ZeroConfigService C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

08:35:22.0493 8252 ZeroConfigService - ok

08:35:22.0493 8252 ================ Scan global ===============================

08:35:22.0524 8252 [ DDC1AFBF9DDF880CE9BD3896114D8DED ] C:\Windows\system32\basesrv.dll

08:35:22.0571 8252 [ E9343076AE704D20BB0D01F3AF3EFFEF ] C:\Windows\system32\winsrv.dll

08:35:22.0586 8252 [ BD7C6949984D19AAA609896B675E7357 ] C:\Windows\system32\sxssrv.dll

08:35:22.0618 8252 [ 8F226143046435C75C033B0C52E90FFE ] C:\Windows\system32\services.exe

08:35:22.0618 8252 [Global] - ok

08:35:22.0618 8252 ================ Scan MBR ==================================

08:35:22.0633 8252 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0

08:35:22.0649 8252 \Device\Harddisk0\DR0 - ok

08:35:22.0649 8252 ================ Scan VBR ==================================

08:35:22.0649 8252 [ 620F2BF093F05B74C13AC9A0C12D0A88 ] \Device\Harddisk0\DR0\Partition1

08:35:22.0649 8252 \Device\Harddisk0\DR0\Partition1 - ok

08:35:22.0649 8252 [ F799589F3FF780374F28159FACDDF8EE ] \Device\Harddisk0\DR0\Partition2

08:35:22.0665 8252 \Device\Harddisk0\DR0\Partition2 - ok

08:35:22.0665 8252 [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition3

08:35:22.0665 8252 \Device\Harddisk0\DR0\Partition3 - ok

08:35:22.0680 8252 [ F82CC80DE9B948E284E2C5AAD19F6D32 ] \Device\Harddisk0\DR0\Partition4

08:35:22.0680 8252 \Device\Harddisk0\DR0\Partition4 - ok

08:35:22.0711 8252 [ CBA98E33A2DE3BBF4AF9FE4A6195D10D ] \Device\Harddisk0\DR0\Partition5

08:35:22.0711 8252 \Device\Harddisk0\DR0\Partition5 - ok

08:35:22.0711 8252 ============================================================

08:35:22.0711 8252 Scan finished

08:35:22.0711 8252 ============================================================

08:35:22.0727 9736 Detected object count: 0

08:35:22.0727 9736 Actual detected object count: 0

Psychotic · June 6, 2013

Please download Malwarebytes Anti-Rootkit from here Malwarebytes : Malwarebytes Anti-Rootkit and save it to your desktop.

Be sure to print out and follow the instructions provided on that same page.

Caution: This is a beta version so please be sure to read the disclaimer and back up any important data before using.

Double click the mbar.zip file to open it, then 'Extract all files'.
Double click the mbar folder to open it, then double click mbar.exe to start the tool.

Check for Updates, then Scan your system for malware

If malware is found, do NOT press the Cleanup button yet. Click EXIT.

I'd like to see the log first so I can see what it sees. You'll find the log in that mbar folder as MBAR-log-<date and time>***.txt . Please attach that to your next reply.

GPK1 · June 6, 2013

Hi Martus,

MBAR log attached

system-log.txt

Psychotic · June 6, 2013

I can see no malware so this must be an effect of your third party tools:

Please go to here to run the online scannner from ESET.

Turn off the real time scanner of any existing antivirus program while performing the online scan
Tick the box next to YES, I accept the Terms of Use.
Click Start
When asked, allow the activex control to install
Click Start
Make sure that the option Remove found threats is unticked
Click on Advanced Settings and ensure these options are ticked:
- Scan for potentially unwanted applications
Scan for potentially unsafe applications
Enable Anti-Stealth Technology

[*]Click Scan[*]Wait for the scan to finish[*]If any threats were found, click the 'List of found threats' , then click Export to text file.... [*]Save it to your desktop, then please copy and paste that log as a reply to this topic.

GPK1 · June 6, 2013

Hi Marius,

ESET Log:

All processes killed

========== OTL ==========

64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}\ not found.

64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2fa28606-de77-4029-af96-b231e3b8f827}\ not found.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}\ not found.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2fa28606-de77-4029-af96-b231e3b8f827}\ not found.

Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}\ not found.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2fa28606-de77-4029-af96-b231e3b8f827}\ not found.

========== FILES ==========

< ipconfig /flushdns /c >

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

C:\Users\gary\Downloads\cmd.bat deleted successfully.

C:\Users\gary\Downloads\cmd.txt deleted successfully.

========== COMMANDS ==========

Restore point Set: OTL Restore Point

[EMPTYTEMP]

User: All Users

User: Default

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 0 bytes

User: Default User

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 0 bytes

User: gary

->Temp folder emptied: 91421039 bytes

->Temporary Internet Files folder emptied: 150188033 bytes

->FireFox cache emptied: 108205601 bytes

->Flash cache emptied: 3143 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes

%systemroot% .tmp files removed: 0 bytes

%systemroot%\System32 .tmp files removed: 0 bytes

%systemroot%\System32 (64bit) .tmp files removed: 94656 bytes

%systemroot%\System32\drivers .tmp files removed: 0 bytes

Windows Temp folder emptied: 12605448 bytes

%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes

RecycleBin emptied: 0 bytes

Total Files Cleaned = 346.00 mb

OTL by OldTimer - Version 3.2.69.0 log created on 05282013_084819

Files\Folders moved on Reboot...

C:\Users\gary\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.

C:\Windows\SysNative\WPRO_41_2001woem.tmp moved successfully.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

Psychotic · June 6, 2013

You posted an old OTL fixlog. We need the file from ESET.

Note: if nothing was detected, there will be no logfile but a message "no threats found".

GPK1 · June 6, 2013

Hi Marius,

My mistake

ESETSmartInstaller@High as downloader log:

all ok

# version=8

# OnlineScannerApp.exe=1.0.0.1

# OnlineScanner.ocx=1.0.0.6920

# api_version=3.0.2

# EOSSerial=9618bb26c856d54a83c98c24201ecd1a

# engine=14009

# end=finished

# remove_checked=false

# archives_checked=false

# unwanted_checked=true

# unsafe_checked=true

# antistealth_checked=true

# utc_time=2013-06-06 11:43:26

# local_time=2013-06-06 12:43:26 (+0000, GMT Summer Time)

# country="United Kingdom"

# lang=1033

# osver=6.2.9200 NT

# compatibility_mode=1044 16777213 100 83 30782 28497506 0 0

# compatibility_mode=5893 16776574 100 94 3054749 30025117 0 0

# scanned=198913

# found=1

# cleaned=0

# scan_time=4057

sh=DCEE630789708586DB0115E67687A8F9FB77C524 ft=1 fh=98db89bebaa4e11d vn="a variant of Win32/Bunndle application" ac=I fn="C:\Users\gary\AppData\Roaming\uTorrent\uTorrent.exe.6753.tmp"

GPK1 · June 6, 2013

Re: ESET

One further thought,

I did download grand Theft Auto IV which proved not to run on windows 8. I can't see any trace of Rock Star games, however is this the problem?

Psychotic · June 6, 2013

I cannot say which tool is responsible for this issue. You should post this problem in our General PC help forum to get some tech help.

Tell them you came from here and that you completed the malware removal process.

Scan with adwCleaner

Please download AdwCleaner to your desktop.

Run adwcleaner.exe.
Hit delete.
When the run is finished, it will open up a text file.
Please post its contents within your next reply.
You´ll find the log file at C:\AdwCleaner[s1].txt also.

SecurityCheck

Please download SecurityCheck: LINK1 LINK2

Save it to your desktop, start it and follow the instructions in the window.
After the scan finished the (checkup.txt) will open. Copy its content to your thread.

GPK1 · June 7, 2013

Hi Marius,

Logs posted below: Should my next post be to the General PC help forum?

# AdwCleaner v2.302 - Logfile created 06/07/2013 at 06:14:57

# Updated 06/06/2013 by Xplode

# Operating system : Windows 8 (64 bits)

# User : gary - REDMEN

# Boot Mode : Normal

# Running from : C:\Users\gary\Downloads\adwcleaner.exe

# Option [Delete]

***** [services] *****

***** [Files / Folders] *****

***** [Registry] *****

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\grusskartencenter.com

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\grusskartencenter.com

Key Deleted : HKCU\Software\Softonic

***** [internet Browsers] *****

-\\ Internet Explorer v10.0.9200.16537

[OK] Registry is clean.

-\\ Mozilla Firefox v21.0 (en-US)

File : C:\Users\gary\AppData\Roaming\Mozilla\Firefox\Profiles\8ni317tu.default\prefs.js

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [1036 octets] - [07/06/2013 06:14:21]

AdwCleaner[s1].txt - [975 octets] - [07/06/2013 06:14:57]

########## EOF - C:\AdwCleaner[s1].txt - [1034 octets] ##########

Results of screen317's Security Check version 0.99.64

x64 (UAC is enabled)

Internet Explorer 10

``````````````Antivirus/Firewall Check:``````````````

Windows Firewall Enabled!

AVG Anti-Virus 2013

Windows Defender

Antivirus up to date!

`````````Anti-malware/Other Utilities Check:`````````

MVPS Hosts File

SpywareBlaster 5.0

Spybot - Search & Destroy

Malwarebytes Anti-Malware version 1.75.0.1300

Adobe Flash Player 11.7.700.202

Mozilla Firefox (21.0)

````````Process Check: objlist.exe by Laurent````````

Malwarebytes Anti-Malware mbamservice.exe

Malwarebytes Anti-Malware mbamgui.exe

AVG avgwdsvc.exe

Malwarebytes' Anti-Malware mbamscheduler.exe

`````````````````System Health check`````````````````

Total Fragmentation on Drive C: %

````````````````````End of Log``````````````````````

Psychotic · June 7, 2013

Your system is free of malware!

Uninstall our tools.

Please follow these steps in order:

In the case we used Defogger to turn off your CD emulation software. You can start it again and use the Enable button.
In the case we used Combofix. Rename the combofix.exe to uninstall.exe and run it one last time. You shall be noted that Combofix has been removed.
In any case please download delfix to your desktop.
- Close all other programms and start delfix.
- Please check all the boxes and run the tool.
- delfix will now delete all found traces of our removal process

[*] If there is still something left please delete it manualy.

Reading Material

How to protect yourself

System Updates
Beeing up to date is very important. Please be sure to activate automatic updates in your control panel.
Windows XP | Windows Vista |
Windows 7 | windows 8
Protection
What you need is one (not more) good virus scanner with backgroud protection. Additionally I recommend a special malwarescanner that you run from time to time.
Personally I am using the avast! Antivirus Free Edition and Malwarebytes Anti-Malware. They offer you good protection for free use. But please remember: You get only the full protection if you use the payed versions of your security software.
Up to date Software
Stay up to date with all the programs you use. Some of those really have to have an eye on are: your browser(s) including add-ons and plug-ins, Java, Flash Player, your virus scanner, and basically every software you use often. These link may help you to check:
- Secunia Online Software Inspector - Checks if your software has updates available.
- Filehippo Update Checkere - This tool also scans your computer for outdated software.
- Mozilla: Check your plugins - The webpage will tell you if you have outdated plugins in your Firefox browser.
[*] Backups
There are chances for an emergency every day. So be prepared. Back up your data on a regular basis. If you burn it to DVDs from time to time, use a cloud-drive or a professional network backup system is your choice.
[*] Brains
It's no joke! You really need one of those things. It is very important not just to click anywhere it is colored or flashing while you surfing on the web. Do not click an OK button on any popping window without reading what it says. While installing software always choose the custom mode, read what those windows says and uncheck adware that will be installed along the software you want.

AdvancedSetup · June 11, 2013

Glad we could help.

If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Random 'Water Dripping' or 'Tik Tok' sound

Recommended Posts

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Recently Browsing 0 members

Important Information