Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

KBD EXE


  • Please log in to reply
6 replies to this topic

#1 nysportsfan45

nysportsfan45

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:08:08 AM

Posted 13 August 2012 - 10:13 AM

I recently got a computer from my mother...Each time I start it up I get a message saying KBD Exe could not run...Computer seems to run ok but just wanted to know if this is something I should be concerned about. Also I would like to check the computer for possible viruses. What is the best way to go about doing that? I did download and run Spybot and I also think it has Mircosoft security essentials

Thanks in advance for any help.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:08 AM

Posted 13 August 2012 - 10:29 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 nysportsfan45

nysportsfan45
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:08:08 AM

Posted 13 August 2012 - 08:19 PM

Thanks for the replay narenxp, I was in the middle of the last scan when I blew a fuse in the house and had to do it over again. It's scanning now but will take some time. I figured I could post the first two scans for you to take a look at and will add the other later tonight or tomorrow morning when it's done....Thanks again.....Let me know if you need anything else.

11:32:59.0394 8208 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
11:32:59.0626 8208 ============================================================
11:32:59.0626 8208 Current date / time: 2012/08/13 11:32:59.0626
11:32:59.0626 8208 SystemInfo:
11:32:59.0626 8208
11:32:59.0627 8208 OS Version: 6.0.6002 ServicePack: 2.0
11:32:59.0627 8208 Product type: Workstation
11:32:59.0627 8208 ComputerName: DOROTHY-PC
11:32:59.0627 8208 UserName: Dorothy
11:32:59.0627 8208 Windows directory: C:\Windows
11:32:59.0627 8208 System windows directory: C:\Windows
11:32:59.0627 8208 Running under WOW64
11:32:59.0627 8208 Processor architecture: Intel x64
11:32:59.0627 8208 Number of processors: 2
11:32:59.0627 8208 Page size: 0x1000
11:32:59.0627 8208 Boot type: Normal boot
11:32:59.0627 8208 ============================================================
11:33:00.0891 8208 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
11:33:00.0913 8208 ============================================================
11:33:00.0913 8208 \Device\Harddisk0\DR0:
11:33:00.0914 8208 MBR partitions:
11:33:00.0914 8208 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x389D35B5
11:33:00.0914 8208 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x389D35F4, BlocksNum 0x19B164D
11:33:00.0914 8208 ============================================================
11:33:00.0937 8208 C: <-> \Device\Harddisk0\DR0\Partition0
11:33:00.0987 8208 D: <-> \Device\Harddisk0\DR0\Partition1
11:33:00.0987 8208 ============================================================
11:33:00.0987 8208 Initialize success
11:33:00.0987 8208 ============================================================
11:33:15.0976 10048 ============================================================
11:33:15.0976 10048 Scan started
11:33:15.0976 10048 Mode: Manual; TDLFS;
11:33:15.0976 10048 ============================================================
11:33:17.0967 10048 ACPI (1965aaffab07e3fb03c77f81beba3547) C:\Windows\system32\drivers\acpi.sys
11:33:17.0982 10048 ACPI - ok
11:33:18.0097 10048 AdobeFlashPlayerUpdateSvc (f19c98ad81d2c0e1bbfd8153d2c80ee8) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
11:33:18.0107 10048 AdobeFlashPlayerUpdateSvc - ok
11:33:18.0172 10048 adp94xx (f14215e37cf124104575073f782111d2) C:\Windows\system32\drivers\adp94xx.sys
11:33:18.0192 10048 adp94xx - ok
11:33:18.0247 10048 adpahci (7d05a75e3066861a6610f7ee04ff085c) C:\Windows\system32\drivers\adpahci.sys
11:33:18.0267 10048 adpahci - ok
11:33:18.0277 10048 adpu160m (820a201fe08a0c345b3bedbc30e1a77c) C:\Windows\system32\drivers\adpu160m.sys
11:33:18.0281 10048 adpu160m - ok
11:33:18.0301 10048 adpu320 (9b4ab6854559dc168fbb4c24fc52e794) C:\Windows\system32\drivers\adpu320.sys
11:33:18.0305 10048 adpu320 - ok
11:33:18.0392 10048 AE1000 (852d8034ffd1a1f076318039872fc500) C:\Windows\system32\DRIVERS\ae1000va.sys
11:33:18.0420 10048 AE1000 - ok
11:33:18.0451 10048 AeLookupSvc (0f421175574bfe0bf2f4d8e910a253bb) C:\Windows\System32\aelupsvc.dll
11:33:18.0453 10048 AeLookupSvc - ok
11:33:18.0528 10048 AFD (c4f6ce6087760ad70960c9eb130e7943) C:\Windows\system32\drivers\afd.sys
11:33:18.0544 10048 AFD - ok
11:33:18.0622 10048 AgereModemAudio (734088cb57aea704ca716c1c6bc5e0e6) C:\Program Files\LSI SoftModem\agr64svc.exe
11:33:18.0624 10048 AgereModemAudio - ok
11:33:18.0703 10048 AgereSoftModem (70e15cda25e151dfc60636ef73f5a7be) C:\Windows\system32\DRIVERS\agrsm64.sys
11:33:18.0732 10048 AgereSoftModem - ok
11:33:18.0758 10048 agp440 (f6f6793b7f17b550ecfdbd3b229173f7) C:\Windows\system32\drivers\agp440.sys
11:33:18.0761 10048 agp440 - ok
11:33:18.0786 10048 aic78xx (222cb641b4b8a1d1126f8033f9fd6a00) C:\Windows\system32\drivers\djsvs.sys
11:33:18.0789 10048 aic78xx - ok
11:33:18.0812 10048 ALG (5922f4f59b7868f3d74bbbbeb7b825a3) C:\Windows\System32\alg.exe
11:33:18.0817 10048 ALG - ok
11:33:18.0823 10048 aliide (157d0898d4b73f075ce9fa26b482df98) C:\Windows\system32\drivers\aliide.sys
11:33:18.0825 10048 aliide - ok
11:33:18.0936 10048 AlotService (39e9b1f0340404a363d9fb52d4764af8) C:\Users\Dorothy\AppData\Roaming\alotservice\alotservice.exe
11:33:18.0947 10048 AlotService - ok
11:33:18.0957 10048 amdide (970fa5059e61e30d25307b99903e991e) C:\Windows\system32\drivers\amdide.sys
11:33:18.0959 10048 amdide - ok
11:33:18.0970 10048 AmdK8 (cdc3632a3a5ea4dbb83e46076a3165a1) C:\Windows\system32\drivers\amdk8.sys
11:33:18.0973 10048 AmdK8 - ok
11:33:19.0022 10048 Appinfo (9c37b3fd5615477cb9a0cd116cf43f5c) C:\Windows\System32\appinfo.dll
11:33:19.0025 10048 Appinfo - ok
11:33:19.0089 10048 Apple Mobile Device (f401929ee0cc92bfe7f15161ca535383) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
11:33:19.0091 10048 Apple Mobile Device - ok
11:33:19.0113 10048 arc (ba8417d4765f3988ff921f30f630e303) C:\Windows\system32\drivers\arc.sys
11:33:19.0134 10048 arc - ok
11:33:19.0162 10048 arcsas (9d41c435619733b34cc16a511e644b11) C:\Windows\system32\drivers\arcsas.sys
11:33:19.0164 10048 arcsas - ok
11:33:19.0258 10048 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
11:33:19.0269 10048 aspnet_state - ok
11:33:19.0285 10048 AsyncMac (22d13ff3dafec2a80634752b1eaa2de6) C:\Windows\system32\DRIVERS\asyncmac.sys
11:33:19.0288 10048 AsyncMac - ok
11:33:19.0309 10048 atapi (1898fae8e07d97f2f6c2d5326c633fac) C:\Windows\system32\drivers\atapi.sys
11:33:19.0312 10048 atapi - ok
11:33:19.0364 10048 AudioEndpointBuilder (79318c744693ec983d20e9337a2f8196) C:\Windows\System32\Audiosrv.dll
11:33:19.0378 10048 AudioEndpointBuilder - ok
11:33:19.0391 10048 AudioSrv (79318c744693ec983d20e9337a2f8196) C:\Windows\System32\Audiosrv.dll
11:33:19.0396 10048 AudioSrv - ok
11:33:19.0462 10048 BFE (ffb96c2589ffa60473ead78b39fbde29) C:\Windows\System32\bfe.dll
11:33:19.0481 10048 BFE - ok
11:33:19.0553 10048 BITS (6d316f4859634071cc25c4fd4589ad2c) C:\Windows\System32\qmgr.dll
11:33:19.0585 10048 BITS - ok
11:33:19.0674 10048 blbdrive (79feeb40056683f8f61398d81dda65d2) C:\Windows\system32\drivers\blbdrive.sys
11:33:19.0677 10048 blbdrive - ok
11:33:19.0728 10048 bowser (2348447a80920b2493a9b582a23e81e1) C:\Windows\system32\DRIVERS\bowser.sys
11:33:19.0732 10048 bowser - ok
11:33:19.0748 10048 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\brfiltlo.sys
11:33:19.0751 10048 BrFiltLo - ok
11:33:19.0761 10048 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\brfiltup.sys
11:33:19.0764 10048 BrFiltUp - ok
11:33:19.0807 10048 Browser (a1b39de453433b115b4ea69ee0343816) C:\Windows\System32\browser.dll
11:33:19.0819 10048 Browser - ok
11:33:19.0848 10048 Brserid (f0f0ba4d815be446aa6a4583ca3bca9b) C:\Windows\system32\drivers\brserid.sys
11:33:19.0854 10048 Brserid - ok
11:33:19.0864 10048 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\system32\drivers\brserwdm.sys
11:33:19.0866 10048 BrSerWdm - ok
11:33:19.0878 10048 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\system32\drivers\brusbmdm.sys
11:33:19.0880 10048 BrUsbMdm - ok
11:33:19.0892 10048 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\system32\drivers\brusbser.sys
11:33:19.0894 10048 BrUsbSer - ok
11:33:19.0908 10048 BTHMODEM (e0777b34e05f8a82a21856efc900c29f) C:\Windows\system32\drivers\bthmodem.sys
11:33:19.0911 10048 BTHMODEM - ok
11:33:19.0939 10048 ccHP - ok
11:33:19.0956 10048 cdfs (b4d787db8d30793a4d4df9feed18f136) C:\Windows\system32\DRIVERS\cdfs.sys
11:33:19.0958 10048 cdfs - ok
11:33:19.0994 10048 cdrom (c025aa69be3d0d25c7a2e746ef6f94fc) C:\Windows\system32\DRIVERS\cdrom.sys
11:33:19.0997 10048 cdrom - ok
11:33:20.0027 10048 CertPropSvc (5a268127633c7ee2a7fb87f39d748d56) C:\Windows\System32\certprop.dll
11:33:20.0030 10048 CertPropSvc - ok
11:33:20.0056 10048 circlass (02ea568d498bbdd4ba55bf3fce34d456) C:\Windows\system32\drivers\circlass.sys
11:33:20.0058 10048 circlass - ok
11:33:20.0103 10048 CLFS (3dca9a18b204939cfb24bea53e31eb48) C:\Windows\system32\CLFS.sys
11:33:20.0121 10048 CLFS - ok
11:33:20.0185 10048 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:33:20.0189 10048 clr_optimization_v2.0.50727_32 - ok
11:33:20.0219 10048 clr_optimization_v2.0.50727_64 (ce07a466201096f021cd09d631b21540) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
11:33:20.0222 10048 clr_optimization_v2.0.50727_64 - ok
11:33:20.0281 10048 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:33:20.0294 10048 clr_optimization_v4.0.30319_32 - ok
11:33:20.0327 10048 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
11:33:20.0332 10048 clr_optimization_v4.0.30319_64 - ok
11:33:20.0342 10048 cmdide (e5d5499a1c50a54b5161296b6afe6192) C:\Windows\system32\drivers\cmdide.sys
11:33:20.0344 10048 cmdide - ok
11:33:20.0351 10048 Compbatt (7fb8ad01db0eabe60c8a861531a8f431) C:\Windows\system32\drivers\compbatt.sys
11:33:20.0353 10048 Compbatt - ok
11:33:20.0359 10048 COMSysApp - ok
11:33:20.0385 10048 crcdisk (a8585b6412253803ce8efcbd6d6dc15c) C:\Windows\system32\drivers\crcdisk.sys
11:33:20.0388 10048 crcdisk - ok
11:33:20.0465 10048 CryptSvc (62740b9d2a137e8ced41a9e4239a7a31) C:\Windows\system32\cryptsvc.dll
11:33:20.0469 10048 CryptSvc - ok
11:33:20.0536 10048 DcomLaunch (cf8b9a3a5e7dc57724a89d0c3e8cf9ef) C:\Windows\system32\rpcss.dll
11:33:20.0558 10048 DcomLaunch - ok
11:33:20.0613 10048 DfsC (8b722ba35205c71e7951cdc4cdbade19) C:\Windows\system32\Drivers\dfsc.sys
11:33:20.0616 10048 DfsC - ok
11:33:20.0785 10048 DFSR (c647f468f7de343df8c143655c5557d4) C:\Windows\system32\DFSR.exe
11:33:20.0842 10048 DFSR - ok
11:33:20.0987 10048 Dhcp (3ed0321127ce70acdaabbf77e157c2a7) C:\Windows\System32\dhcpcsvc.dll
11:33:21.0003 10048 Dhcp - ok
11:33:21.0028 10048 disk (b0107e40ecdb5fa692ebf832f295d905) C:\Windows\system32\drivers\disk.sys
11:33:21.0031 10048 disk - ok
11:33:21.0098 10048 Dnscache (06230f1b721494a6df8d47fd395bb1b0) C:\Windows\System32\dnsrslvr.dll
11:33:21.0102 10048 Dnscache - ok
11:33:21.0134 10048 dot3svc (1a7156dd1e850e9914e5e991e3225b94) C:\Windows\System32\dot3svc.dll
11:33:21.0147 10048 dot3svc - ok
11:33:21.0200 10048 Dot4 (74c02b1717740c3b8039539e23e4b53f) C:\Windows\system32\DRIVERS\Dot4.sys
11:33:21.0204 10048 Dot4 - ok
11:33:21.0236 10048 Dot4Print (08321d1860235bf42cf2854234337aea) C:\Windows\system32\DRIVERS\Dot4Prt.sys
11:33:21.0239 10048 Dot4Print - ok
11:33:21.0257 10048 dot4usb (4adccf0124f2b6911d3786a5d0e779e5) C:\Windows\system32\DRIVERS\dot4usb.sys
11:33:21.0259 10048 dot4usb - ok
11:33:21.0305 10048 DPS (1583b39790db3eaec7edb0cb0140c708) C:\Windows\system32\dps.dll
11:33:21.0310 10048 DPS - ok
11:33:21.0351 10048 drmkaud (f1a78a98cfc2ee02144c6bec945447e6) C:\Windows\system32\drivers\drmkaud.sys
11:33:21.0353 10048 drmkaud - ok
11:33:21.0422 10048 DXGKrnl (b8e554e502d5123bc111f99d6a2181b4) C:\Windows\System32\drivers\dxgkrnl.sys
11:33:21.0448 10048 DXGKrnl - ok
11:33:21.0503 10048 E1G60 (264cee7b031a9d6c827f3d0cb031f2fe) C:\Windows\system32\DRIVERS\E1G6032E.sys
11:33:21.0508 10048 E1G60 - ok
11:33:21.0528 10048 EapHost (c2303883fd9be49dc36a6400643002ea) C:\Windows\System32\eapsvc.dll
11:33:21.0531 10048 EapHost - ok
11:33:21.0552 10048 Ecache (5f94962be5a62db6e447ff6470c4f48a) C:\Windows\system32\drivers\ecache.sys
11:33:21.0556 10048 Ecache - ok
11:33:21.0614 10048 ehRecvr (14ce384d2e27b64c256bda4dc39c312d) C:\Windows\ehome\ehRecvr.exe
11:33:21.0656 10048 ehRecvr - ok
11:33:21.0680 10048 ehSched (b93159c1313d66fdfbbe876f5189cd52) C:\Windows\ehome\ehsched.exe
11:33:21.0694 10048 ehSched - ok
11:33:21.0730 10048 ehstart (f5ee2527d74449868e3c3227a59bcd28) C:\Windows\ehome\ehstart.dll
11:33:21.0732 10048 ehstart - ok
11:33:21.0773 10048 elxstor (c4636d6e10469404ab5308d9fd45ed07) C:\Windows\system32\drivers\elxstor.sys
11:33:21.0787 10048 elxstor - ok
11:33:21.0908 10048 EMDMgmt (a9b18b63a4fd6baab83326706d857fab) C:\Windows\system32\emdmgmt.dll
11:33:21.0927 10048 EMDMgmt - ok
11:33:21.0935 10048 ErrDev (bc3a58e938bb277e46bf4b3003b01abd) C:\Windows\system32\drivers\errdev.sys
11:33:21.0942 10048 ErrDev - ok
11:33:22.0000 10048 EventSystem (e12f22b73f153dece721cd45ec05b4af) C:\Windows\system32\es.dll
11:33:22.0015 10048 EventSystem - ok
11:33:22.0038 10048 exfat (486844f47b6636044a42454614ed4523) C:\Windows\system32\drivers\exfat.sys
11:33:22.0056 10048 exfat - ok
11:33:22.0095 10048 fastfat (1a4bee34277784619ddaf0422c0c6e23) C:\Windows\system32\drivers\fastfat.sys
11:33:22.0106 10048 fastfat - ok
11:33:22.0116 10048 fdc (81b79b6df71fa1d2c6d688d830616e39) C:\Windows\system32\DRIVERS\fdc.sys
11:33:22.0119 10048 fdc - ok
11:33:22.0151 10048 fdPHost (bb9267acacd8b7533dd936c34a0cba5e) C:\Windows\system32\fdPHost.dll
11:33:22.0154 10048 fdPHost - ok
11:33:22.0177 10048 FDResPub (300c80931eabbe1db7591c516efe8d0f) C:\Windows\system32\fdrespub.dll
11:33:22.0180 10048 FDResPub - ok
11:33:22.0201 10048 FileInfo (457b7d1d533e4bd62a99aed9c7bb4c59) C:\Windows\system32\drivers\fileinfo.sys
11:33:22.0204 10048 FileInfo - ok
11:33:22.0215 10048 Filetrace (d421327fd6efccaf884a54c58e1b0d7f) C:\Windows\system32\drivers\filetrace.sys
11:33:22.0217 10048 Filetrace - ok
11:33:22.0229 10048 flpydisk (230923ea2b80f79b0f88d90f87b87ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
11:33:22.0233 10048 flpydisk - ok
11:33:22.0267 10048 FltMgr (e3041bc26d6930d61f42aedb79c91720) C:\Windows\system32\drivers\fltmgr.sys
11:33:22.0273 10048 FltMgr - ok
11:33:22.0391 10048 FontCache (be1c5bd1ca7ed015bc6fa1ae67e592c8) C:\Windows\system32\FntCache.dll
11:33:22.0419 10048 FontCache - ok
11:33:22.0465 10048 FontCache3.0.0.0 (bc5b0be5af3510b0fd8c140ee42c6d3e) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:33:22.0467 10048 FontCache3.0.0.0 - ok
11:33:22.0513 10048 Fs_Rec (5779b86cd8b32519fbecb136394d946a) C:\Windows\system32\drivers\Fs_Rec.sys
11:33:22.0516 10048 Fs_Rec - ok
11:33:22.0543 10048 gagp30kx (c8e416668d3dc2be3d4fe4c79224997f) C:\Windows\system32\drivers\gagp30kx.sys
11:33:22.0546 10048 gagp30kx - ok
11:33:22.0572 10048 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
11:33:22.0621 10048 GEARAspiWDM - ok
11:33:22.0670 10048 gpsvc (a0e1b575ba8f504968cd40c0faeb2384) C:\Windows\System32\gpsvc.dll
11:33:22.0693 10048 gpsvc - ok
11:33:22.0817 10048 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:33:22.0823 10048 gupdate - ok
11:33:22.0829 10048 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:33:22.0831 10048 gupdatem - ok
11:33:22.0907 10048 HDAudBus (f942c5820205f2fb453243edfec82a3d) C:\Windows\system32\DRIVERS\HDAudBus.sys
11:33:22.0936 10048 HDAudBus - ok
11:33:22.0961 10048 HidBth (b4881c84a180e75b8c25dc1d726c375f) C:\Windows\system32\drivers\hidbth.sys
11:33:22.0964 10048 HidBth - ok
11:33:22.0977 10048 HidIr (4e77a77e2c986e8f88f996bb3e1ad829) C:\Windows\system32\drivers\hidir.sys
11:33:22.0979 10048 HidIr - ok
11:33:23.0005 10048 hidserv (59361d38a297755d46a540e450202b2a) C:\Windows\system32\hidserv.dll
11:33:23.0009 10048 hidserv - ok
11:33:23.0034 10048 HidUsb (443bdd2d30bb4f00795c797e2cf99edf) C:\Windows\system32\DRIVERS\hidusb.sys
11:33:23.0037 10048 HidUsb - ok
11:33:23.0073 10048 hkmsvc (b12f367ea39c0795fd57e31242ce1a5a) C:\Windows\system32\kmsvc.dll
11:33:23.0079 10048 hkmsvc - ok
11:33:23.0158 10048 HP Health Check Service (aa9ef0b395097f24d289f64445b2fd2e) c:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
11:33:23.0161 10048 HP Health Check Service - ok
11:33:23.0192 10048 HpCISSs (d7109a1e6bd2dfdbcba72a6bc626a13b) C:\Windows\system32\drivers\hpcisss.sys
11:33:23.0205 10048 HpCISSs - ok
11:33:23.0311 10048 hpqcxs08 (ed377b3c83fdea8d906109a085d219ba) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
11:33:23.0326 10048 hpqcxs08 - ok
11:33:23.0357 10048 hpqddsvc (ee4c7a4cf2316701ffde90f404520265) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
11:33:23.0361 10048 hpqddsvc - ok
11:33:23.0405 10048 HTTP (098f1e4e5c9cb5b0063a959063631610) C:\Windows\system32\drivers\HTTP.sys
11:33:23.0423 10048 HTTP - ok
11:33:23.0431 10048 i2omp (da94c854cea5fac549d4e1f6e88349e8) C:\Windows\system32\drivers\i2omp.sys
11:33:23.0432 10048 i2omp - ok
11:33:23.0459 10048 i8042prt (cbb597659a2713ce0c9cc20c88c7591f) C:\Windows\system32\DRIVERS\i8042prt.sys
11:33:23.0462 10048 i8042prt - ok
11:33:23.0515 10048 IAANTMON (1117af8c53aa278a4c5b7ef1b00e08f4) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
11:33:23.0528 10048 IAANTMON - ok
11:33:23.0575 10048 iaStor (5979854e6fda990107e3170327022117) C:\Windows\system32\drivers\iastor.sys
11:33:23.0577 10048 iaStor - ok
11:33:23.0624 10048 iaStorV (3e3bf3627d886736d0b4e90054f929f6) C:\Windows\system32\drivers\iastorv.sys
11:33:23.0641 10048 iaStorV - ok
11:33:23.0737 10048 idsvc (749f5f8cedca70f2a512945325fc489d) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
11:33:23.0764 10048 idsvc - ok
11:33:24.0344 10048 igfx (0bf3c74edf8056617de75054a4825767) C:\Windows\system32\DRIVERS\igdkmd64.sys
11:33:24.0532 10048 igfx - ok
11:33:24.0693 10048 iirsp (8c3951ad2fe886ef76c7b5027c3125d3) C:\Windows\system32\drivers\iirsp.sys
11:33:24.0751 10048 iirsp - ok
11:33:24.0838 10048 IKEEXT (0c9ea6e654e7b0471741e343a6c671af) C:\Windows\System32\ikeext.dll
11:33:24.0906 10048 IKEEXT - ok
11:33:25.0009 10048 IntcAzAudAddService (dc64d46ef8ace3bd1cec3a4a61608d4e) C:\Windows\system32\drivers\RTKVHD64.sys
11:33:25.0042 10048 IntcAzAudAddService - ok
11:33:25.0104 10048 intelide (df797a12176f11b2d301c5b234bb200e) C:\Windows\system32\drivers\intelide.sys
11:33:25.0106 10048 intelide - ok
11:33:25.0120 10048 intelppm (bfd84af32fa1bad6231c4585cb469630) C:\Windows\system32\DRIVERS\intelppm.sys
11:33:25.0123 10048 intelppm - ok
11:33:25.0145 10048 IPBusEnum (5624bc1bc5eeb49c0ab76a8114f05ea3) C:\Windows\system32\ipbusenum.dll
11:33:25.0150 10048 IPBusEnum - ok
11:33:25.0178 10048 IpFilterDriver (d8aabc341311e4780d6fce8c73c0ad81) C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:33:25.0181 10048 IpFilterDriver - ok
11:33:25.0217 10048 iphlpsvc (bf0dbfa9792c5c14fa00f61c75116c1b) C:\Windows\System32\iphlpsvc.dll
11:33:25.0229 10048 iphlpsvc - ok
11:33:25.0234 10048 IpInIp - ok
11:33:25.0257 10048 IPMIDRV (9c2ee2e6e5a7203bfae15c299475ec67) C:\Windows\system32\drivers\ipmidrv.sys
11:33:25.0260 10048 IPMIDRV - ok
11:33:25.0278 10048 IPNAT (b7e6212f581ea5f6ab0c3a6ceeeb89be) C:\Windows\system32\DRIVERS\ipnat.sys
11:33:25.0281 10048 IPNAT - ok
11:33:25.0366 10048 iPod Service (a9ab99ee7d39725eafec82732d2b3271) C:\Program Files\iPod\bin\iPodService.exe
11:33:25.0389 10048 iPod Service - ok
11:33:25.0400 10048 IRENUM (8c42ca155343a2f11d29feca67faa88d) C:\Windows\system32\drivers\irenum.sys
11:33:25.0402 10048 IRENUM - ok
11:33:25.0428 10048 isapnp (0672bfcedc6fc468a2b0500d81437f4f) C:\Windows\system32\drivers\isapnp.sys
11:33:25.0430 10048 isapnp - ok
11:33:25.0513 10048 iScsiPrt (e4fdf99599f27ec25d2cf6d754243520) C:\Windows\system32\DRIVERS\msiscsi.sys
11:33:25.0521 10048 iScsiPrt - ok
11:33:25.0552 10048 iteatapi (63c766cdc609ff8206cb447a65abba4a) C:\Windows\system32\drivers\iteatapi.sys
11:33:25.0568 10048 iteatapi - ok
11:33:25.0586 10048 iteraid (1281fe73b17664631d12f643cbea3f59) C:\Windows\system32\drivers\iteraid.sys
11:33:25.0589 10048 iteraid - ok
11:33:25.0634 10048 kbdclass (423696f3ba6472dd17699209b933bc26) C:\Windows\system32\DRIVERS\kbdclass.sys
11:33:25.0636 10048 kbdclass - ok
11:33:25.0669 10048 kbdhid (dbdf75d51464fbc47d0104ec3d572c05) C:\Windows\system32\DRIVERS\kbdhid.sys
11:33:25.0672 10048 kbdhid - ok
11:33:25.0715 10048 KeyIso (260bf9c43ee12c6898a9f5aab0fb0e5d) C:\Windows\system32\lsass.exe
11:33:25.0718 10048 KeyIso - ok
11:33:25.0840 10048 KSecDD (88956ad9fa510848ad176777a6c6c1f5) C:\Windows\system32\Drivers\ksecdd.sys
11:33:25.0871 10048 KSecDD - ok
11:33:25.0916 10048 ksthunk (1d419cf43db29396ecd7113d129d94eb) C:\Windows\system32\drivers\ksthunk.sys
11:33:25.0918 10048 ksthunk - ok
11:33:25.0965 10048 KtmRm (1faf6926f3416d3da05c5b265491bdae) C:\Windows\system32\msdtckrm.dll
11:33:25.0980 10048 KtmRm - ok
11:33:26.0013 10048 LanmanServer (50c7a3cb427e9bb5ed0708a669956ab5) C:\Windows\system32\srvsvc.dll
11:33:26.0025 10048 LanmanServer - ok
11:33:26.0097 10048 LanmanWorkstation (caf86fc1388be1e470f1a7b43e348adb) C:\Windows\System32\wkssvc.dll
11:33:26.0116 10048 LanmanWorkstation - ok
11:33:26.0207 10048 LightScribeService (d571c606e4391449293a706588cc4bdd) c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
11:33:26.0216 10048 LightScribeService - ok
11:33:26.0235 10048 lltdio (96ece2659b6654c10a0c310ae3a6d02c) C:\Windows\system32\DRIVERS\lltdio.sys
11:33:26.0238 10048 lltdio - ok
11:33:26.0285 10048 lltdsvc (961ccbd0b1ccb5675d64976fae37d092) C:\Windows\System32\lltdsvc.dll
11:33:26.0307 10048 lltdsvc - ok
11:33:26.0327 10048 lmhosts (a47f8080cacc23c91fe823ad19aa5612) C:\Windows\System32\lmhsvc.dll
11:33:26.0331 10048 lmhosts - ok
11:33:26.0378 10048 LSI_FC (acbe1af32d3123e330a07bfbc5ec4a9b) C:\Windows\system32\drivers\lsi_fc.sys
11:33:26.0382 10048 LSI_FC - ok
11:33:26.0401 10048 LSI_SAS (799ffb2fc4729fa46d2157c0065b3525) C:\Windows\system32\drivers\lsi_sas.sys
11:33:26.0407 10048 LSI_SAS - ok
11:33:26.0426 10048 LSI_SCSI (f445ff1daad8a226366bfaf42551226b) C:\Windows\system32\drivers\lsi_scsi.sys
11:33:26.0429 10048 LSI_SCSI - ok
11:33:26.0453 10048 luafv (52f87b9cc8932c2a7375c3b2a9be5e3e) C:\Windows\system32\drivers\luafv.sys
11:33:26.0468 10048 luafv - ok
11:33:26.0485 10048 Mcx2Svc (76a58df02bd4ea29f189b82d0bef17f8) C:\Windows\system32\Mcx2Svc.dll
11:33:26.0493 10048 Mcx2Svc - ok
11:33:26.0516 10048 megasas (5c5cd6aaced32fb26c3fb34b3dcf972f) C:\Windows\system32\drivers\megasas.sys
11:33:26.0519 10048 megasas - ok
11:33:26.0572 10048 MegaSR (859bc2436b076c77c159ed694acfe8f8) C:\Windows\system32\drivers\megasr.sys
11:33:26.0614 10048 MegaSR - ok
11:33:26.0705 10048 Microsoft SharePoint Workspace Audit Service - ok
11:33:26.0733 10048 MMCSS (3cbe4995e80e13ccfbc42e5dcf3ac81a) C:\Windows\system32\mmcss.dll
11:33:26.0735 10048 MMCSS - ok
11:33:26.0752 10048 Modem (59848d5cc74606f0ee7557983bb73c2e) C:\Windows\system32\drivers\modem.sys
11:33:26.0760 10048 Modem - ok
11:33:26.0794 10048 monitor (c247cc2a57e0a0c8c6dccf7807b3e9e5) C:\Windows\system32\DRIVERS\monitor.sys
11:33:26.0796 10048 monitor - ok
11:33:26.0808 10048 mouclass (9367304e5e412b120cf5f4ea14e4e4f1) C:\Windows\system32\DRIVERS\mouclass.sys
11:33:26.0814 10048 mouclass - ok
11:33:26.0893 10048 mouhid (c2c2bd5c5ce5aaf786ddd74b75d2ac69) C:\Windows\system32\DRIVERS\mouhid.sys
11:33:26.0894 10048 mouhid - ok
11:33:26.0905 10048 MountMgr (11bc9b1e8801b01f7f6adb9ead30019b) C:\Windows\system32\drivers\mountmgr.sys
11:33:26.0908 10048 MountMgr - ok
11:33:26.0981 10048 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
11:33:26.0985 10048 MozillaMaintenance - ok
11:33:27.0049 10048 MpFilter (94c66ededcdb6a126880472f9a704d8e) C:\Windows\system32\DRIVERS\MpFilter.sys
11:33:27.0054 10048 MpFilter - ok
11:33:27.0082 10048 mpio (f8276eb8698142884498a528dfea8478) C:\Windows\system32\drivers\mpio.sys
11:33:27.0086 10048 mpio - ok
11:33:27.0109 10048 mpsdrv (c92b9abdb65a5991e00c28f13491dba2) C:\Windows\system32\drivers\mpsdrv.sys
11:33:27.0113 10048 mpsdrv - ok
11:33:27.0161 10048 MpsSvc (897e3baf68ba406a61682ae39c83900c) C:\Windows\system32\mpssvc.dll
11:33:27.0181 10048 MpsSvc - ok
11:33:27.0193 10048 Mraid35x (3c200630a89ef2c0864d515b7a75802e) C:\Windows\system32\drivers\mraid35x.sys
11:33:27.0194 10048 Mraid35x - ok
11:33:27.0213 10048 MRxDAV (7c1de4aa96dc0c071611f9e7de02a68d) C:\Windows\system32\drivers\mrxdav.sys
11:33:27.0216 10048 MRxDAV - ok
11:33:27.0251 10048 mrxsmb (1485811b320ff8c7edad1caebb1c6c2b) C:\Windows\system32\DRIVERS\mrxsmb.sys
11:33:27.0257 10048 mrxsmb - ok
11:33:27.0292 10048 mrxsmb10 (3b929a60c833fc615fd97fba82bc7632) C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:33:27.0309 10048 mrxsmb10 - ok
11:33:27.0351 10048 mrxsmb20 (c64ab3e1f53b4f5b5bb6d796b2d7bec3) C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:33:27.0355 10048 mrxsmb20 - ok
11:33:27.0374 10048 msahci (1ac860612b85d8e85ee257d372e39f4d) C:\Windows\system32\drivers\msahci.sys
11:33:27.0376 10048 msahci - ok
11:33:27.0394 10048 msdsm (264bbb4aaf312a485f0e44b65a6b7202) C:\Windows\system32\drivers\msdsm.sys
11:33:27.0403 10048 msdsm - ok
11:33:27.0437 10048 MSDTC (7ec02ce772f068ed0beafa3da341a9bc) C:\Windows\System32\msdtc.exe
11:33:27.0442 10048 MSDTC - ok
11:33:27.0474 10048 Msfs (704f59bfc4512d2bb0146aec31b10a7c) C:\Windows\system32\drivers\Msfs.sys
11:33:27.0477 10048 Msfs - ok
11:33:27.0512 10048 msisadrv (00ebc952961664780d43dca157e79b27) C:\Windows\system32\drivers\msisadrv.sys
11:33:27.0515 10048 msisadrv - ok
11:33:27.0545 10048 MSiSCSI (366b0c1f4478b519c181e37d43dcda32) C:\Windows\system32\iscsiexe.dll
11:33:27.0550 10048 MSiSCSI - ok
11:33:27.0555 10048 msiserver - ok
11:33:27.0564 10048 MSKSSRV (0ea73e498f53b96d83dbfca074ad4cf8) C:\Windows\system32\drivers\MSKSSRV.sys
11:33:27.0567 10048 MSKSSRV - ok
11:33:27.0700 10048 MsMpSvc (59faaf2c83c8169ea20f9e335e418907) c:\Program Files\Microsoft Security Client\MsMpEng.exe
11:33:27.0703 10048 MsMpSvc - ok
11:33:27.0732 10048 MSPCLOCK (52e59b7e992a58e740aa63f57edbae8b) C:\Windows\system32\drivers\MSPCLOCK.sys
11:33:27.0733 10048 MSPCLOCK - ok
11:33:27.0750 10048 MSPQM (49084a75bae043ae02d5b44d02991bb2) C:\Windows\system32\drivers\MSPQM.sys
11:33:27.0761 10048 MSPQM - ok
11:33:27.0822 10048 MsRPC (dc6ccf440cdede4293db41c37a5060a5) C:\Windows\system32\drivers\MsRPC.sys
11:33:27.0830 10048 MsRPC - ok
11:33:27.0862 10048 mssmbios (855796e59df77ea93af46f20155bf55b) C:\Windows\system32\DRIVERS\mssmbios.sys
11:33:27.0864 10048 mssmbios - ok
11:33:27.0884 10048 MSTEE (86d632d75d05d5b7c7c043fa3564ae86) C:\Windows\system32\drivers\MSTEE.sys
11:33:27.0886 10048 MSTEE - ok
11:33:27.0908 10048 Mup (0cc49f78d8aca0877d885f149084e543) C:\Windows\system32\Drivers\mup.sys
11:33:27.0911 10048 Mup - ok
11:33:27.0965 10048 napagent (a5b10c845e7538c60c0f5d87a57cb3f5) C:\Windows\system32\qagentRT.dll
11:33:27.0982 10048 napagent - ok
11:33:28.0041 10048 NativeWifiP (2007b826c4acd94ae32232b41f0842b9) C:\Windows\system32\DRIVERS\nwifi.sys
11:33:28.0046 10048 NativeWifiP - ok
11:33:28.0103 10048 NDIS (65950e07329fcee8e6516b17c8d0abb6) C:\Windows\system32\drivers\ndis.sys
11:33:28.0121 10048 NDIS - ok
11:33:28.0138 10048 NdisTapi (64df698a425478e321981431ac171334) C:\Windows\system32\DRIVERS\ndistapi.sys
11:33:28.0141 10048 NdisTapi - ok
11:33:28.0151 10048 Ndisuio (8baa43196d7b5bb972c9a6b2bbf61a19) C:\Windows\system32\DRIVERS\ndisuio.sys
11:33:28.0153 10048 Ndisuio - ok
11:33:28.0179 10048 NdisWan (f8158771905260982ce724076419ef19) C:\Windows\system32\DRIVERS\ndiswan.sys
11:33:28.0196 10048 NdisWan - ok
11:33:28.0212 10048 NDProxy (9cb77ed7cb72850253e973a2d6afdf49) C:\Windows\system32\drivers\NDProxy.sys
11:33:28.0216 10048 NDProxy - ok
11:33:28.0239 10048 Net Driver HPZ12 (458a00528bf213a31f51896ec37b91f4) C:\Windows\system32\HPZinw12.dll
11:33:28.0242 10048 Net Driver HPZ12 - ok
11:33:28.0260 10048 NetBIOS (a499294f5029a7862adc115bda7371ce) C:\Windows\system32\DRIVERS\netbios.sys
11:33:28.0267 10048 NetBIOS - ok
11:33:28.0293 10048 netbt (fc2c792ebddc8e28df939d6a92c83d61) C:\Windows\system32\DRIVERS\netbt.sys
11:33:28.0305 10048 netbt - ok
11:33:28.0345 10048 Netlogon (260bf9c43ee12c6898a9f5aab0fb0e5d) C:\Windows\system32\lsass.exe
11:33:28.0346 10048 Netlogon - ok
11:33:28.0379 10048 Netman (9b63b29defc0f3115a559d2597bf5d75) C:\Windows\System32\netman.dll
11:33:28.0395 10048 Netman - ok
11:33:28.0463 10048 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:33:28.0467 10048 NetMsmqActivator - ok
11:33:28.0472 10048 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:33:28.0474 10048 NetPipeActivator - ok
11:33:28.0505 10048 netprofm (7846d0136cc2b264926a73047ba7688a) C:\Windows\System32\netprofm.dll
11:33:28.0521 10048 netprofm - ok
11:33:28.0528 10048 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:33:28.0531 10048 NetTcpActivator - ok
11:33:28.0542 10048 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:33:28.0543 10048 NetTcpPortSharing - ok
11:33:28.0580 10048 nfrd960 (4ac08bd6af2df42e0c3196d826c8aea7) C:\Windows\system32\drivers\nfrd960.sys
11:33:28.0584 10048 nfrd960 - ok
11:33:28.0676 10048 NisDrv (91b4e0273d2f6c24ef845f2b41311289) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
11:33:28.0679 10048 NisDrv - ok
11:33:28.0787 10048 NisSrv (10a43829a9e606af3eef25a1c1665923) c:\Program Files\Microsoft Security Client\NisSrv.exe
11:33:28.0803 10048 NisSrv - ok
11:33:28.0829 10048 NlaSvc (f145bf4c4668e7e312069f81ef847cfc) C:\Windows\System32\nlasvc.dll
11:33:28.0874 10048 NlaSvc - ok
11:33:28.0898 10048 Npfs (b298874f8e0ea93f06ec40aa8d146478) C:\Windows\system32\drivers\Npfs.sys
11:33:28.0900 10048 Npfs - ok
11:33:28.0915 10048 nsi (acb62baa1c319b17752553df3026eeeb) C:\Windows\system32\nsisvc.dll
11:33:28.0919 10048 nsi - ok
11:33:28.0935 10048 nsiproxy (1523af19ee8b030ba682f7a53537eaeb) C:\Windows\system32\drivers\nsiproxy.sys
11:33:28.0937 10048 nsiproxy - ok
11:33:29.0031 10048 Ntfs (bac869dfb98e499ba4d9bb1fb43270e1) C:\Windows\system32\drivers\Ntfs.sys
11:33:29.0065 10048 Ntfs - ok
11:33:29.0139 10048 Null (dd5d684975352b85b52e3fd5347c20cb) C:\Windows\system32\drivers\Null.sys
11:33:29.0142 10048 Null - ok
11:33:29.0171 10048 nvraid (2c040b7ada5b06f6facadac8514aa034) C:\Windows\system32\drivers\nvraid.sys
11:33:29.0175 10048 nvraid - ok
11:33:29.0195 10048 nvstor (f7ea0fe82842d05eda3efdd376dbfdba) C:\Windows\system32\drivers\nvstor.sys
11:33:29.0209 10048 nvstor - ok
11:33:29.0232 10048 nv_agp (19067ca93075ef4823e3938a686f532f) C:\Windows\system32\drivers\nv_agp.sys
11:33:29.0235 10048 nv_agp - ok
11:33:29.0240 10048 NwlnkFlt - ok
11:33:29.0248 10048 NwlnkFwd - ok
11:33:29.0312 10048 ohci1394 (b5b1ce65ac15bbd11c0619e3ef7cfc28) C:\Windows\system32\DRIVERS\ohci1394.sys
11:33:29.0316 10048 ohci1394 - ok
11:33:29.0374 10048 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:33:29.0379 10048 ose - ok
11:33:29.0655 10048 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
11:33:29.0768 10048 osppsvc - ok
11:33:29.0937 10048 p2pimsvc (9ae31d2e1d15c10d91318e0ec149ceac) C:\Windows\system32\p2psvc.dll
11:33:29.0963 10048 p2pimsvc - ok
11:33:29.0981 10048 p2psvc (9ae31d2e1d15c10d91318e0ec149ceac) C:\Windows\system32\p2psvc.dll
11:33:29.0992 10048 p2psvc - ok
11:33:30.0049 10048 Parport (aecd57f94c887f58919f307c35498ea0) C:\Windows\system32\drivers\parport.sys
11:33:30.0053 10048 Parport - ok
11:33:30.0092 10048 partmgr (b43751085e2abe389da466bc62a4b987) C:\Windows\system32\drivers\partmgr.sys
11:33:30.0094 10048 partmgr - ok
11:33:30.0117 10048 PcaSvc (9ab157b374192ff276c1628fbdba2b0e) C:\Windows\System32\pcasvc.dll
11:33:30.0121 10048 PcaSvc - ok
11:33:30.0217 10048 PCD5SRVC{8AAF211B-043E02A9-05040000} (b906e5ed01f291bcfb9ffb6af453f53e) C:\PROGRA~1\PC-DOC~1\PCD5SRVC_x64.pkms
11:33:30.0364 10048 PCD5SRVC{8AAF211B-043E02A9-05040000} - ok
11:33:30.0401 10048 pci (47ab1e0fc9d0e12bb53ba246e3a0906d) C:\Windows\system32\drivers\pci.sys
11:33:30.0405 10048 pci - ok
11:33:30.0426 10048 pciide (8d618c829034479985a9ed56106cc732) C:\Windows\system32\drivers\pciide.sys
11:33:30.0428 10048 pciide - ok
11:33:30.0444 10048 pcmcia (037661f3d7c507c9993b7010ceee6288) C:\Windows\system32\drivers\pcmcia.sys
11:33:30.0450 10048 pcmcia - ok
11:33:30.0502 10048 PEAUTH (58865916f53592a61549b04941bfd80d) C:\Windows\system32\drivers\peauth.sys
11:33:30.0525 10048 PEAUTH - ok
11:33:30.0587 10048 PerfHost (0ed8727ea0172860f47258456c06caea) C:\Windows\SysWow64\perfhost.exe
11:33:30.0589 10048 PerfHost - ok
11:33:30.0693 10048 pla (e9e68c1a0f25cf4a7ac966eea74ee89e) C:\Windows\system32\pla.dll
11:33:30.0724 10048 pla - ok
11:33:30.0774 10048 PlugPlay (fe6b0f59215c9fd9f9d26539c58c8b82) C:\Windows\system32\umpnpmgr.dll
11:33:30.0794 10048 PlugPlay - ok
11:33:30.0828 10048 Pml Driver HPZ12 (bb3bf7b26daadcbab3ba90c4bcf9e73c) C:\Windows\system32\HPZipm12.dll
11:33:30.0831 10048 Pml Driver HPZ12 - ok
11:33:31.0109 10048 PNRPAutoReg (9ae31d2e1d15c10d91318e0ec149ceac) C:\Windows\system32\p2psvc.dll
11:33:31.0120 10048 PNRPAutoReg - ok
11:33:31.0135 10048 PNRPsvc (9ae31d2e1d15c10d91318e0ec149ceac) C:\Windows\system32\p2psvc.dll
11:33:31.0146 10048 PNRPsvc - ok
11:33:31.0269 10048 PolicyAgent (89a5560671c2d8b4a4b51f3e1aa069d8) C:\Windows\System32\ipsecsvc.dll
11:33:31.0313 10048 PolicyAgent - ok
11:33:31.0414 10048 PptpMiniport (23386e9952025f5f21c368971e2e7301) C:\Windows\system32\DRIVERS\raspptp.sys
11:33:31.0418 10048 PptpMiniport - ok
11:33:31.0456 10048 Processor (5080e59ecee0bc923f14018803aa7a01) C:\Windows\system32\drivers\processr.sys
11:33:31.0460 10048 Processor - ok
11:33:31.0494 10048 ProfSvc (e058ce4fc2449d8bfa14739c83b7ff2a) C:\Windows\system32\profsvc.dll
11:33:31.0511 10048 ProfSvc - ok
11:33:31.0551 10048 ProtectedStorage (260bf9c43ee12c6898a9f5aab0fb0e5d) C:\Windows\system32\lsass.exe
11:33:31.0553 10048 ProtectedStorage - ok
11:33:31.0632 10048 Ps2 (1d0a3f565397d08707f3d75b88586645) C:\Windows\system32\DRIVERS\PS2.sys
11:33:31.0634 10048 Ps2 - ok
11:33:31.0669 10048 PSched (c5ab7f0809392d0da027f4a2a81bfa31) C:\Windows\system32\DRIVERS\pacer.sys
11:33:31.0682 10048 PSched - ok
11:33:31.0752 10048 ql2300 (0b83f4e681062f3839be2ec1d98fd94a) C:\Windows\system32\drivers\ql2300.sys
11:33:31.0781 10048 ql2300 - ok
11:33:31.0801 10048 ql40xx (e1c80f8d4d1e39ef9595809c1369bf2a) C:\Windows\system32\drivers\ql40xx.sys
11:33:31.0813 10048 ql40xx - ok
11:33:31.0874 10048 QWAVE (90574842c3da781e279061a3eff91f07) C:\Windows\system32\qwave.dll
11:33:31.0933 10048 QWAVE - ok
11:33:31.0948 10048 QWAVEdrv (e8d76edab77ec9c634c27b8eac33adc5) C:\Windows\system32\drivers\qwavedrv.sys
11:33:31.0950 10048 QWAVEdrv - ok
11:33:31.0962 10048 RasAcd (1013b3b663a56d3ddd784f581c1bd005) C:\Windows\system32\DRIVERS\rasacd.sys
11:33:31.0964 10048 RasAcd - ok
11:33:32.0002 10048 RasAuto (b2ae18f847d07f0044404ddf7cb04497) C:\Windows\System32\rasauto.dll
11:33:32.0007 10048 RasAuto - ok
11:33:32.0024 10048 Rasl2tp (ac7bc4d42a7e558718dfdec599bbfc2c) C:\Windows\system32\DRIVERS\rasl2tp.sys
11:33:32.0029 10048 Rasl2tp - ok
11:33:32.0066 10048 RasMan (3ad83e4046c43be510de681588acb8af) C:\Windows\System32\rasmans.dll
11:33:32.0082 10048 RasMan - ok
11:33:32.0111 10048 RasPppoe (4517fbf8b42524afe4ede1de102aae3e) C:\Windows\system32\DRIVERS\raspppoe.sys
11:33:32.0114 10048 RasPppoe - ok
11:33:32.0136 10048 RasSstp (c6a593b51f34c33e5474539544072527) C:\Windows\system32\DRIVERS\rassstp.sys
11:33:32.0138 10048 RasSstp - ok
11:33:32.0180 10048 rdbss (322db5c6b55e8d8ee8d6f358b2aaabb1) C:\Windows\system32\DRIVERS\rdbss.sys
11:33:32.0196 10048 rdbss - ok
11:33:32.0214 10048 RDPCDD (603900cc05f6be65ccbf373800af3716) C:\Windows\system32\DRIVERS\RDPCDD.sys
11:33:32.0222 10048 RDPCDD - ok
11:33:32.0252 10048 rdpdr (c045d1fb111c28df0d1be8d4bda22c06) C:\Windows\system32\drivers\rdpdr.sys
11:33:32.0268 10048 rdpdr - ok
11:33:32.0276 10048 RDPENCDD (cab9421daf3d97b33d0d055858e2c3ab) C:\Windows\system32\drivers\rdpencdd.sys
11:33:32.0278 10048 RDPENCDD - ok
11:33:32.0346 10048 RDPWD (ae4bd9e1c33d351d8e607fc81f15160c) C:\Windows\system32\drivers\RDPWD.sys
11:33:32.0352 10048 RDPWD - ok
11:33:32.0379 10048 RemoteAccess (c612b9557da73f70d41f8a6fbc8e5344) C:\Windows\System32\mprdim.dll
11:33:32.0382 10048 RemoteAccess - ok
11:33:32.0400 10048 RemoteRegistry (44b9d8ec2f3ef3a0efb00857af70d861) C:\Windows\system32\regsvc.dll
11:33:32.0412 10048 RemoteRegistry - ok
11:33:32.0428 10048 RpcLocator (f46c457840d4b7a4daafee739ce04102) C:\Windows\system32\locator.exe
11:33:32.0430 10048 RpcLocator - ok
11:33:32.0472 10048 RpcSs (cf8b9a3a5e7dc57724a89d0c3e8cf9ef) C:\Windows\system32\rpcss.dll
11:33:32.0479 10048 RpcSs - ok
11:33:32.0497 10048 rspndr (22a9cb08b1a6707c1550c6bf099aae73) C:\Windows\system32\DRIVERS\rspndr.sys
11:33:32.0500 10048 rspndr - ok
11:33:32.0545 10048 RTL8169 (8b91737da75add21cb1554b38089196a) C:\Windows\system32\DRIVERS\Rtlh64.sys
11:33:32.0558 10048 RTL8169 - ok
11:33:32.0604 10048 SamSs (260bf9c43ee12c6898a9f5aab0fb0e5d) C:\Windows\system32\lsass.exe
11:33:32.0605 10048 SamSs - ok
11:33:32.0619 10048 sbp2port (cd9c693589c60ad59bbbcfb0e524e01b) C:\Windows\system32\drivers\sbp2port.sys
11:33:32.0627 10048 sbp2port - ok
11:33:32.0748 10048 SBSDWSCService (794d4b48dfb6e999537c7c3947863463) C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
11:33:32.0777 10048 SBSDWSCService - ok
11:33:32.0808 10048 SCardSvr (fd1cdcf108d5ef3366f00d18b70fb89b) C:\Windows\System32\SCardSvr.dll
11:33:32.0852 10048 SCardSvr - ok
11:33:32.0930 10048 Schedule (0f838c811ad295d2a4489b9993096c63) C:\Windows\system32\schedsvc.dll
11:33:32.0953 10048 Schedule - ok
11:33:32.0987 10048 SCPolicySvc (5a268127633c7ee2a7fb87f39d748d56) C:\Windows\System32\certprop.dll
11:33:32.0988 10048 SCPolicySvc - ok
11:33:33.0020 10048 SDRSVC (4ff71b076a7760fe75ea5ae2d0ee0018) C:\Windows\System32\SDRSVC.dll
11:33:33.0026 10048 SDRSVC - ok
11:33:33.0074 10048 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
11:33:33.0077 10048 secdrv - ok
11:33:33.0092 10048 seclogon (5acdcbc67fcf894a1815b9f96d704490) C:\Windows\system32\seclogon.dll
11:33:33.0096 10048 seclogon - ok
11:33:33.0112 10048 SENS (90973a64b96cd647ff81c79443618eed) C:\Windows\System32\sens.dll
11:33:33.0116 10048 SENS - ok
11:33:33.0129 10048 Serenum (f71bfe7ac6c52273b7c82cbf1bb2a222) C:\Windows\system32\drivers\serenum.sys
11:33:33.0132 10048 Serenum - ok
11:33:33.0150 10048 Serial (e62fac91ee288db29a9696a9d279929c) C:\Windows\system32\drivers\serial.sys
11:33:33.0169 10048 Serial - ok
11:33:33.0175 10048 sermouse (a842f04833684bceea7336211be478df) C:\Windows\system32\drivers\sermouse.sys
11:33:33.0189 10048 sermouse - ok
11:33:33.0221 10048 SessionEnv (a8e4a4407a09f35dccc3771af590b0c4) C:\Windows\system32\sessenv.dll
11:33:33.0225 10048 SessionEnv - ok
11:33:33.0231 10048 sffdisk (14d4b4465193a87c127933978e8c4106) C:\Windows\system32\drivers\sffdisk.sys
11:33:33.0233 10048 sffdisk - ok
11:33:33.0243 10048 sffp_mmc (7073aee3f82f3d598e3825962aa98ab2) C:\Windows\system32\drivers\sffp_mmc.sys
11:33:33.0244 10048 sffp_mmc - ok
11:33:33.0251 10048 sffp_sd (35e59ebe4a01a0532ed67975161c7b82) C:\Windows\system32\drivers\sffp_sd.sys
11:33:33.0252 10048 sffp_sd - ok
11:33:33.0260 10048 sfloppy (6b7838c94135768bd455cbdc23e39e5f) C:\Windows\system32\drivers\sfloppy.sys
11:33:33.0263 10048 sfloppy - ok
11:33:33.0303 10048 SharedAccess (4c5aee179da7e1ee9a9ccb9da289af34) C:\Windows\System32\ipnathlp.dll
11:33:33.0322 10048 SharedAccess - ok
11:33:33.0382 10048 ShellHWDetection (56793271ecdedd350c5add305603e963) C:\Windows\System32\shsvcs.dll
11:33:33.0398 10048 ShellHWDetection - ok
11:33:33.0407 10048 SiSRaid2 (7a5de502aeb719d4594c6471060a78b3) C:\Windows\system32\drivers\sisraid2.sys
11:33:33.0409 10048 SiSRaid2 - ok
11:33:33.0421 10048 SiSRaid4 (3a2f769fab9582bc720e11ea1dfb184d) C:\Windows\system32\drivers\sisraid4.sys
11:33:33.0423 10048 SiSRaid4 - ok
11:33:33.0547 10048 slsvc (a9a27a8e257b45a604fdad4f26fe7241) C:\Windows\system32\SLsvc.exe
11:33:33.0599 10048 slsvc - ok
11:33:33.0711 10048 SLUINotify (fd74b4b7c2088e390a30c85a896fc3af) C:\Windows\system32\SLUINotify.dll
11:33:33.0715 10048 SLUINotify - ok
11:33:33.0750 10048 Smb (290b6f6a0ec4fcdfc90f5cb6d7020473) C:\Windows\system32\DRIVERS\smb.sys
11:33:33.0753 10048 Smb - ok
11:33:33.0784 10048 SNMPTRAP (f8f47f38909823b1af28d60b96340cff) C:\Windows\System32\snmptrap.exe
11:33:33.0787 10048 SNMPTRAP - ok
11:33:33.0816 10048 spldr (386c3c63f00a7040c7ec5e384217e89d) C:\Windows\system32\drivers\spldr.sys
11:33:33.0820 10048 spldr - ok
11:33:33.0890 10048 Spooler (f66ff751e7efc816d266977939ef5dc3) C:\Windows\System32\spoolsv.exe
11:33:33.0907 10048 Spooler - ok
11:33:33.0964 10048 srv (880a57fccb571ebd063d4dd50e93e46d) C:\Windows\system32\DRIVERS\srv.sys
11:33:33.0979 10048 srv - ok
11:33:34.0025 10048 srv2 (a1ad14a6d7a37891fffeca35ebbb0730) C:\Windows\system32\DRIVERS\srv2.sys
11:33:34.0030 10048 srv2 - ok
11:33:34.0052 10048 srvnet (4bed62f4fa4d8300973f1151f4c4d8a7) C:\Windows\system32\DRIVERS\srvnet.sys
11:33:34.0066 10048 srvnet - ok
11:33:34.0088 10048 SSDPSRV (192c74646ec5725aef3f80d19ff75f6a) C:\Windows\System32\ssdpsrv.dll
11:33:34.0101 10048 SSDPSRV - ok
11:33:34.0143 10048 SstpSvc (2ee3fa0308e6185ba64a9a7f2e74332b) C:\Windows\system32\sstpsvc.dll
11:33:34.0149 10048 SstpSvc - ok
11:33:34.0201 10048 stisvc (15825c1fbfb8779992cb65087f316af5) C:\Windows\System32\wiaservc.dll
11:33:34.0219 10048 stisvc - ok
11:33:34.0247 10048 swenum (8a851ca908b8b974f89c50d2e18d4f0c) C:\Windows\system32\DRIVERS\swenum.sys
11:33:34.0249 10048 swenum - ok
11:33:34.0292 10048 swprv (6de37f4de19d4efd9c48c43addbc949a) C:\Windows\System32\swprv.dll
11:33:34.0313 10048 swprv - ok
11:33:34.0346 10048 Symc8xx (2f26a2c6fc96b29beff5d8ed74e6625b) C:\Windows\system32\drivers\symc8xx.sys
11:33:34.0352 10048 Symc8xx - ok
11:33:34.0359 10048 SymEFA - ok
11:33:34.0375 10048 Sym_hi (a909667976d3bccd1df813fed517d837) C:\Windows\system32\drivers\sym_hi.sys
11:33:34.0377 10048 Sym_hi - ok
11:33:34.0393 10048 Sym_u3 (36887b56ec2d98b9c362f6ae4de5b7b0) C:\Windows\system32\drivers\sym_u3.sys
11:33:34.0395 10048 Sym_u3 - ok
11:33:34.0465 10048 SysMain (92d7a8b0f87b036f17d25885937897a6) C:\Windows\system32\sysmain.dll
11:33:34.0492 10048 SysMain - ok
11:33:34.0516 10048 TabletInputService (005ce42567f9113a3bccb3b20073b029) C:\Windows\System32\TabSvc.dll
11:33:34.0521 10048 TabletInputService - ok
11:33:34.0565 10048 TapiSrv (cc2562b4d55e0b6a4758c65407f63b79) C:\Windows\System32\tapisrv.dll
11:33:34.0624 10048 TapiSrv - ok
11:33:34.0650 10048 TBS (cdbe8d7c1e201b911cdc346d06617fb5) C:\Windows\System32\tbssvc.dll
11:33:34.0655 10048 TBS - ok
11:33:34.0761 10048 Tcpip (ac8d5728e6ad6a7c4819d9a67008337a) C:\Windows\system32\drivers\tcpip.sys
11:33:34.0796 10048 Tcpip - ok
11:33:34.0824 10048 Tcpip6 (ac8d5728e6ad6a7c4819d9a67008337a) C:\Windows\system32\DRIVERS\tcpip.sys
11:33:34.0840 10048 Tcpip6 - ok
11:33:34.0892 10048 tcpipreg (fd8fde859e38e40a20085ebb0c22b416) C:\Windows\system32\drivers\tcpipreg.sys
11:33:34.0895 10048 tcpipreg - ok
11:33:34.0912 10048 TDPIPE (1d8bf4aaa5fb7a2761475781dc1195bc) C:\Windows\system32\drivers\tdpipe.sys
11:33:34.0915 10048 TDPIPE - ok
11:33:34.0928 10048 TDTCP (7f7e00cdf609df657f4cda02dd1c9bb1) C:\Windows\system32\drivers\tdtcp.sys
11:33:34.0931 10048 TDTCP - ok
11:33:34.0957 10048 tdx (458919c8c42e398dc4802178d5ffee27) C:\Windows\system32\DRIVERS\tdx.sys
11:33:34.0961 10048 tdx - ok
11:33:34.0986 10048 TermDD (8c19678d22649ec002ef2282eae92f98) C:\Windows\system32\DRIVERS\termdd.sys
11:33:34.0990 10048 TermDD - ok
11:33:35.0036 10048 TermService (5cdd30bc217082dac71a9878d9bfd566) C:\Windows\System32\termsrv.dll
11:33:35.0058 10048 TermService - ok
11:33:35.0123 10048 Themes (56793271ecdedd350c5add305603e963) C:\Windows\system32\shsvcs.dll
11:33:35.0129 10048 Themes - ok
11:33:35.0150 10048 THREADORDER (3cbe4995e80e13ccfbc42e5dcf3ac81a) C:\Windows\system32\mmcss.dll
11:33:35.0153 10048 THREADORDER - ok
11:33:35.0188 10048 TrkWks (f4689f05af472a651a7b1b7b02d200e7) C:\Windows\System32\trkwks.dll
11:33:35.0202 10048 TrkWks - ok
11:33:35.0245 10048 TrustedInstaller (66328b08ef5a9305d8ede36b93930369) C:\Windows\servicing\TrustedInstaller.exe
11:33:35.0247 10048 TrustedInstaller - ok
11:33:35.0275 10048 tssecsrv (9e5409cd17c8bef193aad498f3bc2cb8) C:\Windows\system32\DRIVERS\tssecsrv.sys
11:33:35.0278 10048 tssecsrv - ok
11:33:35.0296 10048 tunmp (89ec74a9e602d16a75a4170511029b3c) C:\Windows\system32\DRIVERS\tunmp.sys
11:33:35.0299 10048 tunmp - ok
11:33:35.0342 10048 tunnel (30a9b3f45ad081bffc3bcaa9c812b609) C:\Windows\system32\DRIVERS\tunnel.sys
11:33:35.0346 10048 tunnel - ok
11:33:35.0362 10048 uagp35 (fec266ef401966311744bd0f359f7f56) C:\Windows\system32\drivers\uagp35.sys
11:33:35.0366 10048 uagp35 - ok
11:33:35.0404 10048 udfs (faf2640a2a76ed03d449e443194c4c34) C:\Windows\system32\DRIVERS\udfs.sys
11:33:35.0419 10048 udfs - ok
11:33:35.0444 10048 UI0Detect (060507c4113391394478f6953a79eedc) C:\Windows\system32\UI0Detect.exe
11:33:35.0450 10048 UI0Detect - ok
11:33:35.0471 10048 uliagpkx (4ec9447ac3ab462647f60e547208ca00) C:\Windows\system32\drivers\uliagpkx.sys
11:33:35.0475 10048 uliagpkx - ok
11:33:35.0505 10048 uliahci (697f0446134cdc8f99e69306184fbbb4) C:\Windows\system32\drivers\uliahci.sys
11:33:35.0522 10048 uliahci - ok
11:33:35.0540 10048 UlSata (31707f09846056651ea2c37858f5ddb0) C:\Windows\system32\drivers\ulsata.sys
11:33:35.0546 10048 UlSata - ok
11:33:35.0574 10048 ulsata2 (85e5e43ed5b48c8376281bab519271b7) C:\Windows\system32\drivers\ulsata2.sys
11:33:35.0580 10048 ulsata2 - ok
11:33:35.0614 10048 umbus (46e9a994c4fed537dd951f60b86ad3f4) C:\Windows\system32\DRIVERS\umbus.sys
11:33:35.0617 10048 umbus - ok
11:33:35.0657 10048 upnphost (7093799ff80e9deca0680d2e3535be60) C:\Windows\System32\upnphost.dll
11:33:35.0677 10048 upnphost - ok
11:33:35.0712 10048 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\Windows\system32\Drivers\usbaapl64.sys
11:33:35.0715 10048 USBAAPL64 - ok
11:33:35.0762 10048 usbccgp (07e3498fc60834219d2356293da0fecc) C:\Windows\system32\DRIVERS\usbccgp.sys
11:33:35.0772 10048 usbccgp - ok
11:33:35.0791 10048 usbcir (9247f7e0b65852c1f6631480984d6ed2) C:\Windows\system32\drivers\usbcir.sys
11:33:35.0796 10048 usbcir - ok
11:33:35.0862 10048 usbehci (827e44de934a736ea31e91d353eb126f) C:\Windows\system32\DRIVERS\usbehci.sys
11:33:35.0867 10048 usbehci - ok
11:33:35.0902 10048 usbhub (bb35cd80a2ececfadc73569b3d70c7d1) C:\Windows\system32\DRIVERS\usbhub.sys
11:33:35.0918 10048 usbhub - ok
11:33:35.0934 10048 usbohci (eba14ef0c07cec233f1529c698d0d154) C:\Windows\system32\drivers\usbohci.sys
11:33:35.0937 10048 usbohci - ok
11:33:35.0962 10048 usbprint (28b693b6d31e7b9332c1bdcefef228c1) C:\Windows\system32\DRIVERS\usbprint.sys
11:33:35.0965 10048 usbprint - ok
11:33:35.0996 10048 usbscan (ea0bf666868964fbe8cb10e50c97b9f1) C:\Windows\system32\DRIVERS\usbscan.sys
11:33:36.0000 10048 usbscan - ok
11:33:36.0026 10048 USBSTOR (b854c1558fca0c269a38663e8b59b581) C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:33:36.0054 10048 USBSTOR - ok
11:33:36.0073 10048 usbuhci (b2872cbf9f47316abd0e0c74a1aba507) C:\Windows\system32\DRIVERS\usbuhci.sys
11:33:36.0076 10048 usbuhci - ok
11:33:36.0102 10048 UxSms (d76e231e4850bb3f88a3d9a78df191e3) C:\Windows\System32\uxsms.dll
11:33:36.0107 10048 UxSms - ok
11:33:36.0160 10048 vds (294945381dfa7ce58cecf0a9896af327) C:\Windows\System32\vds.exe
11:33:36.0184 10048 vds - ok
11:33:36.0213 10048 vga (916b94bcf1e09873fff2d5fb11767bbc) C:\Windows\system32\DRIVERS\vgapnp.sys
11:33:36.0216 10048 vga - ok
11:33:36.0229 10048 VgaSave (b83ab16b51feda65dd81b8c59d114d63) C:\Windows\System32\drivers\vga.sys
11:33:36.0231 10048 VgaSave - ok
11:33:36.0248 10048 viaide (8294b6c3fdb6c33f24e150de647ecdaa) C:\Windows\system32\drivers\viaide.sys
11:33:36.0251 10048 viaide - ok
11:33:36.0272 10048 volmgr (2b7e885ed951519a12c450d24535dfca) C:\Windows\system32\drivers\volmgr.sys
11:33:36.0277 10048 volmgr - ok
11:33:36.0329 10048 volmgrx (cec5ac15277d75d9e5dec2e1c6eaf877) C:\Windows\system32\drivers\volmgrx.sys
11:33:36.0346 10048 volmgrx - ok
11:33:36.0391 10048 volsnap (5280aada24ab36b01a84a6424c475c8d) C:\Windows\system32\drivers\volsnap.sys
11:33:36.0397 10048 volsnap - ok
11:33:36.0424 10048 vsmraid (a68f455ed2673835209318dd61bfbb0e) C:\Windows\system32\drivers\vsmraid.sys
11:33:36.0435 10048 vsmraid - ok
11:33:36.0519 10048 VSS (b75232dad33bfd95bf6f0a3e6bff51e1) C:\Windows\system32\vssvc.exe
11:33:36.0556 10048 VSS - ok
11:33:36.0682 10048 vToolbarUpdater11.2.0 (8ed347bad8d1fb7c40b593bfb01786d2) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe
11:33:36.0710 10048 vToolbarUpdater11.2.0 - ok
11:33:36.0803 10048 W32Time (f14a7de2ea41883e250892e1e5230a9a) C:\Windows\system32\w32time.dll
11:33:36.0859 10048 W32Time - ok
11:33:36.0886 10048 WacomPen (fef8fe5923fead2cee4dfabfce3393a7) C:\Windows\system32\drivers\wacompen.sys
11:33:36.0893 10048 WacomPen - ok
11:33:36.0954 10048 Wanarp (b8e7049622300d20ba6d8be0c47c0cfd) C:\Windows\system32\DRIVERS\wanarp.sys
11:33:36.0958 10048 Wanarp - ok
11:33:36.0967 10048 Wanarpv6 (b8e7049622300d20ba6d8be0c47c0cfd) C:\Windows\system32\DRIVERS\wanarp.sys
11:33:36.0968 10048 Wanarpv6 - ok
11:33:37.0014 10048 wcncsvc (b4e4c37d0aa6100090a53213ee2bf1c1) C:\Windows\System32\wcncsvc.dll
11:33:37.0036 10048 wcncsvc - ok
11:33:37.0061 10048 WcsPlugInService (ea4b369560e986f19d93f45a881484ac) C:\Windows\System32\WcsPlugInService.dll
11:33:37.0068 10048 WcsPlugInService - ok
11:33:37.0089 10048 Wd (0c17a0816f65b89e362e682ad5e7266e) C:\Windows\system32\drivers\wd.sys
11:33:37.0093 10048 Wd - ok
11:33:37.0180 10048 Wdf01000 (d02e7e4567da1e7582fbf6a91144b0df) C:\Windows\system32\drivers\Wdf01000.sys
11:33:37.0203 10048 Wdf01000 - ok
11:33:37.0221 10048 WdiServiceHost (c5efda73ebfca8b02a094898de0a9276) C:\Windows\system32\wdi.dll
11:33:37.0228 10048 WdiServiceHost - ok
11:33:37.0234 10048 WdiSystemHost (c5efda73ebfca8b02a094898de0a9276) C:\Windows\system32\wdi.dll
11:33:37.0238 10048 WdiSystemHost - ok
11:33:37.0271 10048 WebClient (3e6d05381cf35f75ebb055544a8ed9ac) C:\Windows\System32\webclnt.dll
11:33:37.0289 10048 WebClient - ok
11:33:37.0338 10048 Wecsvc (8d40bc587993f876658bf9fb0f7d3462) C:\Windows\system32\wecsvc.dll
11:33:37.0355 10048 Wecsvc - ok
11:33:37.0373 10048 wercplsupport (9c980351d7e96288ea0c23ae232bd065) C:\Windows\System32\wercplsupport.dll
11:33:37.0380 10048 wercplsupport - ok
11:33:37.0400 10048 WerSvc (66b9ecebc46683f47edc06333c075fef) C:\Windows\System32\WerSvc.dll
11:33:37.0414 10048 WerSvc - ok
11:33:37.0441 10048 WinDefend - ok
11:33:37.0465 10048 WinHttpAutoProxySvc - ok
11:33:37.0537 10048 Winmgmt (d2e7296ed1bd26d8db2799770c077a02) C:\Windows\system32\wbem\WMIsvc.dll
11:33:37.0553 10048 Winmgmt - ok
11:33:37.0663 10048 WinRM (6cbb0c68f13b9c2ec1b16f5fa5e7c869) C:\Windows\system32\WsmSvc.dll
11:33:37.0739 10048 WinRM - ok
11:33:37.0891 10048 Wlansvc (ec339c8115e91baed835957e9a677f16) C:\Windows\System32\wlansvc.dll
11:33:37.0916 10048 Wlansvc - ok
11:33:37.0950 10048 WmiAcpi (e18aebaaa5a773fe11aa2c70f65320f5) C:\Windows\system32\drivers\wmiacpi.sys
11:33:37.0952 10048 WmiAcpi - ok
11:33:38.0006 10048 wmiApSrv (21fa389e65a852698b6a1341f36ee02d) C:\Windows\system32\wbem\WmiApSrv.exe
11:33:38.0013 10048 wmiApSrv - ok
11:33:38.0059 10048 WMPNetworkSvc - ok
11:33:38.0108 10048 WPCSvc (cbc156c913f099e6680d1df9307db7a8) C:\Windows\System32\wpcsvc.dll
11:33:38.0124 10048 WPCSvc - ok
11:33:38.0163 10048 WPDBusEnum (490a18b4e4d53dc10879deaa8e8b70d9) C:\Windows\system32\wpdbusenum.dll
11:33:38.0179 10048 WPDBusEnum - ok
11:33:38.0209 10048 WpdUsb (5e2401b3fc1089c90e081291357371a9) C:\Windows\system32\DRIVERS\wpdusb.sys
11:33:38.0212 10048 WpdUsb - ok
11:33:38.0305 10048 WPFFontCache_v0400 (991e2c2cf3bc204c2bb2ee1476149e4e) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe
11:33:38.0328 10048 WPFFontCache_v0400 - ok
11:33:38.0344 10048 ws2ifsl (8a900348370e359b6bff6a550e4649e1) C:\Windows\system32\drivers\ws2ifsl.sys
11:33:38.0347 10048 ws2ifsl - ok
11:33:38.0374 10048 wscsvc (9ea3e6d0ef7a5c2b9181961052a4b01a) C:\Windows\System32\wscsvc.dll
11:33:38.0379 10048 wscsvc - ok
11:33:38.0383 10048 WSearch - ok
11:33:38.0527 10048 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
11:33:38.0573 10048 wuauserv - ok
11:33:38.0697 10048 WUDFRd (501a65252617b495c0f1832f908d54d8) C:\Windows\system32\DRIVERS\WUDFRd.sys
11:33:38.0702 10048 WUDFRd - ok
11:33:38.0721 10048 wudfsvc (6cbd51ff913c851d56ed9dc7f2a27dde) C:\Windows\System32\WUDFSvc.dll
11:33:38.0726 10048 wudfsvc - ok
11:33:38.0804 10048 {55662437-DA8C-40c0-AADA-2C816A897A49} (1cacfef9e5dd866c5b79a135ee729e18) c:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl
11:33:38.0823 10048 {55662437-DA8C-40c0-AADA-2C816A897A49} - ok
11:33:38.0837 10048 MBR (0x1B8) (81cd5ec01db0ce57edd853f82462ef27) \Device\Harddisk0\DR0
11:33:39.0391 10048 \Device\Harddisk0\DR0 - ok
11:33:39.0395 10048 Boot (0x1200) (701dce433592b76a888d8f4670992610) \Device\Harddisk0\DR0\Partition0
11:33:39.0397 10048 \Device\Harddisk0\DR0\Partition0 - ok
11:33:39.0401 10048 Boot (0x1200) (ab3f95a00daa928afb7e2cdf83918cc0) \Device\Harddisk0\DR0\Partition1
11:33:39.0403 10048 \Device\Harddisk0\DR0\Partition1 - ok
11:33:39.0404 10048 ============================================================
11:33:39.0404 10048 Scan finished
11:33:39.0404 10048 ============================================================
11:33:39.0418 9568 Detected object count: 0
11:33:39.0418 9568 Actual detected object count: 0
11:33:57.0902 9820 Deinitialize success






MiniToolBox by Farbar Version: 23-07-2012
Ran by Dorothy (administrator) on 12-08-2012 at 17:39:14
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X64)
Boot Mode: Normal
***************************************************************************

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

========================= FF Proxy Settings: ==============================

========================= Hosts content: =================================

::1 localhost

127.0.0.1 localhost

========================= IP Configuration: ================================

Realtek RTL8168C(P)/8111C(P) Family PCI-E Gigabit Ethernet NIC (NDIS 6.0) = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Dorothy-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : Belkin

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : Belkin
Description . . . . . . . . . . . : Realtek RTL8168C(P)/8111C(P) Family PCI-E Gigabit Ethernet NIC (NDIS 6.0)
Physical Address. . . . . . . . . : 00-24-8C-5C-F5-73
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::4d12:1695:f48f:848f%10(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.2.3(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Sunday, August 12, 2012 5:08:36 PM
Lease Expires . . . . . . . . . . : Thursday, September 19, 2148 12:07:34 AM
Default Gateway . . . . . . . . . : 192.168.2.1
DHCP Server . . . . . . . . . . . : 192.168.2.1
DHCPv6 IAID . . . . . . . . . . . : 251667596
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-11-68-4A-C7-00-24-8C-5C-F5-73
DNS Servers . . . . . . . . . . . : 192.168.2.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Local Area Connection* 6:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : Belkin
Description . . . . . . . . . . . : isatap.Belkin
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:9d38:953c:3c1e:375a:3f57:fdfc(Preferred)
Link-local IPv6 Address . . . . . : fe80::3c1e:375a:3f57:fdfc%12(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server:
Address: 192.168.2.1

Name: google.com
Addresses: 2607:f8b0:4004:802::1006
74.125.228.40
74.125.228.41
74.125.228.46
74.125.228.32
74.125.228.33
74.125.228.34
74.125.228.35
74.125.228.36
74.125.228.37
74.125.228.38
74.125.228.39



Pinging google.com [74.125.228.105] with 32 bytes of data:

Reply from 74.125.228.105: bytes=32 time=16ms TTL=53

Reply from 74.125.228.105: bytes=32 time=17ms TTL=53



Ping statistics for 74.125.228.105:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 16ms, Maximum = 17ms, Average = 16ms

Server:
Address: 192.168.2.1

Name: yahoo.com
Addresses: 209.191.122.70
72.30.38.140
98.139.183.24



Pinging yahoo.com [98.139.183.24] with 32 bytes of data:

Reply from 98.139.183.24: bytes=32 time=60ms TTL=48

Reply from 98.139.183.24: bytes=32 time=62ms TTL=49



Ping statistics for 98.139.183.24:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 60ms, Maximum = 62ms, Average = 61ms

Server:
Address: 192.168.2.1

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:

Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
10 ...00 24 8c 5c f5 73 ...... Realtek RTL8168C(P)/8111C(P) Family PCI-E Gigabit Ethernet NIC (NDIS 6.0)
1 ........................... Software Loopback Interface 1
13 ...00 00 00 00 00 00 00 e0 isatap.Belkin
12 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.2.1 192.168.2.3 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.2.0 255.255.255.0 On-link 192.168.2.3 276
192.168.2.3 255.255.255.255 On-link 192.168.2.3 276
192.168.2.255 255.255.255.255 On-link 192.168.2.3 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.2.3 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.2.3 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
12 18 ::/0 On-link
1 306 ::1/128 On-link
12 18 2001::/32 On-link
12 266 2001:0:9d38:953c:3c1e:375a:3f57:fdfc/128
On-link
10 276 fe80::/64 On-link
12 266 fe80::/64 On-link
12 266 fe80::3c1e:375a:3f57:fdfc/128
On-link
10 276 fe80::4d12:1695:f48f:848f/128
On-link
1 306 ff00::/8 On-link
12 266 ff00::/8 On-link
10 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [19968] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [61440] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [62976] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [78848] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [78848] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [27648] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/12/2012 05:13:53 PM) (Source: Application Error) (User: )
Description: Faulting application kbd.exe, version 1.0.9.1, time stamp 0x487e2efd, faulting module msg.dll, version 1.0.7.3, time stamp 0x488d3b3c, exception code 0xc0000005, fault offset 0x000bdebe,
process id 0x15dc, application start time 0xkbd.exe0.

Error: (08/12/2012 05:12:05 PM) (Source: Application Error) (User: )
Description: Faulting application TVAgent.exe, version 2.1.1.1231, time stamp 0x495b4616, faulting module MFC71.DLL, version 7.10.3077.0, time stamp 0x3e77fdfd, exception code 0xc0000005, fault offset 0x0002a3a3,
process id 0xce8, application start time 0xTVAgent.exe0.

Error: (08/12/2012 05:08:55 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/11/2012 11:38:37 PM) (Source: Application Hang) (User: )
Description: The program Explorer.EXE version 6.0.6002.18005 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel.
Process ID: 72c
Start Time: 01cd743e3173d4d4
Termination Time: 0

Error: (08/06/2012 09:47:50 PM) (Source: Application Error) (User: )
Description: Faulting application TVAgent.exe, version 2.1.1.1231, time stamp 0x495b4616, faulting module MFC71.DLL, version 7.10.3077.0, time stamp 0x3e77fdfd, exception code 0xc0000005, fault offset 0x0002a3a3,
process id 0xc44, application start time 0xTVAgent.exe0.

Error: (08/06/2012 09:47:02 PM) (Source: Application Error) (User: )
Description: Faulting application kbd.exe, version 1.0.9.1, time stamp 0x487e2efd, faulting module msg.dll, version 1.0.7.3, time stamp 0x488d3b3c, exception code 0xc0000005, fault offset 0x000bdebe,
process id 0x9f0, application start time 0xkbd.exe0.

Error: (08/06/2012 09:44:45 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/05/2012 09:42:29 PM) (Source: Application Error) (User: )
Description: Faulting application kbd.exe, version 1.0.9.1, time stamp 0x487e2efd, faulting module msg.dll, version 1.0.7.3, time stamp 0x488d3b3c, exception code 0xc0000005, fault offset 0x000bdebe,
process id 0x1058, application start time 0xkbd.exe0.

Error: (08/05/2012 09:41:19 PM) (Source: Application Error) (User: )
Description: Faulting application TVAgent.exe, version 2.1.1.1231, time stamp 0x495b4616, faulting module MFC71.DLL, version 7.10.3077.0, time stamp 0x3e77fdfd, exception code 0xc0000005, fault offset 0x0002a3a3,
process id 0xc20, application start time 0xTVAgent.exe0.

Error: (08/05/2012 09:39:28 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (08/12/2012 05:10:23 PM) (Source: Service Control Manager) (User: )
Description: ccHP
SymEFA

Error: (08/12/2012 05:10:23 PM) (Source: Service Control Manager) (User: )
Description: HP CUE DeviceDiscovery Service

Error: (08/12/2012 05:08:35 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 5:06:56 PM on 8/12/2012 was unexpected.

Error: (08/11/2012 11:56:00 AM) (Source: Tcpip) (User: )
Description: The system detected an address conflict for IP address 192.168.2.3 with the system
having network hardware address 00-25-AE-83-9D-FA. Network operations on this system may
be disrupted as a result.

Error: (08/09/2012 00:20:18 AM) (Source: Service Control Manager) (User: )
Description: 30000Netman

Error: (08/06/2012 09:47:35 PM) (Source: Service Control Manager) (User: )
Description: ccHP
SymEFA

Error: (08/06/2012 09:47:35 PM) (Source: Service Control Manager) (User: )
Description: HP CUE DeviceDiscovery Service

Error: (08/05/2012 09:41:11 PM) (Source: Service Control Manager) (User: )
Description: ccHP
SymEFA

Error: (08/05/2012 09:41:10 PM) (Source: Service Control Manager) (User: )
Description: HP CUE DeviceDiscovery Service

Error: (08/05/2012 09:39:10 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 9:37:39 PM on 8/5/2012 was unexpected.


Microsoft Office Sessions:
=========================
Error: (08/12/2012 05:13:53 PM) (Source: Application Error)(User: )
Description: kbd.exe1.0.9.1487e2efdmsg.dll1.0.7.3488d3b3cc0000005000bdebe15dc01cd78cf5d46ef9f

Error: (08/12/2012 05:12:05 PM) (Source: Application Error)(User: )
Description: TVAgent.exe2.1.1.1231495b4616MFC71.DLL7.10.3077.03e77fdfdc00000050002a3a3ce801cd78cf094d9f1f

Error: (08/12/2012 05:08:55 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/11/2012 11:38:37 PM) (Source: Application Hang)(User: )
Description: Explorer.EXE6.0.6002.1800572c01cd743e3173d4d40

Error: (08/06/2012 09:47:50 PM) (Source: Application Error)(User: )
Description: TVAgent.exe2.1.1.1231495b4616MFC71.DLL7.10.3077.03e77fdfdc00000050002a3a3c4401cd743e3c7e9d14

Error: (08/06/2012 09:47:02 PM) (Source: Application Error)(User: )
Description: kbd.exe1.0.9.1487e2efdmsg.dll1.0.7.3488d3b3cc0000005000bdebe9f001cd743e88b708c4

Error: (08/06/2012 09:44:45 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/05/2012 09:42:29 PM) (Source: Application Error)(User: )
Description: kbd.exe1.0.9.1487e2efdmsg.dll1.0.7.3488d3b3cc0000005000bdebe105801cd7374bc32c990

Error: (08/05/2012 09:41:19 PM) (Source: Application Error)(User: )
Description: TVAgent.exe2.1.1.1231495b4616MFC71.DLL7.10.3077.03e77fdfdc00000050002a3a3c2001cd7374651ebbf0

Error: (08/05/2012 09:39:28 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


=========================== Installed Programs ============================

64 Bit HP CIO Components Installer (Version: 2.2.4)
Agere Systems PCI-SV92EX Soft Modem
Apple Mobile Device Support (Version: 5.2.0.6)
Garmin Communicator Plugin x64 (Version: 4.0.3)
Hardware Diagnostic Tools (Version: 5.1.5048.14)
HP Customer Participation Program 11.0 (Version: 11.0)
HP Deskjet F4200 All-In-One Driver Software 11.0 Rel .3 (Version: 11.0)
HP Imaging Device Functions 11.0 (Version: 11.0)
HP MediaSmart SmartMenu (Version: 2.1.7)
HP Photosmart Essential 3.0 (Version: 3.0)
HP Smart Web Printing (Version: 4.0)
HP Solution Center 11.0 (Version: 11.0)
Intel® Graphics Media Accelerator Driver
Intel® Matrix Storage Manager
iTunes (Version: 10.6.3.25)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Office Home and Student 60 day trial
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Security Client (Version: 4.0.1526.0)
Microsoft Security Essentials (Version: 4.0.1526.0)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Music Manager

========================= Memory info: ===================================

Percentage of memory in use: 68%
Total physical RAM: 4085.33 MB
Available physical RAM: 1275.73 MB
Total Pagefile: 8387.95 MB
Available Pagefile: 5467.71 MB
Total Virtual: 4095.88 MB
Available Virtual: 3996.35 MB

========================= Partitions: =====================================

1 Drive c: (HP) (Fixed) (Total:452.91 GB) (Free:326.63 GB) NTFS
2 Drive d: (FACTORY_IMAGE) (Fixed) (Total:12.85 GB) (Free:1.81 GB) NTFS

========================= Users: ========================================

User accounts for \\DOROTHY-PC

Administrator Dorothy Guest


**** End of log ****

#4 nysportsfan45

nysportsfan45
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:08:08 AM

Posted 13 August 2012 - 09:57 PM

Last scan said no threats found....let me know what to do now.

Thanks again

#5 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:08 AM

Posted 13 August 2012 - 10:03 PM

ASWMBR log?

#6 nysportsfan45

nysportsfan45
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:08:08 AM

Posted 14 August 2012 - 04:55 AM

Sorry I think this is the one you asked for.......

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-13 11:34:51
-----------------------------
11:34:51.607 OS Version: Windows x64 6.0.6002 Service Pack 2
11:34:51.607 Number of processors: 2 586 0xF0D
11:34:51.610 ComputerName: DOROTHY-PC UserName: Dorothy
11:34:53.459 Initialize success
11:35:51.510 AVAST engine defs: 12081300
11:36:16.091 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
11:36:16.094 Disk 0 Vendor: ST350062 HP26 Size: 476940MB BusType: 8
11:36:16.115 Disk 0 MBR read successfully
11:36:16.118 Disk 0 MBR scan
11:36:16.207 Disk 0 unknown MBR code
11:36:16.212 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 463782 MB offset 63
11:36:16.292 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 13154 MB offset 949827060
11:36:16.458 Disk 0 scanning C:\Windows\system32\drivers
11:36:35.085 Service scanning
11:37:10.296 Modules scanning
11:37:10.297 Disk 0 trace - called modules:
11:37:10.308 ntoskrnl.exe CLASSPNP.SYS disk.sys iastor.sys hal.dll
11:37:10.309 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80063a7260]
11:37:10.311 3 CLASSPNP.SYS[fffffa6000fc6c33] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004904050]
11:37:12.213 AVAST engine scan C:\Windows
11:37:21.177 AVAST engine scan C:\Windows\system32
11:43:42.468 AVAST engine scan C:\Windows\system32\drivers
11:44:05.758 AVAST engine scan C:\Users\Dorothy
11:47:08.190 Disk 0 MBR has been saved successfully to "C:\Users\Dorothy\Desktop\MBR.dat"
11:47:08.202 The log file has been saved successfully to "C:\Users\Dorothy\Desktop\aswMBR.txt"

#7 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:08 AM

Posted 14 August 2012 - 05:59 AM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log

Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the text contents here




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users