Probable infection

salut attention à IE c'est un traitre .

==

tu peux faire une capture d'ecran de ton souci ?

EUh bonjour,


oui j'ai une capture mais la post comment

(IE peu utilisé)

https://www.cjoint.com/ , ensuite donne le lien

Voila le lien:

https://www.cjoint.com/?CBvl2eml3HX

lol ^^

Télécharge et enregistre ADWCleaner sur ton bureau :

Lance le,(Pour vista/7/8 => clic droit "executer en tant qu'administrateur")

clique sur suppression et poste C:\Adwcleaner[Sx].txt

Le ptit lol^^ de ton post précédent c'est quoi !?!?! On se moque on se moque ou bien!!

bon voila le rapport:

# AdwCleaner v2.112 - Rapport créé le 21/02/2013 à 12:15:38
# Mis à jour le 10/02/2013 par Xplode
# Système d'exploitation : Windows 7 Professional Service Pack 1 (64 bits)
# Nom d'utilisateur : Francisco - FRANCISCO-XPS
# Mode de démarrage : Normal
# Exécuté depuis : C:\Users\Francisco\Desktop\AdwCleaner.exe
# Option [Suppression]


***** [Services] *****


***** [Fichiers / Dossiers] *****

Dossier Supprimé : C:\Users\Francisco\AppData\LocalLow\SaveByclick
Dossier Supprimé : C:\Users\Francisco\AppData\Roaming\pdfforge

***** [Registre] *****

Clé Supprimée : HKCU\Software\Softonic
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2414}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2414}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2414}
Valeur Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [10]
Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [10]

***** [Navigateurs] *****

-\\ Internet Explorer v9.0.8112.16464

[OK] Le registre ne contient aucune entrée illégitime.

-\\ Mozilla Firefox v19.0 (fr)

Fichier : C:\Users\Francisco\AppData\Roaming\Mozilla\Firefox\Profiles\rytalalp.default\prefs.js

Supprimée : user_pref("extensions.50cb1e72ef2c4.scode", "(function(){try{if('aol.com,mail.google.com,premiumrepo[...]

-\\ Google Chrome v24.0.1312.57

Fichier : C:\Users\Francisco\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] Le fichier ne contient aucune entrée illégitime.

*************************

AdwCleaner[R1].txt - [2271 octets] - [27/08/2012 07:48:30]
AdwCleaner[S1].txt - [2240 octets] - [27/08/2012 07:48:47]
AdwCleaner[S2].txt - [1838 octets] - [21/02/2013 12:15:38]

########## EOF - C:\AdwCleaner[S2].txt - [1898 octets] ##########

Télécharge ici :OTL

▶ enregistre le sur ton Bureau.

si tu as XP => double clique
si tu as Vista ou windows 7 / 8 => clic droit "executer en tant que...."

sur OTL.exe pour le lancer.

▶ => Clique ici pour voir la Configuration

▶ Copie et colle le contenu de ce qui suit en gras dans la partie inférieure d'OTL "Personnalisation"

/md5start
explorer.exe
winlogon.exe
wininit.exe
volsnap.sys
atapi.sys
ndisuio.sys
ndis.sys
cdrom.sys
i8042prt.sys
iastor.sys
net.exe
tdx.sys
netbt.sys
afd.sys
net1.exe
Rundll32.exe
/md5stop
netsvcs
safebootminimal
safebootnetwork
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\*.exe /lockedfiles
%systemroot%\system32\*.ini
%systemroot%\Tasks\*.*
%systemroot%\system32\Tasks\*.*
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\config\*.exe /s
%systemroot%\system32\*.sys
HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa /s
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon
CREATERESTOREPOINT

▶ Clic sur Analyse.

A la fin du scan, le Bloc-Notes va s'ouvrir avec le rapport (OTL.txt).

Ce fichier est sur ton Bureau (en général C:\Documents and settings\le_nom_de_ta_session\<Bureau ou Desktop>\OTL.txt)

▶▶▶ NE LE POSTE PAS SUR LE FORUM (il est trop long)

heberge OTL.txt et extra.txt sur https://www.cjoint.com/ et donne les liens

Le rapport OTL.txt:

https://www.cjoint.com/?CBvnjF0xMqJ

le rapport Extras.txt:

https://www.cjoint.com/c/CBvnkCcSf0d

Bonne lecture

repasse adwcleaner en mode sans echec , c'est pas possible qu'il rate ca.....

Voila le rapport AdwCleaner passé en mode sans échec

# AdwCleaner v2.112 - Rapport créé le 21/02/2013 à 19:23:30
# Mis à jour le 10/02/2013 par Xplode
# Système d'exploitation : Windows 7 Professional Service Pack 1 (64 bits)
# Nom d'utilisateur : Francisco - FRANCISCO-XPS
# Mode de démarrage : Mode sans échec
# Exécuté depuis : C:\Users\Francisco\Desktop\AdwCleaner.exe
# Option [Suppression]


***** [Services] *****


***** [Fichiers / Dossiers] *****


***** [Registre] *****


***** [Navigateurs] *****

-\\ Internet Explorer v9.0.8112.16464

[OK] Le registre ne contient aucune entrée illégitime.

-\\ Mozilla Firefox v19.0 (fr)

Fichier : C:\Users\Francisco\AppData\Roaming\Mozilla\Firefox\Profiles\rytalalp.default\prefs.js

Supprimée : user_pref("extensions.50cb1e72ef2c4.scode", "(function(){try{if('aol.com,mail.google.com,premiumrepo[...]

-\\ Google Chrome v24.0.1312.57

Fichier : C:\Users\Francisco\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] Le fichier ne contient aucune entrée illégitime.

*************************

AdwCleaner[R1].txt - [2271 octets] - [27/08/2012 07:48:30]
AdwCleaner[S1].txt - [2240 octets] - [27/08/2012 07:48:47]
AdwCleaner[S2].txt - [1961 octets] - [21/02/2013 12:15:38]
AdwCleaner[S3].txt - [1342 octets] - [21/02/2013 12:24:53]
AdwCleaner[S4].txt - [1282 octets] - [21/02/2013 19:23:30]

########## EOF - C:\AdwCleaner[S4].txt - [1342 octets] ##########

patiente je reviens , si dans 24h pas de retour fais un "up"

up

Up

ok salut

ben j'ai pas recu de reponse à la question que j'attendais , tant pis

fermer toutes les fenêtres et applications lors de l'installation et de l'analyse.


▶ Télécharge ici :

Malwarebytes

▶ Installe le ( choisis bien "francais" ; ne modifie pas les paramètres d'installe ) et mets le à jour .

relance malwarebytes en suivant scrupuleusement ces consignes :

! Déconnecte toi et ferme toutes applications en cours !

▶ Lance Malwarebyte's .

Fais un examen dit "Complet" .

▶ Laisse le programme travailler ( et ne rien faire d'autre avec le PC durant le scan ).
▶ à la fin tu cliques sur "résultat" .
▶ Vérifie que tous les objets infectés soient validés, puis clique sur " suppression " .

▶ Note : si il faut redémarrer ton PC pour finir le nettoyage, fais le !


▶ Poste le rapport sauvegardé après la suppression des objets infectés (dans l'onglet "rapport/log"de Malwarebytes, le dernier en date)

Voila le rapport Malwarebytes qui n'a rien détecté:

Malwarebytes Anti-Malware (Essai) 1.70.0.1100
www.malwarebytes.org

Version de la base de données: v2013.02.23.05

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Francisco :: FRANCISCO-XPS [administrateur]

Protection: Activé

23.02.2013 16:37:49
mbam-log-2013-02-23 (16-37-49).txt

Type d'examen: Examen complet (C:\|D:\|F:\|)
Options d'examen activées: Mémoire | Démarrage | Registre | Système de fichiers | Heuristique/Extra | Heuristique/Shuriken | PUP | PUM
Options d'examen désactivées: P2P
Elément(s) analysé(s): 516484
Temps écoulé: 1 heure(s), 12 minute(s), 47 seconde(s)

Processus mémoire détecté(s): 0
(Aucun élément nuisible détecté)

Module(s) mémoire détecté(s): 0
(Aucun élément nuisible détecté)

Clé(s) du Registre détectée(s): 0
(Aucun élément nuisible détecté)

Valeur(s) du Registre détectée(s): 0
(Aucun élément nuisible détecté)

Elément(s) de données du Registre détecté(s): 0
(Aucun élément nuisible détecté)

Dossier(s) détecté(s): 0
(Aucun élément nuisible détecté)

Fichier(s) détecté(s): 0
(Aucun élément nuisible détecté)

(fin)


Si vous avez besoin de quelque chose, appelez-moi. Je vous dirai comment vous en passer.

ATTENTION !!! : Script personnalisé pour cette machine uniquement , ne pas reproduire !!

si tu as XP => double clique
si tu as Vista ou windows 7 => clic droit "executer en tant que...."

sur OTL.exe pour le lancer.


?Copie la liste qui se trouve en gras ci-dessous,

? colle-la dans la zone sous "Personnalisation" :

:processes
explorer.exe
iexplore.exe
firefox.exe
msnmsgr.exe
Teatimer.exe

:OTL
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_6_602_168.dll File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - prefs.js..browser.startup.homepage: "http://www.ulrichmatterag.ch/Default_F.html"
CHR - homepage: http://www.ulrichmatterag.ch/Default_F.html
CHR - homepage: http://www.ulrichmatterag.ch/Default_F.html
O4 - HKLM\..\Run: [iTunesHelper]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
[2013.02.21 10:13:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2012.11.30 14:44:30 | 000,000,012 | ---- | C] () -- C:\Users\Francisco\mrw.dat
[2012.10.23 06:22:11 | 000,000,000 | ---D | M] -- C:\Users\Francisco\AppData\Roaming\4Free

:commands
[CLEARALLRESTOREPOINTS]
[emptytemp]
[start explorer]
[reboot]


? Clique sur "Correction" pour lancer la suppression.


? Poste le rapport qui logiquement s'ouvrira tout seul en fin de travail appres le redemarrage.

============================

? Télécharge Reload_TDSSKiller

? Lance le

choisis : lancer le nettoyage

l'outil va automatiquement télécharger la derniere version puis

TDSSKiller va s'ouvrir , clique sur "Start Scan"

Si TDSS.tdl2 est détecté l''option delete sera cochée par défaut.
Si TDSS.tdl3 est détecté assure toi que Cure est bien cochée.
Si TDSS.tdl4(\HardDisk0\MBR) est détecté assure toi que Cure est bien cochée.
Si Suspicious file est indiqué, laisse l''option cochée sur Skip
Si Rootkit.Win32.ZAccess.* est détecté règle sur "cure" en haut , et "delete" en bas

une fois qu'il a terminé , redemarre s'il te le demande pour finir de nettoyer

sinon , ferme tdssKiller et le rapport s'affichera sur le bureau

? Copie/Colle son contenu dans ta prochaine réponse.

¤¤¤¤¤¤¤¤¤¤_Pre_Scan_Concept_¤¤¤¤¤¤¤¤¤¤

Voila le rapport d'OTL:

Je vais lancer Reload_TDSSKiller


All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
No active process named iexplore.exe was found!
No active process named firefox.exe was found!
No active process named msnmsgr.exe was found!
No active process named Teatimer.exe was found!
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@adobe.com/FlashPlayer\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@microsoft.com/GENUINE\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@Apple.com/iTunes,version=\ deleted successfully.
Prefs.js: "http://www.ulrichmatterag.ch/Default_F.html" removed from browser.startup.homepage
Use Chrome's Settings page to change the HomePage.
Use Chrome's Settings page to change the HomePage.
Registry key HKEY_LOCAL_MACHINE\\Software\Microsoft\Windows\CurrentVersion\Run not found.
File not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoActiveDesktop deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoActiveDesktopChanges deleted successfully.
C:\ProgramData\Spybot - Search & Destroy folder moved successfully.
C:\Users\Francisco\mrw.dat moved successfully.
C:\Users\Francisco\AppData\Roaming\4Free\Video Converter 2\profiles_users folder moved successfully.
C:\Users\Francisco\AppData\Roaming\4Free\Video Converter 2\index folder moved successfully.
C:\Users\Francisco\AppData\Roaming\4Free\Video Converter 2 folder moved successfully.
C:\Users\Francisco\AppData\Roaming\4Free folder moved successfully.
========== COMMANDS ==========
Restore point Set: OTL Restore Point

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 56502 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Francisco
->Temp folder emptied: 6335 bytes
->Temporary Internet Files folder emptied: 3655076 bytes
->Java cache emptied: 20351540 bytes
->FireFox cache emptied: 83947558 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 57103 bytes

User: Public

User: UpdatusUser

User: UpdatusUser.Francisco-XPS
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 56502 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 243378 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 36028711 bytes
RecycleBin emptied: 2244 bytes

Total Files Cleaned = 138.00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 02232013_184743

Files\Folders moved on Reboot...
C:\Users\Francisco\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
File\Folder C:\Users\Francisco\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.Word\~WRS{34CBF55F-B3DD-4E8F-A0FF-666219FA065F}.tmp not found!
File\Folder C:\Users\Francisco\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.Word\~WRS{6ED5BEE1-7A2A-4274-BF75-A6C85C7A7D99}.tmp not found!
File\Folder C:\Users\Francisco\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.Word\~WRS{AE064CC1-7479-4161-8FB5-7CDFE3DC8702}.tmp not found!
File\Folder C:\Users\Francisco\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.Word\~WRS{BA30016B-F0FC-4210-95EB-0E0A0A0A0366}.tmp not found!
File move failed. C:\Windows\temp\logishrd\LVPrcInj01.dll scheduled to be moved on reboot.
File move failed. C:\Windows\temp\logishrd\LVPrcInj02.dll scheduled to be moved on reboot.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

Lorsque je lance Reload_TDSSKiller et lors de la mise a jour j'ai un rapport qui me dit:


18:54:32.0948 5024 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
18:54:41.0060 5024 Perform update action was selected
18:54:41.0060 4576 Deinitialize success


je scan quand même avec ce qu'il a ..


PS J'ai plus ma page de démarrage Firefox c'est normal?


Si vous avez besoin de quelque chose, appelez-moi. Je vous dirai comment vous en passer.

Voila le rapport Reload_TDSSKiller


18:55:08.0250 6352 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
18:55:12.0494 6352 ============================================================
18:55:12.0494 6352 Current date / time: 2013/02/23 18:55:12.0494
18:55:12.0494 6352 SystemInfo:
18:55:12.0494 6352
18:55:12.0494 6352 OS Version: 6.1.7601 ServicePack: 1.0
18:55:12.0494 6352 Product type: Workstation
18:55:12.0494 6352 ComputerName: FRANCISCO-XPS
18:55:12.0494 6352 UserName: Francisco
18:55:12.0494 6352 Windows directory: C:\Windows
18:55:12.0494 6352 System windows directory: C:\Windows
18:55:12.0494 6352 Running under WOW64
18:55:12.0494 6352 Processor architecture: Intel x64
18:55:12.0494 6352 Number of processors: 8
18:55:12.0494 6352 Page size: 0x1000
18:55:12.0494 6352 Boot type: Normal boot
18:55:12.0494 6352 ============================================================
18:55:15.0848 6352 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:55:15.0863 6352 ============================================================
18:55:15.0863 6352 \Device\Harddisk0\DR0:
18:55:15.0863 6352 MBR partitions:
18:55:15.0863 6352 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
18:55:15.0863 6352 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x3A353000
18:55:15.0863 6352 ============================================================
18:55:15.0894 6352 C: <-> \Device\Harddisk0\DR0\Partition2
18:55:15.0894 6352 ============================================================
18:55:15.0894 6352 Initialize success
18:55:15.0894 6352 ============================================================
18:56:41.0945 6872 ============================================================
18:56:41.0945 6872 Scan started
18:56:41.0945 6872 Mode: Manual;
18:56:41.0945 6872 ============================================================
18:56:44.0316 6872 ================ Scan system memory ========================
18:56:44.0316 6872 System memory - ok
18:56:44.0316 6872 ================ Scan services =============================
18:56:44.0457 6872 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
18:56:44.0457 6872 1394ohci - ok
18:56:44.0504 6872 [ E0065CBF1A25C015C218457D2CD522B9 ] Acceler C:\Windows\system32\DRIVERS\Accelern.sys
18:56:44.0504 6872 Acceler - ok
18:56:44.0550 6872 [ 6E9C8B324980AFE454C6F7762E2B4478 ] acedrv07 C:\Windows\system32\drivers\acedrv07.sys
18:56:44.0550 6872 acedrv07 - ok
18:56:44.0582 6872 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
18:56:44.0597 6872 ACPI - ok
18:56:44.0628 6872 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
18:56:44.0628 6872 AcpiPmi - ok
18:56:44.0753 6872 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
18:56:44.0753 6872 AdobeARMservice - ok
18:56:44.0862 6872 [ 563CDCFEEAEF97163E206AF71A61AA6E ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:56:44.0878 6872 AdobeFlashPlayerUpdateSvc - ok
18:56:44.0925 6872 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
18:56:44.0925 6872 adp94xx - ok
18:56:44.0972 6872 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
18:56:44.0987 6872 adpahci - ok
18:56:45.0003 6872 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
18:56:45.0003 6872 adpu320 - ok
18:56:45.0034 6872 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
18:56:45.0034 6872 AeLookupSvc - ok
18:56:45.0096 6872 [ D1E343BC00136CE03C4D403194D06A80 ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
18:56:45.0112 6872 AERTFilters - ok
18:56:45.0159 6872 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
18:56:45.0159 6872 AFD - ok
18:56:45.0190 6872 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
18:56:45.0190 6872 agp440 - ok
18:56:45.0221 6872 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
18:56:45.0221 6872 ALG - ok
18:56:45.0252 6872 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
18:56:45.0252 6872 aliide - ok
18:56:45.0268 6872 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
18:56:45.0268 6872 amdide - ok
18:56:45.0284 6872 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
18:56:45.0299 6872 AmdK8 - ok
18:56:45.0299 6872 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
18:56:45.0315 6872 AmdPPM - ok
18:56:45.0330 6872 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
18:56:45.0346 6872 amdsata - ok
18:56:45.0362 6872 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
18:56:45.0362 6872 amdsbs - ok
18:56:45.0377 6872 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
18:56:45.0377 6872 amdxata - ok
18:56:45.0408 6872 [ D46391F209DE0A98A97D1D1765F53438 ] AMPPAL C:\Windows\system32\DRIVERS\AMPPAL.sys
18:56:45.0424 6872 AMPPAL - ok
18:56:45.0440 6872 [ D46391F209DE0A98A97D1D1765F53438 ] AMPPALP C:\Windows\system32\DRIVERS\amppal.sys
18:56:45.0440 6872 AMPPALP - ok
18:56:45.0471 6872 [ EDFB061F7D553B84731B8263077FD520 ] AMPPALR3 C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
18:56:45.0486 6872 AMPPALR3 - ok
18:56:45.0518 6872 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
18:56:45.0518 6872 AppID - ok
18:56:45.0533 6872 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
18:56:45.0549 6872 AppIDSvc - ok
18:56:45.0564 6872 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
18:56:45.0564 6872 Appinfo - ok
18:56:45.0627 6872 [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
18:56:45.0642 6872 Apple Mobile Device - ok
18:56:45.0689 6872 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
18:56:45.0705 6872 AppMgmt - ok
18:56:45.0720 6872 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
18:56:45.0720 6872 arc - ok
18:56:45.0736 6872 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
18:56:45.0736 6872 arcsas - ok
18:56:45.0830 6872 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
18:56:45.0861 6872 aspnet_state - ok
18:56:45.0892 6872 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
18:56:45.0892 6872 AsyncMac - ok
18:56:45.0923 6872 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
18:56:45.0923 6872 atapi - ok
18:56:45.0954 6872 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:56:45.0986 6872 AudioEndpointBuilder - ok
18:56:46.0001 6872 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
18:56:46.0001 6872 AudioSrv - ok
18:56:46.0204 6872 [ 6FDDD18A650764A59302A018765E5521 ] AVP C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
18:56:46.0204 6872 AVP - ok
18:56:46.0251 6872 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
18:56:46.0251 6872 AxInstSV - ok
18:56:46.0298 6872 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
18:56:46.0313 6872 b06bdrv - ok
18:56:46.0344 6872 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
18:56:46.0360 6872 b57nd60a - ok
18:56:46.0391 6872 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
18:56:46.0391 6872 BDESVC - ok
18:56:46.0407 6872 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
18:56:46.0407 6872 Beep - ok
18:56:46.0454 6872 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
18:56:46.0469 6872 BFE - ok
18:56:46.0547 6872 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
18:56:46.0578 6872 BITS - ok
18:56:46.0594 6872 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
18:56:46.0594 6872 blbdrive - ok
18:56:46.0625 6872 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
18:56:46.0641 6872 Bonjour Service - ok
18:56:46.0672 6872 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
18:56:46.0672 6872 bowser - ok
18:56:46.0688 6872 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
18:56:46.0688 6872 BrFiltLo - ok
18:56:46.0703 6872 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
18:56:46.0703 6872 BrFiltUp - ok
18:56:46.0766 6872 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
18:56:46.0766 6872 Browser - ok
18:56:46.0797 6872 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
18:56:46.0812 6872 Brserid - ok
18:56:46.0828 6872 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
18:56:46.0828 6872 BrSerWdm - ok
18:56:46.0859 6872 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
18:56:46.0859 6872 BrUsbMdm - ok
18:56:46.0859 6872 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
18:56:46.0859 6872 BrUsbSer - ok
18:56:46.0906 6872 [ EA7E57F87D6FEE5FD6C5F813C04E8CD2 ] BrYNSvc C:\Program Files (x86)\Browny02\BrYNSvc.exe
18:56:46.0922 6872 BrYNSvc - ok
18:56:46.0922 6872 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
18:56:46.0937 6872 BTHMODEM - ok
18:56:46.0968 6872 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
18:56:46.0984 6872 bthserv - ok
18:56:47.0000 6872 [ A3BC030FC526643DFDCA27299F75544B ] BTHSSecurityMgr C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
18:56:47.0000 6872 BTHSSecurityMgr - ok
18:56:47.0031 6872 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
18:56:47.0031 6872 cdfs - ok
18:56:47.0062 6872 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
18:56:47.0062 6872 cdrom - ok
18:56:47.0078 6872 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
18:56:47.0078 6872 CertPropSvc - ok
18:56:47.0093 6872 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
18:56:47.0093 6872 circlass - ok
18:56:47.0124 6872 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
18:56:47.0124 6872 CLFS - ok
18:56:47.0171 6872 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:56:47.0171 6872 clr_optimization_v2.0.50727_32 - ok
18:56:47.0202 6872 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:56:47.0218 6872 clr_optimization_v2.0.50727_64 - ok
18:56:47.0280 6872 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:56:47.0280 6872 clr_optimization_v4.0.30319_32 - ok
18:56:47.0296 6872 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:56:47.0327 6872 clr_optimization_v4.0.30319_64 - ok
18:56:47.0358 6872 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
18:56:47.0358 6872 CmBatt - ok
18:56:47.0390 6872 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
18:56:47.0390 6872 cmdide - ok
18:56:47.0421 6872 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
18:56:47.0436 6872 CNG - ok
18:56:47.0452 6872 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
18:56:47.0452 6872 Compbatt - ok
18:56:47.0468 6872 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
18:56:47.0468 6872 CompositeBus - ok
18:56:47.0483 6872 COMSysApp - ok
18:56:47.0499 6872 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
18:56:47.0499 6872 crcdisk - ok
18:56:47.0530 6872 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
18:56:47.0546 6872 CryptSvc - ok
18:56:47.0592 6872 CrystalSysInfo - ok
18:56:47.0624 6872 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
18:56:47.0639 6872 CSC - ok
18:56:47.0670 6872 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
18:56:47.0702 6872 CscService - ok
18:56:47.0733 6872 [ DF214BFF646880D0EB31BDC86136B29B ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
18:56:47.0733 6872 CtClsFlt - ok
18:56:47.0764 6872 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
18:56:47.0795 6872 DcomLaunch - ok
18:56:47.0811 6872 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
18:56:47.0826 6872 defragsvc - ok
18:56:47.0873 6872 [ 3A42B00C88E3E68080DAB6B27BB35B6E ] DellDigitalDelivery C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
18:56:47.0873 6872 DellDigitalDelivery - ok
18:56:47.0904 6872 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
18:56:47.0904 6872 DfsC - ok
18:56:47.0920 6872 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
18:56:47.0936 6872 Dhcp - ok
18:56:47.0951 6872 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
18:56:47.0951 6872 discache - ok
18:56:47.0982 6872 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
18:56:47.0998 6872 Disk - ok
18:56:48.0029 6872 [ 5DB085A8A6600BE6401F2B24EECB5415 ] dmvsc C:\Windows\system32\drivers\dmvsc.sys
18:56:48.0029 6872 dmvsc - ok
18:56:48.0045 6872 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
18:56:48.0060 6872 Dnscache - ok
18:56:48.0076 6872 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
18:56:48.0076 6872 dot3svc - ok
18:56:48.0092 6872 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
18:56:48.0092 6872 DPS - ok
18:56:48.0170 6872 [ B28C853770C995552B9F5760D8245F44 ] driverhardwarev2x64 C:\Program Files\ma-config.com\Drivers\driverhardwarev2x64.sys
18:56:48.0185 6872 driverhardwarev2x64 - ok
18:56:48.0216 6872 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
18:56:48.0216 6872 drmkaud - ok
18:56:48.0263 6872 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
18:56:48.0279 6872 DXGKrnl - ok
18:56:48.0294 6872 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
18:56:48.0310 6872 EapHost - ok
18:56:48.0372 6872 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
18:56:48.0419 6872 ebdrv - ok
18:56:48.0435 6872 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
18:56:48.0435 6872 EFS - ok
18:56:48.0482 6872 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
18:56:48.0497 6872 ehRecvr - ok
18:56:48.0513 6872 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
18:56:48.0528 6872 ehSched - ok
18:56:48.0560 6872 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
18:56:48.0575 6872 elxstor - ok
18:56:48.0606 6872 [ 94D908221CC7ED1372CD200ED331B567 ] emAudio C:\Windows\system32\drivers\emAudio64.sys
18:56:48.0606 6872 emAudio - ok
18:56:48.0622 6872 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
18:56:48.0622 6872 ErrDev - ok
18:56:48.0669 6872 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
18:56:48.0684 6872 EventSystem - ok
18:56:48.0747 6872 [ 6EB16C7286FBCD3AB206743BA813EC48 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
18:56:48.0762 6872 EvtEng - ok
18:56:48.0794 6872 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
18:56:48.0809 6872 exfat - ok
18:56:48.0840 6872 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
18:56:48.0840 6872 fastfat - ok
18:56:48.0872 6872 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
18:56:48.0887 6872 Fax - ok
18:56:48.0903 6872 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
18:56:48.0903 6872 fdc - ok
18:56:48.0918 6872 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
18:56:48.0918 6872 fdPHost - ok
18:56:48.0934 6872 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
18:56:48.0934 6872 FDResPub - ok
18:56:48.0950 6872 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
18:56:48.0950 6872 FileInfo - ok
18:56:48.0950 6872 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
18:56:48.0965 6872 Filetrace - ok
18:56:48.0981 6872 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
18:56:48.0981 6872 flpydisk - ok
18:56:48.0996 6872 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
18:56:48.0996 6872 FltMgr - ok
18:56:49.0028 6872 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
18:56:49.0059 6872 FontCache - ok
18:56:49.0090 6872 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:56:49.0106 6872 FontCache3.0.0.0 - ok
18:56:49.0121 6872 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
18:56:49.0121 6872 FsDepends - ok
18:56:49.0152 6872 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
18:56:49.0152 6872 Fs_Rec - ok
18:56:49.0168 6872 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
18:56:49.0168 6872 fvevol - ok
18:56:49.0184 6872 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
18:56:49.0184 6872 gagp30kx - ok
18:56:49.0246 6872 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
18:56:49.0246 6872 GEARAspiWDM - ok
18:56:49.0293 6872 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
18:56:49.0308 6872 gpsvc - ok
18:56:49.0355 6872 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:56:49.0355 6872 gupdate - ok
18:56:49.0371 6872 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:56:49.0371 6872 gupdatem - ok
18:56:49.0402 6872 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
18:56:49.0402 6872 hcw85cir - ok
18:56:49.0449 6872 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:56:49.0464 6872 HdAudAddService - ok
18:56:49.0480 6872 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
18:56:49.0480 6872 HDAudBus - ok
18:56:49.0496 6872 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
18:56:49.0511 6872 HidBatt - ok
18:56:49.0527 6872 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
18:56:49.0527 6872 HidBth - ok
18:56:49.0542 6872 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
18:56:49.0558 6872 HidIr - ok
18:56:49.0574 6872 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
18:56:49.0574 6872 hidserv - ok
18:56:49.0589 6872 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
18:56:49.0605 6872 HidUsb - ok
18:56:49.0620 6872 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
18:56:49.0636 6872 hkmsvc - ok
18:56:49.0652 6872 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
18:56:49.0667 6872 HomeGroupListener - ok
18:56:49.0667 6872 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
18:56:49.0683 6872 HomeGroupProvider - ok
18:56:49.0698 6872 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
18:56:49.0698 6872 HpSAMD - ok
18:56:49.0745 6872 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
18:56:49.0761 6872 HTTP - ok
18:56:49.0761 6872 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
18:56:49.0776 6872 hwpolicy - ok
18:56:49.0792 6872 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
18:56:49.0792 6872 i8042prt - ok
18:56:49.0854 6872 [ CCFA835960E35F30D28A868E0B3B8722 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
18:56:49.0854 6872 iaStor - ok
18:56:49.0886 6872 [ 6C91E425ACE29594BD574DE38AC9B76D ] iaStorA C:\Windows\system32\DRIVERS\iaStorA.sys
18:56:49.0901 6872 iaStorA - ok
18:56:49.0948 6872 [ 0AB254994A460550258446950BB58311 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
18:56:49.0964 6872 IAStorDataMgrSvc - ok
18:56:49.0995 6872 [ 2B38F13E18E272459CD2CE83E6722C12 ] iaStorF C:\Windows\system32\DRIVERS\iaStorF.sys
18:56:50.0010 6872 iaStorF - ok
18:56:50.0042 6872 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
18:56:50.0057 6872 iaStorV - ok
18:56:50.0104 6872 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:56:50.0135 6872 idsvc - ok
18:56:50.0151 6872 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
18:56:50.0151 6872 iirsp - ok
18:56:50.0198 6872 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
18:56:50.0229 6872 IKEEXT - ok
18:56:50.0291 6872 [ C2F868881D48A568B525255F084EF063 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
18:56:50.0322 6872 IntcAzAudAddService - ok
18:56:50.0400 6872 [ B353F1834FCD36D77BE3F74992C147D4 ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
18:56:50.0416 6872 Intel(R) Capability Licensing Service Interface - ok
18:56:50.0447 6872 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
18:56:50.0447 6872 intelide - ok
18:56:50.0463 6872 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
18:56:50.0463 6872 intelppm - ok
18:56:50.0494 6872 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
18:56:50.0494 6872 IPBusEnum - ok
18:56:50.0510 6872 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:56:50.0525 6872 IpFilterDriver - ok
18:56:50.0541 6872 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
18:56:50.0556 6872 iphlpsvc - ok
18:56:50.0572 6872 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
18:56:50.0572 6872 IPMIDRV - ok
18:56:50.0588 6872 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
18:56:50.0588 6872 IPNAT - ok
18:56:50.0650 6872 [ 44886233135241F3990724082EB104EE ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
18:56:50.0666 6872 iPod Service - ok
18:56:50.0697 6872 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
18:56:50.0697 6872 IRENUM - ok
18:56:50.0728 6872 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
18:56:50.0728 6872 isapnp - ok
18:56:50.0744 6872 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
18:56:50.0759 6872 iScsiPrt - ok
18:56:50.0775 6872 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
18:56:50.0775 6872 kbdclass - ok
18:56:50.0790 6872 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
18:56:50.0790 6872 kbdhid - ok
18:56:50.0806 6872 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
18:56:50.0806 6872 KeyIso - ok
18:56:50.0868 6872 [ 549F9D454E9E6697B108F16C569B505A ] KL1 C:\Windows\system32\DRIVERS\kl1.sys
18:56:50.0868 6872 KL1 - ok
18:56:50.0962 6872 [ 08DF1B7A82837B92096EC7597C00889A ] KLIF C:\Windows\system32\DRIVERS\klif.sys
18:56:50.0962 6872 KLIF - ok
18:56:50.0993 6872 [ A7DFA9A2554143667E830E8ABE452D70 ] KLIM6 C:\Windows\system32\DRIVERS\klim6.sys
18:56:50.0993 6872 KLIM6 - ok
18:56:51.0024 6872 [ E6FAA395058F7BAF0F3529CDBA9B7133 ] klkbdflt C:\Windows\system32\DRIVERS\klkbdflt.sys
18:56:51.0024 6872 klkbdflt - ok
18:56:51.0040 6872 [ D398DABD44FDDDBED305442BB7BCDB29 ] klmouflt C:\Windows\system32\DRIVERS\klmouflt.sys
18:56:51.0056 6872 klmouflt - ok
18:56:51.0056 6872 [ B9B2AEEE5E17B2CEBC034FF2748577A0 ] kltdi C:\Windows\system32\DRIVERS\kltdi.sys
18:56:51.0056 6872 kltdi - ok
18:56:51.0102 6872 [ 8E880E08D7453DB58DAC36C2C48FFD45 ] kneps C:\Windows\system32\DRIVERS\kneps.sys
18:56:51.0102 6872 kneps - ok
18:56:51.0134 6872 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
18:56:51.0134 6872 KSecDD - ok
18:56:51.0165 6872 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
18:56:51.0165 6872 KSecPkg - ok
18:56:51.0196 6872 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
18:56:51.0196 6872 ksthunk - ok
18:56:51.0227 6872 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
18:56:51.0243 6872 KtmRm - ok
18:56:51.0274 6872 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
18:56:51.0290 6872 LanmanServer - ok
18:56:51.0305 6872 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:56:51.0321 6872 LanmanWorkstation - ok
18:56:51.0446 6872 [ 95EC0CB52692894E050CFC3573ABC3B2 ] LBTServ C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
18:56:51.0446 6872 LBTServ - ok
18:56:51.0492 6872 [ 4838EA42D5BBE1CA6BEE9BBA35E8D2E5 ] LEqdUsb C:\Windows\system32\DRIVERS\LEqdUsb.Sys
18:56:51.0508 6872 LEqdUsb - ok
18:56:51.0524 6872 [ 6F63F8A7FF6D4671973619BCF821B2F5 ] LHidEqd C:\Windows\system32\DRIVERS\LHidEqd.Sys
18:56:51.0524 6872 LHidEqd - ok
18:56:51.0539 6872 [ E536A1D8502D0CA79B928CAB9EAEB807 ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys
18:56:51.0539 6872 LHidFilt - ok
18:56:51.0570 6872 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
18:56:51.0570 6872 lltdio - ok
18:56:51.0602 6872 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
18:56:51.0602 6872 lltdsvc - ok
18:56:51.0633 6872 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
18:56:51.0633 6872 lmhosts - ok
18:56:51.0648 6872 [ 2E6D0110DACC769AE478ADE6C2572E37 ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys
18:56:51.0648 6872 LMouFilt - ok
18:56:51.0695 6872 [ E70FD0D2C95F559A17321D831875593D ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
18:56:51.0695 6872 LMS - ok
18:56:51.0726 6872 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
18:56:51.0726 6872 LSI_FC - ok
18:56:51.0758 6872 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
18:56:51.0758 6872 LSI_SAS - ok
18:56:51.0773 6872 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
18:56:51.0773 6872 LSI_SAS2 - ok
18:56:51.0789 6872 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
18:56:51.0789 6872 LSI_SCSI - ok
18:56:51.0804 6872 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
18:56:51.0804 6872 luafv - ok
18:56:51.0851 6872 [ 9D9714E78EAC9E5368208649489C920E ] LUsbFilt C:\Windows\system32\Drivers\LUsbFilt.Sys
18:56:51.0851 6872 LUsbFilt - ok
18:56:51.0898 6872 [ B2085E335F2B57077B0CBADB6F1245CD ] lvpopf64 C:\Windows\system32\DRIVERS\lvpopf64.sys
18:56:51.0898 6872 lvpopf64 - ok
18:56:51.0929 6872 [ DED333DBDBBCC3555A6E6244522E2F1A ] LVPr2M64 C:\Windows\system32\DRIVERS\LVPr2M64.sys
18:56:51.0929 6872 LVPr2M64 - ok
18:56:51.0945 6872 [ DED333DBDBBCC3555A6E6244522E2F1A ] LVPr2Mon C:\Windows\system32\DRIVERS\LVPr2M64.sys
18:56:51.0945 6872 LVPr2Mon - ok
18:56:51.0976 6872 [ A35679E56E78091E1042A2D7ADBF2958 ] LVPrcS64 C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
18:56:51.0992 6872 LVPrcS64 - ok
18:56:51.0992 6872 [ 986C1CB787A007BAA5F74E7D316D7246 ] LVRS64 C:\Windows\system32\DRIVERS\lvrs64.sys
18:56:52.0007 6872 LVRS64 - ok
18:56:52.0132 6872 [ 5747BC465ABEA2858C5D037252AED84E ] LVUVC64 C:\Windows\system32\DRIVERS\lvuvc64.sys
18:56:52.0257 6872 LVUVC64 - ok
18:56:52.0304 6872 [ AFA556B544ABD675646CF5149E009E00 ] MacheenService C:\Program Files (x86)\Dell\NetReady\MacheenService.exe
18:56:52.0304 6872 MacheenService - ok
18:56:52.0366 6872 [ 19A013F43557161D75C4EFE524BD2A3C ] maconfservice C:\Program Files\ma-config.com\x64\maconfservice.exe
18:56:52.0382 6872 maconfservice - ok
18:56:52.0397 6872 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
18:56:52.0413 6872 Mcx2Svc - ok
18:56:52.0428 6872 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
18:56:52.0428 6872 megasas - ok
18:56:52.0444 6872 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
18:56:52.0444 6872 MegaSR - ok
18:56:52.0475 6872 [ 772A1DEEDFDBC244183B5C805D1B7D85 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
18:56:52.0475 6872 MEIx64 - ok
18:56:52.0600 6872 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
18:56:52.0616 6872 MMCSS - ok
18:56:52.0616 6872 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
18:56:52.0631 6872 Modem - ok
18:56:52.0647 6872 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
18:56:52.0647 6872 monitor - ok
18:56:52.0662 6872 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
18:56:52.0662 6872 mouclass - ok
18:56:52.0678 6872 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
18:56:52.0678 6872 mouhid - ok
18:56:52.0694 6872 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
18:56:52.0709 6872 mountmgr - ok
18:56:52.0740 6872 [ 5C5E45DDABEFBC9F564F1D5C83258B8F ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
18:56:52.0740 6872 MozillaMaintenance - ok
18:56:52.0756 6872 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
18:56:52.0756 6872 mpio - ok
18:56:52.0772 6872 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
18:56:52.0772 6872 mpsdrv - ok
18:56:52.0787 6872 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
18:56:52.0803 6872 MpsSvc - ok
18:56:52.0803 6872 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
18:56:52.0803 6872 MRxDAV - ok
18:56:52.0834 6872 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
18:56:52.0834 6872 mrxsmb - ok
18:56:52.0850 6872 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:56:52.0850 6872 mrxsmb10 - ok
18:56:52.0865 6872 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:56:52.0865 6872 mrxsmb20 - ok
18:56:52.0881 6872 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
18:56:52.0881 6872 msahci - ok
18:56:52.0896 6872 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
18:56:52.0912 6872 msdsm - ok
18:56:52.0912 6872 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
18:56:52.0928 6872 MSDTC - ok
18:56:52.0943 6872 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
18:56:52.0943 6872 Msfs - ok
18:56:52.0959 6872 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
18:56:52.0959 6872 mshidkmdf - ok
18:56:52.0974 6872 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
18:56:52.0974 6872 msisadrv - ok
18:56:53.0006 6872 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
18:56:53.0006 6872 MSiSCSI - ok
18:56:53.0006 6872 msiserver - ok
18:56:53.0021 6872 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
18:56:53.0021 6872 MSKSSRV - ok
18:56:53.0037 6872 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
18:56:53.0037 6872 MSPCLOCK - ok
18:56:53.0052 6872 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
18:56:53.0052 6872 MSPQM - ok
18:56:53.0068 6872 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
18:56:53.0084 6872 MsRPC - ok
18:56:53.0084 6872 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
18:56:53.0084 6872 mssmbios - ok
18:56:53.0146 6872 MSSQL$MYMOVIES - ok
18:56:53.0193 6872 [ 1D89EB4E2A99CABD4E81225F4F4C4B25 ] MSSQLServerADHelper c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqladhlp90.exe
18:56:53.0208 6872 MSSQLServerADHelper - ok
18:56:53.0224 6872 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
18:56:53.0224 6872 MSTEE - ok
18:56:53.0240 6872 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
18:56:53.0240 6872 MTConfig - ok
18:56:53.0255 6872 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
18:56:53.0255 6872 Mup - ok
18:56:53.0302 6872 [ 7E11D1788F5B531D49EF0AF97202437B ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
18:56:53.0302 6872 MyWiFiDHCPDNS - ok
18:56:53.0349 6872 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
18:56:53.0364 6872 napagent - ok
18:56:53.0396 6872 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
18:56:53.0396 6872 NativeWifiP - ok
18:56:53.0442 6872 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
18:56:53.0458 6872 NDIS - ok
18:56:53.0474 6872 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
18:56:53.0474 6872 NdisCap - ok
18:56:53.0489 6872 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
18:56:53.0489 6872 NdisTapi - ok
18:56:53.0505 6872 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
18:56:53.0505 6872 Ndisuio - ok
18:56:53.0520 6872 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
18:56:53.0520 6872 NdisWan - ok
18:56:53.0536 6872 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
18:56:53.0536 6872 NDProxy - ok
18:56:53.0552 6872 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
18:56:53.0552 6872 NetBIOS - ok
18:56:53.0567 6872 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
18:56:53.0567 6872 NetBT - ok
18:56:53.0583 6872 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
18:56:53.0583 6872 Netlogon - ok
18:56:53.0614 6872 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
18:56:53.0630 6872 Netman - ok
18:56:53.0661 6872 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:56:53.0676 6872 NetMsmqActivator - ok
18:56:53.0692 6872 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:56:53.0692 6872 NetPipeActivator - ok
18:56:53.0723 6872 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
18:56:53.0739 6872 netprofm - ok
18:56:53.0739 6872 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:56:53.0754 6872 NetTcpActivator - ok
18:56:53.0770 6872 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:56:53.0770 6872 NetTcpPortSharing - ok
18:56:54.0207 6872 [ 219A40EEEA50D638BA9D08680C354A0C ] NETwNs64 C:\Windows\system32\DRIVERS\Netwsw00.sys
18:56:54.0378 6872 NETwNs64 - ok
18:56:54.0410 6872 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
18:56:54.0410 6872 nfrd960 - ok
18:56:54.0441 6872 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
18:56:54.0441 6872 NlaSvc - ok
18:56:54.0456 6872 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
18:56:54.0456 6872 Npfs - ok
18:56:54.0488 6872 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
18:56:54.0488 6872 nsi - ok
18:56:54.0488 6872 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
18:56:54.0488 6872 nsiproxy - ok
18:56:54.0534 6872 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
18:56:54.0550 6872 Ntfs - ok
18:56:54.0566 6872 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
18:56:54.0566 6872 Null - ok
18:56:54.0597 6872 [ 69FCDECD0215195261EC5362AB4A1520 ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys
18:56:54.0597 6872 nusb3hub - ok
18:56:54.0628 6872 [ F813EA99DA158FB4079622D882873D63 ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys
18:56:54.0628 6872 nusb3xhc - ok
18:56:54.0675 6872 [ B4F53BCA4C688FF47F04FA90098F896E ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
18:56:54.0675 6872 NVHDA - ok
18:56:55.0892 6872 [ 0A2F27B5BCC45B64E152DD6AE0815198 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
18:56:55.0938 6872 nvlddmkm - ok
18:56:56.0001 6872 [ 324692987B78CD05EE875634CC26B6BA ] NvStUSB C:\Windows\system32\DRIVERS\nvstusb.sys
18:56:56.0001 6872 NvStUSB - ok
18:56:56.0063 6872 [ 574087EA9105F23FB522A4FDDD5292D9 ] nvsvc C:\Windows\system32\nvvsvc.exe
18:56:56.0079 6872 nvsvc - ok
18:56:56.0188 6872 [ ABA5A88740635D37A2B6CEB27DBC738A ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
18:56:56.0204 6872 nvUpdatusService - ok
18:56:56.0235 6872 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
18:56:56.0250 6872 ohci1394 - ok
18:56:56.0282 6872 [ 49AA935F6BE1D5030EF10593FCAE3F91 ] OSDSvc C:\Program Files (x86)\Dell\Dell KM713 Wireless Keyboard LED Indicator\OSDSrv.exe
18:56:56.0282 6872 OSDSvc - ok
18:56:56.0344 6872 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:56:56.0344 6872 ose - ok
18:56:56.0500 6872 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
18:56:56.0578 6872 osppsvc - ok
18:56:56.0594 6872 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
18:56:56.0609 6872 p2pimsvc - ok
18:56:56.0640 6872 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
18:56:56.0640 6872 p2psvc - ok
18:56:56.0656 6872 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
18:56:56.0672 6872 Parport - ok
18:56:56.0687 6872 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
18:56:56.0687 6872 partmgr - ok
18:56:56.0718 6872 [ 48923E83DEB29BFFE63DC4BD220F6031 ] PayPen C:\Windows\system32\Drivers\PayPen.sys
18:56:56.0734 6872 PayPen - ok
18:56:56.0750 6872 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
18:56:56.0750 6872 PcaSvc - ok
18:56:56.0765 6872 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
18:56:56.0765 6872 pci - ok
18:56:56.0781 6872 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
18:56:56.0781 6872 pciide - ok
18:56:56.0796 6872 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
18:56:56.0796 6872 pcmcia - ok
18:56:56.0812 6872 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
18:56:56.0812 6872 pcw - ok
18:56:56.0843 6872 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
18:56:56.0859 6872 PEAUTH - ok
18:56:56.0890 6872 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
18:56:56.0937 6872 PeerDistSvc - ok
18:56:56.0952 6872 pendfu - ok
18:56:57.0015 6872 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
18:56:57.0015 6872 PerfHost - ok
18:56:57.0062 6872 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
18:56:57.0124 6872 pla - ok
18:56:57.0140 6872 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
18:56:57.0155 6872 PlugPlay - ok
18:56:57.0171 6872 PnkBstrA - ok
18:56:57.0186 6872 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
18:56:57.0186 6872 PNRPAutoReg - ok
18:56:57.0218 6872 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
18:56:57.0218 6872 PNRPsvc - ok
18:56:57.0249 6872 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
18:56:57.0249 6872 PolicyAgent - ok
18:56:57.0280 6872 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
18:56:57.0280 6872 Power - ok
18:56:57.0311 6872 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
18:56:57.0327 6872 PptpMiniport - ok
18:56:57.0327 6872 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
18:56:57.0342 6872 Processor - ok
18:56:57.0358 6872 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
18:56:57.0358 6872 ProfSvc - ok
18:56:57.0374 6872 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
18:56:57.0374 6872 ProtectedStorage - ok
18:56:57.0389 6872 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
18:56:57.0405 6872 Psched - ok
18:56:57.0420 6872 [ 0928BD20273625622722FE1DE5BBDE57 ] qicflt C:\Windows\system32\DRIVERS\qicflt.sys
18:56:57.0420 6872 qicflt - ok
18:56:57.0483 6872 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
18:56:57.0514 6872 ql2300 - ok
18:56:57.0530 6872 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
18:56:57.0530 6872 ql40xx - ok
18:56:57.0561 6872 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
18:56:57.0576 6872 QWAVE - ok
18:56:57.0592 6872 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
18:56:57.0608 6872 QWAVEdrv - ok
18:56:57.0608 6872 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
18:56:57.0623 6872 RasAcd - ok
18:56:57.0639 6872 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
18:56:57.0639 6872 RasAgileVpn - ok
18:56:57.0654 6872 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
18:56:57.0670 6872 RasAuto - ok
18:56:57.0686 6872 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
18:56:57.0701 6872 Rasl2tp - ok
18:56:57.0717 6872 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
18:56:57.0717 6872 RasMan - ok
18:56:57.0748 6872 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
18:56:57.0748 6872 RasPppoe - ok
18:56:57.0764 6872 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
18:56:57.0764 6872 RasSstp - ok
18:56:57.0779 6872 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
18:56:57.0795 6872 rdbss - ok
18:56:57.0810 6872 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
18:56:57.0810 6872 rdpbus - ok
18:56:57.0842 6872 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
18:56:57.0842 6872 RDPCDD - ok
18:56:57.0873 6872 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
18:56:57.0873 6872 RDPDR - ok
18:56:57.0888 6872 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
18:56:57.0888 6872 RDPENCDD - ok
18:56:57.0920 6872 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
18:56:57.0920 6872 RDPREFMP - ok
18:56:57.0966 6872 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
18:56:57.0966 6872 RdpVideoMiniport - ok
18:56:57.0998 6872 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
18:56:58.0013 6872 RDPWD - ok
18:56:58.0029 6872 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
18:56:58.0044 6872 rdyboost - ok
18:56:58.0091 6872 [ F09087C51C6AE42AE7DABE1EB3E44C17 ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
18:56:58.0091 6872 RegSrvc - ok
18:56:58.0122 6872 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
18:56:58.0138 6872 RemoteAccess - ok
18:56:58.0154 6872 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
18:56:58.0154 6872 RemoteRegistry - ok
18:56:58.0169 6872 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
18:56:58.0169 6872 RpcEptMapper - ok
18:56:58.0185 6872 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
18:56:58.0200 6872 RpcLocator - ok
18:56:58.0232 6872 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
18:56:58.0232 6872 RpcSs - ok
18:56:58.0247 6872 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
18:56:58.0247 6872 rspndr - ok
18:56:58.0294 6872 [ 3713DACCA1025B05A6343104112708D9 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
18:56:58.0310 6872 RTL8167 - ok
18:56:58.0341 6872 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
18:56:58.0356 6872 s3cap - ok
18:56:58.0356 6872 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
18:56:58.0372 6872 SamSs - ok
18:56:58.0388 6872 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
18:56:58.0388 6872 sbp2port - ok
18:56:58.0419 6872 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
18:56:58.0419 6872 SCardSvr - ok
18:56:58.0434 6872 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
18:56:58.0434 6872 scfilter - ok
18:56:58.0450 6872 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
18:56:58.0466 6872 Schedule - ok
18:56:58.0606 6872 [ AD6E9BB552A07C3AD019DF5B8EFB7223 ] SCPDFReadSpool C:\Program Files (x86)\SolidDocuments\Solid Converter PDF\SCPDF\SolidConverterPDFServicex64.exe
18:56:58.0606 6872 SCPDFReadSpool - ok
18:56:58.0637 6872 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
18:56:58.0637 6872 SCPolicySvc - ok
18:56:58.0668 6872 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
18:56:58.0684 6872 sdbus - ok
18:56:58.0715 6872 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
18:56:58.0715 6872 SDRSVC - ok
18:56:58.0746 6872 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
18:56:58.0746 6872 secdrv - ok
18:56:58.0746 6872 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
18:56:58.0762 6872 seclogon - ok
18:56:58.0778 6872 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
18:56:58.0778 6872 SENS - ok
18:56:58.0793 6872 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
18:56:58.0793 6872 SensrSvc - ok
18:56:58.0824 6872 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
18:56:58.0824 6872 Serenum - ok
18:56:58.0840 6872 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
18:56:58.0840 6872 Serial - ok
18:56:58.0871 6872 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
18:56:58.0871 6872 sermouse - ok
18:56:58.0902 6872 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
18:56:58.0902 6872 SessionEnv - ok
18:56:58.0918 6872 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
18:56:58.0918 6872 sffdisk - ok
18:56:58.0934 6872 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
18:56:58.0934 6872 sffp_mmc - ok
18:56:58.0949 6872 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
18:56:58.0949 6872 sffp_sd - ok
18:56:58.0949 6872 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
18:56:58.0965 6872 sfloppy - ok
18:56:58.0980 6872 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
18:56:58.0996 6872 SharedAccess - ok
18:56:59.0012 6872 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:56:59.0027 6872 ShellHWDetection - ok
18:56:59.0027 6872 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
18:56:59.0043 6872 SiSRaid2 - ok
18:56:59.0043 6872 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
18:56:59.0043 6872 SiSRaid4 - ok
18:56:59.0090 6872 [ 8C4F0DCC6A5100D48F9B2F950CDD220F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
18:56:59.0090 6872 SkypeUpdate - ok
18:56:59.0105 6872 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
18:56:59.0121 6872 Smb - ok
18:56:59.0152 6872 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
18:56:59.0152 6872 SNMPTRAP - ok
18:56:59.0168 6872 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
18:56:59.0168 6872 spldr - ok
18:56:59.0230 6872 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
18:56:59.0246 6872 Spooler - ok
18:56:59.0339 6872 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
18:56:59.0402 6872 sppsvc - ok
18:56:59.0402 6872 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
18:56:59.0402 6872 sppuinotify - ok
18:56:59.0480 6872 [ 86EBD8B1F23E743AAD21F4D5B4D40985 ] SQLBrowser c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
18:56:59.0480 6872 SQLBrowser - ok
18:56:59.0511 6872 [ 3C432A96363097870995E2A3C8B66ABD ] SQLWriter c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
18:56:59.0526 6872 SQLWriter - ok
18:56:59.0589 6872 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
18:56:59.0589 6872 srv - ok
18:56:59.0620 6872 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
18:56:59.0636 6872 srv2 - ok
18:56:59.0651 6872 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
18:56:59.0651 6872 srvnet - ok
18:56:59.0682 6872 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
18:56:59.0698 6872 SSDPSRV - ok
18:56:59.0714 6872 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
18:56:59.0729 6872 SstpSvc - ok
18:56:59.0745 6872 [ 92E7F6666633D2DD91D527503DAA7BE0 ] stdcfltn C:\Windows\system32\DRIVERS\stdcfltn.sys
18:56:59.0745 6872 stdcfltn - ok
18:56:59.0807 6872 [ 78216A10BF8B200890A88D8820F33F14 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
18:56:59.0807 6872 Stereo Service - ok
18:56:59.0854 6872 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
18:56:59.0870 6872 stexstor - ok
18:56:59.0901 6872 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
18:56:59.0901 6872 StillCam - ok
18:56:59.0948 6872 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
18:56:59.0994 6872 stisvc - ok
18:57:00.0010 6872 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
18:57:00.0010 6872 storflt - ok
18:57:00.0072 6872 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\Windows\system32\storsvc.dll
18:57:00.0072 6872 StorSvc - ok
18:57:00.0306 6872 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
18:57:00.0306 6872 storvsc - ok
18:57:00.0322 6872 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
18:57:00.0322 6872 swenum - ok
18:57:00.0462 6872 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
18:57:00.0478 6872 SwitchBoard - ok
18:57:00.0509 6872 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
18:57:00.0525 6872 swprv - ok
18:57:00.0556 6872 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
18:57:00.0587 6872 SysMain - ok
18:57:00.0603 6872 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:57:00.0603 6872 TabletInputService - ok
18:57:00.0618 6872 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
18:57:00.0618 6872 TapiSrv - ok
18:57:00.0634 6872 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
18:57:00.0634 6872 TBS - ok
18:57:00.0899 6872 [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
18:57:00.0962 6872 Tcpip - ok
18:57:01.0008 6872 [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
18:57:01.0024 6872 TCPIP6 - ok
18:57:01.0055 6872 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
18:57:01.0055 6872 tcpipreg - ok
18:57:01.0086 6872 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
18:57:01.0102 6872 TDPIPE - ok
18:57:01.0118 6872 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
18:57:01.0133 6872 TDTCP - ok
18:57:01.0149 6872 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
18:57:01.0149 6872 tdx - ok
18:57:01.0164 6872 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
18:57:01.0164 6872 TermDD - ok
18:57:01.0211 6872 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
18:57:01.0227 6872 TermService - ok
18:57:01.0227 6872 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
18:57:01.0242 6872 Themes - ok
18:57:01.0258 6872 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
18:57:01.0258 6872 THREADORDER - ok
18:57:01.0305 6872 [ 0407143F2BBC1A5DD5B518AC0704FCBF ] TomTomHOMEService C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
18:57:01.0305 6872 TomTomHOMEService - ok
18:57:01.0320 6872 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
18:57:01.0320 6872 TrkWks - ok

heberge le rapport de TDSSKiller sur cjoint.com il rentre pas là