• Registrarse
  • Iniciar sesión


  • Página 1 de 2 12 ÚltimoÚltimo
    Resultados 1 al 10 de 14

    Problema con WIN32/Sirefef

    hola, tengo un problema con el WIN32/Sirefef, no puedo lograr eliminarlo de mi pc, lei un poco y nada me lo ha podido sacar, he probado con estos programas: nod32, spybot y anti-malware , use ...

    1. #1
      Usuario Avatar de zerosn
      Registrado
      sep 2012
      Ubicación
      Argentina
      Mensajes
      8

      Malware Problema con WIN32/Sirefef

      hola, tengo un problema con el WIN32/Sirefef, no puedo lograr eliminarlo de mi pc, lei un poco y nada me lo ha podido sacar, he probado con estos programas:
      nod32, spybot y anti-malware, use el ccleaner para borrar el registro y no hay forma, en modo normal y en modo seguro, siempre vuelve a aparecer.
      les dejo el lo que se inicia con mi pc segun el ccleaner:
      Código:
      Si	HKCU:Run	DAEMON Tools Lite	"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
      Si	HKCU:Run	EPSON Stylus CX5600	C:\Windows\system32\spool\DRIVERS\x64\3\E_IATICAL.EXE /FU "C:\Windows\TEMP\E_S63F8.tmp" /EF "HKCU"
      Si	HKCU:Run	GoogleDriveSync	"C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
      Si	HKCU:Run	Sidebar	C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
      Si	HKCU:Run	uTorrent	"C:\Program Files (x86)\uTorrent\uTorrent.exe"  /MINIMIZED
      Si	HKLM:Run	BCU	"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe"
      Si	HKLM:Run	egui	"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
      Si	HKLM:Run	KMCONFIG	C:\Program Files (x86)\Keyboard Driver\StartAutorun.exe KMConfig.exe
      Si	HKLM:Run	Lycosa	"C:\Program Files (x86)\Razer\Lycosa\razerhid.exe"
      Si	HKLM:Run	NUSB3MON	"C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
      Si	HKLM:Run	RtHDVCpl	C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
      Si	HKLM:Run	SDTray	"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
      Si	HKLM:Run	StartCCC	"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun                                                                                                                                                                                         
      Si	HKLM:Run	XboxStat	"C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe" silentrun

    2. #2
      Usuario Avatar de MsTheKing98
      Registrado
      abr 2012
      Ubicación
      Tepic, México
      Mensajes
      790

      Re: Problema con WIN32/Sirefef

      Hola zerosn,

      Bienvenido al Foro de InfoSpyware.
      Temas de interés:


      Por favor, realiza lo siguiente:

      1. Descarga las siguientes herramientas:


      Manuales de instalación y uso:


      2. Ejecuta las herramientas realizando los siguientes pasos:

      A) TDSSKiller

      • Ejecuta el programa.
      • Haces clic en Change parameters y marcas los siguientes casilleros:

      Serivices and drivers
      Boot sectors


      • En Aditional options marcas los siguiente:

      Verify driver digital signatures
      Detect TDLFS file system


      • Haces clic en Start scan.

      Si la computadora está infectada:

      Malware object (Objetos Maliciosos): La acción predeterminada es "Cure" (Desinfectar) o "Delete" (Eliminar). El programa selecciona de forma automática la acción a tomar.

      Suspicious object (Objetos Sospechosos): la opción por defecto es Skip (saltar), no cambie esta opción si no se le ha indicado.
      • Si el programa te pide reiniciar haces clic en:



      • El reporte queda guardado en la raíz del disco duro (Por lo general es el disco C:) como:
        TDSSKiller.x.xx.x_xx.xx.xxxx_xx.xx.xx_log.txt donde "x.xx.x_xx.xx.xxxx_xx.xx.xx" son versión, fecha y hora.

      B) Malwarebytes

      • Realiza un Análisis completo.
      • Al finalizar el análisis, haces clic en Mostrar los resultados.
      • Marcaras todos los casilleros de lo que Malwarebytes detecte y haces clic en Eliminar seleccionados.
      • Si el programa te pide reiniciar para eliminar las amenazas, lo haces.
      • Se guardara un reporte en la pestaña Registros el cual debes pegar en tu próxima respuesta.

      3. En tu proxima respuesta, pegar los reportes de:

      • TDSSKiller.
      • Malwarebytes.

    3. #3
      Usuario Avatar de zerosn
      Registrado
      sep 2012
      Ubicación
      Argentina
      Mensajes
      8

      Re: Problema con WIN32/Sirefef

      Malwarebytes Anti-Malware

      Código:
      Malwarebytes Anti-Malware (Versión de Prueba) 1.65.0.1400
      www.malwarebytes.org
      
      Versión de la Base de Datos: v2012.09.15.01
      
      Windows 7 Service Pack 1 x64 NTFS
      Internet Explorer 9.0.8112.16421
      Totoy :: TOTOY-POSTA [administrador]
      
      Protección: Habilitado
      
      15/09/2012 03:09:29 a.m.
      mbam-log-2012-09-15 (03-09-29).txt
      
      Tipos de Análisis: Análisis Completo (C:\|D:\|)
      Opciones de análisis activado: Memoria | Inicio | Registro | Sistema de archivos | Heurística/Extra | Heurística/Shuriken | PUP | PUM
      Opciones de análisis desactivados: P2P
      Objetos examinados: 519547
      Tiempo transcurrido: 50 minuto(s), 22 segundo(s)
      
      Procesos en Memoria Detectados: 0
      (No se han detectado elementos maliciosos)
      
      Módulos de Memoria Detectados: 0
      (No se han detectado elementos maliciosos)
      
      Claves del Registro Detectados: 22
      HKCR\AppID\{0D82ACD6-A652-4496-A298-2BDE705F4227} (Adware.ClickPotato) -> En cuarentena y eliminado con éxito.
      HKCR\AppID\{A89256AD-EC17-4a83-BEF5-4B8BC4F39306} (Adware.ClickPotato) -> En cuarentena y eliminado con éxito.
      HKCR\CLSID\{100EB1FD-D03E-47fd-81F3-EE91287F9465} (Adware.ShopperReports) -> En cuarentena y eliminado con éxito.
      HKCR\ShopperReports.RprtCtrl.1 (Adware.ShopperReports) -> En cuarentena y eliminado con éxito.
      HKCR\ShopperReports.RprtCtrl (Adware.ShopperReports) -> En cuarentena y eliminado con éxito.
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{100EB1FD-D03E-47FD-81F3-EE91287F9465} (Adware.ShopperReports) -> En cuarentena y eliminado con éxito.
      HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{100EB1FD-D03E-47FD-81F3-EE91287F9465} (Adware.ShopperReports) -> En cuarentena y eliminado con éxito.
      HKCU\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{A7CDDCDC-BEEB-4685-A062-978F5E07CEEE} (Adware.ShopperReports) -> En cuarentena y eliminado con éxito.
      HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{4B8C28A7-A9BC-45F8-990D-21499EED643C} (Adware.QuestScan) -> En cuarentena y eliminado con éxito.
      HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{C5428486-50A0-4a02-9D20-520B59A9F9B2} (Adware.ShopperReports) -> En cuarentena y eliminado con éxito.
      HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{C5428486-50A0-4a02-9D20-520B59A9F9B3} (Adware.ShopperReports) -> En cuarentena y eliminado con éxito.
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{89F88394-3828-4d03-A0CF-8203604C3DA6} (Adware.Hotbar) -> En cuarentena y eliminado con éxito.
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B58926D6-CFB0-45D2-9C28-4B5A0F0368AE} (Adware.ClickPotato) -> En cuarentena y eliminado con éxito.
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D4233F04-1789-483c-A137-731E8F113DD5} (Adware.Hotbar) -> En cuarentena y eliminado con éxito.
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MiNODLogin (Riskware.KG) -> En cuarentena y eliminado con éxito.
      HKCR\AppID\CmndFF.DLL (Adware.ClickPotato) -> En cuarentena y eliminado con éxito.
      HKCR\AppID\Pltfrm.DLL (Adware.ClickPotato) -> En cuarentena y eliminado con éxito.
      HKCU\SOFTWARE\ShopperReports3 (Adware.ShopperReports) -> En cuarentena y eliminado con éxito.
      HKCU\Software\clickpotatolitesa (Adware.ClickPotato) -> En cuarentena y eliminado con éxito.
      HKLM\SOFTWARE\ClickPotatoLite (Adware.ClickPotato) -> En cuarentena y eliminado con éxito.
      HKLM\SOFTWARE\ShopperReports3 (Adware.ShopperReports) -> En cuarentena y eliminado con éxito.
      HKLM\SOFTWARE\QUESTSCAN (Adware.QuestScan) -> En cuarentena y eliminado con éxito.
      
      Valores del Registro Detectados: 5
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform|ShopperReports 3.2.11.0 (Adware.HotBar) -> datos:  -> En cuarentena y eliminado con éxito.
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform|SRS_IT_E8790972B1765B5234AC91 (Malware.Trace) -> datos:  -> En cuarentena y eliminado con éxito.
      HKLM\SOFTWARE\Mozilla\Firefox\[email protected] (Adware.ClickPotato) -> datos: C:\Program Files (x86)\ClickPotatoLite\bin\11.0.19.0\firefox\extensions -> En cuarentena y eliminado con éxito.
      HKLM\SOFTWARE\Mozilla\Firefox\[email protected] (ShopperReports) -> datos: C:\Program Files (x86)\ShopperReports3\bin\3.2.11.0\firefox\firefoxtoolbar\extensions -> En cuarentena y eliminado con éxito.
      HKLM\SOFTWARE\QuestScan|DllPath (Adware.QuestScan) -> datos: C:\Program Files (x86)\QuestScan\questscan.dll -> En cuarentena y eliminado con éxito.
      
      Elementos de Datos del Registro Detectados: 0
      (No se han detectado elementos maliciosos)
      
      Carpetas Detectadas: 20
      C:\ProgramData\2ACA5CC3-0F83-453D-A079-1076FE1A8B65 (Adware.Seekmo) -> En cuarentena y eliminado con éxito.
      C:\ProgramData\ClickPotatoLiteSA (Adware.ClickPotato) -> En cuarentena y eliminado con éxito.
      C:\Users\Totoy\AppData\Roaming\ShopperReports3 (Adware.ShopperReports) -> En cuarentena y eliminado con éxito.
      C:\Program Files (x86)\ClickPotatoLite (Adware.ClickPotato) -> En cuarentena y eliminado con éxito.
      C:\Program Files (x86)\ClickPotatoLite\bin (Adware.ClickPotato) -> En cuarentena y eliminado con éxito.
      C:\Program Files (x86)\ClickPotatoLite\bin\11.0.19.0 (Adware.ClickPotato) -> En cuarentena y eliminado con éxito.
      C:\Program Files (x86)\ClickPotatoLite\bin\11.0.19.0\firefox (Adware.ClickPotato) -> En cuarentena y eliminado con éxito.
      C:\Program Files (x86)\ClickPotatoLite\bin\11.0.19.0\firefox\extensions (Adware.ClickPotato) -> En cuarentena y eliminado con éxito.
      C:\Program Files (x86)\ClickPotatoLite\bin\11.0.19.0\firefox\extensions\plugins (Adware.ClickPotato) -> En cuarentena y eliminado con éxito.
      C:\Program Files (x86)\ShopperReports3 (Adware.ShopperReports) -> En cuarentena y eliminado con éxito.
      C:\Program Files (x86)\ShopperReports3\bin (Adware.ShopperReports) -> En cuarentena y eliminado con éxito.
      C:\Program Files (x86)\ShopperReports3\bin\3.2.11.0 (Adware.ShopperReports) -> En cuarentena y eliminado con éxito.
      C:\Program Files (x86)\ShopperReports3\bin\3.2.11.0\firefox (Adware.ShopperReports) -> En cuarentena y eliminado con éxito.
      C:\Program Files (x86)\ShopperReports3\bin\3.2.11.0\firefox\firefoxtoolbar (Adware.ShopperReports) -> En cuarentena y eliminado con éxito.
      C:\Program Files (x86)\ShopperReports3\bin\3.2.11.0\firefox\firefoxtoolbar\extensions (Adware.ShopperReports) -> En cuarentena y eliminado con éxito.
      C:\Program Files (x86)\ShopperReports3\bin\3.2.11.0\firefox\firefoxtoolbar\extensions\chrome (Adware.ShopperReports) -> En cuarentena y eliminado con éxito.
      C:\Program Files (x86)\ShopperReports3\bin\3.2.11.0\firefox\firefoxtoolbar\extensions\chrome\content (Adware.ShopperReports) -> En cuarentena y eliminado con éxito.
      C:\Program Files (x86)\ShopperReports3\bin\3.2.11.0\firefox\firefoxtoolbar\extensions\components (Adware.ShopperReports) -> En cuarentena y eliminado con éxito.
      C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ClickPotato (Adware.ClickPotato) -> En cuarentena y eliminado con éxito.
      C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ShopperReports (Adware.ShopperReports) -> En cuarentena y eliminado con éxito.
      
      Archivos Detectados: 37
      C:\Users\Totoy\Downloads\activar win 7\Che09.exe (Hacktool.ChewWGA) -> No se tomaron medidas.
      C:\Users\Totoy\Downloads\activar win 7\R225.exe (HackTool.Wpakill) -> No se tomaron medidas.
      C:\Program Files (x86)\Alcohol Soft\Alcohol 120\Crack.exe (Backdoor.Bot) -> En cuarentena y eliminado con éxito.
      C:\Program Files (x86)\Alcohol Soft\Alcohol 120\Langs\AX_RU.dll (Malware.Packer.GenX) -> En cuarentena y eliminado con éxito.
      C:\Program Files (x86)\ClickPotatoLite\bin\11.0.19.0\firefox\extensions\plugins\npclntax_ClickPotatoLiteSA.dll (Adware.ClickPotato) -> En cuarentena y eliminado con éxito.
      C:\Program Files (x86)\ESET\MiNODLogin\MiNODLoginUninst.exe (Riskware.KG) -> En cuarentena y eliminado con éxito.
      C:\Program Files (x86)\Mozilla Firefox\Plugins\npclntax_ClickPotatoLiteSA.dll (Adware.ClickPotato) -> En cuarentena y eliminado con éxito.
      C:\Users\Totoy\Downloads\TuneUp Utilities 2012 Upload By Erick_Merlos\TuneUp Utilities 2012 Upload By Erick_Merlos\Keygen.exe (Malware.Packer) -> En cuarentena y eliminado con éxito.
      C:\Windows\assembly\GAC_32\Desktop.ini (Trojan.0access) -> Se eliminarán al reiniciar.
      C:\Windows\assembly\GAC_64\Desktop.ini (Rootkit.0access) -> Se eliminarán al reiniciar.
      C:\Windows\Installer\{1844a52c-c693-908a-b5bd-cc9ca7496d27}\L\00000008.@ (Trojan.BitMiner) -> En cuarentena y eliminado con éxito.
      C:\Windows\Installer\{1844a52c-c693-908a-b5bd-cc9ca7496d27}\U\00000008.@ (Trojan.Dropper.BCMiner) -> En cuarentena y eliminado con éxito.
      C:\Windows\Installer\{1844a52c-c693-908a-b5bd-cc9ca7496d27}\U\000000cb.@ (Rootkit.0Access) -> En cuarentena y eliminado con éxito.
      C:\Windows\Installer\{1844a52c-c693-908a-b5bd-cc9ca7496d27}\U\80000000.@ (Rootkit.0Access.64) -> En cuarentena y eliminado con éxito.
      C:\Windows\Temp\yt\GetFiles\badfiles\desktop.ini.1 (Trojan.0access) -> En cuarentena y eliminado con éxito.
      D:\Backup\Descargas\Alcohol 120% v1.9.8.7117 FULL\Crack.exe (Backdoor.Bot) -> En cuarentena y eliminado con éxito.
      D:\Juegos\FABLE3.ALI213\ÓÎÏÀÍøNETSHOW.exe (Trojan.Agent) -> En cuarentena y eliminado con éxito.
      C:\ProgramData\ClickPotatoLiteSA\ClickPotatoLiteSA.dat (Adware.ClickPotato) -> En cuarentena y eliminado con éxito.
      C:\ProgramData\ClickPotatoLiteSA\ClickPotatoLiteSAAbout.mht (Adware.ClickPotato) -> En cuarentena y eliminado con éxito.
      C:\ProgramData\ClickPotatoLiteSA\ClickPotatoLiteSAau.dat (Adware.ClickPotato) -> En cuarentena y eliminado con éxito.
      C:\ProgramData\ClickPotatoLiteSA\ClickPotatoLiteSAEULA.mht (Adware.ClickPotato) -> En cuarentena y eliminado con éxito.
      C:\ProgramData\ClickPotatoLiteSA\ClickPotatoLiteSA_kyf_update.dat (Adware.ClickPotato) -> En cuarentena y eliminado con éxito.
      C:\Program Files (x86)\ClickPotatoLite\bin\11.0.19.0\copyright.txt (Adware.ClickPotato) -> En cuarentena y eliminado con éxito.
      C:\Program Files (x86)\ClickPotatoLite\bin\11.0.19.0\firefox\extensions\install.rdf (Adware.ClickPotato) -> En cuarentena y eliminado con éxito.
      C:\Program Files (x86)\ShopperReports3\bin\3.2.11.0\link.ico (Adware.ShopperReports) -> En cuarentena y eliminado con éxito.
      C:\Program Files (x86)\ShopperReports3\bin\3.2.11.0\firefox\firefoxtoolbar\extensions\chrome.manifest (Adware.ShopperReports) -> En cuarentena y eliminado con éxito.
      C:\Program Files (x86)\ShopperReports3\bin\3.2.11.0\firefox\firefoxtoolbar\extensions\install.rdf (Adware.ShopperReports) -> En cuarentena y eliminado con éxito.
      C:\Program Files (x86)\ShopperReports3\bin\3.2.11.0\firefox\firefoxtoolbar\extensions\chrome\content\infopane.js (Adware.ShopperReports) -> En cuarentena y eliminado con éxito.
      C:\Program Files (x86)\ShopperReports3\bin\3.2.11.0\firefox\firefoxtoolbar\extensions\chrome\content\InfoPane.xul (Adware.ShopperReports) -> En cuarentena y eliminado con éxito.
      C:\Program Files (x86)\ShopperReports3\bin\3.2.11.0\firefox\firefoxtoolbar\extensions\components\BrowserExtensionFF.dll (Adware.ShopperReports) -> En cuarentena y eliminado con éxito.
      C:\Program Files (x86)\ShopperReports3\bin\3.2.11.0\firefox\firefoxtoolbar\extensions\components\BrowserExtensionFF.xpt (Adware.ShopperReports) -> En cuarentena y eliminado con éxito.
      C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ClickPotato\About Us.lnk (Adware.ClickPotato) -> En cuarentena y eliminado con éxito.
      C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ClickPotato\ClickPotato Customer Support.lnk (Adware.ClickPotato) -> En cuarentena y eliminado con éxito.
      C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ClickPotato\ClickPotato Uninstall Instructions.lnk (Adware.ClickPotato) -> En cuarentena y eliminado con éxito.
      C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ShopperReports\About Us.lnk (Adware.ShopperReports) -> En cuarentena y eliminado con éxito.
      C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ShopperReports\Customer Support.lnk (Adware.ShopperReports) -> En cuarentena y eliminado con éxito.
      C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ShopperReports\ShopperReports Uninstall Instructions.lnk (Adware.ShopperReports) -> En cuarentena y eliminado con éxito.
      
      fin)
      El otro reporte es muy largo para pegarlo todo junto

    4. #4
      Usuario Avatar de zerosn
      Registrado
      sep 2012
      Ubicación
      Argentina
      Mensajes
      8

      Re: Problema con WIN32/Sirefef

      Reporte TDSSKiller parte 1
      Código:
      23:06:48.0205 4588  TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
      23:06:48.0802 4588  ============================================================
      23:06:48.0802 4588  Current date / time: 2012/09/20 23:06:48.0802
      23:06:48.0802 4588  SystemInfo:
      23:06:48.0802 4588  
      23:06:48.0802 4588  OS Version: 6.1.7601 ServicePack: 1.0
      23:06:48.0802 4588  Product type: Workstation
      23:06:48.0802 4588  ComputerName: TOTOY-POSTA
      23:06:48.0803 4588  UserName: Totoy
      23:06:48.0803 4588  Windows directory: C:\Windows
      23:06:48.0803 4588  System windows directory: C:\Windows
      23:06:48.0803 4588  Running under WOW64
      23:06:48.0803 4588  Processor architecture: Intel x64
      23:06:48.0803 4588  Number of processors: 6
      23:06:48.0803 4588  Page size: 0x1000
      23:06:48.0803 4588  Boot type: Normal boot
      23:06:48.0803 4588  ============================================================
      23:06:49.0627 4588  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
      23:06:49.0667 4588  Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xFC59, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
      23:06:49.0701 4588  ============================================================
      23:06:49.0701 4588  \Device\Harddisk0\DR0:
      23:06:49.0701 4588  MBR partitions:
      23:06:49.0701 4588  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705800
      23:06:49.0701 4588  \Device\Harddisk1\DR1:
      23:06:49.0701 4588  MBR partitions:
      23:06:49.0701 4588  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
      23:06:49.0701 4588  \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x3A353030
      23:06:49.0701 4588  ============================================================
      23:06:49.0723 4588  C: <-> \Device\Harddisk1\DR1\Partition2
      23:06:49.0752 4588  D: <-> \Device\Harddisk0\DR0\Partition1
      23:06:49.0752 4588  ============================================================
      23:06:49.0752 4588  Initialize success
      23:06:49.0752 4588  ============================================================
      23:06:55.0604 3712  ============================================================
      23:06:55.0604 3712  Scan started
      23:06:55.0604 3712  Mode: Manual; 
      23:06:55.0604 3712  ============================================================
      23:06:56.0238 3712  ================ Scan system memory ========================
      23:06:56.0238 3712  System memory - ok
      23:06:56.0239 3712  ================ Scan services =============================
      23:06:56.0346 3712  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
      23:06:56.0349 3712  1394ohci - ok
      23:06:56.0427 3712  [ 656F06850D02BAED19F0E2E72B047CE2 ] ABBYY.Licensing.FineReader.Professional.11.0 C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe
      23:06:56.0432 3712  ABBYY.Licensing.FineReader.Professional.11.0 - ok
      23:06:56.0469 3712  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
      23:06:56.0473 3712  ACPI - ok
      23:06:56.0488 3712  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
      23:06:56.0489 3712  AcpiPmi - ok
      23:06:56.0538 3712  [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
      23:06:56.0538 3712  AdobeARMservice - ok
      23:06:56.0660 3712  [ B2B64AF436FACCFA854DD397027C5360 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
      23:06:56.0661 3712  AdobeFlashPlayerUpdateSvc - ok
      23:06:56.0698 3712  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
      23:06:56.0703 3712  adp94xx - ok
      23:06:56.0763 3712  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
      23:06:56.0767 3712  adpahci - ok
      23:06:56.0783 3712  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
      23:06:56.0785 3712  adpu320 - ok
      23:06:56.0819 3712  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
      23:06:56.0820 3712  AeLookupSvc - ok
      23:06:56.0870 3712  [ 0D0E5281784C2C526BA43C2ECD374288 ] Afc             C:\Windows\syswow64\drivers\Afc.sys
      23:06:56.0870 3712  Afc - ok
      23:06:56.0908 3712  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
      23:06:56.0913 3712  AFD - ok
      23:06:56.0940 3712  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
      23:06:56.0941 3712  agp440 - ok
      23:06:56.0957 3712  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
      23:06:56.0958 3712  ALG - ok
      23:06:56.0973 3712  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
      23:06:56.0974 3712  aliide - ok
      23:06:57.0003 3712  [ 0642A7B1C4B119AE2AAF1AA61CF69668 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
      23:06:57.0005 3712  AMD External Events Utility - ok
      23:06:57.0009 3712  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
      23:06:57.0009 3712  amdide - ok
      23:06:57.0030 3712  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
      23:06:57.0031 3712  AmdK8 - ok
      23:06:57.0134 3712  [ C6C0F73A038FF38EBBD9C16F79F8D3E3 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
      23:06:57.0199 3712  amdkmdag - ok
      23:06:57.0235 3712  [ 4647D713CFF04FAE4F862B3144725BC1 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
      23:06:57.0236 3712  amdkmdap - ok
      23:06:57.0247 3712  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
      23:06:57.0248 3712  AmdPPM - ok
      23:06:57.0269 3712  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
      23:06:57.0271 3712  amdsata - ok
      23:06:57.0305 3712  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
      23:06:57.0308 3712  amdsbs - ok
      23:06:57.0321 3712  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
      23:06:57.0321 3712  amdxata - ok
      23:06:57.0393 3712  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
      23:06:57.0395 3712  AppID - ok
      23:06:57.0422 3712  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
      23:06:57.0422 3712  AppIDSvc - ok
      23:06:57.0467 3712  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo         C:\Windows\System32\appinfo.dll
      23:06:57.0468 3712  Appinfo - ok
      23:06:57.0507 3712  [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt         C:\Windows\System32\appmgmts.dll
      23:06:57.0509 3712  AppMgmt - ok
      23:06:57.0523 3712  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
      23:06:57.0524 3712  arc - ok
      23:06:57.0536 3712  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
      23:06:57.0537 3712  arcsas - ok
      23:06:57.0626 3712  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
      23:06:57.0630 3712  aspnet_state - ok
      23:06:57.0651 3712  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
      23:06:57.0651 3712  AsyncMac - ok
      23:06:57.0656 3712  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
      23:06:57.0656 3712  atapi - ok
      23:06:57.0736 3712  [ FC0E8778C000291CAF60EB88C011E931 ] atksgt          C:\Windows\system32\DRIVERS\atksgt.sys
      23:06:57.0738 3712  atksgt - ok
      23:06:57.0771 3712  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
      23:06:57.0778 3712  AudioEndpointBuilder - ok
      23:06:57.0787 3712  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
      23:06:57.0790 3712  AudioSrv - ok
      23:06:57.0824 3712  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
      23:06:57.0825 3712  AxInstSV - ok
      23:06:57.0855 3712  [ 33722AB7981C17BD8E8C9C47CFF82B99 ] AxisCameraStation C:\Program Files (x86)\Axis Communications\AXIS Camera Station\AcsService.exe
      23:06:57.0855 3712  AxisCameraStation - ok
      23:06:57.0898 3712  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
      23:06:57.0903 3712  b06bdrv - ok
      23:06:57.0939 3712  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
      23:06:57.0942 3712  b57nd60a - ok
      23:06:57.0994 3712  [ F29D375926E36E3A56AF4805C7749302 ] BCUService      C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe
      23:06:57.0995 3712  BCUService - ok
      23:06:58.0024 3712  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
      23:06:58.0025 3712  BDESVC - ok
      23:06:58.0045 3712  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
      23:06:58.0046 3712  Beep - ok
      23:06:58.0086 3712  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
      23:06:58.0093 3712  BFE - ok
      23:06:58.0132 3712  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
      23:06:58.0141 3712  BITS - ok
      23:06:58.0166 3712  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
      23:06:58.0167 3712  blbdrive - ok
      23:06:58.0209 3712  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
      23:06:58.0210 3712  bowser - ok
      23:06:58.0225 3712  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
      23:06:58.0225 3712  BrFiltLo - ok
      23:06:58.0234 3712  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
      23:06:58.0235 3712  BrFiltUp - ok
      23:06:58.0248 3712  [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
      23:06:58.0250 3712  BridgeMP - ok
      23:06:58.0277 3712  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
      23:06:58.0278 3712  Browser - ok
      23:06:58.0310 3712  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
      23:06:58.0314 3712  Brserid - ok
      23:06:58.0373 3712  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
      23:06:58.0411 3712  BrSerWdm - ok
      23:06:58.0447 3712  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
      23:06:58.0448 3712  BrUsbMdm - ok
      23:06:58.0459 3712  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
      23:06:58.0460 3712  BrUsbSer - ok
      23:06:58.0475 3712  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
      23:06:58.0476 3712  BTHMODEM - ok
      23:06:58.0504 3712  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
      23:06:58.0505 3712  bthserv - ok
      23:06:58.0516 3712  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
      23:06:58.0517 3712  cdfs - ok
      23:06:58.0542 3712  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
      23:06:58.0544 3712  cdrom - ok
      23:06:58.0587 3712  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
      23:06:58.0588 3712  CertPropSvc - ok
      23:06:58.0614 3712  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
      23:06:58.0616 3712  circlass - ok
      23:06:58.0637 3712  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
      23:06:58.0641 3712  CLFS - ok
      23:06:58.0701 3712  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
      23:06:58.0702 3712  clr_optimization_v2.0.50727_32 - ok
      23:06:58.0763 3712  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
      23:06:58.0765 3712  clr_optimization_v2.0.50727_64 - ok
      23:06:58.0834 3712  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
      23:06:58.0836 3712  clr_optimization_v4.0.30319_32 - ok
      23:06:58.0885 3712  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
      23:06:58.0886 3712  clr_optimization_v4.0.30319_64 - ok
      23:06:58.0910 3712  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
      23:06:58.0911 3712  CmBatt - ok
      23:06:58.0927 3712  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
      23:06:58.0928 3712  cmdide - ok
      23:06:58.0958 3712  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
      23:06:58.0963 3712  CNG - ok
      23:06:58.0980 3712  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
      23:06:58.0981 3712  Compbatt - ok
      23:06:59.0011 3712  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
      23:06:59.0012 3712  CompositeBus - ok
      23:06:59.0016 3712  COMSysApp - ok
      23:06:59.0028 3712  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
      23:06:59.0028 3712  crcdisk - ok
      23:06:59.0068 3712  [ 4F5414602E2544A4554D95517948B705 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
      23:06:59.0069 3712  CryptSvc - ok
      23:06:59.0104 3712  [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC             C:\Windows\system32\drivers\csc.sys
      23:06:59.0109 3712  CSC - ok
      23:06:59.0136 3712  [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService      C:\Windows\System32\cscsvc.dll
      23:06:59.0144 3712  CscService - ok
      23:06:59.0174 3712  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
      23:06:59.0180 3712  DcomLaunch - ok
      23:06:59.0207 3712  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
      23:06:59.0210 3712  defragsvc - ok
      23:06:59.0226 3712  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
      23:06:59.0228 3712  DfsC - ok
      23:06:59.0263 3712  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
      23:06:59.0266 3712  Dhcp - ok
      23:06:59.0275 3712  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
      23:06:59.0276 3712  discache - ok
      23:06:59.0293 3712  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
      23:06:59.0294 3712  Disk - ok
      23:06:59.0319 3712  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
      23:06:59.0320 3712  Dnscache - ok
      23:06:59.0354 3712  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
      23:06:59.0357 3712  dot3svc - ok
      23:06:59.0388 3712  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
      23:06:59.0390 3712  DPS - ok
      23:06:59.0432 3712  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
      23:06:59.0433 3712  drmkaud - ok
      23:06:59.0469 3712  [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01     C:\Windows\system32\DRIVERS\dtsoftbus01.sys
      23:06:59.0471 3712  dtsoftbus01 - ok
      23:06:59.0512 3712  [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
      23:06:59.0517 3712  DXGKrnl - ok
      23:06:59.0549 3712  [ 13533557D01B88C83110D5CF749F14D7 ] eamonm          C:\Windows\system32\DRIVERS\eamonm.sys
      23:06:59.0550 3712  eamonm - ok
      23:06:59.0575 3712  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
      23:06:59.0577 3712  EapHost - ok
      23:06:59.0653 3712  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
      23:06:59.0685 3712  ebdrv - ok
      23:06:59.0724 3712  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
      23:06:59.0726 3712  EFS - ok
      23:06:59.0752 3712  [ E097728129E7B79BF1089D7AEF42332B ] ehdrv           C:\Windows\system32\DRIVERS\ehdrv.sys
      23:06:59.0753 3712  ehdrv - ok
      23:06:59.0789 3712  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
      23:06:59.0797 3712  ehRecvr - ok
      23:06:59.0824 3712  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
      23:06:59.0826 3712  ehSched - ok
      23:06:59.0910 3712  [ CB143DCD8864442CFCF37629002766E3 ] ekrn            C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
      23:06:59.0915 3712  ekrn - ok
      23:06:59.0961 3712  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
      23:06:59.0967 3712  elxstor - ok
      23:06:59.0996 3712  [ 2380976CF8A4A56611F35633ACD2A74F ] epfwwfpr        C:\Windows\system32\DRIVERS\epfwwfpr.sys
      23:06:59.0997 3712  epfwwfpr - ok
      23:07:00.0070 3712  [ 1E345F2A2D95DA3190596E691CDE9342 ] EPSON_PM_RPCV4_01 C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
      23:07:00.0072 3712  EPSON_PM_RPCV4_01 - ok
      23:07:00.0101 3712  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
      23:07:00.0102 3712  ErrDev - ok
      23:07:00.0138 3712  [ B8FA96995726D1FA58476E352C02AD82 ] ES lite Service C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
      23:07:00.0139 3712  ES lite Service - ok
      23:07:00.0187 3712  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
      23:07:00.0192 3712  EventSystem - ok
      23:07:00.0212 3712  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
      23:07:00.0214 3712  exfat - ok
      23:07:00.0246 3712  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
      23:07:00.0249 3712  fastfat - ok
      23:07:00.0283 3712  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
      23:07:00.0290 3712  Fax - ok
      23:07:00.0300 3712  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
      23:07:00.0301 3712  fdc - ok
      23:07:00.0322 3712  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
      23:07:00.0323 3712  fdPHost - ok
      23:07:00.0334 3712  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
      23:07:00.0335 3712  FDResPub - ok
      23:07:00.0342 3712  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
      23:07:00.0342 3712  FileInfo - ok
      23:07:00.0355 3712  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
      23:07:00.0356 3712  Filetrace - ok
      23:07:00.0364 3712  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
      23:07:00.0365 3712  flpydisk - ok
      23:07:00.0397 3712  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
      23:07:00.0401 3712  FltMgr - ok
      23:07:00.0442 3712  [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache       C:\Windows\system32\FntCache.dll
      23:07:00.0454 3712  FontCache - ok
      23:07:00.0497 3712  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
      23:07:00.0497 3712  FontCache3.0.0.0 - ok
      23:07:00.0513 3712  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
      23:07:00.0514 3712  FsDepends - ok
      23:07:00.0530 3712  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
      23:07:00.0531 3712  Fs_Rec - ok
      23:07:00.0552 3712  [ 1F7B25B858FA27015169FE95E54108ED ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
      23:07:00.0554 3712  fvevol - ok
      23:07:00.0581 3712  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
      23:07:00.0583 3712  gagp30kx - ok
      23:07:00.0609 3712  [ 7907E14F9BCF3A4689C9A74A1A873CB6 ] gdrv            C:\Windows\gdrv.sys
      23:07:00.0610 3712  gdrv - ok
      23:07:00.0658 3712  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
      23:07:00.0667 3712  gpsvc - ok
      23:07:00.0762 3712  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      23:07:00.0763 3712  gupdate - ok
      23:07:00.0767 3712  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      23:07:00.0768 3712  gupdatem - ok
      23:07:00.0796 3712  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
      23:07:00.0797 3712  hcw85cir - ok
      23:07:00.0827 3712  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
      23:07:00.0831 3712  HdAudAddService - ok
      23:07:00.0848 3712  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
      23:07:00.0849 3712  HDAudBus - ok
      23:07:00.0865 3712  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
      23:07:00.0866 3712  HidBatt - ok
      23:07:00.0881 3712  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
      23:07:00.0883 3712  HidBth - ok
      23:07:00.0899 3712  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
      23:07:00.0900 3712  HidIr - ok
      23:07:00.0928 3712  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\System32\hidserv.dll
      23:07:00.0930 3712  hidserv - ok
      23:07:00.0963 3712  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
      23:07:00.0964 3712  HidUsb - ok
      23:07:00.0994 3712  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
      23:07:00.0996 3712  hkmsvc - ok
      23:07:01.0026 3712  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
      23:07:01.0029 3712  HomeGroupListener - ok
      23:07:01.0057 3712  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
      23:07:01.0059 3712  HomeGroupProvider - ok
      23:07:01.0072 3712  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
      23:07:01.0073 3712  HpSAMD - ok
      23:07:01.0116 3712  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
      23:07:01.0123 3712  HTTP - ok
      23:07:01.0154 3712  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
      23:07:01.0155 3712  hwpolicy - ok
      23:07:01.0162 3712  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
      23:07:01.0163 3712  i8042prt - ok
      23:07:01.0203 3712  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
      23:07:01.0207 3712  iaStorV - ok
      23:07:01.0248 3712  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
      23:07:01.0256 3712  idsvc - ok
      23:07:01.0273 3712  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
      23:07:01.0274 3712  iirsp - ok
      23:07:01.0309 3712  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
      23:07:01.0318 3712  IKEEXT - ok
      23:07:01.0381 3712  [ E76FDFFF07F8A2FA81FF250DDA0F6BBA ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
      23:07:01.0392 3712  IntcAzAudAddService - ok
      23:07:01.0409 3712  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
      23:07:01.0410 3712  intelide - ok
      23:07:01.0448 3712  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
      23:07:01.0449 3712  intelppm - ok
      23:07:01.0476 3712  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
      23:07:01.0478 3712  IPBusEnum - ok
      23:07:01.0505 3712  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
      23:07:01.0506 3712  IpFilterDriver - ok
      23:07:01.0527 3712  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
      23:07:01.0529 3712  IPMIDRV - ok
      23:07:01.0538 3712  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
      23:07:01.0540 3712  IPNAT - ok
      23:07:01.0559 3712  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
      23:07:01.0560 3712  IRENUM - ok
      23:07:01.0582 3712  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
      23:07:01.0583 3712  isapnp - ok
      23:07:01.0596 3712  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
      23:07:01.0599 3712  iScsiPrt - ok
      23:07:01.0614 3712  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
      23:07:01.0614 3712  kbdclass - ok
      23:07:01.0641 3712  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
      23:07:01.0642 3712  kbdhid - ok
      23:07:01.0684 3712  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
      23:07:01.0685 3712  KeyIso - ok
      23:07:01.0730 3712  [ 144D7E14011401FA7CBC11DECC4C4A5F ] KMWDFILTER      C:\Windows\system32\DRIVERS\KMWDFILTER.sys
      23:07:01.0731 3712  KMWDFILTER - ok
      23:07:01.0752 3712  [ 3D6CB0DB6FE125F622C02DC0249DDE9F ] KMWDSERVICE     C:\Program Files (x86)\Keyboard Driver\KMWDSrv.exe
      23:07:01.0754 3712  KMWDSERVICE - ok
      23:07:01.0773 3712  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
      23:07:01.0774 3712  KSecDD - ok
      23:07:01.0793 3712  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
      23:07:01.0795 3712  KSecPkg - ok
      23:07:01.0803 3712  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
      23:07:01.0804 3712  ksthunk - ok
      23:07:01.0847 3712  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
      23:07:01.0852 3712  KtmRm - ok
      23:07:01.0907 3712  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\System32\srvsvc.dll
      23:07:01.0910 3712  LanmanServer - ok
      23:07:01.0943 3712  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
      23:07:01.0945 3712  LanmanWorkstation - ok
      23:07:01.0999 3712  [ 87D6731F70D017590E12735ECC746CDE ] LGDDCDevice     C:\Program Files (x86)\LG Soft India\forteManager\bin\I2CDriver.sys
      23:07:02.0000 3712  LGDDCDevice - ok
      23:07:02.0044 3712  [ 089010666D9EA3BD17AFEDE301950B09 ] LGII2CDevice    C:\Program Files (x86)\LG Soft India\forteManager\bin\PII2CDriver.sys
      23:07:02.0045 3712  LGII2CDevice - ok
      23:07:02.0087 3712  [ 156AB2E56DC3CA0B582E3362E07CDED7 ] lirsgt          C:\Windows\system32\DRIVERS\lirsgt.sys
      23:07:02.0087 3712  lirsgt - ok
      23:07:02.0108 3712  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
      23:07:02.0109 3712  lltdio - ok
      23:07:02.0145 3712  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
      23:07:02.0149 3712  lltdsvc - ok
      23:07:02.0159 3712  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
      23:07:02.0161 3712  lmhosts - ok
      23:07:02.0187 3712  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
      23:07:02.0189 3712  LSI_FC - ok
      23:07:02.0204 3712  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
      23:07:02.0206 3712  LSI_SAS - ok
      23:07:02.0215 3712  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
      23:07:02.0216 3712  LSI_SAS2 - ok
      23:07:02.0225 3712  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
      23:07:02.0227 3712  LSI_SCSI - ok
      23:07:02.0266 3712  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
      23:07:02.0267 3712  luafv - ok
      23:07:02.0292 3712  [ B9FC4CCE5758B816F27DD4D1EED11841 ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
      23:07:02.0292 3712  MBAMProtector - ok
      23:07:02.0341 3712  [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
      23:07:02.0345 3712  MBAMScheduler - ok
      23:07:02.0363 3712  [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
      23:07:02.0369 3712  MBAMService - ok
      23:07:02.0399 3712  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
      23:07:02.0401 3712  Mcx2Svc - ok
      23:07:02.0410 3712  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
      23:07:02.0411 3712  megasas - ok
      23:07:02.0426 3712  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
      23:07:02.0429 3712  MegaSR - ok
      23:07:02.0468 3712  [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
      23:07:02.0470 3712  Microsoft Office Groove Audit Service - ok
      23:07:02.0496 3712  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
      23:07:02.0497 3712  MMCSS - ok
      23:07:02.0509 3712  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
      23:07:02.0510 3712  Modem - ok
      23:07:02.0523 3712  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
      23:07:02.0524 3712  monitor - ok
      23:07:02.0561 3712  [ D69F1E9A944A5F46A494AF901ED41118 ] motandroidusb   C:\Windows\system32\Drivers\motoandroid.sys
      23:07:02.0562 3712  motandroidusb - ok
      23:07:02.0586 3712  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\drivers\mouclass.sys
      23:07:02.0587 3712  mouclass - ok
      23:07:02.0611 3712  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
      23:07:02.0612 3712  mouhid - ok
      23:07:02.0647 3712  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
      23:07:02.0648 3712  mountmgr - ok
      23:07:02.0701 3712  [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
      23:07:02.0702 3712  MozillaMaintenance - ok
      23:07:02.0758 3712  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
      23:07:02.0761 3712  mpio - ok
      23:07:02.0771 3712  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
      23:07:02.0773 3712  mpsdrv - ok
      23:07:02.0797 3712  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
      23:07:02.0799 3712  MRxDAV - ok
      23:07:02.0815 3712  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
      23:07:02.0816 3712  mrxsmb - ok
      23:07:02.0837 3712  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
      23:07:02.0840 3712  mrxsmb10 - ok
      23:07:02.0845 3712  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
      23:07:02.0846 3712  mrxsmb20 - ok
      23:07:02.0858 3712  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
      23:07:02.0859 3712  msahci - ok
      23:07:02.0872 3712  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
      23:07:02.0874 3712  msdsm - ok
      23:07:02.0900 3712  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
      23:07:02.0902 3712  MSDTC - ok
      23:07:02.0920 3712  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
      23:07:02.0920 3712  Msfs - ok
      23:07:02.0944 3712  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
      23:07:02.0945 3712  mshidkmdf - ok
      23:07:02.0955 3712  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
      23:07:02.0956 3712  msisadrv - ok
      23:07:02.0990 3712  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
      23:07:02.0992 3712  MSiSCSI - ok
      23:07:02.0995 3712  msiserver - ok
      23:07:03.0013 3712  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
      23:07:03.0014 3712  MSKSSRV - ok
      23:07:03.0024 3712  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
      23:07:03.0025 3712  MSPCLOCK - ok
      23:07:03.0031 3712  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
      23:07:03.0031 3712  MSPQM - ok
      23:07:03.0059 3712  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
      23:07:03.0063 3712  MsRPC - ok
      23:07:03.0079 3712  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
      23:07:03.0079 3712  mssmbios - ok
      23:07:03.0123 3712  MSSQL$SQLEXPRESS - ok
      23:07:03.0153 3712  [ 7A2A8C975356858EB38466A6B1592E8D ] MSSQLServerADHelper100 C:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
      23:07:03.0154 3712  MSSQLServerADHelper100 - ok
      23:07:03.0164 3712  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
      23:07:03.0165 3712  MSTEE - ok
      23:07:03.0172 3712  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
      23:07:03.0173 3712  MTConfig - ok
      23:07:03.0196 3712  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
      23:07:03.0196 3712  Mup - ok
      23:07:03.0236 3712  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
      23:07:03.0242 3712  napagent - ok
      23:07:03.0285 3712  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
      23:07:03.0289 3712  NativeWifiP - ok
      23:07:03.0379 3712  [ 934BB0D23A25C8C136570800A5A149B6 ] NAUpdate        C:\Program Files (x86)\Nero\Update\NASvc.exe
      23:07:03.0386 3712  NAUpdate - ok
      23:07:03.0424 3712  [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS            C:\Windows\system32\drivers\ndis.sys
      23:07:03.0433 3712  NDIS - ok
      23:07:03.0444 3712  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
      23:07:03.0445 3712  NdisCap - ok
      23:07:03.0465 3712  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
      23:07:03.0466 3712  NdisTapi - ok
      23:07:03.0497 3712  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
      23:07:03.0498 3712  Ndisuio - ok
      23:07:03.0514 3712  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
      23:07:03.0516 3712  NdisWan - ok
      23:07:03.0535 3712  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
      23:07:03.0536 3712  NDProxy - ok
      23:07:03.0540 3712  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
      23:07:03.0541 3712  NetBIOS - ok
      23:07:03.0557 3712  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
      23:07:03.0560 3712  NetBT - ok
      23:07:03.0572 3712  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
      23:07:03.0573 3712  Netlogon - ok
      23:07:03.0612 3712  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
      23:07:03.0617 3712  Netman - ok
      23:07:03.0647 3712  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
      23:07:03.0649 3712  NetMsmqActivator - ok
      23:07:03.0652 3712  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
      23:07:03.0653 3712  NetPipeActivator - ok
      23:07:03.0666 3712  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
      23:07:03.0670 3712  netprofm - ok
      23:07:03.0674 3712  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
      23:07:03.0675 3712  NetTcpActivator - ok
      23:07:03.0679 3712  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
      23:07:03.0680 3712  NetTcpPortSharing - ok
      23:07:03.0716 3712  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
      23:07:03.0717 3712  nfrd960 - ok
      23:07:03.0759 3712  [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc          C:\Windows\System32\nlasvc.dll
      23:07:03.0763 3712  NlaSvc - ok
      23:07:03.0767 3712  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
      23:07:03.0768 3712  Npfs - ok
      23:07:03.0802 3712  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
      23:07:03.0804 3712  nsi - ok
      23:07:03.0807 3712  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
      23:07:03.0808 3712  nsiproxy - ok
      23:07:03.0854 3712  [ A2F74975097F52A00745F9637451FDD8 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
      23:07:03.0870 3712  Ntfs - ok
      23:07:03.0896 3712  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
      23:07:03.0897 3712  Null - ok
      23:07:03.0932 3712  [ 785298579B5F9B4032152DFBB992FDB6 ] nusb3hub        C:\Windows\system32\DRIVERS\nusb3hub.sys
      23:07:03.0933 3712  nusb3hub - ok
      23:07:03.0971 3712  [ DF2750481B4964814467C974F2B0EEF1 ] nusb3xhc        C:\Windows\system32\DRIVERS\nusb3xhc.sys
      23:07:03.0973 3712  nusb3xhc - ok
      23:07:03.0987 3712  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
      23:07:03.0989 3712  nvraid - ok
      23:07:04.0012 3712  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
      23:07:04.0015 3712  nvstor - ok
      23:07:04.0037 3712  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
      23:07:04.0039 3712  nv_agp - ok
      23:07:04.0104 3712  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
      23:07:04.0109 3712  odserv - ok
      23:07:04.0128 3712  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
      23:07:04.0129 3712  ohci1394 - ok
      23:07:04.0167 3712  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
      23:07:04.0169 3712  ose - ok
      23:07:04.0248 3712  [ 0E2FDE2689340F06E7005BCDC45A5F5A ] OverwolfUpdaterService C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe
      23:07:04.0249 3712  OverwolfUpdaterService - ok
      23:07:04.0286 3712  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
      23:07:04.0290 3712  p2pimsvc - ok
      23:07:04.0304 3712  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
      23:07:04.0309 3712  p2psvc - ok
      23:07:04.0337 3712  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
      23:07:04.0339 3712  Parport - ok
      23:07:04.0357 3712  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
      23:07:04.0358 3712  partmgr - ok
      23:07:04.0374 3712  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
      23:07:04.0376 3712  PcaSvc - ok
      23:07:04.0382 3712  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
      23:07:04.0384 3712  pci - ok
      23:07:04.0396 3712  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
      23:07:04.0396 3712  pciide - ok
      23:07:04.0402 3712  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
      23:07:04.0404 3712  pcmcia - ok
      23:07:04.0408 3712  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
      23:07:04.0409 3712  pcw - ok
      23:07:04.0430 3712  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
      23:07:04.0437 3712  PEAUTH - ok
      23:07:04.0483 3712  [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
      23:07:04.0497 3712  PeerDistSvc - ok
      23:07:04.0573 3712  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
      23:07:04.0574 3712  PerfHost - ok
      23:07:04.0738 3712  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
      23:07:04.0813 3712  pla - ok
      23:07:04.0913 3712  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
      23:07:04.0919 3712  PlugPlay - ok
      23:07:05.0002 3712  PnkBstrA - ok
      23:07:05.0034 3712  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
      23:07:05.0035 3712  PNRPAutoReg - ok
      23:07:05.0089 3712  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
      23:07:05.0092 3712  PNRPsvc - ok
      23:07:05.0126 3712  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
      23:07:05.0131 3712  PolicyAgent - ok
      23:07:05.0176 3712  postgresql-8.3 - ok
      23:07:05.0205 3712  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
      23:07:05.0207 3712  Power - ok
      23:07:05.0239 3712  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
      23:07:05.0241 3712  PptpMiniport - ok
      23:07:05.0274 3712  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
      23:07:05.0276 3712  Processor - ok
      23:07:05.0335 3712  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
      23:07:05.0338 3712  ProfSvc - ok
      23:07:05.0360 3712  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
      23:07:05.0361 3712  ProtectedStorage - ok
      23:07:05.0472 3712  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
      23:07:05.0474 3712  Psched - ok
      23:07:05.0545 3712  [ 0B6DEA0A1662CAB8F2BF339DC0752EF4 ] PSI_SVC_2       c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
      23:07:05.0546 3712  PSI_SVC_2 - ok
      23:07:05.0603 3712  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
      23:07:05.0619 3712  ql2300 - ok
      23:07:05.0667 3712  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
      23:07:05.0669 3712  ql40xx - ok
      23:07:05.0697 3712  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
      23:07:05.0701 3712  QWAVE - ok
      23:07:05.0714 3712  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
      23:07:05.0715 3712  QWAVEdrv - ok
      23:07:05.0719 3712  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
      23:07:05.0721 3712  RasAcd - ok
      23:07:05.0749 3712  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
      23:07:05.0750 3712  RasAgileVpn - ok
      23:07:05.0761 3712  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
      23:07:05.0764 3712  RasAuto - ok
      23:07:05.0784 3712  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
      23:07:05.0785 3712  Rasl2tp - ok
      23:07:05.0814 3712  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
      23:07:05.0819 3712  RasMan - ok
      23:07:05.0859 3712  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
      23:07:05.0861 3712  RasPppoe - ok
      23:07:05.0865 3712  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
      23:07:05.0866 3712  RasSstp - ok
      23:07:05.0896 3712  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
      23:07:05.0899 3712  rdbss - ok
      23:07:05.0903 3712  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
      23:07:05.0904 3712  rdpbus - ok
      23:07:05.0917 3712  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
      23:07:05.0918 3712  RDPCDD - ok
      23:07:05.0967 3712  [ 1B6163C503398B23FF8B939C67747683 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
      23:07:05.0969 3712  RDPDR - ok
      23:07:05.0979 3712  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
      23:07:05.0979 3712  RDPENCDD - ok
      23:07:05.0985 3712  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
      23:07:05.0986 3712  RDPREFMP - ok
      23:07:06.0021 3712  [ 70CBA1A0C98600A2AA1863479B35CB90 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
      23:07:06.0022 3712  RdpVideoMiniport - ok
      23:07:06.0055 3712  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
      23:07:06.0058 3712  RDPWD - ok
      23:07:06.0092 3712  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
      23:07:06.0094 3712  rdyboost - ok
      23:07:06.0130 3712  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
      23:07:06.0132 3712  RemoteAccess - ok
      23:07:06.0147 3712  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
      23:07:06.0149 3712  RemoteRegistry - ok
      23:07:06.0178 3712  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
      23:07:06.0180 3712  RpcEptMapper - ok
      23:07:06.0203 3712  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
      23:07:06.0204 3712  RpcLocator - ok
      23:07:06.0235 3712  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
      23:07:06.0239 3712  RpcSs - ok
      23:07:06.0279 3712  [ CD553B8633466A6D1C115812F2619F1F ] RsFx0103        C:\Windows\system32\DRIVERS\RsFx0103.sys
      23:07:06.0283 3712  RsFx0103 - ok
      23:07:06.0294 3712  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
      23:07:06.0295 3712  rspndr - ok
      23:07:06.0323 3712  [ D6D381B76056C668679723938F06F16C ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIVX.sys
      23:07:06.0324 3712  RTHDMIAzAudService - ok
      23:07:06.0366 3712  [ 3B01789EE4EAEE97F5EB46B711387D5E ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
      23:07:06.0368 3712  RTL8167 - ok
      23:07:06.0390 3712  [ E60C0A09F997826C7627B244195AB581 ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
      23:07:06.0391 3712  s3cap - ok
      23:07:06.0404 3712  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
      23:07:06.0405 3712  SamSs - ok
      23:07:06.0424 3712  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
      23:07:06.0426 3712  sbp2port - ok
      23:07:06.0444 3712  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
      23:07:06.0446 3712  SCardSvr - ok
      23:07:06.0482 3712  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
      23:07:06.0483 3712  scfilter - ok
      23:07:06.0520 3712  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
      23:07:06.0532 3712  Schedule - ok
      23:07:06.0567 3712  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
      23:07:06.0568 3712  SCPolicySvc - ok
      23:07:06.0604 3712  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
      23:07:06.0607 3712  SDRSVC - ok
      23:07:06.0655 3712  [ D98E936BDD4A6CFE39535F3696D0EC6F ] SDScannerService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
      23:07:06.0660 3712  SDScannerService - ok
      23:07:06.0712 3712  [ 2D5088524613D1ED55D20195AF42DDC7 ] SDUpdateService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
      23:07:06.0719 3712  SDUpdateService - ok
      23:07:06.0742 3712  [ 59DCE6783F9ED27EB72C81466E363BF8 ] SDWSCService    C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
      23:07:06.0744 3712  SDWSCService - ok
      23:07:06.0789 3712  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
      23:07:06.0790 3712  secdrv - ok
      23:07:06.0819 3712  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
      23:07:06.0821 3712  seclogon - ok
      23:07:06.0858 3712  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
      23:07:06.0860 3712  SENS - ok
      23:07:06.0874 3712  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
      23:07:06.0882 3712  SensrSvc - ok
      23:07:06.0899 3712  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
      23:07:06.0900 3712  Serenum - ok
      23:07:06.0912 3712  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
      23:07:06.0913 3712  Serial - ok
      23:07:06.0932 3712  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
      23:07:06.0933 3712  sermouse - ok
      23:07:06.0970 3712  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
      23:07:06.0973 3712  SessionEnv - ok
      23:07:06.0998 3712  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
      23:07:06.0999 3712  sffdisk - ok
      23:07:07.0009 3712  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
      23:07:07.0010 3712  sffp_mmc - ok
      23:07:07.0013 3712  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
      23:07:07.0014 3712  sffp_sd - ok
      23:07:07.0032 3712  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
      23:07:07.0048 3712  sfloppy - ok
      23:07:07.0087 3712  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
      23:07:07.0092 3712  ShellHWDetection - ok
      23:07:07.0115 3712  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
      23:07:07.0116 3712  SiSRaid2 - ok
      23:07:07.0129 3712  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
      23:07:07.0131 3712  SiSRaid4 - ok
      23:07:07.0178 3712  [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
      23:07:07.0179 3712  SkypeUpdate - ok
      23:07:07.0199 3712  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
      23:07:07.0200 3712  Smb - ok
      23:07:07.0247 3712  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
      23:07:07.0249 3712  SNMPTRAP - ok
      23:07:07.0258 3712  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
      23:07:07.0259 3712  spldr - ok
      23:07:07.0283 3712  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
      23:07:07.0287 3712  Spooler - ok
      23:07:07.0357 3712  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
      23:07:07.0392 3712  sppsvc - ok
      23:07:07.0417 3712  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
      23:07:07.0421 3712  sppuinotify - ok
      23:07:07.0482 3712  [ DFC4E2081324E505CA479E473A78D893 ] sptd            C:\Windows\System32\Drivers\sptd.sys
      23:07:07.0490 3712  sptd - ok
      23:07:07.0601 3712  [ 12E6D95CDE974B131DEFAA44BAB8B056 ] SQLAgent$SQLEXPRESS C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE
      23:07:07.0608 3712  SQLAgent$SQLEXPRESS - ok
      23:07:07.0668 3712  [ B54B48F6D92423440C264E91225C5FF1 ] SQLBrowser      C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
      23:07:07.0672 3712  SQLBrowser - ok
      23:07:07.0729 3712  [ 6D65985945B03CA59B67D0B73702FC7B ] SQLWriter       C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
      23:07:07.0730 3712  SQLWriter - ok
      23:07:07.0757 3712  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
      23:07:07.0764 3712  srv - ok
      23:07:07.0794 3712  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
      23:07:07.0800 3712  srv2 - ok
      23:07:07.0808 3712  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
      23:07:07.0811 3712  srvnet - ok
      23:07:07.0854 3712  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
      23:07:07.0858 3712  SSDPSRV - ok
      23:07:07.0891 3712  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
      23:07:07.0894 3712  SstpSvc - ok
      23:07:07.0976 3712  [ B1691AF4A072CB674D600DB16DD7308E ] StarWindServiceAE C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
      23:07:07.0980 3712  StarWindServiceAE - ok
      23:07:08.0026 3712  Steam Client Service - ok
      23:07:08.0053 3712  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
      23:07:08.0055 3712  stexstor - ok
      23:07:08.0110 3712  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
      23:07:08.0120 3712  stisvc - ok
      23:07:08.0139 3712  [ 7785DC213270D2FC066538DAF94087E7 ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
      23:07:08.0140 3712  storflt - ok
      23:07:08.0152 3712  [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
      23:07:08.0153 3712  storvsc - ok
      23:07:08.0163 3712  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
      23:07:08.0164 3712  swenum - ok
      23:07:08.0179 3712  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
      23:07:08.0188 3712  swprv - ok
      23:07:08.0193 3712  Synth3dVsc - ok
      23:07:08.0247 3712  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
      23:07:08.0273 3712  SysMain - ok
      23:07:08.0306 3712  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
      23:07:08.0310 3712  TabletInputService - ok
      23:07:08.0345 3712  [ B08740047145B9BCE15BF75CA0F9718A ] tap0901t        C:\Windows\system32\DRIVERS\tap0901t.sys
      23:07:08.0346 3712  tap0901t - ok
      23:07:08.0375 3712  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
      23:07:08.0380 3712  TapiSrv - ok
      23:07:08.0410 3712  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
      23:07:08.0412 3712  TBS - ok
      23:07:08.0450 3712  [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
      23:07:08.0469 3712  Tcpip - ok
      23:07:08.0611 3712  [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
      23:07:08.0621 3712  TCPIP6 - ok
      23:07:08.0721 3712  [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
      23:07:08.0722 3712  tcpipreg - ok
      23:07:08.0755 3712  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
      23:07:08.0756 3712  TDPIPE - ok
      23:07:08.0772 3712  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
      23:07:08.0773 3712  TDTCP - ok
      23:07:08.0800 3712  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
      23:07:08.0802 3712  tdx - ok
      23:07:08.0817 3712  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
      23:07:08.0818 3712  TermDD - ok
      23:07:08.0856 3712  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
      23:07:08.0865 3712  TermService - ok
      23:07:08.0885 3712  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
      23:07:08.0887 3712  Themes - ok
      23:07:08.0913 3712  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
      23:07:08.0915 3712  THREADORDER - ok
      23:07:08.0930 3712  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
      23:07:08.0932 3712  TrkWks - ok
      23:07:09.0019 3712  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
      23:07:09.0021 3712  TrustedInstaller - ok
      23:07:09.0063 3712  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
      23:07:09.0064 3712  tssecsrv - ok
      23:07:09.0088 3712  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
      23:07:09.0089 3712  TsUsbFlt - ok
      23:07:09.0092 3712  tsusbhub - ok
      23:07:09.0165 3712  [ AFC5CCD57F4DB07762B134E82454D1ED ] TuneUp.UtilitiesSvc C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe
      23:07:09.0175 3712  TuneUp.UtilitiesSvc - ok
      23:07:09.0229 3712  [ DCC94C51D27C7EC0DADECA8F64C94FCF ] TuneUpUtilitiesDrv C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys
      23:07:09.0230 3712  TuneUpUtilitiesDrv - ok
      23:07:09.0277 3712  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
      23:07:09.0279 3712  tunnel - ok
      23:07:09.0339 3712  [ EB2252371A7A4B26B8AB2C6DF0B4EEFF ] TunngleService  C:\Program Files (x86)\Tunngle\TnglCtrl.exe
      23:07:09.0346 3712  TunngleService - ok
      23:07:09.0384 3712  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
      23:07:09.0385 3712  uagp35 - ok
      23:07:09.0414 3712  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
      23:07:09.0418 3712  udfs - ok
      23:07:09.0454 3712  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
      23:07:09.0456 3712  UI0Detect - ok
      23:07:09.0478 3712  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
      23:07:09.0479 3712  uliagpkx - ok
      23:07:09.0525 3712  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\drivers\umbus.sys
      23:07:09.0526 3712  umbus - ok
      23:07:09.0551 3712  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
      23:07:09.0552 3712  UmPass - ok
      23:07:09.0580 3712  [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService    C:\Windows\System32\umrdp.dll
      23:07:09.0583 3712  UmRdpService - ok
      23:07:09.0616 3712  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
      23:07:09.0625 3712  upnphost - ok
      23:07:09.0668 3712  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
      23:07:09.0669 3712  usbccgp - ok
      23:07:09.0688 3712  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
      23:07:09.0689 3712  usbcir - ok
      23:07:09.0704 3712  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
      23:07:09.0705 3712  usbehci - ok
      23:07:09.0715 3712  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
      23:07:09.0718 3712  usbhub - ok
      23:07:09.0727 3712  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
      23:07:09.0728 3712  usbohci - ok
      23:07:09.0750 3712  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
      23:07:09.0751 3712  usbprint - ok
      23:07:09.0782 3712  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
      23:07:09.0783 3712  usbscan - ok
      23:07:09.0804 3712  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
      23:07:09.0805 3712  USBSTOR - ok
      23:07:09.0821 3712  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
      23:07:09.0841 3712  usbuhci - ok
      23:07:09.0864 3712  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
      23:07:09.0866 3712  UxSms - ok
      23:07:09.0899 3712  [ 0402A29661A4D4CBB2E2EB7F46D19F31 ] UxTuneUp        C:\Windows\System32\uxtuneup.dll
      23:07:09.0900 3712  UxTuneUp - ok
      23:07:09.0915 3712  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
      23:07:09.0916 3712  VaultSvc - ok
      23:07:09.0937 3712  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
      23:07:09.0938 3712  vdrvroot - ok
      23:07:09.0977 3712  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
      23:07:09.0983 3712  vds - ok
      23:07:10.0001 3712  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
      23:07:10.0002 3712  vga - ok
      23:07:10.0015 3712  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
      23:07:10.0016 3712  VgaSave - ok
      23:07:10.0019 3712  VGPU - ok
      23:07:10.0043 3712  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
      23:07:10.0046 3712  vhdmp - ok
      23:07:10.0070 3712  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
      23:07:10.0071 3712  viaide - ok
      23:07:10.0076 3712  [ 86EA3E79AE350FEA5331A1303054005F ] vmbus           C:\Windows\system32\drivers\vmbus.sys
      23:07:10.0079 3712  vmbus - ok
      23:07:10.0098 3712  [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
      23:07:10.0099 3712  VMBusHID - ok
      23:07:10.0103 3712  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
      23:07:10.0104 3712  volmgr - ok
      23:07:10.0143 3712  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
      23:07:10.0147 3712  volmgrx - ok
      23:07:10.0153 3712  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
      23:07:10.0156 3712  volsnap - ok
      23:07:10.0176 3712  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
      23:07:10.0178 3712  vsmraid - ok
      23:07:10.0234 3712  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
      23:07:10.0251 3712  VSS - ok
      23:07:10.0280 3712  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
      23:07:10.0281 3712  vwifibus - ok
      23:07:10.0325 3712  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
      23:07:10.0330 3712  W32Time - ok
      23:07:10.0353 3712  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
      23:07:10.0354 3712  WacomPen - ok
      23:07:10.0373 3712  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
      23:07:10.0374 3712  WANARP - ok
      23:07:10.0382 3712  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
      23:07:10.0383 3712  Wanarpv6 - ok
      23:07:10.0453 3712  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
      23:07:10.0465 3712  WatAdminSvc - ok
      23:07:10.0511 3712  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
      23:07:10.0528 3712  wbengine - ok
      23:07:10.0541 3712  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
      23:07:10.0544 3712  WbioSrvc - ok
      23:07:10.0580 3712  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
      23:07:10.0584 3712  wcncsvc - ok
      23:07:10.0595 3712  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
      23:07:10.0608 3712  WcsPlugInService - ok
      23:07:10.0622 3712  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
      23:07:10.0629 3712  Wd - ok
      23:07:10.0679 3712  [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
      23:07:10.0686 3712  Wdf01000 - ok
      23:07:10.0712 3712  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
      23:07:10.0714 3712  WdiServiceHost - ok
      23:07:10.0718 3712  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
      23:07:10.0720 3712  WdiSystemHost - ok
      23:07:10.0756 3712  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
      23:07:10.0760 3712  WebClient - ok
      23:07:10.0792 3712  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
      23:07:10.0796 3712  Wecsvc - ok
      23:07:10.0803 3712  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
      23:07:10.0806 3712  wercplsupport - ok
      23:07:10.0819 3712  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
      23:07:10.0821 3712  WerSvc - ok
      23:07:10.0835 3712  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
      23:07:10.0835 3712  WfpLwf - ok
      23:07:10.0847 3712  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
      23:07:10.0848 3712  WIMMount - ok
      23:07:10.0872 3712  WinDefend - ok
      23:07:10.0881 3712  WinHttpAutoProxySvc - ok
      23:07:10.0945 3712  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
      23:07:10.0948 3712  Winmgmt - ok
      23:07:11.0000 3712  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
      23:07:11.0020 3712  WinRM - ok
      23:07:11.0051 3712  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
      23:07:11.0052 3712  WinUsb - ok
      23:07:11.0090 3712  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
      23:07:11.0100 3712  Wlansvc - ok
      23:07:11.0203 3712  [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
      23:07:11.0214 3712  wlidsvc - ok
      23:07:11.0240 3712  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
      23:07:11.0240 3712  WmiAcpi - ok
      23:07:11.0268 3712  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
      23:07:11.0270 3712  wmiApSrv - ok
      23:07:11.0287 3712  WMPNetworkSvc - ok
      23:07:11.0298 3712  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
      23:07:11.0301 3712  WPCSvc - ok
      23:07:11.0329 3712  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
      23:07:11.0331 3712  WPDBusEnum - ok
      23:07:11.0356 3712  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
      23:07:11.0357 3712  ws2ifsl - ok
      23:07:11.0381 3712  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\system32\wscsvc.dll
      23:07:11.0385 3712  wscsvc - ok
      23:07:11.0388 3712  WSearch - ok
      23:07:11.0448 3712  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
      23:07:11.0472 3712  wuauserv - ok
      23:07:11.0503 3712  [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
      23:07:11.0505 3712  WudfPf - ok
      23:07:11.0512 3712  [ CF8D590BE3373029D57AF80914190682 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
      23:07:11.0514 3712  WUDFRd - ok
      23:07:11.0543 3712  [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
      23:07:11.0544 3712  wudfsvc - ok
      23:07:11.0575 3712  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
      23:07:11.0579 3712  WwanSvc - ok
      23:07:11.0614 3712  [ 2EE48CFCE7CA8E0DB4C44C7476C0943B ] xusb21          C:\Windows\system32\DRIVERS\xusb21.sys
      23:07:11.0615 3712  xusb21 - ok
      23:07:11.0632 3712  ================ Scan global ===============================
      23:07:11.0664 3712  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
      23:07:11.0697 3712  [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
      23:07:11.0704 3712  [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
      23:07:11.0755 3712  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
      23:07:11.0777 3712  [ 50BEA589F7D7958BDD2528A8F69D05CC ] C:\Windows\system32\services.exe
      23:07:11.0780 3712  C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.a ) - infected
      23:07:11.0780 3712  C:\Windows\system32\services.exe - detected Virus.Win64.ZAccess.a (0)
      23:07:11.0780 3712  ================ Scan MBR ==================================
      23:07:11.0783 3712  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
      23:07:11.0906 3712  \Device\Harddisk0\DR0 - ok
      23:07:11.0921 3712  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
      23:07:12.0026 3712  \Device\Harddisk1\DR1 - ok
      23:07:12.0026 3712  ================ Scan VBR ==================================
      23:07:12.0028 3712  [ FF276AEC0BFFCF84F75696846B39A38D ] \Device\Harddisk0\DR0\Partition1
      23:07:12.0029 3712  \Device\Harddisk0\DR0\Partition1 - ok
      23:07:12.0032 3712  [ 51CEDB75142BF07FA072DB2C8221B97F ] \Device\Harddisk1\DR1\Partition1
      23:07:12.0033 3712  \Device\Harddisk1\DR1\Partition1 - ok
      23:07:12.0044 3712  [ 27C5A91ACD032A5A84B51ED63445290C ] \Device\Harddisk1\DR1\Partition2
      23:07:12.0045 3712  \Device\Harddisk1\DR1\Partition2 - ok
      23:07:12.0045 3712  ============================================================
      23:07:12.0045 3712  Scan finished
      23:07:12.0045 3712  ============================================================
      23:07:12.0055 4200  Detected object count: 1
      23:07:12.0055 4200  Actual detected object count: 1
      23:07:46.0538 4200  C:\Windows\system32\services.exe - copied to quarantine
      23:07:47.0706 4200  C:\Windows\assembly\GAC_32\desktop.ini - copied to quarantine
      23:07:47.0707 4200  C:\Windows\assembly\GAC_64\desktop.ini - copied to quarantine
      23:08:21.0319 4200  Backup copy not found, trying to cure infected file..
      23:08:21.0319 4200  C:\Windows\system32\services.exe - Cure failed (FFFFFFFF)
      23:08:21.0319 4200  C:\Windows\system32\services.exe - processing error
      23:08:21.0319 4200  C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.a ) - User

    5. #5
      Usuario Avatar de zerosn
      Registrado
      sep 2012
      Ubicación
      Argentina
      Mensajes
      8

      Re: Problema con WIN32/Sirefef

      Reporte TDSSKiller parte 2
      Código:
      select action: Cure 
      23:09:47.0900 4232  ============================================================
      23:09:47.0900 4232  Scan started
      23:09:47.0900 4232  Mode: Manual; SigCheck; TDLFS; 
      23:09:47.0900 4232  ============================================================
      23:09:48.0555 4232  ================ Scan system memory ========================
      23:09:48.0555 4232  System memory - ok
      23:09:48.0555 4232  ================ Scan services =============================
      23:09:48.0699 4232  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
      23:09:48.0756 4232  1394ohci - ok
      23:09:48.0821 4232  [ 656F06850D02BAED19F0E2E72B047CE2 ] ABBYY.Licensing.FineReader.Professional.11.0 C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe
      23:09:48.0837 4232  ABBYY.Licensing.FineReader.Professional.11.0 - ok
      23:09:48.0856 4232  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
      23:09:48.0867 4232  ACPI - ok
      23:09:48.0883 4232  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
      23:09:48.0936 4232  AcpiPmi - ok
      23:09:48.0974 4232  [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
      23:09:48.0980 4232  AdobeARMservice - ok
      23:09:49.0095 4232  [ B2B64AF436FACCFA854DD397027C5360 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
      23:09:49.0105 4232  AdobeFlashPlayerUpdateSvc - ok
      23:09:49.0133 4232  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
      23:09:49.0147 4232  adp94xx - ok
      23:09:49.0166 4232  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
      23:09:49.0177 4232  adpahci - ok
      23:09:49.0194 4232  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
      23:09:49.0204 4232  adpu320 - ok
      23:09:49.0239 4232  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
      23:09:49.0333 4232  AeLookupSvc - ok
      23:09:49.0364 4232  [ 0D0E5281784C2C526BA43C2ECD374288 ] Afc             C:\Windows\syswow64\drivers\Afc.sys
      23:09:49.0375 4232  Afc - ok
      23:09:49.0402 4232  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
      23:09:49.0433 4232  AFD - ok
      23:09:49.0459 4232  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
      23:09:49.0468 4232  agp440 - ok
      23:09:49.0484 4232  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
      23:09:49.0505 4232  ALG - ok
      23:09:49.0517 4232  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
      23:09:49.0524 4232  aliide - ok
      23:09:49.0580 4232  [ 0642A7B1C4B119AE2AAF1AA61CF69668 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
      23:09:49.0621 4232  AMD External Events Utility - ok
      23:09:49.0626 4232  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
      23:09:49.0635 4232  amdide - ok
      23:09:49.0665 4232  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
      23:09:49.0701 4232  AmdK8 - ok
      23:09:49.0810 4232  [ C6C0F73A038FF38EBBD9C16F79F8D3E3 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
      23:09:49.0895 4232  amdkmdag - ok
      23:09:49.0936 4232  [ 4647D713CFF04FAE4F862B3144725BC1 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
      23:09:49.0954 4232  amdkmdap - ok
      23:09:49.0959 4232  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
      23:09:49.0982 4232  AmdPPM - ok
      23:09:50.0003 4232  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
      23:09:50.0012 4232  amdsata - ok
      23:09:50.0047 4232  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
      23:09:50.0058 4232  amdsbs - ok
      23:09:50.0071 4232  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
      23:09:50.0080 4232  amdxata - ok
      23:09:50.0103 4232  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
      23:09:50.0203 4232  AppID - ok
      23:09:50.0230 4232  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
      23:09:50.0256 4232  AppIDSvc - ok
      23:09:50.0284 4232  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo         C:\Windows\System32\appinfo.dll
      23:09:50.0320 4232  Appinfo - ok
      23:09:50.0349 4232  [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt         C:\Windows\System32\appmgmts.dll
      23:09:50.0364 4232  AppMgmt - ok
      23:09:50.0389 4232  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
      23:09:50.0398 4232  arc - ok
      23:09:50.0410 4232  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
      23:09:50.0419 4232  arcsas - ok
      23:09:50.0509 4232  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
      23:09:50.0517 4232  aspnet_state - ok
      23:09:50.0525 4232  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
      23:09:50.0566 4232  AsyncMac - ok
      23:09:50.0585 4232  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
      23:09:50.0593 4232  atapi - ok
      23:09:50.0628 4232  [ FC0E8778C000291CAF60EB88C011E931 ] atksgt          C:\Windows\system32\DRIVERS\atksgt.sys
      23:09:50.0639 4232  atksgt - ok
      23:09:50.0670 4232  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
      23:09:50.0720 4232  AudioEndpointBuilder - ok
      23:09:50.0730 4232  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
      23:09:50.0761 4232  AudioSrv - ok
      23:09:50.0798 4232  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
      23:09:50.0851 4232  AxInstSV - ok
      23:09:50.0887 4232  [ 33722AB7981C17BD8E8C9C47CFF82B99 ] AxisCameraStation C:\Program Files (x86)\Axis Communications\AXIS Camera Station\AcsService.exe
      23:09:50.0903 4232  AxisCameraStation ( UnsignedFile.Multi.Generic ) - warning
      23:09:50.0903 4232  AxisCameraStation - detected UnsignedFile.Multi.Generic (1)
      23:09:50.0922 4232  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
      23:09:50.0946 4232  b06bdrv - ok
      23:09:50.0963 4232  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
      23:09:50.0984 4232  b57nd60a - ok
      23:09:51.0018 4232  [ F29D375926E36E3A56AF4805C7749302 ] BCUService      C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe
      23:09:51.0027 4232  BCUService - ok
      23:09:51.0056 4232  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
      23:09:51.0074 4232  BDESVC - ok
      23:09:51.0085 4232  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
      23:09:51.0127 4232  Beep - ok
      23:09:51.0167 4232  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
      23:09:51.0198 4232  BFE - ok
      23:09:51.0247 4232  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
      23:09:51.0288 4232  BITS - ok
      23:09:51.0298 4232  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
      23:09:51.0310 4232  blbdrive - ok
      23:09:51.0340 4232  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
      23:09:51.0362 4232  bowser - ok
      23:09:51.0373 4232  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
      23:09:51.0414 4232  BrFiltLo - ok
      23:09:51.0424 4232  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
      23:09:51.0434 4232  BrFiltUp - ok
      23:09:51.0446 4232  [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
      23:09:51.0484 4232  BridgeMP - ok
      23:09:51.0499 4232  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
      23:09:51.0509 4232  Browser - ok
      23:09:51.0524 4232  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
      23:09:51.0548 4232  Brserid - ok
      23:09:51.0563 4232  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
      23:09:51.0582 4232  BrSerWdm - ok
      23:09:51.0595 4232  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
      23:09:51.0611 4232  BrUsbMdm - ok
      23:09:51.0623 4232  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
      23:09:51.0632 4232  BrUsbSer - ok
      23:09:51.0648 4232  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
      23:09:51.0668 4232  BTHMODEM - ok
      23:09:51.0693 4232  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
      23:09:51.0732 4232  bthserv - ok
      23:09:51.0747 4232  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
      23:09:51.0783 4232  cdfs - ok
      23:09:51.0798 4232  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
      23:09:51.0816 4232  cdrom - ok
      23:09:51.0851 4232  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
      23:09:51.0886 4232  CertPropSvc - ok
      23:09:51.0911 4232  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
      23:09:51.0933 4232  circlass - ok
      23:09:51.0975 4232  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
      23:09:51.0987 4232  CLFS - ok
      23:09:52.0047 4232  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
      23:09:52.0054 4232  clr_optimization_v2.0.50727_32 - ok
      23:09:52.0102 4232  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
      23:09:52.0109 4232  clr_optimization_v2.0.50727_64 - ok
      23:09:52.0164 4232  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
      23:09:52.0172 4232  clr_optimization_v4.0.30319_32 - ok
      23:09:52.0182 4232  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
      23:09:52.0190 4232  clr_optimization_v4.0.30319_64 - ok
      23:09:52.0198 4232  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
      23:09:52.0219 4232  CmBatt - ok
      23:09:52.0232 4232  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
      23:09:52.0240 4232  cmdide - ok
      23:09:52.0272 4232  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
      23:09:52.0289 4232  CNG - ok
      23:09:52.0302 4232  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
      23:09:52.0310 4232  Compbatt - ok
      23:09:52.0325 4232  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
      23:09:52.0346 4232  CompositeBus - ok
      23:09:52.0349 4232  COMSysApp - ok
      23:09:52.0366 4232  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
      23:09:52.0374 4232  crcdisk - ok
      23:09:52.0406 4232  [ 4F5414602E2544A4554D95517948B705 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
      23:09:52.0425 4232  CryptSvc - ok
      23:09:52.0458 4232  [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC             C:\Windows\system32\drivers\csc.sys
      23:09:52.0490 4232  CSC - ok
      23:09:52.0507 4232  [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService      C:\Windows\System32\cscsvc.dll
      23:09:52.0533 4232  CscService - ok
      23:09:52.0571 4232  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
      23:09:52.0606 4232  DcomLaunch - ok
      23:09:52.0636 4232  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
      23:09:52.0671 4232  defragsvc - ok
      23:09:52.0689 4232  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
      23:09:52.0730 4232  DfsC - ok
      23:09:52.0742 4232  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
      23:09:52.0789 4232  Dhcp - ok
      23:09:52.0794 4232  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
      23:09:52.0824 4232  discache - ok
      23:09:52.0839 4232  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
      23:09:52.0847 4232  Disk - ok
      23:09:52.0872 4232  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
      23:09:52.0887 4232  Dnscache - ok
      23:09:52.0924 4232  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
      23:09:52.0959 4232  dot3svc - ok
      23:09:52.0991 4232  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
      23:09:53.0022 4232  DPS - ok
      23:09:53.0052 4232  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
      23:09:53.0071 4232  drmkaud - ok
      23:09:53.0106 4232  [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01     C:\Windows\system32\DRIVERS\dtsoftbus01.sys
      23:09:53.0116 4232  dtsoftbus01 - ok
      23:09:53.0157 4232  [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
      23:09:53.0176 4232  DXGKrnl - ok
      23:09:53.0194 4232  [ 13533557D01B88C83110D5CF749F14D7 ] eamonm          C:\Windows\system32\DRIVERS\eamonm.sys
      23:09:53.0203 4232  eamonm - ok
      23:09:53.0227 4232  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
      23:09:53.0261 4232  EapHost - ok
      23:09:53.0322 4232  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
      23:09:53.0369 4232  ebdrv - ok
      23:09:53.0394 4232  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
      23:09:53.0410 4232  EFS - ok
      23:09:53.0438 4232  [ E097728129E7B79BF1089D7AEF42332B ] ehdrv           C:\Windows\system32\DRIVERS\ehdrv.sys
      23:09:53.0446 4232  ehdrv - ok
      23:09:53.0492 4232  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
      23:09:53.0510 4232  ehRecvr - ok
      23:09:53.0543 4232  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
      23:09:53.0553 4232  ehSched - ok
      23:09:53.0629 4232  [ CB143DCD8864442CFCF37629002766E3 ] ekrn            C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
      23:09:53.0648 4232  ekrn - ok
      23:09:53.0691 4232  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
      23:09:53.0704 4232  elxstor - ok
      23:09:53.0742 4232  [ 2380976CF8A4A56611F35633ACD2A74F ] epfwwfpr        C:\Windows\system32\DRIVERS\epfwwfpr.sys
      23:09:53.0749 4232  epfwwfpr - ok
      23:09:53.0816 4232  [ 1E345F2A2D95DA3190596E691CDE9342 ] EPSON_PM_RPCV4_01 C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
      23:09:53.0836 4232  EPSON_PM_RPCV4_01 - ok
      23:09:53.0872 4232  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
      23:09:53.0887 4232  ErrDev - ok
      23:09:53.0917 4232  [ B8FA96995726D1FA58476E352C02AD82 ] ES lite Service C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
      23:09:53.0924 4232  ES lite Service - ok
      23:09:54.0017 4232  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
      23:09:54.0057 4232  EventSystem - ok
      23:09:54.0074 4232  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
      23:09:54.0101 4232  exfat - ok
      23:09:54.0117 4232  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
      23:09:54.0153 4232  fastfat - ok
      23:09:54.0194 4232  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
      23:09:54.0218 4232  Fax - ok
      23:09:54.0228 4232  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
      23:09:54.0247 4232  fdc - ok
      23:09:54.0275 4232  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
      23:09:54.0308 4232  fdPHost - ok
      23:09:54.0320 4232  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
      23:09:54.0372 4232  FDResPub - ok
      23:09:54.0386 4232  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
      23:09:54.0394 4232  FileInfo - ok
      23:09:54.0432 4232  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
      23:09:54.0468 4232  Filetrace - ok
      23:09:54.0482 4232  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
      23:09:54.0491 4232  flpydisk - ok
      23:09:54.0508 4232  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
      23:09:54.0519 4232  FltMgr - ok
      23:09:54.0559 4232  [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache       C:\Windows\system32\FntCache.dll
      23:09:54.0582 4232  FontCache - ok
      23:09:54.0623 4232  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
      23:09:54.0630 4232  FontCache3.0.0.0 - ok
      23:09:54.0640 4232  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
      23:09:54.0648 4232  FsDepends - ok
      23:09:54.0665 4232  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
      23:09:54.0673 4232  Fs_Rec - ok
      23:09:54.0695 4232  [ 1F7B25B858FA27015169FE95E54108ED ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
      23:09:54.0707 4232  fvevol - ok
      23:09:54.0725 4232  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
      23:09:54.0733 4232  gagp30kx - ok
      23:09:54.0760 4232  [ 7907E14F9BCF3A4689C9A74A1A873CB6 ] gdrv            C:\Windows\gdrv.sys
      23:09:54.0767 4232  gdrv - ok
      23:09:54.0802 4232  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
      23:09:54.0834 4232  gpsvc - ok
      23:09:54.0872 4232  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      23:09:54.0879 4232  gupdate - ok
      23:09:54.0883 4232  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      23:09:54.0890 4232  gupdatem - ok
      23:09:54.0914 4232  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
      23:09:54.0922 4232  hcw85cir - ok
      23:09:54.0946 4232  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
      23:09:54.0959 4232  HdAudAddService - ok
      23:09:54.0975 4232  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
      23:09:54.0992 4232  HDAudBus - ok
      23:09:55.0008 4232  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
      23:09:55.0030 4232  HidBatt - ok
      23:09:55.0041 4232  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
      23:09:55.0061 4232  HidBth - ok
      23:09:55.0076 4232  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
      23:09:55.0097 4232  HidIr - ok
      23:09:55.0122 4232  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\System32\hidserv.dll
      23:09:55.0158 4232  hidserv - ok
      23:09:55.0181 4232  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
      23:09:55.0190 4232  HidUsb - ok
      23:09:55.0220 4232  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
      23:09:55.0256 4232  hkmsvc - ok
      23:09:55.0285 4232  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
      23:09:55.0307 4232  HomeGroupListener - ok
      23:09:55.0341 4232  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
      23:09:55.0361 4232  HomeGroupProvider - ok
      23:09:55.0372 4232  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
      23:09:55.0382 4232  HpSAMD - ok
      23:09:55.0417 4232  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
      23:09:55.0455 4232  HTTP - ok
      23:09:55.0463 4232  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
      23:09:55.0471 4232  hwpolicy - ok
      23:09:55.0479 4232  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
      23:09:55.0488 4232  i8042prt - ok
      23:09:55.0512 4232  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
      23:09:55.0524 4232  iaStorV - ok
      23:09:55.0565 4232  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
      23:09:55.0581 4232  idsvc - ok
      23:09:55.0607 4232  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
      23:09:55.0615 4232  iirsp - ok
      23:09:55.0635 4232  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
      23:09:55.0674 4232  IKEEXT - ok
      23:09:55.0731 4232  [ E76FDFFF07F8A2FA81FF250DDA0F6BBA ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
      23:09:55.0764 4232  IntcAzAudAddService - ok
      23:09:55.0784 4232  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
      23:09:55.0792 4232  intelide - ok
      23:09:55.0806 4232  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
      23:09:55.0823 4232  intelppm - ok
      23:09:55.0852 4232  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
      23:09:55.0878 4232  IPBusEnum - ok
      23:09:55.0905 4232  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
      23:09:55.0940 4232  IpFilterDriver - ok
      23:09:55.0961 4232  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
      23:09:55.0970 4232  IPMIDRV - ok
      23:09:55.0980 4232  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
      23:09:56.0018 4232  IPNAT - ok
      23:09:56.0042 4232  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
      23:09:56.0059 4232  IRENUM - ok
      23:09:56.0081 4232  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
      23:09:56.0089 4232  isapnp - ok
      23:09:56.0104 4232  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
      23:09:56.0114 4232  iScsiPrt - ok
      23:09:56.0138 4232  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
      23:09:56.0146 4232  kbdclass - ok
      23:09:56.0157 4232  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
      23:09:56.0176 4232  kbdhid - ok
      23:09:56.0184 4232  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
      23:09:56.0193 4232  KeyIso - ok
      23:09:56.0221 4232  [ 144D7E14011401FA7CBC11DECC4C4A5F ] KMWDFILTER      C:\Windows\system32\DRIVERS\KMWDFILTER.sys
      23:09:56.0228 4232  KMWDFILTER - ok
      23:09:56.0244 4232  [ 3D6CB0DB6FE125F622C02DC0249DDE9F ] KMWDSERVICE     C:\Program Files (x86)\Keyboard Driver\KMWDSrv.exe
      23:09:56.0253 4232  KMWDSERVICE ( UnsignedFile.Multi.Generic ) - warning
      23:09:56.0253 4232  KMWDSERVICE - detected UnsignedFile.Multi.Generic (1)
      23:09:56.0272 4232  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
      23:09:56.0281 4232  KSecDD - ok
      23:09:56.0301 4232  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
      23:09:56.0311 4232  KSecPkg - ok
      23:09:56.0319 4232  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
      23:09:56.0353 4232  ksthunk - ok
      23:09:56.0388 4232  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
      23:09:56.0417 4232  KtmRm - ok
      23:09:56.0448 4232  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\System32\srvsvc.dll
      23:09:56.0482 4232  LanmanServer - ok
      23:09:56.0509 4232  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
      23:09:56.0547 4232  LanmanWorkstation - ok
      23:09:56.0598 4232  [ 87D6731F70D017590E12735ECC746CDE ] LGDDCDevice     C:\Program Files (x86)\LG Soft India\forteManager\bin\I2CDriver.sys
      23:09:56.0609 4232  LGDDCDevice ( UnsignedFile.Multi.Generic ) - warning
      23:09:56.0610 4232  LGDDCDevice - detected UnsignedFile.Multi.Generic (1)
      23:09:56.0635 4232  [ 089010666D9EA3BD17AFEDE301950B09 ] LGII2CDevice    C:\Program Files (x86)\LG Soft India\forteManager\bin\PII2CDriver.sys
      23:09:56.0650 4232  LGII2CDevice ( UnsignedFile.Multi.Generic ) - warning
      23:09:56.0650 4232  LGII2CDevice - detected UnsignedFile.Multi.Generic (1)
      23:09:56.0677 4232  [ 156AB2E56DC3CA0B582E3362E07CDED7 ] lirsgt          C:\Windows\system32\DRIVERS\lirsgt.sys
      23:09:56.0685 4232  lirsgt - ok
      23:09:56.0699 4232  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
      23:09:56.0726 4232  lltdio - ok
      23:09:56.0760 4232  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
      23:09:56.0797 4232  lltdsvc - ok
      23:09:56.0808 4232  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
      23:09:56.0846 4232  lmhosts - ok
      23:09:56.0860 4232  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
      23:09:56.0869 4232  LSI_FC - ok
      23:09:56.0878 4232  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
      23:09:56.0887 4232  LSI_SAS - ok
      23:09:56.0896 4232  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
      23:09:56.0904 4232  LSI_SAS2 - ok
      23:09:56.0915 4232  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
      23:09:56.0923 4232  LSI_SCSI - ok
      23:09:56.0947 4232  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
      23:09:56.0985 4232  luafv - ok
      23:09:57.0048 4232  [ B9FC4CCE5758B816F27DD4D1EED11841 ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
      23:09:57.0056 4232  MBAMProtector - ok
      23:09:57.0170 4232  [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
      23:09:57.0181 4232  MBAMScheduler - ok
      23:09:57.0219 4232  [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
      23:09:57.0232 4232  MBAMService - ok
      23:09:57.0262 4232  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
      23:09:57.0281 4232  Mcx2Svc - ok
      23:09:57.0290 4232  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
      23:09:57.0300 4232  megasas - ok
      23:09:57.0314 4232  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
      23:09:57.0325 4232  MegaSR - ok
      23:09:57.0373 4232  [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
      23:09:57.0381 4232  Microsoft Office Groove Audit Service - ok
      23:09:57.0409 4232  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
      23:09:57.0445 4232  MMCSS - ok
      23:09:57.0455 4232  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
      23:09:57.0494 4232  Modem - ok
      23:09:57.0503 4232  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
      23:09:57.0519 4232  monitor - ok
      23:09:57.0549 4232  [ D69F1E9A944A5F46A494AF901ED41118 ] motandroidusb   C:\Windows\system32\Drivers\motoandroid.sys
      23:09:57.0569 4232  motandroidusb - ok
      23:09:57.0582 4232  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\drivers\mouclass.sys
      23:09:57.0591 4232  mouclass - ok
      23:09:57.0607 4232  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
      23:09:57.0622 4232  mouhid - ok
      23:09:57.0651 4232  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
      23:09:57.0660 4232  mountmgr - ok
      23:09:57.0697 4232  [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
      23:09:57.0705 4232  MozillaMaintenance - ok
      23:09:57.0729 4232  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
      23:09:57.0738 4232  mpio - ok
      23:09:57.0751 4232  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
      23:09:57.0778 4232  mpsdrv - ok
      23:09:57.0802 4232  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
      23:09:57.0815 4232  MRxDAV - ok
      23:09:57.0836 4232  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
      23:09:57.0875 4232  mrxsmb - ok
      23:09:57.0891 4232  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
      23:09:57.0902 4232  mrxsmb10 - ok
      23:09:57.0907 4232  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
      23:09:57.0916 4232  mrxsmb20 - ok
      23:09:57.0937 4232  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
      23:09:57.0945 4232  msahci - ok
      23:09:57.0968 4232  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
      23:09:57.0977 4232  msdsm - ok
      23:09:58.0004 4232  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
      23:09:58.0022 4232  MSDTC - ok
      23:09:58.0029 4232  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
      23:09:58.0055 4232  Msfs - ok
      23:09:58.0081 4232  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
      23:09:58.0118 4232  mshidkmdf - ok
      23:09:58.0134 4232  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
      23:09:58.0141 4232  msisadrv - ok
      23:09:58.0168 4232  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
      23:09:58.0197 4232  MSiSCSI - ok
      23:09:58.0201 4232  msiserver - ok
      23:09:58.0216 4232  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
      23:09:58.0253 4232  MSKSSRV - ok
      23:09:58.0269 4232  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
      23:09:58.0307 4232  MSPCLOCK - ok
      23:09:58.0317 4232  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
      23:09:58.0349 4232  MSPQM - ok
      23:09:58.0378 4232  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
      23:09:58.0390 4232  MsRPC - ok
      23:09:58.0406 4232  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
      23:09:58.0414 4232  mssmbios - ok
      23:09:58.0467 4232  MSSQL$SQLEXPRESS - ok
      23:09:58.0497 4232  [ 7A2A8C975356858EB38466A6B1592E8D ] MSSQLServerADHelper100 C:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
      23:09:58.0504 4232  MSSQLServerADHelper100 - ok
      23:09:58.0517 4232  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
      23:09:58.0553 4232  MSTEE - ok
      23:09:58.0565 4232  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
      23:09:58.0581 4232  MTConfig - ok
      23:09:58.0589 4232  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
      23:09:58.0598 4232  Mup - ok
      23:09:58.0638 4232  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
      23:09:58.0675 4232  napagent - ok
      23:09:58.0704 4232  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
      23:09:58.0731 4232  NativeWifiP - ok
      23:09:58.0805 4232  [ 934BB0D23A25C8C136570800A5A149B6 ] NAUpdate        C:\Program Files (x86)\Nero\Update\NASvc.exe
      23:09:58.0819 4232  NAUpdate - ok
      23:09:58.0843 4232  [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS            C:\Windows\system32\drivers\ndis.sys
      23:09:58.0861 4232  NDIS - ok
      23:09:58.0865 4232  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
      23:09:58.0900 4232  NdisCap - ok
      23:09:58.0908 4232  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
      23:09:58.0934 4232  NdisTapi - ok
      23:09:58.0965 4232  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
      23:09:58.0989 4232  Ndisuio - ok
      23:09:59.0007 4232  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
      23:09:59.0043 4232  NdisWan - ok
      23:09:59.0078 4232  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
      23:09:59.0111 4232  NDProxy - ok
      23:09:59.0115 4232  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
      23:09:59.0147 4232  NetBIOS - ok
      23:09:59.0166 4232  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
      23:09:59.0200 4232  NetBT - ok
      23:09:59.0214 4232  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
      23:09:59.0223 4232  Netlogon - ok
      23:09:59.0253 4232  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
      23:09:59.0291 4232  Netman - ok
      23:09:59.0322 4232  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
      23:09:59.0330 4232  NetMsmqActivator - ok
      23:09:59.0334 4232  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
      23:09:59.0341 4232  NetPipeActivator - ok
      23:09:59.0357 4232  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
      23:09:59.0392 4232  netprofm - ok
      23:09:59.0397 4232  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
      23:09:59.0404 4232  NetTcpActivator - ok
      23:09:59.0408 4232  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
      23:09:59.0415 4232  NetTcpPortSharing - ok
      23:09:59.0424 4232  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
      23:09:59.0433 4232  nfrd960 - ok
      23:09:59.0467 4232  [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc          C:\Windows\System32\nlasvc.dll
      23:09:59.0506 4232  NlaSvc - ok
      23:09:59.0515 4232  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
      23:09:59.0541 4232  Npfs - ok
      23:09:59.0568 4232  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
      23:09:59.0594 4232  nsi - ok
      23:09:59.0599 4232  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
      23:09:59.0635 4232  nsiproxy - ok
      23:09:59.0687 4232  [ A2F74975097F52A00745F9637451FDD8 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
      23:09:59.0713 4232  Ntfs - ok
      23:09:59.0720 4232  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
      23:09:59.0751 4232  Null - ok
      23:09:59.0780 4232  [ 785298579B5F9B4032152DFBB992FDB6 ] nusb3hub        C:\Windows\system32\DRIVERS\nusb3hub.sys
      23:09:59.0800 4232  nusb3hub - ok
      23:09:59.0811 4232  [ DF2750481B4964814467C974F2B0EEF1 ] nusb3xhc        C:\Windows\system32\DRIVERS\nusb3xhc.sys
      23:09:59.0820 4232  nusb3xhc - ok
      23:09:59.0836 4232  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
      23:09:59.0845 4232  nvraid - ok
      23:09:59.0870 4232  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
      23:09:59.0879 4232  nvstor - ok
      23:09:59.0894 4232  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
      23:09:59.0903 4232  nv_agp - ok
      23:09:59.0961 4232  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
      23:09:59.0972 4232  odserv - ok
      23:09:59.0985 4232  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
      23:09:59.0994 4232  ohci1394 - ok
      23:10:00.0024 4232  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
      23:10:00.0032 4232  ose - ok
      23:10:00.0072 4232  [ 0E2FDE2689340F06E7005BCDC45A5F5A ] OverwolfUpdaterService C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe
      23:10:00.0079 4232  OverwolfUpdaterService - ok
      23:10:00.0110 4232  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
      23:10:00.0127 4232  p2pimsvc - ok
      23:10:00.0144 4232  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
      23:10:00.0156 4232  p2psvc - ok
      23:10:00.0169 4232  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
      23:10:00.0178 4232  Parport - ok
      23:10:00.0197 4232  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
      23:10:00.0206 4232  partmgr - ok
      23:10:00.0223 4232  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
      23:10:00.0244 4232  PcaSvc - ok
      23:10:00.0250 4232  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
      23:10:00.0259 4232  pci - ok
      23:10:00.0263 4232  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
      23:10:00.0271 4232  pciide - ok
      23:10:00.0290 4232  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
      23:10:00.0301 4232  pcmcia - ok
      23:10:00.0306 4232  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
      23:10:00.0314 4232  pcw - ok
      23:10:00.0336 4232  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
      23:10:00.0379 4232  PEAUTH - ok
      23:10:00.0423 4232  [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
      23:10:00.0453 4232  PeerDistSvc - ok
      23:10:00.0529 4232  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
      23:10:00.0547 4232  PerfHost - ok
      23:10:00.0611 4232  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
      23:10:00.0656 4232  pla - ok
      23:10:00.0696 4232  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
      23:10:00.0708 4232  PlugPlay - ok
      23:10:00.0712 4232  PnkBstrA - ok
      23:10:00.0742 4232  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
      23:10:00.0763 4232  PNRPAutoReg - ok
      23:10:00.0781 4232  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
      23:10:00.0792 4232  PNRPsvc - ok
      23:10:00.0809 4232  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
      23:10:00.0844 4232  PolicyAgent - ok
      23:10:00.0870 4232  postgresql-8.3 - ok
      23:10:00.0896 4232  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
      23:10:00.0937 4232  Power - ok
      23:10:00.0965 4232  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
      23:10:00.0994 4232  PptpMiniport - ok
      23:10:01.0008 4232  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
      23:10:01.0023 4232  Processor - ok
      23:10:01.0044 4232  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
      23:10:01.0054 4232  ProfSvc - ok
      23:10:01.0069 4232  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
      23:10:01.0077 4232  ProtectedStorage - ok
      23:10:01.0113 4232  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
      23:10:01.0148 4232  Psched - ok
      23:10:01.0180 4232  [ 0B6DEA0A1662CAB8F2BF339DC0752EF4 ] PSI_SVC_2       c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
      23:10:01.0188 4232  PSI_SVC_2 - ok
      23:10:01.0230 4232  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
      23:10:01.0257 4232  ql2300 - ok
      23:10:01.0268 4232  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
      23:10:01.0278 4232  ql40xx - ok
      23:10:01.0307 4232  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
      23:10:01.0322 4232  QWAVE - ok
      23:10:01.0332 4232  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
      23:10:01.0345 4232  QWAVEdrv - ok
      23:10:01.0350 4232  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
      23:10:01.0383 4232  RasAcd - ok
      23:10:01.0409 4232  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
      23:10:01.0438 4232  RasAgileVpn - ok
      23:10:01.0445 4232  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
      23:10:01.0476 4232  RasAuto - ok
      23:10:01.0493 4232  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
      23:10:01.0530 4232  Rasl2tp - ok
      23:10:01.0564 4232  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
      23:10:01.0592 4232  RasMan - ok
      23:10:01.0602 4232  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
      23:10:01.0639 4232  RasPppoe - ok
      23:10:01.0644 4232  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
      23:10:01.0671 4232  RasSstp - ok
      23:10:01.0688 4232  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
      23:10:01.0728 4232  rdbss - ok
      23:10:01.0732 4232  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
      23:10:01.0745 4232  rdpbus - ok
      23:10:01.0759 4232  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
      23:10:01.0796 4232  RDPCDD - ok
      23:10:01.0825 4232  [ 1B6163C503398B23FF8B939C67747683 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
      23:10:01.0847 4232  RDPDR - ok
      23:10:01.0863 4232  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
      23:10:01.0888 4232  RDPENCDD - ok
      23:10:01.0894 4232  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
      23:10:01.0920 4232  RDPREFMP - ok
      23:10:01.0938 4232  [ 70CBA1A0C98600A2AA1863479B35CB90 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
      23:10:01.0957 4232  RdpVideoMiniport - ok
      23:10:01.0972 4232  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
      23:10:01.0981 4232  RDPWD - ok
      23:10:02.0015 4232  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
      23:10:02.0026 4232  rdyboost - ok
      23:10:02.0079 4232  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
      23:10:02.0106 4232  RemoteAccess - ok
      23:10:02.0136 4232  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
      23:10:02.0175 4232  RemoteRegistry - ok
      23:10:02.0185 4232  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
      23:10:02.0223 4232  RpcEptMapper - ok
      23:10:02.0275 4232  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
      23:10:02.0285 4232  RpcLocator - ok
      23:10:02.0325 4232  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
      23:10:02.0354 4232  RpcSs - ok
      23:10:02.0417 4232  [ CD553B8633466A6D1C115812F2619F1F ] RsFx0103        C:\Windows\system32\DRIVERS\RsFx0103.sys
      23:10:02.0427 4232  RsFx0103 - ok
      23:10:02.0441 4232  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
      23:10:02.0467 4232  rspndr - ok
      23:10:02.0495 4232  [ D6D381B76056C668679723938F06F16C ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIVX.sys
      23:10:02.0503 4232  RTHDMIAzAudService - ok
      23:10:02.0538 4232  [ 3B01789EE4EAEE97F5EB46B711387D5E ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
      23:10:02.0562 4232  RTL8167 - ok
      23:10:02.0578 4232  [ E60C0A09F997826C7627B244195AB581 ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
      23:10:02.0592 4232  s3cap - ok
      23:10:02.0601 4232  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
      23:10:02.0609 4232  SamSs - ok
      23:10:02.0629 4232  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
      23:10:02.0638 4232  sbp2port - ok
      23:10:02.0657 4232  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
      23:10:02.0697 4232  SCardSvr - ok
      23:10:02.0728 4232  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
      23:10:02.0762 4232  scfilter - ok
      23:10:02.0799 4232  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
      23:10:02.0840 4232  Schedule - ok
      23:10:02.0872 4232  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
      23:10:02.0897 4232  SCPolicySvc - ok
      23:10:02.0933 4232  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
      23:10:02.0942 4232  SDRSVC - ok
      23:10:02.0992 4232  [ D98E936BDD4A6CFE39535F3696D0EC6F ] SDScannerService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
      23:10:03.0010 4232  SDScannerService - ok
      23:10:03.0049 4232  [ 2D5088524613D1ED55D20195AF42DDC7 ] SDUpdateService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
      23:10:03.0070 4232  SDUpdateService - ok
      23:10:03.0096 4232  [ 59DCE6783F9ED27EB72C81466E363BF8 ] SDWSCService    C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
      23:10:03.0104 4232  SDWSCService - ok
      23:10:03.0135 4232  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
      23:10:03.0161 4232  secdrv - ok
      23:10:03.0190 4232  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
      23:10:03.0223 4232  seclogon - ok
      23:10:03.0254 4232  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
      23:10:03.0293 4232  SENS - ok
      23:10:03.0303 4232  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
      23:10:03.0316 4232  SensrSvc - ok
      23:10:03.0328 4232  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
      23:10:03.0356 4232  Serenum - ok
      23:10:03.0365 4232  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
      23:10:03.0374 4232  Serial - ok
      23:10:03.0393 4232  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
      23:10:03.0408 4232  sermouse - ok
      23:10:03.0448 4232  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
      23:10:03.0475 4232  SessionEnv - ok
      23:10:03.0501 4232  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
      23:10:03.0519 4232  sffdisk - ok
      23:10:03.0529 4232  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
      23:10:03.0548 4232  sffp_mmc - ok
      23:10:03.0562 4232  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
      23:10:03.0572 4232  sffp_sd - ok
      23:10:03.0585 4232  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
      23:10:03.0593 4232  sfloppy - ok
      23:10:03.0631 4232  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
      23:10:03.0671 4232  ShellHWDetection - ok
      23:10:03.0700 4232  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
      23:10:03.0708 4232  SiSRaid2 - ok
      23:10:03.0723 4232  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
      23:10:03.0732 4232  SiSRaid4 - ok
      23:10:03.0772 4232  [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
      23:10:03.0780 4232  SkypeUpdate - ok
      23:10:03.0784 4232  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
      23:10:03.0819 4232  Smb - ok
      23:10:03.0849 4232  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
      23:10:03.0863 4232  SNMPTRAP - ok
      23:10:03.0877 4232  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
      23:10:03.0886 4232  spldr - ok
      23:10:03.0911 4232  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
      23:10:03.0935 4232  Spooler - ok
      23:10:04.0008 4232  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
      23:10:04.0069 4232  sppsvc - ok
      23:10:04.0086 4232  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
      23:10:04.0121 4232  sppuinotify - ok
      23:10:04.0158 4232  [ DFC4E2081324E505CA479E473A78D893 ] sptd            C:\Windows\System32\Drivers\sptd.sys
      23:10:04.0170 4232  sptd - ok
      23:10:04.0252 4232  [ 12E6D95CDE974B131DEFAA44BAB8B056 ] SQLAgent$SQLEXPRESS C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE
      23:10:04.0263 4232  SQLAgent$SQLEXPRESS - ok
      23:10:04.0311 4232  [ B54B48F6D92423440C264E91225C5FF1 ] SQLBrowser      C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
      23:10:04.0320 4232  SQLBrowser - ok
      23:10:04.0347 4232  [ 6D65985945B03CA59B67D0B73702FC7B ] SQLWriter       C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
      23:10:04.0356 4232  SQLWriter - ok
      23:10:04.0374 4232  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
      23:10:04.0410 4232  srv - ok
      23:10:04.0445 4232  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
      23:10:04.0468 4232  srv2 - ok
      23:10:04.0474 4232  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
      23:10:04.0484 4232  srvnet - ok
      23:10:04.0497 4232  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
      23:10:04.0532 4232  SSDPSRV - ok
      23:10:04.0567 4232  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
      23:10:04.0594 4232  SstpSvc - ok
      23:10:04.0651 4232  [ B1691AF4A072CB674D600DB16DD7308E ] StarWindServiceAE C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
      23:10:04.0656 4232  StarWindServiceAE ( UnsignedFile.Multi.Generic ) - warning
      23:10:04.0656 4232  StarWindServiceAE - detected UnsignedFile.Multi.Generic (1)
      23:10:04.0670 4232  Steam Client Service - ok
      23:10:04.0697 4232  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
      23:10:04.0705 4232  stexstor - ok
      23:10:04.0743 4232  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
      23:10:04.0770 4232  stisvc - ok
      23:10:04.0783 4232  [ 7785DC213270D2FC066538DAF94087E7 ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
      23:10:04.0790 4232  storflt - ok
      23:10:04.0804 4232  [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
      23:10:04.0812 4232  storvsc - ok
      23:10:04.0824 4232  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
      23:10:04.0832 4232  swenum - ok
      23:10:04.0846 4232  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
      23:10:04.0888 4232  swprv - ok
      23:10:04.0892 4232  Synth3dVsc - ok
      23:10:04.0943 4232  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
      23:10:04.0979 4232  SysMain - ok
      23:10:05.0008 4232  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
      23:10:05.0031 4232  TabletInputService - ok
      23:10:05.0044 4232  [ B08740047145B9BCE15BF75CA0F9718A ] tap0901t        C:\Windows\system32\DRIVERS\tap0901t.sys
      23:10:05.0069 4232  tap0901t - ok
      23:10:05.0102 4232  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
      23:10:05.0137 4232  TapiSrv - ok
      23:10:05.0170 4232  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
      23:10:05.0197 4232  TBS - ok
      23:10:05.0242 4232  [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
      23:10:05.0272 4232  Tcpip - ok
      23:10:05.0295 4232  [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
      23:10:05.0324 4232  TCPIP6 - ok
      23:10:05.0356 4232  [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
      23:10:05.0385 4232  tcpipreg - ok
      23:10:05.0415 4232  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
      23:10:05.0423 4232  TDPIPE - ok
      23:10:05.0441 4232  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
      23:10:05.0454 4232  TDTCP - ok
      23:10:05.0485 4232  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
      23:10:05.0515 4232  tdx - ok
      23:10:05.0535 4232  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
      23:10:05.0543 4232  TermDD - ok
      23:10:05.0583 4232  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
      23:10:05.0619 4232  TermService - ok
      23:10:05.0637 4232  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
      23:10:05.0659 4232  Themes - ok
      23:10:05.0689 4232  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
      23:10:05.0717 4232  THREADORDER - ok
      23:10:05.0731 4232  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
      23:10:05.0764 4232  TrkWks - ok
      23:10:05.0812 4232  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
      23:10:05.0845 4232  TrustedInstaller - ok
      23:10:05.0880 4232  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
      23:10:05.0911 4232  tssecsrv - ok
      23:10:05.0939 4232  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
      23:10:05.0947 4232  TsUsbFlt - ok
      23:10:05.0950 4232  tsusbhub - ok
      23:10:06.0015 4232  [ AFC5CCD57F4DB07762B134E82454D1ED ] TuneUp.UtilitiesSvc C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe
      23:10:06.0046 4232  TuneUp.UtilitiesSvc - ok
      23:10:06.0080 4232  [ DCC94C51D27C7EC0DADECA8F64C94FCF ] TuneUpUtilitiesDrv C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys
      23:10:06.0087 4232  TuneUpUtilitiesDrv - ok
      23:10:06.0136 4232  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
      23:10:06.0173 4232  tunnel - ok
      23:10:06.0215 4232  [ EB2252371A7A4B26B8AB2C6DF0B4EEFF ] TunngleService  C:\Program Files (x86)\Tunngle\TnglCtrl.exe
      23:10:06.0228 4232  TunngleService - ok
      23:10:06.0259 4232  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
      23:10:06.0268 4232  uagp35 - ok
      23:10:06.0298 4232  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
      23:10:06.0325 4232  udfs - ok
      23:10:06.0354 4232  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
      23:10:06.0364 4232  UI0Detect - ok
      23:10:06.0378 4232  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
      23:10:06.0387 4232  uliagpkx - ok
      23:10:06.0409 4232  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\drivers\umbus.sys
      23:10:06.0417 4232  umbus - ok
      23:10:06.0427 4232  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
      23:10:06.0443 4232  UmPass - ok
      23:10:06.0472 4232  [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService    C:\Windows\System32\umrdp.dll
      23:10:06.0494 4232  UmRdpService - ok
      23:10:06.0508 4232  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
      23:10:06.0539 4232  upnphost - ok
      23:10:06.0552 4232  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
      23:10:06.0560 4232  usbccgp - ok
      23:10:06.0571 4232  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
      23:10:06.0593 4232  usbcir - ok
      23:10:06.0605 4232  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
      23:10:06.0623 4232  usbehci - ok
      23:10:06.0640 4232  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
      23:10:06.0657 4232  usbhub - ok
      23:10:06.0669 4232  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
      23:10:06.0677 4232  usbohci - ok
      23:10:06.0684 4232  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
      23:10:06.0705 4232  usbprint - ok
      23:10:06.0732 4232  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
      23:10:06.0747 4232  usbscan - ok
      23:10:06.0762 4232  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
      23:10:06.0778 4232  USBSTOR - ok
      23:10:06.0788 4232  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
      23:10:06.0805 4232  usbuhci - ok
      23:10:06.0839 4232  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
      23:10:06.0866 4232  UxSms - ok
      23:10:06.0890 4232  [ 0402A29661A4D4CBB2E2EB7F46D19F31 ] UxTuneUp        C:\Windows\System32\uxtuneup.dll
      23:10:06.0897 4232  UxTuneUp - ok
      23:10:06.0906 4232  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
      23:10:06.0915 4232  VaultSvc - ok
      23:10:06.0937 4232  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
      23:10:06.0945 4232  vdrvroot - ok
      23:10:06.0985 4232  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
      23:10:07.0023 4232  vds - ok
      23:10:07.0034 4232  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
      23:10:07.0044 4232  vga - ok
      23:10:07.0056 4232  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
      23:10:07.0103 4232  VgaSave - ok
      23:10:07.0106 4232  VGPU - ok
      23:10:07.0126 4232  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
      23:10:07.0136 4232  vhdmp - ok
      23:10:07.0144 4232  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
      23:10:07.0152 4232  viaide - ok
      23:10:07.0171 4232  [ 86EA3E79AE350FEA5331A1303054005F ] vmbus           C:\Windows\system32\drivers\vmbus.sys
      23:10:07.0180 4232  vmbus - ok
      23:10:07.0197 4232  [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
      23:10:07.0214 4232  VMBusHID - ok
      23:10:07.0219 4232  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
      23:10:07.0227 4232  volmgr - ok
      23:10:07.0245 4232  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
      23:10:07.0257 4232  volmgrx - ok
      23:10:07.0277 4232  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
      23:10:07.0288 4232  volsnap - ok
      23:10:07.0300 4232  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
      23:10:07.0309 4232  vsmraid - ok
      23:10:07.0358 4232  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
      23:10:07.0401 4232  VSS - ok
      23:10:07.0412 4232  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
      23:10:07.0430 4232  vwifibus - ok
      23:10:07.0490 4232  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
      23:10:07.0520 4232  W32Time - ok
      23:10:07.0543 4232  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
      23:10:07.0552 4232  WacomPen - ok
      23:10:07.0571 4232  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
      23:10:07.0597 4232  WANARP - ok
      23:10:07.0611 4232  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
      23:10:07.0636 4232  Wanarpv6 - ok
      23:10:07.0676 4232  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
      23:10:07.0698 4232  WatAdminSvc - ok
      23:10:07.0743 4232  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
      23:10:07.0775 4232  wbengine - ok
      23:10:07.0789 4232  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
      23:10:07.0803 4232  WbioSrvc - ok
      23:10:07.0836 4232  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
      23:10:07.0853 4232  wcncsvc - ok
      23:10:07.0876 4232  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
      23:10:07.0913 4232  WcsPlugInService - ok
      23:10:07.0928 4232  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
      23:10:07.0937 4232  Wd - ok
      23:10:07.0952 4232  [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
      23:10:07.0967 4232  Wdf01000 - ok
      23:10:07.0977 4232  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
      23:10:08.0030 4232  WdiServiceHost - ok
      23:10:08.0033 4232  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
      23:10:08.0046 4232  WdiSystemHost - ok
      23:10:08.0078 4232  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
      23:10:08.0093 4232  WebClient - ok
      23:10:08.0123 4232  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
      23:10:08.0161 4232  Wecsvc - ok
      23:10:08.0176 4232  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
      23:10:08.0214 4232  wercplsupport - ok
      23:10:08.0224 4232  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
      23:10:08.0255 4232  WerSvc - ok
      23:10:08.0265 4232  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
      23:10:08.0291 4232  WfpLwf - ok
      23:10:08.0302 4232  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
      23:10:08.0310 4232  WIMMount - ok
      23:10:08.0327 4232  WinDefend - ok
      23:10:08.0333 4232  WinHttpAutoProxySvc - ok
      23:10:08.0392 4232  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
      23:10:08.0423 4232  Winmgmt - ok
      23:10:08.0471 4232  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
      23:10:08.0524 4232  WinRM - ok
      23:10:08.0547 4232  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
      23:10:08.0558 4232  WinUsb - ok
      23:10:08.0595 4232  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
      23:10:08.0623 4232  Wlansvc - ok
      23:10:08.0692 4232  [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
      23:10:08.0724 4232  wlidsvc - ok
      23:10:08.0745 4232  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
      23:10:08.0764 4232  WmiAcpi - ok
      23:10:08.0797 4232  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
      23:10:08.0814 4232  wmiApSrv - ok
      23:10:08.0825 4232  WMPNetworkSvc - ok
      23:10:08.0836 4232  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
      23:10:08.0845 4232  WPCSvc - ok
      23:10:08.0875 4232  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
      23:10:08.0887 4232  WPDBusEnum - ok
      23:10:08.0910 4232  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
      23:10:08.0944 4232  ws2ifsl - ok
      23:10:08.0953 4232  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\system32\wscsvc.dll
      23:10:08.0976 4232  wscsvc - ok
      23:10:08.0979 4232  WSearch - ok
      23:10:09.0035 4232  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
      23:10:09.0072 4232  wuauserv - ok
      23:10:09.0099 4232  [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
      23:10:09.0135 4232  WudfPf - ok
      23:10:09.0149 4232  [ CF8D590BE3373029D57AF80914190682 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
      23:10:09.0180 4232  WUDFRd - ok
      23:10:09.0213 4232  [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
      23:10:09.0239 4232  wudfsvc - ok
      23:10:09.0270 4232  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
      23:10:09.0292 4232  WwanSvc - ok
      23:10:09.0325 4232  [ 2EE48CFCE7CA8E0DB4C44C7476C0943B ] xusb21          C:\Windows\system32\DRIVERS\xusb21.sys
      23:10:09.0333 4232  xusb21 - ok
      23:10:09.0339 4232  ================ Scan global ===============================
      23:10:09.0367 4232  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
      23:10:09.0400 4232  [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
      23:10:09.0406 4232  [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
      23:10:09.0434 4232  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
      23:10:09.0455 4232  [ 50BEA589F7D7958BDD2528A8F69D05CC ] C:\Windows\system32\services.exe
      23:10:09.0458 4232  C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.a ) - infected
      23:10:09.0458 4232  C:\Windows\system32\services.exe - detected Virus.Win64.ZAccess.a (0)
      23:10:09.0459 4232  ================ Scan MBR ==================================
      23:10:09.0462 4232  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
      23:10:09.0569 4232  \Device\Harddisk0\DR0 - ok
      23:10:09.0583 4232  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
      23:10:09.0733 4232  \Device\Harddisk1\DR1 - ok
      23:10:09.0733 4232  ================ Scan VBR ==================================
      23:10:09.0735 4232  [ FF276AEC0BFFCF84F75696846B39A38D ] \Device\Harddisk0\DR0\Partition1
      23:10:09.0736 4232  \Device\Harddisk0\DR0\Partition1 - ok
      23:10:09.0739 4232  [ 51CEDB75142BF07FA072DB2C8221B97F ] \Device\Harddisk1\DR1\Partition1
      23:10:09.0740 4232  \Device\Harddisk1\DR1\Partition1 - ok
      23:10:09.0764 4232  [ 27C5A91ACD032A5A84B51ED63445290C ] \Device\Harddisk1\DR1\Partition2
      23:10:09.0765 4232  \Device\Harddisk1\DR1\Partition2 - ok
      23:10:09.0766 4232  ============================================================
      23:10:09.0766 4232  Scan finished
      23:10:09.0766 4232  ============================================================
      23:10:09.0773 5532  Detected object count: 6
      23:10:09.0773 5532  Actual detected object count: 6
      23:10:44.0849 5532  AxisCameraStation ( UnsignedFile.Multi.Generic ) - skipped by user
      23:10:44.0849 5532  AxisCameraStation ( UnsignedFile.Multi.Generic ) - User select action: Skip 
      23:10:44.0850 5532  KMWDSERVICE ( UnsignedFile.Multi.Generic ) - skipped by user
      23:10:44.0850 5532  KMWDSERVICE ( UnsignedFile.Multi.Generic ) - User select action: Skip 
      23:10:44.0852 5532  LGDDCDevice ( UnsignedFile.Multi.Generic ) - skipped by user
      23:10:44.0852 5532  LGDDCDevice ( UnsignedFile.Multi.Generic ) - User select action: Skip 
      23:10:44.0853 5532  LGII2CDevice ( UnsignedFile.Multi.Generic ) - skipped by user
      23:10:44.0853 5532  LGII2CDevice ( UnsignedFile.Multi.Generic ) - User select action: Skip 
      23:10:44.0855 5532  StarWindServiceAE ( UnsignedFile.Multi.Generic ) - skipped by user
      23:10:44.0855 5532  StarWindServiceAE ( UnsignedFile.Multi.Generic ) - User select action: Skip 
      23:10:44.0864 5532  C:\Windows\system32\services.exe - copied to quarantine
      23:10:44.0892 5532  C:\Windows\assembly\GAC_32\desktop.ini - copied to quarantine
      23:10:44.0893 5532  C:\Windows\assembly\GAC_64\desktop.ini - copied to quarantine
      23:10:46.0138 5532  Backup copy not found, trying to cure infected file..
      23:10:46.0138 5532  C:\Windows\system32\services.exe - Cure failed (FFFFFFFF)
      23:10:46.0138 5532  C:\Windows\system32\services.exe - processing error
      23:10:46.0138 5532  C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.a ) - User select action: Cure

    6. #6
      Usuario Avatar de MsTheKing98
      Registrado
      abr 2012
      Ubicación
      Tepic, México
      Mensajes
      790

      Re: Problema con WIN32/Sirefef

      Hola zerosn,

      Por favor, ejecuta nuevamente TDSSKiller como te lo indique en mi anterior respuesta.

      Me traes el reporte, saludos.

    7. #7
      Usuario Avatar de zerosn
      Registrado
      sep 2012
      Ubicación
      Argentina
      Mensajes
      8

      Re: Problema con WIN32/Sirefef

      Código:
      17:17:03.0890 7180  TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
      17:17:04.0641 7180  ============================================================
      17:17:04.0641 7180  Current date / time: 2012/09/21 17:17:04.0641
      17:17:04.0641 7180  SystemInfo:
      17:17:04.0641 7180  
      17:17:04.0641 7180  OS Version: 6.1.7601 ServicePack: 1.0
      17:17:04.0641 7180  Product type: Workstation
      17:17:04.0641 7180  ComputerName: TOTOY-POSTA
      17:17:04.0642 7180  UserName: Totoy
      17:17:04.0642 7180  Windows directory: C:\Windows
      17:17:04.0642 7180  System windows directory: C:\Windows
      17:17:04.0642 7180  Running under WOW64
      17:17:04.0642 7180  Processor architecture: Intel x64
      17:17:04.0642 7180  Number of processors: 6
      17:17:04.0642 7180  Page size: 0x1000
      17:17:04.0642 7180  Boot type: Normal boot
      17:17:04.0642 7180  ============================================================
      17:17:05.0457 7180  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
      17:17:05.0463 7180  Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xFC59, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
      17:17:05.0495 7180  ============================================================
      17:17:05.0495 7180  \Device\Harddisk0\DR0:
      17:17:05.0495 7180  MBR partitions:
      17:17:05.0495 7180  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705800
      17:17:05.0495 7180  \Device\Harddisk1\DR1:
      17:17:05.0495 7180  MBR partitions:
      17:17:05.0495 7180  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
      17:17:05.0495 7180  \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x3A353030
      17:17:05.0496 7180  ============================================================
      17:17:05.0519 7180  C: <-> \Device\Harddisk1\DR1\Partition2
      17:17:05.0520 7180  D: <-> \Device\Harddisk0\DR0\Partition1
      17:17:05.0520 7180  ============================================================
      17:17:05.0520 7180  Initialize success
      17:17:05.0520 7180  ============================================================
      17:17:14.0261 1272  ============================================================
      17:17:14.0261 1272  Scan started
      17:17:14.0261 1272  Mode: Manual; SigCheck; TDLFS; 
      17:17:14.0261 1272  ============================================================
      17:17:15.0007 1272  ================ Scan services =============================
      17:17:15.0115 1272  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
      17:17:15.0157 1272  1394ohci - ok
      17:17:15.0229 1272  [ 656F06850D02BAED19F0E2E72B047CE2 ] ABBYY.Licensing.FineReader.Professional.11.0 C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe
      17:17:15.0247 1272  ABBYY.Licensing.FineReader.Professional.11.0 - ok
      17:17:15.0271 1272  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
      17:17:15.0283 1272  ACPI - ok
      17:17:15.0298 1272  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
      17:17:15.0309 1272  AcpiPmi - ok
      17:17:15.0356 1272  [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
      17:17:15.0363 1272  AdobeARMservice - ok
      17:17:15.0484 1272  [ E12CFCF1DDBFC50948A75E6E38793225 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
      17:17:15.0492 1272  AdobeFlashPlayerUpdateSvc - ok
      17:17:15.0541 1272  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
      17:17:15.0554 1272  adp94xx - ok
      17:17:15.0590 1272  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
      17:17:15.0602 1272  adpahci - ok
      17:17:15.0618 1272  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
      17:17:15.0628 1272  adpu320 - ok
      17:17:15.0663 1272  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
      17:17:15.0690 1272  AeLookupSvc - ok
      17:17:15.0738 1272  [ 0D0E5281784C2C526BA43C2ECD374288 ] Afc             C:\Windows\syswow64\drivers\Afc.sys
      17:17:15.0751 1272  Afc - ok
      17:17:15.0785 1272  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
      17:17:15.0797 1272  AFD - ok
      17:17:15.0825 1272  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
      17:17:15.0833 1272  agp440 - ok
      17:17:15.0850 1272  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
      17:17:15.0859 1272  ALG - ok
      17:17:15.0883 1272  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
      17:17:15.0891 1272  aliide - ok
      17:17:15.0946 1272  [ 0642A7B1C4B119AE2AAF1AA61CF69668 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
      17:17:15.0959 1272  AMD External Events Utility - ok
      17:17:15.0963 1272  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
      17:17:15.0971 1272  amdide - ok
      17:17:15.0989 1272  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
      17:17:15.0998 1272  AmdK8 - ok
      17:17:16.0111 1272  [ C6C0F73A038FF38EBBD9C16F79F8D3E3 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
      17:17:16.0180 1272  amdkmdag - ok
      17:17:16.0219 1272  [ 4647D713CFF04FAE4F862B3144725BC1 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
      17:17:16.0230 1272  amdkmdap - ok
      17:17:16.0239 1272  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
      17:17:16.0248 1272  AmdPPM - ok
      17:17:16.0270 1272  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
      17:17:16.0279 1272  amdsata - ok
      17:17:16.0314 1272  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
      17:17:16.0324 1272  amdsbs - ok
      17:17:16.0338 1272  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
      17:17:16.0346 1272  amdxata - ok
      17:17:16.0386 1272  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
      17:17:16.0411 1272  AppID - ok
      17:17:16.0439 1272  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
      17:17:16.0467 1272  AppIDSvc - ok
      17:17:16.0509 1272  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo         C:\Windows\System32\appinfo.dll
      17:17:16.0535 1272  Appinfo - ok
      17:17:16.0582 1272  [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt         C:\Windows\System32\appmgmts.dll
      17:17:16.0593 1272  AppMgmt - ok
      17:17:16.0606 1272  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
      17:17:16.0616 1272  arc - ok
      17:17:16.0627 1272  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
      17:17:16.0637 1272  arcsas - ok
      17:17:16.0726 1272  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
      17:17:16.0734 1272  aspnet_state - ok
      17:17:16.0751 1272  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
      17:17:16.0778 1272  AsyncMac - ok
      17:17:16.0792 1272  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
      17:17:16.0801 1272  atapi - ok
      17:17:16.0870 1272  [ FC0E8778C000291CAF60EB88C011E931 ] atksgt          C:\Windows\system32\DRIVERS\atksgt.sys
      17:17:16.0881 1272  atksgt - ok
      17:17:16.0929 1272  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
      17:17:16.0960 1272  AudioEndpointBuilder - ok
      17:17:16.0970 1272  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
      17:17:17.0003 1272  AudioSrv - ok
      17:17:17.0032 1272  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
      17:17:17.0045 1272  AxInstSV - ok
      17:17:17.0079 1272  [ 33722AB7981C17BD8E8C9C47CFF82B99 ] AxisCameraStation C:\Program Files (x86)\Axis Communications\AXIS Camera Station\AcsService.exe
      17:17:17.0083 1272  AxisCameraStation ( UnsignedFile.Multi.Generic ) - warning
      17:17:17.0083 1272  AxisCameraStation - detected UnsignedFile.Multi.Generic (1)
      17:17:17.0130 1272  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
      17:17:17.0143 1272  b06bdrv - ok
      17:17:17.0188 1272  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
      17:17:17.0199 1272  b57nd60a - ok
      17:17:17.0235 1272  [ F29D375926E36E3A56AF4805C7749302 ] BCUService      C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe
      17:17:17.0244 1272  BCUService - ok
      17:17:17.0281 1272  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
      17:17:17.0290 1272  BDESVC - ok
      17:17:17.0310 1272  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
      17:17:17.0337 1272  Beep - ok
      17:17:17.0385 1272  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
      17:17:17.0416 1272  BFE - ok
      17:17:17.0472 1272  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
      17:17:17.0505 1272  BITS - ok
      17:17:17.0523 1272  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
      17:17:17.0532 1272  blbdrive - ok
      17:17:17.0565 1272  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
      17:17:17.0574 1272  bowser - ok
      17:17:17.0590 1272  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
      17:17:17.0600 1272  BrFiltLo - ok
      17:17:17.0616 1272  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
      17:17:17.0626 1272  BrFiltUp - ok
      17:17:17.0638 1272  [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
      17:17:17.0665 1272  BridgeMP - ok
      17:17:17.0683 1272  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
      17:17:17.0693 1272  Browser - ok
      17:17:17.0716 1272  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
      17:17:17.0727 1272  Brserid - ok
      17:17:17.0738 1272  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
      17:17:17.0749 1272  BrSerWdm - ok
      17:17:17.0762 1272  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
      17:17:17.0774 1272  BrUsbMdm - ok
      17:17:17.0782 1272  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
      17:17:17.0792 1272  BrUsbSer - ok
      17:17:17.0807 1272  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
      17:17:17.0818 1272  BTHMODEM - ok
      17:17:17.0853 1272  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
      17:17:17.0880 1272  bthserv - ok
      17:17:17.0889 1272  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
      17:17:17.0917 1272  cdfs - ok
      17:17:17.0940 1272  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
      17:17:17.0951 1272  cdrom - ok
      17:17:17.0994 1272  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
      17:17:18.0020 1272  CertPropSvc - ok
      17:17:18.0046 1272  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
      17:17:18.0057 1272  circlass - ok
      17:17:18.0076 1272  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
      17:17:18.0089 1272  CLFS - ok
      17:17:18.0140 1272  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
      17:17:18.0148 1272  clr_optimization_v2.0.50727_32 - ok
      17:17:18.0195 1272  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
      17:17:18.0203 1272  clr_optimization_v2.0.50727_64 - ok
      17:17:18.0282 1272  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
      17:17:18.0290 1272  clr_optimization_v4.0.30319_32 - ok
      17:17:18.0316 1272  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
      17:17:18.0324 1272  clr_optimization_v4.0.30319_64 - ok
      17:17:18.0349 1272  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
      17:17:18.0358 1272  CmBatt - ok
      17:17:18.0367 1272  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
      17:17:18.0375 1272  cmdide - ok
      17:17:18.0406 1272  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
      17:17:18.0425 1272  CNG - ok
      17:17:18.0436 1272  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
      17:17:18.0445 1272  Compbatt - ok
      17:17:18.0476 1272  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
      17:17:18.0487 1272  CompositeBus - ok
      17:17:18.0491 1272  COMSysApp - ok
      17:17:18.0508 1272  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
      17:17:18.0517 1272  crcdisk - ok
      17:17:18.0557 1272  [ 4F5414602E2544A4554D95517948B705 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
      17:17:18.0568 1272  CryptSvc - ok
      17:17:18.0601 1272  [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC             C:\Windows\system32\drivers\csc.sys
      17:17:18.0613 1272  CSC - ok
      17:17:18.0633 1272  [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService      C:\Windows\System32\cscsvc.dll
      17:17:18.0648 1272  CscService - ok
      17:17:18.0664 1272  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
      17:17:18.0695 1272  DcomLaunch - ok
      17:17:18.0721 1272  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
      17:17:18.0750 1272  defragsvc - ok
      17:17:18.0768 1272  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
      17:17:18.0796 1272  DfsC - ok
      17:17:18.0827 1272  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
      17:17:18.0855 1272  Dhcp - ok
      17:17:18.0859 1272  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
      17:17:18.0888 1272  discache - ok
      17:17:18.0907 1272  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
      17:17:18.0916 1272  Disk - ok
      17:17:18.0948 1272  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
      17:17:18.0958 1272  Dnscache - ok
      17:17:18.0992 1272  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
      17:17:19.0020 1272  dot3svc - ok
      17:17:19.0051 1272  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
      17:17:19.0078 1272  DPS - ok
      17:17:19.0112 1272  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
      17:17:19.0123 1272  drmkaud - ok
      17:17:19.0165 1272  [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01     C:\Windows\system32\DRIVERS\dtsoftbus01.sys
      17:17:19.0175 1272  dtsoftbus01 - ok
      17:17:19.0200 1272  [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
      17:17:19.0220 1272  DXGKrnl - ok
      17:17:19.0254 1272  [ 13533557D01B88C83110D5CF749F14D7 ] eamonm          C:\Windows\system32\DRIVERS\eamonm.sys
      17:17:19.0264 1272  eamonm - ok
      17:17:19.0287 1272  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
      17:17:19.0315 1272  EapHost - ok
      17:17:19.0383 1272  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
      17:17:19.0421 1272  ebdrv - ok
      17:17:19.0453 1272  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
      17:17:19.0463 1272  EFS - ok
      17:17:19.0498 1272  [ E097728129E7B79BF1089D7AEF42332B ] ehdrv           C:\Windows\system32\DRIVERS\ehdrv.sys
      17:17:19.0507 1272  ehdrv - ok
      17:17:19.0560 1272  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
      17:17:19.0575 1272  ehRecvr - ok
      17:17:19.0603 1272  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
      17:17:19.0613 1272  ehSched - ok
      17:17:19.0689 1272  [ CB143DCD8864442CFCF37629002766E3 ] ekrn            C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
      17:17:19.0708 1272  ekrn - ok
      17:17:19.0750 1272  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
      17:17:19.0765 1272  elxstor - ok
      17:17:19.0793 1272  [ 2380976CF8A4A56611F35633ACD2A74F ] epfwwfpr        C:\Windows\system32\DRIVERS\epfwwfpr.sys
      17:17:19.0802 1272  epfwwfpr - ok
      17:17:19.0876 1272  [ 1E345F2A2D95DA3190596E691CDE9342 ] EPSON_PM_RPCV4_01 C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
      17:17:19.0885 1272  EPSON_PM_RPCV4_01 - ok
      17:17:19.0915 1272  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
      17:17:19.0923 1272  ErrDev - ok
      17:17:19.0960 1272  [ B8FA96995726D1FA58476E352C02AD82 ] ES lite Service C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
      17:17:19.0968 1272  ES lite Service - ok
      17:17:20.0001 1272  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
      17:17:20.0032 1272  EventSystem - ok
      17:17:20.0051 1272  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
      17:17:20.0078 1272  exfat - ok
      17:17:20.0092 1272  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
      17:17:20.0120 1272  fastfat - ok
      17:17:20.0164 1272  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
      17:17:20.0178 1272  Fax - ok
      17:17:20.0188 1272  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
      17:17:20.0197 1272  fdc - ok
      17:17:20.0219 1272  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
      17:17:20.0246 1272  fdPHost - ok
      17:17:20.0256 1272  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
      17:17:20.0283 1272  FDResPub - ok
      17:17:20.0296 1272  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
      17:17:20.0305 1272  FileInfo - ok
      17:17:20.0318 1272  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
      17:17:20.0344 1272  Filetrace - ok
      17:17:20.0352 1272  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
      17:17:20.0360 1272  flpydisk - ok
      17:17:20.0377 1272  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
      17:17:20.0389 1272  FltMgr - ok
      17:17:20.0437 1272  [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache       C:\Windows\system32\FntCache.dll
      17:17:20.0456 1272  FontCache - ok
      17:17:20.0499 1272  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
      17:17:20.0506 1272  FontCache3.0.0.0 - ok
      17:17:20.0526 1272  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
      17:17:20.0535 1272  FsDepends - ok
      17:17:20.0551 1272  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
      17:17:20.0559 1272  Fs_Rec - ok
      17:17:20.0576 1272  [ 1F7B25B858FA27015169FE95E54108ED ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
      17:17:20.0589 1272  fvevol - ok
      17:17:20.0602 1272  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
      17:17:20.0611 1272  gagp30kx - ok
      17:17:20.0655 1272  [ 7907E14F9BCF3A4689C9A74A1A873CB6 ] gdrv            C:\Windows\gdrv.sys
      17:17:20.0663 1272  gdrv - ok
      17:17:20.0771 1272  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
      17:17:20.0804 1272  gpsvc - ok
      17:17:20.0866 1272  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      17:17:20.0873 1272  gupdate - ok
      17:17:20.0876 1272  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      17:17:20.0884 1272  gupdatem - ok
      17:17:20.0916 1272  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
      17:17:20.0925 1272  hcw85cir - ok
      17:17:20.0956 1272  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
      17:17:20.0970 1272  HdAudAddService - ok
      17:17:20.0985 1272  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
      17:17:20.0996 1272  HDAudBus - ok
      17:17:21.0010 1272  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
      17:17:21.0020 1272  HidBatt - ok
      17:17:21.0035 1272  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
      17:17:21.0046 1272  HidBth - ok
      17:17:21.0061 1272  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
      17:17:21.0072 1272  HidIr - ok
      17:17:21.0099 1272  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\System32\hidserv.dll
      17:17:21.0126 1272  hidserv - ok
      17:17:21.0158 1272  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
      17:17:21.0167 1272  HidUsb - ok
      17:17:21.0197 1272  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
      17:17:21.0224 1272  hkmsvc - ok
      17:17:21.0262 1272  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
      17:17:21.0273 1272  HomeGroupListener - ok
      17:17:21.0310 1272  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
      17:17:21.0321 1272  HomeGroupProvider - ok
      17:17:21.0333 1272  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
      17:17:21.0341 1272  HpSAMD - ok
      17:17:21.0386 1272  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
      17:17:21.0418 1272  HTTP - ok
      17:17:21.0432 1272  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
      17:17:21.0440 1272  hwpolicy - ok
      17:17:21.0448 1272  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
      17:17:21.0457 1272  i8042prt - ok
      17:17:21.0497 1272  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
      17:17:21.0510 1272  iaStorV - ok
      17:17:21.0550 1272  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
      17:17:21.0566 1272  idsvc - ok
      17:17:21.0576 1272  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
      17:17:21.0585 1272  iirsp - ok
      17:17:21.0621 1272  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
      17:17:21.0654 1272  IKEEXT - ok
      17:17:21.0718 1272  [ E76FDFFF07F8A2FA81FF250DDA0F6BBA ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
      17:17:21.0752 1272  IntcAzAudAddService - ok
      17:17:21.0769 1272  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
      17:17:21.0778 1272  intelide - ok
      17:17:21.0816 1272  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
      17:17:21.0826 1272  intelppm - ok
      17:17:21.0853 1272  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
      17:17:21.0882 1272  IPBusEnum - ok
      17:17:21.0915 1272  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
      17:17:21.0941 1272  IpFilterDriver - ok
      17:17:21.0971 1272  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
      17:17:21.0981 1272  IPMIDRV - ok
      17:17:21.0998 1272  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
      17:17:22.0025 1272  IPNAT - ok
      17:17:22.0044 1272  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
      17:17:22.0056 1272  IRENUM - ok
      17:17:22.0075 1272  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
      17:17:22.0083 1272  isapnp - ok
      17:17:22.0097 1272  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
      17:17:22.0108 1272  iScsiPrt - ok
      17:17:22.0123 1272  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
      17:17:22.0132 1272  kbdclass - ok
      17:17:22.0150 1272  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
      17:17:22.0159 1272  kbdhid - ok
      17:17:22.0169 1272  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
      17:17:22.0178 1272  KeyIso - ok
      17:17:22.0231 1272  [ 144D7E14011401FA7CBC11DECC4C4A5F ] KMWDFILTER      C:\Windows\system32\DRIVERS\KMWDFILTER.sys
      17:17:22.0239 1272  KMWDFILTER - ok
      17:17:22.0262 1272  [ 3D6CB0DB6FE125F622C02DC0249DDE9F ] KMWDSERVICE     C:\Program Files (x86)\Keyboard Driver\KMWDSrv.exe
      17:17:22.0267 1272  KMWDSERVICE ( UnsignedFile.Multi.Generic ) - warning
      17:17:22.0267 1272  KMWDSERVICE - detected UnsignedFile.Multi.Generic (1)
      17:17:22.0290 1272  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
      17:17:22.0300 1272  KSecDD - ok
      17:17:22.0319 1272  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
      17:17:22.0329 1272  KSecPkg - ok
      17:17:22.0337 1272  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
      17:17:22.0365 1272  ksthunk - ok
      17:17:22.0406 1272  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
      17:17:22.0436 1272  KtmRm - ok
      17:17:22.0474 1272  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\System32\srvsvc.dll
      17:17:22.0505 1272  LanmanServer - ok
      17:17:22.0536 1272  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
      17:17:22.0564 1272  LanmanWorkstation - ok
      17:17:22.0616 1272  [ 87D6731F70D017590E12735ECC746CDE ] LGDDCDevice     C:\Program Files (x86)\LG Soft India\forteManager\bin\I2CDriver.sys
      17:17:22.0619 1272  LGDDCDevice ( UnsignedFile.Multi.Generic ) - warning
      17:17:22.0619 1272  LGDDCDevice - detected UnsignedFile.Multi.Generic (1)
      17:17:22.0653 1272  [ 089010666D9EA3BD17AFEDE301950B09 ] LGII2CDevice    C:\Program Files (x86)\LG Soft India\forteManager\bin\PII2CDriver.sys
      17:17:22.0656 1272  LGII2CDevice ( UnsignedFile.Multi.Generic ) - warning
      17:17:22.0656 1272  LGII2CDevice - detected UnsignedFile.Multi.Generic (1)
      17:17:22.0695 1272  [ 156AB2E56DC3CA0B582E3362E07CDED7 ] lirsgt          C:\Windows\system32\DRIVERS\lirsgt.sys
      17:17:22.0703 1272  lirsgt - ok
      17:17:22.0725 1272  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
      17:17:22.0753 1272  lltdio - ok
      17:17:22.0795 1272  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
      17:17:22.0828 1272  lltdsvc - ok
      17:17:22.0843 1272  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
      17:17:22.0877 1272  lmhosts - ok
      17:17:22.0904 1272  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
      17:17:22.0922 1272  LSI_FC - ok
      17:17:22.0938 1272  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
      17:17:22.0955 1272  LSI_SAS - ok
      17:17:22.0973 1272  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
      17:17:22.0990 1272  LSI_SAS2 - ok
      17:17:23.0008 1272  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
      17:17:23.0026 1272  LSI_SCSI - ok
      17:17:23.0065 1272  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
      17:17:23.0117 1272  luafv - ok
      17:17:23.0141 1272  [ B9FC4CCE5758B816F27DD4D1EED11841 ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
      17:17:23.0157 1272  MBAMProtector - ok
      17:17:23.0207 1272  [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
      17:17:23.0228 1272  MBAMScheduler - ok
      17:17:23.0255 1272  [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
      17:17:23.0283 1272  MBAMService - ok
      17:17:23.0314 1272  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
      17:17:23.0332 1272  Mcx2Svc - ok
      17:17:23.0350 1272  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
      17:17:23.0365 1272  megasas - ok
      17:17:23.0383 1272  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
      17:17:23.0405 1272  MegaSR - ok
      17:17:23.0458 1272  [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
      17:17:23.0472 1272  Microsoft Office Groove Audit Service - ok
      17:17:23.0511 1272  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
      17:17:23.0563 1272  MMCSS - ok
      17:17:23.0581 1272  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
      17:17:23.0631 1272  Modem - ok
      17:17:23.0654 1272  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
      17:17:23.0674 1272  monitor - ok
      17:17:23.0708 1272  [ D69F1E9A944A5F46A494AF901ED41118 ] motandroidusb   C:\Windows\system32\Drivers\motoandroid.sys
      17:17:23.0732 1272  motandroidusb - ok
      17:17:23.0758 1272  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\drivers\mouclass.sys
      17:17:23.0774 1272  mouclass - ok
      17:17:23.0791 1272  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
      17:17:23.0808 1272  mouhid - ok
      17:17:23.0844 1272  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
      17:17:23.0861 1272  mountmgr - ok
      17:17:23.0918 1272  [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
      17:17:23.0933 1272  MozillaMaintenance - ok
      17:17:23.0955 1272  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
      17:17:23.0973 1272  mpio - ok
      17:17:23.0985 1272  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
      17:17:24.0035 1272  mpsdrv - ok
      17:17:24.0069 1272  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
      17:17:24.0094 1272  MRxDAV - ok
      17:17:24.0115 1272  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
      17:17:24.0132 1272  mrxsmb - ok
      17:17:24.0159 1272  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
      17:17:24.0178 1272  mrxsmb10 - ok
      17:17:24.0187 1272  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
      17:17:24.0204 1272  mrxsmb20 - ok
      17:17:24.0220 1272  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
      17:17:24.0236 1272  msahci - ok
      17:17:24.0257 1272  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
      17:17:24.0275 1272  msdsm - ok
      17:17:24.0312 1272  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
      17:17:24.0332 1272  MSDTC - ok
      17:17:24.0403 1272  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
      17:17:24.0453 1272  Msfs - ok
      17:17:24.0480 1272  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
      17:17:24.0531 1272  mshidkmdf - ok
      17:17:24.0559 1272  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
      17:17:24.0575 1272  msisadrv - ok
      17:17:24.0626 1272  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
      17:17:24.0678 1272  MSiSCSI - ok
      17:17:24.0684 1272  msiserver - ok
      17:17:24.0707 1272  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
      17:17:24.0755 1272  MSKSSRV - ok
      17:17:24.0767 1272  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
      17:17:24.0816 1272  MSPCLOCK - ok
      17:17:24.0823 1272  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
      17:17:24.0872 1272  MSPQM - ok
      17:17:24.0911 1272  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
      17:17:24.0933 1272  MsRPC - ok
      17:17:24.0954 1272  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
      17:17:24.0970 1272  mssmbios - ok
      17:17:25.0034 1272  MSSQL$SQLEXPRESS - ok
      17:17:25.0095 1272  [ 7A2A8C975356858EB38466A6B1592E8D ] MSSQLServerADHelper100 C:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
      17:17:25.0110 1272  MSSQLServerADHelper100 - ok
      17:17:25.0123 1272  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
      17:17:25.0172 1272  MSTEE - ok
      17:17:25.0180 1272  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
      17:17:25.0196 1272  MTConfig - ok
      17:17:25.0221 1272  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
      17:17:25.0237 1272  Mup - ok
      17:17:25.0279 1272  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
      17:17:25.0335 1272  napagent - ok
      17:17:25.0377 1272  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
      17:17:25.0404 1272  NativeWifiP - ok
      17:17:25.0497 1272  [ 934BB0D23A25C8C136570800A5A149B6 ] NAUpdate        C:\Program Files (x86)\Nero\Update\NASvc.exe
      17:17:25.0523 1272  NAUpdate - ok
      17:17:25.0551 1272  [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS            C:\Windows\system32\drivers\ndis.sys
      17:17:25.0587 1272  NDIS - ok
      17:17:25.0593 1272  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
      17:17:25.0642 1272  NdisCap - ok
      17:17:25.0655 1272  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
      17:17:25.0704 1272  NdisTapi - ok
      17:17:25.0737 1272  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
      17:17:25.0784 1272  Ndisuio - ok
      17:17:25.0833 1272  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
      17:17:25.0882 1272  NdisWan - ok
      17:17:25.0916 1272  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
      17:17:25.0964 1272  NDProxy - ok
      17:17:25.0979 1272  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
      17:17:26.0028 1272  NetBIOS - ok
      17:17:26.0054 1272  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
      17:17:26.0105 1272  NetBT - ok
      17:17:26.0118 1272  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
      17:17:26.0134 1272  Netlogon - ok
      17:17:26.0167 1272  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
      17:17:26.0223 1272  Netman - ok
      17:17:26.0260 1272  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
      17:17:26.0274 1272  NetMsmqActivator - ok
      17:17:26.0280 1272  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
      17:17:26.0296 1272  NetPipeActivator - ok
      17:17:26.0313 1272  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
      17:17:26.0373 1272  netprofm - ok
      17:17:26.0380 1272  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
      17:17:26.0395 1272  NetTcpActivator - ok
      17:17:26.0401 1272  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
      17:17:26.0416 1272  NetTcpPortSharing - ok
      17:17:26.0428 1272  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
      17:17:26.0445 1272  nfrd960 - ok
      17:17:26.0480 1272  [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc          C:\Windows\System32\nlasvc.dll
      17:17:26.0534 1272  NlaSvc - ok
      17:17:26.0541 1272  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
      17:17:26.0590 1272  Npfs - ok
      17:17:26.0622 1272  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
      17:17:26.0673 1272  nsi - ok
      17:17:26.0679 1272  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
      17:17:26.0729 1272  nsiproxy - ok
      17:17:26.0788 1272  [ A2F74975097F52A00745F9637451FDD8 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
      17:17:26.0839 1272  Ntfs - ok
      17:17:26.0856 1272  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
      17:17:26.0906 1272  Null - ok
      17:17:26.0942 1272  [ 785298579B5F9B4032152DFBB992FDB6 ] nusb3hub        C:\Windows\system32\DRIVERS\nusb3hub.sys
      17:17:26.0956 1272  nusb3hub - ok
      17:17:26.0973 1272  [ DF2750481B4964814467C974F2B0EEF1 ] nusb3xhc        C:\Windows\system32\DRIVERS\nusb3xhc.sys
      17:17:26.0988 1272  nusb3xhc - ok
      17:17:27.0014 1272  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
      17:17:27.0032 1272  nvraid - ok
      17:17:27.0064 1272  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
      17:17:27.0083 1272  nvstor - ok
      17:17:27.0105 1272  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
      17:17:27.0123 1272  nv_agp - ok
      17:17:27.0190 1272  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
      17:17:27.0212 1272  odserv - ok
      17:17:27.0229 1272  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
      17:17:27.0246 1272  ohci1394 - ok
      17:17:27.0285 1272  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
      17:17:27.0301 1272  ose - ok
      17:17:27.0382 1272  [ 0E2FDE2689340F06E7005BCDC45A5F5A ] OverwolfUpdaterService C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe
      17:17:27.0394 1272  OverwolfUpdaterService - ok
      17:17:27.0429 1272  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
      17:17:27.0452 1272  p2pimsvc - ok
      17:17:27.0488 1272  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
      17:17:27.0512 1272  p2psvc - ok
      17:17:27.0546 1272  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
      17:17:27.0563 1272  Parport - ok
      17:17:27.0582 1272  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
      17:17:27.0599 1272  partmgr - ok
      17:17:27.0616 1272  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
      17:17:27.0643 1272  PcaSvc - ok
      17:17:27.0651 1272  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
      17:17:27.0670 1272  pci - ok
      17:17:27.0687 1272  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
      17:17:27.0703 1272  pciide - ok
      17:17:27.0713 1272  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
      17:17:27.0734 1272  pcmcia - ok
      17:17:27.0740 1272  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
      17:17:27.0757 1272  pcw - ok
      17:17:27.0781 1272  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
      17:17:27.0841 1272  PEAUTH - ok
      17:17:27.0895 1272  [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
      17:17:27.0935 1272  PeerDistSvc - ok
      17:17:28.0013 1272  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
      17:17:28.0032 1272  PerfHost - ok
      17:17:28.0090 1272  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
      17:17:28.0162 1272  pla - ok
      17:17:28.0198 1272  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
      17:17:28.0221 1272  PlugPlay - ok
      17:17:28.0255 1272  PnkBstrA - ok
      17:17:28.0284 1272  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
      17:17:28.0301 1272  PNRPAutoReg - ok
      17:17:28.0315 1272  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
      17:17:28.0336 1272  PNRPsvc - ok
      17:17:28.0352 1272  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
      17:17:28.0408 1272  PolicyAgent - ok
      17:17:28.0436 1272  postgresql-8.3 - ok
      17:17:28.0472 1272  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
      17:17:28.0527 1272  Power - ok
      17:17:28.0564 1272  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
      17:17:28.0613 1272  PptpMiniport - ok
      17:17:28.0632 1272  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
      17:17:28.0641 1272  Processor - ok
      17:17:28.0667 1272  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
      17:17:28.0679 1272  ProfSvc - ok
      17:17:28.0693 1272  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
      17:17:28.0703 1272  ProtectedStorage - ok
      17:17:28.0759 1272  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
      17:17:28.0787 1272  Psched - ok
      17:17:28.0844 1272  [ 0B6DEA0A1662CAB8F2BF339DC0752EF4 ] PSI_SVC_2       c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
      17:17:28.0853 1272  PSI_SVC_2 - ok
      17:17:28.0970 1272  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
      17:17:28.0997 1272  ql2300 - ok
      17:17:29.0016 1272  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
      17:17:29.0026 1272  ql40xx - ok
      17:17:29.0063 1272  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
      17:17:29.0079 1272  QWAVE - ok
      17:17:29.0088 1272  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
      17:17:29.0101 1272  QWAVEdrv - ok
      17:17:29.0112 1272  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
      17:17:29.0141 1272  RasAcd - ok
      17:17:29.0173 1272  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
      17:17:29.0201 1272  RasAgileVpn - ok
      17:17:29.0210 1272  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
      17:17:29.0239 1272  RasAuto - ok
      17:17:29.0260 1272  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
      17:17:29.0287 1272  Rasl2tp - ok
      17:17:29.0312 1272  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
      17:17:29.0341 1272  RasMan - ok
      17:17:29.0346 1272  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
      17:17:29.0374 1272  RasPppoe - ok
      17:17:29.0384 1272  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
      17:17:29.0412 1272  RasSstp - ok
      17:17:29.0428 1272  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
      17:17:29.0457 1272  rdbss - ok
      17:17:29.0461 1272  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
      17:17:29.0472 1272  rdpbus - ok
      17:17:29.0483 1272  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
      17:17:29.0509 1272  RDPCDD - ok
      17:17:29.0540 1272  [ 1B6163C503398B23FF8B939C67747683 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
      17:17:29.0550 1272  RDPDR - ok
      17:17:29.0573 1272  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
      17:17:29.0600 1272  RDPENCDD - ok
      17:17:29.0605 1272  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
      17:17:29.0633 1272  RDPREFMP - ok
      17:17:29.0678 1272  [ 70CBA1A0C98600A2AA1863479B35CB90 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
      17:17:29.0687 1272  RdpVideoMiniport - ok
      17:17:29.0695 1272  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
      17:17:29.0706 1272  RDPWD - ok
      17:17:29.0731 1272  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
      17:17:29.0741 1272  rdyboost - ok
      17:17:29.0786 1272  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
      17:17:29.0816 1272  RemoteAccess - ok
      17:17:29.0852 1272  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
      17:17:29.0881 1272  RemoteRegistry - ok
      17:17:29.0900 1272  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
      17:17:29.0928 1272  RpcEptMapper - ok
      17:17:29.0958 1272  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
      17:17:29.0968 1272  RpcLocator - ok
      17:17:30.0007 1272  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
      17:17:30.0039 1272  RpcSs - ok
      17:17:30.0075 1272  [ CD553B8633466A6D1C115812F2619F1F ] RsFx0103        C:\Windows\system32\DRIVERS\RsFx0103.sys
      17:17:30.0085 1272  RsFx0103 - ok
      17:17:30.0107 1272  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
      17:17:30.0135 1272  rspndr - ok
      17:17:30.0177 1272  [ D6D381B76056C668679723938F06F16C ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIVX.sys
      17:17:30.0187 1272  RTHDMIAzAudService - ok
      17:17:30.0220 1272  [ 3B01789EE4EAEE97F5EB46B711387D5E ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
      17:17:30.0233 1272  RTL8167 - ok
      17:17:30.0252 1272  [ E60C0A09F997826C7627B244195AB581 ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
      17:17:30.0260 1272  s3cap - ok
      17:17:30.0275 1272  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
      17:17:30.0284 1272  SamSs - ok
      17:17:30.0295 1272  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
      17:17:30.0305 1272  sbp2port - ok
      17:17:30.0339 1272  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
      17:17:30.0368 1272  SCardSvr - ok
      17:17:30.0402 1272  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
      17:17:30.0428 1272  scfilter - ok
      17:17:30.0473 1272  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
      17:17:30.0509 1272  Schedule - ok
      17:17:30.0538 1272  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
      17:17:30.0564 1272  SCPolicySvc - ok
      17:17:30.0599 1272  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
      17:17:30.0609 1272  SDRSVC - ok
      17:17:30.0659 1272  [ D98E936BDD4A6CFE39535F3696D0EC6F ] SDScannerService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
      17:17:30.0678 1272  SDScannerService - ok
      17:17:30.0715 1272  [ 2D5088524613D1ED55D20195AF42DDC7 ] SDUpdateService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
      17:17:30.0739 1272  SDUpdateService - ok
      17:17:30.0762 1272  [ 59DCE6783F9ED27EB72C81466E363BF8 ] SDWSCService    C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
      17:17:30.0771 1272  SDWSCService - ok
      17:17:30.0809 1272  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
      17:17:30.0837 1272  secdrv - ok
      17:17:30.0872 1272  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
      17:17:30.0899 1272  seclogon - ok
      17:17:30.0936 1272  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
      17:17:30.0966 1272  SENS - ok
      17:17:30.0994 1272  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
      17:17:31.0004 1272  SensrSvc - ok
      17:17:31.0035 1272  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
      17:17:31.0044 1272  Serenum - ok
      17:17:31.0064 1272  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
      17:17:31.0074 1272  Serial - ok
      17:17:31.0092 1272  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
      17:17:31.0102 1272  sermouse - ok
      17:17:31.0139 1272  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
      17:17:31.0169 1272  SessionEnv - ok
      17:17:31.0192 1272  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
      17:17:31.0203 1272  sffdisk - ok
      17:17:31.0211 1272  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
      17:17:31.0223 1272  sffp_mmc - ok
      17:17:31.0228 1272  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
      17:17:31.0240 1272  sffp_sd - ok
      17:17:31.0251 1272  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
      17:17:31.0260 1272  sfloppy - ok
      17:17:31.0297 1272  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
      17:17:31.0331 1272  ShellHWDetection - ok
      17:17:31.0341 1272  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
      17:17:31.0351 1272  SiSRaid2 - ok
      17:17:31.0364 1272  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
      17:17:31.0373 1272  SiSRaid4 - ok
      17:17:31.0421 1272  [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
      17:17:31.0429 1272  SkypeUpdate - ok
      17:17:31.0442 1272  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
      17:17:31.0471 1272  Smb - ok
      17:17:31.0515 1272  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
      17:17:31.0526 1272  SNMPTRAP - ok
      17:17:31.0535 1272  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
      17:17:31.0543 1272  spldr - ok
      17:17:31.0568 1272  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
      17:17:31.0583 1272  Spooler - ok
      17:17:31.0650 1272  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
      17:17:31.0708 1272  sppsvc - ok
      17:17:31.0727 1272  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
      17:17:31.0755 1272  sppuinotify - ok
      17:17:31.0790 1272  [ DFC4E2081324E505CA479E473A78D893 ] sptd            C:\Windows\System32\Drivers\sptd.sys
      17:17:31.0805 1272  sptd - ok
      17:17:31.0885 1272  [ 12E6D95CDE974B131DEFAA44BAB8B056 ] SQLAgent$SQLEXPRESS C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE
      17:17:31.0896 1272  SQLAgent$SQLEXPRESS - ok
      17:17:31.0960 1272  [ B54B48F6D92423440C264E91225C5FF1 ] SQLBrowser      C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
      17:17:31.0971 1272  SQLBrowser - ok
      17:17:32.0005 1272  [ 6D65985945B03CA59B67D0B73702FC7B ] SQLWriter       C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
      17:17:32.0014 1272  SQLWriter - ok
      17:17:32.0035 1272  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
      17:17:32.0048 1272  srv - ok
      17:17:32.0078 1272  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
      17:17:32.0089 1272  srv2 - ok
      17:17:32.0095 1272  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
      17:17:32.0105 1272  srvnet - ok
      17:17:32.0122 1272  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
      17:17:32.0152 1272  SSDPSRV - ok
      17:17:32.0183 1272  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
      17:17:32.0212 1272  SstpSvc - ok
      17:17:32.0284 1272  [ B1691AF4A072CB674D600DB16DD7308E ] StarWindServiceAE C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
      17:17:32.0290 1272  StarWindServiceAE ( UnsignedFile.Multi.Generic ) - warning
      17:17:32.0290 1272  StarWindServiceAE - detected UnsignedFile.Multi.Generic (1)
      17:17:32.0311 1272  Steam Client Service - ok
      17:17:32.0346 1272  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
      17:17:32.0355 1272  stexstor - ok
      17:17:32.0393 1272  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
      17:17:32.0412 1272  stisvc - ok
      17:17:32.0424 1272  [ 7785DC213270D2FC066538DAF94087E7 ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
      17:17:32.0432 1272  storflt - ok
      17:17:32.0445 1272  [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
      17:17:32.0454 1272  storvsc - ok
      17:17:32.0465 1272  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
      17:17:32.0473 1272  swenum - ok
      17:17:32.0487 1272  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
      17:17:32.0519 1272  swprv - ok
      17:17:32.0523 1272  Synth3dVsc - ok
      17:17:32.0576 1272  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
      17:17:32.0606 1272  SysMain - ok
      17:17:32.0640 1272  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
      17:17:32.0655 1272  TabletInputService - ok
      17:17:32.0677 1272  [ B08740047145B9BCE15BF75CA0F9718A ] tap0901t        C:\Windows\system32\DRIVERS\tap0901t.sys
      17:17:32.0684 1272  tap0901t - ok
      17:17:32.0701 1272  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
      17:17:32.0730 1272  TapiSrv - ok
      17:17:32.0761 1272  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
      17:17:32.0791 1272  TBS - ok
      17:17:32.0835 1272  [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
      17:17:32.0867 1272  Tcpip - ok
      17:17:32.0901 1272  [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
      17:17:32.0933 1272  TCPIP6 - ok
      17:17:32.0972 1272  [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
      17:17:32.0998 1272  tcpipreg - ok
      17:17:33.0032 1272  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
      17:17:33.0040 1272  TDPIPE - ok
      17:17:33.0058 1272  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
      17:17:33.0068 1272  TDTCP - ok
      17:17:33.0110 1272  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
      17:17:33.0138 1272  tdx - ok
      17:17:33.0160 1272  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
      17:17:33.0169 1272  TermDD - ok
      17:17:33.0199 1272  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
      17:17:33.0234 1272  TermService - ok
      17:17:33.0244 1272  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
      17:17:33.0259 1272  Themes - ok
      17:17:33.0297 1272  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
      17:17:33.0326 1272  THREADORDER - ok
      17:17:33.0338 1272  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
      17:17:33.0368 1272  TrkWks - ok
      17:17:33.0420 1272  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
      17:17:33.0448 1272  TrustedInstaller - ok
      17:17:33.0480 1272  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
      17:17:33.0506 1272  tssecsrv - ok
      17:17:33.0538 1272  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
      17:17:33.0547 1272  TsUsbFlt - ok
      17:17:33.0551 1272  tsusbhub - ok
      17:17:33.0624 1272  [ AFC5CCD57F4DB07762B134E82454D1ED ] TuneUp.UtilitiesSvc C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe
      17:17:33.0659 1272  TuneUp.UtilitiesSvc - ok
      17:17:33.0705 1272  [ DCC94C51D27C7EC0DADECA8F64C94FCF ] TuneUpUtilitiesDrv C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys
      17:17:33.0720 1272  TuneUpUtilitiesDrv - ok
      17:17:33.0769 1272  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
      17:17:33.0823 1272  tunnel - ok
      17:17:33.0883 1272  [ EB2252371A7A4B26B8AB2C6DF0B4EEFF ] TunngleService  C:\Program Files (x86)\Tunngle\TnglCtrl.exe
      17:17:33.0908 1272  TunngleService - ok
      17:17:33.0942 1272  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
      17:17:33.0958 1272  uagp35 - ok
      17:17:33.0998 1272  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
      17:17:34.0052 1272  udfs - ok
      17:17:34.0086 1272  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
      17:17:34.0106 1272  UI0Detect - ok
      17:17:34.0127 1272  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
      17:17:34.0144 1272  uliagpkx - ok
      17:17:34.0174 1272  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\drivers\umbus.sys
      17:17:34.0190 1272  umbus - ok
      17:17:34.0217 1272  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
      17:17:34.0233 1272  UmPass - ok
      17:17:34.0271 1272  [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService    C:\Windows\System32\umrdp.dll
      17:17:34.0292 1272  UmRdpService - ok
      17:17:34.0316 1272  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
      17:17:34.0373 1272  upnphost - ok
      17:17:34.0392 1272  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
      17:17:34.0408 1272  usbccgp - ok
      17:17:34.0428 1272  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
      17:17:34.0449 1272  usbcir - ok
      17:17:34.0469 1272  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
      17:17:34.0485 1272  usbehci - ok
      17:17:34.0505 1272  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
      17:17:34.0525 1272  usbhub - ok
      17:17:34.0533 1272  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
      17:17:34.0548 1272  usbohci - ok
      17:17:34.0582 1272  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
      17:17:34.0601 1272  usbprint - ok
      17:17:34.0630 1272  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
      17:17:34.0650 1272  usbscan - ok
      17:17:34.0660 1272  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
      17:17:34.0677 1272  USBSTOR - ok
      17:17:34.0694 1272  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
      17:17:34.0709 1272  usbuhci - ok
      17:17:34.0728 1272  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
      17:17:34.0780 1272  UxSms - ok
      17:17:34.0821 1272  [ 0402A29661A4D4CBB2E2EB7F46D19F31 ] UxTuneUp        C:\Windows\System32\uxtuneup.dll
      17:17:34.0834 1272  UxTuneUp - ok
      17:17:34.0845 1272  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
      17:17:34.0862 1272  VaultSvc - ok
      17:17:34.0893 1272  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
      17:17:34.0909 1272  vdrvroot - ok
      17:17:34.0950 1272  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
      17:17:35.0008 1272  vds - ok
      17:17:35.0023 1272  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
      17:17:35.0043 1272  vga - ok
      17:17:35.0062 1272  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
      17:17:35.0112 1272  VgaSave - ok
      17:17:35.0117 1272  VGPU - ok
      17:17:35.0140 1272  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
      17:17:35.0159 1272  vhdmp - ok
      17:17:35.0175 1272  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
      17:17:35.0190 1272  viaide - ok
      17:17:35.0198 1272  [ 86EA3E79AE350FEA5331A1303054005F ] vmbus           C:\Windows\system32\drivers\vmbus.sys
      17:17:35.0217 1272  vmbus - ok
      17:17:35.0228 1272  [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
      17:17:35.0243 1272  VMBusHID - ok
      17:17:35.0250 1272  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
      17:17:35.0266 1272  volmgr - ok
      17:17:35.0306 1272  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
      17:17:35.0329 1272  volmgrx - ok
      17:17:35.0338 1272  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
      17:17:35.0359 1272  volsnap - ok
      17:17:35.0372 1272  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
      17:17:35.0390 1272  vsmraid - ok
      17:17:35.0452 1272  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
      17:17:35.0526 1272  VSS - ok
      17:17:35.0542 1272  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
      17:17:35.0562 1272  vwifibus - ok
      17:17:35.0604 1272  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
      17:17:35.0661 1272  W32Time - ok
      17:17:35.0684 1272  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
      17:17:35.0700 1272  WacomPen - ok
      17:17:35.0726 1272  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
      17:17:35.0775 1272  WANARP - ok
      17:17:35.0786 1272  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
      17:17:35.0834 1272  Wanarpv6 - ok
      17:17:35.0926 1272  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
      17:17:35.0969 1272  WatAdminSvc - ok
      17:17:36.0027 1272  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
      17:17:36.0068 1272  wbengine - ok
      17:17:36.0085 1272  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
      17:17:36.0111 1272  WbioSrvc - ok
      17:17:36.0148 1272  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
      17:17:36.0178 1272  wcncsvc - ok
      17:17:36.0196 1272  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
      17:17:36.0213 1272  WcsPlugInService - ok
      17:17:36.0232 1272  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
      17:17:36.0247 1272  Wd - ok
      17:17:36.0274 1272  [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
      17:17:36.0304 1272  Wdf01000 - ok
      17:17:36.0314 1272  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
      17:17:36.0339 1272  WdiServiceHost - ok
      17:17:36.0344 1272  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
      17:17:36.0370 1272  WdiSystemHost - ok
      17:17:36.0399 1272  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
      17:17:36.0427 1272  WebClient - ok
      17:17:36.0460 1272  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
      17:17:36.0515 1272  Wecsvc - ok
      17:17:36.0529 1272  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
      17:17:36.0581 1272  wercplsupport - ok
      17:17:36.0594 1272  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
      17:17:36.0646 1272  WerSvc - ok
      17:17:36.0668 1272  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
      17:17:36.0716 1272  WfpLwf - ok
      17:17:36.0730 1272  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
      17:17:36.0746 1272  WIMMount - ok
      17:17:36.0771 1272  WinDefend - ok
      17:17:36.0782 1272  WinHttpAutoProxySvc - ok
      17:17:36.0845 1272  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
      17:17:36.0897 1272  Winmgmt - ok
      17:17:36.0963 1272  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
      17:17:37.0045 1272  WinRM - ok
      17:17:37.0091 1272  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
      17:17:37.0112 1272  WinUsb - ok
      17:17:37.0158 1272  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
      17:17:37.0195 1272  Wlansvc - ok
      17:17:37.0276 1272  [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
      17:17:37.0340 1272  wlidsvc - ok
      17:17:37.0363 1272  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
      17:17:37.0379 1272  WmiAcpi - ok
      17:17:37.0416 1272  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
      17:17:37.0435 1272  wmiApSrv - ok
      17:17:37.0461 1272  WMPNetworkSvc - ok
      17:17:37.0471 1272  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
      17:17:37.0489 1272  WPCSvc - ok
      17:17:37.0518 1272  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
      17:17:37.0540 1272  WPDBusEnum - ok
      17:17:37.0570 1272  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
      17:17:37.0618 1272  ws2ifsl - ok
      17:17:37.0645 1272  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\system32\wscsvc.dll
      17:17:37.0670 1272  wscsvc - ok
      17:17:37.0675 1272  WSearch - ok
      17:17:37.0752 1272  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
      17:17:37.0823 1272  wuauserv - ok
      17:17:37.0850 1272  [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
      17:17:37.0899 1272  WudfPf - ok
      17:17:37.0916 1272  [ CF8D590BE3373029D57AF80914190682 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
      17:17:37.0967 1272  WUDFRd - ok
      17:17:37.0997 1272  [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
      17:17:38.0048 1272  wudfsvc - ok
      17:17:38.0088 1272  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
      17:17:38.0115 1272  WwanSvc - ok
      17:17:38.0159 1272  [ 2EE48CFCE7CA8E0DB4C44C7476C0943B ] xusb21          C:\Windows\system32\DRIVERS\xusb21.sys
      17:17:38.0173 1272  xusb21 - ok
      17:17:38.0184 1272  ================ Scan global ===============================
      17:17:38.0217 1272  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
      17:17:38.0259 1272  [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
      17:17:38.0269 1272  [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
      17:17:38.0301 1272  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
      17:17:38.0323 1272  [ 50BEA589F7D7958BDD2528A8F69D05CC ] C:\Windows\system32\services.exe
      17:17:38.0329 1272  C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.a ) - infected
      17:17:38.0329 1272  C:\Windows\system32\services.exe - detected Virus.Win64.ZAccess.a (0)
      17:17:38.0329 1272  ================ Scan MBR ==================================
      17:17:38.0334 1272  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
      17:17:38.0438 1272  \Device\Harddisk0\DR0 - ok
      17:17:38.0449 1272  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
      17:17:38.0607 1272  \Device\Harddisk1\DR1 - ok
      17:17:38.0608 1272  ================ Scan VBR ==================================
      17:17:38.0612 1272  [ FF276AEC0BFFCF84F75696846B39A38D ] \Device\Harddisk0\DR0\Partition1
      17:17:38.0614 1272  \Device\Harddisk0\DR0\Partition1 - ok
      17:17:38.0618 1272  [ 51CEDB75142BF07FA072DB2C8221B97F ] \Device\Harddisk1\DR1\Partition1
      17:17:38.0620 1272  \Device\Harddisk1\DR1\Partition1 - ok
      17:17:38.0647 1272  [ 27C5A91ACD032A5A84B51ED63445290C ] \Device\Harddisk1\DR1\Partition2
      17:17:38.0649 1272  \Device\Harddisk1\DR1\Partition2 - ok
      17:17:38.0650 1272  ============================================================
      17:17:38.0650 1272  Scan finished
      17:17:38.0650 1272  ============================================================
      17:17:38.0665 7552  Detected object count: 6
      17:17:38.0665 7552  Actual detected object count: 6
      17:17:40.0691 7552  AxisCameraStation ( UnsignedFile.Multi.Generic ) - skipped by user
      17:17:40.0691 7552  AxisCameraStation ( UnsignedFile.Multi.Generic ) - User select action: Skip 
      17:17:40.0693 7552  KMWDSERVICE ( UnsignedFile.Multi.Generic ) - skipped by user
      17:17:40.0693 7552  KMWDSERVICE ( UnsignedFile.Multi.Generic ) - User select action: Skip 
      17:17:40.0694 7552  LGDDCDevice ( UnsignedFile.Multi.Generic ) - skipped by user
      17:17:40.0694 7552  LGDDCDevice ( UnsignedFile.Multi.Generic ) - User select action: Skip 
      17:17:40.0696 7552  LGII2CDevice ( UnsignedFile.Multi.Generic ) - skipped by user
      17:17:40.0696 7552  LGII2CDevice ( UnsignedFile.Multi.Generic ) - User select action: Skip 
      17:17:40.0698 7552  StarWindServiceAE ( UnsignedFile.Multi.Generic ) - skipped by user
      17:17:40.0698 7552  StarWindServiceAE ( UnsignedFile.Multi.Generic ) - User select action: Skip 
      17:17:40.0709 7552  C:\Windows\system32\services.exe - copied to quarantine
      17:17:40.0742 7552  C:\Windows\assembly\GAC_32\desktop.ini - copied to quarantine
      17:17:40.0743 7552  C:\Windows\assembly\GAC_64\desktop.ini - copied to quarantine
      17:17:43.0599 7552  Backup copy not found, trying to cure infected file..
      17:17:43.0600 7552  C:\Windows\system32\services.exe - Cure failed (FFFFFFFF)
      17:17:43.0600 7552  C:\Windows\system32\services.exe - processing error
      17:17:43.0600 7552  C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.a ) - User select action: Cure

    8. #8
      Ex-Colaboradora Avatar de @SanMar
      Registrado
      jun 2008
      Ubicación
      Argentina
      Mensajes
      22.290

      Re: Problema con WIN32/Sirefef

      Hola chicos:

      zerosn:


      Probemos lo siguiente:

      Descarga la herramienta ComboFix.exe y guárdala en el escritorio.
      • Desactiva temporalmente el Antivirus y/o Antispyware


        Si te pide actualizar "Aceptas".
      • Cierra todas las ventanas abiertas.
      • Hacele doble clic al archivo ComboFix.exe y seguí las instrucciones.
      • Cuando termine, generara un registro en C:\ComboFix.txt.
        • *Nota* Mientras CF este trabajando no mover el mouse ya que pararía su proceso.
        • *Nota* ComboFix puede reiniciar automáticamente el PC para completar el proceso de eliminación.
      Atención!! No use ComboFix a menos que se le haya indicado específicamente en su mensaje por un integrante de nuestro Staff. Es una herramienta de gran alcance destinada por su creador a ser usada bajo la orientación y supervisión de un experto, no para uso privado. El uso de ComboFix incorrectamente podría generar problemas en su sistema. Por favor, lea las "Negaciones de la Garantía" de ComboFix.
      • Reinicia y pega el reporte de C:\ComboFix.txt en este mismo mensaje.


      Nota Importante: Luego del primer reinicio que realiza el programa Combofix, realiza un reinicio mas.




      Salu2.

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    9. #9
      Usuario Avatar de zerosn
      Registrado
      sep 2012
      Ubicación
      Argentina
      Mensajes
      8

      Re: Problema con WIN32/Sirefef

      log combo fix

      ComboFix 12-09-22.01 - Totoy 22/09/2012 5:51.1.6 - x64
      Microsoft Windows 7 Ultimate 6.1.7601.1.1252.54.3082.18.8190.5871 [GMT -3:00]
      Running from: c:\users\Totoy\Desktop\ComboFix.exe
      AV: ESET NOD32 Antivirus 5.0 *Enabled/Outdated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
      SP: ESET NOD32 Antivirus 5.0 *Enabled/Outdated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
      SP: Spybot - Search and Destroy *Enabled/Outdated* {1EAF1D03-5480-F3B2-EB14-11F0F5EE2699}
      SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
      .
      .
      ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      C:\juegos
      c:\program files (x86)\ESET\MiNODLogin
      c:\programdata\dbdd915b15563b03492ca23baf413129_c
      c:\users\Totoy\adb.exe
      c:\users\Totoy\AppData\Local\Temp\_MEI39602\_ctypes.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI39602\_elementtree.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI39602\_hashlib.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI39602\_socket.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI39602\_ssl.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI39602\pyexpat.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI39602\pysqlite2._sqlite.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI39602\python26.dll
      c:\users\Totoy\AppData\Local\Temp\_MEI39602\pythoncom26.dll
      c:\users\Totoy\AppData\Local\Temp\_MEI39602\pywintypes26.dll
      c:\users\Totoy\AppData\Local\Temp\_MEI39602\select.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI39602\unicodedata.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI39602\win32api.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI39602\win32com.shell.shell.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI39602\win32crypt.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI39602\win32event.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI39602\win32file.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI39602\win32inet.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI39602\win32pdh.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI39602\win32process.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI39602\win32security.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI39602\windows._cacheinvalidation.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI39602\wx._controls_.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI39602\wx._core_.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI39602\wx._gdi_.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI39602\wx._html2.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI39602\wx._misc_.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI39602\wx._windows_.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI39602\wx._wizard.pyd
      c:\users\Totoy\AppData\Local\Temp\_MEI39602\wxbase293u_net_vc.dll
      c:\users\Totoy\AppData\Local\Temp\_MEI39602\wxbase293u_vc.dll
      c:\users\Totoy\AppData\Local\Temp\_MEI39602\wxmsw293u_adv_vc.dll
      c:\users\Totoy\AppData\Local\Temp\_MEI39602\wxmsw293u_core_vc.dll
      c:\users\Totoy\AppData\Local\Temp\_MEI39602\wxmsw293u_html_vc.dll
      c:\users\Totoy\AppData\Local\Temp\_MEI39602\wxmsw293u_webview_vc.dll
      c:\users\Totoy\Documents\~WRL0003.tmp
      c:\users\Totoy\System
      c:\users\Totoy\System\app\FMRadio.apk
      c:\users\Totoy\System\app\FMRadioService.apk
      c:\users\Totoy\System\bin\fmradioserver
      c:\users\Totoy\System\lib\libFMRadio.so
      c:\users\Totoy\System\lib\libfmradio_jni.so
      c:\users\Totoy\System\lib\libfmradioplayer.so
      c:\windows\assembly\GAC_32\Desktop.ini
      c:\windows\assembly\GAC_64\Desktop.ini
      c:\windows\Installer\{1844a52c-c693-908a-b5bd-cc9ca7496d27}\@
      c:\windows\Installer\{1844a52c-c693-908a-b5bd-cc9ca7496d27}\L\00000004.@
      c:\windows\Installer\{1844a52c-c693-908a-b5bd-cc9ca7496d27}\L\201d3dde
      c:\windows\Installer\{1844a52c-c693-908a-b5bd-cc9ca7496d27}\U\00000004.@
      c:\windows\Installer\{1844a52c-c693-908a-b5bd-cc9ca7496d27}\U\00000008.@
      c:\windows\Installer\{1844a52c-c693-908a-b5bd-cc9ca7496d27}\U\000000cb.@
      c:\windows\Installer\{1844a52c-c693-908a-b5bd-cc9ca7496d27}\U\80000000.@
      c:\windows\Installer\{1844a52c-c693-908a-b5bd-cc9ca7496d27}\U\80000032.@
      c:\windows\Installer\{1844a52c-c693-908a-b5bd-cc9ca7496d27}\U\80000064.@
      .
      Infected copy of c:\windows\system32\Services.exe was found and disinfected
      Restored copy from - c:\windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe
      .
      .
      ((((((((((((((((((((((((( Files Created from 2012-08-22 to 2012-09-22 )))))))))))))))))))))))))))))))
      .
      .
      2012-09-22 08:57 . 2012-09-22 08:57 -------- d-----w- c:\users\Default\AppData\Local\temp
      2012-09-21 02:07 . 2012-09-21 20:17 -------- d-----w- C:\TDSSKiller_Quarantine
      2012-09-15 17:19 . 2012-08-22 18:12 1913200 ----a-w- c:\windows\system32\drivers\tcpip.sys
      2012-09-15 17:19 . 2012-08-22 18:12 376688 ----a-w- c:\windows\system32\drivers\netio.sys
      2012-09-15 17:19 . 2012-08-22 18:12 288624 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
      2012-09-15 06:26 . 2012-09-15 16:19 -------- d-----w- c:\programdata\Spybot - Search & Destroy
      2012-09-15 06:25 . 2009-01-25 16:14 17272 ----a-w- c:\windows\system32\sdnclean64.exe
      2012-09-15 06:25 . 2012-09-15 06:25 -------- d-----w- c:\program files (x86)\Spybot - Search & Destroy 2
      2012-09-15 06:08 . 2012-09-15 06:08 -------- d-----w- c:\users\Totoy\AppData\Roaming\Malwarebytes
      2012-09-15 06:08 . 2012-09-15 06:08 -------- d-----w- c:\programdata\Malwarebytes
      2012-09-15 06:08 . 2012-09-15 06:08 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
      2012-09-15 06:08 . 2012-09-07 20:04 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
      2012-09-15 05:50 . 2012-09-15 05:50 203 ----a-w- C:\VIRUS.bat
      2012-09-15 05:46 . 2012-09-15 05:46 -------- d-----w- c:\program files\Microsoft Xbox 360 Accessories
      2012-09-08 01:51 . 2012-09-08 01:51 -------- d-----w- C:\ACTUAL
      2012-09-08 01:44 . 2012-09-08 01:51 -------- d-----w- C:\sicontawin
      2012-09-03 21:11 . 2012-09-03 21:11 -------- d-sh--w- c:\windows\SysWow64\%APPDATA%
      2012-09-03 01:42 . 2012-09-15 05:40 -------- d-----w- c:\users\Administrador
      2012-08-31 03:42 . 2012-08-31 03:51 -------- d-----w- C:\BitConta39GN
      2012-08-31 03:41 . 2012-08-31 03:42 -------- d-----w- C:\Instalar_BitConta
      2012-08-30 05:16 . 2012-08-30 05:16 -------- d-----w- c:\users\Totoy\AppData\Roaming\postgresql
      2012-08-30 05:09 . 2012-08-30 05:09 -------- d-----w- c:\program files (x86)\PostgreSQL
      2012-08-30 04:30 . 2012-08-30 04:52 -------- d-----w- C:\ServidorOXP
      2012-08-30 04:11 . 2012-08-30 04:11 916456 ----a-w- c:\windows\system32\deployJava1.dll
      2012-08-30 04:11 . 2012-08-30 04:11 289768 ----a-w- c:\windows\system32\javaws.exe
      2012-08-30 04:11 . 2012-08-30 04:11 1034216 ----a-w- c:\windows\system32\npDeployJava1.dll
      2012-08-30 04:11 . 2012-08-30 04:11 189416 ----a-w- c:\windows\system32\javaw.exe
      2012-08-30 04:11 . 2012-08-30 04:11 188904 ----a-w- c:\windows\system32\java.exe
      2012-08-30 04:11 . 2012-08-30 04:11 108008 ----a-w- c:\windows\system32\WindowsAccessBridge-64.dll
      2012-08-30 04:08 . 2012-09-09 10:04 -------- d-----w- c:\program files\Java
      2012-08-30 03:11 . 2012-08-30 03:11 -------- d-----w- c:\users\postgres
      2012-08-28 17:09 . 2012-08-28 17:09 -------- d-----w- c:\programdata\Battle.net
      2012-08-27 08:47 . 2012-08-27 08:46 821736 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
      2012-08-26 21:02 . 2012-08-26 21:02 -------- d-----w- c:\windows\SysWow64\xlive
      2012-08-26 21:02 . 2012-08-26 21:02 -------- d-----w- c:\program files (x86)\Microsoft Games for Windows - LIVE
      2012-08-26 20:56 . 2012-08-26 20:56 -------- d-----w- c:\program files (x86)\Capcom
      .
      .
      .
      (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      2012-09-21 08:22 . 2012-04-06 23:24 696240 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
      2012-09-21 08:22 . 2011-09-14 22:30 73136 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
      2012-09-21 00:44 . 2011-09-14 22:12 25640 ----a-w- c:\windows\gdrv.sys
      2012-09-16 06:00 . 2012-07-18 20:04 64462936 ----a-w- c:\windows\system32\MRT.exe
      2012-09-15 17:15 . 2011-09-21 03:23 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
      2012-08-27 08:46 . 2011-09-14 22:29 746984 ----a-w- c:\windows\SysWow64\deployJava1.dll
      2012-07-23 21:36 . 2012-07-23 21:36 2048 ----a-w- c:\windows\SysWow64\winver.exe
      2012-07-23 21:36 . 2012-07-23 21:36 833024 ----a-w- c:\windows\SysWow64\user32.dll
      2012-07-23 21:36 . 2012-07-23 21:36 410624 ----a-w- c:\windows\SysWow64\systemcpl.dll
      2012-07-23 21:36 . 2012-07-23 21:36 1536 ----a-w- c:\windows\SysWow64\sppcomapi.dll
      2012-07-23 21:36 . 2012-07-23 21:36 113543 ----a-w- c:\windows\SysWow64\slmgr.vbs
      2012-07-23 21:36 . 2012-07-23 21:36 113543 ----a-w- c:\windows\system32\slmgr.vbs
      2012-07-18 20:02 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll
      2012-07-18 20:02 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll
      2012-07-18 18:15 . 2012-08-16 06:38 3148800 ----a-w- c:\windows\system32\win32k.sys
      2012-07-16 06:46 . 2012-07-16 06:46 91648 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
      2012-07-16 06:46 . 2012-07-16 06:46 89088 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
      2012-07-16 06:46 . 2012-07-16 06:46 89088 ----a-w- c:\windows\system32\ie4uinit.exe
      2012-07-16 06:46 . 2012-07-16 06:46 86528 ----a-w- c:\windows\SysWow64\iesysprep.dll
      2012-07-16 06:46 . 2012-07-16 06:46 85504 ----a-w- c:\windows\system32\iesetup.dll
      2012-07-16 06:46 . 2012-07-16 06:46 82432 ----a-w- c:\windows\system32\icardie.dll
      2012-07-16 06:46 . 2012-07-16 06:46 76800 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
      2012-07-16 06:46 . 2012-07-16 06:46 76800 ----a-w- c:\windows\system32\tdc.ocx
      2012-07-16 06:46 . 2012-07-16 06:46 74752 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
      2012-07-16 06:46 . 2012-07-16 06:46 74752 ----a-w- c:\windows\SysWow64\iesetup.dll
      2012-07-16 06:46 . 2012-07-16 06:46 65024 ----a-w- c:\windows\system32\pngfilt.dll
      2012-07-16 06:46 . 2012-07-16 06:46 63488 ----a-w- c:\windows\SysWow64\tdc.ocx
      2012-07-16 06:46 . 2012-07-16 06:46 55296 ----a-w- c:\windows\system32\msfeedsbs.dll
      2012-07-16 06:46 . 2012-07-16 06:46 534528 ----a-w- c:\windows\system32\ieapfltr.dll
      2012-07-16 06:46 . 2012-07-16 06:46 49664 ----a-w- c:\windows\system32\imgutil.dll
      2012-07-16 06:46 . 2012-07-16 06:46 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
      2012-07-16 06:46 . 2012-07-16 06:46 48640 ----a-w- c:\windows\system32\mshtmler.dll
      2012-07-16 06:46 . 2012-07-16 06:46 452608 ----a-w- c:\windows\system32\dxtmsft.dll
      2012-07-16 06:46 . 2012-07-16 06:46 448512 ----a-w- c:\windows\system32\html.iec
      2012-07-16 06:46 . 2012-07-16 06:46 403248 ----a-w- c:\windows\system32\iedkcs32.dll
      2012-07-16 06:46 . 2012-07-16 06:46 39936 ----a-w- c:\windows\system32\iernonce.dll
      2012-07-16 06:46 . 2012-07-16 06:46 3695416 ----a-w- c:\windows\system32\ieapfltr.dat
      2012-07-16 06:46 . 2012-07-16 06:46 367104 ----a-w- c:\windows\SysWow64\html.iec
      2012-07-16 06:46 . 2012-07-16 06:46 35840 ----a-w- c:\windows\SysWow64\imgutil.dll
      2012-07-16 06:46 . 2012-07-16 06:46 30720 ----a-w- c:\windows\system32\licmgr10.dll
      2012-07-16 06:46 . 2012-07-16 06:46 282112 ----a-w- c:\windows\system32\dxtrans.dll
      2012-07-16 06:46 . 2012-07-16 06:46 267776 ----a-w- c:\windows\system32\ieaksie.dll
      2012-07-16 06:46 . 2012-07-16 06:46 249344 ----a-w- c:\windows\system32\webcheck.dll
      2012-07-16 06:46 . 2012-07-16 06:46 23552 ----a-w- c:\windows\SysWow64\licmgr10.dll
      2012-07-16 06:46 . 2012-07-16 06:46 222208 ----a-w- c:\windows\system32\msls31.dll
      2012-07-16 06:46 . 2012-07-16 06:46 197120 ----a-w- c:\windows\system32\msrating.dll
      2012-07-16 06:46 . 2012-07-16 06:46 165888 ----a-w- c:\windows\system32\iexpress.exe
      2012-07-16 06:46 . 2012-07-16 06:46 163840 ----a-w- c:\windows\system32\ieakui.dll
      2012-07-16 06:46 . 2012-07-16 06:46 161792 ----a-w- c:\windows\SysWow64\msls31.dll
      2012-07-16 06:46 . 2012-07-16 06:46 160256 ----a-w- c:\windows\system32\wextract.exe
      2012-07-16 06:46 . 2012-07-16 06:46 160256 ----a-w- c:\windows\system32\ieakeng.dll
      2012-07-16 06:46 . 2012-07-16 06:46 152064 ----a-w- c:\windows\SysWow64\wextract.exe
      2012-07-16 06:46 . 2012-07-16 06:46 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
      2012-07-16 06:46 . 2012-07-16 06:46 149504 ----a-w- c:\windows\system32\occache.dll
      2012-07-16 06:46 . 2012-07-16 06:46 145920 ----a-w- c:\windows\system32\iepeers.dll
      2012-07-16 06:46 . 2012-07-16 06:46 135168 ----a-w- c:\windows\system32\IEAdvpack.dll
      2012-07-16 06:46 . 2012-07-16 06:46 12288 ----a-w- c:\windows\system32\mshta.exe
      2012-07-16 06:46 . 2012-07-16 06:46 11776 ----a-w- c:\windows\SysWow64\mshta.exe
      2012-07-16 06:46 . 2012-07-16 06:46 114176 ----a-w- c:\windows\system32\admparse.dll
      2012-07-16 06:46 . 2012-07-16 06:46 111616 ----a-w- c:\windows\system32\iesysprep.dll
      2012-07-16 06:46 . 2012-07-16 06:46 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
      2012-07-16 06:46 . 2012-07-16 06:46 10752 ----a-w- c:\windows\system32\msfeedssync.exe
      2012-07-16 06:46 . 2012-07-16 06:46 103936 ----a-w- c:\windows\system32\inseng.dll
      2012-07-16 06:46 . 2012-07-16 06:46 101888 ----a-w- c:\windows\SysWow64\admparse.dll
      2012-07-16 06:41 . 2011-11-02 20:03 207872 ----a-w- c:\programdata\Microsoft\VBExpress\10.0\3082\ResourceCache.dll
      2012-07-12 18:31 . 2011-12-05 19:08 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll
      2012-07-12 18:31 . 2011-09-21 03:23 382288 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
      2012-07-04 22:16 . 2012-08-16 06:38 73216 ----a-w- c:\windows\system32\netapi32.dll
      2012-07-04 22:13 . 2012-08-16 06:38 59392 ----a-w- c:\windows\system32\browcli.dll
      2012-07-04 22:13 . 2012-08-16 06:38 136704 ----a-w- c:\windows\system32\browser.dll
      2012-07-04 21:14 . 2012-08-16 06:38 41984 ----a-w- c:\windows\SysWow64\browcli.dll
      2012-06-29 10:04 . 2012-08-14 13:03 9133488 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{57A1B2CA-5017-4DE1-B138-41D923C539F7}\mpengine.dll
      2006-05-03 15:06 163328 --sha-r- c:\windows\SysWOW64\flvDX.dll
      2007-02-21 16:47 31232 --sha-r- c:\windows\SysWOW64\msfDX.dll
      2008-03-16 18:30 216064 --sha-r- c:\windows\SysWOW64\nbDX.dll
      2010-01-07 03:00 107520 --sha-r- c:\windows\SysWOW64\TAKDSDecoder.dll
      .
      .
      ------- Sigcheck -------
      Note: Unsigned files aren't necessarily malware.
      .
      [7] 2010-11-20 . FE70103391A64039A921DBFFF9C7AB1B . 1008128 . . [6.1.7601.17514] .. c:\windows\winsxs\amd64_microsoft-windows-user32_31bf3856ad364e35_6.1.7601.17514_none_2b5e71b083fc0973\user32.dll
      [7] 2009-07-14 . 72D7B3EA16946E8F0CF7458150031CC6 . 1008640 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-user32_31bf3856ad364e35_6.1.7600.16385_none_292d5de8870d85d9\user32.dll
      [-] 2010-11-20 . E573BD9AB55C8E333C202B9E255F972E . 1008640 . . [6.1.7601.17514] .. c:\windows\system32\user32.dll
      .
      [-] 2012-07-23 . 2C9CC9F492CA596B1B9FC1AE5E916356 . 833024 . . [6.1.7601.17514] .. c:\windows\SysWOW64\user32.dll
      [7] 2010-11-20 . 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 . 833024 . . [6.1.7601.17514] .. c:\windows\winsxs\wow64_microsoft-windows-user32_31bf3856ad364e35_6.1.7601.17514_none_35b31c02b85ccb6e\user32.dll
      [7] 2009-07-14 . E8B0FFC209E504CB7E79FC24E6C085F0 . 833024 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-user32_31bf3856ad364e35_6.1.7600.16385_none_3382083abb6e47d4\user32.dll
      .
      ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      *Note* empty entries & legit default entries are not shown
      REGEDIT4
      .
      [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
      "uTorrent"="c:\program files (x86)\uTorrent\uTorrent.exe" [2012-09-19 896912]
      "DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-02-13 3481408]
      "GoogleDriveSync"="c:\program files (x86)\Google\Drive\googledrivesync.exe" [2012-09-06 15668432]
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
      "BCU"="c:\program files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe" [2009-08-04 346320]
      "NUSB3MON"="c:\program files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2009-11-20 106496]
      "StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-05-05 102400]
      "KMCONFIG"="c:\program files (x86)\Keyboard Driver\StartAutorun.exe" [2007-03-06 212992]
      "Lycosa"="c:\program files (x86)\Razer\Lycosa\razerhid.exe" [2007-11-20 147456]
      "SDTray"="c:\program files (x86)\Spybot - Search & Destroy 2\SDTray.exe" [2012-08-30 3904536]
      .
      c:\users\Totoy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
      CurseClientStartup.ccip [2012-3-17 0]
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
      "ConsentPromptBehaviorAdmin"= 0 (0x0)
      "ConsentPromptBehaviorUser"= 3 (0x3)
      "EnableLUA"= 0 (0x0)
      "EnableUIADesktopToggle"= 0 (0x0)
      "PromptOnSecureDesktop"= 0 (0x0)
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
      "aux1"=wdmaud.drv
      .
      [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
      BootExecute REG_MULTI_SZ autocheck autochk *\0\0sdnclean64.exe
      .
      [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
      Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
      .
      [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
      "ISUSScheduler"="c:\program files (x86)\Common Files\InstallShield\UpdateService\issch.exe" -start
      .
      R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
      R2 gupdate;Google Update Servicio (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-07-25 116648]
      R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
      R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-09-21 250288]
      R3 gupdatem;Google Update Servicio (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-07-25 116648]
      R3 LGDDCDevice;LGDDCDevice;c:\program files (x86)\LG Soft India\forteManager\bin\I2CDriver.sys [2009-04-24 14336]
      R3 LGII2CDevice;LGII2CDevice;c:\program files (x86)\LG Soft India\forteManager\bin\PII2CDriver.sys [2009-04-24 18432]
      R3 motandroidusb;Mot ADB Interface Driver;c:\windows\system32\Drivers\motoandroid.sys [2009-07-10 31744]
      R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-09-09 114144]
      R3 OverwolfUpdaterService;Overwolf Updater Service;c:\program files (x86)\Overwolf\OverwolfUpdater.exe [2012-06-11 18360]
      R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-20 20992]
      R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
      R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
      R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
      R3 TunngleService;TunngleService;c:\program files (x86)\Tunngle\TnglCtrl.exe [2012-04-20 736104]
      R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
      R3 WatAdminSvc;Servicio de tecnologías de activación de Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2011-09-17 1255736]
      R4 AxisCameraStation;AXIS Camera Station Service;c:\program files (x86)\Axis Communications\AXIS Camera Station\AcsService.exe [2007-06-27 11776]
      R4 ES lite Service;ES lite Service for program management.;c:\program files (x86)\Gigabyte\EasySaver\ESSVR.EXE [2009-08-24 68136]
      R4 MSSQLServerADHelper100;Servicio auxiliar de SQL Active Directory;c:\program files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [2009-07-23 61976]
      R4 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe [2011-11-25 687400]
      R4 postgresql-8.3;postgresql-8.3;C:/Program Files (x86)/PostgreSQL/8.3/bin/pg_ctl.exe runservice -N postgresql-8.3 -D C:/Program Files (x86)/PostgreSQL/8.3/data -w [x]
      R4 RsFx0103;RsFx0103 Driver;c:\windows\system32\DRIVERS\RsFx0103.sys [2009-03-30 311656]
      R4 SQLAgent$SQLEXPRESS;Agente SQL Server (SQLEXPRESS);c:\program files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [2009-03-30 427880]
      S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
      S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-03-03 283200]
      S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2011-08-04 146432]
      S2 ABBYY.Licensing.FineReader.Professional.11.0;ABBYY FineReader 11 PE Licensing Service;c:\program files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe [2011-08-18 819976]
      S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-01-03 63928]
      S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-05-05 202752]
      S2 BCUService;Browser Configuration Utility Service;c:\program files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe [2009-08-04 219360]
      S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2011-08-09 202576]
      S2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2011-09-06 974944]
      S2 epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys [2011-08-04 137144]
      S2 KMWDSERVICE;Keyboard And Mouse Communication Service;c:\program files (x86)\Keyboard Driver\KMWDSrv.exe [2007-04-05 208896]
      S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-09-07 399432]
      S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-09-07 676936]
      S2 SDScannerService;Spybot-S&D 2 Scanner Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2012-08-30 1074720]
      S2 SDUpdateService;Spybot-S&D 2 Updating Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2012-08-30 1358360]
      S2 SDWSCService;Spybot-S&D 2 Security Center Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2012-03-22 166528]
      S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe [2012-05-29 2143072]
      S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [2010-05-05 6789632]
      S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2010-05-05 221184]
      S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-09-07 25928]
      S3 nusb3hub;NEC Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [2009-11-20 75776]
      S3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [2009-11-20 177152]
      S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2009-08-20 239616]
      S3 tap0901t;TAP-Win32 Adapter V9 (Tunngle);c:\windows\system32\DRIVERS\tap0901t.sys [2009-09-16 31232]
      S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys [2011-11-09 11856]
      .
      .
      Contents of the 'Scheduled Tasks' folder
      .
      2012-09-22 c:\windows\Tasks\Adobe Flash Player Updater.job
      - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-06 08:22]
      .
      2012-09-21 c:\windows\Tasks\DriverScanner.job
      - c:\program files (x86)\Uniblue\DriverScanner\dsmonitor.exe [2012-03-01 14:22]
      .
      2012-09-22 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
      - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-07-25 03:09]
      .
      2012-09-22 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
      - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-07-25 03:09]
      .
      2012-09-22 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3552707504-3053943316-1066882160-1001Core.job
      - c:\users\Totoy\AppData\Local\Google\Update\GoogleUpdate.exe [2011-10-05 03:02]
      .
      2012-09-22 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3552707504-3053943316-1066882160-1001UA.job
      - c:\users\Totoy\AppData\Local\Google\Update\GoogleUpdate.exe [2011-10-05 03:02]
      .
      .
      --------- X64 Entries -----------
      .
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
      @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
      [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
      2012-09-06 18:51 755224 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
      @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
      [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
      2012-09-06 18:51 755224 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
      @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
      [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
      2012-09-06 18:51 755224 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
      .
      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
      @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
      [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
      2012-09-06 18:51 755224 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-03-12 10134560]
      "egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2011-09-06 4030008]
      "XboxStat"="c:\program files\Microsoft Xbox 360 Accessories\XboxStat.exe" [2009-09-30 825184]
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
      "LoadAppInit_DLLs"=0x0
      .
      HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
      UxTuneUp
      .
      ------- Supplementary Scan -------
      .
      uLocal Page = c:\windows\system32\blank.htm
      uStart Page = about:blank
      mLocal Page = c:\windows\SysWOW64\blank.htm
      IE: Download with &Media Finder - c:\program files (x86)\Media Finder\hook.html
      IE: E&xportar a Microsoft Excel - c:\progra~2\MICROS~2\Office12\EXCEL.EXE/3000
      TCP: DhcpNameServer = 192.168.1.1
      DPF: {5C37F274-31B1-4185-9CA4-878F7D5B7779} - hxxp://169.254.102.68/MediaClientAxCtrl.cab
      FF - ProfilePath - c:\users\Totoy\AppData\Roaming\Mozilla\Firefox\Profiles\dti4zh4l.default\
      FF - user.js: network.http.max-persistent-connections-per-server - 4
      FF - user.js: nglayout.initialpaint.delay - 600
      FF - user.js: content.notify.interval - 600000
      FF - user.js: content.max.tokenizing.time - 1800000
      FF - user.js: content.switch.threshold - 600000
      FF - user.js: extensions.BabylonToolbar_i.babTrack - affID=111015
      FF - user.js: extensions.BabylonToolbar_i.babExt -
      FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
      FF - user.js: extensions.BabylonToolbar_i.id - 082e86a100000000000000ff2e40fa90
      FF - user.js: extensions.BabylonToolbar_i.hardId - 082e86a100000000000000ff2e40fa90
      FF - user.js: extensions.BabylonToolbar_i.instlDay - 15534
      FF - user.js: extensions.BabylonToolbar_i.vrsn - 1.5.3.17
      FF - user.js: extensions.BabylonToolbar_i.vrsni - 1.5.3.17
      FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.3.1723:04
      FF - user.js: extensions.BabylonToolbar_i.prtnrId - babylon
      FF - user.js: extensions.BabylonToolbar_i.prdct - BabylonToolbar
      FF - user.js: extensions.BabylonToolbar_i.aflt - babsst
      FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
      FF - user.js: extensions.BabylonToolbar_i.tlbrId - base
      FF - user.js: extensions.BabylonToolbar_i.instlRef - sst
      .
      - - - - ORPHANS REMOVED - - - -
      .
      Notify-SDWinLogon - SDWinLogon.dll
      .
      .
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\postgresql-8.3]
      "ImagePath"="C:/Program Files (x86)/PostgreSQL/8.3/bin/pg_ctl.exe runservice -N \"postgresql-8.3\" -D \"C:/Program Files (x86)/PostgreSQL/8.3/data\" -w"
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\postgresql-8.3]
      "ImagePath"="C:/Program Files (x86)/PostgreSQL/8.3/bin/pg_ctl.exe runservice -N \"postgresql-8.3\" -D \"C:/Program Files (x86)/PostgreSQL/8.3/data\" -w"
      .
      --------------------- LOCKED REGISTRY KEYS ---------------------
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
      @Denied: (A 2) (Everyone)
      @="FlashBroker"
      "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_278_ActiveX.exe,-101"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
      "Enabled"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
      @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_278_ActiveX.exe"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
      @Denied: (A 2) (Everyone)
      @="IFlashBroker5"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
      @="{00020424-0000-0000-C000-000000000046}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      "Version"="1.0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
      @Denied: (A 2) (Everyone)
      @="FlashBroker"
      "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_278_ActiveX.exe,-101"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
      "Enabled"=dword:00000001
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_278_ActiveX.exe"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
      @Denied: (A 2) (Everyone)
      @="Shockwave Flash Object"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_278.ocx"
      "ThreadingModel"="Apartment"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
      @="0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
      @="ShockwaveFlash.ShockwaveFlash.11"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_278.ocx, 1"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
      @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
      @="1.0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
      @="ShockwaveFlash.ShockwaveFlash"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
      @Denied: (A 2) (Everyone)
      @="Macromedia Flash Factory Object"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_278.ocx"
      "ThreadingModel"="Apartment"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
      @="FlashFactory.FlashFactory.1"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
      @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_278.ocx, 1"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
      @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
      @="1.0"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
      @="FlashFactory.FlashFactory"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
      @Denied: (A 2) (Everyone)
      @="IFlashBroker5"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
      @="{00020424-0000-0000-C000-000000000046}"
      .
      [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
      @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
      "Version"="1.0"
      .
      [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
      @Denied: (Full) (Everyone)
      .
      ------------------------ Other Running Processes ------------------------
      .
      c:\windows\SysWOW64\PnkBstrA.exe
      c:\program files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
      c:\program files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
      c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
      c:\program files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe
      c:\program files (x86)\Keyboard Driver\KMConfig.exe
      c:\program files (x86)\Keyboard Driver\KMProcess.exe
      c:\program files (x86)\DAEMON Tools Lite\DTShellHlp.exe
      .
      **************************************************************************
      .
      Completion time: 2012-09-22 06:04:02 - machine was rebooted
      ComboFix-quarantined-files.txt 2012-09-22 09:04
      .
      Pre-Run: 332.612.640.768 bytes libres
      Post-Run: 332.110.368.768 bytes libres
      .
      - - End Of File - - 385215F6018D34240CE6FB98DABF82C4
      Última edición por @SanMar fecha: 23/09/12 a las 01:59:14 Razón: Quitar code.

    10. #10
      Ex-Colaboradora Avatar de @SanMar
      Registrado
      jun 2008
      Ubicación
      Argentina
      Mensajes
      22.290

      Re: Problema con WIN32/Sirefef

      Hola zerosn:


      Combofix ha hecho una gran limpieza aunque aun quedan algunos restos comenta como sientes el equipo.


      Salu2.

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    Página 1 de 2 12 ÚltimoÚltimo