Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

slow PC Hacktool detected, trojan found


  • Please log in to reply
20 replies to this topic

#1 pcnovice78

pcnovice78

  • Members
  • 103 posts
  • OFFLINE
  •  
  • Local time:05:01 PM

Posted 18 November 2012 - 05:15 PM

I am running Windows 7 Home Premium on a laptop..Computer randomly rebooted (or so my daughter says) then was running real slow after that and freezing up ...Tried to run MBAM but it would freeze up mid-scan and I would have to reboot...used Norton online scanner and it said 4 files were infected, showed Hacktool was found as well as some Trojan file, need help, this laptop has been free of problems for 2 years, I am entering grad school and I need my baby! Thanks in advance (you are helping me avoid killing my daughter *sarcasm) :)

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:01 PM

Posted 18 November 2012 - 05:16 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 pcnovice78

pcnovice78
  • Topic Starter

  • Members
  • 103 posts
  • OFFLINE
  •  
  • Local time:05:01 PM

Posted 18 November 2012 - 07:29 PM

im almost done but should i click "fix mbr" or just save log and exit??

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:01 PM

Posted 18 November 2012 - 07:34 PM

Just save the log

#5 pcnovice78

pcnovice78
  • Topic Starter

  • Members
  • 103 posts
  • OFFLINE
  •  
  • Local time:05:01 PM

Posted 18 November 2012 - 10:06 PM

17:41:11.0728 4440 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
17:41:12.0352 4440 ============================================================
17:41:12.0352 4440 Current date / time: 2012/11/18 17:41:12.0352
17:41:12.0352 4440 SystemInfo:
17:41:12.0352 4440
17:41:12.0352 4440 OS Version: 6.1.7600 ServicePack: 0.0
17:41:12.0352 4440 Product type: Workstation
17:41:12.0352 4440 ComputerName: CHRISTINE-PC
17:41:12.0352 4440 UserName: christine
17:41:12.0352 4440 Windows directory: C:\windows
17:41:12.0352 4440 System windows directory: C:\windows
17:41:12.0352 4440 Running under WOW64
17:41:12.0352 4440 Processor architecture: Intel x64
17:41:12.0352 4440 Number of processors: 2
17:41:12.0352 4440 Page size: 0x1000
17:41:12.0352 4440 Boot type: Normal boot
17:41:12.0352 4440 ============================================================
17:41:13.0350 4440 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:41:13.0350 4440 Drive \Device\Harddisk1\DR1 - Size: 0x1E500000 (0.47 Gb), SectorSize: 0x200, Cylinders: 0x3D, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
17:41:13.0350 4440 ============================================================
17:41:13.0350 4440 \Device\Harddisk0\DR0:
17:41:13.0350 4440 MBR partitions:
17:41:13.0350 4440 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1A5E800, BlocksNum 0x32800
17:41:13.0350 4440 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1A91000, BlocksNum 0x1B734000
17:41:13.0350 4440 \Device\Harddisk1\DR1:
17:41:13.0366 4440 MBR partitions:
17:41:13.0366 4440 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x6, StartLBA 0x20, BlocksNum 0xF26C0
17:41:13.0366 4440 ============================================================
17:41:13.0412 4440 C: <-> \Device\Harddisk0\DR0\Partition2
17:41:13.0412 4440 ============================================================
17:41:13.0412 4440 Initialize success
17:41:13.0412 4440 ============================================================
17:42:03.0896 3884 ============================================================
17:42:03.0896 3884 Scan started
17:42:03.0896 3884 Mode: Manual; TDLFS;
17:42:03.0896 3884 ============================================================
17:42:04.0927 3884 ================ Scan system memory ========================
17:42:04.0927 3884 System memory - ok
17:42:04.0927 3884 ================ Scan services =============================
17:42:05.0677 3884 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\windows\system32\DRIVERS\1394ohci.sys
17:42:05.0692 3884 1394ohci - ok
17:42:05.0708 3884 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\windows\system32\DRIVERS\ACPI.sys
17:42:05.0724 3884 ACPI - ok
17:42:05.0755 3884 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\windows\system32\DRIVERS\acpipmi.sys
17:42:05.0755 3884 AcpiPmi - ok
17:42:05.0895 3884 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:42:05.0895 3884 AdobeARMservice - ok
17:42:06.0082 3884 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:42:06.0082 3884 AdobeFlashPlayerUpdateSvc - ok
17:42:06.0146 3884 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\DRIVERS\adp94xx.sys
17:42:06.0146 3884 adp94xx - ok
17:42:06.0224 3884 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\DRIVERS\adpahci.sys
17:42:06.0224 3884 adpahci - ok
17:42:06.0271 3884 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\DRIVERS\adpu320.sys
17:42:06.0271 3884 adpu320 - ok
17:42:06.0317 3884 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
17:42:06.0317 3884 AeLookupSvc - ok
17:42:06.0395 3884 [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD C:\windows\system32\drivers\afd.sys
17:42:06.0395 3884 AFD - ok
17:42:06.0458 3884 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\DRIVERS\agp440.sys
17:42:06.0458 3884 agp440 - ok
17:42:06.0505 3884 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe
17:42:06.0505 3884 ALG - ok
17:42:06.0551 3884 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\DRIVERS\aliide.sys
17:42:06.0551 3884 aliide - ok
17:42:06.0598 3884 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\DRIVERS\amdide.sys
17:42:06.0598 3884 amdide - ok
17:42:06.0645 3884 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\DRIVERS\amdk8.sys
17:42:06.0645 3884 AmdK8 - ok
17:42:06.0661 3884 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\DRIVERS\amdppm.sys
17:42:06.0676 3884 AmdPPM - ok
17:42:06.0988 3884 [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata C:\windows\system32\drivers\amdsata.sys
17:42:07.0004 3884 amdsata - ok
17:42:07.0051 3884 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\DRIVERS\amdsbs.sys
17:42:07.0051 3884 amdsbs - ok
17:42:07.0082 3884 [ DB27766102C7BF7E95140A2AA81D042E ] amdxata C:\windows\system32\drivers\amdxata.sys
17:42:07.0082 3884 amdxata - ok
17:42:07.0129 3884 [ 391887990CDAA83DE5C56C3FDE966DA1 ] AmUStor C:\windows\system32\drivers\AmUStor.SYS
17:42:07.0129 3884 AmUStor - ok
17:42:07.0192 3884 [ 4DE0D5D747A73797C95A97DCCE5018B5 ] androidusb C:\windows\system32\Drivers\ssadadb.sys
17:42:07.0192 3884 androidusb - ok
17:42:07.0364 3884 ApfiltrService - ok
17:42:07.0395 3884 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\windows\system32\drivers\appid.sys
17:42:07.0410 3884 AppID - ok
17:42:07.0442 3884 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll
17:42:07.0442 3884 AppIDSvc - ok
17:42:07.0442 3884 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\windows\System32\appinfo.dll
17:42:07.0457 3884 Appinfo - ok
17:42:07.0551 3884 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
17:42:07.0551 3884 Apple Mobile Device - ok
17:42:07.0598 3884 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\DRIVERS\arc.sys
17:42:07.0598 3884 arc - ok
17:42:07.0613 3884 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\DRIVERS\arcsas.sys
17:42:07.0613 3884 arcsas - ok
17:42:07.0660 3884 ASPI32 - ok
17:42:07.0707 3884 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
17:42:07.0707 3884 AsyncMac - ok
17:42:07.0738 3884 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\DRIVERS\atapi.sys
17:42:07.0738 3884 atapi - ok
17:42:07.0847 3884 [ 70260C7C98CC0101316F5B2650C3BB44 ] athr C:\windows\system32\DRIVERS\athrx.sys
17:42:07.0894 3884 athr - ok
17:42:08.0019 3884 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
17:42:08.0034 3884 AudioEndpointBuilder - ok
17:42:08.0050 3884 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\windows\System32\Audiosrv.dll
17:42:08.0050 3884 AudioSrv - ok
17:42:08.0097 3884 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\windows\System32\AxInstSV.dll
17:42:08.0097 3884 AxInstSV - ok
17:42:08.0285 3884 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\DRIVERS\bxvbda.sys
17:42:08.0285 3884 b06bdrv - ok
17:42:08.0347 3884 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
17:42:08.0363 3884 b57nd60a - ok
17:42:08.0472 3884 [ A8AA5B6543955BA68CD3EAA2D0112F00 ] BCM43XX C:\windows\system32\DRIVERS\bcmwl664.sys
17:42:08.0581 3884 BCM43XX - ok
17:42:08.0675 3884 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll
17:42:08.0691 3884 BDESVC - ok
17:42:09.0049 3884 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys
17:42:09.0081 3884 Beep - ok
17:42:09.0300 3884 [ 4992C609A6315671463E30F6512BC022 ] BFE C:\windows\System32\bfe.dll
17:42:09.0300 3884 BFE - ok
17:42:09.0456 3884 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\windows\System32\qmgr.dll
17:42:09.0472 3884 BITS - ok
17:42:09.0565 3884 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
17:42:09.0565 3884 blbdrive - ok
17:42:09.0846 3884 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
17:42:09.0862 3884 Bonjour Service - ok
17:42:09.0986 3884 [ 19D20159708E152267E53B66677A4995 ] bowser C:\windows\system32\DRIVERS\bowser.sys
17:42:10.0002 3884 bowser - ok
17:42:10.0080 3884 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\DRIVERS\BrFiltLo.sys
17:42:10.0080 3884 BrFiltLo - ok
17:42:10.0127 3884 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\DRIVERS\BrFiltUp.sys
17:42:10.0127 3884 BrFiltUp - ok
17:42:10.0237 3884 [ 6B054C67AAA87843504E8E3C09102009 ] Browser C:\windows\System32\browser.dll
17:42:10.0237 3884 Browser - ok
17:42:10.0377 3884 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys
17:42:10.0377 3884 Brserid - ok
17:42:10.0424 3884 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
17:42:10.0424 3884 BrSerWdm - ok
17:42:10.0518 3884 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
17:42:10.0518 3884 BrUsbMdm - ok
17:42:10.0596 3884 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
17:42:10.0596 3884 BrUsbSer - ok
17:42:10.0674 3884 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\DRIVERS\bthmodem.sys
17:42:10.0674 3884 BTHMODEM - ok
17:42:10.0767 3884 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll
17:42:10.0767 3884 bthserv - ok
17:42:10.0799 3884 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
17:42:10.0799 3884 cdfs - ok
17:42:10.0970 3884 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
17:42:10.0970 3884 cdrom - ok
17:42:11.0079 3884 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\windows\System32\certprop.dll
17:42:11.0079 3884 CertPropSvc - ok
17:42:11.0221 3884 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\DRIVERS\circlass.sys
17:42:11.0221 3884 circlass - ok
17:42:11.0424 3884 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys
17:42:11.0439 3884 CLFS - ok
17:42:11.0970 3884 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:42:11.0970 3884 clr_optimization_v2.0.50727_32 - ok
17:42:12.0079 3884 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:42:12.0094 3884 clr_optimization_v2.0.50727_64 - ok
17:42:12.0345 3884 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:42:12.0407 3884 clr_optimization_v4.0.30319_32 - ok
17:42:12.0844 3884 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:42:12.0844 3884 clr_optimization_v4.0.30319_64 - ok
17:42:12.0969 3884 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
17:42:12.0969 3884 CmBatt - ok
17:42:13.0016 3884 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\DRIVERS\cmdide.sys
17:42:13.0016 3884 cmdide - ok
17:42:13.0172 3884 [ CA7720B73446FDDEC5C69519C1174C98 ] CNG C:\windows\system32\Drivers\cng.sys
17:42:13.0172 3884 CNG - ok
17:42:13.0407 3884 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\DRIVERS\compbatt.sys
17:42:13.0407 3884 Compbatt - ok
17:42:13.0469 3884 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\windows\system32\DRIVERS\CompositeBus.sys
17:42:13.0469 3884 CompositeBus - ok
17:42:13.0500 3884 COMSysApp - ok
17:42:13.0797 3884 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\DRIVERS\crcdisk.sys
17:42:13.0797 3884 crcdisk - ok
17:42:13.0844 3884 [ BAF19B633933A9FB4883D27D66C39E9A ] CryptSvc C:\windows\system32\cryptsvc.dll
17:42:13.0844 3884 CryptSvc - ok
17:42:14.0000 3884 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\windows\system32\rpcss.dll
17:42:14.0000 3884 DcomLaunch - ok
17:42:14.0187 3884 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll
17:42:14.0187 3884 defragsvc - ok
17:42:14.0405 3884 [ 9C253CE7311CA60FC11C774692A13208 ] DfsC C:\windows\system32\Drivers\dfsc.sys
17:42:14.0405 3884 DfsC - ok
17:42:14.0951 3884 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\windows\system32\dhcpcore.dll
17:42:14.0982 3884 Dhcp - ok
17:42:15.0060 3884 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys
17:42:15.0060 3884 discache - ok
17:42:15.0201 3884 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\DRIVERS\disk.sys
17:42:15.0201 3884 Disk - ok
17:42:15.0435 3884 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\windows\System32\dnsrslvr.dll
17:42:15.0435 3884 Dnscache - ok
17:42:15.0560 3884 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\windows\System32\dot3svc.dll
17:42:15.0638 3884 dot3svc - ok
17:42:15.0747 3884 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\windows\system32\dps.dll
17:42:15.0809 3884 DPS - ok
17:42:15.0903 3884 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
17:42:15.0903 3884 drmkaud - ok
17:42:16.0184 3884 [ E2B2853A0210D6EDAB2261870BD80C1A ] DsiWMIService C:\Program Files (x86)\Launch Manager\dsiwmis.exe
17:42:16.0277 3884 DsiWMIService - ok
17:42:16.0418 3884 [ EBCE0B0924835F635F620D19F0529DCE ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
17:42:16.0433 3884 DXGKrnl - ok
17:42:16.0496 3884 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll
17:42:16.0496 3884 EapHost - ok
17:42:17.0884 3884 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\DRIVERS\evbda.sys
17:42:17.0962 3884 ebdrv - ok
17:42:18.0009 3884 [ 156F6159457D0AA7E59B62681B56EB90 ] EFS C:\windows\System32\lsass.exe
17:42:18.0009 3884 EFS - ok
17:42:18.0446 3884 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\windows\ehome\ehRecvr.exe
17:42:18.0492 3884 ehRecvr - ok
17:42:18.0555 3884 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe
17:42:18.0555 3884 ehSched - ok
17:42:18.0773 3884 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\DRIVERS\elxstor.sys
17:42:18.0789 3884 elxstor - ok
17:42:19.0132 3884 [ 49EEF52BFB986A2B5D70F4EC12637D7B ] ePowerSvc C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
17:42:19.0148 3884 ePowerSvc - ok
17:42:19.0163 3884 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\DRIVERS\errdev.sys
17:42:19.0163 3884 ErrDev - ok
17:42:19.0288 3884 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll
17:42:19.0304 3884 EventSystem - ok
17:42:19.0397 3884 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys
17:42:19.0397 3884 exfat - ok
17:42:19.0444 3884 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys
17:42:19.0444 3884 fastfat - ok
17:42:19.0662 3884 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\windows\system32\fxssvc.exe
17:42:19.0678 3884 Fax - ok
17:42:19.0756 3884 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\DRIVERS\fdc.sys
17:42:19.0756 3884 fdc - ok
17:42:19.0912 3884 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll
17:42:19.0912 3884 fdPHost - ok
17:42:19.0974 3884 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll
17:42:19.0974 3884 FDResPub - ok
17:42:20.0006 3884 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
17:42:20.0006 3884 FileInfo - ok
17:42:20.0037 3884 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys
17:42:20.0037 3884 Filetrace - ok
17:42:20.0068 3884 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\DRIVERS\flpydisk.sys
17:42:20.0068 3884 flpydisk - ok
17:42:20.0240 3884 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
17:42:20.0240 3884 FltMgr - ok
17:42:20.0505 3884 [ 8AC4CB4EA61E41009FAE9AE7B2B5DA3A ] FontCache C:\windows\system32\FntCache.dll
17:42:20.0520 3884 FontCache - ok
17:42:20.0645 3884 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:42:20.0645 3884 FontCache3.0.0.0 - ok
17:42:20.0676 3884 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys
17:42:20.0676 3884 FsDepends - ok
17:42:20.0739 3884 [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
17:42:20.0739 3884 Fs_Rec - ok
17:42:20.0895 3884 [ AE87BA80D0EC3B57126ED2CDC15B24ED ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
17:42:20.0910 3884 fvevol - ok
17:42:20.0957 3884 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\DRIVERS\gagp30kx.sys
17:42:20.0957 3884 gagp30kx - ok
17:42:21.0222 3884 [ 6858C318E8DAA40E747E6FB9B214E104 ] GameConsoleService C:\Program Files (x86)\Acer Games\Acer Game Console\GameConsoleService.exe
17:42:21.0222 3884 GameConsoleService - ok
17:42:21.0566 3884 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\windows\system32\DRIVERS\GEARAspiWDM.sys
17:42:21.0566 3884 GEARAspiWDM - ok
17:42:21.0768 3884 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\windows\System32\gpsvc.dll
17:42:21.0768 3884 gpsvc - ok
17:42:22.0190 3884 [ 816FD5A6F3C2F3D600900096632FC60E ] Greg_Service C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
17:42:22.0221 3884 Greg_Service - ok
17:42:22.0580 3884 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:42:22.0580 3884 gupdate - ok
17:42:22.0642 3884 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:42:22.0642 3884 gupdatem - ok
17:42:22.0736 3884 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
17:42:22.0782 3884 hcw85cir - ok
17:42:22.0985 3884 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
17:42:23.0313 3884 HdAudAddService - ok
17:42:23.0344 3884 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\windows\system32\DRIVERS\HDAudBus.sys
17:42:23.0360 3884 HDAudBus - ok
17:42:23.0500 3884 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\windows\system32\DRIVERS\HECIx64.sys
17:42:23.0500 3884 HECIx64 - ok
17:42:23.0531 3884 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\DRIVERS\HidBatt.sys
17:42:23.0531 3884 HidBatt - ok
17:42:23.0594 3884 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\DRIVERS\hidbth.sys
17:42:23.0594 3884 HidBth - ok
17:42:23.0672 3884 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\DRIVERS\hidir.sys
17:42:23.0672 3884 HidIr - ok
17:42:23.0765 3884 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\system32\hidserv.dll
17:42:23.0765 3884 hidserv - ok
17:42:23.0859 3884 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys
17:42:23.0859 3884 HidUsb - ok
17:42:23.0937 3884 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\windows\system32\kmsvc.dll
17:42:23.0937 3884 hkmsvc - ok
17:42:24.0046 3884 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\windows\system32\ListSvc.dll
17:42:24.0077 3884 HomeGroupListener - ok
17:42:24.0186 3884 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\windows\system32\provsvc.dll
17:42:24.0186 3884 HomeGroupProvider - ok
17:42:24.0218 3884 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\windows\system32\DRIVERS\HpSAMD.sys
17:42:24.0218 3884 HpSAMD - ok
17:42:24.0374 3884 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\windows\system32\drivers\HTTP.sys
17:42:24.0452 3884 HTTP - ok
17:42:24.0467 3884 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
17:42:24.0483 3884 hwpolicy - ok
17:42:24.0654 3884 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\DRIVERS\i8042prt.sys
17:42:24.0654 3884 i8042prt - ok
17:42:25.0419 3884 [ 42E00996DFC13C46366689C0EA8ABC5E ] iaStor C:\windows\system32\DRIVERS\iaStor.sys
17:42:25.0419 3884 iaStor - ok
17:42:25.0606 3884 [ 48362E5DB5CB2C000C514EE1F3890ACD ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
17:42:25.0606 3884 IAStorDataMgrSvc - ok
17:42:25.0856 3884 [ B75E45C564E944A2657167D197AB29DA ] iaStorV C:\windows\system32\drivers\iaStorV.sys
17:42:25.0856 3884 iaStorV - ok
17:42:26.0199 3884 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:42:26.0214 3884 idsvc - ok
17:42:28.0197 3884 [ 2A22AB054F4630D2EF4BAB2853F6D5F6 ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys
17:42:28.0431 3884 igfx - ok
17:42:28.0524 3884 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\DRIVERS\iirsp.sys
17:42:28.0524 3884 iirsp - ok
17:42:28.0618 3884 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\windows\System32\ikeext.dll
17:42:28.0649 3884 IKEEXT - ok
17:42:29.0117 3884 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\windows\system32\DRIVERS\Impcd.sys
17:42:29.0195 3884 Impcd - ok
17:42:29.0429 3884 [ 53019327813FF5AB2964B33B2C61307C ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
17:42:29.0445 3884 IntcAzAudAddService - ok
17:42:29.0694 3884 [ 58CF58DEE26C909BD6F977B61D246295 ] IntcDAud C:\windows\system32\DRIVERS\IntcDAud.sys
17:42:29.0710 3884 IntcDAud - ok
17:42:29.0803 3884 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\DRIVERS\intelide.sys
17:42:29.0819 3884 intelide - ok
17:42:29.0866 3884 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
17:42:29.0881 3884 intelppm - ok
17:42:29.0944 3884 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll
17:42:29.0944 3884 IPBusEnum - ok
17:42:29.0959 3884 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
17:42:29.0959 3884 IpFilterDriver - ok
17:42:30.0131 3884 [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc C:\windows\System32\iphlpsvc.dll
17:42:30.0162 3884 iphlpsvc - ok
17:42:30.0225 3884 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\windows\system32\DRIVERS\IPMIDrv.sys
17:42:30.0225 3884 IPMIDRV - ok
17:42:30.0318 3884 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys
17:42:30.0334 3884 IPNAT - ok
17:42:30.0521 3884 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
17:42:30.0537 3884 iPod Service - ok
17:42:30.0615 3884 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys
17:42:30.0646 3884 IRENUM - ok
17:42:30.0693 3884 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\DRIVERS\isapnp.sys
17:42:31.0051 3884 isapnp - ok
17:42:31.0145 3884 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\windows\system32\DRIVERS\msiscsi.sys
17:42:31.0145 3884 iScsiPrt - ok
17:42:31.0691 3884 [ D57BC37917533162E3E75140D1F037B9 ] JLTECH0227 C:\windows\system32\Drivers\jl2005c.sys
17:42:31.0707 3884 JLTECH0227 - ok
17:42:31.0894 3884 [ 9D7EA8C7215D8D4AE7BE110EEE61085D ] k57nd60a C:\windows\system32\DRIVERS\k57nd60a.sys
17:42:31.0894 3884 k57nd60a - ok
17:42:32.0003 3884 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\DRIVERS\kbdclass.sys
17:42:32.0003 3884 kbdclass - ok
17:42:32.0065 3884 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\windows\system32\DRIVERS\kbdhid.sys
17:42:32.0065 3884 kbdhid - ok
17:42:32.0206 3884 [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso C:\windows\system32\lsass.exe
17:42:32.0206 3884 KeyIso - ok
17:42:32.0268 3884 [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
17:42:32.0315 3884 KSecDD - ok
17:42:32.0393 3884 [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
17:42:32.0393 3884 KSecPkg - ok
17:42:32.0518 3884 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
17:42:32.0518 3884 ksthunk - ok
17:42:32.0627 3884 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll
17:42:32.0643 3884 KtmRm - ok
17:42:32.0892 3884 [ 2AC603C3188C704CFCE353659AA7AD71 ] L1E C:\windows\system32\DRIVERS\L1E62x64.sys
17:42:32.0908 3884 L1E - ok
17:42:33.0048 3884 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\windows\system32\srvsvc.dll
17:42:33.0048 3884 LanmanServer - ok
17:42:33.0142 3884 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
17:42:33.0142 3884 LanmanWorkstation - ok
17:42:33.0282 3884 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
17:42:33.0282 3884 lltdio - ok
17:42:33.0438 3884 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll
17:42:33.0438 3884 lltdsvc - ok
17:42:33.0516 3884 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll
17:42:33.0516 3884 lmhosts - ok
17:42:33.0844 3884 [ 23DE5B62B0445A6F874BE633C95B483E ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
17:42:33.0859 3884 LMS - ok
17:42:33.0953 3884 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\DRIVERS\lsi_fc.sys
17:42:33.0953 3884 LSI_FC - ok
17:42:34.0047 3884 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\DRIVERS\lsi_sas.sys
17:42:34.0093 3884 LSI_SAS - ok
17:42:34.0156 3884 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\DRIVERS\lsi_sas2.sys
17:42:34.0171 3884 LSI_SAS2 - ok
17:42:34.0374 3884 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\DRIVERS\lsi_scsi.sys
17:42:34.0374 3884 LSI_SCSI - ok
17:42:34.0468 3884 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys
17:42:34.0499 3884 luafv - ok
17:42:34.0546 3884 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
17:42:34.0577 3884 Mcx2Svc - ok
17:42:34.0608 3884 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\DRIVERS\megasas.sys
17:42:34.0608 3884 megasas - ok
17:42:34.0733 3884 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\DRIVERS\MegaSR.sys
17:42:34.0842 3884 MegaSR - ok
17:42:34.0889 3884 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll
17:42:34.0936 3884 MMCSS - ok
17:42:34.0951 3884 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys
17:42:34.0951 3884 Modem - ok
17:42:35.0092 3884 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys
17:42:35.0092 3884 monitor - ok
17:42:35.0248 3884 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys
17:42:35.0248 3884 mouclass - ok
17:42:35.0357 3884 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
17:42:35.0357 3884 mouhid - ok
17:42:35.0404 3884 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\windows\system32\drivers\mountmgr.sys
17:42:35.0404 3884 mountmgr - ok
17:42:35.0716 3884 [ 8BE15F71DE6FF33FC56DCDE7B2B9EFE8 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
17:42:36.0106 3884 MozillaMaintenance - ok
17:42:36.0402 3884 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\windows\system32\DRIVERS\MpFilter.sys
17:42:36.0402 3884 MpFilter - ok
17:42:36.0527 3884 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\windows\system32\DRIVERS\mpio.sys
17:42:36.0527 3884 mpio - ok
17:42:36.0636 3884 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
17:42:36.0636 3884 mpsdrv - ok
17:42:37.0042 3884 [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc C:\windows\system32\mpssvc.dll
17:42:37.0089 3884 MpsSvc - ok
17:42:37.0167 3884 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
17:42:37.0213 3884 MRxDAV - ok
17:42:37.0354 3884 [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
17:42:37.0354 3884 mrxsmb - ok
17:42:37.0525 3884 [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
17:42:37.0588 3884 mrxsmb10 - ok
17:42:37.0681 3884 [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
17:42:37.0681 3884 mrxsmb20 - ok
17:42:37.0806 3884 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\windows\system32\DRIVERS\msahci.sys
17:42:37.0806 3884 msahci - ok
17:42:37.0931 3884 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\windows\system32\DRIVERS\msdsm.sys
17:42:37.0978 3884 msdsm - ok
17:42:38.0103 3884 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe
17:42:38.0103 3884 MSDTC - ok
17:42:38.0274 3884 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys
17:42:38.0274 3884 Msfs - ok
17:42:38.0399 3884 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
17:42:38.0415 3884 mshidkmdf - ok
17:42:38.0461 3884 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\DRIVERS\msisadrv.sys
17:42:38.0461 3884 msisadrv - ok
17:42:38.0680 3884 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll
17:42:38.0929 3884 MSiSCSI - ok
17:42:38.0929 3884 msiserver - ok
17:42:39.0117 3884 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
17:42:39.0117 3884 MSKSSRV - ok
17:42:39.0647 3884 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
17:42:39.0647 3884 MsMpSvc - ok
17:42:39.0772 3884 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
17:42:39.0772 3884 MSPCLOCK - ok
17:42:39.0881 3884 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
17:42:39.0881 3884 MSPQM - ok
17:42:40.0037 3884 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\windows\system32\drivers\MsRPC.sys
17:42:40.0084 3884 MsRPC - ok
17:42:40.0131 3884 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\DRIVERS\mssmbios.sys
17:42:40.0131 3884 mssmbios - ok
17:42:40.0193 3884 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
17:42:40.0193 3884 MSTEE - ok
17:42:40.0271 3884 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\DRIVERS\MTConfig.sys
17:42:40.0271 3884 MTConfig - ok
17:42:40.0318 3884 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys
17:42:40.0318 3884 Mup - ok
17:42:40.0411 3884 [ 6FFECC25B39DC7652A0CEC0ADA9DB589 ] mwlPSDFilter C:\windows\system32\DRIVERS\mwlPSDFilter.sys
17:42:40.0411 3884 mwlPSDFilter - ok
17:42:40.0489 3884 [ 0BEFE32CA56D6EE89D58175725596A85 ] mwlPSDNServ C:\windows\system32\DRIVERS\mwlPSDNServ.sys
17:42:40.0489 3884 mwlPSDNServ - ok
17:42:40.0552 3884 [ D43BC633B8660463E446E28E14A51262 ] mwlPSDVDisk C:\windows\system32\DRIVERS\mwlPSDVDisk.sys
17:42:40.0567 3884 mwlPSDVDisk - ok
17:42:41.0035 3884 [ 22A4905C958BEB68D78385B633C1351B ] MWLService C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe
17:42:41.0035 3884 MWLService - ok
17:42:41.0176 3884 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\windows\system32\qagentRT.dll
17:42:41.0191 3884 napagent - ok
17:42:41.0379 3884 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
17:42:41.0379 3884 NativeWifiP - ok
17:42:41.0737 3884 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\windows\system32\drivers\ndis.sys
17:42:41.0737 3884 NDIS - ok
17:42:41.0800 3884 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
17:42:41.0800 3884 NdisCap - ok
17:42:41.0893 3884 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
17:42:41.0893 3884 NdisTapi - ok
17:42:41.0971 3884 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
17:42:41.0987 3884 Ndisuio - ok
17:42:42.0018 3884 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
17:42:42.0034 3884 NdisWan - ok
17:42:42.0081 3884 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\windows\system32\drivers\NDProxy.sys
17:42:42.0081 3884 NDProxy - ok
17:42:42.0143 3884 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
17:42:42.0143 3884 NetBIOS - ok
17:42:42.0268 3884 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\windows\system32\DRIVERS\netbt.sys
17:42:42.0268 3884 NetBT - ok
17:42:42.0517 3884 [ 15DBD5483BE3BFCD44E63A5F1A6F250B ] NETGEARGenieDaemon C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenieDaemon64.exe
17:42:42.0580 3884 NETGEARGenieDaemon - ok
17:42:42.0595 3884 [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon C:\windows\system32\lsass.exe
17:42:42.0595 3884 Netlogon - ok
17:42:42.0705 3884 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll
17:42:42.0970 3884 Netman - ok
17:42:43.0126 3884 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll
17:42:43.0126 3884 netprofm - ok
17:42:43.0235 3884 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
17:42:43.0235 3884 NetTcpPortSharing - ok
17:42:43.0282 3884 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\DRIVERS\nfrd960.sys
17:42:43.0282 3884 nfrd960 - ok
17:42:43.0469 3884 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\windows\system32\DRIVERS\NisDrvWFP.sys
17:42:43.0469 3884 NisDrv - ok
17:42:43.0734 3884 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
17:42:43.0750 3884 NisSrv - ok
17:42:43.0921 3884 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\windows\System32\nlasvc.dll
17:42:43.0937 3884 NlaSvc - ok
17:42:44.0109 3884 [ 351533ACC2A069B94E80BBFC177E8FDF ] NPF C:\windows\system32\drivers\npf.sys
17:42:44.0109 3884 NPF - ok
17:42:44.0140 3884 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys
17:42:44.0140 3884 Npfs - ok
17:42:44.0202 3884 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll
17:42:44.0202 3884 nsi - ok
17:42:44.0249 3884 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
17:42:44.0249 3884 nsiproxy - ok
17:42:44.0826 3884 [ 378E0E0DFEA67D98AE6EA53ADBBD76BC ] Ntfs C:\windows\system32\drivers\Ntfs.sys
17:42:44.0998 3884 Ntfs - ok
17:42:45.0497 3884 [ 5B3CE960C62DBE864BE9A0BD043A3E30 ] NTI IScheduleSvc C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
17:42:45.0606 3884 NTI IScheduleSvc - ok
17:42:46.0090 3884 [ 15221DD637D9D0FFC60848EBBF1DF538 ] NTIBackupSvc C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
17:42:46.0230 3884 NTIBackupSvc - ok
17:42:46.0371 3884 [ 64DDD0DEE976302F4BD93E5EFCC2F013 ] NTIDrvr C:\Windows\system32\drivers\NTIDrvr.sys
17:42:46.0371 3884 NTIDrvr - ok
17:42:46.0761 3884 [ B5071E15D4C3F5EF5018AFF7E85A85E5 ] NTISchedulerSvc C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
17:42:48.0227 3884 NTISchedulerSvc - ok
17:42:48.0274 3884 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys
17:42:48.0274 3884 Null - ok
17:42:48.0399 3884 [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid C:\windows\system32\drivers\nvraid.sys
17:42:48.0399 3884 nvraid - ok
17:42:48.0477 3884 [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor C:\windows\system32\drivers\nvstor.sys
17:42:48.0477 3884 nvstor - ok
17:42:48.0539 3884 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\DRIVERS\nv_agp.sys
17:42:48.0539 3884 nv_agp - ok
17:42:48.0586 3884 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\DRIVERS\ohci1394.sys
17:42:48.0586 3884 ohci1394 - ok
17:42:48.0664 3884 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll
17:42:48.0680 3884 p2pimsvc - ok
17:42:49.0116 3884 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll
17:42:49.0148 3884 p2psvc - ok
17:42:49.0272 3884 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\DRIVERS\parport.sys
17:42:49.0272 3884 Parport - ok
17:42:49.0350 3884 [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr C:\windows\system32\drivers\partmgr.sys
17:42:49.0350 3884 partmgr - ok
17:42:49.0475 3884 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll
17:42:49.0475 3884 PcaSvc - ok
17:42:49.0631 3884 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\windows\system32\DRIVERS\pci.sys
17:42:49.0631 3884 pci - ok
17:42:49.0725 3884 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\DRIVERS\pciide.sys
17:42:49.0725 3884 pciide - ok
17:42:49.0865 3884 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\DRIVERS\pcmcia.sys
17:42:49.0912 3884 pcmcia - ok
17:42:50.0058 3884 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys
17:42:50.0058 3884 pcw - ok
17:42:50.0218 3884 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys
17:42:50.0298 3884 PEAUTH - ok
17:42:51.0218 3884 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe
17:42:51.0218 3884 PerfHost - ok
17:42:51.0638 3884 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\windows\system32\pla.dll
17:42:51.0678 3884 pla - ok
17:42:51.0998 3884 [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay C:\windows\system32\umpnpmgr.dll
17:42:51.0998 3884 PlugPlay - ok
17:42:52.0058 3884 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
17:42:52.0058 3884 PNRPAutoReg - ok
17:42:52.0128 3884 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll
17:42:52.0128 3884 PNRPsvc - ok
17:42:52.0220 3884 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
17:42:52.0230 3884 PolicyAgent - ok
17:42:52.0312 3884 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\windows\system32\umpo.dll
17:42:52.0322 3884 Power - ok
17:42:52.0412 3884 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
17:42:52.0412 3884 PptpMiniport - ok
17:42:52.0482 3884 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\DRIVERS\processr.sys
17:42:52.0482 3884 Processor - ok
17:42:52.0572 3884 [ F381975E1F4346DE875CB07339CE8D3A ] ProfSvc C:\windows\system32\profsvc.dll
17:42:52.0582 3884 ProfSvc - ok
17:42:52.0602 3884 [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\windows\system32\lsass.exe
17:42:52.0602 3884 ProtectedStorage - ok
17:42:52.0692 3884 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\windows\system32\DRIVERS\pacer.sys
17:42:52.0752 3884 Psched - ok
17:42:53.0872 3884 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\DRIVERS\ql2300.sys
17:42:53.0952 3884 ql2300 - ok
17:42:53.0982 3884 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\DRIVERS\ql40xx.sys
17:42:53.0982 3884 ql40xx - ok
17:42:54.0122 3884 [ B3A5A0DBFC3EA175BA93E59250760164 ] QuickPdfPrintSpooler C:\PROGRA~2\QUICKP~1\WINSER~1.EXE
17:43:03.0884 3884 QuickPdfPrintSpooler - ok
17:43:03.0979 3884 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll
17:43:03.0979 3884 QWAVE - ok
17:43:04.0029 3884 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
17:43:04.0029 3884 QWAVEdrv - ok
17:43:04.0059 3884 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
17:43:04.0059 3884 RasAcd - ok
17:43:04.0189 3884 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
17:43:04.0311 3884 RasAgileVpn - ok
17:43:04.0377 3884 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll
17:43:04.0383 3884 RasAuto - ok
17:43:04.0469 3884 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
17:43:04.0471 3884 Rasl2tp - ok
17:43:04.0573 3884 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\windows\System32\rasmans.dll
17:43:04.0583 3884 RasMan - ok
17:43:04.0663 3884 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
17:43:04.0693 3884 RasPppoe - ok
17:43:04.0843 3884 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
17:43:04.0853 3884 RasSstp - ok
17:43:04.0953 3884 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
17:43:04.0953 3884 rdbss - ok
17:43:05.0033 3884 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\DRIVERS\rdpbus.sys
17:43:05.0033 3884 rdpbus - ok
17:43:05.0053 3884 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
17:43:05.0053 3884 RDPCDD - ok
17:43:05.0103 3884 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
17:43:05.0103 3884 RDPENCDD - ok
17:43:05.0123 3884 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
17:43:05.0123 3884 RDPREFMP - ok
17:43:05.0203 3884 [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD C:\windows\system32\drivers\RDPWD.sys
17:43:05.0213 3884 RDPWD - ok
17:43:05.0323 3884 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\windows\system32\drivers\rdyboost.sys
17:43:05.0343 3884 rdyboost - ok
17:43:05.0459 3884 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll
17:43:05.0493 3884 RemoteAccess - ok
17:43:05.0545 3884 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll
17:43:05.0555 3884 RemoteRegistry - ok
17:43:05.0585 3884 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
17:43:05.0585 3884 RpcEptMapper - ok
17:43:05.0635 3884 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe
17:43:05.0645 3884 RpcLocator - ok
17:43:05.0695 3884 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\windows\system32\rpcss.dll
17:43:05.0705 3884 RpcSs - ok
17:43:05.0785 3884 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
17:43:05.0785 3884 rspndr - ok
17:43:05.0825 3884 [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs C:\windows\system32\lsass.exe
17:43:05.0825 3884 SamSs - ok
17:43:05.0865 3884 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\windows\system32\DRIVERS\sbp2port.sys
17:43:05.0865 3884 sbp2port - ok
17:43:05.0925 3884 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll
17:43:05.0925 3884 SCardSvr - ok
17:43:05.0977 3884 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
17:43:05.0987 3884 scfilter - ok
17:43:06.0077 3884 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\windows\system32\schedsvc.dll
17:43:06.0087 3884 Schedule - ok
17:43:06.0157 3884 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\windows\System32\certprop.dll
17:43:06.0157 3884 SCPolicySvc - ok
17:43:06.0207 3884 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\windows\System32\SDRSVC.dll
17:43:06.0207 3884 SDRSVC - ok
17:43:06.0297 3884 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys
17:43:06.0297 3884 secdrv - ok
17:43:06.0381 3884 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\windows\system32\seclogon.dll
17:43:06.0386 3884 seclogon - ok
17:43:06.0429 3884 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\System32\sens.dll
17:43:06.0429 3884 SENS - ok
17:43:06.0455 3884 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll
17:43:06.0457 3884 SensrSvc - ok
17:43:06.0471 3884 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\DRIVERS\serenum.sys
17:43:06.0481 3884 Serenum - ok
17:43:06.0581 3884 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\DRIVERS\serial.sys
17:43:06.0591 3884 Serial - ok
17:43:06.0671 3884 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\DRIVERS\sermouse.sys
17:43:06.0671 3884 sermouse - ok
17:43:06.0731 3884 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\windows\system32\sessenv.dll
17:43:06.0741 3884 SessionEnv - ok
17:43:06.0781 3884 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\drivers\sffdisk.sys
17:43:06.0781 3884 sffdisk - ok
17:43:06.0841 3884 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
17:43:06.0851 3884 sffp_mmc - ok
17:43:06.0881 3884 [ 178298F767FE638C9FEDCBDEF58BB5E4 ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
17:43:06.0881 3884 sffp_sd - ok
17:43:06.0941 3884 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\DRIVERS\sfloppy.sys
17:43:06.0941 3884 sfloppy - ok
17:43:07.0091 3884 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\windows\System32\ipnathlp.dll
17:43:07.0091 3884 SharedAccess - ok
17:43:07.0171 3884 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\windows\System32\shsvcs.dll
17:43:07.0181 3884 ShellHWDetection - ok
17:43:07.0241 3884 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\DRIVERS\SiSRaid2.sys
17:43:07.0251 3884 SiSRaid2 - ok
17:43:07.0281 3884 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\DRIVERS\sisraid4.sys
17:43:07.0281 3884 SiSRaid4 - ok
17:43:07.0901 3884 [ 388AE59FE75F1B959DFA0900923C61BB ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
17:43:07.0983 3884 Skype C2C Service - ok
17:43:08.0070 3884 [ DDAA5F4A6B958FC313EBD02DD925752F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
17:43:08.0092 3884 SkypeUpdate - ok
17:43:08.0185 3884 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys
17:43:08.0185 3884 Smb - ok
17:43:08.0251 3884 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe
17:43:08.0269 3884 SNMPTRAP - ok
17:43:08.0292 3884 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys
17:43:08.0330 3884 spldr - ok
17:43:08.0382 3884 [ F8E1FA03CB70D54A9892AC88B91D1E7B ] Spooler C:\windows\System32\spoolsv.exe
17:43:08.0431 3884 Spooler - ok
17:43:08.0562 3884 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\windows\system32\sppsvc.exe
17:43:08.0661 3884 sppsvc - ok
17:43:08.0672 3884 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll
17:43:08.0700 3884 sppuinotify - ok
17:43:08.0778 3884 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv C:\windows\system32\DRIVERS\srv.sys
17:43:08.0788 3884 srv - ok
17:43:08.0837 3884 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
17:43:08.0854 3884 srv2 - ok
17:43:08.0930 3884 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
17:43:08.0936 3884 srvnet - ok
17:43:08.0993 3884 [ 8F8324ED1DE63FFC7B1A02CD2D963C72 ] ssadbus C:\windows\system32\DRIVERS\ssadbus.sys
17:43:08.0998 3884 ssadbus - ok
17:43:09.0044 3884 [ 58221EFCB74167B73667F0024C661CE0 ] ssadmdfl C:\windows\system32\DRIVERS\ssadmdfl.sys
17:43:09.0051 3884 ssadmdfl - ok
17:43:09.0085 3884 [ 4DA7C71BFAC5AD71255B7E4CAB980163 ] ssadmdm C:\windows\system32\DRIVERS\ssadmdm.sys
17:43:09.0089 3884 ssadmdm - ok
17:43:09.0150 3884 [ D33D1BD3EC0E766211A234F56A12726D ] ssadserd C:\windows\system32\DRIVERS\ssadserd.sys
17:43:09.0157 3884 ssadserd - ok
17:43:09.0224 3884 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
17:43:09.0228 3884 SSDPSRV - ok
17:43:09.0235 3884 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll
17:43:09.0248 3884 SstpSvc - ok
17:43:09.0298 3884 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\DRIVERS\stexstor.sys
17:43:09.0311 3884 stexstor - ok
17:43:09.0367 3884 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\windows\system32\DRIVERS\serscan.sys
17:43:09.0377 3884 StillCam - ok
17:43:09.0427 3884 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\windows\System32\wiaservc.dll
17:43:09.0439 3884 stisvc - ok
17:43:09.0480 3884 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\DRIVERS\swenum.sys
17:43:09.0481 3884 swenum - ok
17:43:09.0529 3884 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll
17:43:09.0539 3884 swprv - ok
17:43:09.0565 3884 [ 8F63178D1DB81BB79270AE55ECDD8321 ] SynTP C:\windows\system32\DRIVERS\SynTP.sys
17:43:09.0569 3884 SynTP - ok
17:43:09.0699 3884 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\windows\system32\sysmain.dll
17:43:10.0019 3884 SysMain - ok
17:43:10.0069 3884 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\windows\System32\TabSvc.dll
17:43:10.0069 3884 TabletInputService - ok
17:43:10.0119 3884 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\windows\System32\tapisrv.dll
17:43:10.0129 3884 TapiSrv - ok
17:43:10.0159 3884 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll
17:43:10.0159 3884 TBS - ok
17:43:10.0275 3884 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] Tcpip C:\windows\system32\drivers\tcpip.sys
17:43:10.0320 3884 Tcpip - ok
17:43:10.0403 3884 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
17:43:10.0416 3884 TCPIP6 - ok
17:43:10.0481 3884 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
17:43:10.0481 3884 tcpipreg - ok
17:43:10.0551 3884 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
17:43:10.0551 3884 TDPIPE - ok
17:43:10.0591 3884 [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
17:43:10.0601 3884 TDTCP - ok
17:43:10.0643 3884 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\windows\system32\DRIVERS\tdx.sys
17:43:10.0643 3884 tdx - ok
17:43:10.0663 3884 [ C448651339196C0E869A355171875522 ] TermDD C:\windows\system32\DRIVERS\termdd.sys
17:43:10.0663 3884 TermDD - ok
17:43:10.0915 3884 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\windows\System32\termsrv.dll
17:43:10.0955 3884 TermService - ok
17:43:11.0005 3884 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll
17:43:11.0005 3884 Themes - ok
17:43:11.0075 3884 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll
17:43:11.0075 3884 THREADORDER - ok
17:43:11.0155 3884 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll
17:43:11.0155 3884 TrkWks - ok
17:43:11.0377 3884 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
17:43:11.0377 3884 TrustedInstaller - ok
17:43:11.0427 3884 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
17:43:11.0457 3884 tssecsrv - ok
17:43:11.0579 3884 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
17:43:11.0579 3884 tunnel - ok
17:43:11.0609 3884 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\DRIVERS\uagp35.sys
17:43:11.0609 3884 uagp35 - ok
17:43:11.0643 3884 [ 2E22C1FD397A5A9FFEF55E9D1FC96C00 ] UBHelper C:\Windows\system32\drivers\UBHelper.sys
17:43:11.0644 3884 UBHelper - ok
17:43:11.0701 3884 [ D47BAEAD86C65D4F4069D7CE0A4EDCEB ] udfs C:\windows\system32\DRIVERS\udfs.sys
17:43:11.0740 3884 udfs - ok
17:43:11.0791 3884 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe
17:43:11.0799 3884 UI0Detect - ok
17:43:11.0833 3884 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\DRIVERS\uliagpkx.sys
17:43:11.0833 3884 uliagpkx - ok
17:43:11.0933 3884 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\windows\system32\DRIVERS\umbus.sys
17:43:11.0933 3884 umbus - ok
17:43:11.0973 3884 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\DRIVERS\umpass.sys
17:43:11.0973 3884 UmPass - ok
17:43:12.0185 3884 [ CC3775100ABA633984F73DFAE1F55CAE ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
17:43:12.0249 3884 UNS - ok
17:43:12.0387 3884 [ F9EC9ACD504D823D9B9CA98A4F8D3CA2 ] Updater Service C:\Program Files\Acer\Acer Updater\UpdaterService.exe
17:43:12.0387 3884 Updater Service - ok
17:43:12.0487 3884 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll
17:43:12.0497 3884 upnphost - ok
17:43:12.0547 3884 [ 537A4E03D7103C12D42DFD8FFDB5BDC9 ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
17:43:12.0557 3884 usbccgp - ok
17:43:12.0641 3884 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\DRIVERS\usbcir.sys
17:43:12.0648 3884 usbcir - ok
17:43:12.0839 3884 [ FBB21EBE49F6D560DB37AC25FBC68E66 ] usbehci C:\windows\system32\drivers\usbehci.sys
17:43:12.0839 3884 usbehci - ok
17:43:13.0079 3884 [ 6B7A8A99C4A459E73C286A6763EA24CC ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
17:43:13.0079 3884 usbhub - ok
17:43:13.0171 3884 [ 8C88AA7617B4CBC2E4BED61D26B33A27 ] usbohci C:\windows\system32\drivers\usbohci.sys
17:43:13.0173 3884 usbohci - ok
17:43:13.0311 3884 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\DRIVERS\usbprint.sys
17:43:13.0311 3884 usbprint - ok
17:43:13.0401 3884 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\windows\system32\DRIVERS\usbscan.sys
17:43:13.0401 3884 usbscan - ok
17:43:13.0451 3884 [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
17:43:13.0451 3884 USBSTOR - ok
17:43:13.0471 3884 [ 0B5B3B2DF3FD1709618ACFA50B8392B0 ] usbuhci C:\windows\system32\drivers\usbuhci.sys
17:43:13.0471 3884 usbuhci - ok
17:43:13.0651 3884 [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] usbvideo C:\windows\System32\Drivers\usbvideo.sys
17:43:13.0661 3884 usbvideo - ok
17:43:13.0771 3884 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll
17:43:13.0771 3884 UxSms - ok
17:43:13.0821 3884 [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc C:\windows\system32\lsass.exe
17:43:13.0821 3884 VaultSvc - ok
17:43:13.0991 3884 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\DRIVERS\vdrvroot.sys
17:43:13.0991 3884 vdrvroot - ok
17:43:14.0283 3884 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\windows\System32\vds.exe
17:43:14.0473 3884 vds - ok
17:43:14.0633 3884 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys
17:43:14.0633 3884 vga - ok
17:43:14.0693 3884 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys
17:43:14.0693 3884 VgaSave - ok
17:43:14.0853 3884 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\windows\system32\DRIVERS\vhdmp.sys
17:43:14.0863 3884 vhdmp - ok
17:43:14.0923 3884 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\DRIVERS\viaide.sys
17:43:14.0923 3884 viaide - ok
17:43:15.0033 3884 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\windows\system32\DRIVERS\volmgr.sys
17:43:15.0043 3884 volmgr - ok
17:43:15.0273 3884 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\windows\system32\drivers\volmgrx.sys
17:43:15.0343 3884 volmgrx - ok
17:43:15.0703 3884 [ 58F82EED8CA24B461441F9C3E4F0BF5C ] volsnap C:\windows\system32\DRIVERS\volsnap.sys
17:43:15.0703 3884 volsnap - ok
17:43:15.0825 3884 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\DRIVERS\vsmraid.sys
17:43:16.0055 3884 vsmraid - ok
17:43:16.0667 3884 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\windows\system32\vssvc.exe
17:43:16.0807 3884 VSS - ok
17:43:16.0854 3884 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
17:43:16.0855 3884 vwifibus - ok
17:43:16.0909 3884 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
17:43:16.0909 3884 vwififlt - ok
17:43:17.0119 3884 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys
17:43:17.0119 3884 vwifimp - ok
17:43:17.0319 3884 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll
17:43:17.0329 3884 W32Time - ok
17:43:17.0369 3884 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\DRIVERS\wacompen.sys
17:43:17.0379 3884 WacomPen - ok
17:43:17.0489 3884 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
17:43:17.0489 3884 WANARP - ok
17:43:17.0549 3884 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
17:43:17.0549 3884 Wanarpv6 - ok
17:43:18.0269 3884 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
17:43:18.0379 3884 WatAdminSvc - ok
17:43:19.0259 3884 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\windows\system32\wbengine.exe
17:43:19.0319 3884 wbengine - ok
17:43:19.0459 3884 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
17:43:19.0469 3884 WbioSrvc - ok
17:43:19.0669 3884 [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc C:\windows\System32\wcncsvc.dll
17:43:19.0669 3884 wcncsvc - ok
17:43:19.0759 3884 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
17:43:19.0769 3884 WcsPlugInService - ok
17:43:19.0869 3884 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\DRIVERS\wd.sys
17:43:19.0879 3884 Wd - ok
17:43:20.0159 3884 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
17:43:20.0169 3884 Wdf01000 - ok
17:43:20.0259 3884 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll
17:43:20.0269 3884 WdiServiceHost - ok
17:43:20.0269 3884 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll
17:43:20.0279 3884 WdiSystemHost - ok
17:43:20.0429 3884 [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient C:\windows\System32\webclnt.dll
17:43:20.0439 3884 WebClient - ok
17:43:20.0579 3884 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll
17:43:20.0589 3884 Wecsvc - ok
17:43:20.0639 3884 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll
17:43:20.0649 3884 wercplsupport - ok
17:43:20.0950 3884 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll
17:43:20.0950 3884 WerSvc - ok
17:43:21.0050 3884 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
17:43:21.0050 3884 WfpLwf - ok
17:43:21.0150 3884 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys
17:43:21.0150 3884 WIMMount - ok
17:43:21.0210 3884 WinDefend - ok
17:43:21.0220 3884 WinHttpAutoProxySvc - ok
17:43:22.0041 3884 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
17:43:22.0041 3884 Winmgmt - ok
17:43:22.0711 3884 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\windows\system32\WsmSvc.dll
17:43:22.0761 3884 WinRM - ok
17:43:22.0941 3884 [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUsb C:\windows\system32\DRIVERS\WinUsb.sys
17:43:22.0941 3884 WinUsb - ok
17:43:23.0341 3884 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll
17:43:23.0351 3884 Wlansvc - ok
17:43:24.0581 3884 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:43:24.0651 3884 wlidsvc - ok
17:43:24.0743 3884 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\DRIVERS\wmiacpi.sys
17:43:24.0743 3884 WmiAcpi - ok
17:43:24.0903 3884 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
17:43:24.0903 3884 wmiApSrv - ok
17:43:25.0053 3884 WMPNetworkSvc - ok
17:43:25.0163 3884 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll
17:43:25.0163 3884 WPCSvc - ok
17:43:25.0213 3884 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
17:43:25.0223 3884 WPDBusEnum - ok
17:43:25.0323 3884 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
17:43:25.0323 3884 ws2ifsl - ok
17:43:25.0423 3884 [ 8F9F3969933C02DA96EB0F84576DB43E ] wscsvc C:\windows\System32\wscsvc.dll
17:43:25.0423 3884 wscsvc - ok
17:43:25.0433 3884 WSearch - ok
17:43:26.0433 3884 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\windows\system32\wuaueng.dll
17:43:26.0523 3884 wuauserv - ok
17:43:26.0563 3884 [ 7CADC74271DD6461C452C271B30BD378 ] WudfPf C:\windows\system32\drivers\WudfPf.sys
17:43:26.0563 3884 WudfPf - ok
17:43:26.0813 3884 [ 3B197AF0FFF08AA66B6B2241CA538D64 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
17:43:26.0863 3884 WUDFRd - ok
17:43:26.0993 3884 [ B551D6637AA0E132C18AC6E504F7B79B ] wudfsvc C:\windows\System32\WUDFSvc.dll
17:43:26.0993 3884 wudfsvc - ok
17:43:27.0163 3884 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\windows\System32\wwansvc.dll
17:43:27.0163 3884 WwanSvc - ok
17:43:27.0713 3884 [ 74983ADDCA2D9618512C088D856D6615 ] {B154377D-700F-42cc-9474-23858FBDF4BD} c:\Program Files (x86)\CyberLink\PowerDVD9\000.fcl
17:43:27.0763 3884 {B154377D-700F-42cc-9474-23858FBDF4BD} - ok
17:43:27.0944 3884 ================ Scan global ===============================
17:43:28.0064 3884 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
17:43:28.0224 3884 [ 0CB6EBF4B461A6043353C570BD72A1E1 ] C:\windows\system32\winsrv.dll
17:43:28.0234 3884 [ 0CB6EBF4B461A6043353C570BD72A1E1 ] C:\windows\system32\winsrv.dll
17:43:28.0334 3884 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
17:43:28.0524 3884 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
17:43:28.0744 3884 [Global] - ok
17:43:28.0744 3884 ================ Scan MBR ==================================
17:43:28.0794 3884 [ EF932EAA6EF4C94E66A7F6CEEC7EB422 ] \Device\Harddisk0\DR0
17:43:28.0814 3884 Suspicious mbr (Forged): \Device\Harddisk0\DR0
17:43:28.0874 3884 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - infected
17:43:28.0874 3884 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.c (0)
17:43:29.0384 3884 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
17:43:29.0384 3884 \Device\Harddisk0\DR0 - detected TDSS File System (1)
17:43:29.0404 3884 [ 2BDBC086F60BC3CA3E44F97D87AB1E64 ] \Device\Harddisk1\DR1
17:43:49.0514 3884 \Device\Harddisk1\DR1 - ok
17:43:49.0514 3884 ================ Scan VBR ==================================
17:43:49.0545 3884 [ 0EE64F82BDBCFF4D7658F1F6376C3799 ] \Device\Harddisk0\DR0\Partition1
17:43:49.0545 3884 \Device\Harddisk0\DR0\Partition1 - ok
17:43:49.0576 3884 [ 0EEADFFE1D8A1D3946199D71B88440F9 ] \Device\Harddisk0\DR0\Partition2
17:43:49.0576 3884 \Device\Harddisk0\DR0\Partition2 - ok
17:43:49.0592 3884 [ 9C0BDBF77D416269B673125284922032 ] \Device\Harddisk1\DR1\Partition1
17:43:49.0592 3884 \Device\Harddisk1\DR1\Partition1 - ok
17:43:49.0592 3884 ============================================================
17:43:49.0592 3884 Scan finished
17:43:49.0592 3884 ============================================================
17:43:49.0608 5780 Detected object count: 2
17:43:49.0608 5780 Actual detected object count: 2
17:44:47.0141 5780 \Device\Harddisk0\DR0\# - copied to quarantine
17:44:47.0157 5780 \Device\Harddisk0\DR0 - copied to quarantine
17:44:51.0494 5780 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
17:44:51.0697 5780 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
17:44:53.0506 5780 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
17:44:57.0469 5780 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
17:44:57.0593 5780 \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
17:44:57.0593 5780 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
17:44:57.0640 5780 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
17:44:57.0952 5780 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
17:44:58.0061 5780 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
17:44:58.0077 5780 \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
17:44:58.0108 5780 \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
17:44:58.0139 5780 \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
17:44:58.0202 5780 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - will be cured on reboot
17:44:58.0202 5780 \Device\Harddisk0\DR0 - ok
17:44:58.0561 5780 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - User select action: Cure
17:44:58.0561 5780 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
17:44:58.0561 5780 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
17:45:23.0055 4932 Deinitialize success

this was a second log from TDSSKILLER

17:48:04.0451 1996 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
17:48:05.0277 1996 ============================================================
17:48:05.0277 1996 Current date / time: 2012/11/18 17:48:05.0277
17:48:05.0277 1996 SystemInfo:
17:48:05.0277 1996
17:48:05.0277 1996 OS Version: 6.1.7600 ServicePack: 0.0
17:48:05.0277 1996 Product type: Workstation
17:48:05.0277 1996 ComputerName: CHRISTINE-PC
17:48:05.0277 1996 UserName: christine
17:48:05.0277 1996 Windows directory: C:\windows
17:48:05.0277 1996 System windows directory: C:\windows
17:48:05.0277 1996 Running under WOW64
17:48:05.0277 1996 Processor architecture: Intel x64
17:48:05.0277 1996 Number of processors: 2
17:48:05.0277 1996 Page size: 0x1000
17:48:05.0277 1996 Boot type: Normal boot
17:48:05.0277 1996 ============================================================
17:48:06.0276 1996 BG loaded
17:48:07.0134 1996 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:48:07.0321 1996 Drive \Device\Harddisk1\DR1 - Size: 0x1E500000 (0.47 Gb), SectorSize: 0x200, Cylinders: 0x3D, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
17:48:07.0321 1996 ============================================================
17:48:07.0321 1996 \Device\Harddisk0\DR0:
17:48:07.0321 1996 MBR partitions:
17:48:07.0321 1996 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1A5E800, BlocksNum 0x32800
17:48:07.0321 1996 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1A91000, BlocksNum 0x1B734000
17:48:07.0321 1996 \Device\Harddisk1\DR1:
17:48:07.0321 1996 MBR partitions:
17:48:07.0321 1996 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x6, StartLBA 0x20, BlocksNum 0xF26C0
17:48:07.0321 1996 ============================================================
17:48:07.0352 1996 C: <-> \Device\Harddisk0\DR0\Partition2
17:48:07.0352 1996 ============================================================
17:48:07.0352 1996 Initialize success
17:48:07.0352 1996 ============================================================
17:48:53.0648 2692 Deinitialize success

#6 pcnovice78

pcnovice78
  • Topic Starter

  • Members
  • 103 posts
  • OFFLINE
  •  
  • Local time:05:01 PM

Posted 18 November 2012 - 10:07 PM

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2012-11-18 18:37:31
-----------------------------
18:37:31.601 OS Version: Windows x64 6.1.7600
18:37:31.601 Number of processors: 2 586 0x2502
18:37:31.601 ComputerName: CHRISTINE-PC UserName: christine
18:37:32.693 Initialize success
18:37:47.965 AVAST engine defs: 12111801
18:48:18.082 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
18:48:18.097 Disk 0 Vendor: WDC_WD25 01.0 Size: 238475MB BusType: 3
18:48:18.191 Disk 0 MBR read successfully
18:48:18.191 Disk 0 MBR scan
18:48:18.269 Disk 0 Windows 7 default MBR code
18:48:18.284 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 13500 MB offset 2048
18:48:18.331 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 101 MB offset 27650048
18:48:18.362 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 224872 MB offset 27856896
18:48:18.472 Disk 0 scanning C:\windows\system32\drivers
18:48:48.876 Service scanning
18:49:38.625 Modules scanning
18:49:38.625 Disk 0 trace - called modules:
18:49:38.687 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
18:49:38.703 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80030ef060]
18:49:38.718 3 CLASSPNP.SYS[fffff8800165143f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8002f03050]
18:49:39.841 AVAST engine scan C:\windows
18:50:00.886 AVAST engine scan C:\windows\system32
18:55:54.282 AVAST engine scan C:\windows\system32\drivers
18:56:10.522 AVAST engine scan C:\Users\christine
19:19:17.164 AVAST engine scan C:\ProgramData
19:21:02.464 File: C:\ProgramData\Microsoft\Windows\DRM\563E.tmp **INFECTED** Win32:Malware-gen
19:27:42.094 Scan finished successfully
19:28:27.178 Disk 0 MBR has been saved successfully to "E:\MBR.dat"
19:28:27.194 The log file has been saved successfully to "E:\aswMBR.txt"

#7 pcnovice78

pcnovice78
  • Topic Starter

  • Members
  • 103 posts
  • OFFLINE
  •  
  • Local time:05:01 PM

Posted 18 November 2012 - 10:08 PM

ESET log

C:\ProgramData\Microsoft\Windows\DRM\55EF.tmp Win64/Olmarik.AO trojan cleaned by deleting - quarantined
C:\ProgramData\Microsoft\Windows\DRM\563E.tmp Win64/Olmarik.AO trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\18.11.2012_17.41.12\mbr0000\tdlfs0000\tsk0001.dta a variant of Win64/Olmarik.AM trojan cleaned by deleting - quarantined
C:\Users\christine\Downloads\cnet2_revosetup_exe.exe a variant of Win32/InstallCore.D application cleaned by deleting - quarantined

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:01 PM

Posted 19 November 2012 - 08:29 AM

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

For vista and windows 7 right click on the tool and select run as administrator

After scan gets completed,post the generated log here.

#9 pcnovice78

pcnovice78
  • Topic Starter

  • Members
  • 103 posts
  • OFFLINE
  •  
  • Local time:05:01 PM

Posted 20 November 2012 - 08:15 AM

Malwarebytes Anti-Malware 1.65.1.1000
www.malwarebytes.org

Database version: v2012.11.19.10

Windows 7 x64 NTFS
Internet Explorer 8.0.7600.16385
christine :: CHRISTINE-PC [administrator]

11/19/2012 10:21:11 PM
mbam-log-2012-11-19 (22-21-11).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 375140
Time elapsed: 1 hour(s), 32 minute(s), 56 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 2
C:\TDSSKiller_Quarantine\18.11.2012_17.41.12\mbr0000\tdlfs0000\tsk0002.dta (Trojan.Agent.MRGGen) -> Quarantined and deleted successfully.
C:\Windows\svchost.exe (Trojan.Agent) -> Quarantined and deleted successfully.

(end)

#10 pcnovice78

pcnovice78
  • Topic Starter

  • Members
  • 103 posts
  • OFFLINE
  •  
  • Local time:05:01 PM

Posted 20 November 2012 - 08:20 AM

MiniToolBox by Farbar Version: 10-11-2012 02
Ran by christine (administrator) on 20-11-2012 at 08:17:35
Windows 7 Home Premium (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Atheros AR5B93 Wireless Network Adapter = Wireless Network Connection (Connected)
Broadcom NetLink ™ Gigabit Ethernet = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 3 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : christine-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection 3:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 2A-7C-8F-01-98-C1
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Atheros AR5B93 Wireless Network Adapter
Physical Address. . . . . . . . . : 20-7C-8F-01-98-C1
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::c0a3:ce3b:e157:4b5f%13(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.4(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Tuesday, November 20, 2012 6:56:37 AM
Lease Expires . . . . . . . . . . : Wednesday, November 21, 2012 6:56:38 AM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 421559439
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-7E-DB-89-00-26-2D-AE-91-50
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom NetLink ™ Gigabit Ethernet
Physical Address. . . . . . . . . : 20-6A-8A-01-D0-15
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{F6D285E9-BC33-4286-8B68-49BB554B26E2}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:20a2:208:b57d:4787(Preferred)
Link-local IPv6 Address . . . . . : fe80::20a2:208:b57d:4787%16(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{D1909660-5563-4607-9A26-A9B1739D9B98}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{79F590F6-BEBC-46B6-9EE7-701F963DE6FD}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: UnKnown
Address: 192.168.1.1

Name: google.com
Addresses: 2001:4860:400a:800::1008
74.125.225.39
74.125.225.40
74.125.225.41
74.125.225.46
74.125.225.32
74.125.225.33
74.125.225.34
74.125.225.35
74.125.225.36
74.125.225.37
74.125.225.38


Pinging google.com [74.125.225.37] with 32 bytes of data:
Reply from 74.125.225.37: bytes=32 time=58ms TTL=53
Reply from 74.125.225.37: bytes=32 time=30ms TTL=53

Ping statistics for 74.125.225.37:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 30ms, Maximum = 58ms, Average = 44ms
Server: UnKnown
Address: 192.168.1.1

Name: yahoo.com
Addresses: 98.138.253.109
98.139.183.24
72.30.38.140


Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=122ms TTL=50
Reply from 72.30.38.140: bytes=32 time=142ms TTL=50

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 122ms, Maximum = 142ms, Average = 132ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
15...2a 7c 8f 01 98 c1 ......Microsoft Virtual WiFi Miniport Adapter
13...20 7c 8f 01 98 c1 ......Atheros AR5B93 Wireless Network Adapter
11...20 6a 8a 01 d0 15 ......Broadcom NetLink ™ Gigabit Ethernet
1...........................Software Loopback Interface 1
18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
16...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
31...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.4 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.4 281
192.168.1.4 255.255.255.255 On-link 192.168.1.4 281
192.168.1.255 255.255.255.255 On-link 192.168.1.4 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.4 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.4 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
16 58 ::/0 On-link
1 306 ::1/128 On-link
16 58 2001::/32 On-link
16 306 2001:0:4137:9e76:20a2:208:b57d:4787/128
On-link
13 281 fe80::/64 On-link
16 306 fe80::/64 On-link
16 306 fe80::20a2:208:b57d:4787/128
On-link
13 281 fe80::c0a3:ce3b:e157:4b5f/128
On-link
1 306 ff00::/8 On-link
16 306 ff00::/8 On-link
13 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [51712] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70144] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (11/20/2012 07:35:31 AM) (Source: System Restore) (User: )
Description: Failed to create restore point (Process = C:\windows\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation; Description = Scheduled Checkpoint; Error = 0x80070422).

Error: (11/20/2012 06:57:01 AM) (Source: Application Error) (User: )
Description: Faulting application name: GregHSRW.exe, version: 1.0.2001.0, time stamp: 0x2a425e19
Faulting module name: GregHSRW.exe, version: 1.0.2001.0, time stamp: 0x2a425e19
Exception code: 0xc0000005
Fault offset: 0x000bf4dc
Faulting process id: 0x77c
Faulting application start time: 0xGregHSRW.exe0
Faulting application path: GregHSRW.exe1
Faulting module path: GregHSRW.exe2
Report Id: GregHSRW.exe3

Error: (11/20/2012 02:27:58 AM) (Source: System Restore) (User: )
Description: Failed to create restore point (Process = C:\windows\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation; Description = Scheduled Checkpoint; Error = 0x80070422).

Error: (11/20/2012 02:23:29 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (11/20/2012 02:23:22 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.

Error: (11/19/2012 05:58:11 PM) (Source: System Restore) (User: )
Description: Failed to create restore point (Process = C:\windows\system32\svchost.exe -k netsvcs; Description = Windows Update; Error = 0x80070422).

Error: (11/19/2012 00:32:51 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (11/19/2012 00:32:45 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.

Error: (11/19/2012 00:00:01 AM) (Source: System Restore) (User: )
Description: Failed to create restore point (Process = C:\windows\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation; Description = Scheduled Checkpoint; Error = 0x80070422).

Error: (11/18/2012 10:28:19 PM) (Source: System Restore) (User: )
Description: Failed to create restore point (Process = C:\windows\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation; Description = Scheduled Checkpoint; Error = 0x80070422).


System errors:
=============
Error: (11/20/2012 06:57:13 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
ASPI32

Error: (11/20/2012 06:57:02 AM) (Source: Service Control Manager) (User: )
Description: The GRegService service failed to start due to the following error:
%%1053

Error: (11/20/2012 06:57:02 AM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the GRegService service to connect.

Error: (11/20/2012 06:56:34 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.

Module Path: C:\windows\system32\athExt.dll
Error Code: 126

Error: (11/20/2012 06:56:17 AM) (Source: Application Popup) (User: )
Description: \SystemRoot\SysWow64\Drivers\ASPI32.SYS has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.

Error: (11/18/2012 05:47:50 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
ASPI32

Error: (11/18/2012 05:47:26 PM) (Source: Service Control Manager) (User: )
Description: The GRegService service failed to start due to the following error:
%%1053

Error: (11/18/2012 05:47:26 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the GRegService service to connect.

Error: (11/18/2012 05:46:44 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.

Module Path: C:\windows\system32\athExt.dll
Error Code: 126

Error: (11/18/2012 05:45:57 PM) (Source: Application Popup) (User: )
Description: \SystemRoot\SysWow64\Drivers\ASPI32.SYS has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.


Microsoft Office Sessions:
=========================
Error: (11/20/2012 07:35:31 AM) (Source: System Restore)(User: )
Description: C:\windows\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreationScheduled Checkpoint0x80070422

Error: (11/20/2012 06:57:01 AM) (Source: Application Error)(User: )
Description: GregHSRW.exe1.0.2001.02a425e19GregHSRW.exe1.0.2001.02a425e19c0000005000bf4dc77c01cdc7161d7969f1C:\Program Files (x86)\Acer\Registration\GregHSRW.exeC:\Program Files (x86)\Acer\Registration\GregHSRW.exe643df69d-3309-11e2-a05e-206a8a01d015

Error: (11/20/2012 02:27:58 AM) (Source: System Restore)(User: )
Description: C:\windows\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreationScheduled Checkpoint0x80070422

Error: (11/20/2012 02:23:29 AM) (Source: SideBySide)(User: )
Description: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestC:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe

Error: (11/20/2012 02:23:22 AM) (Source: SideBySide)(User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3

Error: (11/19/2012 05:58:11 PM) (Source: System Restore)(User: )
Description: C:\windows\system32\svchost.exe -k netsvcsWindows Update0x80070422

Error: (11/19/2012 00:32:51 AM) (Source: SideBySide)(User: )
Description: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestC:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe

Error: (11/19/2012 00:32:45 AM) (Source: SideBySide)(User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3

Error: (11/19/2012 00:00:01 AM) (Source: System Restore)(User: )
Description: C:\windows\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreationScheduled Checkpoint0x80070422

Error: (11/18/2012 10:28:19 PM) (Source: System Restore)(User: )
Description: C:\windows\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreationScheduled Checkpoint0x80070422


=========================== Installed Programs ============================

ABC Amber LIT Converter
Acer Backup Manager (Version: 2.0.0.60)
Acer Crystal Eye webcam Ver:1.1.164.323 (Version: 1.1.164.323)
Acer ePower Management (Version: 5.00.3002)
Acer eRecovery Management (Version: 4.05.3007)
Acer Game Console
Acer Games (Version: 1.0.0.80)
Acer Registration (Version: 1.02.3006)
Acer ScreenSaver (Version: 1.1.0423.2010)
Acer Updater (Version: 1.02.3001)
Acrobat.com (Version: 1.6.65)
Adobe AIR (Version: 1.5.0.7220)
Adobe Flash Player 10 ActiveX (Version: 10.0.45.2)
Adobe Flash Player 11 Plugin (Version: 11.4.402.287)
Adobe Reader X (10.1.4) (Version: 10.1.4)
Adobe Shockwave Player 11.6 (Version: 11.6.6.636)
Alcor Micro USB Card Reader (Version: 1.5.17.05094)
Android SDK Tools (Version: 1.16)
Apple Application Support (Version: 2.2.2)
Apple Mobile Device Support (Version: 6.0.0.59)
Apple Software Update (Version: 2.1.3.127)
AruaROSE (Version: 854)
Backup Manager Basic (Version: 2.0.0.60)
Bejeweled 2 Deluxe (Version: 2.2.0.82)
BitTorrent (Version: 7.6.1)
Blackhawk Striker 2 (Version: 2.2.0.82)
Bob the Builder Can-Do-Zoo (Version: 2.2.0.82)
Bonjour (Version: 3.0.0.10)
Broadcom Gigabit NetLink Controller (Version: 12.52.03)
Build-a-lot 2 (Version: 2.2.0.82)
Call of Duty® 2 (Version: 1.00.0000)
CCleaner (Version: 3.18)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Coupon Printer for Windows (Version: 5.0.0.1)
CyberLink PowerDVD 9 (Version: 9.0.2529.50)
D3DX10 (Version: 15.4.2368.0902)
DVD Shrink 3.2
eBay Worldwide (Version: 2.1.0901)
eMusic Download Manager (Version: 5.0.5)
Escape Rosecliff Island (Version: 2.2.0.82)
ESET Online Scanner v3
eSobi v2 (Version: 2.0.4.000274)
Faerie Solitaire (Version: 2.2.0.82)
FATE - The Traitor Soul (Version: 2.2.0.82)
Gadwin PrintScreen (Version: 4.6)
Girl Gear Photo Manager (Version: )
Google Chrome (Version: 23.0.1271.64)
Google Talk Plugin (Version: 3.10.2.10212)
Google Update Helper (Version: 1.3.21.123)
Greeting Card Factory Workshop 8.0 (Version: 8.0.0.38)
Hewlett-Packard ACLM.NET v1.1.0.0 (Version: 1.00.0000)
HP Deskjet 3050A J611 series Basic Device Software (Version: 25.0.571.0)
HP Deskjet 3050A J611 series Help (Version: 140.0.2.2)
HP Photo Creations (Version: 1.0.0.5192)
HP Product Detection (Version: 11.14.0001)
HP Update (Version: 5.003.001.001)
Identity Card (Version: 1.00.3003)
Intel® Control Center (Version: 1.2.1.1007)
Intel® Graphics Media Accelerator Driver (Version: 8.15.10.2119)
Intel® Management Engine Components (Version: 6.0.0.1179)
Intel® Rapid Storage Technology (Version: 9.5.6.1001)
iTunes (Version: 10.7.0.21)
Java 7 Update 7 (Version: 7.0.70)
Java Auto Updater (Version: 2.1.9.0)
JavaFX 2.1.1 (Version: 2.1.1)
Jewel Quest Solitaire 3 (Version: 2.2.0.82)
Junk Mail filter update (Version: 15.4.3502.0922)
Launch Manager (Version: 4.0.8)
Malwarebytes Anti-Malware version 1.65.1.1000 (Version: 1.65.1.1000)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Suite Activation Assistant (Version: 2.9)
Microsoft Office Word 2003 XML Viewer (Version: 1.0.6113.0)
Microsoft Office XP Professional with FrontPage (Version: 10.0.6626.0)
Microsoft Security Client (Version: 4.1.0522.0)
Microsoft Security Essentials (Version: 4.1.522.0)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Works (Version: 9.7.0621)
Monopoly (Version: 2.2.0.82)
Mozilla Firefox 16.0.2 (x86 en-US) (Version: 16.0.2)
Mozilla Maintenance Service (Version: 16.0.2)
MplayerforWindows v2011-03-27 (Version: v2011-03-27)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
Mystery P.I. - Lost in Los Angeles (Version: 2.2.0.82)
MyWinLocker (Version: 3.1.206.0)
MyWinLocker Suite (Version: 3.1.206.0)
NETGEAR Genie (Version: 2.2.27.1 )
NOOK Study (Version: 2.1.1.27456)
Norton Online Backup (Version: 1.2.0.36)
NTI Backup Now 5 (Version: 5.1.2.628)
NTI Backup Now Standard (Version: 5.1.2.628)
NTI Media Maker 8 (Version: 8.0.12.6630)
PDF to Kindle Converter 3.0.1
Penguins! (Version: 2.2.0.82)
Plants vs. Zombies (Version: 2.2.0.82)
Polar Bowler (Version: 2.2.0.82)
Polar Golfer (Version: 2.2.0.82)
POWERPREP II (Version: 2.00.0000)
Quick PDF Converter Suite (Version: 3.0)
Realtek High Definition Audio Driver (Version: 6.0.1.6000)
Revo Uninstaller 1.94 (Version: 1.94)
Scrabble Plus (Version: 2.2.0.82)
Shredder (Version: 2.0.5.0)
Skype Click to Call (Version: 6.3.11079)
Skype™ 5.10 (Version: 5.10.116)
swMSM (Version: 12.0.0.1)
Synaptics Pointing Device Driver (Version: 14.0.3.0)
The Price is Right (Version: 2.2.0.82)
Uninstall Dual Mode Camera
Unity Web Player (Version: 2.6.1f3_31223)
Virtual Families (Version: 2.2.0.82)
Virtual Villagers - A New Home (Version: 2.2.0.82)
VLC media player 2.0.3 (Version: 2.0.3)
Welcome Center (Version: 1.00.3013)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
XviD & MP3 Codec Pack (remove only)
XviD MPEG-4 Video Codec (Version: XviD-1.0.3-20122004)
Yahtzee (Version: 2.2.0.82)
Zuma Deluxe (Version: 2.2.0.82)

========================= Memory info: ===================================

Percentage of memory in use: 46%
Total physical RAM: 2804.51 MB
Available physical RAM: 1499.6 MB
Total Pagefile: 5607.16 MB
Available Pagefile: 4157.39 MB
Total Virtual: 4095.88 MB
Available Virtual: 3959.97 MB

========================= Partitions: =====================================

1 Drive c: (Acer) (Fixed) (Total:219.6 GB) (Free:146.8 GB) NTFS

========================= Users: ========================================

User accounts for \\CHRISTINE-PC

Administrator christine Guest

========================= Restore Points ==================================


**** End of log ****

#11 pcnovice78

pcnovice78
  • Topic Starter

  • Members
  • 103 posts
  • OFFLINE
  •  
  • Local time:05:01 PM

Posted 20 November 2012 - 08:24 AM

Farbar Service Scanner Version: 09-11-2012
Ran by christine (administrator) on 20-11-2012 at 08:22:46
Running from "C:\Users\christine\Desktop"
Windows 7 Home Premium (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys
[2012-02-15 03:51] - [2011-12-27 22:59] - 0499200 ____A (Microsoft Corporation) DB9D6C6B2CD95A9CA414D045B627422E

C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys
[2012-05-09 13:01] - [2012-03-30 06:09] - 1895280 ____A (Microsoft Corporation) 624C5B3AA4C99B3184BB922D9ECE3FF0

C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll
[2012-10-09 20:50] - [2012-06-02 00:25] - 0182272 ____A (Microsoft Corporation) BAF19B633933A9FB4883D27D66C39E9A

C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

#12 pcnovice78

pcnovice78
  • Topic Starter

  • Members
  • 103 posts
  • OFFLINE
  •  
  • Local time:05:01 PM

Posted 20 November 2012 - 08:37 AM

# AdwCleaner v2.008 - Logfile created 11/20/2012 at 08:25:41
# Updated 17/11/2012 by Xplode
# Operating system : Windows 7 Home Premium (64 bits)
# User : christine - CHRISTINE-PC
# Boot Mode : Normal
# Running from : C:\Users\christine\Desktop\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

File Deleted : C:\Users\christine\Desktop\Uninstall.exe
File Deleted : C:\Users\Public\Desktop\eBay.lnk
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\ProgramData\Partner

***** [Registry] *****

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Deleted : HKLM\Software\Freeze.com
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.7600.16385

[OK] Registry is clean.

-\\ Mozilla Firefox v16.0.2 (en-US)

Profile name : default
File : C:\Users\christine\AppData\Roaming\Mozilla\Firefox\Profiles\2bmfq3xh.default\prefs.js

C:\Users\christine\AppData\Roaming\Mozilla\Firefox\Profiles\2bmfq3xh.default\user.js ... Deleted !

[OK] File is clean.

-\\ Google Chrome v [Unable to get version]

File : C:\Users\christine\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [1800 octets] - [20/11/2012 08:25:41]

########## EOF - C:\AdwCleaner[S1].txt - [1860 octets] ##########

#13 pcnovice78

pcnovice78
  • Topic Starter

  • Members
  • 103 posts
  • OFFLINE
  •  
  • Local time:05:01 PM

Posted 20 November 2012 - 08:45 AM

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 3.3.4 (11.19.2012)
OS: Windows 7 Home Premium x64
Ran by christine on Tue 11/20/2012 at 8:39:20.40
Blog: http://thisisudax.blogspot.com
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Program Files (x86)\coupons"



~~~ FireFox

Successfully deleted: [Folder] C:\Users\christine\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Tue 11/20/2012 at 8:43:59.08
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:01 PM

Posted 20 November 2012 - 08:55 AM

Run TDSSkiller and malwarebytes again and post the new logs

Download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here


Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the contents of text here

#15 pcnovice78

pcnovice78
  • Topic Starter

  • Members
  • 103 posts
  • OFFLINE
  •  
  • Local time:05:01 PM

Posted 20 November 2012 - 04:25 PM

16:20:54.0220 1988 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
16:20:54.0820 1988 ============================================================
16:20:54.0820 1988 Current date / time: 2012/11/20 16:20:54.0820
16:20:54.0820 1988 SystemInfo:
16:20:54.0820 1988
16:20:54.0820 1988 OS Version: 6.1.7600 ServicePack: 0.0
16:20:54.0820 1988 Product type: Workstation
16:20:54.0820 1988 ComputerName: CHRISTINE-PC
16:20:54.0820 1988 UserName: christine
16:20:54.0820 1988 Windows directory: C:\windows
16:20:54.0820 1988 System windows directory: C:\windows
16:20:54.0820 1988 Running under WOW64
16:20:54.0820 1988 Processor architecture: Intel x64
16:20:54.0820 1988 Number of processors: 2
16:20:54.0820 1988 Page size: 0x1000
16:20:54.0820 1988 Boot type: Normal boot
16:20:54.0820 1988 ============================================================
16:20:55.0780 1988 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:20:55.0790 1988 Drive \Device\Harddisk1\DR1 - Size: 0x1E500000 (0.47 Gb), SectorSize: 0x200, Cylinders: 0x3D, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:20:55.0790 1988 ============================================================
16:20:55.0790 1988 \Device\Harddisk0\DR0:
16:20:55.0790 1988 MBR partitions:
16:20:55.0790 1988 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1A5E800, BlocksNum 0x32800
16:20:55.0790 1988 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1A91000, BlocksNum 0x1B734000
16:20:55.0790 1988 \Device\Harddisk1\DR1:
16:20:55.0790 1988 MBR partitions:
16:20:55.0790 1988 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x6, StartLBA 0x20, BlocksNum 0xF26C0
16:20:55.0790 1988 ============================================================
16:20:55.0840 1988 C: <-> \Device\Harddisk0\DR0\Partition2
16:20:55.0840 1988 ============================================================
16:20:55.0840 1988 Initialize success
16:20:55.0840 1988 ============================================================
16:21:11.0222 2772 ============================================================
16:21:11.0222 2772 Scan started
16:21:11.0222 2772 Mode: Manual;
16:21:11.0222 2772 ============================================================
16:21:11.0302 2772 ================ Scan system memory ========================
16:21:11.0302 2772 System memory - ok
16:21:11.0302 2772 ================ Scan services =============================
16:21:11.0542 2772 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\windows\system32\DRIVERS\1394ohci.sys
16:21:11.0542 2772 1394ohci - ok
16:21:11.0582 2772 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\windows\system32\DRIVERS\ACPI.sys
16:21:11.0592 2772 ACPI - ok
16:21:11.0612 2772 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\windows\system32\DRIVERS\acpipmi.sys
16:21:11.0612 2772 AcpiPmi - ok
16:21:11.0782 2772 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
16:21:11.0792 2772 AdobeARMservice - ok
16:21:11.0952 2772 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:21:11.0952 2772 AdobeFlashPlayerUpdateSvc - ok
16:21:12.0012 2772 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\DRIVERS\adp94xx.sys
16:21:12.0012 2772 adp94xx - ok
16:21:12.0062 2772 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\DRIVERS\adpahci.sys
16:21:12.0062 2772 adpahci - ok
16:21:12.0082 2772 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\DRIVERS\adpu320.sys
16:21:12.0092 2772 adpu320 - ok
16:21:12.0122 2772 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
16:21:12.0122 2772 AeLookupSvc - ok
16:21:12.0182 2772 [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD C:\windows\system32\drivers\afd.sys
16:21:12.0182 2772 AFD - ok
16:21:12.0222 2772 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\DRIVERS\agp440.sys
16:21:12.0222 2772 agp440 - ok
16:21:12.0252 2772 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe
16:21:12.0252 2772 ALG - ok
16:21:12.0292 2772 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\DRIVERS\aliide.sys
16:21:12.0292 2772 aliide - ok
16:21:12.0302 2772 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\DRIVERS\amdide.sys
16:21:12.0302 2772 amdide - ok
16:21:12.0322 2772 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\DRIVERS\amdk8.sys
16:21:12.0332 2772 AmdK8 - ok
16:21:12.0332 2772 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\DRIVERS\amdppm.sys
16:21:12.0332 2772 AmdPPM - ok
16:21:12.0382 2772 [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata C:\windows\system32\drivers\amdsata.sys
16:21:12.0392 2772 amdsata - ok
16:21:12.0422 2772 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\DRIVERS\amdsbs.sys
16:21:12.0422 2772 amdsbs - ok
16:21:12.0442 2772 [ DB27766102C7BF7E95140A2AA81D042E ] amdxata C:\windows\system32\drivers\amdxata.sys
16:21:12.0442 2772 amdxata - ok
16:21:12.0502 2772 [ 391887990CDAA83DE5C56C3FDE966DA1 ] AmUStor C:\windows\system32\drivers\AmUStor.SYS
16:21:12.0502 2772 AmUStor - ok
16:21:12.0542 2772 [ 4DE0D5D747A73797C95A97DCCE5018B5 ] androidusb C:\windows\system32\Drivers\ssadadb.sys
16:21:12.0542 2772 androidusb - ok
16:21:12.0572 2772 ApfiltrService - ok
16:21:12.0612 2772 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\windows\system32\drivers\appid.sys
16:21:12.0612 2772 AppID - ok
16:21:12.0642 2772 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll
16:21:12.0642 2772 AppIDSvc - ok
16:21:12.0652 2772 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\windows\System32\appinfo.dll
16:21:12.0652 2772 Appinfo - ok
16:21:12.0752 2772 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:21:12.0752 2772 Apple Mobile Device - ok
16:21:12.0802 2772 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\DRIVERS\arc.sys
16:21:12.0802 2772 arc - ok
16:21:12.0812 2772 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\DRIVERS\arcsas.sys
16:21:12.0812 2772 arcsas - ok
16:21:12.0882 2772 ASPI32 - ok
16:21:12.0932 2772 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
16:21:12.0932 2772 AsyncMac - ok
16:21:12.0962 2772 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\DRIVERS\atapi.sys
16:21:12.0962 2772 atapi - ok
16:21:13.0062 2772 [ 70260C7C98CC0101316F5B2650C3BB44 ] athr C:\windows\system32\DRIVERS\athrx.sys
16:21:13.0082 2772 athr - ok
16:21:13.0142 2772 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
16:21:13.0152 2772 AudioEndpointBuilder - ok
16:21:13.0172 2772 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\windows\System32\Audiosrv.dll
16:21:13.0182 2772 AudioSrv - ok
16:21:13.0222 2772 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\windows\System32\AxInstSV.dll
16:21:13.0222 2772 AxInstSV - ok
16:21:13.0292 2772 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\DRIVERS\bxvbda.sys
16:21:13.0292 2772 b06bdrv - ok
16:21:13.0342 2772 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
16:21:13.0342 2772 b57nd60a - ok
16:21:13.0492 2772 [ A8AA5B6543955BA68CD3EAA2D0112F00 ] BCM43XX C:\windows\system32\DRIVERS\bcmwl664.sys
16:21:13.0522 2772 BCM43XX - ok
16:21:13.0562 2772 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll
16:21:13.0562 2772 BDESVC - ok
16:21:13.0582 2772 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys
16:21:13.0582 2772 Beep - ok
16:21:13.0612 2772 [ 4992C609A6315671463E30F6512BC022 ] BFE C:\windows\System32\bfe.dll
16:21:13.0622 2772 BFE - ok
16:21:13.0672 2772 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\windows\System32\qmgr.dll
16:21:13.0672 2772 BITS - ok
16:21:13.0692 2772 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
16:21:13.0692 2772 blbdrive - ok
16:21:13.0782 2772 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:21:13.0792 2772 Bonjour Service - ok
16:21:13.0832 2772 [ 19D20159708E152267E53B66677A4995 ] bowser C:\windows\system32\DRIVERS\bowser.sys
16:21:13.0832 2772 bowser - ok
16:21:13.0872 2772 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\DRIVERS\BrFiltLo.sys
16:21:13.0872 2772 BrFiltLo - ok
16:21:13.0892 2772 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\DRIVERS\BrFiltUp.sys
16:21:13.0892 2772 BrFiltUp - ok
16:21:13.0932 2772 [ 6B054C67AAA87843504E8E3C09102009 ] Browser C:\windows\System32\browser.dll
16:21:13.0942 2772 Browser - ok
16:21:13.0952 2772 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys
16:21:13.0952 2772 Brserid - ok
16:21:13.0972 2772 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
16:21:13.0972 2772 BrSerWdm - ok
16:21:13.0992 2772 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
16:21:13.0992 2772 BrUsbMdm - ok
16:21:14.0022 2772 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
16:21:14.0022 2772 BrUsbSer - ok
16:21:14.0052 2772 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\DRIVERS\bthmodem.sys
16:21:14.0052 2772 BTHMODEM - ok
16:21:14.0082 2772 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll
16:21:14.0082 2772 bthserv - ok
16:21:14.0102 2772 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
16:21:14.0102 2772 cdfs - ok
16:21:14.0142 2772 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
16:21:14.0142 2772 cdrom - ok
16:21:14.0172 2772 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\windows\System32\certprop.dll
16:21:14.0172 2772 CertPropSvc - ok
16:21:14.0192 2772 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\DRIVERS\circlass.sys
16:21:14.0192 2772 circlass - ok
16:21:14.0222 2772 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys
16:21:14.0222 2772 CLFS - ok
16:21:14.0292 2772 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:21:14.0292 2772 clr_optimization_v2.0.50727_32 - ok
16:21:14.0332 2772 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:21:14.0332 2772 clr_optimization_v2.0.50727_64 - ok
16:21:14.0422 2772 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:21:14.0432 2772 clr_optimization_v4.0.30319_32 - ok
16:21:14.0472 2772 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:21:14.0472 2772 clr_optimization_v4.0.30319_64 - ok
16:21:14.0502 2772 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
16:21:14.0502 2772 CmBatt - ok
16:21:14.0532 2772 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\DRIVERS\cmdide.sys
16:21:14.0532 2772 cmdide - ok
16:21:14.0592 2772 [ CA7720B73446FDDEC5C69519C1174C98 ] CNG C:\windows\system32\Drivers\cng.sys
16:21:14.0592 2772 CNG - ok
16:21:14.0612 2772 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\DRIVERS\compbatt.sys
16:21:14.0612 2772 Compbatt - ok
16:21:14.0632 2772 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\windows\system32\DRIVERS\CompositeBus.sys
16:21:14.0632 2772 CompositeBus - ok
16:21:14.0642 2772 COMSysApp - ok
16:21:14.0662 2772 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\DRIVERS\crcdisk.sys
16:21:14.0662 2772 crcdisk - ok
16:21:14.0722 2772 [ BAF19B633933A9FB4883D27D66C39E9A ] CryptSvc C:\windows\system32\cryptsvc.dll
16:21:14.0722 2772 CryptSvc - ok
16:21:14.0752 2772 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\windows\system32\rpcss.dll
16:21:14.0762 2772 DcomLaunch - ok
16:21:14.0792 2772 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll
16:21:14.0792 2772 defragsvc - ok
16:21:14.0832 2772 [ 9C253CE7311CA60FC11C774692A13208 ] DfsC C:\windows\system32\Drivers\dfsc.sys
16:21:14.0832 2772 DfsC - ok
16:21:14.0862 2772 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\windows\system32\dhcpcore.dll
16:21:14.0862 2772 Dhcp - ok
16:21:14.0892 2772 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys
16:21:14.0892 2772 discache - ok
16:21:14.0932 2772 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\DRIVERS\disk.sys
16:21:14.0932 2772 Disk - ok
16:21:14.0982 2772 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\windows\System32\dnsrslvr.dll
16:21:14.0982 2772 Dnscache - ok
16:21:15.0012 2772 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\windows\System32\dot3svc.dll
16:21:15.0022 2772 dot3svc - ok
16:21:15.0022 2772 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\windows\system32\dps.dll
16:21:15.0032 2772 DPS - ok
16:21:15.0082 2772 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
16:21:15.0082 2772 drmkaud - ok
16:21:15.0172 2772 [ E2B2853A0210D6EDAB2261870BD80C1A ] DsiWMIService C:\Program Files (x86)\Launch Manager\dsiwmis.exe
16:21:15.0182 2772 DsiWMIService - ok
16:21:15.0223 2772 [ EBCE0B0924835F635F620D19F0529DCE ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
16:21:15.0233 2772 DXGKrnl - ok
16:21:15.0283 2772 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll
16:21:15.0283 2772 EapHost - ok
16:21:15.0383 2772 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\DRIVERS\evbda.sys
16:21:15.0403 2772 ebdrv - ok
16:21:15.0433 2772 [ 156F6159457D0AA7E59B62681B56EB90 ] EFS C:\windows\System32\lsass.exe
16:21:15.0443 2772 EFS - ok
16:21:15.0523 2772 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\windows\ehome\ehRecvr.exe
16:21:15.0533 2772 ehRecvr - ok
16:21:15.0573 2772 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe
16:21:15.0583 2772 ehSched - ok
16:21:15.0633 2772 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\DRIVERS\elxstor.sys
16:21:15.0643 2772 elxstor - ok
16:21:15.0743 2772 [ 49EEF52BFB986A2B5D70F4EC12637D7B ] ePowerSvc C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
16:21:15.0753 2772 ePowerSvc - ok
16:21:15.0773 2772 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\DRIVERS\errdev.sys
16:21:15.0773 2772 ErrDev - ok
16:21:15.0813 2772 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll
16:21:15.0823 2772 EventSystem - ok
16:21:15.0843 2772 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys
16:21:15.0843 2772 exfat - ok
16:21:15.0863 2772 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys
16:21:15.0873 2772 fastfat - ok
16:21:15.0893 2772 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\windows\system32\fxssvc.exe
16:21:15.0903 2772 Fax - ok
16:21:15.0943 2772 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\DRIVERS\fdc.sys
16:21:15.0943 2772 fdc - ok
16:21:15.0973 2772 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll
16:21:15.0973 2772 fdPHost - ok
16:21:15.0983 2772 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll
16:21:15.0983 2772 FDResPub - ok
16:21:16.0013 2772 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
16:21:16.0013 2772 FileInfo - ok
16:21:16.0033 2772 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys
16:21:16.0033 2772 Filetrace - ok
16:21:16.0073 2772 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\DRIVERS\flpydisk.sys
16:21:16.0073 2772 flpydisk - ok
16:21:16.0093 2772 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
16:21:16.0093 2772 FltMgr - ok
16:21:16.0143 2772 [ 8AC4CB4EA61E41009FAE9AE7B2B5DA3A ] FontCache C:\windows\system32\FntCache.dll
16:21:16.0153 2772 FontCache - ok
16:21:16.0204 2772 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:21:16.0204 2772 FontCache3.0.0.0 - ok
16:21:16.0224 2772 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys
16:21:16.0224 2772 FsDepends - ok
16:21:16.0274 2772 [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
16:21:16.0274 2772 Fs_Rec - ok
16:21:16.0324 2772 [ AE87BA80D0EC3B57126ED2CDC15B24ED ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
16:21:16.0324 2772 fvevol - ok
16:21:16.0364 2772 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\DRIVERS\gagp30kx.sys
16:21:16.0364 2772 gagp30kx - ok
16:21:16.0444 2772 [ 6858C318E8DAA40E747E6FB9B214E104 ] GameConsoleService C:\Program Files (x86)\Acer Games\Acer Game Console\GameConsoleService.exe
16:21:16.0444 2772 GameConsoleService - ok
16:21:16.0494 2772 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\windows\system32\DRIVERS\GEARAspiWDM.sys
16:21:16.0504 2772 GEARAspiWDM - ok
16:21:16.0534 2772 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\windows\System32\gpsvc.dll
16:21:16.0544 2772 gpsvc - ok
16:21:16.0634 2772 [ 816FD5A6F3C2F3D600900096632FC60E ] Greg_Service C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
16:21:16.0644 2772 Greg_Service - ok
16:21:16.0724 2772 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:21:16.0724 2772 gupdate - ok
16:21:16.0734 2772 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:21:16.0734 2772 gupdatem - ok
16:21:16.0774 2772 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
16:21:16.0774 2772 hcw85cir - ok
16:21:16.0804 2772 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
16:21:16.0804 2772 HdAudAddService - ok
16:21:16.0824 2772 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\windows\system32\DRIVERS\HDAudBus.sys
16:21:16.0834 2772 HDAudBus - ok
16:21:16.0854 2772 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\windows\system32\DRIVERS\HECIx64.sys
16:21:16.0854 2772 HECIx64 - ok
16:21:16.0874 2772 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\DRIVERS\HidBatt.sys
16:21:16.0874 2772 HidBatt - ok
16:21:16.0884 2772 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\DRIVERS\hidbth.sys
16:21:16.0884 2772 HidBth - ok
16:21:16.0904 2772 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\DRIVERS\hidir.sys
16:21:16.0904 2772 HidIr - ok
16:21:16.0934 2772 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\system32\hidserv.dll
16:21:16.0934 2772 hidserv - ok
16:21:16.0954 2772 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys
16:21:16.0954 2772 HidUsb - ok
16:21:16.0994 2772 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\windows\system32\kmsvc.dll
16:21:17.0004 2772 hkmsvc - ok
16:21:17.0004 2772 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\windows\system32\ListSvc.dll
16:21:17.0014 2772 HomeGroupListener - ok
16:21:17.0034 2772 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\windows\system32\provsvc.dll
16:21:17.0034 2772 HomeGroupProvider - ok
16:21:17.0074 2772 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\windows\system32\DRIVERS\HpSAMD.sys
16:21:17.0074 2772 HpSAMD - ok
16:21:17.0114 2772 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\windows\system32\drivers\HTTP.sys
16:21:17.0124 2772 HTTP - ok
16:21:17.0144 2772 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
16:21:17.0144 2772 hwpolicy - ok
16:21:17.0154 2772 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\DRIVERS\i8042prt.sys
16:21:17.0154 2772 i8042prt - ok
16:21:17.0194 2772 [ 42E00996DFC13C46366689C0EA8ABC5E ] iaStor C:\windows\system32\DRIVERS\iaStor.sys
16:21:17.0194 2772 iaStor - ok
16:21:17.0264 2772 [ 48362E5DB5CB2C000C514EE1F3890ACD ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
16:21:17.0264 2772 IAStorDataMgrSvc - ok
16:21:17.0324 2772 [ B75E45C564E944A2657167D197AB29DA ] iaStorV C:\windows\system32\drivers\iaStorV.sys
16:21:17.0334 2772 iaStorV - ok
16:21:17.0384 2772 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:21:17.0394 2772 idsvc - ok
16:21:17.0644 2772 [ 2A22AB054F4630D2EF4BAB2853F6D5F6 ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys
16:21:17.0704 2772 igfx - ok
16:21:17.0754 2772 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\DRIVERS\iirsp.sys
16:21:17.0754 2772 iirsp - ok
16:21:17.0784 2772 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\windows\System32\ikeext.dll
16:21:17.0794 2772 IKEEXT - ok
16:21:17.0814 2772 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\windows\system32\DRIVERS\Impcd.sys
16:21:17.0814 2772 Impcd - ok
16:21:17.0894 2772 [ 53019327813FF5AB2964B33B2C61307C ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
16:21:17.0914 2772 IntcAzAudAddService - ok
16:21:17.0974 2772 [ 58CF58DEE26C909BD6F977B61D246295 ] IntcDAud C:\windows\system32\DRIVERS\IntcDAud.sys
16:21:17.0984 2772 IntcDAud - ok
16:21:18.0014 2772 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\DRIVERS\intelide.sys
16:21:18.0014 2772 intelide - ok
16:21:18.0034 2772 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
16:21:18.0044 2772 intelppm - ok
16:21:18.0074 2772 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll
16:21:18.0074 2772 IPBusEnum - ok
16:21:18.0084 2772 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
16:21:18.0094 2772 IpFilterDriver - ok
16:21:18.0114 2772 [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc C:\windows\System32\iphlpsvc.dll
16:21:18.0124 2772 iphlpsvc - ok
16:21:18.0124 2772 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\windows\system32\DRIVERS\IPMIDrv.sys
16:21:18.0124 2772 IPMIDRV - ok
16:21:18.0144 2772 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys
16:21:18.0144 2772 IPNAT - ok
16:21:18.0244 2772 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
16:21:18.0254 2772 iPod Service - ok
16:21:18.0284 2772 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys
16:21:18.0284 2772 IRENUM - ok
16:21:18.0304 2772 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\DRIVERS\isapnp.sys
16:21:18.0304 2772 isapnp - ok
16:21:18.0324 2772 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\windows\system32\DRIVERS\msiscsi.sys
16:21:18.0324 2772 iScsiPrt - ok
16:21:18.0404 2772 [ D57BC37917533162E3E75140D1F037B9 ] JLTECH0227 C:\windows\system32\Drivers\jl2005c.sys
16:21:18.0414 2772 JLTECH0227 - ok
16:21:18.0464 2772 [ 9D7EA8C7215D8D4AE7BE110EEE61085D ] k57nd60a C:\windows\system32\DRIVERS\k57nd60a.sys
16:21:18.0464 2772 k57nd60a - ok
16:21:18.0494 2772 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\DRIVERS\kbdclass.sys
16:21:18.0494 2772 kbdclass - ok
16:21:18.0534 2772 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\windows\system32\DRIVERS\kbdhid.sys
16:21:18.0534 2772 kbdhid - ok
16:21:18.0544 2772 [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso C:\windows\system32\lsass.exe
16:21:18.0554 2772 KeyIso - ok
16:21:18.0594 2772 [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
16:21:18.0594 2772 KSecDD - ok
16:21:18.0604 2772 [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
16:21:18.0614 2772 KSecPkg - ok
16:21:18.0614 2772 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
16:21:18.0614 2772 ksthunk - ok
16:21:18.0674 2772 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll
16:21:18.0674 2772 KtmRm - ok
16:21:18.0714 2772 [ 2AC603C3188C704CFCE353659AA7AD71 ] L1E C:\windows\system32\DRIVERS\L1E62x64.sys
16:21:18.0714 2772 L1E - ok
16:21:18.0754 2772 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\windows\system32\srvsvc.dll
16:21:18.0754 2772 LanmanServer - ok
16:21:18.0794 2772 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
16:21:18.0804 2772 LanmanWorkstation - ok
16:21:18.0834 2772 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
16:21:18.0834 2772 lltdio - ok
16:21:18.0854 2772 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll
16:21:18.0864 2772 lltdsvc - ok
16:21:18.0894 2772 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll
16:21:18.0894 2772 lmhosts - ok
16:21:18.0954 2772 [ 23DE5B62B0445A6F874BE633C95B483E ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
16:21:18.0954 2772 LMS - ok
16:21:18.0984 2772 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\DRIVERS\lsi_fc.sys
16:21:18.0984 2772 LSI_FC - ok
16:21:19.0004 2772 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\DRIVERS\lsi_sas.sys
16:21:19.0004 2772 LSI_SAS - ok
16:21:19.0024 2772 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\DRIVERS\lsi_sas2.sys
16:21:19.0024 2772 LSI_SAS2 - ok
16:21:19.0044 2772 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\DRIVERS\lsi_scsi.sys
16:21:19.0044 2772 LSI_SCSI - ok
16:21:19.0074 2772 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys
16:21:19.0074 2772 luafv - ok
16:21:19.0114 2772 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
16:21:19.0114 2772 Mcx2Svc - ok
16:21:19.0144 2772 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\DRIVERS\megasas.sys
16:21:19.0144 2772 megasas - ok
16:21:19.0174 2772 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\DRIVERS\MegaSR.sys
16:21:19.0174 2772 MegaSR - ok
16:21:19.0194 2772 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll
16:21:19.0194 2772 MMCSS - ok
16:21:19.0204 2772 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys
16:21:19.0204 2772 Modem - ok
16:21:19.0234 2772 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys
16:21:19.0234 2772 monitor - ok
16:21:19.0254 2772 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys
16:21:19.0254 2772 mouclass - ok
16:21:19.0284 2772 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
16:21:19.0284 2772 mouhid - ok
16:21:19.0294 2772 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\windows\system32\drivers\mountmgr.sys
16:21:19.0294 2772 mountmgr - ok
16:21:19.0374 2772 [ 8BE15F71DE6FF33FC56DCDE7B2B9EFE8 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
16:21:19.0374 2772 MozillaMaintenance - ok
16:21:19.0444 2772 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\windows\system32\DRIVERS\MpFilter.sys
16:21:19.0444 2772 MpFilter - ok
16:21:19.0484 2772 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\windows\system32\DRIVERS\mpio.sys
16:21:19.0484 2772 mpio - ok
16:21:19.0514 2772 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
16:21:19.0514 2772 mpsdrv - ok
16:21:19.0554 2772 [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc C:\windows\system32\mpssvc.dll
16:21:19.0564 2772 MpsSvc - ok
16:21:19.0584 2772 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
16:21:19.0594 2772 MRxDAV - ok
16:21:19.0634 2772 [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
16:21:19.0644 2772 mrxsmb - ok
16:21:19.0684 2772 [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
16:21:19.0684 2772 mrxsmb10 - ok
16:21:19.0704 2772 [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
16:21:19.0704 2772 mrxsmb20 - ok
16:21:19.0734 2772 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\windows\system32\DRIVERS\msahci.sys
16:21:19.0734 2772 msahci - ok
16:21:19.0754 2772 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\windows\system32\DRIVERS\msdsm.sys
16:21:19.0754 2772 msdsm - ok
16:21:19.0774 2772 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe
16:21:19.0774 2772 MSDTC - ok
16:21:19.0814 2772 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys
16:21:19.0814 2772 Msfs - ok
16:21:19.0844 2772 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
16:21:19.0844 2772 mshidkmdf - ok
16:21:19.0854 2772 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\DRIVERS\msisadrv.sys
16:21:19.0864 2772 msisadrv - ok
16:21:19.0904 2772 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll
16:21:19.0904 2772 MSiSCSI - ok
16:21:19.0914 2772 msiserver - ok
16:21:19.0964 2772 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
16:21:19.0964 2772 MSKSSRV - ok
16:21:20.0054 2772 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
16:21:20.0054 2772 MsMpSvc - ok
16:21:20.0064 2772 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
16:21:20.0064 2772 MSPCLOCK - ok
16:21:20.0074 2772 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
16:21:20.0074 2772 MSPQM - ok
16:21:20.0104 2772 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\windows\system32\drivers\MsRPC.sys
16:21:20.0104 2772 MsRPC - ok
16:21:20.0134 2772 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\DRIVERS\mssmbios.sys
16:21:20.0134 2772 mssmbios - ok
16:21:20.0164 2772 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
16:21:20.0164 2772 MSTEE - ok
16:21:20.0184 2772 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\DRIVERS\MTConfig.sys
16:21:20.0184 2772 MTConfig - ok
16:21:20.0204 2772 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys
16:21:20.0204 2772 Mup - ok
16:21:20.0224 2772 [ 6FFECC25B39DC7652A0CEC0ADA9DB589 ] mwlPSDFilter C:\windows\system32\DRIVERS\mwlPSDFilter.sys
16:21:20.0224 2772 mwlPSDFilter - ok
16:21:20.0264 2772 [ 0BEFE32CA56D6EE89D58175725596A85 ] mwlPSDNServ C:\windows\system32\DRIVERS\mwlPSDNServ.sys
16:21:20.0264 2772 mwlPSDNServ - ok
16:21:20.0284 2772 [ D43BC633B8660463E446E28E14A51262 ] mwlPSDVDisk C:\windows\system32\DRIVERS\mwlPSDVDisk.sys
16:21:20.0284 2772 mwlPSDVDisk - ok
16:21:20.0354 2772 [ 22A4905C958BEB68D78385B633C1351B ] MWLService C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe
16:21:20.0354 2772 MWLService - ok
16:21:20.0404 2772 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\windows\system32\qagentRT.dll
16:21:20.0414 2772 napagent - ok
16:21:20.0474 2772 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
16:21:20.0484 2772 NativeWifiP - ok
16:21:20.0524 2772 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\windows\system32\drivers\ndis.sys
16:21:20.0534 2772 NDIS - ok
16:21:20.0554 2772 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
16:21:20.0554 2772 NdisCap - ok
16:21:20.0584 2772 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
16:21:20.0594 2772 NdisTapi - ok
16:21:20.0614 2772 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
16:21:20.0614 2772 Ndisuio - ok
16:21:20.0624 2772 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
16:21:20.0624 2772 NdisWan - ok
16:21:20.0634 2772 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\windows\system32\drivers\NDProxy.sys
16:21:20.0634 2772 NDProxy - ok
16:21:20.0654 2772 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
16:21:20.0654 2772 NetBIOS - ok
16:21:20.0664 2772 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\windows\system32\DRIVERS\netbt.sys
16:21:20.0674 2772 NetBT - ok
16:21:20.0734 2772 [ 15DBD5483BE3BFCD44E63A5F1A6F250B ] NETGEARGenieDaemon C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenieDaemon64.exe
16:21:20.0734 2772 NETGEARGenieDaemon - ok
16:21:20.0744 2772 [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon C:\windows\system32\lsass.exe
16:21:20.0754 2772 Netlogon - ok
16:21:20.0794 2772 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll
16:21:20.0804 2772 Netman - ok
16:21:20.0814 2772 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll
16:21:20.0814 2772 netprofm - ok
16:21:20.0844 2772 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:21:20.0844 2772 NetTcpPortSharing - ok
16:21:20.0894 2772 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\DRIVERS\nfrd960.sys
16:21:20.0894 2772 nfrd960 - ok
16:21:20.0964 2772 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\windows\system32\DRIVERS\NisDrvWFP.sys
16:21:20.0964 2772 NisDrv - ok
16:21:21.0014 2772 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
16:21:21.0024 2772 NisSrv - ok
16:21:21.0084 2772 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\windows\System32\nlasvc.dll
16:21:21.0084 2772 NlaSvc - ok
16:21:21.0144 2772 [ 351533ACC2A069B94E80BBFC177E8FDF ] NPF C:\windows\system32\drivers\npf.sys
16:21:21.0154 2772 NPF - ok
16:21:21.0164 2772 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys
16:21:21.0164 2772 Npfs - ok
16:21:21.0174 2772 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll
16:21:21.0174 2772 nsi - ok
16:21:21.0204 2772 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
16:21:21.0204 2772 nsiproxy - ok
16:21:21.0294 2772 [ 378E0E0DFEA67D98AE6EA53ADBBD76BC ] Ntfs C:\windows\system32\drivers\Ntfs.sys
16:21:21.0314 2772 Ntfs - ok
16:21:21.0384 2772 [ 5B3CE960C62DBE864BE9A0BD043A3E30 ] NTI IScheduleSvc C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
16:21:21.0384 2772 NTI IScheduleSvc - ok
16:21:21.0424 2772 [ 15221DD637D9D0FFC60848EBBF1DF538 ] NTIBackupSvc C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
16:21:21.0424 2772 NTIBackupSvc - ok
16:21:21.0464 2772 [ 64DDD0DEE976302F4BD93E5EFCC2F013 ] NTIDrvr C:\Windows\system32\drivers\NTIDrvr.sys
16:21:21.0464 2772 NTIDrvr - ok
16:21:21.0504 2772 [ B5071E15D4C3F5EF5018AFF7E85A85E5 ] NTISchedulerSvc C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
16:21:21.0504 2772 NTISchedulerSvc - ok
16:21:21.0544 2772 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys
16:21:21.0544 2772 Null - ok
16:21:21.0594 2772 [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid C:\windows\system32\drivers\nvraid.sys
16:21:21.0594 2772 nvraid - ok
16:21:21.0634 2772 [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor C:\windows\system32\drivers\nvstor.sys
16:21:21.0634 2772 nvstor - ok
16:21:21.0664 2772 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\DRIVERS\nv_agp.sys
16:21:21.0664 2772 nv_agp - ok
16:21:21.0684 2772 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\DRIVERS\ohci1394.sys
16:21:21.0684 2772 ohci1394 - ok
16:21:21.0714 2772 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll
16:21:21.0724 2772 p2pimsvc - ok
16:21:21.0764 2772 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll
16:21:21.0774 2772 p2psvc - ok
16:21:21.0794 2772 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\DRIVERS\parport.sys
16:21:21.0794 2772 Parport - ok
16:21:21.0834 2772 [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr C:\windows\system32\drivers\partmgr.sys
16:21:21.0834 2772 partmgr - ok
16:21:21.0844 2772 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll
16:21:21.0844 2772 PcaSvc - ok
16:21:21.0864 2772 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\windows\system32\DRIVERS\pci.sys
16:21:21.0864 2772 pci - ok
16:21:21.0874 2772 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\DRIVERS\pciide.sys
16:21:21.0874 2772 pciide - ok
16:21:21.0894 2772 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\DRIVERS\pcmcia.sys
16:21:21.0894 2772 pcmcia - ok
16:21:21.0904 2772 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys
16:21:21.0904 2772 pcw - ok
16:21:21.0934 2772 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys
16:21:21.0944 2772 PEAUTH - ok
16:21:22.0014 2772 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe
16:21:22.0014 2772 PerfHost - ok
16:21:22.0074 2772 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\windows\system32\pla.dll
16:21:22.0084 2772 pla - ok
16:21:22.0144 2772 [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay C:\windows\system32\umpnpmgr.dll
16:21:22.0144 2772 PlugPlay - ok
16:21:22.0164 2772 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
16:21:22.0164 2772 PNRPAutoReg - ok
16:21:22.0174 2772 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll
16:21:22.0174 2772 PNRPsvc - ok
16:21:22.0214 2772 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
16:21:22.0214 2772 PolicyAgent - ok
16:21:22.0244 2772 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\windows\system32\umpo.dll
16:21:22.0254 2772 Power - ok
16:21:22.0294 2772 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
16:21:22.0294 2772 PptpMiniport - ok
16:21:22.0314 2772 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\DRIVERS\processr.sys
16:21:22.0314 2772 Processor - ok
16:21:22.0334 2772 [ F381975E1F4346DE875CB07339CE8D3A ] ProfSvc C:\windows\system32\profsvc.dll
16:21:22.0334 2772 ProfSvc - ok
16:21:22.0354 2772 [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\windows\system32\lsass.exe
16:21:22.0364 2772 ProtectedStorage - ok
16:21:22.0384 2772 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\windows\system32\DRIVERS\pacer.sys
16:21:22.0384 2772 Psched - ok
16:21:22.0444 2772 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\DRIVERS\ql2300.sys
16:21:22.0454 2772 ql2300 - ok
16:21:22.0474 2772 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\DRIVERS\ql40xx.sys
16:21:22.0474 2772 ql40xx - ok
16:21:22.0554 2772 [ B3A5A0DBFC3EA175BA93E59250760164 ] QuickPdfPrintSpooler C:\PROGRA~2\QUICKP~1\WINSER~1.EXE
16:21:22.0554 2772 QuickPdfPrintSpooler - ok
16:21:22.0584 2772 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll
16:21:22.0584 2772 QWAVE - ok
16:21:22.0624 2772 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
16:21:22.0624 2772 QWAVEdrv - ok
16:21:22.0644 2772 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
16:21:22.0644 2772 RasAcd - ok
16:21:22.0694 2772 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
16:21:22.0694 2772 RasAgileVpn - ok
16:21:22.0734 2772 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll
16:21:22.0734 2772 RasAuto - ok
16:21:22.0744 2772 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
16:21:22.0744 2772 Rasl2tp - ok
16:21:22.0774 2772 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\windows\System32\rasmans.dll
16:21:22.0774 2772 RasMan - ok
16:21:22.0784 2772 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
16:21:22.0784 2772 RasPppoe - ok
16:21:22.0794 2772 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
16:21:22.0794 2772 RasSstp - ok
16:21:22.0824 2772 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
16:21:22.0824 2772 rdbss - ok
16:21:22.0844 2772 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\DRIVERS\rdpbus.sys
16:21:22.0844 2772 rdpbus - ok
16:21:22.0864 2772 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
16:21:22.0864 2772 RDPCDD - ok
16:21:22.0874 2772 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
16:21:22.0874 2772 RDPENCDD - ok
16:21:22.0894 2772 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
16:21:22.0894 2772 RDPREFMP - ok
16:21:22.0934 2772 [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD C:\windows\system32\drivers\RDPWD.sys
16:21:22.0944 2772 RDPWD - ok
16:21:22.0974 2772 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\windows\system32\drivers\rdyboost.sys
16:21:22.0974 2772 rdyboost - ok
16:21:23.0004 2772 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll
16:21:23.0014 2772 RemoteAccess - ok
16:21:23.0044 2772 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll
16:21:23.0044 2772 RemoteRegistry - ok
16:21:23.0054 2772 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
16:21:23.0054 2772 RpcEptMapper - ok
16:21:23.0084 2772 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe
16:21:23.0084 2772 RpcLocator - ok
16:21:23.0104 2772 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\windows\system32\rpcss.dll
16:21:23.0114 2772 RpcSs - ok
16:21:23.0154 2772 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
16:21:23.0154 2772 rspndr - ok
16:21:23.0174 2772 [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs C:\windows\system32\lsass.exe
16:21:23.0174 2772 SamSs - ok
16:21:23.0194 2772 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\windows\system32\DRIVERS\sbp2port.sys
16:21:23.0204 2772 sbp2port - ok
16:21:23.0224 2772 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll
16:21:23.0234 2772 SCardSvr - ok
16:21:23.0234 2772 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
16:21:23.0234 2772 scfilter - ok
16:21:23.0304 2772 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\windows\system32\schedsvc.dll
16:21:23.0324 2772 Schedule - ok
16:21:23.0364 2772 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\windows\System32\certprop.dll
16:21:23.0364 2772 SCPolicySvc - ok
16:21:23.0394 2772 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\windows\System32\SDRSVC.dll
16:21:23.0404 2772 SDRSVC - ok
16:21:23.0434 2772 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys
16:21:23.0434 2772 secdrv - ok
16:21:23.0434 2772 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\windows\system32\seclogon.dll
16:21:23.0434 2772 seclogon - ok
16:21:23.0444 2772 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\System32\sens.dll
16:21:23.0444 2772 SENS - ok
16:21:23.0454 2772 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll
16:21:23.0454 2772 SensrSvc - ok
16:21:23.0474 2772 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\DRIVERS\serenum.sys
16:21:23.0474 2772 Serenum - ok
16:21:23.0504 2772 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\DRIVERS\serial.sys
16:21:23.0504 2772 Serial - ok
16:21:23.0544 2772 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\DRIVERS\sermouse.sys
16:21:23.0544 2772 sermouse - ok
16:21:23.0564 2772 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\windows\system32\sessenv.dll
16:21:23.0564 2772 SessionEnv - ok
16:21:23.0604 2772 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\drivers\sffdisk.sys
16:21:23.0604 2772 sffdisk - ok
16:21:23.0624 2772 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
16:21:23.0624 2772 sffp_mmc - ok
16:21:23.0644 2772 [ 178298F767FE638C9FEDCBDEF58BB5E4 ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
16:21:23.0644 2772 sffp_sd - ok
16:21:23.0674 2772 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\DRIVERS\sfloppy.sys
16:21:23.0674 2772 sfloppy - ok
16:21:23.0724 2772 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\windows\System32\ipnathlp.dll
16:21:23.0724 2772 SharedAccess - ok
16:21:23.0764 2772 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\windows\System32\shsvcs.dll
16:21:23.0764 2772 ShellHWDetection - ok
16:21:23.0814 2772 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\DRIVERS\SiSRaid2.sys
16:21:23.0814 2772 SiSRaid2 - ok
16:21:23.0834 2772 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\DRIVERS\sisraid4.sys
16:21:23.0834 2772 SiSRaid4 - ok
16:21:23.0994 2772 [ 388AE59FE75F1B959DFA0900923C61BB ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
16:21:24.0014 2772 Skype C2C Service - ok
16:21:24.0054 2772 [ DDAA5F4A6B958FC313EBD02DD925752F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
16:21:24.0064 2772 SkypeUpdate - ok
16:21:24.0104 2772 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys
16:21:24.0104 2772 Smb - ok
16:21:24.0154 2772 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe
16:21:24.0154 2772 SNMPTRAP - ok
16:21:24.0164 2772 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys
16:21:24.0164 2772 spldr - ok
16:21:24.0204 2772 [ F8E1FA03CB70D54A9892AC88B91D1E7B ] Spooler C:\windows\System32\spoolsv.exe
16:21:24.0214 2772 Spooler - ok
16:21:24.0304 2772 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\windows\system32\sppsvc.exe
16:21:24.0334 2772 sppsvc - ok
16:21:24.0344 2772 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll
16:21:24.0344 2772 sppuinotify - ok
16:21:24.0394 2772 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv C:\windows\system32\DRIVERS\srv.sys
16:21:24.0404 2772 srv - ok
16:21:24.0414 2772 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
16:21:24.0424 2772 srv2 - ok
16:21:24.0444 2772 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
16:21:24.0444 2772 srvnet - ok
16:21:24.0514 2772 [ 8F8324ED1DE63FFC7B1A02CD2D963C72 ] ssadbus C:\windows\system32\DRIVERS\ssadbus.sys
16:21:24.0514 2772 ssadbus - ok
16:21:24.0544 2772 [ 58221EFCB74167B73667F0024C661CE0 ] ssadmdfl C:\windows\system32\DRIVERS\ssadmdfl.sys
16:21:24.0544 2772 ssadmdfl - ok
16:21:24.0564 2772 [ 4DA7C71BFAC5AD71255B7E4CAB980163 ] ssadmdm C:\windows\system32\DRIVERS\ssadmdm.sys
16:21:24.0574 2772 ssadmdm - ok
16:21:24.0594 2772 [ D33D1BD3EC0E766211A234F56A12726D ] ssadserd C:\windows\system32\DRIVERS\ssadserd.sys
16:21:24.0594 2772 ssadserd - ok
16:21:24.0644 2772 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
16:21:24.0654 2772 SSDPSRV - ok
16:21:24.0664 2772 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll
16:21:24.0664 2772 SstpSvc - ok
16:21:24.0704 2772 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\DRIVERS\stexstor.sys
16:21:24.0704 2772 stexstor - ok
16:21:24.0754 2772 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\windows\system32\DRIVERS\serscan.sys
16:21:24.0754 2772 StillCam - ok
16:21:24.0784 2772 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\windows\System32\wiaservc.dll
16:21:24.0784 2772 stisvc - ok
16:21:24.0804 2772 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\DRIVERS\swenum.sys
16:21:24.0804 2772 swenum - ok
16:21:24.0844 2772 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll
16:21:24.0844 2772 swprv - ok
16:21:24.0864 2772 [ 8F63178D1DB81BB79270AE55ECDD8321 ] SynTP C:\windows\system32\DRIVERS\SynTP.sys
16:21:24.0864 2772 SynTP - ok
16:21:24.0914 2772 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\windows\system32\sysmain.dll
16:21:24.0924 2772 SysMain - ok
16:21:24.0934 2772 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\windows\System32\TabSvc.dll
16:21:24.0934 2772 TabletInputService - ok
16:21:24.0944 2772 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\windows\System32\tapisrv.dll
16:21:24.0944 2772 TapiSrv - ok
16:21:24.0954 2772 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll
16:21:24.0954 2772 TBS - ok
16:21:25.0034 2772 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] Tcpip C:\windows\system32\drivers\tcpip.sys
16:21:25.0044 2772 Tcpip - ok
16:21:25.0104 2772 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
16:21:25.0114 2772 TCPIP6 - ok
16:21:25.0144 2772 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
16:21:25.0144 2772 tcpipreg - ok
16:21:25.0164 2772 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
16:21:25.0164 2772 TDPIPE - ok
16:21:25.0194 2772 [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
16:21:25.0194 2772 TDTCP - ok
16:21:25.0194 2772 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\windows\system32\DRIVERS\tdx.sys
16:21:25.0204 2772 tdx - ok
16:21:25.0215 2772 [ C448651339196C0E869A355171875522 ] TermDD C:\windows\system32\DRIVERS\termdd.sys
16:21:25.0215 2772 TermDD - ok
16:21:25.0255 2772 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\windows\System32\termsrv.dll
16:21:25.0265 2772 TermService - ok
16:21:25.0275 2772 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll
16:21:25.0275 2772 Themes - ok
16:21:25.0305 2772 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll
16:21:25.0305 2772 THREADORDER - ok
16:21:25.0325 2772 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll
16:21:25.0325 2772 TrkWks - ok
16:21:25.0365 2772 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
16:21:25.0375 2772 TrustedInstaller - ok
16:21:25.0395 2772 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
16:21:25.0395 2772 tssecsrv - ok
16:21:25.0435 2772 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
16:21:25.0435 2772 tunnel - ok
16:21:25.0455 2772 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\DRIVERS\uagp35.sys
16:21:25.0455 2772 uagp35 - ok
16:21:25.0475 2772 [ 2E22C1FD397A5A9FFEF55E9D1FC96C00 ] UBHelper C:\Windows\system32\drivers\UBHelper.sys
16:21:25.0475 2772 UBHelper - ok
16:21:25.0505 2772 [ D47BAEAD86C65D4F4069D7CE0A4EDCEB ] udfs C:\windows\system32\DRIVERS\udfs.sys
16:21:25.0505 2772 udfs - ok
16:21:25.0545 2772 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe
16:21:25.0545 2772 UI0Detect - ok
16:21:25.0575 2772 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\DRIVERS\uliagpkx.sys
16:21:25.0575 2772 uliagpkx - ok
16:21:25.0595 2772 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\windows\system32\DRIVERS\umbus.sys
16:21:25.0595 2772 umbus - ok
16:21:25.0615 2772 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\DRIVERS\umpass.sys
16:21:25.0615 2772 UmPass - ok
16:21:25.0725 2772 [ CC3775100ABA633984F73DFAE1F55CAE ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
16:21:25.0745 2772 UNS - ok
16:21:25.0815 2772 [ F9EC9ACD504D823D9B9CA98A4F8D3CA2 ] Updater Service C:\Program Files\Acer\Acer Updater\UpdaterService.exe
16:21:25.0815 2772 Updater Service - ok
16:21:25.0865 2772 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll
16:21:25.0875 2772 upnphost - ok
16:21:25.0915 2772 [ 537A4E03D7103C12D42DFD8FFDB5BDC9 ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
16:21:25.0915 2772 usbccgp - ok
16:21:25.0955 2772 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\DRIVERS\usbcir.sys
16:21:25.0965 2772 usbcir - ok
16:21:25.0975 2772 [ FBB21EBE49F6D560DB37AC25FBC68E66 ] usbehci C:\windows\system32\drivers\usbehci.sys
16:21:25.0975 2772 usbehci - ok
16:21:26.0015 2772 [ 6B7A8A99C4A459E73C286A6763EA24CC ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
16:21:26.0015 2772 usbhub - ok
16:21:26.0055 2772 [ 8C88AA7617B4CBC2E4BED61D26B33A27 ] usbohci C:\windows\system32\drivers\usbohci.sys
16:21:26.0055 2772 usbohci - ok
16:21:26.0105 2772 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\DRIVERS\usbprint.sys
16:21:26.0105 2772 usbprint - ok
16:21:26.0145 2772 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\windows\system32\DRIVERS\usbscan.sys
16:21:26.0145 2772 usbscan - ok
16:21:26.0165 2772 [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
16:21:26.0165 2772 USBSTOR - ok
16:21:26.0195 2772 [ 0B5B3B2DF3FD1709618ACFA50B8392B0 ] usbuhci C:\windows\system32\drivers\usbuhci.sys
16:21:26.0195 2772 usbuhci - ok
16:21:26.0245 2772 [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] usbvideo C:\windows\System32\Drivers\usbvideo.sys
16:21:26.0245 2772 usbvideo - ok
16:21:26.0275 2772 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll
16:21:26.0275 2772 UxSms - ok
16:21:26.0295 2772 [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc C:\windows\system32\lsass.exe
16:21:26.0295 2772 VaultSvc - ok
16:21:26.0325 2772 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\DRIVERS\vdrvroot.sys
16:21:26.0325 2772 vdrvroot - ok
16:21:26.0355 2772 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\windows\System32\vds.exe
16:21:26.0355 2772 vds - ok
16:21:26.0395 2772 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys
16:21:26.0395 2772 vga - ok
16:21:26.0405 2772 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys
16:21:26.0405 2772 VgaSave - ok
16:21:26.0435 2772 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\windows\system32\DRIVERS\vhdmp.sys
16:21:26.0435 2772 vhdmp - ok
16:21:26.0455 2772 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\DRIVERS\viaide.sys
16:21:26.0455 2772 viaide - ok
16:21:26.0485 2772 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\windows\system32\DRIVERS\volmgr.sys
16:21:26.0485 2772 volmgr - ok
16:21:26.0505 2772 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\windows\system32\drivers\volmgrx.sys
16:21:26.0505 2772 volmgrx - ok
16:21:26.0515 2772 [ 58F82EED8CA24B461441F9C3E4F0BF5C ] volsnap C:\windows\system32\DRIVERS\volsnap.sys
16:21:26.0515 2772 volsnap - ok
16:21:26.0545 2772 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\DRIVERS\vsmraid.sys
16:21:26.0545 2772 vsmraid - ok
16:21:26.0615 2772 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\windows\system32\vssvc.exe
16:21:26.0635 2772 VSS - ok
16:21:26.0655 2772 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
16:21:26.0655 2772 vwifibus - ok
16:21:26.0655 2772 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
16:21:26.0665 2772 vwififlt - ok
16:21:26.0675 2772 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys
16:21:26.0675 2772 vwifimp - ok
16:21:26.0685 2772 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll
16:21:26.0695 2772 W32Time - ok
16:21:26.0725 2772 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\DRIVERS\wacompen.sys
16:21:26.0725 2772 WacomPen - ok
16:21:26.0735 2772 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
16:21:26.0735 2772 WANARP - ok
16:21:26.0745 2772 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
16:21:26.0745 2772 Wanarpv6 - ok
16:21:26.0825 2772 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
16:21:26.0835 2772 WatAdminSvc - ok
16:21:26.0895 2772 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\windows\system32\wbengine.exe
16:21:26.0905 2772 wbengine - ok
16:21:26.0915 2772 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
16:21:26.0915 2772 WbioSrvc - ok
16:21:26.0945 2772 [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc C:\windows\System32\wcncsvc.dll
16:21:26.0945 2772 wcncsvc - ok
16:21:26.0955 2772 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
16:21:26.0955 2772 WcsPlugInService - ok
16:21:26.0985 2772 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\DRIVERS\wd.sys
16:21:26.0985 2772 Wd - ok
16:21:27.0015 2772 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
16:21:27.0015 2772 Wdf01000 - ok
16:21:27.0045 2772 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll
16:21:27.0045 2772 WdiServiceHost - ok
16:21:27.0055 2772 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll
16:21:27.0055 2772 WdiSystemHost - ok
16:21:27.0095 2772 [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient C:\windows\System32\webclnt.dll
16:21:27.0105 2772 WebClient - ok
16:21:27.0125 2772 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll
16:21:27.0135 2772 Wecsvc - ok
16:21:27.0145 2772 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll
16:21:27.0155 2772 wercplsupport - ok
16:21:27.0175 2772 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll
16:21:27.0175 2772 WerSvc - ok
16:21:27.0195 2772 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
16:21:27.0195 2772 WfpLwf - ok
16:21:27.0215 2772 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys
16:21:27.0215 2772 WIMMount - ok
16:21:27.0236 2772 WinDefend - ok
16:21:27.0236 2772 WinHttpAutoProxySvc - ok
16:21:27.0286 2772 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
16:21:27.0286 2772 Winmgmt - ok
16:21:27.0356 2772 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\windows\system32\WsmSvc.dll
16:21:27.0366 2772 WinRM - ok
16:21:27.0426 2772 [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUsb C:\windows\system32\DRIVERS\WinUsb.sys
16:21:27.0426 2772 WinUsb - ok
16:21:27.0466 2772 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll
16:21:27.0476 2772 Wlansvc - ok
16:21:27.0656 2772 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
16:21:27.0666 2772 wlidsvc - ok
16:21:27.0706 2772 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\DRIVERS\wmiacpi.sys
16:21:27.0706 2772 WmiAcpi - ok
16:21:27.0726 2772 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
16:21:27.0726 2772 wmiApSrv - ok
16:21:27.0756 2772 WMPNetworkSvc - ok
16:21:27.0776 2772 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll
16:21:27.0776 2772 WPCSvc - ok
16:21:27.0786 2772 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
16:21:27.0786 2772 WPDBusEnum - ok
16:21:27.0816 2772 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
16:21:27.0816 2772 ws2ifsl - ok
16:21:27.0856 2772 [ 8F9F3969933C02DA96EB0F84576DB43E ] wscsvc C:\windows\System32\wscsvc.dll
16:21:27.0856 2772 wscsvc - ok
16:21:27.0866 2772 WSearch - ok
16:21:27.0956 2772 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\windows\system32\wuaueng.dll
16:21:27.0976 2772 wuauserv - ok
16:21:27.0986 2772 [ 7CADC74271DD6461C452C271B30BD378 ] WudfPf C:\windows\system32\drivers\WudfPf.sys
16:21:27.0986 2772 WudfPf - ok
16:21:28.0036 2772 [ 3B197AF0FFF08AA66B6B2241CA538D64 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
16:21:28.0036 2772 WUDFRd - ok
16:21:28.0066 2772 [ B551D6637AA0E132C18AC6E504F7B79B ] wudfsvc C:\windows\System32\WUDFSvc.dll
16:21:28.0066 2772 wudfsvc - ok
16:21:28.0076 2772 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\windows\System32\wwansvc.dll
16:21:28.0086 2772 WwanSvc - ok
16:21:28.0146 2772 [ 74983ADDCA2D9618512C088D856D6615 ] {B154377D-700F-42cc-9474-23858FBDF4BD} c:\Program Files (x86)\CyberLink\PowerDVD9\000.fcl
16:21:28.0146 2772 {B154377D-700F-42cc-9474-23858FBDF4BD} - ok
16:21:28.0196 2772 ================ Scan global ===============================
16:21:28.0226 2772 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
16:21:28.0267 2772 [ 0CB6EBF4B461A6043353C570BD72A1E1 ] C:\windows\system32\winsrv.dll
16:21:28.0277 2772 [ 0CB6EBF4B461A6043353C570BD72A1E1 ] C:\windows\system32\winsrv.dll
16:21:28.0317 2772 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
16:21:28.0347 2772 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
16:21:28.0347 2772 [Global] - ok
16:21:28.0347 2772 ================ Scan MBR ==================================
16:21:28.0367 2772 [ D7AD5AA31A559120C3BA48FD0A1B1636 ] \Device\Harddisk0\DR0
16:21:28.0897 2772 \Device\Harddisk0\DR0 - ok
16:21:28.0907 2772 [ 2BDBC086F60BC3CA3E44F97D87AB1E64 ] \Device\Harddisk1\DR1
16:21:50.0151 2772 \Device\Harddisk1\DR1 - ok
16:21:50.0151 2772 ================ Scan VBR ==================================
16:21:50.0161 2772 [ 0EE64F82BDBCFF4D7658F1F6376C3799 ] \Device\Harddisk0\DR0\Partition1
16:21:50.0161 2772 \Device\Harddisk0\DR0\Partition1 - ok
16:21:50.0201 2772 [ 0EEADFFE1D8A1D3946199D71B88440F9 ] \Device\Harddisk0\DR0\Partition2
16:21:50.0201 2772 \Device\Harddisk0\DR0\Partition2 - ok
16:21:50.0201 2772 [ 167450E40973B2C6BF6012693A663A39 ] \Device\Harddisk1\DR1\Partition1
16:21:50.0211 2772 \Device\Harddisk1\DR1\Partition1 - ok
16:21:50.0211 2772 ============================================================
16:21:50.0211 2772 Scan finished
16:21:50.0211 2772 ============================================================
16:21:50.0221 4408 Detected object count: 0
16:21:50.0221 4408 Actual detected object count: 0
16:22:34.0388 0444 ============================================================
16:22:34.0388 0444 Scan started
16:22:34.0388 0444 Mode: Manual; TDLFS;
16:22:34.0388 0444 ============================================================
16:22:34.0518 0444 ================ Scan system memory ========================
16:22:34.0518 0444 System memory - ok
16:22:34.0518 0444 ================ Scan services =============================
16:22:34.0708 0444 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\windows\system32\DRIVERS\1394ohci.sys
16:22:34.0708 0444 1394ohci - ok
16:22:34.0738 0444 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\windows\system32\DRIVERS\ACPI.sys
16:22:34.0748 0444 ACPI - ok
16:22:34.0748 0444 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\windows\system32\DRIVERS\acpipmi.sys
16:22:34.0758 0444 AcpiPmi - ok
16:22:34.0888 0444 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
16:22:34.0888 0444 AdobeARMservice - ok
16:22:34.0998 0444 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:22:34.0998 0444 AdobeFlashPlayerUpdateSvc - ok
16:22:35.0028 0444 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\DRIVERS\adp94xx.sys
16:22:35.0038 0444 adp94xx - ok
16:22:35.0068 0444 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\DRIVERS\adpahci.sys
16:22:35.0068 0444 adpahci - ok
16:22:35.0078 0444 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\DRIVERS\adpu320.sys
16:22:35.0078 0444 adpu320 - ok
16:22:35.0108 0444 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
16:22:35.0108 0444 AeLookupSvc - ok
16:22:35.0158 0444 [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD C:\windows\system32\drivers\afd.sys
16:22:35.0158 0444 AFD - ok
16:22:35.0178 0444 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\DRIVERS\agp440.sys
16:22:35.0178 0444 agp440 - ok
16:22:35.0198 0444 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe
16:22:35.0198 0444 ALG - ok
16:22:35.0208 0444 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\DRIVERS\aliide.sys
16:22:35.0218 0444 aliide - ok
16:22:35.0228 0444 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\DRIVERS\amdide.sys
16:22:35.0228 0444 amdide - ok
16:22:35.0248 0444 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\DRIVERS\amdk8.sys
16:22:35.0248 0444 AmdK8 - ok
16:22:35.0258 0444 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\DRIVERS\amdppm.sys
16:22:35.0258 0444 AmdPPM - ok
16:22:35.0298 0444 [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata C:\windows\system32\drivers\amdsata.sys
16:22:35.0298 0444 amdsata - ok
16:22:35.0328 0444 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\DRIVERS\amdsbs.sys
16:22:35.0328 0444 amdsbs - ok
16:22:35.0338 0444 [ DB27766102C7BF7E95140A2AA81D042E ] amdxata C:\windows\system32\drivers\amdxata.sys
16:22:35.0348 0444 amdxata - ok
16:22:35.0378 0444 [ 391887990CDAA83DE5C56C3FDE966DA1 ] AmUStor C:\windows\system32\drivers\AmUStor.SYS
16:22:35.0378 0444 AmUStor - ok
16:22:35.0418 0444 [ 4DE0D5D747A73797C95A97DCCE5018B5 ] androidusb C:\windows\system32\Drivers\ssadadb.sys
16:22:35.0418 0444 androidusb - ok
16:22:35.0428 0444 ApfiltrService - ok
16:22:35.0458 0444 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\windows\system32\drivers\appid.sys
16:22:35.0458 0444 AppID - ok
16:22:35.0478 0444 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll
16:22:35.0478 0444 AppIDSvc - ok
16:22:35.0488 0444 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\windows\System32\appinfo.dll
16:22:35.0488 0444 Appinfo - ok
16:22:35.0578 0444 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:22:35.0578 0444 Apple Mobile Device - ok
16:22:35.0598 0444 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\DRIVERS\arc.sys
16:22:35.0598 0444 arc - ok
16:22:35.0608 0444 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\DRIVERS\arcsas.sys
16:22:35.0608 0444 arcsas - ok
16:22:35.0608 0444 ASPI32 - ok
16:22:35.0628 0444 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
16:22:35.0628 0444 AsyncMac - ok
16:22:35.0658 0444 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\DRIVERS\atapi.sys
16:22:35.0658 0444 atapi - ok
16:22:35.0738 0444 [ 70260C7C98CC0101316F5B2650C3BB44 ] athr C:\windows\system32\DRIVERS\athrx.sys
16:22:35.0758 0444 athr - ok
16:22:35.0798 0444 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
16:22:35.0808 0444 AudioEndpointBuilder - ok
16:22:35.0828 0444 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\windows\System32\Audiosrv.dll
16:22:35.0838 0444 AudioSrv - ok
16:22:35.0848 0444 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\windows\System32\AxInstSV.dll
16:22:35.0848 0444 AxInstSV - ok
16:22:35.0888 0444 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\DRIVERS\bxvbda.sys
16:22:35.0898 0444 b06bdrv - ok
16:22:35.0908 0444 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
16:22:35.0908 0444 b57nd60a - ok
16:22:36.0028 0444 [ A8AA5B6543955BA68CD3EAA2D0112F00 ] BCM43XX C:\windows\system32\DRIVERS\bcmwl664.sys
16:22:36.0058 0444 BCM43XX - ok
16:22:36.0088 0444 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll
16:22:36.0088 0444 BDESVC - ok
16:22:36.0098 0444 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys
16:22:36.0098 0444 Beep - ok
16:22:36.0118 0444 [ 4992C609A6315671463E30F6512BC022 ] BFE C:\windows\System32\bfe.dll
16:22:36.0118 0444 BFE - ok
16:22:36.0158 0444 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\windows\System32\qmgr.dll
16:22:36.0168 0444 BITS - ok
16:22:36.0168 0444 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
16:22:36.0168 0444 blbdrive - ok
16:22:36.0238 0444 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:22:36.0248 0444 Bonjour Service - ok
16:22:36.0288 0444 [ 19D20159708E152267E53B66677A4995 ] bowser C:\windows\system32\DRIVERS\bowser.sys
16:22:36.0288 0444 bowser - ok
16:22:36.0318 0444 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\DRIVERS\BrFiltLo.sys
16:22:36.0318 0444 BrFiltLo - ok
16:22:36.0338 0444 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\DRIVERS\BrFiltUp.sys
16:22:36.0338 0444 BrFiltUp - ok
16:22:36.0379 0444 [ 6B054C67AAA87843504E8E3C09102009 ] Browser C:\windows\System32\browser.dll
16:22:36.0379 0444 Browser - ok
16:22:36.0409 0444 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys
16:22:36.0409 0444 Brserid - ok
16:22:36.0419 0444 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
16:22:36.0419 0444 BrSerWdm - ok
16:22:36.0439 0444 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
16:22:36.0439 0444 BrUsbMdm - ok
16:22:36.0459 0444 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
16:22:36.0459 0444 BrUsbSer - ok
16:22:36.0469 0444 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\DRIVERS\bthmodem.sys
16:22:36.0469 0444 BTHMODEM - ok
16:22:36.0509 0444 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll
16:22:36.0509 0444 bthserv - ok
16:22:36.0529 0444 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
16:22:36.0529 0444 cdfs - ok
16:22:36.0529 0444 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
16:22:36.0539 0444 cdrom - ok
16:22:36.0549 0444 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\windows\System32\certprop.dll
16:22:36.0549 0444 CertPropSvc - ok
16:22:36.0569 0444 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\DRIVERS\circlass.sys
16:22:36.0569 0444 circlass - ok
16:22:36.0599 0444 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys
16:22:36.0599 0444 CLFS - ok
16:22:36.0659 0444 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:22:36.0659 0444 clr_optimization_v2.0.50727_32 - ok
16:22:36.0689 0444 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:22:36.0689 0444 clr_optimization_v2.0.50727_64 - ok
16:22:36.0769 0444 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:22:36.0769 0444 clr_optimization_v4.0.30319_32 - ok
16:22:36.0819 0444 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:22:36.0819 0444 clr_optimization_v4.0.30319_64 - ok
16:22:36.0849 0444 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
16:22:36.0849 0444 CmBatt - ok
16:22:36.0869 0444 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\DRIVERS\cmdide.sys
16:22:36.0869 0444 cmdide - ok
16:22:36.0929 0444 [ CA7720B73446FDDEC5C69519C1174C98 ] CNG C:\windows\system32\Drivers\cng.sys
16:22:36.0929 0444 CNG - ok
16:22:36.0939 0444 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\DRIVERS\compbatt.sys
16:22:36.0939 0444 Compbatt - ok
16:22:36.0949 0444 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\windows\system32\DRIVERS\CompositeBus.sys
16:22:36.0949 0444 CompositeBus - ok
16:22:36.0949 0444 COMSysApp - ok
16:22:36.0969 0444 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\DRIVERS\crcdisk.sys
16:22:36.0969 0444 crcdisk - ok
16:22:37.0009 0444 [ BAF19B633933A9FB4883D27D66C39E9A ] CryptSvc C:\windows\system32\cryptsvc.dll
16:22:37.0009 0444 CryptSvc - ok
16:22:37.0039 0444 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\windows\system32\rpcss.dll
16:22:37.0049 0444 DcomLaunch - ok
16:22:37.0079 0444 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll
16:22:37.0079 0444 defragsvc - ok
16:22:37.0119 0444 [ 9C253CE7311CA60FC11C774692A13208 ] DfsC C:\windows\system32\Drivers\dfsc.sys
16:22:37.0119 0444 DfsC - ok
16:22:37.0139 0444 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\windows\system32\dhcpcore.dll
16:22:37.0139 0444 Dhcp - ok
16:22:37.0159 0444 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys
16:22:37.0159 0444 discache - ok
16:22:37.0179 0444 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\DRIVERS\disk.sys
16:22:37.0179 0444 Disk - ok
16:22:37.0209 0444 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\windows\System32\dnsrslvr.dll
16:22:37.0209 0444 Dnscache - ok
16:22:37.0239 0444 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\windows\System32\dot3svc.dll
16:22:37.0239 0444 dot3svc - ok
16:22:37.0249 0444 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\windows\system32\dps.dll
16:22:37.0249 0444 DPS - ok
16:22:37.0269 0444 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
16:22:37.0269 0444 drmkaud - ok
16:22:37.0329 0444 [ E2B2853A0210D6EDAB2261870BD80C1A ] DsiWMIService C:\Program Files (x86)\Launch Manager\dsiwmis.exe
16:22:37.0329 0444 DsiWMIService - ok
16:22:37.0370 0444 [ EBCE0B0924835F635F620D19F0529DCE ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
16:22:37.0380 0444 DXGKrnl - ok
16:22:37.0410 0444 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll
16:22:37.0420 0444 EapHost - ok
16:22:37.0500 0444 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\DRIVERS\evbda.sys
16:22:37.0520 0444 ebdrv - ok
16:22:37.0560 0444 [ 156F6159457D0AA7E59B62681B56EB90 ] EFS C:\windows\System32\lsass.exe
16:22:37.0560 0444 EFS - ok
16:22:37.0640 0444 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\windows\ehome\ehRecvr.exe
16:22:37.0650 0444 ehRecvr - ok
16:22:37.0680 0444 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe
16:22:37.0680 0444 ehSched - ok
16:22:37.0720 0444 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\DRIVERS\elxstor.sys
16:22:37.0730 0444 elxstor - ok
16:22:37.0800 0444 [ 49EEF52BFB986A2B5D70F4EC12637D7B ] ePowerSvc C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
16:22:37.0810 0444 ePowerSvc - ok
16:22:37.0830 0444 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\DRIVERS\errdev.sys
16:22:37.0830 0444 ErrDev - ok
16:22:37.0870 0444 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll
16:22:37.0880 0444 EventSystem - ok
16:22:37.0890 0444 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys
16:22:37.0900 0444 exfat - ok
16:22:37.0920 0444 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys
16:22:37.0920 0444 fastfat - ok
16:22:37.0950 0444 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\windows\system32\fxssvc.exe
16:22:37.0960 0444 Fax - ok
16:22:37.0990 0444 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\DRIVERS\fdc.sys
16:22:37.0990 0444 fdc - ok
16:22:38.0010 0444 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll
16:22:38.0010 0444 fdPHost - ok
16:22:38.0010 0444 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll
16:22:38.0010 0444 FDResPub - ok
16:22:38.0030 0444 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
16:22:38.0030 0444 FileInfo - ok
16:22:38.0060 0444 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys
16:22:38.0060 0444 Filetrace - ok
16:22:38.0080 0444 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\DRIVERS\flpydisk.sys
16:22:38.0080 0444 flpydisk - ok
16:22:38.0100 0444 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
16:22:38.0110 0444 FltMgr - ok
16:22:38.0140 0444 [ 8AC4CB4EA61E41009FAE9AE7B2B5DA3A ] FontCache C:\windows\system32\FntCache.dll
16:22:38.0150 0444 FontCache - ok
16:22:38.0190 0444 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:22:38.0190 0444 FontCache3.0.0.0 - ok
16:22:38.0210 0444 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys
16:22:38.0210 0444 FsDepends - ok
16:22:38.0260 0444 [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
16:22:38.0260 0444 Fs_Rec - ok
16:22:38.0300 0444 [ AE87BA80D0EC3B57126ED2CDC15B24ED ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
16:22:38.0310 0444 fvevol - ok
16:22:38.0330 0444 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\DRIVERS\gagp30kx.sys
16:22:38.0330 0444 gagp30kx - ok
16:22:38.0400 0444 [ 6858C318E8DAA40E747E6FB9B214E104 ] GameConsoleService C:\Program Files (x86)\Acer Games\Acer Game Console\GameConsoleService.exe
16:22:38.0400 0444 GameConsoleService - ok
16:22:38.0440 0444 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\windows\system32\DRIVERS\GEARAspiWDM.sys
16:22:38.0440 0444 GEARAspiWDM - ok
16:22:38.0490 0444 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\windows\System32\gpsvc.dll
16:22:38.0500 0444 gpsvc - ok
16:22:38.0580 0444 [ 816FD5A6F3C2F3D600900096632FC60E ] Greg_Service C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
16:22:38.0590 0444 Greg_Service - ok
16:22:38.0640 0444 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:22:38.0640 0444 gupdate - ok
16:22:38.0650 0444 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:22:38.0650 0444 gupdatem - ok
16:22:38.0680 0444 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
16:22:38.0680 0444 hcw85cir - ok
16:22:38.0700 0444 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
16:22:38.0710 0444 HdAudAddService - ok
16:22:38.0730 0444 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\windows\system32\DRIVERS\HDAudBus.sys
16:22:38.0730 0444 HDAudBus - ok
16:22:38.0740 0444 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\windows\system32\DRIVERS\HECIx64.sys
16:22:38.0740 0444 HECIx64 - ok
16:22:38.0750 0444 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\DRIVERS\HidBatt.sys
16:22:38.0750 0444 HidBatt - ok
16:22:38.0760 0444 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\DRIVERS\hidbth.sys
16:22:38.0760 0444 HidBth - ok
16:22:38.0770 0444 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\DRIVERS\hidir.sys
16:22:38.0770 0444 HidIr - ok
16:22:38.0800 0444 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\system32\hidserv.dll
16:22:38.0800 0444 hidserv - ok
16:22:38.0810 0444 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys
16:22:38.0810 0444 HidUsb - ok
16:22:38.0850 0444 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\windows\system32\kmsvc.dll
16:22:38.0850 0444 hkmsvc - ok
16:22:38.0860 0444 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\windows\system32\ListSvc.dll
16:22:38.0860 0444 HomeGroupListener - ok
16:22:38.0880 0444 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\windows\system32\provsvc.dll
16:22:38.0880 0444 HomeGroupProvider - ok
16:22:38.0890 0444 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\windows\system32\DRIVERS\HpSAMD.sys
16:22:38.0890 0444 HpSAMD - ok
16:22:38.0930 0444 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\windows\system32\drivers\HTTP.sys
16:22:38.0930 0444 HTTP - ok
16:22:38.0950 0444 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
16:22:38.0950 0444 hwpolicy - ok
16:22:38.0960 0444 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\DRIVERS\i8042prt.sys
16:22:38.0960 0444 i8042prt - ok
16:22:38.0990 0444 [ 42E00996DFC13C46366689C0EA8ABC5E ] iaStor C:\windows\system32\DRIVERS\iaStor.sys
16:22:38.0990 0444 iaStor - ok
16:22:39.0050 0444 [ 48362E5DB5CB2C000C514EE1F3890ACD ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
16:22:39.0050 0444 IAStorDataMgrSvc - ok
16:22:39.0110 0444 [ B75E45C564E944A2657167D197AB29DA ] iaStorV C:\windows\system32\drivers\iaStorV.sys
16:22:39.0110 0444 iaStorV - ok
16:22:39.0180 0444 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:22:39.0190 0444 idsvc - ok
16:22:39.0440 0444 [ 2A22AB054F4630D2EF4BAB2853F6D5F6 ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys
16:22:39.0510 0444 igfx - ok
16:22:39.0540 0444 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\DRIVERS\iirsp.sys
16:22:39.0540 0444 iirsp - ok
16:22:39.0580 0444 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\windows\System32\ikeext.dll
16:22:39.0580 0444 IKEEXT - ok
16:22:39.0600 0444 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\windows\system32\DRIVERS\Impcd.sys
16:22:39.0600 0444 Impcd - ok
16:22:39.0670 0444 [ 53019327813FF5AB2964B33B2C61307C ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
16:22:39.0690 0444 IntcAzAudAddService - ok
16:22:39.0710 0444 [ 58CF58DEE26C909BD6F977B61D246295 ] IntcDAud C:\windows\system32\DRIVERS\IntcDAud.sys
16:22:39.0710 0444 IntcDAud - ok
16:22:39.0750 0444 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\DRIVERS\intelide.sys
16:22:39.0750 0444 intelide - ok
16:22:39.0760 0444 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
16:22:39.0760 0444 intelppm - ok
16:22:39.0790 0444 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll
16:22:39.0800 0444 IPBusEnum - ok
16:22:39.0810 0444 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
16:22:39.0810 0444 IpFilterDriver - ok
16:22:39.0840 0444 [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc C:\windows\System32\iphlpsvc.dll
16:22:39.0840 0444 iphlpsvc - ok
16:22:39.0850 0444 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\windows\system32\DRIVERS\IPMIDrv.sys
16:22:39.0850 0444 IPMIDRV - ok
16:22:39.0850 0444 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys
16:22:39.0860 0444 IPNAT - ok
16:22:39.0910 0444 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
16:22:39.0920 0444 iPod Service - ok
16:22:39.0940 0444 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys
16:22:39.0940 0444 IRENUM - ok
16:22:39.0960 0444 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\DRIVERS\isapnp.sys
16:22:39.0960 0444 isapnp - ok
16:22:39.0980 0444 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\windows\system32\DRIVERS\msiscsi.sys
16:22:39.0980 0444 iScsiPrt - ok
16:22:40.0030 0444 [ D57BC37917533162E3E75140D1F037B9 ] JLTECH0227 C:\windows\system32\Drivers\jl2005c.sys
16:22:40.0030 0444 JLTECH0227 - ok
16:22:40.0070 0444 [ 9D7EA8C7215D8D4AE7BE110EEE61085D ] k57nd60a C:\windows\system32\DRIVERS\k57nd60a.sys
16:22:40.0070 0444 k57nd60a - ok
16:22:40.0080 0444 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\DRIVERS\kbdclass.sys
16:22:40.0080 0444 kbdclass - ok
16:22:40.0100 0444 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\windows\system32\DRIVERS\kbdhid.sys
16:22:40.0100 0444 kbdhid - ok
16:22:40.0110 0444 [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso C:\windows\system32\lsass.exe
16:22:40.0120 0444 KeyIso - ok
16:22:40.0160 0444 [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
16:22:40.0160 0444 KSecDD - ok
16:22:40.0170 0444 [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
16:22:40.0170 0444 KSecPkg - ok
16:22:40.0180 0444 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
16:22:40.0180 0444 ksthunk - ok
16:22:40.0210 0444 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll
16:22:40.0220 0444 KtmRm - ok
16:22:40.0250 0444 [ 2AC603C3188C704CFCE353659AA7AD71 ] L1E C:\windows\system32\DRIVERS\L1E62x64.sys
16:22:40.0250 0444 L1E - ok
16:22:40.0290 0444 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\windows\system32\srvsvc.dll
16:22:40.0290 0444 LanmanServer - ok
16:22:40.0330 0444 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
16:22:40.0330 0444 LanmanWorkstation - ok
16:22:40.0350 0444 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
16:22:40.0350 0444 lltdio - ok
16:22:40.0380 0444 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll
16:22:40.0380 0444 lltdsvc - ok
16:22:40.0410 0444 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll
16:22:40.0410 0444 lmhosts - ok
16:22:40.0460 0444 [ 23DE5B62B0445A6F874BE633C95B483E ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
16:22:40.0470 0444 LMS - ok
16:22:40.0490 0444 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\DRIVERS\lsi_fc.sys
16:22:40.0490 0444 LSI_FC - ok
16:22:40.0510 0444 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\DRIVERS\lsi_sas.sys
16:22:40.0510 0444 LSI_SAS - ok
16:22:40.0530 0444 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\DRIVERS\lsi_sas2.sys
16:22:40.0530 0444 LSI_SAS2 - ok
16:22:40.0560 0444 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\DRIVERS\lsi_scsi.sys
16:22:40.0560 0444 LSI_SCSI - ok
16:22:40.0570 0444 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys
16:22:40.0570 0444 luafv - ok
16:22:40.0610 0444 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
16:22:40.0620 0444 Mcx2Svc - ok
16:22:40.0640 0444 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\DRIVERS\megasas.sys
16:22:40.0640 0444 megasas - ok
16:22:40.0660 0444 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\DRIVERS\MegaSR.sys
16:22:40.0660 0444 MegaSR - ok
16:22:40.0680 0444 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll
16:22:40.0680 0444 MMCSS - ok
16:22:40.0690 0444 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys
16:22:40.0690 0444 Modem - ok
16:22:40.0700 0444 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys
16:22:40.0700 0444 monitor - ok
16:22:40.0700 0444 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys
16:22:40.0700 0444 mouclass - ok
16:22:40.0720 0444 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
16:22:40.0720 0444 mouhid - ok
16:22:40.0740 0444 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\windows\system32\drivers\mountmgr.sys
16:22:40.0740 0444 mountmgr - ok
16:22:40.0800 0444 [ 8BE15F71DE6FF33FC56DCDE7B2B9EFE8 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
16:22:40.0810 0444 MozillaMaintenance - ok
16:22:40.0850 0444 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\windows\system32\DRIVERS\MpFilter.sys
16:22:40.0850 0444 MpFilter - ok
16:22:40.0880 0444 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\windows\system32\DRIVERS\mpio.sys
16:22:40.0880 0444 mpio - ok
16:22:40.0890 0444 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
16:22:40.0890 0444 mpsdrv - ok
16:22:40.0930 0444 [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc C:\windows\system32\mpssvc.dll
16:22:40.0940 0444 MpsSvc - ok
16:22:40.0960 0444 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
16:22:40.0960 0444 MRxDAV - ok
16:22:41.0000 0444 [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
16:22:41.0010 0444 mrxsmb - ok
16:22:41.0050 0444 [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
16:22:41.0050 0444 mrxsmb10 - ok
16:22:41.0070 0444 [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
16:22:41.0070 0444 mrxsmb20 - ok
16:22:41.0100 0444 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\windows\system32\DRIVERS\msahci.sys
16:22:41.0100 0444 msahci - ok
16:22:41.0120 0444 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\windows\system32\DRIVERS\msdsm.sys
16:22:41.0120 0444 msdsm - ok
16:22:41.0140 0444 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe
16:22:41.0140 0444 MSDTC - ok
16:22:41.0170 0444 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys
16:22:41.0170 0444 Msfs - ok
16:22:41.0190 0444 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
16:22:41.0190 0444 mshidkmdf - ok
16:22:41.0200 0444 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\DRIVERS\msisadrv.sys
16:22:41.0200 0444 msisadrv - ok
16:22:41.0250 0444 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll
16:22:41.0250 0444 MSiSCSI - ok
16:22:41.0250 0444 msiserver - ok
16:22:41.0290 0444 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
16:22:41.0290 0444 MSKSSRV - ok
16:22:41.0350 0444 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
16:22:41.0350 0444 MsMpSvc - ok
16:22:41.0370 0444 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
16:22:41.0370 0444 MSPCLOCK - ok
16:22:41.0370 0444 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
16:22:41.0370 0444 MSPQM - ok
16:22:41.0390 0444 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\windows\system32\drivers\MsRPC.sys
16:22:41.0400 0444 MsRPC - ok
16:22:41.0420 0444 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\DRIVERS\mssmbios.sys
16:22:41.0420 0444 mssmbios - ok
16:22:41.0440 0444 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
16:22:41.0440 0444 MSTEE - ok
16:22:41.0460 0444 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\DRIVERS\MTConfig.sys
16:22:41.0460 0444 MTConfig - ok
16:22:41.0480 0444 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys
16:22:41.0480 0444 Mup - ok
16:22:41.0500 0444 [ 6FFECC25B39DC7652A0CEC0ADA9DB589 ] mwlPSDFilter C:\windows\system32\DRIVERS\mwlPSDFilter.sys
16:22:41.0500 0444 mwlPSDFilter - ok
16:22:41.0520 0444 [ 0BEFE32CA56D6EE89D58175725596A85 ] mwlPSDNServ C:\windows\system32\DRIVERS\mwlPSDNServ.sys
16:22:41.0520 0444 mwlPSDNServ - ok
16:22:41.0530 0444 [ D43BC633B8660463E446E28E14A51262 ] mwlPSDVDisk C:\windows\system32\DRIVERS\mwlPSDVDisk.sys
16:22:41.0540 0444 mwlPSDVDisk - ok
16:22:41.0610 0444 [ 22A4905C958BEB68D78385B633C1351B ] MWLService C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe
16:22:41.0610 0444 MWLService - ok
16:22:41.0640 0444 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\windows\system32\qagentRT.dll
16:22:41.0650 0444 napagent - ok
16:22:41.0690 0444 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
16:22:41.0690 0444 NativeWifiP - ok
16:22:41.0730 0444 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\windows\system32\drivers\ndis.sys
16:22:41.0730 0444 NDIS - ok
16:22:41.0760 0444 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
16:22:41.0760 0444 NdisCap - ok
16:22:41.0780 0444 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
16:22:41.0780 0444 NdisTapi - ok
16:22:41.0780 0444 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
16:22:41.0780 0444 Ndisuio - ok
16:22:41.0790 0444 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
16:22:41.0790 0444 NdisWan - ok
16:22:41.0800 0444 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\windows\system32\drivers\NDProxy.sys
16:22:41.0800 0444 NDProxy - ok
16:22:41.0820 0444 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
16:22:41.0820 0444 NetBIOS - ok
16:22:41.0830 0444 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\windows\system32\DRIVERS\netbt.sys
16:22:41.0830 0444 NetBT - ok
16:22:41.0890 0444 [ 15DBD5483BE3BFCD44E63A5F1A6F250B ] NETGEARGenieDaemon C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenieDaemon64.exe
16:22:41.0890 0444 NETGEARGenieDaemon - ok
16:22:41.0900 0444 [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon C:\windows\system32\lsass.exe
16:22:41.0900 0444 Netlogon - ok
16:22:41.0940 0444 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll
16:22:41.0940 0444 Netman - ok
16:22:41.0960 0444 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll
16:22:41.0960 0444 netprofm - ok
16:22:41.0990 0444 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:22:41.0990 0444 NetTcpPortSharing - ok
16:22:42.0020 0444 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\DRIVERS\nfrd960.sys
16:22:42.0020 0444 nfrd960 - ok
16:22:42.0070 0444 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\windows\system32\DRIVERS\NisDrvWFP.sys
16:22:42.0070 0444 NisDrv - ok
16:22:42.0110 0444 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
16:22:42.0120 0444 NisSrv - ok
16:22:42.0140 0444 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\windows\System32\nlasvc.dll
16:22:42.0140 0444 NlaSvc - ok
16:22:42.0180 0444 [ 351533ACC2A069B94E80BBFC177E8FDF ] NPF C:\windows\system32\drivers\npf.sys
16:22:42.0180 0444 NPF - ok
16:22:42.0200 0444 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys
16:22:42.0200 0444 Npfs - ok
16:22:42.0210 0444 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll
16:22:42.0210 0444 nsi - ok
16:22:42.0230 0444 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
16:22:42.0230 0444 nsiproxy - ok
16:22:42.0310 0444 [ 378E0E0DFEA67D98AE6EA53ADBBD76BC ] Ntfs C:\windows\system32\drivers\Ntfs.sys
16:22:42.0330 0444 Ntfs - ok
16:22:42.0391 0444 [ 5B3CE960C62DBE864BE9A0BD043A3E30 ] NTI IScheduleSvc C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
16:22:42.0401 0444 NTI IScheduleSvc - ok
16:22:42.0431 0444 [ 15221DD637D9D0FFC60848EBBF1DF538 ] NTIBackupSvc C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
16:22:42.0431 0444 NTIBackupSvc - ok
16:22:42.0461 0444 [ 64DDD0DEE976302F4BD93E5EFCC2F013 ] NTIDrvr C:\Windows\system32\drivers\NTIDrvr.sys
16:22:42.0461 0444 NTIDrvr - ok
16:22:42.0491 0444 [ B5071E15D4C3F5EF5018AFF7E85A85E5 ] NTISchedulerSvc C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
16:22:42.0501 0444 NTISchedulerSvc - ok
16:22:42.0521 0444 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys
16:22:42.0521 0444 Null - ok
16:22:42.0561 0444 [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid C:\windows\system32\drivers\nvraid.sys
16:22:42.0561 0444 nvraid - ok
16:22:42.0611 0444 [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor C:\windows\system32\drivers\nvstor.sys
16:22:42.0611 0444 nvstor - ok
16:22:42.0631 0444 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\DRIVERS\nv_agp.sys
16:22:42.0631 0444 nv_agp - ok
16:22:42.0661 0444 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\DRIVERS\ohci1394.sys
16:22:42.0661 0444 ohci1394 - ok
16:22:42.0691 0444 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll
16:22:42.0701 0444 p2pimsvc - ok
16:22:42.0741 0444 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll
16:22:42.0751 0444 p2psvc - ok
16:22:42.0781 0444 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\DRIVERS\parport.sys
16:22:42.0781 0444 Parport - ok
16:22:42.0821 0444 [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr C:\windows\system32\drivers\partmgr.sys
16:22:42.0821 0444 partmgr - ok
16:22:42.0831 0444 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll
16:22:42.0831 0444 PcaSvc - ok
16:22:42.0841 0444 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\windows\system32\DRIVERS\pci.sys
16:22:42.0841 0444 pci - ok
16:22:42.0851 0444 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\DRIVERS\pciide.sys
16:22:42.0861 0444 pciide - ok
16:22:42.0871 0444 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\DRIVERS\pcmcia.sys
16:22:42.0871 0444 pcmcia - ok
16:22:42.0881 0444 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys
16:22:42.0881 0444 pcw - ok
16:22:42.0911 0444 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys
16:22:42.0921 0444 PEAUTH - ok
16:22:43.0001 0444 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe
16:22:43.0001 0444 PerfHost - ok
16:22:43.0071 0444 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\windows\system32\pla.dll
16:22:43.0091 0444 pla - ok
16:22:43.0131 0444 [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay C:\windows\system32\umpnpmgr.dll
16:22:43.0131 0444 PlugPlay - ok
16:22:43.0151 0444 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
16:22:43.0151 0444 PNRPAutoReg - ok
16:22:43.0161 0444 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll
16:22:43.0171 0444 PNRPsvc - ok
16:22:43.0201 0444 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
16:22:43.0211 0444 PolicyAgent - ok
16:22:43.0231 0444 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\windows\system32\umpo.dll
16:22:43.0241 0444 Power - ok
16:22:43.0271 0444 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
16:22:43.0271 0444 PptpMiniport - ok
16:22:43.0301 0444 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\DRIVERS\processr.sys
16:22:43.0301 0444 Processor - ok
16:22:43.0331 0444 [ F381975E1F4346DE875CB07339CE8D3A ] ProfSvc C:\windows\system32\profsvc.dll
16:22:43.0341 0444 ProfSvc - ok
16:22:43.0361 0444 [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\windows\system32\lsass.exe
16:22:43.0361 0444 ProtectedStorage - ok
16:22:43.0381 0444 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\windows\system32\DRIVERS\pacer.sys
16:22:43.0381 0444 Psched - ok
16:22:43.0421 0444 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\DRIVERS\ql2300.sys
16:22:43.0431 0444 ql2300 - ok
16:22:43.0451 0444 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\DRIVERS\ql40xx.sys
16:22:43.0451 0444 ql40xx - ok
16:22:43.0521 0444 [ B3A5A0DBFC3EA175BA93E59250760164 ] QuickPdfPrintSpooler C:\PROGRA~2\QUICKP~1\WINSER~1.EXE
16:22:43.0521 0444 QuickPdfPrintSpooler - ok
16:22:43.0551 0444 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll
16:22:43.0551 0444 QWAVE - ok
16:22:43.0581 0444 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
16:22:43.0581 0444 QWAVEdrv - ok
16:22:43.0601 0444 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
16:22:43.0601 0444 RasAcd - ok
16:22:43.0631 0444 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
16:22:43.0631 0444 RasAgileVpn - ok
16:22:43.0651 0444 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll
16:22:43.0651 0444 RasAuto - ok
16:22:43.0661 0444 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
16:22:43.0661 0444 Rasl2tp - ok
16:22:43.0681 0444 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\windows\System32\rasmans.dll
16:22:43.0691 0444 RasMan - ok
16:22:43.0691 0444 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
16:22:43.0691 0444 RasPppoe - ok
16:22:43.0701 0444 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
16:22:43.0701 0444 RasSstp - ok
16:22:43.0721 0444 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
16:22:43.0731 0444 rdbss - ok
16:22:43.0741 0444 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\DRIVERS\rdpbus.sys
16:22:43.0741 0444 rdpbus - ok
16:22:43.0751 0444 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
16:22:43.0751 0444 RDPCDD - ok
16:22:43.0761 0444 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
16:22:43.0761 0444 RDPENCDD - ok
16:22:43.0771 0444 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
16:22:43.0771 0444 RDPREFMP - ok
16:22:43.0811 0444 [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD C:\windows\system32\drivers\RDPWD.sys
16:22:43.0821 0444 RDPWD - ok
16:22:43.0831 0444 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\windows\system32\drivers\rdyboost.sys
16:22:43.0841 0444 rdyboost - ok
16:22:43.0861 0444 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll
16:22:43.0871 0444 RemoteAccess - ok
16:22:43.0901 0444 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll
16:22:43.0901 0444 RemoteRegistry - ok
16:22:43.0911 0444 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
16:22:43.0911 0444 RpcEptMapper - ok
16:22:43.0941 0444 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe
16:22:43.0941 0444 RpcLocator - ok
16:22:43.0961 0444 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\windows\system32\rpcss.dll
16:22:43.0971 0444 RpcSs - ok
16:22:44.0001 0444 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
16:22:44.0001 0444 rspndr - ok
16:22:44.0011 0444 [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs C:\windows\system32\lsass.exe
16:22:44.0011 0444 SamSs - ok
16:22:44.0031 0444 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\windows\system32\DRIVERS\sbp2port.sys
16:22:44.0031 0444 sbp2port - ok
16:22:44.0051 0444 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll
16:22:44.0051 0444 SCardSvr - ok
16:22:44.0061 0444 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
16:22:44.0061 0444 scfilter - ok
16:22:44.0131 0444 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\windows\system32\schedsvc.dll
16:22:44.0141 0444 Schedule - ok
16:22:44.0181 0444 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\windows\System32\certprop.dll
16:22:44.0181 0444 SCPolicySvc - ok
16:22:44.0201 0444 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\windows\System32\SDRSVC.dll
16:22:44.0211 0444 SDRSVC - ok
16:22:44.0231 0444 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys
16:22:44.0231 0444 secdrv - ok
16:22:44.0241 0444 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\windows\system32\seclogon.dll
16:22:44.0241 0444 seclogon - ok
16:22:44.0241 0444 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\System32\sens.dll
16:22:44.0251 0444 SENS - ok
16:22:44.0251 0444 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll
16:22:44.0251 0444 SensrSvc - ok
16:22:44.0301 0444 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\DRIVERS\serenum.sys
16:22:44.0301 0444 Serenum - ok
16:22:44.0321 0444 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\DRIVERS\serial.sys
16:22:44.0321 0444 Serial - ok
16:22:44.0351 0444 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\DRIVERS\sermouse.sys
16:22:44.0351 0444 sermouse - ok
16:22:44.0392 0444 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\windows\system32\sessenv.dll
16:22:44.0392 0444 SessionEnv - ok
16:22:44.0422 0444 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\drivers\sffdisk.sys
16:22:44.0422 0444 sffdisk - ok
16:22:44.0442 0444 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
16:22:44.0442 0444 sffp_mmc - ok
16:22:44.0462 0444 [ 178298F767FE638C9FEDCBDEF58BB5E4 ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
16:22:44.0462 0444 sffp_sd - ok
16:22:44.0492 0444 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\DRIVERS\sfloppy.sys
16:22:44.0492 0444 sfloppy - ok
16:22:44.0532 0444 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\windows\System32\ipnathlp.dll
16:22:44.0532 0444 SharedAccess - ok
16:22:44.0572 0444 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\windows\System32\shsvcs.dll
16:22:44.0582 0444 ShellHWDetection - ok
16:22:44.0602 0444 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\DRIVERS\SiSRaid2.sys
16:22:44.0602 0444 SiSRaid2 - ok
16:22:44.0622 0444 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\DRIVERS\sisraid4.sys
16:22:44.0622 0444 SiSRaid4 - ok
16:22:44.0762 0444 [ 388AE59FE75F1B959DFA0900923C61BB ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
16:22:44.0792 0444 Skype C2C Service - ok
16:22:44.0812 0444 [ DDAA5F4A6B958FC313EBD02DD925752F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
16:22:44.0812 0444 SkypeUpdate - ok
16:22:44.0822 0444 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys
16:22:44.0822 0444 Smb - ok
16:22:44.0862 0444 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe
16:22:44.0862 0444 SNMPTRAP - ok
16:22:44.0872 0444 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys
16:22:44.0872 0444 spldr - ok
16:22:44.0922 0444 [ F8E1FA03CB70D54A9892AC88B91D1E7B ] Spooler C:\windows\System32\spoolsv.exe
16:22:44.0922 0444 Spooler - ok
16:22:45.0002 0444 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\windows\system32\sppsvc.exe
16:22:45.0022 0444 sppsvc - ok
16:22:45.0032 0444 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll
16:22:45.0032 0444 sppuinotify - ok
16:22:45.0092 0444 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv C:\windows\system32\DRIVERS\srv.sys
16:22:45.0092 0444 srv - ok
16:22:45.0102 0444 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
16:22:45.0102 0444 srv2 - ok
16:22:45.0142 0444 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
16:22:45.0142 0444 srvnet - ok
16:22:45.0192 0444 [ 8F8324ED1DE63FFC7B1A02CD2D963C72 ] ssadbus C:\windows\system32\DRIVERS\ssadbus.sys
16:22:45.0192 0444 ssadbus - ok
16:22:45.0212 0444 [ 58221EFCB74167B73667F0024C661CE0 ] ssadmdfl C:\windows\system32\DRIVERS\ssadmdfl.sys
16:22:45.0222 0444 ssadmdfl - ok
16:22:45.0242 0444 [ 4DA7C71BFAC5AD71255B7E4CAB980163 ] ssadmdm C:\windows\system32\DRIVERS\ssadmdm.sys
16:22:45.0242 0444 ssadmdm - ok
16:22:45.0262 0444 [ D33D1BD3EC0E766211A234F56A12726D ] ssadserd C:\windows\system32\DRIVERS\ssadserd.sys
16:22:45.0272 0444 ssadserd - ok
16:22:45.0312 0444 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
16:22:45.0322 0444 SSDPSRV - ok
16:22:45.0332 0444 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll
16:22:45.0332 0444 SstpSvc - ok
16:22:45.0362 0444 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\DRIVERS\stexstor.sys
16:22:45.0362 0444 stexstor - ok
16:22:45.0392 0444 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\windows\system32\DRIVERS\serscan.sys
16:22:45.0392 0444 StillCam - ok
16:22:45.0412 0444 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\windows\System32\wiaservc.dll
16:22:45.0422 0444 stisvc - ok
16:22:45.0432 0444 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\DRIVERS\swenum.sys
16:22:45.0432 0444 swenum - ok
16:22:45.0462 0444 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll
16:22:45.0462 0444 swprv - ok
16:22:45.0472 0444 [ 8F63178D1DB81BB79270AE55ECDD8321 ] SynTP C:\windows\system32\DRIVERS\SynTP.sys
16:22:45.0482 0444 SynTP - ok
16:22:45.0522 0444 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\windows\system32\sysmain.dll
16:22:45.0532 0444 SysMain - ok
16:22:45.0542 0444 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\windows\System32\TabSvc.dll
16:22:45.0542 0444 TabletInputService - ok
16:22:45.0552 0444 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\windows\System32\tapisrv.dll
16:22:45.0552 0444 TapiSrv - ok
16:22:45.0562 0444 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll
16:22:45.0562 0444 TBS - ok
16:22:45.0652 0444 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] Tcpip C:\windows\system32\drivers\tcpip.sys
16:22:45.0662 0444 Tcpip - ok
16:22:45.0712 0444 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
16:22:45.0732 0444 TCPIP6 - ok
16:22:45.0762 0444 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
16:22:45.0762 0444 tcpipreg - ok
16:22:45.0782 0444 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
16:22:45.0782 0444 TDPIPE - ok
16:22:45.0812 0444 [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
16:22:45.0812 0444 TDTCP - ok
16:22:45.0822 0444 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\windows\system32\DRIVERS\tdx.sys
16:22:45.0822 0444 tdx - ok
16:22:45.0822 0444 [ C448651339196C0E869A355171875522 ] TermDD C:\windows\system32\DRIVERS\termdd.sys
16:22:45.0832 0444 TermDD - ok
16:22:45.0872 0444 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\windows\System32\termsrv.dll
16:22:45.0882 0444 TermService - ok
16:22:45.0882 0444 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll
16:22:45.0892 0444 Themes - ok
16:22:45.0912 0444 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll
16:22:45.0912 0444 THREADORDER - ok
16:22:45.0932 0444 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll
16:22:45.0932 0444 TrkWks - ok
16:22:45.0982 0444 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
16:22:45.0982 0444 TrustedInstaller - ok
16:22:46.0002 0444 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
16:22:46.0002 0444 tssecsrv - ok
16:22:46.0022 0444 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
16:22:46.0022 0444 tunnel - ok
16:22:46.0042 0444 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\DRIVERS\uagp35.sys
16:22:46.0042 0444 uagp35 - ok
16:22:46.0062 0444 [ 2E22C1FD397A5A9FFEF55E9D1FC96C00 ] UBHelper C:\Windows\system32\drivers\UBHelper.sys
16:22:46.0062 0444 UBHelper - ok
16:22:46.0092 0444 [ D47BAEAD86C65D4F4069D7CE0A4EDCEB ] udfs C:\windows\system32\DRIVERS\udfs.sys
16:22:46.0092 0444 udfs - ok
16:22:46.0132 0444 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe
16:22:46.0132 0444 UI0Detect - ok
16:22:46.0152 0444 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\DRIVERS\uliagpkx.sys
16:22:46.0152 0444 uliagpkx - ok
16:22:46.0172 0444 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\windows\system32\DRIVERS\umbus.sys
16:22:46.0172 0444 umbus - ok
16:22:46.0192 0444 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\DRIVERS\umpass.sys
16:22:46.0192 0444 UmPass - ok
16:22:46.0322 0444 [ CC3775100ABA633984F73DFAE1F55CAE ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
16:22:46.0342 0444 UNS - ok
16:22:46.0413 0444 [ F9EC9ACD504D823D9B9CA98A4F8D3CA2 ] Updater Service C:\Program Files\Acer\Acer Updater\UpdaterService.exe
16:22:46.0423 0444 Updater Service - ok
16:22:46.0463 0444 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll
16:22:46.0473 0444 upnphost - ok
16:22:46.0513 0444 [ 537A4E03D7103C12D42DFD8FFDB5BDC9 ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
16:22:46.0513 0444 usbccgp - ok
16:22:46.0543 0444 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\DRIVERS\usbcir.sys
16:22:46.0553 0444 usbcir - ok
16:22:46.0553 0444 [ FBB21EBE49F6D560DB37AC25FBC68E66 ] usbehci C:\windows\system32\drivers\usbehci.sys
16:22:46.0563 0444 usbehci - ok
16:22:46.0573 0444 [ 6B7A8A99C4A459E73C286A6763EA24CC ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
16:22:46.0573 0444 usbhub - ok
16:22:46.0623 0444 [ 8C88AA7617B4CBC2E4BED61D26B33A27 ] usbohci C:\windows\system32\drivers\usbohci.sys
16:22:46.0623 0444 usbohci - ok
16:22:46.0633 0444 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\DRIVERS\usbprint.sys
16:22:46.0633 0444 usbprint - ok
16:22:46.0663 0444 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\windows\system32\DRIVERS\usbscan.sys
16:22:46.0663 0444 usbscan - ok
16:22:46.0693 0444 [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
16:22:46.0693 0444 USBSTOR - ok
16:22:46.0713 0444 [ 0B5B3B2DF3FD1709618ACFA50B8392B0 ] usbuhci C:\windows\system32\drivers\usbuhci.sys
16:22:46.0713 0444 usbuhci - ok
16:22:46.0753 0444 [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] usbvideo C:\windows\System32\Drivers\usbvideo.sys
16:22:46.0753 0444 usbvideo - ok
16:22:46.0793 0444 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll
16:22:46.0803 0444 UxSms - ok
16:22:46.0813 0444 [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc C:\windows\system32\lsass.exe
16:22:46.0813 0444 VaultSvc - ok
16:22:46.0843 0444 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\DRIVERS\vdrvroot.sys
16:22:46.0843 0444 vdrvroot - ok
16:22:46.0873 0444 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\windows\System32\vds.exe
16:22:46.0873 0444 vds - ok
16:22:46.0903 0444 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys
16:22:46.0903 0444 vga - ok
16:22:46.0933 0444 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys
16:22:46.0933 0444 VgaSave - ok
16:22:46.0953 0444 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\windows\system32\DRIVERS\vhdmp.sys
16:22:46.0953 0444 vhdmp - ok
16:22:46.0973 0444 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\DRIVERS\viaide.sys
16:22:46.0983 0444 viaide - ok
16:22:47.0003 0444 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\windows\system32\DRIVERS\volmgr.sys
16:22:47.0003 0444 volmgr - ok
16:22:47.0023 0444 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\windows\system32\drivers\volmgrx.sys
16:22:47.0023 0444 volmgrx - ok
16:22:47.0033 0444 [ 58F82EED8CA24B461441F9C3E4F0BF5C ] volsnap C:\windows\system32\DRIVERS\volsnap.sys
16:22:47.0043 0444 volsnap - ok
16:22:47.0053 0444 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\DRIVERS\vsmraid.sys
16:22:47.0063 0444 vsmraid - ok
16:22:47.0123 0444 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\windows\system32\vssvc.exe
16:22:47.0133 0444 VSS - ok
16:22:47.0163 0444 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
16:22:47.0163 0444 vwifibus - ok
16:22:47.0173 0444 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
16:22:47.0173 0444 vwififlt - ok
16:22:47.0173 0444 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys
16:22:47.0173 0444 vwifimp - ok
16:22:47.0183 0444 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll
16:22:47.0193 0444 W32Time - ok
16:22:47.0203 0444 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\DRIVERS\wacompen.sys
16:22:47.0203 0444 WacomPen - ok
16:22:47.0213 0444 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
16:22:47.0213 0444 WANARP - ok
16:22:47.0223 0444 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
16:22:47.0223 0444 Wanarpv6 - ok
16:22:47.0283 0444 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
16:22:47.0293 0444 WatAdminSvc - ok
16:22:47.0343 0444 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\windows\system32\wbengine.exe
16:22:47.0353 0444 wbengine - ok
16:22:47.0363 0444 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
16:22:47.0363 0444 WbioSrvc - ok
16:22:47.0403 0444 [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc C:\windows\System32\wcncsvc.dll
16:22:47.0403 0444 wcncsvc - ok
16:22:47.0413 0444 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
16:22:47.0413 0444 WcsPlugInService - ok
16:22:47.0443 0444 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\DRIVERS\wd.sys
16:22:47.0443 0444 Wd - ok
16:22:47.0463 0444 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
16:22:47.0473 0444 Wdf01000 - ok
16:22:47.0503 0444 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll
16:22:47.0503 0444 WdiServiceHost - ok
16:22:47.0503 0444 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll
16:22:47.0513 0444 WdiSystemHost - ok
16:22:47.0553 0444 [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient C:\windows\System32\webclnt.dll
16:22:47.0553 0444 WebClient - ok
16:22:47.0583 0444 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll
16:22:47.0583 0444 Wecsvc - ok
16:22:47.0603 0444 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll
16:22:47.0603 0444 wercplsupport - ok
16:22:47.0613 0444 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll
16:22:47.0623 0444 WerSvc - ok
16:22:47.0633 0444 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
16:22:47.0633 0444 WfpLwf - ok
16:22:47.0663 0444 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys
16:22:47.0663 0444 WIMMount - ok
16:22:47.0673 0444 WinDefend - ok
16:22:47.0683 0444 WinHttpAutoProxySvc - ok
16:22:47.0733 0444 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
16:22:47.0733 0444 Winmgmt - ok
16:22:47.0803 0444 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\windows\system32\WsmSvc.dll
16:22:47.0813 0444 WinRM - ok
16:22:47.0863 0444 [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUsb C:\windows\system32\DRIVERS\WinUsb.sys
16:22:47.0863 0444 WinUsb - ok
16:22:47.0903 0444 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll
16:22:47.0913 0444 Wlansvc - ok
16:22:48.0063 0444 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
16:22:48.0073 0444 wlidsvc - ok
16:22:48.0103 0444 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\DRIVERS\wmiacpi.sys
16:22:48.0103 0444 WmiAcpi - ok
16:22:48.0143 0444 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
16:22:48.0143 0444 wmiApSrv - ok
16:22:48.0173 0444 WMPNetworkSvc - ok
16:22:48.0203 0444 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll
16:22:48.0213 0444 WPCSvc - ok
16:22:48.0223 0444 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
16:22:48.0223 0444 WPDBusEnum - ok
16:22:48.0243 0444 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
16:22:48.0243 0444 ws2ifsl - ok
16:22:48.0303 0444 [ 8F9F3969933C02DA96EB0F84576DB43E ] wscsvc C:\windows\System32\wscsvc.dll
16:22:48.0303 0444 wscsvc - ok
16:22:48.0313 0444 WSearch - ok
16:22:48.0413 0444 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\windows\system32\wuaueng.dll
16:22:48.0433 0444 wuauserv - ok
16:22:48.0443 0444 [ 7CADC74271DD6461C452C271B30BD378 ] WudfPf C:\windows\system32\drivers\WudfPf.sys
16:22:48.0443 0444 WudfPf - ok
16:22:48.0473 0444 [ 3B197AF0FFF08AA66B6B2241CA538D64 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
16:22:48.0483 0444 WUDFRd - ok
16:22:48.0513 0444 [ B551D6637AA0E132C18AC6E504F7B79B ] wudfsvc C:\windows\System32\WUDFSvc.dll
16:22:48.0513 0444 wudfsvc - ok
16:22:48.0523 0444 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\windows\System32\wwansvc.dll
16:22:48.0523 0444 WwanSvc - ok
16:22:48.0583 0444 [ 74983ADDCA2D9618512C088D856D6615 ] {B154377D-700F-42cc-9474-23858FBDF4BD} c:\Program Files (x86)\CyberLink\PowerDVD9\000.fcl
16:22:48.0583 0444 {B154377D-700F-42cc-9474-23858FBDF4BD} - ok
16:22:48.0603 0444 ================ Scan global ===============================
16:22:48.0633 0444 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
16:22:48.0683 0444 [ 0CB6EBF4B461A6043353C570BD72A1E1 ] C:\windows\system32\winsrv.dll
16:22:48.0693 0444 [ 0CB6EBF4B461A6043353C570BD72A1E1 ] C:\windows\system32\winsrv.dll
16:22:48.0723 0444 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
16:22:48.0753 0444 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
16:22:48.0763 0444 [Global] - ok
16:22:48.0763 0444 ================ Scan MBR ==================================
16:22:48.0773 0444 [ D7AD5AA31A559120C3BA48FD0A1B1636 ] \Device\Harddisk0\DR0
16:22:49.0413 0444 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
16:22:49.0413 0444 \Device\Harddisk0\DR0 - detected TDSS File System (1)
16:22:49.0423 0444 [ 2BDBC086F60BC3CA3E44F97D87AB1E64 ] \Device\Harddisk1\DR1
16:23:10.0337 0444 \Device\Harddisk1\DR1 - ok
16:23:10.0337 0444 ================ Scan VBR ==================================
16:23:10.0347 0444 [ 0EE64F82BDBCFF4D7658F1F6376C3799 ] \Device\Harddisk0\DR0\Partition1
16:23:10.0347 0444 \Device\Harddisk0\DR0\Partition1 - ok
16:23:10.0377 0444 [ 0EEADFFE1D8A1D3946199D71B88440F9 ] \Device\Harddisk0\DR0\Partition2
16:23:10.0377 0444 \Device\Harddisk0\DR0\Partition2 - ok
16:23:10.0397 0444 [ 167450E40973B2C6BF6012693A663A39 ] \Device\Harddisk1\DR1\Partition1
16:23:10.0397 0444 \Device\Harddisk1\DR1\Partition1 - ok
16:23:10.0397 0444 ============================================================
16:23:10.0397 0444 Scan finished
16:23:10.0397 0444 ============================================================
16:23:10.0417 3736 Detected object count: 1
16:23:10.0417 3736 Actual detected object count: 1
16:23:17.0848 3736 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
16:23:17.0848 3736 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users