I had two Trojan viruses on my system

2048Megabytes

2048Megabytes

Active Member
I was running Malwarebytes and it detected a two trojan viruses on my system and one was in the registry. Can someone analyze my HiJackThis log to make sure my system is clean?


Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:11:58 PM, on 3/31/2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal

Running processes:
C:\Various Programs\AMD\ATI.ACE\Core-Static\CLIStart.exe
C:\Various Programs\Norton Ghost\Agent\VProTray.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\Opera\opera.exe
C:\Various Programs\HiJackThis\Trend Micro\HiJackThis\HiJackThis.exe
C:\Windows\SysWOW64\DllHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: AMD SteadyVideo BHO - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - (no file)
O4 - HKLM\..\Run: [StartCCC] "C:\Various Programs\AMD\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Norton Ghost 15.0] "C:\Various Programs\Norton Ghost\Agent\VProTray.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O18 - Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll
O18 - Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Various Programs\AMD\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: AppleChargerSrv - Unknown owner - C:\Windows\system32\AppleChargerSrv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ES lite Service for program management. (ES lite Service) - Unknown owner - C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GenericMount Helper Service - Symantec - C:\Various Programs\Norton Ghost\Shared\Drivers\GenericMountHelperx64.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~2\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Norton Ghost - Symantec Corporation - C:\Various Programs\Norton Ghost\Agent\VProSvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SymSnapService - Symantec - C:\Various Programs\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 6613 bytes
 
Could you please also post the MalwareBytes log so we can see what was deleted? You can view it in the Logs tab of MalwareBytes.
 
Here it is:

Malwarebytes Anti-Malware 1.60.1.1000
www.malwarebytes.org

Database version: v2012.04.01.01

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 8.0.7601.17514
UBUNTU-USER :: UBUNTU-COMPUTER [administrator]

3/31/2012 10:39:17 PM
mbam-log-2012-03-31 (22-39-17).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 193433
Time elapsed: 2 minute(s), 7 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce|GrpConv (Trojan.Agent.Gen) -> Data: grpconv -o -> Quarantined and deleted successfully.

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 1
C:\Windows\System32\grpconv.exe (Trojan.Agent.Gen) -> Quarantined and deleted successfully.

(end)
 
Please do the following. You may have a rootkit.

Please download and run TDSSkiller

When the program opens, click on the start scan button.

TDSSKiller will now scan your computer for the TDSS infection. When the scan has finished it will display a result screen stating whether or not the infection was found on your computer. If it was found it will display a screen similar to the one below.

infection-found.jpg


To remove the infection simply click on the Continue button and TDSSKiller will attempt to clean the infection.

When it has finished cleaning the infection you will see a report stating whether or not it was successful as shown below.

scan-completed.jpg


If the log says will be cured after reboot, please reboot the system by pressing the reboot now button.

After running there will be a log that will be located at the root of your c:\ drive labeled tdsskiller with a series of numbers after it. Please open the log and copy and paste it back here.
 
I ran the scan. The forum is saying my post is too long I will post it in two parts.

Here is the first part of the log:


08:34:33.0331 3892 TDSS rootkit removing tool 2.7.23.0 Mar 26 2012 13:40:18
08:34:33.0784 3892 ============================================================
08:34:33.0784 3892 Current date / time: 2012/04/01 08:34:33.0784
08:34:33.0784 3892 SystemInfo:
08:34:33.0784 3892
08:34:33.0784 3892 OS Version: 6.1.7601 ServicePack: 1.0
08:34:33.0784 3892 Product type: Workstation
08:34:33.0784 3892 ComputerName: UBUNTU-COMPUTER
08:34:33.0784 3892 UserName: UBUNTU-USER
08:34:33.0784 3892 Windows directory: C:\Windows
08:34:33.0784 3892 System windows directory: C:\Windows
08:34:33.0784 3892 Running under WOW64
08:34:33.0784 3892 Processor architecture: Intel x64
08:34:33.0784 3892 Number of processors: 4
08:34:33.0784 3892 Page size: 0x1000
08:34:33.0784 3892 Boot type: Normal boot
08:34:33.0784 3892 ============================================================
08:34:35.0878 3892 Drive \Device\Harddisk0\DR0 - Size: 0x3A38725E00 (232.88 Gb), SectorSize: 0x200, Cylinders: 0x76C0, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
08:34:35.0894 3892 \Device\Harddisk0\DR0:
08:34:35.0894 3892 MBR used
08:34:35.0894 3892 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x8C00800
08:34:35.0894 3892 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x8C01000, BlocksNum 0x8E00000
08:34:35.0972 3892 Initialize success
08:34:35.0972 3892 ============================================================
08:34:41.0218 4076 ============================================================
08:34:41.0218 4076 Scan started
08:34:41.0218 4076 Mode: Manual;
08:34:41.0218 4076 ============================================================
08:34:42.0442 4076 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
08:34:42.0473 4076 1394ohci - ok
08:34:42.0520 4076 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
08:34:42.0536 4076 ACPI - ok
08:34:42.0567 4076 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
08:34:42.0567 4076 AcpiPmi - ok
08:34:42.0645 4076 AdobeARMservice (11a52cf7b265631deeb24c6149309eff) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
08:34:42.0645 4076 AdobeARMservice - ok
08:34:42.0739 4076 AdobeFlashPlayerUpdateSvc (0d4c486a24a711a45fd83acdf4d18506) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
08:34:42.0739 4076 AdobeFlashPlayerUpdateSvc - ok
08:34:42.0817 4076 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
08:34:42.0848 4076 adp94xx - ok
08:34:42.0895 4076 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
08:34:42.0910 4076 adpahci - ok
08:34:42.0926 4076 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
08:34:42.0926 4076 adpu320 - ok
08:34:42.0957 4076 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
08:34:42.0957 4076 AeLookupSvc - ok
08:34:43.0032 4076 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
08:34:43.0049 4076 AFD - ok
08:34:43.0082 4076 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
08:34:43.0084 4076 agp440 - ok
08:34:43.0114 4076 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
08:34:43.0114 4076 ALG - ok
08:34:43.0146 4076 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
08:34:43.0146 4076 aliide - ok
08:34:43.0192 4076 AMD External Events Utility (962227630779043b5c1d4cd157abb912) C:\Windows\system32\atiesrxx.exe
08:34:43.0208 4076 AMD External Events Utility - ok
08:34:43.0239 4076 AMD FUEL Service - ok
08:34:43.0348 4076 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
08:34:43.0348 4076 amdide - ok
08:34:43.0395 4076 amdiox64 (6a2eeb0c4133b20773bb3dd0b7b377b4) C:\Windows\system32\DRIVERS\amdiox64.sys
08:34:43.0395 4076 amdiox64 - ok
08:34:43.0442 4076 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
08:34:43.0442 4076 AmdK8 - ok
08:34:43.0723 4076 amdkmdag (56d6631761ec37745f0df16bcdc4caf4) C:\Windows\system32\DRIVERS\atikmdag.sys
08:34:43.0972 4076 amdkmdag - ok
08:34:44.0066 4076 amdkmdap (2d9005ea0bfd25c740e53c8dd3c069e0) C:\Windows\system32\DRIVERS\atikmpag.sys
08:34:44.0082 4076 amdkmdap - ok
08:34:44.0113 4076 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
08:34:44.0128 4076 AmdPPM - ok
08:34:44.0160 4076 amdsata (6ec6d772eae38dc17c14aed9b178d24b) C:\Windows\system32\drivers\amdsata.sys
08:34:44.0160 4076 amdsata - ok
08:34:44.0191 4076 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
08:34:44.0206 4076 amdsbs - ok
08:34:44.0253 4076 amdxata (1142a21db581a84ea5597b03a26ebaa0) C:\Windows\system32\drivers\amdxata.sys
08:34:44.0253 4076 amdxata - ok
08:34:44.0331 4076 AODDriver (b934322c68c30dceca96c0274a51f7b0) C:\Program Files (x86)\Gigabyte\ET6\amd64\AODDriver.sys
08:34:44.0331 4076 AODDriver - ok
08:34:44.0378 4076 AODDriver4.1 (0e2ba6dc63e9cf3bf275856735a3e3be) C:\Various Programs\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys
08:34:44.0378 4076 AODDriver4.1 - ok
08:34:44.0456 4076 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
08:34:44.0472 4076 AppID - ok
08:34:44.0503 4076 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
08:34:44.0503 4076 AppIDSvc - ok
08:34:44.0534 4076 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
08:34:44.0534 4076 Appinfo - ok
08:34:44.0596 4076 AppleCharger (6be11ad81d4527d299f0cb5f3731aabc) C:\Windows\system32\DRIVERS\AppleCharger.sys
08:34:44.0596 4076 AppleCharger - ok
08:34:44.0628 4076 AppleChargerSrv (95ef7247c50c7241fdae39a9b3aff4ae) C:\Windows\system32\AppleChargerSrv.exe
08:34:44.0628 4076 AppleChargerSrv - ok
08:34:44.0643 4076 AppMgmt (4aba3e75a76195a3e38ed2766c962899) C:\Windows\System32\appmgmts.dll
08:34:44.0659 4076 AppMgmt - ok
08:34:44.0690 4076 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
08:34:44.0690 4076 arc - ok
08:34:44.0706 4076 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
08:34:44.0721 4076 arcsas - ok
08:34:44.0737 4076 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
08:34:44.0737 4076 AsyncMac - ok
08:34:44.0784 4076 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
08:34:44.0784 4076 atapi - ok
08:34:45.0056 4076 atikmdag (56d6631761ec37745f0df16bcdc4caf4) C:\Windows\system32\DRIVERS\atikmdag.sys
08:34:45.0104 4076 atikmdag - ok
08:34:45.0134 4076 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
08:34:45.0150 4076 AudioEndpointBuilder - ok
08:34:45.0166 4076 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
08:34:45.0166 4076 AudioSrv - ok
08:34:45.0197 4076 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
08:34:45.0197 4076 AxInstSV - ok
08:34:45.0259 4076 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
08:34:45.0275 4076 b06bdrv - ok
08:34:45.0353 4076 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
08:34:45.0368 4076 b57nd60a - ok
08:34:45.0415 4076 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
08:34:45.0415 4076 BDESVC - ok
08:34:45.0462 4076 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
08:34:45.0462 4076 Beep - ok
08:34:45.0509 4076 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
08:34:45.0540 4076 BFE - ok
08:34:45.0587 4076 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
08:34:45.0618 4076 BITS - ok
08:34:45.0665 4076 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
08:34:45.0665 4076 blbdrive - ok
08:34:45.0712 4076 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
08:34:45.0712 4076 bowser - ok
08:34:45.0758 4076 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
08:34:45.0758 4076 BrFiltLo - ok
08:34:45.0758 4076 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
08:34:45.0774 4076 BrFiltUp - ok
08:34:45.0805 4076 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
08:34:45.0821 4076 Browser - ok
08:34:45.0868 4076 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
08:34:45.0868 4076 Brserid - ok
08:34:45.0883 4076 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
08:34:45.0883 4076 BrSerWdm - ok
08:34:45.0899 4076 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
08:34:45.0899 4076 BrUsbMdm - ok
08:34:45.0930 4076 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
08:34:45.0946 4076 BrUsbSer - ok
08:34:45.0961 4076 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
08:34:45.0961 4076 BTHMODEM - ok
08:34:46.0024 4076 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
08:34:46.0026 4076 bthserv - ok
08:34:46.0069 4076 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
08:34:46.0071 4076 cdfs - ok
08:34:46.0134 4076 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
08:34:46.0134 4076 cdrom - ok
08:34:46.0181 4076 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
08:34:46.0181 4076 CertPropSvc - ok
08:34:46.0243 4076 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
08:34:46.0243 4076 circlass - ok
08:34:46.0306 4076 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
08:34:46.0321 4076 CLFS - ok
08:34:46.0384 4076 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
08:34:46.0384 4076 clr_optimization_v2.0.50727_32 - ok
08:34:46.0431 4076 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
08:34:46.0431 4076 clr_optimization_v2.0.50727_64 - ok
08:34:46.0493 4076 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
08:34:46.0493 4076 CmBatt - ok
08:34:46.0524 4076 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
08:34:46.0540 4076 cmdide - ok
08:34:46.0587 4076 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
08:34:46.0602 4076 CNG - ok
08:34:46.0665 4076 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
08:34:46.0665 4076 Compbatt - ok
08:34:46.0727 4076 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
08:34:46.0727 4076 CompositeBus - ok
08:34:46.0758 4076 COMSysApp - ok
08:34:46.0821 4076 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
08:34:46.0821 4076 crcdisk - ok
08:34:46.0883 4076 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll
08:34:46.0883 4076 CryptSvc - ok
08:34:46.0961 4076 CSC (54da3dfd29ed9f1619b6f53f3ce55e49) C:\Windows\system32\drivers\csc.sys
08:34:46.0977 4076 CSC - ok
08:34:47.0039 4076 CscService (3ab183ab4d2c79dcf459cd2c1266b043) C:\Windows\System32\cscsvc.dll
08:34:47.0070 4076 CscService - ok
08:34:47.0117 4076 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
08:34:47.0133 4076 DcomLaunch - ok
08:34:47.0179 4076 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
08:34:47.0179 4076 defragsvc - ok
08:34:47.0242 4076 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
08:34:47.0242 4076 DfsC - ok
08:34:47.0304 4076 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
08:34:47.0320 4076 Dhcp - ok
08:34:47.0367 4076 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
08:34:47.0367 4076 discache - ok
08:34:47.0398 4076 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
08:34:47.0398 4076 Disk - ok
08:34:47.0445 4076 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
08:34:47.0445 4076 Dnscache - ok
08:34:47.0507 4076 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
08:34:47.0507 4076 dot3svc - ok
08:34:47.0554 4076 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
08:34:47.0569 4076 DPS - ok
08:34:47.0616 4076 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
08:34:47.0616 4076 drmkaud - ok
08:34:47.0694 4076 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
08:34:47.0710 4076 DXGKrnl - ok
08:34:47.0757 4076 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
08:34:47.0757 4076 EapHost - ok
08:34:47.0944 4076 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
08:34:48.0053 4076 ebdrv - ok
08:34:48.0118 4076 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
08:34:48.0121 4076 EFS - ok
08:34:48.0170 4076 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
08:34:48.0201 4076 ehRecvr - ok
08:34:48.0232 4076 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
08:34:48.0232 4076 ehSched - ok
08:34:48.0310 4076 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
08:34:48.0326 4076 elxstor - ok
08:34:48.0388 4076 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
08:34:48.0404 4076 ErrDev - ok
08:34:48.0466 4076 ES lite Service (b8fa96995726d1fa58476e352c02ad82) C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
08:34:48.0482 4076 ES lite Service - ok
08:34:48.0638 4076 EtronHub3 (db6aec32faf5bd002d9ed6c38692d42b) C:\Windows\system32\Drivers\EtronHub3.sys
08:34:48.0638 4076 EtronHub3 - ok
08:34:48.0856 4076 EtronXHCI (9cc2f24274741e12f9df92125ea6d6d8) C:\Windows\system32\Drivers\EtronXHCI.sys
08:34:48.0856 4076 EtronXHCI - ok
08:34:48.0997 4076 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
08:34:48.0997 4076 EventSystem - ok
08:34:49.0070 4076 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
08:34:49.0075 4076 exfat - ok
08:34:49.0123 4076 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
08:34:49.0138 4076 fastfat - ok
08:34:49.0216 4076 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
08:34:49.0232 4076 Fax - ok
08:34:49.0279 4076 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
08:34:49.0279 4076 fdc - ok
08:34:49.0310 4076 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
08:34:49.0326 4076 fdPHost - ok
08:34:49.0341 4076 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
08:34:49.0357 4076 FDResPub - ok
08:34:49.0388 4076 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
08:34:49.0388 4076 FileInfo - ok
08:34:49.0435 4076 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
08:34:49.0435 4076 Filetrace - ok
08:34:49.0450 4076 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
08:34:49.0450 4076 flpydisk - ok
08:34:49.0497 4076 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
08:34:49.0513 4076 FltMgr - ok
08:34:49.0591 4076 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
08:34:49.0638 4076 FontCache - ok
08:34:49.0731 4076 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
08:34:49.0731 4076 FontCache3.0.0.0 - ok
08:34:49.0794 4076 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
08:34:49.0794 4076 FsDepends - ok
08:34:49.0825 4076 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
08:34:49.0825 4076 Fs_Rec - ok
08:34:49.0872 4076 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
08:34:49.0872 4076 fvevol - ok
08:34:49.0934 4076 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
08:34:49.0934 4076 gagp30kx - ok
08:34:49.0965 4076 gdrv (7907e14f9bcf3a4689c9a74a1a873cb6) C:\Windows\gdrv.sys
08:34:49.0965 4076 gdrv - ok
08:34:50.0028 4076 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
08:34:50.0028 4076 GEARAspiWDM - ok
08:34:50.0074 4076 GenericMount (9ba50351af95c9df28c8bcd382427d11) C:\Windows\system32\DRIVERS\GenericMount.sys
08:34:50.0074 4076 GenericMount - ok
08:34:50.0230 4076 GenericMount Helper Service (9573dc01b6baa0371ed4afbaebee4dcc) C:\Various Programs\Norton Ghost\Shared\Drivers\GenericMountHelperx64.exe
08:34:50.0308 4076 GenericMount Helper Service - ok
08:34:50.0402 4076 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
08:34:50.0433 4076 gpsvc - ok
08:34:50.0464 4076 GVTDrv64 (8126331fbd4ed29eb3b356f9c905064d) C:\Windows\GVTDrv64.sys
08:34:50.0464 4076 GVTDrv64 - ok
08:34:50.0511 4076 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
08:34:50.0511 4076 hcw85cir - ok
08:34:50.0574 4076 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
08:34:50.0589 4076 HdAudAddService - ok
08:34:50.0605 4076 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
08:34:50.0605 4076 HDAudBus - ok
08:34:50.0636 4076 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
08:34:50.0636 4076 HidBatt - ok
08:34:50.0652 4076 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
08:34:50.0652 4076 HidBth - ok
08:34:50.0652 4076 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
08:34:50.0652 4076 HidIr - ok
08:34:50.0683 4076 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
08:34:50.0683 4076 hidserv - ok
08:34:50.0714 4076 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
08:34:50.0714 4076 HidUsb - ok
08:34:50.0745 4076 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
08:34:50.0745 4076 hkmsvc - ok
08:34:50.0792 4076 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
08:34:50.0808 4076 HomeGroupListener - ok
08:34:50.0823 4076 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
08:34:50.0839 4076 HomeGroupProvider - ok
08:34:50.0886 4076 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
08:34:50.0886 4076 HpSAMD - ok
08:34:50.0948 4076 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
08:34:50.0979 4076 HTTP - ok
08:34:51.0010 4076 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
08:34:51.0010 4076 hwpolicy - ok
08:34:51.0042 4076 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
08:34:51.0042 4076 i8042prt - ok
08:34:51.0105 4076 iaStorV (3df4395a7cf8b7a72a5f4606366b8c2d) C:\Windows\system32\drivers\iaStorV.sys
08:34:51.0122 4076 iaStorV - ok
08:34:51.0190 4076 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
08:34:51.0190 4076 IDriverT - ok
08:34:51.0314 4076 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
08:34:51.0346 4076 idsvc - ok
08:34:51.0408 4076 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
08:34:51.0424 4076 iirsp - ok
08:34:51.0486 4076 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
08:34:51.0533 4076 IKEEXT - ok
08:34:51.0673 4076 IntcAzAudAddService (4bbb5a55eeb5ec11b20fcbb4cbb49357) C:\Windows\system32\drivers\RTKVHD64.sys
08:34:51.0689 4076 IntcAzAudAddService - ok
08:34:51.0767 4076 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
08:34:51.0782 4076 intelide - ok
08:34:51.0814 4076 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
08:34:51.0814 4076 intelppm - ok
08:34:51.0845 4076 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
08:34:51.0845 4076 IPBusEnum - ok
08:34:51.0892 4076 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
08:34:51.0892 4076 IpFilterDriver - ok
08:34:51.0950 4076 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
08:34:51.0967 4076 iphlpsvc - ok
08:34:52.0020 4076 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
08:34:52.0022 4076 IPMIDRV - ok
08:34:52.0072 4076 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
08:34:52.0077 4076 IPNAT - ok
08:34:52.0087 4076 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
08:34:52.0090 4076 IRENUM - ok
08:34:52.0127 4076 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
08:34:52.0127 4076 isapnp - ok
08:34:52.0174 4076 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
08:34:52.0174 4076 iScsiPrt - ok
08:34:52.0236 4076 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
08:34:52.0236 4076 kbdclass - ok
08:34:52.0283 4076 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
08:34:52.0299 4076 kbdhid - ok
08:34:52.0346 4076 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
08:34:52.0346 4076 KeyIso - ok
08:34:52.0377 4076 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
08:34:52.0377 4076 KSecDD - ok
08:34:52.0392 4076 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
08:34:52.0408 4076 KSecPkg - ok
08:34:52.0424 4076 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
08:34:52.0424 4076 ksthunk - ok
08:34:52.0470 4076 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
08:34:52.0486 4076 KtmRm - ok
08:34:52.0548 4076 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
08:34:52.0564 4076 LanmanServer - ok
08:34:52.0595 4076 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
08:34:52.0611 4076 LanmanWorkstation - ok
08:34:52.0782 4076 LiveUpdate (a97eeb81f05bce3d7aa6c81f04ef39a4) C:\PROGRA~2\Symantec\LIVEUP~1\LUCOMS~1.EXE
08:34:52.0876 4076 LiveUpdate - ok
08:34:52.0954 4076 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
08:34:52.0954 4076 lltdio - ok
08:34:53.0001 4076 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
08:34:53.0016 4076 lltdsvc - ok
08:34:53.0048 4076 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
08:34:53.0048 4076 lmhosts - ok
08:34:53.0141 4076 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
08:34:53.0157 4076 LSI_FC - ok
08:34:53.0157 4076 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
08:34:53.0157 4076 LSI_SAS - ok
08:34:53.0188 4076 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
08:34:53.0188 4076 LSI_SAS2 - ok
08:34:53.0204 4076 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
08:34:53.0204 4076 LSI_SCSI - ok
08:34:53.0219 4076 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
08:34:53.0219 4076 luafv - ok
08:34:53.0250 4076 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
08:34:53.0250 4076 Mcx2Svc - ok
08:34:53.0297 4076 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
08:34:53.0297 4076 megasas - ok
08:34:53.0313 4076 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
08:34:53.0328 4076 MegaSR - ok
08:34:53.0360 4076 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
08:34:53.0375 4076 MMCSS - ok
08:34:53.0422 4076 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
08:34:53.0422 4076 Modem - ok
08:34:53.0438 4076 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
08:34:53.0438 4076 monitor - ok
08:34:53.0469 4076 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
08:34:53.0469 4076 mouclass - ok
 
Here is the second part of the log:

08:34:53.0500 4076 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
08:34:53.0500 4076 mouhid - ok
08:34:53.0547 4076 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
08:34:53.0547 4076 mountmgr - ok
08:34:53.0578 4076 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
08:34:53.0578 4076 mpio - ok
08:34:53.0609 4076 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
08:34:53.0609 4076 mpsdrv - ok
08:34:53.0672 4076 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
08:34:53.0703 4076 MpsSvc - ok
08:34:53.0828 4076 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
08:34:53.0859 4076 MRxDAV - ok
08:34:54.0288 4076 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
08:34:54.0319 4076 mrxsmb - ok
08:34:54.0771 4076 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
08:34:54.0802 4076 mrxsmb10 - ok
08:34:55.0086 4076 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
08:34:55.0104 4076 mrxsmb20 - ok
08:34:55.0194 4076 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
08:34:55.0209 4076 msahci - ok
08:34:55.0412 4076 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
08:34:55.0428 4076 msdsm - ok
08:34:55.0490 4076 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
08:34:55.0490 4076 MSDTC - ok
08:34:55.0537 4076 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
08:34:55.0537 4076 Msfs - ok
08:34:55.0553 4076 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
08:34:55.0553 4076 mshidkmdf - ok
08:34:55.0584 4076 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
08:34:55.0584 4076 msisadrv - ok
08:34:55.0615 4076 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
08:34:55.0615 4076 MSiSCSI - ok
08:34:55.0631 4076 msiserver - ok
08:34:55.0662 4076 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
08:34:55.0662 4076 MSKSSRV - ok
08:34:55.0677 4076 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
08:34:55.0677 4076 MSPCLOCK - ok
08:34:55.0693 4076 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
08:34:55.0693 4076 MSPQM - ok
08:34:55.0724 4076 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
08:34:55.0724 4076 MsRPC - ok
08:34:55.0911 4076 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
08:34:55.0911 4076 mssmbios - ok
08:34:56.0114 4076 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
08:34:56.0130 4076 MSTEE - ok
08:34:56.0255 4076 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
08:34:56.0270 4076 MTConfig - ok
08:34:56.0411 4076 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
08:34:56.0411 4076 Mup - ok
08:34:56.0551 4076 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
08:34:56.0582 4076 napagent - ok
08:34:56.0723 4076 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
08:34:56.0754 4076 NativeWifiP - ok
08:34:56.0957 4076 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
08:34:56.0988 4076 NDIS - ok
08:34:57.0035 4076 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
08:34:57.0035 4076 NdisCap - ok
08:34:57.0068 4076 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
08:34:57.0068 4076 NdisTapi - ok
08:34:57.0121 4076 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
08:34:57.0123 4076 Ndisuio - ok
08:34:57.0151 4076 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
08:34:57.0151 4076 NdisWan - ok
08:34:57.0183 4076 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
08:34:57.0183 4076 NDProxy - ok
08:34:57.0214 4076 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
08:34:57.0229 4076 NetBIOS - ok
08:34:57.0261 4076 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
08:34:57.0276 4076 NetBT - ok
08:34:57.0292 4076 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
08:34:57.0307 4076 Netlogon - ok
08:34:57.0339 4076 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
08:34:57.0354 4076 Netman - ok
08:34:57.0385 4076 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
08:34:57.0401 4076 netprofm - ok
08:34:57.0463 4076 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
08:34:57.0479 4076 NetTcpPortSharing - ok
08:34:57.0541 4076 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
08:34:57.0541 4076 nfrd960 - ok
08:34:57.0588 4076 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
08:34:57.0604 4076 NlaSvc - ok
08:34:57.0791 4076 Norton Ghost (a1787754952a0b700e386dc7c5fa5726) C:\Various Programs\Norton Ghost\Agent\VProSvc.exe
08:34:57.0916 4076 Norton Ghost - ok
08:34:57.0994 4076 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
08:34:57.0994 4076 Npfs - ok
08:34:58.0025 4076 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
08:34:58.0041 4076 nsi - ok
08:34:58.0061 4076 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
08:34:58.0063 4076 nsiproxy - ok
08:34:58.0167 4076 Ntfs (05d78aa5cb5f3f5c31160bdb955d0b7c) C:\Windows\system32\drivers\Ntfs.sys
08:34:58.0214 4076 Ntfs - ok
08:34:58.0245 4076 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
08:34:58.0245 4076 Null - ok
08:34:58.0276 4076 nvraid (5d9fd91f3d38dc9da01e3cb5fa89cd48) C:\Windows\system32\drivers\nvraid.sys
08:34:58.0292 4076 nvraid - ok
08:34:58.0307 4076 nvstor (f7cd50fe7139f07e77da8ac8033d1832) C:\Windows\system32\drivers\nvstor.sys
08:34:58.0307 4076 nvstor - ok
08:34:58.0370 4076 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
08:34:58.0385 4076 nv_agp - ok
08:34:58.0448 4076 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
08:34:58.0448 4076 ohci1394 - ok
08:34:58.0494 4076 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
08:34:58.0510 4076 p2pimsvc - ok
08:34:58.0541 4076 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
08:34:58.0557 4076 p2psvc - ok
08:34:58.0588 4076 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
08:34:58.0604 4076 Parport - ok
08:34:58.0635 4076 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
08:34:58.0635 4076 partmgr - ok
08:34:58.0666 4076 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
08:34:58.0666 4076 PcaSvc - ok
08:34:58.0713 4076 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
08:34:58.0713 4076 pci - ok
08:34:58.0744 4076 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
08:34:58.0744 4076 pciide - ok
08:34:58.0775 4076 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
08:34:58.0775 4076 pcmcia - ok
08:34:58.0806 4076 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
08:34:58.0806 4076 pcw - ok
08:34:58.0838 4076 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
08:34:58.0869 4076 PEAUTH - ok
08:34:58.0931 4076 PeerDistSvc (b9b0a4299dd2d76a4243f75fd54dc680) C:\Windows\system32\peerdistsvc.dll
08:34:58.0978 4076 PeerDistSvc - ok
08:34:59.0040 4076 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
08:34:59.0040 4076 PerfHost - ok
08:34:59.0165 4076 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
08:34:59.0212 4076 pla - ok
08:34:59.0306 4076 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
08:34:59.0321 4076 PlugPlay - ok
08:34:59.0352 4076 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
08:34:59.0352 4076 PNRPAutoReg - ok
08:34:59.0415 4076 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
08:34:59.0415 4076 PNRPsvc - ok
08:34:59.0462 4076 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
08:34:59.0477 4076 PolicyAgent - ok
08:34:59.0524 4076 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
08:34:59.0540 4076 Power - ok
08:34:59.0618 4076 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
08:34:59.0618 4076 PptpMiniport - ok
08:34:59.0664 4076 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
08:34:59.0664 4076 Processor - ok
08:34:59.0711 4076 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
08:34:59.0742 4076 ProfSvc - ok
08:34:59.0758 4076 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
08:34:59.0774 4076 ProtectedStorage - ok
08:34:59.0805 4076 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
08:34:59.0805 4076 Psched - ok
08:34:59.0883 4076 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
08:34:59.0930 4076 ql2300 - ok
08:34:59.0945 4076 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
08:34:59.0961 4076 ql40xx - ok
08:34:59.0992 4076 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
08:35:00.0008 4076 QWAVE - ok
08:35:00.0023 4076 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
08:35:00.0039 4076 QWAVEdrv - ok
08:35:00.0054 4076 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
08:35:00.0054 4076 RasAcd - ok
08:35:00.0090 4076 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
08:35:00.0093 4076 RasAgileVpn - ok
08:35:00.0120 4076 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
08:35:00.0130 4076 RasAuto - ok
08:35:00.0156 4076 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
08:35:00.0171 4076 Rasl2tp - ok
08:35:00.0202 4076 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
08:35:00.0218 4076 RasMan - ok
08:35:00.0265 4076 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
08:35:00.0265 4076 RasPppoe - ok
08:35:00.0280 4076 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
08:35:00.0280 4076 RasSstp - ok
08:35:00.0327 4076 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
08:35:00.0327 4076 rdbss - ok
08:35:00.0358 4076 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
08:35:00.0358 4076 rdpbus - ok
08:35:00.0405 4076 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
08:35:00.0405 4076 RDPCDD - ok
08:35:00.0436 4076 RDPDR (1b6163c503398b23ff8b939c67747683) C:\Windows\system32\drivers\rdpdr.sys
08:35:00.0452 4076 RDPDR - ok
08:35:00.0499 4076 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
08:35:00.0514 4076 RDPENCDD - ok
08:35:00.0530 4076 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
08:35:00.0530 4076 RDPREFMP - ok
08:35:00.0592 4076 RdpVideoMiniport (70cba1a0c98600a2aa1863479b35cb90) C:\Windows\system32\drivers\rdpvideominiport.sys
08:35:00.0592 4076 RdpVideoMiniport - ok
08:35:00.0624 4076 RDPWD (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys
08:35:00.0624 4076 RDPWD - ok
08:35:00.0686 4076 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
08:35:00.0686 4076 rdyboost - ok
08:35:00.0717 4076 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
08:35:00.0717 4076 RemoteAccess - ok
08:35:00.0764 4076 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
08:35:00.0764 4076 RemoteRegistry - ok
08:35:00.0795 4076 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
08:35:00.0795 4076 RpcEptMapper - ok
08:35:00.0826 4076 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
08:35:00.0826 4076 RpcLocator - ok
08:35:00.0873 4076 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
08:35:00.0873 4076 RpcSs - ok
08:35:00.0920 4076 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
08:35:00.0920 4076 rspndr - ok
08:35:00.0967 4076 RTHDMIAzAudService (2e7d1ca91d62501713c9d6e6704395c6) C:\Windows\system32\drivers\RtHDMIVX.sys
08:35:00.0967 4076 RTHDMIAzAudService - ok
08:35:01.0014 4076 RTL8167 (6d3c7e7d82d3dc92dc2a8b0df9f20f8a) C:\Windows\system32\DRIVERS\Rt64win7.sys
08:35:01.0014 4076 RTL8167 - ok
08:35:01.0050 4076 s3cap (e60c0a09f997826c7627b244195ab581) C:\Windows\system32\drivers\vms3cap.sys
08:35:01.0052 4076 s3cap - ok
08:35:01.0080 4076 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
08:35:01.0080 4076 SamSs - ok
08:35:01.0140 4076 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
08:35:01.0140 4076 sbp2port - ok
08:35:01.0171 4076 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
08:35:01.0187 4076 SCardSvr - ok
08:35:01.0233 4076 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
08:35:01.0233 4076 scfilter - ok
08:35:01.0296 4076 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
08:35:01.0343 4076 Schedule - ok
08:35:01.0389 4076 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
08:35:01.0389 4076 SCPolicySvc - ok
08:35:01.0421 4076 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
08:35:01.0421 4076 SDRSVC - ok
08:35:01.0452 4076 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
08:35:01.0467 4076 secdrv - ok
08:35:01.0483 4076 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
08:35:01.0499 4076 seclogon - ok
08:35:01.0530 4076 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
08:35:01.0530 4076 SENS - ok
08:35:01.0545 4076 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
08:35:01.0561 4076 SensrSvc - ok
08:35:01.0577 4076 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
08:35:01.0577 4076 Serenum - ok
08:35:01.0608 4076 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
08:35:01.0608 4076 Serial - ok
08:35:01.0639 4076 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
08:35:01.0639 4076 sermouse - ok
08:35:01.0701 4076 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
08:35:01.0701 4076 SessionEnv - ok
08:35:01.0748 4076 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
08:35:01.0748 4076 sffdisk - ok
08:35:01.0779 4076 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
08:35:01.0779 4076 sffp_mmc - ok
08:35:01.0795 4076 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
08:35:01.0795 4076 sffp_sd - ok
08:35:01.0826 4076 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
08:35:01.0826 4076 sfloppy - ok
08:35:01.0857 4076 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
08:35:01.0873 4076 SharedAccess - ok
08:35:01.0925 4076 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
08:35:01.0942 4076 ShellHWDetection - ok
08:35:01.0977 4076 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
08:35:01.0980 4076 SiSRaid2 - ok
08:35:02.0015 4076 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
08:35:02.0020 4076 SiSRaid4 - ok
08:35:02.0042 4076 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
08:35:02.0045 4076 Smb - ok
08:35:02.0077 4076 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
08:35:02.0085 4076 SNMPTRAP - ok
08:35:02.0112 4076 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
08:35:02.0115 4076 spldr - ok
08:35:02.0171 4076 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
08:35:02.0187 4076 Spooler - ok
08:35:02.0343 4076 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
08:35:02.0452 4076 sppsvc - ok
08:35:02.0530 4076 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
08:35:02.0530 4076 sppuinotify - ok
08:35:02.0608 4076 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
08:35:02.0623 4076 srv - ok
08:35:02.0686 4076 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
08:35:02.0701 4076 srv2 - ok
08:35:02.0733 4076 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
08:35:02.0733 4076 srvnet - ok
08:35:02.0764 4076 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
08:35:02.0764 4076 SSDPSRV - ok
08:35:02.0779 4076 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
08:35:02.0779 4076 SstpSvc - ok
08:35:02.0811 4076 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
08:35:02.0811 4076 stexstor - ok
08:35:02.0873 4076 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
08:35:02.0889 4076 stisvc - ok
08:35:02.0904 4076 storflt (7785dc213270d2fc066538daf94087e7) C:\Windows\system32\drivers\vmstorfl.sys
08:35:02.0920 4076 storflt - ok
08:35:02.0951 4076 storvsc (d34e4943d5ac096c8edeebfd80d76e23) C:\Windows\system32\drivers\storvsc.sys
08:35:02.0967 4076 storvsc - ok
08:35:02.0967 4076 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
08:35:02.0967 4076 swenum - ok
08:35:03.0013 4076 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
08:35:03.0029 4076 swprv - ok
08:35:03.0045 4076 Symantec SymSnap VSS Provider - ok
08:35:03.0083 4076 symsnap (2d9b2746f7dea46d1572b84a06311566) C:\Windows\system32\DRIVERS\symsnap.sys
08:35:03.0086 4076 symsnap - ok
08:35:03.0250 4076 SymSnapService (ea1a479651ca2e0409c29d586c91901d) C:\Various Programs\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe
08:35:03.0344 4076 SymSnapService - ok
08:35:03.0422 4076 Synth3dVsc - ok
08:35:03.0531 4076 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
08:35:03.0593 4076 SysMain - ok
08:35:03.0624 4076 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
08:35:03.0640 4076 TabletInputService - ok
08:35:03.0671 4076 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
08:35:03.0687 4076 TapiSrv - ok
08:35:03.0718 4076 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
08:35:03.0734 4076 TBS - ok
08:35:03.0843 4076 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
08:35:03.0890 4076 Tcpip - ok
08:35:03.0983 4076 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
08:35:04.0014 4076 TCPIP6 - ok
08:35:04.0058 4076 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
08:35:04.0058 4076 tcpipreg - ok
08:35:04.0088 4076 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
08:35:04.0091 4076 TDPIPE - ok
08:35:04.0116 4076 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
08:35:04.0118 4076 TDTCP - ok
08:35:04.0141 4076 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
08:35:04.0156 4076 tdx - ok
08:35:04.0187 4076 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
08:35:04.0187 4076 TermDD - ok
08:35:04.0219 4076 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
08:35:04.0250 4076 TermService - ok
08:35:04.0265 4076 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
08:35:04.0265 4076 Themes - ok
08:35:04.0281 4076 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
08:35:04.0281 4076 THREADORDER - ok
08:35:04.0297 4076 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
08:35:04.0312 4076 TrkWks - ok
08:35:04.0343 4076 truecrypt (ea43de1743c1ba0d2d17b8db90c91d88) C:\Windows\system32\drivers\truecrypt.sys
08:35:04.0343 4076 truecrypt - ok
08:35:04.0406 4076 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
08:35:04.0406 4076 TrustedInstaller - ok
08:35:04.0453 4076 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
08:35:04.0453 4076 tssecsrv - ok
08:35:04.0484 4076 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
08:35:04.0499 4076 TsUsbFlt - ok
08:35:04.0499 4076 tsusbhub - ok
08:35:04.0546 4076 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
08:35:04.0546 4076 tunnel - ok
08:35:04.0609 4076 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
08:35:04.0624 4076 uagp35 - ok
08:35:04.0655 4076 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
08:35:04.0671 4076 udfs - ok
08:35:04.0718 4076 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
08:35:04.0718 4076 UI0Detect - ok
08:35:04.0749 4076 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
08:35:04.0765 4076 uliagpkx - ok
08:35:04.0780 4076 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
08:35:04.0796 4076 umbus - ok
08:35:04.0827 4076 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
08:35:04.0827 4076 UmPass - ok
08:35:04.0858 4076 UmRdpService (a293dcd756d04d8492a750d03b9a297c) C:\Windows\System32\umrdp.dll
08:35:04.0889 4076 UmRdpService - ok
08:35:04.0921 4076 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
08:35:04.0936 4076 upnphost - ok
08:35:05.0014 4076 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
08:35:05.0014 4076 usbccgp - ok
08:35:05.0061 4076 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
08:35:05.0077 4076 usbcir - ok
08:35:05.0108 4076 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
08:35:05.0123 4076 usbehci - ok
08:35:05.0155 4076 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
08:35:05.0170 4076 usbhub - ok
08:35:05.0201 4076 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\DRIVERS\usbohci.sys
08:35:05.0201 4076 usbohci - ok
08:35:05.0233 4076 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
08:35:05.0233 4076 usbprint - ok
08:35:05.0264 4076 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
08:35:05.0264 4076 usbscan - ok
08:35:05.0311 4076 USBSTOR (d76510cfa0fc09023077f22c2f979d86) C:\Windows\system32\DRIVERS\USBSTOR.SYS
08:35:05.0311 4076 USBSTOR - ok
08:35:05.0342 4076 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
08:35:05.0342 4076 usbuhci - ok
08:35:05.0357 4076 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
08:35:05.0373 4076 UxSms - ok
08:35:05.0404 4076 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
08:35:05.0404 4076 VaultSvc - ok
08:35:05.0451 4076 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
08:35:05.0451 4076 vdrvroot - ok
08:35:05.0498 4076 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
08:35:05.0529 4076 vds - ok
08:35:05.0560 4076 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
08:35:05.0560 4076 vga - ok
08:35:05.0591 4076 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
08:35:05.0591 4076 VgaSave - ok
08:35:05.0607 4076 VGPU - ok
08:35:05.0654 4076 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
08:35:05.0669 4076 vhdmp - ok
08:35:05.0701 4076 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
08:35:05.0701 4076 viaide - ok
08:35:05.0747 4076 vmbus (86ea3e79ae350fea5331a1303054005f) C:\Windows\system32\drivers\vmbus.sys
08:35:05.0747 4076 vmbus - ok
08:35:05.0763 4076 VMBusHID (7de90b48f210d29649380545db45a187) C:\Windows\system32\drivers\VMBusHID.sys
08:35:05.0779 4076 VMBusHID - ok
08:35:05.0825 4076 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
08:35:05.0825 4076 volmgr - ok
08:35:05.0872 4076 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
08:35:05.0888 4076 volmgrx - ok
08:35:05.0950 4076 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
08:35:05.0966 4076 volsnap - ok
08:35:05.0997 4076 VProEventMonitor (8b7454930230db4bc4ba35a467be09aa) C:\Windows\system32\DRIVERS\vproeventmonitor.sys
08:35:05.0997 4076 VProEventMonitor - ok
08:35:06.0044 4076 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
08:35:06.0044 4076 vsmraid - ok
08:35:06.0138 4076 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
08:35:06.0179 4076 VSS - ok
08:35:06.0257 4076 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
08:35:06.0257 4076 vwifibus - ok
08:35:06.0289 4076 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
08:35:06.0304 4076 W32Time - ok
08:35:06.0351 4076 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
08:35:06.0351 4076 WacomPen - ok
08:35:06.0413 4076 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
08:35:06.0413 4076 WANARP - ok
08:35:06.0429 4076 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
08:35:06.0429 4076 Wanarpv6 - ok
08:35:06.0507 4076 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
08:35:06.0554 4076 WatAdminSvc - ok
08:35:06.0616 4076 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
08:35:06.0679 4076 wbengine - ok
08:35:06.0741 4076 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
08:35:06.0757 4076 WbioSrvc - ok
08:35:06.0788 4076 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
08:35:06.0803 4076 wcncsvc - ok
08:35:06.0819 4076 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
08:35:06.0835 4076 WcsPlugInService - ok
08:35:06.0866 4076 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
08:35:06.0866 4076 Wd - ok
08:35:06.0897 4076 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
08:35:06.0944 4076 Wdf01000 - ok
08:35:06.0975 4076 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
08:35:06.0975 4076 WdiServiceHost - ok
08:35:06.0991 4076 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
08:35:06.0991 4076 WdiSystemHost - ok
08:35:07.0037 4076 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
08:35:07.0037 4076 WebClient - ok
08:35:07.0115 4076 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
08:35:07.0125 4076 Wecsvc - ok
08:35:07.0148 4076 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
08:35:07.0164 4076 wercplsupport - ok
08:35:07.0195 4076 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
08:35:07.0195 4076 WerSvc - ok
08:35:07.0226 4076 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
08:35:07.0226 4076 WfpLwf - ok
08:35:07.0273 4076 WimFltr (52ded146e4797e6ccf94799e8e22bb2a) C:\Windows\system32\DRIVERS\wimfltr.sys
08:35:07.0273 4076 WimFltr - ok
08:35:07.0304 4076 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
08:35:07.0304 4076 WIMMount - ok
08:35:07.0335 4076 WinDefend - ok
08:35:07.0351 4076 WinHttpAutoProxySvc - ok
08:35:07.0398 4076 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
08:35:07.0398 4076 Winmgmt - ok
08:35:07.0507 4076 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
08:35:07.0569 4076 WinRM - ok
08:35:07.0663 4076 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
08:35:07.0694 4076 Wlansvc - ok
08:35:07.0756 4076 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
08:35:07.0756 4076 WmiAcpi - ok
08:35:07.0803 4076 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
08:35:07.0803 4076 wmiApSrv - ok
08:35:07.0866 4076 WMPNetworkSvc - ok
08:35:07.0928 4076 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
08:35:07.0928 4076 WPCSvc - ok
08:35:07.0975 4076 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
08:35:07.0975 4076 WPDBusEnum - ok
08:35:08.0022 4076 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
08:35:08.0022 4076 ws2ifsl - ok
08:35:08.0053 4076 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
08:35:08.0068 4076 wscsvc - ok
08:35:08.0068 4076 WSearch - ok
08:35:08.0178 4076 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
08:35:08.0271 4076 wuauserv - ok
08:35:08.0334 4076 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
08:35:08.0349 4076 WudfPf - ok
08:35:08.0380 4076 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
08:35:08.0380 4076 WUDFRd - ok
08:35:08.0427 4076 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
08:35:08.0427 4076 wudfsvc - ok
08:35:08.0474 4076 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
08:35:08.0490 4076 WwanSvc - ok
08:35:08.0521 4076 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
08:35:08.0568 4076 \Device\Harddisk0\DR0 - ok
08:35:08.0568 4076 Boot (0x1200) (8e8602a616bfecd56073d1ec94b81d2e) \Device\Harddisk0\DR0\Partition0
08:35:08.0568 4076 \Device\Harddisk0\DR0\Partition0 - ok
08:35:08.0599 4076 Boot (0x1200) (ee1da53630527777320e4892d09c3bf8) \Device\Harddisk0\DR0\Partition1
08:35:08.0599 4076 \Device\Harddisk0\DR0\Partition1 - ok
08:35:08.0599 4076 ============================================================
08:35:08.0599 4076 Scan finished
08:35:08.0599 4076 ============================================================
08:35:08.0599 3976 Detected object count: 0
08:35:08.0599 3976 Actual detected object count: 0
 
You must log in or register to reply here.
Back
Top