Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Tracking999


  • This topic is locked This topic is locked
8 replies to this topic

#1 lilwing98

lilwing98

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Local time:06:57 PM

Posted 07 November 2012 - 08:58 PM

Recently there have been ads running in the background and if I click on a link, sometimes it goes, other times it redirects to tracking999(dot)com or something like that. What is this and how can I make it stop?

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,166 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:57 PM

Posted 07 November 2012 - 09:05 PM

Hello and welcome. We need some info and some scan logs. Tell me how it is after.

Please download MiniToolBox, save it to your desktop and run it.Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.

Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run. Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Please Download

TDSSkiller


Launch it. Click on change parameters-Select TDLFS file system

Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results.



Please download AdwCleaner by Xplode onto your desktop.


  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Delete.
  • Confirm each time with Ok.
  • You will be prompted to restart your computer. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.



Lastly:


I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image
      icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 lilwing98

lilwing98
  • Topic Starter

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Local time:06:57 PM

Posted 07 November 2012 - 09:33 PM

MiniToolBox by Farbar Version: 07-11-2012
Ran by Owner (administrator) on 07-11-2012 at 21:29:34
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Broadcom 802.11n Network Adapter = Wireless Network Connection (Connected)
Broadcom NetLink ™ Gigabit Ethernet = Local Area Connection (Media disconnected)
EasyTether Network Adapter = Local Area Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Owner-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : Belkin

Ethernet adapter Local Area Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : EasyTether Network Adapter
Physical Address. . . . . . . . . : 02-00-54-74-68-72
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : Belkin
Description . . . . . . . . . . . : Broadcom 802.11n Network Adapter
Physical Address. . . . . . . . . : 4C-0F-6E-8F-F0-3F
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::7dfd:218d:aa7:31f5%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.2.6(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Wednesday, November 07, 2012 8:45:14 PM
Lease Expires . . . . . . . . . . : Sunday, December 15, 2148 3:57:57 AM
Default Gateway . . . . . . . . . : 192.168.2.1
DHCP Server . . . . . . . . . . . : 192.168.2.1
DHCPv6 IAID . . . . . . . . . . . : 390860654
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-C8-D2-B8-20-6A-8A-19-AA-C2
DNS Servers . . . . . . . . . . . : 192.168.2.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom NetLink ™ Gigabit Ethernet
Physical Address. . . . . . . . . : 20-6A-8A-19-AA-C2
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.Belkin:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : Belkin
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 12:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6ab8:10a6:2d90:b384:fe54(Preferred)
Link-local IPv6 Address . . . . . : fe80::10a6:2d90:b384:fe54%19(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{3C1B4411-B70A-4F61-8718-73EE4D9FBBB0}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{0C51A8F8-732A-4BF4-B422-30503915BB33}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: Comer Network
Address: 192.168.2.1

Name: google.com
Addresses: 2607:f8b0:4004:803::1001
74.125.228.101
74.125.228.97
74.125.228.110
74.125.228.104
74.125.228.96
74.125.228.105
74.125.228.102
74.125.228.103
74.125.228.99
74.125.228.100
74.125.228.98


Pinging google.com [74.125.228.102] with 32 bytes of data:
Reply from 74.125.228.102: bytes=32 time=18ms TTL=54
Reply from 74.125.228.102: bytes=32 time=18ms TTL=54

Ping statistics for 74.125.228.102:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 18ms, Maximum = 18ms, Average = 18ms
Server: Comer Network
Address: 192.168.2.1

Name: yahoo.com
Addresses: 98.138.253.109
72.30.38.140
98.139.183.24


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=319ms TTL=50
Reply from 98.139.183.24: bytes=32 time=292ms TTL=48

Ping statistics for 98.139.183.24:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 292ms, Maximum = 319ms, Average = 305ms
Server: Comer Network
Address: 192.168.2.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
14...02 00 54 74 68 72 ......EasyTether Network Adapter
11...4c 0f 6e 8f f0 3f ......Broadcom 802.11n Network Adapter
10...20 6a 8a 19 aa c2 ......Broadcom NetLink ™ Gigabit Ethernet
1...........................Software Loopback Interface 1
20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
19...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
22...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.2.1 192.168.2.6 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.2.0 255.255.255.0 On-link 192.168.2.6 281
192.168.2.6 255.255.255.255 On-link 192.168.2.6 281
192.168.2.255 255.255.255.255 On-link 192.168.2.6 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.2.6 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.2.6 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
19 58 ::/0 On-link
1 306 ::1/128 On-link
19 58 2001::/32 On-link
19 306 2001:0:9d38:6ab8:10a6:2d90:b384:fe54/128
On-link
11 281 fe80::/64 On-link
19 306 fe80::/64 On-link
19 306 fe80::10a6:2d90:b384:fe54/128
On-link
11 281 fe80::7dfd:218d:aa7:31f5/128
On-link
1 306 ff00::/8 On-link
19 306 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 08 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog5 08 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (11/04/2012 07:00:00 PM) (Source: Windows Backup) (User: )
Description: The backup did not complete because of an error writing to the backup location E:\. The error is: The backup location cannot be found or is not valid. Review your backup settings and check the backup location. (0x81000006).

Error: (11/04/2012 01:49:59 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 8112

Error: (11/04/2012 01:49:59 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 8112

Error: (11/04/2012 01:49:59 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (11/04/2012 01:49:58 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 7082

Error: (11/04/2012 01:49:58 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 7082

Error: (11/04/2012 01:49:58 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (11/04/2012 01:49:57 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6084

Error: (11/04/2012 01:49:57 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6084

Error: (11/04/2012 01:49:57 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second


System errors:
=============
Error: (11/07/2012 08:45:32 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
SBRE

Error: (11/06/2012 08:35:13 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
SBRE

Error: (11/05/2012 09:04:49 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
SBRE

Error: (11/04/2012 10:58:29 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
SBRE

Error: (11/04/2012 10:01:59 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
SBRE

Error: (11/04/2012 05:36:30 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
SBRE

Error: (11/04/2012 01:33:32 PM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR2.

Error: (11/04/2012 01:30:54 PM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR1.

Error: (11/04/2012 01:29:43 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
SBRE

Error: (11/03/2012 09:40:26 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
SBRE


Microsoft Office Sessions:
=========================
Error: (11/04/2012 07:00:00 PM) (Source: Windows Backup)(User: )
Description: E:\The backup location cannot be found or is not valid. Review your backup settings and check the backup location. (0x81000006)

Error: (11/04/2012 01:49:59 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 8112

Error: (11/04/2012 01:49:59 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 8112

Error: (11/04/2012 01:49:59 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (11/04/2012 01:49:58 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 7082

Error: (11/04/2012 01:49:58 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 7082

Error: (11/04/2012 01:49:58 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (11/04/2012 01:49:57 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6084

Error: (11/04/2012 01:49:57 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6084

Error: (11/04/2012 01:49:57 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second


=========================== Installed Programs ============================

18 Wheels of Steel - American Long Haul (Version: 2.2.0.95)
Acer Backup Manager (Version: 2.0.0.60)
Acer Crystal Eye webcam (Version: 1.0.3.5)
Acer ePower Management (Version: 5.00.3004)
Acer eRecovery Management (Version: 4.05.3011)
Acer Game Console
Acer Games (Version: 1.0.1.3)
Acer Registration (Version: 1.03.3003)
Acer ScreenSaver (Version: 1.1.0423.2010)
Acer Updater (Version: 1.02.3502)
Acrobat.com (Version: 1.6.65)
Adobe AIR (Version: 3.2.0.2070)
Adobe Flash Player 11 ActiveX (Version: 11.4.402.287)
Adobe Flash Player 11 Plugin (Version: 11.4.402.287)
Adobe Reader 9.2 MUI (Version: 9.2.0)
Agatha Christie - Death on the Nile (Version: 2.2.0.95)
Alcor Micro USB Card Reader (Version: 1.5.17.05094)
Amazon MP3 Downloader 1.0.17 (Version: 1.0.17)
ampLion 1.1 Demo 1.1.0
Android SDK Tools (Version: 1.16)
Apple Application Support (Version: 2.2.2)
Apple Mobile Device Support (Version: 6.0.0.59)
Apple Software Update (Version: 2.1.3.127)
ASIO4ALL (Version: 2.11 Beta1)
Backup Manager Basic (Version: 2.0.0.60)
Bejeweled 2 Deluxe (Version: 2.2.0.95)
BitTorrent (Version: 7.6.1)
Blackhawk Striker 2 (Version: 2.2.0.95)
Bonjour (Version: 3.0.0.10)
Broadcom Gigabit NetLink Controller (Version: 12.52.03)
Build-a-lot 2 (Version: 2.2.0.95)
Canon MX410 series MP Drivers
Carbonite Online Backup Setup (Version: 3.8.0)
CCleaner (Version: 3.23)
Chuzzle Deluxe (Version: 2.2.0.95)
CyberLink PowerDVD 9 (Version: 9.0.3814.50)
Diner Dash 2 Restaurant Rescue (Version: 2.2.0.95)
Dora's Carnival Adventure (Version: 2.2.0.95)
DraftSight x64 (Version: 10.0.1229)
Dropbox (Version: 1.4.7)
EasyTether (Version: 1.1.14)
eBay Worldwide (Version: 2.1.0901)
ESET Online Scanner v3
eSobi v2 (Version: 2.0.4.000274)
FATE (Version: 2.2.0.95)
Free YouTube Downloader 3.5.126
GIMP 2.6.11 (Version: 2.6.11)
Google Chrome (Version: 22.0.1229.94)
Google Talk Plugin (Version: 3.10.2.10212)
HiJackThis (Version: 1.0.0)
HTC BMP USB Driver (Version: 1.0.5375)
HTC Driver Installer (Version: 3.0.0.021)
HTC Sync (Version: 3.2.20)
Identity Card (Version: 1.00.3003)
Intel® Graphics Media Accelerator Driver (Version: 8.15.10.2119)
Intel® Management Engine Components (Version: 6.0.0.1179)
Intel® Rapid Storage Technology (Version: 9.6.0.1014)
iPad/iPhone/iPod to Computer Transfer 7.7.4
iTunes (Version: 10.7.0.21)
Java 7 Update 9 (Version: 7.0.90)
Java Auto Updater (Version: 2.1.9.0)
Jewel Quest - Heritage (Version: 2.2.0.95)
Jewel Quest Solitaire 2 (Version: 2.2.0.95)
John Deere Drive Green (Version: 2.2.0.95)
Junk Mail filter update (Version: 14.0.8089.726)
K-Lite Codec Pack 7.1.0 (Full) (Version: 7.1.0)
Launch Manager (Version: 4.0.12)
Malwarebytes Anti-Malware version 1.65.0.1400 (Version: 1.65.0.1400)
ManyCam 2.6.65 (remove only) (Version: 2.6.65)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office Starter 2010 - English (Version: 14.0.4763.1000)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Mozilla Firefox 15.0.1 (x86 en-US) (Version: 15.0.1)
Mozilla Maintenance Service (Version: 15.0.1)
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP3 Parser (KB2721691) (Version: 4.30.2114.0)
MSXML 4.0 SP3 Parser (KB973685) (Version: 4.30.2107.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
muvee Reveal Seagate Edition (Version: 7.0.41.11017)
MyWinLocker (Version: 3.1.212.0)
MyWinLocker Suite (Version: 3.1.212.0)
Open Book HVAC Certifications 4.2.00 (Version: 4.2.00)
OpenOffice.org 3.1 (Version: 3.1.9399)
OpenSong Version 2.0 Beta
Paint.NET v3.5.10 (Version: 3.60.0)
Penguins! (Version: 2.2.0.95)
Plants vs. Zombies (Version: 2.2.0.95)
Polar Bowler (Version: 2.2.0.95)
Polar Golfer (Version: 2.2.0.95)
QuickTime (Version: 7.72.80.56)
Realtek High Definition Audio Driver (Version: 6.0.1.6000)
REAPER (x64)
SAMSUNG Mobile Modem Driver Set
Samsung Mobile phone USB driver Drive Software
SAMSUNG Mobile USB Modem 1.0 Software
SAMSUNG Mobile USB Modem Software
Samsung PC Studio 3 USB Driver Installer (Version: 3.2.0.70701)
Seagate Manager Installer (Version: 2.01.0600)
Shredder (Version: 2.0.8.3)
SketchUp 8 (Version: 3.0.15158)
Splashtop Remote Client (Version: 1.1.4.0)
Splashtop Streamer (Version: 2.0.0.4)
Spotify (Version: 0.8.5.1333.g822e0de8)
Spybot - Search & Destroy (Version: 1.6.2)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Updater Service (Version: 14,12,8,9)
Virtual Villagers 4 - The Tree of Life (Version: 2.2.0.95)
VLC media player 2.0.2 (Version: 2.0.2)
Welcome Center (Version: 1.02.3002)
Winamp (Version: 5.623 )
Winamp Detector Plug-in (Version: 1.0.0.1)
Windows Live Call (Version: 14.0.8064.0206)
Windows Live Communications Platform (Version: 14.0.8064.206)
Windows Live Essentials (Version: 14.0.8089.0726)
Windows Live Essentials (Version: 14.0.8089.726)
Windows Live Mail (Version: 14.0.8089.0726)
Windows Live Messenger (Version: 14.0.8089.0726)
Windows Live Movie Maker (Version: 14.0.8091.0730)
Windows Live Photo Gallery (Version: 14.0.8081.709)
Windows Live Sign-in Assistant (Version: 5.000.818.5)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Live Writer (Version: 14.0.8089.0726)
Zuma's Revenge (Version: 2.2.0.95)

========================= Memory info: ===================================

Percentage of memory in use: 55%
Total physical RAM: 2804.5 MB
Available physical RAM: 1247.11 MB
Total Pagefile: 5607.18 MB
Available Pagefile: 3534.39 MB
Total Virtual: 4095.88 MB
Available Virtual: 3963.93 MB

========================= Partitions: =====================================

1 Drive c: (ACER) (Fixed) (Total:219.11 GB) (Free:151.72 GB) NTFS
2 Drive d: (Tangled) (CDROM) (Total:0.68 GB) (Free:0 GB) UDF

========================= Users: ========================================

User accounts for \\OWNER-PC

Administrator Guest Owner


**** End of log ****

21:30:46.0405 2528 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
21:30:46.0636 2528 ============================================================
21:30:46.0636 2528 Current date / time: 2012/11/07 21:30:46.0636
21:30:46.0636 2528 SystemInfo:
21:30:46.0636 2528
21:30:46.0636 2528 OS Version: 6.1.7601 ServicePack: 1.0
21:30:46.0636 2528 Product type: Workstation
21:30:46.0637 2528 ComputerName: OWNER-PC
21:30:46.0637 2528 UserName: Owner
21:30:46.0637 2528 Windows directory: C:\Windows
21:30:46.0637 2528 System windows directory: C:\Windows
21:30:46.0637 2528 Running under WOW64
21:30:46.0637 2528 Processor architecture: Intel x64
21:30:46.0637 2528 Number of processors: 2
21:30:46.0637 2528 Page size: 0x1000
21:30:46.0637 2528 Boot type: Normal boot
21:30:46.0637 2528 ============================================================
21:30:47.0223 2528 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:30:47.0226 2528 ============================================================
21:30:47.0226 2528 \Device\Harddisk0\DR0:
21:30:47.0227 2528 MBR partitions:
21:30:47.0227 2528 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1B58800, BlocksNum 0x32000
21:30:47.0227 2528 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1B8A800, BlocksNum 0x1B63A970
21:30:47.0227 2528 ============================================================
21:30:47.0253 2528 C: <-> \Device\Harddisk0\DR0\Partition2
21:30:47.0253 2528 ============================================================
21:30:47.0253 2528 Initialize success
21:30:47.0253 2528 ============================================================
21:31:22.0750 3984 ============================================================
21:31:22.0750 3984 Scan started
21:31:22.0750 3984 Mode: Manual; TDLFS;
21:31:22.0750 3984 ============================================================
21:31:23.0386 3984 ================ Scan system memory ========================
21:31:23.0386 3984 System memory - ok
21:31:23.0387 3984 ================ Scan services =============================
21:31:23.0569 3984 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
21:31:23.0574 3984 1394ohci - ok
21:31:23.0614 3984 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
21:31:23.0620 3984 ACPI - ok
21:31:23.0656 3984 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
21:31:23.0657 3984 AcpiPmi - ok
21:31:23.0824 3984 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:31:23.0827 3984 AdobeFlashPlayerUpdateSvc - ok
21:31:23.0898 3984 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
21:31:23.0907 3984 adp94xx - ok
21:31:23.0952 3984 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
21:31:23.0959 3984 adpahci - ok
21:31:23.0997 3984 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
21:31:24.0001 3984 adpu320 - ok
21:31:24.0035 3984 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
21:31:24.0037 3984 AeLookupSvc - ok
21:31:24.0095 3984 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
21:31:24.0104 3984 AFD - ok
21:31:24.0161 3984 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
21:31:24.0163 3984 agp440 - ok
21:31:24.0189 3984 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
21:31:24.0192 3984 ALG - ok
21:31:24.0221 3984 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
21:31:24.0223 3984 aliide - ok
21:31:24.0234 3984 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
21:31:24.0236 3984 amdide - ok
21:31:24.0276 3984 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
21:31:24.0279 3984 AmdK8 - ok
21:31:24.0302 3984 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
21:31:24.0305 3984 AmdPPM - ok
21:31:24.0357 3984 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
21:31:24.0360 3984 amdsata - ok
21:31:24.0379 3984 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
21:31:24.0384 3984 amdsbs - ok
21:31:24.0402 3984 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
21:31:24.0405 3984 amdxata - ok
21:31:24.0458 3984 [ 391887990CDAA83DE5C56C3FDE966DA1 ] AmUStor C:\Windows\system32\drivers\AmUStor.SYS
21:31:24.0460 3984 AmUStor - ok
21:31:24.0477 3984 ApfiltrService - ok
21:31:24.0526 3984 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
21:31:24.0529 3984 AppID - ok
21:31:24.0570 3984 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
21:31:24.0572 3984 AppIDSvc - ok
21:31:24.0596 3984 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
21:31:24.0598 3984 Appinfo - ok
21:31:24.0723 3984 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:31:24.0726 3984 Apple Mobile Device - ok
21:31:24.0787 3984 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
21:31:24.0790 3984 arc - ok
21:31:24.0816 3984 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
21:31:24.0819 3984 arcsas - ok
21:31:24.0842 3984 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
21:31:24.0844 3984 AsyncMac - ok
21:31:24.0907 3984 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
21:31:24.0909 3984 atapi - ok
21:31:24.0977 3984 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:31:24.0994 3984 AudioEndpointBuilder - ok
21:31:25.0011 3984 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
21:31:25.0018 3984 AudioSrv - ok
21:31:25.0088 3984 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
21:31:25.0091 3984 AxInstSV - ok
21:31:25.0154 3984 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
21:31:25.0163 3984 b06bdrv - ok
21:31:25.0231 3984 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
21:31:25.0235 3984 b57nd60a - ok
21:31:25.0331 3984 [ FDE8C8DC07E75347E4C6B455A0964217 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
21:31:25.0419 3984 BCM43XX - ok
21:31:25.0466 3984 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
21:31:25.0469 3984 BDESVC - ok
21:31:25.0535 3984 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
21:31:25.0536 3984 Beep - ok
21:31:25.0612 3984 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
21:31:25.0629 3984 BFE - ok
21:31:25.0688 3984 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
21:31:25.0722 3984 BITS - ok
21:31:25.0755 3984 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
21:31:25.0757 3984 blbdrive - ok
21:31:25.0835 3984 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
21:31:25.0843 3984 Bonjour Service - ok
21:31:25.0919 3984 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
21:31:25.0921 3984 bowser - ok
21:31:25.0956 3984 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
21:31:25.0958 3984 BrFiltLo - ok
21:31:25.0976 3984 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
21:31:25.0978 3984 BrFiltUp - ok
21:31:26.0021 3984 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
21:31:26.0024 3984 BridgeMP - ok
21:31:26.0080 3984 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
21:31:26.0083 3984 Browser - ok
21:31:26.0124 3984 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
21:31:26.0131 3984 Brserid - ok
21:31:26.0167 3984 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
21:31:26.0169 3984 BrSerWdm - ok
21:31:26.0179 3984 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
21:31:26.0181 3984 BrUsbMdm - ok
21:31:26.0189 3984 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
21:31:26.0191 3984 BrUsbSer - ok
21:31:26.0244 3984 [ 07DCB3C254D584E3949FE2C0EE3963F2 ] BthAudioHF C:\Windows\system32\DRIVERS\BthAudioHF.sys
21:31:26.0246 3984 BthAudioHF - ok
21:31:26.0274 3984 [ 832B121E4532919CC49F2438F1DCAA21 ] BthAvrcp C:\Windows\system32\DRIVERS\BthAvrcp.sys
21:31:26.0275 3984 BthAvrcp - ok
21:31:26.0329 3984 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
21:31:26.0331 3984 BthEnum - ok
21:31:26.0363 3984 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
21:31:26.0365 3984 BTHMODEM - ok
21:31:26.0397 3984 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
21:31:26.0400 3984 BthPan - ok
21:31:26.0466 3984 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
21:31:26.0476 3984 BTHPORT - ok
21:31:26.0540 3984 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
21:31:26.0542 3984 bthserv - ok
21:31:26.0593 3984 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
21:31:26.0596 3984 BTHUSB - ok
21:31:26.0637 3984 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
21:31:26.0640 3984 cdfs - ok
21:31:26.0685 3984 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
21:31:26.0689 3984 cdrom - ok
21:31:26.0744 3984 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
21:31:26.0746 3984 CertPropSvc - ok
21:31:26.0779 3984 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
21:31:26.0781 3984 circlass - ok
21:31:26.0826 3984 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
21:31:26.0833 3984 CLFS - ok
21:31:26.0917 3984 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:31:26.0920 3984 clr_optimization_v2.0.50727_32 - ok
21:31:26.0947 3984 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:31:26.0950 3984 clr_optimization_v2.0.50727_64 - ok
21:31:27.0044 3984 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:31:27.0078 3984 clr_optimization_v4.0.30319_32 - ok
21:31:27.0115 3984 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:31:27.0119 3984 clr_optimization_v4.0.30319_64 - ok
21:31:27.0146 3984 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
21:31:27.0148 3984 CmBatt - ok
21:31:27.0176 3984 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
21:31:27.0178 3984 cmdide - ok
21:31:27.0241 3984 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
21:31:27.0250 3984 CNG - ok
21:31:27.0297 3984 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
21:31:27.0299 3984 Compbatt - ok
21:31:27.0349 3984 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
21:31:27.0351 3984 CompositeBus - ok
21:31:27.0369 3984 COMSysApp - ok
21:31:27.0387 3984 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
21:31:27.0388 3984 crcdisk - ok
21:31:27.0453 3984 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
21:31:27.0457 3984 CryptSvc - ok
21:31:27.0503 3984 [ DF07C6D98BA7F81D0571E366B1CD6672 ] csr_a2dp C:\Windows\system32\drivers\bthav.sys
21:31:27.0506 3984 csr_a2dp - ok
21:31:27.0628 3984 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
21:31:27.0649 3984 cvhsvc - ok
21:31:27.0716 3984 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
21:31:27.0728 3984 DcomLaunch - ok
21:31:27.0803 3984 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
21:31:27.0809 3984 defragsvc - ok
21:31:27.0856 3984 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
21:31:27.0858 3984 DfsC - ok
21:31:27.0892 3984 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
21:31:27.0899 3984 Dhcp - ok
21:31:27.0957 3984 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
21:31:27.0958 3984 discache - ok
21:31:28.0010 3984 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
21:31:28.0012 3984 Disk - ok
21:31:28.0058 3984 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
21:31:28.0063 3984 Dnscache - ok
21:31:28.0099 3984 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
21:31:28.0105 3984 dot3svc - ok
21:31:28.0147 3984 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
21:31:28.0151 3984 DPS - ok
21:31:28.0265 3984 [ 888D373E338BA8B2D2E109F63813EE0B ] DraftSight API Service C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe
21:31:28.0269 3984 DraftSight API Service - ok
21:31:28.0305 3984 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
21:31:28.0307 3984 drmkaud - ok
21:31:28.0380 3984 [ 1FCA854CEDFC2CCD0C22E46EA4EA18F1 ] DsiWMIService C:\Program Files (x86)\Launch Manager\dsiwmis.exe
21:31:28.0386 3984 DsiWMIService - ok
21:31:28.0468 3984 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
21:31:28.0502 3984 DXGKrnl - ok
21:31:28.0570 3984 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
21:31:28.0573 3984 EapHost - ok
21:31:28.0629 3984 [ 1E8D0E318D3F17B2EAAF993DB20C76F0 ] easytether C:\Windows\system32\DRIVERS\easytthr.sys
21:31:28.0630 3984 easytether - ok
21:31:28.0739 3984 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
21:31:28.0847 3984 ebdrv - ok
21:31:28.0902 3984 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
21:31:28.0905 3984 EFS - ok
21:31:28.0997 3984 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
21:31:29.0014 3984 ehRecvr - ok
21:31:29.0055 3984 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
21:31:29.0058 3984 ehSched - ok
21:31:29.0108 3984 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
21:31:29.0117 3984 elxstor - ok
21:31:29.0244 3984 [ 09DDC2D4724A4FF844F738B60E63D872 ] ePowerSvc C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
21:31:29.0278 3984 ePowerSvc - ok
21:31:29.0303 3984 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
21:31:29.0304 3984 ErrDev - ok
21:31:29.0370 3984 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
21:31:29.0378 3984 EventSystem - ok
21:31:29.0414 3984 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
21:31:29.0419 3984 exfat - ok
21:31:29.0443 3984 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
21:31:29.0447 3984 fastfat - ok
21:31:29.0504 3984 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
21:31:29.0521 3984 Fax - ok
21:31:29.0554 3984 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
21:31:29.0556 3984 fdc - ok
21:31:29.0576 3984 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
21:31:29.0578 3984 fdPHost - ok
21:31:29.0597 3984 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
21:31:29.0600 3984 FDResPub - ok
21:31:29.0613 3984 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
21:31:29.0616 3984 FileInfo - ok
21:31:29.0631 3984 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
21:31:29.0633 3984 Filetrace - ok
21:31:29.0657 3984 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
21:31:29.0660 3984 flpydisk - ok
21:31:29.0706 3984 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
21:31:29.0712 3984 FltMgr - ok
21:31:29.0776 3984 [ B4447F606BB19FD8AD0BAFB59B90F5D9 ] FontCache C:\Windows\system32\FntCache.dll
21:31:29.0811 3984 FontCache - ok
21:31:29.0872 3984 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:31:29.0874 3984 FontCache3.0.0.0 - ok
21:31:30.0017 3984 [ 9513B437B7ADB1E6065B7F0D83D11ECF ] FreeAgentGoNext Service C:\Program Files (x86)\Seagate\SeagateManager\Sync\FreeAgentService.exe
21:31:30.0021 3984 FreeAgentGoNext Service - ok
21:31:30.0054 3984 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
21:31:30.0056 3984 FsDepends - ok
21:31:30.0094 3984 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
21:31:30.0095 3984 Fs_Rec - ok
21:31:30.0149 3984 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
21:31:30.0153 3984 fvevol - ok
21:31:30.0181 3984 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
21:31:30.0183 3984 gagp30kx - ok
21:31:30.0266 3984 [ CE16683CFD11FE70BDE435DDA5EA1FCA ] GameConsoleService C:\Program Files (x86)\Acer Games\Acer Game Console\GameConsoleService.exe
21:31:30.0273 3984 GameConsoleService - ok
21:31:30.0317 3984 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:31:30.0318 3984 GEARAspiWDM - ok
21:31:30.0363 3984 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
21:31:30.0382 3984 gpsvc - ok
21:31:30.0453 3984 [ 0191DEE9B9EB7902AF2CF4F67301095D ] GREGService C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
21:31:30.0455 3984 GREGService - ok
21:31:30.0494 3984 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
21:31:30.0496 3984 hcw85cir - ok
21:31:30.0548 3984 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:31:30.0555 3984 HdAudAddService - ok
21:31:30.0600 3984 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
21:31:30.0602 3984 HDAudBus - ok
21:31:30.0667 3984 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
21:31:30.0668 3984 HECIx64 - ok
21:31:30.0711 3984 [ EE8C05F926521A0E24EDAF40F45D01E6 ] HFGService C:\Windows\System32\HFGService.dll
21:31:30.0718 3984 HFGService - ok
21:31:30.0748 3984 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
21:31:30.0750 3984 HidBatt - ok
21:31:30.0764 3984 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
21:31:30.0765 3984 HidBth - ok
21:31:30.0783 3984 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
21:31:30.0785 3984 HidIr - ok
21:31:30.0829 3984 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
21:31:30.0830 3984 hidserv - ok
21:31:30.0900 3984 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
21:31:30.0901 3984 HidUsb - ok
21:31:30.0948 3984 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
21:31:30.0950 3984 hkmsvc - ok
21:31:30.0987 3984 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
21:31:30.0992 3984 HomeGroupListener - ok
21:31:31.0038 3984 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
21:31:31.0042 3984 HomeGroupProvider - ok
21:31:31.0091 3984 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
21:31:31.0093 3984 HpSAMD - ok
21:31:31.0151 3984 [ F47CEC45FB85791D4AB237563AD0FA8F ] HTCAND64 C:\Windows\system32\Drivers\ANDROIDUSB.sys
21:31:31.0152 3984 HTCAND64 - ok
21:31:31.0210 3984 [ B8B1B284362E1D8135112573395D5DA5 ] htcnprot C:\Windows\system32\DRIVERS\htcnprot.sys
21:31:31.0212 3984 htcnprot - ok
21:31:31.0276 3984 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
21:31:31.0291 3984 HTTP - ok
21:31:31.0354 3984 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
21:31:31.0355 3984 hwpolicy - ok
21:31:31.0406 3984 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
21:31:31.0408 3984 i8042prt - ok
21:31:31.0464 3984 [ ABBF174CB394F5C437410A788B7E404A ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
21:31:31.0468 3984 iaStor - ok
21:31:31.0495 3984 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
21:31:31.0501 3984 iaStorV - ok
21:31:31.0624 3984 [ A33B9916BF44820E25A808D7120CD849 ] IBUpdaterService C:\ProgramData\IBUpdaterService\ibsvc.exe
21:31:31.0631 3984 IBUpdaterService - ok
21:31:31.0701 3984 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:31:31.0716 3984 idsvc - ok
21:31:31.0955 3984 [ 2A22AB054F4630D2EF4BAB2853F6D5F6 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
21:31:32.0157 3984 igfx - ok
21:31:32.0207 3984 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
21:31:32.0208 3984 iirsp - ok
21:31:32.0265 3984 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
21:31:32.0298 3984 IKEEXT - ok
21:31:32.0370 3984 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
21:31:32.0373 3984 Impcd - ok
21:31:32.0473 3984 [ 53019327813FF5AB2964B33B2C61307C ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
21:31:32.0523 3984 IntcAzAudAddService - ok
21:31:32.0564 3984 [ 58CF58DEE26C909BD6F977B61D246295 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
21:31:32.0567 3984 IntcDAud - ok
21:31:32.0585 3984 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
21:31:32.0586 3984 intelide - ok
21:31:32.0634 3984 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
21:31:32.0634 3984 intelppm - ok
21:31:32.0645 3984 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
21:31:32.0647 3984 IPBusEnum - ok
21:31:32.0691 3984 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:31:32.0693 3984 IpFilterDriver - ok
21:31:32.0738 3984 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
21:31:32.0746 3984 iphlpsvc - ok
21:31:32.0799 3984 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
21:31:32.0801 3984 IPMIDRV - ok
21:31:32.0843 3984 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
21:31:32.0846 3984 IPNAT - ok
21:31:32.0930 3984 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
21:31:32.0964 3984 iPod Service - ok
21:31:33.0003 3984 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
21:31:33.0005 3984 IRENUM - ok
21:31:33.0040 3984 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
21:31:33.0041 3984 isapnp - ok
21:31:33.0060 3984 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
21:31:33.0064 3984 iScsiPrt - ok
21:31:33.0112 3984 [ 9D7EA8C7215D8D4AE7BE110EEE61085D ] k57nd60a C:\Windows\system32\DRIVERS\k57nd60a.sys
21:31:33.0117 3984 k57nd60a - ok
21:31:33.0135 3984 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
21:31:33.0137 3984 kbdclass - ok
21:31:33.0159 3984 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
21:31:33.0161 3984 kbdhid - ok
21:31:33.0191 3984 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
21:31:33.0193 3984 KeyIso - ok
21:31:33.0238 3984 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
21:31:33.0240 3984 KSecDD - ok
21:31:33.0273 3984 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
21:31:33.0276 3984 KSecPkg - ok
21:31:33.0305 3984 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
21:31:33.0306 3984 ksthunk - ok
21:31:33.0344 3984 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
21:31:33.0349 3984 KtmRm - ok
21:31:33.0377 3984 [ 2AC603C3188C704CFCE353659AA7AD71 ] L1E C:\Windows\system32\DRIVERS\L1E62x64.sys
21:31:33.0378 3984 L1E - ok
21:31:33.0425 3984 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
21:31:33.0430 3984 LanmanServer - ok
21:31:33.0480 3984 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:31:33.0483 3984 LanmanWorkstation - ok
21:31:33.0538 3984 [ 93B73DED2BC688F140C6AE2FBAD45789 ] Live Updater Service C:\Program Files\Acer\Acer Updater\UpdaterService.exe
21:31:33.0541 3984 Live Updater Service - ok
21:31:33.0632 3984 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
21:31:33.0634 3984 lltdio - ok
21:31:33.0681 3984 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
21:31:33.0686 3984 lltdsvc - ok
21:31:33.0723 3984 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
21:31:33.0724 3984 lmhosts - ok
21:31:33.0810 3984 [ 23DE5B62B0445A6F874BE633C95B483E ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
21:31:33.0813 3984 LMS - ok
21:31:33.0846 3984 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
21:31:33.0848 3984 LSI_FC - ok
21:31:33.0863 3984 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
21:31:33.0865 3984 LSI_SAS - ok
21:31:33.0871 3984 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
21:31:33.0872 3984 LSI_SAS2 - ok
21:31:33.0887 3984 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
21:31:33.0889 3984 LSI_SCSI - ok
21:31:33.0908 3984 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
21:31:33.0910 3984 luafv - ok
21:31:33.0957 3984 [ D33E2B74CF8B3A652BF0A9FBD068E87A ] ManyCam C:\Windows\system32\DRIVERS\ManyCam_x64.sys
21:31:33.0958 3984 ManyCam - ok
21:31:34.0032 3984 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
21:31:34.0034 3984 Mcx2Svc - ok
21:31:34.0046 3984 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
21:31:34.0047 3984 megasas - ok
21:31:34.0056 3984 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
21:31:34.0060 3984 MegaSR - ok
21:31:34.0097 3984 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
21:31:34.0099 3984 MMCSS - ok
21:31:34.0106 3984 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
21:31:34.0107 3984 Modem - ok
21:31:34.0125 3984 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
21:31:34.0126 3984 monitor - ok
21:31:34.0182 3984 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
21:31:34.0183 3984 mouclass - ok
21:31:34.0215 3984 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
21:31:34.0216 3984 mouhid - ok
21:31:34.0253 3984 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
21:31:34.0255 3984 mountmgr - ok
21:31:34.0359 3984 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
21:31:34.0362 3984 MozillaMaintenance - ok
21:31:34.0384 3984 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
21:31:34.0388 3984 mpio - ok
21:31:34.0417 3984 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
21:31:34.0419 3984 mpsdrv - ok
21:31:34.0480 3984 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
21:31:34.0514 3984 MpsSvc - ok
21:31:34.0578 3984 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
21:31:34.0581 3984 MRxDAV - ok
21:31:34.0626 3984 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
21:31:34.0629 3984 mrxsmb - ok
21:31:34.0645 3984 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:31:34.0650 3984 mrxsmb10 - ok
21:31:34.0722 3984 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:31:34.0725 3984 mrxsmb20 - ok
21:31:34.0772 3984 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
21:31:34.0774 3984 msahci - ok
21:31:34.0814 3984 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
21:31:34.0816 3984 msdsm - ok
21:31:34.0836 3984 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
21:31:34.0839 3984 MSDTC - ok
21:31:34.0877 3984 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
21:31:34.0878 3984 Msfs - ok
21:31:34.0894 3984 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
21:31:34.0895 3984 mshidkmdf - ok
21:31:34.0931 3984 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
21:31:34.0932 3984 msisadrv - ok
21:31:34.0971 3984 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
21:31:34.0974 3984 MSiSCSI - ok
21:31:34.0978 3984 msiserver - ok
21:31:35.0009 3984 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
21:31:35.0010 3984 MSKSSRV - ok
21:31:35.0032 3984 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
21:31:35.0035 3984 MSPCLOCK - ok
21:31:35.0039 3984 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
21:31:35.0040 3984 MSPQM - ok
21:31:35.0076 3984 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
21:31:35.0080 3984 MsRPC - ok
21:31:35.0129 3984 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
21:31:35.0130 3984 mssmbios - ok
21:31:35.0172 3984 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
21:31:35.0173 3984 MSTEE - ok
21:31:35.0189 3984 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
21:31:35.0190 3984 MTConfig - ok
21:31:35.0204 3984 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
21:31:35.0205 3984 Mup - ok
21:31:35.0252 3984 [ 6FFECC25B39DC7652A0CEC0ADA9DB589 ] mwlPSDFilter C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
21:31:35.0254 3984 mwlPSDFilter - ok
21:31:35.0268 3984 [ 0BEFE32CA56D6EE89D58175725596A85 ] mwlPSDNServ C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
21:31:35.0269 3984 mwlPSDNServ - ok
21:31:35.0280 3984 [ D43BC633B8660463E446E28E14A51262 ] mwlPSDVDisk C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
21:31:35.0281 3984 mwlPSDVDisk - ok
21:31:35.0379 3984 [ 3E5E20817259F7328C8F3BE5421F35B9 ] MWLService C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe
21:31:35.0387 3984 MWLService - ok
21:31:35.0428 3984 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
21:31:35.0437 3984 napagent - ok
21:31:35.0487 3984 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
21:31:35.0492 3984 NativeWifiP - ok
21:31:35.0548 3984 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
21:31:35.0583 3984 NDIS - ok
21:31:35.0621 3984 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
21:31:35.0623 3984 NdisCap - ok
21:31:35.0653 3984 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
21:31:35.0655 3984 NdisTapi - ok
21:31:35.0701 3984 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
21:31:35.0703 3984 Ndisuio - ok
21:31:35.0724 3984 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
21:31:35.0727 3984 NdisWan - ok
21:31:35.0761 3984 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
21:31:35.0763 3984 NDProxy - ok
21:31:35.0805 3984 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
21:31:35.0807 3984 NetBIOS - ok
21:31:35.0844 3984 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
21:31:35.0849 3984 NetBT - ok
21:31:35.0879 3984 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
21:31:35.0882 3984 Netlogon - ok
21:31:35.0933 3984 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
21:31:35.0941 3984 Netman - ok
21:31:35.0973 3984 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
21:31:35.0982 3984 netprofm - ok
21:31:36.0013 3984 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:31:36.0016 3984 NetTcpPortSharing - ok
21:31:36.0056 3984 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
21:31:36.0059 3984 nfrd960 - ok
21:31:36.0116 3984 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
21:31:36.0123 3984 NlaSvc - ok
21:31:36.0153 3984 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
21:31:36.0154 3984 Npfs - ok
21:31:36.0178 3984 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
21:31:36.0180 3984 nsi - ok
21:31:36.0193 3984 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
21:31:36.0194 3984 nsiproxy - ok
21:31:36.0269 3984 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
21:31:36.0314 3984 Ntfs - ok
21:31:36.0365 3984 [ 5B3CE960C62DBE864BE9A0BD043A3E30 ] NTI IScheduleSvc C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
21:31:36.0370 3984 NTI IScheduleSvc - ok
21:31:36.0384 3984 [ 64DDD0DEE976302F4BD93E5EFCC2F013 ] NTIDrvr C:\Windows\system32\drivers\NTIDrvr.sys
21:31:36.0385 3984 NTIDrvr - ok
21:31:36.0423 3984 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
21:31:36.0424 3984 Null - ok
21:31:36.0484 3984 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
21:31:36.0490 3984 nvraid - ok
21:31:36.0510 3984 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
21:31:36.0514 3984 nvstor - ok
21:31:36.0553 3984 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
21:31:36.0555 3984 nv_agp - ok
21:31:36.0569 3984 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
21:31:36.0571 3984 ohci1394 - ok
21:31:36.0614 3984 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:31:36.0617 3984 ose - ok
21:31:36.0836 3984 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
21:31:36.0944 3984 osppsvc - ok
21:31:36.0989 3984 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
21:31:36.0994 3984 p2pimsvc - ok
21:31:37.0037 3984 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
21:31:37.0043 3984 p2psvc - ok
21:31:37.0087 3984 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
21:31:37.0089 3984 Parport - ok
21:31:37.0129 3984 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
21:31:37.0130 3984 partmgr - ok
21:31:37.0210 3984 [ 39B9DCD7040654C2E57D7396736C718E ] PassThru Service C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
21:31:37.0212 3984 PassThru Service - ok
21:31:37.0242 3984 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
21:31:37.0245 3984 PcaSvc - ok
21:31:37.0293 3984 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
21:31:37.0296 3984 pci - ok
21:31:37.0309 3984 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
21:31:37.0310 3984 pciide - ok
21:31:37.0357 3984 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
21:31:37.0362 3984 pcmcia - ok
21:31:37.0385 3984 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
21:31:37.0386 3984 pcw - ok
21:31:37.0408 3984 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
21:31:37.0418 3984 PEAUTH - ok
21:31:37.0511 3984 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
21:31:37.0513 3984 PerfHost - ok
21:31:37.0579 3984 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
21:31:37.0613 3984 pla - ok
21:31:37.0647 3984 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
21:31:37.0654 3984 PlugPlay - ok
21:31:37.0683 3984 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
21:31:37.0686 3984 PNRPAutoReg - ok
21:31:37.0712 3984 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
21:31:37.0716 3984 PNRPsvc - ok
21:31:37.0761 3984 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
21:31:37.0769 3984 PolicyAgent - ok
21:31:37.0805 3984 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
21:31:37.0809 3984 Power - ok
21:31:37.0859 3984 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
21:31:37.0861 3984 PptpMiniport - ok
21:31:37.0895 3984 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
21:31:37.0897 3984 Processor - ok
21:31:37.0932 3984 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
21:31:37.0937 3984 ProfSvc - ok
21:31:37.0946 3984 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
21:31:37.0947 3984 ProtectedStorage - ok
21:31:37.0998 3984 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
21:31:38.0000 3984 Psched - ok
21:31:38.0057 3984 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
21:31:38.0109 3984 ql2300 - ok
21:31:38.0139 3984 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
21:31:38.0141 3984 ql40xx - ok
21:31:38.0166 3984 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
21:31:38.0171 3984 QWAVE - ok
21:31:38.0191 3984 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
21:31:38.0192 3984 QWAVEdrv - ok
21:31:38.0213 3984 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
21:31:38.0217 3984 RasAcd - ok
21:31:38.0265 3984 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
21:31:38.0267 3984 RasAgileVpn - ok
21:31:38.0294 3984 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
21:31:38.0297 3984 RasAuto - ok
21:31:38.0338 3984 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
21:31:38.0342 3984 Rasl2tp - ok
21:31:38.0385 3984 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
21:31:38.0391 3984 RasMan - ok
21:31:38.0435 3984 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
21:31:38.0437 3984 RasPppoe - ok
21:31:38.0458 3984 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
21:31:38.0460 3984 RasSstp - ok
21:31:38.0483 3984 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
21:31:38.0488 3984 rdbss - ok
21:31:38.0534 3984 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
21:31:38.0535 3984 rdpbus - ok
21:31:38.0553 3984 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
21:31:38.0553 3984 RDPCDD - ok
21:31:38.0592 3984 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
21:31:38.0593 3984 RDPENCDD - ok
21:31:38.0620 3984 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
21:31:38.0620 3984 RDPREFMP - ok
21:31:38.0662 3984 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
21:31:38.0667 3984 RDPWD - ok
21:31:38.0770 3984 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
21:31:38.0773 3984 rdyboost - ok
21:31:38.0795 3984 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
21:31:38.0799 3984 RemoteAccess - ok
21:31:38.0831 3984 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
21:31:38.0835 3984 RemoteRegistry - ok
21:31:38.0874 3984 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
21:31:38.0876 3984 RFCOMM - ok
21:31:38.0898 3984 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
21:31:38.0900 3984 RpcEptMapper - ok
21:31:38.0949 3984 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
21:31:38.0950 3984 RpcLocator - ok
21:31:39.0002 3984 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\System32\rpcss.dll
21:31:39.0131 3984 RpcSs - ok
21:31:39.0174 3984 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
21:31:39.0176 3984 rspndr - ok
21:31:39.0201 3984 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
21:31:39.0202 3984 SamSs - ok
21:31:39.0244 3984 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
21:31:39.0247 3984 sbp2port - ok
21:31:39.0390 3984 SBRE - ok
21:31:39.0558 3984 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
21:31:39.0562 3984 SCardSvr - ok
21:31:39.0636 3984 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
21:31:39.0637 3984 scfilter - ok
21:31:39.0887 3984 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
21:31:39.0931 3984 Schedule - ok
21:31:39.0975 3984 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
21:31:39.0976 3984 SCPolicySvc - ok
21:31:40.0014 3984 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
21:31:40.0017 3984 SDRSVC - ok
21:31:40.0093 3984 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
21:31:40.0109 3984 secdrv - ok
21:31:40.0148 3984 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
21:31:40.0150 3984 seclogon - ok
21:31:40.0173 3984 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
21:31:40.0175 3984 SENS - ok
21:31:40.0191 3984 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
21:31:40.0193 3984 SensrSvc - ok
21:31:40.0243 3984 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
21:31:40.0245 3984 Serenum - ok
21:31:40.0249 3984 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
21:31:40.0251 3984 Serial - ok
21:31:40.0266 3984 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
21:31:40.0267 3984 sermouse - ok
21:31:40.0304 3984 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
21:31:40.0307 3984 SessionEnv - ok
21:31:40.0333 3984 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
21:31:40.0334 3984 sffdisk - ok
21:31:40.0341 3984 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
21:31:40.0342 3984 sffp_mmc - ok
21:31:40.0363 3984 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
21:31:40.0365 3984 sffp_sd - ok
21:31:40.0403 3984 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
21:31:40.0405 3984 sfloppy - ok
21:31:40.0467 3984 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
21:31:40.0476 3984 Sftfs - ok
21:31:40.0574 3984 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
21:31:40.0581 3984 sftlist - ok
21:31:40.0626 3984 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
21:31:40.0631 3984 Sftplay - ok
21:31:40.0646 3984 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
21:31:40.0647 3984 Sftredir - ok
21:31:40.0677 3984 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
21:31:40.0680 3984 Sftvol - ok
21:31:40.0722 3984 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
21:31:40.0725 3984 sftvsa - ok
21:31:40.0767 3984 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
21:31:40.0772 3984 SharedAccess - ok
21:31:40.0816 3984 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:31:40.0822 3984 ShellHWDetection - ok
21:31:40.0849 3984 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
21:31:40.0850 3984 SiSRaid2 - ok
21:31:40.0861 3984 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
21:31:40.0863 3984 SiSRaid4 - ok
21:31:40.0899 3984 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
21:31:40.0901 3984 Smb - ok
21:31:41.0064 3984 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
21:31:41.0066 3984 SNMPTRAP - ok
21:31:41.0095 3984 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
21:31:41.0096 3984 spldr - ok
21:31:41.0137 3984 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
21:31:41.0145 3984 Spooler - ok
21:31:41.0246 3984 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
21:31:41.0326 3984 sppsvc - ok
21:31:41.0351 3984 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
21:31:41.0354 3984 sppuinotify - ok
21:31:41.0402 3984 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
21:31:41.0408 3984 srv - ok
21:31:41.0439 3984 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
21:31:41.0444 3984 srv2 - ok
21:31:41.0491 3984 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
21:31:41.0493 3984 srvnet - ok
21:31:41.0541 3984 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
21:31:41.0545 3984 SSDPSRV - ok
21:31:41.0555 3984 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
21:31:41.0557 3984 SstpSvc - ok
21:31:41.0589 3984 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
21:31:41.0590 3984 stexstor - ok
21:31:41.0629 3984 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
21:31:41.0636 3984 stisvc - ok
21:31:41.0674 3984 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
21:31:41.0675 3984 swenum - ok
21:31:41.0707 3984 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
21:31:41.0715 3984 swprv - ok
21:31:41.0796 3984 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
21:31:41.0841 3984 SysMain - ok
21:31:41.0889 3984 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:31:41.0892 3984 TabletInputService - ok
21:31:41.0932 3984 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
21:31:41.0937 3984 TapiSrv - ok
21:31:41.0971 3984 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
21:31:41.0974 3984 TBS - ok
21:31:42.0058 3984 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
21:31:42.0103 3984 Tcpip - ok
21:31:42.0180 3984 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
21:31:42.0192 3984 TCPIP6 - ok
21:31:42.0230 3984 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
21:31:42.0231 3984 tcpipreg - ok
21:31:42.0266 3984 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
21:31:42.0268 3984 TDPIPE - ok
21:31:42.0303 3984 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
21:31:42.0304 3984 TDTCP - ok
21:31:42.0349 3984 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
21:31:42.0351 3984 tdx - ok
21:31:42.0362 3984 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
21:31:42.0363 3984 TermDD - ok
21:31:42.0416 3984 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
21:31:42.0425 3984 TermService - ok
21:31:42.0452 3984 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
21:31:42.0455 3984 Themes - ok
21:31:42.0464 3984 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
21:31:42.0465 3984 THREADORDER - ok
21:31:42.0481 3984 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
21:31:42.0484 3984 TrkWks - ok
21:31:42.0553 3984 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:31:42.0555 3984 TrustedInstaller - ok
21:31:42.0589 3984 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
21:31:42.0590 3984 tssecsrv - ok
21:31:42.0640 3984 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
21:31:42.0641 3984 TsUsbFlt - ok
21:31:42.0675 3984 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
21:31:42.0701 3984 tunnel - ok
21:31:42.0747 3984 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
21:31:42.0749 3984 uagp35 - ok
21:31:42.0778 3984 [ 2E22C1FD397A5A9FFEF55E9D1FC96C00 ] UBHelper C:\Windows\system32\drivers\UBHelper.sys
21:31:42.0779 3984 UBHelper - ok
21:31:42.0829 3984 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
21:31:42.0834 3984 udfs - ok
21:31:42.0874 3984 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
21:31:42.0876 3984 UI0Detect - ok
21:31:42.0914 3984 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
21:31:42.0915 3984 uliagpkx - ok
21:31:42.0932 3984 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
21:31:42.0934 3984 umbus - ok
21:31:42.0971 3984 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
21:31:42.0972 3984 UmPass - ok
21:31:43.0100 3984 [ CC3775100ABA633984F73DFAE1F55CAE ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
21:31:43.0145 3984 UNS - ok
21:31:43.0177 3984 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
21:31:43.0182 3984 upnphost - ok
21:31:43.0250 3984 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
21:31:43.0252 3984 usbaudio - ok
21:31:43.0294 3984 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
21:31:43.0295 3984 usbccgp - ok
21:31:43.0333 3984 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
21:31:43.0335 3984 usbcir - ok
21:31:43.0351 3984 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
21:31:43.0353 3984 usbehci - ok
21:31:43.0382 3984 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
21:31:43.0386 3984 usbhub - ok
21:31:43.0432 3984 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
21:31:43.0433 3984 usbohci - ok
21:31:43.0477 3984 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
21:31:43.0478 3984 usbprint - ok
21:31:43.0517 3984 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
21:31:43.0519 3984 usbscan - ok
21:31:43.0563 3984 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:31:43.0565 3984 USBSTOR - ok
21:31:43.0579 3984 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
21:31:43.0580 3984 usbuhci - ok
21:31:43.0628 3984 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
21:31:43.0631 3984 usbvideo - ok
21:31:43.0658 3984 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
21:31:43.0662 3984 UxSms - ok
21:31:43.0668 3984 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
21:31:43.0669 3984 VaultSvc - ok
21:31:43.0719 3984 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
21:31:43.0720 3984 vdrvroot - ok
21:31:43.0758 3984 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
21:31:43.0767 3984 vds - ok
21:31:43.0829 3984 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
21:31:43.0831 3984 vga - ok
21:31:43.0858 3984 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
21:31:43.0859 3984 VgaSave - ok
21:31:43.0897 3984 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
21:31:43.0900 3984 vhdmp - ok
21:31:43.0933 3984 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
21:31:43.0934 3984 viaide - ok
21:31:43.0957 3984 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
21:31:43.0958 3984 volmgr - ok
21:31:43.0988 3984 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
21:31:43.0992 3984 volmgrx - ok
21:31:44.0034 3984 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
21:31:44.0037 3984 volsnap - ok
21:31:44.0070 3984 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
21:31:44.0073 3984 vsmraid - ok
21:31:44.0143 3984 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
21:31:44.0175 3984 VSS - ok
21:31:44.0220 3984 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
21:31:44.0221 3984 vwifibus - ok
21:31:44.0236 3984 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
21:31:44.0238 3984 vwififlt - ok
21:31:44.0282 3984 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
21:31:44.0287 3984 W32Time - ok
21:31:44.0343 3984 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
21:31:44.0345 3984 WacomPen - ok
21:31:44.0383 3984 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
21:31:44.0384 3984 WANARP - ok
21:31:44.0388 3984 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
21:31:44.0389 3984 Wanarpv6 - ok
21:31:44.0447 3984 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
21:31:44.0481 3984 wbengine - ok
21:31:44.0534 3984 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
21:31:44.0539 3984 WbioSrvc - ok
21:31:44.0578 3984 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
21:31:44.0583 3984 wcncsvc - ok
21:31:44.0603 3984 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:31:44.0605 3984 WcsPlugInService - ok
21:31:44.0637 3984 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
21:31:44.0638 3984 Wd - ok
21:31:44.0663 3984 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
21:31:44.0671 3984 Wdf01000 - ok
21:31:44.0695 3984 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
21:31:44.0715 3984 WdiServiceHost - ok
21:31:44.0720 3984 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
21:31:44.0722 3984 WdiSystemHost - ok
21:31:44.0752 3984 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
21:31:44.0756 3984 WebClient - ok
21:31:44.0780 3984 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
21:31:44.0784 3984 Wecsvc - ok
21:31:44.0804 3984 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
21:31:44.0807 3984 wercplsupport - ok
21:31:44.0838 3984 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
21:31:44.0841 3984 WerSvc - ok
21:31:44.0874 3984 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
21:31:44.0874 3984 WfpLwf - ok
21:31:44.0886 3984 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
21:31:44.0888 3984 WIMMount - ok
21:31:44.0897 3984 WinDefend - ok
21:31:44.0902 3984 WinHttpAutoProxySvc - ok
21:31:44.0964 3984 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
21:31:44.0966 3984 Winmgmt - ok
21:31:45.0029 3984 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
21:31:45.0075 3984 WinRM - ok
21:31:45.0134 3984 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
21:31:45.0135 3984 WinUsb - ok
21:31:45.0173 3984 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
21:31:45.0188 3984 Wlansvc - ok
21:31:45.0249 3984 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
21:31:45.0250 3984 WmiAcpi - ok
21:31:45.0290 3984 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
21:31:45.0293 3984 wmiApSrv - ok
21:31:45.0327 3984 WMPNetworkSvc - ok
21:31:45.0387 3984 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
21:31:45.0390 3984 WPCSvc - ok
21:31:45.0426 3984 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
21:31:45.0429 3984 WPDBusEnum - ok
21:31:45.0447 3984 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
21:31:45.0448 3984 ws2ifsl - ok
21:31:45.0473 3984 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
21:31:45.0476 3984 wscsvc - ok
21:31:45.0479 3984 WSearch - ok
21:31:45.0556 3984 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
21:31:45.0614 3984 wuauserv - ok
21:31:45.0640 3984 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
21:31:45.0641 3984 WudfPf - ok
21:31:45.0681 3984 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
21:31:45.0683 3984 WUDFRd - ok
21:31:45.0694 3984 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
21:31:45.0697 3984 wudfsvc - ok
21:31:45.0732 3984 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
21:31:45.0737 3984 WwanSvc - ok
21:31:45.0779 3984 ================ Scan global ===============================
21:31:45.0803 3984 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
21:31:45.0842 3984 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
21:31:45.0850 3984 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
21:31:45.0878 3984 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
21:31:45.0914 3984 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
21:31:45.0919 3984 [Global] - ok
21:31:45.0919 3984 ================ Scan MBR ==================================
21:31:45.0931 3984 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
21:31:46.0528 3984 \Device\Harddisk0\DR0 - ok
21:31:46.0529 3984 ================ Scan VBR ==================================
21:31:46.0562 3984 [ 3035AEDC081A0C408B98265B13568A9E ] \Device\Harddisk0\DR0\Partition1
21:31:46.0564 3984 \Device\Harddisk0\DR0\Partition1 - ok
21:31:46.0581 3984 [ 8A3F2279275A4A4465B10D31B00E8F2B ] \Device\Harddisk0\DR0\Partition2
21:31:46.0584 3984 \Device\Harddisk0\DR0\Partition2 - ok
21:31:46.0585 3984 ============================================================
21:31:46.0585 3984 Scan finished
21:31:46.0585 3984 ============================================================
21:31:46.0598 4196 Detected object count: 0
21:31:46.0598 4196 Actual detected object count: 0
21:32:16.0589 1472 Deinitialize success

#4 lilwing98

lilwing98
  • Topic Starter

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Local time:06:57 PM

Posted 07 November 2012 - 10:33 PM

# AdwCleaner v2.007 - Logfile created 11/07/2012 at 21:34:02
# Updated 06/11/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Owner - OWNER-PC
# Boot Mode : Normal
# Running from : C:\Users\Owner\Downloads\AdwCleaner (1).exe
# Option [Delete]


***** [Services] *****

Stopped & Deleted : IBUpdaterService

***** [Files / Folders] *****

Folder Deleted : C:\ProgramData\IBUpdaterService

***** [Registry] *****

Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Updater Service

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

-\\ Mozilla Firefox v15.0.1 (en-US)

Profile name : default
File : C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\vgbc7hyg.default\prefs.js

[OK] File is clean.

-\\ Google Chrome v22.0.1229.94

File : C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [1142 octets] - [07/11/2012 21:33:38]
AdwCleaner[S2].txt - [1089 octets] - [07/11/2012 21:34:02]

########## EOF - C:\AdwCleaner[S2].txt - [1149 octets] ##########

#5 lilwing98

lilwing98
  • Topic Starter

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Local time:06:57 PM

Posted 07 November 2012 - 11:13 PM

C:\Users\Owner\Downloads\DriverPerformer.exe a variant of Win32/InstallBrain.H application cleaned by deleting - quarantined
C:\Users\Owner\Downloads\FreeYouTubeDownloaderInstaller.exe a variant of Win32/InstallCore.AC application cleaned by deleting - quarantined
C:\Users\Owner\Downloads\winamp5623_full_emusic-7plus_en-us.exe Win32/OpenCandy application cleaned by deleting - quarantined

#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,166 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:57 PM

Posted 08 November 2012 - 11:10 AM

Do you stil have the ads?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 lilwing98

lilwing98
  • Topic Starter

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Local time:06:57 PM

Posted 08 November 2012 - 09:18 PM

Nope, just had another one redirect...

Edited by lilwing98, 08 November 2012 - 09:22 PM.


#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,166 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:57 PM

Posted 08 November 2012 - 09:41 PM

OK, I suspect a Bootkit infection, We need t start a new topic named "Bootkit infection"
As we need stronger tools than we use here.

So I think we should get a deeper look. Please follow this Preparation Guide and post in a new topic.
If Gmer won't run,skip it.

Let me know if all went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,166 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:57 PM

Posted 09 November 2012 - 09:44 PM

Cloaed as MRL topic is now active.
http://www.bleepingcomputer.com/forums/topic474582.html/page__p__2890357#entry2890357
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users