Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Pop Up Ad - Redirect Virus


  • Please log in to reply
29 replies to this topic

#1 lwolfe63

lwolfe63

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:03:15 PM

Posted 18 May 2012 - 10:13 AM

I have a pop up ad virus on my computer that I can't identify nor get rid of. I am using Windows 7 and in any browser, ads start popping up in the lower right hand corner of my browser. Sometimes it looks like a cell phone, sometimes it looks like and ad and sometimes is shows a video screen and says "you are missing a plugin to play videos" and wants me to click on an Update button. I cannot get rid of this - I have tried Malwarbytes, Spybot Search and Destry, Ad-Aware but nothing has worked. Please help me! I have attached screenshots of all three types of ads. Thanks in advance.
Posted Image
Posted Image
Posted Image

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:15 PM

Posted 18 May 2012 - 10:22 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here


Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

#3 lwolfe63

lwolfe63
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:03:15 PM

Posted 18 May 2012 - 10:43 AM

Oops I didn't set the paramaters right.

Edited by lwolfe63, 18 May 2012 - 10:51 AM.


#4 lwolfe63

lwolfe63
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:03:15 PM

Posted 18 May 2012 - 10:57 AM

TDSSKiller Log

08:51:52.0500 9148 TDSS rootkit removing tool 2.7.35.0 May 16 2012 07:37:57
08:51:53.0011 9148 ============================================================
08:51:53.0011 9148 Current date / time: 2012/05/18 08:51:53.0011
08:51:53.0011 9148 SystemInfo:
08:51:53.0011 9148
08:51:53.0011 9148 OS Version: 6.1.7601 ServicePack: 1.0
08:51:53.0011 9148 Product type: Workstation
08:51:53.0011 9148 ComputerName: CATALINA
08:51:53.0011 9148 UserName: linda
08:51:53.0011 9148 Windows directory: C:\Windows
08:51:53.0011 9148 System windows directory: C:\Windows
08:51:53.0011 9148 Running under WOW64
08:51:53.0011 9148 Processor architecture: Intel x64
08:51:53.0011 9148 Number of processors: 8
08:51:53.0011 9148 Page size: 0x1000
08:51:53.0011 9148 Boot type: Normal boot
08:51:53.0011 9148 ============================================================
08:51:54.0576 9148 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
08:51:54.0580 9148 Drive \Device\Harddisk1\DR1 - Size: 0x7470C05E00 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
08:51:58.0281 9148 ============================================================
08:51:58.0281 9148 \Device\Harddisk0\DR0:
08:51:58.0298 9148 MBR partitions:
08:51:58.0298 9148 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
08:51:58.0298 9148 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x55807000
08:51:58.0298 9148 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x5586B000, BlocksNum 0x1CA7800
08:51:58.0298 9148 \Device\Harddisk0\DR0\Partition3: MBR, Type 0xC, StartLBA 0x57512800, BlocksNum 0x336F0
08:51:58.0298 9148 \Device\Harddisk1\DR1:
08:51:58.0299 9148 MBR partitions:
08:51:58.0299 9148 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A384C02
08:51:58.0299 9148 ============================================================
08:51:58.0370 9148 C: <-> \Device\Harddisk0\DR0\Partition1
08:51:58.0422 9148 D: <-> \Device\Harddisk0\DR0\Partition2
08:51:58.0476 9148 F: <-> \Device\Harddisk1\DR1\Partition0
08:51:58.0512 9148 G: <-> \Device\Harddisk0\DR0\Partition3
08:51:58.0513 9148 ============================================================
08:51:58.0513 9148 Initialize success
08:51:58.0513 9148 ============================================================
08:52:09.0686 3832 ============================================================
08:52:09.0686 3832 Scan started
08:52:09.0686 3832 Mode: Manual; TDLFS;
08:52:09.0686 3832 ============================================================
08:52:11.0847 3832 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
08:52:11.0851 3832 1394ohci - ok
08:52:11.0926 3832 Accelerometer (5c368f4b04ed2a923e6afca2d37baff5) C:\Windows\system32\DRIVERS\Accelerometer.sys
08:52:11.0927 3832 Accelerometer - ok
08:52:12.0052 3832 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
08:52:12.0055 3832 ACPI - ok
08:52:12.0100 3832 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
08:52:12.0100 3832 AcpiPmi - ok
08:52:12.0260 3832 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
08:52:12.0261 3832 AdobeARMservice - ok
08:52:12.0497 3832 AdobeFlashPlayerUpdateSvc (76d5a3d2a50402a0b9b6ed13c4371e79) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
08:52:12.0501 3832 AdobeFlashPlayerUpdateSvc - ok
08:52:12.0615 3832 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys
08:52:12.0621 3832 adp94xx - ok
08:52:12.0724 3832 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys
08:52:12.0727 3832 adpahci - ok
08:52:12.0783 3832 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys
08:52:12.0786 3832 adpu320 - ok
08:52:12.0835 3832 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
08:52:12.0837 3832 AeLookupSvc - ok
08:52:12.0988 3832 AESTFilters (a6fb9db8f1a86861d955fd6975977ae0) C:\Program Files\IDT\WDM\AESTSr64.exe
08:52:12.0989 3832 AESTFilters - ok
08:52:13.0138 3832 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
08:52:13.0140 3832 AFD - ok
08:52:13.0201 3832 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
08:52:13.0202 3832 agp440 - ok
08:52:14.0002 3832 Akamai (1125c7d9fb8898015829c387c1bc87c7) c:\program files (x86)\common files\akamai/netsession_win_6c825ce.dll
08:52:14.0002 3832 Suspicious file (Hidden): c:\program files (x86)\common files\akamai/netsession_win_6c825ce.dll. md5: 1125c7d9fb8898015829c387c1bc87c7
08:52:14.0006 3832 Akamai ( HiddenFile.Multi.Generic ) - warning
08:52:14.0006 3832 Akamai - detected HiddenFile.Multi.Generic (1)
08:52:14.0211 3832 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
08:52:14.0211 3832 ALG - ok
08:52:14.0288 3832 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
08:52:14.0289 3832 aliide - ok
08:52:14.0373 3832 AMD External Events Utility (1b4a3c8e429f1fab998eceea3ce3e0b8) C:\Windows\system32\atiesrxx.exe
08:52:14.0377 3832 AMD External Events Utility - ok
08:52:14.0403 3832 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
08:52:14.0404 3832 amdide - ok
08:52:14.0472 3832 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys
08:52:14.0473 3832 AmdK8 - ok
08:52:15.0875 3832 amdkmdag (e08cf0ed91fcca0017776cff4a506012) C:\Windows\system32\DRIVERS\atikmdag.sys
08:52:15.0927 3832 amdkmdag - ok
08:52:16.0232 3832 amdkmdap (f072f317e430925c7d88c766db7da86e) C:\Windows\system32\DRIVERS\atikmpag.sys
08:52:16.0234 3832 amdkmdap - ok
08:52:16.0285 3832 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys
08:52:16.0285 3832 AmdPPM - ok
08:52:16.0334 3832 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
08:52:16.0335 3832 amdsata - ok
08:52:16.0399 3832 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys
08:52:16.0400 3832 amdsbs - ok
08:52:16.0427 3832 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
08:52:16.0428 3832 amdxata - ok
08:52:16.0527 3832 AMPPAL (7d9e301ab3247765702d0b65e2e47e50) C:\Windows\system32\DRIVERS\AMPPAL.sys
08:52:16.0532 3832 AMPPAL - ok
08:52:16.0555 3832 AMPPALP (7d9e301ab3247765702d0b65e2e47e50) C:\Windows\system32\DRIVERS\amppal.sys
08:52:16.0560 3832 AMPPALP - ok
08:52:16.0979 3832 AMPPALR3 (576134e43169810b560f0bb6fdee13f5) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
08:52:16.0995 3832 AMPPALR3 - ok
08:52:17.0271 3832 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
08:52:17.0272 3832 AppID - ok
08:52:17.0320 3832 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
08:52:17.0320 3832 AppIDSvc - ok
08:52:17.0368 3832 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
08:52:17.0370 3832 Appinfo - ok
08:52:17.0504 3832 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
08:52:17.0506 3832 Apple Mobile Device - ok
08:52:17.0563 3832 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys
08:52:17.0565 3832 arc - ok
08:52:17.0623 3832 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys
08:52:17.0625 3832 arcsas - ok
08:52:17.0763 3832 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
08:52:17.0764 3832 aspnet_state - ok
08:52:17.0811 3832 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
08:52:17.0812 3832 AsyncMac - ok
08:52:17.0840 3832 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
08:52:17.0841 3832 atapi - ok
08:52:18.0042 3832 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
08:52:18.0047 3832 AudioEndpointBuilder - ok
08:52:18.0054 3832 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
08:52:18.0058 3832 AudioSrv - ok
08:52:18.0113 3832 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
08:52:18.0114 3832 AxInstSV - ok
08:52:18.0322 3832 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys
08:52:18.0330 3832 b06bdrv - ok
08:52:18.0441 3832 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
08:52:18.0445 3832 b57nd60a - ok
08:52:18.0581 3832 BCM43XX (9e84a931dbee0292e38ed672f6293a99) C:\Windows\system32\DRIVERS\bcmwl664.sys
08:52:18.0589 3832 BCM43XX - ok
08:52:18.0662 3832 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
08:52:18.0663 3832 BDESVC - ok
08:52:18.0746 3832 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
08:52:18.0747 3832 Beep - ok
08:52:18.0912 3832 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
08:52:18.0921 3832 BFE - ok
08:52:19.0058 3832 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
08:52:19.0067 3832 BITS - ok
08:52:19.0145 3832 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\drivers\blbdrive.sys
08:52:19.0145 3832 blbdrive - ok
08:52:19.0321 3832 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
08:52:19.0327 3832 Bonjour Service - ok
08:52:19.0410 3832 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
08:52:19.0412 3832 bowser - ok
08:52:19.0441 3832 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys
08:52:19.0442 3832 BrFiltLo - ok
08:52:19.0467 3832 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys
08:52:19.0468 3832 BrFiltUp - ok
08:52:19.0522 3832 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
08:52:19.0524 3832 Browser - ok
08:52:19.0630 3832 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
08:52:19.0635 3832 Brserid - ok
08:52:19.0700 3832 BrSerIf (34f6c504b150f99dae69d7073d2a4df4) C:\Windows\system32\DRIVERS\BrSerIf.sys
08:52:19.0702 3832 BrSerIf - ok
08:52:19.0740 3832 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
08:52:19.0741 3832 BrSerWdm - ok
08:52:19.0776 3832 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
08:52:19.0776 3832 BrUsbMdm - ok
08:52:19.0823 3832 BrUsbSer (601cb966fffebc6806626dc8e7aa0ef2) C:\Windows\system32\DRIVERS\BrUsbSer.sys
08:52:19.0824 3832 BrUsbSer - ok
08:52:19.0891 3832 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\drivers\BthEnum.sys
08:52:19.0893 3832 BthEnum - ok
08:52:19.0953 3832 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\drivers\bthmodem.sys
08:52:19.0955 3832 BTHMODEM - ok
08:52:19.0997 3832 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys
08:52:19.0999 3832 BthPan - ok
08:52:20.0148 3832 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\Windows\System32\Drivers\BTHport.sys
08:52:20.0153 3832 BTHPORT - ok
08:52:20.0226 3832 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
08:52:20.0227 3832 bthserv - ok
08:52:20.0384 3832 BTHSSecurityMgr (9e2af97302b9f4bf97e952a865eb31ae) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
08:52:20.0385 3832 BTHSSecurityMgr - ok
08:52:20.0401 3832 BTHUSB (f188b7394d81010767b6df3178519a37) C:\Windows\System32\Drivers\BTHUSB.sys
08:52:20.0401 3832 BTHUSB - ok
08:52:20.0531 3832 btwampfl (7a2ce8c1bf4daa1f2766e21e9ca11078) C:\Windows\system32\drivers\btwampfl.sys
08:52:20.0537 3832 btwampfl - ok
08:52:20.0613 3832 btwaudio (a75bf6802a967f5aacecc3c67febdf55) C:\Windows\system32\drivers\btwaudio.sys
08:52:20.0615 3832 btwaudio - ok
08:52:20.0668 3832 btwavdt (d895dc213edbda5fcc53aad1f1e0e63b) C:\Windows\system32\drivers\btwavdt.sys
08:52:20.0670 3832 btwavdt - ok
08:52:20.0952 3832 btwdins (692f8648d7686d91e34a65ac698019d8) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
08:52:20.0963 3832 btwdins - ok
08:52:21.0012 3832 btwl2cap (07096d2bc22ccb6cea5a532df0be8a75) C:\Windows\system32\DRIVERS\btwl2cap.sys
08:52:21.0012 3832 btwl2cap - ok
08:52:21.0066 3832 btwrchid (6d7aa2bde0135599c5f230d69db3b420) C:\Windows\system32\DRIVERS\btwrchid.sys
08:52:21.0067 3832 btwrchid - ok
08:52:22.0465 3832 CarboniteService (9da7d983b4e9ea2d065edf566ca64fc8) C:\Program Files\Carbonite\Carbonite Backup\carboniteservice.exe
08:52:22.0501 3832 CarboniteService - ok
08:52:22.0823 3832 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
08:52:22.0824 3832 cdfs - ok
08:52:22.0908 3832 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
08:52:22.0910 3832 cdrom - ok
08:52:23.0000 3832 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
08:52:23.0001 3832 CertPropSvc - ok
08:52:23.0055 3832 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys
08:52:23.0056 3832 circlass - ok
08:52:23.0147 3832 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
08:52:23.0151 3832 CLFS - ok
08:52:23.0302 3832 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
08:52:23.0303 3832 clr_optimization_v2.0.50727_32 - ok
08:52:23.0404 3832 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
08:52:23.0406 3832 clr_optimization_v2.0.50727_64 - ok
08:52:23.0565 3832 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
08:52:23.0567 3832 clr_optimization_v4.0.30319_32 - ok
08:52:23.0659 3832 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
08:52:23.0661 3832 clr_optimization_v4.0.30319_64 - ok
08:52:23.0746 3832 clwvd (50f92c943f18b070f166d019dfab3d9a) C:\Windows\system32\DRIVERS\clwvd.sys
08:52:23.0747 3832 clwvd - ok
08:52:23.0816 3832 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\drivers\CmBatt.sys
08:52:23.0817 3832 CmBatt - ok
08:52:23.0844 3832 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
08:52:23.0844 3832 cmdide - ok
08:52:23.0986 3832 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
08:52:23.0991 3832 CNG - ok
08:52:24.0043 3832 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys
08:52:24.0044 3832 Compbatt - ok
08:52:24.0121 3832 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
08:52:24.0122 3832 CompositeBus - ok
08:52:24.0150 3832 COMSysApp - ok
08:52:24.0196 3832 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys
08:52:24.0197 3832 crcdisk - ok
08:52:24.0245 3832 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll
08:52:24.0246 3832 CryptSvc - ok
08:52:24.0326 3832 dc3d (15c2afd86d8a58354fc100434c78b621) C:\Windows\system32\DRIVERS\dc3d.sys
08:52:24.0328 3832 dc3d - ok
08:52:24.0459 3832 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
08:52:24.0468 3832 DcomLaunch - ok
08:52:24.0545 3832 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
08:52:24.0550 3832 defragsvc - ok
08:52:24.0627 3832 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
08:52:24.0630 3832 DfsC - ok
08:52:24.0720 3832 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
08:52:24.0725 3832 Dhcp - ok
08:52:24.0766 3832 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
08:52:24.0767 3832 discache - ok
08:52:24.0860 3832 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys
08:52:24.0861 3832 Disk - ok
08:52:24.0919 3832 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
08:52:24.0922 3832 Dnscache - ok
08:52:24.0958 3832 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
08:52:24.0962 3832 dot3svc - ok
08:52:24.0987 3832 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
08:52:24.0988 3832 DPS - ok
08:52:25.0016 3832 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
08:52:25.0016 3832 drmkaud - ok
08:52:25.0223 3832 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
08:52:25.0230 3832 DXGKrnl - ok
08:52:25.0273 3832 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
08:52:25.0275 3832 EapHost - ok
08:52:26.0009 3832 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys
08:52:26.0026 3832 ebdrv - ok
08:52:26.0260 3832 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
08:52:26.0263 3832 EFS - ok
08:52:26.0395 3832 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
08:52:26.0401 3832 ehRecvr - ok
08:52:26.0443 3832 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
08:52:26.0445 3832 ehSched - ok
08:52:26.0566 3832 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys
08:52:26.0570 3832 elxstor - ok
08:52:26.0598 3832 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
08:52:26.0598 3832 ErrDev - ok
08:52:26.0735 3832 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
08:52:26.0738 3832 EventSystem - ok
08:52:27.0207 3832 EvtEng (e3a96d5ae6e5c7b5472011ba77353368) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
08:52:27.0219 3832 EvtEng - ok
08:52:27.0548 3832 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
08:52:27.0550 3832 exfat - ok
08:52:27.0586 3832 ezSharedSvc - ok
08:52:27.0657 3832 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
08:52:27.0659 3832 fastfat - ok
08:52:27.0837 3832 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
08:52:27.0849 3832 Fax - ok
08:52:27.0922 3832 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys
08:52:27.0923 3832 fdc - ok
08:52:27.0947 3832 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
08:52:27.0948 3832 fdPHost - ok
08:52:27.0983 3832 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
08:52:27.0984 3832 FDResPub - ok
08:52:28.0033 3832 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
08:52:28.0034 3832 FileInfo - ok
08:52:28.0081 3832 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
08:52:28.0081 3832 Filetrace - ok
08:52:28.0474 3832 FLEXnet Licensing Service (abedfd48ac042c6aaad32452e77217a1) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
08:52:28.0478 3832 FLEXnet Licensing Service - ok
08:52:28.0535 3832 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys
08:52:28.0535 3832 flpydisk - ok
08:52:28.0671 3832 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
08:52:28.0673 3832 FltMgr - ok
08:52:28.0858 3832 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
08:52:28.0865 3832 FontCache - ok
08:52:28.0965 3832 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
08:52:28.0965 3832 FontCache3.0.0.0 - ok
08:52:29.0158 3832 FPLService (2074a85a6b8f84a5a9c60b915b465faf) C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe
08:52:29.0162 3832 FPLService - ok
08:52:29.0329 3832 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
08:52:29.0330 3832 FsDepends - ok
08:52:29.0403 3832 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
08:52:29.0404 3832 Fs_Rec - ok
08:52:29.0477 3832 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
08:52:29.0478 3832 fvevol - ok
08:52:29.0530 3832 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys
08:52:29.0530 3832 gagp30kx - ok
08:52:29.0650 3832 GamesAppService (c403c5db49a0f9aaf4f2128edc0106d8) C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
08:52:29.0654 3832 GamesAppService - ok
08:52:29.0739 3832 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
08:52:29.0741 3832 GEARAspiWDM - ok
08:52:29.0845 3832 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
08:52:29.0852 3832 gpsvc - ok
08:52:29.0989 3832 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
08:52:29.0991 3832 gupdate - ok
08:52:30.0029 3832 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
08:52:30.0031 3832 gupdatem - ok
08:52:30.0100 3832 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
08:52:30.0102 3832 gusvc - ok
08:52:30.0125 3832 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
08:52:30.0126 3832 hcw85cir - ok
08:52:30.0170 3832 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
08:52:30.0172 3832 HdAudAddService - ok
08:52:30.0276 3832 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\DRIVERS\HDAudBus.sys
08:52:30.0278 3832 HDAudBus - ok
08:52:30.0334 3832 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys
08:52:30.0335 3832 HidBatt - ok
08:52:30.0350 3832 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys
08:52:30.0351 3832 HidBth - ok
08:52:30.0431 3832 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys
08:52:30.0432 3832 HidIr - ok
08:52:30.0470 3832 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
08:52:30.0471 3832 hidserv - ok
08:52:30.0533 3832 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
08:52:30.0534 3832 HidUsb - ok
08:52:30.0571 3832 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
08:52:30.0574 3832 hkmsvc - ok
08:52:30.0656 3832 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
08:52:30.0662 3832 HomeGroupListener - ok
08:52:30.0732 3832 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
08:52:30.0738 3832 HomeGroupProvider - ok
08:52:30.0949 3832 HP Support Assistant Service (13bb1114451c63bfb41ba7daa4d70a29) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
08:52:30.0950 3832 HP Support Assistant Service - ok
08:52:31.0111 3832 HPClientSvc (6a181452d4e240b8ecc7614b9a19bde9) C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
08:52:31.0115 3832 HPClientSvc - ok
08:52:31.0385 3832 hpCMSrv (e040f0064d39f73bb4995d494f3dcbb8) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
08:52:31.0396 3832 hpCMSrv - ok
08:52:31.0536 3832 HPDrvMntSvc.exe (b19ff523b533a3f198b9239e1749c940) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
08:52:31.0539 3832 HPDrvMntSvc.exe - ok
08:52:31.0822 3832 hpdskflt (4e0bec0f78096ffd6d3314b497fc49d3) C:\Windows\system32\DRIVERS\hpdskflt.sys
08:52:31.0823 3832 hpdskflt - ok
08:52:32.0213 3832 hpqwmiex (01091b900e15878b4434f9c726c4541d) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
08:52:32.0227 3832 hpqwmiex - ok
08:52:32.0413 3832 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
08:52:32.0414 3832 HpSAMD - ok
08:52:32.0488 3832 hpsrv (fc7c13b5a9e9be23b7ae72bbc7fdb278) C:\Windows\system32\Hpservice.exe
08:52:32.0491 3832 hpsrv - ok
08:52:32.0571 3832 HPWMISVC (491ce9b6321fb74e4b37af2c47f98434) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
08:52:32.0572 3832 HPWMISVC - ok
08:52:32.0711 3832 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
08:52:32.0721 3832 HTTP - ok
08:52:32.0736 3832 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
08:52:32.0736 3832 hwpolicy - ok
08:52:32.0794 3832 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
08:52:32.0795 3832 i8042prt - ok
08:52:32.0889 3832 iaStor (2fdaec4b02729c48c0fd1b0b4695995b) C:\Windows\system32\DRIVERS\iaStor.sys
08:52:32.0894 3832 iaStor - ok
08:52:33.0012 3832 IAStorDataMgrSvc (d41861e56e7552c13674d7f147a02464) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
08:52:33.0014 3832 IAStorDataMgrSvc - ok
08:52:33.0135 3832 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
08:52:33.0140 3832 iaStorV - ok
08:52:33.0637 3832 IconMan_R (d72bf0ae484f88399e8343e821c10d6a) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
08:52:33.0659 3832 IconMan_R - ok
08:52:33.0824 3832 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
08:52:33.0830 3832 idsvc - ok
08:52:33.0976 3832 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys
08:52:33.0978 3832 iirsp - ok
08:52:34.0093 3832 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
08:52:34.0103 3832 IKEEXT - ok
08:52:34.0173 3832 IntcDAud (fc727061c0f47c8059e88e05d5c8e381) C:\Windows\system32\DRIVERS\IntcDAud.sys
08:52:34.0176 3832 IntcDAud - ok
08:52:34.0223 3832 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
08:52:34.0224 3832 intelide - ok
08:52:35.0170 3832 intelkmd (efe5a0af39a8e179624117c521f1e012) C:\Windows\system32\DRIVERS\igdpmd64.sys
08:52:35.0233 3832 intelkmd - ok
08:52:35.0411 3832 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
08:52:35.0413 3832 intelppm - ok
08:52:35.0477 3832 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
08:52:35.0479 3832 IPBusEnum - ok
08:52:35.0513 3832 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
08:52:35.0515 3832 IpFilterDriver - ok
08:52:35.0577 3832 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
08:52:35.0580 3832 iphlpsvc - ok
08:52:35.0618 3832 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
08:52:35.0618 3832 IPMIDRV - ok
08:52:35.0663 3832 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
08:52:35.0665 3832 IPNAT - ok
08:52:35.0901 3832 iPod Service (50d6ccc6ff5561f9f56946b3e6164fb8) C:\Program Files\iPod\bin\iPodService.exe
08:52:35.0913 3832 iPod Service - ok
08:52:35.0960 3832 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
08:52:35.0961 3832 IRENUM - ok
08:52:36.0007 3832 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
08:52:36.0008 3832 isapnp - ok
08:52:36.0067 3832 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
08:52:36.0071 3832 iScsiPrt - ok
08:52:36.0111 3832 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
08:52:36.0113 3832 kbdclass - ok
08:52:36.0169 3832 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
08:52:36.0170 3832 kbdhid - ok
08:52:36.0203 3832 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
08:52:36.0206 3832 KeyIso - ok
08:52:36.0244 3832 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
08:52:36.0246 3832 KSecDD - ok
08:52:36.0301 3832 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
08:52:36.0303 3832 KSecPkg - ok
08:52:36.0348 3832 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
08:52:36.0349 3832 ksthunk - ok
08:52:36.0434 3832 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
08:52:36.0442 3832 KtmRm - ok
08:52:36.0538 3832 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
08:52:36.0545 3832 LanmanServer - ok
08:52:36.0614 3832 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
08:52:36.0618 3832 LanmanWorkstation - ok
08:52:36.0675 3832 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
08:52:36.0676 3832 lltdio - ok
08:52:36.0750 3832 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
08:52:36.0757 3832 lltdsvc - ok
08:52:36.0797 3832 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
08:52:36.0800 3832 lmhosts - ok
08:52:36.0924 3832 LMIGuardianSvc (ad988709675d9e35a60b2616bef108e9) C:\Program Files (x86)\LogMeIn\x64\LMIGuardianSvc.exe
08:52:36.0930 3832 LMIGuardianSvc - ok
08:52:36.0984 3832 LMIInfo (0317335b15ff3bda8e10197e3434cfc0) C:\Program Files (x86)\LogMeIn\x64\RaInfo.sys
08:52:36.0985 3832 LMIInfo - ok
08:52:37.0029 3832 LMIMaint (bd043199fc0bf5f2810f54c8b374590b) C:\Program Files (x86)\LogMeIn\x64\RaMaint.exe
08:52:37.0032 3832 LMIMaint - ok
08:52:37.0070 3832 lmimirr (413ecdcfad9a82804d3674c8d7eec24e) C:\Windows\system32\DRIVERS\lmimirr.sys
08:52:37.0071 3832 lmimirr - ok
08:52:37.0120 3832 LMIRfsClientNP - ok
08:52:37.0176 3832 LMIRfsDriver (c57d3faa50e6f395759ffb7c709bd944) C:\Windows\system32\drivers\LMIRfsDriver.sys
08:52:37.0178 3832 LMIRfsDriver - ok
08:52:37.0282 3832 LMS (d7e0bed3ea21d7bddd410ade51708d90) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
08:52:37.0287 3832 LMS - ok
08:52:37.0478 3832 LogMeIn (d3760bc17e1755091b7120cf32dbf56b) C:\Program Files (x86)\LogMeIn\x64\LogMeIn.exe
08:52:37.0484 3832 LogMeIn - ok
08:52:37.0638 3832 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys
08:52:37.0641 3832 LSI_FC - ok
08:52:37.0714 3832 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys
08:52:37.0716 3832 LSI_SAS - ok
08:52:37.0761 3832 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys
08:52:37.0763 3832 LSI_SAS2 - ok
08:52:37.0841 3832 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys
08:52:37.0843 3832 LSI_SCSI - ok
08:52:37.0897 3832 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
08:52:37.0900 3832 luafv - ok
08:52:37.0964 3832 lvpepf64 (07389f6925e490d2db7882110e99921c) C:\Windows\system32\DRIVERS\lv302a64.sys
08:52:37.0965 3832 lvpepf64 - ok
08:52:38.0063 3832 LVRS64 (7f0ba3a6e8996f15693c6b7d81da049e) C:\Windows\system32\DRIVERS\lvrs64.sys
08:52:38.0075 3832 LVRS64 - ok
08:52:38.0142 3832 LVUSBS64 (5c3ff68267a5d242ee79ee01b993d6ce) C:\Windows\system32\drivers\LVUSBS64.sys
08:52:38.0144 3832 LVUSBS64 - ok
08:52:38.0224 3832 MBAMProtector (dbc08862a71459e74f7538b432c114cc) C:\Windows\system32\drivers\mbam.sys
08:52:38.0225 3832 MBAMProtector - ok
08:52:38.0405 3832 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
08:52:38.0415 3832 MBAMService - ok
08:52:38.0476 3832 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
08:52:38.0479 3832 Mcx2Svc - ok
08:52:38.0505 3832 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys
08:52:38.0506 3832 megasas - ok
08:52:38.0597 3832 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys
08:52:38.0601 3832 MegaSR - ok
08:52:38.0646 3832 MEIx64 (a6518dcc42f7a6e999bb3bea8fd87567) C:\Windows\system32\DRIVERS\HECIx64.sys
08:52:38.0647 3832 MEIx64 - ok
08:52:38.0692 3832 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
08:52:38.0695 3832 MMCSS - ok
08:52:38.0740 3832 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
08:52:38.0741 3832 Modem - ok
08:52:38.0772 3832 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
08:52:38.0773 3832 monitor - ok
08:52:38.0825 3832 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
08:52:38.0826 3832 mouclass - ok
08:52:38.0888 3832 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
08:52:38.0890 3832 mouhid - ok
08:52:38.0957 3832 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
08:52:38.0959 3832 mountmgr - ok
08:52:39.0090 3832 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
08:52:39.0092 3832 MozillaMaintenance - ok
08:52:39.0133 3832 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
08:52:39.0136 3832 mpio - ok
08:52:39.0169 3832 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
08:52:39.0170 3832 mpsdrv - ok
08:52:39.0267 3832 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
08:52:39.0277 3832 MpsSvc - ok
08:52:39.0333 3832 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
08:52:39.0335 3832 MRxDAV - ok
08:52:39.0411 3832 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
08:52:39.0413 3832 mrxsmb - ok
08:52:39.0496 3832 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
08:52:39.0501 3832 mrxsmb10 - ok
08:52:39.0577 3832 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
08:52:39.0579 3832 mrxsmb20 - ok
08:52:39.0610 3832 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
08:52:39.0611 3832 msahci - ok
08:52:39.0651 3832 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
08:52:39.0654 3832 msdsm - ok
08:52:39.0719 3832 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
08:52:39.0724 3832 MSDTC - ok
08:52:39.0758 3832 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
08:52:39.0760 3832 Msfs - ok
08:52:39.0786 3832 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
08:52:39.0786 3832 mshidkmdf - ok
08:52:39.0814 3832 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
08:52:39.0815 3832 msisadrv - ok
08:52:39.0869 3832 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
08:52:39.0873 3832 MSiSCSI - ok
08:52:39.0878 3832 msiserver - ok
08:52:39.0933 3832 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
08:52:39.0934 3832 MSKSSRV - ok
08:52:39.0956 3832 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
08:52:39.0957 3832 MSPCLOCK - ok
08:52:39.0982 3832 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
08:52:39.0983 3832 MSPQM - ok
08:52:40.0087 3832 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
08:52:40.0092 3832 MsRPC - ok
08:52:40.0143 3832 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
08:52:40.0144 3832 mssmbios - ok
08:52:40.0185 3832 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
08:52:40.0186 3832 MSTEE - ok
08:52:40.0198 3832 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys
08:52:40.0199 3832 MTConfig - ok
08:52:40.0222 3832 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
08:52:40.0224 3832 Mup - ok
08:52:40.0341 3832 MySQL55 - ok
08:52:40.0494 3832 MyWiFiDHCPDNS (8f57db74bf5407a4cda6c8b005dc8dd0) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
08:52:40.0499 3832 MyWiFiDHCPDNS - ok
08:52:40.0590 3832 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
08:52:40.0597 3832 napagent - ok
08:52:40.0685 3832 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
08:52:40.0689 3832 NativeWifiP - ok
08:52:40.0821 3832 NDIS (c38b8ae57f78915905064a9a24dc1586) C:\Windows\system32\drivers\ndis.sys
08:52:40.0834 3832 NDIS - ok
08:52:40.0871 3832 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
08:52:40.0873 3832 NdisCap - ok
08:52:40.0894 3832 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
08:52:40.0895 3832 NdisTapi - ok
08:52:40.0917 3832 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
08:52:40.0918 3832 Ndisuio - ok
08:52:40.0973 3832 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
08:52:40.0976 3832 NdisWan - ok
08:52:40.0995 3832 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
08:52:40.0997 3832 NDProxy - ok
08:52:41.0044 3832 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
08:52:41.0046 3832 NetBIOS - ok
08:52:41.0101 3832 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
08:52:41.0106 3832 NetBT - ok
08:52:41.0152 3832 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
08:52:41.0155 3832 Netlogon - ok
08:52:41.0243 3832 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
08:52:41.0250 3832 Netman - ok
08:52:41.0425 3832 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:52:41.0428 3832 NetMsmqActivator - ok
08:52:41.0444 3832 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:52:41.0447 3832 NetPipeActivator - ok
08:52:41.0536 3832 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
08:52:41.0542 3832 netprofm - ok
08:52:41.0552 3832 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:52:41.0553 3832 NetTcpActivator - ok
08:52:41.0557 3832 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:52:41.0558 3832 NetTcpPortSharing - ok
08:52:42.0306 3832 NETwNs64 (50ad7f7040c22bb7caa59a0880875a21) C:\Windows\system32\DRIVERS\NETwNs64.sys
08:52:42.0350 3832 NETwNs64 - ok
08:52:42.0493 3832 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys
08:52:42.0494 3832 nfrd960 - ok
08:52:42.0574 3832 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
08:52:42.0579 3832 NlaSvc - ok
08:52:42.0610 3832 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
08:52:42.0611 3832 Npfs - ok
08:52:42.0659 3832 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
08:52:42.0661 3832 nsi - ok
08:52:42.0677 3832 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
08:52:42.0678 3832 nsiproxy - ok
08:52:42.0851 3832 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
08:52:42.0861 3832 Ntfs - ok
08:52:43.0021 3832 NuidFltr (317020d31f1696334679b9d0416eb62e) C:\Windows\system32\DRIVERS\NuidFltr.sys
08:52:43.0022 3832 NuidFltr - ok
08:52:43.0048 3832 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
08:52:43.0048 3832 Null - ok
08:52:43.0097 3832 nusb3hub (9a33100ac62a0463c49e47ee8e77083a) C:\Windows\system32\DRIVERS\nusb3hub.sys
08:52:43.0099 3832 nusb3hub - ok
08:52:43.0178 3832 nusb3xhc (87c321f7bee646b7ec6eedd6eb725741) C:\Windows\system32\DRIVERS\nusb3xhc.sys
08:52:43.0181 3832 nusb3xhc - ok
08:52:43.0254 3832 NVENETFD (a85b4f2ef3a7304a5399ef0526423040) C:\Windows\system32\DRIVERS\nvm62x64.sys
08:52:43.0259 3832 NVENETFD - ok
08:52:43.0334 3832 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
08:52:43.0337 3832 nvraid - ok
08:52:43.0379 3832 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
08:52:43.0381 3832 nvstor - ok
08:52:43.0431 3832 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
08:52:43.0433 3832 nv_agp - ok
08:52:43.0592 3832 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
08:52:43.0596 3832 odserv - ok
08:52:43.0642 3832 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
08:52:43.0644 3832 ohci1394 - ok
08:52:43.0695 3832 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
08:52:43.0697 3832 ose - ok
08:52:43.0776 3832 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
08:52:43.0782 3832 p2pimsvc - ok
08:52:43.0845 3832 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
08:52:43.0851 3832 p2psvc - ok
08:52:43.0895 3832 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys
08:52:43.0897 3832 Parport - ok
08:52:43.0960 3832 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
08:52:43.0962 3832 partmgr - ok
08:52:44.0011 3832 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
08:52:44.0015 3832 PcaSvc - ok
08:52:44.0075 3832 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
08:52:44.0079 3832 pci - ok
08:52:44.0133 3832 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
08:52:44.0134 3832 pciide - ok
08:52:44.0184 3832 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys
08:52:44.0187 3832 pcmcia - ok
08:52:44.0221 3832 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
08:52:44.0222 3832 pcw - ok
08:52:44.0284 3832 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
08:52:44.0291 3832 PEAUTH - ok
08:52:44.0422 3832 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
08:52:44.0424 3832 PerfHost - ok
08:52:44.0674 3832 PID_PEPI (087a343dfc337f37723dd7912de6b6cd) C:\Windows\system32\DRIVERS\LV302V64.SYS
08:52:44.0692 3832 PID_PEPI - ok
08:52:44.0919 3832 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
08:52:44.0929 3832 pla - ok
08:52:45.0027 3832 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
08:52:45.0034 3832 PlugPlay - ok
08:52:45.0140 3832 Pml Driver HPZ12 (dde66ab0b9808f23f1a13588249e5864) C:\Windows\system32\HPZipm12.dll
08:52:45.0143 3832 Pml Driver HPZ12 - ok
08:52:45.0182 3832 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
08:52:45.0185 3832 PNRPAutoReg - ok
08:52:45.0222 3832 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
08:52:45.0229 3832 PNRPsvc - ok
08:52:45.0330 3832 Point64 (33328fa8a580885ab0065be6db266e9f) C:\Windows\system32\DRIVERS\point64.sys
08:52:45.0331 3832 Point64 - ok
08:52:45.0411 3832 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
08:52:45.0417 3832 PolicyAgent - ok
08:52:45.0466 3832 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
08:52:45.0470 3832 Power - ok
08:52:45.0523 3832 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
08:52:45.0525 3832 PptpMiniport - ok
08:52:45.0553 3832 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys
08:52:45.0554 3832 Processor - ok
08:52:45.0625 3832 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
08:52:45.0631 3832 ProfSvc - ok
08:52:45.0665 3832 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
08:52:45.0667 3832 ProtectedStorage - ok
08:52:45.0727 3832 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
08:52:45.0729 3832 Psched - ok
08:52:45.0780 3832 PxHlpa64 (4712cc14e720ecccc0aa16949d18aaf1) C:\Windows\system32\Drivers\PxHlpa64.sys
08:52:45.0782 3832 PxHlpa64 - ok
08:52:45.0929 3832 QBCFMonitorService (933d92f0bd1d7a9835cd8a8b1235a11e) C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
08:52:45.0931 3832 QBCFMonitorService - ok
08:52:46.0034 3832 QBFCService (6bee1814470dc12fa20c53dfc3c97ebb) C:\Program Files (x86)\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe
08:52:46.0035 3832 QBFCService - ok
08:52:46.0311 3832 QBVSS (0c7b65c8743442a37152fcfac5f7d16a) C:\Program Files (x86)\Common Files\Intuit\DataProtect\QBIDPService.exe
08:52:46.0325 3832 QBVSS - ok
08:52:47.0001 3832 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys
08:52:47.0014 3832 ql2300 - ok
08:52:47.0390 3832 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys
08:52:47.0392 3832 ql40xx - ok
08:52:47.0504 3832 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
08:52:47.0510 3832 QWAVE - ok
08:52:47.0564 3832 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
08:52:47.0565 3832 QWAVEdrv - ok
08:52:47.0616 3832 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
08:52:47.0617 3832 RasAcd - ok
08:52:47.0900 3832 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
08:52:47.0901 3832 RasAgileVpn - ok
08:52:48.0044 3832 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
08:52:48.0045 3832 RasAuto - ok
08:52:48.0092 3832 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
08:52:48.0094 3832 Rasl2tp - ok
08:52:48.0216 3832 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
08:52:48.0224 3832 RasMan - ok
08:52:48.0294 3832 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
08:52:48.0296 3832 RasPppoe - ok
08:52:48.0326 3832 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
08:52:48.0328 3832 RasSstp - ok
08:52:48.0389 3832 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
08:52:48.0393 3832 rdbss - ok
08:52:48.0442 3832 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\drivers\rdpbus.sys
08:52:48.0443 3832 rdpbus - ok
08:52:48.0493 3832 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
08:52:48.0495 3832 RDPCDD - ok
08:52:48.0533 3832 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
08:52:48.0534 3832 RDPENCDD - ok
08:52:48.0548 3832 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
08:52:48.0549 3832 RDPREFMP - ok
08:52:48.0630 3832 RDPWD (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys
08:52:48.0632 3832 RDPWD - ok
08:52:48.0731 3832 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
08:52:48.0734 3832 rdyboost - ok
08:52:49.0065 3832 RegSrvc (fd11c1287d38a46fb72353e14d50089c) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
08:52:49.0077 3832 RegSrvc - ok
08:52:49.0134 3832 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
08:52:49.0138 3832 RemoteAccess - ok
08:52:49.0188 3832 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
08:52:49.0193 3832 RemoteRegistry - ok
08:52:49.0346 3832 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys
08:52:49.0349 3832 RFCOMM - ok
08:52:49.0405 3832 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
08:52:49.0409 3832 RpcEptMapper - ok
08:52:49.0431 3832 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
08:52:49.0432 3832 RpcLocator - ok
08:52:49.0564 3832 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
08:52:49.0574 3832 RpcSs - ok
08:52:49.0641 3832 RSPCIESTOR (1f5e7af59b390261a85f5bedb1bb88b3) C:\Windows\system32\DRIVERS\RtsPStor.sys
08:52:49.0643 3832 RSPCIESTOR - ok
08:52:49.0704 3832 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
08:52:49.0706 3832 rspndr - ok
08:52:49.0888 3832 RTL8167 (ed5873f7dfb2f96d37f13322211b6bdc) C:\Windows\system32\DRIVERS\Rt64win7.sys
08:52:49.0895 3832 RTL8167 - ok
08:52:49.0927 3832 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
08:52:49.0930 3832 SamSs - ok
08:52:49.0994 3832 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
08:52:49.0996 3832 sbp2port - ok
08:52:50.0014 3832 SBRE - ok
08:52:50.0536 3832 SBSDWSCService (794d4b48dfb6e999537c7c3947863463) C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
08:52:50.0547 3832 SBSDWSCService - ok
08:52:50.0624 3832 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
08:52:50.0630 3832 SCardSvr - ok
08:52:50.0714 3832 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
08:52:50.0715 3832 scfilter - ok
08:52:51.0021 3832 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
08:52:51.0041 3832 Schedule - ok
08:52:51.0086 3832 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
08:52:51.0089 3832 SCPolicySvc - ok
08:52:51.0187 3832 sdbus (111e0ebc0ad79cb0fa014b907b231cf0) C:\Windows\system32\DRIVERS\sdbus.sys
08:52:51.0189 3832 sdbus - ok
08:52:51.0265 3832 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
08:52:51.0271 3832 SDRSVC - ok
08:52:51.0342 3832 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
08:52:51.0343 3832 secdrv - ok
08:52:51.0374 3832 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
08:52:51.0378 3832 seclogon - ok
08:52:51.0411 3832 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
08:52:51.0415 3832 SENS - ok
08:52:51.0486 3832 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
08:52:51.0490 3832 SensrSvc - ok
08:52:51.0561 3832 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\drivers\serenum.sys
08:52:51.0563 3832 Serenum - ok
08:52:51.0641 3832 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\drivers\serial.sys
08:52:51.0644 3832 Serial - ok
08:52:51.0683 3832 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys
08:52:51.0684 3832 sermouse - ok
08:52:51.0764 3832 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
08:52:51.0769 3832 SessionEnv - ok
08:52:51.0810 3832 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
08:52:51.0811 3832 sffdisk - ok
08:52:51.0845 3832 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
08:52:51.0846 3832 sffp_mmc - ok
08:52:51.0885 3832 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
08:52:51.0886 3832 sffp_sd - ok
08:52:51.0944 3832 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys
08:52:51.0945 3832 sfloppy - ok
08:52:52.0114 3832 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
08:52:52.0122 3832 SharedAccess - ok
08:52:52.0257 3832 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
08:52:52.0265 3832 ShellHWDetection - ok
08:52:52.0323 3832 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys
08:52:52.0325 3832 SiSRaid2 - ok
08:52:52.0375 3832 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys
08:52:52.0377 3832 SiSRaid4 - ok
08:52:52.0510 3832 SkypeUpdate (6128e98eaaed364ed1a32708d2fd22cb) C:\Program Files (x86)\Skype\Updater\Updater.exe
08:52:52.0513 3832 SkypeUpdate - ok
08:52:52.0588 3832 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
08:52:52.0590 3832 Smb - ok
08:52:52.0657 3832 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
08:52:52.0662 3832 SNMPTRAP - ok
08:52:52.0691 3832 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
08:52:52.0691 3832 spldr - ok
08:52:52.0919 3832 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
08:52:52.0931 3832 Spooler - ok
08:52:54.0204 3832 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
08:52:54.0231 3832 sppsvc - ok
08:52:54.0520 3832 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
08:52:54.0524 3832 sppuinotify - ok
08:52:54.0662 3832 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
08:52:54.0670 3832 srv - ok
08:52:54.0797 3832 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
08:52:54.0803 3832 srv2 - ok
08:52:54.0921 3832 SrvHsfHDA (0c4540311e11664b245a263e1154cef8) C:\Windows\system32\DRIVERS\VSTAZL6.SYS
08:52:54.0926 3832 SrvHsfHDA - ok
08:52:55.0341 3832 SrvHsfV92 (02071d207a9858fbe3a48cbfd59c4a04) C:\Windows\system32\DRIVERS\VSTDPV6.SYS
08:52:55.0364 3832 SrvHsfV92 - ok
08:52:55.0849 3832 SrvHsfWinac (18e40c245dbfaf36fd0134a7ef2df396) C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
08:52:55.0859 3832 SrvHsfWinac - ok
08:52:55.0961 3832 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
08:52:55.0964 3832 srvnet - ok
08:52:56.0043 3832 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
08:52:56.0049 3832 SSDPSRV - ok
08:52:56.0088 3832 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
08:52:56.0090 3832 SstpSvc - ok
08:52:56.0330 3832 STacSV (20e27aa5bcc01c2149830c05fe22f675) C:\Program Files\IDT\WDM\STacSV64.exe
08:52:56.0334 3832 STacSV - ok
08:52:56.0392 3832 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys
08:52:56.0393 3832 stexstor - ok
08:52:56.0571 3832 STHDA (beb37ce4e7456f5efa52d783d1e06d8c) C:\Windows\system32\DRIVERS\stwrt64.sys
08:52:56.0578 3832 STHDA - ok
08:52:56.0829 3832 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
08:52:56.0840 3832 stisvc - ok
08:52:56.0899 3832 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
08:52:56.0900 3832 swenum - ok
08:52:57.0189 3832 SwitchBoard (f577910a133a592234ebaad3f3afa258) C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
08:52:57.0197 3832 SwitchBoard - ok
08:52:57.0314 3832 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
08:52:57.0324 3832 swprv - ok
08:52:57.0701 3832 SynTP (c447977ed2a4ae9346fe3a0579a34d7c) C:\Windows\system32\DRIVERS\SynTP.sys
08:52:57.0715 3832 SynTP - ok
08:52:58.0533 3832 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
08:52:58.0556 3832 SysMain - ok
08:52:58.0813 3832 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
08:52:58.0815 3832 TabletInputService - ok
08:52:58.0935 3832 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
08:52:58.0943 3832 TapiSrv - ok
08:52:58.0983 3832 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
08:52:58.0987 3832 TBS - ok
08:52:59.0701 3832 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
08:52:59.0724 3832 Tcpip - ok
08:53:00.0606 3832 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
08:53:00.0631 3832 TCPIP6 - ok
08:53:01.0008 3832 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
08:53:01.0010 3832 tcpipreg - ok
08:53:01.0044 3832 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
08:53:01.0045 3832 TDPIPE - ok
08:53:01.0090 3832 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
08:53:01.0091 3832 TDTCP - ok
08:53:01.0150 3832 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
08:53:01.0152 3832 tdx - ok
08:53:01.0233 3832 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
08:53:01.0234 3832 TermDD - ok
08:53:01.0610 3832 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
08:53:01.0624 3832 TermService - ok
08:53:01.0677 3832 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
08:53:01.0681 3832 Themes - ok
08:53:01.0717 3832 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
08:53:01.0721 3832 THREADORDER - ok
08:53:01.0796 3832 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
08:53:01.0801 3832 TrkWks - ok
08:53:01.0919 3832 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
08:53:01.0922 3832 TrustedInstaller - ok
08:53:01.0983 3832 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
08:53:01.0985 3832 tssecsrv - ok
08:53:02.0051 3832 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
08:53:02.0053 3832 TsUsbFlt - ok
08:53:02.0099 3832 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\Windows\system32\drivers\TsUsbGD.sys
08:53:02.0100 3832 TsUsbGD - ok
08:53:02.0198 3832 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
08:53:02.0201 3832 tunnel - ok
08:53:02.0263 3832 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys
08:53:02.0265 3832 uagp35 - ok
08:53:02.0333 3832 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
08:53:02.0338 3832 udfs - ok
08:53:02.0373 3832 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
08:53:02.0377 3832 UI0Detect - ok
08:53:02.0445 3832 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
08:53:02.0447 3832 uliagpkx - ok
08:53:02.0505 3832 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
08:53:02.0506 3832 umbus - ok
08:53:02.0578 3832 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys
08:53:02.0579 3832 UmPass - ok
08:53:03.0287 3832 UNS (a678e5ddd974903dd71f503bdcaca218) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
08:53:03.0302 3832 UNS - ok
08:53:03.0588 3832 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
08:53:03.0595 3832 upnphost - ok
08:53:03.0684 3832 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\Windows\system32\Drivers\usbaapl64.sys
08:53:03.0686 3832 USBAAPL64 - ok
08:53:03.0755 3832 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys
08:53:03.0757 3832 usbaudio - ok
08:53:03.0837 3832 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
08:53:03.0838 3832 usbccgp - ok
08:53:03.0913 3832 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
08:53:03.0916 3832 usbcir - ok
08:53:03.0962 3832 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
08:53:03.0963 3832 usbehci - ok
08:53:04.0045 3832 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
08:53:04.0049 3832 usbhub - ok
08:53:04.0099 3832 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
08:53:04.0101 3832 usbohci - ok
08:53:04.0152 3832 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
08:53:04.0152 3832 usbprint - ok
08:53:04.0231 3832 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
08:53:04.0233 3832 usbscan - ok
08:53:04.0336 3832 usbser (4acee387fa8fd39f83564fcd2fc234f2) C:\Windows\system32\DRIVERS\usbser.sys
08:53:04.0337 3832 usbser - ok
08:53:04.0386 3832 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
08:53:04.0388 3832 USBSTOR - ok
08:53:04.0424 3832 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
08:53:04.0425 3832 usbuhci - ok
08:53:04.0535 3832 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\system32\Drivers\usbvideo.sys
08:53:04.0539 3832 usbvideo - ok
08:53:04.0594 3832 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
08:53:04.0598 3832 UxSms - ok
08:53:04.0628 3832 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
08:53:04.0631 3832 VaultSvc - ok
08:53:04.0682 3832 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
08:53:04.0683 3832 vdrvroot - ok
08:53:04.0866 3832 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
08:53:04.0872 3832 vds - ok
08:53:04.0934 3832 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
08:53:04.0936 3832 vga - ok
08:53:04.0963 3832 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
08:53:04.0964 3832 VgaSave - ok
08:53:05.0061 3832 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
08:53:05.0064 3832 vhdmp - ok
08:53:05.0125 3832 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
08:53:05.0126 3832 viaide - ok
08:53:05.0177 3832 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
08:53:05.0179 3832 volmgr - ok
08:53:05.0306 3832 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
08:53:05.0311 3832 volmgrx - ok
08:53:05.0424 3832 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
08:53:05.0429 3832 volsnap - ok
08:53:05.0532 3832 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys
08:53:05.0535 3832 vsmraid - ok
08:53:06.0099 3832 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
08:53:06.0118 3832 VSS - ok
08:53:06.0420 3832 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
08:53:06.0421 3832 vwifibus - ok
08:53:06.0468 3832 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
08:53:06.0470 3832 vwififlt - ok
08:53:06.0496 3832 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
08:53:06.0498 3832 vwifimp - ok
08:53:06.0630 3832 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
08:53:06.0639 3832 W32Time - ok
08:53:06.0684 3832 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys
08:53:06.0686 3832 WacomPen - ok
08:53:06.0777 3832 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
08:53:06.0779 3832 WANARP - ok
08:53:06.0791 3832 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
08:53:06.0793 3832 Wanarpv6 - ok
08:53:07.0242 3832 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
08:53:07.0256 3832 WatAdminSvc - ok
08:53:07.0859 3832 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
08:53:07.0881 3832 wbengine - ok
08:53:08.0199 3832 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
08:53:08.0205 3832 WbioSrvc - ok
08:53:08.0343 3832 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
08:53:08.0348 3832 wcncsvc - ok
08:53:08.0479 3832 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
08:53:08.0481 3832 WcsPlugInService - ok
08:53:08.0662 3832 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys
08:53:08.0663 3832 Wd - ok
08:53:08.0870 3832 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
08:53:08.0875 3832 Wdf01000 - ok
08:53:08.0949 3832 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
08:53:08.0955 3832 WdiServiceHost - ok
08:53:08.0961 3832 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
08:53:08.0965 3832 WdiSystemHost - ok
08:53:09.0024 3832 wdkmd (5e1640435dd54d00451156ca5340b109) C:\Windows\system32\DRIVERS\WDKMD.sys
08:53:09.0026 3832 wdkmd - ok
08:53:09.0137 3832 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
08:53:09.0144 3832 WebClient - ok
08:53:09.0287 3832 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
08:53:09.0292 3832 Wecsvc - ok
08:53:09.0347 3832 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
08:53:09.0351 3832 wercplsupport - ok
08:53:09.0435 3832 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
08:53:09.0439 3832 WerSvc - ok
08:53:09.0496 3832 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
08:53:09.0497 3832 WfpLwf - ok
08:53:09.0510 3832 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
08:53:09.0511 3832 WIMMount - ok
08:53:09.0535 3832 WinDefend - ok
08:53:09.0546 3832 WinHttpAutoProxySvc - ok
08:53:09.0684 3832 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
08:53:09.0688 3832 Winmgmt - ok
08:53:10.0215 3832 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
08:53:10.0230 3832 WinRM - ok
08:53:10.0633 3832 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUSB.sys
08:53:10.0634 3832 WinUsb - ok
08:53:10.0918 3832 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
08:53:10.0935 3832 Wlansvc - ok
08:53:11.0091 3832 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
08:53:11.0093 3832 wlcrasvc - ok
08:53:11.0753 3832 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
08:53:11.0771 3832 wlidsvc - ok
08:53:12.0095 3832 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
08:53:12.0096 3832 WmiAcpi - ok
08:53:12.0218 3832 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
08:53:12.0222 3832 wmiApSrv - ok
08:53:12.0289 3832 WMPNetworkSvc - ok
08:53:12.0350 3832 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
08:53:12.0354 3832 WPCSvc - ok
08:53:12.0399 3832 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
08:53:12.0405 3832 WPDBusEnum - ok
08:53:12.0444 3832 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
08:53:12.0445 3832 ws2ifsl - ok
08:53:12.0501 3832 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
08:53:12.0506 3832 wscsvc - ok
08:53:12.0511 3832 WSearch - ok
08:53:13.0212 3832 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
08:53:13.0234 3832 wuauserv - ok
08:53:13.0590 3832 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
08:53:13.0593 3832 WudfPf - ok
08:53:13.0701 3832 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
08:53:13.0705 3832 WUDFRd - ok
08:53:13.0767 3832 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
08:53:13.0772 3832 wudfsvc - ok
08:53:13.0832 3832 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
08:53:13.0839 3832 WwanSvc - ok
08:53:13.0950 3832 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
08:53:14.0939 3832 \Device\Harddisk0\DR0 - ok
08:53:14.0946 3832 MBR (0x1B8) (5fb38429d5d77768867c76dcbdb35194) \Device\Harddisk1\DR1
08:53:15.0783 3832 \Device\Harddisk1\DR1 - ok
08:53:15.0803 3832 Boot (0x1200) (ee47b63536c11232f345f28cb8c4657f) \Device\Harddisk0\DR0\Partition0
08:53:15.0824 3832 \Device\Harddisk0\DR0\Partition0 - ok
08:53:15.0847 3832 Boot (0x1200) (825b265f79e431e5d083a87423893d75) \Device\Harddisk0\DR0\Partition1
08:53:15.0849 3832 \Device\Harddisk0\DR0\Partition1 - ok
08:53:15.0894 3832 Boot (0x1200) (346940341c3cd7ef0f8f8a5a13484ec2) \Device\Harddisk0\DR0\Partition2
08:53:15.0896 3832 \Device\Harddisk0\DR0\Partition2 - ok
08:53:15.0942 3832 Boot (0x1200) (54a8c1a0dde701ca06044fb50e6b9449) \Device\Harddisk0\DR0\Partition3
08:53:15.0944 3832 \Device\Harddisk0\DR0\Partition3 - ok
08:53:15.0950 3832 Boot (0x1200) (1e8308c3266c0de4c76dedf4c05786eb) \Device\Harddisk1\DR1\Partition0
08:53:15.0954 3832 \Device\Harddisk1\DR1\Partition0 - ok
08:53:15.0954 3832 ============================================================
08:53:15.0954 3832 Scan finished
08:53:15.0954 3832 ============================================================
08:53:15.0969 7416 Detected object count: 1
08:53:15.0969 7416 Actual detected object count: 1
08:54:57.0433 7416 Akamai ( HiddenFile.Multi.Generic ) - skipped by user
08:54:57.0433 7416 Akamai ( HiddenFile.Multi.Generic ) - User select action: Skip
08:55:09.0299 4736 Deinitialize success


aswMBR Log

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-05-18 08:44:23
-----------------------------
08:44:23.580 OS Version: Windows x64 6.1.7601 Service Pack 1
08:44:23.580 Number of processors: 8 586 0x2A07
08:44:23.581 ComputerName: CATALINA UserName: linda
08:44:27.042 Initialize success
08:45:07.289 AVAST engine defs: 12051800
08:46:49.965 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
08:46:49.967 Disk 0 Vendor: Hitachi_ JE4O Size: 715404MB BusType: 3
08:46:49.981 Disk 0 MBR read successfully
08:46:49.984 Disk 0 MBR scan
08:46:49.988 Disk 0 Windows 7 default MBR code
08:46:49.991 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 199 MB offset 2048
08:46:50.000 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 700430 MB offset 409600
08:46:50.035 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 14671 MB offset 1434890240
08:46:50.051 Disk 0 Partition 4 00 0C FAT32 LBA MSDOS5.0 102 MB offset 1464936448
08:46:50.094 Disk 0 scanning C:\Windows\system32\drivers
08:46:59.778 Service scanning
08:47:29.050 Modules scanning
08:47:29.056 Disk 0 trace - called modules:
08:47:29.073 ntoskrnl.exe CLASSPNP.SYS disk.sys hpdskflt.sys iaStor.sys hal.dll
08:47:29.080 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800836c790]
08:47:29.084 3 CLASSPNP.SYS[fffff88001db543f] -> nt!IofCallDriver -> [0xfffffa800827eb10]
08:47:29.088 5 hpdskflt.sys[fffff88001d5c189] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8008141050]
08:47:31.781 AVAST engine scan C:\Windows
08:47:36.071 AVAST engine scan C:\Windows\system32
08:52:08.697 AVAST engine scan C:\Windows\system32\drivers
08:52:46.178 AVAST engine scan C:\Users\linda
08:55:24.479 Disk 0 MBR has been saved successfully to "F:\virus removal tools\MBR.dat"
08:55:24.488 The log file has been saved successfully to "F:\virus removal tools\aswMBR.txt"

#5 lwolfe63

lwolfe63
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:03:15 PM

Posted 18 May 2012 - 10:58 AM

MiniToolBox by Farbar Version: 18-01-2012
Ran by linda (administrator) on 18-05-2012 at 08:57:53
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

::1 localhost

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:15 PM

Posted 18 May 2012 - 11:04 AM

Mini toolbox is incomplete,post the complete log

#7 lwolfe63

lwolfe63
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:03:15 PM

Posted 18 May 2012 - 11:08 AM

MiniToolBox by Farbar Version: 18-01-2012
Ran by linda (administrator) on 18-05-2012 at 09:09:11
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

::1 localhost








































































































































































































176.9.75.3 www.google-analytics.com.
176.9.75.3 ad-emea.doubleclick.net.
176.9.75.3 www.statcounter.com.
108.163.215.51 www.google-analytics.com.
108.163.215.51 ad-emea.doubleclick.net.
108.163.215.51 www.statcounter.com.

127.0.0.1 localhost

========================= IP Configuration: ================================

Realtek PCIe GBE Family Controller = Local Area Connection (Connected)
Intel® WiFi Link 1000 BGN = Wireless Network Connection (Connected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 3 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
set subinterface interface=?-) subinterface=ethernet_6 mtu=1477
add address name="Wireless Network Connection 3" address=192.168.16.2 mask=255.255.255.0


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : CATALINA
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : home

Wireless LAN adapter Wireless Network Connection 3:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter #2
Physical Address. . . . . . . . . : 8C-A9-82-72-F6-31
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 8C-A9-82-72-F6-31
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : home
Description . . . . . . . . . . . : Intel® WiFi Link 1000 BGN
Physical Address. . . . . . . . . : 8C-A9-82-72-F6-30
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::454a:c67c:d527:21e5%15(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.0.4(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Friday, May 18, 2012 8:30:38 AM
Lease Expires . . . . . . . . . . : Saturday, May 19, 2012 8:30:38 AM
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DHCPv6 IAID . . . . . . . . . . . : 378317186
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-6E-B3-9F-2C-27-D7-AA-02-C5
DNS Servers . . . . . . . . . . . : 192.168.0.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : home
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : 2C-27-D7-AA-02-C5
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::3cee:22f1:3d52:f0bd%13(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.11.4(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Friday, May 18, 2012 8:30:38 AM
Lease Expires . . . . . . . . . . : Sunday, May 20, 2012 8:30:38 AM
Default Gateway . . . . . . . . . : 192.168.11.1
DHCP Server . . . . . . . . . . . : 192.168.11.1
DHCPv6 IAID . . . . . . . . . . . : 288106455
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-6E-B3-9F-2C-27-D7-AA-02-C5
DNS Servers . . . . . . . . . . . : 192.168.11.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Bluetooth Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
Physical Address. . . . . . . . . : CC-52-AF-86-AD-4F
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{3BD184F0-7DDD-4657-94F1-ED74087A7462}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{7E2591A8-D191-403C-970A-8BDB063D956A}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{7640F6AF-3055-4BCF-BBFD-5C13EAAC18AB}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:145b:2101:93ff:dd6d(Preferred)
Link-local IPv6 Address . . . . . : fe80::145b:2101:93ff:dd6d%18(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.home:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : home
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: myrouter.home
Address: 192.168.0.1

Name: google.com
Addresses: 74.125.224.231
74.125.224.224
74.125.224.230
74.125.224.238
74.125.224.227
74.125.224.233
74.125.224.228
74.125.224.232
74.125.224.226
74.125.224.229
74.125.224.225


Pinging google.com [74.125.224.229] with 32 bytes of data:
Reply from 74.125.224.229: bytes=32 time=12ms TTL=251
Reply from 74.125.224.229: bytes=32 time=12ms TTL=251

Ping statistics for 74.125.224.229:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 12ms, Maximum = 12ms, Average = 12ms
Server: myrouter.home
Address: 192.168.0.1

Name: yahoo.com
Addresses: 98.139.183.24
209.191.122.70
72.30.38.140


Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=102ms TTL=249
Reply from 72.30.38.140: bytes=32 time=26ms TTL=249

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 26ms, Maximum = 102ms, Average = 64ms
Server: myrouter.home
Address: 192.168.0.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
17...8c a9 82 72 f6 31 ......Microsoft Virtual WiFi Miniport Adapter #2
16...8c a9 82 72 f6 31 ......Microsoft Virtual WiFi Miniport Adapter
15...8c a9 82 72 f6 30 ......Intel® WiFi Link 1000 BGN
13...2c 27 d7 aa 02 c5 ......Realtek PCIe GBE Family Controller
12...cc 52 af 86 ad 4f ......Bluetooth Device (Personal Area Network)
1...........................Software Loopback Interface 1
21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
22...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
18...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.4 25
0.0.0.0 0.0.0.0 192.168.11.1 192.168.11.4 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.0.0 255.255.255.0 On-link 192.168.0.4 281
192.168.0.4 255.255.255.255 On-link 192.168.0.4 281
192.168.0.255 255.255.255.255 On-link 192.168.0.4 281
192.168.11.0 255.255.255.0 On-link 192.168.11.4 276
192.168.11.4 255.255.255.255 On-link 192.168.11.4 276
192.168.11.255 255.255.255.255 On-link 192.168.11.4 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.0.4 281
224.0.0.0 240.0.0.0 On-link 192.168.11.4 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.0.4 281
255.255.255.255 255.255.255.255 On-link 192.168.11.4 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
18 58 ::/0 On-link
1 306 ::1/128 On-link
18 58 2001::/32 On-link
18 306 2001:0:4137:9e76:145b:2101:93ff:dd6d/128
On-link
18 306 fe80::/64 On-link
15 281 fe80::/64 On-link
13 276 fe80::/64 On-link
18 306 fe80::145b:2101:93ff:dd6d/128
On-link
13 276 fe80::3cee:22f1:3d52:f0bd/128
On-link
15 281 fe80::454a:c67c:d527:21e5/128
On-link
1 306 ff00::/8 On-link
18 306 ff00::/8 On-link
15 281 ff00::/8 On-link
13 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 10 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 09 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 10 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (05/18/2012 08:32:55 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.

Details:
AddLegacyDriverFiles: Unable to back up image of binary GFI Software Firewall NDIS IM Filter Miniport.

System Error:
The system cannot find the file specified.
.

Error: (05/18/2012 08:32:55 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.

Details:
AddLegacyDriverFiles: Unable to back up image of binary SbFw.

System Error:
The system cannot find the file specified.
.

Error: (05/18/2012 07:01:02 AM) (Source: QuickBooks) (User: )
Description: An unexpected error has occured in "QuickBooks":
Returning NULL QBWinInstance Handle

Error: (05/18/2012 07:01:02 AM) (Source: QuickBooks) (User: )
Description: An unexpected error has occured in "QuickBooks":
Returning NULL QBWinInstance Handle

Error: (05/18/2012 07:01:02 AM) (Source: QuickBooks) (User: )
Description: An unexpected error has occured in "QuickBooks":
Returning NULL QBWinInstance Handle

Error: (05/18/2012 06:56:51 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/17/2012 10:55:32 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x80070013, The media is write protected.
]

Error: (05/17/2012 10:52:33 PM) (Source: ATIeRecord) (User: )
Description: ATI EEU failed to post message to CCC

Error: (05/17/2012 10:52:30 PM) (Source: ATIeRecord) (User: )
Description: ATI EEU failed to post message to CCC

Error: (05/17/2012 10:52:30 PM) (Source: ATIeRecord) (User: )
Description: ATI EEU failed to post message to CCC


System errors:
=============
Error: (05/18/2012 09:06:12 AM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR1.

Error: (05/18/2012 08:49:50 AM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR1.

Error: (05/18/2012 08:18:18 AM) (Source: DCOM) (User: linda)
Description: application-specificLocalActivation{D3DCB472-7261-43CE-924B-0704BD730D5F}{D3DCB472-7261-43CE-924B-0704BD730D5F}CATALINAlindaS-1-5-21-1556818061-3976636716-2310418733-1000LocalHost (Using LRPC)

Error: (05/18/2012 08:18:18 AM) (Source: DCOM) (User: linda)
Description: application-specificLocalActivation{145B4335-FE2A-4927-A040-7C35AD3180EF}{145B4335-FE2A-4927-A040-7C35AD3180EF}CATALINAlindaS-1-5-21-1556818061-3976636716-2310418733-1000LocalHost (Using LRPC)

Error: (05/17/2012 10:53:11 PM) (Source: DCOM) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}

Error: (05/17/2012 10:52:53 PM) (Source: DCOM) (User: )
Description: {51FA2736-5DEE-11D4-98E8-006008BF430C}

Error: (05/17/2012 04:00:30 PM) (Source: DCOM) (User: linda)
Description: application-specificLocalActivation{D3DCB472-7261-43CE-924B-0704BD730D5F}{D3DCB472-7261-43CE-924B-0704BD730D5F}CATALINAlindaS-1-5-21-1556818061-3976636716-2310418733-1000LocalHost (Using LRPC)

Error: (05/17/2012 04:00:30 PM) (Source: DCOM) (User: linda)
Description: application-specificLocalActivation{145B4335-FE2A-4927-A040-7C35AD3180EF}{145B4335-FE2A-4927-A040-7C35AD3180EF}CATALINAlindaS-1-5-21-1556818061-3976636716-2310418733-1000LocalHost (Using LRPC)

Error: (05/17/2012 11:37:46 AM) (Source: DCOM) (User: linda)
Description: application-specificLocalActivation{D3DCB472-7261-43CE-924B-0704BD730D5F}{D3DCB472-7261-43CE-924B-0704BD730D5F}CATALINAlindaS-1-5-21-1556818061-3976636716-2310418733-1000LocalHost (Using LRPC)

Error: (05/17/2012 11:37:46 AM) (Source: DCOM) (User: linda)
Description: application-specificLocalActivation{145B4335-FE2A-4927-A040-7C35AD3180EF}{145B4335-FE2A-4927-A040-7C35AD3180EF}CATALINAlindaS-1-5-21-1556818061-3976636716-2310418733-1000LocalHost (Using LRPC)


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
µTorrent (Version: 3.0.0)
ABBYY FineReader for ScanSnap ™ 4.1 (Version: 8.02.650.72520)
Ad-Aware Browsing Protection (Version: 1.0.0.5)
Adobe AIR (Version: 3.1.0.4880)
Adobe Community Help (Version: 3.4.980)
Adobe Creative Suite 5 Master Collection (Version: 5.0)
Adobe Download Assistant (Version: 1.0.2)
Adobe Flash Player 11 ActiveX 64-bit (Version: 11.2.202.235)
Adobe Flash Player 11 Plugin 64-bit (Version: 11.2.202.235)
Adobe Media Player (Version: 1.8)
Adobe Photoshop.com Inspiration Browser (Version: 3.04)
Adobe Premiere Elements 8.0 (Version: 8.0)
Adobe Premiere Elements 8.0 (Version: 8.0.1)
Adobe Reader X (10.1.3) (Version: 10.1.3)
Adobe Shockwave Player 11.5 (Version: 11.5.9.620)
Adobe Widget Browser (Version: 2.0 Build 230)
Adobe Widget Browser (Version: 2.0.230)
Agatha Christie - Peril at End House (Version: 2.2.0.95)
Akamai NetSession Interface
Akamai NetSession Interface Service
AnswerWorks 5.0 English Runtime (Version: 5.0.7)
AoA DVD Ripper
Apple Application Support (Version: 2.1.7)
Apple Mobile Device Support (Version: 5.1.1.4)
Apple Software Update (Version: 2.1.3.127)
Ask Toolbar (Version: 1.14.1.0)
ATI Catalyst Install Manager (Version: 3.0.816.0)
AuthenTec TrueAPI (Version: 1.2.1.33)
Avery Template (Version: 2.0.0.0)
Balsamiq Mockups For Desktop (Version: 2.0.24)
Bejeweled 2 Deluxe (Version: 2.2.0.95)
Bejeweled 3 (Version: 2.2.0.95)
Blackhawk Striker 2 (Version: 2.2.0.95)
Blasterball 3 (Version: 2.2.0.95)
bodybugg Software (Version: 9.0.1.847)
Bonjour (Version: 3.0.0.10)
Bounce Symphony (Version: 2.2.0.95)
Broadcom 2070 Bluetooth 3.0 (Version: 6.3.0.6300)
Build-a-lot 2 (Version: 2.2.0.95)
Cake Mania (Version: 2.2.0.95)
Camtasia Studio 7 (Version: 7.1.1)
Carbonite (Version: 5.2.1 build 1181 (Mar-16-2012))
CardMinder (Version: V4.1L40)
CardMinder V4.1 (Version: 4.1.40.1)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center (Version: 2011.0315.958.16016)
Catalyst Control Center Graphics Previews Common (Version: 2011.0315.958.16016)
Catalyst Control Center InstallProxy (Version: 2011.0315.958.16016)
Catalyst Control Center Localization All (Version: 2011.0315.958.16016)
Catalyst Control Center Profiles Mobile (Version: 2011.0315.958.16016)
ccc-utility64 (Version: 2011.0315.958.16016)
CCC Help Chinese Standard (Version: 2011.0315.0957.16016)
CCC Help Chinese Traditional (Version: 2011.0315.0957.16016)
CCC Help Czech (Version: 2011.0315.0957.16016)
CCC Help Danish (Version: 2011.0315.0957.16016)
CCC Help Dutch (Version: 2011.0315.0957.16016)
CCC Help English (Version: 2011.0315.0957.16016)
CCC Help Finnish (Version: 2011.0315.0957.16016)
CCC Help French (Version: 2011.0315.0957.16016)
CCC Help German (Version: 2011.0315.0957.16016)
CCC Help Greek (Version: 2011.0315.0957.16016)
CCC Help Hungarian (Version: 2011.0315.0957.16016)
CCC Help Italian (Version: 2011.0315.0957.16016)
CCC Help Japanese (Version: 2011.0315.0957.16016)
CCC Help Korean (Version: 2011.0315.0957.16016)
CCC Help Norwegian (Version: 2011.0315.0957.16016)
CCC Help Polish (Version: 2011.0315.0957.16016)
CCC Help Portuguese (Version: 2011.0315.0957.16016)
CCC Help Russian (Version: 2011.0315.0957.16016)
CCC Help Spanish (Version: 2011.0315.0957.16016)
CCC Help Swedish (Version: 2011.0315.0957.16016)
CCC Help Thai (Version: 2011.0315.0957.16016)
CCC Help Turkish (Version: 2011.0315.0957.16016)
Chuzzle Deluxe (Version: 2.2.0.95)
CuteFTP 8 Home (Version: 8.3.4)
CyberLink YouCam (Version: 3.5.1.4305)
D3DX10 (Version: 15.4.2368.0902)
Diner Dash 2 Restaurant Rescue (Version: 2.2.0.95)
Dora's World Adventure (Version: 2.2.0.95)
DVDFab 8.1.3.2 (31/10/2011) Qt
Energy Star Digital Logo (Version: 1.0.1)
ESU for Microsoft Windows 7 (Version: 1.0.0)
Farm Frenzy (Version: 2.2.0.95)
FATE - The Traitor Soul (Version: 2.2.0.95)
FileZilla Client 3.5.3 (Version: 3.5.3)
FireShot for Internet Explorer
Foxit PDF Creator Toolbar Updater (Version: 1.2.0.20007)
Foxit Reader (Version: 5.3.0.423)
Google Chrome (Version: 19.0.1084.46)
Google Update Helper (Version: 1.3.21.111)
Hewlett-Packard ACLM.NET v1.1.2.0 (Version: 1.00.0000)
HP 3D DriveGuard (Version: 4.1.9.1)
HP Auto (Version: 1.0.12935.3667)
HP Client Services (Version: 1.1.12938.3539)
HP Connection Manager (Version: 4.0.45.1)
HP Customer Experience Enhancements (Version: 6.0.1.7)
HP Documentation (Version: 1.1.0.0)
HP Games (Version: 1.0.2.4)
HP MovieStore (Version: 1.0.047)
HP MovieStore (Version: 2.0)
HP On Screen Display (Version: 1.3.5)
HP Power Manager (Version: 1.4.4)
HP Quick Launch (Version: 2.5.2)
HP Setup (Version: 8.6.4530.3651)
HP Setup Manager (Version: 1.1.13231.3673)
HP SimplePass 2011 (Version: 5.1.0.495)
HP Software Framework (Version: 4.1.13.1)
HP Support Assistant (Version: 6.1.12.1)
iCloud (Version: 1.1.0.40)
IDT Audio (Version: 1.0.6345.0)
Intel PROSet Wireless
Intel® Control Center (Version: 1.2.1.1007)
Intel® Display Audio Driver (Version: 6.14.00.3074)
Intel® Management Engine Components (Version: 7.0.0.1144)
Intel® PROSet/Wireless WiFi Software (Version: 14.2.0000)
Intel® Rapid Storage Technology (Version: 10.6.0.1002)
Intel® Wireless Display
Intel® Wireless Display (Version: 2.0.30.0)
iSEEK AnswerWorks English Runtime (Version: 010.000.0101)
iTunes (Version: 10.6.1.7)
Java Auto Updater (Version: 2.0.6.1)
Java™ 6 Update 24 (64-bit) (Version: 6.0.240)
Java™ 6 Update 29 (Version: 6.0.290)
Junk Mail filter update (Version: 15.4.3502.0922)
LogMeIn (Version: 4.1.2138)
Mah Jong Medley (Version: 2.2.0.95)
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
Mesh Runtime (Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft IntelliPoint 8.1 (Version: 8.15.406.0)
Microsoft IntelliType Pro 8.2 (Version: 8.20.469.0)
Microsoft Office 2007 Primary Interop Assemblies (Version: 12.0.4518.1014)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Professional Plus 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Outlook Personal Folders Backup (Version: 1.10.0.0)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual Studio 2005 Tools for Office Runtime
Microsoft Visual Studio 2005 Tools for Office Runtime (Version: 8.0.60940.0)
Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86_x64 (Version: 1.00.0000)
Mozilla Firefox 12.0 (x86 en-US) (Version: 12.0)
Mozilla Maintenance Service (Version: 12.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP2 Parser and SDK (Version: 4.20.9818.0)
MySQL Connector C 6.0.2 (Version: 6.0.2)
MySQL Connector C++ 1.1.0 (Version: 1.1.0)
MySQL Connector J (Version: 5.1.15.0)
MySQL Connector Net 6.3.7 (Version: 6.3.7)
MySQL Connector/ODBC 5.1 (Version: 5.1.8)
MySQL Documents (Version: 5.5.11)
MySQL Examples and Samples 5.5 (Version: 5.5.11)
MySQL Installer (Version: 1.0.17.0)
MySQL Server 5.5 (Version: 5.5.15)
MySQL Workbench 5.2 CE (Version: 5.2.34.2)
Mystery P.I. - Stolen in San Francisco (Version: 2.2.0.95)
Namco All-Stars PAC-MAN (Version: 2.2.0.95)
PDF Settings CS5 (Version: 10.0)
Penguins! (Version: 2.2.0.95)
Picasa 3 (Version: 3.8)
Plants vs. Zombies - Game of the Year (Version: 2.2.0.95)
PlayReady PC Runtime x86 (Version: 1.3.0)
Poker Superstars III (Version: 2.2.0.95)
Polar Bowler (Version: 2.2.0.95)
Polar Golfer (Version: 2.2.0.95)
PX Profile Update (Version: 1.00.1.)
PxMergeModule (Version: 1.00.0000)
QBWebConnector (Version: 2.0.0.139)
QuickBooks (Version: 22.0.4008.2206)
QuickBooks Pro 2012 (Version: 22.0.4008.2206)
Quicken 2009 (Version: 18.1.3.11)
Quicken 2012 (Version: 21.1.7.18)
QuickTime (Version: 7.71.80.42)
Realtek Ethernet Controller Driver (Version: 7.41.216.2011)
Realtek PCIE Card Reader (Version: 6.1.7601.83)
Recovery Manager (Version: 2.0.0)
Renesas Electronics USB 3.0 Host Controller Driver (Version: 2.1.19.0)
RingCentral Call Controller
Safari (Version: 5.34.55.3)
ScanSnap (Version: 5.1.30.19)
ScanSnap Manager (Version: V5.1L30)
ScanSnap Organizer (Version: 4.1.30.16)
ScanSnap Organizer (Version: 4.1.41.1)
ScanSnap Organizer (Version: V4.1L41)
Scriptocean Slideshow 1 (Version: 1)
Skype Click to Call (Version: 5.9.9216)
Skype™ 5.8 (Version: 5.8.158)
Slingo Supreme (Version: 2.2.0.95)
SmartSound Quicktracks for Premiere Elements 8.0 (Version: 3.11.3090)
Sothink DHTML Menu 9 (Version: 9.7)
Sothink Tree Menu (Version: 3.1)
Spybot - Search & Destroy (Version: 1.6.2)
StuffIt Expander 2011 (Version: 15.0.1.17)
SupportSoft Assisted Service (Version: 15)
Synaptics TouchPad Driver (Version: 15.3.11.0)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2598290) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Update Installer for WildTangent Games App
Validity WBF DDK (Version: 4.3.205.0)
Virtual Villagers 4 - The Tree of Life (Version: 2.2.0.95)
Wheel of Fortune 2 (Version: 2.2.0.95)
WildTangent Games App (HP Games) (Version: 4.0.5.2)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3508.1109)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3508.1109)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
WinMerge 2.12.4 (Version: 2.12.4)
WiseConvert 2.1 Toolbar (Version: 6.8.8.8)
Xvid 1.2.2 final uninstall (Version: 1.2)
Zuma Deluxe (Version: 2.2.0.95)

========================= Memory info: ===================================

Percentage of memory in use: 44%
Total physical RAM: 8139.86 MB
Available physical RAM: 4502.31 MB
Total Pagefile: 16277.91 MB
Available Pagefile: 11788.48 MB
Total Virtual: 4095.88 MB
Available Virtual: 3956.96 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:684.01 GB) (Free:482.72 GB) NTFS
2 Drive d: (RECOVERY) (Fixed) (Total:14.33 GB) (Free:1.59 GB) NTFS
4 Drive f: (FreeAgent GoFlex Drive) (Fixed) (Total:465.76 GB) (Free:361.28 GB) NTFS
5 Drive g: (HP_TOOLS) (Fixed) (Total:0.1 GB) (Free:0.04 GB) FAT32

========================= Users: ========================================

User accounts for \\CATALINA

Administrator Guest linda


**** End of log ****

Edited by lwolfe63, 18 May 2012 - 11:09 AM.


#8 lwolfe63

lwolfe63
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:03:15 PM

Posted 18 May 2012 - 11:10 AM

Sorry I figured it out.

#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:15 PM

Posted 18 May 2012 - 11:13 AM

Click on startmenu and type

cmd

right click on it and select run as administrator

Now copy following commands and press ENTER one by one

cd C:\windows\system32\drivers\etc
takeown /a /f hosts
cacls hosts /p everyone:f


Press Y

attrib -s -h -r hosts

After running these commands

Download

Hosts fixit

Run it,restart the PC

Now launch mini toolbox and checkmark hosts contents alone and post the new log

good luck

Edited by narenxp, 18 May 2012 - 11:14 AM.


#10 lwolfe63

lwolfe63
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:03:15 PM

Posted 18 May 2012 - 11:25 AM

Ok I did it. Here is the mini toolbox log:

MiniToolBox by Farbar Version: 18-01-2012
Ran by linda (administrator) on 18-05-2012 at 09:24:37
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
========================= Hosts content: =================================

# ::1 localhost


**** End of log ****

#11 lwolfe63

lwolfe63
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:03:15 PM

Posted 18 May 2012 - 11:27 AM

I think you fixed it! I don't see anymore pop ups!

#12 lwolfe63

lwolfe63
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:03:15 PM

Posted 18 May 2012 - 11:30 AM

Thank you, thank you, thank you!!!! I am so happy! Problem seems to be gone!

Thank you, thank you, thank you!!!! I am so happy! Problem seems to be gone!

#13 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:15 PM

Posted 18 May 2012 - 11:35 AM

Grt :thumbsup:

We still have a few scans left before we can make sure PC is clean

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#14 lwolfe63

lwolfe63
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:03:15 PM

Posted 18 May 2012 - 11:36 AM

Oh ok sorry I got excited! I will do it now.

#15 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:15 PM

Posted 18 May 2012 - 01:28 PM

:thumbup2:




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users