10:10:33.0876 4012  TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
10:10:34.0017 4012  ============================================================
10:10:34.0017 4012  Current date / time: 2012/09/03 10:10:34.0017
10:10:34.0017 4012  SystemInfo:
10:10:34.0017 4012  
10:10:34.0017 4012  OS Version: 6.1.7600 ServicePack: 0.0
10:10:34.0017 4012  Product type: Workstation
10:10:34.0017 4012  ComputerName: MACIEK-KOMPUTER
10:10:34.0017 4012  UserName: Maciek
10:10:34.0017 4012  Windows directory: C:\Windows
10:10:34.0017 4012  System windows directory: C:\Windows
10:10:34.0017 4012  Running under WOW64
10:10:34.0017 4012  Processor architecture: Intel x64
10:10:34.0017 4012  Number of processors: 2
10:10:34.0017 4012  Page size: 0x1000
10:10:34.0017 4012  Boot type: Normal boot
10:10:34.0017 4012  ============================================================
10:10:35.0142 4012  Drive \Device\Harddisk0\DR0 - Size: 0x4A85C4DE00 (298.09 Gb), SectorSize: 0x200, Cylinders: 0xA181, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
10:10:35.0158 4012  ============================================================
10:10:35.0158 4012  \Device\Harddisk0\DR0:
10:10:35.0158 4012  MBR partitions:
10:10:35.0158 4012  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
10:10:35.0158 4012  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x186E8000
10:10:35.0158 4012  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x1871A800, BlocksNum 0xCD13800
10:10:35.0158 4012  ============================================================
10:10:35.0189 4012  C: <-> \Device\Harddisk0\DR0\Partition2
10:10:35.0236 4012  D: <-> \Device\Harddisk0\DR0\Partition3
10:10:35.0236 4012  ============================================================
10:10:35.0236 4012  Initialize success
10:10:35.0236 4012  ============================================================
10:10:42.0736 3084  ============================================================
10:10:42.0736 3084  Scan started
10:10:42.0736 3084  Mode: Manual; 
10:10:42.0736 3084  ============================================================
10:10:44.0533 3084  ================ Scan system memory ========================
10:10:44.0533 3084  System memory - ok
10:10:44.0533 3084  ================ Scan services =============================
10:10:44.0767 3084  [ 6B9A496ED67631DA8ADB802461876C36 ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
10:10:44.0767 3084  !SASCORE - ok
10:10:45.0486 3084  [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci        C:\Windows\system32\DRIVERS\1394ohci.sys
10:10:45.0486 3084  1394ohci - ok
10:10:45.0517 3084  [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI            C:\Windows\system32\DRIVERS\ACPI.sys
10:10:45.0517 3084  ACPI - ok
10:10:45.0548 3084  [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi         C:\Windows\system32\DRIVERS\acpipmi.sys
10:10:45.0564 3084  AcpiPmi - ok
10:10:45.0611 3084  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
10:10:45.0626 3084  adp94xx - ok
10:10:45.0673 3084  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
10:10:45.0689 3084  adpahci - ok
10:10:45.0705 3084  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
10:10:45.0705 3084  adpu320 - ok
10:10:45.0736 3084  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
10:10:45.0736 3084  AeLookupSvc - ok
10:10:45.0783 3084  [ 6EF20DDF3172E97D69F596FB90602F29 ] AFD             C:\Windows\system32\drivers\afd.sys
10:10:45.0798 3084  AFD - ok
10:10:45.0814 3084  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\DRIVERS\agp440.sys
10:10:45.0814 3084  agp440 - ok
10:10:45.0830 3084  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
10:10:45.0830 3084  ALG - ok
10:10:45.0845 3084  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\DRIVERS\aliide.sys
10:10:45.0845 3084  aliide - ok
10:10:45.0861 3084  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\DRIVERS\amdide.sys
10:10:45.0861 3084  amdide - ok
10:10:45.0908 3084  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
10:10:45.0908 3084  AmdK8 - ok
10:10:45.0923 3084  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
10:10:45.0923 3084  AmdPPM - ok
10:10:45.0939 3084  [ 7A4B413614C055935567CF88A9734D38 ] amdsata         C:\Windows\system32\DRIVERS\amdsata.sys
10:10:45.0955 3084  amdsata - ok
10:10:45.0970 3084  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
10:10:45.0970 3084  amdsbs - ok
10:10:45.0986 3084  [ B4AD0CACBAB298671DD6F6EF7E20679D ] amdxata         C:\Windows\system32\DRIVERS\amdxata.sys
10:10:45.0986 3084  amdxata - ok
10:10:46.0017 3084  [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID           C:\Windows\system32\drivers\appid.sys
10:10:46.0017 3084  AppID - ok
10:10:46.0033 3084  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
10:10:46.0033 3084  AppIDSvc - ok
10:10:46.0048 3084  [ D065BE66822847B7F127D1F90158376E ] Appinfo         C:\Windows\System32\appinfo.dll
10:10:46.0064 3084  Appinfo - ok
10:10:46.0095 3084  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
10:10:46.0095 3084  arc - ok
10:10:46.0111 3084  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
10:10:46.0111 3084  arcsas - ok
10:10:46.0220 3084  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
10:10:46.0220 3084  aspnet_state - ok
10:10:46.0251 3084  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
10:10:46.0251 3084  AsyncMac - ok
10:10:46.0267 3084  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\DRIVERS\atapi.sys
10:10:46.0267 3084  atapi - ok
10:10:46.0314 3084  [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
10:10:46.0345 3084  AudioEndpointBuilder - ok
10:10:46.0361 3084  [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv        C:\Windows\System32\Audiosrv.dll
10:10:46.0376 3084  AudioSrv - ok
10:10:46.0408 3084  [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV        C:\Windows\System32\AxInstSV.dll
10:10:46.0408 3084  AxInstSV - ok
10:10:46.0455 3084  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
10:10:46.0486 3084  b06bdrv - ok
10:10:46.0517 3084  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
10:10:46.0517 3084  b57nd60a - ok
10:10:46.0548 3084  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
10:10:46.0548 3084  BDESVC - ok
10:10:46.0564 3084  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
10:10:46.0564 3084  Beep - ok
10:10:46.0611 3084  [ 4992C609A6315671463E30F6512BC022 ] BFE             C:\Windows\System32\bfe.dll
10:10:46.0626 3084  BFE - ok
10:10:46.0720 3084  BITCOMET_HELPER_SERVICE - ok
10:10:46.0845 3084  [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS            C:\Windows\System32\qmgr.dll
10:10:46.0892 3084  BITS - ok
10:10:46.0908 3084  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
10:10:46.0908 3084  blbdrive - ok
10:10:46.0955 3084  [ 19D20159708E152267E53B66677A4995 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
10:10:46.0955 3084  bowser - ok
10:10:46.0986 3084  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
10:10:47.0001 3084  BrFiltLo - ok
10:10:47.0017 3084  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
10:10:47.0017 3084  BrFiltUp - ok
10:10:47.0048 3084  [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
10:10:47.0048 3084  BridgeMP - ok
10:10:47.0080 3084  [ 94FBC06F294D58D02361918418F996E3 ] Browser         C:\Windows\System32\browser.dll
10:10:47.0080 3084  Browser - ok
10:10:47.0095 3084  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
10:10:47.0111 3084  Brserid - ok
10:10:47.0126 3084  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
10:10:47.0142 3084  BrSerWdm - ok
10:10:47.0158 3084  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
10:10:47.0158 3084  BrUsbMdm - ok
10:10:47.0158 3084  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
10:10:47.0158 3084  BrUsbSer - ok
10:10:47.0173 3084  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
10:10:47.0189 3084  BTHMODEM - ok
10:10:47.0205 3084  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
10:10:47.0205 3084  bthserv - ok
10:10:47.0236 3084  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
10:10:47.0236 3084  cdfs - ok
10:10:47.0251 3084  [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
10:10:47.0251 3084  cdrom - ok
10:10:47.0298 3084  [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc     C:\Windows\System32\certprop.dll
10:10:47.0298 3084  CertPropSvc - ok
10:10:47.0314 3084  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
10:10:47.0330 3084  circlass - ok
10:10:47.0345 3084  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
10:10:47.0345 3084  CLFS - ok
10:10:47.0423 3084  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:10:47.0423 3084  clr_optimization_v2.0.50727_32 - ok
10:10:47.0455 3084  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
10:10:47.0455 3084  clr_optimization_v2.0.50727_64 - ok
10:10:47.0533 3084  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:10:47.0548 3084  clr_optimization_v4.0.30319_32 - ok
10:10:47.0580 3084  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
10:10:47.0580 3084  clr_optimization_v4.0.30319_64 - ok
10:10:47.0611 3084  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
10:10:47.0611 3084  CmBatt - ok
10:10:47.0642 3084  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\DRIVERS\cmdide.sys
10:10:47.0642 3084  cmdide - ok
10:10:47.0658 3084  [ F95FD4CB7DA00BA2A63CE9F6B5C053E1 ] CNG             C:\Windows\system32\Drivers\cng.sys
10:10:47.0689 3084  CNG - ok
10:10:47.0705 3084  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
10:10:47.0705 3084  Compbatt - ok
10:10:47.0720 3084  [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
10:10:47.0736 3084  CompositeBus - ok
10:10:47.0736 3084  COMSysApp - ok
10:10:47.0751 3084  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
10:10:47.0751 3084  crcdisk - ok
10:10:47.0798 3084  [ 8C57411B66282C01533CB776F98AD384 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
10:10:47.0814 3084  CryptSvc - ok
10:10:47.0876 3084  [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch      C:\Windows\system32\rpcss.dll
10:10:47.0908 3084  DcomLaunch - ok
10:10:47.0955 3084  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
10:10:47.0970 3084  defragsvc - ok
10:10:48.0017 3084  [ 9C253CE7311CA60FC11C774692A13208 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
10:10:48.0017 3084  DfsC - ok
10:10:48.0064 3084  [ CE3B9562D997F69B330D181A8875960F ] Dhcp            C:\Windows\system32\dhcpcore.dll
10:10:48.0080 3084  Dhcp - ok
10:10:48.0095 3084  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
10:10:48.0111 3084  discache - ok
10:10:48.0158 3084  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
10:10:48.0158 3084  Disk - ok
10:10:48.0189 3084  [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache        C:\Windows\System32\dnsrslvr.dll
10:10:48.0205 3084  Dnscache - ok
10:10:48.0236 3084  [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc         C:\Windows\System32\dot3svc.dll
10:10:48.0236 3084  dot3svc - ok
10:10:48.0267 3084  [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS             C:\Windows\system32\dps.dll
10:10:48.0267 3084  DPS - ok
10:10:48.0298 3084  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
10:10:48.0314 3084  drmkaud - ok
10:10:48.0345 3084  [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
10:10:48.0361 3084  DXGKrnl - ok
10:10:48.0392 3084  EagleX64 - ok
10:10:48.0423 3084  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
10:10:48.0423 3084  EapHost - ok
10:10:48.0548 3084  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
10:10:48.0658 3084  ebdrv - ok
10:10:48.0705 3084  [ 0793F40B9B8A1BDD266296409DBD91EA ] EFS             C:\Windows\System32\lsass.exe
10:10:48.0705 3084  EFS - ok
10:10:48.0798 3084  [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
10:10:48.0814 3084  ehRecvr - ok
10:10:48.0845 3084  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
10:10:48.0861 3084  ehSched - ok
10:10:48.0892 3084  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
10:10:48.0908 3084  elxstor - ok
10:10:48.0923 3084  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\DRIVERS\errdev.sys
10:10:48.0923 3084  ErrDev - ok
10:10:49.0048 3084  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
10:10:49.0064 3084  EventSystem - ok
10:10:49.0095 3084  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
10:10:49.0111 3084  exfat - ok
10:10:49.0158 3084  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
10:10:49.0158 3084  fastfat - ok
10:10:49.0205 3084  [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax             C:\Windows\system32\fxssvc.exe
10:10:49.0236 3084  Fax - ok
10:10:49.0267 3084  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
10:10:49.0267 3084  fdc - ok
10:10:49.0314 3084  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
10:10:49.0314 3084  fdPHost - ok
10:10:49.0330 3084  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
10:10:49.0330 3084  FDResPub - ok
10:10:49.0361 3084  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
10:10:49.0361 3084  FileInfo - ok
10:10:49.0376 3084  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
10:10:49.0376 3084  Filetrace - ok
10:10:49.0408 3084  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
10:10:49.0408 3084  flpydisk - ok
10:10:49.0439 3084  [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
10:10:49.0439 3084  FltMgr - ok
10:10:49.0595 3084  [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache       C:\Windows\system32\FntCache.dll
10:10:49.0626 3084  FontCache - ok
10:10:49.0673 3084  [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:10:49.0689 3084  FontCache3.0.0.0 - ok
10:10:49.0720 3084  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
10:10:49.0736 3084  FsDepends - ok
10:10:49.0798 3084  [ E95EF8547DE20CF0603557C0CF7A9462 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
10:10:49.0830 3084  Fs_Rec - ok
10:10:49.0876 3084  [ AE87BA80D0EC3B57126ED2CDC15B24ED ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
10:10:49.0876 3084  fvevol - ok
10:10:49.0908 3084  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
10:10:49.0908 3084  gagp30kx - ok
10:10:50.0001 3084  GGSAFERDriver - ok
10:10:50.0033 3084  Giraffic - ok
10:10:50.0080 3084  [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc           C:\Windows\System32\gpsvc.dll
10:10:50.0111 3084  gpsvc - ok
10:10:50.0158 3084  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:10:50.0173 3084  gupdate - ok
10:10:50.0189 3084  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:10:50.0189 3084  gupdatem - ok
10:10:50.0205 3084  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
10:10:50.0205 3084  hcw85cir - ok
10:10:50.0236 3084  [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
10:10:50.0251 3084  HdAudAddService - ok
10:10:50.0283 3084  [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
10:10:50.0283 3084  HDAudBus - ok
10:10:50.0283 3084  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
10:10:50.0283 3084  HidBatt - ok
10:10:50.0298 3084  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
10:10:50.0314 3084  HidBth - ok
10:10:50.0330 3084  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
10:10:50.0330 3084  HidIr - ok
10:10:50.0345 3084  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\System32\hidserv.dll
10:10:50.0345 3084  hidserv - ok
10:10:50.0376 3084  [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
10:10:50.0376 3084  HidUsb - ok
10:10:50.0392 3084  [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc          C:\Windows\system32\kmsvc.dll
10:10:50.0408 3084  hkmsvc - ok
10:10:50.0423 3084  [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
10:10:50.0423 3084  HomeGroupListener - ok
10:10:50.0455 3084  [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
10:10:50.0455 3084  HomeGroupProvider - ok
10:10:50.0517 3084  [ C227DFCF703D02EAD4D7E44B0BA7C181 ] hotcore3        C:\Windows\system32\DRIVERS\hotcore3.sys
10:10:50.0517 3084  hotcore3 - ok
10:10:50.0533 3084  [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD          C:\Windows\system32\DRIVERS\HpSAMD.sys
10:10:50.0548 3084  HpSAMD - ok
10:10:50.0580 3084  [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
10:10:50.0595 3084  HTTP - ok
10:10:50.0611 3084  [ F17766A19145F111856378DF337A5D79 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
10:10:50.0611 3084  hwpolicy - ok
10:10:50.0658 3084  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
10:10:50.0658 3084  i8042prt - ok
10:10:50.0689 3084  [ D83EFB6FD45DF9D55E9A1AFC63640D50 ] iaStorV         C:\Windows\system32\DRIVERS\iaStorV.sys
10:10:50.0705 3084  iaStorV - ok
10:10:50.0767 3084  [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
10:10:50.0814 3084  idsvc - ok
10:10:50.0845 3084  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
10:10:50.0845 3084  iirsp - ok
10:10:50.0923 3084  [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT          C:\Windows\System32\ikeext.dll
10:10:50.0955 3084  IKEEXT - ok
10:10:50.0970 3084  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\DRIVERS\intelide.sys
10:10:50.0970 3084  intelide - ok
10:10:51.0001 3084  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
10:10:51.0001 3084  intelppm - ok
10:10:51.0017 3084  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
10:10:51.0017 3084  IPBusEnum - ok
10:10:51.0033 3084  [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:10:51.0033 3084  IpFilterDriver - ok
10:10:51.0064 3084  [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
10:10:51.0080 3084  iphlpsvc - ok
10:10:51.0095 3084  [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV         C:\Windows\system32\DRIVERS\IPMIDrv.sys
10:10:51.0095 3084  IPMIDRV - ok
10:10:51.0126 3084  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
10:10:51.0126 3084  IPNAT - ok
10:10:51.0142 3084  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
10:10:51.0158 3084  IRENUM - ok
10:10:51.0158 3084  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\DRIVERS\isapnp.sys
10:10:51.0173 3084  isapnp - ok
10:10:51.0189 3084  [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
10:10:51.0205 3084  iScsiPrt - ok
10:10:51.0220 3084  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
10:10:51.0220 3084  kbdclass - ok
10:10:51.0251 3084  [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
10:10:51.0251 3084  kbdhid - ok
10:10:51.0283 3084  [ 0793F40B9B8A1BDD266296409DBD91EA ] KeyIso          C:\Windows\system32\lsass.exe
10:10:51.0283 3084  KeyIso - ok
10:10:51.0298 3084  KMService - ok
10:10:51.0314 3084  [ E8B6FCC9C83535C67F835D407620BD27 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
10:10:51.0330 3084  KSecDD - ok
10:10:51.0361 3084  [ A8C63880EF6F4D3FEC7B616B9C060215 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
10:10:51.0361 3084  KSecPkg - ok
10:10:51.0376 3084  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
10:10:51.0376 3084  ksthunk - ok
10:10:51.0408 3084  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
10:10:51.0423 3084  KtmRm - ok
10:10:51.0455 3084  [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer    C:\Windows\System32\srvsvc.dll
10:10:51.0470 3084  LanmanServer - ok
10:10:51.0501 3084  [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
10:10:51.0501 3084  LanmanWorkstation - ok
10:10:51.0533 3084  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
10:10:51.0533 3084  lltdio - ok
10:10:51.0564 3084  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
10:10:51.0595 3084  lltdsvc - ok
10:10:51.0611 3084  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
10:10:51.0626 3084  lmhosts - ok
10:10:51.0658 3084  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
10:10:51.0658 3084  LSI_FC - ok
10:10:51.0673 3084  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
10:10:51.0689 3084  LSI_SAS - ok
10:10:51.0705 3084  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
10:10:51.0705 3084  LSI_SAS2 - ok
10:10:51.0720 3084  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
10:10:51.0720 3084  LSI_SCSI - ok
10:10:51.0751 3084  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
10:10:51.0751 3084  luafv - ok
10:10:51.0783 3084  [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
10:10:51.0783 3084  Mcx2Svc - ok
10:10:51.0798 3084  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
10:10:51.0798 3084  megasas - ok
10:10:51.0830 3084  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
10:10:51.0845 3084  MegaSR - ok
10:10:51.0892 3084  Microsoft SharePoint Workspace Audit Service - ok
10:10:51.0923 3084  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
10:10:51.0923 3084  MMCSS - ok
10:10:51.0939 3084  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
10:10:51.0939 3084  Modem - ok
10:10:51.0970 3084  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
10:10:51.0970 3084  monitor - ok
10:10:52.0001 3084  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
10:10:52.0001 3084  mouclass - ok
10:10:52.0033 3084  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
10:10:52.0033 3084  mouhid - ok
10:10:52.0048 3084  [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
10:10:52.0048 3084  mountmgr - ok
10:10:52.0111 3084  [ E8D79312373F254DC13F3965BDB3D521 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
10:10:52.0111 3084  MozillaMaintenance - ok
10:10:52.0158 3084  [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio            C:\Windows\system32\DRIVERS\mpio.sys
10:10:52.0158 3084  mpio - ok
10:10:52.0189 3084  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
10:10:52.0189 3084  mpsdrv - ok
10:10:52.0220 3084  [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc          C:\Windows\system32\mpssvc.dll
10:10:52.0236 3084  MpsSvc - ok
10:10:52.0267 3084  [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
10:10:52.0267 3084  MRxDAV - ok
10:10:52.0298 3084  [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
10:10:52.0298 3084  mrxsmb - ok
10:10:52.0314 3084  [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:10:52.0314 3084  mrxsmb10 - ok
10:10:52.0330 3084  [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:10:52.0345 3084  mrxsmb20 - ok
10:10:52.0361 3084  [ 5C37497276E3B3A5488B23A326A754B7 ] msahci          C:\Windows\system32\DRIVERS\msahci.sys
10:10:52.0361 3084  msahci - ok
10:10:52.0376 3084  [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm           C:\Windows\system32\DRIVERS\msdsm.sys
10:10:52.0376 3084  msdsm - ok
10:10:52.0392 3084  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
10:10:52.0408 3084  MSDTC - ok
10:10:52.0423 3084  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
10:10:52.0423 3084  Msfs - ok
10:10:52.0439 3084  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
10:10:52.0439 3084  mshidkmdf - ok
10:10:52.0455 3084  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\DRIVERS\msisadrv.sys
10:10:52.0455 3084  msisadrv - ok
10:10:52.0486 3084  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
10:10:52.0486 3084  MSiSCSI - ok
10:10:52.0501 3084  msiserver - ok
10:10:52.0517 3084  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
10:10:52.0517 3084  MSKSSRV - ok
10:10:52.0548 3084  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
10:10:52.0548 3084  MSPCLOCK - ok
10:10:52.0564 3084  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
10:10:52.0564 3084  MSPQM - ok
10:10:52.0580 3084  [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
10:10:52.0580 3084  MsRPC - ok
10:10:52.0611 3084  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
10:10:52.0611 3084  mssmbios - ok
10:10:52.0626 3084  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
10:10:52.0626 3084  MSTEE - ok
10:10:52.0642 3084  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
10:10:52.0642 3084  MTConfig - ok
10:10:52.0658 3084  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
10:10:52.0673 3084  Mup - ok
10:10:52.0705 3084  [ 4987E079A4530FA737A128BE54B63B12 ] napagent        C:\Windows\system32\qagentRT.dll
10:10:52.0720 3084  napagent - ok
10:10:52.0751 3084  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
10:10:52.0767 3084  NativeWifiP - ok
10:10:52.0955 3084  [ 5836B9E91863A00EC1B8E785EFD86ECB ] NBService       C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
10:10:52.0986 3084  NBService - ok
10:10:53.0080 3084  [ CAD515DBD07D082BB317D9928CE8962C ] NDIS            C:\Windows\system32\drivers\ndis.sys
10:10:53.0111 3084  NDIS - ok
10:10:53.0142 3084  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
10:10:53.0142 3084  NdisCap - ok
10:10:53.0158 3084  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
10:10:53.0158 3084  NdisTapi - ok
10:10:53.0189 3084  [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
10:10:53.0189 3084  Ndisuio - ok
10:10:53.0205 3084  [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
10:10:53.0220 3084  NdisWan - ok
10:10:53.0220 3084  [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
10:10:53.0220 3084  NDProxy - ok
10:10:53.0251 3084  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
10:10:53.0267 3084  NetBIOS - ok
10:10:53.0283 3084  [ 9162B273A44AB9DCE5B44362731D062A ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
10:10:53.0283 3084  NetBT - ok
10:10:53.0298 3084  [ 0793F40B9B8A1BDD266296409DBD91EA ] Netlogon        C:\Windows\system32\lsass.exe
10:10:53.0298 3084  Netlogon - ok
10:10:53.0345 3084  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
10:10:53.0361 3084  Netman - ok
10:10:53.0408 3084  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:10:53.0408 3084  NetMsmqActivator - ok
10:10:53.0423 3084  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:10:53.0423 3084  NetPipeActivator - ok
10:10:53.0455 3084  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
10:10:53.0470 3084  netprofm - ok
10:10:53.0470 3084  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:10:53.0486 3084  NetTcpActivator - ok
10:10:53.0486 3084  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:10:53.0486 3084  NetTcpPortSharing - ok
10:10:53.0501 3084  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
10:10:53.0517 3084  nfrd960 - ok
10:10:53.0548 3084  [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc          C:\Windows\System32\nlasvc.dll
10:10:53.0564 3084  NlaSvc - ok
10:10:53.0626 3084  [ A328A46D87BB92CE4D8A4528E9D84787 ] NMIndexingService C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
10:10:53.0642 3084  NMIndexingService - ok
10:10:53.0720 3084  [ 5FE6F8C05F0769BBB74AFAC11453B182 ] nmwcd           C:\Windows\system32\drivers\ccdcmbx64.sys
10:10:53.0720 3084  nmwcd - ok
10:10:53.0767 3084  [ 73C929945C0850B8D1FE2FEA05FDF05D ] nmwcdc          C:\Windows\system32\drivers\ccdcmbox64.sys
10:10:53.0767 3084  nmwcdc - ok
10:10:53.0783 3084  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
10:10:53.0783 3084  Npfs - ok
10:10:53.0814 3084  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
10:10:53.0814 3084  nsi - ok
10:10:53.0845 3084  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
10:10:53.0845 3084  nsiproxy - ok
10:10:53.0892 3084  [ 356698A13C4630D5B31C37378D469196 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
10:10:53.0939 3084  Ntfs - ok
10:10:53.0970 3084  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
10:10:53.0970 3084  Null - ok
10:10:54.0001 3084  [ A85B4F2EF3A7304A5399EF0526423040 ] NVENETFD        C:\Windows\system32\DRIVERS\nvm62x64.sys
10:10:54.0017 3084  NVENETFD - ok
10:10:54.0955 3084  [ BA0B4889C40380A01ECDF84C227A89C9 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
10:10:55.0033 3084  nvlddmkm - ok
10:10:55.0064 3084  [ 3E38712941E9BB4DDBEE00AFFE3FED3D ] nvraid          C:\Windows\system32\DRIVERS\nvraid.sys
10:10:55.0064 3084  nvraid - ok
10:10:55.0095 3084  [ 477DC4D6DEB99BE37084C9AC6D013DA1 ] nvstor          C:\Windows\system32\DRIVERS\nvstor.sys
10:10:55.0095 3084  nvstor - ok
10:10:55.0142 3084  [ 06633CF95BEA62164C3BFCA24BCE6B11 ] nvsvc           C:\Windows\system32\nvvsvc.exe
10:10:55.0189 3084  nvsvc - ok
10:10:55.0283 3084  [ 53B629CE436B110C5689C2F6439E567B ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
10:10:55.0314 3084  nvUpdatusService - ok
10:10:55.0330 3084  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\DRIVERS\nv_agp.sys
10:10:55.0330 3084  nv_agp - ok
10:10:55.0361 3084  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\DRIVERS\ohci1394.sys
10:10:55.0361 3084  ohci1394 - ok
10:10:55.0423 3084  [ 4965B005492CBA7719E82B71E3245495 ] ose64           C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:10:55.0423 3084  ose64 - ok
10:10:56.0501 3084  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
10:10:56.0642 3084  osppsvc - ok
10:10:56.0673 3084  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
10:10:56.0689 3084  p2pimsvc - ok
10:10:56.0705 3084  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
10:10:56.0736 3084  p2psvc - ok
10:10:56.0767 3084  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
10:10:56.0767 3084  Parport - ok
10:10:56.0783 3084  [ 7DAA117143316C4A1537E074A5A9EAF0 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
10:10:56.0783 3084  partmgr - ok
10:10:56.0798 3084  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
10:10:56.0798 3084  PcaSvc - ok
10:10:56.0845 3084  [ BC0018C2D29F655188A0ED3FA94FDB24 ] pccsmcfd        C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
10:10:56.0861 3084  pccsmcfd - ok
10:10:56.0876 3084  [ F36F6504009F2FB0DFD1B17A116AD74B ] pci             C:\Windows\system32\DRIVERS\pci.sys
10:10:56.0892 3084  pci - ok
10:10:56.0908 3084  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\DRIVERS\pciide.sys
10:10:56.0908 3084  pciide - ok
10:10:56.0939 3084  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
10:10:56.0939 3084  pcmcia - ok
10:10:56.0955 3084  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
10:10:56.0955 3084  pcw - ok
10:10:56.0986 3084  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
10:10:57.0017 3084  PEAUTH - ok
10:10:57.0298 3084  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
10:10:57.0298 3084  PerfHost - ok
10:10:57.0423 3084  [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla             C:\Windows\system32\pla.dll
10:10:57.0455 3084  pla - ok
10:10:57.0501 3084  [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
10:10:57.0517 3084  PlugPlay - ok
10:10:57.0548 3084  PnkBstrA - ok
10:10:57.0564 3084  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
10:10:57.0564 3084  PNRPAutoReg - ok
10:10:57.0580 3084  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
10:10:57.0580 3084  PNRPsvc - ok
10:10:57.0611 3084  [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
10:10:57.0626 3084  PolicyAgent - ok
10:10:57.0658 3084  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
10:10:57.0658 3084  Power - ok
10:10:57.0689 3084  [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
10:10:57.0689 3084  PptpMiniport - ok
10:10:57.0705 3084  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
10:10:57.0705 3084  Processor - ok
10:10:57.0736 3084  [ F381975E1F4346DE875CB07339CE8D3A ] ProfSvc         C:\Windows\system32\profsvc.dll
10:10:57.0736 3084  ProfSvc - ok
10:10:57.0751 3084  [ 0793F40B9B8A1BDD266296409DBD91EA ] ProtectedStorage C:\Windows\system32\lsass.exe
10:10:57.0751 3084  ProtectedStorage - ok
10:10:57.0783 3084  [ EE992183BD8EAEFD9973F352E587A299 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
10:10:57.0783 3084  Psched - ok
10:10:57.0830 3084  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
10:10:57.0876 3084  ql2300 - ok
10:10:57.0908 3084  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
10:10:57.0908 3084  ql40xx - ok
10:10:57.0939 3084  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
10:10:57.0939 3084  QWAVE - ok
10:10:57.0955 3084  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
10:10:57.0970 3084  QWAVEdrv - ok
10:10:57.0970 3084  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
10:10:57.0970 3084  RasAcd - ok
10:10:58.0017 3084  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
10:10:58.0017 3084  RasAgileVpn - ok
10:10:58.0033 3084  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
10:10:58.0033 3084  RasAuto - ok
10:10:58.0048 3084  [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
10:10:58.0048 3084  Rasl2tp - ok
10:10:58.0080 3084  [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan          C:\Windows\System32\rasmans.dll
10:10:58.0095 3084  RasMan - ok
10:10:58.0111 3084  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
10:10:58.0111 3084  RasPppoe - ok
10:10:58.0142 3084  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
10:10:58.0142 3084  RasSstp - ok
10:10:58.0158 3084  [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
10:10:58.0173 3084  rdbss - ok
10:10:58.0189 3084  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
10:10:58.0189 3084  rdpbus - ok
10:10:58.0220 3084  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
10:10:58.0220 3084  RDPCDD - ok
10:10:58.0236 3084  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
10:10:58.0236 3084  RDPENCDD - ok
10:10:58.0251 3084  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
10:10:58.0251 3084  RDPREFMP - ok
10:10:58.0267 3084  [ 8A3E6BEA1C53EA6177FE2B6EBA2C80D7 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
10:10:58.0267 3084  RDPWD - ok
10:10:58.0298 3084  [ 634B9A2181D98F15941236886164EC8B ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
10:10:58.0314 3084  rdyboost - ok
10:10:58.0330 3084  RelevantKnowledge - ok
10:10:58.0361 3084  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
10:10:58.0361 3084  RemoteAccess - ok
10:10:58.0376 3084  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
10:10:58.0376 3084  RemoteRegistry - ok
10:10:58.0392 3084  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
10:10:58.0392 3084  RpcEptMapper - ok
10:10:58.0408 3084  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
10:10:58.0423 3084  RpcLocator - ok
10:10:58.0439 3084  [ 7266972E86890E2B30C0C322E906B027 ] RpcSs           C:\Windows\system32\rpcss.dll
10:10:58.0439 3084  RpcSs - ok
10:10:58.0470 3084  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
10:10:58.0470 3084  rspndr - ok
10:10:58.0486 3084  [ 0793F40B9B8A1BDD266296409DBD91EA ] SamSs           C:\Windows\system32\lsass.exe
10:10:58.0486 3084  SamSs - ok
10:10:58.0548 3084  [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
10:10:58.0548 3084  SASDIFSV - ok
10:10:58.0611 3084  [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
10:10:58.0611 3084  SASKUTIL - ok
10:10:58.0626 3084  [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port        C:\Windows\system32\DRIVERS\sbp2port.sys
10:10:58.0642 3084  sbp2port - ok
10:10:58.0673 3084  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
10:10:58.0673 3084  SCardSvr - ok
10:10:58.0689 3084  [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
10:10:58.0689 3084  scfilter - ok
10:10:58.0751 3084  [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule        C:\Windows\system32\schedsvc.dll
10:10:58.0783 3084  Schedule - ok
10:10:58.0814 3084  [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc     C:\Windows\System32\certprop.dll
10:10:58.0814 3084  SCPolicySvc - ok
10:10:58.0830 3084  [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
10:10:58.0845 3084  SDRSVC - ok
10:10:58.0861 3084  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
10:10:58.0861 3084  secdrv - ok
10:10:58.0876 3084  [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon        C:\Windows\system32\seclogon.dll
10:10:58.0876 3084  seclogon - ok
10:10:58.0908 3084  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
10:10:58.0908 3084  SENS - ok
10:10:58.0923 3084  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
10:10:58.0923 3084  SensrSvc - ok
10:10:58.0955 3084  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
10:10:58.0955 3084  Serenum - ok
10:10:58.0986 3084  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
10:10:58.0986 3084  Serial - ok
10:10:59.0001 3084  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
10:10:59.0001 3084  sermouse - ok
10:10:59.0095 3084  [ F31E9531AF225CA25350D5E87E999B31 ] ServiceLayer    C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
10:10:59.0126 3084  ServiceLayer - ok
10:10:59.0158 3084  [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv      C:\Windows\system32\sessenv.dll
10:10:59.0158 3084  SessionEnv - ok
10:10:59.0189 3084  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\DRIVERS\sffdisk.sys
10:10:59.0189 3084  sffdisk - ok
10:10:59.0189 3084  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\DRIVERS\sffp_mmc.sys
10:10:59.0189 3084  sffp_mmc - ok
10:10:59.0205 3084  [ 178298F767FE638C9FEDCBDEF58BB5E4 ] sffp_sd         C:\Windows\system32\DRIVERS\sffp_sd.sys
10:10:59.0205 3084  sffp_sd - ok
10:10:59.0205 3084  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
10:10:59.0220 3084  sfloppy - ok
10:10:59.0251 3084  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
10:10:59.0267 3084  SharedAccess - ok
10:10:59.0314 3084  [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
10:10:59.0314 3084  ShellHWDetection - ok
10:10:59.0345 3084  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
10:10:59.0345 3084  SiSRaid2 - ok
10:10:59.0376 3084  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
10:10:59.0376 3084  SiSRaid4 - ok
10:10:59.0392 3084  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
10:10:59.0408 3084  Smb - ok
10:10:59.0423 3084  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
10:10:59.0423 3084  SNMPTRAP - ok
10:10:59.0439 3084  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
10:10:59.0439 3084  spldr - ok
10:10:59.0486 3084  [ F8E1FA03CB70D54A9892AC88B91D1E7B ] Spooler         C:\Windows\System32\spoolsv.exe
10:10:59.0501 3084  Spooler - ok
10:10:59.0626 3084  [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc          C:\Windows\system32\sppsvc.exe
10:10:59.0736 3084  sppsvc - ok
10:10:59.0767 3084  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
10:10:59.0767 3084  sppuinotify - ok
10:10:59.0814 3084  [ 602884696850C86434530790B110E8EB ] sptd            C:\Windows\system32\Drivers\sptd.sys
10:10:59.0814 3084  Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 602884696850C86434530790B110E8EB
10:10:59.0830 3084  sptd ( LockedFile.Multi.Generic ) - warning
10:10:59.0830 3084  sptd - detected LockedFile.Multi.Generic (1)
10:10:59.0861 3084  [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv             C:\Windows\system32\DRIVERS\srv.sys
10:10:59.0876 3084  srv - ok
10:10:59.0908 3084  [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
10:10:59.0923 3084  srv2 - ok
10:10:59.0955 3084  [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
10:10:59.0955 3084  srvnet - ok
10:10:59.0986 3084  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
10:11:00.0001 3084  SSDPSRV - ok
10:11:00.0001 3084  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
10:11:00.0017 3084  SstpSvc - ok
10:11:00.0048 3084  Steam Client Service - ok
10:11:00.0111 3084  [ C354621B6B94E10AE7F5CDBE745FEB86 ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
10:11:00.0142 3084  Stereo Service - ok
10:11:00.0173 3084  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
10:11:00.0173 3084  stexstor - ok
10:11:00.0220 3084  [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc          C:\Windows\System32\wiaservc.dll
10:11:00.0267 3084  stisvc - ok
10:11:00.0298 3084  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
10:11:00.0298 3084  swenum - ok
10:11:00.0345 3084  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
10:11:00.0361 3084  swprv - ok
10:11:00.0439 3084  [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain         C:\Windows\system32\sysmain.dll
10:11:00.0486 3084  SysMain - ok
10:11:00.0517 3084  [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
10:11:00.0533 3084  TabletInputService - ok
10:11:00.0548 3084  [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv         C:\Windows\System32\tapisrv.dll
10:11:00.0564 3084  TapiSrv - ok
10:11:00.0595 3084  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
10:11:00.0595 3084  TBS - ok
10:11:00.0658 3084  [ B9D87C7707F058AC652A398CD28DE14B ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
10:11:00.0705 3084  Tcpip - ok
10:11:00.0783 3084  [ B9D87C7707F058AC652A398CD28DE14B ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
10:11:00.0798 3084  TCPIP6 - ok
10:11:00.0830 3084  [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
10:11:00.0830 3084  tcpipreg - ok
10:11:00.0861 3084  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
10:11:00.0861 3084  TDPIPE - ok
10:11:00.0876 3084  [ E4245BDA3190A582D55ED09E137401A9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
10:11:00.0876 3084  TDTCP - ok
10:11:00.0892 3084  [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
10:11:00.0892 3084  tdx - ok
10:11:00.0908 3084  [ C448651339196C0E869A355171875522 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
10:11:00.0908 3084  TermDD - ok
10:11:00.0923 3084  [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService     C:\Windows\System32\termsrv.dll
10:11:00.0939 3084  TermService - ok
10:11:00.0955 3084  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
10:11:00.0955 3084  Themes - ok
10:11:00.0986 3084  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
10:11:00.0986 3084  THREADORDER - ok
10:11:01.0017 3084  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
10:11:01.0033 3084  TrkWks - ok
10:11:01.0111 3084  [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
10:11:01.0142 3084  TrustedInstaller - ok
10:11:01.0173 3084  [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
10:11:01.0173 3084  tssecsrv - ok
10:11:01.0205 3084  [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
10:11:01.0220 3084  tunnel - ok
10:11:01.0236 3084  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
10:11:01.0236 3084  uagp35 - ok
10:11:01.0267 3084  [ D47BAEAD86C65D4F4069D7CE0A4EDCEB ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
10:11:01.0283 3084  udfs - ok
10:11:01.0298 3084  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
10:11:01.0314 3084  UI0Detect - ok
10:11:01.0330 3084  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\DRIVERS\uliagpkx.sys
10:11:01.0330 3084  uliagpkx - ok
10:11:01.0361 3084  [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
10:11:01.0361 3084  umbus - ok
10:11:01.0376 3084  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
10:11:01.0376 3084  UmPass - ok
10:11:01.0408 3084  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
10:11:01.0423 3084  upnphost - ok
10:11:01.0455 3084  [ 34AFB83C7BBA370E404E52CC2290350C ] upperdev        C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys
10:11:01.0455 3084  upperdev - ok
10:11:01.0470 3084  [ B26AFB54A534D634523C4FB66765B026 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
10:11:01.0470 3084  usbccgp - ok
10:11:01.0501 3084  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\DRIVERS\usbcir.sys
10:11:01.0501 3084  usbcir - ok
10:11:01.0517 3084  [ DF9F9AFC9AAABD8ED47975D44E38169A ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
10:11:01.0517 3084  usbehci - ok
10:11:01.0548 3084  [ 372A91BC3C6603080A793880B0873785 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
10:11:01.0564 3084  usbhub - ok
10:11:01.0564 3084  [ 58E546BBAF87664FC57E0F6081E4F609 ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
10:11:01.0564 3084  usbohci - ok
10:11:01.0580 3084  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
10:11:01.0595 3084  usbprint - ok
10:11:01.0611 3084  [ 0F0C72A657C622286013788B886968AD ] usbser          C:\Windows\system32\drivers\usbser.sys
10:11:01.0611 3084  usbser - ok
10:11:01.0626 3084  [ AA75E1EFBEE7186B4CBAAACF1F15E6CA ] UsbserFilt      C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys
10:11:01.0642 3084  UsbserFilt - ok
10:11:01.0658 3084  [ 080D3820DA6C046BE82FC8B45A893E83 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:11:01.0673 3084  USBSTOR - ok
10:11:01.0689 3084  [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
10:11:01.0689 3084  usbuhci - ok
10:11:01.0736 3084  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
10:11:01.0751 3084  UxSms - ok
10:11:01.0783 3084  [ 0793F40B9B8A1BDD266296409DBD91EA ] VaultSvc        C:\Windows\system32\lsass.exe
10:11:01.0783 3084  VaultSvc - ok
10:11:01.0814 3084  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\DRIVERS\vdrvroot.sys
10:11:01.0830 3084  vdrvroot - ok
10:11:01.0939 3084  [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds             C:\Windows\System32\vds.exe
10:11:01.0986 3084  vds - ok
10:11:02.0033 3084  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
10:11:02.0048 3084  vga - ok
10:11:02.0064 3084  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
10:11:02.0080 3084  VgaSave - ok
10:11:02.0095 3084  [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp           C:\Windows\system32\DRIVERS\vhdmp.sys
10:11:02.0111 3084  vhdmp - ok
10:11:02.0126 3084  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\DRIVERS\viaide.sys
10:11:02.0142 3084  viaide - ok
10:11:02.0173 3084  [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr          C:\Windows\system32\DRIVERS\volmgr.sys
10:11:02.0189 3084  volmgr - ok
10:11:02.0236 3084  [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
10:11:02.0267 3084  volmgrx - ok
10:11:02.0330 3084  [ 58F82EED8CA24B461441F9C3E4F0BF5C ] volsnap         C:\Windows\system32\DRIVERS\volsnap.sys
10:11:02.0345 3084  volsnap - ok
10:11:02.0392 3084  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
10:11:02.0392 3084  vsmraid - ok
10:11:02.0736 3084  [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS             C:\Windows\system32\vssvc.exe
10:11:02.0783 3084  VSS - ok
10:11:02.0814 3084  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
10:11:02.0814 3084  vwifibus - ok
10:11:02.0892 3084  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
10:11:02.0908 3084  W32Time - ok
10:11:02.0939 3084  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
10:11:02.0939 3084  WacomPen - ok
10:11:03.0001 3084  [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
10:11:03.0017 3084  WANARP - ok
10:11:03.0048 3084  [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
10:11:03.0048 3084  Wanarpv6 - ok
10:11:03.0251 3084  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
10:11:03.0298 3084  WatAdminSvc - ok
10:11:03.0580 3084  [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine        C:\Windows\system32\wbengine.exe
10:11:03.0626 3084  wbengine - ok
10:11:03.0736 3084  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
10:11:03.0751 3084  WbioSrvc - ok
10:11:03.0876 3084  [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
10:11:03.0908 3084  wcncsvc - ok
10:11:03.0939 3084  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
10:11:03.0939 3084  WcsPlugInService - ok
10:11:03.0970 3084  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
10:11:03.0986 3084  Wd - ok
10:11:04.0142 3084  [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
10:11:04.0158 3084  Wdf01000 - ok
10:11:04.0189 3084  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
10:11:04.0205 3084  WdiServiceHost - ok
10:11:04.0220 3084  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
10:11:04.0220 3084  WdiSystemHost - ok
10:11:04.0283 3084  [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient       C:\Windows\System32\webclnt.dll
10:11:04.0283 3084  WebClient - ok
10:11:04.0330 3084  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
10:11:04.0345 3084  Wecsvc - ok
10:11:04.0376 3084  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
10:11:04.0376 3084  wercplsupport - ok
10:11:04.0408 3084  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
10:11:04.0423 3084  WerSvc - ok
10:11:04.0455 3084  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
10:11:04.0470 3084  WfpLwf - ok
10:11:04.0486 3084  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
10:11:04.0486 3084  WIMMount - ok
10:11:04.0533 3084  WinDefend - ok
10:11:04.0533 3084  WinHttpAutoProxySvc - ok
10:11:04.0720 3084  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
10:11:04.0736 3084  Winmgmt - ok
10:11:05.0001 3084  [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM           C:\Windows\system32\WsmSvc.dll
10:11:05.0048 3084  WinRM - ok
10:11:05.0142 3084  [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
10:11:05.0158 3084  WinUsb - ok
10:11:05.0314 3084  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
10:11:05.0345 3084  Wlansvc - ok
10:11:05.0923 3084  [ 98F138897EF4246381D197CB81846D62 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
10:11:05.0986 3084  wlidsvc - ok
10:11:06.0017 3084  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
10:11:06.0017 3084  WmiAcpi - ok
10:11:06.0095 3084  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
10:11:06.0111 3084  wmiApSrv - ok
10:11:06.0189 3084  WMPNetworkSvc - ok
10:11:06.0220 3084  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
10:11:06.0251 3084  WPCSvc - ok
10:11:06.0267 3084  [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
10:11:06.0298 3084  WPDBusEnum - ok
10:11:06.0345 3084  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
10:11:06.0376 3084  ws2ifsl - ok
10:11:06.0423 3084  [ 8F9F3969933C02DA96EB0F84576DB43E ] wscsvc          C:\Windows\system32\wscsvc.dll
10:11:06.0439 3084  wscsvc - ok
10:11:06.0455 3084  WSearch - ok
10:11:06.0939 3084  [ 38340204A2D0228F1E87740FC5E554A7 ] wuauserv        C:\Windows\system32\wuaueng.dll
10:11:07.0017 3084  wuauserv - ok
10:11:07.0048 3084  [ 7CADC74271DD6461C452C271B30BD378 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
10:11:07.0048 3084  WudfPf - ok
10:11:07.0095 3084  [ 3B197AF0FFF08AA66B6B2241CA538D64 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
10:11:07.0111 3084  WUDFRd - ok
10:11:07.0158 3084  [ B551D6637AA0E132C18AC6E504F7B79B ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
10:11:07.0158 3084  wudfsvc - ok
10:11:07.0220 3084  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
10:11:07.0236 3084  WwanSvc - ok
10:11:07.0251 3084  ================ Scan global ===============================
10:11:07.0298 3084  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
10:11:07.0392 3084  [ 0CB6EBF4B461A6043353C570BD72A1E1 ] C:\Windows\system32\winsrv.dll
10:11:07.0455 3084  [ 63E99B675A1337DB6D8430195EA3EFD2 ] C:\Windows\system32\consrv.dll
10:11:07.0564 3084  C:\Windows\system32\consrv.dll ( Backdoor.Multi.ZAccess.genb ) - infected
10:11:07.0564 3084  C:\Windows\system32\consrv.dll - detected Backdoor.Multi.ZAccess.genb (0)
10:11:07.0658 3084  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
10:11:07.0673 3084  ================ Scan MBR ==================================
10:11:07.0689 3084  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
10:11:08.0455 3084  \Device\Harddisk0\DR0 - ok
10:11:08.0455 3084  ================ Scan VBR ==================================
10:11:08.0470 3084  [ 142B898982271DF3C76F8D9042AEFEE5 ] \Device\Harddisk0\DR0\Partition1
10:11:08.0486 3084  \Device\Harddisk0\DR0\Partition1 - ok
10:11:08.0501 3084  [ 393023B3208D823AE50C11BB47970FEF ] \Device\Harddisk0\DR0\Partition2
10:11:08.0517 3084  \Device\Harddisk0\DR0\Partition2 - ok
10:11:08.0533 3084  [ E73B1BBE57C9F8EFFE762F499BA7BFB4 ] \Device\Harddisk0\DR0\Partition3
10:11:08.0533 3084  \Device\Harddisk0\DR0\Partition3 - ok
10:11:08.0533 3084  ============================================================
10:11:08.0533 3084  Scan finished
10:11:08.0533 3084  ============================================================
10:11:08.0548 2128  Detected object count: 2
10:11:08.0548 2128  Actual detected object count: 2
10:11:44.0449 2128  sptd ( LockedFile.Multi.Generic ) - skipped by user
10:11:44.0449 2128  sptd ( LockedFile.Multi.Generic ) - User select action: Skip 
10:11:44.0480 2128  C:\Windows\system32\consrv.dll - copied to quarantine
10:11:45.0824 2128  C:\Windows\assembly\GAC_32\desktop.ini - copied to quarantine
10:11:45.0824 2128  C:\Windows\assembly\GAC_64\desktop.ini - copied to quarantine
10:11:45.0871 2128  HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems:Windows - will be cured on reboot
10:11:45.0871 2128  C:\Windows\system32\consrv.dll - will be deleted on reboot
10:11:45.0917 2128  C:\Windows\assembly\GAC_32\desktop.ini - will be deleted on reboot
10:11:45.0917 2128  C:\Windows\assembly\GAC_64\desktop.ini - will be deleted on reboot
10:11:45.0917 2128  C:\Windows\system32\consrv.dll ( Backdoor.Multi.ZAccess.genb ) - User select action: Delete 
10:11:49.0902 4004  Deinitialize success