Needing Assistance - Conflict or Infection?

[jinman]

I use NOD32 and Malwarebytes Pro on my system. I keep both updated and active. But for a while now I had been dealing with occasional problems with Win 7 starting up. It would completely freeze either when the desktop just shows up or just prior to that point. I did run full scans on my pc for infections and found nothing. I discovered DSS recently and ran it. Those problems I was having will be listed on 3/27. I did some research on another forum and discovered that a program called Tweaking.com - Windows Repair (All in One) was recommended to fix the kind of problems that was found in the logs. After running that program, I ran DSS again. It listed some new events that I can't find information on.

[Maurice Naggar]

Hi and welcome to Malwarebytes.

In the future, please post all logs directly into your reply instead of attaching them unless otherwise indicated. With that said, please update MBAM, run a Quick Scan, and post its log.

Next, run DDS again and post DDS.txt directly in your reply.

Remarks:

It does not appear that this has an infection. It is most likely other {non-malware} issues.

You must always have infinite patience when Windows loads.

Edited April 5, 2013 by Maurice Naggar

[jinman]

You got that right about being patient with Windows. I think I'm better at it than most. While you're looking over the following information, I should probably go ahead and tell you that while I was waiting on a response I have been doing a little research. I discovered that the event error with "WMPNetworkSvc" was connected with a Windows Media Player service. I don't use WMP so I located the service that was causing the error and disabled it. However, the three NET.____adapter event errors I found still confuse me. So I hope you can give me some insight there. Here are the logs you asked for:

MBAM LOG:

Malwarebytes Anti-Malware (PRO) 1.70.0.1100

www.malwarebytes.org

Database version: v2013.04.06.01

Windows 7 Service Pack 1 x86 NTFS

Internet Explorer 9.0.8112.16421

Acer :: ACER [administrator]

Protection: Enabled

4/5/2013 10:23:37 PM

mbam-log-2013-04-05 (22-23-37).txt

Scan type: Quick scan

Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM

Scan options disabled: P2P

Objects scanned: 198069

Time elapsed: 4 minute(s), 22 second(s)

Memory Processes Detected: 0

(No malicious items detected)

Memory Modules Detected: 0

(No malicious items detected)

Registry Keys Detected: 0

(No malicious items detected)

Registry Values Detected: 0

(No malicious items detected)

Registry Data Items Detected: 0

(No malicious items detected)

Folders Detected: 0

(No malicious items detected)

Files Detected: 0

(No malicious items detected)

(end)

DDS.TXT :

DDS (Ver_2012-11-20.01) - NTFS_x86

Internet Explorer: 9.0.8112.16470

Run by Acer at 22:19:59 on 2013-04-05

Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.3062.1365 [GMT -5:00]

.

AV: ESET NOD32 Antivirus 6.0 *Enabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}

SP: ESET NOD32 Antivirus 6.0 *Enabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}

.

============== Running Processes ================

.

C:\Windows\system32\wininit.exe

C:\Windows\system32\lsm.exe

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\Dwm.exe

C:\Windows\system32\taskhost.exe

C:\Program Files\Bluetooth Suite\adminservice.exe

C:\Windows\Explorer.EXE

C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe

C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe

C:\Program Files\Google\Update\1.3.21.135\GoogleCrashHandler.exe

C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe

C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe

C:\Program Files\Synaptics\SynTP\SynTPStart.exe

C:\Program Files\Logitech\SetPointP\SetPoint.exe

C:\Program Files\BillP Studios\WinPatrol\WinPatrol.exe

C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe

C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe

C:\Windows\system32\SearchIndexer.exe

C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE

C:\Windows\system32\DRIVERS\xaudio.exe

C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

C:\PROGRAM FILES\HTC\HTC SYNC 3.0\HTCUPCTLOADER.EXE

C:\Windows\system32\wuauclt.exe

C:\PROGRAM FILES\HTC\HTC SYNC 3.0\adb.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Windows\system32\wbem\WmiPrvSE.exe

C:\Windows\system32\sppsvc.exe

C:\Windows\servicing\TrustedInstaller.exe

C:\Windows\system32\conhost.exe

C:\Windows\system32\wbem\WmiPrvSE.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k GPSvcGroup

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Windows\system32\svchost.exe -k imgsvc

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Windows\system32\svchost.exe -k SDRSVC

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalServicePeerNet

.

============== Pseudo HJT Report ===============

.

uSearch Bar = Preserve

uSearch Page = hxxp://www.google.com

uSearchAssistant = hxxp://www.google.com/ie

uSearchURL,(Default) = hxxp://www.google.com/search?q=%s

mRun: [RtHDVCpl] c:\program files\realtek\audio\hda\RtHDVCpl.exe -s

mRun: [synTPStart] c:\program files\synaptics\syntp\SynTPStart.exe

mRun: [EvtMgr6] c:\program files\logitech\setpointp\SetPoint.exe /launchGaming

mRun: [WinPatrol] c:\program files\billp studios\winpatrol\WinPatrol.exe -expressboot

mRun: [egui] "c:\program files\eset\eset nod32 antivirus\egui.exe" /hide /waitservice

mPolicies-System: ConsentPromptBehaviorAdmin = dword:5

mPolicies-System: ConsentPromptBehaviorUser = dword:3

mPolicies-System: EnableUIADesktopToggle = dword:0

IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200

IE: {7815BE26-237D-41A8-A98F-F7BD75F71086} - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - c:\program files\bluetooth suite\IEPlugIn.dll

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_05-windows-i586.cab

DPF: {CAFEEFAC-0017-0000-0005-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_05-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_05-windows-i586.cab

TCP: NameServer = 192.168.42.129

TCP: Interfaces\{5950F3F1-F364-444D-85C0-3D7F8BC5EB4E} : DHCPNameServer = 192.168.42.129

TCP: Interfaces\{E8661C1A-5D11-4751-BBA2-8BDCD1B641F0} : DHCPNameServer = 192.168.42.129

Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - c:\program files\windows live\photo gallery\AlbumDownloadProtocolHandler.dll

Notify: igfxcui - igfxdev.dll

Notify: LBTWlgn - c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll

SSODL: WebCheck - <orphaned>

.

================= FIREFOX ===================

.

FF - ProfilePath - c:\users\acer\appdata\roaming\mozilla\firefox\profiles\do1f7cm2.default-1361679657372\

FF - prefs.js: browser.search.selectedEngine - DuckDuckGo

FF - prefs.js: browser.startup.homepage - hxxps://duckduckgo.com/

FF - plugin: c:\program files\amazon\mp3 downloader\npAmazonMP3DownloaderPlugin101721.dll

FF - plugin: c:\program files\foxit software\foxit reader\plugins\npFoxitReaderPlugin.dll

FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll

FF - plugin: c:\program files\google\picasa3\npPicasa3.dll

FF - plugin: c:\program files\google\update\1.3.21.135\npGoogleUpdate3.dll

FF - plugin: c:\program files\microsoft silverlight\5.1.20125.0\npctrlui.dll

FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll

FF - plugin: c:\users\acer\appdata\local\google\update\1.3.21.135\npGoogleUpdate3.dll

FF - plugin: c:\users\acer\appdata\roaming\mozilla\firefox\profiles\do1f7cm2.default-1361679657372\extensions\devicedetection@logitech.com\plugins\npLogitechDeviceDetection.dll

FF - plugin: c:\users\acer\appdata\roaming\mozilla\plugins\npgoogletalk.dll

FF - plugin: c:\users\acer\appdata\roaming\mozilla\plugins\npgtpo3dautoplugin.dll

FF - plugin: c:\users\acer\appdata\roaming\mozilla\plugins\npo1d.dll

FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_6_602_180.dll

FF - ExtSQL: 2013-02-14 19:31; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; c:\users\acer\appdata\roaming\mozilla\firefox\profiles\do1f7cm2.default-1361679657372\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

FF - ExtSQL: 2013-02-23 16:36; jid1-ZAdIEUB7XOzOJw@jetpack; c:\users\acer\appdata\roaming\mozilla\firefox\profiles\do1f7cm2.default-1361679657372\extensions\jid1-ZAdIEUB7XOzOJw@jetpack.xpi

FF - ExtSQL: 2013-02-23 16:42; {d40f5e7b-d2cf-4856-b441-cc613eeffbe3}; c:\users\acer\appdata\roaming\mozilla\firefox\profiles\do1f7cm2.default-1361679657372\extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi

FF - ExtSQL: 2013-02-23 22:21; testpilot@labs.mozilla.com; c:\users\acer\appdata\roaming\mozilla\firefox\profiles\do1f7cm2.default-1361679657372\extensions\testpilot@labs.mozilla.com.xpi

FF - ExtSQL: 2013-02-23 22:28; donottrackplus@abine.com; c:\users\acer\appdata\roaming\mozilla\firefox\profiles\do1f7cm2.default-1361679657372\extensions\donottrackplus@abine.com

FF - ExtSQL: 2013-02-23 22:28; DeviceDetection@logitech.com; c:\users\acer\appdata\roaming\mozilla\firefox\profiles\do1f7cm2.default-1361679657372\extensions\DeviceDetection@logitech.com

FF - ExtSQL: 2013-03-07 19:41; {F003DA68-8256-4b37-A6C4-350FA04494DF}; c:\program files\logitech\setpointp\LogiSmoothFirefoxExt

.

============= SERVICES / DRIVERS ===============

.

R1 eamonm;eamonm;c:\windows\system32\drivers\eamonm.sys [2013-2-20 171680]

R2 AtherosSvc;AtherosSvc;c:\program files\bluetooth suite\AdminService.exe [2011-3-1 72864]

R2 cpuz135;cpuz135;c:\windows\system32\drivers\cpuz135_x32.sys [2011-10-8 21992]

R2 ekrn;ESET Service;c:\program files\eset\eset nod32 antivirus\ekrn.exe [2013-3-21 1341664]

R2 epfwwfpr;epfwwfpr;c:\windows\system32\drivers\epfwwfpr.sys [2013-1-10 105760]

R2 MBAMScheduler;MBAMScheduler;c:\program files\malwarebytes' anti-malware\mbamscheduler.exe [2012-9-11 398184]

R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2012-9-11 682344]

R2 PassThru Service;Internet Pass-Through Service;c:\program files\htc\internet pass-through\PassThruSvr.exe [2011-9-15 88576]

R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2012-6-19 374648]

R3 BTATH_BUS;Atheros Bluetooth Bus;c:\windows\system32\drivers\btath_bus.sys [2011-3-1 24736]

R3 HTCAND32;HTC Device Driver;c:\windows\system32\drivers\ANDROIDUSB.sys [2009-10-26 25088]

R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-7-30 21104]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

S3 AthBTPort;Atheros Virtual Bluetooth Class;c:\windows\system32\drivers\btath_flt.sys [2011-3-1 34976]

S3 ATHDFU;Atheros Valkyrie USB BootROM;c:\windows\system32\drivers\AthDfu.sys [2011-3-1 43680]

S3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys [2011-3-1 259232]

S3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\system32\drivers\btath_hcrp.sys [2011-3-1 175776]

S3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\drivers\btath_lwflt.sys [2011-3-1 49312]

S3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\system32\drivers\btath_rcp.sys [2011-3-1 141088]

S3 BtFilter;BtFilter;c:\windows\system32\drivers\btfilter.sys [2011-3-1 242336]

S3 flash;flash;c:\windows\system32\drivers\flash.sys [2013-3-11 8064]

S3 fssfltr;fssfltr;c:\windows\system32\drivers\fssfltr.sys [2011-10-21 39272]

S3 fsssvc;Windows Live Family Safety Service;c:\program files\windows live\family safety\fsssvc.exe [2011-5-13 1492840]

S3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\drivers\htcnprot.sys [2010-6-23 23040]

S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-10-23 14848]

S3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\drivers\VSTAZL3.SYS [2009-7-13 207360]

S3 SrvHsfV92;SrvHsfV92;c:\windows\system32\drivers\VSTDPV3.SYS [2009-7-13 980992]

S3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\drivers\VSTCNXT3.SYS [2009-7-13 661504]

S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2012-10-23 49664]

S3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\wat\WatAdminSvc.exe [2011-7-30 1343400]

S3 WsAudio_DeviceS(1);WsAudio_DeviceS(1);c:\windows\system32\drivers\WsAudio_DeviceS(1).sys [2012-3-3 25704]

S3 WsAudio_DeviceS(2);WsAudio_DeviceS(2);c:\windows\system32\drivers\WsAudio_DeviceS(2).sys [2012-3-3 25704]

S3 WsAudio_DeviceS(3);WsAudio_DeviceS(3);c:\windows\system32\drivers\WsAudio_DeviceS(3).sys [2012-3-3 25704]

S3 WsAudio_DeviceS(4);WsAudio_DeviceS(4);c:\windows\system32\drivers\WsAudio_DeviceS(4).sys [2012-3-3 25704]

S3 WsAudio_DeviceS(5);WsAudio_DeviceS(5);c:\windows\system32\drivers\WsAudio_DeviceS(5).sys [2012-3-3 25704]

S4 Garmin Core Update Service;Garmin Core Update Service;c:\program files\garmin\core update service\Garmin.Cartography.MapUpdate.CoreService.exe [2013-2-19 185176]

S4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\windows live\mesh\wlcrasvc.exe [2010-9-22 51040]

.

=============== Created Last 30 ================

.

2013-04-05 02:42:36 -------- d-----w- c:\program files\Foxit Software

2013-04-05 00:24:06 262552 ----a-w- c:\program files\mozilla firefox\browser\components\browsercomps.dll

2013-04-03 01:41:30 -------- d-----w- c:\programdata\SecTaskMan

2013-03-29 00:27:39 -------- d-----w- c:\windows\system32\catroot2

2013-03-28 23:26:44 -------- d-----w- C:\RegBackup

2013-03-28 23:18:36 -------- d-----w- c:\program files\Tweaking.com

2013-03-28 22:49:49 52224 ----a-w- c:\windows\system32\nlaapi.dll

2013-03-28 22:49:49 499712 ----a-w- c:\windows\system32\iphlpsvc.dll

2013-03-28 22:49:49 35328 ----a-w- c:\windows\system32\drivers\tcpipreg.sys

2013-03-28 22:49:49 242176 ----a-w- c:\windows\system32\nlasvc.dll

2013-03-28 22:49:49 18944 ----a-w- c:\windows\system32\netevent.dll

2013-03-28 22:49:49 175104 ----a-w- c:\windows\system32\netcorehc.dll

2013-03-28 22:49:49 156672 ----a-w- c:\windows\system32\ncsi.dll

2013-03-19 22:54:12 -------- d-----w- c:\program files\IMSIDesign

2013-03-19 22:51:27 -------- d-----w- c:\program files\TurboCAD Deluxe 20.0

2013-03-16 23:27:13 -------- d-----w- c:\windows\System64

2013-03-16 23:26:26 -------- d-----w- c:\program files\LibreOffice 4.0

2013-03-12 22:53:45 6954968 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{7b5e109f-a6c7-4d9c-b3a3-15d9361a020f}\mpengine.dll

2013-03-12 22:53:01 15872 ----a-w- c:\windows\system32\drivers\usb8023x.sys

2013-03-12 22:53:01 15872 ----a-w- c:\windows\system32\drivers\usb8023.sys

2013-03-12 02:39:13 8064 ----a-w- c:\windows\system32\drivers\flash.sys

2013-03-12 02:20:50 -------- d-----w- c:\users\acer\appdata\local\eSupport.com

2013-03-10 02:54:26 -------- d-----w- c:\program files\BillP Studios

2013-03-08 01:42:51 -------- d-----w- c:\users\acer\appdata\local\Logishrd

2013-03-07 06:39:49 -------- d-----w- c:\program files\ESET

.

==================== Find3M ====================

.

2013-03-19 22:35:10 73432 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl

2013-03-19 22:35:10 693976 ----a-w- c:\windows\system32\FlashPlayerApp.exe

2013-03-08 01:42:45 16400 ----a-w- c:\windows\system32\drivers\LNonPnP.sys

2013-02-23 22:35:03 861088 ----a-w- c:\windows\system32\npDeployJava1.dll

2013-02-23 22:35:03 782240 ----a-w- c:\windows\system32\deployJava1.dll

2013-02-20 16:07:38 171680 ----a-w- c:\windows\system32\drivers\eamonm.sys

2013-02-12 04:48:31 474112 ----a-w- c:\windows\apppatch\AcSpecfc.dll

2013-02-12 04:48:26 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll

2013-02-02 03:38:35 1800704 ----a-w- c:\windows\system32\jscript9.dll

2013-02-02 03:30:32 1427968 ----a-w- c:\windows\system32\inetcpl.cpl

2013-02-02 03:30:21 1129472 ----a-w- c:\windows\system32\wininet.dll

2013-02-02 03:26:47 142848 ----a-w- c:\windows\system32\ieUnatt.exe

2013-02-02 03:26:21 420864 ----a-w- c:\windows\system32\vbscript.dll

2013-02-02 03:23:28 2382848 ----a-w- c:\windows\system32\mshtml.tlb

2013-01-17 07:28:58 232336 ------w- c:\windows\system32\MpSigStub.exe

2013-01-13 21:17:03 9728 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll

2013-01-13 21:17:02 2560 ---ha-w- c:\windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll

2013-01-13 21:16:42 10752 ---ha-w- c:\windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll

2013-01-13 21:12:46 3584 ---ha-w- c:\windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll

2013-01-13 21:11:21 4096 ---ha-w- c:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll

2013-01-13 21:11:08 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll

2013-01-13 21:11:07 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll

2013-01-13 21:11:07 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll

2013-01-13 21:11:07 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll

2013-01-13 20:31:00 1247744 ----a-w- c:\windows\system32\DWrite.dll

2013-01-13 20:30:34 906240 ----a-w- c:\windows\system32\FntCache.dll

2013-01-13 20:22:22 1988096 ----a-w- c:\windows\system32\d3d10warp.dll

2013-01-13 20:20:31 293376 ----a-w- c:\windows\system32\dxgi.dll

2013-01-13 20:09:00 249856 ----a-w- c:\windows\system32\d3d10_1core.dll

2013-01-13 20:08:43 220160 ----a-w- c:\windows\system32\d3d10core.dll

2013-01-13 20:08:35 1504768 ----a-w- c:\windows\system32\d3d11.dll

2013-01-13 19:54:01 604160 ----a-w- c:\windows\system32\d3d10level9.dll

2013-01-13 19:53:58 207872 ----a-w- c:\windows\system32\WindowsCodecsExt.dll

2013-01-13 19:53:14 187392 ----a-w- c:\windows\system32\UIAnimation.dll

2013-01-13 19:48:47 161792 ----a-w- c:\windows\system32\d3d10_1.dll

2013-01-13 19:46:25 1080832 ----a-w- c:\windows\system32\d3d10.dll

2013-01-13 19:43:21 1230336 ----a-w- c:\windows\system32\WindowsCodecs.dll

2013-01-13 19:37:57 3419136 ----a-w- c:\windows\system32\d2d1.dll

2013-01-13 19:02:06 417792 ----a-w- c:\windows\system32\WMPhoto.dll

2013-01-13 18:34:58 364544 ----a-w- c:\windows\system32\XpsGdiConverter.dll

2013-01-13 17:26:42 1158144 ----a-w- c:\windows\system32\XpsPrint.dll

2013-01-11 17:39:42 88576 ----a-w- c:\windows\system32\pdfcmon.dll

2013-01-10 20:08:16 105760 ----a-w- c:\windows\system32\drivers\epfwwfpr.sys

2013-01-10 20:08:14 122240 ----a-w- c:\windows\system32\drivers\ehdrv.sys

.

============= FINISH: 22:20:29.46 ===============

[Maurice Naggar]

Do as much as possible of the following:

Step 1

1. Go >> Here << and download ERUNT

(ERUNT (Emergency Recovery Utility NT) is a free program that allows you to keep a complete backup of your registry and restore it when needed.)

2. Install ERUNT by following the prompts

(use the default install settings but say no to the portion that asks you to add ERUNT to the start-up folder, if you like you can enable this option later)

3. Start ERUNT

(either by double clicking on the desktop icon or choosing to start the program at the end of the setup)

4. Choose a location for the backup

(the default location is C:\WINDOWS\ERDNT which is acceptable).

5. Make sure that at least the first two check boxes are ticked

6. Press OK

7. Press YES to create the folder.

Step 2

To show all files:

• Press Windows-key +R key on your keyboard to get RUN option.
  
• Type in

  explorer.exe

  and press Enter to start Windows Explorer.
  

• From the menu options, Select Tools, then Folder Options.
  
• Next click the View tab.
  
• Locate and uncheck Hide file extensions for known file types.
  
• Locate and uncheck Hide protected operating system files (Recommended).
  
• Locate and click Show hidden files and folders and drives.
  
• Click Apply > OK.

Step 3

Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools

For directions on how, see How To Temporarily Disable Your Anti-virus, Firewall And Anti-malware Programs

Do NOT turn off the firewall

Please download AdwCleaner © Xplode from >>here<< and save it on your Desktop.

If your are running Windows XP, double click adwcleaner.exe to start it.

Otherwise, Right-click on adwcleaner.exe and select Run As Administrator to launch the application.

Now click on the Search tab.

Please post the contents of the log-file created in your next post.

Note: The log can also be located at C:\AdwCleaner[XX].txt where XX Denotes the number of times the application has been ran, so in this should be something like R1.

Step 4

Please read carefully and follow these steps.

• Download TDSSKiller and save it to your Desktop.
  
• Double-Click on TDSSKiller.exe to run the application, then on Start Scan.
  If running Vista or Windows 7, do a RIGHT-Click and select Run as Administrator to start TDSSKILLER.exe.
  
• If an infected file is detected, the default action will be Cure, click on Continue.
  
  
• If a suspicious file is detected, the default action will be Skip, click on Continue.
  
• If you get the warning about a file UnsignedFile.Multi.Generic or LockedFile.Multi.Generic please choose
  Skip and click on Continue
  
• It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  
  
• If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  
• If a reboot is required, the report can also be found in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.
  

Step 5

• Download & SAVE to your Desktop >> Tigzy's RogueKillerfrom here << or
  >> from here <<
  
• Quit all programs that you may have started.
  
• Please disconnect any USB or external drives from the computer before you run this scan!
  
• For Vista or Windows 7, do a right-click on the program, select Run as Administrator to start, & when prompted Allow to run.
  For Windows XP, double-click to start.
  
• Wait until Prescan has finished ...
  
• Then Click on Scan button at upper right of screen.
  
• Wait until the Status box shows "Scan Finished"
  
• Click on Report and copy/paste the content of the Notepad into your next reply.
  
• The log should be found in RKreport[1].txt on your Desktop
  
• Exit/Close RogueKiller

Do NOT click any FIX buttons !

Step 6

RE-Enable your antivirus program.

Then copy/paste the following into your post (in order):

• the contents of C:\AdwCleaner[R1].txt;
  
• the contents of TDSSKILLER log;
  
• the contents of RKReport log;
  

Be sure to do a Preview prior to pressing Submit because all reports may not fit into 1 single reply. You may have to do more than 1 reply.

Do not use the attachment feature to place any of your reports. Always put them in-line inside the body of reply.

[jinman]

As requested, the AdwCleaner Log:

# AdwCleaner v2.200 - Logfile created 04/06/2013 at 22:27:43

# Updated 02/04/2013 by Xplode

# Operating system : Windows 7 Home Premium Service Pack 1 (32 bits)

# User : Acer - ACER35660

# Boot Mode : Normal

# Running from : C:\Users\Acer\Downloads\adwcleaner.exe

# Option [search]

***** [services] *****

***** [Files / Folders] *****

Folder Found : C:\Users\Acer\AppData\Roaming\Mozilla\Firefox\Profiles\do1f7cm2.default-1361679657372\jetpack

***** [Registry] *****

Key Found : HKCU\Software\APN PIP

Key Found : HKLM\Software\PIP

***** [internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16470

[OK] Registry is clean.

-\\ Mozilla Firefox v21.0 (en-US)

File : C:\Users\Acer\AppData\Roaming\Mozilla\Firefox\Profiles\do1f7cm2.default-1361679657372\prefs.js

[OK] File is clean.

-\\ Google Chrome v26.0.1410.43

File : C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [997 octets] - [06/04/2013 22:27:43]

########## EOF - C:\AdwCleaner[R1].txt - [1056 octets] ##########

[jinman]

TDSSKILLER REPORT (Part 1 of 2):

22:30:54.0821 2872 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42

22:30:55.0217 2872 ============================================================

22:30:55.0217 2872 Current date / time: 2013/04/06 22:30:55.0217

22:30:55.0218 2872 SystemInfo:

22:30:55.0218 2872

22:30:55.0218 2872 OS Version: 6.1.7601 ServicePack: 1.0

22:30:55.0218 2872 Product type: Workstation

22:30:55.0218 2872 ComputerName: ACER35660

22:30:55.0218 2872 UserName: Acer

22:30:55.0218 2872 Windows directory: C:\Windows

22:30:55.0218 2872 System windows directory: C:\Windows

22:30:55.0219 2872 Processor architecture: Intel x86

22:30:55.0219 2872 Number of processors: 2

22:30:55.0219 2872 Page size: 0x1000

22:30:55.0219 2872 Boot type: Normal boot

22:30:55.0219 2872 ============================================================

22:30:56.0481 2872 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050

22:30:56.0484 2872 ============================================================

22:30:56.0484 2872 \Device\Harddisk0\DR0:

22:30:56.0484 2872 MBR partitions:

22:30:56.0484 2872 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000

22:30:56.0484 2872 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1D190800

22:30:56.0521 2872 ============================================================

22:30:56.0561 2872 C: <-> \Device\Harddisk0\DR0\Partition2

22:30:56.0562 2872 ============================================================

22:30:56.0562 2872 Initialize success

22:30:56.0562 2872 ============================================================

22:30:58.0108 1512 ============================================================

22:30:58.0108 1512 Scan started

22:30:58.0108 1512 Mode: Manual;

22:30:58.0108 1512 ============================================================

22:30:58.0839 1512 ================ Scan system memory ========================

22:30:58.0839 1512 System memory - ok

22:30:58.0840 1512 ================ Scan services =============================

22:30:59.0003 1512 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys

22:30:59.0007 1512 1394ohci - ok

22:30:59.0030 1512 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys

22:30:59.0033 1512 ACPI - ok

22:30:59.0047 1512 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys

22:30:59.0048 1512 AcpiPmi - ok

22:30:59.0130 1512 [ EA856F4A46320389D1899B2CAA7BF40F ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

22:30:59.0133 1512 AdobeFlashPlayerUpdateSvc - ok

22:30:59.0160 1512 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys

22:30:59.0168 1512 adp94xx - ok

22:30:59.0194 1512 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys

22:30:59.0199 1512 adpahci - ok

22:30:59.0216 1512 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys

22:30:59.0219 1512 adpu320 - ok

22:30:59.0334 1512 [ 96A0FF09E226B023DC6ACA253AACEE2E ] ADVService C:\Program Files\Amazon\Amazon Unbox Video\ADVWindowsClientService.exe

22:30:59.0336 1512 ADVService - ok

22:30:59.0367 1512 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll

22:30:59.0369 1512 AeLookupSvc - ok

22:30:59.0446 1512 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD C:\Windows\system32\drivers\afd.sys

22:30:59.0451 1512 AFD - ok

22:30:59.0468 1512 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys

22:30:59.0470 1512 agp440 - ok

22:30:59.0487 1512 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys

22:30:59.0490 1512 aic78xx - ok

22:30:59.0516 1512 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe

22:30:59.0517 1512 ALG - ok

22:30:59.0537 1512 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\DRIVERS\aliide.sys

22:30:59.0539 1512 aliide - ok

22:30:59.0556 1512 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys

22:30:59.0558 1512 amdagp - ok

22:30:59.0577 1512 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\DRIVERS\amdide.sys

22:30:59.0578 1512 amdide - ok

22:30:59.0592 1512 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys

22:30:59.0594 1512 AmdK8 - ok

22:30:59.0607 1512 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys

22:30:59.0609 1512 AmdPPM - ok

22:30:59.0647 1512 [ D320BF87125326F996D4904FE24300FC ] amdsata C:\Windows\system32\drivers\amdsata.sys

22:30:59.0648 1512 amdsata - ok

22:30:59.0668 1512 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys

22:30:59.0673 1512 amdsbs - ok

22:30:59.0692 1512 [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata C:\Windows\system32\drivers\amdxata.sys

22:30:59.0693 1512 amdxata - ok

22:30:59.0725 1512 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys

22:30:59.0727 1512 AppID - ok

22:30:59.0757 1512 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll

22:30:59.0758 1512 AppIDSvc - ok

22:30:59.0794 1512 [ FB1959012294D6AD43E5304DF65E3C26 ] Appinfo C:\Windows\System32\appinfo.dll

22:30:59.0795 1512 Appinfo - ok

22:30:59.0809 1512 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys

22:30:59.0811 1512 arc - ok

22:30:59.0824 1512 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys

22:30:59.0827 1512 arcsas - ok

22:30:59.0936 1512 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe

22:30:59.0950 1512 aspnet_state - ok

22:30:59.0988 1512 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys

22:30:59.0990 1512 AsyncMac - ok

22:31:00.0008 1512 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys

22:31:00.0009 1512 atapi - ok

22:31:00.0053 1512 [ 882EDBAFCC227852C9DCA23EA48D2E78 ] AthBTPort C:\Windows\system32\DRIVERS\btath_flt.sys

22:31:00.0055 1512 AthBTPort - ok

22:31:00.0087 1512 [ 99925B8EC4FCCDB3992292FBCB31069E ] ATHDFU C:\Windows\system32\Drivers\AthDfu.sys

22:31:00.0089 1512 ATHDFU - ok

22:31:00.0163 1512 [ D386C3F9EE8504B6EEC0B9712911FAEC ] AtherosSvc C:\Program Files\Bluetooth Suite\adminservice.exe

22:31:00.0165 1512 AtherosSvc - ok

22:31:00.0215 1512 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll

22:31:00.0224 1512 AudioEndpointBuilder - ok

22:31:00.0262 1512 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll

22:31:00.0267 1512 Audiosrv - ok

22:31:00.0283 1512 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\Windows\System32\AxInstSV.dll

22:31:00.0284 1512 AxInstSV - ok

22:31:00.0305 1512 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys

22:31:00.0313 1512 b06bdrv - ok

22:31:00.0362 1512 [ FD49555C8235ABE2C6F22AF62EDB694E ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys

22:31:00.0368 1512 b57nd60x - ok

22:31:00.0393 1512 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll

22:31:00.0395 1512 BDESVC - ok

22:31:00.0441 1512 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys

22:31:00.0442 1512 Beep - ok

22:31:00.0472 1512 [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE C:\Windows\System32\bfe.dll

22:31:00.0477 1512 BFE - ok

22:31:00.0518 1512 [ E585445D5021971FAE10393F0F1C3961 ] BITS C:\Windows\System32\qmgr.dll

22:31:00.0525 1512 BITS - ok

22:31:00.0558 1512 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys

22:31:00.0559 1512 blbdrive - ok

22:31:00.0593 1512 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\Windows\system32\DRIVERS\bowser.sys

22:31:00.0595 1512 bowser - ok

22:31:00.0615 1512 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys

22:31:00.0616 1512 BrFiltLo - ok

22:31:00.0629 1512 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys

22:31:00.0630 1512 BrFiltUp - ok

22:31:00.0661 1512 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser C:\Windows\System32\browser.dll

22:31:00.0663 1512 Browser - ok

22:31:00.0681 1512 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys

22:31:00.0686 1512 Brserid - ok

22:31:00.0701 1512 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys

22:31:00.0703 1512 BrSerWdm - ok

22:31:00.0711 1512 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys

22:31:00.0713 1512 BrUsbMdm - ok

22:31:00.0730 1512 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys

22:31:00.0732 1512 BrUsbSer - ok

22:31:00.0785 1512 [ E5B321F18A1D8B6B8DD397D92BA5946A ] BTATH_A2DP C:\Windows\system32\drivers\btath_a2dp.sys

22:31:00.0789 1512 BTATH_A2DP - ok

22:31:00.0837 1512 [ F60E0C722442EA91F0C253B7814D8192 ] BTATH_BUS C:\Windows\system32\DRIVERS\btath_bus.sys

22:31:00.0838 1512 BTATH_BUS - ok

22:31:00.0901 1512 [ F31E369DB8258B28E3DCF66705AEA9E9 ] BTATH_HCRP C:\Windows\system32\DRIVERS\btath_hcrp.sys

22:31:00.0904 1512 BTATH_HCRP - ok

22:31:00.0978 1512 [ 6651798266FDE23159D961463A63A77D ] BTATH_LWFLT C:\Windows\system32\DRIVERS\btath_lwflt.sys

22:31:01.0004 1512 BTATH_LWFLT - ok

22:31:01.0186 1512 [ 08EF5298DF80BC136523BCD2ED8B9C37 ] BTATH_RCP C:\Windows\system32\DRIVERS\btath_rcp.sys

22:31:01.0191 1512 BTATH_RCP - ok

22:31:01.0239 1512 [ 8F2223374E9FA01A016EAC0E05888D1D ] BtFilter C:\Windows\system32\DRIVERS\btfilter.sys

22:31:01.0244 1512 BtFilter - ok

22:31:01.0292 1512 [ 2865A5C8E98C70C605F417908CEBB3A4 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys

22:31:01.0293 1512 BthEnum - ok

22:31:01.0306 1512 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys

22:31:01.0308 1512 BTHMODEM - ok

22:31:01.0343 1512 [ AD1872E5829E8A2C3B5B4B641C3EAB0E ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys

22:31:01.0346 1512 BthPan - ok

22:31:01.0381 1512 [ 1153DE2E4F5941E10C399CB5592F78A1 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys

22:31:01.0389 1512 BTHPORT - ok

22:31:01.0419 1512 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll

22:31:01.0421 1512 bthserv - ok

22:31:01.0438 1512 [ C81E9413A25A439F436B1D4B6A0CF9E9 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys

22:31:01.0441 1512 BTHUSB - ok

22:31:01.0472 1512 btwaudio - ok

22:31:01.0490 1512 btwavdt - ok

22:31:01.0500 1512 btwl2cap - ok

22:31:01.0512 1512 btwrchid - ok

22:31:01.0540 1512 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys

22:31:01.0541 1512 cdfs - ok

22:31:01.0588 1512 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys

22:31:01.0590 1512 cdrom - ok

22:31:01.0632 1512 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll

22:31:01.0633 1512 CertPropSvc - ok

22:31:01.0652 1512 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys

22:31:01.0654 1512 circlass - ok

22:31:01.0691 1512 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys

22:31:01.0694 1512 CLFS - ok

22:31:01.0730 1512 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

22:31:01.0732 1512 clr_optimization_v2.0.50727_32 - ok

22:31:01.0765 1512 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe

22:31:01.0768 1512 clr_optimization_v4.0.30319_32 - ok

22:31:01.0811 1512 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys

22:31:01.0812 1512 CmBatt - ok

22:31:01.0831 1512 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys

22:31:01.0833 1512 cmdide - ok

22:31:01.0872 1512 [ 42F158036BD4C2FF3122BF142E60E6FD ] CNG C:\Windows\system32\Drivers\cng.sys

22:31:01.0879 1512 CNG - ok

22:31:01.0890 1512 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys

22:31:01.0891 1512 Compbatt - ok

22:31:01.0915 1512 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys

22:31:01.0917 1512 CompositeBus - ok

22:31:01.0926 1512 COMSysApp - ok

22:31:01.0975 1512 [ C2EB4539A4F6AB6EDD01BDC191619975 ] cpuz135 C:\Windows\system32\drivers\cpuz135_x32.sys

22:31:01.0977 1512 cpuz135 - ok

22:31:01.0993 1512 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys

22:31:01.0995 1512 crcdisk - ok

22:31:02.0032 1512 [ 96C0E38905CFD788313BE8E11DAE3F2F ] CryptSvc C:\Windows\system32\cryptsvc.dll

22:31:02.0034 1512 CryptSvc - ok

22:31:02.0068 1512 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll

22:31:02.0075 1512 DcomLaunch - ok

22:31:02.0086 1512 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll

22:31:02.0090 1512 defragsvc - ok

22:31:02.0136 1512 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys

22:31:02.0139 1512 DfsC - ok

22:31:02.0160 1512 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll

22:31:02.0164 1512 Dhcp - ok

22:31:02.0176 1512 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys

22:31:02.0177 1512 discache - ok

22:31:02.0210 1512 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys

22:31:02.0211 1512 Disk - ok

22:31:02.0247 1512 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\Windows\System32\dnsrslvr.dll

22:31:02.0249 1512 Dnscache - ok

22:31:02.0282 1512 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll

22:31:02.0285 1512 dot3svc - ok

22:31:02.0321 1512 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll

22:31:02.0323 1512 DPS - ok

22:31:02.0343 1512 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys

22:31:02.0344 1512 drmkaud - ok

22:31:02.0387 1512 [ 23F5D28378A160352BA8F817BD8C71CB ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys

22:31:02.0404 1512 DXGKrnl - ok

22:31:02.0461 1512 [ 16FF05BE2BD95824B487B1476862A84B ] eamonm C:\Windows\system32\DRIVERS\eamonm.sys

22:31:02.0465 1512 eamonm - ok

22:31:02.0477 1512 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll

22:31:02.0479 1512 EapHost - ok

22:31:02.0567 1512 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys

22:31:02.0626 1512 ebdrv - ok

22:31:02.0653 1512 efavdrv - ok

22:31:02.0688 1512 [ 81951F51E318AECC2D68559E47485CC4 ] EFS C:\Windows\System32\lsass.exe

22:31:02.0690 1512 EFS - ok

22:31:02.0728 1512 [ 366369746D1818FDD8589D1F2C8A6D03 ] ehdrv C:\Windows\system32\DRIVERS\ehdrv.sys

22:31:02.0730 1512 ehdrv - ok

22:31:02.0824 1512 [ A8C362018EFC87BEB013EE28F29C0863 ] ehRecvr C:\Windows\ehome\ehRecvr.exe

22:31:02.0843 1512 ehRecvr - ok

22:31:02.0864 1512 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe

22:31:02.0867 1512 ehSched - ok

22:31:02.0956 1512 [ 7FE34FD5652C54BDA8D2DF8AC92E833A ] ekrn C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe

22:31:02.0973 1512 ekrn - ok

22:31:02.0999 1512 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys

22:31:03.0007 1512 elxstor - ok

22:31:03.0046 1512 [ E38CABC8881DBE278BDA5E131CFF74AC ] epfwwfpr C:\Windows\system32\DRIVERS\epfwwfpr.sys

22:31:03.0048 1512 epfwwfpr - ok

22:31:03.0060 1512 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys

22:31:03.0062 1512 ErrDev - ok

22:31:03.0105 1512 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll

22:31:03.0110 1512 EventSystem - ok

22:31:03.0129 1512 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys

22:31:03.0132 1512 exfat - ok

22:31:03.0148 1512 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys

22:31:03.0151 1512 fastfat - ok

22:31:03.0191 1512 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe

22:31:03.0197 1512 Fax - ok

22:31:03.0213 1512 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys

22:31:03.0215 1512 fdc - ok

22:31:03.0229 1512 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll

22:31:03.0231 1512 fdPHost - ok

22:31:03.0244 1512 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll

22:31:03.0246 1512 FDResPub - ok

22:31:03.0283 1512 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys

22:31:03.0285 1512 FileInfo - ok

22:31:03.0303 1512 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys

22:31:03.0305 1512 Filetrace - ok

22:31:03.0322 1512 [ AF9C417C8F6C8BF4411CB601DF318C07 ] flash C:\Windows\system32\drivers\flash.sys

22:31:03.0324 1512 flash - ok

22:31:03.0349 1512 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys

22:31:03.0350 1512 flpydisk - ok

22:31:03.0371 1512 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys

22:31:03.0375 1512 FltMgr - ok

22:31:03.0438 1512 [ E12C4928B32ACE04610259647F072635 ] FontCache C:\Windows\system32\FntCache.dll

22:31:03.0446 1512 FontCache - ok

22:31:03.0498 1512 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe

22:31:03.0499 1512 FontCache3.0.0.0 - ok

22:31:03.0517 1512 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys

22:31:03.0520 1512 FsDepends - ok

22:31:03.0557 1512 [ BFAAA92861526BB0ADCD01E964AB6609 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys

22:31:03.0559 1512 fssfltr - ok

22:31:03.0669 1512 [ 40CDFAD174B3D5E80F95DDA003C0B97F ] fsssvc C:\Program Files\Windows Live\Family Safety\fsssvc.exe

22:31:03.0682 1512 fsssvc - ok

22:31:03.0708 1512 [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys

22:31:03.0710 1512 Fs_Rec - ok

22:31:03.0734 1512 [ 8A73E79089B282100B9393B644CB853B ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys

22:31:03.0736 1512 fvevol - ok

22:31:03.0752 1512 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys

22:31:03.0754 1512 gagp30kx - ok

22:31:03.0819 1512 [ 12E7C620A2E7A42A3AAB0621B9E24F29 ] Garmin Core Update Service C:\Program Files\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe

22:31:03.0821 1512 Garmin Core Update Service - ok

22:31:03.0875 1512 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll

22:31:03.0885 1512 gpsvc - ok

22:31:03.0968 1512 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe

22:31:03.0971 1512 gupdate - ok

22:31:03.0985 1512 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe

22:31:03.0988 1512 gupdatem - ok

22:31:04.0024 1512 [ C1B577B2169900F4CF7190C39F085794 ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

22:31:04.0026 1512 gusvc - ok

22:31:04.0042 1512 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys

22:31:04.0044 1512 hcw85cir - ok

22:31:04.0073 1512 [ A5EF29D5315111C80A5C1ABAD14C8972 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys

22:31:04.0078 1512 HdAudAddService - ok

22:31:04.0110 1512 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys

22:31:04.0111 1512 HDAudBus - ok

22:31:04.0125 1512 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys

22:31:04.0127 1512 HidBatt - ok

22:31:04.0143 1512 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys

22:31:04.0146 1512 HidBth - ok

22:31:04.0165 1512 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys

22:31:04.0167 1512 HidIr - ok

22:31:04.0193 1512 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\system32\hidserv.dll

22:31:04.0195 1512 hidserv - ok

22:31:04.0229 1512 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys

22:31:04.0229 1512 HidUsb - ok

22:31:04.0268 1512 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll

22:31:04.0271 1512 hkmsvc - ok

22:31:04.0308 1512 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll

22:31:04.0311 1512 HomeGroupListener - ok

22:31:04.0351 1512 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll

22:31:04.0355 1512 HomeGroupProvider - ok

22:31:04.0368 1512 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys

22:31:04.0371 1512 HpSAMD - ok

22:31:04.0426 1512 [ 53229DCF431D76434816CD29251168A0 ] HSF_DPV C:\Windows\system32\DRIVERS\HSX_DPV.sys

22:31:04.0451 1512 HSF_DPV - ok

22:31:04.0508 1512 [ 31F949D452201F2F0AF0C88D7DB512CD ] HSXHWAZL C:\Windows\system32\DRIVERS\HSXHWAZL.sys

22:31:04.0511 1512 HSXHWAZL - ok

22:31:04.0556 1512 [ 950CC1E6AE3A6CD23E0945CDE089B02C ] HTCAND32 C:\Windows\system32\Drivers\ANDROIDUSB.sys

22:31:04.0557 1512 HTCAND32 - ok

22:31:04.0605 1512 [ 339ADEFAD60353F960E3CA67CE468C24 ] htcnprot C:\Windows\system32\DRIVERS\htcnprot.sys

22:31:04.0606 1512 htcnprot - ok

22:31:04.0671 1512 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys

22:31:04.0679 1512 HTTP - ok

22:31:04.0698 1512 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys

22:31:04.0699 1512 hwpolicy - ok

22:31:04.0715 1512 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys

22:31:04.0717 1512 i8042prt - ok

22:31:04.0764 1512 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV C:\Windows\system32\drivers\iaStorV.sys

22:31:04.0770 1512 iaStorV - ok

22:31:04.0836 1512 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe

22:31:04.0851 1512 idsvc - ok

22:31:05.0003 1512 [ 9467514EA189475A6E7FDC5D7BDE9D3F ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys

22:31:05.0105 1512 igfx - ok

22:31:05.0131 1512 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys

22:31:05.0132 1512 iirsp - ok

22:31:05.0157 1512 [ F95622F161474511B8D80D6B093AA610 ] IKEEXT C:\Windows\System32\ikeext.dll

22:31:05.0164 1512 IKEEXT - ok

22:31:05.0286 1512 [ 5A4AAD2240CB8B50FFEAEDB2BF747ABD ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys

22:31:05.0363 1512 IntcAzAudAddService - ok

22:31:05.0376 1512 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys

22:31:05.0378 1512 intelide - ok

22:31:05.0390 1512 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys

22:31:05.0392 1512 intelppm - ok

22:31:05.0417 1512 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll

22:31:05.0420 1512 IPBusEnum - ok

22:31:05.0438 1512 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys

22:31:05.0440 1512 IpFilterDriver - ok

22:31:05.0484 1512 [ 58F67245D041FBE7AF88F4EAF79DF0FA ] iphlpsvc C:\Windows\System32\iphlpsvc.dll

22:31:05.0489 1512 iphlpsvc - ok

22:31:05.0506 1512 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys

22:31:05.0509 1512 IPMIDRV - ok

22:31:05.0524 1512 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys

22:31:05.0527 1512 IPNAT - ok

22:31:05.0562 1512 [ 9F7E491FB0BA0F9E370163834FC1FE31 ] irda C:\Windows\system32\DRIVERS\irda.sys

22:31:05.0565 1512 irda - ok

22:31:05.0576 1512 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys

22:31:05.0577 1512 IRENUM - ok

22:31:05.0610 1512 [ 4220D2F03D5C4226D0A1AA4B84025E45 ] Irmon C:\Windows\System32\irmon.dll

22:31:05.0612 1512 Irmon - ok

22:31:05.0627 1512 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys

22:31:05.0629 1512 isapnp - ok

22:31:05.0652 1512 [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys

22:31:05.0657 1512 iScsiPrt - ok

22:31:05.0676 1512 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys

22:31:05.0678 1512 kbdclass - ok

22:31:05.0695 1512 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys

22:31:05.0697 1512 kbdhid - ok

22:31:05.0713 1512 [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso C:\Windows\system32\lsass.exe

22:31:05.0715 1512 KeyIso - ok

22:31:05.0750 1512 [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys

22:31:05.0752 1512 KSecDD - ok

22:31:05.0784 1512 [ 5FE1ABF1AF591A3458C9CF24ED9A4D35 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys

22:31:05.0787 1512 KSecPkg - ok

22:31:05.0810 1512 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll

22:31:05.0815 1512 KtmRm - ok

22:31:05.0881 1512 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\system32\srvsvc.dll

22:31:05.0885 1512 LanmanServer - ok

22:31:05.0920 1512 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll

22:31:05.0924 1512 LanmanWorkstation - ok

22:31:06.0028 1512 [ 7AC2D769C4C29D0C8D58C0FB8528FD82 ] LBTServ C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe

22:31:06.0033 1512 LBTServ - ok

22:31:06.0078 1512 [ 006540C9CDC7E72ADD1435CF778EC674 ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys

22:31:06.0079 1512 LHidFilt - ok

22:31:06.0099 1512 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys

22:31:06.0101 1512 lltdio - ok

22:31:06.0122 1512 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll

22:31:06.0126 1512 lltdsvc - ok

22:31:06.0168 1512 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll

22:31:06.0170 1512 lmhosts - ok

22:31:06.0183 1512 [ 3C5BA4B2E4D1180BF9810963A494799A ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys

22:31:06.0184 1512 LMouFilt - ok

22:31:06.0209 1512 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys

22:31:06.0212 1512 LSI_FC - ok

22:31:06.0228 1512 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys

22:31:06.0230 1512 LSI_SAS - ok

22:31:06.0244 1512 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys

22:31:06.0246 1512 LSI_SAS2 - ok

22:31:06.0265 1512 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys

22:31:06.0268 1512 LSI_SCSI - ok

22:31:06.0309 1512 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys

22:31:06.0311 1512 luafv - ok

22:31:06.0357 1512 [ 629CABB0421668C9D3D402A3C3D77E14 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys

22:31:06.0358 1512 MBAMProtector - ok

22:31:06.0417 1512 [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe

22:31:06.0422 1512 MBAMScheduler - ok

22:31:06.0471 1512 [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

22:31:06.0480 1512 MBAMService - ok

22:31:06.0503 1512 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll

22:31:06.0505 1512 Mcx2Svc - ok

22:31:06.0532 1512 [ 0CEA2D0D3FA284B85ED5B68365114F76 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys

22:31:06.0534 1512 mdmxsdk - ok

22:31:06.0550 1512 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys

22:31:06.0552 1512 megasas - ok

22:31:06.0572 1512 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys

22:31:06.0576 1512 MegaSR - ok

22:31:06.0589 1512 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll

22:31:06.0591 1512 MMCSS - ok

22:31:06.0608 1512 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys

22:31:06.0609 1512 Modem - ok

22:31:06.0654 1512 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys

22:31:06.0655 1512 monitor - ok

22:31:06.0696 1512 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys

22:31:06.0697 1512 mouclass - ok

22:31:06.0709 1512 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys

22:31:06.0711 1512 mouhid - ok

22:31:06.0730 1512 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys

22:31:06.0732 1512 mountmgr - ok

22:31:06.0769 1512 [ 19188A39CC0D93C1FDDEEE129DA9D133 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe

22:31:06.0770 1512 MozillaMaintenance - ok

22:31:06.0796 1512 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\Windows\system32\DRIVERS\mpio.sys

22:31:06.0798 1512 mpio - ok

22:31:06.0830 1512 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys

22:31:06.0832 1512 mpsdrv - ok

22:31:06.0888 1512 [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc C:\Windows\system32\mpssvc.dll

22:31:06.0900 1512 MpsSvc - ok

22:31:06.0926 1512 [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys

22:31:06.0929 1512 MRxDAV - ok

22:31:06.0954 1512 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys

22:31:06.0957 1512 mrxsmb - ok

22:31:07.0009 1512 [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys

22:31:07.0013 1512 mrxsmb10 - ok

22:31:07.0038 1512 [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys

22:31:07.0041 1512 mrxsmb20 - ok

22:31:07.0055 1512 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\Windows\system32\DRIVERS\msahci.sys

22:31:07.0056 1512 msahci - ok

22:31:07.0073 1512 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys

22:31:07.0075 1512 msdsm - ok

22:31:07.0094 1512 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe

22:31:07.0097 1512 MSDTC - ok

22:31:07.0122 1512 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys

22:31:07.0123 1512 Msfs - ok

22:31:07.0137 1512 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys

22:31:07.0139 1512 mshidkmdf - ok

22:31:07.0152 1512 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys

22:31:07.0153 1512 msisadrv - ok

22:31:07.0173 1512 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll

22:31:07.0176 1512 MSiSCSI - ok

22:31:07.0183 1512 msiserver - ok

22:31:07.0206 1512 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys

22:31:07.0207 1512 MSKSSRV - ok

22:31:07.0223 1512 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys

22:31:07.0225 1512 MSPCLOCK - ok

22:31:07.0232 1512 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys

22:31:07.0234 1512 MSPQM - ok

22:31:07.0252 1512 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys

22:31:07.0255 1512 MsRPC - ok

22:31:07.0273 1512 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys

22:31:07.0274 1512 mssmbios - ok

22:31:07.0282 1512 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys

22:31:07.0284 1512 MSTEE - ok

22:31:07.0294 1512 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys

22:31:07.0296 1512 MTConfig - ok

22:31:07.0306 1512 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys

22:31:07.0308 1512 Mup - ok

22:31:07.0351 1512 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll

22:31:07.0357 1512 napagent - ok

22:31:07.0386 1512 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys

22:31:07.0391 1512 NativeWifiP - ok

22:31:07.0431 1512 [ 8C9C922D71F1CD4DEF73F186416B7896 ] NDIS C:\Windows\system32\drivers\ndis.sys

22:31:07.0437 1512 NDIS - ok

22:31:07.0455 1512 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys

22:31:07.0457 1512 NdisCap - ok

22:31:07.0465 1512 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys

22:31:07.0466 1512 NdisTapi - ok

22:31:07.0504 1512 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys

22:31:07.0506 1512 Ndisuio - ok

22:31:07.0526 1512 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys

22:31:07.0529 1512 NdisWan - ok

22:31:07.0569 1512 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys

22:31:07.0571 1512 NDProxy - ok

22:31:07.0583 1512 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys

22:31:07.0585 1512 NetBIOS - ok

22:31:07.0619 1512 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys

22:31:07.0622 1512 NetBT - ok

22:31:07.0638 1512 [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon C:\Windows\system32\lsass.exe

22:31:07.0641 1512 Netlogon - ok

22:31:07.0686 1512 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll

22:31:07.0691 1512 Netman - ok

22:31:07.0741 1512 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe

22:31:07.0743 1512 NetMsmqActivator - ok

22:31:07.0750 1512 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe

22:31:07.0753 1512 NetPipeActivator - ok

22:31:07.0787 1512 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll

22:31:07.0792 1512 netprofm - ok

22:31:07.0801 1512 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe

22:31:07.0804 1512 NetTcpActivator - ok

22:31:07.0812 1512 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe

22:31:07.0815 1512 NetTcpPortSharing - ok

22:31:07.0828 1512 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys

22:31:07.0830 1512 nfrd960 - ok

22:31:07.0876 1512 [ 374071043F9E4231EE43BE2BB48DD36D ] NlaSvc C:\Windows\System32\nlasvc.dll

22:31:07.0880 1512 NlaSvc - ok

22:31:07.0897 1512 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys

22:31:07.0899 1512 Npfs - ok

22:31:07.0942 1512 [ 6D8D2E5652FC2442C810C5D8BE784148 ] NSCIRDA C:\Windows\system32\DRIVERS\nscirda.sys

22:31:07.0944 1512 NSCIRDA - ok

22:31:07.0956 1512 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll

22:31:07.0958 1512 nsi - ok

22:31:07.0967 1512 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys

22:31:07.0969 1512 nsiproxy - ok

22:31:08.0023 1512 [ 0D87503986BB3DFED58E343FE39DDE13 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys

22:31:08.0049 1512 Ntfs - ok

22:31:08.0062 1512 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys

22:31:08.0063 1512 Null - ok

22:31:08.0084 1512 [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid C:\Windows\system32\drivers\nvraid.sys

22:31:08.0085 1512 nvraid - ok

22:31:08.0105 1512 [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor C:\Windows\system32\drivers\nvstor.sys

22:31:08.0107 1512 nvstor - ok

22:31:08.0130 1512 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys

22:31:08.0132 1512 nv_agp - ok

22:31:08.0151 1512 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys

22:31:08.0153 1512 ohci1394 - ok

22:31:08.0227 1512 [ 99BF0B1BCADF83102CBBBEA4D0D22732 ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE

22:31:08.0229 1512 ose - ok

22:31:08.0265 1512 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll

22:31:08.0269 1512 p2pimsvc - ok

22:31:08.0290 1512 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll

22:31:08.0295 1512 p2psvc - ok

22:31:08.0307 1512 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys

22:31:08.0309 1512 Parport - ok

22:31:08.0352 1512 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr C:\Windows\system32\drivers\partmgr.sys

22:31:08.0355 1512 partmgr - ok

22:31:08.0373 1512 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys

22:31:08.0375 1512 Parvdm - ok

22:31:08.0461 1512 [ 39B9DCD7040654C2E57D7396736C718E ] PassThru Service C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe

22:31:08.0462 1512 PassThru Service - ok

22:31:08.0478 1512 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll

22:31:08.0482 1512 PcaSvc - ok

22:31:08.0503 1512 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\Windows\system32\drivers\pci.sys

22:31:08.0506 1512 pci - ok

22:31:08.0522 1512 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\DRIVERS\pciide.sys

22:31:08.0524 1512 pciide - ok

22:31:08.0543 1512 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys

22:31:08.0546 1512 pcmcia - ok

22:31:08.0581 1512 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys

22:31:08.0582 1512 pcw - ok

22:31:08.0606 1512 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys

22:31:08.0615 1512 PEAUTH - ok

22:31:08.0686 1512 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll

22:31:08.0700 1512 pla - ok

22:31:08.0740 1512 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay C:\Windows\system32\umpnpmgr.dll

22:31:08.0746 1512 PlugPlay - ok

22:31:08.0757 1512 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll

22:31:08.0760 1512 PNRPAutoReg - ok

22:31:08.0773 1512 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll

22:31:08.0778 1512 PNRPsvc - ok

22:31:08.0824 1512 [ 896D916DE06F5502D301E8C4DC442AE8 ] Point32 C:\Windows\system32\DRIVERS\point32.sys

22:31:08.0825 1512 Point32 - ok

22:31:08.0848 1512 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll

22:31:08.0853 1512 PolicyAgent - ok

22:31:08.0899 1512 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll

22:31:08.0903 1512 Power - ok

22:31:08.0930 1512 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys

22:31:08.0932 1512 PptpMiniport - ok

22:31:08.0947 1512 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys

22:31:08.0949 1512 Processor - ok

22:31:08.0985 1512 [ CADEFAC453040E370A1BDFF3973BE00D ] ProfSvc C:\Windows\system32\profsvc.dll

22:31:08.0989 1512 ProfSvc - ok

22:31:09.0005 1512 [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe

22:31:09.0007 1512 ProtectedStorage - ok

22:31:09.0045 1512 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys

22:31:09.0047 1512 Psched - ok

22:31:09.0081 1512 [ 1962166E0CEB740704F30FA55AD3D509 ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys

22:31:09.0083 1512 PxHelp20 - ok

22:31:09.0119 1512 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys

22:31:09.0155 1512 ql2300 - ok

22:31:09.0165 1512 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys

22:31:09.0169 1512 ql40xx - ok

22:31:09.0197 1512 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll

22:31:09.0202 1512 QWAVE - ok

22:31:09.0212 1512 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys

22:31:09.0214 1512 QWAVEdrv - ok

22:31:09.0228 1512 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys

22:31:09.0229 1512 RasAcd - ok

22:31:09.0250 1512 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys

22:31:09.0252 1512 RasAgileVpn - ok

22:31:09.0268 1512 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll

22:31:09.0271 1512 RasAuto - ok

22:31:09.0284 1512 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys

22:31:09.0286 1512 Rasl2tp - ok

22:31:09.0331 1512 [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan C:\Windows\System32\rasmans.dll

22:31:09.0335 1512 RasMan - ok

22:31:09.0347 1512 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys

22:31:09.0349 1512 RasPppoe - ok

22:31:09.0364 1512 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys

22:31:09.0366 1512 RasSstp - ok

22:31:09.0389 1512 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys

22:31:09.0394 1512 rdbss - ok

22:31:09.0410 1512 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys

22:31:09.0412 1512 rdpbus - ok

22:31:09.0440 1512 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys

22:31:09.0441 1512 RDPCDD - ok

22:31:09.0455 1512 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys

22:31:09.0456 1512 RDPENCDD - ok

22:31:09.0477 1512 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys

22:31:09.0478 1512 RDPREFMP - ok

22:31:09.0551 1512 [ 65375DF758CA1872AB7EBBBA457FD5E6 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys

22:31:09.0552 1512 RdpVideoMiniport - ok

22:31:09.0589 1512 [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys

22:31:09.0593 1512 RDPWD - ok

22:31:09.0627 1512 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys

22:31:09.0631 1512 rdyboost - ok

22:31:09.0653 1512 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll

22:31:09.0656 1512 RemoteAccess - ok

22:31:09.0677 1512 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll

22:31:09.0681 1512 RemoteRegistry - ok

22:31:09.0714 1512 [ CB928D9E6DAF51879DD6BA8D02F01321 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys

22:31:09.0717 1512 RFCOMM - ok

22:31:09.0756 1512 [ 0F6756EF8BDA6DFA7BE50465C83132BB ] RimUsb C:\Windows\system32\Drivers\RimUsb.sys

22:31:09.0757 1512 RimUsb - ok

22:31:09.0771 1512 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll

22:31:09.0774 1512 RpcEptMapper - ok

22:31:09.0787 1512 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe

22:31:09.0790 1512 RpcLocator - ok

22:31:09.0819 1512 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\Windows\system32\rpcss.dll

22:31:09.0825 1512 RpcSs - ok

22:31:09.0837 1512 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys

22:31:09.0840 1512 rspndr - ok

22:31:09.0877 1512 samhid - ok

22:31:09.0897 1512 [ 81951F51E318AECC2D68559E47485CC4 ] SamSs C:\Windows\system32\lsass.exe

22:31:09.0899 1512 SamSs - ok

22:31:09.0920 1512 [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys

22:31:09.0923 1512 sbp2port - ok

22:31:09.0935 1512 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll

22:31:09.0939 1512 SCardSvr - ok

22:31:09.0956 1512 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys

22:31:09.0958 1512 scfilter - ok

22:31:09.0984 1512 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\Windows\system32\schedsvc.dll

22:31:09.0993 1512 Schedule - ok

22:31:10.0016 1512 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\Windows\System32\certprop.dll

22:31:10.0018 1512 SCPolicySvc - ok

22:31:10.0044 1512 [ 0328BE1C7F1CBA23848179F8762E391C ] sdbus C:\Windows\system32\drivers\sdbus.sys

22:31:10.0046 1512 sdbus - ok

22:31:10.0085 1512 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\Windows\System32\SDRSVC.dll

22:31:10.0089 1512 SDRSVC - ok

22:31:10.0107 1512 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys

22:31:10.0109 1512 secdrv - ok

22:31:10.0119 1512 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll

22:31:10.0121 1512 seclogon - ok

22:31:10.0141 1512 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\System32\sens.dll

22:31:10.0144 1512 SENS - ok

22:31:10.0169 1512 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll

22:31:10.0172 1512 SensrSvc - ok

22:31:10.0194 1512 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys

22:31:10.0196 1512 Serenum - ok

22:31:10.0212 1512 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys

22:31:10.0214 1512 Serial - ok

22:31:10.0229 1512 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys

22:31:10.0231 1512 sermouse - ok

22:31:10.0262 1512 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\Windows\system32\sessenv.dll

22:31:10.0265 1512 SessionEnv - ok

22:31:10.0302 1512 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys

22:31:10.0303 1512 sffdisk - ok

22:31:10.0312 1512 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys

22:31:10.0314 1512 sffp_mmc - ok

22:31:10.0326 1512 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys

22:31:10.0327 1512 sffp_sd - ok

22:31:10.0342 1512 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys

22:31:10.0344 1512 sfloppy - ok

22:31:10.0388 1512 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\Windows\System32\ipnathlp.dll

22:31:10.0393 1512 SharedAccess - ok

22:31:10.0416 1512 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll

22:31:10.0421 1512 ShellHWDetection - ok

22:31:10.0454 1512 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys

22:31:10.0456 1512 sisagp - ok

22:31:10.0473 1512 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys

22:31:10.0475 1512 SiSRaid2 - ok

22:31:10.0500 1512 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys

22:31:10.0502 1512 SiSRaid4 - ok

22:31:10.0524 1512 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys

22:31:10.0527 1512 Smb - ok

22:31:10.0569 1512 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe

22:31:10.0572 1512 SNMPTRAP - ok

22:31:10.0635 1512 [ 0302BC619D4A723317E7F8EB0C362BD3 ] SNP2UVC C:\Windows\system32\DRIVERS\snp2uvc.sys

22:31:10.0651 1512 SNP2UVC - ok

22:31:10.0686 1512 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys

22:31:10.0688 1512 spldr - ok

22:31:10.0730 1512 [ 9AEA093B8F9C37CF45538382CABA2475 ] Spooler C:\Windows\System32\spoolsv.exe

22:31:10.0735 1512 Spooler - ok

22:31:10.0825 1512 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe

22:31:10.0887 1512 sppsvc - ok

22:31:10.0921 1512 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\Windows\system32\sppuinotify.dll

22:31:10.0924 1512 sppuinotify - ok

22:31:10.0974 1512 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv C:\Windows\system32\DRIVERS\srv.sys

22:31:10.0979 1512 srv - ok

22:31:11.0020 1512 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys

22:31:11.0025 1512 srv2 - ok

22:31:11.0054 1512 [ E00FDFAFF025E94F9821153750C35A6D ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL3.SYS

22:31:11.0058 1512 SrvHsfHDA - ok

22:31:11.0095 1512 [ CEB4E3B6890E1E42DCA6694D9E59E1A0 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV3.SYS

22:31:11.0121 1512 SrvHsfV92 - ok

22:31:11.0151 1512 [ BC0C7EA89194C299F051C24119000E17 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT3.SYS

22:31:11.0166 1512 SrvHsfWinac - ok

22:31:11.0197 1512 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys

22:31:11.0213 1512 srvnet - ok

22:31:11.0260 1512 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll

22:31:11.0295 1512 SSDPSRV - ok

22:31:11.0320 1512 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll

22:31:11.0325 1512 SstpSvc - ok

22:31:11.0349 1512 Steam Client Service - ok

22:31:11.0368 1512 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys

22:31:11.0370 1512 stexstor - ok

22:31:11.0405 1512 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll

22:31:11.0414 1512 StiSvc - ok

22:31:11.0431 1512 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\drivers\swenum.sys

22:31:11.0433 1512 swenum - ok

22:31:11.0455 1512 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll

22:31:11.0460 1512 swprv - ok

22:31:11.0501 1512 [ C5F25D490D0915732508FD421BF76D93 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys

22:31:11.0505 1512 SynTP - ok

22:31:11.0552 1512 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\Windows\system32\sysmain.dll

22:31:11.0563 1512 SysMain - ok

22:31:11.0584 1512 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll

22:31:11.0587 1512 TabletInputService - ok

22:31:11.0621 1512 [ 0C3B2A9C4BD2DD9A6C2E4084314DD719 ] taphss C:\Windows\system32\DRIVERS\taphss.sys

22:31:11.0622 1512 taphss - ok

22:31:11.0653 1512 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll

22:31:11.0658 1512 TapiSrv - ok

22:31:11.0671 1512 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll

22:31:11.0674 1512 TBS - ok

22:31:11.0730 1512 [ 7C0507D2391AF5933600CBCED799F277 ] Tcpip C:\Windows\system32\drivers\tcpip.sys

22:31:11.0753 1512 Tcpip - ok

22:31:11.0802 1512 [ 7C0507D2391AF5933600CBCED799F277 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys

22:31:11.0813 1512 TCPIP6 - ok

22:31:11.0868 1512 [ 3EEBD3BD93DA46A26E89893C7AB2FF3B ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys

22:31:11.0871 1512 tcpipreg - ok

22:31:11.0916 1512 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys

22:31:11.0918 1512 TDPIPE - ok

22:31:11.0956 1512 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys

22:31:11.0957 1512 TDTCP - ok

22:31:11.0986 1512 [ B459575348C20E8121D6039DA063C704 ] tdx C:\Windows\system32\DRIVERS\tdx.sys

22:31:11.0989 1512 tdx - ok

22:31:12.0001 1512 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\Windows\system32\drivers\termdd.sys

22:31:12.0003 1512 TermDD - ok

22:31:12.0027 1512 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll

22:31:12.0034 1512 TermService - ok

22:31:12.0071 1512 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll

22:31:12.0074 1512 Themes - ok

22:31:12.0088 1512 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll

22:31:12.0090 1512 THREADORDER - ok

22:31:12.0134 1512 [ 78213F01CE781F93180BEF5EB5B3AD81 ] tifm21 C:\Windows\system32\drivers\tifm21.sys

22:31:12.0137 1512 tifm21 - ok

22:31:12.0171 1512 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll

22:31:12.0174 1512 TrkWks - ok

22:31:12.0233 1512 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe

22:31:12.0235 1512 TrustedInstaller - ok

22:31:12.0254 1512 [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys

22:31:12.0256 1512 tssecsrv - ok

22:31:12.0293 1512 [ 9CE253214ACAA5A7D323327D2055EFAA ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys

22:31:12.0295 1512 TsUsbFlt - ok

22:31:12.0335 1512 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys

22:31:12.0338 1512 tunnel - ok

22:31:12.0364 1512 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys

22:31:12.0366 1512 uagp35 - ok

22:31:12.0404 1512 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys

22:31:12.0408 1512 udfs - ok

22:31:12.0435 1512 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe

22:31:12.0439 1512 UI0Detect - ok

22:31:12.0462 1512 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys

22:31:12.0464 1512 uliagpkx - ok

22:31:12.0483 1512 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\Windows\system32\drivers\umbus.sys

22:31:12.0485 1512 umbus - ok

22:31:12.0507 1512 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys

22:31:12.0509 1512 UmPass - ok

22:31:12.0532 1512 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll

22:31:12.0537 1512 upnphost - ok

22:31:12.0569 1512 [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys

22:31:12.0570 1512 usbccgp - ok

22:31:12.0588 1512 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\drivers\usbcir.sys

22:31:12.0591 1512 usbcir - ok

22:31:12.0641 1512 [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys

22:31:12.0643 1512 usbehci - ok

22:31:12.0658 1512 [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys

22:31:12.0662 1512 usbhub - ok

22:31:12.0676 1512 [ A6FB7957EA7AFB1165991E54CE934B74 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys

22:31:12.0678 1512 usbohci - ok

22:31:12.0689 1512 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys

22:31:12.0691 1512 usbprint - ok

22:31:12.0760 1512 [ 576096CCBC07E7C4EA4F5E6686D6888F ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys

22:31:12.0762 1512 usbscan - ok

22:31:12.0782 1512 [ F991AB9CC6B908DB552166768176896A ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS

22:31:12.0784 1512 USBSTOR - ok

22:31:12.0808 1512 [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys

22:31:12.0809 1512 usbuhci - ok

22:31:12.0827 1512 [ 45F4E7BF43DB40A6C6B4D92C76CBC3F2 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys

22:31:12.0831 1512 usbvideo - ok

22:31:12.0866 1512 [ AF77716205C97E902E6C5B78DECE2CCA ] usb_rndisx C:\Windows\system32\drivers\usb8023x.sys

22:31:12.0867 1512 usb_rndisx - ok

22:31:12.0875 1512 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll

22:31:12.0878 1512 UxSms - ok

22:31:12.0888 1512 [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc C:\Windows\system32\lsass.exe

22:31:12.0890 1512 VaultSvc - ok

22:31:12.0898 1512 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys

22:31:12.0901 1512 vdrvroot - ok

22:31:12.0940 1512 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe

22:31:12.0947 1512 vds - ok

22:31:12.0964 1512 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys

22:31:12.0966 1512 vga - ok

22:31:12.0985 1512 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys

22:31:12.0987 1512 VgaSave - ok

22:31:13.0001 1512 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys

22:31:13.0004 1512 vhdmp - ok

22:31:13.0023 1512 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys

22:31:13.0026 1512 viaagp - ok

22:31:13.0045 1512 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys

22:31:13.0047 1512 ViaC7 - ok

22:31:13.0065 1512 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\DRIVERS\viaide.sys

22:31:13.0067 1512 viaide - ok

22:31:13.0080 1512 [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr C:\Windows\system32\drivers\volmgr.sys

22:31:13.0082 1512 volmgr - ok

22:31:13.0100 1512 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys

22:31:13.0103 1512 volmgrx - ok

22:31:13.0124 1512 [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap C:\Windows\system32\drivers\volsnap.sys

22:31:13.0127 1512 volsnap - ok

22:31:13.0144 1512 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys

22:31:13.0147 1512 vsmraid - ok

22:31:13.0207 1512 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\Windows\system32\vssvc.exe

22:31:13.0218 1512 VSS - ok

22:31:13.0232 1512 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys

22:31:13.0234 1512 vwifibus - ok

22:31:13.0258 1512 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll

22:31:13.0264 1512 W32Time - ok

22:31:13.0285 1512 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys

22:31:13.0287 1512 WacomPen - ok

22:31:13.0323 1512 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys

22:31:13.0325 1512 WANARP - ok

22:31:13.0333 1512 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys

22:31:13.0334 1512 Wanarpv6 - ok

22:31:13.0409 1512 [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe

22:31:13.0427 1512 WatAdminSvc - ok

22:31:13.0469 1512 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\Windows\system32\wbengine.exe

22:31:13.0482 1512 wbengine - ok

22:31:13.0501 1512 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll

22:31:13.0505 1512 WbioSrvc - ok

22:31:13.0552 1512 [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc C:\Windows\System32\wcncsvc.dll

22:31:13.0557 1512 wcncsvc - ok

22:31:13.0575 1512 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll

22:31:13.0578 1512 WcsPlugInService - ok

22:31:13.0596 1512 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys

22:31:13.0598 1512 Wd - ok

22:31:13.0649 1512 [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys

22:31:13.0657 1512 Wdf01000 - ok

22:31:13.0676 1512 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll

22:31:13.0680 1512 WdiServiceHost - ok

22:31:13.0687 1512 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll

22:31:13.0690 1512 WdiSystemHost - ok

22:31:13.0731 1512 [ A9D880F97530D5B8FEE278923349929D ] WebClient C:\Windows\System32\webclnt.dll

22:31:13.0735 1512 WebClient - ok

22:31:13.0747 1512 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll

22:31:13.0751 1512 Wecsvc - ok

22:31:13.0767 1512 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll

22:31:13.0770 1512 wercplsupport - ok

22:31:13.0785 1512 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll

22:31:13.0789 1512 WerSvc - ok

22:31:13.0825 1512 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys

22:31:13.0827 1512 WfpLwf - ok

22:31:13.0842 1512 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys

22:31:13.0844 1512 WIMMount - ok

22:31:13.0876 1512 [ 6D2350BB6E77E800FC4BE4E5B7A2E89A ] winachsf C:\Windows\system32\DRIVERS\HSX_CNXT.sys

22:31:13.0886 1512 winachsf - ok

22:31:13.0929 1512 [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll

22:31:13.0935 1512 WinDefend - ok

22:31:13.0951 1512 WinHttpAutoProxySvc - ok

22:31:14.0012 1512 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll

22:31:14.0014 1512 Winmgmt - ok

22:31:14.0051 1512 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\Windows\system32\WsmSvc.dll

22:31:14.0064 1512 WinRM - ok

22:31:14.0127 1512 [ A67E5F9A400F3BD1BE3D80613B45F708 ] WinUSB C:\Windows\system32\DRIVERS\WinUSB.sys

22:31:14.0129 1512 WinUSB - ok

22:31:14.0195 1512 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll

22:31:14.0212 1512 Wlansvc - ok

22:31:14.0268 1512 [ 6067ACEF367E79914AF628FA1E9B5330 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe

22:31:14.0269 1512 wlcrasvc - ok

22:31:14.0348 1512 [ FB01D4AE207B9EFDBABFC55DC95C7E31 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

22:31:14.0362 1512 wlidsvc - ok

22:31:14.0380 1512 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys

22:31:14.0381 1512 WmiAcpi - ok

22:31:14.0410 1512 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe

22:31:14.0412 1512 wmiApSrv - ok

22:31:14.0469 1512 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe

22:31:14.0480 1512 WMPNetworkSvc - ok

22:31:14.0559 1512 [ 017695393AFFFED8DE58ABD1B085BE6D ] WMZuneComm C:\Program Files\Zune\WMZuneComm.exe

22:31:14.0565 1512 WMZuneComm - ok

22:31:14.0587 1512 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll

22:31:14.0593 1512 WPCSvc - ok

22:31:14.0625 1512 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll

22:31:14.0629 1512 WPDBusEnum - ok

22:31:14.0654 1512 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys

22:31:14.0655 1512 ws2ifsl - ok

22:31:14.0710 1512 [ 4160CBE59D9B5BE22E4C3897E8DB9D56 ] WsAudio_DeviceS(1) C:\Windows\system32\drivers\WsAudio_DeviceS(1).sys

22:31:14.0712 1512 WsAudio_DeviceS(1) - ok

22:31:14.0748 1512 [ 4160CBE59D9B5BE22E4C3897E8DB9D56 ] WsAudio_DeviceS(2) C:\Windows\system32\drivers\WsAudio_DeviceS(2).sys

22:31:14.0750 1512 WsAudio_DeviceS(2) - ok

22:31:14.0798 1512 [ 4160CBE59D9B5BE22E4C3897E8DB9D56 ] WsAudio_DeviceS(3) C:\Windows\system32\drivers\WsAudio_DeviceS(3).sys

22:31:14.0800 1512 WsAudio_DeviceS(3) - ok

22:31:14.0818 1512 [ 4160CBE59D9B5BE22E4C3897E8DB9D56 ] WsAudio_DeviceS(4) C:\Windows\system32\drivers\WsAudio_DeviceS(4).sys

22:31:14.0819 1512 WsAudio_DeviceS(4) - ok

22:31:14.0856 1512 [ 4160CBE59D9B5BE22E4C3897E8DB9D56 ] WsAudio_DeviceS(5) C:\Windows\system32\drivers\WsAudio_DeviceS(5).sys

22:31:14.0857 1512 WsAudio_DeviceS(5) - ok

22:31:14.0871 1512 [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc C:\Windows\system32\wscsvc.dll

22:31:14.0875 1512 wscsvc - ok

22:31:14.0881 1512 WSearch - ok

22:31:14.0960 1512 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll

22:31:14.0979 1512 wuauserv - ok

22:31:15.0031 1512 [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys

22:31:15.0033 1512 WudfPf - ok

22:31:15.0050 1512 [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys

22:31:15.0052 1512 WUDFRd - ok

22:31:15.0099 1512 [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc C:\Windows\System32\WUDFSvc.dll

22:31:15.0103 1512 wudfsvc - ok

22:31:15.0124 1512 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll

22:31:15.0129 1512 WwanSvc - ok

22:31:15.0181 1512 [ 5A7FF9A18FF6D7E0527FE3ABF9204EF8 ] XAudio C:\Windows\system32\DRIVERS\xaudio.sys

22:31:15.0182 1512 XAudio - ok

22:31:15.0203 1512 [ 28DC5D626E036A75A572556F0A6EB1F6 ] XAudioService C:\Windows\system32\DRIVERS\xaudio.exe

22:31:15.0208 1512 XAudioService - ok

22:31:15.0394 1512 [ 1076DF9ADE4E13EA3BF39D2165AEB903 ] ZuneNetworkSvc C:\Program Files\Zune\ZuneNss.exe

22:31:15.0445 1512 ZuneNetworkSvc - ok

22:31:15.0499 1512 [ DE1CDB333A402B279F04D627122FA08E ] ZuneWlanCfgSvc C:\Program Files\Zune\ZuneWlanCfgSvc.exe

22:31:15.0507 1512 ZuneWlanCfgSvc - ok

22:31:15.0562 1512 ================ Scan global ===============================

22:31:15.0601 1512 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll

22:31:15.0637 1512 [ 1F5F07091D50244F17DD8D5147A628CC ] C:\Windows\system32\winsrv.dll

22:31:15.0650 1512 [ 1F5F07091D50244F17DD8D5147A628CC ] C:\Windows\system32\winsrv.dll

22:31:15.0672 1512 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll

22:31:15.0699 1512 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe

22:31:15.0705 1512 [Global] - ok

22:31:15.0705 1512 ================ Scan MBR ==================================

22:31:15.0714 1512 [ 8E734BD7AA1D4F7E9AF58DF495F6CF9E ] \Device\Harddisk0\DR0

22:31:15.0777 1512 \Device\Harddisk0\DR0 - ok

22:31:15.0778 1512 ================ Scan VBR ==================================

22:31:15.0785 1512 [ 2F2E93412B428B43F8AF2D54DE7BD652 ] \Device\Harddisk0\DR0\Partition1

22:31:15.0789 1512 \Device\Harddisk0\DR0\Partition1 - ok

22:31:15.0816 1512 [ D8A5E840FD76712FD76D583963BB3F7F ] \Device\Harddisk0\DR0\Partition2

22:31:15.0818 1512 \Device\Harddisk0\DR0\Partition2 - ok

22:31:15.0819 1512 ============================================================

22:31:15.0819 1512 Scan finished

22:31:15.0819 1512 ============================================================

22:31:15.0838 1104 Detected object count: 0

22:31:15.0838 1104 Actual detected object count: 0

22:32:33.0463 2664 ============================================================

22:32:33.0463 2664 Scan started

22:32:33.0463 2664 Mode: Manual;

[jinman]

TDSSKILLER REPORT (Part 2 of 2):

22:32:33.0463 2664 ============================================================

22:32:33.0775 2664 ================ Scan system memory ========================

22:32:33.0775 2664 System memory - ok

22:32:33.0775 2664 ================ Scan services =============================

22:32:33.0916 2664 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys

22:32:33.0931 2664 1394ohci - ok

22:32:33.0947 2664 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys

22:32:33.0947 2664 ACPI - ok

22:32:33.0962 2664 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys

22:32:33.0962 2664 AcpiPmi - ok

22:32:34.0040 2664 [ EA856F4A46320389D1899B2CAA7BF40F ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

22:32:34.0040 2664 AdobeFlashPlayerUpdateSvc - ok

22:32:34.0087 2664 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys

22:32:34.0087 2664 adp94xx - ok

22:32:34.0103 2664 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys

22:32:34.0103 2664 adpahci - ok

22:32:34.0134 2664 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys

22:32:34.0134 2664 adpu320 - ok

22:32:34.0196 2664 [ 96A0FF09E226B023DC6ACA253AACEE2E ] ADVService C:\Program Files\Amazon\Amazon Unbox Video\ADVWindowsClientService.exe

22:32:34.0196 2664 ADVService - ok

22:32:34.0228 2664 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll

22:32:34.0228 2664 AeLookupSvc - ok

22:32:34.0290 2664 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD C:\Windows\system32\drivers\afd.sys

22:32:34.0290 2664 AFD - ok

22:32:34.0321 2664 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys

22:32:34.0321 2664 agp440 - ok

22:32:34.0337 2664 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys

22:32:34.0337 2664 aic78xx - ok

22:32:34.0352 2664 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe

22:32:34.0352 2664 ALG - ok

22:32:34.0368 2664 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\DRIVERS\aliide.sys

22:32:34.0384 2664 aliide - ok

22:32:34.0399 2664 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys

22:32:34.0399 2664 amdagp - ok

22:32:34.0415 2664 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\DRIVERS\amdide.sys

22:32:34.0415 2664 amdide - ok

22:32:34.0430 2664 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys

22:32:34.0430 2664 AmdK8 - ok

22:32:34.0446 2664 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys

22:32:34.0446 2664 AmdPPM - ok

22:32:34.0477 2664 [ D320BF87125326F996D4904FE24300FC ] amdsata C:\Windows\system32\drivers\amdsata.sys

22:32:34.0493 2664 amdsata - ok

22:32:34.0508 2664 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys

22:32:34.0508 2664 amdsbs - ok

22:32:34.0524 2664 [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata C:\Windows\system32\drivers\amdxata.sys

22:32:34.0524 2664 amdxata - ok

22:32:34.0571 2664 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys

22:32:34.0571 2664 AppID - ok

22:32:34.0586 2664 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll

22:32:34.0586 2664 AppIDSvc - ok

22:32:34.0633 2664 [ FB1959012294D6AD43E5304DF65E3C26 ] Appinfo C:\Windows\System32\appinfo.dll

22:32:34.0633 2664 Appinfo - ok

22:32:34.0649 2664 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys

22:32:34.0664 2664 arc - ok

22:32:34.0680 2664 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys

22:32:34.0680 2664 arcsas - ok

22:32:34.0789 2664 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe

22:32:34.0789 2664 aspnet_state - ok

22:32:34.0805 2664 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys

22:32:34.0805 2664 AsyncMac - ok

22:32:34.0836 2664 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys

22:32:34.0836 2664 atapi - ok

22:32:34.0867 2664 [ 882EDBAFCC227852C9DCA23EA48D2E78 ] AthBTPort C:\Windows\system32\DRIVERS\btath_flt.sys

22:32:34.0883 2664 AthBTPort - ok

22:32:34.0914 2664 [ 99925B8EC4FCCDB3992292FBCB31069E ] ATHDFU C:\Windows\system32\Drivers\AthDfu.sys

22:32:34.0914 2664 ATHDFU - ok

22:32:34.0992 2664 [ D386C3F9EE8504B6EEC0B9712911FAEC ] AtherosSvc C:\Program Files\Bluetooth Suite\adminservice.exe

22:32:34.0992 2664 AtherosSvc - ok

22:32:35.0039 2664 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll

22:32:35.0054 2664 AudioEndpointBuilder - ok

22:32:35.0070 2664 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll

22:32:35.0070 2664 Audiosrv - ok

22:32:35.0086 2664 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\Windows\System32\AxInstSV.dll

22:32:35.0086 2664 AxInstSV - ok

22:32:35.0117 2664 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys

22:32:35.0117 2664 b06bdrv - ok

22:32:35.0164 2664 [ FD49555C8235ABE2C6F22AF62EDB694E ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys

22:32:35.0164 2664 b57nd60x - ok

22:32:35.0179 2664 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll

22:32:35.0179 2664 BDESVC - ok

22:32:35.0195 2664 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys

22:32:35.0195 2664 Beep - ok

22:32:35.0210 2664 [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE C:\Windows\System32\bfe.dll

22:32:35.0226 2664 BFE - ok

22:32:35.0273 2664 [ E585445D5021971FAE10393F0F1C3961 ] BITS C:\Windows\System32\qmgr.dll

22:32:35.0288 2664 BITS - ok

22:32:35.0304 2664 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys

22:32:35.0304 2664 blbdrive - ok

22:32:35.0351 2664 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\Windows\system32\DRIVERS\bowser.sys

22:32:35.0351 2664 bowser - ok

22:32:35.0366 2664 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys

22:32:35.0366 2664 BrFiltLo - ok

22:32:35.0382 2664 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys

22:32:35.0382 2664 BrFiltUp - ok

22:32:35.0413 2664 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser C:\Windows\System32\browser.dll

22:32:35.0413 2664 Browser - ok

22:32:35.0429 2664 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys

22:32:35.0444 2664 Brserid - ok

22:32:35.0460 2664 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys

22:32:35.0460 2664 BrSerWdm - ok

22:32:35.0460 2664 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys

22:32:35.0460 2664 BrUsbMdm - ok

22:32:35.0491 2664 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys

22:32:35.0491 2664 BrUsbSer - ok

22:32:35.0507 2664 [ E5B321F18A1D8B6B8DD397D92BA5946A ] BTATH_A2DP C:\Windows\system32\drivers\btath_a2dp.sys

22:32:35.0507 2664 BTATH_A2DP - ok

22:32:35.0554 2664 [ F60E0C722442EA91F0C253B7814D8192 ] BTATH_BUS C:\Windows\system32\DRIVERS\btath_bus.sys

22:32:35.0554 2664 BTATH_BUS - ok

22:32:35.0569 2664 [ F31E369DB8258B28E3DCF66705AEA9E9 ] BTATH_HCRP C:\Windows\system32\DRIVERS\btath_hcrp.sys

22:32:35.0569 2664 BTATH_HCRP - ok

22:32:35.0600 2664 [ 6651798266FDE23159D961463A63A77D ] BTATH_LWFLT C:\Windows\system32\DRIVERS\btath_lwflt.sys

22:32:35.0600 2664 BTATH_LWFLT - ok

22:32:35.0616 2664 [ 08EF5298DF80BC136523BCD2ED8B9C37 ] BTATH_RCP C:\Windows\system32\DRIVERS\btath_rcp.sys

22:32:35.0632 2664 BTATH_RCP - ok

22:32:35.0663 2664 [ 8F2223374E9FA01A016EAC0E05888D1D ] BtFilter C:\Windows\system32\DRIVERS\btfilter.sys

22:32:35.0663 2664 BtFilter - ok

22:32:35.0710 2664 [ 2865A5C8E98C70C605F417908CEBB3A4 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys

22:32:35.0710 2664 BthEnum - ok

22:32:35.0725 2664 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys

22:32:35.0725 2664 BTHMODEM - ok

22:32:35.0741 2664 [ AD1872E5829E8A2C3B5B4B641C3EAB0E ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys

22:32:35.0741 2664 BthPan - ok

22:32:35.0756 2664 [ 1153DE2E4F5941E10C399CB5592F78A1 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys

22:32:35.0756 2664 BTHPORT - ok

22:32:35.0788 2664 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll

22:32:35.0788 2664 bthserv - ok

22:32:35.0803 2664 [ C81E9413A25A439F436B1D4B6A0CF9E9 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys

22:32:35.0803 2664 BTHUSB - ok

22:32:35.0803 2664 btwaudio - ok

22:32:35.0819 2664 btwavdt - ok

22:32:35.0834 2664 btwl2cap - ok

22:32:35.0834 2664 btwrchid - ok

22:32:35.0866 2664 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys

22:32:35.0866 2664 cdfs - ok

22:32:35.0897 2664 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys

22:32:35.0897 2664 cdrom - ok

22:32:35.0944 2664 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll

22:32:35.0944 2664 CertPropSvc - ok

22:32:35.0959 2664 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys

22:32:35.0959 2664 circlass - ok

22:32:35.0975 2664 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys

22:32:35.0975 2664 CLFS - ok

22:32:36.0022 2664 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

22:32:36.0022 2664 clr_optimization_v2.0.50727_32 - ok

22:32:36.0053 2664 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe

22:32:36.0053 2664 clr_optimization_v4.0.30319_32 - ok

22:32:36.0068 2664 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys

22:32:36.0068 2664 CmBatt - ok

22:32:36.0084 2664 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys

22:32:36.0084 2664 cmdide - ok

22:32:36.0131 2664 [ 42F158036BD4C2FF3122BF142E60E6FD ] CNG C:\Windows\system32\Drivers\cng.sys

22:32:36.0131 2664 CNG - ok

22:32:36.0131 2664 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys

22:32:36.0146 2664 Compbatt - ok

22:32:36.0146 2664 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys

22:32:36.0162 2664 CompositeBus - ok

22:32:36.0162 2664 COMSysApp - ok

22:32:36.0209 2664 [ C2EB4539A4F6AB6EDD01BDC191619975 ] cpuz135 C:\Windows\system32\drivers\cpuz135_x32.sys

22:32:36.0209 2664 cpuz135 - ok

22:32:36.0224 2664 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys

22:32:36.0224 2664 crcdisk - ok

22:32:36.0271 2664 [ 96C0E38905CFD788313BE8E11DAE3F2F ] CryptSvc C:\Windows\system32\cryptsvc.dll

22:32:36.0271 2664 CryptSvc - ok

22:32:36.0318 2664 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll

22:32:36.0334 2664 DcomLaunch - ok

22:32:36.0349 2664 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll

22:32:36.0349 2664 defragsvc - ok

22:32:36.0380 2664 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys

22:32:36.0380 2664 DfsC - ok

22:32:36.0396 2664 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll

22:32:36.0396 2664 Dhcp - ok

22:32:36.0412 2664 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys

22:32:36.0412 2664 discache - ok

22:32:36.0427 2664 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys

22:32:36.0427 2664 Disk - ok

22:32:36.0474 2664 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\Windows\System32\dnsrslvr.dll

22:32:36.0474 2664 Dnscache - ok

22:32:36.0521 2664 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll

22:32:36.0521 2664 dot3svc - ok

22:32:36.0552 2664 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll

22:32:36.0568 2664 DPS - ok

22:32:36.0583 2664 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys

22:32:36.0583 2664 drmkaud - ok

22:32:36.0630 2664 [ 23F5D28378A160352BA8F817BD8C71CB ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys

22:32:36.0646 2664 DXGKrnl - ok

22:32:36.0677 2664 [ 16FF05BE2BD95824B487B1476862A84B ] eamonm C:\Windows\system32\DRIVERS\eamonm.sys

22:32:36.0677 2664 eamonm - ok

22:32:36.0692 2664 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll

22:32:36.0708 2664 EapHost - ok

22:32:36.0770 2664 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys

22:32:36.0802 2664 ebdrv - ok

22:32:36.0817 2664 efavdrv - ok

22:32:36.0864 2664 [ 81951F51E318AECC2D68559E47485CC4 ] EFS C:\Windows\System32\lsass.exe

22:32:36.0864 2664 EFS - ok

22:32:36.0911 2664 [ 366369746D1818FDD8589D1F2C8A6D03 ] ehdrv C:\Windows\system32\DRIVERS\ehdrv.sys

22:32:36.0911 2664 ehdrv - ok

22:32:36.0973 2664 [ A8C362018EFC87BEB013EE28F29C0863 ] ehRecvr C:\Windows\ehome\ehRecvr.exe

22:32:36.0989 2664 ehRecvr - ok

22:32:37.0004 2664 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe

22:32:37.0004 2664 ehSched - ok

22:32:37.0098 2664 [ 7FE34FD5652C54BDA8D2DF8AC92E833A ] ekrn C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe

22:32:37.0129 2664 ekrn - ok

22:32:37.0145 2664 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys

22:32:37.0145 2664 elxstor - ok

22:32:37.0160 2664 [ E38CABC8881DBE278BDA5E131CFF74AC ] epfwwfpr C:\Windows\system32\DRIVERS\epfwwfpr.sys

22:32:37.0176 2664 epfwwfpr - ok

22:32:37.0176 2664 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys

22:32:37.0176 2664 ErrDev - ok

22:32:37.0207 2664 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll

22:32:37.0207 2664 EventSystem - ok

22:32:37.0238 2664 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys

22:32:37.0238 2664 exfat - ok

22:32:37.0254 2664 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys

22:32:37.0254 2664 fastfat - ok

22:32:37.0301 2664 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe

22:32:37.0316 2664 Fax - ok

22:32:37.0332 2664 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys

22:32:37.0332 2664 fdc - ok

22:32:37.0348 2664 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll

22:32:37.0348 2664 fdPHost - ok

22:32:37.0363 2664 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll

22:32:37.0363 2664 FDResPub - ok

22:32:37.0379 2664 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys

22:32:37.0379 2664 FileInfo - ok

22:32:37.0379 2664 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys

22:32:37.0379 2664 Filetrace - ok

22:32:37.0410 2664 [ AF9C417C8F6C8BF4411CB601DF318C07 ] flash C:\Windows\system32\drivers\flash.sys

22:32:37.0410 2664 flash - ok

22:32:37.0441 2664 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys

22:32:37.0441 2664 flpydisk - ok

22:32:37.0457 2664 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys

22:32:37.0457 2664 FltMgr - ok

22:32:37.0519 2664 [ E12C4928B32ACE04610259647F072635 ] FontCache C:\Windows\system32\FntCache.dll

22:32:37.0519 2664 FontCache - ok

22:32:37.0566 2664 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe

22:32:37.0566 2664 FontCache3.0.0.0 - ok

22:32:37.0582 2664 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys

22:32:37.0582 2664 FsDepends - ok

22:32:37.0628 2664 [ BFAAA92861526BB0ADCD01E964AB6609 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys

22:32:37.0628 2664 fssfltr - ok

22:32:37.0738 2664 [ 40CDFAD174B3D5E80F95DDA003C0B97F ] fsssvc C:\Program Files\Windows Live\Family Safety\fsssvc.exe

22:32:37.0753 2664 fsssvc - ok

22:32:37.0784 2664 [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys

22:32:37.0784 2664 Fs_Rec - ok

22:32:37.0816 2664 [ 8A73E79089B282100B9393B644CB853B ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys

22:32:37.0816 2664 fvevol - ok

22:32:37.0831 2664 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys

22:32:37.0831 2664 gagp30kx - ok

22:32:37.0909 2664 [ 12E7C620A2E7A42A3AAB0621B9E24F29 ] Garmin Core Update Service C:\Program Files\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe

22:32:37.0925 2664 Garmin Core Update Service - ok

22:32:37.0972 2664 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll

22:32:37.0987 2664 gpsvc - ok

22:32:38.0050 2664 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe

22:32:38.0065 2664 gupdate - ok

22:32:38.0081 2664 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe

22:32:38.0081 2664 gupdatem - ok

22:32:38.0128 2664 [ C1B577B2169900F4CF7190C39F085794 ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

22:32:38.0128 2664 gusvc - ok

22:32:38.0143 2664 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys

22:32:38.0143 2664 hcw85cir - ok

22:32:38.0190 2664 [ A5EF29D5315111C80A5C1ABAD14C8972 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys

22:32:38.0190 2664 HdAudAddService - ok

22:32:38.0221 2664 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys

22:32:38.0221 2664 HDAudBus - ok

22:32:38.0237 2664 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys

22:32:38.0237 2664 HidBatt - ok

22:32:38.0252 2664 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys

22:32:38.0252 2664 HidBth - ok

22:32:38.0268 2664 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys

22:32:38.0268 2664 HidIr - ok

22:32:38.0299 2664 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\system32\hidserv.dll

22:32:38.0299 2664 hidserv - ok

22:32:38.0315 2664 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys

22:32:38.0315 2664 HidUsb - ok

22:32:38.0362 2664 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll

22:32:38.0362 2664 hkmsvc - ok

22:32:38.0393 2664 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll

22:32:38.0393 2664 HomeGroupListener - ok

22:32:38.0440 2664 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll

22:32:38.0440 2664 HomeGroupProvider - ok

22:32:38.0455 2664 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys

22:32:38.0455 2664 HpSAMD - ok

22:32:38.0502 2664 [ 53229DCF431D76434816CD29251168A0 ] HSF_DPV C:\Windows\system32\DRIVERS\HSX_DPV.sys

22:32:38.0518 2664 HSF_DPV - ok

22:32:38.0549 2664 [ 31F949D452201F2F0AF0C88D7DB512CD ] HSXHWAZL C:\Windows\system32\DRIVERS\HSXHWAZL.sys

22:32:38.0549 2664 HSXHWAZL - ok

22:32:38.0580 2664 [ 950CC1E6AE3A6CD23E0945CDE089B02C ] HTCAND32 C:\Windows\system32\Drivers\ANDROIDUSB.sys

22:32:38.0580 2664 HTCAND32 - ok

22:32:38.0611 2664 [ 339ADEFAD60353F960E3CA67CE468C24 ] htcnprot C:\Windows\system32\DRIVERS\htcnprot.sys

22:32:38.0627 2664 htcnprot - ok

22:32:38.0674 2664 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys

22:32:38.0674 2664 HTTP - ok

22:32:38.0689 2664 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys

22:32:38.0705 2664 hwpolicy - ok

22:32:38.0720 2664 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys

22:32:38.0720 2664 i8042prt - ok

22:32:38.0798 2664 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV C:\Windows\system32\drivers\iaStorV.sys

22:32:38.0814 2664 iaStorV - ok

22:32:38.0892 2664 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe

22:32:38.0908 2664 idsvc - ok

22:32:39.0032 2664 [ 9467514EA189475A6E7FDC5D7BDE9D3F ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys

22:32:39.0064 2664 igfx - ok

22:32:39.0079 2664 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys

22:32:39.0095 2664 iirsp - ok

22:32:39.0110 2664 [ F95622F161474511B8D80D6B093AA610 ] IKEEXT C:\Windows\System32\ikeext.dll

22:32:39.0126 2664 IKEEXT - ok

22:32:39.0235 2664 [ 5A4AAD2240CB8B50FFEAEDB2BF747ABD ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys

22:32:39.0251 2664 IntcAzAudAddService - ok

22:32:39.0266 2664 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys

22:32:39.0266 2664 intelide - ok

22:32:39.0282 2664 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys

22:32:39.0282 2664 intelppm - ok

22:32:39.0313 2664 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll

22:32:39.0313 2664 IPBusEnum - ok

22:32:39.0329 2664 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys

22:32:39.0329 2664 IpFilterDriver - ok

22:32:39.0376 2664 [ 58F67245D041FBE7AF88F4EAF79DF0FA ] iphlpsvc C:\Windows\System32\iphlpsvc.dll

22:32:39.0391 2664 iphlpsvc - ok

22:32:39.0407 2664 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys

22:32:39.0407 2664 IPMIDRV - ok

22:32:39.0422 2664 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys

22:32:39.0422 2664 IPNAT - ok

22:32:39.0438 2664 [ 9F7E491FB0BA0F9E370163834FC1FE31 ] irda C:\Windows\system32\DRIVERS\irda.sys

22:32:39.0438 2664 irda - ok

22:32:39.0454 2664 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys

22:32:39.0454 2664 IRENUM - ok

22:32:39.0469 2664 [ 4220D2F03D5C4226D0A1AA4B84025E45 ] Irmon C:\Windows\System32\irmon.dll

22:32:39.0469 2664 Irmon - ok

22:32:39.0485 2664 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys

22:32:39.0485 2664 isapnp - ok

22:32:39.0516 2664 [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys

22:32:39.0516 2664 iScsiPrt - ok

22:32:39.0532 2664 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys

22:32:39.0532 2664 kbdclass - ok

22:32:39.0547 2664 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys

22:32:39.0547 2664 kbdhid - ok

22:32:39.0563 2664 [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso C:\Windows\system32\lsass.exe

22:32:39.0563 2664 KeyIso - ok

22:32:39.0610 2664 [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys

22:32:39.0610 2664 KSecDD - ok

22:32:39.0625 2664 [ 5FE1ABF1AF591A3458C9CF24ED9A4D35 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys

22:32:39.0625 2664 KSecPkg - ok

22:32:39.0656 2664 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll

22:32:39.0656 2664 KtmRm - ok

22:32:39.0688 2664 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\system32\srvsvc.dll

22:32:39.0703 2664 LanmanServer - ok

22:32:39.0734 2664 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll

22:32:39.0750 2664 LanmanWorkstation - ok

22:32:39.0828 2664 [ 7AC2D769C4C29D0C8D58C0FB8528FD82 ] LBTServ C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe

22:32:39.0844 2664 LBTServ - ok

22:32:39.0890 2664 [ 006540C9CDC7E72ADD1435CF778EC674 ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys

22:32:39.0890 2664 LHidFilt - ok

22:32:39.0906 2664 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys

22:32:39.0906 2664 lltdio - ok

22:32:39.0922 2664 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll

22:32:39.0922 2664 lltdsvc - ok

22:32:39.0953 2664 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll

22:32:39.0953 2664 lmhosts - ok

22:32:39.0968 2664 [ 3C5BA4B2E4D1180BF9810963A494799A ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys

22:32:39.0968 2664 LMouFilt - ok

22:32:39.0984 2664 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys

22:32:39.0984 2664 LSI_FC - ok

22:32:40.0000 2664 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys

22:32:40.0015 2664 LSI_SAS - ok

22:32:40.0031 2664 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys

22:32:40.0031 2664 LSI_SAS2 - ok

22:32:40.0046 2664 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys

22:32:40.0046 2664 LSI_SCSI - ok

22:32:40.0062 2664 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys

22:32:40.0062 2664 luafv - ok

22:32:40.0109 2664 [ 629CABB0421668C9D3D402A3C3D77E14 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys

22:32:40.0109 2664 MBAMProtector - ok

22:32:40.0156 2664 [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe

22:32:40.0156 2664 MBAMScheduler - ok

22:32:40.0218 2664 [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

22:32:40.0234 2664 MBAMService - ok

22:32:40.0265 2664 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll

22:32:40.0265 2664 Mcx2Svc - ok

22:32:40.0296 2664 [ 0CEA2D0D3FA284B85ED5B68365114F76 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys

22:32:40.0296 2664 mdmxsdk - ok

22:32:40.0312 2664 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys

22:32:40.0312 2664 megasas - ok

22:32:40.0327 2664 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys

22:32:40.0343 2664 MegaSR - ok

22:32:40.0358 2664 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll

22:32:40.0358 2664 MMCSS - ok

22:32:40.0374 2664 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys

22:32:40.0374 2664 Modem - ok

22:32:40.0390 2664 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys

22:32:40.0390 2664 monitor - ok

22:32:40.0421 2664 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys

22:32:40.0421 2664 mouclass - ok

22:32:40.0436 2664 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys

22:32:40.0436 2664 mouhid - ok

22:32:40.0452 2664 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys

22:32:40.0452 2664 mountmgr - ok

22:32:40.0499 2664 [ 19188A39CC0D93C1FDDEEE129DA9D133 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe

22:32:40.0499 2664 MozillaMaintenance - ok

22:32:40.0530 2664 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\Windows\system32\DRIVERS\mpio.sys

22:32:40.0530 2664 mpio - ok

22:32:40.0546 2664 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys

22:32:40.0546 2664 mpsdrv - ok

22:32:40.0592 2664 [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc C:\Windows\system32\mpssvc.dll

22:32:40.0592 2664 MpsSvc - ok

22:32:40.0608 2664 [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys

22:32:40.0608 2664 MRxDAV - ok

22:32:40.0639 2664 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys

22:32:40.0639 2664 mrxsmb - ok

22:32:40.0686 2664 [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys

22:32:40.0686 2664 mrxsmb10 - ok

22:32:40.0702 2664 [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys

22:32:40.0702 2664 mrxsmb20 - ok

22:32:40.0717 2664 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\Windows\system32\DRIVERS\msahci.sys

22:32:40.0717 2664 msahci - ok

22:32:40.0733 2664 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys

22:32:40.0733 2664 msdsm - ok

22:32:40.0764 2664 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe

22:32:40.0764 2664 MSDTC - ok

22:32:40.0795 2664 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys

22:32:40.0795 2664 Msfs - ok

22:32:40.0811 2664 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys

22:32:40.0811 2664 mshidkmdf - ok

22:32:40.0826 2664 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys

22:32:40.0826 2664 msisadrv - ok

22:32:40.0858 2664 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll

22:32:40.0858 2664 MSiSCSI - ok

22:32:40.0858 2664 msiserver - ok

22:32:40.0889 2664 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys

22:32:40.0889 2664 MSKSSRV - ok

22:32:40.0904 2664 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys

22:32:40.0904 2664 MSPCLOCK - ok

22:32:40.0904 2664 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys

22:32:40.0920 2664 MSPQM - ok

22:32:40.0936 2664 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys

22:32:40.0936 2664 MsRPC - ok

22:32:40.0951 2664 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys

22:32:40.0951 2664 mssmbios - ok

22:32:40.0967 2664 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys

22:32:40.0967 2664 MSTEE - ok

22:32:40.0967 2664 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys

22:32:40.0967 2664 MTConfig - ok

22:32:40.0982 2664 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys

22:32:40.0982 2664 Mup - ok

22:32:41.0029 2664 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll

22:32:41.0029 2664 napagent - ok

22:32:41.0060 2664 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys

22:32:41.0060 2664 NativeWifiP - ok

22:32:41.0107 2664 [ 8C9C922D71F1CD4DEF73F186416B7896 ] NDIS C:\Windows\system32\drivers\ndis.sys

22:32:41.0123 2664 NDIS - ok

22:32:41.0138 2664 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys

22:32:41.0138 2664 NdisCap - ok

22:32:41.0138 2664 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys

22:32:41.0138 2664 NdisTapi - ok

22:32:41.0185 2664 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys

22:32:41.0185 2664 Ndisuio - ok

22:32:41.0201 2664 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys

22:32:41.0201 2664 NdisWan - ok

22:32:41.0248 2664 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys

22:32:41.0248 2664 NDProxy - ok

22:32:41.0248 2664 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys

22:32:41.0248 2664 NetBIOS - ok

22:32:41.0294 2664 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys

22:32:41.0294 2664 NetBT - ok

22:32:41.0310 2664 [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon C:\Windows\system32\lsass.exe

22:32:41.0326 2664 Netlogon - ok

22:32:41.0341 2664 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll

22:32:41.0357 2664 Netman - ok

22:32:41.0388 2664 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe

22:32:41.0388 2664 NetMsmqActivator - ok

22:32:41.0388 2664 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe

22:32:41.0404 2664 NetPipeActivator - ok

22:32:41.0419 2664 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll

22:32:41.0419 2664 netprofm - ok

22:32:41.0435 2664 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe

22:32:41.0435 2664 NetTcpActivator - ok

22:32:41.0435 2664 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe

22:32:41.0435 2664 NetTcpPortSharing - ok

22:32:41.0450 2664 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys

22:32:41.0450 2664 nfrd960 - ok

22:32:41.0497 2664 [ 374071043F9E4231EE43BE2BB48DD36D ] NlaSvc C:\Windows\System32\nlasvc.dll

22:32:41.0497 2664 NlaSvc - ok

22:32:41.0513 2664 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys

22:32:41.0513 2664 Npfs - ok

22:32:41.0560 2664 [ 6D8D2E5652FC2442C810C5D8BE784148 ] NSCIRDA C:\Windows\system32\DRIVERS\nscirda.sys

22:32:41.0560 2664 NSCIRDA - ok

22:32:41.0591 2664 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll

22:32:41.0591 2664 nsi - ok

22:32:41.0606 2664 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys

22:32:41.0606 2664 nsiproxy - ok

22:32:41.0669 2664 [ 0D87503986BB3DFED58E343FE39DDE13 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys

22:32:41.0684 2664 Ntfs - ok

22:32:41.0700 2664 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys

22:32:41.0700 2664 Null - ok

22:32:41.0716 2664 [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid C:\Windows\system32\drivers\nvraid.sys

22:32:41.0716 2664 nvraid - ok

22:32:41.0747 2664 [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor C:\Windows\system32\drivers\nvstor.sys

22:32:41.0747 2664 nvstor - ok

22:32:41.0778 2664 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys

22:32:41.0778 2664 nv_agp - ok

22:32:41.0794 2664 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys

22:32:41.0794 2664 ohci1394 - ok

22:32:41.0856 2664 [ 99BF0B1BCADF83102CBBBEA4D0D22732 ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE

22:32:41.0856 2664 ose - ok

22:32:41.0872 2664 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll

22:32:41.0887 2664 p2pimsvc - ok

22:32:41.0903 2664 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll

22:32:41.0903 2664 p2psvc - ok

22:32:41.0934 2664 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys

22:32:41.0934 2664 Parport - ok

22:32:41.0965 2664 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr C:\Windows\system32\drivers\partmgr.sys

22:32:41.0981 2664 partmgr - ok

22:32:41.0981 2664 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys

22:32:41.0981 2664 Parvdm - ok

22:32:42.0059 2664 [ 39B9DCD7040654C2E57D7396736C718E ] PassThru Service C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe

22:32:42.0074 2664 PassThru Service - ok

22:32:42.0106 2664 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll

22:32:42.0106 2664 PcaSvc - ok

22:32:42.0137 2664 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\Windows\system32\drivers\pci.sys

22:32:42.0137 2664 pci - ok

22:32:42.0152 2664 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\DRIVERS\pciide.sys

22:32:42.0152 2664 pciide - ok

22:32:42.0168 2664 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys

22:32:42.0168 2664 pcmcia - ok

22:32:42.0199 2664 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys

22:32:42.0199 2664 pcw - ok

22:32:42.0230 2664 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys

22:32:42.0230 2664 PEAUTH - ok

22:32:42.0308 2664 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll

22:32:42.0324 2664 pla - ok

22:32:42.0371 2664 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay C:\Windows\system32\umpnpmgr.dll

22:32:42.0371 2664 PlugPlay - ok

22:32:42.0386 2664 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll

22:32:42.0386 2664 PNRPAutoReg - ok

22:32:42.0402 2664 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll

22:32:42.0402 2664 PNRPsvc - ok

22:32:42.0418 2664 [ 896D916DE06F5502D301E8C4DC442AE8 ] Point32 C:\Windows\system32\DRIVERS\point32.sys

22:32:42.0418 2664 Point32 - ok

22:32:42.0449 2664 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll

22:32:42.0449 2664 PolicyAgent - ok

22:32:42.0496 2664 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll

22:32:42.0496 2664 Power - ok

22:32:42.0511 2664 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys

22:32:42.0527 2664 PptpMiniport - ok

22:32:42.0527 2664 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys

22:32:42.0542 2664 Processor - ok

22:32:42.0574 2664 [ CADEFAC453040E370A1BDFF3973BE00D ] ProfSvc C:\Windows\system32\profsvc.dll

22:32:42.0574 2664 ProfSvc - ok

22:32:42.0589 2664 [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe

22:32:42.0589 2664 ProtectedStorage - ok

22:32:42.0620 2664 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys

22:32:42.0620 2664 Psched - ok

22:32:42.0652 2664 [ 1962166E0CEB740704F30FA55AD3D509 ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys

22:32:42.0652 2664 PxHelp20 - ok

22:32:42.0698 2664 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys

22:32:42.0714 2664 ql2300 - ok

22:32:42.0714 2664 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys

22:32:42.0730 2664 ql40xx - ok

22:32:42.0761 2664 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll

22:32:42.0761 2664 QWAVE - ok

22:32:42.0776 2664 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys

22:32:42.0776 2664 QWAVEdrv - ok

22:32:42.0792 2664 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys

22:32:42.0792 2664 RasAcd - ok

22:32:42.0808 2664 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys

22:32:42.0808 2664 RasAgileVpn - ok

22:32:42.0823 2664 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll

22:32:42.0823 2664 RasAuto - ok

22:32:42.0839 2664 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys

22:32:42.0839 2664 Rasl2tp - ok

22:32:42.0886 2664 [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan C:\Windows\System32\rasmans.dll

22:32:42.0901 2664 RasMan - ok

22:32:42.0917 2664 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys

22:32:42.0917 2664 RasPppoe - ok

22:32:42.0932 2664 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys

22:32:42.0932 2664 RasSstp - ok

22:32:42.0948 2664 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys

22:32:42.0948 2664 rdbss - ok

22:32:42.0964 2664 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys

22:32:42.0964 2664 rdpbus - ok

22:32:43.0010 2664 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys

22:32:43.0010 2664 RDPCDD - ok

22:32:43.0026 2664 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys

22:32:43.0026 2664 RDPENCDD - ok

22:32:43.0042 2664 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys

22:32:43.0042 2664 RDPREFMP - ok

22:32:43.0088 2664 [ 65375DF758CA1872AB7EBBBA457FD5E6 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys

22:32:43.0088 2664 RdpVideoMiniport - ok

22:32:43.0120 2664 [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys

22:32:43.0135 2664 RDPWD - ok

22:32:43.0182 2664 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys

22:32:43.0182 2664 rdyboost - ok

22:32:43.0198 2664 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll

22:32:43.0198 2664 RemoteAccess - ok

22:32:43.0213 2664 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll

22:32:43.0213 2664 RemoteRegistry - ok

22:32:43.0260 2664 [ CB928D9E6DAF51879DD6BA8D02F01321 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys

22:32:43.0260 2664 RFCOMM - ok

22:32:43.0291 2664 [ 0F6756EF8BDA6DFA7BE50465C83132BB ] RimUsb C:\Windows\system32\Drivers\RimUsb.sys

22:32:43.0291 2664 RimUsb - ok

22:32:43.0307 2664 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll

22:32:43.0307 2664 RpcEptMapper - ok

22:32:43.0322 2664 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe

22:32:43.0322 2664 RpcLocator - ok

22:32:43.0354 2664 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\Windows\system32\rpcss.dll

22:32:43.0354 2664 RpcSs - ok

22:32:43.0369 2664 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys

22:32:43.0369 2664 rspndr - ok

22:32:43.0369 2664 samhid - ok

22:32:43.0400 2664 [ 81951F51E318AECC2D68559E47485CC4 ] SamSs C:\Windows\system32\lsass.exe

22:32:43.0400 2664 SamSs - ok

22:32:43.0416 2664 [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys

22:32:43.0416 2664 sbp2port - ok

22:32:43.0432 2664 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll

22:32:43.0432 2664 SCardSvr - ok

22:32:43.0447 2664 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys

22:32:43.0447 2664 scfilter - ok

22:32:43.0478 2664 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\Windows\system32\schedsvc.dll

22:32:43.0478 2664 Schedule - ok

22:32:43.0510 2664 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\Windows\System32\certprop.dll

22:32:43.0510 2664 SCPolicySvc - ok

22:32:43.0525 2664 [ 0328BE1C7F1CBA23848179F8762E391C ] sdbus C:\Windows\system32\drivers\sdbus.sys

22:32:43.0525 2664 sdbus - ok

22:32:43.0572 2664 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\Windows\System32\SDRSVC.dll

22:32:43.0588 2664 SDRSVC - ok

22:32:43.0603 2664 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys

22:32:43.0603 2664 secdrv - ok

22:32:43.0619 2664 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll

22:32:43.0619 2664 seclogon - ok

22:32:43.0634 2664 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\System32\sens.dll

22:32:43.0634 2664 SENS - ok

22:32:43.0650 2664 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll

22:32:43.0666 2664 SensrSvc - ok

22:32:43.0666 2664 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys

22:32:43.0681 2664 Serenum - ok

22:32:43.0697 2664 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys

22:32:43.0697 2664 Serial - ok

22:32:43.0712 2664 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys

22:32:43.0712 2664 sermouse - ok

22:32:43.0744 2664 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\Windows\system32\sessenv.dll

22:32:43.0744 2664 SessionEnv - ok

22:32:43.0759 2664 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys

22:32:43.0759 2664 sffdisk - ok

22:32:43.0759 2664 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys

22:32:43.0775 2664 sffp_mmc - ok

22:32:43.0775 2664 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys

22:32:43.0775 2664 sffp_sd - ok

22:32:43.0790 2664 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys

22:32:43.0790 2664 sfloppy - ok

22:32:43.0822 2664 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\Windows\System32\ipnathlp.dll

22:32:43.0822 2664 SharedAccess - ok

22:32:43.0853 2664 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll

22:32:43.0853 2664 ShellHWDetection - ok

22:32:43.0868 2664 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys

22:32:43.0868 2664 sisagp - ok

22:32:43.0884 2664 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys

22:32:43.0884 2664 SiSRaid2 - ok

22:32:43.0900 2664 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys

22:32:43.0900 2664 SiSRaid4 - ok

22:32:43.0915 2664 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys

22:32:43.0915 2664 Smb - ok

22:32:43.0931 2664 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe

22:32:43.0931 2664 SNMPTRAP - ok

22:32:43.0993 2664 [ 0302BC619D4A723317E7F8EB0C362BD3 ] SNP2UVC C:\Windows\system32\DRIVERS\snp2uvc.sys

22:32:44.0009 2664 SNP2UVC - ok

22:32:44.0024 2664 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys

22:32:44.0024 2664 spldr - ok

22:32:44.0071 2664 [ 9AEA093B8F9C37CF45538382CABA2475 ] Spooler C:\Windows\System32\spoolsv.exe

22:32:44.0071 2664 Spooler - ok

22:32:44.0180 2664 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe

22:32:44.0212 2664 sppsvc - ok

22:32:44.0227 2664 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\Windows\system32\sppuinotify.dll

22:32:44.0227 2664 sppuinotify - ok

22:32:44.0274 2664 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv C:\Windows\system32\DRIVERS\srv.sys

22:32:44.0274 2664 srv - ok

22:32:44.0305 2664 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys

22:32:44.0305 2664 srv2 - ok

22:32:44.0321 2664 [ E00FDFAFF025E94F9821153750C35A6D ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL3.SYS

22:32:44.0321 2664 SrvHsfHDA - ok

22:32:44.0352 2664 [ CEB4E3B6890E1E42DCA6694D9E59E1A0 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV3.SYS

22:32:44.0368 2664 SrvHsfV92 - ok

22:32:44.0399 2664 [ BC0C7EA89194C299F051C24119000E17 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT3.SYS

22:32:44.0399 2664 SrvHsfWinac - ok

22:32:44.0446 2664 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys

22:32:44.0446 2664 srvnet - ok

22:32:44.0461 2664 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll

22:32:44.0461 2664 SSDPSRV - ok

22:32:44.0477 2664 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll

22:32:44.0492 2664 SstpSvc - ok

22:32:44.0508 2664 Steam Client Service - ok

22:32:44.0524 2664 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys

22:32:44.0524 2664 stexstor - ok

22:32:44.0570 2664 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll

22:32:44.0586 2664 StiSvc - ok

22:32:44.0617 2664 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\drivers\swenum.sys

22:32:44.0617 2664 swenum - ok

22:32:44.0633 2664 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll

22:32:44.0633 2664 swprv - ok

22:32:44.0680 2664 [ C5F25D490D0915732508FD421BF76D93 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys

22:32:44.0680 2664 SynTP - ok

22:32:44.0726 2664 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\Windows\system32\sysmain.dll

22:32:44.0742 2664 SysMain - ok

22:32:44.0758 2664 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll

22:32:44.0773 2664 TabletInputService - ok

22:32:44.0804 2664 [ 0C3B2A9C4BD2DD9A6C2E4084314DD719 ] taphss C:\Windows\system32\DRIVERS\taphss.sys

22:32:44.0804 2664 taphss - ok

22:32:44.0836 2664 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll

22:32:44.0851 2664 TapiSrv - ok

22:32:44.0867 2664 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll

22:32:44.0867 2664 TBS - ok

22:32:44.0945 2664 [ 7C0507D2391AF5933600CBCED799F277 ] Tcpip C:\Windows\system32\drivers\tcpip.sys

22:32:44.0960 2664 Tcpip - ok

22:32:44.0992 2664 [ 7C0507D2391AF5933600CBCED799F277 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys

22:32:45.0007 2664 TCPIP6 - ok

22:32:45.0054 2664 [ 3EEBD3BD93DA46A26E89893C7AB2FF3B ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys

22:32:45.0054 2664 tcpipreg - ok

22:32:45.0101 2664 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys

22:32:45.0101 2664 TDPIPE - ok

22:32:45.0132 2664 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys

22:32:45.0132 2664 TDTCP - ok

22:32:45.0148 2664 [ B459575348C20E8121D6039DA063C704 ] tdx C:\Windows\system32\DRIVERS\tdx.sys

22:32:45.0148 2664 tdx - ok

22:32:45.0163 2664 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\Windows\system32\drivers\termdd.sys

22:32:45.0163 2664 TermDD - ok

22:32:45.0194 2664 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll

22:32:45.0194 2664 TermService - ok

22:32:45.0210 2664 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll

22:32:45.0226 2664 Themes - ok

22:32:45.0241 2664 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll

22:32:45.0241 2664 THREADORDER - ok

22:32:45.0272 2664 [ 78213F01CE781F93180BEF5EB5B3AD81 ] tifm21 C:\Windows\system32\drivers\tifm21.sys

22:32:45.0288 2664 tifm21 - ok

22:32:45.0304 2664 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll

22:32:45.0319 2664 TrkWks - ok

22:32:45.0366 2664 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe

22:32:45.0366 2664 TrustedInstaller - ok

22:32:45.0397 2664 [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys

22:32:45.0397 2664 tssecsrv - ok

22:32:45.0428 2664 [ 9CE253214ACAA5A7D323327D2055EFAA ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys

22:32:45.0428 2664 TsUsbFlt - ok

22:32:45.0475 2664 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys

22:32:45.0475 2664 tunnel - ok

22:32:45.0506 2664 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys

22:32:45.0506 2664 uagp35 - ok

22:32:45.0522 2664 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys

22:32:45.0522 2664 udfs - ok

22:32:45.0553 2664 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe

22:32:45.0553 2664 UI0Detect - ok

22:32:45.0569 2664 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys

22:32:45.0569 2664 uliagpkx - ok

22:32:45.0584 2664 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\Windows\system32\drivers\umbus.sys

22:32:45.0584 2664 umbus - ok

22:32:45.0600 2664 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys

22:32:45.0600 2664 UmPass - ok

22:32:45.0616 2664 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll

22:32:45.0631 2664 upnphost - ok

22:32:45.0662 2664 [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys

22:32:45.0662 2664 usbccgp - ok

22:32:45.0678 2664 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\drivers\usbcir.sys

22:32:45.0694 2664 usbcir - ok

22:32:45.0709 2664 [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys

22:32:45.0709 2664 usbehci - ok

22:32:45.0725 2664 [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys

22:32:45.0725 2664 usbhub - ok

22:32:45.0740 2664 [ A6FB7957EA7AFB1165991E54CE934B74 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys

22:32:45.0756 2664 usbohci - ok

22:32:45.0756 2664 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys

22:32:45.0756 2664 usbprint - ok

22:32:45.0803 2664 [ 576096CCBC07E7C4EA4F5E6686D6888F ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys

22:32:45.0803 2664 usbscan - ok

22:32:45.0818 2664 [ F991AB9CC6B908DB552166768176896A ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS

22:32:45.0818 2664 USBSTOR - ok

22:32:45.0850 2664 [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys

22:32:45.0850 2664 usbuhci - ok

22:32:45.0865 2664 [ 45F4E7BF43DB40A6C6B4D92C76CBC3F2 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys

22:32:45.0865 2664 usbvideo - ok

22:32:45.0896 2664 [ AF77716205C97E902E6C5B78DECE2CCA ] usb_rndisx C:\Windows\system32\drivers\usb8023x.sys

22:32:45.0912 2664 usb_rndisx - ok

22:32:45.0928 2664 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll

22:32:45.0928 2664 UxSms - ok

22:32:45.0943 2664 [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc C:\Windows\system32\lsass.exe

22:32:45.0943 2664 VaultSvc - ok

22:32:45.0959 2664 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys

22:32:45.0959 2664 vdrvroot - ok

22:32:45.0990 2664 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe

22:32:46.0006 2664 vds - ok

22:32:46.0021 2664 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys

22:32:46.0021 2664 vga - ok

22:32:46.0037 2664 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys

22:32:46.0037 2664 VgaSave - ok

22:32:46.0052 2664 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys

22:32:46.0052 2664 vhdmp - ok

22:32:46.0068 2664 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys

22:32:46.0068 2664 viaagp - ok

22:32:46.0084 2664 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys

22:32:46.0099 2664 ViaC7 - ok

22:32:46.0115 2664 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\DRIVERS\viaide.sys

22:32:46.0115 2664 viaide - ok

22:32:46.0130 2664 [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr C:\Windows\system32\drivers\volmgr.sys

22:32:46.0130 2664 volmgr - ok

22:32:46.0146 2664 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys

22:32:46.0146 2664 volmgrx - ok

22:32:46.0177 2664 [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap C:\Windows\system32\drivers\volsnap.sys

22:32:46.0177 2664 volsnap - ok

22:32:46.0193 2664 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys

22:32:46.0193 2664 vsmraid - ok

22:32:46.0271 2664 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\Windows\system32\vssvc.exe

22:32:46.0286 2664 VSS - ok

22:32:46.0302 2664 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys

22:32:46.0302 2664 vwifibus - ok

22:32:46.0318 2664 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll

22:32:46.0333 2664 W32Time - ok

22:32:46.0349 2664 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys

22:32:46.0349 2664 WacomPen - ok

22:32:46.0380 2664 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys

22:32:46.0380 2664 WANARP - ok

22:32:46.0396 2664 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys

22:32:46.0396 2664 Wanarpv6 - ok

22:32:46.0474 2664 [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe

22:32:46.0489 2664 WatAdminSvc - ok

22:32:46.0520 2664 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\Windows\system32\wbengine.exe

22:32:46.0536 2664 wbengine - ok

22:32:46.0552 2664 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll

22:32:46.0567 2664 WbioSrvc - ok

22:32:46.0614 2664 [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc C:\Windows\System32\wcncsvc.dll

22:32:46.0614 2664 wcncsvc - ok

22:32:46.0645 2664 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll

22:32:46.0645 2664 WcsPlugInService - ok

22:32:46.0661 2664 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys

22:32:46.0661 2664 Wd - ok

22:32:46.0708 2664 [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys

22:32:46.0708 2664 Wdf01000 - ok

22:32:46.0723 2664 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll

22:32:46.0723 2664 WdiServiceHost - ok

22:32:46.0739 2664 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll

22:32:46.0739 2664 WdiSystemHost - ok

22:32:46.0801 2664 [ A9D880F97530D5B8FEE278923349929D ] WebClient C:\Windows\System32\webclnt.dll

22:32:46.0817 2664 WebClient - ok

22:32:46.0832 2664 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll

22:32:46.0832 2664 Wecsvc - ok

22:32:46.0864 2664 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll

22:32:46.0864 2664 wercplsupport - ok

22:32:46.0879 2664 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll

22:32:46.0879 2664 WerSvc - ok

22:32:46.0895 2664 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys

22:32:46.0895 2664 WfpLwf - ok

22:32:46.0910 2664 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys

22:32:46.0910 2664 WIMMount - ok

22:32:46.0942 2664 [ 6D2350BB6E77E800FC4BE4E5B7A2E89A ] winachsf C:\Windows\system32\DRIVERS\HSX_CNXT.sys

22:32:46.0942 2664 winachsf - ok

22:32:46.0988 2664 [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll

22:32:47.0004 2664 WinDefend - ok

22:32:47.0020 2664 WinHttpAutoProxySvc - ok

22:32:47.0051 2664 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll

22:32:47.0051 2664 Winmgmt - ok

22:32:47.0098 2664 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\Windows\system32\WsmSvc.dll

22:32:47.0113 2664 WinRM - ok

22:32:47.0144 2664 [ A67E5F9A400F3BD1BE3D80613B45F708 ] WinUSB C:\Windows\system32\DRIVERS\WinUSB.sys

22:32:47.0144 2664 WinUSB - ok

22:32:47.0176 2664 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll

22:32:47.0191 2664 Wlansvc - ok

22:32:47.0238 2664 [ 6067ACEF367E79914AF628FA1E9B5330 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe

22:32:47.0238 2664 wlcrasvc - ok

22:32:47.0316 2664 [ FB01D4AE207B9EFDBABFC55DC95C7E31 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

22:32:47.0332 2664 wlidsvc - ok

22:32:47.0363 2664 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys

22:32:47.0363 2664 WmiAcpi - ok

22:32:47.0394 2664 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe

22:32:47.0394 2664 wmiApSrv - ok

22:32:47.0456 2664 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe

22:32:47.0456 2664 WMPNetworkSvc - ok

22:32:47.0534 2664 [ 017695393AFFFED8DE58ABD1B085BE6D ] WMZuneComm C:\Program Files\Zune\WMZuneComm.exe

22:32:47.0534 2664 WMZuneComm - ok

22:32:47.0550 2664 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll

22:32:47.0550 2664 WPCSvc - ok

22:32:47.0581 2664 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll

22:32:47.0597 2664 WPDBusEnum - ok

22:32:47.0612 2664 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys

22:32:47.0612 2664 ws2ifsl - ok

22:32:47.0644 2664 [ 4160CBE59D9B5BE22E4C3897E8DB9D56 ] WsAudio_DeviceS(1) C:\Windows\system32\drivers\WsAudio_DeviceS(1).sys

22:32:47.0644 2664 WsAudio_DeviceS(1) - ok

22:32:47.0659 2664 [ 4160CBE59D9B5BE22E4C3897E8DB9D56 ] WsAudio_DeviceS(2) C:\Windows\system32\drivers\WsAudio_DeviceS(2).sys

22:32:47.0659 2664 WsAudio_DeviceS(2) - ok

22:32:47.0675 2664 [ 4160CBE59D9B5BE22E4C3897E8DB9D56 ] WsAudio_DeviceS(3) C:\Windows\system32\drivers\WsAudio_DeviceS(3).sys

22:32:47.0675 2664 WsAudio_DeviceS(3) - ok

22:32:47.0690 2664 [ 4160CBE59D9B5BE22E4C3897E8DB9D56 ] WsAudio_DeviceS(4) C:\Windows\system32\drivers\WsAudio_DeviceS(4).sys

22:32:47.0706 2664 WsAudio_DeviceS(4) - ok

22:32:47.0737 2664 [ 4160CBE59D9B5BE22E4C3897E8DB9D56 ] WsAudio_DeviceS(5) C:\Windows\system32\drivers\WsAudio_DeviceS(5).sys

22:32:47.0737 2664 WsAudio_DeviceS(5) - ok

22:32:47.0768 2664 [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc C:\Windows\system32\wscsvc.dll

22:32:47.0768 2664 wscsvc - ok

22:32:47.0784 2664 WSearch - ok

22:32:47.0862 2664 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll

22:32:47.0878 2664 wuauserv - ok

22:32:47.0909 2664 [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys

22:32:47.0909 2664 WudfPf - ok

22:32:47.0924 2664 [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys

22:32:47.0924 2664 WUDFRd - ok

22:32:47.0971 2664 [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc C:\Windows\System32\WUDFSvc.dll

22:32:47.0971 2664 wudfsvc - ok

22:32:48.0002 2664 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll

22:32:48.0002 2664 WwanSvc - ok

22:32:48.0049 2664 [ 5A7FF9A18FF6D7E0527FE3ABF9204EF8 ] XAudio C:\Windows\system32\DRIVERS\xaudio.sys

22:32:48.0049 2664 XAudio - ok

22:32:48.0080 2664 [ 28DC5D626E036A75A572556F0A6EB1F6 ] XAudioService C:\Windows\system32\DRIVERS\xaudio.exe

22:32:48.0080 2664 XAudioService - ok

22:32:48.0252 2664 [ 1076DF9ADE4E13EA3BF39D2165AEB903 ] ZuneNetworkSvc C:\Program Files\Zune\ZuneNss.exe

22:32:48.0299 2664 ZuneNetworkSvc - ok

22:32:48.0361 2664 [ DE1CDB333A402B279F04D627122FA08E ] ZuneWlanCfgSvc C:\Program Files\Zune\ZuneWlanCfgSvc.exe

22:32:48.0361 2664 ZuneWlanCfgSvc - ok

22:32:48.0392 2664 ================ Scan global ===============================

22:32:48.0408 2664 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll

22:32:48.0439 2664 [ 1F5F07091D50244F17DD8D5147A628CC ] C:\Windows\system32\winsrv.dll

22:32:48.0455 2664 [ 1F5F07091D50244F17DD8D5147A628CC ] C:\Windows\system32\winsrv.dll

22:32:48.0470 2664 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll

22:32:48.0502 2664 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe

22:32:48.0502 2664 [Global] - ok

22:32:48.0517 2664 ================ Scan MBR ==================================

22:32:48.0517 2664 [ 8E734BD7AA1D4F7E9AF58DF495F6CF9E ] \Device\Harddisk0\DR0

22:32:48.0580 2664 \Device\Harddisk0\DR0 - ok

22:32:48.0580 2664 ================ Scan VBR ==================================

22:32:48.0595 2664 [ 2F2E93412B428B43F8AF2D54DE7BD652 ] \Device\Harddisk0\DR0\Partition1

22:32:48.0595 2664 \Device\Harddisk0\DR0\Partition1 - ok

22:32:48.0611 2664 [ D8A5E840FD76712FD76D583963BB3F7F ] \Device\Harddisk0\DR0\Partition2

22:32:48.0611 2664 \Device\Harddisk0\DR0\Partition2 - ok

22:32:48.0611 2664 ============================================================

22:32:48.0611 2664 Scan finished

22:32:48.0611 2664 ============================================================

22:32:48.0626 2972 Detected object count: 0

22:32:48.0626 2972 Actual detected object count: 0

[jinman]

RogueKiller V8.5.4 [Mar 18 2013] by Tigzy

mail : tigzyRK<at>gmail<dot>com

Feedback : http://www.geekstogo.com/forum/files/file/413-roguekiller/

Website : http://tigzy.geekstogo.com/roguekiller.php

Blog : http://tigzyrk.blogspot.com/

Operating System : Windows 7 (6.1.7601 Service Pack 1) 32 bits version

Started in : Normal mode

User : Acer [Admin rights]

Mode : Scan -- Date : 04/06/2013 22:52:22

| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 2 ¤¤¤

[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND

[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [LOADED] ¤¤¤

¤¤¤ HOSTS File: ¤¤¤

--> C:\Windows\system32\drivers\etc\hosts

127.0.0.1 localhost

¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: WDC WD5000BEKT-00KA9T0 ATA Device +++++

--- User ---

[MBR] 93c943e2de3ee9cbea358e31c0cb6816

[bSP] 5c1b9b76d1eacbe1170798c39b20963d : Linux MBR Code

Partition table:

0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo

1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 238369 Mo

2 - [XXXXXX] EXTEN (0x05) [VISIBLE] Offset (sectors): 488388606 | Size: 238468 Mo

User = LL1 ... OK!

User = LL2 ... OK!

Finished : << RKreport[2]_S_04062013_02d2252.txt >>

RKreport[1]_S_04062013_02d2250.txt ; RKreport[2]_S_04062013_02d2252.txt

[Maurice Naggar]

Continue with the following:

• Close any open documents/programs & all internet browsers you have running.
  
• Please start AdwCleaner
  
• Click on Delete button.
  
• Confirm each time with OK.
  
• Your computer will be rebooted automatically. A text file will open after the restart. Please post the content of that logfile in your reply.
  
• Note: You can find the logfile at C:\AdwCleaner[s1]

Task 2

Download OTL by OldTimer to your desktop: http://oldtimer.geekstogo.com/OTL.exe

• Temporarily disable your antivirus program and close any programs that you started.
  How To Temporarily Disable Your Anti-virus, Firewall And Anti-malware Programs
  Right click the icon and Run as Administrator to start the program.
  
  • Under the Custom Scans/Fixes box at the bottom, paste in the following
    

    
    :Commands
    [purity]
    [emptytemp]
    [EMPTYFLASH]
    [emptyjava]
    [CREATERESTOREPOINT]
    [Reboot]

    
    
    

  • Then click the Run Fix button at the top
    
  • Let the program run unhindered. The task will restart/reboot the system when it is done.
    

  After all is done, review your antivirus setting to insure that real-time protection is ON.

[jinman]

# AdwCleaner v2.200 - Logfile created 04/07/2013 at 13:43:59

# Updated 02/04/2013 by Xplode

# Operating system : Windows 7 Home Premium Service Pack 1 (32 bits)

# User : Acer - ACER35660

# Boot Mode : Normal

# Running from : C:\Users\Acer\Downloads\adwcleaner.exe

# Option [Delete]

***** [services] *****

***** [Files / Folders] *****

Folder Deleted : C:\Users\Acer\AppData\Roaming\Mozilla\Firefox\Profiles\do1f7cm2.default-1361679657372\jetpack

***** [Registry] *****

Key Deleted : HKCU\Software\APN PIP

Key Deleted : HKLM\Software\PIP

***** [internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16470

[OK] Registry is clean.

-\\ Mozilla Firefox v21.0 (en-US)

File : C:\Users\Acer\AppData\Roaming\Mozilla\Firefox\Profiles\do1f7cm2.default-1361679657372\prefs.js

[OK] File is clean.

-\\ Google Chrome v26.0.1410.43

File : C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [1125 octets] - [06/04/2013 22:27:43]

AdwCleaner[s1].txt - [1063 octets] - [07/04/2013 13:43:59]

########## EOF - C:\AdwCleaner[s1].txt - [1123 octets] ##########

[Maurice Naggar]

Good run.

1. Download Malwarebytes Anti-Rootkit from http://www.malwarebytes.org/products/mbar/

2. Unzip the contents to a folder in a convenient location.

3. Open the folder where the contents were unzipped and run mbar.exe

4. Follow the instructions in the wizard to update and allow the program to scan your computer for threats.

5. Click on the Cleanup button to remove any threats and reboot if prompted to do so.

6. Wait while the system shuts down and the cleanup process is performed.

7. Perform another scan with Malwarebytes Anti-Rootkit to verify that no threats remain. If they do, then click Cleanup once more and repeat the process.

[jinman]

Everything was clean. MBAR didn't find anything.

[Maurice Naggar]

That is an excellent result, obviously.

It does not appear that malware is an issue.

Download >> Farbar's Service Scanner utility << and Save to your Desktop.

If using Windows 7 or 8 or Vista, Right-Click on fss.exe and select Run As Administrator.

If using XP, double-click to start.

Answer Yes to ok when prompted.

If your firewall then puts out a prompt, again, allow it to run.

Once FSS is on-screen, be sure the following items are checkmarked:

• Internet Services
  
• Windows Firewall
  
• System Restore
  
• Security Center/Action Center
  
• Windows Update
  
• Windows Defender
  
• Other services
  

Click on "Scan".

It will create a log (FSS.txt) in the same directory the tool is run.

Copy & Paste contents of FSS.txt into your reply.

[jinman]

FSS LOG:

Connection Status:

==============

Localhost is accessible.

LAN connected.

Google IP is accessible.

Google.com is accessible.

Attempt to access Yahoo IP returned error. Yahoo IP is offline

Yahoo.com is accessible.

Windows Firewall:

=============

Firewall Disabled Policy:

==================

System Restore:

============

System Restore Disabled Policy:

========================

Action Center:

============

Windows Update:

============

Windows Autoupdate Disabled Policy:

============================

Windows Defender:

==============

WinDefend Service is not running. Checking service configuration:

The start type of WinDefend service is set to Disabled. The default start type is Auto.

The ImagePath of WinDefend service is OK.

The ServiceDll of WinDefend service is OK.

Windows Defender Disabled Policy:

==========================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]

"DisableAntiSpyware"=DWORD:1

Other Services:

==============

File Check:

========

C:\Windows\system32\nsisvc.dll => MD5 is legit

C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit

C:\Windows\system32\dhcpcore.dll => MD5 is legit

C:\Windows\system32\Drivers\afd.sys => MD5 is legit

C:\Windows\system32\Drivers\tdx.sys => MD5 is legit

C:\Windows\system32\Drivers\tcpip.sys

[2013-02-14 20:24] - [2013-01-03 00:05] - 1293672 ____A (Microsoft Corporation) 7C0507D2391AF5933600CBCED799F277

C:\Windows\system32\dnsrslvr.dll => MD5 is legit

C:\Windows\system32\mpssvc.dll => MD5 is legit

C:\Windows\system32\bfe.dll => MD5 is legit

C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit

C:\Windows\system32\SDRSVC.dll => MD5 is legit

C:\Windows\system32\vssvc.exe => MD5 is legit

C:\Windows\system32\wscsvc.dll => MD5 is legit

C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit

C:\Windows\system32\wuaueng.dll => MD5 is legit

C:\Windows\system32\qmgr.dll => MD5 is legit

C:\Windows\system32\es.dll => MD5 is legit

C:\Windows\system32\cryptsvc.dll => MD5 is legit

C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit

C:\Windows\system32\ipnathlp.dll => MD5 is legit

C:\Windows\system32\iphlpsvc.dll => MD5 is legit

C:\Windows\system32\svchost.exe => MD5 is legit

C:\Windows\system32\rpcss.dll => MD5 is legit

**** End of log ****

[jinman]

The problem I was having that caused me to come here in the first place has come back up again. My computer has froze up twice today. This is the problem that has been sporadic. I ran DDS. Here's an excerpt from the Attach.txt log, please note the events from today. I should also mention that I noted in the Device Manager that there is apparently a driver problem with WAN Miniport (IKEv2). Any thoughts?

4/7/2013 4:27:49 PM, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk1\DR2.

4/7/2013 3:00:09 PM, Error: volsnap [36] - The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.

4/7/2013 10:51:30 PM, Error: Service Control Manager [7001] - The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error: The dependency service or group failed to start.

4/7/2013 10:51:29 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030}

4/7/2013 10:51:29 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

4/7/2013 10:51:29 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netprofm with arguments "" in order to run the server: {A47979D2-C419-11D9-A5B4-001185AD2B89}

4/7/2013 10:51:29 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netman with arguments "" in order to run the server: {BA126AD1-2166-11D1-B1D0-00805FC1270E}

4/7/2013 10:51:28 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}

4/7/2013 10:51:21 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "" in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC}

4/7/2013 10:51:15 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD DfsC discache eamonm ehdrv NetBIOS NetBT nsiproxy Psched rdbss spldr tdx Wanarpv6 WfpLwf

4/7/2013 10:51:15 PM, Error: Service Control Manager [7003] - The Net.Pipe Listener Adapter service depends the following service: was. This service might not be installed.

4/7/2013 10:51:15 PM, Error: Service Control Manager [7003] - The Net.Msmq Listener Adapter service depends the following service: msmq. This service might not be installed.

4/7/2013 10:51:15 PM, Error: Service Control Manager [7001] - The Workstation service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.

4/7/2013 10:51:15 PM, Error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.

4/7/2013 10:51:15 PM, Error: Service Control Manager [7001] - The SMB MiniRedirector Wrapper and Engine service depends on the Redirected Buffering Sub Sysytem service which failed to start because of the following error: A device attached to the system is not functioning.

4/7/2013 10:51:15 PM, Error: Service Control Manager [7001] - The SMB 2.0 MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.

4/7/2013 10:51:15 PM, Error: Service Control Manager [7001] - The SMB 1.x MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.

4/7/2013 10:51:15 PM, Error: Service Control Manager [7001] - The Network Store Interface Service service depends on the NSI proxy service driver. service which failed to start because of the following error: A device attached to the system is not functioning.

4/7/2013 10:51:15 PM, Error: Service Control Manager [7001] - The Network Location Awareness service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.

4/7/2013 10:51:15 PM, Error: Service Control Manager [7001] - The Net.Tcp Listener Adapter service depends on the Net.Tcp Port Sharing Service service which failed to start because of the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

4/7/2013 10:51:15 PM, Error: Service Control Manager [7001] - The IP Helper service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.

4/7/2013 10:51:15 PM, Error: Service Control Manager [7001] - The DNS Client service depends on the NetIO Legacy TDI Support Driver service which failed to start because of the following error: A device attached to the system is not functioning.

4/7/2013 10:51:15 PM, Error: Service Control Manager [7001] - The DHCP Client service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.

4/7/2013 10:48:52 PM, Error: Service Control Manager [7022] - The ESET Service service hung on starting.

[Maurice Naggar]

Tell me, Have you used any sort of 3rd-party tweaker, optimizer, cleaner of any sort? If so, which?

Be aware that 3rd-party registry optimizers, cleaners can often do more harm than good.

Also, tell me if you have on-purpose disabled or turned off any windows services?

Do the following next.

Windows services

This will be a batch-fix .

• Press the Windows-key on keyboard.
  
• In the box, type notepad and press Enter.
  
• Highlight the contents of the following codebox, and copy and paste that text into NOTEPAD.
  

  @Echo off
  sc stop wuauserv
  sc stop bits
  sc config dcomlaunch start= auto
  sc config nsi start= auto
  sc config dhcp start= auto
  sc config rpcss start= auto
  sc config winmgmt start= auto
  sc config wscsvc start= delayed-auto
  sc config bits start= delayed-auto
  sc config wuauserv start= delayed-auto
  sc config sdrsvc start= manual
  sc config vss start= auto
  sc config eventlog start= auto
  sc config bfe start= auto
  sc config eventsystem start= auto
  sc start sdrsvc
  sc start vss
  sc start rpcss
  sc start eventsystem
  sc start bfe
  sc start bits
  sc start wuauserv
  shutdown -r -t 1
  del %0

  
  

• Select File -> Save AS.
  
• Press the Desktop button on the left side of the save dialog.
  
• In the box, type in Fix.bat.
  
• Press .
  
• Close Notepad.
  
• Right click Fix.bat on your desktop, and choose .
  
• Press Yes if prompted by User Account Control.
  

This procedure will do its tasks and then it will Restart Windows.

Then make a new run of DDS to get a new set of logs.

Copy > Paste the new logs into a new reply, and kindly answer my questions from above.

[jinman]

Before I started having trouble, I had been using C-Cleaner. I've noticed on some occasions in the past that programs that I had uninstalled did not remove all of the registry entries. So I was using C-Cleaner to clean those out. However, since I've been browsing around here I have found that's not always a good thing. As far as "tweaking" goes, I did find a program called "Tweaking.com - Windows Repair (All in One)". When my problem started, the errors that I found in the event log seemed to go along with what Windows Repair could take care of.

As a side note, I am also debating if whether or not NOD32 is part of or the culprit for my problem. I have been having some trouble with it. You will notice that in the log that I posted here. I've found on ESET's forum recently that other people are dealing with a situation similar to mine since the 6.0 update.

The only Windows services that I had disabled before corresponding with you are the bluetooth, Garmin services, Adobe Flash, and Steam. And those only because I was trying to ascertain if whether a third party service was the culprit before I disabled NOD32.

[jinman]

The events log on the Attach.txt may seem odd looking on 04/08. To briefly explain, my system has been locking up all night either at the desktop or just prior to getting to that point. I had to go into Safe Mode just so I could use the fix.bat file you instructed me to create. It rebooted just as you said. But when it got to the desktop it locked up again. I ran DDS and found that files related to NOD32 had hung on start up again. So I went back into Safe Mode, disabled ESET Services at the Service tab and NOD32 on the Start Up tab. When I rebooted, everything seems to be running fine. When I got back to the desktop I found that NOD32 files had corrupted. It could not repair itself. So that had to be uninstalled. Here are the logs you requested:

DDS (Ver_2012-11-20.01)

.

Microsoft Windows 7 Home Premium

Boot Device: \Device\HarddiskVolume1

Install Date: 7/30/2011 5:34:09 PM

System Uptime: 4/8/2013 10:42:22 PM (0 hours ago)

.

Motherboard: Acer | | Columbia

Processor: Intel® Pentium® Dual CPU T2370 @ 1.73GHz | U2E1 | 1733/133mhz

.

==== Disk Partitions =========================

.

C: is FIXED (NTFS) - 233 GiB total, 106.521 GiB free.

D: is CDROM ()

.

==== Disabled Device Manager Items =============

.

Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}

Description: WAN Miniport (IKEv2)

Device ID: ROOT\MS_AGILEVPNMINIPORT\0000

Manufacturer: Microsoft

Name: WAN Miniport (IKEv2)

PNP Device ID: ROOT\MS_AGILEVPNMINIPORT\0000

Service: RasAgileVpn

.

==== System Restore Points ===================

.

RP364: 4/7/2013 6:10:23 PM - Scheduled Checkpoint

RP365: 4/7/2013 11:21:25 PM - Windows Update

RP366: 4/8/2013 10:33:48 PM - Windows Update

.

==== Installed Programs ======================

.

7-Zip 9.20

Acer Crystal Eye Webcam 2.0.6

Acer Crystal Eye Webcam Video Class Camera

Adobe AIR

Adobe Flash Player 11 ActiveX

Adobe Flash Player 11 Plugin

Amazon MP3 Downloader 1.0.17

Amazon Unbox Video

Another World 15th Anniversary Edition

ASUS Bluetooth Suite

Audacity 2.0.3

Auslogics Disk Defrag

Avidemux 2.5

Card Games

CCleaner

CPUID CPU-Z 1.58

D3DX10

Elevated Installer

eReg

FlvRecorder

Foxit Reader

Garmin Express

Garmin Express Tray

Garmin Update Service

Garmin USB Drivers

Google Chrome

Google Earth

Google Talk Plugin

Google Update Helper

HDAUDIO Soft Data Fax Modem with SmartCP

HiJackThis

HTC BMP USB Driver

HTC Driver Installer

HTC Sync

Imagic 5

ImgBurn

Indeo® Software

Intel® Graphics Media Accelerator Driver

Intel® Processor ID Utility

Intel® TV Wizard

LibreOffice 3.3 Help Pack (English (United Kingdom))

LibreOffice 4.0.1.2

Logitech SetPoint 6.52

Malwarebytes Anti-Malware version 1.70.0.1100

Mesh Runtime

Microsoft .NET Framework 4 Client Profile

Microsoft .NET Framework 4 Extended

Microsoft Application Error Reporting

Microsoft Office Access Runtime (English) 2007

Microsoft Silverlight

Microsoft SQL Server 2005 Compact Edition [ENU]

Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319

Mozilla Firefox 21.0 (x86 en-US)

Mozilla Maintenance Service

MSVCRT

MSXML 4.0 SP2 (KB954430)

MSXML 4.0 SP2 (KB973688)

MSXML 4.0 SP3 Parser

MSXML 4.0 SP3 Parser (KB2721691)

MSXML 4.0 SP3 Parser (KB2758694)

MSXML 4.0 SP3 Parser (KB973685)

Myst Uru - Complete Chronicles

Paint.NET v3.5.10

PDFCreator

Picasa 3

Portal

realMYST Interactive 3D Edition

Realtek High Definition Audio Driver

Riven The sequel to Myst

Steam

Synaptics Pointing Device Driver

System Ninja version 2.4.1

System Requirements Lab for Intel

Texas Instruments PCIxx21/x515/xx12 drivers.

TIPCI

Trillian

TurboCAD Deluxe 20 32 bit

TurboCAD Deluxe 20 Symbols

Tweaking.com - Windows Repair (All in One)

VLC media player 2.0.5

Windows Driver Package - Garmin (grmnusb) GARMIN Devices (06/03/2009 2.3.0.0)

Windows Live Communications Platform

Windows Live Essentials

Windows Live Family Safety

Windows Live ID Sign-in Assistant

Windows Live Installer

Windows Live Mesh

Windows Live Mesh ActiveX Control for Remote Connections

Windows Live Movie Maker

Windows Live Photo Common

Windows Live Photo Gallery

Windows Live PIMT Platform

Windows Live Remote Client

Windows Live Remote Client Resources

Windows Live Remote Service

Windows Live Remote Service Resources

Windows Live SOXE

Windows Live SOXE Definitions

Windows Live UX Platform

Windows Live UX Platform Language Pack

Windows Live Writer

Windows Live Writer Resources

Windows Mobile Device Updater Component

WinPatrol

WinRAR 4.01 (32-bit)

Zune

Zune Language Pack (CHS)

Zune Language Pack (CHT)

Zune Language Pack (CSY)

Zune Language Pack (DAN)

Zune Language Pack (DEU)

Zune Language Pack (ELL)

Zune Language Pack (ESP)

Zune Language Pack (FIN)

Zune Language Pack (FRA)

Zune Language Pack (HUN)

Zune Language Pack (IND)

Zune Language Pack (ITA)

Zune Language Pack (JPN)

Zune Language Pack (KOR)

Zune Language Pack (MSL)

Zune Language Pack (NLD)

Zune Language Pack (NOR)

Zune Language Pack (PLK)

Zune Language Pack (PTB)

Zune Language Pack (PTG)

Zune Language Pack (RUS)

Zune Language Pack (SVE)

.

==== Event Viewer Messages From Past Week ========

.

4/8/2013 9:40:03 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service MSIServer with arguments "" in order to run the server: {000C101C-0000-0000-C000-000000000046}

4/8/2013 10:43:15 PM, Error: Service Control Manager [7003] - The Net.Pipe Listener Adapter service depends the following service: was. This service might not be installed.

4/8/2013 10:43:15 PM, Error: Service Control Manager [7003] - The Net.Msmq Listener Adapter service depends the following service: msmq. This service might not be installed.

4/8/2013 10:43:15 PM, Error: Service Control Manager [7001] - The Net.Tcp Listener Adapter service depends on the Net.Tcp Port Sharing Service service which failed to start because of the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

4/8/2013 10:16:11 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030}

4/8/2013 10:16:11 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

4/8/2013 10:16:10 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}

4/8/2013 10:16:05 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "" in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC}

4/8/2013 10:15:56 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: discache eamonm ehdrv spldr Wanarpv6

4/8/2013 10:14:05 PM, Error: Service Control Manager [7022] - The ESET Service service hung on starting.

4/8/2013 10:07:39 PM, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk1\DR1.

4/7/2013 4:27:49 PM, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk1\DR2.

4/7/2013 3:00:09 PM, Error: volsnap [36] - The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.

4/7/2013 10:51:30 PM, Error: Service Control Manager [7001] - The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error: The dependency service or group failed to start.

4/7/2013 10:51:29 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netprofm with arguments "" in order to run the server: {A47979D2-C419-11D9-A5B4-001185AD2B89}

4/7/2013 10:51:29 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netman with arguments "" in order to run the server: {BA126AD1-2166-11D1-B1D0-00805FC1270E}

4/7/2013 10:51:15 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD DfsC discache eamonm ehdrv NetBIOS NetBT nsiproxy Psched rdbss spldr tdx Wanarpv6 WfpLwf

4/7/2013 10:51:15 PM, Error: Service Control Manager [7001] - The Workstation service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.

4/7/2013 10:51:15 PM, Error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.

4/7/2013 10:51:15 PM, Error: Service Control Manager [7001] - The SMB MiniRedirector Wrapper and Engine service depends on the Redirected Buffering Sub Sysytem service which failed to start because of the following error: A device attached to the system is not functioning.

4/7/2013 10:51:15 PM, Error: Service Control Manager [7001] - The SMB 2.0 MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.

4/7/2013 10:51:15 PM, Error: Service Control Manager [7001] - The SMB 1.x MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.

4/7/2013 10:51:15 PM, Error: Service Control Manager [7001] - The Network Store Interface Service service depends on the NSI proxy service driver. service which failed to start because of the following error: A device attached to the system is not functioning.

4/7/2013 10:51:15 PM, Error: Service Control Manager [7001] - The Network Location Awareness service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.

4/7/2013 10:51:15 PM, Error: Service Control Manager [7001] - The IP Helper service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.

4/7/2013 10:51:15 PM, Error: Service Control Manager [7001] - The DNS Client service depends on the NetIO Legacy TDI Support Driver service which failed to start because of the following error: A device attached to the system is not functioning.

4/7/2013 10:51:15 PM, Error: Service Control Manager [7001] - The DHCP Client service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.

4/2/2013 9:08:27 PM, Error: Microsoft-Windows-WMPNSS-Service [14332] - Service 'WMPNetworkSvc' did not start correctly because CoCreateInstance(CLSID_UPnPDeviceFinder) encountered error '0x80004005'. Verify that the UPnPHost service is running and that the UPnPHost component of Windows is installed properly.

4/2/2013 9:07:54 PM, Error: volmgr [46] - Crash dump initialization failed!

4/2/2013 8:30:56 PM, Error: Service Control Manager [7030] - The ESET Service service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.

4/2/2013 7:23:21 PM, Error: Microsoft-Windows-WMPNSS-Service [14332] - Service 'WMPNetworkSvc' did not start correctly because CoCreateInstance(CLSID_UPnPDeviceFinder) encountered error '0x80070420'. Verify that the UPnPHost service is running and that the UPnPHost component of Windows is installed properly.

.

==== End Of File ===========================

DDS (Ver_2012-11-20.01) - NTFS_x86

Internet Explorer: 9.0.8112.16470

Run by Acer at 22:44:36 on 2013-04-08

Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.3062.2179 [GMT -5:00]

.

AV: ESET NOD32 Antivirus 6.0 *Disabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}

SP: ESET NOD32 Antivirus 6.0 *Disabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}

.

============== Running Processes ================

.

C:\Windows\system32\wininit.exe

C:\Windows\system32\lsm.exe

C:\Windows\System32\spoolsv.exe

C:\Program Files\Bluetooth Suite\adminservice.exe

C:\Windows\system32\taskhost.exe

C:\Windows\system32\taskeng.exe

C:\Windows\system32\Dwm.exe

C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe

C:\Windows\Explorer.EXE

C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe

C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe

C:\Windows\system32\sppsvc.exe

C:\Program Files\Google\Update\1.3.21.135\GoogleCrashHandler.exe

C:\Windows\system32\vssvc.exe

C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe

C:\Program Files\Synaptics\SynTP\SynTPStart.exe

C:\Program Files\Logitech\SetPointP\SetPoint.exe

C:\Program Files\BillP Studios\WinPatrol\WinPatrol.exe

C:\Windows\system32\SearchIndexer.exe

C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE

C:\Windows\system32\DRIVERS\xaudio.exe

C:\Windows\system32\SearchProtocolHost.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Windows\eHome\EhTray.exe

C:\PROGRAM FILES\HTC\HTC SYNC 3.0\HTCUPCTLOADER.EXE

C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

C:\Windows\system32\conhost.exe

C:\Windows\system32\wbem\WmiPrvSE.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k GPSvcGroup

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Windows\system32\svchost.exe -k imgsvc

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalServicePeerNet

.

============== Pseudo HJT Report ===============

.

uSearch Bar = Preserve

uSearch Page = hxxp://www.google.com

uSearchAssistant = hxxp://www.google.com/ie

uSearchURL,(Default) = hxxp://www.google.com/search?q=%s

mRun: [RtHDVCpl] c:\program files\realtek\audio\hda\RtHDVCpl.exe -s

mRun: [synTPStart] c:\program files\synaptics\syntp\SynTPStart.exe

mRun: [EvtMgr6] c:\program files\logitech\setpointp\SetPoint.exe /launchGaming

mRun: [WinPatrol] c:\program files\billp studios\winpatrol\WinPatrol.exe -expressboot

mPolicies-System: ConsentPromptBehaviorAdmin = dword:5

mPolicies-System: ConsentPromptBehaviorUser = dword:3

mPolicies-System: EnableUIADesktopToggle = dword:0

IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200

IE: {7815BE26-237D-41A8-A98F-F7BD75F71086} - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - c:\program files\bluetooth suite\IEPlugIn.dll

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_05-windows-i586.cab

DPF: {CAFEEFAC-0017-0000-0005-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_05-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_05-windows-i586.cab

TCP: NameServer = 192.168.42.129

TCP: Interfaces\{5950F3F1-F364-444D-85C0-3D7F8BC5EB4E} : DHCPNameServer = 192.168.42.129

TCP: Interfaces\{E8661C1A-5D11-4751-BBA2-8BDCD1B641F0} : DHCPNameServer = 192.168.42.129

Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - c:\program files\windows live\photo gallery\AlbumDownloadProtocolHandler.dll

Notify: igfxcui - igfxdev.dll

Notify: LBTWlgn - c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll

SSODL: WebCheck - <orphaned>

.

================= FIREFOX ===================

.

FF - ProfilePath - c:\users\acer\appdata\roaming\mozilla\firefox\profiles\do1f7cm2.default-1361679657372\

FF - prefs.js: browser.search.selectedEngine - DuckDuckGo

FF - prefs.js: browser.startup.homepage - hxxps://duckduckgo.com/

FF - plugin: c:\program files\amazon\mp3 downloader\npAmazonMP3DownloaderPlugin101721.dll

FF - plugin: c:\program files\foxit software\foxit reader\plugins\npFoxitReaderPlugin.dll

FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll

FF - plugin: c:\program files\google\picasa3\npPicasa3.dll

FF - plugin: c:\program files\google\update\1.3.21.135\npGoogleUpdate3.dll

FF - plugin: c:\program files\microsoft silverlight\5.1.20125.0\npctrlui.dll

FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll

FF - plugin: c:\users\acer\appdata\local\google\update\1.3.21.135\npGoogleUpdate3.dll

FF - plugin: c:\users\acer\appdata\roaming\mozilla\firefox\profiles\do1f7cm2.default-1361679657372\extensions\devicedetection@logitech.com\plugins\npLogitechDeviceDetection.dll

FF - plugin: c:\users\acer\appdata\roaming\mozilla\plugins\npgoogletalk.dll

FF - plugin: c:\users\acer\appdata\roaming\mozilla\plugins\npgtpo3dautoplugin.dll

FF - plugin: c:\users\acer\appdata\roaming\mozilla\plugins\npo1d.dll

FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_6_602_180.dll

FF - ExtSQL: 2013-02-14 19:31; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; c:\users\acer\appdata\roaming\mozilla\firefox\profiles\do1f7cm2.default-1361679657372\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

FF - ExtSQL: 2013-02-23 16:36; jid1-ZAdIEUB7XOzOJw@jetpack; c:\users\acer\appdata\roaming\mozilla\firefox\profiles\do1f7cm2.default-1361679657372\extensions\jid1-ZAdIEUB7XOzOJw@jetpack.xpi

FF - ExtSQL: 2013-02-23 16:42; {d40f5e7b-d2cf-4856-b441-cc613eeffbe3}; c:\users\acer\appdata\roaming\mozilla\firefox\profiles\do1f7cm2.default-1361679657372\extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi

FF - ExtSQL: 2013-02-23 22:21; testpilot@labs.mozilla.com; c:\users\acer\appdata\roaming\mozilla\firefox\profiles\do1f7cm2.default-1361679657372\extensions\testpilot@labs.mozilla.com.xpi

FF - ExtSQL: 2013-02-23 22:28; donottrackplus@abine.com; c:\users\acer\appdata\roaming\mozilla\firefox\profiles\do1f7cm2.default-1361679657372\extensions\donottrackplus@abine.com

FF - ExtSQL: 2013-02-23 22:28; DeviceDetection@logitech.com; c:\users\acer\appdata\roaming\mozilla\firefox\profiles\do1f7cm2.default-1361679657372\extensions\DeviceDetection@logitech.com

FF - ExtSQL: 2013-03-07 19:41; {F003DA68-8256-4b37-A6C4-350FA04494DF}; c:\program files\logitech\setpointp\LogiSmoothFirefoxExt

.

============= SERVICES / DRIVERS ===============

.

R2 AtherosSvc;AtherosSvc;c:\program files\bluetooth suite\AdminService.exe [2011-3-1 72864]

R2 cpuz135;cpuz135;c:\windows\system32\drivers\cpuz135_x32.sys [2011-10-8 21992]

R2 MBAMScheduler;MBAMScheduler;c:\program files\malwarebytes' anti-malware\mbamscheduler.exe [2012-9-11 398184]

R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2012-9-11 682344]

R2 PassThru Service;Internet Pass-Through Service;c:\program files\htc\internet pass-through\PassThruSvr.exe [2011-9-15 88576]

R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2012-6-19 374648]

R3 BTATH_BUS;Atheros Bluetooth Bus;c:\windows\system32\drivers\btath_bus.sys [2011-3-1 24736]

R3 HTCAND32;HTC Device Driver;c:\windows\system32\drivers\ANDROIDUSB.sys [2009-10-26 25088]

R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-7-30 21104]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

S3 AthBTPort;Atheros Virtual Bluetooth Class;c:\windows\system32\drivers\btath_flt.sys [2011-3-1 34976]

S3 ATHDFU;Atheros Valkyrie USB BootROM;c:\windows\system32\drivers\AthDfu.sys [2011-3-1 43680]

S3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys [2011-3-1 259232]

S3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\system32\drivers\btath_hcrp.sys [2011-3-1 175776]

S3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\drivers\btath_lwflt.sys [2011-3-1 49312]

S3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\system32\drivers\btath_rcp.sys [2011-3-1 141088]

S3 BtFilter;BtFilter;c:\windows\system32\drivers\btfilter.sys [2011-3-1 242336]

S3 flash;flash;c:\windows\system32\drivers\flash.sys [2013-3-11 8064]

S3 fssfltr;fssfltr;c:\windows\system32\drivers\fssfltr.sys [2011-10-21 39272]

S3 fsssvc;Windows Live Family Safety Service;c:\program files\windows live\family safety\fsssvc.exe [2011-5-13 1492840]

S3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\drivers\htcnprot.sys [2010-6-23 23040]

S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-10-23 14848]

S3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\drivers\VSTAZL3.SYS [2009-7-13 207360]

S3 SrvHsfV92;SrvHsfV92;c:\windows\system32\drivers\VSTDPV3.SYS [2009-7-13 980992]

S3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\drivers\VSTCNXT3.SYS [2009-7-13 661504]

S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2012-10-23 49664]

S3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\wat\WatAdminSvc.exe [2011-7-30 1343400]

S3 WsAudio_DeviceS(1);WsAudio_DeviceS(1);c:\windows\system32\drivers\WsAudio_DeviceS(1).sys [2012-3-3 25704]

S3 WsAudio_DeviceS(2);WsAudio_DeviceS(2);c:\windows\system32\drivers\WsAudio_DeviceS(2).sys [2012-3-3 25704]

S3 WsAudio_DeviceS(3);WsAudio_DeviceS(3);c:\windows\system32\drivers\WsAudio_DeviceS(3).sys [2012-3-3 25704]

S3 WsAudio_DeviceS(4);WsAudio_DeviceS(4);c:\windows\system32\drivers\WsAudio_DeviceS(4).sys [2012-3-3 25704]

S3 WsAudio_DeviceS(5);WsAudio_DeviceS(5);c:\windows\system32\drivers\WsAudio_DeviceS(5).sys [2012-3-3 25704]

S4 Garmin Core Update Service;Garmin Core Update Service;c:\program files\garmin\core update service\Garmin.Cartography.MapUpdate.CoreService.exe [2013-2-19 185176]

S4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\windows live\mesh\wlcrasvc.exe [2010-9-22 51040]

.

=============== Created Last 30 ================

.

2013-04-07 18:52:54 -------- d-----w- C:\_OTL

2013-04-05 02:42:36 -------- d-----w- c:\program files\Foxit Software

2013-04-05 00:24:06 262552 ----a-w- c:\program files\mozilla firefox\browser\components\browsercomps.dll

2013-04-03 01:41:30 -------- d-----w- c:\programdata\SecTaskMan

2013-03-29 00:27:39 -------- d-----w- c:\windows\system32\catroot2

2013-03-28 23:26:44 -------- d-----w- C:\RegBackup

2013-03-28 23:18:36 -------- d-----w- c:\program files\Tweaking.com

2013-03-28 22:49:49 52224 ----a-w- c:\windows\system32\nlaapi.dll

2013-03-28 22:49:49 499712 ----a-w- c:\windows\system32\iphlpsvc.dll

2013-03-28 22:49:49 35328 ----a-w- c:\windows\system32\drivers\tcpipreg.sys

2013-03-28 22:49:49 242176 ----a-w- c:\windows\system32\nlasvc.dll

2013-03-28 22:49:49 18944 ----a-w- c:\windows\system32\netevent.dll

2013-03-28 22:49:49 175104 ----a-w- c:\windows\system32\netcorehc.dll

2013-03-28 22:49:49 156672 ----a-w- c:\windows\system32\ncsi.dll

2013-03-19 22:54:12 -------- d-----w- c:\program files\IMSIDesign

2013-03-19 22:51:27 -------- d-----w- c:\program files\TurboCAD Deluxe 20.0

2013-03-16 23:27:13 -------- d-----w- c:\windows\System64

2013-03-16 23:26:26 -------- d-----w- c:\program files\LibreOffice 4.0

2013-03-12 22:53:45 6954968 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{7b5e109f-a6c7-4d9c-b3a3-15d9361a020f}\mpengine.dll

2013-03-12 22:53:01 15872 ----a-w- c:\windows\system32\drivers\usb8023x.sys

2013-03-12 22:53:01 15872 ----a-w- c:\windows\system32\drivers\usb8023.sys

2013-03-12 02:39:13 8064 ----a-w- c:\windows\system32\drivers\flash.sys

2013-03-12 02:20:50 -------- d-----w- c:\users\acer\appdata\local\eSupport.com

.

==================== Find3M ====================

.

2013-03-19 22:35:10 73432 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl

2013-03-19 22:35:10 693976 ----a-w- c:\windows\system32\FlashPlayerApp.exe

2013-03-08 01:42:45 16400 ----a-w- c:\windows\system32\drivers\LNonPnP.sys

2013-02-23 22:35:03 861088 ----a-w- c:\windows\system32\npDeployJava1.dll

2013-02-23 22:35:03 782240 ----a-w- c:\windows\system32\deployJava1.dll

2013-02-12 04:48:31 474112 ----a-w- c:\windows\apppatch\AcSpecfc.dll

2013-02-12 04:48:26 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll

2013-02-02 03:38:35 1800704 ----a-w- c:\windows\system32\jscript9.dll

2013-02-02 03:30:32 1427968 ----a-w- c:\windows\system32\inetcpl.cpl

2013-02-02 03:30:21 1129472 ----a-w- c:\windows\system32\wininet.dll

2013-02-02 03:26:47 142848 ----a-w- c:\windows\system32\ieUnatt.exe

2013-02-02 03:26:21 420864 ----a-w- c:\windows\system32\vbscript.dll

2013-02-02 03:23:28 2382848 ----a-w- c:\windows\system32\mshtml.tlb

2013-01-17 07:28:58 232336 ------w- c:\windows\system32\MpSigStub.exe

2013-01-13 21:17:03 9728 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll

2013-01-13 21:17:02 2560 ---ha-w- c:\windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll

2013-01-13 21:16:42 10752 ---ha-w- c:\windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll

2013-01-13 21:12:46 3584 ---ha-w- c:\windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll

2013-01-13 21:11:21 4096 ---ha-w- c:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll

2013-01-13 21:11:08 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll

2013-01-13 21:11:07 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll

2013-01-13 21:11:07 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll

2013-01-13 21:11:07 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll

2013-01-13 20:31:00 1247744 ----a-w- c:\windows\system32\DWrite.dll

2013-01-13 20:30:34 906240 ----a-w- c:\windows\system32\FntCache.dll

2013-01-13 20:22:22 1988096 ----a-w- c:\windows\system32\d3d10warp.dll

2013-01-13 20:20:31 293376 ----a-w- c:\windows\system32\dxgi.dll

2013-01-13 20:09:00 249856 ----a-w- c:\windows\system32\d3d10_1core.dll

2013-01-13 20:08:43 220160 ----a-w- c:\windows\system32\d3d10core.dll

2013-01-13 20:08:35 1504768 ----a-w- c:\windows\system32\d3d11.dll

2013-01-13 19:54:01 604160 ----a-w- c:\windows\system32\d3d10level9.dll

2013-01-13 19:53:58 207872 ----a-w- c:\windows\system32\WindowsCodecsExt.dll

2013-01-13 19:53:14 187392 ----a-w- c:\windows\system32\UIAnimation.dll

2013-01-13 19:48:47 161792 ----a-w- c:\windows\system32\d3d10_1.dll

2013-01-13 19:46:25 1080832 ----a-w- c:\windows\system32\d3d10.dll

2013-01-13 19:43:21 1230336 ----a-w- c:\windows\system32\WindowsCodecs.dll

2013-01-13 19:37:57 3419136 ----a-w- c:\windows\system32\d2d1.dll

2013-01-13 19:02:06 417792 ----a-w- c:\windows\system32\WMPhoto.dll

2013-01-13 18:34:58 364544 ----a-w- c:\windows\system32\XpsGdiConverter.dll

2013-01-13 17:26:42 1158144 ----a-w- c:\windows\system32\XpsPrint.dll

2013-01-11 17:39:42 88576 ----a-w- c:\windows\system32\pdfcmon.dll

.

============= FINISH: 22:45:19.31 ===============

[Maurice Naggar]

Your highest priority is to get a working Eset antivirus. Get with their support and get the latest working version.

While there is no active antivirus running on the system, do not go on the internet.

No websurfing. No online banking or shopping. And turn on the Windows firewall.

IF your Eset license has lapsed, or if Eset was a trial, then consider uninstalling Eset and getting another a-v.

If cost is an issue:

Two good antivirus programs free for non-commercial home use are Avira Free Antivirus and Microsoft Security Essentials

Choose one of them.

Note: You should only have one antivirus installed at a time. Having more than one antivirus program installed at once is likely to cause conflicts and may well decrease your overall protection as well as impairing the performance of your PC.

Here's the first step(s) in switching from one antivirus program to another one. (keeping in mind you're on Windows 7)

1. Download and SAVE the new AV program. Do NOT install just yet.

2. De-install the old program. In your case, see this guide

http://windows.microsoft.com/en-US/windows...hange-a-program

3. Reboot system.

4. Run the install for the new antivirus.

5. Make sure you register with a legitimate email of yours. So you get notified on activation (if needed).

6. Logoff and restart.

7. Bring up your new AV and do an UPDATE run to insure the new program is all up-to-date.

In your case, since ESET has always been considered one of the premiere a-v products, you may want to consider removing it & following that sequence to do a new install of ESET --- providing you get the latest working release from them.

On a separate & parallel track, I'd want to have you check on some windows services, with a special focus on Windows Installer.

Check for missing or disabled Windows services, by doing the following, and post detailed results when done !!

From Start button, (or Win-key +R) and in the searcht-box type in MSCONFIG and press OK or Enter.

On Vista or Windows 7, press Windows-key on keybooard, and type in MSCONFIG

You should see the General tab. Click the General tab. It should have Normal startup selected (in the radio-box=selection)

IF it does not, then you click on Normal startup.

Click on Services tab. To get it's display of services.

Keep a written list of any changes from my list of services below. That way you and I have a reference document.

Look at the bottom line Hide all Microsoft services

IF and only IF its is checkmarked, then un-check it.

the list of servies may be shown in non-alphabetical order, so ....

Look at the heading titled "Service". Click on it as needed so the list is sorted and top of list starts with the "A" services.

You can toggle as needed to get the desired order.

IF any of below services are NOT shown, don't panic & do not stop, just write down the info for me and proceed with the others !

Then using the scroll-bar scroll down the list

Look for Background Intelligent Transfer Service. Is it shown? Is it checked? If not, click on that checkbox to checkmark.

Look for Base Filtering Engine. Is it shown? Is it checked? If not, click on that checkbox to checkmark.

Look for COM+ Event System. Is it shown? Is it checked? If not, click on that checkbox to checkmark.

Look for COM+ System Application. Is it shown? Is it checked? If not, click on that checkbox to checkmark.

Look for Cryptographic Services. Is it shown? Is it checked? If not, click on that checkbox to checkmark.

Look for Ipsec Policy Agent. Is it shown? Is it checked? If not, click on that checkbox to checkmark.

Look for Remote Procedure Call (RPC) Locator. Is it shown ? Is it checked? If not, click on that checkbox to checkmark.

Look for RPC Endpoint Mapper. Is it shown ? Is it checked? If not, click on that checkbox to checkmark.

Look for Windows Firewall. Is it shown ? Is it checked? If not, click on that checkbox to checkmark.

Look for Windows Installer. Is it shown ? Is it checked? If not, click on that checkbox to checkmark.

Look for Windows Management Instrumentation. Is it shown ? Is it checked? If not, click on that checkbox to checkmark.

Look for Windows Update. Is it shown ? Is it checked? If not, click on that checkbox to checkmark.

When done, press the Apply button, and the OK button.

You're likely to be prompted to Restart Windows, do so.

If not prompted, you do a Logoff and Restart of Windows.

Then report back here with details.

If any of the services are not shown, just let me know which.

Edited April 9, 2013 by Maurice Naggar

[jinman]

For the moment, I have NOD32 back up and running. I have been talking with ESET on my problem so hopefully I can get that resolved.

In the meantime, I changed the services to "Normal". Didn't find anything unchecked. All services you listed were there and checked.

[Maurice Naggar]

Let me know the result of the scan.

Let me know how the system is in terms of your original issue.

[Maurice Naggar]

{{{ ping }}} Are you still needing help?

[jinman]

Still needing the assistance. For the moment, I haven't had any freezes. But as sporadic as the problem has been, that could change. As much as I dislike this idea, it's one that I have given consideration to. What's the likelihood that a clean install of Win 7 could take care of these issues?

[Maurice Naggar]

A clean install (ie, wipe/erase/ & new clean Windows install) is the safest thing to do, in the long term.

I would suggest you see this page How to Do a Clean Installation with Windows 7.

Be very aware that doing this procedure would result in the loss of all your personal files and documents stored on the hard drive.

If you wanted to keep those, you'll need to copy them beforehand to Offline media like external USB drive, or cloud storage, or to CD or DVDs.

If you did not get a Windows 7 DVD when you bought this system, check with your manufacturer's support website on the procedure used for a factory restore, and the function key to use on your system to begin that process.

Provide feedback on your decision, and if we can close this case.

[jinman]

I'm going to just format the hard drive and go from there. Thanks for your help with this.