Unable to run most .exe files, specied service does not exist as installed service

Telenochek82 · May 15, 2013

Hello,

I'm having the following problem.

I can run most files in Safe Mode, but when I try to run files in Normal mode it throws an error "the specified service does not exist as an installed service".

This happened after a ZeroAccess infection back in 2012.

DDS logs are attached.

Thank you,

Pavel

Telenochek82 · May 15, 2013

DDS (Ver_2012-11-20.01) - NTFS_x86 NETWORK

Internet Explorer: 9.0.8112.16483 BrowserJavaVersion: 1.6.0_31

Run by Pavel at 16:22:10 on 2013-05-15

Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.3582.3098 [GMT -7:00]

.

============== Running Processes ================

.

C:\Windows\system32\wininit.exe

C:\Windows\system32\lsm.exe

C:\Windows\Explorer.EXE

C:\Windows\system32\ctfmon.exe

C:\Windows\system32\conhost.exe

C:\Windows\system32\wbem\WmiPrvSE.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

.

============== Pseudo HJT Report ===============

.

uStart Page = hxxps://www.google.com/

uProxyOverride = <local>

uURLSearchHooks: IObit Apps Toolbar: {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - c:\program files\iobit apps toolbar\ie\7.0\iobitappsToolbarIE.dll

uURLSearchHooks: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - <orphaned>

dURLSearchHooks: IObit Apps Toolbar: {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - c:\program files\iobit apps toolbar\ie\7.0\iobitappsToolbarIE.dll

BHO: IObit Apps Toolbar: {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - c:\program files\iobit apps toolbar\ie\7.0\iobitappsToolbarIE.dll

BHO: FGCatchUrl: {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - c:\program files\flashget\jccatch.dll

BHO: DivX Plus Web Player HTML5 <video>: {326E768D-4182-46FD-9C16-1449A49795F4} - c:\program files\divx\divx plus web player\ie\divxhtml5\DivXHTML5.dll

BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll

BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre6\bin\ssv.dll

BHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll

BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - c:\program files\microsoft office\office14\URLREDIR.DLL

BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre6\bin\jp2ssv.dll

BHO: FlashGet GetFlash Class: {F156768E-81EF-470C-9057-481BA8380DBA} - c:\program files\flashget\getflash.dll

TB: IObit Apps Toolbar: {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - c:\program files\iobit apps toolbar\ie\7.0\iobitappsToolbarIE.dll

uRun: [Akamai NetSession Interface] "c:\users\pavel\appdata\local\akamai\netsession_win.exe"

uRun: [Advanced SystemCare 6] "c:\program files\iobit\advanced systemcare 6\ASCTray.exe" /AutoStart

uRun: [skype] "c:\program files\skype\phone\Skype.exe" /minimized /regrun

mRun: [RtHDVCpl] c:\program files\realtek\audio\hda\RtHDVCpl.exe -s

mRun: [LifeCam] "c:\program files\microsoft lifecam\LifeExp.exe"

mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime

mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"

mRun: [searchSettings] "c:\program files\common files\spigot\search settings\SearchSettings.exe"

mRunOnce: [GrpConv] grpconv -o

mRunOnce: [OTL] "c:\users\pavel\desktop\new_installs\zero_access\2013\OTL.exe"

dRun: [Advanced SystemCare 6] "c:\program files\iobit\advanced systemcare 6\ASCTray.exe" /AutoStart

StartupFolder: c:\users\pavel\appdata\roaming\micros~1\windows\startm~1\programs\startup\autoho~1.lnk - c:\program files\autohotkey\AutoHotkey.exe

StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\google~1.lnk - c:\program files\google\google calendar sync\GoogleCalendarSync.exe

StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\intuit~1.lnk - c:\program files\common files\intuit\dataprotect\IntuitDataProtect.exe

StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\quickb~2.lnk - c:\program files\common files\intuit\quickbooks\qbupdate\qbupdate.exe

StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\quickb~1.lnk - c:\program files\intuit\quickbooks 2011\QBW32.EXE

uPolicies-Explorer: NoDriveTypeAutoRun = dword:145

uPolicies-Explorer: NoDrives = dword:0

mPolicies-Explorer: HideSCAHealth = dword:1

mPolicies-Explorer: NoDrives = dword:0

mPolicies-System: ConsentPromptBehaviorUser = dword:3

mPolicies-System: EnableUIADesktopToggle = dword:0

mPolicies-System: PromptOnSecureDesktop = dword:0

IE: &Download All with FlashGet - c:\program files\flashget\jc_all.htm

IE: &Download with FlashGet - c:\program files\flashget\jc_link.htm

IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office14\EXCEL.EXE/3000

IE: Se&nd to OneNote - c:\progra~1\micros~3\office14\ONBttnIE.dll/105

IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office14\ONBttnIE.dll

IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - c:\program files\microsoft office\office14\ONBttnIELinkedNotes.dll

IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}

IE: {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - c:\program files\flashget\FlashGet.exe

Trusted Zone: internet

Trusted Zone: mcafee.com

DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

TCP: NameServer = 192.168.0.1

TCP: Interfaces\{02131942-BD17-406C-944A-B0926671F803} : DHCPNameServer = 192.168.0.1

Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\program files\common files\microsoft shared\office14\MSOXMLMF.DLL

Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll

Handler: intu-help-qb4 - {ACE22922-D07C-4860-B51B-8CF472FEC2CB} - c:\program files\intuit\quickbooks 2011\HelpAsyncPluggableProtocol.dll

Handler: qbwc - {FC598A64-626C-4447-85B8-53150405FD57} -

Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll

Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll

SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll

mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\26.0.1410.64\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome

.

================= FIREFOX ===================

.

FF - ProfilePath - c:\users\pavel\appdata\roaming\mozilla\firefox\profiles\j7o4iz70.default\

FF - prefs.js: browser.search.selectedEngine - Yahoo

FF - prefs.js: browser.startup.homepage - hxxps://www.google.com/

FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=198484&p=

FF - prefs.js: network.proxy.type - 4

FF - plugin: c:\progra~1\micros~3\office14\NPAUTHZ.DLL

FF - plugin: c:\progra~1\micros~3\office14\NPSPWRAP.DLL

FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll

FF - plugin: c:\program files\divx\divx ovs helper\npovshelper.dll

FF - plugin: c:\program files\divx\divx plus web player\npdivx32.dll

FF - plugin: c:\program files\google\update\1.3.21.145\npGoogleUpdate3.dll

FF - plugin: c:\program files\java\jre6\bin\plugin2\npdeployJava1.dll

FF - plugin: c:\program files\java\jre6\bin\plugin2\npjp2.dll

FF - plugin: c:\program files\microsoft silverlight\5.1.20125.0\npctrlui.dll

FF - plugin: c:\program files\mozilla firefox\plugins\npatgpc.dll

FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll

FF - plugin: c:\program files\mozilla firefox\plugins\NPLV82Win32.dll

FF - plugin: c:\program files\mozilla firefox\plugins\nplv86win32.dll

FF - plugin: c:\program files\nvidia corporation\3d vision\npnv3dv.dll

FF - plugin: c:\program files\nvidia corporation\3d vision\npnv3dvstreaming.dll

FF - plugin: c:\users\pavel\appdata\roaming\mozilla\firefox\profiles\j7o4iz70.default\extensions\{195a3098-0bd5-4e90-ae22-ba1c540afd1e}\plugins\npGarmin.dll

FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_7_700_202.dll

FF - plugin: c:\windows\system32\wat\npWatWeb.dll

FF - ExtSQL: 2013-04-02 03:19; {82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}; c:\program files\mozilla firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}

.

============= SERVICES / DRIVERS ===============

.

R0 tdrpman258;Acronis Try&Decide and Restore Points filter (build 258);c:\windows\system32\drivers\tdrpm258.sys [2010-6-12 911680]

R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\drivers\Rt86win7.sys [2012-6-13 490088]

S0 nipbcfk;National Instruments Class Upper Filter Driver;c:\windows\system32\drivers\nipbcfk.sys [2009-7-7 15448]

S1 MOBKFilter;MOBKFilter;c:\windows\system32\drivers\MOBK.sys [2012-6-6 54776]

S2 AdvancedSystemCareService6;Advanced SystemCare Service 6;c:\program files\iobit\advanced systemcare 6\ASCService.exe [2013-1-8 465216]

S2 afcdpsrv;Acronis Nonstop Backup service;c:\program files\common files\acronis\cdp\afcdpsrv.exe [2010-6-12 2480048]

S2 Application Updater;Application Updater;c:\program files\application updater\ApplicationUpdater.exe [2013-2-23 805752]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

S2 FileOpenManagerSvc;FileOpen Manager Service;c:\program files\fileopen\services\FileOpenManagerSvc32.exe [2011-12-9 213888]

S2 MBAMScheduler;MBAMScheduler;c:\program files\malwarebytes' anti-malware\mbamscheduler.exe [2012-9-10 398184]

S2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2012-9-10 682344]

S2 mcpltsvc;McAfee Platform Services;"c:\program files\common files\mcafee\platform\mcsvchost\mcsvhost.exe" /mccoresvc --> c:\program files\common files\mcafee\platform\mcsvchost\McSvHost.exe [?]

S2 MOBKbackup;McAfee Online Backup;c:\program files\mcafee online backup\MOBKbackup.exe [2010-4-13 229688]

S2 ni488enumsvc;NI-488.2 Enumeration Service;c:\windows\system32\nipalsm.exe [2008-8-21 12696]

S2 niLXIDiscovery;National Instruments LXI Discovery Service;c:\program files\ivi foundation\visa\winnt\nivisa\niLxiDiscovery.exe [2009-3-5 131704]

S2 nimDNSResponder;National Instruments mDNS Responder Service;c:\program files\national instruments\shared\mdns responder\nimdnsResponder.exe [2009-6-4 193648]

S2 nipxirmk;nipxirmk;c:\windows\system32\drivers\nipxirmkl.sys [2009-7-7 11344]

S2 NiViPxiK;NI-VISA PXI Driver;c:\windows\system32\drivers\NiViPxiKl.sys [2009-6-21 11360]

S2 QBVSS;QBIDPService;c:\program files\common files\intuit\dataprotect\QBIDPService.exe [2010-12-2 1248256]

S2 Skype C2C Service;Skype C2C Service;c:\programdata\skype\toolbars\skype c2c service\c2c_service.exe [2013-4-15 3289208]

S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2013-2-28 161384]

S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\nvidia corporation\3d vision\nvSCPAPISvr.exe [2013-1-18 383264]

S3 afcdp;afcdp;c:\windows\system32\drivers\afcdp.sys [2010-6-12 160288]

S3 Amazon Download Agent;Amazon Download Agent;c:\program files\amazon\amazon games & software downloader\AmazonGSDownloaderService.exe [2010-12-24 401920]

S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]

S3 DKRtWrt;DKRtWrt;c:\windows\system32\drivers\DKRtWrt.sys [2010-7-21 45616]

S3 HipShieldK;McAfee Inc. HipShieldK;c:\windows\system32\drivers\HipShieldK.sys [2013-1-4 147472]

S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-8-22 21104]

S3 mfencbdc;McAfee Inc. mfencbdc;c:\windows\system32\drivers\mfencbdc.sys [2012-11-2 252200]

S3 mfencrk;McAfee Inc. mfencrk;c:\windows\system32\drivers\mfencrk.sys [2012-11-2 81456]

S3 MSHUSBVideo;NX6000/NX3000/VX2000/VX5000/VX5500/VX7000/Cinema Filter Driver;c:\windows\system32\drivers\nx6000.sys [2010-12-2 25600]

S3 ni1006k;NI PXI-1006 Chassis Pilot;c:\windows\system32\drivers\ni1006k.sys [2009-4-1 26192]

S3 ni1045k;NI PXI-1045 Chassis Pilot;c:\windows\system32\drivers\ni1045kl.sys [2009-6-17 11344]

S3 ni1065k;NI PXIe-1065 Chassis Pilot;c:\windows\system32\drivers\ni1065k.sys [2009-4-1 22608]

S3 ni488lock;NI-488.2 Locking Service;c:\windows\system32\drivers\ni488lock.sys [2009-12-15 17480]

S3 nidimk;nidimk;c:\windows\system32\drivers\nidimkl.sys [2009-7-7 11360]

S3 nipalfwedl;nipalfwedl;c:\windows\system32\drivers\nipalfwedl.sys [2009-10-30 11904]

S3 nipalusbedl;nipalusbedl;c:\windows\system32\drivers\nipalusbedl.sys [2009-10-30 11896]

S3 nipxigpk;NI PXI Generic Chassis Pilot;c:\windows\system32\drivers\nipxigpk.sys [2008-6-25 20568]

S3 NiViFWK;NI-VISA FireWire Driver;c:\windows\system32\drivers\NiViFWKl.sys [2009-3-5 11384]

S3 NiViPciK;NI-VISA PCI Driver;c:\windows\system32\drivers\NiViPciKl.sys [2009-6-21 11360]

S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2011-5-23 15872]

S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2011-5-23 52224]

S3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\wat\WatAdminSvc.exe [2010-6-5 1343400]

S3 XilinxFirmwareLoader;XilinxFirmwareLoader;c:\windows\system32\drivers\xusbdfwu.sys [2011-5-29 17280]

.

=============== Created Last 30 ================

.

2013-05-15 19:45:47 -------- d-sh--w- C:\$RECYCLE.BIN

2013-05-15 19:41:49 -------- d-----w- c:\users\pavel\appdata\local\temp

2013-05-15 19:29:27 -------- d-----w- C:\ComboFix

2013-05-15 10:02:37 2382848 ----a-w- c:\windows\system32\mshtml.tlb

2013-05-15 07:28:59 40960 ----a-w- c:\windows\system32\wwanprotdim.dll

2013-05-15 07:28:59 186368 ----a-w- c:\windows\system32\wwansvc.dll

2013-05-15 07:28:58 2347520 ----a-w- c:\windows\system32\win32k.sys

2013-05-15 07:28:53 728424 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys

2013-05-15 07:28:53 218984 ----a-w- c:\windows\system32\drivers\dxgmms1.sys

2013-05-15 07:28:44 47104 ----a-w- c:\windows\system32\appinfo.dll

2013-05-15 07:28:44 1796096 ----a-w- c:\windows\system32\authui.dll

2013-05-15 07:28:44 101720 ----a-w- c:\windows\system32\consent.exe

2013-05-10 07:57:26 187456 ----a-w- c:\program files\mozilla firefox\plugins\nppdf32.dll

2013-05-10 07:57:26 187456 ----a-w- c:\program files\internet explorer\plugins\nppdf32.dll

2013-04-24 07:36:49 1211752 ----a-w- c:\windows\system32\drivers\ntfs.sys

.

==================== Find3M ====================

.

2013-05-15 12:54:19 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl

2013-05-15 12:54:19 692104 ----a-w- c:\windows\system32\FlashPlayerApp.exe

2013-04-13 04:45:16 474624 ----a-w- c:\windows\apppatch\AcSpecfc.dll

2013-04-13 04:45:15 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll

2013-04-04 22:11:34 1800704 ----a-w- c:\windows\system32\jscript9.dll

2013-04-04 22:02:59 1427968 ----a-w- c:\windows\system32\inetcpl.cpl

2013-04-04 22:02:17 1129472 ----a-w- c:\windows\system32\wininet.dll

2013-04-04 21:58:51 142848 ----a-w- c:\windows\system32\ieUnatt.exe

2013-04-04 21:57:45 420864 ----a-w- c:\windows\system32\vbscript.dll

2013-04-01 06:05:02 1025 ----a-w- c:\windows\system32\byx0py8.dll

2013-03-19 05:04:13 3968856 ----a-w- c:\windows\system32\ntkrnlpa.exe

2013-03-19 05:04:10 3913560 ----a-w- c:\windows\system32\ntoskrnl.exe

2013-03-19 04:48:45 38912 ----a-w- c:\windows\system32\csrsrv.dll

2013-03-19 02:49:16 69632 ----a-w- c:\windows\system32\smss.exe

2013-02-26 07:22:36 1985824 ----a-w- c:\windows\system32\nvcuvenc.dll

2013-02-26 07:22:36 1017120 ----a-w- c:\windows\system32\nvdispco32.dll

2013-02-26 07:22:34 6262608 ----a-w- c:\windows\system32\nvopencl.dll

2013-02-26 07:22:32 892704 ----a-w- c:\windows\system32\nvdispgenco32.dll

2013-02-26 07:22:32 2505144 ----a-w- c:\windows\system32\nvapi.dll

2013-02-26 07:22:32 12641992 ----a-w- c:\windows\system32\nvwgf2um.dll

2013-02-26 07:22:30 15129960 ----a-w- c:\windows\system32\nvd3dum.dll

2013-02-26 07:22:26 7932256 ----a-w- c:\windows\system32\nvcuda.dll

2013-02-26 07:22:22 17560352 ----a-w- c:\windows\system32\nvcompiler.dll

2013-02-26 07:22:08 20449056 ----a-w- c:\windows\system32\nvoglv32.dll

2013-02-26 07:22:06 8939296 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys

2013-02-26 07:22:06 2720544 ----a-w- c:\windows\system32\nvcuvid.dll

2013-02-15 04:37:10 3217408 ----a-w- c:\windows\system32\mstscax.dll

2013-02-15 04:34:10 131584 ----a-w- c:\windows\system32\aaclient.dll

2013-02-15 03:25:51 36864 ----a-w- c:\windows\system32\tsgqec.dll

2003-06-19 19:05:04 431888 --s-a-w- c:\program files\common files\riched20.dll

.

============= FINISH: 16:23:16.69 ===============

Telenochek82 · May 15, 2013

.

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

.

DDS (Ver_2012-11-20.01)

.

Microsoft Windows 7 Ultimate

Boot Device: \Device\HarddiskVolume2

Install Date: 6/5/2010 10:15:49 PM

System Uptime: 5/15/2013 4:18:46 PM (0 hours ago)

.

Motherboard: Gigabyte Technology Co., Ltd. | | P35-DS3L

Processor: Intel® Core2 Duo CPU E8400 @ 3.00GHz | Socket 775 | 3000/333mhz

.

==== Disk Partitions =========================

.

A: is Removable

C: is FIXED (NTFS) - 596 GiB total, 476.102 GiB free.

D: is FIXED (NTFS) - 233 GiB total, 82.663 GiB free.

E: is CDROM ()

F: is FIXED (NTFS) - 233 GiB total, 35.379 GiB free.

H: is Removable

.

==== Disabled Device Manager Items =============

.

Class GUID: {6bdd1fc6-810f-11d0-bec7-08002be2092f}

Description: Canon MX860 ser Network

Device ID: ROOT\CANON_IJ_NETWORK\0000

Manufacturer: Canon

Name: Canon MX860 ser Network

PNP Device ID: ROOT\CANON_IJ_NETWORK\0000

Service: StillCam

.

Class GUID: {8ECC055D-047F-11D1-A537-0000F8753ED1}

Description: NIPALK

Device ID: ROOT\LEGACY_NIPALK\0000

Manufacturer:

Name: NIPALK

PNP Device ID: ROOT\LEGACY_NIPALK\0000

Service: NIPALK

.

Class GUID: {8ECC055D-047F-11D1-A537-0000F8753ED1}

Description: Security Processor Loader Driver

Device ID: ROOT\LEGACY_SPLDR\0000

Manufacturer:

Name: Security Processor Loader Driver

PNP Device ID: ROOT\LEGACY_SPLDR\0000

Service: spldr

.

==== System Restore Points ===================

.

RP551: 3/8/2013 10:55:25 AM - Scheduled Checkpoint

RP552: 3/14/2013 3:00:41 AM - Windows Update

RP553: 3/22/2013 2:05:09 AM - Scheduled Checkpoint

RP554: 3/26/2013 3:00:12 AM - Windows Update

RP555: 4/3/2013 5:49:09 AM - Scheduled Checkpoint

RP556: 4/11/2013 12:00:05 AM - Scheduled Checkpoint

RP557: 4/11/2013 3:00:33 AM - Windows Update

RP558: 4/12/2013 3:00:12 AM - Windows Update

RP559: 4/20/2013 12:00:03 AM - Scheduled Checkpoint

RP560: 4/24/2013 3:00:12 AM - Windows Update

RP561: 5/1/2013 3:33:32 AM - Scheduled Checkpoint

RP562: 5/8/2013 5:15:18 AM - Scheduled Checkpoint

RP563: 5/15/2013 3:00:34 AM - Windows Update

.

==== Installed Programs ======================

.

Update for Microsoft Office 2007 (KB2508958)

7-Zip 4.65

A-PDF Merger 3.1

Acrobat.com

Acronis True Image Home

Adobe AIR

Adobe Flash Player 11 ActiveX

Adobe Flash Player 11 Plugin

Adobe Reader X (10.1.7)

Advanced SystemCare 6

Akamai NetSession Interface

Akamai NetSession Interface Service

Alamoon Watermark v1.4

Amazon Games & Software Downloader

Amazon Kindle

Ansoft HFSS 12.1

AnswerWorks 5.0 English Runtime

Apple Application Support

Apple Software Update

Audacity 1.3.12 (Unicode)

AutoHotkey 1.0.48.05

Avidemux 2.5 (32-bit)

AWR Design Environment 2009 (9.0.4847.1)

Canon IJ Network Scan Utility

Canon IJ Network Tool

Canon MP Navigator EX 2.1

Canon MX860 series MP Drivers

Canon MX860 series User Registration

Canon Utilities Easy-PhotoPrint EX

Canon Utilities My Printer

Canon Utilities Solution Menu

Chinese Simplified Fonts Support For Adobe Reader 9

ChipScope Pro 7.1i

CutePDF Writer 2.8

Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition

DHTML Editing Component

Diskeeper 2010 Professional

DivX Setup

EAGLE 4.16

eBay Auction Sniper and Auto Search 3.1

eBay Excel Add-in

ffdshow v1.1.4369 [2012-03-03]

FileOpen Client

FileZilla Client 3.5.3

FlashGet 1.9.0.1012

FLV Player 2.0 (build 25)

Foxit PDF Editor

GC-Prevue 19.1.2

GetData Graph Digitizer 2.24

Google Calendar Sync

Google Chrome

Google Update Helper

H&R Block Business 2010 (Remove Only)

H&R Block California 2009

H&R Block California 2010

H&R Block California 2011

H&R Block Deluxe + Efile + State 2009

H&R Block Deluxe + Efile + State 2011

H&R Block Deluxe + Efile + State 2012

H&R Block Premium + Efile + State 2010

Hotfix for Microsoft Visual C++ 2010 Express - ENU (KB2542054)

iLivid

ImportQIF

IObit Apps Toolbar v7.0

Japanese Fonts Support For Adobe Reader X

Java Auto Updater

Java 6 Update 31

Kindle PC Converter

LAME v3.98.3 for Audacity

Malwarebytes Anti-Malware version 1.70.0.1100

MATLAB R2008a

McAfee Online Backup

Media Add-ons for Acronis True Image Home 2010

Media Player Codec Pack 4.1.1

Microsoft .NET Framework 4 Client Profile

Microsoft .NET Framework 4 Extended

Microsoft .NET Framework 4 Multi-Targeting Pack

Microsoft Application Error Reporting

Microsoft Corporation

Microsoft Help Viewer 1.0

Microsoft IntelliPoint 8.2

Microsoft IntelliType Pro 8.0

Microsoft LifeCam

Microsoft Office 2007 Primary Interop Assemblies

Microsoft Office 2007 Service Pack 3 (SP3)

Microsoft Office 2010 Service Pack 1 (SP1)

Microsoft Office Access MUI (English) 2007

Microsoft Office Access MUI (English) 2010

Microsoft Office Access Setup Metadata MUI (English) 2007

Microsoft Office Access Setup Metadata MUI (English) 2010

Microsoft Office Excel MUI (English) 2007

Microsoft Office Excel MUI (English) 2010

Microsoft Office File Validation Add-In

Microsoft Office Groove MUI (English) 2007

Microsoft Office Groove Setup Metadata MUI (English) 2007

Microsoft Office InfoPath MUI (English) 2007

Microsoft Office OneNote MUI (English) 2007

Microsoft Office OneNote MUI (English) 2010

Microsoft Office Outlook Connector

Microsoft Office Outlook MUI (English) 2007

Microsoft Office Outlook MUI (English) 2010

Microsoft Office PowerPoint MUI (English) 2007

Microsoft Office PowerPoint MUI (English) 2010

Microsoft Office Professional 2010

Microsoft Office Project 2007 Service Pack 3 (SP3)

Microsoft Office Project 2007 Step by Step

Microsoft Office Project MUI (English) 2007

Microsoft Office Project Standard 2007

Microsoft Office Proof (English) 2007

Microsoft Office Proof (English) 2010

Microsoft Office Proof (French) 2007

Microsoft Office Proof (French) 2010

Microsoft Office Proof (Spanish) 2007

Microsoft Office Proof (Spanish) 2010

Microsoft Office Proofing (English) 2007

Microsoft Office Proofing (English) 2010

Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)

Microsoft Office Publisher MUI (English) 2007

Microsoft Office Publisher MUI (English) 2010

Microsoft Office Shared MUI (English) 2007

Microsoft Office Shared MUI (English) 2010

Microsoft Office Shared Setup Metadata MUI (English) 2007

Microsoft Office Shared Setup Metadata MUI (English) 2010

Microsoft Office SharePoint Designer 2007

Microsoft Office SharePoint Designer 2007 Service Pack 3 (SP3)

Microsoft Office SharePoint Designer MUI (English) 2007

Microsoft Office Single Image 2010

Microsoft Office Ultimate 2007

Microsoft Office Visio 2007 Service Pack 3 (SP3)

Microsoft Office Visio MUI (English) 2007

Microsoft Office Visio Standard 2007

Microsoft Office Word MUI (English) 2007

Microsoft Office Word MUI (English) 2010

Microsoft Silverlight

Microsoft SQL Server Compact 3.5 SP2 ENU

Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319

Microsoft Visual C++ 2010 Express - ENU

Microsoft Visual Studio 2005 Tools for Office Runtime

Modernsoft Financial Genome

Mozilla Firefox 20.0.1 (x86 en-US)

Mozilla Maintenance Service

MSXML 4.0 SP2 (KB954430)

MSXML 4.0 SP2 (KB973688)

MSXML 4.0 SP2 Parser and SDK

Murata Chip S-Parameter & Impedance Library Ver3.17.0

National Instruments Software

NI-488.2 2.7.3

NI-488.2 Provider for MAX version 2.7.3

NI-APAL Error Files 1.5.1f1

NI-DIM 1.10.0f0

NI-MDBG 1.9.2f0

NI-MXDF 1.11.0f0

NI-ORB 1.9.3f0

NI-PAL 2.5.2f0

NI-RPC 4.1.1f0

NI-RPC 4.1.1f0 for Phar Lap ETS

NI-VISA 4.6

NI-VISA 4.6 MAX Provider

NI-VISA Runtime 4.6

NI Certificates Deployment Support

NI EULA Depot

NI LabVIEW Broker

NI LabVIEW Real-Time Error Dialog

NI LabVIEW Real-Time FIFO for Runtime

NI LabVIEW Real-Time NBFifo

NI LabVIEW Run-Time Engine 8.2.1

NI LabVIEW Run-Time Engine 8.6

NI LabVIEW Web Server for Run-Time Engine

NI LabVIEW Web Services Runtime

NI LabWindows/CVI 9.0 Run-Time Engine

NI Logos 5.0

NI Logos XT Support

NI LVBrokerAux 8.2.1

NI Math Kernel Libraries

NI MAX Remote Configuration Installer 4.6.2

NI MDF Support

NI mDNS Responder 1.1.0

NI Measurement & Automation Explorer 4.6.2

NI Measurement Studio Common .NET Assemblies for the .NET 3.5

NI Measurement Studio Common .NET Language Assemblies for the .NET Framework 2.0

NI Measurement Studio GPIB Support for VS2005

NI Measurement Studio GPIB Support for VS2008

NI MXS 4.6.0f0 for LabVIEW Real-Time

NI MXS 4.6.2

NI Portable Configuration 4.6.1

NI PXI Platform Framework 1.1.4

NI PXI Platform Services 2.5.2

NI PXI Platform Services 2.5.2 Configuration Support

NI PXI Platform Services 2.5.2 Expert

NI PXI SystemAPI Expert 2.5.2

NI Registration Wizard

NI Remote Provider for MAX 4.6.2

NI Remote PXI Provider for MAX 4.6.0

NI Service Locator

NI Software Provider for MAX 4.6.0

NI Spy 2.7.0

NI System API RT

NI System API Windows 32-bit

NI TDMS

NI Trace Engine

NI Uninstaller

NI VC2005MSMs x86

NI VC2008MSMs x86

NI Xalan Delay Load 1.10.1

NI Xerces Delay Load 2.7.1

NVIDIA 3D Vision Controller Driver

NVIDIA 3D Vision Controller Driver 280.19

NVIDIA 3D Vision Driver 311.06

NVIDIA Control Panel 311.06

NVIDIA Graphics Driver 311.06

NVIDIA Install Application

NVIDIA PhysX

NVIDIA PhysX System Software 9.10.0514

NVIDIA Stereoscopic 3D Driver

NVIDIA Update 1.11.3

NVIDIA Update Components

Octoshape add-in for Adobe Flash Player

OGA Notifier 2.0.0048.0

PDF To Excel Converter V3.0

PhotoScape

Plus Pack for Acronis True Image Home 2010

Professor Teaches QuickBooks 2011

PVSonyDll

QuickBooks

QuickBooks Premier Edition 2011

QuickTime

Realtek Ethernet Controller Driver

Realtek High Definition Audio Driver

Revo Uninstaller 1.94

Rhapsody

Salsa Rhythm Machine v3.0.2

Sansa Updater

Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)

Security Update for Microsoft .NET Framework 4 Extended (KB2487367)

Security Update for Microsoft .NET Framework 4 Extended (KB2656351)

Security Update for Microsoft .NET Framework 4 Extended (KB2736428)

Security Update for Microsoft .NET Framework 4 Extended (KB2742595)

Security Update for Microsoft Excel 2010 (KB2597126) 32-Bit Edition

Security Update for Microsoft Filter Pack 2.0 (KB2553501) 32-Bit Edition

Security Update for Microsoft InfoPath 2010 (KB2760406) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596615) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596672) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2687311) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2687499) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2760416) 32-Bit Edition

Security Update for Microsoft Office 2010 (KB2553091)

Security Update for Microsoft Office 2010 (KB2553096)

Security Update for Microsoft Office 2010 (KB2553371) 32-Bit Edition

Security Update for Microsoft Office 2010 (KB2553447) 32-Bit Edition

Security Update for Microsoft Office 2010 (KB2589320) 32-Bit Edition

Security Update for Microsoft Office 2010 (KB2598243) 32-Bit Edition

Security Update for Microsoft Office 2010 (KB2687501) 32-Bit Edition

Security Update for Microsoft Office 2010 (KB2687510) 32-Bit Edition

Security Update for Microsoft Office Excel 2007 (KB2687307) 32-Bit Edition

Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition

Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition

Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition

Security Update for Microsoft Office Publisher 2007 (KB2597971) 32-Bit Edition

Security Update for Microsoft Office Visio 2007 suites (KB2596595) 32-Bit Edition

Security Update for Microsoft Office Word 2007 (KB2760421) 32-Bit Edition

Security Update for Microsoft OneNote 2010 (KB2760600) 32-Bit Edition

Security Update for Microsoft Publisher 2010 (KB2553147) 32-Bit Edition

Security Update for Microsoft Visio 2010 (KB2810068) 32-Bit Edition

Security Update for Microsoft Visio Viewer 2010 (KB2687505) 32-Bit Edition

Security Update for Microsoft Visual C++ 2010 Express - ENU (KB2251489)

Security Update for Microsoft Word 2010 (KB2760410) 32-Bit Edition

Shared C Run-time for x86

SigmaPlot 11.0

Skype Click to Call

Skype™ 6.3

Smith V3.10

Stamps.com

Stamps.com Application Support for Microsoft Outlook 2000-2010

Stamps.com Application Support for Microsoft Word 2000-2010

Stamps.com support for Microsoft Outlook 2000-2010

Stamps.com support for Microsoft Word 2000-2010

System Requirements Lab

Tableau Public 7.0

TaxCut Deluxe 2005

Turbo Lister 2

Tweaking.com - Windows Repair (All in One)

Update for 2007 Microsoft Office System (KB967642)

Update for Microsoft .NET Framework 4 Client Profile (KB2468871)

Update for Microsoft .NET Framework 4 Client Profile (KB2533523)

Update for Microsoft .NET Framework 4 Client Profile (KB2600217)

Update for Microsoft .NET Framework 4 Extended (KB2468871)

Update for Microsoft .NET Framework 4 Extended (KB2533523)

Update for Microsoft .NET Framework 4 Extended (KB2600217)

Update for Microsoft Office 2007 Help for Common Features (KB963673)

Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition

Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition

Update for Microsoft Office 2007 suites (KB2596802) 32-Bit Edition

Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition

Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition

Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition

Update for Microsoft Office 2010 (KB2494150)

Update for Microsoft Office 2010 (KB2553065)

Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition

Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition

Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition

Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition

Update for Microsoft Office 2010 (KB2566458)

Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition

Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition

Update for Microsoft Office 2010 (KB2687503) 32-Bit Edition

Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition

Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition

Update for Microsoft Office 2010 (KB2767886) 32-Bit Edition

Update for Microsoft Office Access 2007 Help (KB963663)

Update for Microsoft Office Excel 2007 Help (KB963678)

Update for Microsoft Office Infopath 2007 Help (KB963662)

Update for Microsoft Office OneNote 2007 Help (KB963670)

Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition

Update for Microsoft Office Outlook 2007 Help (KB963677)

Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2817359) 32-Bit Edition

Update for Microsoft Office Powerpoint 2007 Help (KB963669)

Update for Microsoft Office Project 2007 Help (KB963668)

Update for Microsoft Office Publisher 2007 Help (KB963667)

Update for Microsoft Office Script Editor Help (KB963671)

Update for Microsoft Office Sharepoint Designer 2007 Help (KB963675)

Update for Microsoft Office Visio 2007 Help (KB963666)

Update for Microsoft Office Word 2007 Help (KB963665)

Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition

Update for Microsoft Outlook 2010 (KB2597090) 32-Bit Edition

Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition

Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition

Update for Microsoft PowerPoint 2010 (KB2598240) 32-Bit Edition

VC80CRTRedist - 8.0.50727.6195

VISA Shared Components

Visual Studio Tools for the Office system 3.0 Runtime

Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258)

VitalSource Bookshelf

VLC media player 1.1.11

Wealth-Lab Pro 6.4

WebEx

Windows Media Player Firefox Plugin

Windows Mobile Device Updater Component

Wondershare PDF Converter (Build 3.0.1)

Zune

Zune Language Pack (CHS)

Zune Language Pack (CHT)

Zune Language Pack (CSY)

Zune Language Pack (DAN)

Zune Language Pack (DEU)

Zune Language Pack (ELL)

Zune Language Pack (ESP)

Zune Language Pack (FIN)

Zune Language Pack (FRA)

Zune Language Pack (HUN)

Zune Language Pack (IND)

Zune Language Pack (ITA)

Zune Language Pack (JPN)

Zune Language Pack (KOR)

Zune Language Pack (MSL)

Zune Language Pack (NLD)

Zune Language Pack (NOR)

Zune Language Pack (PLK)

Zune Language Pack (PTB)

Zune Language Pack (PTG)

Zune Language Pack (RUS)

Zune Language Pack (SVE)

.

==== Event Viewer Messages From Past Week ========

.

5/15/2013 4:23:02 PM, Error: Ntfs [55] - The file system structure on the disk is corrupt and unusable. Please run the chkdsk utility on the volume \Device\HarddiskVolume2.

5/15/2013 4:21:29 PM, Error: Service Control Manager [7001] - The Computer Browser service depends on the Server service which failed to start because of the following error: The dependency service or group failed to start.

5/15/2013 4:21:27 PM, Error: Service Control Manager [7000] - The McAfee Platform Services service failed to start due to the following error: The system cannot find the file specified.

5/15/2013 4:20:07 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030}

5/15/2013 4:20:06 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

5/15/2013 4:19:51 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}

5/15/2013 4:19:42 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "" in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC}

5/15/2013 4:19:27 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: discache MOBKFilter NIPALK nipbcfk spldr Wanarpv6

5/15/2013 4:19:26 PM, Error: Service Control Manager [7003] - The Internet Connection Sharing (ICS) service depends the following service: Netman. This service might not be installed.

5/15/2013 4:19:25 PM, Error: Service Control Manager [7003] - The PNRP Machine Name Publication Service service depends the following service: PNRPSvc. This service might not be installed.

5/15/2013 4:19:25 PM, Error: Service Control Manager [7003] - The Peer Networking Grouping service depends the following service: PNRPSvc. This service might not be installed.

5/15/2013 4:19:25 PM, Error: Service Control Manager [7003] - The Net.Pipe Listener Adapter service depends the following service: was. This service might not be installed.

5/15/2013 4:19:25 PM, Error: Service Control Manager [7003] - The Net.Msmq Listener Adapter service depends the following service: msmq. This service might not be installed.

5/15/2013 4:19:25 PM, Error: Service Control Manager [7001] - The Net.Tcp Listener Adapter service depends on the Net.Tcp Port Sharing Service service which failed to start because of the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

5/15/2013 4:17:34 PM, Error: Service Control Manager [7038] - The WdiServiceHost service was unable to log on as NT AUTHORITY\LocalService with the currently configured password due to the following error: The request is not supported. To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).

5/15/2013 4:17:34 PM, Error: Service Control Manager [7038] - The SSDPSRV service was unable to log on as NT AUTHORITY\LocalService with the currently configured password due to the following error: The request is not supported. To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).

5/15/2013 4:17:34 PM, Error: Service Control Manager [7000] - The SSDP Discovery service failed to start due to the following error: The service did not start due to a logon failure.

5/15/2013 4:17:34 PM, Error: Service Control Manager [7000] - The Diagnostic Service Host service failed to start due to the following error: The service did not start due to a logon failure.

5/15/2013 4:17:34 PM, Error: Service Control Manager [7000] - The Background Intelligent Transfer Service service failed to start due to the following error: A system shutdown is in progress.

5/15/2013 4:17:30 PM, Error: Service Control Manager [7043] - The Group Policy Client service did not shut down properly after receiving a preshutdown control.

5/15/2013 4:17:19 PM, Error: Service Control Manager [7023] - The Remote Access Connection Manager service terminated with the following error: The system cannot find the file specified.

5/15/2013 4:17:17 PM, Error: Service Control Manager [7023] - The seclogon service terminated with the following error: The specified procedure could not be found.

5/15/2013 3:24:58 AM, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk3\DR32.

5/15/2013 12:47:38 PM, Error: Microsoft-Windows-WMPNSS-Service [14333] - Service 'WMPNetworkSvc' did not start correctly due to error '0x80070424'. Restart your computer, and then try to restart the service.

5/15/2013 12:47:03 PM, Error: Service Control Manager [7023] - The Portable Device Enumerator Service service terminated with the following error: The system cannot find the file specified.

5/15/2013 12:42:16 PM, Error: Service Control Manager [7030] - The PEVSystemStart service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.

5/15/2013 12:29:35 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service VSS with arguments "" in order to run the server: {E579AB5F-1CC4-44B4-BED9-DE0991FF0623}

5/15/2013 12:27:23 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD CSC DfsC discache MOBKFilter NetBIOS NetBT NIPALK nipbcfk nsiproxy Psched rdbss spldr tdx Wanarpv6 WfpLwf ws2ifsl

5/15/2013 12:27:22 PM, Error: Service Control Manager [7001] - The Workstation service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.

5/15/2013 12:27:22 PM, Error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.

5/15/2013 12:27:22 PM, Error: Service Control Manager [7001] - The SMB MiniRedirector Wrapper and Engine service depends on the Redirected Buffering Sub Sysytem service which failed to start because of the following error: A device attached to the system is not functioning.

5/15/2013 12:27:22 PM, Error: Service Control Manager [7001] - The SMB 2.0 MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.

5/15/2013 12:27:22 PM, Error: Service Control Manager [7001] - The SMB 1.x MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.

5/15/2013 12:27:22 PM, Error: Service Control Manager [7001] - The Network Store Interface Service service depends on the NSI proxy service driver. service which failed to start because of the following error: A device attached to the system is not functioning.

5/15/2013 12:27:22 PM, Error: Service Control Manager [7001] - The Network Location Awareness service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.

5/15/2013 12:27:22 PM, Error: Service Control Manager [7001] - The IP Helper service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.

5/15/2013 12:27:22 PM, Error: Service Control Manager [7001] - The DNS Client service depends on the NetIO Legacy TDI Support Driver service which failed to start because of the following error: A device attached to the system is not functioning.

5/15/2013 12:27:22 PM, Error: Service Control Manager [7001] - The DHCP Client service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.

.

==== End Of File ===========================

Maurice Naggar · May 21, 2013

Hello Telenochek82 and welcome to MalwareBytes forums.

You made multiple posts after your first -without- stopping and waiting after the initial post.

Thus you were overlooked. We look for ZERO replies to denote someone who has not been helped !!

Do as much as you can of the following.

Step 1

1. Go >> Here << and download ERUNT

(ERUNT (Emergency Recovery Utility NT) is a free program that allows you to keep a complete backup of your registry and restore it when needed.)

2. Install ERUNT by following the prompts

(use the default install settings but say no to the portion that asks you to add ERUNT to the start-up folder, if you like you can enable this option later)

3. Start ERUNT

(either by double clicking on the desktop icon or choosing to start the program at the end of the setup)

4. Choose a location for the backup

(the default location is C:\WINDOWS\ERDNT which is acceptable).

5. Make sure that at least the first two check boxes are ticked

6. Press OK

7. Press YES to create the folder.

Step 2

To show all files:

Press Windows-key +R key on your keyboard to get RUN option.
Type in
```
explorer.exe
```
and press Enter to start Windows Explorer.
From the menu options, Select Tools, then Folder Options.
Next click the View tab.
Locate and uncheck Hide file extensions for known file types.
Locate and uncheck Hide protected operating system files (Recommended).
Locate and click Show hidden files and folders and drives.
Click Apply > OK.

Step 3

Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools

For directions on how, see How To Temporarily Disable Your Anti-virus, Firewall And Anti-malware Programs

Do NOT turn off the firewall

Please download AdwCleaner © Xplode from >>here<< and save it on your Desktop.

If your are running Windows XP, double click adwcleaner.exe to start it.

Otherwise, Right-click on adwcleaner.exe and select Run As Administrator to launch the application.

Now click on the Search tab.

Please post the contents of the log-file created in your next post.

Note: The log can also be located at C:\AdwCleaner[XX].txt where XX Denotes the number of times the application has been ran, so in this should be something like R1.

Step 4

Please read carefully and follow these steps.

Download TDSSKiller and save it to your Desktop.
Double-Click on TDSSKiller.exe to run the application, then on Start Scan.
If running Vista or Windows 7, do a RIGHT-Click and select Run as Administrator to start TDSSKILLER.exe.
If an infected file is detected, the default action will be Cure, click on Continue.
If a suspicious file is detected, the default action will be Skip, click on Continue.
If you get the warning about a file UnsignedFile.Multi.Generic or LockedFile.Multi.Generic please choose
Skip and click on Continue
It may ask you to reboot the computer to complete the process. Click on Reboot Now.
If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
If a reboot is required, the report can also be found in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.

Step 5

Download & SAVE to your Desktop >> Tigzy's RogueKillerfrom here << or
>> from here <<
Quit all programs that you may have started.
Please disconnect any USB or external drives from the computer before you run this scan!
For Vista or Windows 7, do a right-click on the program, select Run as Administrator to start, & when prompted Allow to run.
For Windows XP, double-click to start.
Wait until Prescan has finished ...
Then Click on Scan button at upper right of screen.
Wait until the Status box shows "Scan Finished"
Click on Report and copy/paste the content of the Notepad into your next reply.
The log should be found in RKreport[1].txt on your Desktop
Exit/Close RogueKiller

Do NOT click any FIX buttons !

Step 6

RE-Enable your antivirus program.

Then copy/paste the following into your post (in order):

the contents of C:\AdwCleaner[R1].txt;
the contents of TDSSKILLER log;
the contents of RKReport log;

Be sure to do a Preview prior to pressing Submit because all reports may not fit into 1 single reply. You may have to do more than 1 reply.

Do not use the attachment feature to place any of your reports. Always put them in-line inside the body of reply.

Maurice Naggar · May 23, 2013

Checking up on you for a status check. Are you still with me? Have you resolved your issue?

Telenochek82 · May 23, 2013

Hi Maurice,

Yes I am still with you. I cannot run any .exe files in Normal mode including all of the above downloads, but I can run them in safe mode.

I will try to get to the debugging as soon as I can.

Thank you,

Tele

Maurice Naggar · May 23, 2013

Do -do- that.

Also ......You may want to reconsider if you really want to use Advanced System Care or any Iobit "product" on your computer.

Please see >>this post at Malwarebytes << and make up your own mind.

If you did not buy it, I would urge you to remove it. Did you buy it?

Any claim of optimization or registry cleaning is to be considered as snake-oil-medicine tactic, imho.

Telenochek82 · May 24, 2013

I will uninstall it as soon as I get into Safe Mode. Can't uninstall anything in normal mode

Telenochek82 · May 24, 2013

# AdwCleaner v2.301 - Logfile created 05/24/2013 at 01:16:41

# Updated 16/05/2013 by Xplode

# Operating system : Windows 7 Ultimate Service Pack 1 (32 bits)

# User : Pavel - DEEP-BLUE

# Boot Mode : Safe mode with networking

# Running from : C:\Users\Pavel\Desktop\downloads\windows_problem\2_adwcleaner\adwcleaner.exe

# Option [search]

***** [services] *****

Found : Application Updater

***** [Files / Folders] *****

File Found : C:\Users\Pavel\AppData\Roaming\Mozilla\Firefox\Profiles\j7o4iz70.default\searchplugins\Askcom.xml

File Found : C:\Users\Pavel\Desktop\eBay.lnk

File Found : C:\Users\Public\Desktop\iLivid.lnk

Folder Found : C:\Program Files\Application Updater

Folder Found : C:\Program Files\Common Files\spigot

Folder Found : C:\Program Files\Conduit

Folder Found : C:\Program Files\Ilivid

Folder Found : C:\Program Files\IObit Apps Toolbar

Folder Found : C:\Program Files\ParetoLogic

Folder Found : C:\Users\Pavel\AppData\Local\Conduit

Folder Found : C:\Users\Pavel\AppData\Local\Ilivid Player

Folder Found : C:\Users\Pavel\AppData\LocalLow\AskToolbar

Folder Found : C:\Users\Pavel\AppData\LocalLow\boost_interprocess

Folder Found : C:\Users\Pavel\AppData\LocalLow\Conduit

Folder Found : C:\Users\Pavel\AppData\LocalLow\Search Settings

Folder Found : C:\Users\Pavel\AppData\Roaming\Mozilla\Firefox\Profiles\j7o4iz70.default\Smartbar

***** [Registry] *****

Key Found : HKCU\Software\AppDataLow\Software\Search Settings

Key Found : HKCU\Software\AppDataLow\Software\SmartBar

Key Found : HKCU\Software\Conduit

Key Found : HKCU\Software\ilivid

Key Found : HKCU\Software\InstallCore

Key Found : HKCU\Software\Search Settings

Key Found : HKCU\Software\YahooPartnerToolbar

Key Found : HKLM\Software\Application Updater

Key Found : HKLM\SOFTWARE\Classes\Applications\ilividsetupv1.exe

Key Found : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}

Key Found : HKLM\SOFTWARE\Classes\ilivid

Key Found : HKLM\Software\Conduit

Key Found : HKLM\Software\ilivid

Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASAPI32

Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASMANCS

Key Found : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetupV1_RASAPI32

Key Found : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetupV1_RASMANCS

Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ilivid

Key Found : HKLM\Software\Search Settings

Value Found : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{03EB0E9C-7A91-4381-A220-9B52B641CDB1}]

Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [searchSettings]

***** [internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16483

[OK] Registry is clean.

-\\ Mozilla Firefox v21.0 (en-US)

File : C:\Users\Pavel\AppData\Roaming\Mozilla\Firefox\Profiles\j7o4iz70.default\prefs.js

Found : user_pref("CT3225826.BT_Stats.enc", "eyJsYXN0X2xvZyI6MTM2MDI0NjU1OCwidXVpZCI6OTczNzU0ODgzMjU4MTA3LCJ[...]

Found : user_pref("CT3225826.BT_Usage.enc", "eyJ1dWlkIjo5NzM3NTQ4ODMyNTgxMDcsInNlcV9pZCI6Mn0=");

Found : user_pref("CT3225826.CBOpenMAMSettings.enc", "MA==");

Found : user_pref("CT3225826.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}");

Found : user_pref("CT3225826.ENABLE_RETURN_WEB_SEARCH_ON_THE_PAGE", "{\"dataType\":\"string\",\"data\":\"tru[...]

Found : user_pref("CT3225826.FirstTime", "true");

Found : user_pref("CT3225826.FirstTimeFF3", "true");

Found : user_pref("CT3225826.LoginRevertSettingsEnabled", true);

Found : user_pref("CT3225826.RevertSettingsEnabled", true);

Found : user_pref("CT3225826.UserID", "UN04058337402669665");

Found : user_pref("CT3225826.addressBarTakeOverEnabledInHidden", "true");

Found : user_pref("CT3225826.autoDisableScopes", -1);

Found : user_pref("CT3225826.cb_experience_000.enc", "NDI0");

Found : user_pref("CT3225826.cb_firstuse0100.enc", "MQ==");

Found : user_pref("CT3225826.cb_user_id_000.enc", "Q0I0NzYzMTY2ODAzNTRfMTM1NTg3NTg0OTIwOV9GaXJlZm94");

Found : user_pref("CT3225826.cbcountry_001.enc", "VVM=");

Found : user_pref("CT3225826.cbfirsttime.enc", "VHVlIE9jdCAzMCAyMDEyIDIwOjAwOjQyIEdNVC0wNzAwIChQYWNpZmljIERh[...]

Found : user_pref("CT3225826.defaultSearch", "FALSE");

Found : user_pref("CT3225826.embeddedsData", "[{\"appId\":\"129830626805552092\",\"apiPermissions\":{\"cross[...]

Found : user_pref("CT3225826.enableAlerts", "always");

Found : user_pref("CT3225826.enableFix404ByUser", "FALSE");

Found : user_pref("CT3225826.enableSearchFromAddressBar", "FALSE");

Found : user_pref("CT3225826.firstTimeDialogOpened", "true");

Found : user_pref("CT3225826.fixPageNotFoundError", "true");

Found : user_pref("CT3225826.fixPageNotFoundErrorByUser", "true");

Found : user_pref("CT3225826.fixPageNotFoundErrorInHidden", "true");

Found : user_pref("CT3225826.fixUrls", true);

Found : user_pref("CT3225826.hxxp___toolbar_utorrent_com.APP_WIN_FEATURES.enc", "cmVzaXphYmxlPTAsc2F2ZXJlc2l[...]

Found : user_pref("CT3225826.hxxp___www_socialgrowthtechnologies_com_couponbuddy_v001.APP_WIN_FEATURES", "op[...]

Found : user_pref("CT3225826.installId", "fftA1E6.tmp.exe");

Found : user_pref("CT3225826.installType", "XPE");

Found : user_pref("CT3225826.isCheckedStartAsHidden", true);

Found : user_pref("CT3225826.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}");

Found : user_pref("CT3225826.isFirstTimeToolbarLoading", "false");

Found : user_pref("CT3225826.isNewTabEnabled", false);

Found : user_pref("CT3225826.isPerformedSmartBarTransition", "true");

Found : user_pref("CT3225826.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}");

Found : user_pref("CT3225826.isWelcomPage", "{\"dataType\":\"boolean\",\"data\":\"true\"}");

Found : user_pref("CT3225826.lastVersion", "10.14.42.7");

Found : user_pref("CT3225826.migrateAppsAndComponents", true);

Found : user_pref("CT3225826.navigationAliasesJson", "{\"EB_MAIN_FRAME_URL\":\"hxxps%3A%2F%2Fwww.google.com%[...]

Found : user_pref("CT3225826.newSettings", "{\"dataType\":\"boolean\",\"data\":\"true\"}");

Found : user_pref("CT3225826.openThankYouPage", "true");

Found : user_pref("CT3225826.openUninstallPage", "FALSE");

Found : user_pref("CT3225826.search.searchAppId", "129830626805552092");

Found : user_pref("CT3225826.search.searchCount", "0");

Found : user_pref("CT3225826.searchInNewTabEnabled", "false");

Found : user_pref("CT3225826.searchInNewTabEnabledByUser", "false");

Found : user_pref("CT3225826.searchInNewTabEnabledInHidden", "true");

Found : user_pref("CT3225826.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}");

Found : user_pref("CT3225826.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"d[...]

Found : user_pref("CT3225826.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"4\[...]

Found : user_pref("CT3225826.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"d[...]

Found : user_pref("CT3225826.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"strin[...]

Found : user_pref("CT3225826.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"strin[...]

Found : user_pref("CT3225826.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data[...]

Found : user_pref("CT3225826.serviceLayer_service_usage_toolbarUsageCount", "{\"dataType\":\"number\",\"data[...]

Found : user_pref("CT3225826.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1359779920944");

Found : user_pref("CT3225826.serviceLayer_services_appTracking_lastUpdate", "1356977700804");

Found : user_pref("CT3225826.serviceLayer_services_appsMetadata_lastUpdate", "1360181405600");

Found : user_pref("CT3225826.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1359135599139");

Found : user_pref("CT3225826.serviceLayer_services_login_10.10.27.6_lastUpdate", "1353392372126");

Found : user_pref("CT3225826.serviceLayer_services_login_10.13.40.15_lastUpdate", "1359697980676");

Found : user_pref("CT3225826.serviceLayer_services_login_10.14.42.7_lastUpdate", "1360246666799");

Found : user_pref("CT3225826.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1359135599171");

Found : user_pref("CT3225826.serviceLayer_services_searchAPI_lastUpdate", "1360246665897");

Found : user_pref("CT3225826.serviceLayer_services_serviceMap_lastUpdate", "1360246665649");

Found : user_pref("CT3225826.serviceLayer_services_toolbarContextMenu_lastUpdate", "1359135599109");

Found : user_pref("CT3225826.serviceLayer_services_toolbarSettings_lastUpdate", "1360246666916");

Found : user_pref("CT3225826.serviceLayer_services_translation_lastUpdate", "1360181405420");

Found : user_pref("CT3225826.settingsINI", true);

Found : user_pref("CT3225826.shouldFirstTimeDialog", "false");

Found : user_pref("CT3225826.smartbar.CTID", "CT3225826");

Found : user_pref("CT3225826.smartbar.Uninstall", "0");

Found : user_pref("CT3225826.smartbar.toolbarName", "BitTorrentControl_v12 ");

Found : user_pref("CT3225826.toolbarBornServerTime", "31-10-2012");

Found : user_pref("CT3225826.toolbarCurrentServerTime", "7-2-2013");

Found : user_pref("CT3225826.upgradeFromClearSBVersion", true);

Found : user_pref("CT3225826.url_history0001.enc", "aHR0cDovL3d3dy50aGluZ3NyZW1lbWJlcmVkLmNvbS9wcm9kdWN0L09j[...]

Found : user_pref("CT3225826_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\"[...]

Found : user_pref("smartbar.machineId", "5DSSYLR90+ZBLUQIAUZGP3UWOKXTVREJRBSVTCFDYUENPD1LRNHFFTFDCOMYIRLXUZZ[...]

-\\ Google Chrome v26.0.1410.64

File : C:\Users\Pavel\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [9757 octets] - [24/05/2013 01:16:41]

########## EOF - C:\AdwCleaner[R1].txt - [9817 octets] ##########

Telenochek82 · May 24, 2013

01:17:45.0025 1468 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42

01:17:45.0540 1468 ============================================================

01:17:45.0540 1468 Current date / time: 2013/05/24 01:17:45.0540

01:17:45.0540 1468 SystemInfo:

01:17:45.0540 1468

01:17:45.0540 1468 OS Version: 6.1.7601 ServicePack: 1.0

01:17:45.0540 1468 Product type: Workstation

01:17:45.0540 1468 ComputerName: DEEP-BLUE

01:17:45.0540 1468 UserName: Pavel

01:17:45.0540 1468 Windows directory: C:\Windows

01:17:45.0540 1468 System windows directory: C:\Windows

01:17:45.0540 1468 Processor architecture: Intel x86

01:17:45.0540 1468 Number of processors: 2

01:17:45.0540 1468 Page size: 0x1000

01:17:45.0540 1468 Boot type: Safe boot with network

01:17:45.0540 1468 ============================================================

01:17:46.0288 1468 Drive \Device\Harddisk0\DR0 - Size: 0x3A38A25E00 (232.88 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050

01:17:46.0320 1468 Drive \Device\Harddisk1\DR1 - Size: 0x950AF4DE00 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050

01:17:46.0320 1468 Drive \Device\Harddisk2\DR2 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050

01:17:46.0320 1468 Drive \Device\Harddisk3\DR3 - Size: 0x3C100000 (0.94 Gb), SectorSize: 0x200, Cylinders: 0x7A, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'

01:17:46.0335 1468 ============================================================

01:17:46.0335 1468 \Device\Harddisk0\DR0:

01:17:46.0335 1468 MBR partitions:

01:17:46.0335 1468 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1D1C4542

01:17:46.0335 1468 \Device\Harddisk1\DR1:

01:17:46.0335 1468 MBR partitions:

01:17:46.0335 1468 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x4A856E82

01:17:46.0335 1468 \Device\Harddisk2\DR2:

01:17:46.0335 1468 MBR partitions:

01:17:46.0335 1468 \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1D1C4542

01:17:46.0335 1468 \Device\Harddisk3\DR3:

01:17:46.0335 1468 MBR partitions:

01:17:46.0335 1468 \Device\Harddisk3\DR3\Partition1: MBR, Type 0x6, StartLBA 0x20, BlocksNum 0x1E07E0

01:17:46.0335 1468 ============================================================

01:17:46.0351 1468 C: <-> \Device\Harddisk1\DR1\Partition1

01:17:46.0382 1468 D: <-> \Device\Harddisk2\DR2\Partition1

01:17:46.0382 1468 F: <-> \Device\Harddisk0\DR0\Partition1

01:17:46.0382 1468 ============================================================

01:17:46.0382 1468 Initialize success

01:17:46.0382 1468 ============================================================

01:17:51.0546 1344 ============================================================

01:17:51.0546 1344 Scan started

01:17:51.0546 1344 Mode: Manual;

01:17:51.0546 1344 ============================================================

01:17:51.0904 1344 ================ Scan system memory ========================

01:17:51.0904 1344 System memory - ok

01:17:51.0904 1344 ================ Scan services =============================

01:17:52.0092 1344 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys

01:17:52.0092 1344 1394ohci - ok

01:17:52.0138 1344 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys

01:17:52.0154 1344 ACPI - ok

01:17:52.0170 1344 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys

01:17:52.0170 1344 AcpiPmi - ok

01:17:52.0263 1344 [ D975C968DB8BEBA8D655AC2BAC33E4D8 ] AcrSch2Svc C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe

01:17:52.0279 1344 AcrSch2Svc - ok

01:17:52.0326 1344 [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe

01:17:52.0326 1344 AdobeARMservice - ok

01:17:52.0357 1344 [ F040037B149FD0F5A5044AE563390FA7 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

01:17:52.0372 1344 AdobeFlashPlayerUpdateSvc - ok

01:17:52.0388 1344 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys

01:17:52.0388 1344 adp94xx - ok

01:17:52.0404 1344 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys

01:17:52.0404 1344 adpahci - ok

01:17:52.0419 1344 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys

01:17:52.0419 1344 adpu320 - ok

01:17:52.0466 1344 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll

01:17:52.0466 1344 AeLookupSvc - ok

01:17:52.0513 1344 [ EF1AFA9752E468013584585666A3B119 ] afcdp C:\Windows\system32\DRIVERS\afcdp.sys

01:17:52.0513 1344 afcdp - ok

01:17:52.0591 1344 [ B8C03E224E49E0F9726CDDEF872237EB ] afcdpsrv C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe

01:17:52.0622 1344 afcdpsrv - ok

01:17:52.0653 1344 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD C:\Windows\system32\drivers\afd.sys

01:17:52.0669 1344 AFD - ok

01:17:52.0669 1344 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys

01:17:52.0669 1344 agp440 - ok

01:17:52.0716 1344 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys

01:17:52.0716 1344 aic78xx - ok

01:17:52.0731 1344 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe

01:17:52.0731 1344 ALG - ok

01:17:52.0747 1344 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\drivers\aliide.sys

01:17:52.0747 1344 aliide - ok

01:17:52.0809 1344 [ FF6F0F6A2D72065AE4300426FA414693 ] Amazon Download Agent C:\Program Files\Amazon\Amazon Games & Software Downloader\AmazonGSDownloaderService.exe

01:17:52.0809 1344 Amazon Download Agent - ok

01:17:52.0825 1344 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys

01:17:52.0825 1344 amdagp - ok

01:17:52.0825 1344 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\drivers\amdide.sys

01:17:52.0825 1344 amdide - ok

01:17:52.0840 1344 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys

01:17:52.0840 1344 AmdK8 - ok

01:17:52.0856 1344 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys

01:17:52.0856 1344 AmdPPM - ok

01:17:52.0872 1344 [ D320BF87125326F996D4904FE24300FC ] amdsata C:\Windows\system32\drivers\amdsata.sys

01:17:52.0872 1344 amdsata - ok

01:17:52.0887 1344 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys

01:17:52.0887 1344 amdsbs - ok

01:17:52.0903 1344 [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata C:\Windows\system32\drivers\amdxata.sys

01:17:52.0903 1344 amdxata - ok

01:17:52.0903 1344 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys

01:17:52.0903 1344 AppID - ok

01:17:52.0918 1344 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll

01:17:52.0918 1344 AppIDSvc - ok

01:17:52.0965 1344 [ 5234837DFEC4092E235594B25CF02865 ] Application Updater C:\Program Files\Application Updater\ApplicationUpdater.exe

01:17:52.0981 1344 Application Updater - ok

01:17:52.0996 1344 [ A45D184DF6A8803DA13A0B329517A64A ] AppMgmt C:\Windows\System32\appmgmts.dll

01:17:52.0996 1344 AppMgmt - ok

01:17:52.0996 1344 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys

01:17:53.0012 1344 arc - ok

01:17:53.0012 1344 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys

01:17:53.0012 1344 arcsas - ok

01:17:53.0090 1344 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe

01:17:53.0137 1344 aspnet_state - ok

01:17:53.0137 1344 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys

01:17:53.0137 1344 AsyncMac - ok

01:17:53.0152 1344 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys

01:17:53.0152 1344 atapi - ok

01:17:53.0168 1344 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll

01:17:53.0168 1344 AudioEndpointBuilder - ok

01:17:53.0184 1344 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll

01:17:53.0184 1344 Audiosrv - ok

01:17:53.0199 1344 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys

01:17:53.0199 1344 b06bdrv - ok

01:17:53.0230 1344 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys

01:17:53.0230 1344 b57nd60x - ok

01:17:53.0262 1344 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll

01:17:53.0262 1344 BDESVC - ok

01:17:53.0308 1344 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys

01:17:53.0308 1344 Beep - ok

01:17:53.0324 1344 [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE C:\Windows\System32\bfe.dll

01:17:53.0340 1344 BFE - ok

01:17:53.0402 1344 [ E585445D5021971FAE10393F0F1C3961 ] BITS C:\Windows\system32\qmgr.dll

01:17:53.0464 1344 BITS - ok

01:17:53.0496 1344 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys

01:17:53.0496 1344 blbdrive - ok

01:17:53.0511 1344 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\Windows\system32\DRIVERS\bowser.sys

01:17:53.0511 1344 bowser - ok

01:17:53.0511 1344 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys

01:17:53.0527 1344 BrFiltLo - ok

01:17:53.0527 1344 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys

01:17:53.0527 1344 BrFiltUp - ok

01:17:53.0527 1344 [ 77361D72A04F18809D0EFB6CCEB74D4B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys

01:17:53.0527 1344 BridgeMP - ok

01:17:53.0574 1344 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser C:\Windows\System32\browser.dll

01:17:53.0574 1344 Browser - ok

01:17:53.0589 1344 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys

01:17:53.0589 1344 Brserid - ok

01:17:53.0605 1344 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys

01:17:53.0605 1344 BrSerWdm - ok

01:17:53.0620 1344 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys

01:17:53.0620 1344 BrUsbMdm - ok

01:17:53.0636 1344 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys

01:17:53.0636 1344 BrUsbSer - ok

01:17:53.0652 1344 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys

01:17:53.0652 1344 BTHMODEM - ok

01:17:53.0698 1344 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll

01:17:53.0698 1344 bthserv - ok

01:17:53.0745 1344 catchme - ok

01:17:53.0776 1344 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys

01:17:53.0776 1344 cdfs - ok

01:17:53.0776 1344 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys

01:17:53.0776 1344 cdrom - ok

01:17:53.0823 1344 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll

01:17:53.0823 1344 CertPropSvc - ok

01:17:53.0823 1344 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys

01:17:53.0823 1344 circlass - ok

01:17:53.0839 1344 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys

01:17:53.0839 1344 CLFS - ok

01:17:53.0901 1344 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

01:17:53.0901 1344 clr_optimization_v2.0.50727_32 - ok

01:17:53.0932 1344 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe

01:17:53.0979 1344 clr_optimization_v4.0.30319_32 - ok

01:17:54.0010 1344 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys

01:17:54.0010 1344 CmBatt - ok

01:17:54.0026 1344 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\drivers\cmdide.sys

01:17:54.0026 1344 cmdide - ok

01:17:54.0042 1344 [ 247B4CE2DAB1160CD422D532D5241E1F ] CNG C:\Windows\system32\Drivers\cng.sys

01:17:54.0042 1344 CNG - ok

01:17:54.0057 1344 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys

01:17:54.0057 1344 Compbatt - ok

01:17:54.0057 1344 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys

01:17:54.0057 1344 CompositeBus - ok

01:17:54.0073 1344 COMSysApp - ok

01:17:54.0104 1344 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys

01:17:54.0104 1344 crcdisk - ok

01:17:54.0151 1344 [ 96C0E38905CFD788313BE8E11DAE3F2F ] CryptSvc C:\Windows\system32\cryptsvc.dll

01:17:54.0151 1344 CryptSvc - ok

01:17:54.0166 1344 [ 3C2177A897B4CA2788C6FB0C3FD81D4B ] CSC C:\Windows\system32\drivers\csc.sys

01:17:54.0166 1344 CSC - ok

01:17:54.0213 1344 [ 15F93B37F6801943360D9EB42485D5D3 ] CscService C:\Windows\System32\cscsvc.dll

01:17:54.0229 1344 CscService - ok

01:17:54.0229 1344 [ DBD89BC0DBE00DCD245BE8F61DBEE291 ] cvintdrv C:\Windows\system32\drivers\cvintdrv.sys

01:17:54.0229 1344 cvintdrv - ok

01:17:54.0291 1344 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll

01:17:54.0291 1344 DcomLaunch - ok

01:17:54.0322 1344 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll

01:17:54.0338 1344 defragsvc - ok

01:17:54.0369 1344 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys

01:17:54.0369 1344 DfsC - ok

01:17:54.0385 1344 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll

01:17:54.0385 1344 Dhcp - ok

01:17:54.0400 1344 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys

01:17:54.0400 1344 discache - ok

01:17:54.0416 1344 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys

01:17:54.0416 1344 Disk - ok

01:17:54.0510 1344 [ 878FA6EAE3D8A65B8830A8407345F176 ] Diskeeper C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe

01:17:54.0525 1344 Diskeeper - ok

01:17:54.0541 1344 [ 39E45E2653620041EDAE249079767525 ] DKRtWrt C:\Windows\system32\DRIVERS\DKRtWrt.sys

01:17:54.0541 1344 DKRtWrt - ok

01:17:54.0572 1344 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\Windows\System32\dnsrslvr.dll

01:17:54.0572 1344 Dnscache - ok

01:17:54.0588 1344 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll

01:17:54.0588 1344 dot3svc - ok

01:17:54.0603 1344 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll

01:17:54.0603 1344 DPS - ok

01:17:54.0619 1344 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys

01:17:54.0619 1344 drmkaud - ok

01:17:54.0666 1344 [ 16498EBC04AE9DD07049A8884B205C05 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys

01:17:54.0666 1344 DXGKrnl - ok

01:17:54.0697 1344 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll

01:17:54.0697 1344 EapHost - ok

01:17:54.0790 1344 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys

01:17:54.0837 1344 ebdrv - ok

01:17:54.0884 1344 [ 81951F51E318AECC2D68559E47485CC4 ] EFS C:\Windows\System32\lsass.exe

01:17:54.0884 1344 EFS - ok

01:17:54.0946 1344 [ A8C362018EFC87BEB013EE28F29C0863 ] ehRecvr C:\Windows\ehome\ehRecvr.exe

01:17:54.0946 1344 ehRecvr - ok

01:17:54.0962 1344 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe

01:17:54.0962 1344 ehSched - ok

01:17:54.0978 1344 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys

01:17:54.0978 1344 elxstor - ok

01:17:55.0024 1344 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys

01:17:55.0024 1344 ErrDev - ok

01:17:55.0071 1344 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll

01:17:55.0071 1344 EventSystem - ok

01:17:55.0087 1344 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys

01:17:55.0087 1344 exfat - ok

01:17:55.0102 1344 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys

01:17:55.0102 1344 fastfat - ok

01:17:55.0149 1344 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe

01:17:55.0165 1344 Fax - ok

01:17:55.0165 1344 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys

01:17:55.0165 1344 fdc - ok

01:17:55.0212 1344 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll

01:17:55.0212 1344 fdPHost - ok

01:17:55.0212 1344 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll

01:17:55.0212 1344 FDResPub - ok

01:17:55.0227 1344 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys

01:17:55.0227 1344 FileInfo - ok

01:17:55.0290 1344 [ 54352CBDE8B4ADFCD900255053DE8753 ] FileOpenManagerSvc C:\Program Files\FileOpen\Services\FileOpenManagerSvc32.exe

01:17:55.0290 1344 FileOpenManagerSvc - ok

01:17:55.0305 1344 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys

01:17:55.0305 1344 Filetrace - ok

01:17:55.0399 1344 [ 73081CF28F0AE20A52CA4F67CEE6E6B0 ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

01:17:55.0399 1344 FLEXnet Licensing Service - ok

01:17:55.0414 1344 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys

01:17:55.0414 1344 flpydisk - ok

01:17:55.0430 1344 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys

01:17:55.0430 1344 FltMgr - ok

01:17:55.0508 1344 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe

01:17:55.0508 1344 FontCache3.0.0.0 - ok

01:17:55.0508 1344 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys

01:17:55.0524 1344 FsDepends - ok

01:17:55.0555 1344 [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys

01:17:55.0555 1344 Fs_Rec - ok

01:17:55.0617 1344 [ E306A24D9694C724FA2491278BF50FDB ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys

01:17:55.0617 1344 fvevol - ok

01:17:55.0633 1344 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys

01:17:55.0633 1344 gagp30kx - ok

01:17:55.0680 1344 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll

01:17:55.0680 1344 gpsvc - ok

01:17:55.0758 1344 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe

01:17:55.0758 1344 gupdate - ok

01:17:55.0758 1344 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe

01:17:55.0758 1344 gupdatem - ok

01:17:55.0773 1344 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys

01:17:55.0773 1344 hcw85cir - ok

01:17:55.0789 1344 [ A5EF29D5315111C80A5C1ABAD14C8972 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys

01:17:55.0789 1344 HdAudAddService - ok

01:17:55.0804 1344 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys

01:17:55.0804 1344 HDAudBus - ok

01:17:55.0820 1344 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys

01:17:55.0820 1344 HidBatt - ok

01:17:55.0836 1344 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys

01:17:55.0836 1344 HidBth - ok

01:17:55.0836 1344 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys

01:17:55.0851 1344 HidIr - ok

01:17:55.0882 1344 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\System32\hidserv.dll

01:17:55.0882 1344 hidserv - ok

01:17:55.0898 1344 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys

01:17:55.0898 1344 HidUsb - ok

01:17:55.0929 1344 [ 8F72C4916A288485812745DC5AF873FC ] HipShieldK C:\Windows\system32\drivers\HipShieldK.sys

01:17:55.0929 1344 HipShieldK - ok

01:17:55.0960 1344 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll

01:17:55.0960 1344 hkmsvc - ok

01:17:56.0007 1344 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll

01:17:56.0007 1344 HomeGroupListener - ok

01:17:56.0054 1344 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll

01:17:56.0054 1344 HomeGroupProvider - ok

01:17:56.0054 1344 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys

01:17:56.0054 1344 HpSAMD - ok

01:17:56.0085 1344 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys

01:17:56.0085 1344 HTTP - ok

01:17:56.0101 1344 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys

01:17:56.0101 1344 hwpolicy - ok

01:17:56.0116 1344 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys

01:17:56.0116 1344 i8042prt - ok

01:17:56.0132 1344 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV C:\Windows\system32\drivers\iaStorV.sys

01:17:56.0132 1344 iaStorV - ok

01:17:56.0194 1344 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe

01:17:56.0210 1344 idsvc - ok

01:17:56.0226 1344 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys

01:17:56.0226 1344 iirsp - ok

01:17:56.0272 1344 [ F95622F161474511B8D80D6B093AA610 ] IKEEXT C:\Windows\System32\ikeext.dll

01:17:56.0272 1344 IKEEXT - ok

01:17:56.0366 1344 [ 20A7EFCBC7C1B7492B1B8443E95F80C8 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys

01:17:56.0460 1344 IntcAzAudAddService - ok

01:17:56.0491 1344 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys

01:17:56.0491 1344 intelide - ok

01:17:56.0506 1344 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys

01:17:56.0506 1344 intelppm - ok

01:17:56.0538 1344 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys

01:17:56.0538 1344 IpFilterDriver - ok

01:17:56.0569 1344 [ 58F67245D041FBE7AF88F4EAF79DF0FA ] iphlpsvc C:\Windows\System32\iphlpsvc.dll

01:17:56.0584 1344 iphlpsvc - ok

01:17:56.0600 1344 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys

01:17:56.0600 1344 IPMIDRV - ok

01:17:56.0616 1344 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys

01:17:56.0616 1344 IPNAT - ok

01:17:56.0631 1344 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys

01:17:56.0631 1344 IRENUM - ok

01:17:56.0647 1344 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\drivers\isapnp.sys

01:17:56.0647 1344 isapnp - ok

01:17:56.0662 1344 [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys

01:17:56.0662 1344 iScsiPrt - ok

01:17:56.0662 1344 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\drivers\kbdclass.sys

01:17:56.0662 1344 kbdclass - ok

01:17:56.0678 1344 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys

01:17:56.0678 1344 kbdhid - ok

01:17:56.0694 1344 [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso C:\Windows\system32\lsass.exe

01:17:56.0694 1344 KeyIso - ok

01:17:56.0694 1344 [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys

01:17:56.0694 1344 KSecDD - ok

01:17:56.0725 1344 [ D30159AC9237519FBC62C6EC247D2D46 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys

01:17:56.0725 1344 KSecPkg - ok

01:17:56.0772 1344 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll

01:17:56.0772 1344 KtmRm - ok

01:17:56.0803 1344 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\System32\srvsvc.dll

01:17:56.0803 1344 LanmanServer - ok

01:17:56.0865 1344 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll

01:17:56.0865 1344 LanmanWorkstation - ok

01:17:56.0896 1344 [ 20CDB07017497C94A0BAD253C4BAFCBC ] LkCitadelServer C:\Windows\system32\lkcitdl.exe

01:17:56.0896 1344 LkCitadelServer - ok

01:17:56.0912 1344 [ 40D66FAB9E4C9DEA0076CDEE2391E8BA ] lkClassAds C:\Windows\system32\lkads.exe

01:17:56.0912 1344 lkClassAds - ok

01:17:56.0959 1344 [ F03846D3C08A2358874D0D3E5EF6E748 ] lkTimeSync C:\Windows\system32\lktsrv.exe

01:17:56.0959 1344 lkTimeSync - ok

01:17:57.0021 1344 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys

01:17:57.0021 1344 lltdio - ok

01:17:57.0068 1344 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll

01:17:57.0084 1344 lltdsvc - ok

01:17:57.0162 1344 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll

01:17:57.0193 1344 lmhosts - ok

01:17:57.0208 1344 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys

01:17:57.0208 1344 LSI_FC - ok

01:17:57.0224 1344 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys

01:17:57.0224 1344 LSI_SAS - ok

01:17:57.0224 1344 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys

01:17:57.0224 1344 LSI_SAS2 - ok

01:17:57.0224 1344 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys

01:17:57.0224 1344 LSI_SCSI - ok

01:17:57.0255 1344 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys

01:17:57.0255 1344 luafv - ok

01:17:57.0286 1344 [ 629CABB0421668C9D3D402A3C3D77E14 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys

01:17:57.0286 1344 MBAMProtector - ok

01:17:57.0349 1344 [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe

01:17:57.0349 1344 MBAMScheduler - ok

01:17:57.0364 1344 [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

01:17:57.0380 1344 MBAMService - ok

01:17:57.0380 1344 mcpltsvc - ok

01:17:57.0411 1344 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll

01:17:57.0411 1344 Mcx2Svc - ok

01:17:57.0427 1344 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys

01:17:57.0427 1344 megasas - ok

01:17:57.0442 1344 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys

01:17:57.0442 1344 MegaSR - ok

01:17:57.0474 1344 [ 7401E85D5D4B5B0F6A3098EBEE0639AA ] mfencbdc C:\Windows\system32\DRIVERS\mfencbdc.sys

01:17:57.0489 1344 mfencbdc - ok

01:17:57.0489 1344 [ 439B06E366643B32D549B939780742BE ] mfencrk C:\Windows\system32\DRIVERS\mfencrk.sys

01:17:57.0489 1344 mfencrk - ok

01:17:57.0552 1344 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe

01:17:57.0552 1344 Microsoft Office Groove Audit Service - ok

01:17:57.0583 1344 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll

01:17:57.0583 1344 MMCSS - ok

01:17:57.0645 1344 [ 35176FA09A0FC58DB630991A81A0BA39 ] MOBKbackup C:\Program Files\McAfee Online Backup\MOBKbackup.exe

01:17:57.0645 1344 MOBKbackup - ok

01:17:57.0645 1344 [ E896775837A8BCE436348DF460522394 ] MOBKFilter C:\Windows\system32\DRIVERS\MOBK.sys

01:17:57.0645 1344 MOBKFilter - ok

01:17:57.0661 1344 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys

01:17:57.0661 1344 Modem - ok

01:17:57.0708 1344 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys

01:17:57.0708 1344 monitor - ok

01:17:57.0708 1344 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\drivers\mouclass.sys

01:17:57.0708 1344 mouclass - ok

01:17:57.0723 1344 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys

01:17:57.0723 1344 mouhid - ok

01:17:57.0739 1344 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys

01:17:57.0739 1344 mountmgr - ok

01:17:57.0786 1344 [ 825BF0E46B4470A463AEB641480C5FCA ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe

01:17:57.0786 1344 MozillaMaintenance - ok

01:17:57.0801 1344 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\Windows\system32\drivers\mpio.sys

01:17:57.0801 1344 mpio - ok

01:17:57.0801 1344 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys

01:17:57.0801 1344 mpsdrv - ok

01:17:57.0832 1344 [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc C:\Windows\system32\mpssvc.dll

01:17:57.0832 1344 MpsSvc - ok

01:17:57.0848 1344 [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys

01:17:57.0848 1344 MRxDAV - ok

01:17:57.0864 1344 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys

01:17:57.0864 1344 mrxsmb - ok

01:17:57.0879 1344 [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys

01:17:57.0879 1344 mrxsmb10 - ok

01:17:57.0879 1344 [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys

01:17:57.0879 1344 mrxsmb20 - ok

01:17:57.0895 1344 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\Windows\system32\drivers\msahci.sys

01:17:57.0895 1344 msahci - ok

01:17:57.0957 1344 [ B03E3F64B70F8031E65EB26DA23DE91A ] MSCamSvc C:\Program Files\Microsoft LifeCam\MSCamS32.exe

01:17:57.0957 1344 MSCamSvc - ok

01:17:57.0957 1344 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\Windows\system32\drivers\msdsm.sys

01:17:57.0957 1344 msdsm - ok

01:17:57.0988 1344 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe

01:17:58.0004 1344 MSDTC - ok

01:17:58.0035 1344 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys

01:17:58.0035 1344 Msfs - ok

01:17:58.0051 1344 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys

01:17:58.0051 1344 mshidkmdf - ok

01:17:58.0066 1344 [ 956741C67ABAA78B19AADC5474936842 ] MSHUSBVideo C:\Windows\system32\Drivers\nx6000.sys

01:17:58.0066 1344 MSHUSBVideo - ok

01:17:58.0082 1344 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys

01:17:58.0082 1344 msisadrv - ok

01:17:58.0113 1344 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll

01:17:58.0113 1344 MSiSCSI - ok

01:17:58.0113 1344 msiserver - ok

01:17:58.0129 1344 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys

01:17:58.0129 1344 MSKSSRV - ok

01:17:58.0129 1344 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys

01:17:58.0129 1344 MSPCLOCK - ok

01:17:58.0144 1344 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys

01:17:58.0144 1344 MSPQM - ok

01:17:58.0176 1344 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys

01:17:58.0176 1344 MsRPC - ok

01:17:58.0191 1344 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys

01:17:58.0191 1344 mssmbios - ok

01:17:58.0207 1344 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys

01:17:58.0207 1344 MSTEE - ok

01:17:58.0207 1344 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys

01:17:58.0207 1344 MTConfig - ok

01:17:58.0222 1344 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys

01:17:58.0222 1344 Mup - ok

01:17:58.0300 1344 [ A3BA8A14490FDBF106939C37A125E82C ] mxssvr C:\Program Files\National Instruments\MAX\nimxs.exe

01:17:58.0300 1344 mxssvr - ok

01:17:58.0332 1344 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll

01:17:58.0347 1344 napagent - ok

01:17:58.0347 1344 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys

01:17:58.0363 1344 NativeWifiP - ok

01:17:58.0410 1344 [ 8C9C922D71F1CD4DEF73F186416B7896 ] NDIS C:\Windows\system32\drivers\ndis.sys

01:17:58.0410 1344 NDIS - ok

01:17:58.0410 1344 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys

01:17:58.0425 1344 NdisCap - ok

01:17:58.0425 1344 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys

01:17:58.0425 1344 NdisTapi - ok

01:17:58.0441 1344 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys

01:17:58.0441 1344 Ndisuio - ok

01:17:58.0441 1344 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys

01:17:58.0456 1344 NdisWan - ok

01:17:58.0472 1344 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys

01:17:58.0472 1344 NDProxy - ok

01:17:58.0488 1344 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys

01:17:58.0503 1344 NetBIOS - ok

01:17:58.0503 1344 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys

01:17:58.0519 1344 NetBT - ok

01:17:58.0534 1344 [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon C:\Windows\system32\lsass.exe

01:17:58.0534 1344 Netlogon - ok

01:17:58.0581 1344 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe

01:17:58.0612 1344 NetMsmqActivator - ok

01:17:58.0612 1344 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe

01:17:58.0612 1344 NetPipeActivator - ok

01:17:58.0612 1344 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe

01:17:58.0612 1344 NetTcpActivator - ok

01:17:58.0612 1344 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe

01:17:58.0612 1344 NetTcpPortSharing - ok

01:17:58.0628 1344 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys

01:17:58.0628 1344 nfrd960 - ok

01:17:58.0644 1344 [ 2AD3C955A4B2A0C82C1906F61CB297F8 ] ni1006k C:\Windows\system32\drivers\ni1006k.sys

01:17:58.0644 1344 ni1006k - ok

01:17:58.0659 1344 [ F965EE798882B6CCF8DE95AF3DD18B7C ] ni1045k C:\Windows\system32\drivers\ni1045kl.sys

01:17:58.0659 1344 ni1045k - ok

01:17:58.0675 1344 [ A5CD3ACBAC593859AD03ED957B443760 ] ni1065k C:\Windows\system32\drivers\ni1065k.sys

01:17:58.0675 1344 ni1065k - ok

01:17:58.0706 1344 [ A3BA8A14490FDBF106939C37A125E82C ] ni488enumsvc C:\Windows\system32\nipalsm.exe

01:17:58.0722 1344 ni488enumsvc - ok

01:17:58.0722 1344 [ 3B21D301913F34D9F66229EA0A630AF2 ] ni488lock C:\Windows\system32\drivers\ni488lock.sys

01:17:58.0722 1344 ni488lock - ok

01:17:58.0737 1344 [ E3B366FDCF29BD8D7CE814728409EAA4 ] nidimk C:\Windows\system32\drivers\nidimkl.sys

01:17:58.0753 1344 nidimk - ok

01:17:58.0815 1344 [ 20EC1ED5FE2C5580803875E91441E435 ] NIDomainService C:\Program Files\National Instruments\Shared\Security\nidmsrv.exe

01:17:58.0815 1344 NIDomainService - ok

01:17:58.0893 1344 [ 7F54EC83B7C3C47AD7A04887749414A1 ] niLXIDiscovery C:\Program Files\IVI Foundation\VISA\WinNT\NIvisa\niLxiDiscovery.exe

01:17:58.0893 1344 niLXIDiscovery - ok

01:17:58.0909 1344 [ 36C14A5B0BFB1A478AD370A7DB0521B9 ] nimdbgk C:\Windows\system32\drivers\nimdbgkl.sys

01:17:58.0909 1344 nimdbgk - ok

01:17:58.0956 1344 [ 15FC75D9BCFF0D19A4365737C9BEE3AC ] nimDNSResponder C:\Program Files\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe

01:17:58.0956 1344 nimDNSResponder - ok

01:17:58.0971 1344 [ 7B994752C2F7B133EF48BC25B0C928DE ] nimxdfk C:\Windows\system32\drivers\nimxdfkl.sys

01:17:58.0971 1344 nimxdfk - ok

01:17:58.0987 1344 [ 2EE2631F636F2CCEB8F054BEE79AD6C4 ] niorbk C:\Windows\system32\drivers\niorbkl.sys

01:17:58.0987 1344 niorbk - ok

01:17:59.0002 1344 [ F89FA80B608BAAEE7C21DBC19395E917 ] nipalfwedl C:\Windows\system32\drivers\nipalfwedl.sys

01:17:59.0002 1344 nipalfwedl - ok

01:17:59.0018 1344 [ ABFF5FDD4630CFFF14F5ECA1C305D76D ] NIPALK C:\Windows\system32\drivers\nipalk.sys

01:17:59.0034 1344 NIPALK - ok

01:17:59.0034 1344 [ 31DF813F11F213FA5476B33084778ADC ] nipalusbedl C:\Windows\system32\drivers\nipalusbedl.sys

01:17:59.0049 1344 nipalusbedl - ok

01:17:59.0049 1344 [ 96C846AB33C383583282B0375B34E9D2 ] nipbcfk C:\Windows\system32\drivers\nipbcfk.sys

01:17:59.0049 1344 nipbcfk - ok

01:17:59.0065 1344 [ 1912641A3F404FBEDF597E27C675B2DD ] nipxigpk C:\Windows\system32\drivers\nipxigpk.sys

01:17:59.0065 1344 nipxigpk - ok

01:17:59.0065 1344 [ 0A1E9C0D83C6BE4A99AA126CF7D6796E ] nipxirmk C:\Windows\system32\drivers\nipxirmkl.sys

01:17:59.0065 1344 nipxirmk - ok

01:17:59.0080 1344 [ A3BA8A14490FDBF106939C37A125E82C ] nipxirmu C:\Windows\system32\nipalsm.exe

01:17:59.0080 1344 nipxirmu - ok

01:17:59.0096 1344 niSvcLoc - ok

01:17:59.0096 1344 [ 1C6CA16957BAD7A11A990904CEA8598D ] NiViFWK C:\Windows\system32\drivers\NiViFWKl.sys

01:17:59.0096 1344 NiViFWK - ok

01:17:59.0112 1344 [ 26FD31288FEEF016A5462B24A3D50E65 ] NiViPciK C:\Windows\system32\drivers\NiViPciKl.sys

01:17:59.0112 1344 NiViPciK - ok

01:17:59.0127 1344 [ 0844525334D794480CA493A4C7D0193B ] NiViPxiK C:\Windows\system32\drivers\NiViPxiKl.sys

01:17:59.0127 1344 NiViPxiK - ok

01:17:59.0158 1344 [ 374071043F9E4231EE43BE2BB48DD36D ] NlaSvc C:\Windows\System32\nlasvc.dll

01:17:59.0158 1344 NlaSvc - ok

01:17:59.0174 1344 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys

01:17:59.0174 1344 Npfs - ok

01:17:59.0205 1344 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll

01:17:59.0205 1344 nsi - ok

01:17:59.0221 1344 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys

01:17:59.0221 1344 nsiproxy - ok

01:17:59.0283 1344 [ 5E43D2B0EE64123D4880DFA6626DEFDE ] Ntfs C:\Windows\system32\drivers\Ntfs.sys

01:17:59.0283 1344 Ntfs - ok

01:17:59.0299 1344 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys

01:17:59.0299 1344 Null - ok

01:17:59.0502 1344 [ B69E6F70CE1151C8D62ABC9DEF64DFBE ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys

01:17:59.0658 1344 nvlddmkm - ok

01:17:59.0689 1344 [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid C:\Windows\system32\drivers\nvraid.sys

01:17:59.0689 1344 nvraid - ok

01:17:59.0704 1344 [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor C:\Windows\system32\drivers\nvstor.sys

01:17:59.0704 1344 nvstor - ok

01:17:59.0751 1344 [ E4284FCF99FEA13A7E1836F87AE356F6 ] nvsvc C:\Windows\system32\nvvsvc.exe

01:17:59.0767 1344 nvsvc - ok

01:17:59.0845 1344 [ 03E60E0BFA53ED15DC984FA34B44BB0F ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe

01:17:59.0845 1344 nvUpdatusService - ok

01:17:59.0860 1344 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys

01:17:59.0860 1344 nv_agp - ok

01:17:59.0954 1344 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE

01:17:59.0954 1344 odserv - ok

01:17:59.0970 1344 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys

01:17:59.0970 1344 ohci1394 - ok

01:18:00.0016 1344 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE

01:18:00.0016 1344 ose - ok

01:18:00.0157 1344 [ 358A9CCA612C68EB2F07DDAD4CE1D8D7 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE

01:18:00.0235 1344 osppsvc - ok

01:18:00.0282 1344 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll

01:18:00.0297 1344 p2pimsvc - ok

01:18:00.0328 1344 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll

01:18:00.0344 1344 p2psvc - ok

01:18:00.0360 1344 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys

01:18:00.0360 1344 Parport - ok

01:18:00.0375 1344 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr C:\Windows\system32\drivers\partmgr.sys

01:18:00.0375 1344 partmgr - ok

01:18:00.0391 1344 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys

01:18:00.0391 1344 Parvdm - ok

01:18:00.0406 1344 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll

01:18:00.0406 1344 PcaSvc - ok

01:18:00.0422 1344 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\Windows\system32\drivers\pci.sys

01:18:00.0422 1344 pci - ok

01:18:00.0438 1344 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\drivers\pciide.sys

01:18:00.0438 1344 pciide - ok

01:18:00.0453 1344 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys

01:18:00.0453 1344 pcmcia - ok

01:18:00.0484 1344 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys

01:18:00.0484 1344 pcw - ok

01:18:00.0516 1344 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys

01:18:00.0531 1344 PEAUTH - ok

01:18:00.0562 1344 [ AF4D64D2A57B9772CF3801950B8058A6 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll

01:18:00.0578 1344 PeerDistSvc - ok

01:18:00.0640 1344 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll

01:18:00.0656 1344 pla - ok

01:18:00.0703 1344 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay C:\Windows\system32\umpnpmgr.dll

01:18:00.0703 1344 PlugPlay - ok

01:18:00.0718 1344 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll

01:18:00.0718 1344 PNRPAutoReg - ok

01:18:00.0734 1344 [ 896D916DE06F5502D301E8C4DC442AE8 ] Point32 C:\Windows\system32\DRIVERS\point32.sys

01:18:00.0734 1344 Point32 - ok

01:18:00.0765 1344 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll

01:18:00.0765 1344 PolicyAgent - ok

01:18:00.0812 1344 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll

01:18:00.0812 1344 Power - ok

01:18:00.0843 1344 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys

01:18:00.0843 1344 PptpMiniport - ok

01:18:00.0843 1344 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys

01:18:00.0859 1344 Processor - ok

01:18:00.0859 1344 [ CADEFAC453040E370A1BDFF3973BE00D ] ProfSvc C:\Windows\system32\profsvc.dll

01:18:00.0874 1344 ProfSvc - ok

01:18:00.0874 1344 [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe

01:18:00.0874 1344 ProtectedStorage - ok

01:18:00.0890 1344 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys

01:18:00.0890 1344 Psched - ok

01:18:00.0952 1344 [ D3B178F3613B46F6F801B18938B0334A ] QBCFMonitorService C:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe

01:18:00.0952 1344 QBCFMonitorService - ok

01:18:00.0999 1344 [ 6BEE1814470DC12FA20C53DFC3C97EBB ] QBFCService C:\Program Files\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe

01:18:00.0999 1344 QBFCService - ok

01:18:01.0077 1344 [ 1E71F73326412880439C13AF56BB65B9 ] QBVSS C:\Program Files\Common Files\Intuit\DataProtect\QBIDPService.exe

01:18:01.0093 1344 QBVSS - ok

01:18:01.0140 1344 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys

01:18:01.0140 1344 ql2300 - ok

01:18:01.0155 1344 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys

01:18:01.0155 1344 ql40xx - ok

01:18:01.0171 1344 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys

01:18:01.0171 1344 QWAVEdrv - ok

01:18:01.0186 1344 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys

01:18:01.0202 1344 RasAcd - ok

01:18:01.0233 1344 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys

01:18:01.0233 1344 RasAgileVpn - ok

01:18:01.0264 1344 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll

01:18:01.0264 1344 RasAuto - ok

01:18:01.0296 1344 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys

01:18:01.0296 1344 Rasl2tp - ok

01:18:01.0311 1344 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys

01:18:01.0311 1344 RasPppoe - ok

01:18:01.0327 1344 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys

01:18:01.0327 1344 RasSstp - ok

01:18:01.0374 1344 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys

01:18:01.0374 1344 rdbss - ok

01:18:01.0389 1344 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys

01:18:01.0389 1344 rdpbus - ok

01:18:01.0405 1344 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys

01:18:01.0405 1344 RDPCDD - ok

01:18:01.0420 1344 [ B973FCFC50DC1434E1970A146F7E3885 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys

01:18:01.0420 1344 RDPDR - ok

01:18:01.0420 1344 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys

01:18:01.0420 1344 RDPENCDD - ok

01:18:01.0436 1344 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys

01:18:01.0436 1344 RDPREFMP - ok

01:18:01.0483 1344 [ 68A0387F58E226DEEE23D9715955572A ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys

01:18:01.0483 1344 RdpVideoMiniport - ok

01:18:01.0483 1344 [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys

01:18:01.0498 1344 RDPWD - ok

01:18:01.0498 1344 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys

01:18:01.0498 1344 rdyboost - ok

01:18:01.0545 1344 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll

01:18:01.0545 1344 RemoteAccess - ok

01:18:01.0576 1344 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll

01:18:01.0592 1344 RemoteRegistry - ok

01:18:01.0623 1344 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll

01:18:01.0623 1344 RpcEptMapper - ok

01:18:01.0670 1344 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe

01:18:01.0670 1344 RpcLocator - ok

01:18:01.0701 1344 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\Windows\System32\rpcss.dll

01:18:01.0701 1344 RpcSs - ok

01:18:01.0717 1344 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys

01:18:01.0717 1344 rspndr - ok

01:18:01.0764 1344 [ 6A2586DCB5B04A52404699EB325DF1DB ] RTL8167 C:\Windows\system32\DRIVERS\Rt86win7.sys

01:18:01.0764 1344 RTL8167 - ok

01:18:01.0795 1344 [ 7FA7F2E249A5DCBB7970630E15E1F482 ] s3cap C:\Windows\system32\drivers\vms3cap.sys

01:18:01.0795 1344 s3cap - ok

01:18:01.0810 1344 [ 81951F51E318AECC2D68559E47485CC4 ] SamSs C:\Windows\system32\lsass.exe

01:18:01.0810 1344 SamSs - ok

01:18:01.0826 1344 [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port C:\Windows\system32\drivers\sbp2port.sys

01:18:01.0826 1344 sbp2port - ok

01:18:01.0857 1344 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll

01:18:01.0873 1344 SCardSvr - ok

01:18:01.0873 1344 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys

01:18:01.0873 1344 scfilter - ok

01:18:01.0904 1344 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\Windows\system32\schedsvc.dll

01:18:01.0904 1344 Schedule - ok

01:18:01.0935 1344 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\Windows\System32\certprop.dll

01:18:01.0935 1344 SCPolicySvc - ok

01:18:01.0951 1344 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\Windows\System32\SDRSVC.dll

01:18:01.0951 1344 SDRSVC - ok

01:18:01.0998 1344 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys

01:18:01.0998 1344 secdrv - ok

01:18:01.0998 1344 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll

01:18:02.0013 1344 seclogon - ok

01:18:02.0029 1344 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys

01:18:02.0029 1344 Serenum - ok

01:18:02.0044 1344 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys

01:18:02.0044 1344 Serial - ok

01:18:02.0060 1344 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys

01:18:02.0060 1344 sermouse - ok

01:18:02.0076 1344 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\drivers\sffdisk.sys

01:18:02.0076 1344 sffdisk - ok

01:18:02.0091 1344 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys

01:18:02.0091 1344 sffp_mmc - ok

01:18:02.0091 1344 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys

01:18:02.0091 1344 sffp_sd - ok

01:18:02.0107 1344 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys

01:18:02.0107 1344 sfloppy - ok

01:18:02.0154 1344 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\Windows\System32\ipnathlp.dll

01:18:02.0154 1344 SharedAccess - ok

01:18:02.0263 1344 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll

01:18:02.0263 1344 ShellHWDetection - ok

01:18:02.0278 1344 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys

01:18:02.0278 1344 sisagp - ok

01:18:02.0278 1344 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys

01:18:02.0278 1344 SiSRaid2 - ok

01:18:02.0294 1344 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys

01:18:02.0294 1344 SiSRaid4 - ok

01:18:02.0419 1344 [ EB17DF573B4423DF0B3B2EE3B268A6DE ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe

01:18:02.0466 1344 Skype C2C Service - ok

01:18:02.0512 1344 [ 7C15061CD0372487903B07B9BB03AFAD ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe

01:18:02.0512 1344 SkypeUpdate - ok

01:18:02.0528 1344 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys

01:18:02.0528 1344 Smb - ok

01:18:02.0575 1344 [ 5BCEB1B306878035DACBA6DD18366EDA ] snapman C:\Windows\system32\DRIVERS\snapman.sys

01:18:02.0575 1344 snapman - ok

01:18:02.0590 1344 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe

01:18:02.0590 1344 SNMPTRAP - ok

01:18:02.0606 1344 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys

01:18:02.0606 1344 spldr - ok

01:18:02.0637 1344 [ 9AEA093B8F9C37CF45538382CABA2475 ] Spooler C:\Windows\System32\spoolsv.exe

01:18:02.0637 1344 Spooler - ok

01:18:02.0746 1344 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe

01:18:02.0793 1344 sppsvc - ok

01:18:02.0824 1344 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv C:\Windows\system32\DRIVERS\srv.sys

01:18:02.0824 1344 srv - ok

01:18:02.0840 1344 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys

01:18:02.0856 1344 srv2 - ok

01:18:02.0856 1344 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys

01:18:02.0856 1344 srvnet - ok

01:18:02.0902 1344 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll

01:18:02.0902 1344 SSDPSRV - ok

01:18:02.0918 1344 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll

01:18:02.0918 1344 SstpSvc - ok

01:18:02.0980 1344 [ 5A19667A580B1CE886EAF968B9743F45 ] Stereo Service C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

01:18:02.0980 1344 Stereo Service - ok

01:18:02.0996 1344 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys

01:18:02.0996 1344 stexstor - ok

01:18:03.0012 1344 [ EDB05BD63148796F23EA78506404A538 ] StillCam C:\Windows\system32\DRIVERS\serscan.sys

01:18:03.0012 1344 StillCam - ok

01:18:03.0058 1344 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll

01:18:03.0058 1344 StiSvc - ok

01:18:03.0074 1344 [ 472AF0311073DCECEAA8FA18BA2BDF89 ] storflt C:\Windows\system32\drivers\vmstorfl.sys

01:18:03.0074 1344 storflt - ok

01:18:03.0074 1344 [ DCAFFD62259E0BDB433DD67B5BB37619 ] storvsc C:\Windows\system32\drivers\storvsc.sys

01:18:03.0074 1344 storvsc - ok

01:18:03.0090 1344 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\drivers\swenum.sys

01:18:03.0090 1344 swenum - ok

01:18:03.0105 1344 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll

01:18:03.0121 1344 swprv - ok

01:18:03.0152 1344 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll

01:18:03.0152 1344 TabletInputService - ok

01:18:03.0168 1344 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll

01:18:03.0168 1344 TapiSrv - ok

01:18:03.0199 1344 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll

01:18:03.0199 1344 TBS - ok

01:18:03.0261 1344 [ 7C0507D2391AF5933600CBCED799F277 ] Tcpip C:\Windows\system32\drivers\tcpip.sys

01:18:03.0277 1344 Tcpip - ok

01:18:03.0292 1344 [ 7C0507D2391AF5933600CBCED799F277 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys

01:18:03.0308 1344 TCPIP6 - ok

01:18:03.0339 1344 [ 3EEBD3BD93DA46A26E89893C7AB2FF3B ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys

01:18:03.0355 1344 tcpipreg - ok

01:18:03.0355 1344 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys

01:18:03.0355 1344 TDPIPE - ok

01:18:03.0386 1344 [ 8DE3E45000BA8C9EBB16737D3F83E216 ] tdrpman258 C:\Windows\system32\DRIVERS\tdrpm258.sys

01:18:03.0402 1344 tdrpman258 - ok

01:18:03.0417 1344 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys

01:18:03.0417 1344 TDTCP - ok

01:18:03.0417 1344 [ B459575348C20E8121D6039DA063C704 ] tdx C:\Windows\system32\DRIVERS\tdx.sys

01:18:03.0417 1344 tdx - ok

01:18:03.0433 1344 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\Windows\system32\drivers\termdd.sys

01:18:03.0433 1344 TermDD - ok

01:18:03.0464 1344 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll

01:18:03.0464 1344 TermService - ok

01:18:03.0495 1344 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll

01:18:03.0495 1344 Themes - ok

01:18:03.0542 1344 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll

01:18:03.0542 1344 THREADORDER - ok

01:18:03.0558 1344 [ 3E06987FEDBCDFBFF8E85EF8108565F9 ] timounter C:\Windows\system32\DRIVERS\timntr.sys

01:18:03.0573 1344 timounter - ok

01:18:03.0604 1344 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll

01:18:03.0604 1344 TrkWks - ok

01:18:03.0651 1344 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe

01:18:03.0651 1344 TrustedInstaller - ok

01:18:03.0667 1344 [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys

01:18:03.0667 1344 tssecsrv - ok

01:18:03.0667 1344 [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys

01:18:03.0667 1344 TsUsbFlt - ok

01:18:03.0682 1344 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys

01:18:03.0682 1344 tunnel - ok

01:18:03.0698 1344 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys

01:18:03.0698 1344 uagp35 - ok

01:18:03.0714 1344 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys

01:18:03.0714 1344 udfs - ok

01:18:03.0760 1344 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe

01:18:03.0760 1344 UI0Detect - ok

01:18:03.0776 1344 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys

01:18:03.0776 1344 uliagpkx - ok

01:18:03.0776 1344 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\Windows\system32\drivers\umbus.sys

01:18:03.0776 1344 umbus - ok

01:18:03.0807 1344 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys

01:18:03.0807 1344 UmPass - ok

01:18:03.0823 1344 [ 409994A8EACEEE4E328749C0353527A0 ] UmRdpService C:\Windows\System32\umrdp.dll

01:18:03.0838 1344 UmRdpService - ok

01:18:03.0854 1344 [ 1D9F2BD026E8E2D45033A4DF3F16B78C ] usbaudio C:\Windows\system32\drivers\usbaudio.sys

01:18:03.0854 1344 usbaudio - ok

01:18:03.0854 1344 [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys

01:18:03.0854 1344 usbccgp - ok

01:18:03.0870 1344 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\drivers\usbcir.sys

01:18:03.0870 1344 usbcir - ok

01:18:03.0870 1344 [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys

01:18:03.0870 1344 usbehci - ok

01:18:03.0885 1344 [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys

01:18:03.0885 1344 usbhub - ok

01:18:03.0901 1344 [ E185D44FAC515A18D9DEDDC23C2CDF44 ] usbohci C:\Windows\system32\drivers\usbohci.sys

01:18:03.0901 1344 usbohci - ok

01:18:03.0916 1344 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys

01:18:03.0916 1344 usbprint - ok

01:18:03.0932 1344 [ 576096CCBC07E7C4EA4F5E6686D6888F ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys

01:18:03.0932 1344 usbscan - ok

01:18:03.0948 1344 [ F991AB9CC6B908DB552166768176896A ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS

01:18:03.0948 1344 USBSTOR - ok

01:18:03.0948 1344 [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys

01:18:03.0948 1344 usbuhci - ok

01:18:03.0963 1344 [ 45F4E7BF43DB40A6C6B4D92C76CBC3F2 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys

01:18:03.0963 1344 usbvideo - ok

01:18:03.0994 1344 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll

01:18:03.0994 1344 UxSms - ok

01:18:04.0010 1344 [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc C:\Windows\system32\lsass.exe

01:18:04.0010 1344 VaultSvc - ok

01:18:04.0010 1344 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys

01:18:04.0010 1344 vdrvroot - ok

01:18:04.0041 1344 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe

01:18:04.0041 1344 vds - ok

01:18:04.0057 1344 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys

01:18:04.0057 1344 vga - ok

01:18:04.0057 1344 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys

01:18:04.0057 1344 VgaSave - ok

01:18:04.0088 1344 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys

01:18:04.0088 1344 vhdmp - ok

01:18:04.0104 1344 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys

01:18:04.0104 1344 viaagp - ok

01:18:04.0119 1344 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys

01:18:04.0119 1344 ViaC7 - ok

01:18:04.0135 1344 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\drivers\viaide.sys

01:18:04.0135 1344 viaide - ok

01:18:04.0150 1344 [ C2F2911156FDC7817C52829C86DA494E ] vmbus C:\Windows\system32\drivers\vmbus.sys

01:18:04.0150 1344 vmbus - ok

01:18:04.0166 1344 [ D4D77455211E204F370D08F4963063CE ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys

01:18:04.0166 1344 VMBusHID - ok

01:18:04.0166 1344 [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr C:\Windows\system32\drivers\volmgr.sys

01:18:04.0166 1344 volmgr - ok

01:18:04.0197 1344 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys

01:18:04.0197 1344 volmgrx - ok

01:18:04.0213 1344 [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap C:\Windows\system32\drivers\volsnap.sys

01:18:04.0213 1344 volsnap - ok

01:18:04.0228 1344 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys

01:18:04.0228 1344 vsmraid - ok

01:18:04.0275 1344 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\Windows\system32\vssvc.exe

01:18:04.0291 1344 VSS - ok

01:18:04.0306 1344 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys

01:18:04.0306 1344 vwifibus - ok

01:18:04.0338 1344 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll

01:18:04.0338 1344 W32Time - ok

01:18:04.0338 1344 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys

01:18:04.0338 1344 WacomPen - ok

01:18:04.0353 1344 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys

01:18:04.0353 1344 WANARP - ok

01:18:04.0353 1344 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys

01:18:04.0369 1344 Wanarpv6 - ok

01:18:04.0416 1344 [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe

01:18:04.0431 1344 WatAdminSvc - ok

01:18:04.0494 1344 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\Windows\system32\wbengine.exe

01:18:04.0494 1344 wbengine - ok

01:18:04.0509 1344 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll

01:18:04.0509 1344 WbioSrvc - ok

01:18:04.0525 1344 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys

01:18:04.0525 1344 Wd - ok

01:18:04.0572 1344 [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys

01:18:04.0587 1344 Wdf01000 - ok

01:18:04.0587 1344 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll

01:18:04.0603 1344 WdiServiceHost - ok

01:18:04.0603 1344 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll

01:18:04.0603 1344 WdiSystemHost - ok

01:18:04.0618 1344 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll

01:18:04.0618 1344 Wecsvc - ok

01:18:04.0634 1344 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll

01:18:04.0634 1344 wercplsupport - ok

01:18:04.0634 1344 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll

01:18:04.0650 1344 WerSvc - ok

01:18:04.0650 1344 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys

01:18:04.0650 1344 WfpLwf - ok

01:18:04.0665 1344 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys

01:18:04.0665 1344 WIMMount - ok

01:18:04.0728 1344 [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll

01:18:04.0743 1344 WinDefend - ok

01:18:04.0790 1344 [ 0A597F84BC8AF4229B529F655BB2BA14 ] WinDriver6 C:\Windows\system32\drivers\windrvr6.sys

01:18:04.0790 1344 WinDriver6 - ok

01:18:04.0790 1344 WinHttpAutoProxySvc - ok

01:18:04.0852 1344 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll

01:18:04.0852 1344 Winmgmt - ok

01:18:04.0915 1344 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\Windows\system32\WsmSvc.dll

01:18:04.0915 1344 WinRM - ok

01:18:04.0962 1344 [ A67E5F9A400F3BD1BE3D80613B45F708 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys

01:18:04.0962 1344 WinUsb - ok

01:18:05.0008 1344 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll

01:18:05.0024 1344 Wlansvc - ok

01:18:05.0040 1344 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys

01:18:05.0040 1344 WmiAcpi - ok

01:18:05.0071 1344 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe

01:18:05.0071 1344 wmiApSrv - ok

01:18:05.0133 1344 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe

01:18:05.0149 1344 WMPNetworkSvc - ok

01:18:05.0164 1344 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll

01:18:05.0164 1344 WPCSvc - ok

01:18:05.0196 1344 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys

01:18:05.0196 1344 ws2ifsl - ok

01:18:05.0211 1344 [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc C:\Windows\system32\wscsvc.dll

01:18:05.0211 1344 wscsvc - ok

01:18:05.0211 1344 WSearch - ok

01:18:05.0258 1344 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll

01:18:05.0289 1344 wuauserv - ok

01:18:05.0336 1344 [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys

01:18:05.0336 1344 WudfPf - ok

01:18:05.0336 1344 [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys

01:18:05.0352 1344 WUDFRd - ok

01:18:05.0383 1344 [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc C:\Windows\System32\WUDFSvc.dll

01:18:05.0383 1344 wudfsvc - ok

01:18:05.0398 1344 [ C73401E217F9E18494B674F65A354BD3 ] XilinxFirmwareLoader C:\Windows\system32\Drivers\xusbdfwu.sys

01:18:05.0398 1344 XilinxFirmwareLoader - ok

01:18:05.0414 1344 [ 6104F397127FEECCCE16BD16CD3843A6 ] XilinxPC4Driver C:\Windows\System32\drivers\xpc4drvr.sys

01:18:05.0414 1344 XilinxPC4Driver - ok

01:18:05.0414 1344 ================ Scan global ===============================

01:18:05.0476 1344 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll

01:18:05.0508 1344 [ 1F5F07091D50244F17DD8D5147A628CC ] C:\Windows\system32\winsrv.dll

01:18:05.0523 1344 [ 1F5F07091D50244F17DD8D5147A628CC ] C:\Windows\system32\winsrv.dll

01:18:05.0554 1344 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll

01:18:05.0617 1344 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe

01:18:05.0617 1344 [Global] - ok

01:18:05.0617 1344 ================ Scan MBR ==================================

01:18:05.0617 1344 [ 671B81004FDD1588FA9ED1331C9CECA9 ] \Device\Harddisk0\DR0

01:18:05.0726 1344 \Device\Harddisk0\DR0 - ok

01:18:05.0742 1344 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1

01:18:06.0054 1344 \Device\Harddisk1\DR1 - ok

01:18:06.0054 1344 [ 671B81004FDD1588FA9ED1331C9CECA9 ] \Device\Harddisk2\DR2

01:18:06.0054 1344 \Device\Harddisk2\DR2 - ok

01:18:06.0069 1344 [ E5FA06ACA0D60BA9C870D0EF3D9898C9 ] \Device\Harddisk3\DR3

01:18:07.0910 1344 \Device\Harddisk3\DR3 - ok

01:18:07.0910 1344 ================ Scan VBR ==================================

01:18:07.0910 1344 [ 1650BEF2B526489F86542979D54DDBBB ] \Device\Harddisk0\DR0\Partition1

01:18:07.0910 1344 \Device\Harddisk0\DR0\Partition1 - ok

01:18:07.0926 1344 [ 21D436F60A633BF28BA32F598AEF3B5B ] \Device\Harddisk1\DR1\Partition1

01:18:07.0926 1344 \Device\Harddisk1\DR1\Partition1 - ok

01:18:07.0926 1344 [ C1B93C5BEB685A0F87998384DF471B29 ] \Device\Harddisk2\DR2\Partition1

01:18:07.0926 1344 \Device\Harddisk2\DR2\Partition1 - ok

01:18:07.0926 1344 [ A65D12EA8406B8287D26A8DACF376378 ] \Device\Harddisk3\DR3\Partition1

01:18:07.0926 1344 \Device\Harddisk3\DR3\Partition1 - ok

01:18:07.0926 1344 ============================================================

01:18:07.0926 1344 Scan finished

01:18:07.0926 1344 ============================================================

01:18:07.0926 0872 Detected object count: 0

01:18:07.0926 0872 Actual detected object count: 0

01:19:11.0636 0492 Deinitialize success

Telenochek82 · May 24, 2013

RogueKiller V8.5.4 [Mar 18 2013] by Tigzy

mail : tigzyRK<at>gmail<dot>com

Feedback : http://www.geekstogo.com/forum/files/file/413-roguekiller/

Website : http://tigzy.geekstogo.com/roguekiller.php

Blog : http://tigzyrk.blogspot.com/

Operating System : Windows 7 (6.1.7601 Service Pack 1) 32 bits version

Started in : Safe mode with network support

User : Pavel [Admin rights]

Mode : Scan -- Date : 05/24/2013 01:21:28

| ARK || FAK || MBR |

¤¤¤ Bad processes : 1 ¤¤¤

[sUSP PATH] adwcleaner.exe -- C:\Users\Pavel\Desktop\downloads\windows_problem\2_adwcleaner\adwcleaner.exe [-] -> KILLED [TermProc]

¤¤¤ Registry Entries : 2 ¤¤¤

[RUN][sUSP PATH] HKLM\[...]\RunOnce : OTL ("C:\Users\Pavel\Desktop\new_installs\zero_access\2013\OTL.exe") [x] -> FOUND

[HJPOL] HKLM\[...]\System : DisableRegistryTools (0) -> FOUND

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED] ¤¤¤

¤¤¤ Extern Hives: ¤¤¤

-> F:\windows\system32\config\SOFTWARE

-> F:\windows\system32\config\SYSTEM

-> F:\Documents and Settings\Administrator\NTUSER.DAT

-> F:\Documents and Settings\All Users\NTUSER.DAT

-> F:\Documents and Settings\LocalService\NTUSER.DAT

-> F:\Documents and Settings\NetworkService\NTUSER.DAT

-> F:\Documents and Settings\Owner.DEEPBLUE\NTUSER.DAT

¤¤¤ HOSTS File: ¤¤¤

--> C:\Windows\system32\drivers\etc\hosts

127.0.0.1 localhost

¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: WDC WD2500KS-00MJB0 ATA Device +++++

--- User ---

[MBR] 6c9d557202d8589c6a5f8ad8c2a57caf

[bSP] 153f6312cdac74582f8ee94e5095e5dc : Windows XP MBR Code

Partition table:

0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 238472 Mo

User = LL1 ... OK!

User = LL2 ... OK!

+++++ PhysicalDrive1: WDC WD6401AALS-00E8B0 ATA Device +++++

--- User ---

[MBR] 6c2c65a8fe819372ffa0e6ed1f993f2b

[bSP] c645bddc499d008f1c7b493c742f9c16 : Windows 7/8 MBR Code

Partition table:

0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 610477 Mo

User = LL1 ... OK!

User = LL2 ... OK!

+++++ PhysicalDrive2: WDC WD2500JS-00NCB1 ATA Device +++++

--- User ---

[MBR] df73851826b755a07a2ccd3f6d3869f7

[bSP] 314d265bd6777dc04bcd6f9463d88590 : Windows XP MBR Code

Partition table:

0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 238472 Mo

User = LL1 ... OK!

User = LL2 ... OK!

+++++ PhysicalDrive3: Generic Flash Disk USB Device +++++

--- User ---

[MBR] b8c8d0d232183e9b9e3023c06a19396b

[bSP] 2fbc8372464581b1ce78184bfb9b16a9 : Empty MBR Code

Partition table:

0 - [ACTIVE] FAT16 (0x06) [VISIBLE] Offset (sectors): 32 | Size: 960 Mo

User = LL1 ... OK!

Error reading LL2 MBR!

Finished : << RKreport[1]_S_05242013_02d0121.txt >>

RKreport[1]_S_05242013_02d0121.txt

Maurice Naggar · May 25, 2013

Question for you:

Are you placing (saving) the tools in special sub-folders ? and why ??

C:\Users\Pavel\Desktop\downloads\windows_problem\2_adwcleaner\adwcleaner.exe

C:\Users\Pavel\Desktop\new_installs\zero_access\2013\OTL.exe

I typically ask & suggest that tools be saved directly just to the DESKTOP and not within folders.

I do not know what you have on the F drive .....but please, disconnect any and all external storage drives.

Task 2

Close any open documents/programs & all internet browsers you have running.
Please start AdwCleaner
Click on Delete button.
Confirm each time with OK.
Your computer will be rebooted automatically. A text file will open after the restart. Please post the content of that logfile in your reply.
Note: You can find the logfile at C:\AdwCleaner[s1]

Task 3

1. Download Malwarebytes Anti-Rootkit from http://www.malwarebytes.org/products/mbar/

2. Unzip the contents to a folder in a convenient location.

3. Open the folder where the contents were unzipped and run mbar.exe

4. Follow the instructions in the wizard to update and allow the program to scan your computer for threats.

5. Click on the Cleanup button to remove any threats and reboot if prompted to do so.

6. Wait while the system shuts down and the cleanup process is performed.

7. Perform another scan with Malwarebytes Anti-Rootkit to verify that no threats remain. If they do, then click Cleanup once more and repeat the process.

Task 4

For x32 (x86) bit systems download Farbar Recovery Scan Tool and save it to a flash drive.

For x64 bit systems download Farbar Recovery Scan Tool x64 and save it to a flash drive.

Disconnect any external storage drives from the computer.

Enter System Recovery Options.

To enter System Recovery Options from the Advanced Boot Options:

Restart the computer.
As soon as the BIOS is loaded begin tapping the F8 key until Advanced Boot Options appears.
Use the arrow keys to select the Repair your computer menu item.
Select English as the keyboard language settings, and then click Next.
Select the operating system you want to repair, and then click Next.
Select your user account an click Next.

OR If you have the Windows o.s. DVD, then To enter System Recovery Options, by using Windows installation disc:

Insert the installation disc.
Restart your computer.
If prompted, press any key to start Windows from the installation disc. If your computer is not configured to start from a CD or DVD, check your BIOS settings.
Click Repair your computer.
Select English as the keyboard language settings, and then click Next.
Select the operating system you want to repair, and then click Next.
Select your user account and click Next.

On the System Recovery Options menu you will get the following options:

- Startup Repair
- System Restore
- Windows Complete PC Restore
- Windows Memory Diagnostic Tool
- Command Prompt

[*]Select Command Prompt

Now, Plug the flashdrive with FRST tool into the PC.

[*]In the command window type in notepad and press Enter.

[*]The notepad opens. Under File menu select Open.

[*]Select "Computer" and find your flash drive letter and close the notepad.

[*]In the command window type e:\frst.exe (for x64 bit version type e:\frst64) and press Enter

Note: Replace letter e with the drive letter of your flash drive.

[*]The tool will start to run.

[*]When the tool opens click Yes to disclaimer.

[*]Press Scan button.

[*]It will make a log (FRST.txt) on the flash drive. Please copy and paste it to your reply.

Maurice Naggar · June 13, 2013

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Unable to run most .exe files, specied service does not exist as installed service

Recommended Posts

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Recently Browsing 0 members

Important Information