1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

Laptop running slow

Discussion in 'Virus & Other Malware Removal' started by JD11SRK, Jan 27, 2013.

Thread Status:
Not open for further replies.
Advertisement
  1. JD11SRK

    JD11SRK Thread Starter

    Joined:
    Jan 27, 2013
    Messages:
    18
    Hi everyone. I've browsed the forum in the past and found it a great place for information. I now have a problem I need assistance with. My laptop starts up normal and runs normal but sometimes after about an hour it slows to a crawl. This happens even if no processes are running. This started happening about 2 months ago.

    Below is the most recent log from HijackThis. I believe I may be infected with some sort of virus or worm. Any help in reading the log and alerting me of problems would be greatly appreciated.

    Logfile of Trend Micro HijackThis v2.0.4
    Scan saved at 10:11:17 PM, on 1/26/2013
    Platform: Windows 7 SP1 (WinNT 6.00.3505)
    MSIE: Internet Explorer v9.00 (9.00.8112.16457)
    Boot mode: Normal

    Running processes:
    C:\Windows\system32\Dwm.exe
    C:\Windows\Explorer.EXE
    C:\Windows\system32\taskhost.exe
    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
    C:\Program Files\Launch Manager\LManager.exe
    C:\Program Files\Acer\Optical Drive Power Management\ODDPWR.exe
    C:\Windows\PLFSetI.exe
    C:\Windows\System32\hkcmd.exe
    C:\Windows\System32\igfxpers.exe
    C:\Program Files\Microsoft IntelliPoint\ipoint.exe
    C:\Program Files\AVAST Software\Avast\AvastUI.exe
    C:\Program Files\Common Files\Java\Java Update\jusched.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Users\JOOOOOOE\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
    C:\Windows\system32\igfxsrvc.exe
    C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
    C:\Windows\system32\igfxext.exe
    C:\Program Files\Microsoft IntelliPoint\dpupdchk.exe
    C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTray.exe
    C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
    C:\Program Files\TeamViewer\Version7\TeamViewer.exe
    C:\Windows\system32\wbem\unsecapp.exe
    C:\Windows\system32\wbem\unsecapp.exe
    C:\Windows\system32\igfxext.exe
    C:\Windows\system32\igfxsrvc.exe
    C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe
    C:\Windows\system32\DllHost.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&s=2&o=vp32&d=0609&m=aspire_5810t
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&s=2&o=vp32&d=0609&m=aspire_5810t
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&s=2&o=vp32&d=0609&m=aspire_5810t
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    O1 - Hosts: ::1 localhost
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
    O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
    O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
    O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
    O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
    O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    O4 - HKLM\..\Run: [Acer Assist Launcher] C:\Program Files\Acer\Acer Assist\launcher.exe
    O4 - HKLM\..\Run: [Acer ePower Management] C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTrayLauncher.exe
    O4 - HKLM\..\Run: [BackupManagerTray] "C:\Program Files\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" -k
    O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
    O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
    O4 - HKLM\..\Run: [LManager] C:\Program Files\Launch Manager\LManager.exe
    O4 - HKLM\..\Run: [ODDPwr] "C:\Program Files\Acer\Optical Drive Power Management\ODDPwr.exe"
    O4 - HKLM\..\Run: [PLFSetI] C:\Windows\PLFSetI.exe
    O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
    O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
    O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
    O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
    O4 - HKLM\..\Run: [IntelliPoint] "c:\Program Files\Microsoft IntelliPoint\ipoint.exe"
    O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
    O4 - HKLM\..\Run: [Intuit SyncManager] c:\Program Files\Common Files\Intuit\Sync\IntuitSyncManager.exe startup
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKCU\..\Run: [Google Update] "C:\Users\JOOOOOOE\AppData\Local\Google\Update\GoogleUpdate.exe" /c
    O4 - HKCU\..\Run: [Xvid] C:\Program Files\Xvid\CheckUpdate.exe
    O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\JOOOOOOE\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
    O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
    O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
    O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
    O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office14\EXCEL.EXE/3000
    O8 - Extra context menu item: Free YouTube Download - C:\Users\JOOOOOOE\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubedownload.htm
    O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\JOOOOOOE\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
    O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html
    O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~3\Office14\ONBttnIE.dll/105
    O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
    O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
    O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
    O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
    O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
    O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
    O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
    O16 - DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} (SysInfo Class) - http://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_intel_4.4.15.0.cab
    O16 - DPF: {DAF7E6E6-D53A-439A-B28D-12271406B8A9} (RIM AxLoader) - http://mobileapps.blackberry.com/devicesoftware/AxLoader.cab
    O16 - DPF: {F27237D7-93C8-44C2-AC6E-D6057B9A918F} (JuniperSetupClientControl Class) - https://asgaccess.statestreet.com/dana-cached/sc/JuniperSetupClient.cab
    O18 - Protocol: intu-help-qb3 - {C5E479EA-0A65-4B05-8C6C-2FC8CC682EB4} - c:\Program Files\Intuit\QuickBooks 2010\HelpAsyncPluggableProtocol.dll
    O18 - Protocol: qbwc - {FC598A64-626C-4447-85B8-53150405FD57} - mscoree.dll (file missing)
    O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
    O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
    O20 - AppInit_DLLs: C:\PROGRA~1\GOOGLE\GOOGLE~1\GO36F4~1.DLL
    O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
    O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
    O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files\Launch Manager\dsiwmis.exe
    O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe
    O23 - Service: Google Desktop Manager 5.9.1005.12335 (GoogleDesktopManager-051210-111108) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
    O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
    O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
    O23 - Service: IHA_MessageCenter - Verizon - C:\Program Files\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe
    O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
    O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
    O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
    O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
    O23 - Service: Acer ODD Power Service (ODDPwrSvc) - Acer Incorporated - C:\Program Files\Acer\Optical Drive Power Management\ODDPWRSvc.exe
    O23 - Service: QBCFMonitorService - Intuit - c:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
    O23 - Service: Intuit QuickBooks FCS (QBFCService) - Intuit Inc. - c:\Program Files\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe
    O23 - Service: Raw Socket Service (RS_Service) - Acer Incorporated - C:\Program Files\Acer\Acer VCM\RS_Service.exe
    O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
    O23 - Service: Syntek STK1160 Service (StkASSrv) - Syntek America Inc. - C:\Windows\System32\StkASv2K.exe
    O23 - Service: TeamViewer 7 (TeamViewer7) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe

    --
    End of file - 12335 bytes
     
  2. Glaswegian

    Glaswegian Malware Specialist

    Joined:
    Dec 5, 2004
    Messages:
    3,823
    Hi and welcome to TSG.

    My name is Iain and I will be helping you clean your system.

    You may wish to Subscribe to this thread (bottom left corner of this thread) so that you are notified when you receive a reply.

    Please read these instructions carefully and then print out or copy this page to Notepad in order to assist you when carrying out the fix. You should not have any open browsers or live internet connections when you are following the procedures below.

    Note that the fix may take several posts. Please continue to respond to my instructions until I confirm that your logs are clean. Remember that although your symptoms may vanish, this does NOT mean that your system is clean.

    If there is anything you don't understand, please ask BEFORE proceeding with the fixes.

    Please ensure that you follow the instructions in the order I have them listed. Note that if you do not respond within 3 days I shall no longer check this thread for replies.

    Please do not install or uninstall any programmes, or run any other scanners or software, unless I specifically ask you to do so. Also please copy and paste logs into the thread, rather than add them as attachments.


    IMPORTANT - for Windows Vista and Windows 7 start all tools by using right click > Run as Administrator.



    I'd like to see a Gmer log please.

    Download GMER Rootkit Scanner from here to your desktop. It will be a randomly named executable.
    • Before scanning, make sure all other running programs are closed and no other actions like a scheduled antivirus scan will occur while the scan is being performed. Do not use your computer for anything else during the scan.
    • Double click the exe file.
    • The program will begin to run, and perform an initial scan. If possible rootkit activity is found, you will be asked if you would like to perform a full scan. Click No.
    • In any case, after the initial scan is complete, click on the Save button, and save the log file somewhere you can easily find it, such as your desktop, and attach it in your reply.
     
  3. JD11SRK

    JD11SRK Thread Starter

    Joined:
    Jan 27, 2013
    Messages:
    18
    Thanks for the reply Iain. I have followed your instructions and attached the log to this post. I'll await further instructions from you.

    GMER 2.0.18454 - http://www.gmer.net
    Rootkit quick scan 2013-01-30 19:47:45
    Windows 6.1.7601 Service Pack 1 \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 WDC_WD32 rev.11.0 298.09GB
    Running: 6gv8s1l6.exe; Driver: C:\Users\JOOOOOOE\AppData\Local\Temp\ugtdapow.sys


    ---- System - GMER 2.0 ----

    Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwCreateProcessEx [0x8B779966]
    Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ObMakeTemporaryObject

    ---- EOF - GMER 2.0 ----
     
  4. Glaswegian

    Glaswegian Malware Specialist

    Joined:
    Dec 5, 2004
    Messages:
    3,823
    Hi again

    Thanks for that - now we can get to work.


    We will begin with ComboFix.exe. Please visit this webpage for download links, and instructions for running the tool:

    http://www.bleepingcomputer.com/combofix/how-to-use-combofix

    Please read all the information carefully! If using Windows XP you should ensure you install the Recovery Console.

    You MUST disable your AntiVirus and AntiSpyware applications - please read this thread as a guide. They may otherwise interfere with our tools and interrupt the cleansing process.

    Please include the log C:\ComboFix.txt in your next reply for further review.
     
  5. JD11SRK

    JD11SRK Thread Starter

    Joined:
    Jan 27, 2013
    Messages:
    18
    I followed the instructions and ran ComboFix. I've copy and pasted the log below.

    ComboFix 13-01-31.03 - JOOOOOOE 01/31/2013 22:00:51.1.1 - x86
    Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.3002.2087 [GMT -8:00]
    Running from: c:\users\JOOOOOOE\Desktop\ComboFix.exe
    AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
    AV: Microsoft Security Essentials *Disabled/Updated* {B140BF4E-23BB-4198-90AB-A51A4C60A69C}
    SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
    SP: Microsoft Security Essentials *Disabled/Updated* {0A215EAA-0581-4E16-AA1B-9E6837E7EC21}
    SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    .
    .
    ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    c:\users\JOOOOOOE\AppData\Roaming\chrtmp
    c:\users\JOOOOOOE\AppData\Roaming\inst.exe
    c:\users\JOOOOOOE\AppData\Roaming\vso_ts_preview.xml
    c:\users\JOOOOOOE\videos\RipIt4Me.exe
    c:\windows\system32\drivers\etc\hosts.ics
    c:\windows\system32\gfbaksm.dll
    .
    .
    ((((((((((((((((((((((((( Files Created from 2013-01-01 to 2013-02-01 )))))))))))))))))))))))))))))))
    .
    .
    2013-02-01 06:20 . 2013-02-01 06:21 -------- d-----w- c:\users\JOOOOOOE\AppData\Local\temp
    2013-02-01 06:20 . 2013-02-01 06:20 -------- d-----w- c:\users\Mcx1-JOOOOOOE-PC\AppData\Local\temp
    2013-02-01 06:20 . 2013-02-01 06:20 -------- d-----w- c:\users\Mcx1-JOOOOOOE-PC.JOOOOOOE-PC\AppData\Local\temp
    2013-02-01 06:20 . 2013-02-01 06:20 -------- d-----w- c:\users\Default\AppData\Local\temp
    2013-02-01 05:55 . 2013-02-01 05:55 29904 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{59CBBCBE-46D6-41FE-8CF0-9D28FC8EC475}\MpKslb3d2455a.sys
    2013-02-01 04:14 . 2013-01-08 04:57 6991832 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{59CBBCBE-46D6-41FE-8CF0-9D28FC8EC475}\mpengine.dll
    2013-01-31 03:52 . 2013-01-08 04:57 6991832 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
    2013-01-28 06:36 . 2013-01-28 06:34 740840 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
    2013-01-28 06:36 . 2012-10-23 14:04 740840 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{B89D995E-437B-419C-B1A0-DC67C5221A82}\gapaengine.dll
    2013-01-28 06:31 . 2013-01-28 06:31 -------- d-----w- c:\program files\Microsoft Security Client
    2013-01-27 05:28 . 2013-01-27 05:28 388096 ----a-r- c:\users\JOOOOOOE\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
    2013-01-26 17:26 . 2013-01-12 11:30 94112 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
    2013-01-26 07:03 . 2012-12-16 14:13 295424 ----a-w- c:\windows\system32\atmfd.dll
    2013-01-26 07:03 . 2012-12-16 14:13 34304 ----a-w- c:\windows\system32\atmlib.dll
    2013-01-26 06:46 . 2013-01-08 04:57 6991832 ------w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{0C3C58E4-B054-491D-BD42-41C7CF153A5A}\mpengine.dll
    2013-01-26 06:34 . 2012-11-30 04:47 293376 ----a-w- c:\windows\system32\KernelBase.dll
    2013-01-26 06:34 . 2012-11-30 04:53 169984 ----a-w- c:\windows\system32\winsrv.dll
    2013-01-26 06:34 . 2012-11-30 02:55 271360 ----a-w- c:\windows\system32\conhost.exe
    2013-01-26 06:34 . 2012-11-30 04:45 5120 ---ha-w- c:\windows\system32\api-ms-win-core-file-l1-1-0.dll
    2013-01-26 06:34 . 2012-11-30 04:45 3072 ---ha-w- c:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
    2013-01-26 06:34 . 2012-11-30 04:45 3072 ---ha-w- c:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
    2013-01-26 06:34 . 2012-11-30 04:45 4096 ---ha-w- c:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
    2013-01-26 06:34 . 2012-11-30 04:45 4096 ---ha-w- c:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
    2013-01-26 06:34 . 2012-11-30 04:45 3072 ---ha-w- c:\windows\system32\api-ms-win-core-string-l1-1-0.dll
    2013-01-26 06:34 . 2012-11-30 04:45 3072 ---ha-w- c:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
    2013-01-26 06:32 . 2012-11-23 02:56 2345984 ----a-w- c:\windows\system32\win32k.sys
    2013-01-26 06:32 . 2012-11-20 04:51 220160 ----a-w- c:\windows\system32\ncrypt.dll
    2013-01-26 06:32 . 2012-11-09 04:43 492032 ----a-w- c:\windows\system32\win32spl.dll
    2013-01-26 06:32 . 2012-11-23 02:48 49152 ----a-w- c:\windows\system32\taskhost.exe
    2013-01-26 06:27 . 2012-11-09 04:42 2048 ----a-w- c:\windows\system32\tzres.dll
    2013-01-26 04:22 . 2013-01-26 04:22 -------- d-----w- c:\program files\PFPortChecker
    2013-01-26 04:11 . 2013-01-26 04:11 -------- d-----w- c:\programdata\Ask
    2013-01-19 19:17 . 2013-01-19 19:17 -------- d-----w- c:\windows\Sun
    2013-01-05 04:27 . 2013-01-05 04:27 -------- d-----w- c:\users\JOOOOOOE\AppData\Roaming\cYo
    2013-01-05 04:27 . 2013-01-05 04:27 -------- d-----w- c:\users\JOOOOOOE\AppData\Local\cYo
    2013-01-05 04:25 . 2013-01-05 04:27 -------- d-----w- c:\program files\ComicRack
    .
    .
    .
    (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2013-01-30 10:53 . 2011-10-03 22:33 232336 ------w- c:\windows\system32\MpSigStub.exe
    2013-01-09 01:44 . 2012-04-05 22:34 697864 ----a-w- c:\windows\system32\FlashPlayerApp.exe
    2013-01-09 01:44 . 2011-05-31 22:07 74248 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
    2012-12-15 00:49 . 2012-02-24 09:39 21104 ----a-w- c:\windows\system32\drivers\mbam.sys
    2013-01-16 20:11 . 2013-01-24 04:15 262552 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
    2010-07-07 22:39 . 2013-01-24 04:15 119808 ----a-w- c:\program files\mozilla firefox\components\GoogleDesktopMozilla.dll
    .
    .
    ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Note* empty entries & legit default entries are not shown
    REGEDIT4
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
    @="{472083B0-C522-11CF-8763-00608CC02F24}"
    [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
    2012-08-21 09:12 121528 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
    @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
    [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
    2012-12-18 03:50 556648 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
    @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
    [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
    2012-12-18 03:50 556648 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
    @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
    [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
    2012-12-18 03:50 556648 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
    @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
    [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
    2012-12-18 03:50 556648 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
    .
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "Xvid"="c:\program files\Xvid\CheckUpdate.exe" [2011-01-17 8192]
    "MusicManager"="c:\users\JOOOOOOE\AppData\Local\Programs\Google\MusicManager\MusicManager.exe" [2013-01-14 7437824]
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2009-02-06 1430824]
    "Acer Assist Launcher"="c:\program files\Acer\Acer Assist\launcher.exe" [2007-11-19 1261568]
    "Acer ePower Management"="c:\program files\Acer\Acer PowerSmart Manager\ePowerTrayLauncher.exe" [2009-05-16 440864]
    "BackupManagerTray"="c:\program files\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" [2009-04-02 249600]
    "Google Desktop Search"="c:\program files\Google\Google Desktop Search\GoogleDesktop.exe" [2010-07-07 30192]
    "IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-02-12 186904]
    "LManager"="c:\program files\Launch Manager\LManager.exe" [2009-04-09 1071624]
    "ODDPwr"="c:\program files\Acer\Optical Drive Power Management\ODDPwr.exe" [2009-04-30 176128]
    "PLFSetI"="c:\windows\PLFSetI.exe" [2008-07-30 200704]
    "IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-03-05 141848]
    "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-03-05 173592]
    "Persistence"="c:\windows\system32\igfxpers.exe" [2009-03-05 150552]
    "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-03 946352]
    "IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2011-08-01 1821576]
    "APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-08-28 59280]
    "Intuit SyncManager"="c:\program files\Common Files\Intuit\Sync\IntuitSyncManager.exe" [2009-11-26 1087752]
    "QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2012-04-19 421888]
    "avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-08-21 4282728]
    "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
    "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2012-09-10 421776]
    "MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2012-09-13 947176]
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
    "ConsentPromptBehaviorAdmin"= 0 (0x0)
    "ConsentPromptBehaviorUser"= 3 (0x3)
    "EnableLUA"= 0 (0x0)
    "EnableUIADesktopToggle"= 0 (0x0)
    "PromptOnSecureDesktop"= 0 (0x0)
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
    "AppInit_DLLs"=c:\progra~1\Google\GOOGLE~1\GoogleDesktopNetwork3.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
    "mixer9"=wdmaud.drv
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
    @="Service"
    .
    [HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^QuickBooks Update Agent.lnk]
    path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\QuickBooks Update Agent.lnk
    backup=c:\windows\pss\QuickBooks Update Agent.lnk.CommonStartup
    backupExtension=.CommonStartup
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acer Product Registration]
    2007-11-26 18:21 3387392 ----a-w- c:\program files\Acer\Acer Registration\ACE1.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AnyDVD]
    2011-10-11 15:17 5389944 ----a-w- c:\program files\SlySoft\AnyDVD\AnyDVDtray.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
    2012-08-28 04:32 59280 ----a-w- c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
    2012-04-17 15:19 3671872 ----a-w- c:\program files\DAEMON Tools Lite\DTLite.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
    2011-07-28 23:08 1259376 ----a-w- c:\program files\DivX\DivX Update\DivXUpdate.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
    2010-09-06 23:28 136176 ----atw- c:\users\JOOOOOOE\AppData\Local\Google\Update\GoogleUpdate.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
    2012-09-10 06:30 421776 ----a-w- c:\program files\iTunes\iTunesHelper.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
    2012-04-19 03:56 421888 ----a-w- c:\program files\QuickTime\QTTask.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VMM Mode Selection]
    2011-02-14 13:55 43520 ----a-r- c:\program files\HTC\ModeSelection\VMMModeSelection.exe
    .
    R0 Lbd;Lbd;c:\windows\system32\DRIVERS\Lbd.sys [x]
    R2 MBAMScheduler;MBAMScheduler;c:\program files\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]
    R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [x]
    R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [x]
    R3 dc3d;MS Hardware Device Detection Driver;c:\windows\system32\DRIVERS\dc3d.sys [x]
    R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys [x]
    R3 epmntdrv;epmntdrv;c:\windows\system32\epmntdrv.sys [x]
    R3 EuGdiDrv;EuGdiDrv;c:\windows\system32\EuGdiDrv.sys [x]
    R3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335;c:\program files\Google\Google Desktop Search\GoogleDesktop.exe [x]
    R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [x]
    R3 NisSrv;Microsoft Network Inspection;c:\program files\Microsoft Security Client\NisSrv.exe [x]
    R3 NTPASp50;NTPASp50 NDIS Protocol Driver;c:\windows\system32\Drivers\NTPASp50.sys [x]
    R3 pcouffin;VSO Software pcouffin;c:\windows\system32\Drivers\pcouffin.sys [x]
    R3 pwdrvio;pwdrvio;c:\windows\system32\pwdrvio.sys [x]
    R3 pwdspio;pwdspio;c:\windows\system32\pwdspio.sys [x]
    R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [x]
    R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys [x]
    R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
    R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [x]
    R3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\DRIVERS\wdcsam.sys [x]
    S1 aswSnx;aswSnx; [x]
    S1 aswSP;aswSP; [x]
    S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [x]
    S1 MpKslb3d2455a;MpKslb3d2455a;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{59CBBCBE-46D6-41FE-8CF0-9D28FC8EC475}\MpKslb3d2455a.sys [x]
    S2 aswFsBlk;aswFsBlk; [x]
    S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [x]
    S2 DsiWMIService;Dritek WMI Service;c:\program files\Launch Manager\dsiwmis.exe [x]
    S2 ePowerSvc;Acer ePower Service;c:\program files\Acer\Acer PowerSmart Manager\ePowerSvc.exe [x]
    S2 IHA_MessageCenter;IHA_MessageCenter;c:\program files\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe [x]
    S2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [x]
    S2 ODDPwrSvc;Acer ODD Power Service;c:\program files\Acer\Optical Drive Power Management\ODDPWRSvc.exe [x]
    S2 RS_Service;Raw Socket Service;c:\program files\Acer\Acer VCM\RS_Service.exe [x]
    S2 TeamViewer7;TeamViewer 7;c:\program files\TeamViewer\Version7\TeamViewer_Service.exe [x]
    S3 easytether;easytether;c:\windows\system32\DRIVERS\easytthr.sys [x]
    S3 EuMusDesignVirtualAudioCableWdm;Virtual Audio Cable (WDM);c:\windows\system32\DRIVERS\vrtaucbl.sys [x]
    S3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI;c:\windows\system32\drivers\IntcHdmi.sys [x]
    S3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20);c:\windows\system32\DRIVERS\L1C62x86.sys [x]
    S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
    .
    .
    --- Other Services/Drivers In Memory ---
    .
    *NewlyCreated* - MPKSLB3D2455A
    *Deregistered* - mwlPSDFilter
    *Deregistered* - mwlPSDNServ
    *Deregistered* - mwlPSDVDisk
    *Deregistered* - UBHelper
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
    GPSvcGroup REG_MULTI_SZ GPSvc
    .
    Contents of the 'Scheduled Tasks' folder
    .
    2013-02-01 c:\windows\Tasks\Adobe Flash Player Updater.job
    - c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-05 01:44]
    .
    2013-02-01 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
    - c:\program files\Google\Update\GoogleUpdate.exe [2011-12-25 04:23]
    .
    2013-02-01 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
    - c:\program files\Google\Update\GoogleUpdate.exe [2011-12-25 04:23]
    .
    2013-01-31 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1108858586-319801918-4140375009-1000Core.job
    - c:\users\JOOOOOOE\AppData\Local\Google\Update\GoogleUpdate.exe [2010-09-06 23:28]
    .
    2013-02-01 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1108858586-319801918-4140375009-1000UA.job
    - c:\users\JOOOOOOE\AppData\Local\Google\Update\GoogleUpdate.exe [2010-09-06 23:28]
    .
    .
    ------- Supplementary Scan -------
    .
    uStart Page = hxxp://www.google.com/
    uDefault_Search_URL = hxxp://www.google.com/ie
    mStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&s=2&o=vp32&d=0609&m=aspire_5810t
    uInternet Settings,ProxyOverride = *.local
    uSearchAssistant = hxxp://www.google.com/ie
    uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
    IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~3\Office14\EXCEL.EXE/3000
    IE: Free YouTube Download - c:\users\JOOOOOOE\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubedownload.htm
    IE: Free YouTube to MP3 Converter - c:\users\JOOOOOOE\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
    IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html
    IE: Se&nd to OneNote - c:\progra~1\MICROS~3\Office14\ONBttnIE.dll/105
    TCP: DhcpNameServer = 68.105.28.11 68.105.29.11 68.105.28.12
    FF - ProfilePath - c:\users\JOOOOOOE\AppData\Roaming\Mozilla\Firefox\Profiles\snc6ojy7.default\
    FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/firefox?client=firefox-a&rls=org.mozilla:en-US:eek:fficial
    FF - prefs.js: network.proxy.type - 0
    .
    - - - - ORPHANS REMOVED - - - -
    .
    ShellExecuteHooks-{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - (no file)
    MSConfigStartUp-Bing Bar - c:\program files\MSN Toolbar\Platform\5.0.1423.0\mswinext.exe
    MSConfigStartUp-GrooveMonitor - c:\program files\Microsoft Office\Office12\GrooveMonitor.exe
    MSConfigStartUp-RIMBBLaunchAgent - c:\program files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
    MSConfigStartUp-TomTomHOME - c:\program files\TomTom HOME 2\TomTomHOMERunner.exe
    MSConfigStartUp-{0228e555-4f9c-4e35-a3ec-b109a192b4c2} - c:\program files\Google\Gmail Notifier\gnotify.exe
    .
    .
    .
    --------------------- LOCKED REGISTRY KEYS ---------------------
    .
    [HKEY_USERS\S-1-5-21-1108858586-319801918-4140375009-1000\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{C9431AAE-34CA-5DA3-14F7-9051D7809E1D}*]
    @Allowed: (Read) (RestrictedCode)
    .
    [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
    @Denied: (A) (Users)
    @Denied: (A) (Everyone)
    @Allowed: (B 1 2 3 4 5) (S-1-5-20)
    "BlindDial"=dword:00000000
    .
    [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
    @Denied: (A) (Users)
    @Denied: (A) (Everyone)
    @Allowed: (B 1 2 3 4 5) (S-1-5-20)
    "BlindDial"=dword:00000000
    .
    [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
    @Denied: (A) (Users)
    @Denied: (A) (Everyone)
    @Allowed: (B 1 2 3 4 5) (S-1-5-20)
    "BlindDial"=dword:00000000
    .
    [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
    @Denied: (A) (Users)
    @Denied: (A) (Everyone)
    @Allowed: (B 1 2 3 4 5) (S-1-5-20)
    "BlindDial"=dword:00000000
    .
    [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
    @Denied: (Full) (Everyone)
    .
    Completion time: 2013-01-31 22:24:13
    ComboFix-quarantined-files.txt 2013-02-01 06:24
    .
    Pre-Run: 159,160,090,624 bytes free
    Post-Run: 158,999,822,336 bytes free
    .
    - - End Of File - - 53A0020796DFB5BE9DA509FB3E9B0B3C
     
  6. Glaswegian

    Glaswegian Malware Specialist

    Joined:
    Dec 5, 2004
    Messages:
    3,823
    Hi again

    How is your system running now?


    Start Malwarebytes' Anti-Malware.

    Choose the 'Update' tab and click Check for updates.

    • If an update is found, it will download and install the latest version.
    • Once the program has loaded, select Perform quick scan, then click Scan.
    • When the scan is complete, click OK, then Show Results to view the results.
    • Be sure that everything is checked, and click Remove Selected.
    • When completed, a log will open in Notepad. Please save it to a convenient location.
    You can also access the log by doing the following:

    -> Click on the Malwarebytes' Anti-Malware icon to launch the program.
    -> Click on the Logs tab.
    -> Click on the log at the bottom of those listed to highlight it.
    -> Click Open.

    Copy & Paste the entire report in your next reply.
     
  7. JD11SRK

    JD11SRK Thread Starter

    Joined:
    Jan 27, 2013
    Messages:
    18
    Hi Iain. My laptop seems to be running ok but I haven't used it much. It would run ok sometimes and then start to slow down other times, very hit or miss. Attached below is the Maleware Bytes log as you requested.

    Malwarebytes Anti-Malware (PRO) 1.70.0.1100
    www.malwarebytes.org

    Database version: v2013.02.02.01

    Windows 7 Service Pack 1 x86 NTFS
    Internet Explorer 9.0.8112.16421
    JOOOOOOE :: PC [administrator]

    Protection: Enabled

    2/1/2013 5:57:17 PM
    mbam-log-2013-02-01 (17-57-17).txt

    Scan type: Quick scan
    Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
    Scan options disabled: P2P
    Objects scanned: 257362
    Time elapsed: 10 minute(s), 19 second(s)

    Memory Processes Detected: 0
    (No malicious items detected)

    Memory Modules Detected: 0
    (No malicious items detected)

    Registry Keys Detected: 0
    (No malicious items detected)

    Registry Values Detected: 0
    (No malicious items detected)

    Registry Data Items Detected: 0
    (No malicious items detected)

    Folders Detected: 0
    (No malicious items detected)

    Files Detected: 0
    (No malicious items detected)

    (end)
     
  8. Glaswegian

    Glaswegian Malware Specialist

    Joined:
    Dec 5, 2004
    Messages:
    3,823
    Hi again

    Looking good - we'll run an online scan, as a check for leftovers.



    Go here to run an online scannner from ESET. Vista and Windows 7 users - run as Administrator.
    • Note: You will need to use Internet explorer for this scan. For browsers other than Internet Explorer, you will need to download and install esetsmartinstaller_enu.exe. Click on it and save the file to a convenient location. Double click on it to install and a new window will open..
    • Turn off the real time scanner of any existing antivirus program while performing the online scan
    • Tick the box next to YES, I accept the Terms of Use.
    • Click Start
    • When asked, allow the activex control to install
    • Click Start
    • Make sure that the option Remove found threats is unticked and the Scan Archives option is ticked.
    • Click on Advanced Settings, ensure the options Scan for potentially unwanted applications, Scan for potentially unsafe applications, and Enable Anti-Stealth Technology are ticked.
    • Click Scan
    • Wait for the scan to finish
    • Use notepad to open the logfile located at C:\Program Files\Eset\Eset Online Scanner\log.txt
    • Copy and paste that log as a reply to this topic and also let me know how things are now.
     
  9. JD11SRK

    JD11SRK Thread Starter

    Joined:
    Jan 27, 2013
    Messages:
    18
    My laptop seems to still be suffering from the same slow down issues as before. Below is the log I got after running ESET online scan. I'll await you're reply on how to proceed from here.

    [email protected] as CAB hook log:
    OnlineScanner.ocx - registred OK
    # version=8
    # iexplore.exe=9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)
    # OnlineScanner.ocx=1.0.0.6889
    # api_version=3.0.2
    # EOSSerial=727786131f313f47a5f0933abff28cc2
    # end=stopped
    # remove_checked=false
    # archives_checked=true
    # unwanted_checked=true
    # unsafe_checked=true
    # antistealth_checked=true
    # utc_time=2013-02-03 02:21:48
    # local_time=2013-02-02 06:21:48 (-0800, Pacific Standard Time)
    # country="United States"
    # lang=1033
    # osver=6.1.7601 NT Service Pack 1
    # compatibility_mode=774 16777213 100 94 7098121 135646380 0 0
    # compatibility_mode=5893 16776574 100 94 0 111402899 0 0
    # scanned=45375
    # found=0
    # cleaned=0
    # scan_time=3145
    # version=8
    # iexplore.exe=9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)
    # OnlineScanner.ocx=1.0.0.6889
    # api_version=3.0.2
    # EOSSerial=727786131f313f47a5f0933abff28cc2
    # end=finished
    # remove_checked=false
    # archives_checked=false
    # unwanted_checked=true
    # unsafe_checked=true
    # antistealth_checked=true
    # utc_time=2013-02-03 08:22:17
    # local_time=2013-02-03 12:22:17 (-0800, Pacific Standard Time)
    # country="United States"
    # lang=1033
    # osver=6.1.7601 NT Service Pack 1
    # compatibility_mode=774 16777213 100 94 7119750 135668009 0 0
    # compatibility_mode=5893 16776574 100 94 0 111424528 0 0
    # scanned=184011
    # found=10
    # cleaned=0
    # scan_time=5710
    C:\ProgramData\Ask\APN-Stub\PF\APNIC.dll a variant of Win32/Bundled.Toolbar.Ask application 526C685B52444130CD450DEC45826528AD21DFB2 I
    C:\ProgramData\Ask\APN-Stub\PF\BIT6BB0.tmp a variant of Win32/Bundled.Toolbar.Ask application 092226001F7EBC54A4EBEC655830F04E97E8D3A5 I
    C:\Users\All Users\Ask\APN-Stub\PF\APNIC.dll a variant of Win32/Bundled.Toolbar.Ask application 526C685B52444130CD450DEC45826528AD21DFB2 I
    C:\Users\All Users\Ask\APN-Stub\PF\BIT6BB0.tmp a variant of Win32/Bundled.Toolbar.Ask application 092226001F7EBC54A4EBEC655830F04E97E8D3A5 I
    C:\Users\JOOOOOOE\Videos\PMS & Tools\Setup-SopCast-3.4.8-2012-1-1.exe a variant of Win32/Bundled.Toolbar.Ask application 7439A0F482EEF58DF426A88E02FFB4C62CF76DB1 I
    C:\Users\JOOOOOOE\Videos\Recording Software\Free Studio 5.4.6\FreeStudio.exe multiple threats 600CA83100183228A3D9D31EA35531E7D5900B57 I
    C:\Users\JOOOOOOE\Videos\Recording Software\cnet2_InstallBSR_v6_exe.exe a variant of Win32/InstallCore.D application E4C62F6AB007816CC2DA69030A4294CD1EAC55A2 I
    C:\Users\JOOOOOOE\Videos\Recording Software\cnet2_VHSC_inst_exe.exe a variant of Win32/InstallCore.D application FC3B14D4AD60AF683A031D19D622CF4BBFF389EA I
    C:\Users\JOOOOOOE\Videos\Recording Software\DTLite4454-0315.exe Win32/OpenCandy application 1BF3475345E6003C06C9330575F45E2CE4CA9860 I
    C:\Windows\Installer\MSI1887.tmp a variant of Win32/Bundled.Toolbar.Ask application F4F742254A389D3F2FBA53E00F3C533B9F4125A6 I
     
  10. Glaswegian

    Glaswegian Malware Specialist

    Joined:
    Dec 5, 2004
    Messages:
    3,823
    Hi again

    Please uninstall the ASK Toolbar - it is worthless and more adware than anything.

    Please delete this file

    C:\Windows\Installer\MSI1887.tmp


    Then download and run this tool

    Please download TDSSKiller.zip and extract TDSSKiller.exe to your desktop.

    Execute TDSSKiller.exe by doubleclicking on it. Press Start Scan.

    [​IMG]

    • If Malicious objects are found, ensure Skip is selected.

    • Click Continue then click Reboot now

      [​IMG]

    • Once complete, a log will be produced at the root drive which is typically C:\

      For example, C:\TDSSKiller.2.4.0.0_24.07.2010_13.10.52_log.txt.

    Please attach that log.
     
  11. JD11SRK

    JD11SRK Thread Starter

    Joined:
    Jan 27, 2013
    Messages:
    18
    I checked my web browsers and did not see the Ask Toolbar in any of the browser extensions. I removed the MSI1887.temp file. Attached below is the TDSS log. Just an FYI, the scan was fairly short and only lasted about 1 minute.

    20:24:37.0924 6004 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
    20:24:38.0704 6004 ============================================================
    20:24:38.0704 6004 Current date / time: 2013/02/04 20:24:38.0704
    20:24:38.0704 6004 SystemInfo:
    20:24:38.0704 6004
    20:24:38.0704 6004 OS Version: 6.1.7601 ServicePack: 1.0
    20:24:38.0704 6004 Product type: Workstation
    20:24:38.0704 6004 ComputerName: PC
    20:24:38.0706 6004 UserName: JOOOOOOE
    20:24:38.0706 6004 Windows directory: C:\Windows
    20:24:38.0706 6004 System windows directory: C:\Windows
    20:24:38.0706 6004 Processor architecture: Intel x86
    20:24:38.0706 6004 Number of processors: 1
    20:24:38.0706 6004 Page size: 0x1000
    20:24:38.0706 6004 Boot type: Normal boot
    20:24:38.0706 6004 ============================================================
    20:24:45.0526 6004 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
    20:24:45.0532 6004 ============================================================
    20:24:45.0532 6004 \Device\Harddisk0\DR0:
    20:24:45.0532 6004 MBR partitions:
    20:24:45.0532 6004 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1388800, BlocksNum 0x240A5800
    20:24:45.0532 6004 ============================================================
    20:24:45.0560 6004 C: <-> \Device\Harddisk0\DR0\Partition1
    20:24:45.0561 6004 ============================================================
    20:24:45.0561 6004 Initialize success
    20:24:45.0561 6004 ============================================================
    20:26:00.0617 3492 ============================================================
    20:26:00.0617 3492 Scan started
    20:26:00.0617 3492 Mode: Manual;
    20:26:00.0617 3492 ============================================================
    20:26:01.0100 3492 ================ Scan system memory ========================
    20:26:01.0100 3492 System memory - ok
    20:26:01.0105 3492 ================ Scan services =============================
    20:26:01.0411 3492 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
    20:26:01.0416 3492 1394ohci - ok
    20:26:01.0470 3492 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys
    20:26:01.0476 3492 ACPI - ok
    20:26:01.0510 3492 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
    20:26:01.0512 3492 AcpiPmi - ok
    20:26:01.0692 3492 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
    20:26:01.0705 3492 AdobeARMservice - ok
    20:26:01.0825 3492 [ 424877CB9D5517F980FF7BACA2EB379D ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
    20:26:01.0831 3492 AdobeFlashPlayerUpdateSvc - ok
    20:26:01.0902 3492 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
    20:26:01.0925 3492 adp94xx - ok
    20:26:01.0966 3492 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
    20:26:01.0973 3492 adpahci - ok
    20:26:01.0999 3492 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
    20:26:02.0003 3492 adpu320 - ok
    20:26:02.0067 3492 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
    20:26:02.0069 3492 AeLookupSvc - ok
    20:26:02.0115 3492 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD C:\Windows\system32\drivers\afd.sys
    20:26:02.0137 3492 AFD - ok
    20:26:02.0187 3492 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys
    20:26:02.0190 3492 agp440 - ok
    20:26:02.0221 3492 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
    20:26:02.0232 3492 aic78xx - ok
    20:26:02.0265 3492 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
    20:26:02.0271 3492 ALG - ok
    20:26:02.0318 3492 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\drivers\aliide.sys
    20:26:02.0321 3492 aliide - ok
    20:26:02.0352 3492 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys
    20:26:02.0355 3492 amdagp - ok
    20:26:02.0401 3492 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\drivers\amdide.sys
    20:26:02.0404 3492 amdide - ok
    20:26:02.0423 3492 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
    20:26:02.0426 3492 AmdK8 - ok
    20:26:02.0453 3492 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
    20:26:02.0456 3492 AmdPPM - ok
    20:26:02.0495 3492 [ D320BF87125326F996D4904FE24300FC ] amdsata C:\Windows\system32\drivers\amdsata.sys
    20:26:02.0498 3492 amdsata - ok
    20:26:02.0550 3492 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
    20:26:02.0559 3492 amdsbs - ok
    20:26:02.0603 3492 [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata C:\Windows\system32\drivers\amdxata.sys
    20:26:02.0609 3492 amdxata - ok
    20:26:02.0668 3492 [ 64F24088DBB1D68EE9963F66F8EB68CF ] AnyDVD C:\Windows\system32\Drivers\AnyDVD.sys
    20:26:02.0672 3492 AnyDVD - ok
    20:26:02.0739 3492 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys
    20:26:02.0743 3492 AppID - ok
    20:26:02.0815 3492 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
    20:26:02.0818 3492 AppIDSvc - ok
    20:26:02.0864 3492 [ FB1959012294D6AD43E5304DF65E3C26 ] Appinfo C:\Windows\System32\appinfo.dll
    20:26:02.0870 3492 Appinfo - ok
    20:26:02.0919 3492 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    20:26:02.0923 3492 Apple Mobile Device - ok
    20:26:02.0989 3492 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys
    20:26:02.0993 3492 arc - ok
    20:26:03.0050 3492 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
    20:26:03.0056 3492 arcsas - ok
    20:26:03.0177 3492 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
    20:26:03.0180 3492 aspnet_state - ok
    20:26:03.0246 3492 [ F5DC168BF77572D51BE28BA261B30CB4 ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
    20:26:03.0248 3492 aswFsBlk - ok
    20:26:03.0328 3492 [ F76E51561562AC4105DBBE53FC99BC10 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
    20:26:03.0331 3492 aswMonFlt - ok
    20:26:03.0397 3492 [ 924819669AFD0EDF5C067193D371FAB0 ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
    20:26:03.0403 3492 aswRdr - ok
    20:26:03.0491 3492 [ 30E45AF8B4D83176CA850FC9699E860B ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
    20:26:03.0526 3492 aswSnx - ok
    20:26:03.0573 3492 [ F04BDBCB965C05C51F4A7DE7B62063D6 ] aswSP C:\Windows\system32\drivers\aswSP.sys
    20:26:03.0593 3492 aswSP - ok
    20:26:03.0668 3492 [ DFE9152ABFA89BB8CFDC057409B2D4DA ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
    20:26:03.0671 3492 aswTdi - ok
    20:26:03.0704 3492 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
    20:26:03.0711 3492 AsyncMac - ok
    20:26:03.0750 3492 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys
    20:26:03.0762 3492 atapi - ok
    20:26:03.0828 3492 [ B01751CC563AECAC09BBE36AAA21FBEF ] athr C:\Windows\system32\DRIVERS\athr.sys
    20:26:03.0861 3492 athr - ok
    20:26:03.0922 3492 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
    20:26:03.0945 3492 AudioEndpointBuilder - ok
    20:26:03.0967 3492 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll
    20:26:03.0975 3492 Audiosrv - ok
    20:26:04.0064 3492 [ 04AC21E821F259845BD7367CEE057290 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    20:26:04.0066 3492 avast! Antivirus - ok
    20:26:04.0128 3492 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\Windows\System32\AxInstSV.dll
    20:26:04.0134 3492 AxInstSV - ok
    20:26:04.0207 3492 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
    20:26:04.0226 3492 b06bdrv - ok
    20:26:04.0294 3492 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
    20:26:04.0300 3492 b57nd60x - ok
    20:26:04.0388 3492 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
    20:26:04.0392 3492 BDESVC - ok
    20:26:04.0430 3492 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
    20:26:04.0432 3492 Beep - ok
    20:26:04.0510 3492 [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE C:\Windows\System32\bfe.dll
    20:26:04.0531 3492 BFE - ok
    20:26:04.0596 3492 [ E585445D5021971FAE10393F0F1C3961 ] BITS C:\Windows\system32\qmgr.dll
    20:26:04.0631 3492 BITS - ok
    20:26:04.0657 3492 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
    20:26:04.0661 3492 blbdrive - ok
    20:26:04.0744 3492 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
    20:26:04.0751 3492 Bonjour Service - ok
    20:26:04.0812 3492 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
    20:26:04.0815 3492 bowser - ok
    20:26:04.0846 3492 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
    20:26:04.0849 3492 BrFiltLo - ok
    20:26:04.0882 3492 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
    20:26:04.0884 3492 BrFiltUp - ok
    20:26:04.0924 3492 [ 77361D72A04F18809D0EFB6CCEB74D4B ] Bridge C:\Windows\system32\DRIVERS\bridge.sys
    20:26:04.0933 3492 Bridge - ok
    20:26:04.0959 3492 [ 77361D72A04F18809D0EFB6CCEB74D4B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
    20:26:04.0961 3492 BridgeMP - ok
    20:26:05.0021 3492 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser C:\Windows\System32\browser.dll
    20:26:05.0025 3492 Browser - ok
    20:26:05.0075 3492 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
    20:26:05.0082 3492 Brserid - ok
    20:26:05.0115 3492 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
    20:26:05.0118 3492 BrSerWdm - ok
    20:26:05.0148 3492 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
    20:26:05.0151 3492 BrUsbMdm - ok
    20:26:05.0177 3492 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
    20:26:05.0179 3492 BrUsbSer - ok
    20:26:05.0215 3492 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
    20:26:05.0217 3492 BTHMODEM - ok
    20:26:05.0293 3492 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
    20:26:05.0297 3492 bthserv - ok
    20:26:05.0462 3492 catchme - ok
    20:26:05.0512 3492 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
    20:26:05.0519 3492 cdfs - ok
    20:26:05.0578 3492 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
    20:26:05.0582 3492 cdrom - ok
    20:26:05.0656 3492 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll
    20:26:05.0660 3492 CertPropSvc - ok
    20:26:05.0718 3492 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
    20:26:05.0721 3492 circlass - ok
    20:26:05.0778 3492 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
    20:26:05.0784 3492 CLFS - ok
    20:26:05.0910 3492 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
    20:26:05.0914 3492 clr_optimization_v2.0.50727_32 - ok
    20:26:05.0981 3492 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
    20:26:05.0985 3492 clr_optimization_v4.0.30319_32 - ok
    20:26:06.0014 3492 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
    20:26:06.0016 3492 CmBatt - ok
    20:26:06.0047 3492 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\drivers\cmdide.sys
    20:26:06.0050 3492 cmdide - ok
    20:26:06.0115 3492 [ 42F158036BD4C2FF3122BF142E60E6FD ] CNG C:\Windows\system32\Drivers\cng.sys
    20:26:06.0136 3492 CNG - ok
    20:26:06.0173 3492 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
    20:26:06.0176 3492 Compbatt - ok
    20:26:06.0220 3492 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
    20:26:06.0223 3492 CompositeBus - ok
    20:26:06.0249 3492 COMSysApp - ok
    20:26:06.0287 3492 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
    20:26:06.0289 3492 crcdisk - ok
    20:26:06.0365 3492 [ 96C0E38905CFD788313BE8E11DAE3F2F ] CryptSvc C:\Windows\system32\cryptsvc.dll
    20:26:06.0370 3492 CryptSvc - ok
    20:26:06.0443 3492 [ 946A232A6FC3368805A161B890C23544 ] dc3d C:\Windows\system32\DRIVERS\dc3d.sys
    20:26:06.0446 3492 dc3d - ok
    20:26:06.0529 3492 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll
    20:26:06.0552 3492 DcomLaunch - ok
    20:26:06.0614 3492 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
    20:26:06.0621 3492 defragsvc - ok
    20:26:06.0680 3492 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
    20:26:06.0683 3492 DfsC - ok
    20:26:06.0757 3492 [ 73FC5BC52572084EC1241514CF6230A0 ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
    20:26:06.0761 3492 dg_ssudbus - ok
    20:26:06.0832 3492 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll
    20:26:06.0840 3492 Dhcp - ok
    20:26:06.0871 3492 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
    20:26:06.0873 3492 discache - ok
    20:26:06.0940 3492 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys
    20:26:06.0944 3492 Disk - ok
    20:26:07.0009 3492 [ C701324C9E0C25DD9D60311BD87FBC84 ] DKbFltr C:\Windows\system32\DRIVERS\DKbFltr.sys
    20:26:07.0012 3492 DKbFltr - ok
    20:26:07.0049 3492 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
    20:26:07.0054 3492 Dnscache - ok
    20:26:07.0126 3492 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll
    20:26:07.0145 3492 dot3svc - ok
    20:26:07.0199 3492 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll
    20:26:07.0205 3492 DPS - ok
    20:26:07.0263 3492 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
    20:26:07.0265 3492 drmkaud - ok
    20:26:07.0353 3492 [ D8ECF13E587619CDF716B2AE8E12DDBB ] DsiWMIService C:\Program Files\Launch Manager\dsiwmis.exe
    20:26:07.0477 3492 DsiWMIService - ok
    20:26:07.0558 3492 [ 687AF6BB383885FF6A64071B189A7F3E ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
    20:26:07.0564 3492 dtsoftbus01 - ok
    20:26:07.0616 3492 [ 23F5D28378A160352BA8F817BD8C71CB ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
    20:26:07.0639 3492 DXGKrnl - ok
    20:26:07.0711 3492 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
    20:26:07.0716 3492 EapHost - ok
    20:26:07.0746 3492 [ 5D67E5F2CA692F7DBA2568182B394541 ] easytether C:\Windows\system32\DRIVERS\easytthr.sys
    20:26:07.0864 3492 easytether - ok
    20:26:08.0011 3492 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
    20:26:08.0132 3492 ebdrv - ok
    20:26:08.0205 3492 [ 81951F51E318AECC2D68559E47485CC4 ] EFS C:\Windows\System32\lsass.exe
    20:26:08.0213 3492 EFS - ok
    20:26:08.0320 3492 [ A8C362018EFC87BEB013EE28F29C0863 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
    20:26:08.0339 3492 ehRecvr - ok
    20:26:08.0400 3492 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe
    20:26:08.0404 3492 ehSched - ok
    20:26:08.0475 3492 [ D71233D7CCC2E64F8715A20428D5A33B ] ElbyCDIO C:\Windows\system32\Drivers\ElbyCDIO.sys
    20:26:08.0478 3492 ElbyCDIO - ok
    20:26:08.0549 3492 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
    20:26:08.0565 3492 elxstor - ok
    20:26:08.0659 3492 [ 539CA34FBC74EC366A0D751028C32A08 ] epmntdrv C:\Windows\system32\epmntdrv.sys
    20:26:08.0711 3492 epmntdrv - ok
    20:26:08.0842 3492 [ 6D49242536F8397AE9AF2A2A360E2EDD ] ePowerSvc C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe
    20:26:08.0876 3492 ePowerSvc - ok
    20:26:08.0907 3492 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys
    20:26:08.0910 3492 ErrDev - ok
    20:26:08.0989 3492 [ 1F2F4AB15CE03ECC257FEB2F6DC5A013 ] EuGdiDrv C:\Windows\system32\EuGdiDrv.sys
    20:26:09.0045 3492 EuGdiDrv - ok
    20:26:09.0123 3492 [ 6B93B103242C3C30F850F53DBE39ED88 ] EuMusDesignVirtualAudioCableWdm C:\Windows\system32\DRIVERS\vrtaucbl.sys
    20:26:09.0184 3492 EuMusDesignVirtualAudioCableWdm - ok
    20:26:09.0247 3492 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
    20:26:09.0257 3492 EventSystem - ok
    20:26:09.0297 3492 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
    20:26:09.0301 3492 exfat - ok
    20:26:09.0329 3492 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
    20:26:09.0333 3492 fastfat - ok
    20:26:09.0418 3492 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe
    20:26:09.0458 3492 Fax - ok
    20:26:09.0518 3492 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
    20:26:09.0520 3492 fdc - ok
    20:26:09.0548 3492 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
    20:26:09.0552 3492 fdPHost - ok
    20:26:09.0581 3492 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
    20:26:09.0585 3492 FDResPub - ok
    20:26:09.0620 3492 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
    20:26:09.0630 3492 FileInfo - ok
    20:26:09.0663 3492 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
    20:26:09.0666 3492 Filetrace - ok
    20:26:09.0703 3492 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
    20:26:09.0707 3492 flpydisk - ok
    20:26:09.0743 3492 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
    20:26:09.0748 3492 FltMgr - ok
    20:26:09.0810 3492 [ B3A5EC6B6B6673DB7E87C2BCDBDDC074 ] FontCache C:\Windows\system32\FntCache.dll
    20:26:09.0849 3492 FontCache - ok
    20:26:09.0959 3492 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
    20:26:09.0967 3492 FontCache3.0.0.0 - ok
    20:26:09.0998 3492 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
    20:26:10.0001 3492 FsDepends - ok
    20:26:10.0051 3492 [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
    20:26:10.0054 3492 Fs_Rec - ok
    20:26:10.0139 3492 [ 8A73E79089B282100B9393B644CB853B ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
    20:26:10.0159 3492 fvevol - ok
    20:26:10.0205 3492 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
    20:26:10.0208 3492 gagp30kx - ok
    20:26:10.0243 3492 [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
    20:26:10.0246 3492 GEARAspiWDM - ok
    20:26:10.0341 3492 [ 9F5F2F0FB0A7F5AA9F16B9A7B6DAD89F ] GoogleDesktopManager-051210-111108 C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    20:26:10.0344 3492 GoogleDesktopManager-051210-111108 - ok
    20:26:10.0422 3492 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll
    20:26:10.0454 3492 gpsvc - ok
    20:26:10.0554 3492 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
    20:26:10.0558 3492 gupdate - ok
    20:26:10.0610 3492 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
    20:26:10.0612 3492 gupdatem - ok
    20:26:10.0666 3492 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
    20:26:10.0668 3492 hcw85cir - ok
    20:26:10.0736 3492 [ A5EF29D5315111C80A5C1ABAD14C8972 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
    20:26:10.0743 3492 HdAudAddService - ok
    20:26:10.0787 3492 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
    20:26:10.0797 3492 HDAudBus - ok
    20:26:10.0838 3492 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
    20:26:10.0841 3492 HidBatt - ok
    20:26:10.0866 3492 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
    20:26:10.0870 3492 HidBth - ok
    20:26:10.0908 3492 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
    20:26:10.0918 3492 HidIr - ok
    20:26:10.0979 3492 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\System32\hidserv.dll
    20:26:10.0984 3492 hidserv - ok
    20:26:11.0022 3492 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
    20:26:11.0025 3492 HidUsb - ok
    20:26:11.0080 3492 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll
    20:26:11.0087 3492 hkmsvc - ok
    20:26:11.0152 3492 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
    20:26:11.0172 3492 HomeGroupListener - ok
    20:26:11.0224 3492 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
    20:26:11.0235 3492 HomeGroupProvider - ok
    20:26:11.0277 3492 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
    20:26:11.0280 3492 HpSAMD - ok
    20:26:11.0367 3492 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys
    20:26:11.0388 3492 HTTP - ok
    20:26:11.0439 3492 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
    20:26:11.0441 3492 hwpolicy - ok
    20:26:11.0487 3492 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
    20:26:11.0491 3492 i8042prt - ok
    20:26:11.0586 3492 [ 52E8A3CC8269ADB27D25182284C5E650 ] IAANTMON C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
    20:26:11.0593 3492 IAANTMON - ok
    20:26:11.0669 3492 [ 71ECC07BC7C5E24C3DD01D8A29A24054 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
    20:26:11.0673 3492 iaStor - ok
    20:26:11.0716 3492 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
    20:26:11.0736 3492 iaStorV - ok
    20:26:11.0805 3492 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
    20:26:11.0828 3492 idsvc - ok
    20:26:12.0004 3492 [ A9221D13D8F1F772010EE293BA9BAEB7 ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
    20:26:12.0127 3492 igfx - ok
    20:26:12.0252 3492 [ 23E1BCADABE423C35C19BBDFF10CCE6D ] IHA_MessageCenter C:\Program Files\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe
    20:26:12.0256 3492 IHA_MessageCenter - ok
    20:26:12.0319 3492 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
    20:26:12.0322 3492 iirsp - ok
    20:26:12.0385 3492 [ F95622F161474511B8D80D6B093AA610 ] IKEEXT C:\Windows\System32\ikeext.dll
    20:26:12.0414 3492 IKEEXT - ok
    20:26:12.0453 3492 IntcAzAudAddService - ok
    20:26:12.0487 3492 [ 092A78E9C6F71BF0E22379503B90E800 ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys
    20:26:12.0490 3492 IntcHdmiAddService - ok
    20:26:12.0526 3492 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys
    20:26:12.0528 3492 intelide - ok
    20:26:12.0563 3492 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
    20:26:12.0567 3492 intelppm - ok
    20:26:12.0624 3492 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
    20:26:12.0630 3492 IPBusEnum - ok
    20:26:12.0657 3492 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
    20:26:12.0664 3492 IpFilterDriver - ok
    20:26:12.0711 3492 [ 58F67245D041FBE7AF88F4EAF79DF0FA ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
    20:26:12.0734 3492 iphlpsvc - ok
    20:26:12.0772 3492 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
    20:26:12.0779 3492 IPMIDRV - ok
    20:26:12.0814 3492 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
    20:26:12.0818 3492 IPNAT - ok
    20:26:12.0894 3492 [ BC0EA61246F8D940FBC5F652D337D6BD ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
    20:26:12.0920 3492 iPod Service - ok
    20:26:12.0968 3492 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
    20:26:12.0971 3492 IRENUM - ok
    20:26:13.0001 3492 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\drivers\isapnp.sys
    20:26:13.0004 3492 isapnp - ok
    20:26:13.0041 3492 [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
    20:26:13.0047 3492 iScsiPrt - ok
    20:26:13.0089 3492 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
    20:26:13.0092 3492 kbdclass - ok
    20:26:13.0133 3492 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
    20:26:13.0144 3492 kbdhid - ok
    20:26:13.0172 3492 [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso C:\Windows\system32\lsass.exe
    20:26:13.0178 3492 KeyIso - ok
    20:26:13.0228 3492 [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
    20:26:13.0231 3492 KSecDD - ok
    20:26:13.0289 3492 [ 5FE1ABF1AF591A3458C9CF24ED9A4D35 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
    20:26:13.0293 3492 KSecPkg - ok
    20:26:13.0345 3492 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
    20:26:13.0374 3492 KtmRm - ok
    20:26:13.0431 3492 [ 6C32BFEAB708915D6BBF4B20D4F3EF7B ] L1C C:\Windows\system32\DRIVERS\L1C62x86.sys
    20:26:13.0434 3492 L1C - ok
    20:26:13.0476 3492 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\System32\srvsvc.dll
    20:26:13.0495 3492 LanmanServer - ok
    20:26:13.0548 3492 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
    20:26:13.0563 3492 LanmanWorkstation - ok
    20:26:13.0588 3492 Lbd - ok
    20:26:13.0653 3492 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
    20:26:13.0656 3492 lltdio - ok
    20:26:13.0709 3492 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
    20:26:13.0721 3492 lltdsvc - ok
    20:26:13.0752 3492 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
    20:26:13.0761 3492 lmhosts - ok
    20:26:13.0811 3492 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
    20:26:13.0815 3492 LSI_FC - ok
    20:26:13.0849 3492 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
    20:26:13.0853 3492 LSI_SAS - ok
    20:26:13.0891 3492 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
    20:26:13.0894 3492 LSI_SAS2 - ok
    20:26:13.0923 3492 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
    20:26:13.0927 3492 LSI_SCSI - ok
    20:26:13.0956 3492 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
    20:26:13.0963 3492 luafv - ok
    20:26:14.0031 3492 [ 629CABB0421668C9D3D402A3C3D77E14 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
    20:26:14.0034 3492 MBAMProtector - ok
    20:26:14.0112 3492 [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
    20:26:14.0131 3492 MBAMScheduler - ok
    20:26:14.0214 3492 [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
    20:26:14.0236 3492 MBAMService - ok
    20:26:14.0287 3492 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
    20:26:14.0294 3492 Mcx2Svc - ok
    20:26:14.0350 3492 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
    20:26:14.0352 3492 megasas - ok
    20:26:14.0410 3492 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
    20:26:14.0416 3492 MegaSR - ok
    20:26:14.0467 3492 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
    20:26:14.0474 3492 MMCSS - ok
    20:26:14.0505 3492 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
    20:26:14.0508 3492 Modem - ok
    20:26:14.0556 3492 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
    20:26:14.0559 3492 monitor - ok
    20:26:14.0599 3492 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
    20:26:14.0602 3492 mouclass - ok
    20:26:14.0632 3492 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
    20:26:14.0634 3492 mouhid - ok
    20:26:14.0711 3492 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
    20:26:14.0714 3492 mountmgr - ok
    20:26:14.0797 3492 [ 9C3758018DED02F4AE53CCA1C5F084A2 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
    20:26:14.0800 3492 MozillaMaintenance - ok
    20:26:14.0868 3492 [ EE728AF83850DDAD9A3FCAC0AAB3AD97 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
    20:26:14.0873 3492 MpFilter - ok
    20:26:14.0918 3492 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\Windows\system32\drivers\mpio.sys
    20:26:14.0923 3492 mpio - ok
    20:26:15.0088 3492 [ A69630D039C38018689190234F866D77 ] MpKsl8ab77270 c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E3AC5A73-39A4-4FEC-B362-5F964A706F33}\MpKsl8ab77270.sys
    20:26:15.0089 3492 MpKsl8ab77270 - ok
    20:26:15.0145 3492 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
    20:26:15.0149 3492 mpsdrv - ok
    20:26:15.0214 3492 [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc C:\Windows\system32\mpssvc.dll
    20:26:15.0241 3492 MpsSvc - ok
    20:26:15.0308 3492 [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
    20:26:15.0312 3492 MRxDAV - ok
    20:26:15.0360 3492 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
    20:26:15.0364 3492 mrxsmb - ok
    20:26:15.0394 3492 [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
    20:26:15.0400 3492 mrxsmb10 - ok
    20:26:15.0434 3492 [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
    20:26:15.0438 3492 mrxsmb20 - ok
    20:26:15.0476 3492 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\Windows\system32\drivers\msahci.sys
    20:26:15.0479 3492 msahci - ok
    20:26:15.0529 3492 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\Windows\system32\drivers\msdsm.sys
    20:26:15.0533 3492 msdsm - ok
    20:26:15.0562 3492 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
    20:26:15.0572 3492 MSDTC - ok
    20:26:15.0654 3492 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
    20:26:15.0657 3492 Msfs - ok
    20:26:15.0680 3492 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
    20:26:15.0682 3492 mshidkmdf - ok
    20:26:15.0705 3492 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
    20:26:15.0708 3492 msisadrv - ok
    20:26:15.0796 3492 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
    20:26:15.0803 3492 MSiSCSI - ok
    20:26:15.0826 3492 msiserver - ok
    20:26:15.0871 3492 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
    20:26:15.0873 3492 MSKSSRV - ok
    20:26:15.0945 3492 [ E077FCA2A7E79FB9BF67D3E30B5CE593 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
    20:26:15.0947 3492 MsMpSvc - ok
    20:26:15.0976 3492 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
    20:26:15.0981 3492 MSPCLOCK - ok
    20:26:16.0025 3492 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
    20:26:16.0028 3492 MSPQM - ok
    20:26:16.0056 3492 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
    20:26:16.0061 3492 MsRPC - ok
    20:26:16.0113 3492 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
    20:26:16.0116 3492 mssmbios - ok
    20:26:16.0140 3492 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
    20:26:16.0143 3492 MSTEE - ok
    20:26:16.0165 3492 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
    20:26:16.0168 3492 MTConfig - ok
    20:26:16.0198 3492 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
    20:26:16.0201 3492 Mup - ok
    20:26:16.0271 3492 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll
    20:26:16.0294 3492 napagent - ok
    20:26:16.0335 3492 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
    20:26:16.0342 3492 NativeWifiP - ok
    20:26:16.0411 3492 [ 8C9C922D71F1CD4DEF73F186416B7896 ] NDIS C:\Windows\system32\drivers\ndis.sys
    20:26:16.0433 3492 NDIS - ok
    20:26:16.0464 3492 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
    20:26:16.0468 3492 NdisCap - ok
    20:26:16.0525 3492 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
    20:26:16.0527 3492 NdisTapi - ok
    20:26:16.0591 3492 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
    20:26:16.0594 3492 Ndisuio - ok
    20:26:16.0651 3492 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
    20:26:16.0655 3492 NdisWan - ok
    20:26:16.0716 3492 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
    20:26:16.0719 3492 NDProxy - ok
    20:26:16.0749 3492 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
    20:26:16.0757 3492 NetBIOS - ok
    20:26:16.0818 3492 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
    20:26:16.0823 3492 NetBT - ok
    20:26:16.0852 3492 [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon C:\Windows\system32\lsass.exe
    20:26:16.0858 3492 Netlogon - ok
    20:26:16.0928 3492 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
    20:26:16.0950 3492 Netman - ok
    20:26:17.0003 3492 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
    20:26:17.0008 3492 NetMsmqActivator - ok
    20:26:17.0026 3492 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
    20:26:17.0029 3492 NetPipeActivator - ok
    20:26:17.0081 3492 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
    20:26:17.0104 3492 netprofm - ok
    20:26:17.0123 3492 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
    20:26:17.0126 3492 NetTcpActivator - ok
    20:26:17.0143 3492 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
    20:26:17.0146 3492 NetTcpPortSharing - ok
    20:26:17.0213 3492 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
    20:26:17.0217 3492 nfrd960 - ok
    20:26:17.0284 3492 [ 2CD24A6AF497D0E9B9BF3DA924ED05E6 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
    20:26:17.0288 3492 NisDrv - ok
    20:26:17.0321 3492 [ 3B846434055F80D9E89D0742F3ADAD34 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
    20:26:17.0326 3492 NisSrv - ok
    20:26:17.0380 3492 [ 374071043F9E4231EE43BE2BB48DD36D ] NlaSvc C:\Windows\System32\nlasvc.dll
    20:26:17.0401 3492 NlaSvc - ok
    20:26:17.0428 3492 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
    20:26:17.0431 3492 Npfs - ok
    20:26:17.0483 3492 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
    20:26:17.0491 3492 nsi - ok
    20:26:17.0531 3492 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
    20:26:17.0537 3492 nsiproxy - ok
    20:26:17.0635 3492 [ 0D87503986BB3DFED58E343FE39DDE13 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
    20:26:17.0670 3492 Ntfs - ok
    20:26:17.0757 3492 [ 453A4AA289CA08DFDD7B34C3064D0B05 ] NTI IScheduleSvc C:\Program Files\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
    20:26:17.0760 3492 NTI IScheduleSvc - ok
    20:26:17.0796 3492 [ 6DCAA65F49EF3B97A5CFFC0CB5DE1C2F ] NTIDrvr C:\Windows\system32\Drivers\NTIDrvr.sys
    20:26:17.0799 3492 NTIDrvr - ok
    20:26:17.0868 3492 [ 71CB7616CB36D43EA787C41AB55FE458 ] NTPASp50 C:\Windows\system32\Drivers\NTPASp50.sys
    20:26:17.0902 3492 NTPASp50 - ok
    20:26:17.0962 3492 [ 37BE10FF10A92031FC5A01E8363925CC ] NuidFltr C:\Windows\system32\DRIVERS\NuidFltr.sys
    20:26:17.0969 3492 NuidFltr - ok
    20:26:18.0022 3492 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
    20:26:18.0024 3492 Null - ok
    20:26:18.0059 3492 [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid C:\Windows\system32\drivers\nvraid.sys
    20:26:18.0064 3492 nvraid - ok
    20:26:18.0104 3492 [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor C:\Windows\system32\drivers\nvstor.sys
    20:26:18.0113 3492 nvstor - ok
    20:26:18.0163 3492 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
    20:26:18.0168 3492 nv_agp - ok
    20:26:18.0258 3492 [ 69316583D4CC032B3E4E72FD86C2FFA8 ] ODDPwrSvc C:\Program Files\Acer\Optical Drive Power Management\ODDPWRSvc.exe
    20:26:18.0387 3492 ODDPwrSvc - ok
    20:26:18.0422 3492 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
    20:26:18.0426 3492 ohci1394 - ok
    20:26:18.0519 3492 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
    20:26:18.0524 3492 ose - ok
    20:26:18.0731 3492 [ 358A9CCA612C68EB2F07DDAD4CE1D8D7 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
    20:26:18.0862 3492 osppsvc - ok
    20:26:18.0926 3492 [ 4CDADEC3DC1300EE1D313EA5494E6472 ] ovt519 C:\Windows\system32\Drivers\ov519vid.sys
    20:26:18.0932 3492 ovt519 - ok
    20:26:18.0996 3492 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
    20:26:19.0019 3492 p2pimsvc - ok
    20:26:19.0099 3492 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
    20:26:19.0122 3492 p2psvc - ok
    20:26:19.0171 3492 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
    20:26:19.0175 3492 Parport - ok
    20:26:19.0207 3492 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr C:\Windows\system32\drivers\partmgr.sys
    20:26:19.0211 3492 partmgr - ok
    20:26:19.0243 3492 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
    20:26:19.0246 3492 Parvdm - ok
    20:26:19.0275 3492 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
    20:26:19.0289 3492 PcaSvc - ok
    20:26:19.0327 3492 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\Windows\system32\drivers\pci.sys
    20:26:19.0335 3492 pci - ok
    20:26:19.0368 3492 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\drivers\pciide.sys
    20:26:19.0371 3492 pciide - ok
    20:26:19.0410 3492 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
    20:26:19.0416 3492 pcmcia - ok
    20:26:19.0480 3492 [ 5B6C11DE7E839C05248CED8825470FEF ] pcouffin C:\Windows\system32\Drivers\pcouffin.sys
    20:26:19.0484 3492 pcouffin - ok
    20:26:19.0514 3492 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
    20:26:19.0517 3492 pcw - ok
    20:26:19.0557 3492 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
    20:26:19.0580 3492 PEAUTH - ok
    20:26:19.0642 3492 pgfilter - ok
    20:26:19.0730 3492 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll
    20:26:19.0787 3492 pla - ok
    20:26:19.0827 3492 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay C:\Windows\system32\umpnpmgr.dll
    20:26:19.0850 3492 PlugPlay - ok
    20:26:19.0881 3492 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
    20:26:19.0894 3492 PNRPAutoReg - ok
    20:26:19.0930 3492 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
    20:26:19.0942 3492 PNRPsvc - ok
    20:26:20.0008 3492 [ 896D916DE06F5502D301E8C4DC442AE8 ] Point32 C:\Windows\system32\DRIVERS\point32.sys
    20:26:20.0011 3492 Point32 - ok
    20:26:20.0058 3492 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
    20:26:20.0086 3492 PolicyAgent - ok
    20:26:20.0157 3492 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll
    20:26:20.0168 3492 Power - ok
    20:26:20.0228 3492 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
    20:26:20.0232 3492 PptpMiniport - ok
    20:26:20.0282 3492 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys
    20:26:20.0285 3492 Processor - ok
    20:26:20.0333 3492 [ CADEFAC453040E370A1BDFF3973BE00D ] ProfSvc C:\Windows\system32\profsvc.dll
    20:26:20.0356 3492 ProfSvc - ok
    20:26:20.0377 3492 [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe
    20:26:20.0387 3492 ProtectedStorage - ok
    20:26:20.0432 3492 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
    20:26:20.0435 3492 Psched - ok
    20:26:20.0496 3492 [ CFACAA25576D473EF7B771ECE1B24D73 ] pwdrvio C:\Windows\system32\pwdrvio.sys
    20:26:20.0535 3492 pwdrvio - ok
    20:26:20.0606 3492 [ 0B675A61B23561C86E8710F751842276 ] pwdspio C:\Windows\system32\pwdspio.sys
    20:26:20.0663 3492 pwdspio - ok
    20:26:20.0751 3492 [ C8AFE59E2D1FDA67A6C5777A13082103 ] QBCFMonitorService c:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
    20:26:20.0793 3492 QBCFMonitorService - ok
    20:26:20.0885 3492 [ 6BEE1814470DC12FA20C53DFC3C97EBB ] QBFCService c:\Program Files\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe
    20:26:20.0889 3492 QBFCService - ok
    20:26:20.0948 3492 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
    20:26:20.0994 3492 ql2300 - ok
    20:26:21.0041 3492 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
    20:26:21.0045 3492 ql40xx - ok
    20:26:21.0084 3492 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
    20:26:21.0106 3492 QWAVE - ok
    20:26:21.0136 3492 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
    20:26:21.0139 3492 QWAVEdrv - ok
    20:26:21.0173 3492 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
    20:26:21.0176 3492 RasAcd - ok
    20:26:21.0251 3492 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
    20:26:21.0253 3492 RasAgileVpn - ok
    20:26:21.0309 3492 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
    20:26:21.0319 3492 RasAuto - ok
    20:26:21.0349 3492 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
    20:26:21.0353 3492 Rasl2tp - ok
    20:26:21.0413 3492 [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan C:\Windows\System32\rasmans.dll
    20:26:21.0447 3492 RasMan - ok
    20:26:21.0477 3492 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
    20:26:21.0484 3492 RasPppoe - ok
    20:26:21.0516 3492 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
    20:26:21.0520 3492 RasSstp - ok
    20:26:21.0569 3492 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
    20:26:21.0576 3492 rdbss - ok
    20:26:21.0610 3492 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
    20:26:21.0614 3492 rdpbus - ok
    20:26:21.0706 3492 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
    20:26:21.0709 3492 RDPCDD - ok
    20:26:21.0761 3492 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
    20:26:21.0764 3492 RDPENCDD - ok
    20:26:21.0800 3492 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
    20:26:21.0803 3492 RDPREFMP - ok
    20:26:21.0882 3492 [ 65375DF758CA1872AB7EBBBA457FD5E6 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
    20:26:21.0885 3492 RdpVideoMiniport - ok
    20:26:21.0939 3492 [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
    20:26:21.0945 3492 RDPWD - ok
    20:26:21.0991 3492 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
    20:26:21.0996 3492 rdyboost - ok
    20:26:22.0043 3492 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
    20:26:22.0051 3492 RemoteAccess - ok
    20:26:22.0106 3492 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
    20:26:22.0116 3492 RemoteRegistry - ok
    20:26:22.0156 3492 [ 616EAC1B0E48B236A5A9B8AE07FDB81C ] RimUsb C:\Windows\system32\Drivers\RimUsb.sys
    20:26:22.0160 3492 RimUsb - ok
    20:26:22.0194 3492 [ 2C4FB2E9F039287767C384E46EE91030 ] RimVSerPort C:\Windows\system32\DRIVERS\RimSerial.sys
    20:26:22.0197 3492 RimVSerPort - ok
    20:26:22.0240 3492 [ 564297827D213F52C7A3A2FF749568CA ] ROOTMODEM C:\Windows\system32\Drivers\RootMdm.sys
    20:26:22.0242 3492 ROOTMODEM - ok
    20:26:22.0263 3492 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
    20:26:22.0274 3492 RpcEptMapper - ok
    20:26:22.0327 3492 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
    20:26:22.0334 3492 RpcLocator - ok
    20:26:22.0394 3492 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\Windows\system32\rpcss.dll
    20:26:22.0411 3492 RpcSs - ok
    20:26:22.0465 3492 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
    20:26:22.0470 3492 rspndr - ok
    20:26:22.0560 3492 [ 8E250687E5F020CD337CC9D8252C0B56 ] RS_Service C:\Program Files\Acer\Acer VCM\RS_Service.exe
    20:26:22.0794 3492 RS_Service - ok
    20:26:22.0886 3492 [ 9B09F336DE36A7A6CA871DE8A7847B65 ] RTSTOR C:\Windows\system32\drivers\RTSTOR.SYS
    20:26:22.0892 3492 RTSTOR - ok
    20:26:22.0923 3492 [ 81951F51E318AECC2D68559E47485CC4 ] SamSs C:\Windows\system32\lsass.exe
    20:26:22.0929 3492 SamSs - ok
    20:26:22.0992 3492 [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
    20:26:23.0000 3492 sbp2port - ok
    20:26:23.0048 3492 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
    20:26:23.0082 3492 SCardSvr - ok
    20:26:23.0111 3492 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
    20:26:23.0119 3492 scfilter - ok
    20:26:23.0199 3492 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\Windows\system32\schedsvc.dll
    20:26:23.0234 3492 Schedule - ok
    20:26:23.0290 3492 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\Windows\System32\certprop.dll
    20:26:23.0292 3492 SCPolicySvc - ok
    20:26:23.0357 3492 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\Windows\System32\SDRSVC.dll
    20:26:23.0370 3492 SDRSVC - ok
    20:26:23.0435 3492 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
    20:26:23.0440 3492 secdrv - ok
    20:26:23.0490 3492 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
    20:26:23.0502 3492 seclogon - ok
    20:26:23.0542 3492 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\system32\sens.dll
    20:26:23.0551 3492 SENS - ok
    20:26:23.0607 3492 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll
    20:26:23.0621 3492 SensrSvc - ok
    20:26:23.0646 3492 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
    20:26:23.0649 3492 Serenum - ok
    20:26:23.0701 3492 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys
    20:26:23.0705 3492 Serial - ok
    20:26:23.0739 3492 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
    20:26:23.0742 3492 sermouse - ok
    20:26:23.0835 3492 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\Windows\system32\sessenv.dll
    20:26:23.0852 3492 SessionEnv - ok
    20:26:23.0892 3492 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
    20:26:23.0899 3492 sffdisk - ok
    20:26:23.0925 3492 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
    20:26:23.0929 3492 sffp_mmc - ok
    20:26:23.0962 3492 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
    20:26:23.0965 3492 sffp_sd - ok
    20:26:24.0005 3492 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
    20:26:24.0012 3492 sfloppy - ok
    20:26:24.0088 3492 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\Windows\System32\ipnathlp.dll
    20:26:24.0113 3492 SharedAccess - ok
    20:26:24.0173 3492 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
    20:26:24.0210 3492 ShellHWDetection - ok
    20:26:24.0252 3492 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys
    20:26:24.0256 3492 sisagp - ok
    20:26:24.0301 3492 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
    20:26:24.0304 3492 SiSRaid2 - ok
    20:26:24.0338 3492 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
    20:26:24.0342 3492 SiSRaid4 - ok
    20:26:24.0466 3492 [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
    20:26:24.0482 3492 SkypeUpdate - ok
    20:26:24.0544 3492 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
    20:26:24.0548 3492 Smb - ok
    20:26:24.0639 3492 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
    20:26:24.0653 3492 SNMPTRAP - ok
    20:26:24.0683 3492 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
    20:26:24.0686 3492 spldr - ok
    20:26:24.0749 3492 [ 9AEA093B8F9C37CF45538382CABA2475 ] Spooler C:\Windows\System32\spoolsv.exe
    20:26:24.0772 3492 Spooler - ok
    20:26:24.0901 3492 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe
    20:26:25.0002 3492 sppsvc - ok
    20:26:25.0073 3492 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\Windows\system32\sppuinotify.dll
    20:26:25.0084 3492 sppuinotify - ok
    20:26:25.0133 3492 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv C:\Windows\system32\DRIVERS\srv.sys
    20:26:25.0152 3492 srv - ok
    20:26:25.0184 3492 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
    20:26:25.0199 3492 srv2 - ok
    20:26:25.0225 3492 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
    20:26:25.0232 3492 srvnet - ok
    20:26:25.0286 3492 [ D5DFFEAA1E15D4EFFABB9D9A3068AC5B ] sscdbus C:\Windows\system32\DRIVERS\sscdbus.sys
    20:26:25.0293 3492 sscdbus - ok
    20:26:25.0323 3492 [ 8A1BE0C347814F482F493AEA619D57F6 ] sscdmdfl C:\Windows\system32\DRIVERS\sscdmdfl.sys
    20:26:25.0326 3492 sscdmdfl - ok
    20:26:25.0360 3492 [ 5AB0B1987F682A59B15B78F84C6AD7D0 ] sscdmdm C:\Windows\system32\DRIVERS\sscdmdm.sys
    20:26:25.0369 3492 sscdmdm - ok
    20:26:25.0423 3492 [ 751E66EB32EFA80633B80F5D7FF0A1D8 ] sscdserd C:\Windows\system32\DRIVERS\sscdserd.sys
    20:26:25.0428 3492 sscdserd - ok
    20:26:25.0476 3492 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
    20:26:25.0499 3492 SSDPSRV - ok
    20:26:25.0529 3492 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
    20:26:25.0544 3492 SstpSvc - ok
    20:26:25.0614 3492 [ E3D493BFB7CD108EC50B2F560C96367C ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
    20:26:25.0620 3492 ssudmdm - ok
    20:26:25.0678 3492 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
    20:26:25.0681 3492 stexstor - ok
    20:26:25.0757 3492 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll
    20:26:25.0788 3492 StiSvc - ok
    20:26:25.0852 3492 [ 36ED459E9130E6D07FA66FACA1E491D0 ] StkAMini C:\Windows\system32\Drivers\StkAMini.sys
    20:26:25.0900 3492 StkAMini - ok
    20:26:25.0949 3492 [ 5CCFE3B03F97005D221BA897C9A20B38 ] StkASSrv C:\Windows\System32\StkASv2K.exe
    20:26:25.0999 3492 StkASSrv - ok
    20:26:26.0033 3492 [ DF29245097F6DE1CA9861C75DF7FBE42 ] StkScan C:\Windows\system32\Drivers\StkScan.sys
    20:26:26.0088 3492 StkScan - ok
    20:26:26.0125 3492 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\drivers\swenum.sys
    20:26:26.0131 3492 swenum - ok
    20:26:26.0194 3492 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
    20:26:26.0228 3492 swprv - ok
    20:26:26.0295 3492 [ 5C3E900F41426A372DE60675AFC8AA07 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
    20:26:26.0317 3492 SynTP - ok
    20:26:26.0385 3492 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\Windows\system32\sysmain.dll
    20:26:26.0453 3492 SysMain - ok
    20:26:26.0510 3492 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
    20:26:26.0526 3492 TabletInputService - ok
    20:26:26.0588 3492 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll
    20:26:26.0611 3492 TapiSrv - ok
    20:26:26.0656 3492 [ 77BD6143C6DCE0A1BF7B5571BED860DC ] tbhsd C:\Windows\system32\drivers\tbhsd.sys
    20:26:26.0665 3492 tbhsd - ok
    20:26:26.0714 3492 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
    20:26:26.0724 3492 TBS - ok
    20:26:26.0785 3492 [ E23A56F843E2AEBBB209D0ACCA73C640 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
    20:26:26.0830 3492 Tcpip - ok
    20:26:26.0889 3492 [ E23A56F843E2AEBBB209D0ACCA73C640 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
    20:26:26.0903 3492 TCPIP6 - ok
    20:26:26.0958 3492 [ 3EEBD3BD93DA46A26E89893C7AB2FF3B ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
    20:26:26.0962 3492 tcpipreg - ok
    20:26:27.0032 3492 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
    20:26:27.0035 3492 TDPIPE - ok
    20:26:27.0066 3492 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
    20:26:27.0069 3492 TDTCP - ok
    20:26:27.0116 3492 [ B459575348C20E8121D6039DA063C704 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
    20:26:27.0120 3492 tdx - ok
    20:26:27.0268 3492 [ 2BBB318EA9F34FDC508CEA4AAB98D770 ] TeamViewer7 C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe
    20:26:27.0349 3492 TeamViewer7 - ok
    20:26:27.0391 3492 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\Windows\system32\drivers\termdd.sys
    20:26:27.0395 3492 TermDD - ok
    20:26:27.0472 3492 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll
    20:26:27.0505 3492 TermService - ok
    20:26:27.0561 3492 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
    20:26:27.0571 3492 Themes - ok
    20:26:27.0598 3492 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
    20:26:27.0607 3492 THREADORDER - ok
    20:26:27.0642 3492 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
    20:26:27.0653 3492 TrkWks - ok
    20:26:27.0738 3492 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
    20:26:27.0744 3492 TrustedInstaller - ok
    20:26:27.0810 3492 [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
    20:26:27.0814 3492 tssecsrv - ok
    20:26:27.0859 3492 [ 9CE253214ACAA5A7D323327D2055EFAA ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
    20:26:27.0862 3492 TsUsbFlt - ok
    20:26:27.0945 3492 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
    20:26:27.0949 3492 tunnel - ok
    20:26:28.0006 3492 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
    20:26:28.0010 3492 uagp35 - ok
    20:26:28.0072 3492 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys
    20:26:28.0093 3492 udfs - ok
    20:26:28.0166 3492 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
    20:26:28.0177 3492 UI0Detect - ok
    20:26:28.0208 3492 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
    20:26:28.0212 3492 uliagpkx - ok
    20:26:28.0269 3492 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\Windows\system32\DRIVERS\umbus.sys
    20:26:28.0272 3492 umbus - ok
    20:26:28.0291 3492 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
    20:26:28.0297 3492 UmPass - ok
    20:26:28.0328 3492 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
    20:26:28.0351 3492 upnphost - ok
    20:26:28.0406 3492 [ 83CAFCB53201BBAC04D822F32438E244 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
    20:26:28.0479 3492 USBAAPL - ok
    20:26:28.0533 3492 [ 1D9F2BD026E8E2D45033A4DF3F16B78C ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
    20:26:28.0537 3492 usbaudio - ok
    20:26:28.0566 3492 [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
    20:26:28.0570 3492 usbccgp - ok
    20:26:28.0611 3492 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\drivers\usbcir.sys
    20:26:28.0617 3492 usbcir - ok
    20:26:28.0646 3492 [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
    20:26:28.0649 3492 usbehci - ok
    20:26:28.0682 3492 [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
    20:26:28.0705 3492 usbhub - ok
    20:26:28.0751 3492 [ A6FB7957EA7AFB1165991E54CE934B74 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
    20:26:28.0765 3492 usbohci - ok
    20:26:28.0779 3492 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
    20:26:28.0792 3492 usbprint - ok
    20:26:28.0819 3492 [ F991AB9CC6B908DB552166768176896A ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
    20:26:28.0826 3492 USBSTOR - ok
    20:26:28.0866 3492 [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
    20:26:28.0869 3492 usbuhci - ok
    20:26:28.0910 3492 [ 45F4E7BF43DB40A6C6B4D92C76CBC3F2 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
    20:26:28.0917 3492 usbvideo - ok
    20:26:28.0958 3492 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
    20:26:28.0973 3492 UxSms - ok
    20:26:28.0994 3492 [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc C:\Windows\system32\lsass.exe
    20:26:28.0999 3492 VaultSvc - ok
    20:26:29.0025 3492 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
    20:26:29.0031 3492 vdrvroot - ok
    20:26:29.0089 3492 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe
    20:26:29.0123 3492 vds - ok
    20:26:29.0184 3492 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
    20:26:29.0188 3492 vga - ok
    20:26:29.0236 3492 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
    20:26:29.0243 3492 VgaSave - ok
    20:26:29.0270 3492 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
    20:26:29.0279 3492 vhdmp - ok
    20:26:29.0309 3492 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys
    20:26:29.0313 3492 viaagp - ok
    20:26:29.0335 3492 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
    20:26:29.0343 3492 ViaC7 - ok
    20:26:29.0380 3492 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\drivers\viaide.sys
    20:26:29.0383 3492 viaide - ok
    20:26:29.0409 3492 [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr C:\Windows\system32\drivers\volmgr.sys
    20:26:29.0413 3492 volmgr - ok
    20:26:29.0446 3492 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
    20:26:29.0467 3492 volmgrx - ok
    20:26:29.0509 3492 [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
    20:26:29.0517 3492 volsnap - ok
    20:26:29.0553 3492 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
    20:26:29.0578 3492 vsmraid - ok
    20:26:29.0636 3492 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\Windows\system32\vssvc.exe
    20:26:29.0692 3492 VSS - ok
    20:26:29.0732 3492 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
    20:26:29.0735 3492 vwifibus - ok
    20:26:29.0770 3492 [ 7090D3436EEB4E7DA3373090A23448F7 ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
    20:26:29.0774 3492 vwififlt - ok
    20:26:29.0818 3492 [ A3F04CBEA6C2A10E6CB01F8B47611882 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
    20:26:29.0828 3492 vwifimp - ok
    20:26:29.0888 3492 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
    20:26:29.0932 3492 W32Time - ok
    20:26:29.0978 3492 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
    20:26:29.0981 3492 WacomPen - ok
    20:26:30.0050 3492 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
    20:26:30.0053 3492 WANARP - ok
    20:26:30.0079 3492 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
    20:26:30.0082 3492 Wanarpv6 - ok
    20:26:30.0172 3492 [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
    20:26:30.0218 3492 WatAdminSvc - ok
    20:26:30.0292 3492 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\Windows\system32\wbengine.exe
    20:26:30.0341 3492 wbengine - ok
    20:26:30.0407 3492 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
    20:26:30.0430 3492 WbioSrvc - ok
    20:26:30.0493 3492 [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc C:\Windows\System32\wcncsvc.dll
    20:26:30.0517 3492 wcncsvc - ok
    20:26:30.0546 3492 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
    20:26:30.0557 3492 WcsPlugInService - ok
    20:26:30.0604 3492 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys
    20:26:30.0608 3492 Wd - ok
    20:26:30.0658 3492 [ D6EFAF429FD30C5DF613D220E344CCE7 ] WDC_SAM C:\Windows\system32\DRIVERS\wdcsam.sys
    20:26:30.0661 3492 WDC_SAM - ok
    20:26:30.0717 3492 [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
    20:26:30.0740 3492 Wdf01000 - ok
    20:26:30.0768 3492 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
    20:26:30.0780 3492 WdiServiceHost - ok
    20:26:30.0797 3492 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
    20:26:30.0808 3492 WdiSystemHost - ok
    20:26:30.0873 3492 [ A9D880F97530D5B8FEE278923349929D ] WebClient C:\Windows\System32\webclnt.dll
    20:26:30.0908 3492 WebClient - ok
    20:26:30.0939 3492 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
    20:26:30.0961 3492 Wecsvc - ok
    20:26:30.0987 3492 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
    20:26:31.0003 3492 wercplsupport - ok
    20:26:31.0045 3492 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
    20:26:31.0060 3492 WerSvc - ok
    20:26:31.0129 3492 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
    20:26:31.0136 3492 WfpLwf - ok
    20:26:31.0165 3492 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
    20:26:31.0169 3492 WIMMount - ok
    20:26:31.0275 3492 [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
    20:26:31.0295 3492 WinDefend - ok
    20:26:31.0342 3492 WinHttpAutoProxySvc - ok
    20:26:31.0445 3492 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
    20:26:31.0451 3492 Winmgmt - ok
    20:26:31.0531 3492 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\Windows\system32\WsmSvc.dll
    20:26:31.0585 3492 WinRM - ok
    20:26:31.0666 3492 [ A67E5F9A400F3BD1BE3D80613B45F708 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
    20:26:31.0688 3492 WinUsb - ok
    20:26:31.0760 3492 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
    20:26:31.0795 3492 Wlansvc - ok
    20:26:31.0889 3492 [ 5144AE67D60EC653F97DDF3FEED29E77 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    20:26:31.0935 3492 wlidsvc - ok
    20:26:31.0981 3492 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
    20:26:31.0988 3492 WmiAcpi - ok
    20:26:32.0046 3492 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
    20:26:32.0051 3492 wmiApSrv - ok
    20:26:32.0167 3492 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
    20:26:32.0214 3492 WMPNetworkSvc - ok
    20:26:32.0270 3492 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
    20:26:32.0286 3492 WPCSvc - ok
    20:26:32.0342 3492 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
    20:26:32.0358 3492 WPDBusEnum - ok
    20:26:32.0412 3492 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
    20:26:32.0415 3492 ws2ifsl - ok
    20:26:32.0476 3492 [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc C:\Windows\system32\wscsvc.dll
    20:26:32.0493 3492 wscsvc - ok
    20:26:32.0512 3492 WSearch - ok
    20:26:32.0610 3492 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
    20:26:32.0681 3492 wuauserv - ok
    20:26:32.0721 3492 [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
    20:26:32.0726 3492 WudfPf - ok
    20:26:32.0777 3492 [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
    20:26:32.0783 3492 WUDFRd - ok
    20:26:32.0835 3492 [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
    20:26:32.0853 3492 wudfsvc - ok
    20:26:32.0918 3492 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
    20:26:32.0940 3492 WwanSvc - ok
    20:26:33.0017 3492 [ CE0C846127D6ABB1E2A22E59682B2527 ] xnacc C:\Windows\system32\DRIVERS\xnacc.sys
    20:26:33.0039 3492 xnacc - ok
    20:26:33.0116 3492 ================ Scan global ===============================
    20:26:33.0170 3492 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
    20:26:33.0222 3492 [ D70FE45855CAD4C0C6B1C1426ABDEBA9 ] C:\Windows\system32\winsrv.dll
    20:26:33.0278 3492 [ D70FE45855CAD4C0C6B1C1426ABDEBA9 ] C:\Windows\system32\winsrv.dll
    20:26:33.0332 3492 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
    20:26:33.0393 3492 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
    20:26:33.0415 3492 [Global] - ok
    20:26:33.0423 3492 ================ Scan MBR ==================================
    20:26:33.0439 3492 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
    20:26:33.0739 3492 \Device\Harddisk0\DR0 - ok
    20:26:33.0744 3492 ================ Scan VBR ==================================
    20:26:33.0753 3492 [ 1ED3EBB17F11BEF65E8883A343311FC4 ] \Device\Harddisk0\DR0\Partition1
    20:26:33.0758 3492 \Device\Harddisk0\DR0\Partition1 - ok
    20:26:33.0764 3492 ============================================================
    20:26:33.0764 3492 Scan finished
    20:26:33.0764 3492 ============================================================
    20:26:33.0788 3432 Detected object count: 0
    20:26:33.0790 3432 Actual detected object count: 0
    20:27:27.0118 0968 ============================================================
    20:27:27.0118 0968 Scan started
    20:27:27.0118 0968 Mode: Manual;
    20:27:27.0118 0968 ============================================================
    20:27:27.0427 0968 ================ Scan system memory ========================
    20:27:27.0427 0968 System memory - ok
    20:27:27.0432 0968 ================ Scan services =============================
    20:27:27.0710 0968 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
    20:27:27.0713 0968 1394ohci - ok
    20:27:27.0759 0968 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys
    20:27:27.0762 0968 ACPI - ok
    20:27:27.0798 0968 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
    20:27:27.0799 0968 AcpiPmi - ok
    20:27:27.0947 0968 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
    20:27:27.0948 0968 AdobeARMservice - ok
    20:27:28.0035 0968 [ 424877CB9D5517F980FF7BACA2EB379D ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
    20:27:28.0038 0968 AdobeFlashPlayerUpdateSvc - ok
    20:27:28.0102 0968 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
    20:27:28.0107 0968 adp94xx - ok
    20:27:28.0149 0968 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
    20:27:28.0152 0968 adpahci - ok
    20:27:28.0185 0968 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
    20:27:28.0187 0968 adpu320 - ok
    20:27:28.0255 0968 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
    20:27:28.0256 0968 AeLookupSvc - ok
    20:27:28.0303 0968 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD C:\Windows\system32\drivers\afd.sys
    20:27:28.0307 0968 AFD - ok
    20:27:28.0341 0968 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys
    20:27:28.0343 0968 agp440 - ok
    20:27:28.0385 0968 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
    20:27:28.0387 0968 aic78xx - ok
    20:27:28.0419 0968 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
    20:27:28.0421 0968 ALG - ok
    20:27:28.0452 0968 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\drivers\aliide.sys
    20:27:28.0453 0968 aliide - ok
    20:27:28.0496 0968 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys
    20:27:28.0497 0968 amdagp - ok
    20:27:28.0531 0968 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\drivers\amdide.sys
    20:27:28.0532 0968 amdide - ok
    20:27:28.0567 0968 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
    20:27:28.0568 0968 AmdK8 - ok
    20:27:28.0597 0968 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
    20:27:28.0599 0968 AmdPPM - ok
    20:27:28.0638 0968 [ D320BF87125326F996D4904FE24300FC ] amdsata C:\Windows\system32\drivers\amdsata.sys
    20:27:28.0640 0968 amdsata - ok
    20:27:28.0682 0968 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
    20:27:28.0685 0968 amdsbs - ok
    20:27:28.0716 0968 [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata C:\Windows\system32\drivers\amdxata.sys
    20:27:28.0717 0968 amdxata - ok
    20:27:28.0767 0968 [ 64F24088DBB1D68EE9963F66F8EB68CF ] AnyDVD C:\Windows\system32\Drivers\AnyDVD.sys
    20:27:28.0769 0968 AnyDVD - ok
    20:27:28.0839 0968 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys
    20:27:28.0841 0968 AppID - ok
    20:27:28.0893 0968 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
    20:27:28.0894 0968 AppIDSvc - ok
    20:27:28.0953 0968 [ FB1959012294D6AD43E5304DF65E3C26 ] Appinfo C:\Windows\System32\appinfo.dll
    20:27:28.0955 0968 Appinfo - ok
    20:27:29.0007 0968 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    20:27:29.0010 0968 Apple Mobile Device - ok
    20:27:29.0066 0968 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys
    20:27:29.0067 0968 arc - ok
    20:27:29.0105 0968 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
    20:27:29.0107 0968 arcsas - ok
    20:27:29.0247 0968 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
    20:27:29.0248 0968 aspnet_state - ok
    20:27:29.0301 0968 [ F5DC168BF77572D51BE28BA261B30CB4 ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
    20:27:29.0302 0968 aswFsBlk - ok
    20:27:29.0352 0968 [ F76E51561562AC4105DBBE53FC99BC10 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
    20:27:29.0353 0968 aswMonFlt - ok
    20:27:29.0407 0968 [ 924819669AFD0EDF5C067193D371FAB0 ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
    20:27:29.0408 0968 aswRdr - ok
    20:27:29.0491 0968 [ 30E45AF8B4D83176CA850FC9699E860B ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
    20:27:29.0499 0968 aswSnx - ok
    20:27:29.0537 0968 [ F04BDBCB965C05C51F4A7DE7B62063D6 ] aswSP C:\Windows\system32\drivers\aswSP.sys
    20:27:29.0541 0968 aswSP - ok
    20:27:29.0567 0968 [ DFE9152ABFA89BB8CFDC057409B2D4DA ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
    20:27:29.0568 0968 aswTdi - ok
    20:27:29.0592 0968 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
    20:27:29.0593 0968 AsyncMac - ok
    20:27:29.0627 0968 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys
    20:27:29.0628 0968 atapi - ok
    20:27:29.0692 0968 [ B01751CC563AECAC09BBE36AAA21FBEF ] athr C:\Windows\system32\DRIVERS\athr.sys
    20:27:29.0709 0968 athr - ok
    20:27:29.0787 0968 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
    20:27:29.0792 0968 AudioEndpointBuilder - ok
    20:27:29.0822 0968 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll
    20:27:29.0828 0968 Audiosrv - ok
    20:27:29.0885 0968 [ 04AC21E821F259845BD7367CEE057290 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    20:27:29.0886 0968 avast! Antivirus - ok
    20:27:29.0938 0968 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\Windows\System32\AxInstSV.dll
    20:27:29.0940 0968 AxInstSV - ok
    20:27:30.0007 0968 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
    20:27:30.0012 0968 b06bdrv - ok
    20:27:30.0059 0968 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
    20:27:30.0062 0968 b57nd60x - ok
    20:27:30.0120 0968 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
    20:27:30.0123 0968 BDESVC - ok
    20:27:30.0164 0968 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
    20:27:30.0166 0968 Beep - ok
    20:27:30.0241 0968 [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE C:\Windows\System32\bfe.dll
    20:27:30.0247 0968 BFE - ok
    20:27:30.0305 0968 [ E585445D5021971FAE10393F0F1C3961 ] BITS C:\Windows\system32\qmgr.dll
    20:27:30.0325 0968 BITS - ok
    20:27:30.0354 0968 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
    20:27:30.0355 0968 blbdrive - ok
    20:27:30.0420 0968 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
    20:27:30.0424 0968 Bonjour Service - ok
    20:27:30.0454 0968 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
    20:27:30.0456 0968 bowser - ok
    20:27:30.0489 0968 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
    20:27:30.0490 0968 BrFiltLo - ok
    20:27:30.0513 0968 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
    20:27:30.0514 0968 BrFiltUp - ok
    20:27:30.0546 0968 [ 77361D72A04F18809D0EFB6CCEB74D4B ] Bridge C:\Windows\system32\DRIVERS\bridge.sys
    20:27:30.0548 0968 Bridge - ok
    20:27:30.0564 0968 [ 77361D72A04F18809D0EFB6CCEB74D4B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
    20:27:30.0565 0968 BridgeMP - ok
    20:27:30.0619 0968 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser C:\Windows\System32\browser.dll
    20:27:30.0621 0968 Browser - ok
    20:27:30.0666 0968 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
    20:27:30.0669 0968 Brserid - ok
    20:27:30.0702 0968 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
    20:27:30.0703 0968 BrSerWdm - ok
    20:27:30.0736 0968 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
    20:27:30.0738 0968 BrUsbMdm - ok
    20:27:30.0771 0968 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
    20:27:30.0772 0968 BrUsbSer - ok
    20:27:30.0801 0968 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
    20:27:30.0805 0968 BTHMODEM - ok
    20:27:30.0869 0968 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
    20:27:30.0871 0968 bthserv - ok
    20:27:31.0024 0968 catchme - ok
    20:27:31.0059 0968 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
    20:27:31.0061 0968 cdfs - ok
    20:27:31.0107 0968 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
    20:27:31.0109 0968 cdrom - ok
    20:27:31.0165 0968 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll
    20:27:31.0168 0968 CertPropSvc - ok
    20:27:31.0216 0968 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
    20:27:31.0217 0968 circlass - ok
    20:27:31.0251 0968 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
    20:27:31.0256 0968 CLFS - ok
    20:27:31.0352 0968 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
    20:27:31.0354 0968 clr_optimization_v2.0.50727_32 - ok
    20:27:31.0397 0968 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
    20:27:31.0400 0968 clr_optimization_v4.0.30319_32 - ok
    20:27:31.0435 0968 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
    20:27:31.0436 0968 CmBatt - ok
    20:27:31.0468 0968 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\drivers\cmdide.sys
    20:27:31.0469 0968 cmdide - ok
    20:27:31.0537 0968 [ 42F158036BD4C2FF3122BF142E60E6FD ] CNG C:\Windows\system32\Drivers\cng.sys
    20:27:31.0543 0968 CNG - ok
    20:27:31.0575 0968 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
    20:27:31.0576 0968 Compbatt - ok
    20:27:31.0619 0968 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
    20:27:31.0620 0968 CompositeBus - ok
    20:27:31.0637 0968 COMSysApp - ok
    20:27:31.0674 0968 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
    20:27:31.0675 0968 crcdisk - ok
    20:27:31.0742 0968 [ 96C0E38905CFD788313BE8E11DAE3F2F ] CryptSvc C:\Windows\system32\cryptsvc.dll
    20:27:31.0745 0968 CryptSvc - ok
    20:27:31.0796 0968 [ 946A232A6FC3368805A161B890C23544 ] dc3d C:\Windows\system32\DRIVERS\dc3d.sys
    20:27:31.0797 0968 dc3d - ok
    20:27:31.0872 0968 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll
    20:27:31.0883 0968 DcomLaunch - ok
    20:27:31.0933 0968 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
    20:27:31.0938 0968 defragsvc - ok
    20:27:31.0997 0968 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
    20:27:31.0999 0968 DfsC - ok
    20:27:32.0056 0968 [ 73FC5BC52572084EC1241514CF6230A0 ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
    20:27:32.0058 0968 dg_ssudbus - ok
    20:27:32.0120 0968 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll
    20:27:32.0126 0968 Dhcp - ok
    20:27:32.0145 0968 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
    20:27:32.0147 0968 discache - ok
    20:27:32.0191 0968 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys
    20:27:32.0193 0968 Disk - ok
    20:27:32.0248 0968 [ C701324C9E0C25DD9D60311BD87FBC84 ] DKbFltr C:\Windows\system32\DRIVERS\DKbFltr.sys
    20:27:32.0249 0968 DKbFltr - ok
    20:27:32.0291 0968 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
    20:27:32.0295 0968 Dnscache - ok
    20:27:32.0365 0968 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll
    20:27:32.0370 0968 dot3svc - ok
    20:27:32.0431 0968 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll
    20:27:32.0436 0968 DPS - ok
    20:27:32.0495 0968 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
    20:27:32.0496 0968 drmkaud - ok
    20:27:32.0574 0968 [ D8ECF13E587619CDF716B2AE8E12DDBB ] DsiWMIService C:\Program Files\Launch Manager\dsiwmis.exe
    20:27:32.0576 0968 DsiWMIService - ok
    20:27:32.0634 0968 [ 687AF6BB383885FF6A64071B189A7F3E ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
    20:27:32.0637 0968 dtsoftbus01 - ok
    20:27:32.0691 0968 [ 23F5D28378A160352BA8F817BD8C71CB ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
    20:27:32.0699 0968 DXGKrnl - ok
    20:27:32.0756 0968 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
    20:27:32.0761 0968 EapHost - ok
    20:27:32.0789 0968 [ 5D67E5F2CA692F7DBA2568182B394541 ] easytether C:\Windows\system32\DRIVERS\easytthr.sys
    20:27:32.0791 0968 easytether - ok
    20:27:32.0924 0968 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
    20:27:32.0969 0968 ebdrv - ok
    20:27:33.0036 0968 [ 81951F51E318AECC2D68559E47485CC4 ] EFS C:\Windows\System32\lsass.exe
    20:27:33.0041 0968 EFS - ok
    20:27:33.0153 0968 [ A8C362018EFC87BEB013EE28F29C0863 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
    20:27:33.0160 0968 ehRecvr - ok
    20:27:33.0217 0968 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe
    20:27:33.0220 0968 ehSched - ok
    20:27:33.0241 0968 [ D71233D7CCC2E64F8715A20428D5A33B ] ElbyCDIO C:\Windows\system32\Drivers\ElbyCDIO.sys
    20:27:33.0243 0968 ElbyCDIO - ok
    20:27:33.0302 0968 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
    20:27:33.0307 0968 elxstor - ok
    20:27:33.0362 0968 [ 539CA34FBC74EC366A0D751028C32A08 ] epmntdrv C:\Windows\system32\epmntdrv.sys
    20:27:33.0366 0968 epmntdrv - ok
    20:27:33.0507 0968 [ 6D49242536F8397AE9AF2A2A360E2EDD ] ePowerSvc C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe
    20:27:33.0515 0968 ePowerSvc - ok
    20:27:33.0551 0968 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys
    20:27:33.0552 0968 ErrDev - ok
    20:27:33.0621 0968 [ 1F2F4AB15CE03ECC257FEB2F6DC5A013 ] EuGdiDrv C:\Windows\system32\EuGdiDrv.sys
    20:27:33.0624 0968 EuGdiDrv - ok
    20:27:33.0681 0968 [ 6B93B103242C3C30F850F53DBE39ED88 ] EuMusDesignVirtualAudioCableWdm C:\Windows\system32\DRIVERS\vrtaucbl.sys
    20:27:33.0684 0968 EuMusDesignVirtualAudioCableWdm - ok
    20:27:33.0756 0968 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
    20:27:33.0762 0968 EventSystem - ok
    20:27:33.0790 0968 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
    20:27:33.0793 0968 exfat - ok
    20:27:33.0838 0968 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
    20:27:33.0840 0968 fastfat - ok
    20:27:33.0898 0968 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe
    20:27:33.0907 0968 Fax - ok
    20:27:33.0961 0968 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
    20:27:33.0962 0968 fdc - ok
    20:27:33.0993 0968 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
    20:27:33.0997 0968 fdPHost - ok
    20:27:34.0026 0968 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
    20:27:34.0030 0968 FDResPub - ok
    20:27:34.0051 0968 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
    20:27:34.0053 0968 FileInfo - ok
    20:27:34.0085 0968 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
    20:27:34.0086 0968 Filetrace - ok
    20:27:34.0119 0968 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
    20:27:34.0121 0968 flpydisk - ok
    20:27:34.0153 0968 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
    20:27:34.0156 0968 FltMgr - ok
    20:27:34.0210 0968 [ B3A5EC6B6B6673DB7E87C2BCDBDDC074 ] FontCache C:\Windows\system32\FntCache.dll
    20:27:34.0222 0968 FontCache - ok
    20:27:34.0337 0968 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
    20:27:34.0338 0968 FontCache3.0.0.0 - ok
    20:27:34.0376 0968 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
    20:27:34.0378 0968 FsDepends - ok
    20:27:34.0438 0968 [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
    20:27:34.0439 0968 Fs_Rec - ok
    20:27:34.0500 0968 [ 8A73E79089B282100B9393B644CB853B ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
    20:27:34.0503 0968 fvevol - ok
    20:27:34.0536 0968 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
    20:27:34.0538 0968 gagp30kx - ok
    20:27:34.0575 0968 [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
    20:27:34.0576 0968 GEARAspiWDM - ok
    20:27:34.0661 0968 [ 9F5F2F0FB0A7F5AA9F16B9A7B6DAD89F ] GoogleDesktopManager-051210-111108 C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    20:27:34.0664 0968 GoogleDesktopManager-051210-111108 - ok
    20:27:34.0729 0968 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll
    20:27:34.0741 0968 gpsvc - ok
    20:27:34.0819 0968 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
    20:27:34.0821 0968 gupdate - ok
    20:27:34.0841 0968 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
    20:27:34.0843 0968 gupdatem - ok
    20:27:34.0894 0968 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
    20:27:34.0895 0968 hcw85cir - ok
    20:27:34.0956 0968 [ A5EF29D5315111C80A5C1ABAD14C8972 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
    20:27:34.0960 0968 HdAudAddService - ok
    20:27:35.0011 0968 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
    20:27:35.0013 0968 HDAudBus - ok
    20:27:35.0047 0968 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
    20:27:35.0049 0968 HidBatt - ok
    20:27:35.0091 0968 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
    20:27:35.0093 0968 HidBth - ok
    20:27:35.0117 0968 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
    20:27:35.0121 0968 HidIr - ok
    20:27:35.0188 0968 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\System32\hidserv.dll
    20:27:35.0192 0968 hidserv - ok
    20:27:35.0231 0968 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
    20:27:35.0232 0968 HidUsb - ok
    20:27:35.0289 0968 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll
    20:27:35.0295 0968 hkmsvc - ok
    20:27:35.0359 0968 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
    20:27:35.0366 0968 HomeGroupListener - ok
    20:27:35.0434 0968 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
    20:27:35.0444 0968 HomeGroupProvider - ok
    20:27:35.0486 0968 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
    20:27:35.0488 0968 HpSAMD - ok
    20:27:35.0557 0968 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys
    20:27:35.0563 0968 HTTP - ok
    20:27:35.0617 0968 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
    20:27:35.0618 0968 hwpolicy - ok
    20:27:35.0644 0968 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
    20:27:35.0646 0968 i8042prt - ok
    20:27:35.0728 0968 [ 52E8A3CC8269ADB27D25182284C5E650 ] IAANTMON C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
    20:27:35.0733 0968 IAANTMON - ok
    20:27:35.0800 0968 [ 71ECC07BC7C5E24C3DD01D8A29A24054 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
    20:27:35.0804 0968 iaStor - ok
    20:27:35.0848 0968 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
    20:27:35.0852 0968 iaStorV - ok
    20:27:35.0938 0968 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
    20:27:35.0948 0968 idsvc - ok
    20:27:36.0120 0968 [ A9221D13D8F1F772010EE293BA9BAEB7 ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
    20:27:36.0180 0968 igfx - ok
    20:27:36.0270 0968 [ 23E1BCADABE423C35C19BBDFF10CCE6D ] IHA_MessageCenter C:\Program Files\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe
    20:27:36.0275 0968 IHA_MessageCenter - ok
    20:27:36.0328 0968 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
    20:27:36.0330 0968 iirsp - ok
    20:27:36.0382 0968 [ F95622F161474511B8D80D6B093AA610 ] IKEEXT C:\Windows\System32\ikeext.dll
    20:27:36.0399 0968 IKEEXT - ok
    20:27:36.0430 0968 IntcAzAudAddService - ok
    20:27:36.0462 0968 [ 092A78E9C6F71BF0E22379503B90E800 ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys
    20:27:36.0464 0968 IntcHdmiAddService - ok
    20:27:36.0506 0968 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys
    20:27:36.0507 0968 intelide - ok
    20:27:36.0539 0968 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
    20:27:36.0541 0968 intelppm - ok
    20:27:36.0600 0968 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
    20:27:36.0605 0968 IPBusEnum - ok
    20:27:36.0633 0968 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
    20:27:36.0635 0968 IpFilterDriver - ok
    20:27:36.0687 0968 [ 58F67245D041FBE7AF88F4EAF79DF0FA ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
    20:27:36.0696 0968 iphlpsvc - ok
    20:27:36.0737 0968 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
    20:27:36.0739 0968 IPMIDRV - ok
    20:27:36.0779 0968 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
    20:27:36.0781 0968 IPNAT - ok
    20:27:36.0854 0968 [ BC0EA61246F8D940FBC5F652D337D6BD ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
    20:27:36.0864 0968 iPod Service - ok
    20:27:36.0900 0968 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
    20:27:36.0901 0968 IRENUM - ok
    20:27:36.0943 0968 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\drivers\isapnp.sys
    20:27:36.0945 0968 isapnp - ok
    20:27:36.0985 0968 [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
    20:27:36.0989 0968 iScsiPrt - ok
    20:27:37.0020 0968 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
    20:27:37.0022 0968 kbdclass - ok
    20:27:37.0053 0968 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
    20:27:37.0055 0968 kbdhid - ok
    20:27:37.0087 0968 [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso C:\Windows\system32\lsass.exe
    20:27:37.0096 0968 KeyIso - ok
    20:27:37.0148 0968 [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
    20:27:37.0150 0968 KSecDD - ok
    20:27:37.0209 0968 [ 5FE1ABF1AF591A3458C9CF24ED9A4D35 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
    20:27:37.0212 0968 KSecPkg - ok
    20:27:37.0265 0968 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
    20:27:37.0274 0968 KtmRm - ok
    20:27:37.0316 0968 [ 6C32BFEAB708915D6BBF4B20D4F3EF7B ] L1C C:\Windows\system32\DRIVERS\L1C62x86.sys
    20:27:37.0318 0968 L1C - ok
    20:27:37.0359 0968 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\System32\srvsvc.dll
    20:27:37.0370 0968 LanmanServer - ok
    20:27:37.0457 0968 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
    20:27:37.0468 0968 LanmanWorkstation - ok
    20:27:37.0485 0968 Lbd - ok
    20:27:37.0550 0968 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
    20:27:37.0552 0968 lltdio - ok
    20:27:37.0607 0968 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
    20:27:37.0617 0968 lltdsvc - ok
    20:27:37.0653 0968 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
    20:27:37.0658 0968 lmhosts - ok
    20:27:37.0696 0968 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
    20:27:37.0698 0968 LSI_FC - ok
    20:27:37.0736 0968 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
    20:27:37.0738 0968 LSI_SAS - ok
    20:27:37.0765 0968 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
    20:27:37.0767 0968 LSI_SAS2 - ok
    20:27:37.0799 0968 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
    20:27:37.0801 0968 LSI_SCSI - ok
    20:27:37.0834 0968 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
    20:27:37.0836 0968 luafv - ok
    20:27:37.0895 0968 [ 629CABB0421668C9D3D402A3C3D77E14 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
    20:27:37.0897 0968 MBAMProtector - ok
    20:27:37.0966 0968 [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
    20:27:37.0970 0968 MBAMScheduler - ok
    20:27:38.0023 0968 [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
    20:27:38.0031 0968 MBAMService - ok
    20:27:38.0085 0968 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
    20:27:38.0091 0968 Mcx2Svc - ok
    20:27:38.0147 0968 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
    20:27:38.0149 0968 megasas - ok
    20:27:38.0187 0968 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
    20:27:38.0190 0968 MegaSR - ok
    20:27:38.0243 0968 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
    20:27:38.0249 0968 MMCSS - ok
    20:27:38.0281 0968 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
    20:27:38.0283 0968 Modem - ok
    20:27:38.0316 0968 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
    20:27:38.0318 0968 monitor - ok
    20:27:38.0341 0968 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
    20:27:38.0343 0968 mouclass - ok
    20:27:38.0388 0968 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
    20:27:38.0390 0968 mouhid - ok
    20:27:38.0442 0968 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
    20:27:38.0444 0968 mountmgr - ok
    20:27:38.0506 0968 [ 9C3758018DED02F4AE53CCA1C5F084A2 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
    20:27:38.0508 0968 MozillaMaintenance - ok
    20:27:38.0553 0968 [ EE728AF83850DDAD9A3FCAC0AAB3AD97 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
    20:27:38.0556 0968 MpFilter - ok
    20:27:38.0605 0968 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\Windows\system32\drivers\mpio.sys
    20:27:38.0607 0968 mpio - ok
    20:27:38.0764 0968 [ A69630D039C38018689190234F866D77 ] MpKsl8ab77270 c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E3AC5A73-39A4-4FEC-B362-5F964A706F33}\MpKsl8ab77270.sys
    20:27:38.0765 0968 MpKsl8ab77270 - ok
    20:27:38.0824 0968 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
    20:27:38.0826 0968 mpsdrv - ok
    20:27:38.0890 0968 [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc C:\Windows\system32\mpssvc.dll
    20:27:38.0901 0968 MpsSvc - ok
    20:27:38.0961 0968 [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
    20:27:38.0964 0968 MRxDAV - ok
    20:27:39.0013 0968 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
    20:27:39.0016 0968 mrxsmb - ok
    20:27:39.0056 0968 [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
    20:27:39.0059 0968 mrxsmb10 - ok
    20:27:39.0087 0968 [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
    20:27:39.0090 0968 mrxsmb20 - ok
    20:27:39.0129 0968 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\Windows\system32\drivers\msahci.sys
    20:27:39.0131 0968 msahci - ok
    20:27:39.0173 0968 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\Windows\system32\drivers\msdsm.sys
    20:27:39.0175 0968 msdsm - ok
    20:27:39.0218 0968 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
    20:27:39.0225 0968 MSDTC - ok
    20:27:39.0276 0968 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
    20:27:39.0278 0968 Msfs - ok
    20:27:39.0301 0968 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
    20:27:39.0302 0968 mshidkmdf - ok
    20:27:39.0325 0968 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
    20:27:39.0326 0968 msisadrv - ok
    20:27:39.0391 0968 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
    20:27:39.0396 0968 MSiSCSI - ok
    20:27:39.0413 0968 msiserver - ok
    20:27:39.0460 0968 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
    20:27:39.0461 0968 MSKSSRV - ok
    20:27:39.0509 0968 [ E077FCA2A7E79FB9BF67D3E30B5CE593 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
    20:27:39.0513 0968 MsMpSvc - ok
    20:27:39.0542 0968 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
    20:27:39.0544 0968 MSPCLOCK - ok
    20:27:39.0580 0968 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
    20:27:39.0582 0968 MSPQM - ok
    20:27:39.0611 0968 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
    20:27:39.0617 0968 MsRPC - ok
    20:27:39.0667 0968 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
    20:27:39.0669 0968 mssmbios - ok
    20:27:39.0705 0968 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
    20:27:39.0709 0968 MSTEE - ok
    20:27:39.0752 0968 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
    20:27:39.0754 0968 MTConfig - ok
    20:27:39.0783 0968 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
    20:27:39.0785 0968 Mup - ok
    20:27:39.0847 0968 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll
    20:27:39.0858 0968 napagent - ok
    20:27:39.0922 0968 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
    20:27:39.0926 0968 NativeWifiP - ok
    20:27:39.0985 0968 [ 8C9C922D71F1CD4DEF73F186416B7896 ] NDIS C:\Windows\system32\drivers\ndis.sys
    20:27:40.0007 0968 NDIS - ok
    20:27:40.0042 0968 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
    20:27:40.0044 0968 NdisCap - ok
    20:27:40.0078 0968 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
    20:27:40.0080 0968 NdisTapi - ok
    20:27:40.0144 0968 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
    20:27:40.0146 0968 Ndisuio - ok
    20:27:40.0204 0968 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
    20:27:40.0207 0968 NdisWan - ok
    20:27:40.0258 0968 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
    20:27:40.0260 0968 NDProxy - ok
    20:27:40.0291 0968 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
    20:27:40.0293 0968 NetBIOS - ok
    20:27:40.0349 0968 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
    20:27:40.0353 0968 NetBT - ok
    20:27:40.0375 0968 [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon C:\Windows\system32\lsass.exe
    20:27:40.0383 0968 Netlogon - ok
    20:27:40.0437 0968 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
    20:27:40.0446 0968 Netman - ok
    20:27:40.0495 0968 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
    20:27:40.0498 0968 NetMsmqActivator - ok
    20:27:40.0524 0968 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
    20:27:40.0527 0968 NetPipeActivator - ok
    20:27:40.0567 0968 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
    20:27:40.0578 0968 netprofm - ok
    20:27:40.0597 0968 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
    20:27:40.0600 0968 NetTcpActivator - ok
    20:27:40.0626 0968 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
    20:27:40.0628 0968 NetTcpPortSharing - ok
    20:27:40.0656 0968 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
    20:27:40.0658 0968 nfrd960 - ok
    20:27:40.0704 0968 [ 2CD24A6AF497D0E9B9BF3DA924ED05E6 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
    20:27:40.0707 0968 NisDrv - ok
    20:27:40.0742 0968 [ 3B846434055F80D9E89D0742F3ADAD34 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
    20:27:40.0745 0968 NisSrv - ok
    20:27:40.0798 0968 [ 374071043F9E4231EE43BE2BB48DD36D ] NlaSvc C:\Windows\System32\nlasvc.dll
    20:27:40.0807 0968 NlaSvc - ok
    20:27:40.0837 0968 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
    20:27:40.0839 0968 Npfs - ok
    20:27:40.0902 0968 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
    20:27:40.0909 0968 nsi - ok
    20:27:40.0940 0968 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
    20:27:40.0942 0968 nsiproxy - ok
    20:27:41.0035 0968 [ 0D87503986BB3DFED58E343FE39DDE13 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
    20:27:41.0049 0968 Ntfs - ok
    20:27:41.0134 0968 [ 453A4AA289CA08DFDD7B34C3064D0B05 ] NTI IScheduleSvc C:\Program Files\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
    20:27:41.0135 0968 NTI IScheduleSvc - ok
    20:27:41.0171 0968 [ 6DCAA65F49EF3B97A5CFFC0CB5DE1C2F ] NTIDrvr C:\Windows\system32\Drivers\NTIDrvr.sys
    20:27:41.0173 0968 NTIDrvr - ok
    20:27:41.0232 0968 [ 71CB7616CB36D43EA787C41AB55FE458 ] NTPASp50 C:\Windows\system32\Drivers\NTPASp50.sys
    20:27:41.0234 0968 NTPASp50 - ok
    20:27:41.0281 0968 [ 37BE10FF10A92031FC5A01E8363925CC ] NuidFltr C:\Windows\system32\DRIVERS\NuidFltr.sys
    20:27:41.0283 0968 NuidFltr - ok
    20:27:41.0341 0968 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
    20:27:41.0343 0968 Null - ok
    20:27:41.0383 0968 [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid C:\Windows\system32\drivers\nvraid.sys
    20:27:41.0386 0968 nvraid - ok
    20:27:41.0436 0968 [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor C:\Windows\system32\drivers\nvstor.sys
    20:27:41.0439 0968 nvstor - ok
    20:27:41.0483 0968 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
    20:27:41.0486 0968 nv_agp - ok
    20:27:41.0578 0968 [ 69316583D4CC032B3E4E72FD86C2FFA8 ] ODDPwrSvc C:\Program Files\Acer\Optical Drive Power Management\ODDPWRSvc.exe
    20:27:41.0580 0968 ODDPwrSvc - ok
    20:27:41.0620 0968 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
    20:27:41.0622 0968 ohci1394 - ok
    20:27:41.0705 0968 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
    20:27:41.0708 0968 ose - ok
    20:27:41.0913 0968 [ 358A9CCA612C68EB2F07DDAD4CE1D8D7 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
    20:27:41.0969 0968 osppsvc - ok
    20:27:42.0024 0968 [ 4CDADEC3DC1300EE1D313EA5494E6472 ] ovt519 C:\Windows\system32\Drivers\ov519vid.sys
    20:27:42.0027 0968 ovt519 - ok
    20:27:42.0094 0968 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
    20:27:42.0104 0968 p2pimsvc - ok
    20:27:42.0174 0968 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
    20:27:42.0185 0968 p2psvc - ok
    20:27:42.0235 0968 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
    20:27:42.0237 0968 Parport - ok
    20:27:42.0271 0968 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr C:\Windows\system32\drivers\partmgr.sys
    20:27:42.0274 0968 partmgr - ok
    20:27:42.0307 0968 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
    20:27:42.0308 0968 Parvdm - ok
    20:27:42.0351 0968 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
    20:27:42.0362 0968 PcaSvc - ok
    20:27:42.0414 0968 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\Windows\system32\drivers\pci.sys
    20:27:42.0416 0968 pci - ok
    20:27:42.0457 0968 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\drivers\pciide.sys
    20:27:42.0458 0968 pciide - ok
    20:27:42.0493 0968 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
    20:27:42.0496 0968 pcmcia - ok
    20:27:42.0544 0968 [ 5B6C11DE7E839C05248CED8825470FEF ] pcouffin C:\Windows\system32\Drivers\pcouffin.sys
    20:27:42.0546 0968 pcouffin - ok
    20:27:42.0578 0968 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
    20:27:42.0580 0968 pcw - ok
    20:27:42.0625 0968 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
    20:27:42.0634 0968 PEAUTH - ok
    20:27:42.0688 0968 pgfilter - ok
    20:27:42.0774 0968 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll
    20:27:42.0798 0968 pla - ok
    20:27:42.0838 0968 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay C:\Windows\system32\umpnpmgr.dll
    20:27:42.0851 0968 PlugPlay - ok
    20:27:42.0882 0968 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
    20:27:42.0890 0968 PNRPAutoReg - ok
    20:27:42.0917 0968 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
    20:27:42.0937 0968 PNRPsvc - ok
    20:27:42.0994 0968 [ 896D916DE06F5502D301E8C4DC442AE8 ] Point32 C:\Windows\system32\DRIVERS\point32.sys
    20:27:42.0996 0968 Point32 - ok
    20:27:43.0042 0968 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
    20:27:43.0050 0968 PolicyAgent - ok
    20:27:43.0121 0968 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll
    20:27:43.0132 0968 Power - ok
    20:27:43.0194 0968 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
    20:27:43.0199 0968 PptpMiniport - ok
    20:27:43.0247 0968 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys
    20:27:43.0249 0968 Processor - ok
    20:27:43.0309 0968 [ CADEFAC453040E370A1BDFF3973BE00D ] ProfSvc C:\Windows\system32\profsvc.dll
    20:27:43.0318 0968 ProfSvc - ok
    20:27:43.0340 0968 [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe
    20:27:43.0349 0968 ProtectedStorage - ok
    20:27:43.0387 0968 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
    20:27:43.0397 0968 Psched - ok
    20:27:43.0451 0968 [ CFACAA25576D473EF7B771ECE1B24D73 ] pwdrvio C:\Windows\system32\pwdrvio.sys
    20:27:43.0459 0968 pwdrvio - ok
    20:27:43.0505 0968 [ 0B675A61B23561C86E8710F751842276 ] pwdspio C:\Windows\system32\pwdspio.sys
    20:27:43.0515 0968 pwdspio - ok
    20:27:43.0604 0968 [ C8AFE59E2D1FDA67A6C5777A13082103 ] QBCFMonitorService c:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
    20:27:43.0606 0968 QBCFMonitorService - ok
    20:27:43.0697 0968 [ 6BEE1814470DC12FA20C53DFC3C97EBB ] QBFCService c:\Program Files\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe
    20:27:43.0699 0968 QBFCService - ok
    20:27:43.0769 0968 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
    20:27:43.0784 0968 ql2300 - ok
    20:27:43.0838 0968 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
    20:27:43.0841 0968 ql40xx - ok
    20:27:43.0881 0968 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
    20:27:43.0899 0968 QWAVE - ok
    20:27:43.0933 0968 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
    20:27:43.0936 0968 QWAVEdrv - ok
    20:27:43.0973 0968 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
    20:27:43.0975 0968 RasAcd - ok
    20:27:44.0037 0968 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
    20:27:44.0038 0968 RasAgileVpn - ok
    20:27:44.0084 0968 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
    20:27:44.0092 0968 RasAuto - ok
    20:27:44.0121 0968 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
    20:27:44.0124 0968 Rasl2tp - ok
    20:27:44.0187 0968 [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan C:\Windows\System32\rasmans.dll
    20:27:44.0197 0968 RasMan - ok
    20:27:44.0222 0968 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
    20:27:44.0225 0968 RasPppoe - ok
    20:27:44.0261 0968 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
    20:27:44.0263 0968 RasSstp - ok
    20:27:44.0332 0968 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
    20:27:44.0336 0968 rdbss - ok
    20:27:44.0376 0968 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
    20:27:44.0377 0968 rdpbus - ok
    20:27:44.0435 0968 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
    20:27:44.0439 0968 RDPCDD - ok
    20:27:44.0480 0968 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
    20:27:44.0481 0968 RDPENCDD - ok
    20:27:44.0522 0968 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
    20:27:44.0524 0968 RDPREFMP - ok
    20:27:44.0589 0968 [ 65375DF758CA1872AB7EBBBA457FD5E6 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
    20:27:44.0591 0968 RdpVideoMiniport - ok
    20:27:44.0658 0968 [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
    20:27:44.0661 0968 RDPWD - ok
    20:27:44.0731 0968 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
    20:27:44.0735 0968 rdyboost - ok
    20:27:44.0786 0968 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
    20:27:44.0793 0968 RemoteAccess - ok
    20:27:44.0846 0968 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
    20:27:44.0858 0968 RemoteRegistry - ok
    20:27:44.0897 0968 [ 616EAC1B0E48B236A5A9B8AE07FDB81C ] RimUsb C:\Windows\system32\Drivers\RimUsb.sys
    20:27:44.0899 0968 RimUsb - ok
    20:27:44.0947 0968 [ 2C4FB2E9F039287767C384E46EE91030 ] RimVSerPort C:\Windows\system32\DRIVERS\RimSerial.sys
    20:27:44.0949 0968 RimVSerPort - ok
    20:27:45.0003 0968 [ 564297827D213F52C7A3A2FF749568CA ] ROOTMODEM C:\Windows\system32\Drivers\RootMdm.sys
    20:27:45.0004 0968 ROOTMODEM - ok
    20:27:45.0037 0968 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
    20:27:45.0046 0968 RpcEptMapper - ok
    20:27:45.0101 0968 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
    20:27:45.0107 0968 RpcLocator - ok
    20:27:45.0168 0968 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\Windows\system32\rpcss.dll
    20:27:45.0182 0968 RpcSs - ok
    20:27:45.0205 0968 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
    20:27:45.0208 0968 rspndr - ok
    20:27:45.0297 0968 [ 8E250687E5F020CD337CC9D8252C0B56 ] RS_Service C:\Program Files\Acer\Acer VCM\RS_Service.exe
    20:27:45.0301 0968 RS_Service - ok
    20:27:45.0338 0968 [ 9B09F336DE36A7A6CA871DE8A7847B65 ] RTSTOR C:\Windows\system32\drivers\RTSTOR.SYS
    20:27:45.0340 0968 RTSTOR - ok
    20:27:45.0375 0968 [ 81951F51E318AECC2D68559E47485CC4 ] SamSs C:\Windows\system32\lsass.exe
    20:27:45.0386 0968 SamSs - ok
    20:27:45.0432 0968 [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
    20:27:45.0435 0968 sbp2port - ok
    20:27:45.0511 0968 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
    20:27:45.0520 0968 SCardSvr - ok
    20:27:45.0577 0968 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
    20:27:45.0579 0968 scfilter - ok
    20:27:45.0651 0968 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\Windows\system32\schedsvc.dll
    20:27:45.0666 0968 Schedule - ok
    20:27:45.0741 0968 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\Windows\System32\certprop.dll
    20:27:45.0744 0968 SCPolicySvc - ok
    20:27:45.0820 0968 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\Windows\System32\SDRSVC.dll
    20:27:45.0837 0968 SDRSVC - ok
    20:27:45.0887 0968 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
    20:27:45.0889 0968 secdrv - ok
    20:27:45.0920 0968 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
    20:27:45.0929 0968 seclogon - ok
    20:27:45.0974 0968 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\system32\sens.dll
    20:27:45.0983 0968 SENS - ok
    20:27:46.0037 0968 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll
    20:27:46.0048 0968 SensrSvc - ok
    20:27:46.0081 0968 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
    20:27:46.0083 0968 Serenum - ok
    20:27:46.0108 0968 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys
    20:27:46.0111 0968 Serial - ok
    20:27:46.0146 0968 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
    20:27:46.0156 0968 sermouse - ok
    20:27:46.0252 0968 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\Windows\system32\sessenv.dll
    20:27:46.0271 0968 SessionEnv - ok
    20:27:46.0312 0968 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
    20:27:46.0313 0968 sffdisk - ok
    20:27:46.0338 0968 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
    20:27:46.0343 0968 sffp_mmc - ok
    20:27:46.0381 0968 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
    20:27:46.0382 0968 sffp_sd - ok
    20:27:46.0429 0968 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
    20:27:46.0431 0968 sfloppy - ok
    20:27:46.0490 0968 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\Windows\System32\ipnathlp.dll
    20:27:46.0497 0968 SharedAccess - ok
    20:27:46.0568 0968 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
    20:27:46.0580 0968 ShellHWDetection - ok
    20:27:46.0626 0968 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys
    20:27:46.0628 0968 sisagp - ok
    20:27:46.0664 0968 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
    20:27:46.0666 0968 SiSRaid2 - ok
    20:27:46.0705 0968 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
    20:27:46.0707 0968 SiSRaid4 - ok
    20:27:46.0789 0968 [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
    20:27:46.0791 0968 SkypeUpdate - ok
    20:27:46.0817 0968 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
    20:27:46.0820 0968 Smb - ok
    20:27:46.0891 0968 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
    20:27:46.0900 0968 SNMPTRAP - ok
    20:27:46.0945 0968 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
    20:27:46.0947 0968 spldr - ok
    20:27:47.0015 0968 [ 9AEA093B8F9C37CF45538382CABA2475 ] Spooler C:\Windows\System32\spoolsv.exe
    20:27:47.0027 0968 Spooler - ok
    20:27:47.0181 0968 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe
    20:27:47.0242 0968 sppsvc - ok
    20:27:47.0313 0968 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\Windows\system32\sppuinotify.dll
    20:27:47.0323 0968 sppuinotify - ok
    20:27:47.0389 0968 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv C:\Windows\system32\DRIVERS\srv.sys
    20:27:47.0404 0968 srv - ok
    20:27:47.0458 0968 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
    20:27:47.0463 0968 srv2 - ok
    20:27:47.0488 0968 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
    20:27:47.0490 0968 srvnet - ok
    20:27:47.0526 0968 [ D5DFFEAA1E15D4EFFABB9D9A3068AC5B ] sscdbus C:\Windows\system32\DRIVERS\sscdbus.sys
    20:27:47.0528 0968 sscdbus - ok
    20:27:47.0560 0968 [ 8A1BE0C347814F482F493AEA619D57F6 ] sscdmdfl C:\Windows\system32\DRIVERS\sscdmdfl.sys
    20:27:47.0562 0968 sscdmdfl - ok
    20:27:47.0600 0968 [ 5AB0B1987F682A59B15B78F84C6AD7D0 ] sscdmdm C:\Windows\system32\DRIVERS\sscdmdm.sys
    20:27:47.0603 0968 sscdmdm - ok
    20:27:47.0664 0968 [ 751E66EB32EFA80633B80F5D7FF0A1D8 ] sscdserd C:\Windows\system32\DRIVERS\sscdserd.sys
    20:27:47.0666 0968 sscdserd - ok
    20:27:47.0717 0968 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
    20:27:47.0727 0968 SSDPSRV - ok
    20:27:47.0768 0968 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
    20:27:47.0777 0968 SstpSvc - ok
    20:27:47.0832 0968 [ E3D493BFB7CD108EC50B2F560C96367C ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
    20:27:47.0836 0968 ssudmdm - ok
    20:27:47.0885 0968 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
    20:27:47.0887 0968 stexstor - ok
    20:27:47.0954 0968 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll
    20:27:47.0970 0968 StiSvc - ok
    20:27:48.0015 0968 [ 36ED459E9130E6D07FA66FACA1E491D0 ] StkAMini C:\Windows\system32\Drivers\StkAMini.sys
    20:27:48.0019 0968 StkAMini - ok
    20:27:48.0056 0968 [ 5CCFE3B03F97005D221BA897C9A20B38 ] StkASSrv C:\Windows\System32\StkASv2K.exe
    20:27:48.0065 0968 StkASSrv - ok
    20:27:48.0118 0968 [ DF29245097F6DE1CA9861C75DF7FBE42 ] StkScan C:\Windows\system32\Drivers\StkScan.sys
    20:27:48.0120 0968 StkScan - ok
    20:27:48.0155 0968 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\drivers\swenum.sys
    20:27:48.0156 0968 swenum - ok
    20:27:48.0204 0968 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
    20:27:48.0217 0968 swprv - ok
    20:27:48.0280 0968 [ 5C3E900F41426A372DE60675AFC8AA07 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
    20:27:48.0283 0968 SynTP - ok
    20:27:48.0376 0968 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\Windows\system32\sysmain.dll
    20:27:48.0404 0968 SysMain - ok
    20:27:48.0473 0968 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
    20:27:48.0487 0968 TabletInputService - ok
    20:27:48.0551 0968 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll
    20:27:48.0562 0968 TapiSrv - ok
    20:27:48.0596 0968 [ 77BD6143C6DCE0A1BF7B5571BED860DC ] tbhsd C:\Windows\system32\drivers\tbhsd.sys
    20:27:48.0599 0968 tbhsd - ok
    20:27:48.0643 0968 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
    20:27:48.0653 0968 TBS - ok
    20:27:48.0728 0968 [ E23A56F843E2AEBBB209D0ACCA73C640 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
    20:27:48.0751 0968 Tcpip - ok
    20:27:48.0815 0968 [ E23A56F843E2AEBBB209D0ACCA73C640 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
    20:27:48.0839 0968 TCPIP6 - ok
    20:27:48.0878 0968 [ 3EEBD3BD93DA46A26E89893C7AB2FF3B ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
    20:27:48.0880 0968 tcpipreg - ok
    20:27:48.0940 0968 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
    20:27:48.0952 0968 TDPIPE - ok
    20:27:48.0986 0968 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
    20:27:48.0988 0968 TDTCP - ok
    20:27:49.0032 0968 [ B459575348C20E8121D6039DA063C704 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
    20:27:49.0035 0968 tdx - ok
    20:27:49.0190 0968 [ 2BBB318EA9F34FDC508CEA4AAB98D770 ] TeamViewer7 C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe
    20:27:49.0237 0968 TeamViewer7 - ok
    20:27:49.0297 0968 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\Windows\system32\drivers\termdd.sys
    20:27:49.0300 0968 TermDD - ok
    20:27:49.0364 0968 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll
    20:27:49.0378 0968 TermService - ok
    20:27:49.0435 0968 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
    20:27:49.0445 0968 Themes - ok
    20:27:49.0488 0968 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
    20:27:49.0494 0968 THREADORDER - ok
    20:27:49.0526 0968 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
    20:27:49.0537 0968 TrkWks - ok
    20:27:49.0635 0968 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
    20:27:49.0638 0968 TrustedInstaller - ok
    20:27:49.0699 0968 [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
    20:27:49.0701 0968 tssecsrv - ok
    20:27:49.0735 0968 [ 9CE253214ACAA5A7D323327D2055EFAA ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
    20:27:49.0738 0968 TsUsbFlt - ok
    20:27:49.0786 0968 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
    20:27:49.0789 0968 tunnel - ok
    20:27:49.0847 0968 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
    20:27:49.0853 0968 uagp35 - ok
    20:27:49.0913 0968 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys
    20:27:49.0917 0968 udfs - ok
    20:27:49.0977 0968 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
    20:27:49.0987 0968 UI0Detect - ok
    20:27:50.0018 0968 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
    20:27:50.0022 0968 uliagpkx - ok
    20:27:50.0065 0968 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\Windows\system32\DRIVERS\umbus.sys
    20:27:50.0072 0968 umbus - ok
    20:27:50.0111 0968 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
    20:27:50.0113 0968 UmPass - ok
    20:27:50.0172 0968 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
    20:27:50.0183 0968 upnphost - ok
    20:27:50.0235 0968 [ 83CAFCB53201BBAC04D822F32438E244 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
    20:27:50.0237 0968 USBAAPL - ok
    20:27:50.0285 0968 [ 1D9F2BD026E8E2D45033A4DF3F16B78C ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
    20:27:50.0290 0968 usbaudio - ok
    20:27:50.0329 0968 [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
    20:27:50.0332 0968 usbccgp - ok
    20:27:50.0374 0968 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\drivers\usbcir.sys
    20:27:50.0377 0968 usbcir - ok
    20:27:50.0431 0968 [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
    20:27:50.0434 0968 usbehci - ok
    20:27:50.0467 0968 [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
    20:27:50.0472 0968 usbhub - ok
    20:27:50.0503 0968 [ A6FB7957EA7AFB1165991E54CE934B74 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
    20:27:50.0506 0968 usbohci - ok
    20:27:50.0542 0968 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
    20:27:50.0544 0968 usbprint - ok
    20:27:50.0574 0968 [ F991AB9CC6B908DB552166768176896A ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
    20:27:50.0577 0968 USBSTOR - ok
    20:27:50.0629 0968 [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
    20:27:50.0631 0968 usbuhci - ok
    20:27:50.0674 0968 [ 45F4E7BF43DB40A6C6B4D92C76CBC3F2 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
    20:27:50.0677 0968 usbvideo - ok
    20:27:50.0733 0968 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
    20:27:50.0745 0968 UxSms - ok
    20:27:50.0770 0968 [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc C:\Windows\system32\lsass.exe
    20:27:50.0779 0968 VaultSvc - ok
    20:27:50.0809 0968 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
    20:27:50.0811 0968 vdrvroot - ok
    20:27:50.0875 0968 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe
    20:27:50.0894 0968 vds - ok
    20:27:50.0919 0968 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
    20:27:50.0921 0968 vga - ok
    20:27:50.0955 0968 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
    20:27:50.0958 0968 VgaSave - ok
    20:27:51.0000 0968 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
    20:27:51.0004 0968 vhdmp - ok
    20:27:51.0028 0968 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys
    20:27:51.0030 0968 viaagp - ok
    20:27:51.0076 0968 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
    20:27:51.0078 0968 ViaC7 - ok
    20:27:51.0121 0968 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\drivers\viaide.sys
    20:27:51.0123 0968 viaide - ok
    20:27:51.0161 0968 [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr C:\Windows\system32\drivers\volmgr.sys
    20:27:51.0163 0968 volmgr - ok
    20:27:51.0197 0968 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
    20:27:51.0202 0968 volmgrx - ok
    20:27:51.0250 0968 [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
    20:27:51.0254 0968 volsnap - ok
    20:27:51.0283 0968 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
    20:27:51.0286 0968 vsmraid - ok
    20:27:51.0349 0968 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\Windows\system32\vssvc.exe
    20:27:51.0369 0968 VSS - ok
    20:27:51.0449 0968 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
    20:27:51.0451 0968 vwifibus - ok
    20:27:51.0480 0968 [ 7090D3436EEB4E7DA3373090A23448F7 ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
    20:27:51.0483 0968 vwififlt - ok
    20:27:51.0511 0968 [ A3F04CBEA6C2A10E6CB01F8B47611882 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
    20:27:51.0513 0968 vwifimp - ok
    20:27:51.0585 0968 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
    20:27:51.0600 0968 W32Time - ok
    20:27:51.0650 0968 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
    20:27:51.0653 0968 WacomPen - ok
    20:27:51.0702 0968 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
    20:27:51.0704 0968 WANARP - ok
    20:27:51.0720 0968 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
    20:27:51.0723 0968 Wanarpv6 - ok
    20:27:51.0805 0968 [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
    20:27:51.0819 0968 WatAdminSvc - ok
    20:27:51.0889 0968 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\Windows\system32\wbengine.exe
    20:27:51.0916 0968 wbengine - ok
    20:27:51.0948 0968 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
    20:27:51.0959 0968 WbioSrvc - ok
    20:27:52.0026 0968 [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc C:\Windows\System32\wcncsvc.dll
    20:27:52.0038 0968 wcncsvc - ok
    20:27:52.0063 0968 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
    20:27:52.0075 0968 WcsPlugInService - ok
    20:27:52.0112 0968 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys
    20:27:52.0115 0968 Wd - ok
    20:27:52.0165 0968 [ D6EFAF429FD30C5DF613D220E344CCE7 ] WDC_SAM C:\Windows\system32\DRIVERS\wdcsam.sys
    20:27:52.0167 0968 WDC_SAM - ok
    20:27:52.0225 0968 [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
    20:27:52.0232 0968 Wdf01000 - ok
    20:27:52.0276 0968 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
    20:27:52.0287 0968 WdiServiceHost - ok
    20:27:52.0310 0968 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
    20:27:52.0333 0968 WdiSystemHost - ok
    20:27:52.0403 0968 [ A9D880F97530D5B8FEE278923349929D ] WebClient C:\Windows\System32\webclnt.dll
    20:27:52.0415 0968 WebClient - ok
    20:27:52.0459 0968 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
    20:27:52.0470 0968 Wecsvc - ok
    20:27:52.0497 0968 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
    20:27:52.0507 0968 wercplsupport - ok
    20:27:52.0544 0968 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
    20:27:52.0555 0968 WerSvc - ok
    20:27:52.0581 0968 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
    20:27:52.0584 0968 WfpLwf - ok
    20:27:52.0632 0968 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
    20:27:52.0635 0968 WIMMount - ok
    20:27:52.0739 0968 [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
    20:27:52.0746 0968 WinDefend - ok
    20:27:52.0784 0968 WinHttpAutoProxySvc - ok
    20:27:52.0876 0968 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
    20:27:52.0881 0968 Winmgmt - ok
    20:27:52.0973 0968 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\Windows\system32\WsmSvc.dll
    20:27:53.0005 0968 WinRM - ok
    20:27:53.0084 0968 [ A67E5F9A400F3BD1BE3D80613B45F708 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
    20:27:53.0087 0968 WinUsb - ok
    20:27:53.0150 0968 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
    20:27:53.0168 0968 Wlansvc - ok
    20:27:53.0274 0968 [ 5144AE67D60EC653F97DDF3FEED29E77 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    20:27:53.0294 0968 wlidsvc - ok
    20:27:53.0333 0968 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
    20:27:53.0335 0968 WmiAcpi - ok
    20:27:53.0409 0968 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
    20:27:53.0412 0968 wmiApSrv - ok
    20:27:53.0553 0968 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
    20:27:53.0565 0968 WMPNetworkSvc - ok
    20:27:53.0622 0968 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
    20:27:53.0632 0968 WPCSvc - ok
    20:27:53.0694 0968 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
    20:27:53.0718 0968 WPDBusEnum - ok
    20:27:53.0775 0968 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
    20:27:53.0777 0968 ws2ifsl - ok
    20:27:53.0817 0968 [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc C:\Windows\system32\wscsvc.dll
    20:27:53.0829 0968 wscsvc - ok
    20:27:53.0846 0968 WSearch - ok
    20:27:53.0959 0968 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
    20:27:53.0988 0968 wuauserv - ok
    20:27:54.0039 0968 [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
    20:27:54.0042 0968 WudfPf - ok
    20:27:54.0086 0968 [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
    20:27:54.0090 0968 WUDFRd - ok
    20:27:54.0131 0968 [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
    20:27:54.0143 0968 wudfsvc - ok
    20:27:54.0203 0968 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
    20:27:54.0219 0968 WwanSvc - ok
    20:27:54.0280 0968 [ CE0C846127D6ABB1E2A22E59682B2527 ] xnacc C:\Windows\system32\DRIVERS\xnacc.sys
    20:27:54.0286 0968 xnacc - ok
    20:27:54.0349 0968 ================ Scan global ===============================
    20:27:54.0402 0968 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
    20:27:54.0450 0968 [ D70FE45855CAD4C0C6B1C1426ABDEBA9 ] C:\Windows\system32\winsrv.dll
    20:27:54.0484 0968 [ D70FE45855CAD4C0C6B1C1426ABDEBA9 ] C:\Windows\system32\winsrv.dll
    20:27:54.0541 0968 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
    20:27:54.0607 0968 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
    20:27:54.0618 0968 [Global] - ok
    20:27:54.0624 0968 ============================================================
    20:27:54.0624 0968 Scan finished
    20:27:54.0624 0968 ============================================================
    20:27:54.0649 6116 Detected object count: 0
    20:27:54.0649 6116 Actual detected object count: 0
    20:28:12.0887 3972 Deinitialize success
     
  12. Glaswegian

    Glaswegian Malware Specialist

    Joined:
    Dec 5, 2004
    Messages:
    3,823
    Hi again

    I was hoping the scan would be clean - which is good.


    Please delete your version of ComboFix (drag and drop in the Recycle Bin) - the tool has been updated.


    Please download a fresh version and follow the instructions

    http://www.bleepingcomputer.com/combofix/how-to-use-combofix

    Please read all the information carefully! If using Windows XP you should ensure you install the Recovery Console.

    You MUST disable your AntiVirus and AntiSpyware applications - please read this thread as a guide. They may otherwise interfere with our tools and interrupt the cleansing process.

    Please include the log C:\ComboFix.txt in your next reply for further review.
     
  13. JD11SRK

    JD11SRK Thread Starter

    Joined:
    Jan 27, 2013
    Messages:
    18
    Thanks for the continued support. Below is the log from Combofix.

    ComboFix 13-02-03.03 - JOOOOOOE 02/05/2013 22:49:30.2.1 - x86
    Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.3002.1941 [GMT -8:00]
    Running from: c:\users\JOOOOOOE\Desktop\ComboFix.exe
    AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
    AV: Microsoft Security Essentials *Disabled/Updated* {B140BF4E-23BB-4198-90AB-A51A4C60A69C}
    SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
    SP: Microsoft Security Essentials *Disabled/Updated* {0A215EAA-0581-4E16-AA1B-9E6837E7EC21}
    SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    * Created a new restore point
    .
    .
    ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    c:\program files\WinPCap
    c:\program files\WinPCap\install.log
    .
    .
    ((((((((((((((((((((((((( Files Created from 2013-01-06 to 2013-02-06 )))))))))))))))))))))))))))))))
    .
    .
    2013-02-06 07:03 . 2013-02-06 07:03 -------- d-----w- c:\users\JOOOOOOE\AppData\Local\temp
    2013-02-06 07:03 . 2013-02-06 07:03 -------- d-----w- c:\users\Mcx1-JOOOOOOE-PC\AppData\Local\temp
    2013-02-06 07:03 . 2013-02-06 07:03 -------- d-----w- c:\users\Mcx1-JOOOOOOE-PC.JOOOOOOE-PC\AppData\Local\temp
    2013-02-06 07:03 . 2013-02-06 07:03 -------- d-----w- c:\users\Default\AppData\Local\temp
    2013-02-05 04:24 . 2013-02-05 04:24 29904 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{E3AC5A73-39A4-4FEC-B362-5F964A706F33}\MpKsl8ab77270.sys
    2013-02-05 02:07 . 2013-01-08 04:57 6991832 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{E3AC5A73-39A4-4FEC-B362-5F964A706F33}\mpengine.dll
    2013-02-03 18:39 . 2013-01-08 04:57 6991832 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
    2013-02-03 01:17 . 2013-02-03 01:17 -------- d-----w- c:\program files\ESET
    2013-02-02 08:21 . 2013-02-02 08:21 -------- d-----w- c:\users\JOOOOOOE\AppData\Roaming\Yahoo!
    2013-02-02 08:18 . 2013-02-02 08:19 -------- d-----w- c:\programdata\Yahoo!
    2013-02-02 08:15 . 2013-02-02 08:19 -------- d-----w- c:\program files\Yahoo!
    2013-01-28 06:36 . 2013-01-28 06:34 740840 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
    2013-01-28 06:36 . 2012-10-23 14:04 740840 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{B89D995E-437B-419C-B1A0-DC67C5221A82}\gapaengine.dll
    2013-01-28 06:31 . 2013-01-28 06:31 -------- d-----w- c:\program files\Microsoft Security Client
    2013-01-27 05:28 . 2013-01-27 05:28 388096 ----a-r- c:\users\JOOOOOOE\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
    2013-01-26 17:26 . 2013-01-12 11:30 94112 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
    2013-01-26 07:03 . 2012-12-16 14:13 295424 ----a-w- c:\windows\system32\atmfd.dll
    2013-01-26 07:03 . 2012-12-16 14:13 34304 ----a-w- c:\windows\system32\atmlib.dll
    2013-01-26 06:46 . 2013-01-08 04:57 6991832 ------w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{0C3C58E4-B054-491D-BD42-41C7CF153A5A}\mpengine.dll
    2013-01-26 06:34 . 2012-11-30 04:47 293376 ----a-w- c:\windows\system32\KernelBase.dll
    2013-01-26 06:34 . 2012-11-30 04:53 169984 ----a-w- c:\windows\system32\winsrv.dll
    2013-01-26 06:34 . 2012-11-30 02:55 271360 ----a-w- c:\windows\system32\conhost.exe
    2013-01-26 06:34 . 2012-11-30 04:45 5120 ---ha-w- c:\windows\system32\api-ms-win-core-file-l1-1-0.dll
    2013-01-26 06:34 . 2012-11-30 04:45 3072 ---ha-w- c:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
    2013-01-26 06:34 . 2012-11-30 04:45 3072 ---ha-w- c:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
    2013-01-26 06:34 . 2012-11-30 04:45 4096 ---ha-w- c:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
    2013-01-26 06:34 . 2012-11-30 04:45 4096 ---ha-w- c:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
    2013-01-26 06:34 . 2012-11-30 04:45 3072 ---ha-w- c:\windows\system32\api-ms-win-core-string-l1-1-0.dll
    2013-01-26 06:34 . 2012-11-30 04:45 3072 ---ha-w- c:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
    2013-01-26 06:32 . 2012-11-23 02:56 2345984 ----a-w- c:\windows\system32\win32k.sys
    2013-01-26 06:32 . 2012-11-20 04:51 220160 ----a-w- c:\windows\system32\ncrypt.dll
    2013-01-26 06:32 . 2012-11-09 04:43 492032 ----a-w- c:\windows\system32\win32spl.dll
    2013-01-26 06:32 . 2012-11-23 02:48 49152 ----a-w- c:\windows\system32\taskhost.exe
    2013-01-26 06:27 . 2012-11-09 04:42 2048 ----a-w- c:\windows\system32\tzres.dll
    2013-01-26 04:22 . 2013-01-26 04:22 -------- d-----w- c:\program files\PFPortChecker
    2013-01-19 19:17 . 2013-01-19 19:17 -------- d-----w- c:\windows\Sun
    .
    .
    .
    (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2013-01-30 10:53 . 2011-10-03 22:33 232336 ------w- c:\windows\system32\MpSigStub.exe
    2013-01-09 01:44 . 2012-04-05 22:34 697864 ----a-w- c:\windows\system32\FlashPlayerApp.exe
    2013-01-09 01:44 . 2011-05-31 22:07 74248 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
    2012-12-15 00:49 . 2012-02-24 09:39 21104 ----a-w- c:\windows\system32\drivers\mbam.sys
    2013-01-16 20:11 . 2013-01-24 04:15 262552 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
    2010-07-07 22:39 . 2013-01-24 04:15 119808 ----a-w- c:\program files\mozilla firefox\components\GoogleDesktopMozilla.dll
    .
    .
    ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Note* empty entries & legit default entries are not shown
    REGEDIT4
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
    @="{472083B0-C522-11CF-8763-00608CC02F24}"
    [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
    2012-08-21 09:12 121528 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
    @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
    [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
    2012-12-18 03:50 556648 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
    @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
    [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
    2012-12-18 03:50 556648 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
    @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
    [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
    2012-12-18 03:50 556648 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
    @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
    [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
    2012-12-18 03:50 556648 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
    .
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "Xvid"="c:\program files\Xvid\CheckUpdate.exe" [2011-01-17 8192]
    "MusicManager"="c:\users\JOOOOOOE\AppData\Local\Programs\Google\MusicManager\MusicManager.exe" [2013-01-14 7437824]
    "Messenger (Yahoo!)"="c:\progra~1\Yahoo!\Messenger\YahooMessenger.exe" [2012-05-25 6595928]
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2009-02-06 1430824]
    "Acer Assist Launcher"="c:\program files\Acer\Acer Assist\launcher.exe" [2007-11-19 1261568]
    "Acer ePower Management"="c:\program files\Acer\Acer PowerSmart Manager\ePowerTrayLauncher.exe" [2009-05-16 440864]
    "BackupManagerTray"="c:\program files\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" [2009-04-02 249600]
    "Google Desktop Search"="c:\program files\Google\Google Desktop Search\GoogleDesktop.exe" [2010-07-07 30192]
    "IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-02-12 186904]
    "LManager"="c:\program files\Launch Manager\LManager.exe" [2009-04-09 1071624]
    "ODDPwr"="c:\program files\Acer\Optical Drive Power Management\ODDPwr.exe" [2009-04-30 176128]
    "PLFSetI"="c:\windows\PLFSetI.exe" [2008-07-30 200704]
    "IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-03-05 141848]
    "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-03-05 173592]
    "Persistence"="c:\windows\system32\igfxpers.exe" [2009-03-05 150552]
    "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-03 946352]
    "IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2011-08-01 1821576]
    "APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-08-28 59280]
    "Intuit SyncManager"="c:\program files\Common Files\Intuit\Sync\IntuitSyncManager.exe" [2009-11-26 1087752]
    "QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2012-04-19 421888]
    "avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-08-21 4282728]
    "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
    "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2012-09-10 421776]
    "MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2012-09-13 947176]
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
    "ConsentPromptBehaviorAdmin"= 0 (0x0)
    "ConsentPromptBehaviorUser"= 3 (0x3)
    "EnableLUA"= 0 (0x0)
    "EnableUIADesktopToggle"= 0 (0x0)
    "PromptOnSecureDesktop"= 0 (0x0)
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
    "AppInit_DLLs"=c:\progra~1\Google\GOOGLE~1\GoogleDesktopNetwork3.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
    "mixer9"=wdmaud.drv
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
    @="Service"
    .
    [HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^QuickBooks Update Agent.lnk]
    path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\QuickBooks Update Agent.lnk
    backup=c:\windows\pss\QuickBooks Update Agent.lnk.CommonStartup
    backupExtension=.CommonStartup
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acer Product Registration]
    2007-11-26 18:21 3387392 ----a-w- c:\program files\Acer\Acer Registration\ACE1.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AnyDVD]
    2011-10-11 15:17 5389944 ----a-w- c:\program files\SlySoft\AnyDVD\AnyDVDtray.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
    2012-08-28 04:32 59280 ----a-w- c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
    2012-04-17 15:19 3671872 ----a-w- c:\program files\DAEMON Tools Lite\DTLite.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
    2011-07-28 23:08 1259376 ----a-w- c:\program files\DivX\DivX Update\DivXUpdate.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
    2010-09-06 23:28 136176 ----atw- c:\users\JOOOOOOE\AppData\Local\Google\Update\GoogleUpdate.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
    2012-09-10 06:30 421776 ----a-w- c:\program files\iTunes\iTunesHelper.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
    2012-04-19 03:56 421888 ----a-w- c:\program files\QuickTime\QTTask.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VMM Mode Selection]
    2011-02-14 13:55 43520 ----a-r- c:\program files\HTC\ModeSelection\VMMModeSelection.exe
    .
    R0 Lbd;Lbd;c:\windows\system32\DRIVERS\Lbd.sys [x]
    R2 MBAMScheduler;MBAMScheduler;c:\program files\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]
    R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [x]
    R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [x]
    R3 dc3d;MS Hardware Device Detection Driver;c:\windows\system32\DRIVERS\dc3d.sys [x]
    R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys [x]
    R3 epmntdrv;epmntdrv;c:\windows\system32\epmntdrv.sys [x]
    R3 EuGdiDrv;EuGdiDrv;c:\windows\system32\EuGdiDrv.sys [x]
    R3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335;c:\program files\Google\Google Desktop Search\GoogleDesktop.exe [x]
    R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
    R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [x]
    R3 NisSrv;Microsoft Network Inspection;c:\program files\Microsoft Security Client\NisSrv.exe [x]
    R3 NTPASp50;NTPASp50 NDIS Protocol Driver;c:\windows\system32\Drivers\NTPASp50.sys [x]
    R3 pcouffin;VSO Software pcouffin;c:\windows\system32\Drivers\pcouffin.sys [x]
    R3 pwdrvio;pwdrvio;c:\windows\system32\pwdrvio.sys [x]
    R3 pwdspio;pwdspio;c:\windows\system32\pwdspio.sys [x]
    R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [x]
    R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys [x]
    R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
    R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [x]
    R3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\DRIVERS\wdcsam.sys [x]
    S1 aswSnx;aswSnx; [x]
    S1 aswSP;aswSP; [x]
    S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [x]
    S1 MpKsl8ab77270;MpKsl8ab77270;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{E3AC5A73-39A4-4FEC-B362-5F964A706F33}\MpKsl8ab77270.sys [x]
    S2 aswFsBlk;aswFsBlk; [x]
    S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [x]
    S2 DsiWMIService;Dritek WMI Service;c:\program files\Launch Manager\dsiwmis.exe [x]
    S2 ePowerSvc;Acer ePower Service;c:\program files\Acer\Acer PowerSmart Manager\ePowerSvc.exe [x]
    S2 IHA_MessageCenter;IHA_MessageCenter;c:\program files\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe [x]
    S2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [x]
    S2 ODDPwrSvc;Acer ODD Power Service;c:\program files\Acer\Optical Drive Power Management\ODDPWRSvc.exe [x]
    S2 RS_Service;Raw Socket Service;c:\program files\Acer\Acer VCM\RS_Service.exe [x]
    S2 TeamViewer7;TeamViewer 7;c:\program files\TeamViewer\Version7\TeamViewer_Service.exe [x]
    S3 easytether;easytether;c:\windows\system32\DRIVERS\easytthr.sys [x]
    S3 EuMusDesignVirtualAudioCableWdm;Virtual Audio Cable (WDM);c:\windows\system32\DRIVERS\vrtaucbl.sys [x]
    S3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI;c:\windows\system32\drivers\IntcHdmi.sys [x]
    S3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20);c:\windows\system32\DRIVERS\L1C62x86.sys [x]
    .
    .
    --- Other Services/Drivers In Memory ---
    .
    *NewlyCreated* - 79748168
    *NewlyCreated* - MPKSL8AB77270
    *Deregistered* - 79748168
    *Deregistered* - mwlPSDFilter
    *Deregistered* - mwlPSDNServ
    *Deregistered* - mwlPSDVDisk
    *Deregistered* - UBHelper
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
    GPSvcGroup REG_MULTI_SZ GPSvc
    .
    Contents of the 'Scheduled Tasks' folder
    .
    2013-02-06 c:\windows\Tasks\Adobe Flash Player Updater.job
    - c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-05 01:44]
    .
    2013-02-06 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
    - c:\program files\Google\Update\GoogleUpdate.exe [2011-12-25 04:23]
    .
    2013-02-06 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
    - c:\program files\Google\Update\GoogleUpdate.exe [2011-12-25 04:23]
    .
    2013-02-06 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1108858586-319801918-4140375009-1000Core.job
    - c:\users\JOOOOOOE\AppData\Local\Google\Update\GoogleUpdate.exe [2010-09-06 23:28]
    .
    2013-02-06 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1108858586-319801918-4140375009-1000UA.job
    - c:\users\JOOOOOOE\AppData\Local\Google\Update\GoogleUpdate.exe [2010-09-06 23:28]
    .
    .
    ------- Supplementary Scan -------
    .
    uStart Page = hxxp://www.google.com/
    uDefault_Search_URL = hxxp://www.google.com/ie
    mStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&s=2&o=vp32&d=0609&m=aspire_5810t
    uInternet Settings,ProxyOverride = *.local
    uSearchAssistant = hxxp://www.google.com/ie
    uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
    IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~3\Office14\EXCEL.EXE/3000
    IE: Free YouTube Download - c:\users\JOOOOOOE\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubedownload.htm
    IE: Free YouTube to MP3 Converter - c:\users\JOOOOOOE\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
    IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html
    IE: Se&nd to OneNote - c:\progra~1\MICROS~3\Office14\ONBttnIE.dll/105
    TCP: DhcpNameServer = 68.105.28.11 68.105.29.11 68.105.28.12
    FF - ProfilePath - c:\users\JOOOOOOE\AppData\Roaming\Mozilla\Firefox\Profiles\snc6ojy7.default\
    FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/firefox?client=firefox-a&rls=org.mozilla:en-US:eek:fficial
    FF - prefs.js: network.proxy.type - 0
    .
    .
    --------------------- LOCKED REGISTRY KEYS ---------------------
    .
    [HKEY_USERS\S-1-5-21-1108858586-319801918-4140375009-1000\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{C9431AAE-34CA-5DA3-14F7-9051D7809E1D}*]
    @Allowed: (Read) (RestrictedCode)
    .
    [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
    @Denied: (A) (Users)
    @Denied: (A) (Everyone)
    @Allowed: (B 1 2 3 4 5) (S-1-5-20)
    "BlindDial"=dword:00000000
    .
    [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
    @Denied: (A) (Users)
    @Denied: (A) (Everyone)
    @Allowed: (B 1 2 3 4 5) (S-1-5-20)
    "BlindDial"=dword:00000000
    .
    [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
    @Denied: (A) (Users)
    @Denied: (A) (Everyone)
    @Allowed: (B 1 2 3 4 5) (S-1-5-20)
    "BlindDial"=dword:00000000
    .
    [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
    @Denied: (A) (Users)
    @Denied: (A) (Everyone)
    @Allowed: (B 1 2 3 4 5) (S-1-5-20)
    "BlindDial"=dword:00000000
    .
    [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
    @Denied: (Full) (Everyone)
    .
    Completion time: 2013-02-05 23:06:34
    ComboFix-quarantined-files.txt 2013-02-06 07:06
    .
    Pre-Run: 156,220,567,552 bytes free
    Post-Run: 156,219,146,240 bytes free
    .
    - - End Of File - - C96360FB0034C48DFF5B031BE1D42CB0
     
  14. Glaswegian

    Glaswegian Malware Specialist

    Joined:
    Dec 5, 2004
    Messages:
    3,823
    Hi again

    You appear to have 2 AVs installed - Avast and MSE. This will cause stability issues and is likely contributing to the slow down of your system.

    Please uninstall one of these programmes - reboot and then let me know how your system is running.
     
  15. JD11SRK

    JD11SRK Thread Starter

    Joined:
    Jan 27, 2013
    Messages:
    18
    I've uninstalled Avast antivirus and reboot but I'm still suffering from periods of slow down. I waited a day or so before posting to make sure the problem was gone but it seems to still be here. As I said before it is very odd as it will work perfectly one moment and then suddenly slow to a crawl. I appreciate all of the help so far and would like to know how to proceed from here.
     
  16. Sponsor

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Loading...
Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/1087040

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice