Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

i have so many SVHOST.EXE..


  • This topic is locked This topic is locked
3 replies to this topic

#1 ohehehe

ohehehe

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:04:02 AM

Posted 12 August 2012 - 06:43 AM

MY laptop was slow boot in start-up of my windows 7


Attached File  dasd.png   192.64KB   3 downloads


Malwarebytes LOGS

Malwarebytes Anti-Malware (PRO) 1.62.0.1300
www.malwarebytes.org

Database version: v2012.08.10.04

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 8.0.7601.17514
Rhomel :: RHOMEL-PC [administrator]

Protection: Disabled

8/11/2012 6:51:27 PM
mbam-log-2012-08-11 (18-51-27).txt

Scan type: Full scan (C:\|D:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 380300
Time elapsed: 53 minute(s), 31 second(s)

Memory Processes Detected: 1
C:\ProgramData\OptimizerPro1\OptimizerPro1.exe (Trojan.Dropper) -> 3408 -> Delete on reboot.

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\OptimizerPro1 (Trojan.Dropper) -> Quarantined and deleted successfully.

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 8
C:\Program Files (x86)\GreenTree Applications\YTD Video Downloader\patch.exe (PUP.Hacktool.Patcher) -> No action taken.
D:\Downloads\Compressed\KgenConPro3.5.1\KeygenConPro3.5.1\Keygen.exe (RiskWare.Tool.CK) -> No action taken.
D:\Downloads\Compressed\Microsoft Office 2010 Activator (Direct Download)\mini-KMS_Activator_v1.051.exe (PUP.RiskwareTool.CK) -> No action taken.
D:\Downloads\Compressed\ytd39\ytd39\Patch & Crack\Patch-RED\patch.exe (PUP.Hacktool.Patcher) -> No action taken.
D:\Installer\Connectify 3.25\connectify.pro.v3.25-patch.exe (Backdoor.MSIL.PGen) -> No action taken.
D:\Installer\Windows 7 Anytime Upgrade Keygen\Windows 7 Anytime Upgrade Keygen.exe (PUP.RiskwareTool.CK) -> No action taken.
C:\ProgramData\OptimizerPro1\OptimizerPro1.exe (Trojan.Dropper) -> Delete on reboot.
D:\Installer\MICROSOFT.OFFICE.2010.RTM.14.0.4734.1000_ProfessionalPlus_volume_x64_en-us\Office 2010 Activation and Conversion Kit 1.6.exe (Trojan.Agent.CK) -> Quarantined and deleted successfully.

(end)

19:57:45.0401 3992	TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
19:57:46.0271 3992	============================================================
19:57:46.0271 3992	Current date / time: 2012/08/12 19:57:46.0271
19:57:46.0271 3992	SystemInfo:
19:57:46.0271 3992	
19:57:46.0271 3992	OS Version: 6.1.7601 ServicePack: 1.0
19:57:46.0271 3992	Product type: Workstation
19:57:46.0271 3992	ComputerName: RHOMEL-PC
19:57:46.0271 3992	UserName: Rhomel
19:57:46.0271 3992	Windows directory: C:\Windows
19:57:46.0271 3992	System windows directory: C:\Windows
19:57:46.0271 3992	Running under WOW64
19:57:46.0271 3992	Processor architecture: Intel x64
19:57:46.0271 3992	Number of processors: 8
19:57:46.0271 3992	Page size: 0x1000
19:57:46.0271 3992	Boot type: Normal boot
19:57:46.0271 3992	============================================================
19:57:46.0759 3992	Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:57:46.0764 3992	============================================================
19:57:46.0764 3992	\Device\Harddisk0\DR0:
19:57:46.0765 3992	MBR partitions:
19:57:46.0765 3992	\Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
19:57:46.0765 3992	\Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x249BE000
19:57:46.0765 3992	\Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x249F0800, BlocksNum 0x32B55000
19:57:46.0765 3992	============================================================
19:57:46.0805 3992	C: <-> \Device\Harddisk0\DR0\Partition2
19:57:46.0838 3992	D: <-> \Device\Harddisk0\DR0\Partition1
19:57:46.0838 3992	============================================================
19:57:46.0838 3992	Initialize success
19:57:46.0838 3992	============================================================
19:57:51.0805 1804	============================================================
19:57:51.0805 1804	Scan started
19:57:51.0805 1804	Mode: Manual; SigCheck; TDLFS; 
19:57:51.0805 1804	============================================================
19:57:53.0002 1804	1394ohci        (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
19:57:53.0195 1804	1394ohci - ok
19:57:53.0310 1804	ACPI            (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
19:57:53.0322 1804	ACPI - ok
19:57:53.0345 1804	AcpiPmi         (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
19:57:53.0386 1804	AcpiPmi - ok
19:57:53.0483 1804	AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
19:57:53.0491 1804	AdobeARMservice - ok
19:57:53.0601 1804	AdobeFlashPlayerUpdateSvc (6c40d5ed8951ab7b90d08af655224ee4) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
19:57:53.0612 1804	AdobeFlashPlayerUpdateSvc - ok
19:57:53.0709 1804	adp94xx         (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
19:57:53.0724 1804	adp94xx - ok
19:57:53.0786 1804	adpahci         (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
19:57:53.0799 1804	adpahci - ok
19:57:53.0864 1804	adpu320         (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
19:57:53.0874 1804	adpu320 - ok
19:57:53.0910 1804	AeLookupSvc     (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
19:57:53.0957 1804	AeLookupSvc - ok
19:57:54.0077 1804	AFBAgent        (69fd46fac0d9c4a8ecd522ac6a7481f5) C:\Windows\system32\FBAgent.exe
19:57:54.0108 1804	AFBAgent - ok
19:57:54.0212 1804	AFD             (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
19:57:54.0260 1804	AFD - ok
19:57:54.0376 1804	agp440          (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
19:57:54.0385 1804	agp440 - ok
19:57:54.0435 1804	AiCharger       (16f6f6b7903b913ab41ab848c8bb5658) C:\Windows\system32\DRIVERS\AiCharger.sys
19:57:54.0443 1804	AiCharger - ok
19:57:54.0548 1804	AIPS            (2870ce9bfd6ba66fb0ffc6d11c9e41a7) C:\Program Files (x86)\netcut\services\AIPS.exe
19:57:54.0575 1804	AIPS ( UnsignedFile.Multi.Generic ) - warning
19:57:54.0575 1804	AIPS - detected UnsignedFile.Multi.Generic (1)
19:57:54.0617 1804	ALG             (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
19:57:54.0658 1804	ALG - ok
19:57:54.0722 1804	aliide          (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
19:57:54.0730 1804	aliide - ok
19:57:54.0733 1804	amdide          (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
19:57:54.0741 1804	amdide - ok
19:57:54.0798 1804	AmdK8           (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
19:57:54.0828 1804	AmdK8 - ok
19:57:54.0886 1804	AmdPPM          (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
19:57:54.0987 1804	AmdPPM - ok
19:57:55.0036 1804	amdsata         (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
19:57:55.0046 1804	amdsata - ok
19:57:55.0151 1804	amdsbs          (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
19:57:55.0161 1804	amdsbs - ok
19:57:55.0187 1804	amdxata         (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
19:57:55.0195 1804	amdxata - ok
19:57:55.0232 1804	androidusb      (4de0d5d747a73797c95a97dcce5018b5) C:\Windows\system32\Drivers\ssadadb.sys
19:57:55.0262 1804	androidusb - ok
19:57:55.0306 1804	AppID           (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
19:57:55.0362 1804	AppID - ok
19:57:55.0396 1804	AppIDSvc        (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
19:57:55.0439 1804	AppIDSvc - ok
19:57:55.0491 1804	Appinfo         (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
19:57:55.0543 1804	Appinfo - ok
19:57:55.0600 1804	AppMgmt         (4aba3e75a76195a3e38ed2766c962899) C:\Windows\System32\appmgmts.dll
19:57:55.0640 1804	AppMgmt - ok
19:57:55.0700 1804	arc             (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
19:57:55.0709 1804	arc - ok
19:57:55.0731 1804	arcsas          (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
19:57:55.0740 1804	arcsas - ok
19:57:55.0873 1804	ASLDRService    (a3626c6d3f2dc95497f3f61842d7fd89) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
19:57:55.0881 1804	ASLDRService - ok
19:57:55.0933 1804	ASMMAP64        (4c016fd76ed5c05e84ca8cab77993961) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys
19:57:55.0941 1804	ASMMAP64 - ok
19:57:56.0029 1804	aspnet_state    (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
19:57:56.0037 1804	aspnet_state - ok
19:57:56.0125 1804	ASUS InstantOn  (6a122b4f0e5293cacfa8a5f2cba9b356) C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe
19:57:56.0135 1804	ASUS InstantOn - ok
19:57:56.0166 1804	AsusVBus        (cbf4c9263f35a9e80e4ad5cbbae6049c) C:\Windows\system32\DRIVERS\AsusVBus.sys
19:57:56.0174 1804	AsusVBus - ok
19:57:56.0190 1804	AsusVTouch      (c951f6f1d909e1aad7160d9ee860a3f1) C:\Windows\system32\DRIVERS\AsusVTouch.sys
19:57:56.0199 1804	AsusVTouch - ok
19:57:56.0225 1804	aswFsBlk        (df59b8e8df0bd2e0e303778a3806a17d) C:\Windows\system32\drivers\aswFsBlk.sys
19:57:56.0234 1804	aswFsBlk - ok
19:57:56.0256 1804	aswMonFlt       (f8e6ab4f876feff69250f2e0c29ef004) C:\Windows\system32\drivers\aswMonFlt.sys
19:57:56.0265 1804	aswMonFlt - ok
19:57:56.0297 1804	aswRdr          (aa92bc4bcba40ca3aa3ffd1be24f0c09) C:\Windows\System32\Drivers\aswrdr2.sys
19:57:56.0306 1804	aswRdr - ok
19:57:56.0380 1804	aswSnx          (f06e230e1e8ca9437a6474b7b551cd37) C:\Windows\system32\drivers\aswSnx.sys
19:57:56.0402 1804	aswSnx - ok
19:57:56.0434 1804	aswSP           (3610ca74a69e380424f0452dec5c1317) C:\Windows\system32\drivers\aswSP.sys
19:57:56.0447 1804	aswSP - ok
19:57:56.0476 1804	aswTdi          (87de3e31cb0091d22351349869324065) C:\Windows\system32\drivers\aswTdi.sys
19:57:56.0484 1804	aswTdi - ok
19:57:56.0516 1804	AsyncMac        (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
19:57:56.0567 1804	AsyncMac - ok
19:57:56.0612 1804	atapi           (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
19:57:56.0620 1804	atapi - ok
19:57:56.0648 1804	AthBTPort       (d0b119d6f52bdca8d204f79d27690209) C:\Windows\system32\DRIVERS\btath_flt.sys
19:57:56.0655 1804	AthBTPort - ok
19:57:56.0734 1804	AtherosSvc      (edf396de960606106b06de0478b1476b) C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
19:57:56.0740 1804	AtherosSvc - ok
19:57:56.0916 1804	athr            (b4174564ad5834a1680610572477878c) C:\Windows\system32\DRIVERS\athrx.sys
19:57:56.0989 1804	athr - ok
19:57:57.0123 1804	ATKGFNEXSrv     (dbc598e47e7a382e60e2a4745d41fef9) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
19:57:57.0131 1804	ATKGFNEXSrv - ok
19:57:57.0179 1804	ATKWMIACPIIO    (41ceaffcf3550785e59e3ec9bee8d97a) C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys
19:57:57.0188 1804	ATKWMIACPIIO - ok
19:57:57.0336 1804	AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
19:57:57.0367 1804	AudioEndpointBuilder - ok
19:57:57.0371 1804	AudioSrv        (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
19:57:57.0398 1804	AudioSrv - ok
19:57:57.0436 1804	Autodesk Content Service (f431dc5d94f4b2fdbc927655d8a9b10e) C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
19:57:57.0443 1804	Autodesk Content Service - ok
19:57:57.0499 1804	avast! Antivirus (2f7c0f3e39c45e0127fb78b2f18a41f3) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
19:57:57.0508 1804	avast! Antivirus - ok
19:57:57.0550 1804	AxInstSV        (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
19:57:57.0582 1804	AxInstSV - ok
19:57:57.0709 1804	b06bdrv         (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
19:57:57.0723 1804	b06bdrv - ok
19:57:57.0787 1804	b57nd60a        (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
19:57:57.0816 1804	b57nd60a - ok
19:57:57.0884 1804	BDESVC          (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
19:57:57.0916 1804	BDESVC - ok
19:57:57.0978 1804	Beep            (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
19:57:58.0068 1804	Beep - ok
19:57:58.0179 1804	BFE             (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
19:57:58.0237 1804	BFE - ok
19:57:58.0310 1804	BITS            (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
19:57:58.0364 1804	BITS - ok
19:57:58.0435 1804	blbdrive        (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
19:57:58.0467 1804	blbdrive - ok
19:57:58.0515 1804	bowser          (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
19:57:58.0526 1804	bowser - ok
19:57:58.0568 1804	BrFiltLo        (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
19:57:58.0579 1804	BrFiltLo - ok
19:57:58.0626 1804	BrFiltUp        (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
19:57:58.0638 1804	BrFiltUp - ok
19:57:58.0696 1804	Browser         (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
19:57:58.0752 1804	Browser - ok
19:57:58.0828 1804	Brserid         (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
19:57:58.0842 1804	Brserid - ok
19:57:58.0852 1804	BrSerWdm        (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
19:57:58.0871 1804	BrSerWdm - ok
19:57:58.0926 1804	BrUsbMdm        (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
19:57:58.0952 1804	BrUsbMdm - ok
19:57:58.0954 1804	BrUsbSer        (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
19:57:58.0974 1804	BrUsbSer - ok
19:57:59.0058 1804	BTATH_A2DP      (50d912c86b924c397deae7c813e25b78) C:\Windows\system32\drivers\btath_a2dp.sys
19:57:59.0069 1804	BTATH_A2DP - ok
19:57:59.0092 1804	btath_avdt      (486362291e8c2aabc3698fcb0052d042) C:\Windows\system32\drivers\btath_avdt.sys
19:57:59.0100 1804	btath_avdt - ok
19:57:59.0167 1804	BTATH_BUS       (e6b734a37ade36fe1a77035f4e484c8c) C:\Windows\system32\DRIVERS\btath_bus.sys
19:57:59.0172 1804	BTATH_BUS - ok
19:57:59.0218 1804	BTATH_HCRP      (fb3833e63ff602b69c2ff085846dcf43) C:\Windows\system32\DRIVERS\btath_hcrp.sys
19:57:59.0226 1804	BTATH_HCRP - ok
19:57:59.0255 1804	BTATH_LWFLT     (371a11c1333ba526263a987a93acde3d) C:\Windows\system32\DRIVERS\btath_lwflt.sys
19:57:59.0262 1804	BTATH_LWFLT - ok
19:57:59.0304 1804	BTATH_RCP       (abcd3c16ca850a7594ceb9ad5d966810) C:\Windows\system32\DRIVERS\btath_rcp.sys
19:57:59.0314 1804	BTATH_RCP - ok
19:57:59.0396 1804	BtFilter        (e2bc720e66da3e51e41d47c12fe353f1) C:\Windows\system32\DRIVERS\btfilter.sys
19:57:59.0409 1804	BtFilter - ok
19:57:59.0448 1804	BthEnum         (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\drivers\BthEnum.sys
19:57:59.0483 1804	BthEnum - ok
19:57:59.0528 1804	BTHMODEM        (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
19:57:59.0564 1804	BTHMODEM - ok
19:57:59.0607 1804	BthPan          (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys
19:57:59.0641 1804	BthPan - ok
19:57:59.0714 1804	BTHPORT         (64c198198501f7560ee41d8d1efa7952) C:\Windows\System32\Drivers\BTHport.sys
19:57:59.0756 1804	BTHPORT - ok
19:57:59.0814 1804	bthserv         (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
19:57:59.0857 1804	bthserv - ok
19:57:59.0882 1804	BTHUSB          (f188b7394d81010767b6df3178519a37) C:\Windows\System32\Drivers\BTHUSB.sys
19:57:59.0918 1804	BTHUSB - ok
19:57:59.0979 1804	cdfs            (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
19:58:00.0029 1804	cdfs - ok
19:58:00.0131 1804	cdrom           (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
19:58:00.0208 1804	cdrom - ok
19:58:00.0259 1804	CertPropSvc     (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
19:58:00.0309 1804	CertPropSvc - ok
19:58:00.0365 1804	circlass        (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
19:58:00.0392 1804	circlass - ok
19:58:00.0453 1804	CLFS            (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
19:58:00.0467 1804	CLFS - ok
19:58:00.0541 1804	clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:58:00.0549 1804	clr_optimization_v2.0.50727_32 - ok
19:58:00.0606 1804	clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
19:58:00.0614 1804	clr_optimization_v2.0.50727_64 - ok
19:58:00.0694 1804	clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:58:00.0702 1804	clr_optimization_v4.0.30319_32 - ok
19:58:00.0759 1804	clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
19:58:00.0768 1804	clr_optimization_v4.0.30319_64 - ok
19:58:00.0803 1804	CmBatt          (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
19:58:00.0833 1804	CmBatt - ok
19:58:00.0880 1804	cmdide          (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
19:58:00.0888 1804	cmdide - ok
19:58:00.0958 1804	CNG             (9ac4f97c2d3e93367e2148ea940cd2cd) C:\Windows\system32\Drivers\cng.sys
19:58:00.0995 1804	CNG - ok
19:58:01.0040 1804	cnnctfy2        (040ff3b09f26926a3792e047db0f47dd) C:\Windows\system32\DRIVERS\cnnctfy2.sys
19:58:01.0049 1804	cnnctfy2 - ok
19:58:01.0090 1804	Compbatt        (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
19:58:01.0098 1804	Compbatt - ok
19:58:01.0122 1804	CompositeBus    (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
19:58:01.0154 1804	CompositeBus - ok
19:58:01.0183 1804	COMSysApp - ok
19:58:01.0262 1804	Connectify      (4361c4cafbeac86627f2132e103d9e5b) C:\Program Files (x86)\Connectify\ConnectifyService.exe
19:58:01.0289 1804	Connectify ( UnsignedFile.Multi.Generic ) - warning
19:58:01.0289 1804	Connectify - detected UnsignedFile.Multi.Generic (1)
19:58:01.0400 1804	cphs            (df3e8c2c443d3618260dff5705ce2df5) C:\Windows\SysWow64\IntelCpHeciSvc.exe
19:58:01.0412 1804	cphs - ok
19:58:01.0461 1804	cpuz135         (75dbd5db9892d7451d0429bec1aabe1a) C:\Windows\system32\drivers\cpuz135_x64.sys
19:58:01.0470 1804	cpuz135 - ok
19:58:01.0507 1804	crcdisk         (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
19:58:01.0516 1804	crcdisk - ok
19:58:01.0592 1804	CryptSvc        (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
19:58:01.0625 1804	CryptSvc - ok
19:58:01.0685 1804	CSC             (54da3dfd29ed9f1619b6f53f3ce55e49) C:\Windows\system32\drivers\csc.sys
19:58:01.0736 1804	CSC - ok
19:58:01.0821 1804	CscService      (3ab183ab4d2c79dcf459cd2c1266b043) C:\Windows\System32\cscsvc.dll
19:58:01.0855 1804	CscService - ok
19:58:01.0932 1804	DcomLaunch      (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
19:58:01.0986 1804	DcomLaunch - ok
19:58:02.0043 1804	defragsvc       (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
19:58:02.0092 1804	defragsvc - ok
19:58:02.0163 1804	DfsC            (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
19:58:02.0208 1804	DfsC - ok
19:58:02.0279 1804	dg_ssudbus      (6060106ce00f32f63f1a73160e46e9d2) C:\Windows\system32\DRIVERS\ssudbus.sys
19:58:02.0288 1804	dg_ssudbus - ok
19:58:02.0349 1804	Dhcp            (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
19:58:02.0395 1804	Dhcp - ok
19:58:02.0439 1804	discache        (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
19:58:02.0490 1804	discache - ok
19:58:02.0552 1804	Disk            (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
19:58:02.0561 1804	Disk - ok
19:58:02.0595 1804	Dnscache        (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
19:58:02.0629 1804	Dnscache - ok
19:58:02.0670 1804	dot3svc         (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
19:58:02.0715 1804	dot3svc - ok
19:58:02.0766 1804	DPS             (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
19:58:02.0810 1804	DPS - ok
19:58:02.0870 1804	drmkaud         (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
19:58:02.0898 1804	drmkaud - ok
19:58:02.0988 1804	DXGKrnl         (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
19:58:03.0009 1804	DXGKrnl - ok
19:58:03.0039 1804	EagleX64 - ok
19:58:03.0077 1804	EapHost         (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
19:58:03.0121 1804	EapHost - ok
19:58:03.0334 1804	ebdrv           (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
19:58:03.0436 1804	ebdrv - ok
19:58:03.0565 1804	EFS             (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
19:58:03.0608 1804	EFS - ok
19:58:03.0702 1804	ehRecvr         (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
19:58:03.0739 1804	ehRecvr - ok
19:58:03.0771 1804	ehSched         (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
19:58:03.0782 1804	ehSched - ok
19:58:03.0916 1804	elxstor         (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
19:58:03.0931 1804	elxstor - ok
19:58:03.0983 1804	ErrDev          (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
19:58:04.0003 1804	ErrDev - ok
19:58:04.0093 1804	ETD             (42b4d3d746b3625ef42233c3897e1f68) C:\Windows\system32\DRIVERS\ETD.sys
19:58:04.0104 1804	ETD - ok
19:58:04.0187 1804	EventSystem     (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
19:58:04.0253 1804	EventSystem - ok
19:58:04.0311 1804	ewusbmbb - ok
19:58:04.0339 1804	ewusbnet - ok
19:58:04.0351 1804	ew_hwusbdev - ok
19:58:04.0411 1804	exfat           (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
19:58:04.0436 1804	exfat - ok
19:58:04.0473 1804	fastfat         (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
19:58:04.0499 1804	fastfat - ok
19:58:04.0572 1804	Fax             (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
19:58:04.0618 1804	Fax - ok
19:58:04.0667 1804	fdc             (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
19:58:04.0686 1804	fdc - ok
19:58:04.0717 1804	fdPHost         (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
19:58:04.0765 1804	fdPHost - ok
19:58:04.0790 1804	FDResPub        (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
19:58:04.0838 1804	FDResPub - ok
19:58:04.0884 1804	FileInfo        (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
19:58:04.0893 1804	FileInfo - ok
19:58:04.0897 1804	Filetrace       (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
19:58:04.0921 1804	Filetrace - ok
19:58:05.0057 1804	FLEXnet Licensing Service 64 (64ab6f28047744b9b19c97459c2ab31b) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
19:58:05.0083 1804	FLEXnet Licensing Service 64 - ok
19:58:05.0297 1804	flpydisk        (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
19:58:05.0309 1804	flpydisk - ok
19:58:05.0359 1804	FltMgr          (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
19:58:05.0371 1804	FltMgr - ok
19:58:05.0453 1804	FontCache       (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
19:58:05.0503 1804	FontCache - ok
19:58:05.0602 1804	FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:58:05.0609 1804	FontCache3.0.0.0 - ok
19:58:05.0655 1804	FsDepends       (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
19:58:05.0664 1804	FsDepends - ok
19:58:05.0692 1804	Fs_Rec          (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
19:58:05.0700 1804	Fs_Rec - ok
19:58:05.0752 1804	fvevol          (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
19:58:05.0765 1804	fvevol - ok
19:58:05.0811 1804	gagp30kx        (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
19:58:05.0820 1804	gagp30kx - ok
19:58:05.0917 1804	GGSAFERDriver - ok
19:58:06.0049 1804	gogoc           (81c8557efb76328a2f6c303bab0f51c3) C:\Program Files\gogo6\gogoCLIENT\gogoc.exe
19:58:06.0061 1804	gogoc - ok
19:58:06.0096 1804	gogoTunnelDevice (65961d99898eb8b829d1bbd112c762c2) C:\Windows\system32\DRIVERS\gogotun.sys
19:58:06.0105 1804	gogoTunnelDevice - ok
19:58:06.0177 1804	gpsvc           (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
19:58:06.0210 1804	gpsvc - ok
19:58:06.0247 1804	hcw85cir        (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
19:58:06.0273 1804	hcw85cir - ok
19:58:06.0356 1804	HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
19:58:06.0396 1804	HdAudAddService - ok
19:58:06.0449 1804	HDAudBus        (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
19:58:06.0487 1804	HDAudBus - ok
19:58:06.0544 1804	HidBatt         (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
19:58:06.0566 1804	HidBatt - ok
19:58:06.0583 1804	HidBth          (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
19:58:06.0605 1804	HidBth - ok
19:58:06.0667 1804	HidIr           (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
19:58:06.0691 1804	HidIr - ok
19:58:06.0723 1804	hidserv         (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
19:58:06.0766 1804	hidserv - ok
19:58:06.0830 1804	HidUsb          (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
19:58:06.0840 1804	HidUsb - ok
19:58:06.0872 1804	hkmsvc          (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
19:58:06.0926 1804	hkmsvc - ok
19:58:06.0995 1804	HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
19:58:07.0058 1804	HomeGroupListener - ok
19:58:07.0124 1804	HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
19:58:07.0171 1804	HomeGroupProvider - ok
19:58:07.0230 1804	HpSAMD          (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
19:58:07.0239 1804	HpSAMD - ok
19:58:07.0358 1804	HTTP            (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
19:58:07.0427 1804	HTTP - ok
19:58:07.0445 1804	huawei_enumerator - ok
19:58:07.0471 1804	hwdatacard - ok
19:58:07.0508 1804	hwpolicy        (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
19:58:07.0516 1804	hwpolicy - ok
19:58:07.0520 1804	hwusbdev - ok
19:58:07.0554 1804	i8042prt        (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
19:58:07.0564 1804	i8042prt - ok
19:58:07.0619 1804	iaStor          (c224331a54571c8c9162f7714400bbbd) C:\Windows\system32\DRIVERS\iaStor.sys
19:58:07.0631 1804	iaStor - ok
19:58:07.0691 1804	iaStorV         (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
19:58:07.0705 1804	iaStorV - ok
19:58:07.0745 1804	IDMWFP          (f1458110073ad3b6c5dc3c592a36d1d0) C:\Windows\system32\DRIVERS\idmwfp.sys
19:58:07.0755 1804	IDMWFP - ok
19:58:07.0875 1804	idsvc           (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
19:58:07.0895 1804	idsvc - ok
19:58:08.0558 1804	igfx            (276ee9cdab16c50e1df0e4cefa882f5f) C:\Windows\system32\DRIVERS\igdkmd64.sys
19:58:08.0855 1804	igfx - ok
19:58:09.0015 1804	iirsp           (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
19:58:09.0024 1804	iirsp - ok
19:58:09.0097 1804	IKEEXT          (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
19:58:09.0157 1804	IKEEXT - ok
19:58:09.0424 1804	IntcAzAudAddService (e83bb47c3446f0497019de7fd6c6a86f) C:\Windows\system32\drivers\RTKVHD64.sys
19:58:09.0532 1804	IntcAzAudAddService - ok
19:58:09.0684 1804	IntcDAud        (6c9fffeca9fed31347d211c5d1ffbd2d) C:\Windows\system32\DRIVERS\IntcDAud.sys
19:58:09.0719 1804	IntcDAud - ok
19:58:09.0827 1804	Intel(R) Capability Licensing Service Interface (2d66067c7a8a0112156bcd1c0baa7042) C:\Program Files\Intel\iCLS Client\HeciServer.exe
19:58:09.0839 1804	Intel(R) Capability Licensing Service Interface - ok
19:58:09.0939 1804	Intel(R) ME Service (92db7d70d029c6c8584ebfabf18f8d3c) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
19:58:09.0948 1804	Intel(R) ME Service - ok
19:58:09.0992 1804	intelide        (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
19:58:10.0000 1804	intelide - ok
19:58:10.0045 1804	intelppm        (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
19:58:10.0076 1804	intelppm - ok
19:58:10.0121 1804	IPBusEnum       (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
19:58:10.0167 1804	IPBusEnum - ok
19:58:10.0211 1804	IpFilterDriver  (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:58:10.0256 1804	IpFilterDriver - ok
19:58:10.0368 1804	iphlpsvc        (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
19:58:10.0418 1804	iphlpsvc - ok
19:58:10.0461 1804	IPMIDRV         (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
19:58:10.0493 1804	IPMIDRV - ok
19:58:10.0550 1804	IPNAT           (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
19:58:10.0592 1804	IPNAT - ok
19:58:10.0622 1804	IRENUM          (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
19:58:10.0660 1804	IRENUM - ok
19:58:10.0716 1804	isapnp          (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
19:58:10.0724 1804	isapnp - ok
19:58:10.0771 1804	iScsiPrt        (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
19:58:10.0783 1804	iScsiPrt - ok
19:58:10.0892 1804	ISODrive        (9c6f3f69163133fb8e56ac4a6e163452) C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys
19:58:10.0902 1804	ISODrive - ok
19:58:10.0942 1804	iusb3hcs        (6bcef45131c8b8e1c558be540b190b3c) C:\Windows\system32\DRIVERS\iusb3hcs.sys
19:58:10.0951 1804	iusb3hcs - ok
19:58:10.0997 1804	iusb3hub        (f080eada8715f811b58bd35bb774f2f9) C:\Windows\system32\DRIVERS\iusb3hub.sys
19:58:11.0009 1804	iusb3hub - ok
19:58:11.0064 1804	iusb3xhc        (0f1756d9396740f053221fa6260fce66) C:\Windows\system32\DRIVERS\iusb3xhc.sys
19:58:11.0082 1804	iusb3xhc - ok
19:58:11.0188 1804	jhi_service     (166fc0b36842135bc2d3c32df70ed0d6) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
19:58:11.0197 1804	jhi_service - ok
19:58:11.0211 1804	jrdusbser - ok
19:58:11.0250 1804	kbdclass        (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
19:58:11.0259 1804	kbdclass - ok
19:58:11.0290 1804	kbdhid          (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
19:58:11.0321 1804	kbdhid - ok
19:58:11.0375 1804	kbfiltr         (e63ef8c3271d014f14e2469ce75fecb4) C:\Windows\system32\DRIVERS\kbfiltr.sys
19:58:11.0383 1804	kbfiltr - ok
19:58:11.0421 1804	KeyIso          (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
19:58:11.0431 1804	KeyIso - ok
19:58:11.0453 1804	KSecDD          (97a7070aea4c058b6418519e869a63b4) C:\Windows\system32\Drivers\ksecdd.sys
19:58:11.0462 1804	KSecDD - ok
19:58:11.0490 1804	KSecPkg         (26c43a7c2862447ec59deda188d1da07) C:\Windows\system32\Drivers\ksecpkg.sys
19:58:11.0500 1804	KSecPkg - ok
19:58:11.0535 1804	ksthunk         (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
19:58:11.0587 1804	ksthunk - ok
19:58:11.0665 1804	KtmRm           (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
19:58:11.0707 1804	KtmRm - ok
19:58:11.0768 1804	LanmanServer    (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
19:58:11.0814 1804	LanmanServer - ok
19:58:11.0866 1804	LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
19:58:11.0916 1804	LanmanWorkstation - ok
19:58:12.0076 1804	LkCitadelServer (20cdb07017497c94a0bad253c4bafcbc) C:\Windows\SysWOW64\lkcitdl.exe
19:58:12.0094 1804	LkCitadelServer - ok
19:58:12.0155 1804	lkClassAds      (99121fd465f7a65ac15eec3b4034c1e4) C:\Windows\SysWOW64\lkads.exe
19:58:12.0164 1804	lkClassAds - ok
19:58:12.0198 1804	lkTimeSync      (19c8d1b03a5229cbbe1037425701f55f) C:\Windows\SysWOW64\lktsrv.exe
19:58:12.0206 1804	lkTimeSync - ok
19:58:12.0341 1804	lltdio          (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
19:58:12.0365 1804	lltdio - ok
19:58:12.0421 1804	lltdsvc         (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
19:58:12.0463 1804	lltdsvc - ok
19:58:12.0513 1804	lmhosts         (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
19:58:12.0538 1804	lmhosts - ok
19:58:12.0655 1804	LMS             (c56e64ba70dc822b84d100a6f8d690d3) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
19:58:12.0666 1804	LMS - ok
19:58:12.0722 1804	LSI_FC          (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
19:58:12.0732 1804	LSI_FC - ok
19:58:12.0754 1804	LSI_SAS         (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
19:58:12.0763 1804	LSI_SAS - ok
19:58:12.0774 1804	LSI_SAS2        (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
19:58:12.0783 1804	LSI_SAS2 - ok
19:58:12.0845 1804	LSI_SCSI        (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
19:58:12.0855 1804	LSI_SCSI - ok
19:58:12.0905 1804	luafv           (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
19:58:12.0952 1804	luafv - ok
19:58:12.0982 1804	massfilter - ok
19:58:13.0014 1804	MBAMProtector   (dc8490812a3b72811ae534f423b4c206) C:\Windows\system32\drivers\mbam.sys
19:58:13.0022 1804	MBAMProtector - ok
19:58:13.0100 1804	MBAMService     (43683e970f008c93c9429ef428147a54) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
19:58:13.0113 1804	MBAMService - ok
19:58:13.0169 1804	mcdbus          (79d51e7f5926e8ce1b3ebecebae28cff) C:\Windows\system32\DRIVERS\mcdbus.sys
19:58:13.0181 1804	mcdbus - ok
19:58:13.0219 1804	Mcx2Svc         (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
19:58:13.0257 1804	Mcx2Svc - ok
19:58:13.0275 1804	megasas         (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
19:58:13.0283 1804	megasas - ok
19:58:13.0357 1804	MegaSR          (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
19:58:13.0369 1804	MegaSR - ok
19:58:13.0421 1804	MEIx64          (6b01b7414a105b9e51652089a03027cf) C:\Windows\system32\DRIVERS\HECIx64.sys
19:58:13.0429 1804	MEIx64 - ok
19:58:13.0507 1804	Microsoft SharePoint Workspace Audit Service - ok
19:58:13.0523 1804	MMCSS           (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
19:58:13.0567 1804	MMCSS - ok
19:58:13.0595 1804	Modem           (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
19:58:13.0646 1804	Modem - ok
19:58:13.0685 1804	monitor         (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
19:58:13.0721 1804	monitor - ok
19:58:13.0755 1804	mouclass        (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
19:58:13.0763 1804	mouclass - ok
19:58:13.0817 1804	mouhid          (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
19:58:13.0850 1804	mouhid - ok
19:58:13.0902 1804	mountmgr        (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
19:58:13.0911 1804	mountmgr - ok
19:58:13.0983 1804	MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
19:58:13.0992 1804	MozillaMaintenance - ok
19:58:14.0026 1804	mpio            (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
19:58:14.0036 1804	mpio - ok
19:58:14.0058 1804	mpsdrv          (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
19:58:14.0083 1804	mpsdrv - ok
19:58:14.0147 1804	MpsSvc          (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
19:58:14.0206 1804	MpsSvc - ok
19:58:14.0252 1804	MRxDAV          (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
19:58:14.0284 1804	MRxDAV - ok
19:58:14.0336 1804	mrxsmb          (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
19:58:14.0373 1804	mrxsmb - ok
19:58:14.0417 1804	mrxsmb10        (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:58:14.0453 1804	mrxsmb10 - ok
19:58:14.0497 1804	mrxsmb20        (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:58:14.0534 1804	mrxsmb20 - ok
19:58:14.0573 1804	msahci          (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
19:58:14.0582 1804	msahci - ok
19:58:14.0611 1804	msdsm           (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
19:58:14.0621 1804	msdsm - ok
19:58:14.0654 1804	MSDTC           (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
19:58:14.0689 1804	MSDTC - ok
19:58:14.0723 1804	Msfs            (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
19:58:14.0748 1804	Msfs - ok
19:58:14.0768 1804	mshidkmdf       (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
19:58:14.0819 1804	mshidkmdf - ok
19:58:14.0864 1804	msisadrv        (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
19:58:14.0872 1804	msisadrv - ok
19:58:14.0918 1804	MSiSCSI         (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
19:58:14.0961 1804	MSiSCSI - ok
19:58:14.0963 1804	msiserver - ok
19:58:15.0024 1804	MSKSSRV         (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
19:58:15.0092 1804	MSKSSRV - ok
19:58:15.0121 1804	MSPCLOCK        (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
19:58:15.0179 1804	MSPCLOCK - ok
19:58:15.0198 1804	MSPQM           (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
19:58:15.0267 1804	MSPQM - ok
19:58:15.0326 1804	MsRPC           (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
19:58:15.0339 1804	MsRPC - ok
19:58:15.0399 1804	mssmbios        (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
19:58:15.0407 1804	mssmbios - ok
19:58:15.0455 1804	MSTEE           (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
19:58:15.0493 1804	MSTEE - ok
19:58:15.0508 1804	MTConfig        (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
19:58:15.0519 1804	MTConfig - ok
19:58:15.0549 1804	Mup             (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
19:58:15.0558 1804	Mup - ok
19:58:15.0600 1804	napagent        (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
19:58:15.0651 1804	napagent - ok
19:58:15.0725 1804	NativeWifiP     (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
19:58:15.0764 1804	NativeWifiP - ok
19:58:15.0863 1804	NDIS            (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
19:58:15.0884 1804	NDIS - ok
19:58:15.0913 1804	NdisCap         (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
19:58:15.0947 1804	NdisCap - ok
19:58:15.0977 1804	NdisTapi        (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
19:58:16.0001 1804	NdisTapi - ok
19:58:16.0036 1804	Ndisuio         (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
19:58:16.0085 1804	Ndisuio - ok
19:58:16.0132 1804	NdisWan         (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
19:58:16.0183 1804	NdisWan - ok
19:58:16.0227 1804	NDProxy         (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
19:58:16.0250 1804	NDProxy - ok
19:58:16.0271 1804	NetBIOS         (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
19:58:16.0321 1804	NetBIOS - ok
19:58:16.0380 1804	NetBT           (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
19:58:16.0423 1804	NetBT - ok
19:58:16.0477 1804	Netlogon        (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
19:58:16.0487 1804	Netlogon - ok
19:58:16.0547 1804	Netman          (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
19:58:16.0603 1804	Netman - ok
19:58:16.0706 1804	NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:58:16.0715 1804	NetMsmqActivator - ok
19:58:16.0726 1804	NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:58:16.0734 1804	NetPipeActivator - ok
19:58:16.0795 1804	netprofm        (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
19:58:16.0844 1804	netprofm - ok
19:58:16.0846 1804	NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:58:16.0854 1804	NetTcpActivator - ok
19:58:16.0857 1804	NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:58:16.0864 1804	NetTcpPortSharing - ok
19:58:16.0940 1804	nfrd960         (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
19:58:16.0949 1804	nfrd960 - ok
19:58:17.0045 1804	NIDomainService (ceefde8face887d6dda664940404ea58) C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe
19:58:17.0057 1804	NIDomainService - ok
19:58:17.0142 1804	NILM License Manager (b17093b9a2c5f874975c732c1a8ba771) C:\Program Files (x86)\National Instruments\Shared\License Manager\Bin\lmgrd.exe
19:58:17.0177 1804	NILM License Manager ( UnsignedFile.Multi.Generic ) - warning
19:58:17.0177 1804	NILM License Manager - detected UnsignedFile.Multi.Generic (1)
19:58:17.0276 1804	niSvcLoc - ok
19:58:17.0383 1804	NitroDriverReadSpool2 (cfcc35d7bc10522b4be56eb9869541d1) C:\Program Files\Common Files\Nitro PDF\Professional\7.0\NitroPDFDriverService2x64.exe
19:58:17.0392 1804	NitroDriverReadSpool2 - ok
19:58:17.0497 1804	NlaSvc          (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
19:58:17.0546 1804	NlaSvc - ok
19:58:17.0594 1804	nlsX86cc        (3bc430cf68bc9ed111042bde2ddd72fa) C:\Windows\SysWOW64\NLSSRV32.EXE
19:58:17.0601 1804	nlsX86cc - ok
19:58:17.0655 1804	NPF             (351533acc2a069b94e80bbfc177e8fdf) C:\Windows\system32\drivers\npf.sys
19:58:17.0664 1804	NPF - ok
19:58:17.0684 1804	Npfs            (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
19:58:17.0708 1804	Npfs - ok
19:58:17.0732 1804	nsi             (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
19:58:17.0776 1804	nsi - ok
19:58:17.0812 1804	nsiproxy        (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
19:58:17.0863 1804	nsiproxy - ok
19:58:17.0983 1804	Ntfs            (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
19:58:18.0013 1804	Ntfs - ok
19:58:18.0120 1804	Null            (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
19:58:18.0144 1804	Null - ok
19:58:18.0807 1804	nvlddmkm        (6f47f63075fd4c4522cc2f15c5ac7a06) C:\Windows\system32\DRIVERS\nvlddmkm.sys
19:58:19.0120 1804	nvlddmkm - ok
19:58:19.0234 1804	nvpciflt        (445a5bd14480a578615db4f4ccdcad84) C:\Windows\system32\DRIVERS\nvpciflt.sys
19:58:19.0243 1804	nvpciflt - ok
19:58:19.0293 1804	nvraid          (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
19:58:19.0303 1804	nvraid - ok
19:58:19.0334 1804	nvstor          (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
19:58:19.0344 1804	nvstor - ok
19:58:19.0412 1804	nvsvc           (783215d9840e74b05f91a7d55dc03210) C:\Windows\system32\nvvsvc.exe
19:58:19.0433 1804	nvsvc - ok
19:58:19.0616 1804	nvUpdatusService (6aab18ad52b106230b247e0d9e20b97e) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
19:58:19.0648 1804	nvUpdatusService - ok
19:58:19.0795 1804	nv_agp          (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
19:58:19.0805 1804	nv_agp - ok
19:58:19.0859 1804	ohci1394        (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
19:58:19.0885 1804	ohci1394 - ok
19:58:19.0986 1804	ose64           (937728f2a15f941b372c89acb9cef1af) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:58:19.0996 1804	ose64 - ok
19:58:20.0279 1804	osppsvc         (31dc8d825d2c4eb0ff7ed021bb92c541) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
19:58:20.0401 1804	osppsvc - ok
19:58:20.0521 1804	p2pimsvc        (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
19:58:20.0535 1804	p2pimsvc - ok
19:58:20.0572 1804	p2psvc          (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
19:58:20.0588 1804	p2psvc - ok
19:58:20.0651 1804	Parport         (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
19:58:20.0662 1804	Parport - ok
19:58:20.0705 1804	partmgr         (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
19:58:20.0714 1804	partmgr - ok
19:58:20.0750 1804	PcaSvc          (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
19:58:20.0783 1804	PcaSvc - ok
19:58:20.0827 1804	pci             (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
19:58:20.0838 1804	pci - ok
19:58:20.0876 1804	pciide          (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
19:58:20.0884 1804	pciide - ok
19:58:20.0949 1804	pcmcia          (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
19:58:20.0960 1804	pcmcia - ok
19:58:20.0987 1804	pcw             (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
19:58:20.0995 1804	pcw - ok
19:58:21.0042 1804	PEAUTH          (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
19:58:21.0092 1804	PEAUTH - ok
19:58:21.0196 1804	PeerDistSvc     (b9b0a4299dd2d76a4243f75fd54dc680) C:\Windows\system32\peerdistsvc.dll
19:58:21.0240 1804	PeerDistSvc - ok
19:58:21.0360 1804	PerfHost        (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
19:58:21.0391 1804	PerfHost - ok
19:58:21.0559 1804	pla             (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
19:58:21.0618 1804	pla - ok
19:58:21.0698 1804	PlugPlay        (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
19:58:21.0731 1804	PlugPlay - ok
19:58:21.0758 1804	PNRPAutoReg     (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
19:58:21.0789 1804	PNRPAutoReg - ok
19:58:21.0833 1804	PNRPsvc         (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
19:58:21.0846 1804	PNRPsvc - ok
19:58:21.0892 1804	PolicyAgent     (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
19:58:21.0947 1804	PolicyAgent - ok
19:58:21.0991 1804	Power           (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
19:58:22.0041 1804	Power - ok
19:58:22.0111 1804	PptpMiniport    (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
19:58:22.0160 1804	PptpMiniport - ok
19:58:22.0204 1804	Processor       (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
19:58:22.0226 1804	Processor - ok
19:58:22.0277 1804	ProfSvc         (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
19:58:22.0289 1804	ProfSvc - ok
19:58:22.0309 1804	ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
19:58:22.0319 1804	ProtectedStorage - ok
19:58:22.0364 1804	Psched          (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
19:58:22.0414 1804	Psched - ok
19:58:22.0477 1804	pwdrvio         (d8589a43b352e7f2317194c98447149f) C:\Windows\system32\pwdrvio.sys
19:58:22.0487 1804	pwdrvio - ok
19:58:22.0539 1804	pwdspio         (4b8fda635f4d2e7d638b2b3817b5afc8) C:\Windows\system32\pwdspio.sys
19:58:22.0550 1804	pwdspio - ok
19:58:22.0649 1804	ql2300          (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
19:58:22.0678 1804	ql2300 - ok
19:58:22.0836 1804	ql40xx          (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
19:58:22.0845 1804	ql40xx - ok
19:58:22.0890 1804	QWAVE           (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
19:58:22.0906 1804	QWAVE - ok
19:58:22.0921 1804	QWAVEdrv        (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
19:58:22.0954 1804	QWAVEdrv - ok
19:58:23.0011 1804	RasAcd          (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
19:58:23.0051 1804	RasAcd - ok
19:58:23.0089 1804	RasAgileVpn     (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
19:58:23.0140 1804	RasAgileVpn - ok
19:58:23.0186 1804	RasAuto         (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
19:58:23.0239 1804	RasAuto - ok
19:58:23.0287 1804	Rasl2tp         (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
19:58:23.0336 1804	Rasl2tp - ok
19:58:23.0411 1804	RasMan          (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
19:58:23.0459 1804	RasMan - ok
19:58:23.0509 1804	RasPppoe        (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
19:58:23.0558 1804	RasPppoe - ok
19:58:23.0588 1804	RasSstp         (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
19:58:23.0632 1804	RasSstp - ok
19:58:23.0674 1804	rdbss           (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
19:58:23.0723 1804	rdbss - ok
19:58:23.0759 1804	rdpbus          (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
19:58:23.0789 1804	rdpbus - ok
19:58:23.0823 1804	RDPCDD          (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
19:58:23.0874 1804	RDPCDD - ok
19:58:23.0925 1804	RDPDR           (1b6163c503398b23ff8b939c67747683) C:\Windows\system32\drivers\rdpdr.sys
19:58:23.0937 1804	RDPDR - ok
19:58:23.0954 1804	RDPENCDD        (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
19:58:24.0000 1804	RDPENCDD - ok
19:58:24.0033 1804	RDPREFMP        (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
19:58:24.0057 1804	RDPREFMP - ok
19:58:24.0095 1804	RdpVideoMiniport (70cba1a0c98600a2aa1863479b35cb90) C:\Windows\system32\drivers\rdpvideominiport.sys
19:58:24.0126 1804	RdpVideoMiniport - ok
19:58:24.0169 1804	RDPWD           (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
19:58:24.0181 1804	RDPWD - ok
19:58:24.0232 1804	rdyboost        (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
19:58:24.0243 1804	rdyboost - ok
19:58:24.0278 1804	RemoteAccess    (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
19:58:24.0331 1804	RemoteAccess - ok
19:58:24.0372 1804	RemoteRegistry  (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
19:58:24.0427 1804	RemoteRegistry - ok
19:58:24.0481 1804	RFCOMM          (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys
19:58:24.0521 1804	RFCOMM - ok
19:58:24.0620 1804	rpcapd          (b60f58f175de20a6739194e85b035178) C:\Program Files (x86)\WinPcap\rpcapd.exe
19:58:24.0628 1804	rpcapd - ok
19:58:24.0660 1804	RpcEptMapper    (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
19:58:24.0712 1804	RpcEptMapper - ok
19:58:24.0746 1804	RpcLocator      (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
19:58:24.0757 1804	RpcLocator - ok
19:58:24.0810 1804	RpcSs           (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
19:58:24.0837 1804	RpcSs - ok
19:58:24.0890 1804	RSBASTOR        (7d9a999ccbb82020321bccfeb9bb3c91) C:\Windows\system32\DRIVERS\RtsBaStor.sys
19:58:24.0902 1804	RSBASTOR - ok
19:58:24.0948 1804	rspndr          (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
19:58:24.0972 1804	rspndr - ok
19:58:25.0041 1804	RTL8167         (9140db0911de035fed0a9a77a2d156ea) C:\Windows\system32\DRIVERS\Rt64win7.sys
19:58:25.0056 1804	RTL8167 - ok
19:58:25.0084 1804	s3cap           (e60c0a09f997826c7627b244195ab581) C:\Windows\system32\drivers\vms3cap.sys
19:58:25.0116 1804	s3cap - ok
19:58:25.0155 1804	SamSs           (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
19:58:25.0165 1804	SamSs - ok
19:58:25.0200 1804	sbp2port        (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
19:58:25.0209 1804	sbp2port - ok
19:58:25.0247 1804	SCardSvr        (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
19:58:25.0300 1804	SCardSvr - ok
19:58:25.0336 1804	scfilter        (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
19:58:25.0380 1804	scfilter - ok
19:58:25.0472 1804	Schedule        (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
19:58:25.0508 1804	Schedule - ok
19:58:25.0537 1804	SCPolicySvc     (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
19:58:25.0560 1804	SCPolicySvc - ok
19:58:25.0587 1804	SDRSVC          (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
19:58:25.0617 1804	SDRSVC - ok
19:58:25.0692 1804	secdrv          (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
19:58:25.0741 1804	secdrv - ok
19:58:25.0766 1804	seclogon        (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
19:58:25.0818 1804	seclogon - ok
19:58:25.0856 1804	SENS            (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
19:58:25.0881 1804	SENS - ok
19:58:25.0895 1804	SensrSvc        (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
19:58:25.0906 1804	SensrSvc - ok
19:58:25.0949 1804	Serenum         (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
19:58:25.0972 1804	Serenum - ok
19:58:25.0995 1804	Serial          (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
19:58:26.0017 1804	Serial - ok
19:58:26.0077 1804	sermouse        (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
19:58:26.0104 1804	sermouse - ok
19:58:26.0152 1804	SessionEnv      (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
19:58:26.0177 1804	SessionEnv - ok
19:58:26.0208 1804	sffdisk         (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
19:58:26.0232 1804	sffdisk - ok
19:58:26.0252 1804	sffp_mmc        (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
19:58:26.0275 1804	sffp_mmc - ok
19:58:26.0297 1804	sffp_sd         (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
19:58:26.0335 1804	sffp_sd - ok
19:58:26.0395 1804	sfloppy         (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
19:58:26.0405 1804	sfloppy - ok
19:58:26.0470 1804	SharedAccess    (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
19:58:26.0519 1804	SharedAccess - ok
19:58:26.0569 1804	ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
19:58:26.0623 1804	ShellHWDetection - ok
19:58:26.0673 1804	SiSRaid2        (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
19:58:26.0682 1804	SiSRaid2 - ok
19:58:26.0739 1804	SiSRaid4        (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
19:58:26.0748 1804	SiSRaid4 - ok
19:58:26.0987 1804	Skype C2C Service (0f97e7a47a52f4a36969f0fc319654c2) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
19:58:27.0027 1804	Skype C2C Service - ok
19:58:27.0167 1804	SkypeUpdate     (ddaa5f4a6b958fc313ebd02dd925752f) C:\Program Files (x86)\Skype\Updater\Updater.exe
19:58:27.0175 1804	SkypeUpdate - ok
19:58:27.0344 1804	Smb             (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
19:58:27.0383 1804	Smb - ok
19:58:27.0427 1804	SNMPTRAP        (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
19:58:27.0440 1804	SNMPTRAP - ok
19:58:27.0464 1804	spldr           (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
19:58:27.0472 1804	spldr - ok
19:58:27.0538 1804	Spooler         (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
19:58:27.0569 1804	Spooler - ok
19:58:27.0744 1804	sppsvc          (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
19:58:27.0865 1804	sppsvc - ok
19:58:27.0982 1804	sppuinotify     (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
19:58:28.0027 1804	sppuinotify - ok
19:58:28.0098 1804	srv             (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
19:58:28.0133 1804	srv - ok
19:58:28.0192 1804	srv2            (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
19:58:28.0205 1804	srv2 - ok
19:58:28.0241 1804	srvnet          (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
19:58:28.0277 1804	srvnet - ok
19:58:28.0323 1804	ssadbus         (8f8324ed1de63ffc7b1a02cd2d963c72) C:\Windows\system32\DRIVERS\ssadbus.sys
19:58:28.0362 1804	ssadbus - ok
19:58:28.0403 1804	ssadmdfl        (58221efcb74167b73667f0024c661ce0) C:\Windows\system32\DRIVERS\ssadmdfl.sys
19:58:28.0439 1804	ssadmdfl - ok
19:58:28.0489 1804	ssadmdm         (4da7c71bfac5ad71255b7e4cab980163) C:\Windows\system32\DRIVERS\ssadmdm.sys
19:58:28.0526 1804	ssadmdm - ok
19:58:28.0588 1804	ssadserd        (d33d1bd3ec0e766211a234f56a12726d) C:\Windows\system32\DRIVERS\ssadserd.sys
19:58:28.0617 1804	ssadserd - ok
19:58:28.0662 1804	sscdbus         (ed161b91fdf7eaa39469d72d463d5f4e) C:\Windows\system32\DRIVERS\sscdbus.sys
19:58:28.0672 1804	sscdbus - ok
19:58:28.0680 1804	sscdmdfl        (4cb09e77593dbd8d7af33b37375ca715) C:\Windows\system32\DRIVERS\sscdmdfl.sys
19:58:28.0688 1804	sscdmdfl - ok
19:58:28.0710 1804	sscdmdm         (c7b4cf53497a6e5363f3439427663882) C:\Windows\system32\DRIVERS\sscdmdm.sys
19:58:28.0720 1804	sscdmdm - ok
19:58:28.0769 1804	SSDPSRV         (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
19:58:28.0816 1804	SSDPSRV - ok
19:58:28.0850 1804	SstpSvc         (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
19:58:28.0876 1804	SstpSvc - ok
19:58:28.0929 1804	ssudmdm         (855335bf5792e56164f98c012e3d92dd) C:\Windows\system32\DRIVERS\ssudmdm.sys
19:58:28.0940 1804	ssudmdm - ok
19:58:28.0965 1804	ssudserd        (5347940cdd29b66c0fc1747274ba5ff0) C:\Windows\system32\DRIVERS\ssudserd.sys
19:58:28.0976 1804	ssudserd - ok
19:58:29.0037 1804	Steam Client Service - ok
19:58:29.0074 1804	stexstor        (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
19:58:29.0083 1804	stexstor - ok
19:58:29.0169 1804	stisvc          (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
19:58:29.0212 1804	stisvc - ok
19:58:29.0249 1804	storflt         (7785dc213270d2fc066538daf94087e7) C:\Windows\system32\drivers\vmstorfl.sys
19:58:29.0257 1804	storflt - ok
19:58:29.0268 1804	storvsc         (d34e4943d5ac096c8edeebfd80d76e23) C:\Windows\system32\drivers\storvsc.sys
19:58:29.0277 1804	storvsc - ok
19:58:29.0300 1804	swenum          (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
19:58:29.0309 1804	swenum - ok
19:58:29.0362 1804	swprv           (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
19:58:29.0418 1804	swprv - ok
19:58:29.0446 1804	Synth3dVsc - ok
19:58:29.0564 1804	SysMain         (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
19:58:29.0621 1804	SysMain - ok
19:58:29.0725 1804	TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
19:58:29.0740 1804	TabletInputService - ok
19:58:29.0774 1804	TapiSrv         (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
19:58:29.0821 1804	TapiSrv - ok
19:58:29.0860 1804	TBS             (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
19:58:29.0906 1804	TBS - ok
19:58:30.0058 1804	Tcpip           (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
19:58:30.0092 1804	Tcpip - ok
19:58:30.0315 1804	TCPIP6          (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
19:58:30.0340 1804	TCPIP6 - ok
19:58:30.0468 1804	tcpipreg        (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
19:58:30.0491 1804	tcpipreg - ok
19:58:30.0525 1804	TDPIPE          (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
19:58:30.0547 1804	TDPIPE - ok
19:58:30.0585 1804	TDTCP           (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
19:58:30.0617 1804	TDTCP - ok
19:58:30.0663 1804	tdx             (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
19:58:30.0687 1804	tdx - ok
19:58:30.0713 1804	TermDD          (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
19:58:30.0722 1804	TermDD - ok
19:58:30.0803 1804	TermService     (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
19:58:30.0860 1804	TermService - ok
19:58:30.0899 1804	Themes          (9201be2bab8a9ff8e20d8439ae3bb04d) C:\Windows\system32\themeservice.dll
19:58:30.0928 1804	Themes ( UnsignedFile.Multi.Generic ) - warning
19:58:30.0928 1804	Themes - detected UnsignedFile.Multi.Generic (1)
19:58:30.0957 1804	THREADORDER     (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
19:58:30.0981 1804	THREADORDER - ok
19:58:31.0007 1804	TrkWks          (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
19:58:31.0033 1804	TrkWks - ok
19:58:31.0094 1804	TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
19:58:31.0119 1804	TrustedInstaller - ok
19:58:31.0138 1804	tssecsrv        (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
19:58:31.0185 1804	tssecsrv - ok
19:58:31.0222 1804	TsUsbFlt        (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
19:58:31.0232 1804	TsUsbFlt - ok
19:58:31.0244 1804	tsusbhub - ok
19:58:31.0425 1804	TuneUp.UtilitiesSvc (8dd1f81749a966ea5a96cb2d89c9670c) C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe
19:58:31.0452 1804	TuneUp.UtilitiesSvc - ok
19:58:31.0548 1804	TuneUpUtilitiesDrv (dcc94c51d27c7ec0dadeca8f64c94fcf) C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys
19:58:31.0556 1804	TuneUpUtilitiesDrv - ok
19:58:31.0691 1804	tunnel          (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
19:58:31.0736 1804	tunnel - ok
19:58:31.0790 1804	uagp35          (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
19:58:31.0799 1804	uagp35 - ok
19:58:31.0856 1804	udfs            (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
19:58:31.0906 1804	udfs - ok
19:58:31.0953 1804	UI0Detect       (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
19:58:31.0966 1804	UI0Detect - ok
19:58:32.0012 1804	uliagpkx        (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
19:58:32.0021 1804	uliagpkx - ok
19:58:32.0068 1804	umbus           (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
19:58:32.0097 1804	umbus - ok
19:58:32.0154 1804	UmPass          (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
19:58:32.0178 1804	UmPass - ok
19:58:32.0224 1804	UmRdpService    (a293dcd756d04d8492a750d03b9a297c) C:\Windows\System32\umrdp.dll
19:58:32.0256 1804	UmRdpService - ok
19:58:32.0360 1804	UNS             (0f9e1bc7e2bea1a4108ec9736cf0c2d9) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
19:58:32.0373 1804	UNS - ok
19:58:32.0409 1804	upnphost        (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
19:58:32.0456 1804	upnphost - ok
19:58:32.0510 1804	usbccgp         (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
19:58:32.0520 1804	usbccgp - ok
19:58:32.0563 1804	usbcir          (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
19:58:32.0584 1804	usbcir - ok
19:58:32.0632 1804	usbehci         (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
19:58:32.0664 1804	usbehci - ok
19:58:32.0725 1804	usbhub          (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
19:58:32.0764 1804	usbhub - ok
19:58:32.0802 1804	usbohci         (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
19:58:32.0830 1804	usbohci - ok
19:58:32.0882 1804	usbprint        (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
19:58:32.0906 1804	usbprint - ok
19:58:32.0967 1804	usbscan         (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
19:58:32.0986 1804	usbscan - ok
19:58:33.0034 1804	USBSTOR         (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:58:33.0071 1804	USBSTOR - ok
19:58:33.0112 1804	usbuhci         (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
19:58:33.0150 1804	usbuhci - ok
19:58:33.0216 1804	usbvideo        (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys
19:58:33.0230 1804	usbvideo - ok
19:58:33.0247 1804	UxSms           (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
19:58:33.0300 1804	UxSms - ok
19:58:33.0365 1804	UxTuneUp        (1ca2321789a7188a36f376905daf9c0a) C:\Windows\System32\uxtuneup.dll
19:58:33.0373 1804	UxTuneUp - ok
19:58:33.0399 1804	VaultSvc        (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
19:58:33.0409 1804	VaultSvc - ok
19:58:33.0462 1804	VBoxDrv         (ed492636ee26ec43daa4baa7ef0da7ad) C:\Windows\system32\DRIVERS\VBoxDrv.sys
19:58:33.0474 1804	VBoxDrv - ok
19:58:33.0527 1804	VBoxNetAdp      (58e2365e7fd880624f648c63c5d22009) C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
19:58:33.0538 1804	VBoxNetAdp - ok
19:58:33.0580 1804	VBoxNetFlt      (5160910ce602710d7e87f1b35487e7db) C:\Windows\system32\DRIVERS\VBoxNetFlt.sys
19:58:33.0591 1804	VBoxNetFlt - ok
19:58:33.0638 1804	VBoxUSBMon      (99906a079a6c24d4b8b0dbed02b7869b) C:\Windows\system32\DRIVERS\VBoxUSBMon.sys
19:58:33.0647 1804	VBoxUSBMon - ok
19:58:33.0697 1804	vdrvroot        (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
19:58:33.0706 1804	vdrvroot - ok
19:58:33.0765 1804	vds             (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
19:58:33.0796 1804	vds - ok
19:58:33.0842 1804	vga             (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
19:58:33.0854 1804	vga - ok
19:58:33.0881 1804	VgaSave         (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
19:58:33.0929 1804	VgaSave - ok
19:58:33.0931 1804	VGPU - ok
19:58:33.0988 1804	vhdmp           (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
19:58:33.0999 1804	vhdmp - ok
19:58:34.0037 1804	viaide          (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
19:58:34.0045 1804	viaide - ok
19:58:34.0081 1804	vmbus           (86ea3e79ae350fea5331a1303054005f) C:\Windows\system32\drivers\vmbus.sys
19:58:34.0092 1804	vmbus - ok
19:58:34.0103 1804	VMBusHID        (7de90b48f210d29649380545db45a187) C:\Windows\system32\drivers\VMBusHID.sys
19:58:34.0140 1804	VMBusHID - ok
19:58:34.0182 1804	volmgr          (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
19:58:34.0191 1804	volmgr - ok
19:58:34.0233 1804	volmgrx         (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
19:58:34.0246 1804	volmgrx - ok
19:58:34.0285 1804	volsnap         (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
19:58:34.0297 1804	volsnap - ok
19:58:34.0354 1804	vsmraid         (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
19:58:34.0364 1804	vsmraid - ok
19:58:34.0481 1804	VSS             (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
19:58:34.0551 1804	VSS - ok
19:58:34.0703 1804	vwifibus        (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
19:58:34.0736 1804	vwifibus - ok
19:58:34.0774 1804	vwififlt        (13a0decd1794de60a8427862c8669d27) C:\Windows\system32\DRIVERS\vwififlt.sys
19:58:34.0805 1804	vwififlt - ok
19:58:34.0845 1804	vwifimp         (49003b357d101cdc474937437ecf5abc) C:\Windows\system32\DRIVERS\vwifimp.sys
19:58:34.0874 1804	vwifimp - ok
19:58:34.0943 1804	W32Time         (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
19:58:34.0973 1804	W32Time - ok
19:58:35.0005 1804	WacomPen        (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
19:58:35.0015 1804	WacomPen - ok
19:58:35.0067 1804	WANARP          (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
19:58:35.0116 1804	WANARP - ok
19:58:35.0139 1804	Wanarpv6        (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
19:58:35.0163 1804	Wanarpv6 - ok
19:58:35.0267 1804	WatAdminSvc     (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
19:58:35.0293 1804	WatAdminSvc - ok
19:58:35.0381 1804	wbengine        (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
19:58:35.0431 1804	wbengine - ok
19:58:35.0553 1804	WbioSrvc        (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
19:58:35.0570 1804	WbioSrvc - ok
19:58:35.0623 1804	wcncsvc         (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
19:58:35.0662 1804	wcncsvc - ok
19:58:35.0693 1804	WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
19:58:35.0705 1804	WcsPlugInService - ok
19:58:35.0761 1804	Wd              (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
19:58:35.0769 1804	Wd - ok
19:58:35.0839 1804	Wdf01000        (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
19:58:35.0856 1804	Wdf01000 - ok
19:58:35.0870 1804	WdiServiceHost  (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
19:58:35.0912 1804	WdiServiceHost - ok
19:58:35.0914 1804	WdiSystemHost   (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
19:58:35.0929 1804	WdiSystemHost - ok
19:58:35.0987 1804	WebClient       (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
19:58:36.0022 1804	WebClient - ok
19:58:36.0070 1804	Wecsvc          (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
19:58:36.0125 1804	Wecsvc - ok
19:58:36.0157 1804	wercplsupport   (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
19:58:36.0200 1804	wercplsupport - ok
19:58:36.0240 1804	WerSvc          (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
19:58:36.0266 1804	WerSvc - ok
19:58:36.0307 1804	WfpLwf          (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
19:58:36.0348 1804	WfpLwf - ok
19:58:36.0409 1804	WimFltr         (52ded146e4797e6ccf94799e8e22bb2a) C:\Windows\system32\DRIVERS\wimfltr.sys
19:58:36.0420 1804	WimFltr - ok
19:58:36.0450 1804	WIMMount        (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
19:58:36.0459 1804	WIMMount - ok
19:58:36.0492 1804	WinDefend - ok
19:58:36.0497 1804	WinHttpAutoProxySvc - ok
19:58:36.0565 1804	Winmgmt         (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
19:58:36.0618 1804	Winmgmt - ok
19:58:36.0744 1804	WinRM           (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
19:58:36.0814 1804	WinRM - ok
19:58:36.0969 1804	WinUsb          (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
19:58:36.0981 1804	WinUsb - ok
19:58:37.0050 1804	Wlansvc         (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
19:58:37.0074 1804	Wlansvc - ok
19:58:37.0099 1804	WmiAcpi         (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
19:58:37.0128 1804	WmiAcpi - ok
19:58:37.0216 1804	wmiApSrv        (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
19:58:37.0248 1804	wmiApSrv - ok
19:58:37.0296 1804	WMPNetworkSvc - ok
19:58:37.0332 1804	WPCSvc          (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
19:58:37.0344 1804	WPCSvc - ok
19:58:37.0381 1804	WPDBusEnum      (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
19:58:37.0395 1804	WPDBusEnum - ok
19:58:37.0420 1804	ws2ifsl         (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
19:58:37.0443 1804	ws2ifsl - ok
19:58:37.0468 1804	wscsvc          (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
19:58:37.0501 1804	wscsvc - ok
19:58:37.0503 1804	WSearch - ok
19:58:37.0642 1804	wuauserv        (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
19:58:37.0685 1804	wuauserv - ok
19:58:37.0814 1804	WudfPf          (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
19:58:37.0860 1804	WudfPf - ok
19:58:37.0922 1804	WUDFRd          (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
19:58:37.0970 1804	WUDFRd - ok
19:58:38.0007 1804	wudfsvc         (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
19:58:38.0032 1804	wudfsvc - ok
19:58:38.0072 1804	WwanSvc         (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
19:58:38.0111 1804	WwanSvc - ok
19:58:38.0242 1804	YahooAUService  (dd0042f0c3b606a6a8b92d49afb18ad6) C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
19:58:38.0254 1804	YahooAUService - ok
19:58:38.0308 1804	ZAtheros Bt&Wlan Coex Agent (d83c2ff7ea53e66b8ea7901d710494ea) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
19:58:38.0315 1804	ZAtheros Bt&Wlan Coex Agent - ok
19:58:38.0338 1804	ZTEusbmdm6k - ok
19:58:38.0349 1804	ZTEusbnmea - ok
19:58:38.0357 1804	ZTEusbser6k - ok
19:58:38.0364 1804	ZTEusbvoice - ok
19:58:38.0416 1804	MBR (0x1B8)     (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
19:58:38.0851 1804	\Device\Harddisk0\DR0 - ok
19:58:38.0853 1804	Boot (0x1200)   (3034b1071791cdcc21bfe4ae520119ac) \Device\Harddisk0\DR0\Partition0
19:58:38.0854 1804	\Device\Harddisk0\DR0\Partition0 - ok
19:58:38.0886 1804	Boot (0x1200)   (ea4b63ad979a12b43fbee8b51904285f) \Device\Harddisk0\DR0\Partition1
19:58:38.0887 1804	\Device\Harddisk0\DR0\Partition1 - ok
19:58:38.0908 1804	Boot (0x1200)   (37e55d5bbe5ff2000f7cddf731d7ae21) \Device\Harddisk0\DR0\Partition2
19:58:38.0910 1804	\Device\Harddisk0\DR0\Partition2 - ok
19:58:38.0910 1804	============================================================
19:58:38.0910 1804	Scan finished
19:58:38.0910 1804	============================================================
19:58:38.0916 5248	Detected object count: 4
19:58:38.0916 5248	Actual detected object count: 4
19:59:03.0013 5248	AIPS ( UnsignedFile.Multi.Generic ) - skipped by user
19:59:03.0013 5248	AIPS ( UnsignedFile.Multi.Generic ) - User select action: Skip 
19:59:03.0013 5248	Connectify ( UnsignedFile.Multi.Generic ) - skipped by user
19:59:03.0013 5248	Connectify ( UnsignedFile.Multi.Generic ) - User select action: Skip 
19:59:03.0014 5248	NILM License Manager ( UnsignedFile.Multi.Generic ) - skipped by user
19:59:03.0014 5248	NILM License Manager ( UnsignedFile.Multi.Generic ) - User select action: Skip 
19:59:03.0014 5248	Themes ( UnsignedFile.Multi.Generic ) - skipped by user
19:59:03.0014 5248	Themes ( UnsignedFile.Multi.Generic ) - User select action: Skip 

Edited by ohehehe, 12 August 2012 - 06:50 AM.


BC AdBot (Login to Remove)

 


#2 ohehehe

ohehehe
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:04:02 AM

Posted 12 August 2012 - 12:54 PM

.
DDS (Ver_2011-08-26.01) - NTFSAMD64
Internet Explorer: 8.0.7601.17514 BrowserJavaVersion: 10.5.1
Run by Rhomel at 2:02:28 on 2012-08-13
Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.3982.1508 [GMT -7:00]
.
AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Program Files (x86)\netcut\services\AIPS.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\SYSTEM32\WISPTIS.EXE
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\WLANExt.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\FBAgent.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
C:\Windows\SYSTEM32\WISPTIS.EXE
C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
C:\Windows\system32\taskhost.exe
C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
C:\Program Files (x86)\Internet Download Manager\IDMan.exe
C:\Program Files (x86)\Connectify\ConnectifyService.exe
C:\Program Files (x86)\Connectify\ConnectifyD.exe
C:\Windows\system32\conhost.exe
C:\Program Files\gogo6\gogoCLIENT\gogoc.exe
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Program Files\Intel\iCLS Client\HeciServer.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
C:\Program Files\Common Files\Nitro PDF\Professional\7.0\NitroPDFDriverService2x64.exe
C:\Windows\SysWOW64\NLSSRV32.EXE
C:\Windows\SysWOW64\ACEngSvr.exe
C:\Windows\AsScrPro.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\Windows\system32\hkcmd.exe
C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\Windows\system32\svchost.exe -k imgsvc
c:\windows\system32\igfxtray.exe
C:\Program Files (x86)\Internet Download Manager\IDMIntegrator64.exe
C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
C:\Program Files (x86)\USB Disk Security\USBGuard.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesApp64.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnWMI.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
C:\Program Files\Elantech\ETDCtrl.exe
C:\Program Files\Elantech\ETDCtrlHelper.exe
C:\Program Files\Elantech\ETDGesture.exe
C:\Users\Rhomel\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Rhomel\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Rhomel\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Rhomel\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Rhomel\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Rhomel\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Rhomel\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Rhomel\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Rhomel\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Rhomel\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Rhomel\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Rhomel\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\conhost.exe
C:\Windows\SysWOW64\cscript.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://search.babylon.com/?affID=112462&tt=090812_bab_3212_2&babsrc=HP_ss&mntrId=4294a5a700000000000094dbc9ab1f0d
mDefault_Page_URL = hxxp://www.yahoo.com/?ilc=8
mStart Page = hxxp://www.yahoo.com/?ilc=8
uInternet Settings,ProxyOverride = <local>
mWinlogon: Userinit=userinit.exe,
BHO: IDM integration (IDMIEHlprObj Class): {0055c089-8582-441b-a0bf-17b458c2a3a8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Lync Browser Helper: {31d09ba0-12f5-4cce-be8a-2923e76605da} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
BHO: Java™ Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll
BHO: CIESpeechBHO Class: {8d10f6c4-0e01-4bd4-8601-11ac1fdf8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO: Skype Browser Helper: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL
BHO: Microsoft SPFS Browser Helper: {d0498e0a-45b7-42ae-a9aa-aba463dbd3bf} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll
TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
uRun: [IDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot
mRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
mRun: [USB Security] C:\Program Files (x86)\USB Disk Security\USBGuard.exe
mRun: [<NO NAME>]
mRun: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
mRun: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
mRun: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
uPolicies-explorer: <NO NAME> =
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: Download all links with IDM - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
IE: Download with IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm
IE: E&xport to Microsoft Excel - C:\PROGRA~1\MICROS~2\Office15\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\PROGRA~1\MICROS~2\Office15\ONBttnIE.dll/105
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
IE: {7815BE26-237D-41A8-A98F-F7BD75F71086} - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab
TCP: DhcpNameServer = 192.168.1.1 192.168.1.1
TCP: Interfaces\{212C1621-DD63-4548-A3DB-6CCE1E4C8CE5} : NameServer = 192.168.31.1
TCP: Interfaces\{2F5612C4-53DA-48D5-8000-D4F4661D4DC4} : NameServer = 192.168.0.1
TCP: Interfaces\{E156B9CC-8764-4C61-80EF-0B9709EFD6CE} : DhcpNameServer = 192.168.1.1 192.168.1.1
TCP: Interfaces\{F721C091-B959-4759-AB9C-32F30D02584B} : DhcpNameServer = 192.168.0.1
TCP: Interfaces\{F721C091-B959-4759-AB9C-32F30D02584B}\275626F6E676 : DhcpNameServer = 192.168.43.1
TCP: Interfaces\{F721C091-B959-4759-AB9C-32F30D02584B}\5756025627E6563747F6 : DhcpNameServer = 192.168.251.1
Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
BHO-X64: IDM integration (IDMIEHlprObj Class): {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
BHO-X64: IDM Helper - No File
BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO-X64: AcroIEHelperStub - No File
BHO-X64: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
BHO-X64: Lync Click to Call BHO - No File
BHO-X64: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
BHO-X64: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll
BHO-X64: CIESpeechBHO Class: {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
BHO-X64: IESpeakDoc - No File
BHO-X64: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO-X64: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
BHO-X64: SkypeIEPluginBHO - No File
BHO-X64: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL
BHO-X64: URLRedirectionBHO - No File
BHO-X64: Microsoft SPFS Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
BHO-X64: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll
TB-X64: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
mRun-x64: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
mRun-x64: [USB Security] C:\Program Files (x86)\USB Disk Security\USBGuard.exe
mRun-x64: [(Default)]
mRun-x64: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
mRun-x64: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
mRun-x64: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
AppInit_DLLs-X64: C:\Windows\SysWOW64\nvinit.dll
SEH-X64: Groove GFS Stub Execution Hook: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Rhomel\AppData\Roaming\Mozilla\Firefox\Profiles\a1fd0z6f.default\
FF - prefs.js: browser.search.defaulturl - hxxp://www.google.com.ph/search?q=
FF - prefs.js: browser.startup.homepage - about:home
FF - prefs.js: keyword.URL - hxxp://www.google.com.ph/search?q=
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
FF - plugin: C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll
FF - plugin: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\nplv86win32.dll
FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\nplv90win32.dll
FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npMeetingJoinPluginOC.dll
FF - plugin: C:\Program Files (x86)\Nitro PDF\Professional 7\npdf.dll
FF - plugin: C:\Program Files (x86)\Nitro PDF\Professional 7\npnitroie.dll
FF - plugin: C:\Program Files (x86)\Nitro PDF\Professional 7\npnitromozilla.dll
FF - plugin: C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll
FF - plugin: C:\Users\Rhomel\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll
FF - plugin: C:\Users\Rhomel\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_268.dll
FF - plugin: C:\Windows\SysWOW64\npDeployJava1.dll
FF - plugin: C:\Windows\SysWOW64\npmproxy.dll
.
---- FIREFOX POLICIES ----
FF - user.js: yahoo.ytff.general.dontshowhpoffer - true);user_pref(extensions.BabylonToolbar_i.babTrack, affID=112462&tt=090812_bab_3212_2
FF - user.js: extensions.BabylonToolbar_i.babExt -
FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
FF - user.js: extensions.BabylonToolbar.tlbrSrchUrl - hxxp://www.google.com/search?babsrc=TB_ggl&q=
FF - user.js: extensions.BabylonToolbar.id - 4294a5a700000000000094dbc9ab1f0d
FF - user.js: extensions.BabylonToolbar.instlDay - 15563
FF - user.js: extensions.BabylonToolbar.vrsn - 1.6.4.6
FF - user.js: extensions.BabylonToolbar.vrsni - 1.6.4.6
FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.6.4.617:27:15
FF - user.js: extensions.BabylonToolbar.prtnrId - babylon
FF - user.js: extensions.BabylonToolbar.prdct - BabylonToolbar
FF - user.js: extensions.BabylonToolbar.aflt - babsst
FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
FF - user.js: extensions.BabylonToolbar.tlbrId - base
FF - user.js: extensions.BabylonToolbar.instlRef - sst
FF - user.js: extensions.BabylonToolbar.dfltLng - en
FF - user.js: extensions.BabylonToolbar.excTlbr - false
FF - user.js: extensions.BabylonToolbar.admin - false
.
============= SERVICES / DRIVERS ===============
.
R0 iusb3hcs;Intel® USB 3.0 Host Controller Switch Driver;C:\Windows\system32\DRIVERS\iusb3hcs.sys --> C:\Windows\system32\DRIVERS\iusb3hcs.sys [?]
R0 nvpciflt;nvpciflt;C:\Windows\system32\DRIVERS\nvpciflt.sys --> C:\Windows\system32\DRIVERS\nvpciflt.sys [?]
R1 aswSnx;aswSnx;C:\Windows\system32\drivers\aswSnx.sys --> C:\Windows\system32\drivers\aswSnx.sys [?]
R1 aswSP;aswSP;C:\Windows\system32\drivers\aswSP.sys --> C:\Windows\system32\drivers\aswSP.sys [?]
R1 ATKWMIACPIIO;ATKWMIACPI Driver;C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-9-7 17536]
R1 cnnctfy2;Connectify LightWeight Filter;C:\Windows\system32\DRIVERS\cnnctfy2.sys --> C:\Windows\system32\DRIVERS\cnnctfy2.sys [?]
R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?]
R2 AdobeARMservice;Adobe Acrobat Update Service;C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-4-3 63928]
R2 AFBAgent;AFBAgent;"C:\Windows\system32\FBAgent.exe" --> C:\Windows\system32\FBAgent.exe [?]
R2 AIPS;Arp Intelligent Protection Service;C:\Program Files (x86)\netcut\services\aips.exe [2012-7-31 262144]
R2 ASMMAP64;ASMMAP64;C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-7-2 15416]
R2 aswFsBlk;aswFsBlk;C:\Windows\system32\drivers\aswFsBlk.sys --> C:\Windows\system32\drivers\aswFsBlk.sys [?]
R2 aswMonFlt;aswMonFlt;\??\C:\Windows\system32\drivers\aswMonFlt.sys --> C:\Windows\system32\drivers\aswMonFlt.sys [?]
R2 AtherosSvc;AtherosSvc;C:\Program Files (x86)\Bluetooth Suite\AdminService.exe [2011-12-29 106144]
R2 Autodesk Content Service;Autodesk Content Service;C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [2012-1-31 19232]
R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-7-8 44808]
R2 Connectify;Connectify;C:\Program Files (x86)\Connectify\ConnectifyService.exe [2012-7-7 65536]
R2 cpuz135;cpuz135;\??\C:\Windows\system32\drivers\cpuz135_x64.sys --> C:\Windows\system32\drivers\cpuz135_x64.sys [?]
R2 gogoc;gogo6 gogoCLIENT;C:\Program Files\gogo6\gogoCLIENT\gogoc.exe [2010-3-12 527688]
R2 IDMWFP;IDMWFP;C:\Windows\system32\DRIVERS\idmwfp.sys --> C:\Windows\system32\DRIVERS\idmwfp.sys [?]
R2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2011-12-8 607456]
R2 Intel® ME Service;Intel® ME Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [2012-6-28 128280]
R2 jhi_service;Intel® Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe [2012-6-28 161560]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-7-17 655944]
R2 NitroDriverReadSpool2;NitroPDFDriverCreatorReadSpool2;C:\Program Files\Common Files\Nitro PDF\Professional\7.0\NitroPDFDriverService2x64.exe [2012-6-24 216072]
R2 nlsX86cc;Nalpeiron Licensing Service;C:\Windows\SysWOW64\NLSSRV32.EXE [2012-6-24 69640]
R2 nvUpdatusService;NVIDIA Update Service Daemon;C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-7-17 2458944]
R2 Skype C2C Service;Skype C2C Service;C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-7-5 3048136]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe [2012-5-29 2143072]
R2 UNS;Intel® Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2012-6-28 363800]
R2 ZAtheros Bt&Wlan Coex Agent;ZAtheros Bt&Wlan Coex Agent;C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-12-29 158880]
R3 AiCharger;ASUS Charger Driver;C:\Windows\system32\DRIVERS\AiCharger.sys --> C:\Windows\system32\DRIVERS\AiCharger.sys [?]
R3 ASUS InstantOn;ASUS InstantOn Service;C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe [2012-4-13 277120]
R3 AsusVBus;AsusVBus;C:\Windows\system32\DRIVERS\AsusVBus.sys --> C:\Windows\system32\DRIVERS\AsusVBus.sys [?]
R3 AsusVTouch;AsusVTouch;C:\Windows\system32\DRIVERS\AsusVTouch.sys --> C:\Windows\system32\DRIVERS\AsusVTouch.sys [?]
R3 AthBTPort;Atheros Virtual Bluetooth Class;C:\Windows\system32\DRIVERS\btath_flt.sys --> C:\Windows\system32\DRIVERS\btath_flt.sys [?]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver;C:\Windows\system32\drivers\btath_a2dp.sys --> C:\Windows\system32\drivers\btath_a2dp.sys [?]
R3 btath_avdt;Atheros Bluetooth AVDT Service;C:\Windows\system32\drivers\btath_avdt.sys --> C:\Windows\system32\drivers\btath_avdt.sys [?]
R3 BTATH_BUS;Atheros Bluetooth Bus;C:\Windows\system32\DRIVERS\btath_bus.sys --> C:\Windows\system32\DRIVERS\btath_bus.sys [?]
R3 BTATH_HCRP;Bluetooth HCRP Server driver;C:\Windows\system32\DRIVERS\btath_hcrp.sys --> C:\Windows\system32\DRIVERS\btath_hcrp.sys [?]
R3 BTATH_LWFLT;Bluetooth LWFLT Device;C:\Windows\system32\DRIVERS\btath_lwflt.sys --> C:\Windows\system32\DRIVERS\btath_lwflt.sys [?]
R3 BTATH_RCP;Bluetooth AVRCP Device;C:\Windows\system32\DRIVERS\btath_rcp.sys --> C:\Windows\system32\DRIVERS\btath_rcp.sys [?]
R3 BtFilter;BtFilter;C:\Windows\system32\DRIVERS\btfilter.sys --> C:\Windows\system32\DRIVERS\btfilter.sys [?]
R3 ETD;ELAN PS/2 Port Input Device;C:\Windows\system32\DRIVERS\ETD.sys --> C:\Windows\system32\DRIVERS\ETD.sys [?]
R3 IntcDAud;Intel® Display Audio;C:\Windows\system32\DRIVERS\IntcDAud.sys --> C:\Windows\system32\DRIVERS\IntcDAud.sys [?]
R3 iusb3hub;Intel® USB 3.0 Hub Driver;C:\Windows\system32\DRIVERS\iusb3hub.sys --> C:\Windows\system32\DRIVERS\iusb3hub.sys [?]
R3 iusb3xhc;Intel® USB 3.0 eXtensible Host Controller Driver;C:\Windows\system32\DRIVERS\iusb3xhc.sys --> C:\Windows\system32\DRIVERS\iusb3xhc.sys [?]
R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?]
R3 MEIx64;Intel® Management Engine Interface ;C:\Windows\system32\DRIVERS\HECIx64.sys --> C:\Windows\system32\DRIVERS\HECIx64.sys [?]
R3 RSBASTOR;Realtek PCIE CardReader Driver - BA;C:\Windows\system32\DRIVERS\RtsBaStor.sys --> C:\Windows\system32\DRIVERS\RtsBaStor.sys [?]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\system32\DRIVERS\Rt64win7.sys --> C:\Windows\system32\DRIVERS\Rt64win7.sys [?]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys [2012-5-8 11856]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-6-7 160944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-6-28 250056]
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver;C:\Windows\system32\Drivers\ssadadb.sys --> C:\Windows\system32\Drivers\ssadadb.sys [?]
S3 cphs;Intel® Content Protection HECI Service;C:\Windows\SysWOW64\IntelCpHeciSvc.exe [2012-6-28 276248]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\Windows\system32\DRIVERS\ssudbus.sys --> C:\Windows\system32\DRIVERS\ssudbus.sys [?]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2012-6-28 1432400]
S3 gogoTunnelDevice;gogo6 Multi-Virtual Tunnel Adapter;C:\Windows\system32\DRIVERS\gogotun.sys --> C:\Windows\system32\DRIVERS\gogotun.sys [?]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2010-1-21 51445112]
S3 MozillaMaintenance;Mozilla Maintenance Service;C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-6-28 113120]
S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-6-23 178784]
S3 osppsvc;Office Software Protection Platform;C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2012-6-23 5132888]
S3 pwdrvio;pwdrvio;\??\C:\Windows\system32\pwdrvio.sys --> C:\Windows\system32\pwdrvio.sys [?]
S3 pwdspio;pwdspio;\??\C:\Windows\system32\pwdspio.sys --> C:\Windows\system32\pwdspio.sys [?]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\system32\drivers\rdpvideominiport.sys --> C:\Windows\system32\drivers\rdpvideominiport.sys [?]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);C:\Windows\system32\DRIVERS\ssadbus.sys --> C:\Windows\system32\DRIVERS\ssadbus.sys [?]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter);C:\Windows\system32\DRIVERS\ssadmdfl.sys --> C:\Windows\system32\DRIVERS\ssadmdfl.sys [?]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers;C:\Windows\system32\DRIVERS\ssadmdm.sys --> C:\Windows\system32\DRIVERS\ssadmdm.sys [?]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);C:\Windows\system32\DRIVERS\ssadserd.sys --> C:\Windows\system32\DRIVERS\ssadserd.sys [?]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);C:\Windows\system32\DRIVERS\ssudmdm.sys --> C:\Windows\system32\DRIVERS\ssudmdm.sys [?]
S3 ssudserd;SAMSUNG Mobile USB Diagnostic Serial Port(DEVGURU Ver.);C:\Windows\system32\DRIVERS\ssudserd.sys --> C:\Windows\system32\DRIVERS\ssudserd.sys [?]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;C:\Windows\system32\DRIVERS\vwifimp.sys --> C:\Windows\system32\DRIVERS\vwifimp.sys [?]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]
.
=============== File Associations ===============
.
.scr=AutoCADScriptFile
.
=============== Created Last 30 ================
.
2012-08-13 04:39:45 -------- d-----w- C:\Program Files (x86)\ESET
2012-08-12 20:49:04 -------- d-----w- C:\Windows\Downloaded Program Files
2012-08-12 03:24:06 -------- d-----w- C:\Users\Rhomel\AppData\Roaming\IDM
2012-08-11 02:18:58 9133488 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{A8E002DB-B209-4D86-AAAC-729202C56B35}\mpengine.dll
2012-08-11 00:26:07 -------- d-----w- C:\ProgramData\Premium
2012-08-11 00:26:06 -------- d-----w- C:\Users\Rhomel\AppData\Roaming\Babylon
2012-08-11 00:26:06 -------- d-----w- C:\ProgramData\Babylon
2012-08-11 00:25:20 -------- d-----w- C:\ProgramData\OptimizerPro1
2012-08-11 00:24:09 -------- d-----w- C:\ProgramData\Bcool
2012-08-09 10:06:40 -------- d-----w- C:\Program Files (x86)\Common Files\EZB Systems
2012-08-09 10:06:38 -------- d-----w- C:\Program Files (x86)\UltraISO
2012-08-09 09:45:29 158944 ----a-w- C:\Windows\System32\drivers\idmwfp.sys
2012-08-09 08:39:03 -------- d-----w- C:\Users\Rhomel\AppData\Roaming\WinPatrol
2012-08-09 08:38:56 -------- d-----w- C:\ProgramData\InstallMate
2012-08-07 18:52:53 -------- d--h--w- C:\ProgramData\CanonIJSIP
2012-07-31 23:46:44 -------- d-----w- C:\Program Files (x86)\WinPcap
2012-07-31 23:46:30 704512 ----a-w- C:\Windows\is-RODFQ.exe
2012-07-31 23:46:29 389120 ----a-w- C:\Windows\SysWow64\actskn43.ocx
2012-07-31 23:46:28 -------- d-----w- C:\Program Files (x86)\netcut
2012-07-31 13:51:03 35680 ----a-w- C:\Windows\System32\uxtuneup.dll
2012-07-31 13:51:03 29024 ----a-w- C:\Windows\SysWow64\uxtuneup.dll
2012-07-31 05:56:30 -------- d-----w- C:\Users\Rhomel\AppData\Local\HonLauncher
2012-07-31 03:55:30 -------- d-----w- C:\Users\Rhomel\AppData\Local\Chromium
2012-07-31 03:45:50 -------- d-----w- C:\Program Files (x86)\GarenaHoN
2012-07-31 02:01:07 -------- d-----w- C:\Users\Rhomel\AppData\Local\Garena
2012-07-30 01:39:10 -------- d-----w- C:\Program Files\gogo6
2012-07-29 22:26:10 -------- d-----w- C:\Users\Rhomel\AppData\Roaming\com.prezi.PreziDesktop
2012-07-27 07:50:10 -------- d-----w- C:\Canopy
2012-07-27 07:50:02 -------- d--h--w- C:\Program Files (x86)\Zero G Registry
2012-07-27 07:49:53 -------- d--h--w- C:\Users\Rhomel\InstallAnywhere
2012-07-25 15:55:02 -------- d-----w- C:\Program Files (x86)\Sun Broadband Wireless
2012-07-24 23:23:15 -------- d-----w- C:\Program Files (x86)\Disktrix
2012-07-24 18:42:19 -------- d-----w- C:\Windows\SysWow64\SupportAppCB
2012-07-24 06:12:40 -------- d-----w- C:\Temp
2012-07-24 06:06:08 99384 ----a-w- C:\Windows\System32\drivers\ssudbus.sys
2012-07-24 06:06:08 708168 ----a-w- C:\Windows\System32\WinUSBCoInstaller.dll
2012-07-24 06:06:08 203320 ----a-w- C:\Windows\System32\drivers\ssudserd.sys
2012-07-24 06:06:08 203320 ----a-w- C:\Windows\System32\drivers\ssudmdm.sys
2012-07-24 05:49:08 -------- d-----w- C:\Users\Rhomel\AppData\Local\Samsung
2012-07-24 05:48:58 -------- d-----w- C:\Users\Rhomel\AppData\Roaming\Samsung
2012-07-24 05:47:29 1917416 ----a-w- C:\Windows\System32\WdfCoInstaller01005.dll
2012-07-24 05:47:29 1917416 ----a-w- C:\Windows\System32\drivers\WdfCoInstaller01005.dll
2012-07-24 05:47:29 13800 ----a-w- C:\Windows\System32\drivers\ssadwhnt.sys
2012-07-24 05:47:29 13800 ----a-w- C:\Windows\System32\drivers\ssadwh.sys
2012-07-24 05:47:28 36328 ----a-w- C:\Windows\System32\drivers\ssadadb.sys
2012-07-24 05:47:28 177640 ----a-w- C:\Windows\System32\drivers\ssadmdm.sys
2012-07-24 05:47:28 16872 ----a-w- C:\Windows\System32\drivers\ssadmdfl.sys
2012-07-24 05:47:28 157672 ----a-w- C:\Windows\System32\drivers\ssadbus.sys
2012-07-24 05:47:28 146920 ----a-w- C:\Windows\System32\drivers\ssadserd.sys
2012-07-24 05:47:28 13288 ----a-w- C:\Windows\System32\drivers\ssadcmnt.sys
2012-07-24 05:47:28 13288 ----a-w- C:\Windows\System32\drivers\ssadcm.sys
2012-07-24 05:46:52 19016 ----a-w- C:\Windows\System32\drivers\sscdmdfl.sys
2012-07-24 05:46:52 172104 ----a-w- C:\Windows\System32\drivers\sscdmdm.sys
2012-07-24 05:46:52 15944 ----a-w- C:\Windows\System32\drivers\sscdwhnt.sys
2012-07-24 05:46:52 15944 ----a-w- C:\Windows\System32\drivers\sscdwh.sys
2012-07-24 05:46:52 15432 ----a-w- C:\Windows\System32\drivers\sscdcmnt.sys
2012-07-24 05:46:52 15432 ----a-w- C:\Windows\System32\drivers\sscdcm.sys
2012-07-24 05:46:52 136264 ----a-w- C:\Windows\System32\drivers\sscdbus.sys
2012-07-24 05:45:42 4659712 ----a-w- C:\Windows\SysWow64\Redemption.dll
2012-07-24 05:45:28 821824 ----a-w- C:\Windows\SysWow64\dgderapi.dll
2012-07-24 05:45:28 -------- d-----w- C:\Program Files (x86)\MarkAny
2012-07-24 05:44:25 -------- d-----w- C:\ProgramData\Samsung
2012-07-24 05:44:25 -------- d-----w- C:\Program Files (x86)\Samsung
2012-07-24 05:43:13 -------- d-----w- C:\Users\Rhomel\AppData\Local\Downloaded Installations
2012-07-22 07:27:09 -------- d-----w- C:\ProgramData\YTD Video Downloader
2012-07-22 07:27:03 -------- d-----w- C:\Program Files (x86)\GreenTree Applications
2012-07-22 06:32:26 517120 ----a-w- C:\Windows\SysWow64\CLWCP.exe
2012-07-22 06:32:25 925184 ----a-w- C:\Windows\expstart.exe
2012-07-22 06:32:24 -------- d-----w- C:\Program Files (x86)\UX Pack
2012-07-22 06:32:22 -------- d-----w- C:\UXFiles
2012-07-22 05:30:05 -------- d-----w- C:\Users\Rhomel\AppData\Local\SkinSoft
2012-07-21 08:02:03 -------- d-----w- C:\Windows\AutoKMS
2012-07-21 01:57:53 -------- d-----w- C:\Users\Rhomel\AppData\Roaming\Unified Remote
2012-07-21 01:57:37 -------- d-----w- C:\Program Files (x86)\Unified Remote
2012-07-21 01:38:42 73728 ------w- C:\Windows\SysWow64\BrDctF2.dll
2012-07-21 01:38:42 5120 ------w- C:\Windows\SysWow64\BrDctF2L.dll
2012-07-21 01:38:42 3072 ------w- C:\Windows\SysWow64\BrDctF2S.dll
2012-07-21 01:38:42 176128 ------w- C:\Windows\SysWow64\BroSNMP.dll
2012-07-21 01:38:39 1560576 ----a-w- C:\Windows\System32\BrWia09b.dll
2012-07-21 01:38:30 167936 ------w- C:\Windows\SysWow64\NSSearch.dll
2012-07-20 06:52:34 34656 ----a-w- C:\Windows\System32\TURegOpt.exe
2012-07-20 06:52:34 25952 ----a-w- C:\Windows\System32\authuitu.dll
2012-07-20 06:52:34 21344 ----a-w- C:\Windows\SysWow64\authuitu.dll
2012-07-20 06:52:11 -------- d-----w- C:\Users\Rhomel\AppData\Roaming\TuneUp Software
2012-07-20 06:51:50 -------- d-----w- C:\Program Files (x86)\TuneUp Utilities 2012
2012-07-20 06:51:23 -------- d-----w- C:\ProgramData\TuneUp Software
2012-07-20 06:51:19 -------- d-sh--w- C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936}
2012-07-20 00:08:15 10235904 ----a-w- C:\Windows\SysWow64\PDF2DWG.dll
2012-07-20 00:08:14 925696 ----a-w- C:\Windows\SysWow64\AxEImage.dll
2012-07-20 00:08:14 663552 ----a-w- C:\Windows\SysWow64\FreeImage.dll
2012-07-20 00:08:14 -------- d-----w- C:\Program Files (x86)\AutoDWG
2012-07-20 00:08:12 225280 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\IScript\iscript.dll
2012-07-20 00:08:11 77824 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\ctor.dll
2012-07-20 00:08:11 32768 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\objectps.dll
2012-07-20 00:08:11 176128 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\iuser.dll
2012-07-20 00:08:09 614532 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\IKernel.exe
2012-07-19 07:03:58 -------- d-----w- C:\Windows\SysWow64\Shared Memory
2012-07-19 05:52:32 -------- d-----w- C:\Users\Rhomel\AppData\Local\syntax.error00100@yahoo.c
2012-07-19 03:43:25 -------- d-----w- C:\Program Files (x86)\Microsoft SQL Server
2012-07-19 03:41:06 -------- d-----w- C:\Program Files\Microsoft SQL Server
2012-07-18 07:09:36 -------- d-----w- C:\Users\Rhomel\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
2012-07-18 05:24:56 -------- d-----w- C:\Windows\SysWow64\NV
2012-07-18 05:24:56 -------- d-----w- C:\Windows\System32\NV
2012-07-18 04:58:52 850752 ----a-w- C:\Windows\System32\nv3dappshext.dll
2012-07-18 04:58:52 63296 ----a-w- C:\Windows\System32\nvshext.dll
2012-07-18 04:58:52 55616 ----a-w- C:\Windows\System32\nv3dappshextr.dll
2012-07-18 04:58:52 3092800 ----a-w- C:\Windows\System32\nvsvc64.dll
2012-07-18 04:58:51 889664 ----a-w- C:\Windows\System32\nvvsvc.exe
2012-07-18 04:58:51 2587633 ----a-w- C:\Windows\System32\nvcoproc.bin
2012-07-18 04:58:51 2561856 ----a-w- C:\Windows\System32\nvsvcr.dll
2012-07-18 04:58:50 6103360 ----a-w- C:\Windows\System32\nvcpl.dll
2012-07-18 04:58:50 118080 ----a-w- C:\Windows\System32\nvmctray.dll
2012-07-18 04:56:58 17674048 ----a-w- C:\Windows\System32\nvd3dumx.dll
2012-07-18 04:56:58 15035200 ----a-w- C:\Windows\SysWow64\nvd3dum.dll
2012-07-18 04:56:57 2873664 ----a-w- C:\Windows\System32\nvcuvenc.dll
2012-07-18 04:56:57 2673984 ----a-w- C:\Windows\System32\nvcuvid.dll
2012-07-18 04:56:57 2518336 ----a-w- C:\Windows\SysWow64\nvcuvid.dll
2012-07-18 04:56:56 5924672 ----a-w- C:\Windows\SysWow64\nvcuda.dll
2012-07-18 04:56:56 2438464 ----a-w- C:\Windows\SysWow64\nvcuvenc.dll
2012-07-18 04:56:55 8046912 ----a-w- C:\Windows\System32\nvcuda.dll
2012-07-18 04:56:55 17543488 ----a-w- C:\Windows\SysWow64\nvcompiler.dll
2012-07-18 04:56:54 2685760 ----a-w- C:\Windows\System32\nvapi64.dll
2012-07-18 04:56:54 25222464 ----a-w- C:\Windows\System32\nvcompiler.dll
2012-07-18 04:56:54 2324288 ----a-w- C:\Windows\SysWow64\nvapi.dll
2012-07-18 04:45:13 380 ----a-w- C:\Users\Rhomel\AppData\Roaming\sp_data.sys
2012-07-18 02:11:31 -------- d-----w- C:\Users\Rhomel\AppData\Local\Temp
2012-07-18 00:51:02 -------- d-----w- C:\Users\Rhomel\AppData\Roaming\ParetoLogic
2012-07-18 00:51:02 -------- d-----w- C:\Users\Rhomel\AppData\Roaming\DriverCure
2012-07-18 00:50:51 -------- d-----w- C:\ProgramData\ParetoLogic
2012-07-18 00:50:51 -------- d-----w- C:\Program Files (x86)\ParetoLogic
2012-07-18 00:50:51 -------- d-----w- C:\Program Files (x86)\Common Files\ParetoLogic
2012-07-18 00:20:24 -------- d-----w- C:\Users\Rhomel\AppData\Roaming\Malwarebytes
2012-07-18 00:20:19 24904 ----a-w- C:\Windows\System32\drivers\mbam.sys
2012-07-18 00:20:19 -------- d-----w- C:\ProgramData\Malwarebytes
2012-07-18 00:20:19 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2012-07-17 23:35:04 -------- d-----r- C:\Program Files (x86)\Skype
2012-07-15 19:43:02 -------- d-----w- C:\Program Files (x86)\Skin Pack
2012-07-15 19:13:31 -------- d-----w- C:\Users\Rhomel\AppData\Local\Diagnostics
2012-07-15 19:05:34 -------- d-----w- C:\Users\Rhomel\AppData\Local\Labcenter Electronics
2012-07-15 12:35:44 54784 ----a-w- C:\Windows\SysWow64\INETWH32.DLL
2012-07-15 12:35:44 1048576 ----a-w- C:\Windows\SysWow64\ROBOEX32.DLL
2012-07-15 12:35:25 -------- d-----w- C:\Program Files (x86)\Labcenter Electronics
2012-07-15 10:04:45 -------- d-----w- C:\Users\Rhomel\AppData\Roaming\PTC
2012-07-15 10:04:42 -------- d-----w- C:\Users\Rhomel\AppData\Local\Mathsoft
2012-07-15 10:03:05 -------- d-----w- C:\ProgramData\PTC
2012-07-15 10:02:40 -------- d-----w- C:\Program Files (x86)\PTC
2012-07-15 10:01:42 24416 ----a-r- C:\Windows\System32\AdobePDFUI.dll
2012-07-15 10:00:22 -------- d-----w- C:\Users\Rhomel\AppData\Roaming\Mathsoft
2012-07-15 09:57:30 -------- d-----w- C:\Program Files (x86)\Mathcad
2012-07-15 09:53:00 -------- d-----w- C:\Program Files (x86)\MSXML 4.0
2012-07-15 07:49:13 84480 ----a-w- C:\Windows\System32\Spool\prtprocs\x64\CNMPPA4.DLL
2012-07-15 07:49:13 28672 ----a-w- C:\Windows\System32\Spool\prtprocs\x64\CNMPDA4.DLL
2012-07-15 07:48:55 344064 ----a-w- C:\Windows\System32\CNMLMA4.DLL
2012-07-15 07:48:51 245760 ----a-w- C:\Windows\System32\CNMIUA4.DLL
2012-07-15 07:40:24 -------- d-----w- C:\ProgramData\DipTrace
2012-07-15 07:40:24 -------- d-----w- C:\Program Files (x86)\DipTrace
2012-07-15 05:51:29 -------- d-----w- C:\Users\Rhomel\AppData\Local\ShamurShamur
.
==================== Find3M ====================
.
2012-08-04 09:47:47 70344 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2012-08-04 09:47:47 426184 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2012-07-15 19:42:19 2851840 ----a-w- C:\Windows\System32\themeui.dll
2012-07-15 19:42:18 44544 ----a-w- C:\Windows\System32\themeservice.dll
2012-07-15 19:42:18 332288 ----a-w- C:\Windows\System32\uxtheme.dll
2012-07-03 16:21:52 958400 ----a-w- C:\Windows\System32\drivers\aswSnx.sys
2012-07-03 16:21:52 71064 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys
2012-07-03 16:21:52 54072 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys
2012-07-03 16:21:32 41224 ----a-w- C:\Windows\avastSS.scr
2012-07-03 15:32:18 106344 ----a-w- C:\Windows\System32\UDBDef.exe
2012-07-01 08:36:38 175616 ----a-w- C:\Windows\System32\msclmd.dll
2012-07-01 08:36:38 152576 ----a-w- C:\Windows\SysWow64\msclmd.dll
2012-06-30 20:20:24 1490656 ----a-w- C:\Windows\System32\WdfCoInstaller01007.dll
2012-06-30 20:20:24 1490656 ----a-w- C:\Windows\System32\drivers\WdfCoInstaller01007.dll
2012-06-29 17:49:51 31344 ----a-w- C:\Windows\System32\drivers\cnnctfy2.sys
2012-06-28 19:21:11 80512 ----a-w- C:\Windows\ASUS K5 Series ScreenSaver Uninstaller.exe
2012-06-28 19:19:33 3058304 ----a-w- C:\Windows\AsScrPro.exe
2012-06-26 07:02:40 330240 ----a-w- C:\Windows\MASetupCaller.dll
2012-06-26 07:02:38 45320 ----a-w- C:\Windows\SysWow64\MAMACExtract.dll
2012-06-25 04:47:42 69640 ----a-w- C:\Windows\SysWow64\NLSSRV32.EXE
2012-06-25 04:47:08 29704 ----a-w- C:\Windows\System32\nitrolocalmon2.dll
2012-06-25 04:47:08 17928 ----a-w- C:\Windows\System32\nitrolocalui2.dll
2012-06-24 01:20:36 31864 ----a-w- C:\Windows\System32\FM20ENU.DLL
2012-06-24 01:20:16 826232 ----a-w- C:\Windows\System32\msvcr110.dll
2012-06-24 01:20:16 595328 ----a-w- C:\Windows\System32\msvcp110.dll
2012-06-24 01:20:16 338824 ----a-w- C:\Windows\System32\vccorlib110.dll
2012-06-24 01:19:46 1592416 ----a-w- C:\Windows\System32\FM20.DLL
2012-06-18 20:34:44 19032 ------w- C:\Windows\System32\pwdrvio.sys
2012-06-18 20:34:42 2966720 ----a-w- C:\Windows\System32\pwNative.exe
2012-06-18 20:34:42 12384 ------w- C:\Windows\System32\pwdspio.sys
2012-06-12 03:08:36 3148800 ----a-w- C:\Windows\System32\win32k.sys
2012-06-06 06:06:16 2004480 ----a-w- C:\Windows\System32\msxml6.dll
2012-06-06 06:06:16 1881600 ----a-w- C:\Windows\System32\msxml3.dll
2012-06-06 06:02:54 1133568 ----a-w- C:\Windows\System32\cdosys.dll
2012-06-06 05:05:52 1390080 ----a-w- C:\Windows\SysWow64\msxml6.dll
2012-06-06 05:05:52 1236992 ----a-w- C:\Windows\SysWow64\msxml3.dll
2012-06-06 05:03:06 805376 ----a-w- C:\Windows\SysWow64\cdosys.dll
2012-06-05 23:03:52 224088 ----a-w- C:\Windows\System32\drivers\VBoxDrv.sys
2012-06-05 23:03:52 166232 ----a-w- C:\Windows\System32\drivers\VBoxNetFlt.sys
2012-06-05 23:03:52 147288 ----a-w- C:\Windows\System32\drivers\VBoxNetAdp.sys
2012-06-05 23:03:52 130904 ----a-w- C:\Windows\System32\drivers\VBoxUSBMon.sys
2012-06-05 23:02:22 320856 ----a-w- C:\Windows\System32\VBoxNetFltNobj.dll
2012-06-02 22:19:42 186752 ----a-w- C:\Windows\System32\wuwebv.dll
2012-06-02 22:15:31 2622464 ----a-w- C:\Windows\System32\wucltux.dll
2012-06-02 22:15:12 36864 ----a-w- C:\Windows\System32\wuapp.exe
2012-06-02 22:15:08 99840 ----a-w- C:\Windows\System32\wudriver.dll
2012-06-02 05:50:10 458704 ----a-w- C:\Windows\System32\drivers\cng.sys
2012-06-02 05:48:16 95600 ----a-w- C:\Windows\System32\drivers\ksecdd.sys
2012-06-02 05:48:16 151920 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys
2012-06-02 05:45:31 340992 ----a-w- C:\Windows\System32\schannel.dll
2012-06-02 05:44:21 307200 ----a-w- C:\Windows\System32\ncrypt.dll
2012-06-02 04:40:42 22016 ----a-w- C:\Windows\SysWow64\secur32.dll
2012-06-02 04:40:39 225280 ----a-w- C:\Windows\SysWow64\schannel.dll
2012-06-02 04:39:10 219136 ----a-w- C:\Windows\SysWow64\ncrypt.dll
2012-06-02 04:34:09 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll
2012-05-31 19:25:12 279656 ------w- C:\Windows\System32\MpSigStub.exe
.
============= FINISH: 2:03:06.44 ===============

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows 7 Ultimate
Boot Device: \Device\HarddiskVolume1
Install Date: 6/28/2012 11:45:42 AM
System Uptime: 8/13/2012 12:21:48 AM (2 hours ago)
.
Motherboard: ASUSTeK COMPUTER INC. | | K55VD
Processor: Intel® Core™ i7-3610QM CPU @ 2.30GHz | SOCKET 0 | 2301/100mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 406 GiB total, 348.675 GiB free.
D: is FIXED (NTFS) - 293 GiB total, 235.769 GiB free.
E: is CDROM ()
F: is CDROM ()
.
==== Disabled Device Manager Items =============
.
Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
Description: VirtualBox Host-Only Ethernet Adapter
Device ID: ROOT\NET\0000
Manufacturer: Oracle Corporation
Name: VirtualBox Host-Only Ethernet Adapter
PNP Device ID: ROOT\NET\0000
Service: VBoxNetAdp
.
Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
Description: gogo6 Virtual Multi-Tunnel Adapter
Device ID: ROOT\NET\0001
Manufacturer: gogo6
Name: gogo6 Virtual Multi-Tunnel Adapter
PNP Device ID: ROOT\NET\0001
Service: gogoTunnelDevice
.
==== System Restore Points ===================
.
RP96: 8/5/2012 7:44:29 PM - Installed DirectX
RP97: 8/7/2012 2:33:44 AM - RegCure Pro Backup
RP98: 8/8/2012 9:37:25 AM - Windows Update
RP99: 8/8/2012 5:41:26 PM - Removed Adobe Download Assistant
RP100: 8/10/2012 6:25:23 PM - Removed BabylonObjectInstaller
RP101: 8/11/2012 5:50:56 PM - RegCure Pro Backup
RP102: 8/12/2012 1:43:55 PM - Installed SMART BRO
RP103: 8/12/2012 5:37:20 PM - Removed SMART BRO
.
==== Installed Programs ======================
.
'PTC Places' Namespace Shell Extension
µTorrent
Adobe AIR
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
Adobe Reader X (10.1.3)
Akamai NetSession Interface
AnyToISO
ASUS AI Recovery
ASUS FaceLogon
ASUS K5 Series ScreenSaver
ASUS LifeFrame3
ASUS Live Update
ASUS Splendid Video Enhancement Technology
ASUS USB Charger Plus
ASUS Virtual Camera
ASUS Virtual Touch
Atheros Outlook Addin 2010
ATK Package
Autodesk Content Service
Autodesk Content Service Language Pack
Autodesk Material Library 2013
Autodesk Material Library Base Resolution Image Library 2013
Autodesk Material Library Low Resolution Image Library 2013
Autodesk Material Library Medium Resolution Image Library 2013
avast! Free Antivirus
Brother MFL-Pro Suite DCP-385C
Dota 2
ESET Online Scanner v3
Facebook Video Calling 1.2.0.159
FARO LS 1.1.406.58
FARO LS 1.1.408.2
FARO LS 4.8.2.25521
Garena - Heroes of Newerth
Garena 2010
Garena Plus
Google Chrome
HI-TECH C51-lite V9.60PL0
HI-TECH PICC lite V9.60PL0
Hotfix for Microsoft .NET Framework 4 Client Profile (KB2461678)
ImgBurn
InstantOn for NB
Intel® Manageability Engine Firmware Recovery Agent
Intel® Management Engine Components
Intel® OpenCL CPU Runtime
Intel® Processor Graphics
Intel® USB 3.0 eXtensible Host Controller Driver
Internet Download Manager
Java Auto Updater
Java™ 7 Update 5
JavaFX 2.1.1
Malwarebytes Anti-Malware version 1.62.0.1300
Mathcad 15 F000
Mathcad PDSi viewable support
Microsoft Silverlight
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2008 x64 ATL Runtime 9.0.30729
Microsoft Visual C++ 2008 x64 CRT Runtime 9.0.30729
Microsoft Visual C++ 2008 x64 MFC Runtime 9.0.30729
Microsoft Visual C++ 2008 x64 OpenMP Runtime 9.0.30729
Microsoft Visual C++ 2008 x86 ATL Runtime 9.0.30729
Microsoft Visual C++ 2008 x86 CRT Runtime 9.0.30729
Microsoft Visual C++ 2008 x86 MFC Runtime 9.0.30729
Microsoft Visual C++ 2008 x86 OpenMP Runtime 9.0.30729
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
MiniTool Partition Wizard Home Edition 7.5
Mozilla Firefox 13.0.1 (x86 en-US)
Mozilla Maintenance Service
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 4.0 SP2 Parser and SDK
National Instruments Software
NetCut 2.1.4
Network Updater
NI Circuit Design Suite 11.0.1 Core
NI Circuit Design Suite 11.0.1 Pro
NI Circuit Design Suite 11.0.1 Pro Licenses
NI EULA Depot
NI Example Finder 9.0
NI Help Assistant
NI LabVIEW 2009 SP1 Run-Time Engine Web Services
NI LabVIEW Real-Time NBFifo
NI LabVIEW Run-Time Engine 2009 SP1
NI LabVIEW Run-Time Engine 8.6.1
NI LabVIEW Run-Time Engine Interop 2009
NI LabVIEW Web Server for Run-Time Engine
NI LabVIEW Web Services Runtime
NI LabWindows/CVI 9.0.1 Run-Time Engine
NI License Manager
NI Logos 5.1.3
NI Logos XT Support
NI Math Kernel Libraries
NI MDF Support
NI MetaSuite Installer
NI Service Locator
NI TDMS
NI Trace Engine
NI Uninstaller
NI Update Service
NI Update Service Full
NI USI 1.7.0
NI VC2005MSMs x86
NI VC2008MSMs x86
NI Web Pipeline 2.0.1
Notepad++
Novarm DipTrace
PDF to DWG Converter
Pointblank
Qualcomm Atheros WiFi Driver Installation
Realtek Ethernet Controller Driver
Realtek High Definition Audio Driver
Realtek PCIE Card Reader
RegCure Pro
Samsung Kies
SceneSwitch
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
Security Update for Microsoft .NET Framework 4 Extended (KB2656351)
Skype Click to Call
Skype™ 5.10
Steam
TuneUp Utilities 2012
TuneUp Utilities Language Pack (en-US)
UltimateDefrag
UltraISO Premium V9.52
Unified Remote
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft .NET Framework 4 Extended (KB2468871)
Update for Microsoft .NET Framework 4 Extended (KB2533523)
Update for Microsoft .NET Framework 4 Extended (KB2600217)
USB Disk Security
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177
VLC media player 2.0.2
Windchill ProductPoint Client Manager
Windows 7 USB/DVD Download Tool
WinFlash
WinPcap 4.1.2
Wireless Console 3
YTD Video Downloader 3.9
.
==== Event Viewer Messages From Past Week ========
.
8/9/2012 9:15:48 AM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the AtherosSvc service to connect.
8/8/2012 9:06:44 AM, Error: bowser [8003] - The master browser has received a server announcement from the computer JAYRICK that believes that it is the master browser for the domain on transport NetBT_Tcpip_{F721C091-B959-4759-AB9C-32F30D02584B}. The master browser is stopping or an election is being forced.
8/6/2012 7:59:51 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the lmhosts service.
8/6/2012 11:13:50 AM, Error: Service Control Manager [7022] - The Autodesk Content Service service hung on starting.
8/12/2012 7:43:20 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Autodesk Content Service service to connect.
8/12/2012 7:43:20 PM, Error: Service Control Manager [7000] - The Autodesk Content Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
8/11/2012 9:00:41 PM, Error: Service Control Manager [7023] - The Windows Update service terminated with the following error: %%-2147467243
8/11/2012 8:58:25 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Connectify service to connect.
8/11/2012 8:58:25 PM, Error: Service Control Manager [7000] - The Connectify service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
8/11/2012 8:24:19 PM, Error: Service Control Manager [7031] - The Windows Search service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service.
8/11/2012 8:24:19 PM, Error: Service Control Manager [7024] - The Windows Search service terminated with service-specific error %%-1073473535.
.
==== End Of File ===========================

#3 ohehehe

ohehehe
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:04:02 AM

Posted 12 August 2012 - 01:15 PM

GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2012-08-13 02:25:04
Windows 6.1.7601 Service Pack 1
Running: qxndlcvr.exe


---- Registry - GMER 1.0.15 ----

Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\94dbc9ab461d
Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\94dbc9ab461d@f8d0bd3ba06d 0xC0 0x99 0x7F 0x6B ...
Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\94dbc9ab461d@380a94664d61 0x25 0xED 0x2F 0x56 ...
Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\94dbc9ab461d@e02a829a3834 0x07 0x5E 0x9E 0x22 ...
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\94dbc9ab461d (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\94dbc9ab461d@f8d0bd3ba06d 0xC0 0x99 0x7F 0x6B ...
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\94dbc9ab461d@380a94664d61 0x25 0xED 0x2F 0x56 ...
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\94dbc9ab461d@e02a829a3834 0x07 0x5E 0x9E 0x22 ...
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{2EAD49F3-8E89-B60A-D0AD-D03EDAFC015C}
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{2EAD49F3-8E89-B60A-D0AD-D03EDAFC015C}@hacldbekjlnaebio 0x61 0x61 0x00 0x00
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{2EAD49F3-8E89-B60A-D0AD-D03EDAFC015C}@iagjkbhfdiaefeehmh 0x6A 0x61 0x64 0x68 ...
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{2EAD49F3-8E89-B60A-D0AD-D03EDAFC015C}@hamkadingebfgajo 0x6A 0x61 0x64 0x68 ...
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{2EAD49F3-8E89-B60A-D0AD-D03EDAFC015C}@hacldbekpnlaeojc 0x61 0x61 0x00 0x00

---- EOF - GMER 1.0.15 ----

#4 Gammo

Gammo

  • Members
  • 202 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:10:02 PM

Posted 14 August 2012 - 10:31 AM

I'm already helping you at Geeks to Go: http://www.geekstogo.com/forum/topic/320897-i-have-so-many-svhostexe/

unite_blue.png

Please post the final results, good or bad. We like to know!





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users