Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Register a free account to unlock additional features at BleepingComputer.com

Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Computer Issues- Is it a virus????

Started by turtle0423 , Aug 28 2012 11:42 PM

Next

Please log in to reply

18 replies to this topic

#1 turtle0423

Member

Members
40 posts

Posted 28 August 2012 - 11:42 PM

My laptop has been acting weird the past week....
When the computer shuts down itself, the laptop goes into recovery mode
which usually takes twenty minutes then say they cannot fix the problem....
Also it has been heating up very quickly and starts to not respond as well
when it comes to internet explorer.... I just got a blue screen on my computer
for the first time in like a month and scanned the computer, which found 3 infected files via MBAM.... I start to see that the problems are gradually escalating...
What shall I do?????

Back to top

BC Ads
BleepingComputer.com

#2 Broni

The Coolest BC Computer

BC Advisor
27,294 posts

Gender:Male
Location:Daly City, CA

Posted 29 August 2012 - 08:09 PM

Download Security Check from HERE, and save it to your Desktop.

* Double-click SecurityCheck.exe
* Follow the onscreen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt; please post the contents of that document.

=============================================================================

Please download Farbar Service Scanner (FSS) and run it on the computer with the issue.

Make sure the following options are checked:
- Internet Services
- Windows Firewall
- System Restore
- Security Center/Action Center
- Windows Update
- Windows Defender
Press "Scan".
It will create a log (FSS.txt) in the same directory the tool is run.
Please copy and paste the log to your reply.

====================================================================================

Please download MiniToolBox and run it.

Checkmark following boxes:

Report IE Proxy Settings
Report FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Devices (do NOT change any settings here)
List Users, Partitions and Memory size

Click Go and post the result.

=============================================================================

Download Malwarebytes' Anti-Malware (aka MBAM): http://www.malwarebytes.org/products/malwarebytes_free to your desktop.

* Double-click mbam-setup.exe and follow the prompts to install the program.
* At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
* If an update is found, it will download and install the latest version.
* Once the program has loaded, select Perform quick scan, then click Scan.
* When the scan is complete, click OK, then Show Results to view the results.
* Be sure that everything is checked, and click Remove Selected.
* When completed, a log will open in Notepad.
* Post the log back here.

Be sure to restart the computer.

The log can also be found here:
C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
Or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt

=============================================================================

Download aswMBR to your desktop.
Double click the aswMBR.exe to run it.
If you see this question: Would you like to download latest Avast! virus definitions?" say "Yes".
Click the "Scan" button to start scan.
On completion of the scan click "Save log", save it to your desktop and post in your next reply.

NOTE. aswMBR will create MBR.dat file on your desktop. This is a copy of your MBR. Do NOT delete it.

My Website

My help doesn't cost a penny, but if you'd like to consider a donation, click

Back to top

#3 turtle0423

Member

Members
40 posts

Posted 30 August 2012 - 02:23 AM

Checkup.txt

Results of screen317's Security Check version 0.99.49
Windows 7 Service Pack 1 x64 (UAC is enabled)
Internet Explorer 9
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
Norton Internet Security
WMI entry may not exist for antivirus; attempting automatic update.
`````````Anti-malware/Other Utilities Check:`````````
Malwarebytes Anti-Malware version 1.62.0.1300
Java™ 6 Update 27
Java version out of Date!
Adobe Flash Player 11.3.300.271 Flash Player out of Date!
````````Process Check: objlist.exe by Laurent````````
Norton ccSvcHst.exe
Malwarebytes Anti-Malware mbamgui.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: 1%
````````````````````End of Log``````````````````````

FSS LOG

Farbar Service Scanner Version: 26-07-2012
Ran by Christy Kang (administrator) on 29-08-2012 at 23:51:59
Running from "C:\Users\Christy Kang\Desktop"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.

Windows Firewall:
=============

Firewall Disabled Policy:
==================

System Restore:
============

System Restore Disabled Policy:
========================

Action Center:
============

Windows Update:
============
BITS Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to retrieve start type of BITS. The value does not exist.
The ImagePath of BITS service is OK.
The ServiceDll of BITS service is OK.

Windows Autoupdate Disabled Policy:
============================

Windows Defender:
==============

Other Services:
==============

sharedaccess Service is not running. Checking service configuration:
The start type of sharedaccess service is set to Auto
The ImagePath of sharedaccess service is OK.
The ServiceDll of sharedaccess service is OK.

File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit

**** End of log ****

Back to top

#4 turtle0423

Member

Members
40 posts

Posted 30 August 2012 - 07:56 PM

MiniToolBox by Farbar Version: 23-07-2012
Ran by Christy Kang (administrator) on 30-08-2012 at 14:30:52
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Network
***************************************************************************

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.
========================= Hosts content: =================================
127.0.0.1 1f1.fr 127.0.0.1 2010-fr.com 127.0.0.1 24h00business.com 127.0.0.1 4990usd.com 127.0.0.1 4xp.com 127.0.0.1 adomiciletravail.googlepages.com 127.0.0.1 adwarealert.com 127.0.0.1 affilibot.eu 127.0.0.1 aformula.biz 127.0.0.1 antivirusgratuit.vg 127.0.0.1 argent-domicile.eu 127.0.0.1 argent-travail-domicile.fr 127.0.0.1 argent-vital.com 127.0.0.1 argentastuce.com 127.0.0.1 ascentive.com 127.0.0.1 augmentersesrevenus.pyclie.com 127.0.0.1 auto-webcash.com 127.0.0.1 avigora.com 127.0.0.1 avs4you.com 127.0.0.1 bababiz.com 127.0.0.1 badusoft.com 127.0.0.1 be2.fr 127.0.0.1 bidfun.fr 127.0.0.1 boostersonpc.com 127.0.0.1 carrefourinternet.com 127.0.0.1 cash-avalanches.com 127.0.0.1 cash-methodes.be 127.0.0.1 cash-professor.com 127.0.0.1 centerblog.net 127.0.0.1 chevaux8.free.fr 127.0.0.1 clicargent.com 127.0.0.1 club-positif.com 127.0.0.1 comment-gagner-argent-internet.fr 127.0.0.1 commentreussir.com 127.0.0.1 delargentrapide.canalblog.com 127.0.0.1 depanne-pc.com 127.0.0.1 depanne-pc.info 127.0.0.1 dofus-kamas.net 127.0.0.1 downloadsoftfr.com 127.0.0.1 durable.com 127.0.0.1 ebook-generation.com 127.0.0.1 ebooks-reussite.com 127.0.0.1 enigmasoftware.com 127.0.0.1 eorezo.com 127.0.0.1 explorer-2010.com 127.0.0.1 find2download.fr 127.0.0.1 fortuneacademie.com 127.0.0.1 fr.ask.com 127.0.0.1 fr.excite.eu 127.0.0.1 freecompressor.com 127.0.0.1 fullpackcodecs.com 127.0.0.1 fullpackvista.com 127.0.0.1 gagner-argent-domicile.be 127.0.0.1 gagner-argent.blog4ever.com 127.0.0.1 gagner-de-l-argent-facile.net 127.0.0.1 gagner-de-l-argent.org 127.0.0.1 gagner-du-temps.eu 127.0.0.1 gagner-facile.net 127.0.0.1 gagner-rapidemen.ifrance.com 127.0.0.1 gagner-rapidement.ifrance.com 127.0.0.1 gagnerargent.blog4ever.com 127.0.0.1 gagnerargentnet.canalblog.com 127.0.0.1 gains-complementaires.com 127.0.0.1 gameduell.fr 127.0.0.1 gogo20.cusi.fr 127.0.0.1 goldaa.com 127.0.0.1 gooofull.com 127.0.0.1 igvault.fr 127.0.0.1 imesh.com 127.0.0.1 imvux.com 127.0.0.1 institut-dulac.com 127.0.0.1 iogiciel.com 127.0.0.1 je-mange-et-je-maigris.com 127.0.0.1 jeboost.com 127.0.0.1 lecoindesinsiders.com 127.0.0.1 linkfixerplus.com 127.0.0.1 logi-secure.eu 127.0.0.1 marcosvonring.net 127.0.0.1 marcprado.com 127.0.0.1 mariavoyance.com 127.0.0.1 media-app.com 127.0.0.1 mediaplayer-codecpack.com 127.0.0.1 methode-cash.com 127.0.0.1 methodegagnante.com 127.0.0.1 moneywin24.biz 127.0.0.1 need4video.com 127.0.0.1 neo-bux.fr 127.0.0.1 new-windows7.com 127.0.0.1 offre-surprise.com 127.0.0.1 ogpal.com 127.0.0.1 opastri.com 127.0.0.1 pcpitstop.com 127.0.0.1 pdf-reader-creator.com 127.0.0.1 phytolabel.com 127.0.0.1 phytolabel.fr 127.0.0.1 planscools.fr 127.0.0.1 plusrichedemain.fr 127.0.0.1 pognonfacile.com 127.0.0.1 quad-anti-spyware.com 127.0.0.1 quad-cleaner.com 127.0.0.1 quegeek.com 127.0.0.1 registrybooster2010.fr 127.0.0.1 registryonwindows.com 127.0.0.1 registrywinner.com 127.0.0.1 reimage.com 127.0.0.1 repair-my-pc.info 127.0.0.1 repair-pc-errors.info 127.0.0.1 repare-internet-explorer.com 127.0.0.1 reparer-windowsvista.com 127.0.0.1 reparer-windowsxp.com 127.0.0.1 reparez-internet-explorer.com 127.0.0.1 reparez-windows-vista.com 127.0.0.1 reparez-windows-xp.com 127.0.0.1 reparez-windows.com 127.0.0.1 reparez-windows.info 127.0.0.1 rester-tranquile.com 127.0.0.1 reussiteaffiliation.com 127.0.0.1 scratch2cash.com 127.0.0.1 secret-internet.com 127.0.0.1 soft2pcfr.com 127.0.0.1 solutionsmillions.com 127.0.0.1 sondages-remuneres.net 127.0.0.1 spamfighter.com 127.0.0.1 spotmau.com 127.0.0.1 spybotsearch-full.info 127.0.0.1 spynomore.com 127.0.0.1 spywareremove.com 127.0.0.1 succesliberte.net 127.0.0.1 sybilledejanville.com 127.0.0.1 tele-charger.org 127.0.0.1 the0606.com 127.0.0.1 tldagence.com 127.0.0.1 top-registry-cleaner.net 127.0.0.1 tradesoeasy.eu 127.0.0.1 travail-d-equipe.com 127.0.0.1 travailchezsoi.onlc.fr 127.0.0.1 travailleur-a-domicile.com 127.0.0.1 tviexpress-france.com 127.0.0.1 uniblue.com 127.0.0.1 utorrent-net.info 127.0.0.1 virbanks.com 127.0.0.1 visicommedia.com 127.0.0.1 vistacodec-2010.com 127.0.0.1 vlc-full.info 127.0.0.1 vlc-mediaplayer-2010.com 127.0.0.1 vlc.vg 127.0.0.1 vos-revenus-sur-internet.com 127.0.0.1 votre-travail-a-domicile.com 127.0.0.1 winzip-full.net 127.0.0.1 wtselections.com 127.0.0.1 multibar.me 127.0.0.1 www.killallvirus.com 127.0.0.1 www.cleanallvirus.com 127.0.0.1 www.enigmasoftware.com 127.0.0.1 www.speedypc.com 127.0.0.1 www.thelivetech.com 127.0.0.1 www.removeonline.com 127.0.0.1 supprimerlevirus.blogspot.fr 127.0.0.1 trojan-killer.net 127.0.0.1 fr.pcthreat.com 127.0.0.1 www.assure-le.com 127.0.0.1 www.411-spyware.com 127.0.0.1 www.anti-spyware-101.com 127.0.0.1 www.deletevirus.net 127.0.0.1 semsols123.comodo.revenuewire.net 127.0.0.1 semsols123.comodo.safecart.com 127.0.0.1 www.spywarehelpcenter.com 127.0.0.1 supprimer-spyware.com 127.0.0.1 dl6.iq7download.com 127.0.0.1 dl.installiq.com 127.0.0.1 www.vioplayer.com 127.0.0.1 dde.integration.storage.conduit-services.com 127.0.0.1 cf1.vuze.com 127.0.0.1 download.cdn.imesh.com 127.0.0.1 files.download1click.ws 127.0.0.1 data.oa-software.com 127.0.0.1 api.yontoo.com 127.0.0.1 dl-plugin.com 127.0.0.1 www.nlstorage.info 127.0.0.1 plugnrex.info 127.0.0.1 install.optimum-installer.com 127.0.0.1 ads.traff.co 127.0.0.1 popander.mobi 127.0.0.1 universal-downloader.softonic.fr 127.0.0.1 www.messengerdusexe.com 127.0.0.1 speedmaxpc.com 127.0.0.1 cdneu.friedcookiescdn.com 127.0.0.1 file-extractor.com 127.0.0.1 bfd34af056e54c8abcb9dd50862f0b9b.integration.download.conduit-services.com 127.0.0.1 www.winload.de 127.0.0.1 ct2319825.ourtoolbar.com 127.0.0.1 ie.conduit-download.com 127.0.0.1 ct2319825.ourtoolbar.com 127.0.0.1 servicemap.conduit-services.com 127.0.0.1 usage.toolbar.conduit-services.com 127.0.0.1 ff.conduit-download.com 127.0.0.1 storage.conduit.com 127.0.0.1 cdnus.ironcdn.com 127.0.0.1 cdn.install.playbryte.com 127.0.0.1 download.shoptowin.net 127.0.0.1 www.wajam.com 127.0.0.1 cdn.install.oibundles2.com 127.0.0.1 service.yontoo.com 127.0.0.1 www.fixie.com 127.0.0.1 d2qsma9t6l5kt7.cloudfront.net 127.0.0.1 www.installtrk.com 127.0.0.1 universal-downloader.en.softonic.com 127.0.0.1 koyotstar.free.fr 127.0.0.1 download.cdn.koyotesoft.com 127.0.0.1 www.asoftwareplus.com 127.0.0.1 a.dallasafterdusk.com 127.0.0.1 apnmedia.ask.com 127.0.0.1 www.trackdlstat.com 127.0.0.1 www.getdatafromeast.com 127.0.0.1 d61.newplaysite.com 127.0.0.1 d62.newplaysite.com 127.0.0.1 d63.newplaysite.com 127.0.0.1 d64.newplaysite.com 127.0.0.1 d71.newplaysite.com 127.0.0.1 d74.newplaysite.com 127.0.0.1 track.cdnperformance.info 127.0.0.1 download.cdnperformance.info 127.0.0.1 software.cdnredirect01.info 127.0.0.1 onedownloadspot.com 127.0.0.1 cdnus.onedownloadspot.com 127.0.0.1 cdneu.onedownloadspot.com 127.0.0.1 version.etype.com 127.0.0.1 www.wisedownloads.com 127.0.0.1 install2.optimum-installer.com 127.0.0.1 www.videoconvertertool.net 127.0.0.1 cdneu.coolvideoconverter.com 127.0.0.1 www.virtuagirl.com 127.0.0.1 ads7.complexadvertising.com 127.0.0.1 delivery.trafficbroker.com 127.0.0.1 hit.trafficholder.com 127.0.0.1 pu.plugrush.com 127.0.0.1 cs.adxpansion.com 127.0.0.1 newt7.adultadworld.com 127.0.0.1 fr.smeet.com 127.0.0.1 www.affpx.com 127.0.0.1 cdneu.driverpackcdn.com 127.0.0.1 cdnus.driverpackcdn.com 127.0.0.1 www.wslinx.com 127.0.0.1 www.coupon-miner.com 127.0.0.1 www.extrimdownloadmanager.com 127.0.0.1 lp.imesh.com 127.0.0.1 www.media-app.com 127.0.0.1 app.media-app.com 127.0.0.1 content.sweetim.com 127.0.0.1 www.affiliation-france.com 127.0.0.1 dl.babylon.com 127.0.0.1 search.babylon.com 127.0.0.1 dnld.installcore.com 127.0.0.1 www.getdatafromeast.com 127.0.0.1 www.mickyfastdl.com 127.0.0.1 cdn.download.sweetpacks.com 127.0.0.1 cdn.appround.biz 127.0.0.1 www.appround.biz 127.0.0.1 www.appround.net 127.0.0.1 www.moviehuts.com 127.0.0.1 download.imesh.com 127.0.0.1 go.tvnoop.com 127.0.0.1 www.bit89.com 127.0.0.1 vsharetv.ourtoolbar.com 127.0.0.1 media.comesvita.com.es 127.0.0.1 app.offerbox.com 127.0.0.1 app.softimizer.com 127.0.0.1 serw.clicksor.com 127.0.0.1 ads.clicksor.com 127.0.0.1 a.dungtank.com 127.0.0.1 bestflvplayer.net 127.0.0.1 www.gpil.org 127.0.0.1 download.wajam.com 127.0.0.1 cdnus.bestflvplayer.net 127.0.0.1 www.movieworldsite.com 127.0.0.1 www.telechargers.net 127.0.0.1 xmlinstcp.ddbbvt.eu 127.0.0.1 download.telechargers.net 127.0.0.1 www.openadserving.com 127.0.0.1 www.dlmanager.net 127.0.0.1 linkmeee.com 127.0.0.1 mires.eorezo.com 127.0.0.1 www.redirectmylink.com 127.0.0.1 www.boxore.com 127.0.0.1 ads.eorezo.com 127.0.0.1 securisedownload.com 127.0.0.1 app.widestream6.com 127.0.0.1 clic.illyx.com 127.0.0.1 www.freetvradio.com 127.0.0.1 ak.imgfarm.com 127.0.0.1 downloadsecurise.com 127.0.0.1 www.cracksguru.com 127.0.0.1 www.keygendb.com 127.0.0.1 www.crackinn.com 127.0.0.1 getfreemediaonline.com 127.0.0.1 load.keygendb.net 127.0.0.1 cdn.msdwnld.com 127.0.0.1 www.2012-plus.org 127.0.0.1 webplayer.tv 127.0.0.1 tv-direct.fr 127.0.0.1 le-direct.tv 127.0.0.1 tvuzz.com 127.0.0.1 regarder-tv.com 127.0.0.1 streaming-vlc.com 127.0.0.1 streaming-direct.tv 127.0.0.1 stream-actu.com 127.0.0.1 buzz-france.info 127.0.0.1 sec-france.info 127.0.0.1 interdescargas.com 127.0.0.1 winportal.fr 127.0.0.1 www.winportal.fr 127.0.0.1 softgratuit.com 127.0.0.1 www.downlesoft.com 127.0.0.1 cloud4pc.com 127.0.0.1 dev.cloud4pc.com 127.0.0.1 ads.alpha00001.com 127.0.0.1 www.nouveau-avast.com 127.0.0.1 soft-2011.com 127.0.0.1 new-2012.net 127.0.0.1 new-2011.net 127.0.0.1 top-2011.com 127.0.0.1 top-2012.com 127.0.0.1 www.wiki-security.com 127.0.0.1 www.spywareremove.com 127.0.0.1 www.supprimer-spyware.org 127.0.0.1 fr.pcthreat.com 127.0.0.1 www.assure-le.com 127.0.0.1 www.fasterpccleanclean.com 127.0.0.1 supprimerlevirus.blogspot.com 127.0.0.1 www.2-spyware.com 127.0.0.1 www.pcrisk.com 127.0.0.1 www.411-spyware.com 127.0.0.1 www.tuto4pc.com 127.0.0.1 pctuto.com 127.0.0.1 tuto4pc.com 127.0.0.1 www.agence-exclusive.com 127.0.0.1 tutoriales100.com 127.0.0.1 agence-exclusive.com 127.0.0.1 www.pctuto.com 127.0.0.1 ads.regiedepub.com 127.0.0.1 www.cherche.us 127.0.0.1 www.eorezo.com 127.0.0.1 eorezo.com 127.0.0.1 soft.telecharger.com 127.0.0.1 www.tuto4PC.com 127.0.0.1 dlfr.tuto4pc.com 127.0.0.1 dfr.eorezo.com 127.0.0.1 aff.foxtab.com 127.0.0.1 soft.foxtab.com 127.0.0.1 www.uniblue.com 127.0.0.1 www.telecharger-facile.com 127.0.0.1 Downlesoft.com 127.0.0.1 www.downloadsoftfr.com 127.0.0.1 www.flash-player-france.com 127.0.0.1 searchqu.com 127.0.0.1 www.koyotesoft.com 127.0.0.1 lp.ilivid.com 127.0.0.1 download.ilivid.com 127.0.0.1 www.ilivid.com 127.0.0.1 www.babylon.com 127.0.0.1 search.babylon.com 127.0.0.1 www.playerplus.com 127.0.0.1 www.frflashplayer.com 127.0.0.1 www.softesdown.com 127.0.0.1 driverutilities.com 127.0.0.1 application-error.net 127.0.0.1 Telecharger-0.DriverUtilities.com 127.0.0.1 promo.vador.com 127.0.0.1 webplayerddl.com

127.0.0.1 1f1.fr 127.0.0.1 2010-fr.com 127.0.0.1 24h00business.com 127.0.0.1 4990usd.com 127.0.0.1 4xp.com 127.0.0.1 adomiciletravail.googlepages.com 127.0.0.1 adwarealert.com 127.0.0.1 affilibot.eu 127.0.0.1 aformula.biz 127.0.0.1 antivirusgratuit.vg 127.0.0.1 argent-domicile.eu 127.0.0.1 argent-travail-domicile.fr 127.0.0.1 argent-vital.com 127.0.0.1 argentastuce.com 127.0.0.1 ascentive.com 127.0.0.1 augmentersesrevenus.pyclie.com 127.0.0.1 auto-webcash.com 127.0.0.1 avigora.com 127.0.0.1 avs4you.com 127.0.0.1 bababiz.com 127.0.0.1 badusoft.com 127.0.0.1 be2.fr 127.0.0.1 bidfun.fr 127.0.0.1 boostersonpc.com 127.0.0.1 carrefourinternet.com 127.0.0.1 cash-avalanches.com 127.0.0.1 cash-methodes.be 127.0.0.1 cash-professor.com 127.0.0.1 centerblog.net 127.0.0.1 chevaux8.free.fr 127.0.0.1 clicargent.com 127.0.0.1 club-positif.com 127.0.0.1 comment-gagner-argent-internet.fr 127.0.0.1 commentreussir.com 127.0.0.1 delargentrapide.canalblog.com 127.0.0.1 depanne-pc.com 127.0.0.1 depanne-pc.info 127.0.0.1 dofus-kamas.net 127.0.0.1 downloadsoftfr.com 127.0.0.1 durable.com 127.0.0.1 ebook-generation.com 127.0.0.1 ebooks-reussite.com 127.0.0.1 enigmasoftware.com 127.0.0.1 eorezo.com 127.0.0.1 explorer-2010.com 127.0.0.1 find2download.fr 127.0.0.1 fortuneacademie.com 127.0.0.1 fr.ask.com 127.0.0.1 fr.excite.eu 127.0.0.1 freecompressor.com 127.0.0.1 fullpackcodecs.com 127.0.0.1 fullpackvista.com 127.0.0.1 gagner-argent-domicile.be 127.0.0.1 gagner-argent.blog4ever.com 127.0.0.1 gagner-de-l-argent-facile.net 127.0.0.1 gagner-de-l-argent.org 127.0.0.1 gagner-du-temps.eu 127.0.0.1 gagner-facile.net 127.0.0.1 gagner-rapidemen.ifrance.com 127.0.0.1 gagner-rapidement.ifrance.com 127.0.0.1 gagnerargent.blog4ever.com 127.0.0.1 gagnerargentnet.canalblog.com 127.0.0.1 gains-complementaires.com 127.0.0.1 gameduell.fr 127.0.0.1 gogo20.cusi.fr 127.0.0.1 goldaa.com 127.0.0.1 gooofull.com 127.0.0.1 igvault.fr 127.0.0.1 imesh.com 127.0.0.1 imvux.com 127.0.0.1 institut-dulac.com 127.0.0.1 iogiciel.com 127.0.0.1 je-mange-et-je-maigris.com 127.0.0.1 jeboost.com 127.0.0.1 lecoindesinsiders.com 127.0.0.1 linkfixerplus.com 127.0.0.1 logi-secure.eu 127.0.0.1 marcosvonring.net 127.0.0.1 marcprado.com 127.0.0.1 mariavoyance.com 127.0.0.1 media-app.com 127.0.0.1 mediaplayer-codecpack.com 127.0.0.1 methode-cash.com 127.0.0.1 methodegagnante.com 127.0.0.1 moneywin24.biz 127.0.0.1 need4video.com 127.0.0.1 neo-bux.fr 127.0.0.1 new-windows7.com 127.0.0.1 offre-surprise.com 127.0.0.1 ogpal.com 127.0.0.1 opastri.com 127.0.0.1 pcpitstop.com 127.0.0.1 pdf-reader-creator.com 127.0.0.1 phytolabel.com 127.0.0.1 phytolabel.fr 127.0.0.1 planscools.fr 127.0.0.1 plusrichedemain.fr 127.0.0.1 pognonfacile.com 127.0.0.1 quad-anti-spyware.com 127.0.0.1 quad-cleaner.com 127.0.0.1 quegeek.com 127.0.0.1 registrybooster2010.fr 127.0.0.1 registryonwindows.com 127.0.0.1 registrywinner.com 127.0.0.1 reimage.com 127.0.0.1 repair-my-pc.info 127.0.0.1 repair-pc-errors.info 127.0.0.1 repare-internet-explorer.com 127.0.0.1 reparer-windowsvista.com 127.0.0.1 reparer-windowsxp.com 127.0.0.1 reparez-internet-explorer.com 127.0.0.1 reparez-windows-vista.com 127.0.0.1 reparez-windows-xp.com 127.0.0.1 reparez-windows.com 127.0.0.1 reparez-windows.info 127.0.0.1 rester-tranquile.com 127.0.0.1 reussiteaffiliation.com 127.0.0.1 scratch2cash.com 127.0.0.1 secret-internet.com 127.0.0.1 soft2pcfr.com 127.0.0.1 solutionsmillions.com 127.0.0.1 sondages-remuneres.net 127.0.0.1 spamfighter.com 127.0.0.1 spotmau.com 127.0.0.1 spybotsearch-full.info 127.0.0.1 spynomore.com 127.0.0.1 spywareremove.com 127.0.0.1 succesliberte.net 127.0.0.1 sybilledejanville.com 127.0.0.1 tele-charger.org 127.0.0.1 the0606.com 127.0.0.1 tldagence.com 127.0.0.1 top-registry-cleaner.net 127.0.0.1 tradesoeasy.eu 127.0.0.1 travail-d-equipe.com 127.0.0.1 travailchezsoi.onlc.fr 127.0.0.1 travailleur-a-domicile.com 127.0.0.1 tviexpress-france.com 127.0.0.1 uniblue.com 127.0.0.1 utorrent-net.info 127.0.0.1 virbanks.com 127.0.0.1 visicommedia.com 127.0.0.1 vistacodec-2010.com 127.0.0.1 vlc-full.info 127.0.0.1 vlc-mediaplayer-2010.com 127.0.0.1 vlc.vg 127.0.0.1 vos-revenus-sur-internet.com 127.0.0.1 votre-travail-a-domicile.com 127.0.0.1 winzip-full.net 127.0.0.1 wtselections.com 127.0.0.1 multibar.me 127.0.0.1 www.killallvirus.com 127.0.0.1 www.cleanallvirus.com 127.0.0.1 www.enigmasoftware.com 127.0.0.1 www.speedypc.com 127.0.0.1 www.thelivetech.com 127.0.0.1 www.removeonline.com 127.0.0.1 supprimerlevirus.blogspot.fr 127.0.0.1 trojan-killer.net 127.0.0.1 fr.pcthreat.com 127.0.0.1 www.assure-le.com 127.0.0.1 www.411-spyware.com 127.0.0.1 www.anti-spyware-101.com 127.0.0.1 www.deletevirus.net 127.0.0.1 semsols123.comodo.revenuewire.net 127.0.0.1 semsols123.comodo.safecart.com 127.0.0.1 www.spywarehelpcenter.com 127.0.0.1 supprimer-spyware.com 127.0.0.1 dl6.iq7download.com 127.0.0.1 dl.installiq.com 127.0.0.1 www.vioplayer.com 127.0.0.1 dde.integration.storage.conduit-services.com 127.0.0.1 cf1.vuze.com 127.0.0.1 download.cdn.imesh.com 127.0.0.1 files.download1click.ws 127.0.0.1 data.oa-software.com 127.0.0.1 api.yontoo.com 127.0.0.1 dl-plugin.com 127.0.0.1 www.nlstorage.info 127.0.0.1 plugnrex.info 127.0.0.1 install.optimum-installer.com 127.0.0.1 ads.traff.co 127.0.0.1 popander.mobi 127.0.0.1 universal-downloader.softonic.fr 127.0.0.1 www.messengerdusexe.com 127.0.0.1 speedmaxpc.com 127.0.0.1 cdneu.friedcookiescdn.com 127.0.0.1 file-extractor.com 127.0.0.1 bfd34af056e54c8abcb9dd50862f0b9b.integration.download.conduit-services.com 127.0.0.1 www.winload.de 127.0.0.1 ct2319825.ourtoolbar.com 127.0.0.1 ie.conduit-download.com 127.0.0.1 ct2319825.ourtoolbar.com 127.0.0.1 servicemap.conduit-services.com 127.0.0.1 usage.toolbar.conduit-services.com 127.0.0.1 ff.conduit-download.com 127.0.0.1 storage.conduit.com 127.0.0.1 cdnus.ironcdn.com 127.0.0.1 cdn.install.playbryte.com 127.0.0.1 download.shoptowin.net 127.0.0.1 www.wajam.com 127.0.0.1 cdn.install.oibundles2.com 127.0.0.1 service.yontoo.com 127.0.0.1 www.fixie.com 127.0.0.1 d2qsma9t6l5kt7.cloudfront.net 127.0.0.1 www.installtrk.com 127.0.0.1 universal-downloader.en.softonic.com 127.0.0.1 koyotstar.free.fr 127.0.0.1 download.cdn.koyotesoft.com 127.0.0.1 www.asoftwareplus.com 127.0.0.1 a.dallasafterdusk.com 127.0.0.1 apnmedia.ask.com 127.0.0.1 www.trackdlstat.com 127.0.0.1 www.getdatafromeast.com 127.0.0.1 d61.newplaysite.com 127.0.0.1 d62.newplaysite.com 127.0.0.1 d63.newplaysite.com 127.0.0.1 d64.newplaysite.com 127.0.0.1 d71.newplaysite.com 127.0.0.1 d74.newplaysite.com 127.0.0.1 track.cdnperformance.info 127.0.0.1 download.cdnperformance.info 127.0.0.1 software.cdnredirect01.info 127.0.0.1 onedownloadspot.com 127.0.0.1 cdnus.onedownloadspot.com 127.0.0.1 cdneu.onedownloadspot.com 127.0.0.1 version.etype.com 127.0.0.1 www.wisedownloads.com 127.0.0.1 install2.optimum-installer.com 127.0.0.1 www.videoconvertertool.net 127.0.0.1 cdneu.coolvideoconverter.com 127.0.0.1 www.virtuagirl.com 127.0.0.1 ads7.complexadvertising.com 127.0.0.1 delivery.trafficbroker.com 127.0.0.1 hit.trafficholder.com 127.0.0.1 pu.plugrush.com 127.0.0.1 cs.adxpansion.com 127.0.0.1 newt7.adultadworld.com 127.0.0.1 fr.smeet.com 127.0.0.1 www.affpx.com 127.0.0.1 cdneu.driverpackcdn.com 127.0.0.1 cdnus.driverpackcdn.com 127.0.0.1 www.wslinx.com 127.0.0.1 www.coupon-miner.com 127.0.0.1 www.extrimdownloadmanager.com 127.0.0.1 lp.imesh.com 127.0.0.1 www.media-app.com 127.0.0.1 app.media-app.com 127.0.0.1 content.sweetim.com 127.0.0.1 www.affiliation-france.com 127.0.0.1 dl.babylon.com 127.0.0.1 search.babylon.com 127.0.0.1 dnld.installcore.com 127.0.0.1 www.getdatafromeast.com 127.0.0.1 www.mickyfastdl.com 127.0.0.1 cdn.download.sweetpacks.com 127.0.0.1 cdn.appround.biz 127.0.0.1 www.appround.biz 127.0.0.1 www.appround.net 127.0.0.1 www.moviehuts.com 127.0.0.1 download.imesh.com 127.0.0.1 go.tvnoop.com 127.0.0.1 www.bit89.com 127.0.0.1 vsharetv.ourtoolbar.com 127.0.0.1 media.comesvita.com.es 127.0.0.1 app.offerbox.com 127.0.0.1 app.softimizer.com 127.0.0.1 serw.clicksor.com 127.0.0.1 ads.clicksor.com 127.0.0.1 a.dungtank.com 127.0.0.1 bestflvplayer.net 127.0.0.1 www.gpil.org 127.0.0.1 download.wajam.com 127.0.0.1 cdnus.bestflvplayer.net 127.0.0.1 www.movieworldsite.com 127.0.0.1 www.telechargers.net 127.0.0.1 xmlinstcp.ddbbvt.eu 127.0.0.1 download.telechargers.net 127.0.0.1 www.openadserving.com 127.0.0.1 www.dlmanager.net 127.0.0.1 linkmeee.com 127.0.0.1 mires.eorezo.com 127.0.0.1 www.redirectmylink.com 127.0.0.1 www.boxore.com 127.0.0.1 ads.eorezo.com 127.0.0.1 securisedownload.com 127.0.0.1 app.widestream6.com 127.0.0.1 clic.illyx.com 127.0.0.1 www.freetvradio.com 127.0.0.1 ak.imgfarm.com 127.0.0.1 downloadsecurise.com 127.0.0.1 www.cracksguru.com 127.0.0.1 www.keygendb.com 127.0.0.1 www.crackinn.com 127.0.0.1 getfreemediaonline.com 127.0.0.1 load.keygendb.net 127.0.0.1 cdn.msdwnld.com 127.0.0.1 www.2012-plus.org 127.0.0.1 webplayer.tv 127.0.0.1 tv-direct.fr 127.0.0.1 le-direct.tv 127.0.0.1 tvuzz.com 127.0.0.1 regarder-tv.com 127.0.0.1 streaming-vlc.com 127.0.0.1 streaming-direct.tv 127.0.0.1 stream-actu.com 127.0.0.1 buzz-france.info 127.0.0.1 sec-france.info 127.0.0.1 interdescargas.com 127.0.0.1 winportal.fr 127.0.0.1 www.winportal.fr 127.0.0.1 softgratuit.com 127.0.0.1 www.downlesoft.com 127.0.0.1 cloud4pc.com 127.0.0.1 dev.cloud4pc.com 127.0.0.1 ads.alpha00001.com 127.0.0.1 www.nouveau-avast.com 127.0.0.1 soft-2011.com 127.0.0.1 new-2012.net 127.0.0.1 new-2011.net 127.0.0.1 top-2011.com 127.0.0.1 top-2012.com 127.0.0.1 www.wiki-security.com 127.0.0.1 www.spywareremove.com 127.0.0.1 www.supprimer-spyware.org 127.0.0.1 fr.pcthreat.com 127.0.0.1 www.assure-le.com 127.0.0.1 www.fasterpccleanclean.com 127.0.0.1 supprimerlevirus.blogspot.com 127.0.0.1 www.2-spyware.com 127.0.0.1 www.pcrisk.com 127.0.0.1 www.411-spyware.com 127.0.0.1 www.tuto4pc.com 127.0.0.1 pctuto.com 127.0.0.1 tuto4pc.com 127.0.0.1 www.agence-exclusive.com 127.0.0.1 tutoriales100.com 127.0.0.1 agence-exclusive.com 127.0.0.1 www.pctuto.com 127.0.0.1 ads.regiedepub.com 127.0.0.1 www.cherche.us 127.0.0.1 www.eorezo.com 127.0.0.1 eorezo.com 127.0.0.1 soft.telecharger.com 127.0.0.1 www.tuto4PC.com 127.0.0.1 dlfr.tuto4pc.com 127.0.0.1 dfr.eorezo.com 127.0.0.1 aff.foxtab.com 127.0.0.1 soft.foxtab.com 127.0.0.1 www.uniblue.com 127.0.0.1 www.telecharger-facile.com 127.0.0.1 Downlesoft.com 127.0.0.1 www.downloadsoftfr.com 127.0.0.1 www.flash-player-france.com 127.0.0.1 searchqu.com 127.0.0.1 www.koyotesoft.com 127.0.0.1 lp.ilivid.com 127.0.0.1 download.ilivid.com 127.0.0.1 www.ilivid.com 127.0.0.1 www.babylon.com 127.0.0.1 search.babylon.com 127.0.0.1 www.playerplus.com 127.0.0.1 www.frflashplayer.com 127.0.0.1 www.softesdown.com 127.0.0.1 driverutilities.com 127.0.0.1 application-error.net 127.0.0.1 Telecharger-0.DriverUtilities.com 127.0.0.1 promo.vador.com 127.0.0.1 webplayerddl.com
127.0.0.1 localhost
127.0.0.1 localhost
127.0.0.1 localhost
127.0.0.1 localhost
127.0.0.1 localhost
127.0.0.1 localhost
127.0.0.1 localhost
127.0.0.1 localhost
127.0.0.1 localhost
127.0.0.1 localhost
127.0.0.1 localhost
127.0.0.1 localhost
127.0.0.1 localhost
127.0.0.1 localhost
127.0.0.1 localhost
127.0.0.1 localhost
127.0.0.1 localhost
127.0.0.1 localhost

There are 86412 more lines starting with "127.0.0.1"

========================= IP Configuration: ================================

Intel® Centrino® Advanced-N 6230 = Wireless Network Connection (Connected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)

# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global

popd
# End of IPv4 configuration

Windows IP Configuration

Host Name . . . . . . . . . . . . : Christy_Kang
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : E10A06SWDL.COM
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : F0-BF-97-EC-BF-5C
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 88-53-2E-DD-38-B3
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel® Centrino® Advanced-N 6230
Physical Address. . . . . . . . . : 88-53-2E-DD-38-B2
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::95cc:e8c2:8346:d831%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.4(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Thursday, August 30, 2012 2:30:13 PM
Lease Expires . . . . . . . . . . : Friday, August 31, 2012 2:30:13 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 243815214
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-17-1B-90-BD-88-53-2E-DD-38-B2
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{B435DC12-CDA3-4BC3-A544-2929A8FED717}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{5D47382B-15FC-4657-A243-83FA7B8D9FE8}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.E10A06SWDL.COM:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{32DD4C7A-D348-4B9C-A1EA-F7A850C5A105}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{4EDB759F-8A15-4AC7-9FD5-939847786E44}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #5
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: UnKnown
Address: 192.168.1.1

Name: google.com
Addresses: 2607:f8b0:400a:800::1003
173.194.33.8
173.194.33.4
173.194.33.14
173.194.33.5
173.194.33.7
173.194.33.0
173.194.33.2
173.194.33.6
173.194.33.3
173.194.33.9
173.194.33.1

Pinging google.com [173.194.33.2] with 32 bytes of data:
Reply from 173.194.33.2: bytes=32 time=12ms TTL=55
Reply from 173.194.33.2: bytes=32 time=11ms TTL=55

Ping statistics for 173.194.33.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 11ms, Maximum = 12ms, Average = 11ms
Server: UnKnown
Address: 192.168.1.1

Name: yahoo.com
Addresses: 98.138.253.109
72.30.38.140
98.139.183.24

Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=843ms TTL=52
Reply from 72.30.38.140: bytes=32 time=1031ms TTL=52

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 843ms, Maximum = 1031ms, Average = 937ms
Server: UnKnown
Address: 192.168.1.1

Name: bleepingcomputer.com
Address: 208.43.87.2

Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
14...f0 bf 97 ec bf 5c ......Realtek PCIe GBE Family Controller
12...88 53 2e dd 38 b3 ......Microsoft Virtual WiFi Miniport Adapter
11...88 53 2e dd 38 b2 ......Intel® Centrino® Advanced-N 6230
1...........................Software Loopback Interface 1
22...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
17...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #5
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.4 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.4 281
192.168.1.4 255.255.255.255 On-link 192.168.1.4 281
192.168.1.255 255.255.255.255 On-link 192.168.1.4 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.4 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.4 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
11 281 fe80::/64 On-link
11 281 fe80::95cc:e8c2:8346:d831/128
On-link
1 306 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 10 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 10 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/30/2012 02:31:18 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/30/2012 11:46:37 AM) (Source: Application Error) (User: )
Description: Faulting application name: VCSystemTray.exe, version: 7.2.0.10270, time stamp: 0x4eac2a4b
Faulting module name: KERNELBASE.dll, version: 6.1.7601.17651, time stamp: 0x4e21213c
Exception code: 0xe0434352
Fault offset: 0x000000000000cacd
Faulting process id: 0x21a0
Faulting application start time: 0xVCSystemTray.exe0
Faulting application path: VCSystemTray.exe1
Faulting module path: VCSystemTray.exe2
Report Id: VCSystemTray.exe3

Error: (08/30/2012 11:46:37 AM) (Source: .NET Runtime) (User: )
Description: Application: VCSystemTray.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.Reflection.TargetInvocationException
Stack:
at System.RuntimeType.InvokeDispMethod(System.String, System.Reflection.BindingFlags, System.Object, System.Object[], Boolean[], Int32, System.String[])
at System.RuntimeType.InvokeMember(System.String, System.Reflection.BindingFlags, System.Reflection.Binder, System.Object, System.Object[], System.Reflection.ParameterModifier[], System.Globalization.CultureInfo, System.String[])
at ContactAndSupportBL.ContactAndSupportVaioUpdateLinks.FetchVaioUpdateURLs()
at ContactAndSupportBL.ContactAndSupportVaioUpdateLinks.get_SupportByProductURL()
at ContactAndSupportBL.ContactAndSupportModuleInit.AddVaioUpdateMenuLinks()
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
at System.Threading.ThreadHelper.ThreadStart()

Error: (08/30/2012 11:46:37 AM) (Source: Application Error) (User: )
Description: Faulting application name: VUAgent.exe, version: 5.6.0.10270, time stamp: 0x4ea92ef2
Faulting module name: OLEAUT32.dll, version: 6.1.7601.17676, time stamp: 0x4e587ee8
Exception code: 0xc0000005
Fault offset: 0x0000000000001353
Faulting process id: 0x10bc
Faulting application start time: 0xVUAgent.exe0
Faulting application path: VUAgent.exe1
Faulting module path: VUAgent.exe2
Report Id: VUAgent.exe3

Error: (08/30/2012 11:44:38 AM) (Source: Application Error) (User: )
Description: Faulting application name: VCSystemTray.exe, version: 7.2.0.10270, time stamp: 0x4eac2a4b
Faulting module name: KERNELBASE.dll, version: 6.1.7601.17651, time stamp: 0x4e21213c
Exception code: 0xe0434352
Fault offset: 0x000000000000cacd
Faulting process id: 0x2324
Faulting application start time: 0xVCSystemTray.exe0
Faulting application path: VCSystemTray.exe1
Faulting module path: VCSystemTray.exe2
Report Id: VCSystemTray.exe3

Error: (08/30/2012 11:44:38 AM) (Source: .NET Runtime) (User: )
Description: Application: VCSystemTray.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.Reflection.TargetInvocationException
Stack:
at System.RuntimeType.InvokeDispMethod(System.String, System.Reflection.BindingFlags, System.Object, System.Object[], Boolean[], Int32, System.String[])
at System.RuntimeType.InvokeMember(System.String, System.Reflection.BindingFlags, System.Reflection.Binder, System.Object, System.Object[], System.Reflection.ParameterModifier[], System.Globalization.CultureInfo, System.String[])
at ContactAndSupportBL.ContactAndSupportVaioUpdateLinks.FetchVaioUpdateURLs()
at ContactAndSupportBL.ContactAndSupportVaioUpdateLinks.get_SupportByProductURL()
at ContactAndSupportBL.ContactAndSupportModuleInit.AddVaioUpdateMenuLinks()
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
at System.Threading.ThreadHelper.ThreadStart()

Error: (08/30/2012 11:44:37 AM) (Source: Application Error) (User: )
Description: Faulting application name: VUAgent.exe, version: 5.6.0.10270, time stamp: 0x4ea92ef2
Faulting module name: OLEAUT32.dll, version: 6.1.7601.17676, time stamp: 0x4e587ee8
Exception code: 0xc0000005
Fault offset: 0x0000000000001353
Faulting process id: 0x2248
Faulting application start time: 0xVUAgent.exe0
Faulting application path: VUAgent.exe1
Faulting module path: VUAgent.exe2
Report Id: VUAgent.exe3

Error: (08/30/2012 11:41:40 AM) (Source: Application Error) (User: )
Description: Faulting application name: VCSystemTray.exe, version: 7.2.0.10270, time stamp: 0x4eac2a4b
Faulting module name: KERNELBASE.dll, version: 6.1.7601.17651, time stamp: 0x4e21213c
Exception code: 0xe0434352
Fault offset: 0x000000000000cacd
Faulting process id: 0x1f48
Faulting application start time: 0xVCSystemTray.exe0
Faulting application path: VCSystemTray.exe1
Faulting module path: VCSystemTray.exe2
Report Id: VCSystemTray.exe3

Error: (08/30/2012 11:41:40 AM) (Source: .NET Runtime) (User: )
Description: Application: VCSystemTray.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.Reflection.TargetInvocationException
Stack:
at System.RuntimeType.InvokeDispMethod(System.String, System.Reflection.BindingFlags, System.Object, System.Object[], Boolean[], Int32, System.String[])
at System.RuntimeType.InvokeMember(System.String, System.Reflection.BindingFlags, System.Reflection.Binder, System.Object, System.Object[], System.Reflection.ParameterModifier[], System.Globalization.CultureInfo, System.String[])
at ContactAndSupportBL.ContactAndSupportVaioUpdateLinks.FetchVaioUpdateURLs()
at ContactAndSupportBL.ContactAndSupportVaioUpdateLinks.get_SupportByProductURL()
at ContactAndSupportBL.ContactAndSupportModuleInit.AddVaioUpdateMenuLinks()
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
at System.Threading.ThreadHelper.ThreadStart()

Error: (08/30/2012 11:41:39 AM) (Source: Application Error) (User: )
Description: Faulting application name: VUAgent.exe, version: 5.6.0.10270, time stamp: 0x4ea92ef2
Faulting module name: OLEAUT32.dll, version: 6.1.7601.17676, time stamp: 0x4e587ee8
Exception code: 0xc0000005
Fault offset: 0x0000000000001353
Faulting process id: 0xdd8
Faulting application start time: 0xVUAgent.exe0
Faulting application path: VUAgent.exe1
Faulting module path: VUAgent.exe2
Report Id: VUAgent.exe3

System errors:
=============
Error: (08/30/2012 04:47:46 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (08/30/2012 04:47:46 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (08/30/2012 04:47:46 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (08/30/2012 04:46:44 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (08/30/2012 04:46:44 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (08/30/2012 04:46:44 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (08/30/2012 04:45:40 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (08/30/2012 04:45:40 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (08/30/2012 04:45:40 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (08/30/2012 04:44:48 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Microsoft Office Sessions:
=========================
Error: (08/30/2012 02:31:18 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/30/2012 11:46:37 AM) (Source: Application Error)(User: )
Description: VCSystemTray.exe7.2.0.102704eac2a4bKERNELBASE.dll6.1.7601.176514e21213ce0434352000000000000cacd21a001cd86dfc843fce8C:\Program Files\Sony\VAIO Care\VCSystemTray.exeC:\Windows\system32\KERNELBASE.dll071ff423-f2d3-11e1-94c2-88532edd38b6

Error: (08/30/2012 11:46:37 AM) (Source: .NET Runtime)(User: )
Description: Application: VCSystemTray.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.Reflection.TargetInvocationException
Stack:
at System.RuntimeType.InvokeDispMethod(System.String, System.Reflection.BindingFlags, System.Object, System.Object[], Boolean[], Int32, System.String[])
at System.RuntimeType.InvokeMember(System.String, System.Reflection.BindingFlags, System.Reflection.Binder, System.Object, System.Object[], System.Reflection.ParameterModifier[], System.Globalization.CultureInfo, System.String[])
at ContactAndSupportBL.ContactAndSupportVaioUpdateLinks.FetchVaioUpdateURLs()
at ContactAndSupportBL.ContactAndSupportVaioUpdateLinks.get_SupportByProductURL()
at ContactAndSupportBL.ContactAndSupportModuleInit.AddVaioUpdateMenuLinks()
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
at System.Threading.ThreadHelper.ThreadStart()

Error: (08/30/2012 11:46:37 AM) (Source: Application Error)(User: )
Description: VUAgent.exe5.6.0.102704ea92ef2OLEAUT32.dll6.1.7601.176764e587ee8c0000005000000000000135310bc01cd86dfc8d0d5a8C:\Program Files\Sony\VAIO Update Common\VUAgent.exeC:\Windows\system32\OLEAUT32.dll06e952f6-f2d3-11e1-94c2-88532edd38b6

Error: (08/30/2012 11:44:38 AM) (Source: Application Error)(User: )
Description: VCSystemTray.exe7.2.0.102704eac2a4bKERNELBASE.dll6.1.7601.176514e21213ce0434352000000000000cacd232401cd86df8024d2daC:\Program Files\Sony\VAIO Care\VCSystemTray.exeC:\Windows\system32\KERNELBASE.dllbfd3353b-f2d2-11e1-94c2-88532edd38b6

Error: (08/30/2012 11:44:38 AM) (Source: .NET Runtime)(User: )
Description: Application: VCSystemTray.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.Reflection.TargetInvocationException
Stack:
at System.RuntimeType.InvokeDispMethod(System.String, System.Reflection.BindingFlags, System.Object, System.Object[], Boolean[], Int32, System.String[])
at System.RuntimeType.InvokeMember(System.String, System.Reflection.BindingFlags, System.Reflection.Binder, System.Object, System.Object[], System.Reflection.ParameterModifier[], System.Globalization.CultureInfo, System.String[])
at ContactAndSupportBL.ContactAndSupportVaioUpdateLinks.FetchVaioUpdateURLs()
at ContactAndSupportBL.ContactAndSupportVaioUpdateLinks.get_SupportByProductURL()
at ContactAndSupportBL.ContactAndSupportModuleInit.AddVaioUpdateMenuLinks()
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
at System.Threading.ThreadHelper.ThreadStart()

Error: (08/30/2012 11:44:37 AM) (Source: Application Error)(User: )
Description: VUAgent.exe5.6.0.102704ea92ef2OLEAUT32.dll6.1.7601.176764e587ee8c00000050000000000001353224801cd86df80ba5e4bC:\Program Files\Sony\VAIO Update Common\VUAgent.exeC:\Windows\system32\OLEAUT32.dllbf99396b-f2d2-11e1-94c2-88532edd38b6

Error: (08/30/2012 11:41:40 AM) (Source: Application Error)(User: )
Description: VCSystemTray.exe7.2.0.102704eac2a4bKERNELBASE.dll6.1.7601.176514e21213ce0434352000000000000cacd1f4801cd86df15738e0cC:\Program Files\Sony\VAIO Care\VCSystemTray.exeC:\Windows\system32\KERNELBASE.dll55e434f3-f2d2-11e1-94c2-88532edd38b6

Error: (08/30/2012 11:41:40 AM) (Source: .NET Runtime)(User: )
Description: Application: VCSystemTray.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.Reflection.TargetInvocationException
Stack:
at System.RuntimeType.InvokeDispMethod(System.String, System.Reflection.BindingFlags, System.Object, System.Object[], Boolean[], Int32, System.String[])
at System.RuntimeType.InvokeMember(System.String, System.Reflection.BindingFlags, System.Reflection.Binder, System.Object, System.Object[], System.Reflection.ParameterModifier[], System.Globalization.CultureInfo, System.String[])
at ContactAndSupportBL.ContactAndSupportVaioUpdateLinks.FetchVaioUpdateURLs()
at ContactAndSupportBL.ContactAndSupportVaioUpdateLinks.get_SupportByProductURL()
at ContactAndSupportBL.ContactAndSupportModuleInit.AddVaioUpdateMenuLinks()
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
at System.Threading.ThreadHelper.ThreadStart()

Error: (08/30/2012 11:41:39 AM) (Source: Application Error)(User: )
Description: VUAgent.exe5.6.0.102704ea92ef2OLEAUT32.dll6.1.7601.176764e587ee8c00000050000000000001353dd801cd86df162b6f0dC:\Program Files\Sony\VAIO Update Common\VUAgent.exeC:\Windows\system32\OLEAUT32.dll55891b4e-f2d2-11e1-94c2-88532edd38b6

=========================== Installed Programs ============================

Adobe Flash Player 11 ActiveX (Version: 11.3.300.271)
Adobe Flash Player 11 Plugin (Version: 11.3.300.271)
Adobe Reader X MUI (Version: 10.0.0)
Alps Pointing-device for VAIO
AMD APP SDK Runtime (Version: 2.4.650.9)
AMD Media Foundation Decoders (Version: 1.0.61011.0701)
Apple Application Support (Version: 2.1.9)
Apple Mobile Device Support (Version: 5.2.0.6)
Apple Software Update (Version: 2.1.3.127)
Application Manager for VAIO
ArcSoft Magic-i Visual Effects 2 (Version: 2.0.1.154)
ArcSoft WebCam Companion 4 (Version: 4.0.21.484)
ATI Catalyst Install Manager (Version: 3.0.829.0)
Audition (Version: 1.00.0000)
Bonjour (Version: 3.0.0.10)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center (Version: 2011.1011.657.10569)
Catalyst Control Center Graphics Previews Common (Version: 2011.1011.657.10569)
Catalyst Control Center InstallProxy (Version: 2011.1011.657.10569)
Catalyst Control Center Localization All (Version: 2011.1011.657.10569)
Catalyst Control Center Profiles Mobile (Version: 2011.1011.657.10569)
ccc-utility64 (Version: 2011.1011.657.10569)
CCC Help Chinese Standard (Version: 2011.1011.0656.10569)
CCC Help Chinese Traditional (Version: 2011.1011.0656.10569)
CCC Help Czech (Version: 2011.1011.0656.10569)
CCC Help Danish (Version: 2011.1011.0656.10569)
CCC Help Dutch (Version: 2011.1011.0656.10569)
CCC Help English (Version: 2011.1011.0656.10569)
CCC Help Finnish (Version: 2011.1011.0656.10569)
CCC Help French (Version: 2011.1011.0656.10569)
CCC Help German (Version: 2011.1011.0656.10569)
CCC Help Greek (Version: 2011.1011.0656.10569)
CCC Help Hungarian (Version: 2011.1011.0656.10569)
CCC Help Italian (Version: 2011.1011.0656.10569)
CCC Help Japanese (Version: 2011.1011.0656.10569)
CCC Help Korean (Version: 2011.1011.0656.10569)
CCC Help Norwegian (Version: 2011.1011.0656.10569)
CCC Help Polish (Version: 2011.1011.0656.10569)
CCC Help Portuguese (Version: 2011.1011.0656.10569)
CCC Help Russian (Version: 2011.1011.0656.10569)
CCC Help Spanish (Version: 2011.1011.0656.10569)
CCC Help Swedish (Version: 2011.1011.0656.10569)
CCC Help Thai (Version: 2011.1011.0656.10569)
CCC Help Turkish (Version: 2011.1011.0656.10569)
CCleaner (Version: 3.20)
Cobian Backup 10
D3DX10 (Version: 15.4.2368.0902)
ESET Online Scanner v3
Evernote v. 4.5 (Version: 4.5.0.5229)
FDUx86 (Version: 1.0.0)
Intel PROSet Wireless
Intel® Display Audio Driver (Version: 6.14.00.3074)
Intel® Identity Protection Technology 1.1.2.0 (Version: 1.1.2.0)
Intel® Management Engine Components (Version: 7.0.0.1144)
Intel® PROSet/Wireless for Bluetooth® 3.0 + High Speed (Version: 1.1.0.0157)
Intel® PROSet/Wireless Software for Bluetooth® Technology (Version: 1.1.1.0581)
Intel® PROSet/Wireless WiFi Software (Version: 14.01.1000)
Intel® Rapid Storage Technology (Version: 10.6.0.1002)
iTunes (Version: 10.6.3.25)
Java Auto Updater (Version: 2.0.6.1)
Java™ 6 Update 27 (64-bit) (Version: 6.0.270)
Java™ 6 Update 27 (Version: 6.0.270)
Junk Mail filter update (Version: 15.4.3502.0922)
Keyboard Shortcuts (Version: 1.1.0.08290)
KUx86 (Version: 1.0.0)
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
Media Gallery (Version: 1.5.4.09210)
Media Go (Version: 2.0.317)
Mesh Runtime (Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office Starter 2010 - English (Version: 14.0.5139.5005)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft SQL Server Compact 3.5 SP2 ENU (Version: 3.5.8080.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP3 Parser (KB2721691) (Version: 4.30.2114.0)
MSXML 4.0 SP3 Parser (KB973685) (Version: 4.30.2107.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
Norton Internet Security (Version: 19.0.0.128)
Oasis2Service (Version: 1.0.1)
OOBE (Version: 12.1.1.2)
PlayReady PC Runtime amd64 (Version: 1.3.0)
PlayStation®Network Downloader (Version: 2.07.00849)
PlayStation®Store (Version: 4.5.15.13232)
PMB (Version: 5.8.02.10270)
PMB VAIO Edition Plug-in (Version: 1.7.00.10100)
PX Profile Update (Version: 1.00.1.)
Quick Web Access (Version: 1.4.8.1)
Reader for PC (Version: 1.1.02.10070)
Realtek Ethernet Controller Driver (Version: 7.40.126.2011)
Realtek High Definition Audio Driver (Version: 6.0.1.6225)
Realtek PCIE Card Reader (Version: 6.1.7601.82)
Remote Keyboard (Version: 1.2.0.09270)
Remote Play with PlayStation®3 (Version: 1.1.0.21090)
Renesas Electronics USB 3.0 Host Controller Driver (Version: 2.1.16.0)
Skype Click to Call (Version: 6.1.10441)
Skype™ 5.9 (Version: 5.9.123)
SSLx64 (Version: 1.0.0)
SSLx86 (Version: 1.0.0)
TrackID™ with BRAVIA (Version: 1.2.0.09270)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
VAIO - Media Gallery (Version: 1.5.4.09210)
VAIO - PMB VAIO Edition Guide (Version: 1.7.00.10100)
VAIO - PMB VAIO Edition Plug-in (Version: 1.7.00.10100)
VAIO - Remote Keyboard (Version: 1.2.0.09270)
VAIO - Remote Keyboard with PlayStation®3 (Version: 1.2.0.09210)
VAIO - Remote Play with PlayStation®3 (Version: 1.1.0.21090)
VAIO - TrackID™ with BRAVIA (Version: 1.2.0.09270)
VAIO Care (Version: 6.3.0.09020)
VAIO Care (Version: 7.2.0.10310)
VAIO Control Center (Version: 5.1.3.12120)
VAIO CPU Fan Diagnostic (Version: 1.1.0.09200)
VAIO Data Restore Tool (Version: 1.8.0.09210)
VAIO Easy Connect (Version: 1.1.1.12200)
VAIO Gate (Version: 2.4.1.09230)
VAIO Gate Default (Version: 2.5.1.09230)
VAIO Help and Support (Version: 16.00.1011)
VAIO Improvement (Version: 1.2.0.09270)
VAIO Manual (Version: 1.5.0.09200)
VAIO Messenger (Version: 2.0.424.0)
VAIO Sample Contents (Version: 1.4.0.09010)
VAIO Satisfaction Survey. (Version: 3.0)
VAIO Smart Network (Version: 3.10.0.09300)
VAIO Transfer Support (Version: 1.6.0.09220)
VAIO Update (Version: 5.6.0.10270)
VAIO Update Merge Module x64 (Version: 5.6.10270)
VCCx64 (Version: 1.0.0)
VCCx86 (Version: 1.0.0)
VHD (Version: 1.0.0)
VIP Access (Version: 2.0.2.141)
VIx64 (Version: 1.0.0)
VIx86 (Version: 1.0.0)
VMLx86 (Version: 1.0.0)
VPMx64 (Version: 1.0.0)
VSNx64 (Version: 1.0.0)
VSNx86 (Version: 1.0.0)
VSSTx64 (Version: 1.0.0)
VSSTx86 (Version: 1.0.0)
VU5x64 (Version: 1.0.0)
VU5x86 (Version: 1.0.0)
VWSTx86 (Version: 1.0.0)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3538.0513)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3538.0513)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)

========================= Devices: ================================

Name: Security Processor Loader Driver
Description: Security Processor Loader Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: spldr
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

========================= Memory info: ===================================

Percentage of memory in use: 61%
Total physical RAM: 4011.86 MB
Available physical RAM: 1559.1 MB
Total Pagefile: 8021.91 MB
Available Pagefile: 5629.68 MB
Total Virtual: 4095.88 MB
Available Virtual: 3980.08 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:451.78 GB) (Free:401.62 GB) NTFS

========================= Users: ========================================

User accounts for \\CHRISTY_KANG

Administrator Christy Kang Guest

**** End of log ****

Back to top

#5 turtle0423

Member

Members
40 posts

Posted 30 August 2012 - 07:58 PM

^ I had to split into two posts for the MiniToolBar Log... And had to be done in safe mode because the computer got blue screened 3 hrs into the scan....

MBAM LOG
Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org

Database version: v2012.08.29.02

Windows 7 Service Pack 1 x64 NTFS (Safe Mode/Networking)
Internet Explorer 9.0.8112.16421
Christy Kang :: CHRISTY_KANG [administrator]

8/30/2012 2:31:14 PM
mbam-log-2012-08-30 (14-31-14).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 197003
Time elapsed: 2 minute(s), 48 second(s)

Memory Processes Detected: 1
C:\Windows\svchost.exe (Trojan.Agent) -> 1360 -> Delete on reboot.

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 1
C:\Windows\svchost.exe (Trojan.Agent) -> Delete on reboot.

(end)

Back to top

#6 turtle0423

Member

Members
40 posts

Posted 30 August 2012 - 08:38 PM

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-30 18:13:39
-----------------------------
18:13:39.870 OS Version: Windows x64 6.1.7601 Service Pack 1
18:13:39.870 Number of processors: 4 586 0x2A07
18:13:39.886 ComputerName: CHRISTY_KANG UserName: Christy Kang
18:13:41.259 Initialize success
18:14:39.416 AVAST engine defs: 12083001
18:15:06.123 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
18:15:06.138 Disk 0 Vendor: Hitachi_ JE3O Size: 476940MB BusType: 3
18:15:06.138 Device \Driver\iaStor -> MajorFunction fffffa80078a75e8
18:15:06.138 Disk 0 MBR read successfully
18:15:06.138 Disk 0 MBR scan
18:15:06.154 Disk 0 Windows 7 default MBR code
18:15:06.170 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 14218 MB offset 2048
18:15:06.185 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 29120512
18:15:06.216 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 462620 MB offset 29325312
18:15:06.263 Disk 0 scanning C:\Windows\system32\drivers
18:15:22.344 Service scanning
18:15:54.704 Modules scanning
18:15:54.704 Disk 0 trace - called modules:
18:15:54.704 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys >>UNKNOWN [0xfffffa80078a75e8]<<
18:15:54.704 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800757b060]
18:15:54.704 3 CLASSPNP.SYS[fffff88001fa243f] -> nt!IofCallDriver -> [0xfffffa800631c810]
18:15:54.704 5 ACPI.sys[fffff88000f707a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8006323050]
18:15:54.704 \Driver\iaStor[0xfffffa80074739d0] -> IRP_MJ_CREATE -> 0xfffffa80078a75e8
18:15:56.714 AVAST engine scan C:\Windows
18:15:59.864 AVAST engine scan C:\Windows\system32
18:18:18.630 AVAST engine scan C:\Windows\system32\drivers
18:18:30.252 AVAST engine scan C:\Users\Christy Kang
18:28:11.421 AVAST engine scan C:\ProgramData
18:32:33.231 Scan finished successfully
18:38:20.546 Disk 0 MBR has been saved successfully to "C:\Users\Christy Kang\Desktop\MBR.dat"
18:38:20.546 The log file has been saved successfully to "C:\Users\Christy Kang\Desktop\aswMBR.txt"

Back to top

#7 Broni

The Coolest BC Computer

BC Advisor
27,294 posts

Gender:Male
Location:Daly City, CA

Posted 30 August 2012 - 08:48 PM

Please download Rkill (courtesy of BleepingComputer.com) to your desktop.
There are 2 different versions. If one of them won't run then download and try to run the other one.
You only need to get one of these to run, not all of them. You may get warnings from your antivirus about this tool, ignore them or shutdown your antivirus.

rKill.exe: http://www.bleepingcomputer.com/download/rkill/dl/10/
iExplore.exe (renamed rKill.exe): http://www.bleepingcomputer.com/download/rkill/dl/11/

Double-click on the Rkill desktop icon to run the tool.
If using Vista or Windows 7 right-click on it and choose Run As Administrator.
A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
If not, delete the file, then download and use the one provided in Link 2.
Do not reboot until instructed.
If the tool does not run from any of the links provided, please let me know.

If normal mode still doesn't work, run the tool from safe mode.

When the scan is done Notepad will open with rKill log.
Post it in your next reply.

NOTE. rKill.txt log will also be present on your desktop.

My Website

My help doesn't cost a penny, but if you'd like to consider a donation, click

Back to top

#8 turtle0423

Member

Members
40 posts

Posted 30 August 2012 - 10:32 PM

Rkill 2.3.3 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 08/30/2012 08:31:32 PM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1

Checking for Windows services to stop.

* No malware services found to stop.

Checking for processes to terminate.

* No malware processes found to kill.

Checking Registry for malware related settings.

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
* HKLM\Software\Classes\exefile\shell\open\command\\IsolatedCommand was changed. It was reset to "%1" %*!

* HKLM\Software\Classes\exefile\shell\runas\command\\IsolatedCommand was changed. It was reset to "%1" %*!

* HKLM\Software\Classes\.com "@" has been changed to ComFile!
* HKLM\Software\Classes\.com "@" was reset to comfile!

Performing miscellaneous checks.
* No issues found.

Checking Windows Service Integrity:

* COM+ Event System (EventSystem) is not Running.
Startup Type set to: Automatic

* Security Center (wscsvc) is not Running.
Startup Type set to: Automatic (Delayed Start)

* Windows Update (wuauserv) is not Running.
Startup Type set to: Automatic (Delayed Start)

* CscService [Missing Service]
* PeerDistSvc [Missing Service]
* UmRdpService [Missing Service]

* atapi => \SystemRoot\system32\drivers\atapi.sys [Incorrect ImagePath]

Searching for Missing Digital Signatures:

* No issues found.

Program finished at: 08/30/2012 08:31:45 PM
Execution time: 0 hours(s), 0 minute(s), and 12 seconds(s)

Back to top

#9 Broni

The Coolest BC Computer

BC Advisor
27,294 posts

Gender:Male
Location:Daly City, CA

Posted 30 August 2012 - 10:37 PM

Download TDSSKiller and save it to your desktop.

Extract (unzip) its contents to your desktop.
Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
If an infected file is detected, the default action will be Cure, click on Continue.
If a suspicious file is detected, the default action will be Skip, click on Continue.
It may ask you to reboot the computer to complete the process. Click on Reboot Now.
If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.

My Website

My help doesn't cost a penny, but if you'd like to consider a donation, click

Back to top

#10 turtle0423

Member

Members
40 posts

Posted 31 August 2012 - 03:24 AM

21:10:47.0864 0940 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
21:10:48.0348 0940 ============================================================
21:10:48.0348 0940 Current date / time: 2012/08/30 21:10:48.0348
21:10:48.0348 0940 SystemInfo:
21:10:48.0348 0940
21:10:48.0348 0940 OS Version: 6.1.7601 ServicePack: 1.0
21:10:48.0348 0940 Product type: Workstation
21:10:48.0348 0940 ComputerName: CHRISTY_KANG
21:10:48.0348 0940 UserName: Christy Kang
21:10:48.0348 0940 Windows directory: C:\Windows
21:10:48.0348 0940 System windows directory: C:\Windows
21:10:48.0348 0940 Running under WOW64
21:10:48.0348 0940 Processor architecture: Intel x64
21:10:48.0348 0940 Number of processors: 4
21:10:48.0348 0940 Page size: 0x1000
21:10:48.0348 0940 Boot type: Safe boot with network
21:10:48.0348 0940 ============================================================
21:10:48.0941 0940 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:10:48.0941 0940 ============================================================
21:10:48.0941 0940 \Device\Harddisk0\DR0:
21:10:48.0941 0940 MBR partitions:
21:10:48.0941 0940 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1BC5800, BlocksNum 0x32000
21:10:48.0941 0940 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1BF7800, BlocksNum 0x3878E030
21:10:48.0941 0940 ============================================================
21:10:49.0019 0940 C: <-> \Device\Harddisk0\DR0\Partition2
21:10:49.0019 0940 ============================================================
21:10:49.0019 0940 Initialize success
21:10:49.0019 0940 ============================================================
21:10:56.0366 4844 ============================================================
21:10:56.0366 4844 Scan started
21:10:56.0366 4844 Mode: Manual;
21:10:56.0366 4844 ============================================================
21:10:56.0928 4844 ================ Scan system memory ========================
21:10:56.0928 4844 System memory - ok
21:10:56.0928 4844 ================ Scan services =============================
21:10:58.0956 4844 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
21:10:58.0972 4844 1394ohci - ok
21:10:59.0096 4844 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
21:10:59.0096 4844 ACDaemon - ok
21:10:59.0174 4844 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
21:10:59.0174 4844 ACPI - ok
21:10:59.0221 4844 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
21:10:59.0221 4844 AcpiPmi - ok
21:10:59.0393 4844 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:10:59.0393 4844 AdobeFlashPlayerUpdateSvc - ok
21:10:59.0533 4844 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
21:10:59.0533 4844 adp94xx - ok
21:10:59.0564 4844 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
21:10:59.0564 4844 adpahci - ok
21:10:59.0596 4844 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
21:10:59.0596 4844 adpu320 - ok
21:10:59.0627 4844 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
21:10:59.0627 4844 AeLookupSvc - ok
21:10:59.0674 4844 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
21:10:59.0674 4844 AFD - ok
21:10:59.0705 4844 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
21:10:59.0705 4844 agp440 - ok
21:10:59.0736 4844 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
21:10:59.0736 4844 ALG - ok
21:10:59.0752 4844 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
21:10:59.0752 4844 aliide - ok
21:10:59.0783 4844 [ 7288DF84B363113EF5A5E182D48AFC2C ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
21:10:59.0783 4844 AMD External Events Utility - ok
21:10:59.0798 4844 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
21:10:59.0798 4844 amdide - ok
21:10:59.0830 4844 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
21:10:59.0830 4844 AmdK8 - ok
21:11:00.0001 4844 [ 49C7D5F147DADFFBED4E746903C7E15A ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
21:11:00.0157 4844 amdkmdag - ok
21:11:00.0204 4844 [ 2B76E84DC24A0AE24A26878ACB82B631 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
21:11:00.0204 4844 amdkmdap - ok
21:11:00.0220 4844 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
21:11:00.0220 4844 AmdPPM - ok
21:11:00.0251 4844 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
21:11:00.0266 4844 amdsata - ok
21:11:00.0282 4844 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
21:11:00.0282 4844 amdsbs - ok
21:11:00.0298 4844 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
21:11:00.0298 4844 amdxata - ok
21:11:00.0360 4844 [ 9921E78BC29634235F4BF5809E7E8CDE ] AMPPAL C:\Windows\system32\DRIVERS\AMPPAL.sys
21:11:00.0360 4844 AMPPAL - ok
21:11:00.0376 4844 [ 9921E78BC29634235F4BF5809E7E8CDE ] AMPPALP C:\Windows\system32\DRIVERS\amppal.sys
21:11:00.0376 4844 AMPPALP - ok
21:11:00.0469 4844 [ 83A0E7BA4AE616D3654E700D9C5FF9DB ] AMPPALR3 C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
21:11:00.0469 4844 AMPPALR3 - ok
21:11:00.0532 4844 [ 29A7BF049CE611DCC51ADECCA23A466D ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
21:11:00.0532 4844 ApfiltrService - ok
21:11:00.0563 4844 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
21:11:00.0563 4844 AppID - ok
21:11:00.0594 4844 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
21:11:00.0594 4844 AppIDSvc - ok
21:11:00.0610 4844 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
21:11:00.0610 4844 Appinfo - ok
21:11:00.0672 4844 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:11:00.0672 4844 Apple Mobile Device - ok
21:11:00.0735 4844 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
21:11:00.0750 4844 arc - ok
21:11:00.0750 4844 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
21:11:00.0750 4844 arcsas - ok
21:11:00.0781 4844 [ C130BC4A51B1382B2BE8E44579EC4C0A ] ArcSoftKsUFilter C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys
21:11:00.0781 4844 ArcSoftKsUFilter - ok
21:11:00.0875 4844 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
21:11:00.0906 4844 aspnet_state - ok
21:11:00.0937 4844 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
21:11:00.0937 4844 AsyncMac - ok
21:11:00.0969 4844 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
21:11:00.0969 4844 atapi - ok
21:11:01.0015 4844 [ E857EEE6B92AAA473EBB3465ADD8F7E7 ] athr C:\Windows\system32\DRIVERS\athrx.sys
21:11:01.0031 4844 athr - ok
21:11:01.0093 4844 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:11:01.0093 4844 AudioEndpointBuilder - ok
21:11:01.0109 4844 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
21:11:01.0109 4844 AudioSrv - ok
21:11:01.0140 4844 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
21:11:01.0140 4844 AxInstSV - ok
21:11:01.0234 4844 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
21:11:01.0234 4844 b06bdrv - ok
21:11:01.0296 4844 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
21:11:01.0296 4844 b57nd60a - ok
21:11:01.0327 4844 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
21:11:01.0327 4844 BDESVC - ok
21:11:01.0374 4844 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
21:11:01.0374 4844 Beep - ok
21:11:01.0437 4844 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
21:11:01.0437 4844 BFE - ok
21:11:01.0686 4844 [ C8AB71A5102D0FC103F6DFC750005137 ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\BASHDefs\20120619.001_6e2\BHDrvx64.sys
21:11:01.0702 4844 BHDrvx64 - ok
21:11:01.0749 4844 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
21:11:01.0749 4844 blbdrive - ok
21:11:01.0842 4844 [ E52221FF68AABB5BEE32A7DEE69E7EAB ] Bluetooth Device Monitor C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
21:11:01.0842 4844 Bluetooth Device Monitor - ok
21:11:01.0858 4844 [ 5CFA8896A5E10B226B0606B4C84D97AE ] Bluetooth Media Service C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
21:11:01.0873 4844 Bluetooth Media Service - ok
21:11:01.0889 4844 [ 03FE8826F70FC84401B554C4004C4593 ] Bluetooth OBEX Service C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
21:11:01.0905 4844 Bluetooth OBEX Service - ok
21:11:01.0936 4844 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
21:11:01.0951 4844 Bonjour Service - ok
21:11:01.0967 4844 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
21:11:01.0967 4844 bowser - ok
21:11:01.0998 4844 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
21:11:01.0998 4844 BrFiltLo - ok
21:11:02.0014 4844 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
21:11:02.0014 4844 BrFiltUp - ok
21:11:02.0045 4844 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
21:11:02.0045 4844 BridgeMP - ok
21:11:02.0076 4844 [ 8EF0D5C41EC907751B8429162B1239ED ] Browser C:\Windows\System32\browser.dll
21:11:02.0076 4844 Browser - ok
21:11:02.0092 4844 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
21:11:02.0092 4844 Brserid - ok
21:11:02.0107 4844 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
21:11:02.0123 4844 BrSerWdm - ok
21:11:02.0139 4844 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
21:11:02.0139 4844 BrUsbMdm - ok
21:11:02.0154 4844 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
21:11:02.0154 4844 BrUsbSer - ok
21:11:02.0185 4844 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys
21:11:02.0185 4844 BthEnum - ok
21:11:02.0217 4844 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
21:11:02.0217 4844 BTHMODEM - ok
21:11:02.0217 4844 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
21:11:02.0232 4844 BthPan - ok
21:11:02.0248 4844 [ 64C198198501F7560EE41D8D1EFA7952 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
21:11:02.0248 4844 BTHPORT - ok
21:11:02.0279 4844 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
21:11:02.0279 4844 bthserv - ok
21:11:02.0279 4844 [ A5B3E8B2B78C7B3DA56A0DE490E6718C ] BTHSSecurityMgr C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
21:11:02.0279 4844 BTHSSecurityMgr - ok
21:11:02.0310 4844 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
21:11:02.0310 4844 BTHUSB - ok
21:11:02.0341 4844 [ A0CA8F0493D26E67436929856E32F585 ] btmaux C:\Windows\system32\DRIVERS\btmaux.sys
21:11:02.0341 4844 btmaux - ok
21:11:02.0357 4844 [ 2B72E1339186A059BE27BC1697F4A9C1 ] btmhsf C:\Windows\system32\DRIVERS\btmhsf.sys
21:11:02.0373 4844 btmhsf - ok
21:11:02.0451 4844 [ ED5411A69C5BAC78D245C893AF64352A ] cbVSCService C:\Program Files (x86)\Cobian Backup 10\cbVSCService.exe
21:11:02.0451 4844 cbVSCService - ok
21:11:02.0513 4844 [ 9A2A298479BE9354FED42C9A40A9C214 ] ccSet_NIS C:\Windows\system32\drivers\NISx64\1300000.080\ccSetx64.sys
21:11:02.0513 4844 ccSet_NIS - ok
21:11:02.0544 4844 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
21:11:02.0544 4844 cdfs - ok
21:11:02.0575 4844 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
21:11:02.0575 4844 cdrom - ok
21:11:02.0607 4844 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
21:11:02.0607 4844 CertPropSvc - ok
21:11:02.0638 4844 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
21:11:02.0638 4844 circlass - ok
21:11:02.0653 4844 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
21:11:02.0653 4844 CLFS - ok
21:11:02.0700 4844 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:11:02.0700 4844 clr_optimization_v2.0.50727_32 - ok
21:11:02.0731 4844 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:11:02.0731 4844 clr_optimization_v2.0.50727_64 - ok
21:11:02.0794 4844 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:11:02.0903 4844 clr_optimization_v4.0.30319_32 - ok
21:11:02.0934 4844 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:11:03.0012 4844 clr_optimization_v4.0.30319_64 - ok
21:11:03.0043 4844 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
21:11:03.0043 4844 CmBatt - ok
21:11:03.0059 4844 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
21:11:03.0059 4844 cmdide - ok
21:11:03.0090 4844 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
21:11:03.0106 4844 CNG - ok
21:11:03.0184 4844 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
21:11:03.0184 4844 Compbatt - ok
21:11:03.0184 4844 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
21:11:03.0184 4844 CompositeBus - ok
21:11:03.0199 4844 COMSysApp - ok
21:11:03.0215 4844 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
21:11:03.0215 4844 crcdisk - ok
21:11:03.0246 4844 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
21:11:03.0246 4844 CryptSvc - ok
21:11:03.0340 4844 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
21:11:03.0340 4844 cvhsvc - ok
21:11:03.0387 4844 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
21:11:03.0387 4844 DcomLaunch - ok
21:11:03.0433 4844 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
21:11:03.0449 4844 defragsvc - ok
21:11:03.0465 4844 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
21:11:03.0465 4844 DfsC - ok
21:11:03.0496 4844 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
21:11:03.0496 4844 Dhcp - ok
21:11:03.0511 4844 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
21:11:03.0511 4844 discache - ok
21:11:03.0558 4844 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
21:11:03.0558 4844 Disk - ok
21:11:03.0589 4844 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
21:11:03.0589 4844 Dnscache - ok
21:11:03.0605 4844 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
21:11:03.0605 4844 dot3svc - ok
21:11:03.0605 4844 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
21:11:03.0605 4844 DPS - ok
21:11:03.0636 4844 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
21:11:03.0636 4844 drmkaud - ok
21:11:03.0667 4844 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
21:11:03.0667 4844 DXGKrnl - ok
21:11:03.0714 4844 [ 50AD8FC1DC800FF36087994C8F7FDFF2 ] e1yexpress C:\Windows\system32\DRIVERS\e1y60x64.sys
21:11:03.0714 4844 e1yexpress - ok
21:11:03.0745 4844 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
21:11:03.0745 4844 EapHost - ok
21:11:03.0839 4844 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
21:11:03.0901 4844 ebdrv - ok
21:11:03.0995 4844 [ BA6420C1F7070ED8F1BA372844F3E1EC ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
21:11:03.0995 4844 eeCtrl - ok
21:11:04.0042 4844 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
21:11:04.0042 4844 EFS - ok
21:11:04.0104 4844 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
21:11:04.0120 4844 ehRecvr - ok
21:11:04.0135 4844 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
21:11:04.0135 4844 ehSched - ok
21:11:04.0182 4844 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
21:11:04.0182 4844 elxstor - ok
21:11:04.0229 4844 [ 1343DF3451BC0C442DC69837C6FBA21B ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
21:11:04.0229 4844 EraserUtilRebootDrv - ok
21:11:04.0260 4844 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
21:11:04.0260 4844 ErrDev - ok
21:11:04.0307 4844 esgiguard - ok
21:11:04.0338 4844 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
21:11:04.0338 4844 EventSystem - ok
21:11:04.0432 4844 [ 54FC81B0162478A72A93DBBEAFB35671 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
21:11:04.0494 4844 EvtEng - ok
21:11:04.0510 4844 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
21:11:04.0510 4844 exfat - ok
21:11:04.0525 4844 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
21:11:04.0525 4844 fastfat - ok
21:11:04.0588 4844 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
21:11:04.0588 4844 Fax - ok
21:11:04.0619 4844 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
21:11:04.0619 4844 fdc - ok
21:11:04.0635 4844 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
21:11:04.0635 4844 fdPHost - ok
21:11:04.0635 4844 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
21:11:04.0635 4844 FDResPub - ok
21:11:04.0650 4844 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
21:11:04.0650 4844 FileInfo - ok
21:11:04.0650 4844 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
21:11:04.0650 4844 Filetrace - ok
21:11:04.0681 4844 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
21:11:04.0681 4844 flpydisk - ok
21:11:04.0713 4844 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
21:11:04.0713 4844 FltMgr - ok
21:11:04.0759 4844 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
21:11:04.0775 4844 FontCache - ok
21:11:04.0822 4844 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:11:04.0822 4844 FontCache3.0.0.0 - ok
21:11:04.0822 4844 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
21:11:04.0822 4844 FsDepends - ok
21:11:04.0853 4844 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
21:11:04.0853 4844 Fs_Rec - ok
21:11:04.0884 4844 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
21:11:04.0884 4844 fvevol - ok
21:11:04.0915 4844 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
21:11:04.0915 4844 gagp30kx - ok
21:11:04.0947 4844 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:11:04.0947 4844 GEARAspiWDM - ok
21:11:04.0993 4844 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
21:11:04.0993 4844 gpsvc - ok
21:11:05.0009 4844 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
21:11:05.0025 4844 hcw85cir - ok
21:11:05.0056 4844 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:11:05.0056 4844 HdAudAddService - ok
21:11:05.0087 4844 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
21:11:05.0087 4844 HDAudBus - ok
21:11:05.0103 4844 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
21:11:05.0103 4844 HidBatt - ok
21:11:05.0118 4844 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
21:11:05.0118 4844 HidBth - ok
21:11:05.0134 4844 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
21:11:05.0134 4844 HidIr - ok
21:11:05.0165 4844 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
21:11:05.0165 4844 hidserv - ok
21:11:05.0227 4844 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
21:11:05.0243 4844 HidUsb - ok
21:11:05.0259 4844 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
21:11:05.0259 4844 hkmsvc - ok
21:11:05.0274 4844 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
21:11:05.0274 4844 HomeGroupListener - ok
21:11:05.0305 4844 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
21:11:05.0305 4844 HomeGroupProvider - ok
21:11:05.0321 4844 HOSTS Anti-PUPs - ok
21:11:05.0368 4844 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
21:11:05.0368 4844 HpSAMD - ok
21:11:05.0399 4844 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
21:11:05.0399 4844 HTTP - ok
21:11:05.0430 4844 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
21:11:05.0430 4844 hwpolicy - ok
21:11:05.0493 4844 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
21:11:05.0493 4844 i8042prt - ok
21:11:05.0524 4844 [ 2FDAEC4B02729C48C0FD1B0B4695995B ] iaStor C:\Windows\system32\drivers\iaStor.sys
21:11:05.0524 4844 iaStor - ok
21:11:05.0571 4844 [ D41861E56E7552C13674D7F147A02464 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
21:11:05.0586 4844 IAStorDataMgrSvc - ok
21:11:05.0602 4844 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
21:11:05.0602 4844 iaStorV - ok
21:11:05.0617 4844 [ E049DD2969A2C0AF9FF99DD5F1182695 ] iBtFltCoex C:\Windows\system32\DRIVERS\iBtFltCoex.sys
21:11:05.0617 4844 iBtFltCoex - ok
21:11:05.0664 4844 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:11:05.0664 4844 idsvc - ok
21:11:05.0773 4844 [ CE0BF35C79E03BB89DA6B14FAC838605 ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\IPSDefs\20120626.001\IDSvia64.sys
21:11:05.0789 4844 IDSVia64 - ok
21:11:05.0820 4844 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
21:11:05.0820 4844 iirsp - ok
21:11:05.0867 4844 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
21:11:05.0883 4844 IKEEXT - ok
21:11:05.0961 4844 [ CDB772F707AC24B43A20C821852CA61F ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
21:11:05.0976 4844 IntcAzAudAddService - ok
21:11:06.0023 4844 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
21:11:06.0023 4844 IntcDAud - ok
21:11:06.0054 4844 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
21:11:06.0054 4844 intelide - ok
21:11:06.0273 4844 [ 33FAA40B288002C89529DBD14F3AB72C ] intelkmd C:\Windows\system32\DRIVERS\igdpmd64.sys
21:11:06.0460 4844 intelkmd - ok
21:11:06.0522 4844 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
21:11:06.0522 4844 intelppm - ok
21:11:06.0538 4844 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
21:11:06.0553 4844 IPBusEnum - ok
21:11:06.0553 4844 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:11:06.0553 4844 IpFilterDriver - ok
21:11:06.0631 4844 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
21:11:06.0631 4844 iphlpsvc - ok
21:11:06.0647 4844 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
21:11:06.0647 4844 IPMIDRV - ok
21:11:06.0678 4844 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
21:11:06.0678 4844 IPNAT - ok
21:11:06.0741 4844 [ A9AB99EE7D39725EAFEC82732D2B3271 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
21:11:06.0756 4844 iPod Service - ok
21:11:06.0772 4844 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
21:11:06.0772 4844 IRENUM - ok
21:11:06.0772 4844 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
21:11:06.0772 4844 isapnp - ok
21:11:06.0819 4844 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
21:11:06.0819 4844 iScsiPrt - ok
21:11:06.0865 4844 [ 6C85719A21B3F62C2C76280F4BD36C7B ] jhi_service C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
21:11:06.0865 4844 jhi_service - ok
21:11:06.0912 4844 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
21:11:06.0912 4844 kbdclass - ok
21:11:06.0928 4844 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
21:11:06.0928 4844 kbdhid - ok
21:11:06.0975 4844 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
21:11:06.0975 4844 KeyIso - ok
21:11:07.0021 4844 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
21:11:07.0021 4844 KSecDD - ok
21:11:07.0037 4844 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
21:11:07.0037 4844 KSecPkg - ok
21:11:07.0115 4844 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
21:11:07.0115 4844 ksthunk - ok
21:11:07.0193 4844 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
21:11:07.0193 4844 KtmRm - ok
21:11:07.0240 4844 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
21:11:07.0255 4844 LanmanServer - ok
21:11:07.0271 4844 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:11:07.0271 4844 LanmanWorkstation - ok
21:11:07.0302 4844 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
21:11:07.0302 4844 lltdio - ok
21:11:07.0333 4844 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
21:11:07.0349 4844 lltdsvc - ok
21:11:07.0365 4844 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
21:11:07.0365 4844 lmhosts - ok
21:11:07.0427 4844 [ F4A17DCAB576267C85663E64F3ACE5A4 ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
21:11:07.0427 4844 LMS - ok
21:11:07.0474 4844 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
21:11:07.0474 4844 LSI_FC - ok
21:11:07.0474 4844 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
21:11:07.0474 4844 LSI_SAS - ok
21:11:07.0489 4844 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
21:11:07.0489 4844 LSI_SAS2 - ok
21:11:07.0505 4844 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
21:11:07.0505 4844 LSI_SCSI - ok
21:11:07.0536 4844 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
21:11:07.0536 4844 luafv - ok
21:11:07.0583 4844 [ DC8490812A3B72811AE534F423B4C206 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
21:11:07.0583 4844 MBAMProtector - ok
21:11:07.0630 4844 [ 43683E970F008C93C9429EF428147A54 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
21:11:07.0645 4844 MBAMService - ok
21:11:07.0661 4844 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
21:11:07.0661 4844 Mcx2Svc - ok
21:11:07.0692 4844 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
21:11:07.0692 4844 megasas - ok
21:11:07.0708 4844 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
21:11:07.0708 4844 MegaSR - ok
21:11:07.0739 4844 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
21:11:07.0739 4844 MEIx64 - ok
21:11:07.0770 4844 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
21:11:07.0770 4844 MMCSS - ok
21:11:07.0786 4844 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
21:11:07.0786 4844 Modem - ok
21:11:07.0817 4844 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
21:11:07.0817 4844 monitor - ok
21:11:07.0848 4844 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
21:11:07.0848 4844 mouclass - ok
21:11:07.0879 4844 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\drivers\mouhid.sys
21:11:07.0879 4844 mouhid - ok
21:11:07.0879 4844 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
21:11:07.0895 4844 mountmgr - ok
21:11:07.0911 4844 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
21:11:07.0911 4844 mpio - ok
21:11:07.0926 4844 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
21:11:07.0926 4844 mpsdrv - ok
21:11:07.0989 4844 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
21:11:07.0989 4844 MpsSvc - ok
21:11:08.0020 4844 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
21:11:08.0020 4844 MRxDAV - ok
21:11:08.0035 4844 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
21:11:08.0035 4844 mrxsmb - ok
21:11:08.0051 4844 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:11:08.0051 4844 mrxsmb10 - ok
21:11:08.0067 4844 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:11:08.0082 4844 mrxsmb20 - ok
21:11:08.0082 4844 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
21:11:08.0082 4844 msahci - ok
21:11:08.0098 4844 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
21:11:08.0098 4844 msdsm - ok
21:11:08.0113 4844 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
21:11:08.0113 4844 MSDTC - ok
21:11:08.0129 4844 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
21:11:08.0129 4844 Msfs - ok
21:11:08.0160 4844 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
21:11:08.0160 4844 mshidkmdf - ok
21:11:08.0160 4844 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
21:11:08.0160 4844 msisadrv - ok
21:11:08.0191 4844 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
21:11:08.0191 4844 MSiSCSI - ok
21:11:08.0191 4844 msiserver - ok
21:11:08.0223 4844 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
21:11:08.0223 4844 MSKSSRV - ok
21:11:08.0238 4844 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
21:11:08.0238 4844 MSPCLOCK - ok
21:11:08.0238 4844 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
21:11:08.0238 4844 MSPQM - ok
21:11:08.0269 4844 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
21:11:08.0269 4844 MsRPC - ok
21:11:08.0285 4844 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
21:11:08.0285 4844 mssmbios - ok
21:11:08.0316 4844 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
21:11:08.0316 4844 MSTEE - ok
21:11:08.0332 4844 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
21:11:08.0332 4844 MTConfig - ok
21:11:08.0363 4844 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
21:11:08.0363 4844 Mup - ok
21:11:08.0394 4844 [ 4BBB9D9C4DF259FAE2D172C5BB25DDD0 ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
21:11:08.0394 4844 MyWiFiDHCPDNS - ok
21:11:08.0425 4844 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
21:11:08.0425 4844 napagent - ok
21:11:08.0472 4844 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
21:11:08.0472 4844 NativeWifiP - ok
21:11:08.0550 4844 [ 8043D41F881D6ACE40B854AD6E32217F ] NAVENG C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\VirusDefs\20120626.019\ENG64.SYS
21:11:08.0550 4844 NAVENG - ok
21:11:08.0597 4844 [ 9A9AB2FC45D701DAED465D14980F1305 ] NAVEX15 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\VirusDefs\20120626.019\EX64.SYS
21:11:08.0628 4844 NAVEX15 - ok
21:11:08.0659 4844 [ C38B8AE57F78915905064A9A24DC1586 ] NDIS C:\Windows\system32\drivers\ndis.sys
21:11:08.0675 4844 NDIS - ok
21:11:08.0706 4844 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
21:11:08.0706 4844 NdisCap - ok
21:11:08.0737 4844 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
21:11:08.0737 4844 NdisTapi - ok
21:11:08.0753 4844 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
21:11:08.0753 4844 Ndisuio - ok
21:11:08.0784 4844 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
21:11:08.0784 4844 NdisWan - ok
21:11:08.0800 4844 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
21:11:08.0800 4844 NDProxy - ok
21:11:08.0800 4844 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
21:11:08.0800 4844 NetBIOS - ok
21:11:08.0815 4844 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
21:11:08.0815 4844 NetBT - ok
21:11:08.0831 4844 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
21:11:08.0831 4844 Netlogon - ok
21:11:08.0893 4844 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
21:11:08.0893 4844 Netman - ok
21:11:08.0940 4844 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:11:08.0971 4844 NetMsmqActivator - ok
21:11:08.0971 4844 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:11:08.0971 4844 NetPipeActivator - ok
21:11:09.0003 4844 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
21:11:09.0003 4844 netprofm - ok
21:11:09.0018 4844 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:11:09.0018 4844 NetTcpActivator - ok
21:11:09.0034 4844 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:11:09.0034 4844 NetTcpPortSharing - ok
21:11:09.0190 4844 [ AC69618DE5BCCE8747C9AB0AAE1003C1 ] NETwNs64 C:\Windows\system32\DRIVERS\NETwNs64.sys
21:11:09.0346 4844 NETwNs64 - ok
21:11:09.0408 4844 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
21:11:09.0408 4844 nfrd960 - ok
21:11:09.0486 4844 [ EFBFE525E03C7444187262C85D776532 ] NIS C:\Program Files (x86)\Norton Internet Security\Engine\19.0.0.128\ccSvcHst.exe
21:11:09.0502 4844 NIS - ok
21:11:09.0533 4844 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
21:11:09.0549 4844 NlaSvc - ok
21:11:09.0595 4844 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
21:11:09.0595 4844 Npfs - ok
21:11:09.0627 4844 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
21:11:09.0627 4844 nsi - ok
21:11:09.0642 4844 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
21:11:09.0642 4844 nsiproxy - ok
21:11:09.0689 4844 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
21:11:09.0705 4844 Ntfs - ok
21:11:09.0736 4844 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
21:11:09.0736 4844 Null - ok
21:11:09.0767 4844 [ 01266516E6E88D183A2B58722EEB4443 ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys
21:11:09.0767 4844 nusb3hub - ok
21:11:09.0783 4844 [ 5EC04F55CC5F165F21752712437DF638 ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys
21:11:09.0783 4844 nusb3xhc - ok
21:11:10.0001 4844 [ DD81FBC57AB9134CDDC5CE90880BFD80 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:11:10.0188 4844 nvlddmkm - ok
21:11:10.0219 4844 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
21:11:10.0219 4844 nvraid - ok
21:11:10.0235 4844 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
21:11:10.0235 4844 nvstor - ok
21:11:10.0282 4844 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
21:11:10.0282 4844 nv_agp - ok
21:11:10.0297 4844 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
21:11:10.0297 4844 ohci1394 - ok
21:11:10.0329 4844 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:11:10.0329 4844 ose - ok
21:11:10.0453 4844 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
21:11:10.0531 4844 osppsvc - ok
21:11:10.0594 4844 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
21:11:10.0594 4844 p2pimsvc - ok
21:11:10.0625 4844 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
21:11:10.0625 4844 p2psvc - ok
21:11:10.0641 4844 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
21:11:10.0641 4844 Parport - ok
21:11:10.0672 4844 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
21:11:10.0672 4844 partmgr - ok
21:11:10.0703 4844 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
21:11:10.0703 4844 PcaSvc - ok
21:11:10.0734 4844 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
21:11:10.0734 4844 pci - ok
21:11:10.0750 4844 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
21:11:10.0750 4844 pciide - ok
21:11:10.0765 4844 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
21:11:10.0765 4844 pcmcia - ok
21:11:10.0781 4844 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
21:11:10.0781 4844 pcw - ok
21:11:10.0812 4844 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
21:11:10.0812 4844 PEAUTH - ok
21:11:10.0875 4844 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
21:11:10.0906 4844 PerfHost - ok
21:11:10.0953 4844 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
21:11:10.0968 4844 pla - ok
21:11:10.0999 4844 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
21:11:11.0015 4844 PlugPlay - ok
21:11:11.0109 4844 [ AE6C778717DE2F6B0C0B5335036D3363 ] PMBDeviceInfoProvider c:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
21:11:11.0140 4844 PMBDeviceInfoProvider - ok
21:11:11.0202 4844 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
21:11:11.0202 4844 PNRPAutoReg - ok
21:11:11.0218 4844 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
21:11:11.0218 4844 PNRPsvc - ok
21:11:11.0249 4844 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
21:11:11.0265 4844 PolicyAgent - ok
21:11:11.0280 4844 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
21:11:11.0280 4844 Power - ok
21:11:11.0311 4844 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
21:11:11.0311 4844 PptpMiniport - ok
21:11:11.0327 4844 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
21:11:11.0327 4844 Processor - ok
21:11:11.0358 4844 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
21:11:11.0374 4844 ProfSvc - ok
21:11:11.0374 4844 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
21:11:11.0389 4844 ProtectedStorage - ok
21:11:11.0405 4844 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
21:11:11.0405 4844 Psched - ok
21:11:11.0467 4844 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
21:11:11.0483 4844 ql2300 - ok
21:11:11.0499 4844 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
21:11:11.0499 4844 ql40xx - ok
21:11:11.0530 4844 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
21:11:11.0530 4844 QWAVE - ok
21:11:11.0561 4844 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
21:11:11.0561 4844 QWAVEdrv - ok
21:11:11.0577 4844 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
21:11:11.0577 4844 RasAcd - ok
21:11:11.0639 4844 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
21:11:11.0639 4844 RasAgileVpn - ok
21:11:11.0655 4844 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
21:11:11.0655 4844 RasAuto - ok
21:11:11.0670 4844 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
21:11:11.0670 4844 Rasl2tp - ok
21:11:11.0701 4844 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
21:11:11.0701 4844 RasMan - ok
21:11:11.0717 4844 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
21:11:11.0717 4844 RasPppoe - ok
21:11:11.0733 4844 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
21:11:11.0733 4844 RasSstp - ok
21:11:11.0764 4844 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
21:11:11.0764 4844 rdbss - ok
21:11:11.0795 4844 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
21:11:11.0795 4844 rdpbus - ok
21:11:11.0811 4844 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
21:11:11.0811 4844 RDPCDD - ok
21:11:11.0826 4844 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
21:11:11.0826 4844 RDPENCDD - ok
21:11:11.0842 4844 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
21:11:11.0842 4844 RDPREFMP - ok
21:11:11.0873 4844 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
21:11:11.0889 4844 RDPWD - ok
21:11:11.0920 4844 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
21:11:11.0920 4844 rdyboost - ok
21:11:11.0967 4844 [ A436F5E7D80BBDBB0826D0F176D5BEA8 ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
21:11:11.0982 4844 RegSrvc - ok
21:11:11.0998 4844 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
21:11:11.0998 4844 RemoteAccess - ok
21:11:12.0029 4844 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
21:11:12.0029 4844 RemoteRegistry - ok
21:11:12.0060 4844 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
21:11:12.0060 4844 RFCOMM - ok
21:11:12.0076 4844 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
21:11:12.0076 4844 RpcEptMapper - ok
21:11:12.0091 4844 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
21:11:12.0091 4844 RpcLocator - ok
21:11:12.0123 4844 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
21:11:12.0138 4844 RpcSs - ok
21:11:12.0169 4844 [ F8FEA7764348C59262B340916CBFEB40 ] RSPCIESTOR C:\Windows\system32\DRIVERS\RtsPStor.sys
21:11:12.0169 4844 RSPCIESTOR - ok
21:11:12.0201 4844 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
21:11:12.0201 4844 rspndr - ok
21:11:12.0232 4844 [ EA5532868BA76923D75BCB2A1448D810 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
21:11:12.0232 4844 RTL8167 - ok
21:11:12.0263 4844 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
21:11:12.0263 4844 SamSs - ok
21:11:12.0279 4844 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
21:11:12.0279 4844 sbp2port - ok
21:11:12.0310 4844 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
21:11:12.0310 4844 SCardSvr - ok
21:11:12.0341 4844 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
21:11:12.0341 4844 scfilter - ok
21:11:12.0372 4844 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
21:11:12.0372 4844 Schedule - ok
21:11:12.0403 4844 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
21:11:12.0403 4844 SCPolicySvc - ok
21:11:12.0435 4844 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
21:11:12.0435 4844 sdbus - ok
21:11:12.0466 4844 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
21:11:12.0466 4844 SDRSVC - ok
21:11:12.0497 4844 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
21:11:12.0497 4844 secdrv - ok
21:11:12.0513 4844 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
21:11:12.0513 4844 seclogon - ok
21:11:12.0528 4844 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
21:11:12.0528 4844 SENS - ok
21:11:12.0559 4844 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
21:11:12.0559 4844 SensrSvc - ok
21:11:12.0606 4844 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
21:11:12.0606 4844 Serenum - ok
21:11:12.0637 4844 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
21:11:12.0637 4844 Serial - ok
21:11:12.0637 4844 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
21:11:12.0637 4844 sermouse - ok
21:11:12.0684 4844 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
21:11:12.0684 4844 SessionEnv - ok
21:11:12.0700 4844 [ 286D3889E6AB5589646FF8A63CB928AE ] SFEP C:\Windows\system32\DRIVERS\SFEP.sys
21:11:12.0700 4844 SFEP - ok
21:11:12.0700 4844 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
21:11:12.0700 4844 sffdisk - ok
21:11:12.0715 4844 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
21:11:12.0715 4844 sffp_mmc - ok
21:11:12.0731 4844 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
21:11:12.0731 4844 sffp_sd - ok
21:11:12.0747 4844 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
21:11:12.0747 4844 sfloppy - ok
21:11:12.0793 4844 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
21:11:12.0809 4844 Sftfs - ok
21:11:12.0887 4844 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
21:11:12.0887 4844 sftlist - ok
21:11:12.0903 4844 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
21:11:12.0903 4844 Sftplay - ok
21:11:12.0918 4844 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
21:11:12.0918 4844 Sftredir - ok
21:11:12.0934 4844 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
21:11:12.0934 4844 Sftvol - ok
21:11:12.0965 4844 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
21:11:12.0965 4844 sftvsa - ok
21:11:13.0027 4844 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
21:11:13.0027 4844 SharedAccess - ok
21:11:13.0059 4844 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:11:13.0059 4844 ShellHWDetection - ok
21:11:13.0074 4844 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
21:11:13.0074 4844 SiSRaid2 - ok
21:11:13.0105 4844 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
21:11:13.0105 4844 SiSRaid4 - ok
21:11:13.0308 4844 [ 0F97E7A47A52F4A36969F0FC319654C2 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
21:11:13.0339 4844 Skype C2C Service - ok
21:11:13.0386 4844 [ C70AEBD3608ED9FCEA2A1BAE83567FFC ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
21:11:13.0386 4844 SkypeUpdate - ok
21:11:13.0417 4844 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
21:11:13.0417 4844 Smb - ok
21:11:13.0449 4844 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
21:11:13.0464 4844 SNMPTRAP - ok
21:11:13.0558 4844 [ DDF2EC98AF6FC70608A4F9CE4DB52758 ] SOHCImp C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
21:11:13.0558 4844 SOHCImp - ok
21:11:13.0573 4844 [ 5FA03F5EA6EFEF6D17B4A1A48C40A23C ] SOHDs C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
21:11:13.0573 4844 SOHDs - ok
21:11:13.0667 4844 [ 65E5659E9C2A0762D05657C0E22A7CA2 ] SpfService C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe
21:11:13.0667 4844 SpfService - ok
21:11:13.0683 4844 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
21:11:13.0698 4844 spldr - ok
21:11:13.0714 4844 [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler C:\Windows\System32\spoolsv.exe
21:11:13.0714 4844 Spooler - ok
21:11:13.0776 4844 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
21:11:13.0854 4844 sppsvc - ok
21:11:13.0870 4844 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
21:11:13.0870 4844 sppuinotify - ok
21:11:13.0932 4844 [ DF26FA7825F9CD39FCEB3F2F27E813A7 ] SRTSP C:\Windows\system32\drivers\NISx64\1300000.080\SRTSP64.SYS
21:11:13.0932 4844 SRTSP - ok
21:11:13.0948 4844 [ A8ADE1E0092B8097DDB76C9A6DC5F193 ] SRTSPX C:\Windows\system32\drivers\NISx64\1300000.080\SRTSPX64.SYS
21:11:13.0963 4844 SRTSPX - ok
21:11:13.0995 4844 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
21:11:13.0995 4844 srv - ok
21:11:14.0010 4844 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
21:11:14.0010 4844 srv2 - ok
21:11:14.0010 4844 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
21:11:14.0026 4844 srvnet - ok
21:11:14.0073 4844 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
21:11:14.0073 4844 SSDPSRV - ok
21:11:14.0088 4844 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
21:11:14.0088 4844 SstpSvc - ok
21:11:14.0104 4844 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
21:11:14.0104 4844 stexstor - ok
21:11:14.0151 4844 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
21:11:14.0166 4844 stisvc - ok
21:11:14.0166 4844 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
21:11:14.0166 4844 swenum - ok
21:11:14.0197 4844 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
21:11:14.0197 4844 swprv - ok
21:11:14.0213 4844 [ 8B2430762099598DA40686F754632EFD ] SymDS C:\Windows\system32\drivers\NISx64\1300000.080\SYMDS64.SYS
21:11:14.0213 4844 SymDS - ok
21:11:14.0275 4844 [ F016D755AADD6A16555809D4B289497E ] SymEFA C:\Windows\system32\drivers\NISx64\1300000.080\SYMEFA64.SYS
21:11:14.0291 4844 SymEFA - ok
21:11:14.0307 4844 [ 36B77F5C9E21F88A8C8EC67AD5415819 ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
21:11:14.0307 4844 SymEvent - ok
21:11:14.0322 4844 [ 321B635A0C0FF48047D37F6F078C5342 ] SymIRON C:\Windows\system32\drivers\NISx64\1300000.080\Ironx64.SYS
21:11:14.0322 4844 SymIRON - ok
21:11:14.0338 4844 [ 5EA027A364116963E37A281B1949FFD5 ] SymNetS C:\Windows\system32\drivers\NISx64\1300000.080\SYMNETS.SYS
21:11:14.0338 4844 SymNetS - ok
21:11:14.0385 4844 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
21:11:14.0416 4844 SysMain - ok
21:11:14.0431 4844 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:11:14.0431 4844 TabletInputService - ok
21:11:14.0463 4844 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
21:11:14.0463 4844 TapiSrv - ok
21:11:14.0478 4844 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
21:11:14.0478 4844 TBS - ok
21:11:14.0541 4844 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
21:11:14.0541 4844 Tcpip - ok
21:11:14.0603 4844 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
21:11:14.0619 4844 TCPIP6 - ok
21:11:14.0634 4844 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
21:11:14.0634 4844 tcpipreg - ok
21:11:14.0650 4844 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
21:11:14.0650 4844 TDPIPE - ok
21:11:14.0697 4844 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
21:11:14.0697 4844 TDTCP - ok
21:11:14.0728 4844 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
21:11:14.0728 4844 tdx - ok
21:11:14.0743 4844 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
21:11:14.0743 4844 TermDD - ok
21:11:14.0775 4844 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
21:11:14.0775 4844 TermService - ok
21:11:14.0790 4844 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
21:11:14.0790 4844 Themes - ok
21:11:14.0806 4844 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
21:11:14.0806 4844 THREADORDER - ok
21:11:14.0837 4844 [ DBCC20C02E8A3E43B03C304A4E40A84F ] TPM C:\Windows\system32\drivers\tpm.sys
21:11:14.0837 4844 TPM - ok
21:11:14.0853 4844 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
21:11:14.0868 4844 TrkWks - ok
21:11:14.0899 4844 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:11:14.0899 4844 TrustedInstaller - ok
21:11:14.0915 4844 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
21:11:14.0915 4844 tssecsrv - ok
21:11:14.0931 4844 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
21:11:14.0946 4844 TsUsbFlt - ok
21:11:14.0962 4844 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
21:11:14.0962 4844 TsUsbGD - ok
21:11:14.0977 4844 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
21:11:14.0977 4844 tunnel - ok
21:11:14.0993 4844 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
21:11:14.0993 4844 uagp35 - ok
21:11:15.0040 4844 [ 1FE69F3C1CA1CF4B7EC7E2E9090FFFDC ] uCamMonitor c:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
21:11:15.0040 4844 uCamMonitor - ok
21:11:15.0055 4844 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
21:11:15.0055 4844 udfs - ok
21:11:15.0087 4844 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
21:11:15.0087 4844 UI0Detect - ok
21:11:15.0118 4844 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
21:11:15.0118 4844 uliagpkx - ok
21:11:15.0165 4844 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
21:11:15.0165 4844 umbus - ok
21:11:15.0211 4844 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
21:11:15.0211 4844 UmPass - ok
21:11:15.0321 4844 [ DB641944F7E4B14C13C3FEFC89843F69 ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
21:11:15.0352 4844 UNS - ok
21:11:15.0383 4844 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
21:11:15.0383 4844 upnphost - ok
21:11:15.0430 4844 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
21:11:15.0430 4844 USBAAPL64 - ok
21:11:15.0461 4844 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
21:11:15.0461 4844 usbccgp - ok
21:11:15.0492 4844 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
21:11:15.0492 4844 usbcir - ok
21:11:15.0492 4844 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
21:11:15.0492 4844 usbehci - ok
21:11:15.0539 4844 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
21:11:15.0555 4844 usbhub - ok
21:11:15.0555 4844 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
21:11:15.0555 4844 usbohci - ok
21:11:15.0570 4844 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\drivers\usbprint.sys
21:11:15.0570 4844 usbprint - ok
21:11:15.0601 4844 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:11:15.0601 4844 USBSTOR - ok
21:11:15.0633 4844 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
21:11:15.0633 4844 usbuhci - ok
21:11:15.0664 4844 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
21:11:15.0679 4844 usbvideo - ok
21:11:15.0711 4844 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
21:11:15.0711 4844 UxSms - ok
21:11:15.0742 4844 [ 203FD19D70549A2939E1AE3A36608151 ] VAIO Event Service C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
21:11:15.0742 4844 VAIO Event Service - ok
21:11:15.0835 4844 [ 63DD41D4C6F5FD59BEB08C88292CA76A ] VAIO Power Management C:\Program Files\Sony\VAIO Power Management\SPMService.exe
21:11:15.0835 4844 VAIO Power Management - ok
21:11:15.0851 4844 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
21:11:15.0851 4844 VaultSvc - ok
21:11:15.0913 4844 [ C642C93A30DCF1514F2C0502F864EE81 ] VCFw C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
21:11:15.0913 4844 VCFw - ok
21:11:15.0945 4844 [ F9D722A62C881B59439F9FC27BC7E285 ] VcmIAlzMgr C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
21:11:15.0960 4844 VcmIAlzMgr - ok
21:11:16.0007 4844 [ 2F06D134554BA84FE253DBC481DCFE6D ] VcmINSMgr C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe
21:11:16.0007 4844 VcmINSMgr - ok
21:11:16.0038 4844 [ 9BC1F203C5604C24F345BCFCD6956BAE ] VcmXmlIfHelper C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe
21:11:16.0038 4844 VcmXmlIfHelper - ok
21:11:16.0116 4844 [ B26DAB275900E604F247F5A8B72CFFE1 ] VCService C:\Program Files\Sony\VAIO Care\VCService.exe
21:11:16.0116 4844 VCService - ok
21:11:16.0132 4844 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
21:11:16.0132 4844 vdrvroot - ok
21:11:16.0179 4844 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
21:11:16.0179 4844 vds - ok
21:11:16.0210 4844 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
21:11:16.0210 4844 vga - ok
21:11:16.0225 4844 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
21:11:16.0225 4844 VgaSave - ok
21:11:16.0241 4844 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
21:11:16.0241 4844 vhdmp - ok
21:11:16.0257 4844 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
21:11:16.0257 4844 viaide - ok
21:11:16.0303 4844 [ F211E659AAF2D82E4DBD6EA4A8178829 ] VIPAppService C:\Program Files (x86)\Symantec\VIP Access Client\VIPAppService.exe
21:11:16.0303 4844 VIPAppService - ok
21:11:16.0335 4844 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
21:11:16.0335 4844 volmgr - ok
21:11:16.0350 4844 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
21:11:16.0350 4844 volmgrx - ok
21:11:16.0366 4844 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
21:11:16.0366 4844 volsnap - ok
21:11:16.0397 4844 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
21:11:16.0397 4844 vsmraid - ok
21:11:16.0475 4844 [ 6B427EF11B77646E7E3EEFB2C4870191 ] VSNService C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
21:11:16.0475 4844 VSNService - ok
21:11:16.0537 4844 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
21:11:16.0553 4844 VSS - ok
21:11:16.0615 4844 [ 5498369D830F2D22104AF518E50D8AAF ] VUAgent C:\Program Files\Sony\VAIO Update Common\VUAgent.exe
21:11:16.0631 4844 VUAgent - ok
21:11:16.0647 4844 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
21:11:16.0647 4844 vwifibus - ok
21:11:16.0662 4844 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
21:11:16.0662 4844 vwififlt - ok
21:11:16.0678 4844 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
21:11:16.0693 4844 vwifimp - ok
21:11:16.0740 4844 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
21:11:16.0740 4844 W32Time - ok
21:11:16.0771 4844 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
21:11:16.0771 4844 WacomPen - ok
21:11:16.0803 4844 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
21:11:16.0803 4844 WANARP - ok
21:11:16.0803 4844 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
21:11:16.0803 4844 Wanarpv6 - ok
21:11:16.0881 4844 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
21:11:16.0896 4844 WatAdminSvc - ok
21:11:16.0927 4844 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
21:11:16.0943 4844 wbengine - ok
21:11:16.0959 4844 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
21:11:16.0959 4844 WbioSrvc - ok
21:11:16.0990 4844 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
21:11:16.0990 4844 wcncsvc - ok
21:11:17.0005 4844 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:11:17.0005 4844 WcsPlugInService - ok
21:11:17.0021 4844 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
21:11:17.0021 4844 Wd - ok
21:11:17.0052 4844 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
21:11:17.0052 4844 Wdf01000 - ok
21:11:17.0083 4844 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
21:11:17.0083 4844 WdiServiceHost - ok
21:11:17.0083 4844 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
21:11:17.0083 4844 WdiSystemHost - ok
21:11:17.0099 4844 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
21:11:17.0099 4844 WebClient - ok
21:11:17.0130 4844 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
21:11:17.0130 4844 Wecsvc - ok
21:11:17.0193 4844 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
21:11:17.0193 4844 wercplsupport - ok
21:11:17.0224 4844 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
21:11:17.0224 4844 WerSvc - ok
21:11:17.0239 4844 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
21:11:17.0239 4844 WfpLwf - ok
21:11:17.0271 4844 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
21:11:17.0271 4844 WIMMount - ok
21:11:17.0302 4844 WinDefend - ok
21:11:17.0302 4844 WinHttpAutoProxySvc - ok
21:11:17.0349 4844 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
21:11:17.0349 4844 Winmgmt - ok
21:11:17.0411 4844 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
21:11:17.0442 4844 WinRM - ok
21:11:17.0505 4844 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
21:11:17.0505 4844 WinUsb - ok
21:11:17.0536 4844 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
21:11:17.0551 4844 Wlansvc - ok
21:11:17.0598 4844 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
21:11:17.0598 4844 wlcrasvc - ok
21:11:17.0692 4844 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:11:17.0723 4844 wlidsvc - ok
21:11:17.0770 4844 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
21:11:17.0770 4844 WmiAcpi - ok
21:11:17.0785 4844 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
21:11:17.0801 4844 wmiApSrv - ok
21:11:17.0817 4844 WMPNetworkSvc - ok
21:11:17.0832 4844 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
21:11:17.0832 4844 WPCSvc - ok
21:11:17.0848 4844 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
21:11:17.0848 4844 WPDBusEnum - ok
21:11:17.0879 4844 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
21:11:17.0879 4844 ws2ifsl - ok
21:11:17.0926 4844 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
21:11:17.0926 4844 wscsvc - ok
21:11:17.0926 4844 WSearch - ok
21:11:18.0019 4844 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
21:11:18.0035 4844 wuauserv - ok
21:11:18.0051 4844 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
21:11:18.0051 4844 WudfPf - ok
21:11:18.0082 4844 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
21:11:18.0082 4844 WUDFRd - ok
21:11:18.0113 4844 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
21:11:18.0113 4844 wudfsvc - ok
21:11:18.0129 4844 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
21:11:18.0129 4844 WwanSvc - ok
21:11:18.0175 4844 X6va008 - ok
21:11:18.0191 4844 X6va009 - ok
21:11:18.0207 4844 ================ Scan global ===============================
21:11:18.0222 4844 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
21:11:18.0253 4844 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
21:11:18.0253 4844 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
21:11:18.0300 4844 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
21:11:18.0316 4844 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
21:11:18.0316 4844 [Global] - ok
21:11:18.0316 4844 ================ Scan MBR ==================================
21:11:18.0331 4844 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
21:11:18.0331 4844 Suspicious mbr (Forged): \Device\Harddisk0\DR0
21:11:18.0425 4844 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - infected
21:11:18.0425 4844 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.c (0)
21:11:18.0425 4844 ================ Scan VBR ==================================
21:11:18.0425 4844 [ 16DF17AFA6FA1751B352A516C034F7E3 ] \Device\Harddisk0\DR0\Partition1
21:11:18.0425 4844 \Device\Harddisk0\DR0\Partition1 - ok
21:11:18.0441 4844 [ 760584B9473D977A36BE0CB3AD4E6294 ] \Device\Harddisk0\DR0\Partition2
21:11:18.0441 4844 \Device\Harddisk0\DR0\Partition2 - ok
21:11:18.0441 4844 ============================================================
21:11:18.0441 4844 Scan finished
21:11:18.0441 4844 ============================================================
21:11:18.0441 5032 Detected object count: 1
21:11:18.0441 5032 Actual detected object count: 1
21:14:24.0198 5032 \Device\Harddisk0\DR0\# - copied to quarantine
21:14:24.0198 5032 \Device\Harddisk0\DR0 - copied to quarantine
21:14:24.0292 5032 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
21:14:24.0292 5032 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
21:14:24.0292 5032 \Device\Harddisk0\DR0\TDLFS\sub.dll - copied to quarantine
21:14:24.0307 5032 \Device\Harddisk0\DR0\TDLFS\subx.dll - copied to quarantine
21:14:24.0323 5032 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
21:14:24.0323 5032 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
21:14:24.0338 5032 \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
21:14:24.0338 5032 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
21:14:24.0338 5032 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
21:14:24.0338 5032 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
21:14:24.0338 5032 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
21:14:24.0338 5032 \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
21:14:24.0338 5032 \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
21:14:24.0338 5032 \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
21:14:24.0416 5032 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - will be cured on reboot
21:14:24.0463 5032 \Device\Harddisk0\DR0 - ok
21:14:24.0588 5032 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - User select action: Cure
21:14:33.0199 3836 Deinitialize success

Back to top

#11 Broni

The Coolest BC Computer

BC Advisor
27,294 posts

Gender:Male
Location:Daly City, CA

Posted 31 August 2012 - 07:36 PM

Very well.

Re-run MBAM one more time.

My Website

My help doesn't cost a penny, but if you'd like to consider a donation, click

Back to top

#12 turtle0423

Member

Members
40 posts

Posted 01 September 2012 - 03:47 AM

Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org

Database version: v2012.08.29.02

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Christy Kang :: CHRISTY_KANG [administrator]

Protection: Enabled

9/1/2012 1:38:42 AM
mbam-log-2012-09-01 (01-38-42).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 200391
Time elapsed: 3 minute(s), 23 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

Back to top

#13 Broni

The Coolest BC Computer

BC Advisor
27,294 posts

Gender:Male
Location:Daly City, CA

Posted 01 September 2012 - 10:32 AM

Looks good

How is computer doing?

Download Temp File Cleaner (TFC)
Alternate download: http://www.itxassociates.com/OT-Tools/TFC.exe
Double click on TFC.exe to run the program.
Click on Start button to begin cleaning process.
TFC will close all running programs, and it may ask you to restart computer.

=============================================================================

Please run a free online scan with the ESET Online Scanner

Disable your antivirus program
Tick the box next to YES, I accept the Terms of Use
Click Start
Accept any security warnings from your browser.
Check Scan archives
Click Start
ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
When the scan completes, click on List of found threats
Click on Export to text file , and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
NOTE. If Eset doesn't find any threats it'll NOT produce any log.

My Website

My help doesn't cost a penny, but if you'd like to consider a donation, click

Back to top

#14 turtle0423

Member

Members
40 posts

Posted 04 September 2012 - 02:11 AM

The computer is a bit slow but other than that, it's been doing better. It hasn't been crashing into blue screen or going into the repair mode... This is the log that you asked for... Sorry it took so long... My computer has a hard time going onto websites sometimes.... This is from the ESET

C:\FRST\Quarantine\{44593c15-50b0-7a27-4585-9b77e3ace328}\U\80000000.@ Win64/Sirefef.AP trojan
C:\TDSSKiller_Quarantine\30.08.2012_21.10.48\mbr0000\tdlfs0000\tsk0000.dta Win32/Olmarik.AYI trojan
C:\TDSSKiller_Quarantine\30.08.2012_21.10.48\mbr0000\tdlfs0000\tsk0001.dta Win64/Olmarik.AK trojan
C:\TDSSKiller_Quarantine\30.08.2012_21.10.48\mbr0000\tdlfs0000\tsk0002.dta Win32/Olmarik.AYH trojan
C:\TDSSKiller_Quarantine\30.08.2012_21.10.48\mbr0000\tdlfs0000\tsk0003.dta Win64/Olmarik.AL trojan
C:\TDSSKiller_Quarantine\30.08.2012_21.10.48\mbr0000\tdlfs0000\tsk0004.dta a variant of Win32/Rootkit.Kryptik.NP trojan
C:\TDSSKiller_Quarantine\30.08.2012_21.10.48\mbr0000\tdlfs0000\tsk0005.dta Win64/Olmarik.AK trojan
C:\TDSSKiller_Quarantine\30.08.2012_21.10.48\mbr0000\tdlfs0000\tsk0009.dta Win32/Olmarik.AFK trojan
C:\TDSSKiller_Quarantine\30.08.2012_21.10.48\mbr0000\tdlfs0000\tsk0010.dta Win64/Olmarik.AK trojan

Back to top

#15 Broni

The Coolest BC Computer

BC Advisor
27,294 posts

Gender:Male
Location:Daly City, CA

Posted 04 September 2012 - 06:34 PM

We have one corrupted registry key affecting Windows updates.

Following steps involve registry editing. Please create new restore point before proceeding!!!
How to:
XP - http://support.microsoft.com/kb/948247
Vista and Seven - http://www.howtogeek.com/howto/windows-vista/create-a-restore-point-for-windows-vistas-system-restore/

Download Seven.zip file from here: http://www.smartestcomputing.us.com/files/download/9-registry-network-keys/
Unzip the file.
You'll find several files inside.
Double click on bits.reg file and confirm the prompt.
Restart computer.
Post new FSS log.

My Website

My help doesn't cost a penny, but if you'd like to consider a donation, click