| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Trojaner - "Weißer Bildschirm mit Verbindung wird hergestellt."Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
05.07.2012, 16:07
| #16 |
| /// Winkelfunktion /// TB-Süch-Tiger™   |  Trojaner - "Weißer Bildschirm mit Verbindung wird hergestellt." Hätte da mal zwei Fragen bevor es weiter geht 1.) Geht der normale Modus von Windows (wieder) uneingeschränkt? 2.) Vermisst du irgendwas im Startmenü? Sind da leere Ordner unter alle Programme oder ist alles vorhanden?
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
05.07.2012, 16:22
| #17 |
 | Trojaner - "Weißer Bildschirm mit Verbindung wird hergestellt." Hallo.
__________________1. Windows geht normal. 2. Alle Ordner vorhanden. Grüße |
|
05.07.2012, 16:29
| #18 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Trojaner - "Weißer Bildschirm mit Verbindung wird hergestellt." Mach bitte ein neues OTL-Log. Bitte alles nach Möglichkeit hier in CODE-Tags posten.
__________________Wird so gemacht: [code] hier steht das Log [/code] Und das ganze sieht dann so aus: Code:
ATTFilter hier steht das Log
Lade Dir bitte OTL von Oldtimer herunter und speichere es auf Deinem Desktop. Falls schon vorhanden, bitte die ältere vorhandene Datei durch die neu heruntergeladene Datei ersetzen, damit du auch wirklich mit einer aktuellen Version von OTL arbeitest.
Code:
ATTFilter netsvcs
msconfig
safebootminimal
safebootnetwork
activex
drivers32
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%SYSTEMDRIVE%\*.exe
/md5start
wininit.exe
userinit.exe
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
ws2ifsl.sys
sceclt.dll
ntelogon.dll
winlogon.exe
logevent.dll
user32.DLL
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
/md5stop
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
CREATERESTOREPOINT
__________________ |
|
05.07.2012, 16:49
| #19 |
| | Trojaner - "Weißer Bildschirm mit Verbindung wird hergestellt." So hier der neue Scan. OTL Logfile: Code:
ATTFilter OTL logfile created on: 05.07.2012 17:33:19 - Run 2 OTL by OldTimer - Version 3.2.53.1 Folder = c:\Users\Chiara\Downloads Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 2,47 Gb Total Physical Memory | 1,57 Gb Available Physical Memory | 63,70% Memory free 5,16 Gb Paging File | 3,94 Gb Available in Paging File | 76,42% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 144,04 Gb Total Space | 77,09 Gb Free Space | 53,52% Space Free | Partition Type: NTFS Drive D: | 140,50 Gb Total Space | 124,50 Gb Free Space | 88,61% Space Free | Partition Type: NTFS Computer Name: PRIVAT | User Name: Chiara | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Quick Scan Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2012.07.05 15:30:16 | 000,204,800 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Users\Chiara\AppData\Local\Temp\RtkBtMnt.exe PRC - [2012.07.05 11:16:58 | 000,595,968 | ---- | M] (OldTimer Tools) -- c:\Users\Chiara\Downloads\OTL.exe PRC - [2012.05.12 13:54:11 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe PRC - [2012.05.12 13:54:08 | 000,080,336 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe PRC - [2012.05.12 13:54:07 | 000,348,624 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe PRC - [2012.05.12 13:54:07 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe PRC - [2010.08.25 11:27:44 | 000,309,824 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac PRC - [2010.03.18 11:19:26 | 000,207,360 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe PRC - [2010.03.18 11:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe PRC - [2009.09.15 18:47:36 | 000,479,232 | ---- | M] (Nikon Corporation) -- C:\Program Files\Common Files\Nikon\Monitor\NkMonitor.exe PRC - [2009.09.07 19:50:36 | 000,206,120 | ---- | M] (CyberLink) -- C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe PRC - [2009.09.07 19:50:28 | 000,152,872 | ---- | M] (CyberLink Corp.) -- C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe PRC - [2009.08.21 00:03:14 | 000,105,616 | ---- | M] (Corel) -- C:\Program Files\Common Files\Corel\Standby\Standby.exe PRC - [2009.08.03 10:29:04 | 000,102,400 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe PRC - [2009.08.03 10:22:58 | 000,233,472 | ---- | M] (Teruten) -- C:\Windows\System32\FsUsbExService.Exe PRC - [2009.05.21 14:42:28 | 000,173,288 | ---- | M] (Acer Corp.) -- C:\Program Files\Acer Arcade Deluxe\PlayMovie\PMVService.exe PRC - [2009.04.16 16:56:36 | 000,075,048 | ---- | M] () -- C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe PRC - [2009.04.11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe PRC - [2008.08.19 12:26:34 | 006,265,376 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe PRC - [2008.08.01 10:51:42 | 000,405,504 | ---- | M] (Acer Inc.) -- C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe PRC - [2008.07.29 18:53:00 | 000,500,784 | ---- | M] (Egis Incorporated) -- C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe PRC - [2008.07.29 18:52:50 | 000,526,896 | ---- | M] (Egis Incorporated) -- C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe PRC - [2008.07.04 13:52:18 | 000,014,336 | ---- | M] (Vodafone) -- C:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe PRC - [2008.07.04 13:52:14 | 002,072,576 | ---- | M] (Vodafone) -- C:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe PRC - [2008.06.30 17:56:32 | 000,200,704 | ---- | M] () -- C:\Windows\PLFSetI.exe PRC - [2008.06.17 06:23:24 | 000,817,672 | ---- | M] (Dritek System Inc.) -- C:\Program Files\Launch Manager\QtZgAcer.EXE PRC - [2008.06.02 10:25:40 | 000,024,576 | ---- | M] () -- C:\Program Files\Acer\Empowering Technology\Service\ETService.exe PRC - [2008.05.30 13:24:30 | 000,544,768 | ---- | M] (Acer Incorporated) -- C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe PRC - [2008.03.25 15:25:06 | 000,050,952 | ---- | M] (UPEK Inc.) -- C:\Program Files\Common Files\SPBA\upeksvr.exe PRC - [2008.03.18 06:27:12 | 000,013,312 | ---- | M] (Agere Systems) -- C:\Windows\System32\agrsmsvc.exe PRC - [2008.01.31 14:01:38 | 000,159,744 | R--- | M] (Brother Industries, Ltd.) -- C:\Program Files\Brother\Brmfcmon\BrMfcMon.exe PRC - [2008.01.21 04:23:32 | 001,008,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe PRC - [2007.12.06 17:15:28 | 000,110,592 | ---- | M] () -- C:\ACER\Mobility Center\MobilityService.exe PRC - [2007.07.24 11:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) -- C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe PRC - [2007.03.29 16:41:26 | 000,222,128 | ---- | M] (Macrovision Corporation) -- C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe ========== Modules (No Company Name) ========== MOD - [2012.06.13 04:02:18 | 000,212,992 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\8bbcd31ecc8edc7d1f9cdd83ef2bb2d3\System.ServiceProcess.ni.dll MOD - [2012.06.13 04:01:40 | 011,820,032 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\508b444db523c5cf20ff12c7f440837b\System.Web.ni.dll MOD - [2012.06.13 03:57:35 | 012,433,920 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\f2691cfa7671cdc58179e56ba9227591\System.Windows.Forms.ni.dll MOD - [2012.06.13 03:56:58 | 001,592,320 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\18f9789aa214c657113e676b3a9015aa\System.Drawing.ni.dll MOD - [2012.05.14 23:56:14 | 000,998,400 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\f3d4d5fe5ab848fbfcf91a49960dc8ae\System.Management.ni.dll MOD - [2012.05.14 23:51:41 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\846b9cf2756fdd15f704c9bab9c70b6f\System.Runtime.Remoting.ni.dll MOD - [2012.05.14 23:51:36 | 000,627,200 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Transactions\b6d83a652c94b32fc8f99a6df0acd7f4\System.Transactions.ni.dll MOD - [2012.05.14 23:51:21 | 000,679,936 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Security\442135bc0b503b42ab2d752c23bea631\System.Security.ni.dll MOD - [2012.05.14 23:51:11 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\bd76aaaa03ddc15d1840207b5a480644\System.Configuration.ni.dll MOD - [2012.05.14 23:51:04 | 000,025,600 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\Accessibility\1b337cf9a031145849bc48c11b2cfe58\Accessibility.ni.dll MOD - [2012.05.14 23:49:02 | 005,450,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\d2630342a066a7cb9056d9eb6157687a\System.Xml.ni.dll MOD - [2012.05.14 23:44:21 | 006,621,696 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data\1d9947ee70b50c9cbb1f842b875b114e\System.Data.ni.dll MOD - [2012.05.14 23:38:57 | 007,953,408 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\28d633338fc8d29f8af31935ef7d001b\System.ni.dll MOD - [2012.05.14 23:37:57 | 011,492,352 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\af9c9e9d7e0523cd444f8b551baa9cbf\mscorlib.ni.dll MOD - [2009.09.07 19:50:38 | 000,873,768 | ---- | M] () -- C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMediaLibrary.dll MOD - [2009.09.07 19:50:36 | 000,013,096 | ---- | M] () -- C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvcPS.dll MOD - [2009.04.11 08:28:21 | 000,368,640 | ---- | M] () -- C:\Windows\System32\msjetoledb40.dll MOD - [2009.03.30 06:42:19 | 000,261,632 | ---- | M] () -- C:\Windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll MOD - [2009.03.30 06:42:17 | 002,933,760 | ---- | M] () -- C:\Windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll MOD - [2009.03.30 06:42:12 | 000,434,176 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Windows.Forms.resources\2.0.0.0_de_b77a5c561934e089\System.Windows.Forms.resources.dll MOD - [2009.03.30 06:42:12 | 000,212,992 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.resources\2.0.0.0_de_b77a5c561934e089\System.resources.dll MOD - [2009.03.30 06:42:11 | 000,315,392 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_de_b77a5c561934e089\mscorlib.resources.dll MOD - [2008.11.02 20:44:29 | 000,036,864 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\Framework.Utility\3.0.3009.0__4df5dcab8860d239\Framework.Utility.dll MOD - [2008.11.02 20:44:28 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\Framework.Library\3.0.3009.0__3036420f80dd6947\Framework.Library.dll MOD - [2008.11.02 20:44:28 | 000,009,216 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\Framework.Model.ControllerInterface\3.0.3009.0__d842b71b4d6ed079\Framework.Model.ControllerInterface.dll MOD - [2008.09.18 16:49:52 | 001,691,648 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Wizard\2.0.3163.29525__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Wizard.dll MOD - [2008.09.18 16:49:52 | 000,483,328 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Wizard\2.0.3163.29636__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Wizard.dll MOD - [2008.09.18 16:49:52 | 000,266,240 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime\2.0.3163.29501__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.dll MOD - [2008.09.18 16:49:52 | 000,204,800 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Wizard\2.0.3163.29527__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Wizard.dll MOD - [2008.09.18 16:49:52 | 000,077,824 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Runtime\2.0.3163.29612__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Runtime.dll MOD - [2008.09.18 16:49:52 | 000,065,536 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Runtime\2.0.3163.29591__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Runtime.dll MOD - [2008.09.18 16:49:52 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard\2.0.3163.29521__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.dll MOD - [2008.09.18 16:49:52 | 000,036,864 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Runtime\2.0.3163.29575__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Runtime.dll MOD - [2008.09.18 16:49:52 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Runtime\2.0.3163.29512__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll MOD - [2008.09.18 16:49:35 | 000,135,168 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Dashboard\2.0.3163.29637__90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Dashboard.dll MOD - [2008.09.18 16:49:35 | 000,090,112 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Wizard\2.0.3163.29597__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Wizard.dll MOD - [2008.09.18 16:49:35 | 000,073,728 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard\2.0.3163.29509__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.dll MOD - [2008.09.18 16:49:34 | 000,438,272 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Dashboard\2.0.3163.29513__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Dashboard.dll MOD - [2008.09.18 16:49:34 | 000,225,280 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Dashboard\2.0.3163.29527__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll MOD - [2008.09.18 16:49:34 | 000,204,800 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MultiVPU2.Graphics.Dashboard\2.0.3163.29584__90ba9c70f846762e\CLI.Aspect.MultiVPU2.Graphics.Dashboard.dll MOD - [2008.09.18 16:49:34 | 000,204,800 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MultiVPU.Graphics.Dashboard\2.0.3163.29579__90ba9c70f846762e\CLI.Aspect.MultiVPU.Graphics.Dashboard.dll MOD - [2008.09.18 16:49:34 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MultiVPU2.Graphics.Runtime\2.0.3163.29583__90ba9c70f846762e\CLI.Aspect.MultiVPU2.Graphics.Runtime.dll MOD - [2008.09.18 16:49:33 | 000,450,560 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Dashboard\2.0.3163.29571__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Dashboard.dll MOD - [2008.09.18 16:49:33 | 000,401,408 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Dashboard\2.0.3163.29590__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Dashboard.dll MOD - [2008.09.18 16:49:33 | 000,376,832 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Dashboard\2.0.3163.29576__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Dashboard.dll MOD - [2008.09.18 16:49:33 | 000,307,200 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Wizard\2.0.3163.29532__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Wizard.dll MOD - [2008.09.18 16:49:33 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Runtime\2.0.3163.29575__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll MOD - [2008.09.18 16:49:33 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Runtime\2.0.3163.29576__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll MOD - [2008.09.18 16:49:33 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Runtime\2.0.3163.29590__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll MOD - [2008.09.18 16:49:32 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Graphics.I0601\2.0.2573.17685__90ba9c70f846762e\DEM.Graphics.I0601.dll MOD - [2008.09.18 16:49:32 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation\2.0.3119.30063__90ba9c70f846762e\LOG.Foundation.dll MOD - [2008.09.18 16:49:32 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.3119.30065__90ba9c70f846762e\NEWAEM.Foundation.dll MOD - [2008.09.18 16:49:32 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.OS.I0602\2.0.3119.30127__90ba9c70f846762e\DEM.OS.I0602.dll MOD - [2008.09.18 16:49:32 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.Hotkeys.Shared\2.0.3119.30092__90ba9c70f846762e\AEM.Plugin.Hotkeys.Shared.dll MOD - [2008.09.18 16:49:32 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Actions.CCAA.Shared\2.0.3119.30081__90ba9c70f846762e\AEM.Actions.CCAA.Shared.dll MOD - [2008.09.18 16:49:32 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\MOM.Foundation\2.0.3119.30117__90ba9c70f846762e\MOM.Foundation.dll MOD - [2008.09.18 16:49:32 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.OS\2.0.3119.30171__90ba9c70f846762e\DEM.OS.dll MOD - [2008.09.18 16:49:32 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Graphics.I0706\2.0.2743.23304__90ba9c70f846762e\DEM.Graphics.I0706.dll MOD - [2008.09.18 16:49:32 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Graphics\2.0.3119.30128__90ba9c70f846762e\DEM.Graphics.dll MOD - [2008.09.18 16:49:32 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.WinMessages.Shared\2.0.3119.30104__90ba9c70f846762e\AEM.Plugin.WinMessages.Shared.dll MOD - [2008.09.18 16:49:32 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.GD.Shared\2.0.3119.30177__90ba9c70f846762e\AEM.Plugin.GD.Shared.dll MOD - [2008.09.18 16:49:32 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.EEU.Shared\2.0.3119.30120__90ba9c70f846762e\AEM.Plugin.EEU.Shared.dll MOD - [2008.09.18 16:49:32 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.DPPE.Shared\2.0.3119.30176__90ba9c70f846762e\AEM.Plugin.DPPE.Shared.dll MOD - [2008.09.18 16:49:32 | 000,006,656 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\atixclib\1.0.0.0__90ba9c70f846762e\atixclib.dll MOD - [2008.09.18 16:49:31 | 000,065,536 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Shared\2.0.3119.30149__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Shared.dll MOD - [2008.09.18 16:49:31 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Foundation\2.0.3119.30067__90ba9c70f846762e\CLI.Foundation.dll MOD - [2008.09.18 16:49:31 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Shared\2.0.3119.30096__90ba9c70f846762e\CLI.Caste.Graphics.Shared.dll MOD - [2008.09.18 16:49:31 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Shared\2.0.3119.30148__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Shared.dll MOD - [2008.09.18 16:49:31 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Shared\2.0.3119.30169__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Shared.dll MOD - [2008.09.18 16:49:31 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Shared\2.0.3119.30118__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Shared.dll MOD - [2008.09.18 16:49:31 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Foundation.XManifest\2.0.3119.30232__90ba9c70f846762e\CLI.Foundation.XManifest.dll MOD - [2008.09.18 16:49:31 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Shared\2.0.3119.30130__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Shared.dll MOD - [2008.09.18 16:49:31 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MultiVPU2.Graphics.Shared\2.0.3119.30145__90ba9c70f846762e\CLI.Aspect.MultiVPU2.Graphics.Shared.dll MOD - [2008.09.18 16:49:31 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MultiVPU.Graphics.Shared\2.0.3119.30143__90ba9c70f846762e\CLI.Aspect.MultiVPU.Graphics.Shared.dll MOD - [2008.09.18 16:49:31 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard.Shared\2.0.3119.30100__90ba9c70f846762e\CLI.Component.Wizard.Shared.dll MOD - [2008.09.18 16:49:31 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared\2.0.3119.30089__90ba9c70f846762e\CLI.Component.Dashboard.Shared.dll MOD - [2008.09.18 16:49:31 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Client.Shared\2.0.3119.30082__90ba9c70f846762e\CLI.Component.Client.Shared.dll MOD - [2008.09.18 16:49:31 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Shared\2.0.3119.30130__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll MOD - [2008.09.18 16:49:31 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Foundation\2.0.2573.17684__90ba9c70f846762e\DEM.Foundation.dll MOD - [2008.09.18 16:49:31 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Shared\2.0.3119.30094__90ba9c70f846762e\CLI.Component.Runtime.Shared.dll MOD - [2008.09.18 16:49:31 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard.Shared\2.0.3119.30139__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.Shared.dll MOD - [2008.09.18 16:49:31 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard.Shared\2.0.3119.30129__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.Shared.dll MOD - [2008.09.18 16:49:30 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Shared\2.0.3119.30144__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Shared.dll MOD - [2008.09.18 16:49:30 | 000,049,152 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Shared\2.0.3119.30144__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Shared.dll MOD - [2008.09.18 16:49:30 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Shared\2.0.3119.30148__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Shared.dll MOD - [2008.09.18 16:49:30 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CustomFormats.Graphics.Shared\2.0.3119.30122__90ba9c70f846762e\CLI.Aspect.CustomFormats.Graphics.Shared.dll MOD - [2008.09.18 16:49:30 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\ACE.Graphics.DisplaysManager.Shared\2.0.2573.17685__90ba9c70f846762e\ACE.Graphics.DisplaysManager.Shared.dll MOD - [2008.09.18 16:49:30 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\APM.Foundation\2.0.3119.30119__90ba9c70f846762e\APM.Foundation.dll MOD - [2008.09.18 16:49:30 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Server.Shared\2.0.3119.30093__90ba9c70f846762e\AEM.Server.Shared.dll MOD - [2008.09.18 16:49:24 | 000,006,656 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.SkinFactory.resources\2.0.3163.29498_de_90ba9c70f846762e\CLI.Component.SkinFactory.resources.dll MOD - [2008.09.18 16:49:23 | 000,397,312 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard\2.0.3163.29517__90ba9c70f846762e\CLI.Component.Wizard.dll MOD - [2008.09.18 16:49:23 | 000,106,496 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\MOM.Implementation\2.0.3163.29629__90ba9c70f846762e\MOM.Implementation.dll MOD - [2008.09.18 16:49:23 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.3163.29628__90ba9c70f846762e\LOG.Foundation.Implementation.dll MOD - [2008.09.18 16:49:23 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.SkinFactory\2.0.3163.29498__90ba9c70f846762e\CLI.Component.SkinFactory.dll MOD - [2008.09.18 16:49:23 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime\2.0.3163.29497__90ba9c70f846762e\CLI.Component.Runtime.dll MOD - [2008.09.18 16:49:23 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Shared.Private\2.0.3119.30123__90ba9c70f846762e\CLI.Component.Runtime.Shared.Private.dll MOD - [2008.09.18 16:49:23 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.Source.Kit.Server\2.0.3163.29648__90ba9c70f846762e\AEM.Plugin.Source.Kit.Server.dll MOD - [2008.09.18 16:49:23 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Foundation.Private\2.0.3119.30076__90ba9c70f846762e\CLI.Foundation.Private.dll MOD - [2008.09.18 16:49:23 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.3119.30085__90ba9c70f846762e\LOG.Foundation.Private.dll MOD - [2008.09.18 16:49:23 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard.Shared.Private\2.0.3119.30121__90ba9c70f846762e\CLI.Component.Wizard.Shared.Private.dll MOD - [2008.09.18 16:49:23 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.3119.30121__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll MOD - [2008.09.18 16:49:23 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOCALIZATION.Foundation.Private\2.0.3119.30074__90ba9c70f846762e\LOCALIZATION.Foundation.Private.dll MOD - [2008.09.18 16:49:23 | 000,014,848 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AxInterop.WBOCXLib\1.0.0.0__90ba9c70f846762e\AxInterop.WBOCXLib.dll MOD - [2008.09.18 16:49:23 | 000,013,312 | ---- | M] () -- C:\Windows\assembly\GAC\Interop.WBOCXLib\1.0.0.0__90ba9c70f846762e\Interop.WBOCXLib.dll MOD - [2008.09.18 16:49:23 | 000,011,264 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOCALIZATION.Foundation.Implementation\2.0.3163.29656__90ba9c70f846762e\LOCALIZATION.Foundation.Implementation.dll MOD - [2008.09.18 16:49:23 | 000,007,168 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Extension.EEU\2.0.3163.29495__90ba9c70f846762e\CLI.Component.Runtime.Extension.EEU.dll MOD - [2008.09.18 16:49:22 | 000,999,424 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard\2.0.3163.29506__90ba9c70f846762e\CLI.Component.Dashboard.dll MOD - [2008.09.18 16:49:22 | 000,069,632 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\ATIDEMOS\2.0.3163.29497__90ba9c70f846762e\ATIDEMOS.dll MOD - [2008.09.18 16:49:22 | 000,057,344 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\APM.Server\2.0.3163.29496__90ba9c70f846762e\APM.Server.dll MOD - [2008.09.18 16:49:22 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Server\2.0.3163.29495__90ba9c70f846762e\AEM.Server.dll MOD - [2008.09.18 16:49:22 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Client.Shared.Private\2.0.3119.30101__90ba9c70f846762e\CLI.Component.Client.Shared.Private.dll MOD - [2008.09.18 16:49:22 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\ATICCCom\2.0.0.0__90ba9c70f846762e\ATICCCom.dll MOD - [2008.09.18 16:49:22 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CCC.Implementation\2.0.3163.29629__90ba9c70f846762e\CCC.Implementation.dll MOD - [2008.09.18 16:49:22 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared.Private\2.0.3119.30113__90ba9c70f846762e\CLI.Component.Dashboard.Shared.Private.dll MOD - [2008.09.18 16:49:22 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime.Shared.Private\2.0.3119.30150__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.Shared.Private.dll MOD - [2008.07.29 18:52:38 | 000,227,888 | ---- | M] () -- C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\ShowErrMsg.dll MOD - [2008.07.22 16:13:08 | 000,159,744 | ---- | M] () -- C:\Windows\System32\atitmmxx.dll MOD - [2008.06.30 17:56:32 | 000,200,704 | ---- | M] () -- C:\Windows\PLFSetI.exe MOD - [2008.04.28 10:49:20 | 000,003,072 | ---- | M] () -- C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BkupTrayLOC.dll ========== Win32 Services (SafeList) ========== SRV - [2012.07.03 19:24:29 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2012.05.12 13:54:11 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService) SRV - [2012.05.12 13:54:07 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService) SRV - [2011.11.16 18:23:44 | 000,377,344 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- winhttp.dll -- (WinHttpAutoProxySvc) SRV - [2011.09.02 15:29:30 | 002,152,152 | ---- | M] (Lavasoft Limited) [On_Demand | Stopped] -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe -- (Lavasoft Ad-Aware Service) SRV - [2010.03.18 11:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) [Auto | Running] -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe -- (ACDaemon) SRV - [2009.09.23 17:37:30 | 000,051,168 | ---- | M] (NOS Microsystems Ltd.) [On_Demand | Stopped] -- C:\Program Files\NOS\bin\getPlus_Helper.dll -- (getPlusHelper) SRV - [2009.08.03 10:22:58 | 000,233,472 | ---- | M] (Teruten) [Auto | Running] -- C:\Windows\System32\FsUsbExService.Exe -- (FsUsbExService) SRV - [2009.04.16 16:56:36 | 000,075,048 | ---- | M] () [Auto | Running] -- C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe -- (CLHNService) SRV - [2008.07.29 18:53:00 | 000,500,784 | ---- | M] (Egis Incorporated) [Auto | Running] -- C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe -- (eDataSecurity Service) SRV - [2008.07.04 13:52:18 | 000,014,336 | ---- | M] (Vodafone) [Auto | Running] -- C:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe -- (VMCService) SRV - [2008.06.02 10:25:40 | 000,024,576 | ---- | M] () [Auto | Running] -- C:\Program Files\Acer\Empowering Technology\Service\ETService.exe -- (ETService) SRV - [2008.04.07 10:17:30 | 000,430,592 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer) SRV - [2008.03.18 06:27:12 | 000,013,312 | ---- | M] (Agere Systems) [Auto | Running] -- C:\Windows\System32\agrsmsvc.exe -- (AgereModemAudio) SRV - [2008.01.21 04:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) SRV - [2008.01.21 04:23:24 | 000,365,568 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\wcescomm.dll -- (WcesComm) SRV - [2008.01.21 04:23:24 | 000,167,936 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\rapimgr.dll -- (RapiMgr) SRV - [2007.12.06 17:15:28 | 000,110,592 | ---- | M] () [Auto | Running] -- C:\ACER\Mobility Center\MobilityService.exe -- (MobilityService) SRV - [2007.07.24 11:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) [Auto | Running] -- C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2) ========== Driver Services (SafeList) ========== DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ewusbmdm.sys -- (hwdatacard) DRV - [2012.05.12 13:54:12 | 000,137,928 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\avipbb.sys -- (avipbb) DRV - [2012.05.12 13:54:12 | 000,083,392 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\Windows\System32\drivers\avgntflt.sys -- (avgntflt) DRV - [2011.09.16 16:08:07 | 000,036,000 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\avkmgr.sys -- (avkmgr) DRV - [2011.06.20 10:31:32 | 000,064,512 | ---- | M] (Lavasoft AB) [File_System | Boot | Running] -- C:\Windows\System32\drivers\Lbd.sys -- (Lbd) DRV - [2011.06.20 10:31:32 | 000,015,232 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files\Lavasoft\Ad-Aware\kernexplorer.sys -- (Lavasoft Kernexplorer) DRV - [2009.12.17 14:02:20 | 001,203,712 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\athr.sys -- (athr) DRV - [2009.10.08 16:55:33 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\ssmdrv.sys -- (ssmdrv) DRV - [2009.09.11 17:43:38 | 000,087,536 | ---- | M] (CyberLink Corp.) [2010/05/31 15:23:45] [Kernel | Auto | Running] -- C:\Program Files\Acer Arcade Deluxe\PlayMovie\000.fcl -- ({49DE1C67-83F8-4102-99E0-C16DCC7EEC796}) DRV - [2009.08.03 10:22:58 | 000,036,608 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\FsUsbExDisk.Sys -- (FsUsbExDisk) DRV - [2009.04.11 06:42:52 | 000,031,616 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (winusb) DRV - [2009.03.20 11:01:26 | 000,121,856 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ss_bmdm.sys -- (ss_bmdm) DRV - [2009.03.20 11:01:26 | 000,090,112 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ss_bbus.sys -- (ss_bbus) SAMSUNG USB Mobile Device (WDM) DRV - [2009.03.20 11:01:26 | 000,014,976 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ss_bmdfl.sys -- (ss_bmdfl) SAMSUNG USB Mobile Modem (Filter) DRV - [2009.01.17 02:42:25 | 000,103,488 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AnyDVD.sys -- (AnyDVD) DRV - [2008.07.22 16:58:00 | 003,885,568 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag) DRV - [2008.07.22 13:58:00 | 000,047,616 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\L1E60x86.sys -- (L1E) DRV - [2008.07.18 03:09:00 | 000,148,192 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\RtHDMIV.sys -- (RTHDMIAzAudService) DRV - [2008.05.28 17:54:20 | 000,022,072 | ---- | M] (Advanced Micro Devices Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\usbfilter.sys -- (usbfilter) DRV - [2008.05.28 08:47:08 | 000,171,016 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\ahcix86s.sys -- (ahcix86s) DRV - [2008.04.28 03:26:42 | 000,014,352 | ---- | M] (ATI Technologies Inc.) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\AtiPcie.sys -- (AtiPcie) ATI PCI Express (3GIO) DRV - [2008.03.21 06:13:00 | 001,203,776 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AGRSM.sys -- (AgereSoftModem) DRV - [2008.01.16 18:35:08 | 000,122,368 | ---- | M] (Cyberlink Corp.) [Kernel | Auto | Running] -- C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\NTIPPKernel.sys -- (NTIPPKernel) DRV - [2007.09.17 16:53:26 | 000,021,632 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pccsmcfd.sys -- (pccsmcfd) DRV - [2007.03.28 08:51:40 | 000,043,008 | ---- | M] (Winbond Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\winbondcir.sys -- (winbondcir) DRV - [2007.02.16 02:57:04 | 000,034,760 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ElbyCDFL.sys -- (ElbyCDFL) DRV - [2007.01.26 08:32:18 | 000,069,632 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\drivers\int15.sys -- (int15) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://de.intl.acer.yahoo.com IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&s=2&o=vp32&d=0908&m=aspire_6530g IE - HKLM\..\SearchScopes,DefaultScope = {67A2568C-7A0A-4EED-AECC-B5405DE63B64} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\..\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}: "URL" = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-821317666-1273569640-3729434685-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&s=2&o=vp32&d=0908&m=aspire_6530g IE - HKU\S-1-5-21-821317666-1273569640-3729434685-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://global.acer.com [binary data] IE - HKU\S-1-5-21-821317666-1273569640-3729434685-1000\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1 IE - HKU\S-1-5-21-821317666-1273569640-3729434685-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.n-tv.de/ IE - HKU\S-1-5-21-821317666-1273569640-3729434685-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1 IE - HKU\S-1-5-21-821317666-1273569640-3729434685-1000\..\SearchScopes,DefaultScope = {67A2568C-7A0A-4EED-AECC-B5405DE63B64} IE - HKU\S-1-5-21-821317666-1273569640-3729434685-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKU\S-1-5-21-821317666-1273569640-3729434685-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..network.proxy.type: 0 FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll () FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.18: C:\Program Files\Veetle\plugins\npVeetle.dll (Veetle Inc) FF - HKLM\Software\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.18: C:\Program Files\Veetle\Player\npvlc.dll (Veetle Inc) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012.07.03 19:24:30 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012.04.23 12:43:57 | 000,000,000 | ---D | M] FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012.07.03 19:24:30 | 000,000,000 | ---D | M] FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012.04.23 12:43:57 | 000,000,000 | ---D | M] [2011.03.16 12:57:14 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Chiara\AppData\Roaming\mozilla\Extensions [2012.06.29 14:20:59 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Chiara\AppData\Roaming\mozilla\Firefox\Profiles\leirc17p.default\extensions [2012.06.30 09:50:15 | 000,000,853 | ---- | M] () -- C:\Users\Chiara\AppData\Roaming\Mozilla\Firefox\Profiles\leirc17p.default\searchplugins\11-suche.xml [2012.06.30 09:50:15 | 000,002,209 | ---- | M] () -- C:\Users\Chiara\AppData\Roaming\Mozilla\Firefox\Profiles\leirc17p.default\searchplugins\englische-ergebnisse.xml [2012.06.30 09:50:14 | 000,010,506 | ---- | M] () -- C:\Users\Chiara\AppData\Roaming\Mozilla\Firefox\Profiles\leirc17p.default\searchplugins\gmx-suche.xml [2012.06.30 09:50:15 | 000,002,368 | ---- | M] () -- C:\Users\Chiara\AppData\Roaming\Mozilla\Firefox\Profiles\leirc17p.default\searchplugins\lastminute.xml [2012.06.30 09:50:14 | 000,005,489 | ---- | M] () -- C:\Users\Chiara\AppData\Roaming\Mozilla\Firefox\Profiles\leirc17p.default\searchplugins\webde-suche.xml [2012.05.15 20:10:52 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2012.06.29 14:20:59 | 000,578,962 | ---- | M] () (No name found) -- C:\USERS\CHIARA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LEIRC17P.DEFAULT\EXTENSIONS\TOOLBAR@WEB.DE.XPI [2012.07.03 19:24:30 | 000,085,472 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll [2012.04.21 03:54:08 | 000,001,392 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazondotcom-de.xml [2012.04.21 03:54:08 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml [2012.04.21 03:54:08 | 000,001,153 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-de.xml [2012.04.21 03:54:08 | 000,006,805 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\leo_ende_de.xml [2012.04.21 03:54:08 | 000,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-de.xml [2012.04.21 03:54:08 | 000,001,105 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-de.xml O1 HOSTS File: ([2012.07.05 15:24:43 | 000,000,098 | ---- | M]) - C:\Windows\System32\drivers\etc\Hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: ::1 localhost O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found. O2 - BHO: (ShowBarObj Class) - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll (Egis) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O3 - HKLM\..\Toolbar: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll (Egis Incorporated.) O3 - HKU\S-1-5-21-821317666-1273569640-3729434685-1000\..\Toolbar\ShellBrowser: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477E-A7DD-396DB0476E29} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll (Egis Incorporated.) O4 - HKLM..\Run: [ArcadeDeluxeAgent] C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe (CyberLink Corp.) O4 - HKLM..\Run: [ArcSoft Connection Service] C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.) O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG) O4 - HKLM..\Run: [CLMLServer] C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe (CyberLink) O4 - HKLM..\Run: [CloneCDTray] C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe (SlySoft, Inc.) O4 - HKLM..\Run: [ControlCenter3] C:\Program Files\Brother\ControlCenter3\brctrcen.exe (Brother Industries, Ltd.) O4 - HKLM..\Run: [eAudio] C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe (Acer Incorporated) O4 - HKLM..\Run: [eDataSecurity Loader] C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe (Egis Incorporated) O4 - HKLM..\Run: [ePower_DMC] C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe (Acer Inc.) O4 - HKLM..\Run: [eRecoveryService] File not found O4 - HKLM..\Run: [LManager] C:\Program Files\Launch Manager\QtZgAcer.EXE (Dritek System Inc.) O4 - HKLM..\Run: [MobileConnect] C:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe (Vodafone) O4 - HKLM..\Run: [Nikon Transfer Monitor] C:\Program Files\Common Files\Nikon\Monitor\NkMonitor.exe (Nikon Corporation) O4 - HKLM..\Run: [NPSStartup] File not found O4 - HKLM..\Run: [PlayMovie] C:\Program Files\Acer Arcade Deluxe\PlayMovie\PMVService.exe (Acer Corp.) O4 - HKLM..\Run: [PLFSetI] C:\Windows\PLFSetI.exe () O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor) O4 - HKLM..\Run: [Standby] c:\Program Files\Common Files\Corel\Standby\Standby.exe (Corel) O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.) O4 - HKLM..\Run: [WarReg_PopUp] C:\Program Files\Acer\WR_PopUp\WarReg_PopUp.exe (Acer Incorporated) O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation) O4 - HKLM..\Run: [Windows Mobile-based device management] C:\Windows\WindowsMobile\wmdSync.exe (Microsoft Corporation) O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation) O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation) O4 - HKU\S-1-5-21-821317666-1273569640-3729434685-1000..\Run: [AutoStartNPSAgent] C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe (Samsung Electronics Co., Ltd.) O4 - HKU\S-1-5-21-821317666-1273569640-3729434685-1000..\Run: [ISUSPM] C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe (Macrovision Corporation) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableCAD = 1 O13 - gopher Prefix: missing O15 - HKU\S-1-5-21-821317666-1273569640-3729434685-1000\..Trusted Ranges: GD ([http] in Local intranet) O16 - DPF: {1C11B948-582A-433F-A98D-A8C4D5CC64F2} hxxp://kitchenplanner.ikea.com/DE/Core/Player/2020PlayerAX_Win32.cab (20-20 3D Viewer) O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.0/srl_bin/sysreqlab3.cab (System Requirements Lab Class) O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} hxxp://uploadserver.info/premium/mirror2/uploader/ImageUploader5.cab (Image Uploader Control) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_02-windows-i586.cab (Java Plug-in 10.2.0) O16 - DPF: {CAFEEFAC-0017-0000-0002-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_02-windows-i586.cab (Java Plug-in 1.7.0_02) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_02-windows-i586.cab (Java Plug-in 1.7.0_02) O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} hxxp://wwwimages.adobe.com/www.adobe.com/products/acrobat/nos/gp.cab (get_atlcom Class) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C5399112-5C95-40A2-A428-8590110340EA}: DhcpNameServer = 192.168.2.1 O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation) O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation) O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation) O20 - AppInit_DLLs: (C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL) - C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll (Google) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation) O20 - Winlogon\Notify\spba: DllName - (C:\Program Files\Common Files\SPBA\homefus2.dll) - C:\Program Files\Common Files\SPBA\homefus2.dll (UPEK Inc.) O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\img19.jpg O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\img19.jpg O29 - HKLM SecurityProviders - (credssp.dll) - credssp.dll (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) ========== Files/Folders - Created Within 30 Days ========== [2012.07.05 15:20:25 | 000,000,000 | ---D | C] -- C:\_OTL [2012.06.29 16:18:30 | 000,000,000 | ---D | C] -- C:\Program Files\ESET [2012.06.21 15:23:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Fighters [2012.06.19 23:33:14 | 000,000,000 | ---D | C] -- C:\ProgramData\WindowsSearch [2010.04.27 22:31:17 | 000,563,040 | ---- | C] (Google Inc.) -- C:\Users\Chiara\googleupdatesetup.exe [2010.01.19 15:47:41 | 007,922,792 | ---- | C] (Mozilla) -- C:\Users\Chiara\Firefox Setup 3.5.7.exe [2009.04.30 20:27:15 | 007,363,096 | ---- | C] (Mozilla) -- C:\Users\Chiara\Firefox Setup 3.0.10.exe [2009.03.27 16:05:13 | 023,596,840 | ---- | C] (Skype Technologies S.A.) -- C:\Users\Chiara\SkypeSetupFull.exe ========== Files - Modified Within 30 Days ========== [2012.07.05 17:28:14 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 [2012.07.05 17:28:14 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 [2012.07.05 16:20:01 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2012.07.05 15:28:49 | 000,000,000 | ---- | M] () -- C:\Windows\System32\LogConfigTemp.xml [2012.07.05 15:28:22 | 000,065,536 | ---- | M] () -- C:\Windows\System32\Ikeext.etl [2012.07.05 15:28:15 | 000,000,384 | ---- | M] () -- C:\Windows\tasks\Ad-Aware Update (Weekly).job [2012.07.05 15:28:00 | 2649,079,808 | -HS- | M] () -- C:\hiberfil.sys [2012.07.05 15:24:43 | 000,000,098 | ---- | M] () -- C:\Windows\System32\drivers\etc\Hosts [2012.07.01 05:49:30 | 000,006,836 | ---- | M] () -- C:\Users\Chiara\AppData\Local\d3d9caps.dat [2012.06.21 12:35:48 | 000,061,100 | ---- | M] () -- C:\Windows\System32\perfh007.dat [2012.06.21 12:35:48 | 000,015,184 | ---- | M] () -- C:\Windows\System32\perfc007.dat [2012.06.21 12:35:48 | 000,013,514 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2012.06.21 12:35:48 | 000,007,324 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2012.06.20 21:45:21 | 000,000,870 | ---- | M] () -- C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk [2012.06.20 20:33:07 | 000,000,064 | ---- | M] () -- C:\Windows\System32\rp_stats.dat [2012.06.20 20:33:07 | 000,000,044 | ---- | M] () -- C:\Windows\System32\rp_rules.dat [2012.06.13 11:16:07 | 035,636,640 | ---- | M] () -- C:\Users\Chiara\Desktop\bofrost-Katalog-Sommer-2012.pdf [2012.06.13 03:49:04 | 000,330,816 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT ========== Files Created - No Company Name ========== [2012.07.04 22:28:19 | 000,000,384 | ---- | C] () -- C:\Windows\tasks\Ad-Aware Update (Weekly).job [2012.06.20 21:45:21 | 000,000,870 | ---- | C] () -- C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk [2012.06.20 20:15:46 | 2649,079,808 | -HS- | C] () -- C:\hiberfil.sys [2012.06.13 11:16:06 | 035,636,640 | ---- | C] () -- C:\Users\Chiara\Desktop\bofrost-Katalog-Sommer-2012.pdf [2011.07.18 13:52:53 | 000,000,000 | ---- | C] () -- C:\Users\Chiara\AppData\Local\{0406D485-8777-4738-9BB6-48ECC2211755} [2011.07.12 22:41:10 | 000,000,064 | ---- | C] () -- C:\Windows\System32\rp_stats.dat [2011.07.12 22:41:10 | 000,000,044 | ---- | C] () -- C:\Windows\System32\rp_rules.dat [2011.06.20 21:37:31 | 000,000,000 | ---- | C] () -- C:\Windows\ViewNX.INI [2011.06.20 21:24:17 | 000,000,268 | RH-- | C] () -- C:\ProgramData\Compressor [2011.06.20 21:24:17 | 000,000,268 | RH-- | C] () -- C:\Users\Chiara\AppData\Roaming\Command Line Utility [2011.06.20 21:24:17 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLdw.DAT [2011.06.20 21:24:17 | 000,000,012 | RH-- | C] () -- C:\ProgramData\Dance [2011.05.07 17:02:12 | 000,000,268 | RH-- | C] () -- C:\ProgramData\Common [2011.05.07 17:02:12 | 000,000,268 | RH-- | C] () -- C:\Users\Chiara\AppData\Roaming\Colors [2011.05.07 17:02:12 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLdu.DAT [2011.05.07 17:02:12 | 000,000,012 | RH-- | C] () -- C:\ProgramData\Contents [2011.03.07 18:20:12 | 000,005,199 | ---- | C] () -- C:\Users\Chiara\.recently-used.xbel [2010.05.12 15:07:48 | 004,369,428 | ---- | C] () -- C:\Users\Chiara\SmartSurfer.zip [2010.04.22 13:38:15 | 000,024,206 | ---- | C] () -- C:\Users\Chiara\AppData\Roaming\UserTile.png [2009.12.05 18:42:38 | 000,000,083 | -HS- | C] () -- C:\ProgramData\.zreglib [2009.10.23 22:44:31 | 000,000,952 | -HS- | C] () -- C:\ProgramData\KGyGaAvL.sys [2009.02.12 18:56:59 | 002,058,248 | ---- | C] () -- C:\Users\Chiara\discountsurfer-5.0.4.exe [2009.01.24 19:49:13 | 000,006,836 | ---- | C] () -- C:\Users\Chiara\AppData\Local\d3d9caps.dat [2009.01.10 20:12:57 | 000,044,544 | ---- | C] () -- C:\Users\Chiara\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2009.01.10 18:51:34 | 022,102,584 | ---- | C] () -- C:\Users\Chiara\antivir_workstation_winu_de_h337.exe [2008.06.23 14:02:02 | 000,097,410 | R--- | C] () -- C:\ProgramData\DeviceManager.xml.rc4 [2008.05.23 18:48:50 | 000,020,270 | ---- | C] () -- C:\ProgramData\DeviceInstaller.xml ========== LOP Check ========== [2011.07.04 23:19:28 | 000,000,000 | -HSD | M] -- C:\Users\Chiara\AppData\Roaming\.# [2008.11.02 21:07:45 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\Acer GameZone Console [2009.10.18 11:07:59 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\ALLCapture [2009.06.19 16:17:00 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\Bytemobile [2009.01.11 22:22:09 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\eSobi [2011.03.07 18:20:12 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\gtk-2.0 [2011.06.20 21:36:16 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\Nikon [2009.12.26 23:04:41 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\PC Suite [2010.04.22 13:38:14 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\PeerNetworking [2011.09.15 03:52:17 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\PowerCinema [2011.11.22 17:14:28 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\RavensburgerTipToi [2009.12.26 23:00:10 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\Samsung [2009.08.07 13:45:23 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\ScanSoft [2009.05.14 15:14:40 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\SigmaPlot 11.0 [2010.09.01 10:54:21 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\SmartSurfer [2010.06.02 12:28:08 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\SoftDMA [2009.05.18 10:46:00 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\StatSoft [2009.10.23 22:45:42 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\Ulead Systems [2009.03.07 21:52:40 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\Vodafone [2010.09.01 10:54:37 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\WEBDE [2008.11.02 21:07:45 | 000,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming\Acer GameZone Console [2008.11.02 21:07:45 | 000,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming\Acer GameZone Console [2012.07.05 15:28:15 | 000,000,384 | ---- | M] () -- C:\Windows\Tasks\Ad-Aware Update (Weekly).job [2012.07.05 15:26:55 | 000,032,626 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT ========== Purity Check ========== ========== Custom Scans ========== < All processes killed > < ========== OTL ========== > < Registry key HKEY_USERS\S-1-5-21-821317666-1273569640-3729434685-1000\Software\Microsoft\Internet Explorer\SearchScopes\{13D04893-1B77-4803-89CF-F8EDE4D2AC36}\ deleted successfully. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{13D04893-1B77-4803-89CF-F8EDE4D2AC36}\ not found. > < Registry key HKEY_USERS\S-1-5-21-821317666-1273569640-3729434685-1000\Software\Microsoft\Internet Explorer\SearchScopes\{5409319E-8E81-4CDB-8ACC-38061101A1AD}\ deleted successfully. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5409319E-8E81-4CDB-8ACC-38061101A1AD}\ not found. > < Registry key HKEY_USERS\S-1-5-21-821317666-1273569640-3729434685-1000\Software\Microsoft\Internet Explorer\SearchScopes\{5482D8BC-615E-485B-99B8-965F060D0B41}\ deleted successfully. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5482D8BC-615E-485B-99B8-965F060D0B41}\ not found. > < Registry key HKEY_USERS\S-1-5-21-821317666-1273569640-3729434685-1000\Software\Microsoft\Internet Explorer\SearchScopes\{B2B155CC-9847-47CC-9F2E-27B28D3E8C93}\ deleted successfully. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B2B155CC-9847-47CC-9F2E-27B28D3E8C93}\ not found. > < Registry key HKEY_USERS\S-1-5-21-821317666-1273569640-3729434685-1000\Software\Microsoft\Internet Explorer\SearchScopes\{D394626E-1CF6-42A4-B5FF-098888668B54}\ deleted successfully. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D394626E-1CF6-42A4-B5FF-098888668B54}\ not found. > < Registry key HKEY_USERS\S-1-5-21-821317666-1273569640-3729434685-1000\Software\Microsoft\Internet Explorer\SearchScopes\{EA0A3B70-166F-4FA0-ABC6-BDE9731B75ED}\ deleted successfully. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EA0A3B70-166F-4FA0-ABC6-BDE9731B75ED}\ not found. > < HKU\S-1-5-21-821317666-1273569640-3729434685-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyEnable|dword:0 /E : value set successfully! > Invalid Switch: E : value set successfully! < HKU\S-1-5-21-821317666-1273569640-3729434685-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer| /E : value set successfully! > Invalid Switch: E : value set successfully! < Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce\\AutoLaunch deleted successfully. > < C:\Program Files\Lavasoft\Ad-Aware\AutoLaunch.exe moved successfully. > < Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce\\AutoLaunch not found. > < File C:\Program Files\Lavasoft\Ad-Aware\AutoLaunch.exe not found. > < Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\DisableCAD deleted successfully. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AWinNotifyVitaKey MC3000\ deleted successfully. > < HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\AutoRun|DWORD:1 /E : value set successfully! > Invalid Switch: E : value set successfully! < C:\autoexec.bat moved successfully. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{24ce84eb-0cb1-11de-804a-001e68e3e145}\ deleted successfully. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{24ce84eb-0cb1-11de-804a-001e68e3e145}\ not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{24ce84eb-0cb1-11de-804a-001e68e3e145}\ not found. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{24ce84eb-0cb1-11de-804a-001e68e3e145}\ not found. > < File E:\setup.exe not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{42d8f786-632b-11de-a346-001e68e3e145}\ deleted successfully. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{42d8f786-632b-11de-a346-001e68e3e145}\ not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{42d8f786-632b-11de-a346-001e68e3e145}\ not found. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{42d8f786-632b-11de-a346-001e68e3e145}\ not found. > < File G:\setup_vmc_lite.exe /checkApplicationPresence not found. > Invalid Switch: checkApplicationPresence not found. < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{57b804f3-3e29-11de-874f-001e68e3e145}\ deleted successfully. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{57b804f3-3e29-11de-874f-001e68e3e145}\ not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{57b804f3-3e29-11de-874f-001e68e3e145}\ not found. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{57b804f3-3e29-11de-874f-001e68e3e145}\ not found. > < File E:\setup.exe AUTORUN=1 not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{687274f3-9574-11df-a4d0-8704d0dc5f82}\ deleted successfully. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{687274f3-9574-11df-a4d0-8704d0dc5f82}\ not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{687274f3-9574-11df-a4d0-8704d0dc5f82}\ not found. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{687274f3-9574-11df-a4d0-8704d0dc5f82}\ not found. > < File G:\LaunchU3.exe -a not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6b6da29b-09b9-11de-b0a2-001e68e3e145}\ deleted successfully. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6b6da29b-09b9-11de-b0a2-001e68e3e145}\ not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6b6da29b-09b9-11de-b0a2-001e68e3e145}\ not found. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6b6da29b-09b9-11de-b0a2-001e68e3e145}\ not found. > < File E:\StartVMCLite.exe not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6b6da2a5-09b9-11de-b0a2-001e68e3e145}\ deleted successfully. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6b6da2a5-09b9-11de-b0a2-001e68e3e145}\ not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6b6da2a5-09b9-11de-b0a2-001e68e3e145}\ not found. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6b6da2a5-09b9-11de-b0a2-001e68e3e145}\ not found. > < File E:\StartVMCLite.exe not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{785065f3-5cd7-11de-8e99-001e68e3e145}\ deleted successfully. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{785065f3-5cd7-11de-8e99-001e68e3e145}\ not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{785065f3-5cd7-11de-8e99-001e68e3e145}\ not found. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{785065f3-5cd7-11de-8e99-001e68e3e145}\ not found. > < File E:\AutoRun.exe not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{785065f4-5cd7-11de-8e99-001e68e3e145}\ deleted successfully. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{785065f4-5cd7-11de-8e99-001e68e3e145}\ not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{785065f4-5cd7-11de-8e99-001e68e3e145}\ not found. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{785065f4-5cd7-11de-8e99-001e68e3e145}\ not found. > < File E:\AutoRun.exe not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{785065f5-5cd7-11de-8e99-001e68e3e145}\ deleted successfully. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{785065f5-5cd7-11de-8e99-001e68e3e145}\ not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{785065f5-5cd7-11de-8e99-001e68e3e145}\ not found. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{785065f5-5cd7-11de-8e99-001e68e3e145}\ not found. > < File E:\AutoRun.exe not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{78506623-5cd7-11de-8e99-001e68e3e145}\ deleted successfully. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{78506623-5cd7-11de-8e99-001e68e3e145}\ not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{78506623-5cd7-11de-8e99-001e68e3e145}\ not found. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{78506623-5cd7-11de-8e99-001e68e3e145}\ not found. > < File E:\AutoRun.exe not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{80ed9b49-5e93-11de-9e0f-806e6f6e6963}\ deleted successfully. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{80ed9b49-5e93-11de-9e0f-806e6f6e6963}\ not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{80ed9b49-5e93-11de-9e0f-806e6f6e6963}\ not found. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{80ed9b49-5e93-11de-9e0f-806e6f6e6963}\ not found. > < File E:\setup.exe not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{80ed9b73-5e93-11de-9e0f-001e68e3e145}\ deleted successfully. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{80ed9b73-5e93-11de-9e0f-001e68e3e145}\ not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{80ed9b73-5e93-11de-9e0f-001e68e3e145}\ not found. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{80ed9b73-5e93-11de-9e0f-001e68e3e145}\ not found. > < File E:\setup.exe not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8daa7a74-907e-11de-8d38-987ee58a1f21}\ deleted successfully. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8daa7a74-907e-11de-8d38-987ee58a1f21}\ not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8daa7a74-907e-11de-8d38-987ee58a1f21}\ not found. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8daa7a74-907e-11de-8d38-987ee58a1f21}\ not found. > < File E:\setup.exe not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8daa7a75-907e-11de-8d38-987ee58a1f21}\ deleted successfully. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8daa7a75-907e-11de-8d38-987ee58a1f21}\ not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8daa7a75-907e-11de-8d38-987ee58a1f21}\ not found. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8daa7a75-907e-11de-8d38-987ee58a1f21}\ not found. > < File E:\setup.exe not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{942c6361-0b4f-11de-857b-001e68e3e145}\ deleted successfully. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{942c6361-0b4f-11de-857b-001e68e3e145}\ not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{942c6361-0b4f-11de-857b-001e68e3e145}\ not found. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{942c6361-0b4f-11de-857b-001e68e3e145}\ not found. > < File E:\setup.exe not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{942c6366-0b4f-11de-857b-001e68e3e145}\ deleted successfully. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{942c6366-0b4f-11de-857b-001e68e3e145}\ not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{942c6366-0b4f-11de-857b-001e68e3e145}\ not found. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{942c6366-0b4f-11de-857b-001e68e3e145}\ not found. > < File E:\setup.exe not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a8d4e890-0d4f-11de-8ab5-001e68e3e145}\ deleted successfully. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{a8d4e890-0d4f-11de-8ab5-001e68e3e145}\ not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a8d4e890-0d4f-11de-8ab5-001e68e3e145}\ not found. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{a8d4e890-0d4f-11de-8ab5-001e68e3e145}\ not found. > < File E:\setup.exe not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a8d4e891-0d4f-11de-8ab5-001e68e3e145}\ deleted successfully. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{a8d4e891-0d4f-11de-8ab5-001e68e3e145}\ not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a8d4e891-0d4f-11de-8ab5-001e68e3e145}\ not found. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{a8d4e891-0d4f-11de-8ab5-001e68e3e145}\ not found. > < File E:\setup.exe not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ab4b89e5-5cdc-11de-8836-001e68e3e145}\ deleted successfully. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ab4b89e5-5cdc-11de-8836-001e68e3e145}\ not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ab4b89e5-5cdc-11de-8836-001e68e3e145}\ not found. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ab4b89e5-5cdc-11de-8836-001e68e3e145}\ not found. > < File E:\AutoRun.exe not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ab4b89e7-5cdc-11de-8836-001e68e3e145}\ deleted successfully. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ab4b89e7-5cdc-11de-8836-001e68e3e145}\ not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ab4b89e7-5cdc-11de-8836-001e68e3e145}\ not found. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ab4b89e7-5cdc-11de-8836-001e68e3e145}\ not found. > < File E:\AutoRun.exe not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ab4b89f1-5cdc-11de-8836-001e68e3e145}\ deleted successfully. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ab4b89f1-5cdc-11de-8836-001e68e3e145}\ not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ab4b89f1-5cdc-11de-8836-001e68e3e145}\ not found. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ab4b89f1-5cdc-11de-8836-001e68e3e145}\ not found. > < File E:\AutoRun.exe not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ab4b89f3-5cdc-11de-8836-001e68e3e145}\ deleted successfully. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ab4b89f3-5cdc-11de-8836-001e68e3e145}\ not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ab4b89f3-5cdc-11de-8836-001e68e3e145}\ not found. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ab4b89f3-5cdc-11de-8836-001e68e3e145}\ not found. > < File E:\AutoRun.exe not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ac7b2bec-61a0-11de-9b94-001e68e3e145}\ deleted successfully. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ac7b2bec-61a0-11de-9b94-001e68e3e145}\ not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ac7b2bec-61a0-11de-9b94-001e68e3e145}\ not found. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ac7b2bec-61a0-11de-9b94-001e68e3e145}\ not found. > < File E:\setup.exe not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b3e7bfd4-5e96-11de-9a56-001e68e3e145}\ deleted successfully. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{b3e7bfd4-5e96-11de-9a56-001e68e3e145}\ not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b3e7bfd4-5e96-11de-9a56-001e68e3e145}\ not found. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{b3e7bfd4-5e96-11de-9a56-001e68e3e145}\ not found. > < File E:\setup.exe not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b3e7bfd5-5e96-11de-9a56-001e68e3e145}\ deleted successfully. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{b3e7bfd5-5e96-11de-9a56-001e68e3e145}\ not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b3e7bfd5-5e96-11de-9a56-001e68e3e145}\ not found. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{b3e7bfd5-5e96-11de-9a56-001e68e3e145}\ not found. > < File E:\setup.exe not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{bcc933be-4e6b-11e0-b525-ef8b5df8fb45}\ deleted successfully. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{bcc933be-4e6b-11e0-b525-ef8b5df8fb45}\ not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{bcc933be-4e6b-11e0-b525-ef8b5df8fb45}\ not found. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{bcc933be-4e6b-11e0-b525-ef8b5df8fb45}\ not found. > < File E:\setup_vmc_lite.exe /checkApplicationPresence not found. > Invalid Switch: checkApplicationPresence not found. < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{bcc933bf-4e6b-11e0-b525-ef8b5df8fb45}\ deleted successfully. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{bcc933bf-4e6b-11e0-b525-ef8b5df8fb45}\ not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{bcc933bf-4e6b-11e0-b525-ef8b5df8fb45}\ not found. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{bcc933bf-4e6b-11e0-b525-ef8b5df8fb45}\ not found. > < File E:\setup_vmc_lite.exe /checkApplicationPresence not found. > Invalid Switch: checkApplicationPresence not found. < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c79425c0-5e98-11de-be8d-001e68e3e145}\ deleted successfully. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{c79425c0-5e98-11de-be8d-001e68e3e145}\ not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c79425c0-5e98-11de-be8d-001e68e3e145}\ not found. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{c79425c0-5e98-11de-be8d-001e68e3e145}\ not found. > < File E:\setup.exe not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{cf260cf0-6007-11de-bee2-001e68e3e145}\ deleted successfully. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{cf260cf0-6007-11de-bee2-001e68e3e145}\ not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{cf260cf0-6007-11de-bee2-001e68e3e145}\ not found. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{cf260cf0-6007-11de-bee2-001e68e3e145}\ not found. > < File E:\setup.exe not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{de1c97c4-4ee4-11e0-8857-805e5663aa4c}\ deleted successfully. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{de1c97c4-4ee4-11e0-8857-805e5663aa4c}\ not found. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{de1c97c4-4ee4-11e0-8857-805e5663aa4c}\ not found. > < Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{de1c97c4-4ee4-11e0-8857-805e5663aa4c}\ not found. > < File E:\setup_vmc_lite.exe /checkApplicationPresence not found. > Invalid Switch: checkApplicationPresence not found. < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\E\ deleted successfully. > < Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\E\ not found. > < File E:\setup.exe not found. > < ADS C:\Windows:533D8A6F8B270344 deleted successfully. > < ADS C:\ProgramData\Temp:C95B63DA deleted successfully. > < ADS C:\ProgramData\Temp:8173A019 deleted successfully. > < ========== COMMANDS ========== > < > < [EMPTYTEMP] > < > < User: All Users > < > < User: Chiara > < ->Temp folder emptied: 958921019 bytes > < ->Java cache emptied: 1 bytes > < ->FireFox cache emptied: 54709624 bytes > < ->Flash cache emptied: 510 bytes > < > < User: Default > < ->Temp folder emptied: 0 bytes > < > < User: Default User > < ->Temp folder emptied: 0 bytes > < > < User: Public > < > < %systemdrive% .tmp files removed: 0 bytes > < %systemroot% .tmp files removed: 0 bytes > < %systemroot%\System32 .tmp files removed: 0 bytes > < %systemroot%\System32\drivers .tmp files removed: 0 bytes > < Windows Temp folder emptied: 577771078 bytes > < RecycleBin emptied: 6053187471 bytes > < > < Total Files Cleaned = 7.290,00 mb > < > < > < [EMPTYFLASH] > < > < User: All Users > < > < User: Chiara > < ->Flash cache emptied: 0 bytes > < > < User: Default > < > < User: Default User > < > < User: Public > < > < Total Flash Files Cleaned = 0,00 mb > < > < C:\Windows\System32\drivers\etc\Hosts moved successfully. > < HOSTS file reset successfully > < > < OTL by OldTimer - Version 3.2.53.1 log created on 07052012_152025 > < > < Files\Folders moved on Reboot... > < > < PendingFileRenameOperations files... > < > < Registry entries deleted on Reboot... > < End of report > |
|
05.07.2012, 19:28
| #20 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Trojaner - "Weißer Bildschirm mit Verbindung wird hergestellt." Bitte besser aufpassen und sorgfältiger beim Kopieren und Einfügen arbeiten! Du hast nicht 1:1 mein Script aus der CODE-Box abkopiert
__________________ Logfiles bitte immer in CODE-Tags posten |
|
05.07.2012, 19:48
| #21 |
| | Trojaner - "Weißer Bildschirm mit Verbindung wird hergestellt." Und muss ich es noch mal machen oder ist es trotzdem ok so? |
|
05.07.2012, 20:49
| #22 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Trojaner - "Weißer Bildschirm mit Verbindung wird hergestellt." Ich hätte wohl kaum so einen Hinweis gepostet wenn das so ok gewesen wäre! 
__________________ Logfiles bitte immer in CODE-Tags posten |
|
06.07.2012, 09:43
| #23 |
| | Trojaner - "Weißer Bildschirm mit Verbindung wird hergestellt." Hallo Arne. Hier nochmal das Ganze, ich hoffe es ist diesesmal vollständig. OTL Logfile: Code:
ATTFilter OTL logfile created on: 06.07.2012 09:13:06 - Run 3 OTL by OldTimer - Version 3.2.53.1 Folder = c:\Users\Chiara\Downloads Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 2,47 Gb Total Physical Memory | 1,67 Gb Available Physical Memory | 67,64% Memory free 5,16 Gb Paging File | 4,04 Gb Available in Paging File | 78,29% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 144,04 Gb Total Space | 76,93 Gb Free Space | 53,41% Space Free | Partition Type: NTFS Drive D: | 140,50 Gb Total Space | 124,50 Gb Free Space | 88,61% Space Free | Partition Type: NTFS Computer Name: PRIVAT | User Name: Chiara | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Quick Scan Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2012.07.05 15:30:16 | 000,204,800 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Users\Chiara\AppData\Local\Temp\RtkBtMnt.exe PRC - [2012.07.05 11:16:58 | 000,595,968 | ---- | M] (OldTimer Tools) -- c:\Users\Chiara\Downloads\OTL.exe PRC - [2012.05.12 13:54:11 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe PRC - [2012.05.12 13:54:08 | 000,080,336 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe PRC - [2012.05.12 13:54:07 | 000,348,624 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe PRC - [2012.05.12 13:54:07 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe PRC - [2010.08.25 11:27:44 | 000,309,824 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac PRC - [2010.03.18 11:19:26 | 000,207,360 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe PRC - [2010.03.18 11:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe PRC - [2009.09.15 18:47:36 | 000,479,232 | ---- | M] (Nikon Corporation) -- C:\Program Files\Common Files\Nikon\Monitor\NkMonitor.exe PRC - [2009.09.07 19:50:36 | 000,206,120 | ---- | M] (CyberLink) -- C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe PRC - [2009.09.07 19:50:28 | 000,152,872 | ---- | M] (CyberLink Corp.) -- C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe PRC - [2009.08.21 00:03:14 | 000,105,616 | ---- | M] (Corel) -- C:\Program Files\Common Files\Corel\Standby\Standby.exe PRC - [2009.08.03 10:29:04 | 000,102,400 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe PRC - [2009.08.03 10:22:58 | 000,233,472 | ---- | M] (Teruten) -- C:\Windows\System32\FsUsbExService.Exe PRC - [2009.05.21 14:42:28 | 000,173,288 | ---- | M] (Acer Corp.) -- C:\Program Files\Acer Arcade Deluxe\PlayMovie\PMVService.exe PRC - [2009.04.16 16:56:36 | 000,075,048 | ---- | M] () -- C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe PRC - [2009.04.11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe PRC - [2008.08.19 12:26:34 | 006,265,376 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe PRC - [2008.08.01 10:51:42 | 000,405,504 | ---- | M] (Acer Inc.) -- C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe PRC - [2008.07.29 18:53:00 | 000,500,784 | ---- | M] (Egis Incorporated) -- C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe PRC - [2008.07.29 18:52:50 | 000,526,896 | ---- | M] (Egis Incorporated) -- C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe PRC - [2008.07.04 13:52:18 | 000,014,336 | ---- | M] (Vodafone) -- C:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe PRC - [2008.07.04 13:52:14 | 002,072,576 | ---- | M] (Vodafone) -- C:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe PRC - [2008.06.30 17:56:32 | 000,200,704 | ---- | M] () -- C:\Windows\PLFSetI.exe PRC - [2008.06.17 06:23:24 | 000,817,672 | ---- | M] (Dritek System Inc.) -- C:\Program Files\Launch Manager\QtZgAcer.EXE PRC - [2008.06.02 10:25:40 | 000,024,576 | ---- | M] () -- C:\Program Files\Acer\Empowering Technology\Service\ETService.exe PRC - [2008.05.30 13:24:30 | 000,544,768 | ---- | M] (Acer Incorporated) -- C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe PRC - [2008.03.25 15:25:06 | 000,050,952 | ---- | M] (UPEK Inc.) -- C:\Program Files\Common Files\SPBA\upeksvr.exe PRC - [2008.03.18 06:27:12 | 000,013,312 | ---- | M] (Agere Systems) -- C:\Windows\System32\agrsmsvc.exe PRC - [2008.01.31 14:01:38 | 000,159,744 | R--- | M] (Brother Industries, Ltd.) -- C:\Program Files\Brother\Brmfcmon\BrMfcMon.exe PRC - [2008.01.21 04:23:32 | 001,008,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe PRC - [2008.01.21 04:23:24 | 000,215,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\WindowsMobile\wmdSync.exe PRC - [2007.12.06 17:15:28 | 000,110,592 | ---- | M] () -- C:\ACER\Mobility Center\MobilityService.exe PRC - [2007.07.24 11:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) -- C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe PRC - [2007.03.29 16:41:26 | 000,222,128 | ---- | M] (Macrovision Corporation) -- C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe ========== Modules (No Company Name) ========== MOD - [2012.06.13 04:02:18 | 000,212,992 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\8bbcd31ecc8edc7d1f9cdd83ef2bb2d3\System.ServiceProcess.ni.dll MOD - [2012.06.13 03:57:35 | 012,433,920 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\f2691cfa7671cdc58179e56ba9227591\System.Windows.Forms.ni.dll MOD - [2012.06.13 03:56:58 | 001,592,320 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\18f9789aa214c657113e676b3a9015aa\System.Drawing.ni.dll MOD - [2012.05.14 23:56:14 | 000,998,400 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\f3d4d5fe5ab848fbfcf91a49960dc8ae\System.Management.ni.dll MOD - [2012.05.14 23:51:41 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\846b9cf2756fdd15f704c9bab9c70b6f\System.Runtime.Remoting.ni.dll MOD - [2012.05.14 23:51:36 | 000,627,200 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Transactions\b6d83a652c94b32fc8f99a6df0acd7f4\System.Transactions.ni.dll MOD - [2012.05.14 23:51:21 | 000,679,936 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Security\442135bc0b503b42ab2d752c23bea631\System.Security.ni.dll MOD - [2012.05.14 23:51:11 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\bd76aaaa03ddc15d1840207b5a480644\System.Configuration.ni.dll MOD - [2012.05.14 23:49:02 | 005,450,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\d2630342a066a7cb9056d9eb6157687a\System.Xml.ni.dll MOD - [2012.05.14 23:44:21 | 006,621,696 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data\1d9947ee70b50c9cbb1f842b875b114e\System.Data.ni.dll MOD - [2012.05.14 23:38:57 | 007,953,408 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\28d633338fc8d29f8af31935ef7d001b\System.ni.dll MOD - [2012.05.14 23:37:57 | 011,492,352 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\af9c9e9d7e0523cd444f8b551baa9cbf\mscorlib.ni.dll MOD - [2009.09.07 19:50:38 | 000,873,768 | ---- | M] () -- C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMediaLibrary.dll MOD - [2009.09.07 19:50:36 | 000,013,096 | ---- | M] () -- C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvcPS.dll MOD - [2009.04.11 08:28:21 | 000,368,640 | ---- | M] () -- C:\Windows\System32\msjetoledb40.dll MOD - [2009.03.30 06:42:19 | 000,261,632 | ---- | M] () -- C:\Windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll MOD - [2009.03.30 06:42:17 | 002,933,760 | ---- | M] () -- C:\Windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll MOD - [2009.03.30 06:42:12 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Runtime.Remoting.resources\2.0.0.0_de_b77a5c561934e089\System.Runtime.Remoting.resources.dll MOD - [2009.03.30 06:42:11 | 000,315,392 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_de_b77a5c561934e089\mscorlib.resources.dll MOD - [2008.11.02 20:44:29 | 000,036,864 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\Framework.Utility\3.0.3009.0__4df5dcab8860d239\Framework.Utility.dll MOD - [2008.11.02 20:44:28 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\Framework.Library\3.0.3009.0__3036420f80dd6947\Framework.Library.dll MOD - [2008.11.02 20:44:28 | 000,009,216 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\Framework.Model.ControllerInterface\3.0.3009.0__d842b71b4d6ed079\Framework.Model.ControllerInterface.dll MOD - [2008.07.29 18:52:38 | 000,227,888 | ---- | M] () -- C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\ShowErrMsg.dll MOD - [2008.07.22 16:13:08 | 000,159,744 | ---- | M] () -- C:\Windows\System32\atitmmxx.dll MOD - [2008.06.30 17:56:32 | 000,200,704 | ---- | M] () -- C:\Windows\PLFSetI.exe MOD - [2008.04.28 10:49:20 | 000,003,072 | ---- | M] () -- C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BkupTrayLOC.dll ========== Win32 Services (SafeList) ========== SRV - [2012.07.03 19:24:29 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2012.05.12 13:54:11 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService) SRV - [2012.05.12 13:54:07 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService) SRV - [2011.11.16 18:23:44 | 000,377,344 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- winhttp.dll -- (WinHttpAutoProxySvc) SRV - [2011.09.02 15:29:30 | 002,152,152 | ---- | M] (Lavasoft Limited) [On_Demand | Stopped] -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe -- (Lavasoft Ad-Aware Service) SRV - [2010.03.18 11:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) [Auto | Running] -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe -- (ACDaemon) SRV - [2009.09.23 17:37:30 | 000,051,168 | ---- | M] (NOS Microsystems Ltd.) [On_Demand | Stopped] -- C:\Program Files\NOS\bin\getPlus_Helper.dll -- (getPlusHelper) SRV - [2009.08.03 10:22:58 | 000,233,472 | ---- | M] (Teruten) [Auto | Running] -- C:\Windows\System32\FsUsbExService.Exe -- (FsUsbExService) SRV - [2009.04.16 16:56:36 | 000,075,048 | ---- | M] () [Auto | Running] -- C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe -- (CLHNService) SRV - [2008.07.29 18:53:00 | 000,500,784 | ---- | M] (Egis Incorporated) [Auto | Running] -- C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe -- (eDataSecurity Service) SRV - [2008.07.04 13:52:18 | 000,014,336 | ---- | M] (Vodafone) [Auto | Running] -- C:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe -- (VMCService) SRV - [2008.06.02 10:25:40 | 000,024,576 | ---- | M] () [Auto | Running] -- C:\Program Files\Acer\Empowering Technology\Service\ETService.exe -- (ETService) SRV - [2008.04.07 10:17:30 | 000,430,592 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer) SRV - [2008.03.18 06:27:12 | 000,013,312 | ---- | M] (Agere Systems) [Auto | Running] -- C:\Windows\System32\agrsmsvc.exe -- (AgereModemAudio) SRV - [2008.01.21 04:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) SRV - [2008.01.21 04:23:24 | 000,365,568 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\wcescomm.dll -- (WcesComm) SRV - [2008.01.21 04:23:24 | 000,167,936 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\rapimgr.dll -- (RapiMgr) SRV - [2007.12.06 17:15:28 | 000,110,592 | ---- | M] () [Auto | Running] -- C:\ACER\Mobility Center\MobilityService.exe -- (MobilityService) SRV - [2007.07.24 11:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) [Auto | Running] -- C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2) ========== Driver Services (SafeList) ========== DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ewusbmdm.sys -- (hwdatacard) DRV - [2012.05.12 13:54:12 | 000,137,928 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\avipbb.sys -- (avipbb) DRV - [2012.05.12 13:54:12 | 000,083,392 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\Windows\System32\drivers\avgntflt.sys -- (avgntflt) DRV - [2011.09.16 16:08:07 | 000,036,000 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\avkmgr.sys -- (avkmgr) DRV - [2011.06.20 10:31:32 | 000,064,512 | ---- | M] (Lavasoft AB) [File_System | Boot | Running] -- C:\Windows\System32\drivers\Lbd.sys -- (Lbd) DRV - [2011.06.20 10:31:32 | 000,015,232 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files\Lavasoft\Ad-Aware\kernexplorer.sys -- (Lavasoft Kernexplorer) DRV - [2009.12.17 14:02:20 | 001,203,712 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\athr.sys -- (athr) DRV - [2009.10.08 16:55:33 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\ssmdrv.sys -- (ssmdrv) DRV - [2009.09.11 17:43:38 | 000,087,536 | ---- | M] (CyberLink Corp.) [2010/05/31 15:23:45] [Kernel | Auto | Running] -- C:\Program Files\Acer Arcade Deluxe\PlayMovie\000.fcl -- ({49DE1C67-83F8-4102-99E0-C16DCC7EEC796}) DRV - [2009.08.03 10:22:58 | 000,036,608 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\FsUsbExDisk.Sys -- (FsUsbExDisk) DRV - [2009.04.11 06:42:52 | 000,031,616 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (winusb) DRV - [2009.03.20 11:01:26 | 000,121,856 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ss_bmdm.sys -- (ss_bmdm) DRV - [2009.03.20 11:01:26 | 000,090,112 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ss_bbus.sys -- (ss_bbus) SAMSUNG USB Mobile Device (WDM) DRV - [2009.03.20 11:01:26 | 000,014,976 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ss_bmdfl.sys -- (ss_bmdfl) SAMSUNG USB Mobile Modem (Filter) DRV - [2009.01.17 02:42:25 | 000,103,488 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AnyDVD.sys -- (AnyDVD) DRV - [2008.07.22 16:58:00 | 003,885,568 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag) DRV - [2008.07.22 13:58:00 | 000,047,616 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\L1E60x86.sys -- (L1E) DRV - [2008.07.18 03:09:00 | 000,148,192 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\RtHDMIV.sys -- (RTHDMIAzAudService) DRV - [2008.05.28 17:54:20 | 000,022,072 | ---- | M] (Advanced Micro Devices Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\usbfilter.sys -- (usbfilter) DRV - [2008.05.28 08:47:08 | 000,171,016 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\ahcix86s.sys -- (ahcix86s) DRV - [2008.04.28 03:26:42 | 000,014,352 | ---- | M] (ATI Technologies Inc.) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\AtiPcie.sys -- (AtiPcie) ATI PCI Express (3GIO) DRV - [2008.03.21 06:13:00 | 001,203,776 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AGRSM.sys -- (AgereSoftModem) DRV - [2008.01.16 18:35:08 | 000,122,368 | ---- | M] (Cyberlink Corp.) [Kernel | Auto | Running] -- C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\NTIPPKernel.sys -- (NTIPPKernel) DRV - [2007.09.17 16:53:26 | 000,021,632 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pccsmcfd.sys -- (pccsmcfd) DRV - [2007.03.28 08:51:40 | 000,043,008 | ---- | M] (Winbond Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\winbondcir.sys -- (winbondcir) DRV - [2007.02.16 02:57:04 | 000,034,760 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ElbyCDFL.sys -- (ElbyCDFL) DRV - [2007.01.26 08:32:18 | 000,069,632 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\drivers\int15.sys -- (int15) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://de.intl.acer.yahoo.com IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&s=2&o=vp32&d=0908&m=aspire_6530g IE - HKLM\..\SearchScopes,DefaultScope = {67A2568C-7A0A-4EED-AECC-B5405DE63B64} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\..\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}: "URL" = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-821317666-1273569640-3729434685-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&s=2&o=vp32&d=0908&m=aspire_6530g IE - HKU\S-1-5-21-821317666-1273569640-3729434685-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://global.acer.com [binary data] IE - HKU\S-1-5-21-821317666-1273569640-3729434685-1000\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1 IE - HKU\S-1-5-21-821317666-1273569640-3729434685-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.n-tv.de/ IE - HKU\S-1-5-21-821317666-1273569640-3729434685-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1 IE - HKU\S-1-5-21-821317666-1273569640-3729434685-1000\..\SearchScopes,DefaultScope = {67A2568C-7A0A-4EED-AECC-B5405DE63B64} IE - HKU\S-1-5-21-821317666-1273569640-3729434685-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKU\S-1-5-21-821317666-1273569640-3729434685-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..network.proxy.type: 0 FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll () FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.18: C:\Program Files\Veetle\plugins\npVeetle.dll (Veetle Inc) FF - HKLM\Software\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.18: C:\Program Files\Veetle\Player\npvlc.dll (Veetle Inc) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012.07.03 19:24:30 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012.04.23 12:43:57 | 000,000,000 | ---D | M] FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012.07.03 19:24:30 | 000,000,000 | ---D | M] FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012.04.23 12:43:57 | 000,000,000 | ---D | M] [2011.03.16 12:57:14 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Chiara\AppData\Roaming\mozilla\Extensions [2012.06.29 14:20:59 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Chiara\AppData\Roaming\mozilla\Firefox\Profiles\leirc17p.default\extensions [2012.06.30 09:50:15 | 000,000,853 | ---- | M] () -- C:\Users\Chiara\AppData\Roaming\Mozilla\Firefox\Profiles\leirc17p.default\searchplugins\11-suche.xml [2012.06.30 09:50:15 | 000,002,209 | ---- | M] () -- C:\Users\Chiara\AppData\Roaming\Mozilla\Firefox\Profiles\leirc17p.default\searchplugins\englische-ergebnisse.xml [2012.06.30 09:50:14 | 000,010,506 | ---- | M] () -- C:\Users\Chiara\AppData\Roaming\Mozilla\Firefox\Profiles\leirc17p.default\searchplugins\gmx-suche.xml [2012.06.30 09:50:15 | 000,002,368 | ---- | M] () -- C:\Users\Chiara\AppData\Roaming\Mozilla\Firefox\Profiles\leirc17p.default\searchplugins\lastminute.xml [2012.06.30 09:50:14 | 000,005,489 | ---- | M] () -- C:\Users\Chiara\AppData\Roaming\Mozilla\Firefox\Profiles\leirc17p.default\searchplugins\webde-suche.xml [2012.05.15 20:10:52 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2012.06.29 14:20:59 | 000,578,962 | ---- | M] () (No name found) -- C:\USERS\CHIARA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LEIRC17P.DEFAULT\EXTENSIONS\TOOLBAR@WEB.DE.XPI [2012.07.03 19:24:30 | 000,085,472 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll [2012.04.21 03:54:08 | 000,001,392 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazondotcom-de.xml [2012.04.21 03:54:08 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml [2012.04.21 03:54:08 | 000,001,153 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-de.xml [2012.04.21 03:54:08 | 000,006,805 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\leo_ende_de.xml [2012.04.21 03:54:08 | 000,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-de.xml [2012.04.21 03:54:08 | 000,001,105 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-de.xml O1 HOSTS File: ([2012.07.05 15:24:43 | 000,000,098 | ---- | M]) - C:\Windows\System32\drivers\etc\Hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: ::1 localhost O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found. O2 - BHO: (ShowBarObj Class) - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll (Egis) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O3 - HKLM\..\Toolbar: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll (Egis Incorporated.) O3 - HKU\S-1-5-21-821317666-1273569640-3729434685-1000\..\Toolbar\ShellBrowser: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477E-A7DD-396DB0476E29} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll (Egis Incorporated.) O4 - HKLM..\Run: [ArcadeDeluxeAgent] C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe (CyberLink Corp.) O4 - HKLM..\Run: [ArcSoft Connection Service] C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.) O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG) O4 - HKLM..\Run: [CLMLServer] C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe (CyberLink) O4 - HKLM..\Run: [CloneCDTray] C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe (SlySoft, Inc.) O4 - HKLM..\Run: [ControlCenter3] C:\Program Files\Brother\ControlCenter3\brctrcen.exe (Brother Industries, Ltd.) O4 - HKLM..\Run: [eAudio] C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe (Acer Incorporated) O4 - HKLM..\Run: [eDataSecurity Loader] C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe (Egis Incorporated) O4 - HKLM..\Run: [ePower_DMC] C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe (Acer Inc.) O4 - HKLM..\Run: [eRecoveryService] File not found O4 - HKLM..\Run: [LManager] C:\Program Files\Launch Manager\QtZgAcer.EXE (Dritek System Inc.) O4 - HKLM..\Run: [MobileConnect] C:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe (Vodafone) O4 - HKLM..\Run: [Nikon Transfer Monitor] C:\Program Files\Common Files\Nikon\Monitor\NkMonitor.exe (Nikon Corporation) O4 - HKLM..\Run: [NPSStartup] File not found O4 - HKLM..\Run: [PlayMovie] C:\Program Files\Acer Arcade Deluxe\PlayMovie\PMVService.exe (Acer Corp.) O4 - HKLM..\Run: [PLFSetI] C:\Windows\PLFSetI.exe () O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor) O4 - HKLM..\Run: [Standby] c:\Program Files\Common Files\Corel\Standby\Standby.exe (Corel) O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.) O4 - HKLM..\Run: [WarReg_PopUp] C:\Program Files\Acer\WR_PopUp\WarReg_PopUp.exe (Acer Incorporated) O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation) O4 - HKLM..\Run: [Windows Mobile-based device management] C:\Windows\WindowsMobile\wmdSync.exe (Microsoft Corporation) O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation) O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation) O4 - HKU\S-1-5-21-821317666-1273569640-3729434685-1000..\Run: [AutoStartNPSAgent] C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe (Samsung Electronics Co., Ltd.) O4 - HKU\S-1-5-21-821317666-1273569640-3729434685-1000..\Run: [ISUSPM] C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe (Macrovision Corporation) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableCAD = 1 O13 - gopher Prefix: missing O15 - HKU\S-1-5-21-821317666-1273569640-3729434685-1000\..Trusted Ranges: GD ([http] in Local intranet) O16 - DPF: {1C11B948-582A-433F-A98D-A8C4D5CC64F2} hxxp://kitchenplanner.ikea.com/DE/Core/Player/2020PlayerAX_Win32.cab (20-20 3D Viewer) O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.0/srl_bin/sysreqlab3.cab (System Requirements Lab Class) O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} hxxp://uploadserver.info/premium/mirror2/uploader/ImageUploader5.cab (Image Uploader Control) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_02-windows-i586.cab (Java Plug-in 10.2.0) O16 - DPF: {CAFEEFAC-0017-0000-0002-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_02-windows-i586.cab (Java Plug-in 1.7.0_02) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_02-windows-i586.cab (Java Plug-in 1.7.0_02) O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} hxxp://wwwimages.adobe.com/www.adobe.com/products/acrobat/nos/gp.cab (get_atlcom Class) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C5399112-5C95-40A2-A428-8590110340EA}: DhcpNameServer = 192.168.2.1 O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation) O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation) O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation) O20 - AppInit_DLLs: (C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL) - C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll (Google) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation) O20 - Winlogon\Notify\spba: DllName - (C:\Program Files\Common Files\SPBA\homefus2.dll) - C:\Program Files\Common Files\SPBA\homefus2.dll (UPEK Inc.) O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\img19.jpg O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\img19.jpg O29 - HKLM SecurityProviders - (credssp.dll) - credssp.dll (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) NetSvcs: FastUserSwitchingCompatibility - File not found NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation) NetSvcs: Nla - File not found NetSvcs: Ntmssvc - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: SRService - File not found NetSvcs: WmdmPmSp - File not found NetSvcs: LogonHours - File not found NetSvcs: PCAudit - File not found NetSvcs: helpsvc - File not found NetSvcs: uploadmgr - File not found SafeBootMin: AppMgmt - Service SafeBootMin: Base - Driver Group SafeBootMin: Boot Bus Extender - Driver Group SafeBootMin: Boot file system - Driver Group SafeBootMin: File system - Driver Group SafeBootMin: Filter - Driver Group SafeBootMin: HelpSvc - Service SafeBootMin: Lavasoft Ad-Aware Service - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe (Lavasoft Limited) SafeBootMin: NTDS - File not found SafeBootMin: PCI Configuration - Driver Group SafeBootMin: PNP Filter - Driver Group SafeBootMin: Primary disk - Driver Group SafeBootMin: sacsvr - Service SafeBootMin: SCSI Class - Driver Group SafeBootMin: System Bus Extender - Driver Group SafeBootMin: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation) SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices SafeBootNet: AppMgmt - Service SafeBootNet: Base - Driver Group SafeBootNet: Boot Bus Extender - Driver Group SafeBootNet: Boot file system - Driver Group SafeBootNet: File system - Driver Group SafeBootNet: Filter - Driver Group SafeBootNet: HelpSvc - Service SafeBootNet: Lavasoft Ad-Aware Service - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe (Lavasoft Limited) SafeBootNet: Messenger - Service SafeBootNet: NDIS Wrapper - Driver Group SafeBootNet: NetBIOSGroup - Driver Group SafeBootNet: NetDDEGroup - Driver Group SafeBootNet: Network - Driver Group SafeBootNet: NetworkProvider - Driver Group SafeBootNet: NTDS - File not found SafeBootNet: PCI Configuration - Driver Group SafeBootNet: PNP Filter - Driver Group SafeBootNet: PNP_TDI - Driver Group SafeBootNet: Primary disk - Driver Group SafeBootNet: rdsessmgr - Service SafeBootNet: sacsvr - Service SafeBootNet: SCSI Class - Driver Group SafeBootNet: Streams Drivers - Driver Group SafeBootNet: System Bus Extender - Driver Group SafeBootNet: TDI - Driver Group SafeBootNet: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation) SafeBootNet: WudfPf - Driver SafeBootNet: WudfUsbccidDriver - Driver SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun) ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\Windows\System32\Microsoft ActiveX: {25FFAAD0-F4A3-4164-95FF-4461E9F35D51} - .NET Framework ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack ActiveX: {3C3901C5-3455-3E0A-A214-0B093A5070A6} - .NET Framework ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.8 ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - C:\Windows\System32\Microsoft ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7 ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\system32\ie4uinit.exe -BaseSettings ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1 ActiveX: {D27CDB6E-AE6D-11CF-96B8-444553540000} - Macromedia Shockwave Flash ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\Windows\system32\unregmp2.exe /ShowWMP ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\system32\ie4uinit.exe -UserIconConfig ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP Drivers32: aux - wdmaud.drv (Microsoft Corporation) Drivers32: aux1 - wdmaud.drv (Microsoft Corporation) Drivers32: aux2 - wdmaud.drv (Microsoft Corporation) Drivers32: aux3 - wdmaud.drv (Microsoft Corporation) Drivers32: aux4 - wdmaud.drv (Microsoft Corporation) Drivers32: aux5 - wdmaud.drv (Microsoft Corporation) Drivers32: aux6 - wdmaud.drv (Microsoft Corporation) Drivers32: midi - wdmaud.drv (Microsoft Corporation) Drivers32: midi1 - wdmaud.drv (Microsoft Corporation) Drivers32: midi2 - wdmaud.drv (Microsoft Corporation) Drivers32: midi3 - wdmaud.drv (Microsoft Corporation) Drivers32: midi4 - wdmaud.drv (Microsoft Corporation) Drivers32: midi5 - wdmaud.drv (Microsoft Corporation) Drivers32: midi6 - wdmaud.drv (Microsoft Corporation) Drivers32: midimapper - midimap.dll (Microsoft Corporation) Drivers32: mixer - wdmaud.drv (Microsoft Corporation) Drivers32: mixer1 - wdmaud.drv (Microsoft Corporation) Drivers32: mixer2 - wdmaud.drv (Microsoft Corporation) Drivers32: mixer3 - wdmaud.drv (Microsoft Corporation) Drivers32: mixer4 - wdmaud.drv (Microsoft Corporation) Drivers32: mixer5 - wdmaud.drv (Microsoft Corporation) Drivers32: mixer6 - wdmaud.drv (Microsoft Corporation) Drivers32: msacm.dvacm - c:\Program Files\Common Files\Ulead Systems\VIO\DVACM.acm (Corel TW Corp.) Drivers32: msacm.imaadpcm - imaadp32.acm (Microsoft Corporation) Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS) Drivers32: msacm.MPEGacm - c:\Program Files\Common Files\Ulead Systems\MPEG\MPEGACM.acm (Ulead Systems, Inc.) Drivers32: msacm.msadpcm - msadp32.acm (Microsoft Corporation) Drivers32: msacm.msg711 - msg711.acm (Microsoft Corporation) Drivers32: msacm.msgsm610 - msgsm32.acm (Microsoft Corporation) Drivers32: msacm.ulmp3acm - c:\Program Files\Common Files\Ulead Systems\MPEG\ulmp3acm.acm (Ulead systems) Drivers32: MSVideo8 - VfWWDM32.dll (Microsoft Corporation) Drivers32: vidc.cvid - iccvid.dll (Radius Inc.) Drivers32: vidc.i420 - iyuv_32.dll (Microsoft Corporation) Drivers32: VIDC.IYUV - iyuv_32.dll (Microsoft Corporation) Drivers32: vidc.mrle - msrle32.dll (Microsoft Corporation) Drivers32: vidc.msvc - msvidc32.dll (Microsoft Corporation) Drivers32: vidc.tscc - tsccvid.dll (TechSmith Corporation) Drivers32: VIDC.UYVY - msyuv.dll (Microsoft Corporation) Drivers32: VIDC.YUY2 - msyuv.dll (Microsoft Corporation) Drivers32: VIDC.YVU9 - tsbyuv.dll (Microsoft Corporation) Drivers32: VIDC.YVYU - msyuv.dll (Microsoft Corporation) Drivers32: wave - wdmaud.drv (Microsoft Corporation) Drivers32: wave1 - wdmaud.drv (Microsoft Corporation) Drivers32: wave2 - wdmaud.drv (Microsoft Corporation) Drivers32: wave3 - wdmaud.drv (Microsoft Corporation) Drivers32: wave4 - wdmaud.drv (Microsoft Corporation) Drivers32: wave5 - wdmaud.drv (Microsoft Corporation) Drivers32: wave6 - wdmaud.drv (Microsoft Corporation) Drivers32: wavemapper - msacm32.drv (Microsoft Corporation) CREATERESTOREPOINT Restore point Set: OTL Restore Point ========== Files/Folders - Created Within 30 Days ========== [2012.07.05 15:20:25 | 000,000,000 | ---D | C] -- C:\_OTL [2012.06.29 16:18:30 | 000,000,000 | ---D | C] -- C:\Program Files\ESET [2012.06.21 15:23:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Fighters [2012.06.19 23:33:14 | 000,000,000 | ---D | C] -- C:\ProgramData\WindowsSearch [2010.04.27 22:31:17 | 000,563,040 | ---- | C] (Google Inc.) -- C:\Users\Chiara\googleupdatesetup.exe [2010.01.19 15:47:41 | 007,922,792 | ---- | C] (Mozilla) -- C:\Users\Chiara\Firefox Setup 3.5.7.exe [2009.04.30 20:27:15 | 007,363,096 | ---- | C] (Mozilla) -- C:\Users\Chiara\Firefox Setup 3.0.10.exe [2009.03.27 16:05:13 | 023,596,840 | ---- | C] (Skype Technologies S.A.) -- C:\Users\Chiara\SkypeSetupFull.exe ========== Files - Modified Within 30 Days ========== [2012.07.06 08:44:42 | 000,000,000 | ---- | M] () -- C:\Windows\System32\LogConfigTemp.xml [2012.07.06 08:44:09 | 000,065,536 | ---- | M] () -- C:\Windows\System32\Ikeext.etl [2012.07.06 08:44:01 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 [2012.07.06 08:44:01 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 [2012.07.06 08:43:58 | 000,000,384 | ---- | M] () -- C:\Windows\tasks\Ad-Aware Update (Weekly).job [2012.07.06 08:43:47 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2012.07.06 08:43:41 | 2647,031,808 | -HS- | M] () -- C:\hiberfil.sys [2012.07.05 15:24:43 | 000,000,098 | ---- | M] () -- C:\Windows\System32\drivers\etc\Hosts [2012.07.01 05:49:30 | 000,006,836 | ---- | M] () -- C:\Users\Chiara\AppData\Local\d3d9caps.dat [2012.06.21 12:35:48 | 000,061,100 | ---- | M] () -- C:\Windows\System32\perfh007.dat [2012.06.21 12:35:48 | 000,015,184 | ---- | M] () -- C:\Windows\System32\perfc007.dat [2012.06.21 12:35:48 | 000,013,514 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2012.06.21 12:35:48 | 000,007,324 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2012.06.20 21:45:21 | 000,000,870 | ---- | M] () -- C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk [2012.06.20 20:33:07 | 000,000,064 | ---- | M] () -- C:\Windows\System32\rp_stats.dat [2012.06.20 20:33:07 | 000,000,044 | ---- | M] () -- C:\Windows\System32\rp_rules.dat [2012.06.13 11:16:07 | 035,636,640 | ---- | M] () -- C:\Users\Chiara\Desktop\bofrost-Katalog-Sommer-2012.pdf [2012.06.13 03:49:04 | 000,330,816 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT ========== Files Created - No Company Name ========== [2012.07.04 22:28:19 | 000,000,384 | ---- | C] () -- C:\Windows\tasks\Ad-Aware Update (Weekly).job [2012.06.20 21:45:21 | 000,000,870 | ---- | C] () -- C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk [2012.06.20 20:15:46 | 2647,031,808 | -HS- | C] () -- C:\hiberfil.sys [2012.06.13 11:16:06 | 035,636,640 | ---- | C] () -- C:\Users\Chiara\Desktop\bofrost-Katalog-Sommer-2012.pdf [2011.07.18 13:52:53 | 000,000,000 | ---- | C] () -- C:\Users\Chiara\AppData\Local\{0406D485-8777-4738-9BB6-48ECC2211755} [2011.07.12 22:41:10 | 000,000,064 | ---- | C] () -- C:\Windows\System32\rp_stats.dat [2011.07.12 22:41:10 | 000,000,044 | ---- | C] () -- C:\Windows\System32\rp_rules.dat [2011.06.20 21:37:31 | 000,000,000 | ---- | C] () -- C:\Windows\ViewNX.INI [2011.06.20 21:24:17 | 000,000,268 | RH-- | C] () -- C:\ProgramData\Compressor [2011.06.20 21:24:17 | 000,000,268 | RH-- | C] () -- C:\Users\Chiara\AppData\Roaming\Command Line Utility [2011.06.20 21:24:17 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLdw.DAT [2011.06.20 21:24:17 | 000,000,012 | RH-- | C] () -- C:\ProgramData\Dance [2011.05.07 17:02:12 | 000,000,268 | RH-- | C] () -- C:\ProgramData\Common [2011.05.07 17:02:12 | 000,000,268 | RH-- | C] () -- C:\Users\Chiara\AppData\Roaming\Colors [2011.05.07 17:02:12 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLdu.DAT [2011.05.07 17:02:12 | 000,000,012 | RH-- | C] () -- C:\ProgramData\Contents [2011.03.07 18:20:12 | 000,005,199 | ---- | C] () -- C:\Users\Chiara\.recently-used.xbel [2010.05.12 15:07:48 | 004,369,428 | ---- | C] () -- C:\Users\Chiara\SmartSurfer.zip [2010.04.22 13:38:15 | 000,024,206 | ---- | C] () -- C:\Users\Chiara\AppData\Roaming\UserTile.png [2009.12.05 18:42:38 | 000,000,083 | -HS- | C] () -- C:\ProgramData\.zreglib [2009.10.23 22:44:31 | 000,000,952 | -HS- | C] () -- C:\ProgramData\KGyGaAvL.sys [2009.02.12 18:56:59 | 002,058,248 | ---- | C] () -- C:\Users\Chiara\discountsurfer-5.0.4.exe [2009.01.24 19:49:13 | 000,006,836 | ---- | C] () -- C:\Users\Chiara\AppData\Local\d3d9caps.dat [2009.01.10 20:12:57 | 000,044,544 | ---- | C] () -- C:\Users\Chiara\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2009.01.10 18:51:34 | 022,102,584 | ---- | C] () -- C:\Users\Chiara\antivir_workstation_winu_de_h337.exe [2008.06.23 14:02:02 | 000,097,410 | R--- | C] () -- C:\ProgramData\DeviceManager.xml.rc4 [2008.05.23 18:48:50 | 000,020,270 | ---- | C] () -- C:\ProgramData\DeviceInstaller.xml ========== LOP Check ========== [2011.07.04 23:19:28 | 000,000,000 | -HSD | M] -- C:\Users\Chiara\AppData\Roaming\.# [2008.11.02 21:07:45 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\Acer GameZone Console [2009.10.18 11:07:59 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\ALLCapture [2009.06.19 16:17:00 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\Bytemobile [2009.01.11 22:22:09 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\eSobi [2011.03.07 18:20:12 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\gtk-2.0 [2011.06.20 21:36:16 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\Nikon [2009.12.26 23:04:41 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\PC Suite [2010.04.22 13:38:14 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\PeerNetworking [2011.09.15 03:52:17 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\PowerCinema [2011.11.22 17:14:28 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\RavensburgerTipToi [2009.12.26 23:00:10 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\Samsung [2009.08.07 13:45:23 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\ScanSoft [2009.05.14 15:14:40 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\SigmaPlot 11.0 [2010.09.01 10:54:21 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\SmartSurfer [2010.06.02 12:28:08 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\SoftDMA [2009.05.18 10:46:00 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\StatSoft [2009.10.23 22:45:42 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\Ulead Systems [2009.03.07 21:52:40 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\Vodafone [2010.09.01 10:54:37 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\WEBDE [2008.11.02 21:07:45 | 000,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming\Acer GameZone Console [2008.11.02 21:07:45 | 000,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming\Acer GameZone Console [2012.07.06 08:43:58 | 000,000,384 | ---- | M] () -- C:\Windows\Tasks\Ad-Aware Update (Weekly).job [2012.07.05 21:25:23 | 000,032,626 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT ========== Purity Check ========== ========== Custom Scans ========== < %ALLUSERSPROFILE%\Application Data\*. > < %ALLUSERSPROFILE%\Application Data\*.exe /s > < %APPDATA%\*. > [2011.07.04 23:19:28 | 000,000,000 | -HSD | M] -- C:\Users\Chiara\AppData\Roaming\.# [2008.11.02 21:07:45 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\Acer GameZone Console [2009.01.11 21:53:41 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\Adobe [2009.10.18 11:07:59 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\ALLCapture [2011.05.07 20:06:45 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\ArcSoft [2009.01.10 18:27:15 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\ATI [2012.04.18 20:22:53 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\Avira [2009.10.06 12:27:25 | 000,000,000 | R--D | M] -- C:\Users\Chiara\AppData\Roaming\Brother [2009.06.19 16:17:00 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\Bytemobile [2009.10.23 22:44:52 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\Corel [2009.01.10 19:24:39 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\CyberLink [2009.01.11 22:22:09 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\eSobi [2009.01.10 19:50:18 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\Google [2011.03.07 18:20:12 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\gtk-2.0 [2009.01.10 18:26:24 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\Identities [2009.08.07 13:38:27 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\InstallShield [2009.01.10 18:27:05 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\Macromedia [2009.03.06 10:49:14 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\Macrovision [2011.03.19 23:01:09 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\Malwarebytes [2006.11.02 14:37:34 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\Media Center Programs [2010.03.06 01:55:35 | 000,000,000 | --SD | M] -- C:\Users\Chiara\AppData\Roaming\Microsoft [2011.03.16 12:57:14 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\Mozilla [2011.06.20 21:36:16 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\Nikon [2009.12.26 23:04:41 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\PC Suite [2010.04.22 13:38:14 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\PeerNetworking [2011.09.15 03:52:17 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\PowerCinema [2011.11.22 17:14:28 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\RavensburgerTipToi [2009.12.26 23:00:10 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\Samsung [2009.08.07 13:45:23 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\ScanSoft [2009.05.14 15:14:40 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\SigmaPlot 11.0 [2012.05.16 18:34:15 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\Skype [2010.09.01 10:54:21 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\SmartSurfer [2010.06.02 12:28:08 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\SoftDMA [2009.05.18 10:46:00 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\StatSoft [2009.10.23 22:45:42 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\Ulead Systems [2009.03.07 21:52:40 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\Vodafone [2010.09.01 10:54:37 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\WEBDE [2010.06.14 22:51:02 | 000,000,000 | ---D | M] -- C:\Users\Chiara\AppData\Roaming\WinRAR < %APPDATA%\*.exe /s > [2011.06.20 21:31:40 | 000,335,872 | R--- | M] (InstallShield Software Corp.) -- C:\Users\Chiara\AppData\Roaming\Microsoft\Installer\{237CD223-1B9D-47E8-A76C-E478B83CCEA2}\ARPPRODUCTICON.exe [2009.08.07 13:38:05 | 000,010,134 | R--- | M] () -- C:\Users\Chiara\AppData\Roaming\Microsoft\Installer\{2BC2781A-F7F6-452E-95EB-018A522F1B2C}\ARPPRODUCTICON.exe [2011.06.20 21:29:48 | 000,057,344 | R--- | M] (InstallShield Software Corp.) -- C:\Users\Chiara\AppData\Roaming\Microsoft\Installer\{87441A59-5E64-4096-A170-14EFE67200C3}\ARPPRODUCTICON.exe [2011.06.20 21:32:51 | 000,049,152 | R--- | M] (InstallShield Software Corp.) -- C:\Users\Chiara\AppData\Roaming\Microsoft\Installer\{D2FCC1AE-6311-47C5-8130-C6C66D77DD71}\ARPPRODUCTICON.exe < %SYSTEMDRIVE%\*.exe > < MD5 for: AGP440.SYS > [2008.01.21 04:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\drivers\AGP440.sys [2008.01.21 04:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_51b95d75\AGP440.sys [2008.01.21 04:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_f750e484\AGP440.sys [2008.01.21 04:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6001.18000_none_ba12ed3bbeb0d97a\AGP440.sys [2008.01.21 04:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6002.18005_none_bbfe6647bbd2a4c6\AGP440.sys [2006.11.02 11:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_920a2c1f\AGP440.sys < MD5 for: AHCIX86S.SYS > [2008.05.28 08:47:08 | 000,171,016 | R--- | M] (AMD Technologies Inc.) MD5=9879FF9F6A04D660BC245788E1881B00 -- C:\ACER\Preload\Autorun\DRV\AMD VGA Chip RS780MN M82ME-XT M86ME\Packages\Drivers\SBDrv\SB7xx\RAID\LH\ahcix86s.sys [2008.05.28 08:47:08 | 000,171,016 | ---- | M] (AMD Technologies Inc.) MD5=9879FF9F6A04D660BC245788E1881B00 -- C:\Windows\System32\drivers\ahcix86s.sys [2008.05.28 08:47:08 | 000,171,016 | ---- | M] (AMD Technologies Inc.) MD5=9879FF9F6A04D660BC245788E1881B00 -- C:\Windows\System32\DriverStore\FileRepository\ahcix86s.inf_37966648\ahcix86s.sys < MD5 for: ATAPI.SYS > [2008.03.12 08:38:18 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=0D83C87A801A3DFCD1BF73893FE7518C -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_4c9c5a00\atapi.sys [2008.03.12 08:38:18 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=0D83C87A801A3DFCD1BF73893FE7518C -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.18034_none_dd1bb97e219e87cb\atapi.sys [2009.04.11 08:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\drivers\atapi.sys [2009.04.11 08:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_b12d8e84\atapi.sys [2009.04.11 08:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6002.18005_none_df23a1261eab99e8\atapi.sys [2008.01.21 04:23:00 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_cc18792d\atapi.sys [2008.01.21 04:23:00 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.18000_none_dd38281a2189ce9c\atapi.sys [2006.11.02 11:49:36 | 000,019,048 | ---- | M] (Microsoft Corporation) MD5=4F4FCB8B6EA06784FB6D475B7EC7300F -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_c6c2e699\atapi.sys [2008.02.22 06:59:12 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=76D70915EB81608DC6ACA87887FAB38F -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.22120_none_ddac250d3ab7a648\atapi.sys [2008.02.22 07:03:50 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=92210921EEFC081693F649C3631DEEC2 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_3d9c5057\atapi.sys [2008.02.22 07:03:50 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=92210921EEFC081693F649C3631DEEC2 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.18023_none_dd25892021975283\atapi.sys [2008.03.12 08:24:20 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=96DC4E1A9F90CCD489950A8935425C59 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.22134_none_dda556493abc2795\atapi.sys < MD5 for: CNGAUDIT.DLL > [2006.11.02 11:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\System32\cngaudit.dll [2006.11.02 11:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.0.6000.16386_none_e62d292932a96ce6\cngaudit.dll < MD5 for: EVENTLOG.DLL > [2007.01.12 23:30:08 | 000,007,216 | ---- | M] () MD5=C2A279A458A06DE2C83D842AA042B5A8 -- C:\Program Files\Cyberlink\PowerDirector\EventLog.dll < MD5 for: IASTORV.SYS > [2008.01.21 04:23:23 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\System32\drivers\iaStorV.sys [2008.01.21 04:23:23 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_c9df7691\iaStorV.sys [2008.01.21 04:23:23 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.0.6001.18000_none_af11527887c7fa8f\iaStorV.sys [2006.11.02 11:51:25 | 000,232,040 | ---- | M] (Intel Corporation) MD5=C957BF4B5D80B46C5017BF0101E6C906 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_37cdafa4\iaStorV.sys < MD5 for: NETLOGON.DLL > [2009.04.11 08:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\System32\netlogon.dll [2009.04.11 08:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6002.18005_none_ffa3304f351bb3a3\netlogon.dll [2008.01.21 04:24:05 | 000,592,384 | ---- | M] (Microsoft Corporation) MD5=A8EFC0B6E75B789F7FD3BA5025D4E37F -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6001.18000_none_fdb7b74337f9e857\netlogon.dll < MD5 for: NVSTOR.SYS > [2006.11.02 11:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) MD5=9E0BA19A28C498A6D323D065DB76DFFC -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_733654ff\nvstor.sys [2008.01.21 04:23:21 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\System32\drivers\nvstor.sys [2008.01.21 04:23:21 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_31c3d71d\nvstor.sys [2008.01.21 04:23:21 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.0.6001.18000_none_39dac327befea467\nvstor.sys < MD5 for: SCECLI.DLL > [2008.01.21 04:24:50 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=28B84EB538F7E8A0FE8B9299D591E0B9 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6001.18000_none_380de25bd91b6f12\scecli.dll [2009.04.11 08:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\System32\scecli.dll [2009.04.11 08:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6002.18005_none_39f95b67d63d3a5e\scecli.dll < MD5 for: USER32.DLL > [2008.01.21 04:24:21 | 000,627,200 | ---- | M] (Microsoft Corporation) MD5=B974D9F06DC7D1908E825DC201681269 -- C:\Windows\winsxs\x86_microsoft-windows-user32_31bf3856ad364e35_6.0.6001.18000_none_cd386c416d5c7f32\user32.dll [2009.04.11 08:28:25 | 000,627,712 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\user32.dll [2009.04.11 08:28:25 | 000,627,712 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\winsxs\x86_microsoft-windows-user32_31bf3856ad364e35_6.0.6002.18005_none_cf23e54d6a7e4a7e\user32.dll < MD5 for: USERINIT.EXE > [2008.01.21 04:24:49 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\System32\userinit.exe [2008.01.21 04:24:49 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6001.18000_none_dc28ba15d1aff80b\userinit.exe < MD5 for: WININIT.EXE > [2008.01.21 04:23:42 | 000,096,768 | ---- | M] (Microsoft Corporation) MD5=101BA3EA053480BB5D957EF37C06B5ED -- C:\Windows\System32\wininit.exe [2008.01.21 04:23:42 | 000,096,768 | ---- | M] (Microsoft Corporation) MD5=101BA3EA053480BB5D957EF37C06B5ED -- C:\Windows\winsxs\x86_microsoft-windows-wininit_31bf3856ad364e35_6.0.6001.18000_none_30f2b8cf0450a6a2\wininit.exe < MD5 for: WINLOGON.EXE > [2012.04.04 15:56:38 | 000,199,240 | ---- | M] () MD5=097D0E812D7A9A3101CE46CB2BE0474D -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe [2009.04.11 08:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\System32\winlogon.exe [2009.04.11 08:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6002.18005_none_71ae7a22d2134741\winlogon.exe [2008.01.21 04:24:49 | 000,314,880 | ---- | M] (Microsoft Corporation) MD5=C2610B6BDBEFC053BBDAB4F1B965CB24 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6001.18000_none_6fc30116d4f17bf5\winlogon.exe < MD5 for: WS2IFSL.SYS > [2008.01.21 04:24:47 | 000,015,872 | ---- | M] (Microsoft Corporation) MD5=E3A3CB253C0EC2494D4A61F5E43A389C -- C:\Windows\System32\drivers\ws2ifsl.sys [2008.01.21 04:24:47 | 000,015,872 | ---- | M] (Microsoft Corporation) MD5=E3A3CB253C0EC2494D4A61F5E43A389C -- C:\Windows\winsxs\x86_microsoft-windows-w..rastructure-ws2ifsl_31bf3856ad364e35_6.0.6001.18000_none_4f86a0d4c7cda641\ws2ifsl.sys < %systemroot%\system32\drivers\*.sys /lockedfiles > < %systemroot%\System32\config\*.sav > [2008.01.21 05:14:18 | 016,846,848 | ---- | M] () -- C:\Windows\System32\config\COMPONENTS.SAV [2008.01.21 05:14:08 | 000,106,496 | ---- | M] () -- C:\Windows\System32\config\DEFAULT.SAV [2008.01.21 05:14:18 | 000,020,480 | ---- | M] () -- C:\Windows\System32\config\SECURITY.SAV [2006.11.02 12:34:08 | 010,133,504 | ---- | M] () -- C:\Windows\System32\config\SOFTWARE.SAV [2006.11.02 12:34:08 | 001,826,816 | ---- | M] () -- C:\Windows\System32\config\SYSTEM.SAV < %systemroot%\*. /mp /s > < %systemroot%\system32\*.dll /lockedfiles > < > < End of report > |
|
06.07.2012, 10:56
| #24 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Trojaner - "Weißer Bildschirm mit Verbindung wird hergestellt." Bitte nun (im normalen Windows-Modus) dieses Tool von Kaspersky (TDSS-Killer) ausführen und das Log posten Anleitung und Downloadlink hier => http://www.trojaner-board.de/82358-t...entfernen.html Hinweis: Bitte den Virenscanner abstellen bevor du den TDSS-Killer ausführst, denn v.a. Avira meldet im TDSS-Tool oft einen Fehalalrm! Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet, Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten. Wenn du das Log nicht findest oder den Inhalt kopieren und in dein Posting übertragen kannst, dann schau bitte direkt auf deiner Windows-Systempartition (meistens Laufwerk C nach, da speichert der TDSS-Killer seine Logs.Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten! 
__________________ Logfiles bitte immer in CODE-Tags posten |
|
06.07.2012, 14:13
| #25 |
| | Trojaner - "Weißer Bildschirm mit Verbindung wird hergestellt." Hallo Arne. Code:
ATTFilter 14:59:31.0532 3600 TDSS rootkit removing tool 2.7.44.0 Jul 2 2012 20:01:08
14:59:33.0537 3600 ============================================================
14:59:33.0537 3600 Current date / time: 2012/07/06 14:59:33.0537
14:59:33.0537 3600 SystemInfo:
14:59:33.0537 3600
14:59:33.0538 3600 OS Version: 6.0.6002 ServicePack: 2.0
14:59:33.0538 3600 Product type: Workstation
14:59:33.0538 3600 ComputerName: PRIVAT
14:59:33.0539 3600 UserName: Chiara
14:59:33.0539 3600 Windows directory: C:\Windows
14:59:33.0539 3600 System windows directory: C:\Windows
14:59:33.0539 3600 Processor architecture: Intel x86
14:59:33.0539 3600 Number of processors: 2
14:59:33.0539 3600 Page size: 0x1000
14:59:33.0539 3600 Boot type: Normal boot
14:59:33.0539 3600 ============================================================
14:59:35.0211 3600 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
14:59:35.0217 3600 ============================================================
14:59:35.0217 3600 \Device\Harddisk0\DR0:
14:59:35.0218 3600 MBR partitions:
14:59:35.0218 3600 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1400800, BlocksNum 0x12016800
14:59:35.0218 3600 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x13417000, BlocksNum 0x11900000
14:59:35.0218 3600 ============================================================
14:59:35.0250 3600 C: <-> \Device\Harddisk0\DR0\Partition0
14:59:35.0291 3600 D: <-> \Device\Harddisk0\DR0\Partition1
14:59:35.0292 3600 ============================================================
14:59:35.0292 3600 Initialize success
14:59:35.0292 3600 ============================================================
14:59:41.0946 1692 ============================================================
14:59:41.0946 1692 Scan started
14:59:41.0946 1692 Mode: Manual;
14:59:41.0946 1692 ============================================================
14:59:44.0333 1692 ACDaemon (adc420616c501b45d26c0fd3ef1e54e4) C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
14:59:44.0335 1692 ACDaemon - ok
14:59:44.0648 1692 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
14:59:44.0657 1692 ACPI - ok
14:59:44.0735 1692 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
14:59:44.0748 1692 adp94xx - ok
14:59:44.0791 1692 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
14:59:44.0801 1692 adpahci - ok
14:59:44.0828 1692 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
14:59:44.0832 1692 adpu160m - ok
14:59:44.0860 1692 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
14:59:44.0866 1692 adpu320 - ok
14:59:44.0904 1692 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
14:59:44.0908 1692 AeLookupSvc - ok
14:59:44.0976 1692 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
14:59:44.0984 1692 AFD - ok
14:59:45.0029 1692 AgereModemAudio (efbc44fbd75e4f80bd927aebf6e7eade) C:\Windows\system32\agrsmsvc.exe
14:59:45.0031 1692 AgereModemAudio - ok
14:59:45.0192 1692 AgereSoftModem (1cfeba39fc613e45b49d3eddfbcda289) C:\Windows\system32\DRIVERS\AGRSM.sys
14:59:45.0220 1692 AgereSoftModem - ok
14:59:45.0266 1692 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
14:59:45.0269 1692 agp440 - ok
14:59:45.0311 1692 ahcix86s (9879ff9f6a04d660bc245788e1881b00) C:\Windows\system32\DRIVERS\ahcix86s.sys
14:59:45.0314 1692 ahcix86s - ok
14:59:45.0349 1692 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
14:59:45.0352 1692 aic78xx - ok
14:59:45.0390 1692 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
14:59:45.0392 1692 ALG - ok
14:59:45.0410 1692 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
14:59:45.0413 1692 aliide - ok
14:59:45.0447 1692 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
14:59:45.0450 1692 amdagp - ok
14:59:45.0475 1692 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
14:59:45.0478 1692 amdide - ok
14:59:45.0499 1692 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
14:59:45.0502 1692 AmdK7 - ok
14:59:45.0525 1692 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
14:59:45.0528 1692 AmdK8 - ok
14:59:45.0648 1692 AntiVirSchedulerService (466a0d95960dad3222c896d2cea99993) C:\Program Files\Avira\AntiVir Desktop\sched.exe
14:59:45.0650 1692 AntiVirSchedulerService - ok
14:59:45.0686 1692 AntiVirService (a489be6bb0aa1ff406b488b60542314b) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
14:59:45.0689 1692 AntiVirService - ok
14:59:45.0752 1692 AnyDVD (7a7a9f83fa3572448111886e34ca8565) C:\Windows\system32\Drivers\AnyDVD.sys
14:59:45.0755 1692 AnyDVD - ok
14:59:45.0808 1692 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
14:59:45.0810 1692 Appinfo - ok
14:59:45.0831 1692 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
14:59:45.0835 1692 arc - ok
14:59:45.0963 1692 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
14:59:45.0979 1692 arcsas - ok
14:59:46.0032 1692 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
14:59:46.0034 1692 AsyncMac - ok
14:59:46.0083 1692 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
14:59:46.0086 1692 atapi - ok
14:59:46.0237 1692 athr (f32fee7cb2ee32c1f808409bc8019701) C:\Windows\system32\DRIVERS\athr.sys
14:59:46.0267 1692 athr - ok
14:59:46.0366 1692 Ati External Event Utility (37c62d0a9249d286fc133e7c3f55a81c) C:\Windows\system32\Ati2evxx.exe
14:59:46.0380 1692 Ati External Event Utility - ok
14:59:46.0730 1692 atikmdag (dde8884695e4d34cc4573d8707aeff95) C:\Windows\system32\DRIVERS\atikmdag.sys
14:59:46.0822 1692 atikmdag - ok
14:59:46.0965 1692 AtiPcie (5a1465ad2e7c1bc39cda12a355329096) C:\Windows\system32\DRIVERS\AtiPcie.sys
14:59:46.0967 1692 AtiPcie - ok
14:59:47.0060 1692 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
14:59:47.0068 1692 AudioEndpointBuilder - ok
14:59:47.0088 1692 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
14:59:47.0094 1692 Audiosrv - ok
14:59:47.0145 1692 avgntflt (d5541f0afb767e85fc412fc609d96a74) C:\Windows\system32\DRIVERS\avgntflt.sys
14:59:47.0149 1692 avgntflt - ok
14:59:47.0194 1692 avipbb (7d967a682d4694df7fa57d63a2db01fe) C:\Windows\system32\DRIVERS\avipbb.sys
14:59:47.0199 1692 avipbb - ok
14:59:47.0212 1692 avkmgr (271cfd1a989209b1964e24d969552bf7) C:\Windows\system32\DRIVERS\avkmgr.sys
14:59:47.0214 1692 avkmgr - ok
14:59:47.0276 1692 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
14:59:47.0277 1692 Beep - ok
14:59:47.0365 1692 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
14:59:47.0373 1692 BFE - ok
14:59:47.0494 1692 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\System32\qmgr.dll
14:59:47.0526 1692 BITS - ok
14:59:47.0543 1692 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
14:59:47.0546 1692 blbdrive - ok
14:59:47.0582 1692 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
14:59:47.0586 1692 bowser - ok
14:59:47.0633 1692 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
14:59:47.0638 1692 BrFiltLo - ok
14:59:47.0667 1692 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
14:59:47.0669 1692 BrFiltUp - ok
14:59:47.0703 1692 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
14:59:47.0709 1692 Browser - ok
14:59:47.0744 1692 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
14:59:47.0748 1692 Brserid - ok
14:59:47.0807 1692 BrSerIf (1a5fc78e41840edf79d65ec16eff2787) C:\Windows\system32\Drivers\BrSerIf.sys
14:59:47.0811 1692 BrSerIf - ok
14:59:47.0848 1692 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
14:59:47.0851 1692 BrSerWdm - ok
14:59:47.0906 1692 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
14:59:47.0908 1692 BrUsbMdm - ok
14:59:47.0936 1692 BrUsbSer (a24c7b39602218f8dbdb2b6704325fc7) C:\Windows\system32\Drivers\BrUsbSer.sys
14:59:47.0938 1692 BrUsbSer - ok
14:59:47.0991 1692 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
14:59:47.0994 1692 BTHMODEM - ok
14:59:48.0067 1692 BUNAgentSvc (09e6affae6c0e9158bf05c7d08d0107a) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
14:59:48.0069 1692 BUNAgentSvc - ok
14:59:48.0117 1692 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
14:59:48.0121 1692 cdfs - ok
14:59:48.0202 1692 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
14:59:48.0205 1692 cdrom - ok
14:59:48.0284 1692 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
14:59:48.0286 1692 CertPropSvc - ok
14:59:48.0309 1692 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\DRIVERS\circlass.sys
14:59:48.0311 1692 circlass - ok
14:59:48.0369 1692 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
14:59:48.0380 1692 CLFS - ok
14:59:48.0469 1692 CLHNService (1a05e1af359d8e961279f1eea30a91ee) C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe
14:59:48.0473 1692 CLHNService - ok
14:59:48.0549 1692 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:59:48.0554 1692 clr_optimization_v2.0.50727_32 - ok
14:59:48.0635 1692 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:59:48.0638 1692 clr_optimization_v4.0.30319_32 - ok
14:59:48.0678 1692 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
14:59:48.0680 1692 CmBatt - ok
14:59:48.0700 1692 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
14:59:48.0702 1692 cmdide - ok
14:59:48.0725 1692 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
14:59:48.0728 1692 Compbatt - ok
14:59:48.0735 1692 COMSysApp - ok
14:59:48.0750 1692 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
14:59:48.0752 1692 crcdisk - ok
14:59:48.0777 1692 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
14:59:48.0780 1692 Crusoe - ok
14:59:48.0830 1692 CryptSvc (75c6a297e364014840b48eccd7525e30) C:\Windows\system32\cryptsvc.dll
14:59:48.0834 1692 CryptSvc - ok
14:59:48.0925 1692 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
14:59:48.0942 1692 DcomLaunch - ok
14:59:48.0975 1692 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
14:59:48.0978 1692 DfsC - ok
14:59:49.0194 1692 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
14:59:49.0248 1692 DFSR - ok
14:59:49.0416 1692 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
14:59:49.0420 1692 Dhcp - ok
14:59:49.0489 1692 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
14:59:49.0492 1692 disk - ok
14:59:49.0545 1692 DKbFltr (73baf270d24fe726b9cd7f80bb17a23d) C:\Windows\system32\DRIVERS\DKbFltr.sys
14:59:49.0547 1692 DKbFltr - ok
14:59:49.0595 1692 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
14:59:49.0598 1692 Dnscache - ok
14:59:49.0659 1692 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
14:59:49.0665 1692 dot3svc - ok
14:59:49.0719 1692 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
14:59:49.0723 1692 DPS - ok
14:59:49.0749 1692 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
14:59:49.0750 1692 drmkaud - ok
14:59:49.0829 1692 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
14:59:49.0846 1692 DXGKrnl - ok
14:59:49.0884 1692 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
14:59:49.0889 1692 E1G60 - ok
14:59:49.0936 1692 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
14:59:49.0940 1692 EapHost - ok
14:59:50.0010 1692 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
14:59:50.0016 1692 Ecache - ok
14:59:50.0131 1692 eDataSecurity Service (b1f2503e23425b386df0f3413b2596f3) C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
14:59:50.0140 1692 eDataSecurity Service - ok
14:59:50.0202 1692 ehRecvr (9be3744d295a7701eb425332014f0797) C:\Windows\ehome\ehRecvr.exe
14:59:50.0211 1692 ehRecvr - ok
14:59:50.0237 1692 ehSched (ad1870c8e5d6dd340c829e6074bf3c3f) C:\Windows\ehome\ehsched.exe
14:59:50.0241 1692 ehSched - ok
14:59:50.0262 1692 ehstart (c27c4ee8926e74aa72efcab24c5242c3) C:\Windows\ehome\ehstart.dll
14:59:50.0264 1692 ehstart - ok
14:59:50.0312 1692 ElbyCDFL (ce37e3d51912e59c80c6d84337c0b4cd) C:\Windows\system32\Drivers\ElbyCDFL.sys
14:59:50.0314 1692 ElbyCDFL - ok
14:59:50.0351 1692 ElbyCDIO (027319ab8628d3ae07ff3b5a40fab62f) C:\Windows\system32\Drivers\ElbyCDIO.sys
14:59:50.0353 1692 ElbyCDIO - ok
14:59:50.0422 1692 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
14:59:50.0433 1692 elxstor - ok
14:59:50.0523 1692 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
14:59:50.0536 1692 EMDMgmt - ok
14:59:50.0559 1692 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
14:59:50.0562 1692 ErrDev - ok
14:59:50.0638 1692 ETService (27d2754314d12eb27d81d462fd0d86c0) C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
14:59:50.0641 1692 ETService - ok
14:59:50.0730 1692 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
14:59:50.0736 1692 EventSystem - ok
14:59:50.0807 1692 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
14:59:50.0812 1692 exfat - ok
14:59:50.0869 1692 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
14:59:50.0873 1692 fastfat - ok
14:59:50.0932 1692 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
14:59:50.0934 1692 fdc - ok
14:59:50.0955 1692 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
14:59:50.0957 1692 fdPHost - ok
14:59:50.0968 1692 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
14:59:50.0970 1692 FDResPub - ok
14:59:51.0002 1692 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
14:59:51.0005 1692 FileInfo - ok
14:59:51.0041 1692 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
14:59:51.0043 1692 Filetrace - ok
14:59:51.0065 1692 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
14:59:51.0067 1692 flpydisk - ok
14:59:51.0134 1692 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
14:59:51.0140 1692 FltMgr - ok
14:59:51.0302 1692 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
14:59:51.0322 1692 FontCache - ok
14:59:51.0409 1692 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
14:59:51.0413 1692 FontCache3.0.0.0 - ok
14:59:51.0463 1692 FsUsbExDisk (790a4ca68f44be35967b3df61f3e4675) C:\Windows\system32\FsUsbExDisk.SYS
14:59:51.0468 1692 FsUsbExDisk - ok
14:59:51.0525 1692 FsUsbExService (d3f9205cc4cb07553f2f9472c767ea87) C:\Windows\system32\FsUsbExService.Exe
14:59:51.0534 1692 FsUsbExService - ok
14:59:51.0592 1692 Fs_Rec (b972a66758577e0bfd1de0f91aaa27b5) C:\Windows\system32\drivers\Fs_Rec.sys
14:59:51.0593 1692 Fs_Rec - ok
14:59:51.0624 1692 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
14:59:51.0627 1692 gagp30kx - ok
14:59:51.0695 1692 getPlusHelper (fd7e9aba274df75e08320420b8e9a1d5) C:\Program Files\NOS\bin\getPlus_Helper.dll
14:59:51.0697 1692 getPlusHelper - ok
14:59:51.0759 1692 GoogleDesktopManager-080708-050100 (6fd7f370817f16b5e1f08b91badaa2ee) C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
14:59:51.0763 1692 GoogleDesktopManager-080708-050100 - ok
14:59:51.0855 1692 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
14:59:51.0869 1692 gpsvc - ok
14:59:51.0938 1692 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
14:59:51.0946 1692 HdAudAddService - ok
14:59:52.0066 1692 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
14:59:52.0083 1692 HDAudBus - ok
14:59:52.0113 1692 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
14:59:52.0116 1692 HidBth - ok
14:59:52.0161 1692 HidIr (d8df3722d5e961baa1292aa2f12827e2) C:\Windows\system32\DRIVERS\hidir.sys
14:59:52.0163 1692 HidIr - ok
14:59:52.0206 1692 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\system32\hidserv.dll
14:59:52.0210 1692 hidserv - ok
14:59:52.0245 1692 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
14:59:52.0249 1692 HidUsb - ok
14:59:52.0279 1692 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
14:59:52.0284 1692 hkmsvc - ok
14:59:52.0314 1692 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
14:59:52.0317 1692 HpCISSs - ok
14:59:52.0395 1692 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
14:59:52.0407 1692 HTTP - ok
14:59:52.0450 1692 hwdatacard - ok
14:59:52.0504 1692 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
14:59:52.0507 1692 i2omp - ok
14:59:52.0569 1692 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
14:59:52.0572 1692 i8042prt - ok
14:59:52.0639 1692 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
14:59:52.0648 1692 iaStorV - ok
14:59:52.0801 1692 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
14:59:52.0805 1692 IDriverT - ok
14:59:53.0063 1692 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
14:59:53.0101 1692 idsvc - ok
14:59:53.0122 1692 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
14:59:53.0124 1692 iirsp - ok
14:59:53.0659 1692 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
14:59:53.0703 1692 IKEEXT - ok
14:59:53.0742 1692 int15 (4d8d5b1c895ea0f2a721b98a7ce198f1) C:\Windows\system32\drivers\int15.sys
14:59:53.0746 1692 int15 - ok
14:59:54.0270 1692 IntcAzAudAddService (febdd0310fba3da13f56ede2e9f7b5dc) C:\Windows\system32\drivers\RTKVHDA.sys
14:59:54.0372 1692 IntcAzAudAddService - ok
14:59:54.0575 1692 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
14:59:54.0592 1692 intelide - ok
14:59:54.0608 1692 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
14:59:54.0610 1692 intelppm - ok
14:59:54.0660 1692 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
14:59:54.0685 1692 IPBusEnum - ok
14:59:54.0725 1692 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:59:54.0727 1692 IpFilterDriver - ok
14:59:54.0793 1692 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
14:59:54.0800 1692 iphlpsvc - ok
14:59:54.0810 1692 IpInIp - ok
14:59:54.0831 1692 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
14:59:54.0834 1692 IPMIDRV - ok
14:59:54.0860 1692 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
14:59:54.0865 1692 IPNAT - ok
14:59:54.0882 1692 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
14:59:54.0884 1692 IRENUM - ok
14:59:54.0910 1692 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
14:59:54.0912 1692 isapnp - ok
14:59:54.0989 1692 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
14:59:54.0995 1692 iScsiPrt - ok
14:59:55.0019 1692 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
14:59:55.0021 1692 iteatapi - ok
14:59:55.0039 1692 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
14:59:55.0042 1692 iteraid - ok
14:59:55.0075 1692 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
14:59:55.0077 1692 kbdclass - ok
14:59:55.0125 1692 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
14:59:55.0127 1692 kbdhid - ok
14:59:55.0186 1692 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
14:59:55.0190 1692 KeyIso - ok
14:59:55.0245 1692 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
14:59:55.0259 1692 KSecDD - ok
14:59:55.0341 1692 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
14:59:55.0352 1692 KtmRm - ok
14:59:55.0392 1692 L1E (0ebce7560b5f4b52762c39c39f9dec57) C:\Windows\system32\DRIVERS\L1E60x86.sys
14:59:55.0395 1692 L1E - ok
14:59:55.0442 1692 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\system32\srvsvc.dll
14:59:55.0450 1692 LanmanServer - ok
14:59:55.0490 1692 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
14:59:55.0500 1692 LanmanWorkstation - ok
14:59:55.0786 1692 Lavasoft Ad-Aware Service (ed60ffd305ac0424920d146db9f9ed78) C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
14:59:55.0846 1692 Lavasoft Ad-Aware Service - ok
14:59:55.0931 1692 Lavasoft Kernexplorer (6c4a3804510ad8e0f0c07b5be3d44ddb) C:\Program Files\Lavasoft\Ad-Aware\KernExplorer.sys
14:59:55.0934 1692 Lavasoft Kernexplorer - ok
14:59:56.0082 1692 Lbd (336abe8721cbc3110f1c6426da633417) C:\Windows\system32\DRIVERS\Lbd.sys
14:59:56.0085 1692 Lbd - ok
14:59:56.0177 1692 LightScribeService (793ff718477345cd5d232c50bed1e452) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
14:59:56.0180 1692 LightScribeService - ok
14:59:56.0199 1692 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
14:59:56.0202 1692 lltdio - ok
14:59:56.0253 1692 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
14:59:56.0259 1692 lltdsvc - ok
14:59:56.0279 1692 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
14:59:56.0283 1692 lmhosts - ok
14:59:56.0321 1692 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
14:59:56.0325 1692 LSI_FC - ok
14:59:56.0352 1692 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
14:59:56.0355 1692 LSI_SAS - ok
14:59:56.0399 1692 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
14:59:56.0403 1692 LSI_SCSI - ok
14:59:56.0429 1692 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
14:59:56.0433 1692 luafv - ok
14:59:56.0453 1692 Mcx2Svc (aef9babb8a506bc4ce0451a64aaded46) C:\Windows\system32\Mcx2Svc.dll
14:59:56.0458 1692 Mcx2Svc - ok
14:59:56.0486 1692 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
14:59:56.0488 1692 megasas - ok
14:59:56.0534 1692 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
14:59:56.0546 1692 MegaSR - ok
14:59:56.0582 1692 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
14:59:56.0587 1692 MMCSS - ok
14:59:56.0619 1692 MobilityService - ok
14:59:56.0654 1692 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
14:59:56.0656 1692 Modem - ok
14:59:56.0672 1692 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
14:59:56.0675 1692 monitor - ok
14:59:56.0694 1692 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
14:59:56.0696 1692 mouclass - ok
14:59:56.0714 1692 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
14:59:56.0716 1692 mouhid - ok
14:59:56.0739 1692 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
14:59:56.0743 1692 MountMgr - ok
14:59:56.0840 1692 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
14:59:56.0844 1692 MozillaMaintenance - ok
14:59:56.0891 1692 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
14:59:56.0895 1692 mpio - ok
14:59:56.0914 1692 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
14:59:56.0917 1692 mpsdrv - ok
14:59:56.0991 1692 MpsSvc (5de62c6e9108f14f6794060a9bdecaec) C:\Windows\system32\mpssvc.dll
14:59:57.0004 1692 MpsSvc - ok
14:59:57.0046 1692 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
14:59:57.0048 1692 Mraid35x - ok
14:59:57.0112 1692 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
14:59:57.0116 1692 MRxDAV - ok
14:59:57.0166 1692 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
14:59:57.0169 1692 mrxsmb - ok
14:59:57.0205 1692 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:59:57.0211 1692 mrxsmb10 - ok
14:59:57.0223 1692 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:59:57.0227 1692 mrxsmb20 - ok
14:59:57.0241 1692 msahci (f70590424eefbf5c27a40c67afdb8383) C:\Windows\system32\drivers\msahci.sys
14:59:57.0243 1692 msahci - ok
14:59:57.0275 1692 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
14:59:57.0278 1692 msdsm - ok
14:59:57.0326 1692 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
14:59:57.0336 1692 MSDTC - ok
14:59:57.0356 1692 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
14:59:57.0358 1692 Msfs - ok
14:59:57.0381 1692 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
14:59:57.0383 1692 msisadrv - ok
14:59:57.0437 1692 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
14:59:57.0442 1692 MSiSCSI - ok
14:59:57.0451 1692 msiserver - ok
14:59:57.0500 1692 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
14:59:57.0503 1692 MSKSSRV - ok
14:59:57.0546 1692 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
14:59:57.0548 1692 MSPCLOCK - ok
14:59:57.0572 1692 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
14:59:57.0574 1692 MSPQM - ok
14:59:57.0623 1692 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
14:59:57.0628 1692 MsRPC - ok
14:59:57.0657 1692 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
14:59:57.0660 1692 mssmbios - ok
14:59:57.0674 1692 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
14:59:57.0677 1692 MSTEE - ok
14:59:57.0698 1692 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
14:59:57.0701 1692 Mup - ok
14:59:57.0766 1692 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
14:59:57.0778 1692 napagent - ok
14:59:57.0848 1692 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
14:59:57.0852 1692 NativeWifiP - ok
14:59:57.0950 1692 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
14:59:57.0964 1692 NDIS - ok
14:59:57.0983 1692 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
14:59:57.0985 1692 NdisTapi - ok
14:59:58.0025 1692 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
14:59:58.0027 1692 Ndisuio - ok
14:59:58.0088 1692 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
14:59:58.0092 1692 NdisWan - ok
14:59:58.0115 1692 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
14:59:58.0116 1692 NDProxy - ok
14:59:58.0127 1692 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
14:59:58.0129 1692 NetBIOS - ok
14:59:58.0182 1692 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
14:59:58.0187 1692 netbt - ok
14:59:58.0231 1692 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
14:59:58.0234 1692 Netlogon - ok
14:59:58.0289 1692 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
14:59:58.0298 1692 Netman - ok
14:59:58.0330 1692 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
14:59:58.0339 1692 netprofm - ok
14:59:58.0404 1692 netr28 (95725c00b580ed75a80e94acbc77cdbc) C:\Windows\system32\DRIVERS\netr28.sys
14:59:58.0417 1692 netr28 - ok
14:59:58.0489 1692 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
14:59:58.0494 1692 NetTcpPortSharing - ok
14:59:58.0524 1692 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
14:59:58.0528 1692 nfrd960 - ok
14:59:58.0574 1692 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
14:59:58.0581 1692 NlaSvc - ok
14:59:58.0627 1692 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
14:59:58.0629 1692 Npfs - ok
14:59:58.0648 1692 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
14:59:58.0654 1692 nsi - ok
14:59:58.0683 1692 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
14:59:58.0685 1692 nsiproxy - ok
14:59:58.0829 1692 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
14:59:58.0860 1692 Ntfs - ok
14:59:58.0906 1692 NTIBackupSvc (a2b6583a5652a385dff5e4f49ad48761) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
14:59:58.0908 1692 NTIBackupSvc - ok
14:59:58.0920 1692 NTIDrvr (2757d2ba59aee155209e24942ab127c9) C:\Windows\system32\DRIVERS\NTIDrvr.sys
14:59:58.0922 1692 NTIDrvr - ok
14:59:59.0045 1692 NTIPPKernel (547bfa3591c70674b0bfc99354ab78b3) C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\NTIPPKernel.sys
14:59:59.0050 1692 NTIPPKernel - ok
14:59:59.0069 1692 NTISchedulerSvc (40b87fe8a1a9a5ac9e5a91d96f212bcd) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
14:59:59.0079 1692 NTISchedulerSvc - ok
14:59:59.0110 1692 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
14:59:59.0112 1692 ntrigdigi - ok
14:59:59.0147 1692 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
14:59:59.0149 1692 Null - ok
14:59:59.0174 1692 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
14:59:59.0179 1692 nvraid - ok
14:59:59.0197 1692 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
14:59:59.0200 1692 nvstor - ok
14:59:59.0228 1692 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
14:59:59.0233 1692 nv_agp - ok
14:59:59.0242 1692 NwlnkFlt - ok
14:59:59.0255 1692 NwlnkFwd - ok
14:59:59.0410 1692 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
14:59:59.0423 1692 odserv - ok
14:59:59.0441 1692 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
14:59:59.0443 1692 ohci1394 - ok
14:59:59.0477 1692 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:59:59.0481 1692 ose - ok
14:59:59.0573 1692 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
14:59:59.0595 1692 p2pimsvc - ok
14:59:59.0613 1692 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
14:59:59.0628 1692 p2psvc - ok
14:59:59.0663 1692 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
14:59:59.0667 1692 Parport - ok
14:59:59.0719 1692 partmgr (b9c2b89f08670e159f7181891e449cd9) C:\Windows\system32\drivers\partmgr.sys
14:59:59.0722 1692 partmgr - ok
14:59:59.0738 1692 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
14:59:59.0739 1692 Parvdm - ok
14:59:59.0764 1692 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
14:59:59.0770 1692 PcaSvc - ok
14:59:59.0819 1692 pccsmcfd (175cc28dcf819f78caa3fbd44ad9e52a) C:\Windows\system32\DRIVERS\pccsmcfd.sys
14:59:59.0821 1692 pccsmcfd - ok
14:59:59.0861 1692 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
14:59:59.0864 1692 pci - ok
14:59:59.0908 1692 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
14:59:59.0910 1692 pciide - ok
14:59:59.0953 1692 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
14:59:59.0959 1692 pcmcia - ok
15:00:00.0069 1692 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
15:00:00.0095 1692 PEAUTH - ok
15:00:00.0316 1692 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
15:00:00.0366 1692 pla - ok
15:00:00.0518 1692 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
15:00:00.0529 1692 PlugPlay - ok
15:00:00.0626 1692 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
15:00:00.0640 1692 PNRPAutoReg - ok
15:00:00.0656 1692 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
15:00:00.0671 1692 PNRPsvc - ok
15:00:00.0720 1692 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
15:00:00.0731 1692 PolicyAgent - ok
15:00:00.0786 1692 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
15:00:00.0789 1692 PptpMiniport - ok
15:00:00.0812 1692 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\DRIVERS\processr.sys
15:00:00.0814 1692 Processor - ok
15:00:00.0874 1692 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
15:00:00.0883 1692 ProfSvc - ok
15:00:00.0912 1692 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
15:00:00.0916 1692 ProtectedStorage - ok
15:00:00.0952 1692 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
15:00:00.0955 1692 PSched - ok
15:00:00.0977 1692 PSDFilter (628321c8dd76ad369b362b202e655a68) C:\Windows\system32\DRIVERS\psdfilter.sys
15:00:00.0980 1692 PSDFilter - ok
15:00:00.0999 1692 PSDNServ (79d7117e62709c7690cf3dd55acead37) C:\Windows\system32\DRIVERS\PSDNServ.sys
15:00:01.0002 1692 PSDNServ - ok
15:00:01.0031 1692 psdvdisk (cae5e82827990cf4bd4a49576bde3a43) C:\Windows\system32\DRIVERS\PSDVdisk.sys
15:00:01.0035 1692 psdvdisk - ok
15:00:01.0132 1692 PSI_SVC_2 (a6a7ad767bf5141665f5c675f671b3e1) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
15:00:01.0138 1692 PSI_SVC_2 - ok
15:00:01.0266 1692 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
15:00:01.0294 1692 ql2300 - ok
15:00:01.0318 1692 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
15:00:01.0322 1692 ql40xx - ok
15:00:01.0380 1692 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
15:00:01.0390 1692 QWAVE - ok
15:00:01.0410 1692 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
15:00:01.0412 1692 QWAVEdrv - ok
15:00:01.0494 1692 RapiMgr (70dbdab246c18b78e2200d6401d038be) C:\Windows\WindowsMobile\rapimgr.dll
15:00:01.0497 1692 RapiMgr - ok
15:00:01.0526 1692 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
15:00:01.0528 1692 RasAcd - ok
15:00:01.0547 1692 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
15:00:01.0555 1692 RasAuto - ok
15:00:01.0579 1692 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
15:00:01.0582 1692 Rasl2tp - ok
15:00:01.0650 1692 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
15:00:01.0661 1692 RasMan - ok
15:00:01.0713 1692 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
15:00:01.0715 1692 RasPppoe - ok
15:00:01.0736 1692 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
15:00:01.0739 1692 RasSstp - ok
15:00:01.0800 1692 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
15:00:01.0807 1692 rdbss - ok
15:00:01.0840 1692 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
15:00:01.0842 1692 RDPCDD - ok
15:00:01.0879 1692 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
15:00:01.0888 1692 rdpdr - ok
15:00:01.0897 1692 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
15:00:01.0899 1692 RDPENCDD - ok
15:00:01.0961 1692 RDPWD (c127ebd5afab31524662c48dfceb773a) C:\Windows\system32\drivers\RDPWD.sys
15:00:01.0967 1692 RDPWD - ok
15:00:02.0013 1692 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
15:00:02.0019 1692 RemoteAccess - ok
15:00:02.0071 1692 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
15:00:02.0080 1692 RemoteRegistry - ok
15:00:02.0173 1692 RichVideo (17e0bef5ca5c9ce52cc8082ac6ebc449) C:\Program Files\Cyberlink\Shared files\RichVideo.exe
15:00:02.0178 1692 RichVideo - ok
15:00:02.0212 1692 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
15:00:02.0216 1692 RpcLocator - ok
15:00:02.0304 1692 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
15:00:02.0318 1692 RpcSs - ok
15:00:02.0353 1692 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
15:00:02.0356 1692 rspndr - ok
15:00:02.0419 1692 RTHDMIAzAudService (5dfaa39d44e2eb090940351a85b891b8) C:\Windows\system32\drivers\RtHDMIV.sys
15:00:02.0423 1692 RTHDMIAzAudService - ok
15:00:02.0481 1692 RTSTOR (b0538dea03e088b80482ca939f4e8740) C:\Windows\system32\drivers\RTSTOR.SYS
15:00:02.0484 1692 RTSTOR - ok
15:00:02.0531 1692 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
15:00:02.0535 1692 SamSs - ok
15:00:02.0567 1692 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
15:00:02.0571 1692 sbp2port - ok
15:00:02.0626 1692 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
15:00:02.0633 1692 SCardSvr - ok
15:00:02.0722 1692 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
15:00:02.0739 1692 Schedule - ok
15:00:02.0763 1692 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
15:00:02.0765 1692 SCPolicySvc - ok
15:00:02.0807 1692 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
15:00:02.0816 1692 SDRSVC - ok
15:00:02.0836 1692 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
15:00:02.0838 1692 secdrv - ok
15:00:02.0863 1692 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
15:00:02.0870 1692 seclogon - ok
15:00:02.0898 1692 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\System32\sens.dll
15:00:02.0904 1692 SENS - ok
15:00:02.0933 1692 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
15:00:02.0936 1692 Serenum - ok
15:00:02.0961 1692 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
15:00:02.0964 1692 Serial - ok
15:00:02.0985 1692 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
15:00:02.0987 1692 sermouse - ok
15:00:03.0132 1692 ServiceLayer (9d38320bb32230349379df5ddbbf7fce) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
15:00:03.0144 1692 ServiceLayer - ok
15:00:03.0209 1692 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
15:00:03.0216 1692 SessionEnv - ok
15:00:03.0237 1692 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
15:00:03.0239 1692 sffdisk - ok
15:00:03.0277 1692 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
15:00:03.0279 1692 sffp_mmc - ok
15:00:03.0299 1692 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
15:00:03.0301 1692 sffp_sd - ok
15:00:03.0316 1692 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
15:00:03.0318 1692 sfloppy - ok
15:00:03.0374 1692 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
15:00:03.0385 1692 SharedAccess - ok
15:00:03.0455 1692 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
15:00:03.0465 1692 ShellHWDetection - ok
15:00:03.0484 1692 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
15:00:03.0488 1692 sisagp - ok
15:00:03.0529 1692 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
15:00:03.0532 1692 SiSRaid2 - ok
15:00:03.0553 1692 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
15:00:03.0557 1692 SiSRaid4 - ok
15:00:03.0868 1692 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
15:00:03.0958 1692 slsvc - ok
15:00:04.0165 1692 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
15:00:04.0173 1692 SLUINotify - ok
15:00:04.0268 1692 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
15:00:04.0271 1692 Smb - ok
15:00:04.0322 1692 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
15:00:04.0329 1692 SNMPTRAP - ok
15:00:04.0344 1692 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
15:00:04.0346 1692 spldr - ok
15:00:04.0383 1692 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
15:00:04.0391 1692 Spooler - ok
15:00:04.0444 1692 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
15:00:04.0453 1692 srv - ok
15:00:04.0493 1692 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
15:00:04.0498 1692 srv2 - ok
15:00:04.0517 1692 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
15:00:04.0521 1692 srvnet - ok
15:00:04.0568 1692 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
15:00:04.0576 1692 SSDPSRV - ok
15:00:04.0628 1692 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\Windows\system32\DRIVERS\ssmdrv.sys
15:00:04.0631 1692 ssmdrv - ok
15:00:04.0674 1692 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
15:00:04.0682 1692 SstpSvc - ok
15:00:04.0750 1692 ss_bbus (eaa66218cd39f5bb1b4853a78c67c787) C:\Windows\system32\DRIVERS\ss_bbus.sys
15:00:04.0755 1692 ss_bbus - ok
15:00:04.0776 1692 ss_bmdfl (91765f99914ed8693d8bc76524f21581) C:\Windows\system32\DRIVERS\ss_bmdfl.sys
15:00:04.0779 1692 ss_bmdfl - ok
15:00:04.0809 1692 ss_bmdm (840e7b738b03c10ee91d9b7d3d6eff15) C:\Windows\system32\DRIVERS\ss_bmdm.sys
15:00:04.0813 1692 ss_bmdm - ok
15:00:04.0898 1692 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
15:00:04.0914 1692 stisvc - ok
15:00:04.0936 1692 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
15:00:04.0938 1692 swenum - ok
15:00:05.0017 1692 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
15:00:05.0030 1692 swprv - ok
15:00:05.0068 1692 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
15:00:05.0072 1692 Symc8xx - ok
15:00:05.0098 1692 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
15:00:05.0101 1692 Sym_hi - ok
15:00:05.0145 1692 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
15:00:05.0148 1692 Sym_u3 - ok
15:00:05.0215 1692 SynTP (4c9bb4b3b9eac26211484c30b914c6dc) C:\Windows\system32\DRIVERS\SynTP.sys
15:00:05.0221 1692 SynTP - ok
15:00:05.0311 1692 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
15:00:05.0328 1692 SysMain - ok
15:00:05.0375 1692 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
15:00:05.0384 1692 TabletInputService - ok
15:00:05.0447 1692 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
15:00:05.0458 1692 TapiSrv - ok
15:00:05.0484 1692 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
15:00:05.0492 1692 TBS - ok
15:00:05.0607 1692 Tcpip (27d470dabc77bc60d0a3b0e4deb6cb91) C:\Windows\system32\drivers\tcpip.sys
15:00:05.0631 1692 Tcpip - ok
15:00:05.0653 1692 Tcpip6 (27d470dabc77bc60d0a3b0e4deb6cb91) C:\Windows\system32\DRIVERS\tcpip.sys
15:00:05.0667 1692 Tcpip6 - ok
15:00:05.0712 1692 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
15:00:05.0715 1692 tcpipreg - ok
15:00:05.0750 1692 TcUsb (72b9e77565da5fa564581976e000d29b) C:\Windows\system32\Drivers\tcusb.sys
15:00:05.0753 1692 TcUsb - ok
15:00:05.0786 1692 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
15:00:05.0789 1692 TDPIPE - ok
15:00:05.0806 1692 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
15:00:05.0810 1692 TDTCP - ok
15:00:05.0855 1692 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
15:00:05.0859 1692 tdx - ok
15:00:05.0907 1692 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
15:00:05.0911 1692 TermDD - ok
15:00:05.0989 1692 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
15:00:06.0005 1692 TermService - ok
15:00:06.0066 1692 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
15:00:06.0076 1692 Themes - ok
15:00:06.0102 1692 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
15:00:06.0106 1692 THREADORDER - ok
15:00:06.0167 1692 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
15:00:06.0175 1692 TrkWks - ok
15:00:06.0249 1692 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
15:00:06.0252 1692 TrustedInstaller - ok
15:00:06.0274 1692 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
15:00:06.0277 1692 tssecsrv - ok
15:00:06.0325 1692 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
15:00:06.0328 1692 tunmp - ok
15:00:06.0359 1692 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
15:00:06.0362 1692 tunnel - ok
15:00:06.0390 1692 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
15:00:06.0393 1692 uagp35 - ok
15:00:06.0413 1692 UBHelper (f763e070843ee2803de1395002b42938) C:\Windows\system32\drivers\UBHelper.sys
15:00:06.0416 1692 UBHelper - ok
15:00:06.0481 1692 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
15:00:06.0489 1692 udfs - ok
15:00:06.0532 1692 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
15:00:06.0540 1692 UI0Detect - ok
15:00:06.0568 1692 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
15:00:06.0572 1692 uliagpkx - ok
15:00:06.0605 1692 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
15:00:06.0613 1692 uliahci - ok
15:00:06.0648 1692 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
15:00:06.0653 1692 UlSata - ok
15:00:06.0686 1692 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
15:00:06.0691 1692 ulsata2 - ok
15:00:06.0711 1692 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
15:00:06.0714 1692 umbus - ok
15:00:06.0752 1692 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
15:00:06.0764 1692 upnphost - ok
15:00:06.0814 1692 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
15:00:06.0819 1692 usbaudio - ok
15:00:06.0867 1692 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
15:00:06.0872 1692 usbccgp - ok
15:00:06.0902 1692 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
15:00:06.0906 1692 usbcir - ok
15:00:06.0941 1692 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
15:00:06.0943 1692 usbehci - ok
15:00:06.0989 1692 usbfilter (edca5124b54bcf04e5c0538aa397a9c1) C:\Windows\system32\DRIVERS\usbfilter.sys
15:00:06.0992 1692 usbfilter - ok
15:00:07.0031 1692 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
15:00:07.0038 1692 usbhub - ok
15:00:07.0065 1692 usbohci (ce697fee0d479290d89bec80dfe793b7) C:\Windows\system32\DRIVERS\usbohci.sys
15:00:07.0068 1692 usbohci - ok
15:00:07.0105 1692 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
15:00:07.0108 1692 usbprint - ok
15:00:07.0178 1692 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
15:00:07.0182 1692 usbscan - ok
15:00:07.0205 1692 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:00:07.0209 1692 USBSTOR - ok
15:00:07.0246 1692 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
15:00:07.0249 1692 usbuhci - ok
15:00:07.0281 1692 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
15:00:07.0286 1692 usbvideo - ok
15:00:07.0336 1692 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
15:00:07.0343 1692 UxSms - ok
15:00:07.0420 1692 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
15:00:07.0435 1692 vds - ok
15:00:07.0445 1692 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
15:00:07.0448 1692 vga - ok
15:00:07.0472 1692 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
15:00:07.0475 1692 VgaSave - ok
15:00:07.0512 1692 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
15:00:07.0516 1692 viaagp - ok
15:00:07.0536 1692 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
15:00:07.0539 1692 ViaC7 - ok
15:00:07.0561 1692 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
15:00:07.0564 1692 viaide - ok
15:00:07.0670 1692 VMCService (6e021d6da429ad7288fe8322e2bba96b) C:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe
15:00:07.0672 1692 VMCService - ok
15:00:07.0692 1692 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
15:00:07.0696 1692 volmgr - ok
15:00:07.0763 1692 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
15:00:07.0773 1692 volmgrx - ok
15:00:07.0832 1692 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
15:00:07.0840 1692 volsnap - ok
15:00:07.0864 1692 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
15:00:07.0869 1692 vsmraid - ok
15:00:08.0018 1692 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
15:00:08.0044 1692 VSS - ok
15:00:08.0110 1692 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
15:00:08.0122 1692 W32Time - ok
15:00:08.0199 1692 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
15:00:08.0202 1692 WacomPen - ok
15:00:08.0227 1692 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
15:00:08.0229 1692 Wanarp - ok
15:00:08.0237 1692 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
15:00:08.0239 1692 Wanarpv6 - ok
15:00:08.0327 1692 WcesComm (779f9c90d3fe9c70b6ffd8ef035f3e83) C:\Windows\WindowsMobile\wcescomm.dll
15:00:08.0334 1692 WcesComm - ok
15:00:08.0408 1692 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
15:00:08.0423 1692 wcncsvc - ok
15:00:08.0451 1692 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
15:00:08.0459 1692 WcsPlugInService - ok
15:00:08.0478 1692 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
15:00:08.0482 1692 Wd - ok
15:00:08.0561 1692 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
15:00:08.0575 1692 Wdf01000 - ok
15:00:08.0614 1692 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
15:00:08.0622 1692 WdiServiceHost - ok
15:00:08.0629 1692 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
15:00:08.0637 1692 WdiSystemHost - ok
15:00:08.0695 1692 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
15:00:08.0706 1692 WebClient - ok
15:00:08.0753 1692 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
15:00:08.0762 1692 Wecsvc - ok
15:00:08.0785 1692 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
15:00:08.0793 1692 wercplsupport - ok
15:00:08.0848 1692 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
15:00:08.0857 1692 WerSvc - ok
15:00:08.0890 1692 winbondcir (3fa87d56769838aac82fafc3e78fc732) C:\Windows\system32\DRIVERS\winbondcir.sys
15:00:08.0894 1692 winbondcir - ok
15:00:08.0964 1692 WinDefend (4575aa12561c5648483403541d0d7f2b) C:\Program Files\Windows Defender\mpsvc.dll
15:00:08.0970 1692 WinDefend - ok
15:00:08.0984 1692 WinHttpAutoProxySvc - ok
15:00:09.0057 1692 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
15:00:09.0061 1692 Winmgmt - ok
15:00:09.0210 1692 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
15:00:09.0246 1692 WinRM - ok
15:00:09.0318 1692 winusb (676f4b665bdd8053eaa53ac1695b8074) C:\Windows\system32\DRIVERS\winusb.sys
15:00:09.0322 1692 winusb - ok
15:00:09.0407 1692 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
15:00:09.0427 1692 Wlansvc - ok
15:00:09.0459 1692 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
15:00:09.0462 1692 WmiAcpi - ok
15:00:09.0565 1692 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
15:00:09.0569 1692 wmiApSrv - ok
15:00:09.0700 1692 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
15:00:09.0718 1692 WMPNetworkSvc - ok
15:00:09.0785 1692 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
15:00:09.0795 1692 WPCSvc - ok
15:00:09.0854 1692 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
15:00:09.0862 1692 WPDBusEnum - ok
15:00:09.0939 1692 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
15:00:09.0943 1692 WpdUsb - ok
15:00:10.0114 1692 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
15:00:10.0133 1692 WPFFontCache_v0400 - ok
15:00:10.0180 1692 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
15:00:10.0184 1692 ws2ifsl - ok
15:00:10.0227 1692 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\System32\wscsvc.dll
15:00:10.0235 1692 wscsvc - ok
15:00:10.0245 1692 WSearch - ok
15:00:10.0450 1692 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) C:\Windows\system32\wuaueng.dll
15:00:10.0504 1692 wuauserv - ok
15:00:10.0661 1692 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
15:00:10.0666 1692 WUDFRd - ok
15:00:10.0693 1692 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
15:00:10.0701 1692 wudfsvc - ok
15:00:10.0816 1692 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796} (74ec37b9eaf9fca015b933a526825c7a) C:\Program Files\Acer Arcade Deluxe\PlayMovie\000.fcl
15:00:10.0820 1692 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796} - ok
15:00:10.0847 1692 MBR (0x1B8) (bb9d3a6a13c5010348da7c900bb6af50) \Device\Harddisk0\DR0
15:00:12.0283 1692 \Device\Harddisk0\DR0 - ok
15:00:12.0291 1692 Boot (0x1200) (ebbdc6b35b34f987926566bc737f7258) \Device\Harddisk0\DR0\Partition0
15:00:12.0297 1692 \Device\Harddisk0\DR0\Partition0 - ok
15:00:12.0341 1692 Boot (0x1200) (bb0a045c730672778db22fa949fde453) \Device\Harddisk0\DR0\Partition1
15:00:12.0344 1692 \Device\Harddisk0\DR0\Partition1 - ok
15:00:12.0345 1692 ============================================================
15:00:12.0345 1692 Scan finished
15:00:12.0345 1692 ============================================================
15:00:12.0375 4592 Detected object count: 0
15:00:12.0376 4592 Actual detected object count: 0
15:01:29.0719 0252 ============================================================
15:01:29.0720 0252 Scan started
15:01:29.0720 0252 Mode: Manual; SigCheck; TDLFS;
15:01:29.0720 0252 ============================================================
15:01:30.0050 0252 ACDaemon (adc420616c501b45d26c0fd3ef1e54e4) C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
15:01:30.0303 0252 ACDaemon - ok
15:01:30.0376 0252 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
15:01:30.0419 0252 ACPI - ok
15:01:30.0486 0252 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
15:01:30.0536 0252 adp94xx - ok
15:01:30.0576 0252 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
15:01:30.0616 0252 adpahci - ok
15:01:30.0646 0252 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
15:01:30.0679 0252 adpu160m - ok
15:01:30.0711 0252 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
15:01:30.0745 0252 adpu320 - ok
15:01:30.0778 0252 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
15:01:30.0945 0252 AeLookupSvc - ok
15:01:30.0995 0252 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
15:01:31.0064 0252 AFD - ok
15:01:31.0091 0252 AgereModemAudio (efbc44fbd75e4f80bd927aebf6e7eade) C:\Windows\system32\agrsmsvc.exe
15:01:31.0170 0252 AgereModemAudio - ok
15:01:31.0292 0252 AgereSoftModem (1cfeba39fc613e45b49d3eddfbcda289) C:\Windows\system32\DRIVERS\AGRSM.sys
15:01:31.0429 0252 AgereSoftModem - ok
15:01:31.0450 0252 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
15:01:31.0480 0252 agp440 - ok
15:01:31.0540 0252 ahcix86s (9879ff9f6a04d660bc245788e1881b00) C:\Windows\system32\DRIVERS\ahcix86s.sys
15:01:31.0569 0252 ahcix86s - ok
15:01:31.0600 0252 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
15:01:31.0631 0252 aic78xx - ok
15:01:31.0663 0252 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
15:01:31.0797 0252 ALG - ok
15:01:31.0816 0252 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
15:01:31.0844 0252 aliide - ok
15:01:31.0865 0252 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
15:01:31.0895 0252 amdagp - ok
15:01:31.0922 0252 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
15:01:31.0951 0252 amdide - ok
15:01:31.0972 0252 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
15:01:32.0054 0252 AmdK7 - ok
15:01:32.0075 0252 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
15:01:32.0157 0252 AmdK8 - ok
15:01:32.0265 0252 AntiVirSchedulerService (466a0d95960dad3222c896d2cea99993) C:\Program Files\Avira\AntiVir Desktop\sched.exe
15:01:32.0295 0252 AntiVirSchedulerService - ok
15:01:32.0326 0252 AntiVirService (a489be6bb0aa1ff406b488b60542314b) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
15:01:32.0353 0252 AntiVirService - ok
15:01:32.0403 0252 AnyDVD (7a7a9f83fa3572448111886e34ca8565) C:\Windows\system32\Drivers\AnyDVD.sys
15:01:32.0432 0252 AnyDVD - ok
15:01:32.0459 0252 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
15:01:32.0523 0252 Appinfo - ok
15:01:32.0546 0252 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
15:01:32.0577 0252 arc - ok
15:01:32.0617 0252 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
15:01:32.0647 0252 arcsas - ok
15:01:32.0672 0252 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
15:01:32.0752 0252 AsyncMac - ok
15:01:32.0801 0252 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
15:01:32.0831 0252 atapi - ok
15:01:32.0952 0252 athr (f32fee7cb2ee32c1f808409bc8019701) C:\Windows\system32\DRIVERS\athr.sys
15:01:33.0125 0252 athr - ok
15:01:33.0206 0252 Ati External Event Utility (37c62d0a9249d286fc133e7c3f55a81c) C:\Windows\system32\Ati2evxx.exe
15:01:33.0291 0252 Ati External Event Utility - ok
15:01:33.0657 0252 atikmdag (dde8884695e4d34cc4573d8707aeff95) C:\Windows\system32\DRIVERS\atikmdag.sys
15:01:33.0842 0252 atikmdag - ok
15:01:33.0982 0252 AtiPcie (5a1465ad2e7c1bc39cda12a355329096) C:\Windows\system32\DRIVERS\AtiPcie.sys
15:01:34.0006 0252 AtiPcie - ok
15:01:34.0078 0252 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
15:01:34.0152 0252 AudioEndpointBuilder - ok
15:01:34.0163 0252 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
15:01:34.0217 0252 Audiosrv - ok
15:01:34.0327 0252 avgntflt (d5541f0afb767e85fc412fc609d96a74) C:\Windows\system32\DRIVERS\avgntflt.sys
15:01:34.0355 0252 avgntflt - ok
15:01:34.0387 0252 avipbb (7d967a682d4694df7fa57d63a2db01fe) C:\Windows\system32\DRIVERS\avipbb.sys
15:01:34.0419 0252 avipbb - ok
15:01:34.0440 0252 avkmgr (271cfd1a989209b1964e24d969552bf7) C:\Windows\system32\DRIVERS\avkmgr.sys
15:01:34.0466 0252 avkmgr - ok
15:01:34.0501 0252 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
15:01:34.0580 0252 Beep - ok
15:01:34.0638 0252 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
15:01:34.0753 0252 BFE - ok
15:01:34.0862 0252 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\System32\qmgr.dll
15:01:34.0954 0252 BITS - ok
15:01:34.0979 0252 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
15:01:35.0058 0252 blbdrive - ok
15:01:35.0088 0252 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
15:01:35.0164 0252 bowser - ok
15:01:35.0195 0252 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
15:01:35.0250 0252 BrFiltLo - ok
15:01:35.0273 0252 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
15:01:35.0337 0252 BrFiltUp - ok
15:01:35.0376 0252 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
15:01:35.0451 0252 Browser - ok
15:01:35.0478 0252 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
15:01:35.0725 0252 Brserid - ok
15:01:35.0768 0252 BrSerIf (1a5fc78e41840edf79d65ec16eff2787) C:\Windows\system32\Drivers\BrSerIf.sys
15:01:35.0837 0252 BrSerIf - ok
15:01:35.0863 0252 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
15:01:35.0982 0252 BrSerWdm - ok
15:01:36.0003 0252 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
15:01:36.0110 0252 BrUsbMdm - ok
15:01:36.0120 0252 BrUsbSer (a24c7b39602218f8dbdb2b6704325fc7) C:\Windows\system32\Drivers\BrUsbSer.sys
15:01:36.0165 0252 BrUsbSer - ok
15:01:36.0196 0252 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
15:01:36.0319 0252 BTHMODEM - ok
15:01:36.0374 0252 BUNAgentSvc (09e6affae6c0e9158bf05c7d08d0107a) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
15:01:36.0398 0252 BUNAgentSvc ( UnsignedFile.Multi.Generic ) - warning
15:01:36.0398 0252 BUNAgentSvc - detected UnsignedFile.Multi.Generic (1)
15:01:36.0423 0252 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
15:01:36.0484 0252 cdfs - ok
15:01:36.0537 0252 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
15:01:36.0601 0252 cdrom - ok
15:01:36.0646 0252 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
15:01:36.0703 0252 CertPropSvc - ok
15:01:36.0726 0252 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\DRIVERS\circlass.sys
15:01:36.0799 0252 circlass - ok
15:01:36.0865 0252 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
15:01:36.0911 0252 CLFS - ok
15:01:36.0987 0252 CLHNService (1a05e1af359d8e961279f1eea30a91ee) C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe
15:01:37.0012 0252 CLHNService - ok
15:01:37.0078 0252 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:01:37.0106 0252 clr_optimization_v2.0.50727_32 - ok
15:01:37.0175 0252 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:01:37.0205 0252 clr_optimization_v4.0.30319_32 - ok
15:01:37.0229 0252 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
15:01:37.0301 0252 CmBatt - ok
15:01:37.0317 0252 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
15:01:37.0352 0252 cmdide - ok
15:01:37.0376 0252 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
15:01:37.0405 0252 Compbatt - ok
15:01:37.0412 0252 COMSysApp - ok
15:01:37.0429 0252 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
15:01:37.0459 0252 crcdisk - ok
15:01:37.0483 0252 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
15:01:37.0561 0252 Crusoe - ok
15:01:37.0614 0252 CryptSvc (75c6a297e364014840b48eccd7525e30) C:\Windows\system32\cryptsvc.dll
15:01:37.0679 0252 CryptSvc - ok
15:01:37.0802 0252 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
15:01:37.0919 0252 DcomLaunch - ok
15:01:37.0971 0252 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
15:01:38.0041 0252 DfsC - ok
15:01:38.0308 0252 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
15:01:38.0465 0252 DFSR - ok
15:01:39.0436 0252 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
15:01:39.0520 0252 Dhcp - ok
15:01:39.0673 0252 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
15:01:39.0704 0252 disk - ok
15:01:39.0780 0252 DKbFltr (73baf270d24fe726b9cd7f80bb17a23d) C:\Windows\system32\DRIVERS\DKbFltr.sys
15:01:39.0805 0252 DKbFltr - ok
15:01:39.0934 0252 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
15:01:40.0020 0252 Dnscache - ok
15:01:40.0076 0252 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
15:01:40.0146 0252 dot3svc - ok
15:01:40.0217 0252 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
15:01:40.0299 0252 DPS - ok
15:01:40.0345 0252 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
15:01:40.0422 0252 drmkaud - ok
15:01:41.0361 0252 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
15:01:41.0408 0252 DXGKrnl - ok
15:01:41.0657 0252 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
15:01:41.0735 0252 E1G60 - ok
15:01:41.0938 0252 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
15:01:42.0001 0252 EapHost - ok
15:01:42.0047 0252 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
15:01:42.0079 0252 Ecache - ok
15:01:42.0562 0252 eDataSecurity Service (b1f2503e23425b386df0f3413b2596f3) C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
15:01:42.0609 0252 eDataSecurity Service - ok
15:01:42.0874 0252 ehRecvr (9be3744d295a7701eb425332014f0797) C:\Windows\ehome\ehRecvr.exe
15:01:42.0921 0252 ehRecvr - ok
15:01:42.0968 0252 ehSched (ad1870c8e5d6dd340c829e6074bf3c3f) C:\Windows\ehome\ehsched.exe
15:01:43.0030 0252 ehSched - ok
15:01:43.0061 0252 ehstart (c27c4ee8926e74aa72efcab24c5242c3) C:\Windows\ehome\ehstart.dll
15:01:43.0093 0252 ehstart - ok
15:01:43.0124 0252 ElbyCDFL (ce37e3d51912e59c80c6d84337c0b4cd) C:\Windows\system32\Drivers\ElbyCDFL.sys
15:01:43.0155 0252 ElbyCDFL - ok
15:01:43.0249 0252 ElbyCDIO (027319ab8628d3ae07ff3b5a40fab62f) C:\Windows\system32\Drivers\ElbyCDIO.sys
15:01:43.0280 0252 ElbyCDIO - ok
15:01:43.0545 0252 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
15:01:43.0592 0252 elxstor - ok
15:01:43.0717 0252 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
15:01:43.0873 0252 EMDMgmt - ok
15:01:43.0888 0252 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
15:01:43.0951 0252 ErrDev - ok
15:01:44.0107 0252 ETService (27d2754314d12eb27d81d462fd0d86c0) C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
15:01:44.0138 0252 ETService ( UnsignedFile.Multi.Generic ) - warning
15:01:44.0138 0252 ETService - detected UnsignedFile.Multi.Generic (1)
15:01:44.0294 0252 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
15:01:44.0341 0252 EventSystem - ok
15:01:44.0403 0252 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
15:01:44.0465 0252 exfat - ok
15:01:44.0512 0252 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
15:01:44.0575 0252 fastfat - ok
15:01:44.0606 0252 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
15:01:44.0684 0252 fdc - ok
15:01:44.0699 0252 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
15:01:44.0762 0252 fdPHost - ok
15:01:44.0777 0252 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
15:01:44.0887 0252 FDResPub - ok
15:01:44.0902 0252 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
15:01:44.0933 0252 FileInfo - ok
15:01:44.0965 0252 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
15:01:45.0027 0252 Filetrace - ok
15:01:45.0043 0252 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
15:01:45.0121 0252 flpydisk - ok
15:01:45.0277 0252 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
15:01:45.0339 0252 FltMgr - ok
15:01:45.0479 0252 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
15:01:45.0604 0252 FontCache - ok
15:01:45.0760 0252 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
15:01:45.0807 0252 FontCache3.0.0.0 - ok
15:01:45.0869 0252 FsUsbExDisk (790a4ca68f44be35967b3df61f3e4675) C:\Windows\system32\FsUsbExDisk.SYS
15:01:45.0885 0252 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - warning
15:01:45.0885 0252 FsUsbExDisk - detected UnsignedFile.Multi.Generic (1)
15:01:45.0932 0252 FsUsbExService (d3f9205cc4cb07553f2f9472c767ea87) C:\Windows\system32\FsUsbExService.Exe
15:01:45.0947 0252 FsUsbExService ( UnsignedFile.Multi.Generic ) - warning
15:01:45.0947 0252 FsUsbExService - detected UnsignedFile.Multi.Generic (1)
15:01:46.0025 0252 Fs_Rec (b972a66758577e0bfd1de0f91aaa27b5) C:\Windows\system32\drivers\Fs_Rec.sys
15:01:46.0088 0252 Fs_Rec - ok
15:01:46.0103 0252 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
15:01:46.0135 0252 gagp30kx - ok
15:01:46.0213 0252 getPlusHelper (fd7e9aba274df75e08320420b8e9a1d5) C:\Program Files\NOS\bin\getPlus_Helper.dll
15:01:46.0244 0252 getPlusHelper - ok
15:01:46.0369 0252 GoogleDesktopManager-080708-050100 (6fd7f370817f16b5e1f08b91badaa2ee) C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
15:01:46.0400 0252 GoogleDesktopManager-080708-050100 ( UnsignedFile.Multi.Generic ) - warning
15:01:46.0400 0252 GoogleDesktopManager-080708-050100 - detected UnsignedFile.Multi.Generic (1)
15:01:47.0008 0252 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
15:01:47.0133 0252 gpsvc - ok
15:01:47.0289 0252 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
15:01:47.0414 0252 HdAudAddService - ok
15:01:47.0882 0252 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
15:01:48.0007 0252 HDAudBus - ok
15:01:48.0038 0252 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
15:01:48.0163 0252 HidBth - ok
15:01:48.0209 0252 HidIr (d8df3722d5e961baa1292aa2f12827e2) C:\Windows\system32\DRIVERS\hidir.sys
15:01:48.0287 0252 HidIr - ok
15:01:48.0397 0252 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\system32\hidserv.dll
15:01:48.0443 0252 hidserv - ok
15:01:48.0490 0252 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
15:01:48.0553 0252 HidUsb - ok
15:01:48.0724 0252 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
15:01:48.0802 0252 hkmsvc - ok
15:01:48.0880 0252 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
15:01:48.0927 0252 HpCISSs - ok
15:01:49.0239 0252 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
15:01:49.0301 0252 HTTP - ok
15:01:49.0317 0252 hwdatacard - ok
15:01:49.0442 0252 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
15:01:49.0473 0252 i2omp - ok
15:01:49.0504 0252 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
15:01:49.0567 0252 i8042prt - ok
15:01:49.0738 0252 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
15:01:49.0785 0252 iaStorV - ok
15:01:50.0019 0252 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
15:01:50.0035 0252 IDriverT ( UnsignedFile.Multi.Generic ) - warning
15:01:50.0035 0252 IDriverT - detected UnsignedFile.Multi.Generic (1)
15:01:50.0331 0252 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
15:01:50.0425 0252 idsvc - ok
15:01:50.0456 0252 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
15:01:50.0471 0252 iirsp - ok
15:01:50.0705 0252 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
15:01:50.0783 0252 IKEEXT - ok
15:01:50.0830 0252 int15 (4d8d5b1c895ea0f2a721b98a7ce198f1) C:\Windows\system32\drivers\int15.sys
15:01:50.0861 0252 int15 ( UnsignedFile.Multi.Generic ) - warning
15:01:50.0861 0252 int15 - detected UnsignedFile.Multi.Generic (1)
15:01:51.0751 0252 IntcAzAudAddService (febdd0310fba3da13f56ede2e9f7b5dc) C:\Windows\system32\drivers\RTKVHDA.sys
15:01:51.0875 0252 IntcAzAudAddService - ok
15:01:52.0187 0252 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
15:01:52.0219 0252 intelide - ok
15:01:52.0265 0252 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
15:01:52.0328 0252 intelppm - ok
15:01:52.0390 0252 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
15:01:52.0453 0252 IPBusEnum - ok
15:01:52.0562 0252 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:01:52.0640 0252 IpFilterDriver - ok
15:01:52.0967 0252 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
15:01:53.0030 0252 iphlpsvc - ok
15:01:53.0045 0252 IpInIp - ok
15:01:53.0077 0252 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
15:01:53.0170 0252 IPMIDRV - ok
15:01:53.0186 0252 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
15:01:53.0264 0252 IPNAT - ok
15:01:53.0326 0252 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
15:01:53.0435 0252 IRENUM - ok
15:01:53.0451 0252 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
15:01:53.0482 0252 isapnp - ok
15:01:53.0685 0252 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
15:01:53.0716 0252 iScsiPrt - ok
15:01:53.0747 0252 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
15:01:53.0779 0252 iteatapi - ok
15:01:53.0872 0252 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
15:01:53.0903 0252 iteraid - ok
15:01:54.0059 0252 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
15:01:54.0075 0252 kbdclass - ok
15:01:54.0153 0252 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
15:01:54.0184 0252 kbdhid - ok
15:01:54.0247 0252 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
15:01:54.0325 0252 KeyIso - ok
15:01:54.0387 0252 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
15:01:54.0434 0252 KSecDD - ok
15:01:54.0933 0252 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
15:01:55.0042 0252 KtmRm - ok
15:01:55.0105 0252 L1E (0ebce7560b5f4b52762c39c39f9dec57) C:\Windows\system32\DRIVERS\L1E60x86.sys
15:01:55.0183 0252 L1E - ok
15:01:55.0245 0252 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\system32\srvsvc.dll
15:01:55.0339 0252 LanmanServer - ok
15:01:55.0541 0252 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
15:01:55.0635 0252 LanmanWorkstation - ok
15:01:55.0994 0252 Lavasoft Ad-Aware Service (ed60ffd305ac0424920d146db9f9ed78) C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
15:01:56.0150 0252 Lavasoft Ad-Aware Service - ok
15:01:56.0243 0252 Lavasoft Kernexplorer (6c4a3804510ad8e0f0c07b5be3d44ddb) C:\Program Files\Lavasoft\Ad-Aware\KernExplorer.sys
15:01:56.0259 0252 Lavasoft Kernexplorer - ok
15:01:56.0399 0252 Lbd (336abe8721cbc3110f1c6426da633417) C:\Windows\system32\DRIVERS\Lbd.sys
15:01:56.0431 0252 Lbd - ok
15:01:56.0493 0252 LightScribeService (793ff718477345cd5d232c50bed1e452) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
15:01:56.0509 0252 LightScribeService ( UnsignedFile.Multi.Generic ) - warning
15:01:56.0509 0252 LightScribeService - detected UnsignedFile.Multi.Generic (1)
15:01:56.0524 0252 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
15:01:56.0587 0252 lltdio - ok
15:01:56.0633 0252 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
15:01:56.0696 0252 lltdsvc - ok
15:01:56.0727 0252 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
15:01:56.0852 0252 lmhosts - ok
15:01:56.0883 0252 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
15:01:56.0914 0252 LSI_FC - ok
15:01:56.0930 0252 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
15:01:56.0977 0252 LSI_SAS - ok
15:01:57.0008 0252 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
15:01:57.0039 0252 LSI_SCSI - ok
15:01:57.0055 0252 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
15:01:57.0117 0252 luafv - ok
15:01:57.0148 0252 Mcx2Svc (aef9babb8a506bc4ce0451a64aaded46) C:\Windows\system32\Mcx2Svc.dll
15:01:57.0179 0252 Mcx2Svc - ok
15:01:57.0211 0252 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
15:01:57.0226 0252 megasas - ok
15:01:57.0289 0252 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
15:01:57.0335 0252 MegaSR - ok
15:01:57.0351 0252 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
15:01:57.0429 0252 MMCSS - ok
15:01:57.0460 0252 MobilityService - ok
15:01:57.0491 0252 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
15:01:57.0554 0252 Modem - ok
15:01:57.0569 0252 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
15:01:57.0632 0252 monitor - ok
15:01:57.0663 0252 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
15:01:57.0694 0252 mouclass - ok
15:01:57.0710 0252 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
15:01:57.0772 0252 mouhid - ok
15:01:57.0803 0252 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
15:01:57.0835 0252 MountMgr - ok
15:01:57.0913 0252 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
15:01:57.0944 0252 MozillaMaintenance - ok
15:01:57.0975 0252 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
15:01:58.0006 0252 mpio - ok
15:01:58.0037 0252 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
15:01:58.0084 0252 mpsdrv - ok
15:01:58.0147 0252 MpsSvc (5de62c6e9108f14f6794060a9bdecaec) C:\Windows\system32\mpssvc.dll
15:01:58.0240 0252 MpsSvc - ok
15:01:58.0271 0252 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
15:01:58.0287 0252 Mraid35x - ok
15:01:58.0349 0252 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
15:01:58.0381 0252 MRxDAV - ok
15:01:58.0412 0252 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
15:01:58.0474 0252 mrxsmb - ok
15:01:58.0521 0252 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:01:58.0552 0252 mrxsmb10 - ok
15:01:58.0568 0252 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:01:58.0599 0252 mrxsmb20 - ok
15:01:58.0630 0252 msahci (f70590424eefbf5c27a40c67afdb8383) C:\Windows\system32\drivers\msahci.sys
15:01:58.0661 0252 msahci - ok
15:01:58.0677 0252 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
15:01:58.0708 0252 msdsm - ok
15:01:58.0911 0252 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
15:01:58.0989 0252 MSDTC - ok
15:01:59.0020 0252 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
15:01:59.0098 0252 Msfs - ok
15:01:59.0114 0252 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
15:01:59.0145 0252 msisadrv - ok
15:01:59.0192 0252 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
15:01:59.0254 0252 MSiSCSI - ok
15:01:59.0254 0252 msiserver - ok
15:01:59.0285 0252 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
15:01:59.0363 0252 MSKSSRV - ok
15:01:59.0379 0252 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
15:01:59.0457 0252 MSPCLOCK - ok
15:01:59.0473 0252 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
15:01:59.0551 0252 MSPQM - ok
15:01:59.0597 0252 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
15:01:59.0629 0252 MsRPC - ok
15:01:59.0660 0252 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
15:01:59.0675 0252 mssmbios - ok
15:01:59.0691 0252 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
15:01:59.0753 0252 MSTEE - ok
15:01:59.0769 0252 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
15:01:59.0800 0252 Mup - ok
15:01:59.0863 0252 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
15:01:59.0941 0252 napagent - ok
15:01:59.0987 0252 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
15:02:00.0034 0252 NativeWifiP - ok
15:02:00.0112 0252 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
15:02:00.0159 0252 NDIS - ok
15:02:00.0190 0252 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
15:02:00.0237 0252 NdisTapi - ok
15:02:00.0284 0252 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
15:02:00.0331 0252 Ndisuio - ok
15:02:00.0377 0252 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
15:02:00.0424 0252 NdisWan - ok
15:02:00.0455 0252 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
15:02:00.0502 0252 NDProxy - ok
15:02:00.0533 0252 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
15:02:00.0611 0252 NetBIOS - ok
15:02:00.0658 0252 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
15:02:00.0721 0252 netbt - ok
15:02:00.0767 0252 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
15:02:00.0783 0252 Netlogon - ok
15:02:00.0845 0252 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
15:02:00.0908 0252 Netman - ok
15:02:00.0955 0252 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
15:02:01.0033 0252 netprofm - ok
15:02:01.0095 0252 netr28 (95725c00b580ed75a80e94acbc77cdbc) C:\Windows\system32\DRIVERS\netr28.sys
15:02:01.0173 0252 netr28 - ok
15:02:01.0235 0252 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
15:02:01.0267 0252 NetTcpPortSharing - ok
15:02:01.0298 0252 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
15:02:01.0329 0252 nfrd960 - ok
15:02:01.0376 0252 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
15:02:01.0438 0252 NlaSvc - ok
15:02:01.0501 0252 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
15:02:01.0547 0252 Npfs - ok
15:02:01.0563 0252 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
15:02:01.0641 0252 nsi - ok
15:02:01.0672 0252 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
15:02:01.0750 0252 nsiproxy - ok
15:02:01.0875 0252 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
15:02:01.0984 0252 Ntfs - ok
15:02:02.0031 0252 NTIBackupSvc (a2b6583a5652a385dff5e4f49ad48761) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
15:02:02.0047 0252 NTIBackupSvc ( UnsignedFile.Multi.Generic ) - warning
15:02:02.0047 0252 NTIBackupSvc - detected UnsignedFile.Multi.Generic (1)
15:02:02.0062 0252 NTIDrvr (2757d2ba59aee155209e24942ab127c9) C:\Windows\system32\DRIVERS\NTIDrvr.sys
15:02:02.0078 0252 NTIDrvr - ok
15:02:02.0203 0252 NTIPPKernel (547bfa3591c70674b0bfc99354ab78b3) C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\NTIPPKernel.sys
15:02:02.0234 0252 NTIPPKernel ( UnsignedFile.Multi.Generic ) - warning
15:02:02.0234 0252 NTIPPKernel - detected UnsignedFile.Multi.Generic (1)
15:02:02.0249 0252 NTISchedulerSvc (40b87fe8a1a9a5ac9e5a91d96f212bcd) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
15:02:02.0281 0252 NTISchedulerSvc ( UnsignedFile.Multi.Generic ) - warning
15:02:02.0281 0252 NTISchedulerSvc - detected UnsignedFile.Multi.Generic (1)
15:02:02.0312 0252 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
15:02:02.0437 0252 ntrigdigi - ok
15:02:02.0452 0252 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
15:02:02.0515 0252 Null - ok
15:02:02.0530 0252 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
15:02:02.0561 0252 nvraid - ok
15:02:02.0593 0252 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
15:02:02.0624 0252 nvstor - ok
15:02:02.0639 0252 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
15:02:02.0671 0252 nv_agp - ok
15:02:02.0686 0252 NwlnkFlt - ok
15:02:02.0702 0252 NwlnkFwd - ok
15:02:02.0842 0252 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
15:02:02.0889 0252 odserv - ok
15:02:02.0905 0252 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
15:02:03.0014 0252 ohci1394 - ok
15:02:03.0045 0252 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:02:03.0076 0252 ose - ok
15:02:03.0185 0252 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
15:02:03.0248 0252 p2pimsvc - ok
15:02:03.0263 0252 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
15:02:03.0341 0252 p2psvc - ok
15:02:03.0388 0252 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
15:02:03.0513 0252 Parport - ok
15:02:03.0560 0252 partmgr (b9c2b89f08670e159f7181891e449cd9) C:\Windows\system32\drivers\partmgr.sys
15:02:03.0591 0252 partmgr - ok
15:02:03.0607 0252 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
15:02:03.0716 0252 Parvdm - ok
15:02:03.0747 0252 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
15:02:03.0794 0252 PcaSvc - ok
15:02:03.0841 0252 pccsmcfd (175cc28dcf819f78caa3fbd44ad9e52a) C:\Windows\system32\DRIVERS\pccsmcfd.sys
15:02:03.0887 0252 pccsmcfd - ok
15:02:03.0950 0252 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
15:02:03.0981 0252 pci - ok
15:02:03.0997 0252 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
15:02:04.0028 0252 pciide - ok
15:02:04.0059 0252 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
15:02:04.0090 0252 pcmcia - ok
15:02:04.0184 0252 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
15:02:04.0340 0252 PEAUTH - ok
15:02:04.0511 0252 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
15:02:04.0667 0252 pla - ok
15:02:04.0808 0252 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
15:02:04.0886 0252 PlugPlay - ok
15:02:04.0979 0252 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
15:02:05.0057 0252 PNRPAutoReg - ok
15:02:05.0073 0252 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
15:02:05.0135 0252 PNRPsvc - ok
15:02:05.0182 0252 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
15:02:05.0260 0252 PolicyAgent - ok
15:02:05.0323 0252 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
15:02:05.0385 0252 PptpMiniport - ok
15:02:05.0416 0252 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\DRIVERS\processr.sys
15:02:05.0479 0252 Processor - ok
15:02:05.0541 0252 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
15:02:05.0603 0252 ProfSvc - ok
15:02:05.0635 0252 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
15:02:05.0666 0252 ProtectedStorage - ok
15:02:05.0697 0252 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
15:02:05.0759 0252 PSched - ok
15:02:05.0791 0252 PSDFilter (628321c8dd76ad369b362b202e655a68) C:\Windows\system32\DRIVERS\psdfilter.sys
15:02:05.0806 0252 PSDFilter - ok
15:02:05.0822 0252 PSDNServ (79d7117e62709c7690cf3dd55acead37) C:\Windows\system32\DRIVERS\PSDNServ.sys
15:02:05.0837 0252 PSDNServ - ok
15:02:05.0869 0252 psdvdisk (cae5e82827990cf4bd4a49576bde3a43) C:\Windows\system32\DRIVERS\PSDVdisk.sys
15:02:05.0900 0252 psdvdisk - ok
15:02:05.0993 0252 PSI_SVC_2 (a6a7ad767bf5141665f5c675f671b3e1) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
15:02:06.0025 0252 PSI_SVC_2 - ok
15:02:06.0134 0252 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
15:02:06.0243 0252 ql2300 - ok
15:02:06.0274 0252 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
15:02:06.0305 0252 ql40xx - ok
15:02:06.0352 0252 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
15:02:06.0399 0252 QWAVE - ok
15:02:06.0415 0252 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
15:02:06.0461 0252 QWAVEdrv - ok
15:02:06.0524 0252 RapiMgr (70dbdab246c18b78e2200d6401d038be) C:\Windows\WindowsMobile\rapimgr.dll
15:02:06.0602 0252 RapiMgr - ok
15:02:06.0633 0252 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
15:02:06.0695 0252 RasAcd - ok
15:02:06.0742 0252 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
15:02:06.0805 0252 RasAuto - ok
15:02:06.0836 0252 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
15:02:06.0898 0252 Rasl2tp - ok
15:02:06.0961 0252 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
15:02:07.0039 0252 RasMan - ok
15:02:07.0085 0252 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
15:02:07.0163 0252 RasPppoe - ok
15:02:07.0195 0252 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
15:02:07.0210 0252 RasSstp - ok
15:02:07.0288 0252 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
15:02:07.0351 0252 rdbss - ok
15:02:07.0382 0252 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
15:02:07.0444 0252 RDPCDD - ok
15:02:07.0491 0252 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
15:02:07.0553 0252 rdpdr - ok
15:02:07.0553 0252 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
15:02:07.0616 0252 RDPENCDD - ok
15:02:07.0678 0252 RDPWD (c127ebd5afab31524662c48dfceb773a) C:\Windows\system32\drivers\RDPWD.sys
15:02:07.0725 0252 RDPWD - ok
15:02:07.0772 0252 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
15:02:07.0834 0252 RemoteAccess - ok
15:02:07.0897 0252 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
15:02:07.0943 0252 RemoteRegistry - ok
15:02:08.0037 0252 RichVideo (17e0bef5ca5c9ce52cc8082ac6ebc449) C:\Program Files\Cyberlink\Shared files\RichVideo.exe
15:02:08.0068 0252 RichVideo - ok
15:02:08.0099 0252 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
15:02:08.0162 0252 RpcLocator - ok
15:02:08.0240 0252 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
15:02:08.0318 0252 RpcSs - ok
15:02:08.0333 0252 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
15:02:08.0411 0252 rspndr - ok
15:02:08.0443 0252 RTHDMIAzAudService (5dfaa39d44e2eb090940351a85b891b8) C:\Windows\system32\drivers\RtHDMIV.sys
15:02:08.0474 0252 RTHDMIAzAudService - ok
15:02:08.0521 0252 RTSTOR (b0538dea03e088b80482ca939f4e8740) C:\Windows\system32\drivers\RTSTOR.SYS
15:02:08.0567 0252 RTSTOR - ok
15:02:08.0599 0252 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
15:02:08.0630 0252 SamSs - ok
15:02:08.0677 0252 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
15:02:08.0708 0252 sbp2port - ok
15:02:08.0755 0252 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
15:02:08.0817 0252 SCardSvr - ok
15:02:08.0911 0252 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
15:02:08.0989 0252 Schedule - ok
15:02:09.0004 0252 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
15:02:09.0051 0252 SCPolicySvc - ok
15:02:09.0098 0252 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
15:02:09.0160 0252 SDRSVC - ok
15:02:09.0191 0252 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
15:02:09.0285 0252 secdrv - ok
15:02:09.0301 0252 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
15:02:09.0379 0252 seclogon - ok
15:02:09.0410 0252 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\System32\sens.dll
15:02:09.0488 0252 SENS - ok
15:02:09.0535 0252 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
15:02:09.0644 0252 Serenum - ok
15:02:09.0675 0252 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
15:02:09.0784 0252 Serial - ok
15:02:09.0800 0252 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
15:02:09.0862 0252 sermouse - ok
15:02:10.0003 0252 ServiceLayer (9d38320bb32230349379df5ddbbf7fce) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
15:02:10.0081 0252 ServiceLayer ( UnsignedFile.Multi.Generic ) - warning
15:02:10.0081 0252 ServiceLayer - detected UnsignedFile.Multi.Generic (1)
15:02:10.0143 0252 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
15:02:10.0237 0252 SessionEnv - ok
15:02:10.0252 0252 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
15:02:10.0299 0252 sffdisk - ok
15:02:10.0330 0252 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
15:02:10.0393 0252 sffp_mmc - ok
15:02:10.0424 0252 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
15:02:10.0486 0252 sffp_sd - ok
15:02:10.0502 0252 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
15:02:10.0611 0252 sfloppy - ok
15:02:10.0673 0252 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
15:02:10.0736 0252 SharedAccess - ok
15:02:10.0814 0252 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
15:02:10.0861 0252 ShellHWDetection - ok
15:02:10.0876 0252 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
15:02:10.0907 0252 sisagp - ok
15:02:10.0939 0252 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
15:02:10.0970 0252 SiSRaid2 - ok
15:02:11.0001 0252 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
15:02:11.0032 0252 SiSRaid4 - ok
15:02:11.0344 0252 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
15:02:11.0516 0252 slsvc - ok
15:02:11.0656 0252 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
15:02:11.0719 0252 SLUINotify - ok
15:02:11.0797 0252 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
15:02:11.0859 0252 Smb - ok
15:02:11.0906 0252 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
15:02:11.0953 0252 SNMPTRAP - ok
15:02:11.0968 0252 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
15:02:11.0999 0252 spldr - ok
15:02:12.0031 0252 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
15:02:12.0093 0252 Spooler - ok
15:02:12.0155 0252 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
15:02:12.0218 0252 srv - ok
15:02:12.0249 0252 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
15:02:12.0311 0252 srv2 - ok
15:02:12.0327 0252 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
15:02:12.0358 0252 srvnet - ok
15:02:12.0405 0252 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
15:02:12.0483 0252 SSDPSRV - ok
15:02:12.0530 0252 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\Windows\system32\DRIVERS\ssmdrv.sys
15:02:12.0561 0252 ssmdrv - ok
15:02:12.0592 0252 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
15:02:12.0639 0252 SstpSvc - ok
15:02:12.0686 0252 ss_bbus (eaa66218cd39f5bb1b4853a78c67c787) C:\Windows\system32\DRIVERS\ss_bbus.sys
15:02:12.0717 0252 ss_bbus - ok
15:02:12.0733 0252 ss_bmdfl (91765f99914ed8693d8bc76524f21581) C:\Windows\system32\DRIVERS\ss_bmdfl.sys
15:02:12.0764 0252 ss_bmdfl - ok
15:02:12.0795 0252 ss_bmdm (840e7b738b03c10ee91d9b7d3d6eff15) C:\Windows\system32\DRIVERS\ss_bmdm.sys
15:02:12.0826 0252 ss_bmdm - ok
15:02:12.0904 0252 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
15:02:13.0013 0252 stisvc - ok
15:02:13.0060 0252 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
15:02:13.0076 0252 swenum - ok
15:02:13.0154 0252 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
15:02:13.0232 0252 swprv - ok
15:02:13.0263 0252 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
15:02:13.0294 0252 Symc8xx - ok
15:02:13.0310 0252 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
15:02:13.0325 0252 Sym_hi - ok
15:02:13.0357 0252 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
15:02:13.0372 0252 Sym_u3 - ok
15:02:13.0435 0252 SynTP (4c9bb4b3b9eac26211484c30b914c6dc) C:\Windows\system32\DRIVERS\SynTP.sys
15:02:13.0466 0252 SynTP - ok
15:02:13.0544 0252 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
15:02:13.0653 0252 SysMain - ok
15:02:13.0700 0252 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
15:02:13.0747 0252 TabletInputService - ok
15:02:13.0793 0252 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
15:02:13.0856 0252 TapiSrv - ok
15:02:13.0887 0252 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
15:02:13.0965 0252 TBS - ok
15:02:14.0090 0252 Tcpip (27d470dabc77bc60d0a3b0e4deb6cb91) C:\Windows\system32\drivers\tcpip.sys
15:02:14.0168 0252 Tcpip - ok
15:02:14.0199 0252 Tcpip6 (27d470dabc77bc60d0a3b0e4deb6cb91) C:\Windows\system32\DRIVERS\tcpip.sys
15:02:14.0293 0252 Tcpip6 - ok
15:02:14.0339 0252 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
15:02:14.0386 0252 tcpipreg - ok
15:02:14.0417 0252 TcUsb (72b9e77565da5fa564581976e000d29b) C:\Windows\system32\Drivers\tcusb.sys
15:02:14.0433 0252 TcUsb - ok
15:02:14.0464 0252 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
15:02:14.0542 0252 TDPIPE - ok
15:02:14.0558 0252 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
15:02:14.0636 0252 TDTCP - ok
15:02:14.0683 0252 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
15:02:14.0745 0252 tdx - ok
15:02:14.0792 0252 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
15:02:14.0823 0252 TermDD - ok
15:02:14.0901 0252 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
15:02:15.0026 0252 TermService - ok
15:02:15.0088 0252 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
15:02:15.0119 0252 Themes - ok
15:02:15.0151 0252 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
15:02:15.0213 0252 THREADORDER - ok
15:02:15.0260 0252 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
15:02:15.0338 0252 TrkWks - ok
15:02:15.0416 0252 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
15:02:15.0463 0252 TrustedInstaller - ok
15:02:15.0494 0252 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
15:02:15.0556 0252 tssecsrv - ok
15:02:15.0587 0252 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
15:02:15.0634 0252 tunmp - ok
15:02:15.0665 0252 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
15:02:15.0712 0252 tunnel - ok
15:02:15.0743 0252 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
15:02:15.0775 0252 uagp35 - ok
15:02:15.0790 0252 UBHelper (f763e070843ee2803de1395002b42938) C:\Windows\system32\drivers\UBHelper.sys
15:02:15.0806 0252 UBHelper - ok
15:02:15.0884 0252 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
15:02:15.0931 0252 udfs - ok
15:02:15.0977 0252 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
15:02:16.0055 0252 UI0Detect - ok
15:02:16.0071 0252 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
15:02:16.0102 0252 uliagpkx - ok
15:02:16.0149 0252 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
15:02:16.0196 0252 uliahci - ok
15:02:16.0243 0252 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
15:02:16.0274 0252 UlSata - ok
15:02:16.0289 0252 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
15:02:16.0321 0252 ulsata2 - ok
15:02:16.0352 0252 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
15:02:16.0414 0252 umbus - ok
15:02:16.0477 0252 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
15:02:16.0539 0252 upnphost - ok
15:02:16.0586 0252 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
15:02:16.0648 0252 usbaudio - ok
15:02:16.0726 0252 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
15:02:16.0789 0252 usbccgp - ok
15:02:16.0820 0252 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
15:02:16.0945 0252 usbcir - ok
15:02:16.0960 0252 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
15:02:17.0023 0252 usbehci - ok
15:02:17.0054 0252 usbfilter (edca5124b54bcf04e5c0538aa397a9c1) C:\Windows\system32\DRIVERS\usbfilter.sys
15:02:17.0069 0252 usbfilter - ok
15:02:17.0101 0252 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
15:02:17.0163 0252 usbhub - ok
15:02:17.0179 0252 usbohci (ce697fee0d479290d89bec80dfe793b7) C:\Windows\system32\DRIVERS\usbohci.sys
15:02:17.0225 0252 usbohci - ok
15:02:17.0272 0252 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
15:02:17.0335 0252 usbprint - ok
15:02:17.0381 0252 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
15:02:17.0428 0252 usbscan - ok
15:02:17.0459 0252 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:02:17.0506 0252 USBSTOR - ok
15:02:17.0537 0252 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
15:02:17.0600 0252 usbuhci - ok
15:02:17.0631 0252 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
15:02:17.0709 0252 usbvideo - ok
15:02:17.0740 0252 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
15:02:17.0818 0252 UxSms - ok
15:02:17.0881 0252 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
15:02:17.0959 0252 vds - ok
15:02:17.0990 0252 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
15:02:18.0052 0252 vga - ok
15:02:18.0068 0252 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
15:02:18.0130 0252 VgaSave - ok
15:02:18.0161 0252 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
15:02:18.0193 0252 viaagp - ok
15:02:18.0224 0252 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
15:02:18.0286 0252 ViaC7 - ok
15:02:18.0302 0252 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
15:02:18.0333 0252 viaide - ok
15:02:18.0427 0252 VMCService (6e021d6da429ad7288fe8322e2bba96b) C:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe
15:02:18.0427 0252 VMCService ( UnsignedFile.Multi.Generic ) - warning
15:02:18.0427 0252 VMCService - detected UnsignedFile.Multi.Generic (1)
15:02:18.0458 0252 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
15:02:18.0489 0252 volmgr - ok
15:02:18.0567 0252 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
15:02:18.0598 0252 volmgrx - ok
15:02:18.0661 0252 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
15:02:18.0692 0252 volsnap - ok
15:02:18.0723 0252 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
15:02:18.0754 0252 vsmraid - ok
15:02:18.0895 0252 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
15:02:18.0988 0252 VSS - ok
15:02:19.0066 0252 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
15:02:19.0144 0252 W32Time - ok
15:02:19.0207 0252 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
15:02:19.0316 0252 WacomPen - ok
15:02:19.0347 0252 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
15:02:19.0394 0252 Wanarp - ok
15:02:19.0409 0252 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
15:02:19.0441 0252 Wanarpv6 - ok
15:02:19.0519 0252 WcesComm (779f9c90d3fe9c70b6ffd8ef035f3e83) C:\Windows\WindowsMobile\wcescomm.dll
15:02:19.0597 0252 WcesComm - ok
15:02:19.0675 0252 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
15:02:19.0737 0252 wcncsvc - ok
15:02:19.0768 0252 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
15:02:19.0831 0252 WcsPlugInService - ok
15:02:19.0846 0252 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
15:02:19.0877 0252 Wd - ok
15:02:19.0940 0252 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
15:02:20.0002 0252 Wdf01000 - ok
15:02:20.0018 0252 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
15:02:20.0096 0252 WdiServiceHost - ok
15:02:20.0096 0252 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
15:02:20.0158 0252 WdiSystemHost - ok
15:02:20.0221 0252 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
15:02:20.0267 0252 WebClient - ok
15:02:20.0314 0252 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
15:02:20.0361 0252 Wecsvc - ok
15:02:20.0392 0252 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
15:02:20.0455 0252 wercplsupport - ok
15:02:20.0517 0252 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
15:02:20.0579 0252 WerSvc - ok
15:02:20.0595 0252 winbondcir (3fa87d56769838aac82fafc3e78fc732) C:\Windows\system32\DRIVERS\winbondcir.sys
15:02:20.0657 0252 winbondcir - ok
15:02:20.0720 0252 WinDefend (4575aa12561c5648483403541d0d7f2b) C:\Program Files\Windows Defender\mpsvc.dll
15:02:20.0767 0252 WinDefend - ok
15:02:20.0782 0252 WinHttpAutoProxySvc - ok
15:02:20.0876 0252 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
15:02:20.0923 0252 Winmgmt - ok
15:02:21.0063 0252 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
15:02:21.0125 0252 WinRM - ok
15:02:21.0203 0252 winusb (676f4b665bdd8053eaa53ac1695b8074) C:\Windows\system32\DRIVERS\winusb.sys
15:02:21.0250 0252 winusb - ok
15:02:21.0328 0252 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
15:02:21.0391 0252 Wlansvc - ok
15:02:21.0437 0252 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
15:02:21.0484 0252 WmiAcpi - ok
15:02:21.0578 0252 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
15:02:21.0640 0252 wmiApSrv - ok
15:02:21.0765 0252 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
15:02:21.0859 0252 WMPNetworkSvc - ok
15:02:21.0921 0252 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
15:02:21.0983 0252 WPCSvc - ok
15:02:22.0046 0252 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
15:02:22.0108 0252 WPDBusEnum - ok
15:02:22.0186 0252 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
15:02:22.0217 0252 WpdUsb - ok
15:02:22.0389 0252 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
15:02:22.0436 0252 WPFFontCache_v0400 - ok
15:02:22.0483 0252 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
15:02:22.0545 0252 ws2ifsl - ok
15:02:22.0607 0252 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\System32\wscsvc.dll
15:02:22.0654 0252 wscsvc - ok
15:02:22.0670 0252 WSearch - ok
15:02:22.0888 0252 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) C:\Windows\system32\wuaueng.dll
15:02:23.0029 0252 wuauserv - ok
15:02:23.0185 0252 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
15:02:23.0247 0252 WUDFRd - ok
15:02:23.0263 0252 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
15:02:23.0356 0252 wudfsvc - ok
15:02:23.0450 0252 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796} (74ec37b9eaf9fca015b933a526825c7a) C:\Program Files\Acer Arcade Deluxe\PlayMovie\000.fcl
15:02:23.0481 0252 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796} - ok
15:02:23.0512 0252 MBR (0x1B8) (bb9d3a6a13c5010348da7c900bb6af50) \Device\Harddisk0\DR0
15:02:25.0072 0252 \Device\Harddisk0\DR0 - ok
15:02:25.0088 0252 Boot (0x1200) (ebbdc6b35b34f987926566bc737f7258) \Device\Harddisk0\DR0\Partition0
15:02:25.0088 0252 \Device\Harddisk0\DR0\Partition0 - ok
15:02:25.0119 0252 Boot (0x1200) (bb0a045c730672778db22fa949fde453) \Device\Harddisk0\DR0\Partition1
15:02:25.0119 0252 \Device\Harddisk0\DR0\Partition1 - ok
15:02:25.0119 0252 ============================================================
15:02:25.0119 0252 Scan finished
15:02:25.0119 0252 ============================================================
15:02:25.0150 4372 Detected object count: 13
15:02:25.0150 4372 Actual detected object count: 13
|
|
06.07.2012, 14:46
| #26 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Trojaner - "Weißer Bildschirm mit Verbindung wird hergestellt." Log ist unvollständig die untere Zusammenfassung fehlt
__________________ Logfiles bitte immer in CODE-Tags posten |
|
06.07.2012, 15:01
| #27 |
| | Trojaner - "Weißer Bildschirm mit Verbindung wird hergestellt." Hallo Arne. Ich hab den Log noch offen und wirklich alles kopiert (hab nochmal geschaut). Es stand auch unterm Laufwerk C. Mehr ist da nicht. Grüße Katja  |
|
08.07.2012, 18:53
| #28 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Trojaner - "Weißer Bildschirm mit Verbindung wird hergestellt."Code:
ATTFilter 15:02:25.0150 4372 Detected object count: 13
15:02:25.0150 4372 Actual detected object count: 13
Bitte prüfen und wirklich nach ganz unten scrollen! Hast du das Log denn auch mit STRG+A markiert und dann kopiert und hier gepostet?
__________________ Logfiles bitte immer in CODE-Tags posten |
|
08.07.2012, 21:03
| #29 |
| | Trojaner - "Weißer Bildschirm mit Verbindung wird hergestellt." Hallo Arne.  Tschuldigung. Habs wohl dieses mal nicht mit Strg. + A markiert. So jetzt müsste es vollständig sein.Code:
ATTFilter 14:59:31.0532 3600 TDSS rootkit removing tool 2.7.44.0 Jul 2 2012 20:01:08
14:59:33.0537 3600 ============================================================
14:59:33.0537 3600 Current date / time: 2012/07/06 14:59:33.0537
14:59:33.0537 3600 SystemInfo:
14:59:33.0537 3600
14:59:33.0538 3600 OS Version: 6.0.6002 ServicePack: 2.0
14:59:33.0538 3600 Product type: Workstation
14:59:33.0538 3600 ComputerName: PRIVAT
14:59:33.0539 3600 UserName: Chiara
14:59:33.0539 3600 Windows directory: C:\Windows
14:59:33.0539 3600 System windows directory: C:\Windows
14:59:33.0539 3600 Processor architecture: Intel x86
14:59:33.0539 3600 Number of processors: 2
14:59:33.0539 3600 Page size: 0x1000
14:59:33.0539 3600 Boot type: Normal boot
14:59:33.0539 3600 ============================================================
14:59:35.0211 3600 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
14:59:35.0217 3600 ============================================================
14:59:35.0217 3600 \Device\Harddisk0\DR0:
14:59:35.0218 3600 MBR partitions:
14:59:35.0218 3600 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1400800, BlocksNum 0x12016800
14:59:35.0218 3600 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x13417000, BlocksNum 0x11900000
14:59:35.0218 3600 ============================================================
14:59:35.0250 3600 C: <-> \Device\Harddisk0\DR0\Partition0
14:59:35.0291 3600 D: <-> \Device\Harddisk0\DR0\Partition1
14:59:35.0292 3600 ============================================================
14:59:35.0292 3600 Initialize success
14:59:35.0292 3600 ============================================================
14:59:41.0946 1692 ============================================================
14:59:41.0946 1692 Scan started
14:59:41.0946 1692 Mode: Manual;
14:59:41.0946 1692 ============================================================
14:59:44.0333 1692 ACDaemon (adc420616c501b45d26c0fd3ef1e54e4) C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
14:59:44.0335 1692 ACDaemon - ok
14:59:44.0648 1692 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
14:59:44.0657 1692 ACPI - ok
14:59:44.0735 1692 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
14:59:44.0748 1692 adp94xx - ok
14:59:44.0791 1692 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
14:59:44.0801 1692 adpahci - ok
14:59:44.0828 1692 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
14:59:44.0832 1692 adpu160m - ok
14:59:44.0860 1692 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
14:59:44.0866 1692 adpu320 - ok
14:59:44.0904 1692 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
14:59:44.0908 1692 AeLookupSvc - ok
14:59:44.0976 1692 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
14:59:44.0984 1692 AFD - ok
14:59:45.0029 1692 AgereModemAudio (efbc44fbd75e4f80bd927aebf6e7eade) C:\Windows\system32\agrsmsvc.exe
14:59:45.0031 1692 AgereModemAudio - ok
14:59:45.0192 1692 AgereSoftModem (1cfeba39fc613e45b49d3eddfbcda289) C:\Windows\system32\DRIVERS\AGRSM.sys
14:59:45.0220 1692 AgereSoftModem - ok
14:59:45.0266 1692 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
14:59:45.0269 1692 agp440 - ok
14:59:45.0311 1692 ahcix86s (9879ff9f6a04d660bc245788e1881b00) C:\Windows\system32\DRIVERS\ahcix86s.sys
14:59:45.0314 1692 ahcix86s - ok
14:59:45.0349 1692 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
14:59:45.0352 1692 aic78xx - ok
14:59:45.0390 1692 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
14:59:45.0392 1692 ALG - ok
14:59:45.0410 1692 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
14:59:45.0413 1692 aliide - ok
14:59:45.0447 1692 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
14:59:45.0450 1692 amdagp - ok
14:59:45.0475 1692 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
14:59:45.0478 1692 amdide - ok
14:59:45.0499 1692 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
14:59:45.0502 1692 AmdK7 - ok
14:59:45.0525 1692 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
14:59:45.0528 1692 AmdK8 - ok
14:59:45.0648 1692 AntiVirSchedulerService (466a0d95960dad3222c896d2cea99993) C:\Program Files\Avira\AntiVir Desktop\sched.exe
14:59:45.0650 1692 AntiVirSchedulerService - ok
14:59:45.0686 1692 AntiVirService (a489be6bb0aa1ff406b488b60542314b) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
14:59:45.0689 1692 AntiVirService - ok
14:59:45.0752 1692 AnyDVD (7a7a9f83fa3572448111886e34ca8565) C:\Windows\system32\Drivers\AnyDVD.sys
14:59:45.0755 1692 AnyDVD - ok
14:59:45.0808 1692 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
14:59:45.0810 1692 Appinfo - ok
14:59:45.0831 1692 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
14:59:45.0835 1692 arc - ok
14:59:45.0963 1692 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
14:59:45.0979 1692 arcsas - ok
14:59:46.0032 1692 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
14:59:46.0034 1692 AsyncMac - ok
14:59:46.0083 1692 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
14:59:46.0086 1692 atapi - ok
14:59:46.0237 1692 athr (f32fee7cb2ee32c1f808409bc8019701) C:\Windows\system32\DRIVERS\athr.sys
14:59:46.0267 1692 athr - ok
14:59:46.0366 1692 Ati External Event Utility (37c62d0a9249d286fc133e7c3f55a81c) C:\Windows\system32\Ati2evxx.exe
14:59:46.0380 1692 Ati External Event Utility - ok
14:59:46.0730 1692 atikmdag (dde8884695e4d34cc4573d8707aeff95) C:\Windows\system32\DRIVERS\atikmdag.sys
14:59:46.0822 1692 atikmdag - ok
14:59:46.0965 1692 AtiPcie (5a1465ad2e7c1bc39cda12a355329096) C:\Windows\system32\DRIVERS\AtiPcie.sys
14:59:46.0967 1692 AtiPcie - ok
14:59:47.0060 1692 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
14:59:47.0068 1692 AudioEndpointBuilder - ok
14:59:47.0088 1692 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
14:59:47.0094 1692 Audiosrv - ok
14:59:47.0145 1692 avgntflt (d5541f0afb767e85fc412fc609d96a74) C:\Windows\system32\DRIVERS\avgntflt.sys
14:59:47.0149 1692 avgntflt - ok
14:59:47.0194 1692 avipbb (7d967a682d4694df7fa57d63a2db01fe) C:\Windows\system32\DRIVERS\avipbb.sys
14:59:47.0199 1692 avipbb - ok
14:59:47.0212 1692 avkmgr (271cfd1a989209b1964e24d969552bf7) C:\Windows\system32\DRIVERS\avkmgr.sys
14:59:47.0214 1692 avkmgr - ok
14:59:47.0276 1692 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
14:59:47.0277 1692 Beep - ok
14:59:47.0365 1692 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
14:59:47.0373 1692 BFE - ok
14:59:47.0494 1692 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\System32\qmgr.dll
14:59:47.0526 1692 BITS - ok
14:59:47.0543 1692 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
14:59:47.0546 1692 blbdrive - ok
14:59:47.0582 1692 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
14:59:47.0586 1692 bowser - ok
14:59:47.0633 1692 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
14:59:47.0638 1692 BrFiltLo - ok
14:59:47.0667 1692 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
14:59:47.0669 1692 BrFiltUp - ok
14:59:47.0703 1692 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
14:59:47.0709 1692 Browser - ok
14:59:47.0744 1692 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
14:59:47.0748 1692 Brserid - ok
14:59:47.0807 1692 BrSerIf (1a5fc78e41840edf79d65ec16eff2787) C:\Windows\system32\Drivers\BrSerIf.sys
14:59:47.0811 1692 BrSerIf - ok
14:59:47.0848 1692 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
14:59:47.0851 1692 BrSerWdm - ok
14:59:47.0906 1692 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
14:59:47.0908 1692 BrUsbMdm - ok
14:59:47.0936 1692 BrUsbSer (a24c7b39602218f8dbdb2b6704325fc7) C:\Windows\system32\Drivers\BrUsbSer.sys
14:59:47.0938 1692 BrUsbSer - ok
14:59:47.0991 1692 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
14:59:47.0994 1692 BTHMODEM - ok
14:59:48.0067 1692 BUNAgentSvc (09e6affae6c0e9158bf05c7d08d0107a) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
14:59:48.0069 1692 BUNAgentSvc - ok
14:59:48.0117 1692 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
14:59:48.0121 1692 cdfs - ok
14:59:48.0202 1692 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
14:59:48.0205 1692 cdrom - ok
14:59:48.0284 1692 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
14:59:48.0286 1692 CertPropSvc - ok
14:59:48.0309 1692 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\DRIVERS\circlass.sys
14:59:48.0311 1692 circlass - ok
14:59:48.0369 1692 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
14:59:48.0380 1692 CLFS - ok
14:59:48.0469 1692 CLHNService (1a05e1af359d8e961279f1eea30a91ee) C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe
14:59:48.0473 1692 CLHNService - ok
14:59:48.0549 1692 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:59:48.0554 1692 clr_optimization_v2.0.50727_32 - ok
14:59:48.0635 1692 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:59:48.0638 1692 clr_optimization_v4.0.30319_32 - ok
14:59:48.0678 1692 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
14:59:48.0680 1692 CmBatt - ok
14:59:48.0700 1692 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
14:59:48.0702 1692 cmdide - ok
14:59:48.0725 1692 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
14:59:48.0728 1692 Compbatt - ok
14:59:48.0735 1692 COMSysApp - ok
14:59:48.0750 1692 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
14:59:48.0752 1692 crcdisk - ok
14:59:48.0777 1692 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
14:59:48.0780 1692 Crusoe - ok
14:59:48.0830 1692 CryptSvc (75c6a297e364014840b48eccd7525e30) C:\Windows\system32\cryptsvc.dll
14:59:48.0834 1692 CryptSvc - ok
14:59:48.0925 1692 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
14:59:48.0942 1692 DcomLaunch - ok
14:59:48.0975 1692 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
14:59:48.0978 1692 DfsC - ok
14:59:49.0194 1692 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
14:59:49.0248 1692 DFSR - ok
14:59:49.0416 1692 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
14:59:49.0420 1692 Dhcp - ok
14:59:49.0489 1692 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
14:59:49.0492 1692 disk - ok
14:59:49.0545 1692 DKbFltr (73baf270d24fe726b9cd7f80bb17a23d) C:\Windows\system32\DRIVERS\DKbFltr.sys
14:59:49.0547 1692 DKbFltr - ok
14:59:49.0595 1692 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
14:59:49.0598 1692 Dnscache - ok
14:59:49.0659 1692 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
14:59:49.0665 1692 dot3svc - ok
14:59:49.0719 1692 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
14:59:49.0723 1692 DPS - ok
14:59:49.0749 1692 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
14:59:49.0750 1692 drmkaud - ok
14:59:49.0829 1692 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
14:59:49.0846 1692 DXGKrnl - ok
14:59:49.0884 1692 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
14:59:49.0889 1692 E1G60 - ok
14:59:49.0936 1692 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
14:59:49.0940 1692 EapHost - ok
14:59:50.0010 1692 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
14:59:50.0016 1692 Ecache - ok
14:59:50.0131 1692 eDataSecurity Service (b1f2503e23425b386df0f3413b2596f3) C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
14:59:50.0140 1692 eDataSecurity Service - ok
14:59:50.0202 1692 ehRecvr (9be3744d295a7701eb425332014f0797) C:\Windows\ehome\ehRecvr.exe
14:59:50.0211 1692 ehRecvr - ok
14:59:50.0237 1692 ehSched (ad1870c8e5d6dd340c829e6074bf3c3f) C:\Windows\ehome\ehsched.exe
14:59:50.0241 1692 ehSched - ok
14:59:50.0262 1692 ehstart (c27c4ee8926e74aa72efcab24c5242c3) C:\Windows\ehome\ehstart.dll
14:59:50.0264 1692 ehstart - ok
14:59:50.0312 1692 ElbyCDFL (ce37e3d51912e59c80c6d84337c0b4cd) C:\Windows\system32\Drivers\ElbyCDFL.sys
14:59:50.0314 1692 ElbyCDFL - ok
14:59:50.0351 1692 ElbyCDIO (027319ab8628d3ae07ff3b5a40fab62f) C:\Windows\system32\Drivers\ElbyCDIO.sys
14:59:50.0353 1692 ElbyCDIO - ok
14:59:50.0422 1692 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
14:59:50.0433 1692 elxstor - ok
14:59:50.0523 1692 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
14:59:50.0536 1692 EMDMgmt - ok
14:59:50.0559 1692 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
14:59:50.0562 1692 ErrDev - ok
14:59:50.0638 1692 ETService (27d2754314d12eb27d81d462fd0d86c0) C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
14:59:50.0641 1692 ETService - ok
14:59:50.0730 1692 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
14:59:50.0736 1692 EventSystem - ok
14:59:50.0807 1692 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
14:59:50.0812 1692 exfat - ok
14:59:50.0869 1692 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
14:59:50.0873 1692 fastfat - ok
14:59:50.0932 1692 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
14:59:50.0934 1692 fdc - ok
14:59:50.0955 1692 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
14:59:50.0957 1692 fdPHost - ok
14:59:50.0968 1692 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
14:59:50.0970 1692 FDResPub - ok
14:59:51.0002 1692 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
14:59:51.0005 1692 FileInfo - ok
14:59:51.0041 1692 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
14:59:51.0043 1692 Filetrace - ok
14:59:51.0065 1692 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
14:59:51.0067 1692 flpydisk - ok
14:59:51.0134 1692 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
14:59:51.0140 1692 FltMgr - ok
14:59:51.0302 1692 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
14:59:51.0322 1692 FontCache - ok
14:59:51.0409 1692 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
14:59:51.0413 1692 FontCache3.0.0.0 - ok
14:59:51.0463 1692 FsUsbExDisk (790a4ca68f44be35967b3df61f3e4675) C:\Windows\system32\FsUsbExDisk.SYS
14:59:51.0468 1692 FsUsbExDisk - ok
14:59:51.0525 1692 FsUsbExService (d3f9205cc4cb07553f2f9472c767ea87) C:\Windows\system32\FsUsbExService.Exe
14:59:51.0534 1692 FsUsbExService - ok
14:59:51.0592 1692 Fs_Rec (b972a66758577e0bfd1de0f91aaa27b5) C:\Windows\system32\drivers\Fs_Rec.sys
14:59:51.0593 1692 Fs_Rec - ok
14:59:51.0624 1692 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
14:59:51.0627 1692 gagp30kx - ok
14:59:51.0695 1692 getPlusHelper (fd7e9aba274df75e08320420b8e9a1d5) C:\Program Files\NOS\bin\getPlus_Helper.dll
14:59:51.0697 1692 getPlusHelper - ok
14:59:51.0759 1692 GoogleDesktopManager-080708-050100 (6fd7f370817f16b5e1f08b91badaa2ee) C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
14:59:51.0763 1692 GoogleDesktopManager-080708-050100 - ok
14:59:51.0855 1692 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
14:59:51.0869 1692 gpsvc - ok
14:59:51.0938 1692 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
14:59:51.0946 1692 HdAudAddService - ok
14:59:52.0066 1692 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
14:59:52.0083 1692 HDAudBus - ok
14:59:52.0113 1692 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
14:59:52.0116 1692 HidBth - ok
14:59:52.0161 1692 HidIr (d8df3722d5e961baa1292aa2f12827e2) C:\Windows\system32\DRIVERS\hidir.sys
14:59:52.0163 1692 HidIr - ok
14:59:52.0206 1692 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\system32\hidserv.dll
14:59:52.0210 1692 hidserv - ok
14:59:52.0245 1692 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
14:59:52.0249 1692 HidUsb - ok
14:59:52.0279 1692 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
14:59:52.0284 1692 hkmsvc - ok
14:59:52.0314 1692 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
14:59:52.0317 1692 HpCISSs - ok
14:59:52.0395 1692 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
14:59:52.0407 1692 HTTP - ok
14:59:52.0450 1692 hwdatacard - ok
14:59:52.0504 1692 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
14:59:52.0507 1692 i2omp - ok
14:59:52.0569 1692 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
14:59:52.0572 1692 i8042prt - ok
14:59:52.0639 1692 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
14:59:52.0648 1692 iaStorV - ok
14:59:52.0801 1692 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
14:59:52.0805 1692 IDriverT - ok
14:59:53.0063 1692 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
14:59:53.0101 1692 idsvc - ok
14:59:53.0122 1692 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
14:59:53.0124 1692 iirsp - ok
14:59:53.0659 1692 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
14:59:53.0703 1692 IKEEXT - ok
14:59:53.0742 1692 int15 (4d8d5b1c895ea0f2a721b98a7ce198f1) C:\Windows\system32\drivers\int15.sys
14:59:53.0746 1692 int15 - ok
14:59:54.0270 1692 IntcAzAudAddService (febdd0310fba3da13f56ede2e9f7b5dc) C:\Windows\system32\drivers\RTKVHDA.sys
14:59:54.0372 1692 IntcAzAudAddService - ok
14:59:54.0575 1692 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
14:59:54.0592 1692 intelide - ok
14:59:54.0608 1692 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
14:59:54.0610 1692 intelppm - ok
14:59:54.0660 1692 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
14:59:54.0685 1692 IPBusEnum - ok
14:59:54.0725 1692 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:59:54.0727 1692 IpFilterDriver - ok
14:59:54.0793 1692 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
14:59:54.0800 1692 iphlpsvc - ok
14:59:54.0810 1692 IpInIp - ok
14:59:54.0831 1692 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
14:59:54.0834 1692 IPMIDRV - ok
14:59:54.0860 1692 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
14:59:54.0865 1692 IPNAT - ok
14:59:54.0882 1692 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
14:59:54.0884 1692 IRENUM - ok
14:59:54.0910 1692 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
14:59:54.0912 1692 isapnp - ok
14:59:54.0989 1692 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
14:59:54.0995 1692 iScsiPrt - ok
14:59:55.0019 1692 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
14:59:55.0021 1692 iteatapi - ok
14:59:55.0039 1692 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
14:59:55.0042 1692 iteraid - ok
14:59:55.0075 1692 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
14:59:55.0077 1692 kbdclass - ok
14:59:55.0125 1692 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
14:59:55.0127 1692 kbdhid - ok
14:59:55.0186 1692 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
14:59:55.0190 1692 KeyIso - ok
14:59:55.0245 1692 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
14:59:55.0259 1692 KSecDD - ok
14:59:55.0341 1692 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
14:59:55.0352 1692 KtmRm - ok
14:59:55.0392 1692 L1E (0ebce7560b5f4b52762c39c39f9dec57) C:\Windows\system32\DRIVERS\L1E60x86.sys
14:59:55.0395 1692 L1E - ok
14:59:55.0442 1692 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\system32\srvsvc.dll
14:59:55.0450 1692 LanmanServer - ok
14:59:55.0490 1692 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
14:59:55.0500 1692 LanmanWorkstation - ok
14:59:55.0786 1692 Lavasoft Ad-Aware Service (ed60ffd305ac0424920d146db9f9ed78) C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
14:59:55.0846 1692 Lavasoft Ad-Aware Service - ok
14:59:55.0931 1692 Lavasoft Kernexplorer (6c4a3804510ad8e0f0c07b5be3d44ddb) C:\Program Files\Lavasoft\Ad-Aware\KernExplorer.sys
14:59:55.0934 1692 Lavasoft Kernexplorer - ok
14:59:56.0082 1692 Lbd (336abe8721cbc3110f1c6426da633417) C:\Windows\system32\DRIVERS\Lbd.sys
14:59:56.0085 1692 Lbd - ok
14:59:56.0177 1692 LightScribeService (793ff718477345cd5d232c50bed1e452) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
14:59:56.0180 1692 LightScribeService - ok
14:59:56.0199 1692 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
14:59:56.0202 1692 lltdio - ok
14:59:56.0253 1692 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
14:59:56.0259 1692 lltdsvc - ok
14:59:56.0279 1692 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
14:59:56.0283 1692 lmhosts - ok
14:59:56.0321 1692 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
14:59:56.0325 1692 LSI_FC - ok
14:59:56.0352 1692 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
14:59:56.0355 1692 LSI_SAS - ok
14:59:56.0399 1692 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
14:59:56.0403 1692 LSI_SCSI - ok
14:59:56.0429 1692 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
14:59:56.0433 1692 luafv - ok
14:59:56.0453 1692 Mcx2Svc (aef9babb8a506bc4ce0451a64aaded46) C:\Windows\system32\Mcx2Svc.dll
14:59:56.0458 1692 Mcx2Svc - ok
14:59:56.0486 1692 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
14:59:56.0488 1692 megasas - ok
14:59:56.0534 1692 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
14:59:56.0546 1692 MegaSR - ok
14:59:56.0582 1692 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
14:59:56.0587 1692 MMCSS - ok
14:59:56.0619 1692 MobilityService - ok
14:59:56.0654 1692 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
14:59:56.0656 1692 Modem - ok
14:59:56.0672 1692 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
14:59:56.0675 1692 monitor - ok
14:59:56.0694 1692 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
14:59:56.0696 1692 mouclass - ok
14:59:56.0714 1692 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
14:59:56.0716 1692 mouhid - ok
14:59:56.0739 1692 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
14:59:56.0743 1692 MountMgr - ok
14:59:56.0840 1692 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
14:59:56.0844 1692 MozillaMaintenance - ok
14:59:56.0891 1692 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
14:59:56.0895 1692 mpio - ok
14:59:56.0914 1692 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
14:59:56.0917 1692 mpsdrv - ok
14:59:56.0991 1692 MpsSvc (5de62c6e9108f14f6794060a9bdecaec) C:\Windows\system32\mpssvc.dll
14:59:57.0004 1692 MpsSvc - ok
14:59:57.0046 1692 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
14:59:57.0048 1692 Mraid35x - ok
14:59:57.0112 1692 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
14:59:57.0116 1692 MRxDAV - ok
14:59:57.0166 1692 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
14:59:57.0169 1692 mrxsmb - ok
14:59:57.0205 1692 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:59:57.0211 1692 mrxsmb10 - ok
14:59:57.0223 1692 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:59:57.0227 1692 mrxsmb20 - ok
14:59:57.0241 1692 msahci (f70590424eefbf5c27a40c67afdb8383) C:\Windows\system32\drivers\msahci.sys
14:59:57.0243 1692 msahci - ok
14:59:57.0275 1692 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
14:59:57.0278 1692 msdsm - ok
14:59:57.0326 1692 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
14:59:57.0336 1692 MSDTC - ok
14:59:57.0356 1692 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
14:59:57.0358 1692 Msfs - ok
14:59:57.0381 1692 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
14:59:57.0383 1692 msisadrv - ok
14:59:57.0437 1692 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
14:59:57.0442 1692 MSiSCSI - ok
14:59:57.0451 1692 msiserver - ok
14:59:57.0500 1692 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
14:59:57.0503 1692 MSKSSRV - ok
14:59:57.0546 1692 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
14:59:57.0548 1692 MSPCLOCK - ok
14:59:57.0572 1692 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
14:59:57.0574 1692 MSPQM - ok
14:59:57.0623 1692 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
14:59:57.0628 1692 MsRPC - ok
14:59:57.0657 1692 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
14:59:57.0660 1692 mssmbios - ok
14:59:57.0674 1692 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
14:59:57.0677 1692 MSTEE - ok
14:59:57.0698 1692 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
14:59:57.0701 1692 Mup - ok
14:59:57.0766 1692 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
14:59:57.0778 1692 napagent - ok
14:59:57.0848 1692 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
14:59:57.0852 1692 NativeWifiP - ok
14:59:57.0950 1692 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
14:59:57.0964 1692 NDIS - ok
14:59:57.0983 1692 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
14:59:57.0985 1692 NdisTapi - ok
14:59:58.0025 1692 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
14:59:58.0027 1692 Ndisuio - ok
14:59:58.0088 1692 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
14:59:58.0092 1692 NdisWan - ok
14:59:58.0115 1692 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
14:59:58.0116 1692 NDProxy - ok
14:59:58.0127 1692 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
14:59:58.0129 1692 NetBIOS - ok
14:59:58.0182 1692 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
14:59:58.0187 1692 netbt - ok
14:59:58.0231 1692 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
14:59:58.0234 1692 Netlogon - ok
14:59:58.0289 1692 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
14:59:58.0298 1692 Netman - ok
14:59:58.0330 1692 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
14:59:58.0339 1692 netprofm - ok
14:59:58.0404 1692 netr28 (95725c00b580ed75a80e94acbc77cdbc) C:\Windows\system32\DRIVERS\netr28.sys
14:59:58.0417 1692 netr28 - ok
14:59:58.0489 1692 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
14:59:58.0494 1692 NetTcpPortSharing - ok
14:59:58.0524 1692 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
14:59:58.0528 1692 nfrd960 - ok
14:59:58.0574 1692 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
14:59:58.0581 1692 NlaSvc - ok
14:59:58.0627 1692 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
14:59:58.0629 1692 Npfs - ok
14:59:58.0648 1692 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
14:59:58.0654 1692 nsi - ok
14:59:58.0683 1692 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
14:59:58.0685 1692 nsiproxy - ok
14:59:58.0829 1692 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
14:59:58.0860 1692 Ntfs - ok
14:59:58.0906 1692 NTIBackupSvc (a2b6583a5652a385dff5e4f49ad48761) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
14:59:58.0908 1692 NTIBackupSvc - ok
14:59:58.0920 1692 NTIDrvr (2757d2ba59aee155209e24942ab127c9) C:\Windows\system32\DRIVERS\NTIDrvr.sys
14:59:58.0922 1692 NTIDrvr - ok
14:59:59.0045 1692 NTIPPKernel (547bfa3591c70674b0bfc99354ab78b3) C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\NTIPPKernel.sys
14:59:59.0050 1692 NTIPPKernel - ok
14:59:59.0069 1692 NTISchedulerSvc (40b87fe8a1a9a5ac9e5a91d96f212bcd) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
14:59:59.0079 1692 NTISchedulerSvc - ok
14:59:59.0110 1692 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
14:59:59.0112 1692 ntrigdigi - ok
14:59:59.0147 1692 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
14:59:59.0149 1692 Null - ok
14:59:59.0174 1692 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
14:59:59.0179 1692 nvraid - ok
14:59:59.0197 1692 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
14:59:59.0200 1692 nvstor - ok
14:59:59.0228 1692 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
14:59:59.0233 1692 nv_agp - ok
14:59:59.0242 1692 NwlnkFlt - ok
14:59:59.0255 1692 NwlnkFwd - ok
14:59:59.0410 1692 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
14:59:59.0423 1692 odserv - ok
14:59:59.0441 1692 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
14:59:59.0443 1692 ohci1394 - ok
14:59:59.0477 1692 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:59:59.0481 1692 ose - ok
14:59:59.0573 1692 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
14:59:59.0595 1692 p2pimsvc - ok
14:59:59.0613 1692 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
14:59:59.0628 1692 p2psvc - ok
14:59:59.0663 1692 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
14:59:59.0667 1692 Parport - ok
14:59:59.0719 1692 partmgr (b9c2b89f08670e159f7181891e449cd9) C:\Windows\system32\drivers\partmgr.sys
14:59:59.0722 1692 partmgr - ok
14:59:59.0738 1692 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
14:59:59.0739 1692 Parvdm - ok
14:59:59.0764 1692 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
14:59:59.0770 1692 PcaSvc - ok
14:59:59.0819 1692 pccsmcfd (175cc28dcf819f78caa3fbd44ad9e52a) C:\Windows\system32\DRIVERS\pccsmcfd.sys
14:59:59.0821 1692 pccsmcfd - ok
14:59:59.0861 1692 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
14:59:59.0864 1692 pci - ok
14:59:59.0908 1692 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
14:59:59.0910 1692 pciide - ok
14:59:59.0953 1692 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
14:59:59.0959 1692 pcmcia - ok
15:00:00.0069 1692 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
15:00:00.0095 1692 PEAUTH - ok
15:00:00.0316 1692 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
15:00:00.0366 1692 pla - ok
15:00:00.0518 1692 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
15:00:00.0529 1692 PlugPlay - ok
15:00:00.0626 1692 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
15:00:00.0640 1692 PNRPAutoReg - ok
15:00:00.0656 1692 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
15:00:00.0671 1692 PNRPsvc - ok
15:00:00.0720 1692 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
15:00:00.0731 1692 PolicyAgent - ok
15:00:00.0786 1692 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
15:00:00.0789 1692 PptpMiniport - ok
15:00:00.0812 1692 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\DRIVERS\processr.sys
15:00:00.0814 1692 Processor - ok
15:00:00.0874 1692 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
15:00:00.0883 1692 ProfSvc - ok
15:00:00.0912 1692 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
15:00:00.0916 1692 ProtectedStorage - ok
15:00:00.0952 1692 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
15:00:00.0955 1692 PSched - ok
15:00:00.0977 1692 PSDFilter (628321c8dd76ad369b362b202e655a68) C:\Windows\system32\DRIVERS\psdfilter.sys
15:00:00.0980 1692 PSDFilter - ok
15:00:00.0999 1692 PSDNServ (79d7117e62709c7690cf3dd55acead37) C:\Windows\system32\DRIVERS\PSDNServ.sys
15:00:01.0002 1692 PSDNServ - ok
15:00:01.0031 1692 psdvdisk (cae5e82827990cf4bd4a49576bde3a43) C:\Windows\system32\DRIVERS\PSDVdisk.sys
15:00:01.0035 1692 psdvdisk - ok
15:00:01.0132 1692 PSI_SVC_2 (a6a7ad767bf5141665f5c675f671b3e1) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
15:00:01.0138 1692 PSI_SVC_2 - ok
15:00:01.0266 1692 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
15:00:01.0294 1692 ql2300 - ok
15:00:01.0318 1692 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
15:00:01.0322 1692 ql40xx - ok
15:00:01.0380 1692 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
15:00:01.0390 1692 QWAVE - ok
15:00:01.0410 1692 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
15:00:01.0412 1692 QWAVEdrv - ok
15:00:01.0494 1692 RapiMgr (70dbdab246c18b78e2200d6401d038be) C:\Windows\WindowsMobile\rapimgr.dll
15:00:01.0497 1692 RapiMgr - ok
15:00:01.0526 1692 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
15:00:01.0528 1692 RasAcd - ok
15:00:01.0547 1692 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
15:00:01.0555 1692 RasAuto - ok
15:00:01.0579 1692 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
15:00:01.0582 1692 Rasl2tp - ok
15:00:01.0650 1692 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
15:00:01.0661 1692 RasMan - ok
15:00:01.0713 1692 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
15:00:01.0715 1692 RasPppoe - ok
15:00:01.0736 1692 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
15:00:01.0739 1692 RasSstp - ok
15:00:01.0800 1692 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
15:00:01.0807 1692 rdbss - ok
15:00:01.0840 1692 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
15:00:01.0842 1692 RDPCDD - ok
15:00:01.0879 1692 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
15:00:01.0888 1692 rdpdr - ok
15:00:01.0897 1692 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
15:00:01.0899 1692 RDPENCDD - ok
15:00:01.0961 1692 RDPWD (c127ebd5afab31524662c48dfceb773a) C:\Windows\system32\drivers\RDPWD.sys
15:00:01.0967 1692 RDPWD - ok
15:00:02.0013 1692 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
15:00:02.0019 1692 RemoteAccess - ok
15:00:02.0071 1692 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
15:00:02.0080 1692 RemoteRegistry - ok
15:00:02.0173 1692 RichVideo (17e0bef5ca5c9ce52cc8082ac6ebc449) C:\Program Files\Cyberlink\Shared files\RichVideo.exe
15:00:02.0178 1692 RichVideo - ok
15:00:02.0212 1692 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
15:00:02.0216 1692 RpcLocator - ok
15:00:02.0304 1692 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
15:00:02.0318 1692 RpcSs - ok
15:00:02.0353 1692 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
15:00:02.0356 1692 rspndr - ok
15:00:02.0419 1692 RTHDMIAzAudService (5dfaa39d44e2eb090940351a85b891b8) C:\Windows\system32\drivers\RtHDMIV.sys
15:00:02.0423 1692 RTHDMIAzAudService - ok
15:00:02.0481 1692 RTSTOR (b0538dea03e088b80482ca939f4e8740) C:\Windows\system32\drivers\RTSTOR.SYS
15:00:02.0484 1692 RTSTOR - ok
15:00:02.0531 1692 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
15:00:02.0535 1692 SamSs - ok
15:00:02.0567 1692 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
15:00:02.0571 1692 sbp2port - ok
15:00:02.0626 1692 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
15:00:02.0633 1692 SCardSvr - ok
15:00:02.0722 1692 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
15:00:02.0739 1692 Schedule - ok
15:00:02.0763 1692 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
15:00:02.0765 1692 SCPolicySvc - ok
15:00:02.0807 1692 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
15:00:02.0816 1692 SDRSVC - ok
15:00:02.0836 1692 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
15:00:02.0838 1692 secdrv - ok
15:00:02.0863 1692 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
15:00:02.0870 1692 seclogon - ok
15:00:02.0898 1692 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\System32\sens.dll
15:00:02.0904 1692 SENS - ok
15:00:02.0933 1692 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
15:00:02.0936 1692 Serenum - ok
15:00:02.0961 1692 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
15:00:02.0964 1692 Serial - ok
15:00:02.0985 1692 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
15:00:02.0987 1692 sermouse - ok
15:00:03.0132 1692 ServiceLayer (9d38320bb32230349379df5ddbbf7fce) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
15:00:03.0144 1692 ServiceLayer - ok
15:00:03.0209 1692 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
15:00:03.0216 1692 SessionEnv - ok
15:00:03.0237 1692 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
15:00:03.0239 1692 sffdisk - ok
15:00:03.0277 1692 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
15:00:03.0279 1692 sffp_mmc - ok
15:00:03.0299 1692 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
15:00:03.0301 1692 sffp_sd - ok
15:00:03.0316 1692 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
15:00:03.0318 1692 sfloppy - ok
15:00:03.0374 1692 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
15:00:03.0385 1692 SharedAccess - ok
15:00:03.0455 1692 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
15:00:03.0465 1692 ShellHWDetection - ok
15:00:03.0484 1692 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
15:00:03.0488 1692 sisagp - ok
15:00:03.0529 1692 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
15:00:03.0532 1692 SiSRaid2 - ok
15:00:03.0553 1692 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
15:00:03.0557 1692 SiSRaid4 - ok
15:00:03.0868 1692 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
15:00:03.0958 1692 slsvc - ok
15:00:04.0165 1692 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
15:00:04.0173 1692 SLUINotify - ok
15:00:04.0268 1692 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
15:00:04.0271 1692 Smb - ok
15:00:04.0322 1692 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
15:00:04.0329 1692 SNMPTRAP - ok
15:00:04.0344 1692 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
15:00:04.0346 1692 spldr - ok
15:00:04.0383 1692 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
15:00:04.0391 1692 Spooler - ok
15:00:04.0444 1692 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
15:00:04.0453 1692 srv - ok
15:00:04.0493 1692 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
15:00:04.0498 1692 srv2 - ok
15:00:04.0517 1692 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
15:00:04.0521 1692 srvnet - ok
15:00:04.0568 1692 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
15:00:04.0576 1692 SSDPSRV - ok
15:00:04.0628 1692 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\Windows\system32\DRIVERS\ssmdrv.sys
15:00:04.0631 1692 ssmdrv - ok
15:00:04.0674 1692 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
15:00:04.0682 1692 SstpSvc - ok
15:00:04.0750 1692 ss_bbus (eaa66218cd39f5bb1b4853a78c67c787) C:\Windows\system32\DRIVERS\ss_bbus.sys
15:00:04.0755 1692 ss_bbus - ok
15:00:04.0776 1692 ss_bmdfl (91765f99914ed8693d8bc76524f21581) C:\Windows\system32\DRIVERS\ss_bmdfl.sys
15:00:04.0779 1692 ss_bmdfl - ok
15:00:04.0809 1692 ss_bmdm (840e7b738b03c10ee91d9b7d3d6eff15) C:\Windows\system32\DRIVERS\ss_bmdm.sys
15:00:04.0813 1692 ss_bmdm - ok
15:00:04.0898 1692 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
15:00:04.0914 1692 stisvc - ok
15:00:04.0936 1692 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
15:00:04.0938 1692 swenum - ok
15:00:05.0017 1692 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
15:00:05.0030 1692 swprv - ok
15:00:05.0068 1692 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
15:00:05.0072 1692 Symc8xx - ok
15:00:05.0098 1692 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
15:00:05.0101 1692 Sym_hi - ok
15:00:05.0145 1692 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
15:00:05.0148 1692 Sym_u3 - ok
15:00:05.0215 1692 SynTP (4c9bb4b3b9eac26211484c30b914c6dc) C:\Windows\system32\DRIVERS\SynTP.sys
15:00:05.0221 1692 SynTP - ok
15:00:05.0311 1692 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
15:00:05.0328 1692 SysMain - ok
15:00:05.0375 1692 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
15:00:05.0384 1692 TabletInputService - ok
15:00:05.0447 1692 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
15:00:05.0458 1692 TapiSrv - ok
15:00:05.0484 1692 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
15:00:05.0492 1692 TBS - ok
15:00:05.0607 1692 Tcpip (27d470dabc77bc60d0a3b0e4deb6cb91) C:\Windows\system32\drivers\tcpip.sys
15:00:05.0631 1692 Tcpip - ok
15:00:05.0653 1692 Tcpip6 (27d470dabc77bc60d0a3b0e4deb6cb91) C:\Windows\system32\DRIVERS\tcpip.sys
15:00:05.0667 1692 Tcpip6 - ok
15:00:05.0712 1692 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
15:00:05.0715 1692 tcpipreg - ok
15:00:05.0750 1692 TcUsb (72b9e77565da5fa564581976e000d29b) C:\Windows\system32\Drivers\tcusb.sys
15:00:05.0753 1692 TcUsb - ok
15:00:05.0786 1692 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
15:00:05.0789 1692 TDPIPE - ok
15:00:05.0806 1692 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
15:00:05.0810 1692 TDTCP - ok
15:00:05.0855 1692 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
15:00:05.0859 1692 tdx - ok
15:00:05.0907 1692 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
15:00:05.0911 1692 TermDD - ok
15:00:05.0989 1692 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
15:00:06.0005 1692 TermService - ok
15:00:06.0066 1692 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
15:00:06.0076 1692 Themes - ok
15:00:06.0102 1692 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
15:00:06.0106 1692 THREADORDER - ok
15:00:06.0167 1692 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
15:00:06.0175 1692 TrkWks - ok
15:00:06.0249 1692 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
15:00:06.0252 1692 TrustedInstaller - ok
15:00:06.0274 1692 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
15:00:06.0277 1692 tssecsrv - ok
15:00:06.0325 1692 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
15:00:06.0328 1692 tunmp - ok
15:00:06.0359 1692 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
15:00:06.0362 1692 tunnel - ok
15:00:06.0390 1692 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
15:00:06.0393 1692 uagp35 - ok
15:00:06.0413 1692 UBHelper (f763e070843ee2803de1395002b42938) C:\Windows\system32\drivers\UBHelper.sys
15:00:06.0416 1692 UBHelper - ok
15:00:06.0481 1692 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
15:00:06.0489 1692 udfs - ok
15:00:06.0532 1692 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
15:00:06.0540 1692 UI0Detect - ok
15:00:06.0568 1692 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
15:00:06.0572 1692 uliagpkx - ok
15:00:06.0605 1692 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
15:00:06.0613 1692 uliahci - ok
15:00:06.0648 1692 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
15:00:06.0653 1692 UlSata - ok
15:00:06.0686 1692 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
15:00:06.0691 1692 ulsata2 - ok
15:00:06.0711 1692 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
15:00:06.0714 1692 umbus - ok
15:00:06.0752 1692 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
15:00:06.0764 1692 upnphost - ok
15:00:06.0814 1692 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
15:00:06.0819 1692 usbaudio - ok
15:00:06.0867 1692 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
15:00:06.0872 1692 usbccgp - ok
15:00:06.0902 1692 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
15:00:06.0906 1692 usbcir - ok
15:00:06.0941 1692 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
15:00:06.0943 1692 usbehci - ok
15:00:06.0989 1692 usbfilter (edca5124b54bcf04e5c0538aa397a9c1) C:\Windows\system32\DRIVERS\usbfilter.sys
15:00:06.0992 1692 usbfilter - ok
15:00:07.0031 1692 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
15:00:07.0038 1692 usbhub - ok
15:00:07.0065 1692 usbohci (ce697fee0d479290d89bec80dfe793b7) C:\Windows\system32\DRIVERS\usbohci.sys
15:00:07.0068 1692 usbohci - ok
15:00:07.0105 1692 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
15:00:07.0108 1692 usbprint - ok
15:00:07.0178 1692 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
15:00:07.0182 1692 usbscan - ok
15:00:07.0205 1692 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:00:07.0209 1692 USBSTOR - ok
15:00:07.0246 1692 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
15:00:07.0249 1692 usbuhci - ok
15:00:07.0281 1692 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
15:00:07.0286 1692 usbvideo - ok
15:00:07.0336 1692 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
15:00:07.0343 1692 UxSms - ok
15:00:07.0420 1692 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
15:00:07.0435 1692 vds - ok
15:00:07.0445 1692 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
15:00:07.0448 1692 vga - ok
15:00:07.0472 1692 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
15:00:07.0475 1692 VgaSave - ok
15:00:07.0512 1692 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
15:00:07.0516 1692 viaagp - ok
15:00:07.0536 1692 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
15:00:07.0539 1692 ViaC7 - ok
15:00:07.0561 1692 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
15:00:07.0564 1692 viaide - ok
15:00:07.0670 1692 VMCService (6e021d6da429ad7288fe8322e2bba96b) C:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe
15:00:07.0672 1692 VMCService - ok
15:00:07.0692 1692 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
15:00:07.0696 1692 volmgr - ok
15:00:07.0763 1692 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
15:00:07.0773 1692 volmgrx - ok
15:00:07.0832 1692 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
15:00:07.0840 1692 volsnap - ok
15:00:07.0864 1692 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
15:00:07.0869 1692 vsmraid - ok
15:00:08.0018 1692 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
15:00:08.0044 1692 VSS - ok
15:00:08.0110 1692 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
15:00:08.0122 1692 W32Time - ok
15:00:08.0199 1692 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
15:00:08.0202 1692 WacomPen - ok
15:00:08.0227 1692 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
15:00:08.0229 1692 Wanarp - ok
15:00:08.0237 1692 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
15:00:08.0239 1692 Wanarpv6 - ok
15:00:08.0327 1692 WcesComm (779f9c90d3fe9c70b6ffd8ef035f3e83) C:\Windows\WindowsMobile\wcescomm.dll
15:00:08.0334 1692 WcesComm - ok
15:00:08.0408 1692 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
15:00:08.0423 1692 wcncsvc - ok
15:00:08.0451 1692 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
15:00:08.0459 1692 WcsPlugInService - ok
15:00:08.0478 1692 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
15:00:08.0482 1692 Wd - ok
15:00:08.0561 1692 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
15:00:08.0575 1692 Wdf01000 - ok
15:00:08.0614 1692 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
15:00:08.0622 1692 WdiServiceHost - ok
15:00:08.0629 1692 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
15:00:08.0637 1692 WdiSystemHost - ok
15:00:08.0695 1692 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
15:00:08.0706 1692 WebClient - ok
15:00:08.0753 1692 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
15:00:08.0762 1692 Wecsvc - ok
15:00:08.0785 1692 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
15:00:08.0793 1692 wercplsupport - ok
15:00:08.0848 1692 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
15:00:08.0857 1692 WerSvc - ok
15:00:08.0890 1692 winbondcir (3fa87d56769838aac82fafc3e78fc732) C:\Windows\system32\DRIVERS\winbondcir.sys
15:00:08.0894 1692 winbondcir - ok
15:00:08.0964 1692 WinDefend (4575aa12561c5648483403541d0d7f2b) C:\Program Files\Windows Defender\mpsvc.dll
15:00:08.0970 1692 WinDefend - ok
15:00:08.0984 1692 WinHttpAutoProxySvc - ok
15:00:09.0057 1692 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
15:00:09.0061 1692 Winmgmt - ok
15:00:09.0210 1692 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
15:00:09.0246 1692 WinRM - ok
15:00:09.0318 1692 winusb (676f4b665bdd8053eaa53ac1695b8074) C:\Windows\system32\DRIVERS\winusb.sys
15:00:09.0322 1692 winusb - ok
15:00:09.0407 1692 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
15:00:09.0427 1692 Wlansvc - ok
15:00:09.0459 1692 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
15:00:09.0462 1692 WmiAcpi - ok
15:00:09.0565 1692 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
15:00:09.0569 1692 wmiApSrv - ok
15:00:09.0700 1692 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
15:00:09.0718 1692 WMPNetworkSvc - ok
15:00:09.0785 1692 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
15:00:09.0795 1692 WPCSvc - ok
15:00:09.0854 1692 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
15:00:09.0862 1692 WPDBusEnum - ok
15:00:09.0939 1692 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
15:00:09.0943 1692 WpdUsb - ok
15:00:10.0114 1692 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
15:00:10.0133 1692 WPFFontCache_v0400 - ok
15:00:10.0180 1692 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
15:00:10.0184 1692 ws2ifsl - ok
15:00:10.0227 1692 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\System32\wscsvc.dll
15:00:10.0235 1692 wscsvc - ok
15:00:10.0245 1692 WSearch - ok
15:00:10.0450 1692 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) C:\Windows\system32\wuaueng.dll
15:00:10.0504 1692 wuauserv - ok
15:00:10.0661 1692 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
15:00:10.0666 1692 WUDFRd - ok
15:00:10.0693 1692 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
15:00:10.0701 1692 wudfsvc - ok
15:00:10.0816 1692 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796} (74ec37b9eaf9fca015b933a526825c7a) C:\Program Files\Acer Arcade Deluxe\PlayMovie\000.fcl
15:00:10.0820 1692 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796} - ok
15:00:10.0847 1692 MBR (0x1B8) (bb9d3a6a13c5010348da7c900bb6af50) \Device\Harddisk0\DR0
15:00:12.0283 1692 \Device\Harddisk0\DR0 - ok
15:00:12.0291 1692 Boot (0x1200) (ebbdc6b35b34f987926566bc737f7258) \Device\Harddisk0\DR0\Partition0
15:00:12.0297 1692 \Device\Harddisk0\DR0\Partition0 - ok
15:00:12.0341 1692 Boot (0x1200) (bb0a045c730672778db22fa949fde453) \Device\Harddisk0\DR0\Partition1
15:00:12.0344 1692 \Device\Harddisk0\DR0\Partition1 - ok
15:00:12.0345 1692 ============================================================
15:00:12.0345 1692 Scan finished
15:00:12.0345 1692 ============================================================
15:00:12.0375 4592 Detected object count: 0
15:00:12.0376 4592 Actual detected object count: 0
15:01:29.0719 0252 ============================================================
15:01:29.0720 0252 Scan started
15:01:29.0720 0252 Mode: Manual; SigCheck; TDLFS;
15:01:29.0720 0252 ============================================================
15:01:30.0050 0252 ACDaemon (adc420616c501b45d26c0fd3ef1e54e4) C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
15:01:30.0303 0252 ACDaemon - ok
15:01:30.0376 0252 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
15:01:30.0419 0252 ACPI - ok
15:01:30.0486 0252 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
15:01:30.0536 0252 adp94xx - ok
15:01:30.0576 0252 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
15:01:30.0616 0252 adpahci - ok
15:01:30.0646 0252 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
15:01:30.0679 0252 adpu160m - ok
15:01:30.0711 0252 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
15:01:30.0745 0252 adpu320 - ok
15:01:30.0778 0252 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
15:01:30.0945 0252 AeLookupSvc - ok
15:01:30.0995 0252 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
15:01:31.0064 0252 AFD - ok
15:01:31.0091 0252 AgereModemAudio (efbc44fbd75e4f80bd927aebf6e7eade) C:\Windows\system32\agrsmsvc.exe
15:01:31.0170 0252 AgereModemAudio - ok
15:01:31.0292 0252 AgereSoftModem (1cfeba39fc613e45b49d3eddfbcda289) C:\Windows\system32\DRIVERS\AGRSM.sys
15:01:31.0429 0252 AgereSoftModem - ok
15:01:31.0450 0252 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
15:01:31.0480 0252 agp440 - ok
15:01:31.0540 0252 ahcix86s (9879ff9f6a04d660bc245788e1881b00) C:\Windows\system32\DRIVERS\ahcix86s.sys
15:01:31.0569 0252 ahcix86s - ok
15:01:31.0600 0252 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
15:01:31.0631 0252 aic78xx - ok
15:01:31.0663 0252 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
15:01:31.0797 0252 ALG - ok
15:01:31.0816 0252 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
15:01:31.0844 0252 aliide - ok
15:01:31.0865 0252 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
15:01:31.0895 0252 amdagp - ok
15:01:31.0922 0252 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
15:01:31.0951 0252 amdide - ok
15:01:31.0972 0252 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
15:01:32.0054 0252 AmdK7 - ok
15:01:32.0075 0252 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
15:01:32.0157 0252 AmdK8 - ok
15:01:32.0265 0252 AntiVirSchedulerService (466a0d95960dad3222c896d2cea99993) C:\Program Files\Avira\AntiVir Desktop\sched.exe
15:01:32.0295 0252 AntiVirSchedulerService - ok
15:01:32.0326 0252 AntiVirService (a489be6bb0aa1ff406b488b60542314b) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
15:01:32.0353 0252 AntiVirService - ok
15:01:32.0403 0252 AnyDVD (7a7a9f83fa3572448111886e34ca8565) C:\Windows\system32\Drivers\AnyDVD.sys
15:01:32.0432 0252 AnyDVD - ok
15:01:32.0459 0252 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
15:01:32.0523 0252 Appinfo - ok
15:01:32.0546 0252 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
15:01:32.0577 0252 arc - ok
15:01:32.0617 0252 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
15:01:32.0647 0252 arcsas - ok
15:01:32.0672 0252 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
15:01:32.0752 0252 AsyncMac - ok
15:01:32.0801 0252 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
15:01:32.0831 0252 atapi - ok
15:01:32.0952 0252 athr (f32fee7cb2ee32c1f808409bc8019701) C:\Windows\system32\DRIVERS\athr.sys
15:01:33.0125 0252 athr - ok
15:01:33.0206 0252 Ati External Event Utility (37c62d0a9249d286fc133e7c3f55a81c) C:\Windows\system32\Ati2evxx.exe
15:01:33.0291 0252 Ati External Event Utility - ok
15:01:33.0657 0252 atikmdag (dde8884695e4d34cc4573d8707aeff95) C:\Windows\system32\DRIVERS\atikmdag.sys
15:01:33.0842 0252 atikmdag - ok
15:01:33.0982 0252 AtiPcie (5a1465ad2e7c1bc39cda12a355329096) C:\Windows\system32\DRIVERS\AtiPcie.sys
15:01:34.0006 0252 AtiPcie - ok
15:01:34.0078 0252 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
15:01:34.0152 0252 AudioEndpointBuilder - ok
15:01:34.0163 0252 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
15:01:34.0217 0252 Audiosrv - ok
15:01:34.0327 0252 avgntflt (d5541f0afb767e85fc412fc609d96a74) C:\Windows\system32\DRIVERS\avgntflt.sys
15:01:34.0355 0252 avgntflt - ok
15:01:34.0387 0252 avipbb (7d967a682d4694df7fa57d63a2db01fe) C:\Windows\system32\DRIVERS\avipbb.sys
15:01:34.0419 0252 avipbb - ok
15:01:34.0440 0252 avkmgr (271cfd1a989209b1964e24d969552bf7) C:\Windows\system32\DRIVERS\avkmgr.sys
15:01:34.0466 0252 avkmgr - ok
15:01:34.0501 0252 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
15:01:34.0580 0252 Beep - ok
15:01:34.0638 0252 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
15:01:34.0753 0252 BFE - ok
15:01:34.0862 0252 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\System32\qmgr.dll
15:01:34.0954 0252 BITS - ok
15:01:34.0979 0252 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
15:01:35.0058 0252 blbdrive - ok
15:01:35.0088 0252 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
15:01:35.0164 0252 bowser - ok
15:01:35.0195 0252 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
15:01:35.0250 0252 BrFiltLo - ok
15:01:35.0273 0252 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
15:01:35.0337 0252 BrFiltUp - ok
15:01:35.0376 0252 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
15:01:35.0451 0252 Browser - ok
15:01:35.0478 0252 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
15:01:35.0725 0252 Brserid - ok
15:01:35.0768 0252 BrSerIf (1a5fc78e41840edf79d65ec16eff2787) C:\Windows\system32\Drivers\BrSerIf.sys
15:01:35.0837 0252 BrSerIf - ok
15:01:35.0863 0252 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
15:01:35.0982 0252 BrSerWdm - ok
15:01:36.0003 0252 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
15:01:36.0110 0252 BrUsbMdm - ok
15:01:36.0120 0252 BrUsbSer (a24c7b39602218f8dbdb2b6704325fc7) C:\Windows\system32\Drivers\BrUsbSer.sys
15:01:36.0165 0252 BrUsbSer - ok
15:01:36.0196 0252 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
15:01:36.0319 0252 BTHMODEM - ok
15:01:36.0374 0252 BUNAgentSvc (09e6affae6c0e9158bf05c7d08d0107a) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
15:01:36.0398 0252 BUNAgentSvc ( UnsignedFile.Multi.Generic ) - warning
15:01:36.0398 0252 BUNAgentSvc - detected UnsignedFile.Multi.Generic (1)
15:01:36.0423 0252 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
15:01:36.0484 0252 cdfs - ok
15:01:36.0537 0252 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
15:01:36.0601 0252 cdrom - ok
15:01:36.0646 0252 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
15:01:36.0703 0252 CertPropSvc - ok
15:01:36.0726 0252 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\DRIVERS\circlass.sys
15:01:36.0799 0252 circlass - ok
15:01:36.0865 0252 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
15:01:36.0911 0252 CLFS - ok
15:01:36.0987 0252 CLHNService (1a05e1af359d8e961279f1eea30a91ee) C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe
15:01:37.0012 0252 CLHNService - ok
15:01:37.0078 0252 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:01:37.0106 0252 clr_optimization_v2.0.50727_32 - ok
15:01:37.0175 0252 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:01:37.0205 0252 clr_optimization_v4.0.30319_32 - ok
15:01:37.0229 0252 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
15:01:37.0301 0252 CmBatt - ok
15:01:37.0317 0252 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
15:01:37.0352 0252 cmdide - ok
15:01:37.0376 0252 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
15:01:37.0405 0252 Compbatt - ok
15:01:37.0412 0252 COMSysApp - ok
15:01:37.0429 0252 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
15:01:37.0459 0252 crcdisk - ok
15:01:37.0483 0252 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
15:01:37.0561 0252 Crusoe - ok
15:01:37.0614 0252 CryptSvc (75c6a297e364014840b48eccd7525e30) C:\Windows\system32\cryptsvc.dll
15:01:37.0679 0252 CryptSvc - ok
15:01:37.0802 0252 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
15:01:37.0919 0252 DcomLaunch - ok
15:01:37.0971 0252 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
15:01:38.0041 0252 DfsC - ok
15:01:38.0308 0252 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
15:01:38.0465 0252 DFSR - ok
15:01:39.0436 0252 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
15:01:39.0520 0252 Dhcp - ok
15:01:39.0673 0252 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
15:01:39.0704 0252 disk - ok
15:01:39.0780 0252 DKbFltr (73baf270d24fe726b9cd7f80bb17a23d) C:\Windows\system32\DRIVERS\DKbFltr.sys
15:01:39.0805 0252 DKbFltr - ok
15:01:39.0934 0252 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
15:01:40.0020 0252 Dnscache - ok
15:01:40.0076 0252 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
15:01:40.0146 0252 dot3svc - ok
15:01:40.0217 0252 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
15:01:40.0299 0252 DPS - ok
15:01:40.0345 0252 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
15:01:40.0422 0252 drmkaud - ok
15:01:41.0361 0252 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
15:01:41.0408 0252 DXGKrnl - ok
15:01:41.0657 0252 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
15:01:41.0735 0252 E1G60 - ok
15:01:41.0938 0252 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
15:01:42.0001 0252 EapHost - ok
15:01:42.0047 0252 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
15:01:42.0079 0252 Ecache - ok
15:01:42.0562 0252 eDataSecurity Service (b1f2503e23425b386df0f3413b2596f3) C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
15:01:42.0609 0252 eDataSecurity Service - ok
15:01:42.0874 0252 ehRecvr (9be3744d295a7701eb425332014f0797) C:\Windows\ehome\ehRecvr.exe
15:01:42.0921 0252 ehRecvr - ok
15:01:42.0968 0252 ehSched (ad1870c8e5d6dd340c829e6074bf3c3f) C:\Windows\ehome\ehsched.exe
15:01:43.0030 0252 ehSched - ok
15:01:43.0061 0252 ehstart (c27c4ee8926e74aa72efcab24c5242c3) C:\Windows\ehome\ehstart.dll
15:01:43.0093 0252 ehstart - ok
15:01:43.0124 0252 ElbyCDFL (ce37e3d51912e59c80c6d84337c0b4cd) C:\Windows\system32\Drivers\ElbyCDFL.sys
15:01:43.0155 0252 ElbyCDFL - ok
15:01:43.0249 0252 ElbyCDIO (027319ab8628d3ae07ff3b5a40fab62f) C:\Windows\system32\Drivers\ElbyCDIO.sys
15:01:43.0280 0252 ElbyCDIO - ok
15:01:43.0545 0252 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
15:01:43.0592 0252 elxstor - ok
15:01:43.0717 0252 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
15:01:43.0873 0252 EMDMgmt - ok
15:01:43.0888 0252 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
15:01:43.0951 0252 ErrDev - ok
15:01:44.0107 0252 ETService (27d2754314d12eb27d81d462fd0d86c0) C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
15:01:44.0138 0252 ETService ( UnsignedFile.Multi.Generic ) - warning
15:01:44.0138 0252 ETService - detected UnsignedFile.Multi.Generic (1)
15:01:44.0294 0252 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
15:01:44.0341 0252 EventSystem - ok
15:01:44.0403 0252 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
15:01:44.0465 0252 exfat - ok
15:01:44.0512 0252 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
15:01:44.0575 0252 fastfat - ok
15:01:44.0606 0252 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
15:01:44.0684 0252 fdc - ok
15:01:44.0699 0252 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
15:01:44.0762 0252 fdPHost - ok
15:01:44.0777 0252 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
15:01:44.0887 0252 FDResPub - ok
15:01:44.0902 0252 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
15:01:44.0933 0252 FileInfo - ok
15:01:44.0965 0252 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
15:01:45.0027 0252 Filetrace - ok
15:01:45.0043 0252 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
15:01:45.0121 0252 flpydisk - ok
15:01:45.0277 0252 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
15:01:45.0339 0252 FltMgr - ok
15:01:45.0479 0252 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
15:01:45.0604 0252 FontCache - ok
15:01:45.0760 0252 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
15:01:45.0807 0252 FontCache3.0.0.0 - ok
15:01:45.0869 0252 FsUsbExDisk (790a4ca68f44be35967b3df61f3e4675) C:\Windows\system32\FsUsbExDisk.SYS
15:01:45.0885 0252 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - warning
15:01:45.0885 0252 FsUsbExDisk - detected UnsignedFile.Multi.Generic (1)
15:01:45.0932 0252 FsUsbExService (d3f9205cc4cb07553f2f9472c767ea87) C:\Windows\system32\FsUsbExService.Exe
15:01:45.0947 0252 FsUsbExService ( UnsignedFile.Multi.Generic ) - warning
15:01:45.0947 0252 FsUsbExService - detected UnsignedFile.Multi.Generic (1)
15:01:46.0025 0252 Fs_Rec (b972a66758577e0bfd1de0f91aaa27b5) C:\Windows\system32\drivers\Fs_Rec.sys
15:01:46.0088 0252 Fs_Rec - ok
15:01:46.0103 0252 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
15:01:46.0135 0252 gagp30kx - ok
15:01:46.0213 0252 getPlusHelper (fd7e9aba274df75e08320420b8e9a1d5) C:\Program Files\NOS\bin\getPlus_Helper.dll
15:01:46.0244 0252 getPlusHelper - ok
15:01:46.0369 0252 GoogleDesktopManager-080708-050100 (6fd7f370817f16b5e1f08b91badaa2ee) C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
15:01:46.0400 0252 GoogleDesktopManager-080708-050100 ( UnsignedFile.Multi.Generic ) - warning
15:01:46.0400 0252 GoogleDesktopManager-080708-050100 - detected UnsignedFile.Multi.Generic (1)
15:01:47.0008 0252 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
15:01:47.0133 0252 gpsvc - ok
15:01:47.0289 0252 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
15:01:47.0414 0252 HdAudAddService - ok
15:01:47.0882 0252 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
15:01:48.0007 0252 HDAudBus - ok
15:01:48.0038 0252 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
15:01:48.0163 0252 HidBth - ok
15:01:48.0209 0252 HidIr (d8df3722d5e961baa1292aa2f12827e2) C:\Windows\system32\DRIVERS\hidir.sys
15:01:48.0287 0252 HidIr - ok
15:01:48.0397 0252 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\system32\hidserv.dll
15:01:48.0443 0252 hidserv - ok
15:01:48.0490 0252 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
15:01:48.0553 0252 HidUsb - ok
15:01:48.0724 0252 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
15:01:48.0802 0252 hkmsvc - ok
15:01:48.0880 0252 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
15:01:48.0927 0252 HpCISSs - ok
15:01:49.0239 0252 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
15:01:49.0301 0252 HTTP - ok
15:01:49.0317 0252 hwdatacard - ok
15:01:49.0442 0252 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
15:01:49.0473 0252 i2omp - ok
15:01:49.0504 0252 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
15:01:49.0567 0252 i8042prt - ok
15:01:49.0738 0252 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
15:01:49.0785 0252 iaStorV - ok
15:01:50.0019 0252 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
15:01:50.0035 0252 IDriverT ( UnsignedFile.Multi.Generic ) - warning
15:01:50.0035 0252 IDriverT - detected UnsignedFile.Multi.Generic (1)
15:01:50.0331 0252 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
15:01:50.0425 0252 idsvc - ok
15:01:50.0456 0252 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
15:01:50.0471 0252 iirsp - ok
15:01:50.0705 0252 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
15:01:50.0783 0252 IKEEXT - ok
15:01:50.0830 0252 int15 (4d8d5b1c895ea0f2a721b98a7ce198f1) C:\Windows\system32\drivers\int15.sys
15:01:50.0861 0252 int15 ( UnsignedFile.Multi.Generic ) - warning
15:01:50.0861 0252 int15 - detected UnsignedFile.Multi.Generic (1)
15:01:51.0751 0252 IntcAzAudAddService (febdd0310fba3da13f56ede2e9f7b5dc) C:\Windows\system32\drivers\RTKVHDA.sys
15:01:51.0875 0252 IntcAzAudAddService - ok
15:01:52.0187 0252 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
15:01:52.0219 0252 intelide - ok
15:01:52.0265 0252 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
15:01:52.0328 0252 intelppm - ok
15:01:52.0390 0252 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
15:01:52.0453 0252 IPBusEnum - ok
15:01:52.0562 0252 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:01:52.0640 0252 IpFilterDriver - ok
15:01:52.0967 0252 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
15:01:53.0030 0252 iphlpsvc - ok
15:01:53.0045 0252 IpInIp - ok
15:01:53.0077 0252 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
15:01:53.0170 0252 IPMIDRV - ok
15:01:53.0186 0252 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
15:01:53.0264 0252 IPNAT - ok
15:01:53.0326 0252 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
15:01:53.0435 0252 IRENUM - ok
15:01:53.0451 0252 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
15:01:53.0482 0252 isapnp - ok
15:01:53.0685 0252 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
15:01:53.0716 0252 iScsiPrt - ok
15:01:53.0747 0252 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
15:01:53.0779 0252 iteatapi - ok
15:01:53.0872 0252 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
15:01:53.0903 0252 iteraid - ok
15:01:54.0059 0252 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
15:01:54.0075 0252 kbdclass - ok
15:01:54.0153 0252 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
15:01:54.0184 0252 kbdhid - ok
15:01:54.0247 0252 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
15:01:54.0325 0252 KeyIso - ok
15:01:54.0387 0252 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
15:01:54.0434 0252 KSecDD - ok
15:01:54.0933 0252 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
15:01:55.0042 0252 KtmRm - ok
15:01:55.0105 0252 L1E (0ebce7560b5f4b52762c39c39f9dec57) C:\Windows\system32\DRIVERS\L1E60x86.sys
15:01:55.0183 0252 L1E - ok
15:01:55.0245 0252 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\system32\srvsvc.dll
15:01:55.0339 0252 LanmanServer - ok
15:01:55.0541 0252 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
15:01:55.0635 0252 LanmanWorkstation - ok
15:01:55.0994 0252 Lavasoft Ad-Aware Service (ed60ffd305ac0424920d146db9f9ed78) C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
15:01:56.0150 0252 Lavasoft Ad-Aware Service - ok
15:01:56.0243 0252 Lavasoft Kernexplorer (6c4a3804510ad8e0f0c07b5be3d44ddb) C:\Program Files\Lavasoft\Ad-Aware\KernExplorer.sys
15:01:56.0259 0252 Lavasoft Kernexplorer - ok
15:01:56.0399 0252 Lbd (336abe8721cbc3110f1c6426da633417) C:\Windows\system32\DRIVERS\Lbd.sys
15:01:56.0431 0252 Lbd - ok
15:01:56.0493 0252 LightScribeService (793ff718477345cd5d232c50bed1e452) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
15:01:56.0509 0252 LightScribeService ( UnsignedFile.Multi.Generic ) - warning
15:01:56.0509 0252 LightScribeService - detected UnsignedFile.Multi.Generic (1)
15:01:56.0524 0252 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
15:01:56.0587 0252 lltdio - ok
15:01:56.0633 0252 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
15:01:56.0696 0252 lltdsvc - ok
15:01:56.0727 0252 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
15:01:56.0852 0252 lmhosts - ok
15:01:56.0883 0252 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
15:01:56.0914 0252 LSI_FC - ok
15:01:56.0930 0252 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
15:01:56.0977 0252 LSI_SAS - ok
15:01:57.0008 0252 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
15:01:57.0039 0252 LSI_SCSI - ok
15:01:57.0055 0252 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
15:01:57.0117 0252 luafv - ok
15:01:57.0148 0252 Mcx2Svc (aef9babb8a506bc4ce0451a64aaded46) C:\Windows\system32\Mcx2Svc.dll
15:01:57.0179 0252 Mcx2Svc - ok
15:01:57.0211 0252 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
15:01:57.0226 0252 megasas - ok
15:01:57.0289 0252 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
15:01:57.0335 0252 MegaSR - ok
15:01:57.0351 0252 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
15:01:57.0429 0252 MMCSS - ok
15:01:57.0460 0252 MobilityService - ok
15:01:57.0491 0252 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
15:01:57.0554 0252 Modem - ok
15:01:57.0569 0252 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
15:01:57.0632 0252 monitor - ok
15:01:57.0663 0252 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
15:01:57.0694 0252 mouclass - ok
15:01:57.0710 0252 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
15:01:57.0772 0252 mouhid - ok
15:01:57.0803 0252 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
15:01:57.0835 0252 MountMgr - ok
15:01:57.0913 0252 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
15:01:57.0944 0252 MozillaMaintenance - ok
15:01:57.0975 0252 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
15:01:58.0006 0252 mpio - ok
15:01:58.0037 0252 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
15:01:58.0084 0252 mpsdrv - ok
15:01:58.0147 0252 MpsSvc (5de62c6e9108f14f6794060a9bdecaec) C:\Windows\system32\mpssvc.dll
15:01:58.0240 0252 MpsSvc - ok
15:01:58.0271 0252 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
15:01:58.0287 0252 Mraid35x - ok
15:01:58.0349 0252 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
15:01:58.0381 0252 MRxDAV - ok
15:01:58.0412 0252 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
15:01:58.0474 0252 mrxsmb - ok
15:01:58.0521 0252 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:01:58.0552 0252 mrxsmb10 - ok
15:01:58.0568 0252 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:01:58.0599 0252 mrxsmb20 - ok
15:01:58.0630 0252 msahci (f70590424eefbf5c27a40c67afdb8383) C:\Windows\system32\drivers\msahci.sys
15:01:58.0661 0252 msahci - ok
15:01:58.0677 0252 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
15:01:58.0708 0252 msdsm - ok
15:01:58.0911 0252 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
15:01:58.0989 0252 MSDTC - ok
15:01:59.0020 0252 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
15:01:59.0098 0252 Msfs - ok
15:01:59.0114 0252 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
15:01:59.0145 0252 msisadrv - ok
15:01:59.0192 0252 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
15:01:59.0254 0252 MSiSCSI - ok
15:01:59.0254 0252 msiserver - ok
15:01:59.0285 0252 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
15:01:59.0363 0252 MSKSSRV - ok
15:01:59.0379 0252 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
15:01:59.0457 0252 MSPCLOCK - ok
15:01:59.0473 0252 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
15:01:59.0551 0252 MSPQM - ok
15:01:59.0597 0252 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
15:01:59.0629 0252 MsRPC - ok
15:01:59.0660 0252 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
15:01:59.0675 0252 mssmbios - ok
15:01:59.0691 0252 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
15:01:59.0753 0252 MSTEE - ok
15:01:59.0769 0252 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
15:01:59.0800 0252 Mup - ok
15:01:59.0863 0252 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
15:01:59.0941 0252 napagent - ok
15:01:59.0987 0252 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
15:02:00.0034 0252 NativeWifiP - ok
15:02:00.0112 0252 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
15:02:00.0159 0252 NDIS - ok
15:02:00.0190 0252 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
15:02:00.0237 0252 NdisTapi - ok
15:02:00.0284 0252 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
15:02:00.0331 0252 Ndisuio - ok
15:02:00.0377 0252 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
15:02:00.0424 0252 NdisWan - ok
15:02:00.0455 0252 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
15:02:00.0502 0252 NDProxy - ok
15:02:00.0533 0252 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
15:02:00.0611 0252 NetBIOS - ok
15:02:00.0658 0252 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
15:02:00.0721 0252 netbt - ok
15:02:00.0767 0252 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
15:02:00.0783 0252 Netlogon - ok
15:02:00.0845 0252 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
15:02:00.0908 0252 Netman - ok
15:02:00.0955 0252 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
15:02:01.0033 0252 netprofm - ok
15:02:01.0095 0252 netr28 (95725c00b580ed75a80e94acbc77cdbc) C:\Windows\system32\DRIVERS\netr28.sys
15:02:01.0173 0252 netr28 - ok
15:02:01.0235 0252 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
15:02:01.0267 0252 NetTcpPortSharing - ok
15:02:01.0298 0252 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
15:02:01.0329 0252 nfrd960 - ok
15:02:01.0376 0252 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
15:02:01.0438 0252 NlaSvc - ok
15:02:01.0501 0252 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
15:02:01.0547 0252 Npfs - ok
15:02:01.0563 0252 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
15:02:01.0641 0252 nsi - ok
15:02:01.0672 0252 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
15:02:01.0750 0252 nsiproxy - ok
15:02:01.0875 0252 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
15:02:01.0984 0252 Ntfs - ok
15:02:02.0031 0252 NTIBackupSvc (a2b6583a5652a385dff5e4f49ad48761) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
15:02:02.0047 0252 NTIBackupSvc ( UnsignedFile.Multi.Generic ) - warning
15:02:02.0047 0252 NTIBackupSvc - detected UnsignedFile.Multi.Generic (1)
15:02:02.0062 0252 NTIDrvr (2757d2ba59aee155209e24942ab127c9) C:\Windows\system32\DRIVERS\NTIDrvr.sys
15:02:02.0078 0252 NTIDrvr - ok
15:02:02.0203 0252 NTIPPKernel (547bfa3591c70674b0bfc99354ab78b3) C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\NTIPPKernel.sys
15:02:02.0234 0252 NTIPPKernel ( UnsignedFile.Multi.Generic ) - warning
15:02:02.0234 0252 NTIPPKernel - detected UnsignedFile.Multi.Generic (1)
15:02:02.0249 0252 NTISchedulerSvc (40b87fe8a1a9a5ac9e5a91d96f212bcd) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
15:02:02.0281 0252 NTISchedulerSvc ( UnsignedFile.Multi.Generic ) - warning
15:02:02.0281 0252 NTISchedulerSvc - detected UnsignedFile.Multi.Generic (1)
15:02:02.0312 0252 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
15:02:02.0437 0252 ntrigdigi - ok
15:02:02.0452 0252 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
15:02:02.0515 0252 Null - ok
15:02:02.0530 0252 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
15:02:02.0561 0252 nvraid - ok
15:02:02.0593 0252 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
15:02:02.0624 0252 nvstor - ok
15:02:02.0639 0252 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
15:02:02.0671 0252 nv_agp - ok
15:02:02.0686 0252 NwlnkFlt - ok
15:02:02.0702 0252 NwlnkFwd - ok
15:02:02.0842 0252 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
15:02:02.0889 0252 odserv - ok
15:02:02.0905 0252 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
15:02:03.0014 0252 ohci1394 - ok
15:02:03.0045 0252 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:02:03.0076 0252 ose - ok
15:02:03.0185 0252 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
15:02:03.0248 0252 p2pimsvc - ok
15:02:03.0263 0252 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
15:02:03.0341 0252 p2psvc - ok
15:02:03.0388 0252 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
15:02:03.0513 0252 Parport - ok
15:02:03.0560 0252 partmgr (b9c2b89f08670e159f7181891e449cd9) C:\Windows\system32\drivers\partmgr.sys
15:02:03.0591 0252 partmgr - ok
15:02:03.0607 0252 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
15:02:03.0716 0252 Parvdm - ok
15:02:03.0747 0252 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
15:02:03.0794 0252 PcaSvc - ok
15:02:03.0841 0252 pccsmcfd (175cc28dcf819f78caa3fbd44ad9e52a) C:\Windows\system32\DRIVERS\pccsmcfd.sys
15:02:03.0887 0252 pccsmcfd - ok
15:02:03.0950 0252 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
15:02:03.0981 0252 pci - ok
15:02:03.0997 0252 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
15:02:04.0028 0252 pciide - ok
15:02:04.0059 0252 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
15:02:04.0090 0252 pcmcia - ok
15:02:04.0184 0252 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
15:02:04.0340 0252 PEAUTH - ok
15:02:04.0511 0252 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
15:02:04.0667 0252 pla - ok
15:02:04.0808 0252 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
15:02:04.0886 0252 PlugPlay - ok
15:02:04.0979 0252 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
15:02:05.0057 0252 PNRPAutoReg - ok
15:02:05.0073 0252 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
15:02:05.0135 0252 PNRPsvc - ok
15:02:05.0182 0252 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
15:02:05.0260 0252 PolicyAgent - ok
15:02:05.0323 0252 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
15:02:05.0385 0252 PptpMiniport - ok
15:02:05.0416 0252 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\DRIVERS\processr.sys
15:02:05.0479 0252 Processor - ok
15:02:05.0541 0252 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
15:02:05.0603 0252 ProfSvc - ok
15:02:05.0635 0252 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
15:02:05.0666 0252 ProtectedStorage - ok
15:02:05.0697 0252 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
15:02:05.0759 0252 PSched - ok
15:02:05.0791 0252 PSDFilter (628321c8dd76ad369b362b202e655a68) C:\Windows\system32\DRIVERS\psdfilter.sys
15:02:05.0806 0252 PSDFilter - ok
15:02:05.0822 0252 PSDNServ (79d7117e62709c7690cf3dd55acead37) C:\Windows\system32\DRIVERS\PSDNServ.sys
15:02:05.0837 0252 PSDNServ - ok
15:02:05.0869 0252 psdvdisk (cae5e82827990cf4bd4a49576bde3a43) C:\Windows\system32\DRIVERS\PSDVdisk.sys
15:02:05.0900 0252 psdvdisk - ok
15:02:05.0993 0252 PSI_SVC_2 (a6a7ad767bf5141665f5c675f671b3e1) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
15:02:06.0025 0252 PSI_SVC_2 - ok
15:02:06.0134 0252 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
15:02:06.0243 0252 ql2300 - ok
15:02:06.0274 0252 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
15:02:06.0305 0252 ql40xx - ok
15:02:06.0352 0252 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
15:02:06.0399 0252 QWAVE - ok
15:02:06.0415 0252 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
15:02:06.0461 0252 QWAVEdrv - ok
15:02:06.0524 0252 RapiMgr (70dbdab246c18b78e2200d6401d038be) C:\Windows\WindowsMobile\rapimgr.dll
15:02:06.0602 0252 RapiMgr - ok
15:02:06.0633 0252 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
15:02:06.0695 0252 RasAcd - ok
15:02:06.0742 0252 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
15:02:06.0805 0252 RasAuto - ok
15:02:06.0836 0252 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
15:02:06.0898 0252 Rasl2tp - ok
15:02:06.0961 0252 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
15:02:07.0039 0252 RasMan - ok
15:02:07.0085 0252 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
15:02:07.0163 0252 RasPppoe - ok
15:02:07.0195 0252 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
15:02:07.0210 0252 RasSstp - ok
15:02:07.0288 0252 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
15:02:07.0351 0252 rdbss - ok
15:02:07.0382 0252 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
15:02:07.0444 0252 RDPCDD - ok
15:02:07.0491 0252 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
15:02:07.0553 0252 rdpdr - ok
15:02:07.0553 0252 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
15:02:07.0616 0252 RDPENCDD - ok
15:02:07.0678 0252 RDPWD (c127ebd5afab31524662c48dfceb773a) C:\Windows\system32\drivers\RDPWD.sys
15:02:07.0725 0252 RDPWD - ok
15:02:07.0772 0252 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
15:02:07.0834 0252 RemoteAccess - ok
15:02:07.0897 0252 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
15:02:07.0943 0252 RemoteRegistry - ok
15:02:08.0037 0252 RichVideo (17e0bef5ca5c9ce52cc8082ac6ebc449) C:\Program Files\Cyberlink\Shared files\RichVideo.exe
15:02:08.0068 0252 RichVideo - ok
15:02:08.0099 0252 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
15:02:08.0162 0252 RpcLocator - ok
15:02:08.0240 0252 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
15:02:08.0318 0252 RpcSs - ok
15:02:08.0333 0252 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
15:02:08.0411 0252 rspndr - ok
15:02:08.0443 0252 RTHDMIAzAudService (5dfaa39d44e2eb090940351a85b891b8) C:\Windows\system32\drivers\RtHDMIV.sys
15:02:08.0474 0252 RTHDMIAzAudService - ok
15:02:08.0521 0252 RTSTOR (b0538dea03e088b80482ca939f4e8740) C:\Windows\system32\drivers\RTSTOR.SYS
15:02:08.0567 0252 RTSTOR - ok
15:02:08.0599 0252 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
15:02:08.0630 0252 SamSs - ok
15:02:08.0677 0252 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
15:02:08.0708 0252 sbp2port - ok
15:02:08.0755 0252 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
15:02:08.0817 0252 SCardSvr - ok
15:02:08.0911 0252 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
15:02:08.0989 0252 Schedule - ok
15:02:09.0004 0252 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
15:02:09.0051 0252 SCPolicySvc - ok
15:02:09.0098 0252 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
15:02:09.0160 0252 SDRSVC - ok
15:02:09.0191 0252 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
15:02:09.0285 0252 secdrv - ok
15:02:09.0301 0252 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
15:02:09.0379 0252 seclogon - ok
15:02:09.0410 0252 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\System32\sens.dll
15:02:09.0488 0252 SENS - ok
15:02:09.0535 0252 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
15:02:09.0644 0252 Serenum - ok
15:02:09.0675 0252 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
15:02:09.0784 0252 Serial - ok
15:02:09.0800 0252 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
15:02:09.0862 0252 sermouse - ok
15:02:10.0003 0252 ServiceLayer (9d38320bb32230349379df5ddbbf7fce) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
15:02:10.0081 0252 ServiceLayer ( UnsignedFile.Multi.Generic ) - warning
15:02:10.0081 0252 ServiceLayer - detected UnsignedFile.Multi.Generic (1)
15:02:10.0143 0252 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
15:02:10.0237 0252 SessionEnv - ok
15:02:10.0252 0252 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
15:02:10.0299 0252 sffdisk - ok
15:02:10.0330 0252 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
15:02:10.0393 0252 sffp_mmc - ok
15:02:10.0424 0252 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
15:02:10.0486 0252 sffp_sd - ok
15:02:10.0502 0252 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
15:02:10.0611 0252 sfloppy - ok
15:02:10.0673 0252 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
15:02:10.0736 0252 SharedAccess - ok
15:02:10.0814 0252 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
15:02:10.0861 0252 ShellHWDetection - ok
15:02:10.0876 0252 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
15:02:10.0907 0252 sisagp - ok
15:02:10.0939 0252 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
15:02:10.0970 0252 SiSRaid2 - ok
15:02:11.0001 0252 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
15:02:11.0032 0252 SiSRaid4 - ok
15:02:11.0344 0252 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
15:02:11.0516 0252 slsvc - ok
15:02:11.0656 0252 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
15:02:11.0719 0252 SLUINotify - ok
15:02:11.0797 0252 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
15:02:11.0859 0252 Smb - ok
15:02:11.0906 0252 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
15:02:11.0953 0252 SNMPTRAP - ok
15:02:11.0968 0252 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
15:02:11.0999 0252 spldr - ok
15:02:12.0031 0252 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
15:02:12.0093 0252 Spooler - ok
15:02:12.0155 0252 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
15:02:12.0218 0252 srv - ok
15:02:12.0249 0252 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
15:02:12.0311 0252 srv2 - ok
15:02:12.0327 0252 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
15:02:12.0358 0252 srvnet - ok
15:02:12.0405 0252 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
15:02:12.0483 0252 SSDPSRV - ok
15:02:12.0530 0252 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\Windows\system32\DRIVERS\ssmdrv.sys
15:02:12.0561 0252 ssmdrv - ok
15:02:12.0592 0252 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
15:02:12.0639 0252 SstpSvc - ok
15:02:12.0686 0252 ss_bbus (eaa66218cd39f5bb1b4853a78c67c787) C:\Windows\system32\DRIVERS\ss_bbus.sys
15:02:12.0717 0252 ss_bbus - ok
15:02:12.0733 0252 ss_bmdfl (91765f99914ed8693d8bc76524f21581) C:\Windows\system32\DRIVERS\ss_bmdfl.sys
15:02:12.0764 0252 ss_bmdfl - ok
15:02:12.0795 0252 ss_bmdm (840e7b738b03c10ee91d9b7d3d6eff15) C:\Windows\system32\DRIVERS\ss_bmdm.sys
15:02:12.0826 0252 ss_bmdm - ok
15:02:12.0904 0252 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
15:02:13.0013 0252 stisvc - ok
15:02:13.0060 0252 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
15:02:13.0076 0252 swenum - ok
15:02:13.0154 0252 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
15:02:13.0232 0252 swprv - ok
15:02:13.0263 0252 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
15:02:13.0294 0252 Symc8xx - ok
15:02:13.0310 0252 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
15:02:13.0325 0252 Sym_hi - ok
15:02:13.0357 0252 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
15:02:13.0372 0252 Sym_u3 - ok
15:02:13.0435 0252 SynTP (4c9bb4b3b9eac26211484c30b914c6dc) C:\Windows\system32\DRIVERS\SynTP.sys
15:02:13.0466 0252 SynTP - ok
15:02:13.0544 0252 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
15:02:13.0653 0252 SysMain - ok
15:02:13.0700 0252 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
15:02:13.0747 0252 TabletInputService - ok
15:02:13.0793 0252 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
15:02:13.0856 0252 TapiSrv - ok
15:02:13.0887 0252 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
15:02:13.0965 0252 TBS - ok
15:02:14.0090 0252 Tcpip (27d470dabc77bc60d0a3b0e4deb6cb91) C:\Windows\system32\drivers\tcpip.sys
15:02:14.0168 0252 Tcpip - ok
15:02:14.0199 0252 Tcpip6 (27d470dabc77bc60d0a3b0e4deb6cb91) C:\Windows\system32\DRIVERS\tcpip.sys
15:02:14.0293 0252 Tcpip6 - ok
15:02:14.0339 0252 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
15:02:14.0386 0252 tcpipreg - ok
15:02:14.0417 0252 TcUsb (72b9e77565da5fa564581976e000d29b) C:\Windows\system32\Drivers\tcusb.sys
15:02:14.0433 0252 TcUsb - ok
15:02:14.0464 0252 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
15:02:14.0542 0252 TDPIPE - ok
15:02:14.0558 0252 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
15:02:14.0636 0252 TDTCP - ok
15:02:14.0683 0252 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
15:02:14.0745 0252 tdx - ok
15:02:14.0792 0252 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
15:02:14.0823 0252 TermDD - ok
15:02:14.0901 0252 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
15:02:15.0026 0252 TermService - ok
15:02:15.0088 0252 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
15:02:15.0119 0252 Themes - ok
15:02:15.0151 0252 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
15:02:15.0213 0252 THREADORDER - ok
15:02:15.0260 0252 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
15:02:15.0338 0252 TrkWks - ok
15:02:15.0416 0252 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
15:02:15.0463 0252 TrustedInstaller - ok
15:02:15.0494 0252 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
15:02:15.0556 0252 tssecsrv - ok
15:02:15.0587 0252 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
15:02:15.0634 0252 tunmp - ok
15:02:15.0665 0252 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
15:02:15.0712 0252 tunnel - ok
15:02:15.0743 0252 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
15:02:15.0775 0252 uagp35 - ok
15:02:15.0790 0252 UBHelper (f763e070843ee2803de1395002b42938) C:\Windows\system32\drivers\UBHelper.sys
15:02:15.0806 0252 UBHelper - ok
15:02:15.0884 0252 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
15:02:15.0931 0252 udfs - ok
15:02:15.0977 0252 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
15:02:16.0055 0252 UI0Detect - ok
15:02:16.0071 0252 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
15:02:16.0102 0252 uliagpkx - ok
15:02:16.0149 0252 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
15:02:16.0196 0252 uliahci - ok
15:02:16.0243 0252 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
15:02:16.0274 0252 UlSata - ok
15:02:16.0289 0252 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
15:02:16.0321 0252 ulsata2 - ok
15:02:16.0352 0252 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
15:02:16.0414 0252 umbus - ok
15:02:16.0477 0252 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
15:02:16.0539 0252 upnphost - ok
15:02:16.0586 0252 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
15:02:16.0648 0252 usbaudio - ok
15:02:16.0726 0252 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
15:02:16.0789 0252 usbccgp - ok
15:02:16.0820 0252 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
15:02:16.0945 0252 usbcir - ok
15:02:16.0960 0252 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
15:02:17.0023 0252 usbehci - ok
15:02:17.0054 0252 usbfilter (edca5124b54bcf04e5c0538aa397a9c1) C:\Windows\system32\DRIVERS\usbfilter.sys
15:02:17.0069 0252 usbfilter - ok
15:02:17.0101 0252 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
15:02:17.0163 0252 usbhub - ok
15:02:17.0179 0252 usbohci (ce697fee0d479290d89bec80dfe793b7) C:\Windows\system32\DRIVERS\usbohci.sys
15:02:17.0225 0252 usbohci - ok
15:02:17.0272 0252 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
15:02:17.0335 0252 usbprint - ok
15:02:17.0381 0252 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
15:02:17.0428 0252 usbscan - ok
15:02:17.0459 0252 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:02:17.0506 0252 USBSTOR - ok
15:02:17.0537 0252 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
15:02:17.0600 0252 usbuhci - ok
15:02:17.0631 0252 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
15:02:17.0709 0252 usbvideo - ok
15:02:17.0740 0252 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
15:02:17.0818 0252 UxSms - ok
15:02:17.0881 0252 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
15:02:17.0959 0252 vds - ok
15:02:17.0990 0252 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
15:02:18.0052 0252 vga - ok
15:02:18.0068 0252 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
15:02:18.0130 0252 VgaSave - ok
15:02:18.0161 0252 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
15:02:18.0193 0252 viaagp - ok
15:02:18.0224 0252 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
15:02:18.0286 0252 ViaC7 - ok
15:02:18.0302 0252 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
15:02:18.0333 0252 viaide - ok
15:02:18.0427 0252 VMCService (6e021d6da429ad7288fe8322e2bba96b) C:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe
15:02:18.0427 0252 VMCService ( UnsignedFile.Multi.Generic ) - warning
15:02:18.0427 0252 VMCService - detected UnsignedFile.Multi.Generic (1)
15:02:18.0458 0252 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
15:02:18.0489 0252 volmgr - ok
15:02:18.0567 0252 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
15:02:18.0598 0252 volmgrx - ok
15:02:18.0661 0252 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
15:02:18.0692 0252 volsnap - ok
15:02:18.0723 0252 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
15:02:18.0754 0252 vsmraid - ok
15:02:18.0895 0252 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
15:02:18.0988 0252 VSS - ok
15:02:19.0066 0252 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
15:02:19.0144 0252 W32Time - ok
15:02:19.0207 0252 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
15:02:19.0316 0252 WacomPen - ok
15:02:19.0347 0252 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
15:02:19.0394 0252 Wanarp - ok
15:02:19.0409 0252 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
15:02:19.0441 0252 Wanarpv6 - ok
15:02:19.0519 0252 WcesComm (779f9c90d3fe9c70b6ffd8ef035f3e83) C:\Windows\WindowsMobile\wcescomm.dll
15:02:19.0597 0252 WcesComm - ok
15:02:19.0675 0252 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
15:02:19.0737 0252 wcncsvc - ok
15:02:19.0768 0252 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
15:02:19.0831 0252 WcsPlugInService - ok
15:02:19.0846 0252 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
15:02:19.0877 0252 Wd - ok
15:02:19.0940 0252 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
15:02:20.0002 0252 Wdf01000 - ok
15:02:20.0018 0252 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
15:02:20.0096 0252 WdiServiceHost - ok
15:02:20.0096 0252 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
15:02:20.0158 0252 WdiSystemHost - ok
15:02:20.0221 0252 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
15:02:20.0267 0252 WebClient - ok
15:02:20.0314 0252 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
15:02:20.0361 0252 Wecsvc - ok
15:02:20.0392 0252 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
15:02:20.0455 0252 wercplsupport - ok
15:02:20.0517 0252 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
15:02:20.0579 0252 WerSvc - ok
15:02:20.0595 0252 winbondcir (3fa87d56769838aac82fafc3e78fc732) C:\Windows\system32\DRIVERS\winbondcir.sys
15:02:20.0657 0252 winbondcir - ok
15:02:20.0720 0252 WinDefend (4575aa12561c5648483403541d0d7f2b) C:\Program Files\Windows Defender\mpsvc.dll
15:02:20.0767 0252 WinDefend - ok
15:02:20.0782 0252 WinHttpAutoProxySvc - ok
15:02:20.0876 0252 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
15:02:20.0923 0252 Winmgmt - ok
15:02:21.0063 0252 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
15:02:21.0125 0252 WinRM - ok
15:02:21.0203 0252 winusb (676f4b665bdd8053eaa53ac1695b8074) C:\Windows\system32\DRIVERS\winusb.sys
15:02:21.0250 0252 winusb - ok
15:02:21.0328 0252 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
15:02:21.0391 0252 Wlansvc - ok
15:02:21.0437 0252 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
15:02:21.0484 0252 WmiAcpi - ok
15:02:21.0578 0252 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
15:02:21.0640 0252 wmiApSrv - ok
15:02:21.0765 0252 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
15:02:21.0859 0252 WMPNetworkSvc - ok
15:02:21.0921 0252 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
15:02:21.0983 0252 WPCSvc - ok
15:02:22.0046 0252 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
15:02:22.0108 0252 WPDBusEnum - ok
15:02:22.0186 0252 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
15:02:22.0217 0252 WpdUsb - ok
15:02:22.0389 0252 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
15:02:22.0436 0252 WPFFontCache_v0400 - ok
15:02:22.0483 0252 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
15:02:22.0545 0252 ws2ifsl - ok
15:02:22.0607 0252 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\System32\wscsvc.dll
15:02:22.0654 0252 wscsvc - ok
15:02:22.0670 0252 WSearch - ok
15:02:22.0888 0252 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) C:\Windows\system32\wuaueng.dll
15:02:23.0029 0252 wuauserv - ok
15:02:23.0185 0252 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
15:02:23.0247 0252 WUDFRd - ok
15:02:23.0263 0252 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
15:02:23.0356 0252 wudfsvc - ok
15:02:23.0450 0252 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796} (74ec37b9eaf9fca015b933a526825c7a) C:\Program Files\Acer Arcade Deluxe\PlayMovie\000.fcl
15:02:23.0481 0252 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796} - ok
15:02:23.0512 0252 MBR (0x1B8) (bb9d3a6a13c5010348da7c900bb6af50) \Device\Harddisk0\DR0
15:02:25.0072 0252 \Device\Harddisk0\DR0 - ok
15:02:25.0088 0252 Boot (0x1200) (ebbdc6b35b34f987926566bc737f7258) \Device\Harddisk0\DR0\Partition0
15:02:25.0088 0252 \Device\Harddisk0\DR0\Partition0 - ok
15:02:25.0119 0252 Boot (0x1200) (bb0a045c730672778db22fa949fde453) \Device\Harddisk0\DR0\Partition1
15:02:25.0119 0252 \Device\Harddisk0\DR0\Partition1 - ok
15:02:25.0119 0252 ============================================================
15:02:25.0119 0252 Scan finished
15:02:25.0119 0252 ============================================================
15:02:25.0150 4372 Detected object count: 13
15:02:25.0150 4372 Actual detected object count: 13
09:26:47.0535 4372 BUNAgentSvc ( UnsignedFile.Multi.Generic ) - skipped by user
09:26:47.0535 4372 BUNAgentSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:26:47.0551 4372 ETService ( UnsignedFile.Multi.Generic ) - skipped by user
09:26:47.0551 4372 ETService ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:26:47.0551 4372 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - skipped by user
09:26:47.0551 4372 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:26:47.0551 4372 FsUsbExService ( UnsignedFile.Multi.Generic ) - skipped by user
09:26:47.0551 4372 FsUsbExService ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:26:47.0551 4372 GoogleDesktopManager-080708-050100 ( UnsignedFile.Multi.Generic ) - skipped by user
09:26:47.0551 4372 GoogleDesktopManager-080708-050100 ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:26:47.0551 4372 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
09:26:47.0551 4372 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:26:47.0567 4372 int15 ( UnsignedFile.Multi.Generic ) - skipped by user
09:26:47.0567 4372 int15 ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:26:47.0567 4372 LightScribeService ( UnsignedFile.Multi.Generic ) - skipped by user
09:26:47.0567 4372 LightScribeService ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:26:47.0582 4372 NTIBackupSvc ( UnsignedFile.Multi.Generic ) - skipped by user
09:26:47.0582 4372 NTIBackupSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:26:47.0598 4372 NTIPPKernel ( UnsignedFile.Multi.Generic ) - skipped by user
09:26:47.0598 4372 NTIPPKernel ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:26:47.0598 4372 NTISchedulerSvc ( UnsignedFile.Multi.Generic ) - skipped by user
09:26:47.0598 4372 NTISchedulerSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:26:47.0598 4372 ServiceLayer ( UnsignedFile.Multi.Generic ) - skipped by user
09:26:47.0598 4372 ServiceLayer ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:26:47.0598 4372 VMCService ( UnsignedFile.Multi.Generic ) - skipped by user
09:26:47.0598 4372 VMCService ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:26:51.0779 4200 Deinitialize success
 |
|
09.07.2012, 12:27
| #30 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Trojaner - "Weißer Bildschirm mit Verbindung wird hergestellt." Dann bitte jetzt CF ausführen: ComboFix Ein Leitfaden und Tutorium zur Nutzung von ComboFix
Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat! Solltest du nach der Ausführung von Combofix Probleme beim Starten von Anwendungen haben und Meldungen erhalten wie Zitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
| Themen zu Trojaner - "Weißer Bildschirm mit Verbindung wird hergestellt." |
| avira, bildschirm, festplatte, frage, fragen, funktioniert, internet, langsam, laptop, malware, meldung, neu, problem, programm, schädling, system, tr/trash.gen, treiber, trojaner, verbindung, verbindung wird hergestellt, verschwunden, vista, weisser bildschirm, windows, windows vista |
Textbox von OTL - wenn OTL auf deutsch ist wird sie mit 
beschriftet
.
Linear-Darstellung
