Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Browser redirects - click.livesearch, click.searchwebresults, etc

Started by teemell , Oct 27 2012 09:48 PM

Please log in to reply

7 replies to this topic

#1 teemell

New Member

Members
4 posts

Posted 27 October 2012 - 09:48 PM

Hello

I am running Windows 7 and getting browser redirects using Chrome and IE.
They are typically redirects to click.livesearch.com and click.searchwebresults.com

I have tried running AVG and Malewarebytes to no avail.

Any help would be great! Thanks!

T

BC Ads
BleepingComputer.com

#2 narenxp

Forum Addict

BC Advisor
16,365 posts

Gender:Male
Location:India

Posted 28 October 2012 - 01:11 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 teemell

New Member

Members
4 posts

Posted 28 October 2012 - 05:18 PM

Thank you narenxp!

Here are the results for TDSSkiller and aswMBR. There was no option after the ESET scan to "LIST of found threats."
The scan results showed none detected and none removed.

TDSSkiller:

08:49:00.0263 4740 TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
08:49:00.0733 4740 ============================================================
08:49:00.0733 4740 Current date / time: 2012/10/28 08:49:00.0733
08:49:00.0733 4740 SystemInfo:
08:49:00.0733 4740
08:49:00.0738 4740 OS Version: 6.1.7601 ServicePack: 1.0
08:49:00.0738 4740 Product type: Workstation
08:49:00.0738 4740 ComputerName: MSLANSTER-HP
08:49:00.0738 4740 UserName: bear
08:49:00.0738 4740 Windows directory: C:\Windows
08:49:00.0738 4740 System windows directory: C:\Windows
08:49:00.0738 4740 Running under WOW64
08:49:00.0738 4740 Processor architecture: Intel x64
08:49:00.0738 4740 Number of processors: 4
08:49:00.0738 4740 Page size: 0x1000
08:49:00.0738 4740 Boot type: Normal boot
08:49:00.0738 4740 ============================================================
08:49:01.0688 4740 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
08:49:01.0698 4740 ============================================================
08:49:01.0698 4740 \Device\Harddisk0\DR0:
08:49:01.0698 4740 MBR partitions:
08:49:01.0698 4740 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
08:49:01.0698 4740 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x4761F000
08:49:01.0698 4740 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x47683000, BlocksNum 0x29E5000
08:49:01.0698 4740 \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x4A068000, BlocksNum 0x7EFAB0
08:49:01.0698 4740 ============================================================
08:49:01.0723 4740 C: <-> \Device\Harddisk0\DR0\Partition2
08:49:01.0768 4740 D: <-> \Device\Harddisk0\DR0\Partition3
08:49:01.0778 4740 E: <-> \Device\Harddisk0\DR0\Partition4
08:49:01.0778 4740 ============================================================
08:49:01.0778 4740 Initialize success
08:49:01.0778 4740 ============================================================
08:49:28.0956 10176 ============================================================
08:49:28.0956 10176 Scan started
08:49:28.0956 10176 Mode: Manual; TDLFS;
08:49:28.0956 10176 ============================================================
08:49:29.0441 10176 ================ Scan system memory ========================
08:49:29.0441 10176 System memory - ok
08:49:29.0441 10176 ================ Scan services =============================
08:49:29.0681 10176 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
08:49:29.0691 10176 1394ohci - ok
08:49:29.0731 10176 [ 5C368F4B04ED2A923E6AFCA2D37BAFF5 ] Accelerometer C:\Windows\system32\DRIVERS\Accelerometer.sys
08:49:29.0736 10176 Accelerometer - ok
08:49:29.0786 10176 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
08:49:29.0796 10176 ACPI - ok
08:49:29.0861 10176 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
08:49:29.0861 10176 AcpiPmi - ok
08:49:30.0016 10176 [ 1474F121C3DF1232D3E7239C03691EE6 ] AdobeActiveFileMonitor9.0 C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
08:49:30.0021 10176 AdobeActiveFileMonitor9.0 - ok
08:49:30.0111 10176 [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
08:49:30.0116 10176 AdobeARMservice - ok
08:49:30.0241 10176 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
08:49:30.0246 10176 AdobeFlashPlayerUpdateSvc - ok
08:49:30.0296 10176 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
08:49:30.0311 10176 adp94xx - ok
08:49:30.0341 10176 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
08:49:30.0351 10176 adpahci - ok
08:49:30.0381 10176 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
08:49:30.0386 10176 adpu320 - ok
08:49:30.0421 10176 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
08:49:30.0426 10176 AeLookupSvc - ok
08:49:30.0501 10176 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Program Files\IDT\WDM\AESTSr64.exe
08:49:30.0501 10176 AESTFilters - ok
08:49:30.0561 10176 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
08:49:30.0571 10176 AFD - ok
08:49:30.0611 10176 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
08:49:30.0611 10176 agp440 - ok
08:49:30.0656 10176 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
08:49:30.0661 10176 ALG - ok
08:49:30.0701 10176 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
08:49:30.0706 10176 aliide - ok
08:49:30.0716 10176 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
08:49:30.0721 10176 amdide - ok
08:49:30.0761 10176 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
08:49:30.0766 10176 AmdK8 - ok
08:49:30.0786 10176 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
08:49:30.0786 10176 AmdPPM - ok
08:49:30.0836 10176 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
08:49:30.0841 10176 amdsata - ok
08:49:30.0886 10176 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
08:49:30.0891 10176 amdsbs - ok
08:49:30.0921 10176 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
08:49:30.0926 10176 amdxata - ok
08:49:30.0986 10176 [ 5F87E363F83E8A6F5606991C256F703A ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
08:49:30.0996 10176 ApfiltrService - ok
08:49:31.0057 10176 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
08:49:31.0062 10176 AppID - ok
08:49:31.0137 10176 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
08:49:31.0137 10176 AppIDSvc - ok
08:49:31.0162 10176 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
08:49:31.0167 10176 Appinfo - ok
08:49:31.0232 10176 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
08:49:31.0237 10176 Apple Mobile Device - ok
08:49:31.0267 10176 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
08:49:31.0272 10176 arc - ok
08:49:31.0307 10176 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
08:49:31.0312 10176 arcsas - ok
08:49:31.0337 10176 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
08:49:31.0342 10176 AsyncMac - ok
08:49:31.0362 10176 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
08:49:31.0362 10176 atapi - ok
08:49:31.0407 10176 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
08:49:31.0422 10176 AudioEndpointBuilder - ok
08:49:31.0447 10176 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
08:49:31.0457 10176 AudioSrv - ok
08:49:31.0657 10176 [ F6A528DE535396C2FB1A4E3C6F00CEC4 ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe
08:49:31.0792 10176 AVGIDSAgent - ok
08:49:31.0847 10176 [ 1B2E9FCDC26DC7C81D4131430E2DC936 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdrivera.sys
08:49:31.0852 10176 AVGIDSDriver - ok
08:49:31.0887 10176 [ 0F293406F64B48D5D2F0D3A1117F3A83 ] AVGIDSFilter C:\Windows\system32\DRIVERS\avgidsfiltera.sys
08:49:31.0892 10176 AVGIDSFilter - ok
08:49:31.0927 10176 [ CFFC3A4A638F462E0561CB368B9A7A3A ] AVGIDSHA C:\Windows\system32\DRIVERS\avgidsha.sys
08:49:31.0932 10176 AVGIDSHA - ok
08:49:31.0967 10176 [ 221FEBAB02D6C97C95558348CC354A85 ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys
08:49:31.0977 10176 Avgldx64 - ok
08:49:32.0002 10176 [ A6AEC362AAE5E2DDA7445E7690CB0F33 ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys
08:49:32.0007 10176 Avgmfx64 - ok
08:49:32.0047 10176 [ 645C7F0A0E39758A0024A9B1748273C0 ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys
08:49:32.0052 10176 Avgrkx64 - ok
08:49:32.0077 10176 [ F8C3C7ED612A41B05C66358FC9786BFD ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys
08:49:32.0087 10176 Avgtdia - ok
08:49:32.0127 10176 [ EA1145DEBCD508FD25BD1E95C4346929 ] avgwd C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
08:49:32.0132 10176 avgwd - ok
08:49:32.0182 10176 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
08:49:32.0187 10176 AxInstSV - ok
08:49:32.0247 10176 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
08:49:32.0257 10176 b06bdrv - ok
08:49:32.0307 10176 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
08:49:32.0312 10176 b57nd60a - ok
08:49:32.0382 10176 [ 9E84A931DBEE0292E38ED672F6293A99 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
08:49:32.0412 10176 BCM43XX - ok
08:49:32.0447 10176 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
08:49:32.0452 10176 BDESVC - ok
08:49:32.0487 10176 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
08:49:32.0492 10176 Beep - ok
08:49:32.0547 10176 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
08:49:32.0562 10176 BFE - ok
08:49:32.0607 10176 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
08:49:32.0627 10176 BITS - ok
08:49:32.0662 10176 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
08:49:32.0667 10176 blbdrive - ok
08:49:32.0747 10176 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
08:49:32.0757 10176 Bonjour Service - ok
08:49:32.0797 10176 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
08:49:32.0797 10176 bowser - ok
08:49:32.0837 10176 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
08:49:32.0837 10176 BrFiltLo - ok
08:49:32.0857 10176 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
08:49:32.0857 10176 BrFiltUp - ok
08:49:32.0887 10176 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
08:49:32.0892 10176 Browser - ok
08:49:32.0932 10176 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
08:49:32.0937 10176 Brserid - ok
08:49:32.0962 10176 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
08:49:32.0967 10176 BrSerWdm - ok
08:49:32.0997 10176 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
08:49:32.0997 10176 BrUsbMdm - ok
08:49:33.0017 10176 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
08:49:33.0017 10176 BrUsbSer - ok
08:49:33.0057 10176 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
08:49:33.0057 10176 BTHMODEM - ok
08:49:33.0102 10176 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
08:49:33.0107 10176 bthserv - ok
08:49:33.0137 10176 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
08:49:33.0142 10176 cdfs - ok
08:49:33.0187 10176 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
08:49:33.0192 10176 cdrom - ok
08:49:33.0222 10176 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
08:49:33.0227 10176 CertPropSvc - ok
08:49:33.0247 10176 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
08:49:33.0252 10176 circlass - ok
08:49:33.0287 10176 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
08:49:33.0297 10176 CLFS - ok
08:49:33.0372 10176 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
08:49:33.0372 10176 clr_optimization_v2.0.50727_32 - ok
08:49:33.0427 10176 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
08:49:33.0432 10176 clr_optimization_v2.0.50727_64 - ok
08:49:33.0502 10176 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
08:49:33.0507 10176 clr_optimization_v4.0.30319_32 - ok
08:49:33.0542 10176 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
08:49:33.0547 10176 clr_optimization_v4.0.30319_64 - ok
08:49:33.0582 10176 [ 50F92C943F18B070F166D019DFAB3D9A ] clwvd C:\Windows\system32\DRIVERS\clwvd.sys
08:49:33.0587 10176 clwvd - ok
08:49:33.0622 10176 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
08:49:33.0627 10176 CmBatt - ok
08:49:33.0647 10176 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
08:49:33.0652 10176 cmdide - ok
08:49:33.0702 10176 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
08:49:33.0717 10176 CNG - ok
08:49:33.0762 10176 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
08:49:33.0762 10176 Compbatt - ok
08:49:33.0817 10176 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
08:49:33.0822 10176 CompositeBus - ok
08:49:33.0842 10176 COMSysApp - ok
08:49:33.0862 10176 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
08:49:33.0862 10176 crcdisk - ok
08:49:33.0937 10176 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
08:49:33.0942 10176 CryptSvc - ok
08:49:34.0032 10176 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
08:49:34.0062 10176 cvhsvc - ok
08:49:34.0122 10176 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
08:49:34.0137 10176 DcomLaunch - ok
08:49:34.0192 10176 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
08:49:34.0202 10176 defragsvc - ok
08:49:34.0227 10176 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
08:49:34.0227 10176 DfsC - ok
08:49:34.0257 10176 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
08:49:34.0267 10176 Dhcp - ok
08:49:34.0302 10176 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
08:49:34.0307 10176 discache - ok
08:49:34.0362 10176 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
08:49:34.0367 10176 Disk - ok
08:49:34.0402 10176 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
08:49:34.0407 10176 Dnscache - ok
08:49:34.0452 10176 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
08:49:34.0457 10176 dot3svc - ok
08:49:34.0507 10176 [ B42ED0320C6E41102FDE0005154849BB ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
08:49:34.0512 10176 Dot4 - ok
08:49:34.0562 10176 [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
08:49:34.0562 10176 Dot4Print - ok
08:49:34.0582 10176 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
08:49:34.0587 10176 dot4usb - ok
08:49:34.0617 10176 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
08:49:34.0622 10176 DPS - ok
08:49:34.0662 10176 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
08:49:34.0667 10176 drmkaud - ok
08:49:34.0712 10176 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
08:49:34.0732 10176 DXGKrnl - ok
08:49:34.0767 10176 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
08:49:34.0767 10176 EapHost - ok
08:49:34.0877 10176 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
08:49:34.0927 10176 ebdrv - ok
08:49:34.0977 10176 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
08:49:34.0977 10176 EFS - ok
08:49:35.0042 10176 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
08:49:35.0067 10176 ehRecvr - ok
08:49:35.0092 10176 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
08:49:35.0097 10176 ehSched - ok
08:49:35.0133 10176 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
08:49:35.0143 10176 elxstor - ok
08:49:35.0183 10176 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
08:49:35.0188 10176 ErrDev - ok
08:49:35.0238 10176 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
08:49:35.0248 10176 EventSystem - ok
08:49:35.0343 10176 [ 54FC81B0162478A72A93DBBEAFB35671 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
08:49:35.0373 10176 EvtEng - ok
08:49:35.0438 10176 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
08:49:35.0458 10176 exfat - ok
08:49:35.0488 10176 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
08:49:35.0513 10176 fastfat - ok
08:49:35.0588 10176 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
08:49:35.0608 10176 Fax - ok
08:49:35.0643 10176 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
08:49:35.0643 10176 fdc - ok
08:49:35.0668 10176 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
08:49:35.0673 10176 fdPHost - ok
08:49:35.0698 10176 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
08:49:35.0703 10176 FDResPub - ok
08:49:35.0728 10176 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
08:49:35.0733 10176 FileInfo - ok
08:49:35.0758 10176 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
08:49:35.0758 10176 Filetrace - ok
08:49:35.0793 10176 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
08:49:35.0793 10176 flpydisk - ok
08:49:35.0828 10176 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
08:49:35.0833 10176 FltMgr - ok
08:49:35.0893 10176 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
08:49:35.0918 10176 FontCache - ok
08:49:35.0973 10176 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
08:49:35.0978 10176 FontCache3.0.0.0 - ok
08:49:36.0058 10176 [ 6AA4E6B4EA50620AB622A048394C4AA2 ] FPLService C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe
08:49:36.0068 10176 FPLService - ok
08:49:36.0093 10176 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
08:49:36.0093 10176 FsDepends - ok
08:49:36.0123 10176 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
08:49:36.0128 10176 Fs_Rec - ok
08:49:36.0168 10176 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
08:49:36.0173 10176 fvevol - ok
08:49:36.0213 10176 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
08:49:36.0213 10176 gagp30kx - ok
08:49:36.0273 10176 [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
08:49:36.0278 10176 GamesAppService - ok
08:49:36.0303 10176 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
08:49:36.0308 10176 GEARAspiWDM - ok
08:49:36.0348 10176 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
08:49:36.0363 10176 gpsvc - ok
08:49:36.0438 10176 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
08:49:36.0443 10176 gupdate - ok
08:49:36.0458 10176 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
08:49:36.0463 10176 gupdatem - ok
08:49:36.0508 10176 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
08:49:36.0513 10176 gusvc - ok
08:49:36.0558 10176 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
08:49:36.0558 10176 hcw85cir - ok
08:49:36.0588 10176 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
08:49:36.0593 10176 HdAudAddService - ok
08:49:36.0623 10176 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
08:49:36.0628 10176 HDAudBus - ok
08:49:36.0648 10176 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
08:49:36.0648 10176 HidBatt - ok
08:49:36.0683 10176 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
08:49:36.0683 10176 HidBth - ok
08:49:36.0713 10176 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
08:49:36.0718 10176 HidIr - ok
08:49:36.0743 10176 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
08:49:36.0743 10176 hidserv - ok
08:49:36.0783 10176 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
08:49:36.0788 10176 HidUsb - ok
08:49:36.0818 10176 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
08:49:36.0823 10176 hkmsvc - ok
08:49:36.0853 10176 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
08:49:36.0863 10176 HomeGroupListener - ok
08:49:36.0898 10176 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
08:49:36.0908 10176 HomeGroupProvider - ok
08:49:36.0998 10176 [ 170233B8D743EFE35F462A5D516B93E3 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
08:49:37.0003 10176 HP Support Assistant Service - ok
08:49:37.0048 10176 [ 6A181452D4E240B8ECC7614B9A19BDE9 ] HPClientSvc C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
08:49:37.0058 10176 HPClientSvc - ok
08:49:37.0103 10176 [ C958976C7DAAF47084A33EBBC6E28B84 ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
08:49:37.0103 10176 HPDrvMntSvc.exe - ok
08:49:37.0153 10176 [ 4E0BEC0F78096FFD6D3314B497FC49D3 ] hpdskflt C:\Windows\system32\DRIVERS\hpdskflt.sys
08:49:37.0158 10176 hpdskflt - ok
08:49:37.0263 10176 [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
08:49:37.0268 10176 hpqcxs08 - ok
08:49:37.0303 10176 [ F3F72A2A86C22610BCA5439FA789DD52 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
08:49:37.0308 10176 hpqddsvc - ok
08:49:37.0358 10176 [ 09FBD4C4DB2FD84B9AB1C5BFDCC95559 ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
08:49:37.0373 10176 hpqwmiex - ok
08:49:37.0393 10176 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
08:49:37.0398 10176 HpSAMD - ok
08:49:37.0463 10176 [ D972F48D0CE396759B788693CD665926 ] HPSLPSVC C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
08:49:37.0483 10176 HPSLPSVC - ok
08:49:37.0503 10176 [ FC7C13B5A9E9BE23B7AE72BBC7FDB278 ] hpsrv C:\Windows\system32\Hpservice.exe
08:49:37.0508 10176 hpsrv - ok
08:49:37.0543 10176 [ 28E15C3D39DCD27A79251BA0BF216A11 ] HPWMISVC C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
08:49:37.0548 10176 HPWMISVC - ok
08:49:37.0618 10176 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
08:49:37.0633 10176 HTTP - ok
08:49:37.0653 10176 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
08:49:37.0653 10176 hwpolicy - ok
08:49:37.0673 10176 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
08:49:37.0678 10176 i8042prt - ok
08:49:37.0728 10176 [ 26CF4275034214ECEDD8EC17B0A18A99 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
08:49:37.0743 10176 iaStor - ok
08:49:37.0818 10176 [ E79A8E33BD136D14BAE1FA20EB2EF124 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
08:49:37.0823 10176 IAStorDataMgrSvc - ok
08:49:37.0868 10176 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
08:49:37.0878 10176 iaStorV - ok
08:49:37.0978 10176 [ 3A0FF117B4ADC5ABE4D968E26A337158 ] IconMan_R C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
08:49:38.0023 10176 IconMan_R - ok
08:49:38.0098 10176 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
08:49:38.0123 10176 idsvc - ok
08:49:38.0503 10176 [ 6383899C5F964D71B0F96B81FBE59BB8 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
08:49:38.0848 10176 igfx - ok
08:49:38.0913 10176 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
08:49:38.0918 10176 iirsp - ok
08:49:38.0963 10176 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
08:49:38.0983 10176 IKEEXT - ok
08:49:39.0028 10176 [ CADDF0927DAC63EDAE48F5C35A61D87D ] intaud_WaveExtensible C:\Windows\system32\drivers\intelaud.sys
08:49:39.0028 10176 intaud_WaveExtensible - ok
08:49:39.0088 10176 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
08:49:39.0098 10176 IntcDAud - ok
08:49:39.0128 10176 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
08:49:39.0133 10176 intelide - ok
08:49:39.0178 10176 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
08:49:39.0183 10176 intelppm - ok
08:49:39.0218 10176 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
08:49:39.0223 10176 IPBusEnum - ok
08:49:39.0258 10176 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
08:49:39.0258 10176 IpFilterDriver - ok
08:49:39.0303 10176 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
08:49:39.0318 10176 iphlpsvc - ok
08:49:39.0333 10176 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
08:49:39.0338 10176 IPMIDRV - ok
08:49:39.0373 10176 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
08:49:39.0378 10176 IPNAT - ok
08:49:39.0463 10176 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
08:49:39.0483 10176 iPod Service - ok
08:49:39.0533 10176 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
08:49:39.0538 10176 IRENUM - ok
08:49:39.0558 10176 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
08:49:39.0563 10176 isapnp - ok
08:49:39.0588 10176 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
08:49:39.0593 10176 iScsiPrt - ok
08:49:39.0643 10176 [ 716F66336F10885D935B08174DC54242 ] iwdbus C:\Windows\system32\DRIVERS\iwdbus.sys
08:49:39.0643 10176 iwdbus - ok
08:49:39.0698 10176 [ 6C85719A21B3F62C2C76280F4BD36C7B ] jhi_service C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
08:49:39.0708 10176 jhi_service - ok
08:49:39.0748 10176 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
08:49:39.0748 10176 kbdclass - ok
08:49:39.0783 10176 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
08:49:39.0788 10176 kbdhid - ok
08:49:39.0798 10176 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
08:49:39.0803 10176 KeyIso - ok
08:49:39.0833 10176 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
08:49:39.0838 10176 KSecDD - ok
08:49:39.0853 10176 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
08:49:39.0863 10176 KSecPkg - ok
08:49:39.0893 10176 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
08:49:39.0898 10176 ksthunk - ok
08:49:39.0943 10176 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
08:49:39.0953 10176 KtmRm - ok
08:49:39.0998 10176 [ 173666119D217E3739205C169E2BF0E5 ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys
08:49:40.0003 10176 L1C - ok
08:49:40.0058 10176 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
08:49:40.0068 10176 LanmanServer - ok
08:49:40.0093 10176 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
08:49:40.0098 10176 LanmanWorkstation - ok
08:49:40.0138 10176 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
08:49:40.0143 10176 lltdio - ok
08:49:40.0188 10176 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
08:49:40.0198 10176 lltdsvc - ok
08:49:40.0228 10176 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
08:49:40.0233 10176 lmhosts - ok
08:49:40.0353 10176 [ D55A7D0553C7102F63872936C7A9D9DB ] LMIGuardianSvc C:\Program Files (x86)\LogMeIn\x64\LMIGuardianSvc.exe
08:49:40.0363 10176 LMIGuardianSvc - ok
08:49:40.0403 10176 [ 0317335B15FF3BDA8E10197E3434CFC0 ] LMIInfo C:\Program Files (x86)\LogMeIn\x64\RaInfo.sys
08:49:40.0403 10176 LMIInfo - ok
08:49:40.0473 10176 [ A7D256C8847DF6E88BDDB55F87E54F46 ] LMIMaint C:\Program Files (x86)\LogMeIn\x64\RaMaint.exe
08:49:40.0478 10176 LMIMaint - ok
08:49:40.0503 10176 [ 413ECDCFAD9A82804D3674C8D7EEC24E ] lmimirr C:\Windows\system32\DRIVERS\lmimirr.sys
08:49:40.0503 10176 lmimirr - ok
08:49:40.0553 10176 LMIRfsClientNP - ok
08:49:40.0573 10176 [ C57D3FAA50E6F395759FFB7C709BD944 ] LMIRfsDriver C:\Windows\system32\drivers\LMIRfsDriver.sys
08:49:40.0578 10176 LMIRfsDriver - ok
08:49:40.0628 10176 [ E7859BA062DB5E23C6DD34AD66B09F50 ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
08:49:40.0638 10176 LMS - ok
08:49:40.0703 10176 [ D3760BC17E1755091B7120CF32DBF56B ] LogMeIn C:\Program Files (x86)\LogMeIn\x64\LogMeIn.exe
08:49:40.0713 10176 LogMeIn - ok
08:49:40.0753 10176 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
08:49:40.0758 10176 LSI_FC - ok
08:49:40.0778 10176 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
08:49:40.0783 10176 LSI_SAS - ok
08:49:40.0798 10176 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
08:49:40.0803 10176 LSI_SAS2 - ok
08:49:40.0828 10176 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
08:49:40.0833 10176 LSI_SCSI - ok
08:49:40.0863 10176 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
08:49:40.0863 10176 luafv - ok
08:49:40.0908 10176 [ F453D1E6D881E8F8717E20CCD4199E85 ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe
08:49:40.0913 10176 McComponentHostService - ok
08:49:40.0948 10176 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
08:49:40.0953 10176 Mcx2Svc - ok
08:49:41.0028 10176 [ 11F714F85530A2BD134074DC30E99FCA ] MDM C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
08:49:41.0038 10176 MDM - ok
08:49:41.0068 10176 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
08:49:41.0073 10176 megasas - ok
08:49:41.0103 10176 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
08:49:41.0108 10176 MegaSR - ok
08:49:41.0153 10176 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
08:49:41.0163 10176 MEIx64 - ok
08:49:41.0198 10176 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
08:49:41.0208 10176 MMCSS - ok
08:49:41.0223 10176 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
08:49:41.0228 10176 Modem - ok
08:49:41.0268 10176 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
08:49:41.0273 10176 monitor - ok
08:49:41.0293 10176 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
08:49:41.0293 10176 mouclass - ok
08:49:41.0318 10176 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
08:49:41.0323 10176 mouhid - ok
08:49:41.0358 10176 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
08:49:41.0363 10176 mountmgr - ok
08:49:41.0403 10176 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
08:49:41.0408 10176 mpio - ok
08:49:41.0428 10176 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
08:49:41.0433 10176 mpsdrv - ok
08:49:41.0478 10176 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
08:49:41.0498 10176 MpsSvc - ok
08:49:41.0518 10176 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
08:49:41.0528 10176 MRxDAV - ok
08:49:41.0558 10176 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
08:49:41.0563 10176 mrxsmb - ok
08:49:41.0583 10176 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
08:49:41.0593 10176 mrxsmb10 - ok
08:49:41.0618 10176 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
08:49:41.0623 10176 mrxsmb20 - ok
08:49:41.0658 10176 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
08:49:41.0663 10176 msahci - ok
08:49:41.0688 10176 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
08:49:41.0693 10176 msdsm - ok
08:49:41.0733 10176 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
08:49:41.0743 10176 MSDTC - ok
08:49:41.0778 10176 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
08:49:41.0783 10176 Msfs - ok
08:49:41.0813 10176 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
08:49:41.0818 10176 mshidkmdf - ok
08:49:41.0838 10176 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
08:49:41.0843 10176 msisadrv - ok
08:49:41.0873 10176 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
08:49:41.0878 10176 MSiSCSI - ok
08:49:41.0888 10176 msiserver - ok
08:49:41.0928 10176 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
08:49:41.0933 10176 MSKSSRV - ok
08:49:41.0953 10176 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
08:49:41.0958 10176 MSPCLOCK - ok
08:49:41.0973 10176 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
08:49:41.0973 10176 MSPQM - ok
08:49:41.0998 10176 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
08:49:42.0008 10176 MsRPC - ok
08:49:42.0043 10176 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
08:49:42.0053 10176 mssmbios - ok
08:49:42.0098 10176 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
08:49:42.0103 10176 MSTEE - ok
08:49:42.0118 10176 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
08:49:42.0123 10176 MTConfig - ok
08:49:42.0138 10176 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
08:49:42.0143 10176 Mup - ok
08:49:42.0189 10176 [ 4BBB9D9C4DF259FAE2D172C5BB25DDD0 ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
08:49:42.0199 10176 MyWiFiDHCPDNS - ok
08:49:42.0244 10176 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
08:49:42.0254 10176 napagent - ok
08:49:42.0309 10176 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
08:49:42.0314 10176 NativeWifiP - ok
08:49:42.0384 10176 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
08:49:42.0404 10176 NDIS - ok
08:49:42.0434 10176 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
08:49:42.0434 10176 NdisCap - ok
08:49:42.0469 10176 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
08:49:42.0469 10176 NdisTapi - ok
08:49:42.0489 10176 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
08:49:42.0494 10176 Ndisuio - ok
08:49:42.0519 10176 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
08:49:42.0524 10176 NdisWan - ok
08:49:42.0549 10176 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
08:49:42.0549 10176 NDProxy - ok
08:49:42.0604 10176 [ D5AC41AE382738483FAFFBD7E373D49A ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
08:49:42.0609 10176 Net Driver HPZ12 - ok
08:49:42.0639 10176 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
08:49:42.0639 10176 NetBIOS - ok
08:49:42.0669 10176 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
08:49:42.0679 10176 NetBT - ok
08:49:42.0709 10176 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
08:49:42.0714 10176 Netlogon - ok
08:49:42.0754 10176 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
08:49:42.0774 10176 Netman - ok
08:49:42.0814 10176 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
08:49:42.0824 10176 netprofm - ok
08:49:42.0864 10176 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
08:49:42.0869 10176 NetTcpPortSharing - ok
08:49:43.0139 10176 [ AC69618DE5BCCE8747C9AB0AAE1003C1 ] NETwNs64 C:\Windows\system32\DRIVERS\NETwNs64.sys
08:49:43.0369 10176 NETwNs64 - ok
08:49:43.0404 10176 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
08:49:43.0409 10176 nfrd960 - ok
08:49:43.0454 10176 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
08:49:43.0459 10176 NlaSvc - ok
08:49:43.0489 10176 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
08:49:43.0494 10176 Npfs - ok
08:49:43.0519 10176 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
08:49:43.0524 10176 nsi - ok
08:49:43.0529 10176 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
08:49:43.0534 10176 nsiproxy - ok
08:49:43.0614 10176 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
08:49:43.0649 10176 Ntfs - ok
08:49:43.0674 10176 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
08:49:43.0679 10176 Null - ok
08:49:43.0714 10176 [ A85B4F2EF3A7304A5399EF0526423040 ] NVENETFD C:\Windows\system32\DRIVERS\nvm62x64.sys
08:49:43.0724 10176 NVENETFD - ok
08:49:43.0764 10176 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
08:49:43.0769 10176 nvraid - ok
08:49:43.0789 10176 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
08:49:43.0794 10176 nvstor - ok
08:49:43.0834 10176 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
08:49:43.0839 10176 nv_agp - ok
08:49:43.0859 10176 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
08:49:43.0864 10176 ohci1394 - ok
08:49:43.0904 10176 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
08:49:43.0909 10176 ose - ok
08:49:44.0109 10176 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
08:49:44.0244 10176 osppsvc - ok
08:49:44.0299 10176 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
08:49:44.0309 10176 p2pimsvc - ok
08:49:44.0339 10176 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
08:49:44.0349 10176 p2psvc - ok
08:49:44.0384 10176 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
08:49:44.0389 10176 Parport - ok
08:49:44.0414 10176 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
08:49:44.0419 10176 partmgr - ok
08:49:44.0439 10176 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
08:49:44.0449 10176 PcaSvc - ok
08:49:44.0479 10176 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
08:49:44.0484 10176 pci - ok
08:49:44.0509 10176 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
08:49:44.0509 10176 pciide - ok
08:49:44.0539 10176 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
08:49:44.0544 10176 pcmcia - ok
08:49:44.0564 10176 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
08:49:44.0564 10176 pcw - ok
08:49:44.0599 10176 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
08:49:44.0614 10176 PEAUTH - ok
08:49:44.0709 10176 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
08:49:44.0714 10176 PerfHost - ok
08:49:44.0789 10176 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
08:49:44.0819 10176 pla - ok
08:49:44.0854 10176 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
08:49:44.0864 10176 PlugPlay - ok
08:49:44.0914 10176 [ 37F6046CDC630442D7DC087501FF6FC6 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
08:49:44.0919 10176 Pml Driver HPZ12 - ok
08:49:44.0959 10176 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
08:49:44.0964 10176 PNRPAutoReg - ok
08:49:44.0984 10176 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
08:49:44.0994 10176 PNRPsvc - ok
08:49:45.0034 10176 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
08:49:45.0044 10176 PolicyAgent - ok
08:49:45.0074 10176 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
08:49:45.0084 10176 Power - ok
08:49:45.0109 10176 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
08:49:45.0114 10176 PptpMiniport - ok
08:49:45.0144 10176 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
08:49:45.0144 10176 Processor - ok
08:49:45.0190 10176 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
08:49:45.0195 10176 ProfSvc - ok
08:49:45.0210 10176 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
08:49:45.0210 10176 ProtectedStorage - ok
08:49:45.0240 10176 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
08:49:45.0245 10176 Psched - ok
08:49:45.0290 10176 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
08:49:45.0290 10176 PxHlpa64 - ok
08:49:45.0345 10176 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
08:49:45.0370 10176 ql2300 - ok
08:49:45.0410 10176 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
08:49:45.0415 10176 ql40xx - ok
08:49:45.0445 10176 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
08:49:45.0455 10176 QWAVE - ok
08:49:45.0470 10176 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
08:49:45.0475 10176 QWAVEdrv - ok
08:49:45.0495 10176 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
08:49:45.0495 10176 RasAcd - ok
08:49:45.0535 10176 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
08:49:45.0540 10176 RasAgileVpn - ok
08:49:45.0560 10176 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
08:49:45.0565 10176 RasAuto - ok
08:49:45.0580 10176 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
08:49:45.0585 10176 Rasl2tp - ok
08:49:45.0615 10176 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
08:49:45.0630 10176 RasMan - ok
08:49:45.0650 10176 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
08:49:45.0650 10176 RasPppoe - ok
08:49:45.0685 10176 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
08:49:45.0685 10176 RasSstp - ok
08:49:45.0710 10176 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
08:49:45.0715 10176 rdbss - ok
08:49:45.0735 10176 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
08:49:45.0740 10176 rdpbus - ok
08:49:45.0765 10176 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
08:49:45.0765 10176 RDPCDD - ok
08:49:45.0780 10176 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
08:49:45.0780 10176 RDPENCDD - ok
08:49:45.0805 10176 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
08:49:45.0810 10176 RDPREFMP - ok
08:49:45.0855 10176 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
08:49:45.0860 10176 RDPWD - ok
08:49:45.0920 10176 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
08:49:45.0925 10176 rdyboost - ok
08:49:46.0010 10176 [ A436F5E7D80BBDBB0826D0F176D5BEA8 ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
08:49:46.0030 10176 RegSrvc - ok
08:49:46.0060 10176 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
08:49:46.0065 10176 RemoteAccess - ok
08:49:46.0090 10176 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
08:49:46.0095 10176 RemoteRegistry - ok
08:49:46.0120 10176 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
08:49:46.0125 10176 RpcEptMapper - ok
08:49:46.0155 10176 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
08:49:46.0160 10176 RpcLocator - ok
08:49:46.0190 10176 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
08:49:46.0200 10176 RpcSs - ok
08:49:46.0255 10176 [ 9D21618E7A3B2C75CF1A2ECBBE723730 ] RSPCIESTOR C:\Windows\system32\DRIVERS\RtsPStor.sys
08:49:46.0265 10176 RSPCIESTOR - ok
08:49:46.0300 10176 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
08:49:46.0305 10176 rspndr - ok
08:49:46.0320 10176 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
08:49:46.0325 10176 SamSs - ok
08:49:46.0345 10176 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
08:49:46.0350 10176 sbp2port - ok
08:49:46.0380 10176 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
08:49:46.0390 10176 SCardSvr - ok
08:49:46.0410 10176 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
08:49:46.0415 10176 scfilter - ok
08:49:46.0455 10176 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
08:49:46.0480 10176 Schedule - ok
08:49:46.0510 10176 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
08:49:46.0515 10176 SCPolicySvc - ok
08:49:46.0555 10176 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
08:49:46.0555 10176 sdbus - ok
08:49:46.0590 10176 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
08:49:46.0600 10176 SDRSVC - ok
08:49:46.0625 10176 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
08:49:46.0625 10176 secdrv - ok
08:49:46.0650 10176 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
08:49:46.0655 10176 seclogon - ok
08:49:46.0670 10176 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
08:49:46.0675 10176 SENS - ok
08:49:46.0720 10176 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
08:49:46.0725 10176 SensrSvc - ok
08:49:46.0770 10176 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
08:49:46.0775 10176 Serenum - ok
08:49:46.0810 10176 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
08:49:46.0815 10176 Serial - ok
08:49:46.0845 10176 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
08:49:46.0845 10176 sermouse - ok
08:49:46.0890 10176 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
08:49:46.0900 10176 SessionEnv - ok
08:49:46.0935 10176 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
08:49:46.0940 10176 sffdisk - ok
08:49:46.0975 10176 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
08:49:46.0980 10176 sffp_mmc - ok
08:49:47.0000 10176 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
08:49:47.0005 10176 sffp_sd - ok
08:49:47.0030 10176 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
08:49:47.0035 10176 sfloppy - ok
08:49:47.0095 10176 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
08:49:47.0110 10176 Sftfs - ok
08:49:47.0180 10176 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
08:49:47.0190 10176 sftlist - ok
08:49:47.0220 10176 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
08:49:47.0230 10176 Sftplay - ok
08:49:47.0255 10176 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
08:49:47.0260 10176 Sftredir - ok
08:49:47.0285 10176 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
08:49:47.0285 10176 Sftvol - ok
08:49:47.0315 10176 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
08:49:47.0320 10176 sftvsa - ok
08:49:47.0365 10176 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
08:49:47.0375 10176 SharedAccess - ok
08:49:47.0415 10176 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
08:49:47.0425 10176 ShellHWDetection - ok
08:49:47.0460 10176 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
08:49:47.0465 10176 SiSRaid2 - ok
08:49:47.0500 10176 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
08:49:47.0505 10176 SiSRaid4 - ok
08:49:47.0530 10176 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
08:49:47.0535 10176 Smb - ok
08:49:47.0585 10176 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
08:49:47.0590 10176 SNMPTRAP - ok
08:49:47.0610 10176 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
08:49:47.0615 10176 spldr - ok
08:49:47.0665 10176 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
08:49:47.0680 10176 Spooler - ok
08:49:47.0795 10176 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
08:49:47.0865 10176 sppsvc - ok
08:49:47.0895 10176 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
08:49:47.0900 10176 sppuinotify - ok
08:49:47.0940 10176 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
08:49:47.0955 10176 srv - ok
08:49:47.0975 10176 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
08:49:47.0985 10176 srv2 - ok
08:49:48.0025 10176 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
08:49:48.0035 10176 SrvHsfHDA - ok
08:49:48.0090 10176 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
08:49:48.0120 10176 SrvHsfV92 - ok
08:49:48.0160 10176 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
08:49:48.0175 10176 SrvHsfWinac - ok
08:49:48.0220 10176 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
08:49:48.0225 10176 srvnet - ok
08:49:48.0275 10176 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
08:49:48.0290 10176 SSDPSRV - ok
08:49:48.0320 10176 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
08:49:48.0330 10176 SstpSvc - ok
08:49:48.0390 10176 [ A6B2EC3A2B6AD7C3F7B2F3495CADE4C0 ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe
08:49:48.0395 10176 STacSV - ok
08:49:48.0415 10176 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
08:49:48.0415 10176 stexstor - ok
08:49:48.0475 10176 [ EBA98394A7D58F7552C52192BD8FA7E6 ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
08:49:48.0485 10176 STHDA - ok
08:49:48.0535 10176 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
08:49:48.0550 10176 stisvc - ok
08:49:48.0565 10176 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
08:49:48.0565 10176 swenum - ok
08:49:48.0620 10176 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
08:49:48.0635 10176 swprv - ok
08:49:48.0700 10176 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
08:49:48.0740 10176 SysMain - ok
08:49:48.0765 10176 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
08:49:48.0770 10176 TabletInputService - ok
08:49:48.0815 10176 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
08:49:48.0825 10176 TapiSrv - ok
08:49:48.0840 10176 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
08:49:48.0845 10176 TBS - ok
08:49:48.0930 10176 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
08:49:48.0970 10176 Tcpip - ok
08:49:49.0025 10176 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
08:49:49.0055 10176 TCPIP6 - ok
08:49:49.0085 10176 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
08:49:49.0090 10176 tcpipreg - ok
08:49:49.0115 10176 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
08:49:49.0120 10176 TDPIPE - ok
08:49:49.0150 10176 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
08:49:49.0155 10176 TDTCP - ok
08:49:49.0175 10176 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
08:49:49.0180 10176 tdx - ok
08:49:49.0200 10176 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
08:49:49.0205 10176 TermDD - ok
08:49:49.0250 10176 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
08:49:49.0270 10176 TermService - ok
08:49:49.0295 10176 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
08:49:49.0300 10176 Themes - ok
08:49:49.0325 10176 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
08:49:49.0325 10176 THREADORDER - ok
08:49:49.0355 10176 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
08:49:49.0360 10176 TrkWks - ok
08:49:49.0405 10176 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
08:49:49.0410 10176 TrustedInstaller - ok
08:49:49.0440 10176 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
08:49:49.0445 10176 tssecsrv - ok
08:49:49.0480 10176 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
08:49:49.0485 10176 TsUsbFlt - ok
08:49:49.0520 10176 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
08:49:49.0525 10176 TsUsbGD - ok
08:49:49.0570 10176 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
08:49:49.0575 10176 tunnel - ok
08:49:49.0595 10176 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
08:49:49.0600 10176 uagp35 - ok
08:49:49.0630 10176 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
08:49:49.0640 10176 udfs - ok
08:49:49.0670 10176 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
08:49:49.0675 10176 UI0Detect - ok
08:49:49.0715 10176 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
08:49:49.0720 10176 uliagpkx - ok
08:49:49.0735 10176 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
08:49:49.0740 10176 umbus - ok
08:49:49.0760 10176 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
08:49:49.0765 10176 UmPass - ok
08:49:49.0920 10176 [ E91F8AFBD7FB96C94B266579D6BFA77A ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
08:49:49.0975 10176 UNS - ok
08:49:50.0020 10176 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
08:49:50.0030 10176 upnphost - ok
08:49:50.0085 10176 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
08:49:50.0090 10176 usbaudio - ok
08:49:50.0120 10176 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
08:49:50.0120 10176 usbccgp - ok
08:49:50.0160 10176 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
08:49:50.0165 10176 usbcir - ok
08:49:50.0186 10176 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
08:49:50.0186 10176 usbehci - ok
08:49:50.0221 10176 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
08:49:50.0231 10176 usbhub - ok
08:49:50.0261 10176 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
08:49:50.0266 10176 usbohci - ok
08:49:50.0291 10176 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
08:49:50.0291 10176 usbprint - ok
08:49:50.0336 10176 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
08:49:50.0341 10176 usbscan - ok
08:49:50.0371 10176 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
08:49:50.0376 10176 USBSTOR - ok
08:49:50.0391 10176 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
08:49:50.0396 10176 usbuhci - ok
08:49:50.0441 10176 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
08:49:50.0451 10176 usbvideo - ok
08:49:50.0471 10176 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
08:49:50.0476 10176 UxSms - ok
08:49:50.0496 10176 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
08:49:50.0501 10176 VaultSvc - ok
08:49:50.0521 10176 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
08:49:50.0526 10176 vdrvroot - ok
08:49:50.0561 10176 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
08:49:50.0576 10176 vds - ok
08:49:50.0606 10176 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
08:49:50.0611 10176 vga - ok
08:49:50.0631 10176 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
08:49:50.0631 10176 VgaSave - ok
08:49:50.0661 10176 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
08:49:50.0666 10176 vhdmp - ok
08:49:50.0686 10176 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
08:49:50.0686 10176 viaide - ok
08:49:50.0706 10176 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
08:49:50.0711 10176 volmgr - ok
08:49:50.0736 10176 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
08:49:50.0746 10176 volmgrx - ok
08:49:50.0786 10176 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
08:49:50.0796 10176 volsnap - ok
08:49:50.0816 10176 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
08:49:50.0826 10176 vsmraid - ok
08:49:50.0891 10176 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
08:49:50.0926 10176 VSS - ok
08:49:50.0941 10176 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
08:49:50.0941 10176 vwifibus - ok
08:49:50.0991 10176 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
08:49:50.0996 10176 vwififlt - ok
08:49:51.0021 10176 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
08:49:51.0021 10176 vwifimp - ok
08:49:51.0066 10176 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
08:49:51.0081 10176 W32Time - ok
08:49:51.0116 10176 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
08:49:51.0121 10176 WacomPen - ok
08:49:51.0156 10176 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
08:49:51.0156 10176 WANARP - ok
08:49:51.0166 10176 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
08:49:51.0166 10176 Wanarpv6 - ok
08:49:51.0252 10176 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
08:49:51.0277 10176 WatAdminSvc - ok
08:49:51.0342 10176 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
08:49:51.0377 10176 wbengine - ok
08:49:51.0402 10176 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
08:49:51.0412 10176 WbioSrvc - ok
08:49:51.0437 10176 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
08:49:51.0447 10176 wcncsvc - ok
08:49:51.0472 10176 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
08:49:51.0482 10176 WcsPlugInService - ok
08:49:51.0502 10176 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
08:49:51.0507 10176 Wd - ok
08:49:51.0542 10176 [ A3D04EBF5227886029B4532F20D026F7 ] WDC_SAM C:\Windows\system32\DRIVERS\wdcsam64.sys
08:49:51.0547 10176 WDC_SAM - ok
08:49:51.0592 10176 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
08:49:51.0607 10176 Wdf01000 - ok
08:49:51.0632 10176 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
08:49:51.0637 10176 WdiServiceHost - ok
08:49:51.0647 10176 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
08:49:51.0652 10176 WdiSystemHost - ok
08:49:51.0682 10176 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
08:49:51.0692 10176 WebClient - ok
08:49:51.0712 10176 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
08:49:51.0722 10176 Wecsvc - ok
08:49:51.0742 10176 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
08:49:51.0747 10176 wercplsupport - ok
08:49:51.0797 10176 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
08:49:51.0807 10176 WerSvc - ok
08:49:51.0832 10176 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
08:49:51.0837 10176 WfpLwf - ok
08:49:51.0862 10176 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
08:49:51.0862 10176 WIMMount - ok
08:49:51.0892 10176 WinDefend - ok
08:49:51.0902 10176 WinHttpAutoProxySvc - ok
08:49:51.0977 10176 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
08:49:51.0987 10176 Winmgmt - ok
08:49:52.0062 10176 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
08:49:52.0107 10176 WinRM - ok
08:49:52.0142 10176 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUSB.sys
08:49:52.0142 10176 WinUsb - ok
08:49:52.0192 10176 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
08:49:52.0212 10176 Wlansvc - ok
08:49:52.0262 10176 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
08:49:52.0262 10176 wlcrasvc - ok
08:49:52.0372 10176 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
08:49:52.0417 10176 wlidsvc - ok
08:49:52.0467 10176 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
08:49:52.0467 10176 WmiAcpi - ok
08:49:52.0507 10176 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
08:49:52.0512 10176 wmiApSrv - ok
08:49:52.0547 10176 WMPNetworkSvc - ok
08:49:52.0572 10176 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
08:49:52.0577 10176 WPCSvc - ok
08:49:52.0597 10176 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
08:49:52.0602 10176 WPDBusEnum - ok
08:49:52.0632 10176 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
08:49:52.0632 10176 ws2ifsl - ok
08:49:52.0652 10176 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
08:49:52.0657 10176 wscsvc - ok
08:49:52.0662 10176 WSearch - ok
08:49:52.0767 10176 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
08:49:52.0817 10176 wuauserv - ok
08:49:52.0852 10176 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
08:49:52.0857 10176 WudfPf - ok
08:49:52.0872 10176 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
08:49:52.0877 10176 WUDFRd - ok
08:49:52.0917 10176 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
08:49:52.0922 10176 wudfsvc - ok
08:49:52.0962 10176 [ CE8CF9DE9CBFDAA318BD04D8BE3FCADA ] WwanSvc C:\Windows\System32\wwansvc.dll
08:49:52.0972 10176 WwanSvc - ok
08:49:53.0012 10176 ================ Scan global ===============================
08:49:53.0037 10176 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
08:49:53.0087 10176 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
08:49:53.0102 10176 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
08:49:53.0142 10176 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
08:49:53.0187 10176 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
08:49:53.0197 10176 [Global] - ok
08:49:53.0197 10176 ================ Scan MBR ==================================
08:49:53.0212 10176 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
08:49:54.0227 10176 \Device\Harddisk0\DR0 - ok
08:49:54.0227 10176 ================ Scan VBR ==================================
08:49:54.0232 10176 [ B7411AA9EB3C9C0C8EEF92E8487188D5 ] \Device\Harddisk0\DR0\Partition1
08:49:54.0237 10176 \Device\Harddisk0\DR0\Partition1 - ok
08:49:54.0257 10176 [ 062A9D490F131363F1B51002194A9B8A ] \Device\Harddisk0\DR0\Partition2
08:49:54.0262 10176 \Device\Harddisk0\DR0\Partition2 - ok
08:49:54.0297 10176 [ 5AA49B5C5C0C2B5DDE49F2634843A49A ] \Device\Harddisk0\DR0\Partition3
08:49:54.0307 10176 \Device\Harddisk0\DR0\Partition3 - ok
08:49:54.0337 10176 [ 1B9DA7EAB9C4384FBBFC990009D34452 ] \Device\Harddisk0\DR0\Partition4
08:49:54.0337 10176 \Device\Harddisk0\DR0\Partition4 - ok
08:49:54.0342 10176 ============================================================
08:49:54.0342 10176 Scan finished
08:49:54.0342 10176 ============================================================
08:49:54.0357 10860 Detected object count: 0
08:49:54.0357 10860 Actual detected object count: 0

aswMBR:

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-10-28 08:56:47
-----------------------------
08:56:47.390 OS Version: Windows x64 6.1.7601 Service Pack 1
08:56:47.390 Number of processors: 4 586 0x2A07
08:56:47.421 ComputerName: MSLANSTER-HP UserName: bear
08:56:48.732 Initialize success
08:56:59.418 AVAST engine defs: 12102800
08:57:03.864 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
08:57:03.864 Disk 0 Vendor: TOSHIBA_ GS00 Size: 610480MB BusType: 3
08:57:03.864 Disk 0 MBR read successfully
08:57:03.864 Disk 0 MBR scan
08:57:03.895 Disk 0 Windows 7 default MBR code
08:57:03.910 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 199 MB offset 2048
08:57:03.926 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 584766 MB offset 409600
08:57:03.957 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 21450 MB offset 1198010368
08:57:03.973 Disk 0 Partition 4 00 0C FAT32 LBA MSDOS5.0 4063 MB offset 1241939968
08:57:04.004 Disk 0 scanning C:\Windows\system32\drivers
08:57:12.459 Service scanning
08:57:39.057 Modules scanning
08:57:39.057 Disk 0 trace - called modules:
08:57:39.135 ntoskrnl.exe CLASSPNP.SYS disk.sys hpdskflt.sys iaStor.sys hal.dll
08:57:39.135 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8007a96060]
08:57:39.151 3 CLASSPNP.SYS[fffff88001cba43f] -> nt!IofCallDriver -> [0xfffffa8007909b10]
08:57:39.151 5 hpdskflt.sys[fffff880019f1189] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8006284050]
08:57:40.477 AVAST engine scan C:\Windows
08:57:42.521 AVAST engine scan C:\Windows\system32
08:59:54.122 AVAST engine scan C:\Windows\system32\drivers
09:00:04.777 AVAST engine scan C:\Users\bear
09:11:29.244 AVAST engine scan C:\ProgramData
09:15:50.685 Scan finished successfully
09:16:22.774 Disk 0 MBR has been saved successfully to "C:\Users\bear\Desktop\MBR.dat"
09:16:22.774 The log file has been saved successfully to "C:\Users\bear\Desktop\aswMBR.txt"

Thanks again for your help!

#4 narenxp

Forum Addict

BC Advisor
16,365 posts

Gender:Male
Location:India

Posted 28 October 2012 - 06:52 PM

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

For vista and windows 7 right click on the tool and select run as administrator

After scan gets completed,post the generated log here.

#5 teemell

New Member

Members
4 posts

Posted 28 October 2012 - 09:34 PM

Malwarebytes:

Malwarebytes Anti-Malware 1.65.1.1000
www.malwarebytes.org

Database version: v2012.10.28.09

Windows 7 Service Pack 1 x64 NTFS (Safe Mode/Networking)
Internet Explorer 9.0.8112.16421
bear :: MSLANSTER-HP [administrator]

10/28/2012 7:25:16 PM
mbam-log-2012-10-28 (19-25-16).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 444629
Time elapsed: 59 minute(s), 21 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

Mini toolbox:

MiniToolBox by Farbar Version: 23-07-2012
Ran by bear (administrator) on 28-10-2012 at 21:02:18
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

========================= IP Configuration: ================================

Intel® WiFi Link 1000 BGN = Wireless Network Connection (Connected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 3 (Hardware not present)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)
Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.20) = Local Area Connection (Media disconnected)

# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add address name="Wireless Network Connection 3" address=192.168.16.2 mask=255.255.255.0

popd
# End of IPv4 configuration

Windows IP Configuration

Host Name . . . . . . . . . . . . : Mslanster-HP
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : hsd1.il.comcast.net.

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.20)
Physical Address. . . . . . . . . : 10-1F-74-FC-1A-F4
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 74-E5-0B-2D-2A-91
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : hsd1.il.comcast.net.
Description . . . . . . . . . . . : Intel® WiFi Link 1000 BGN
Physical Address. . . . . . . . . : 74-E5-0B-2D-2A-90
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::4cb1:d9b:8c1e:b6e4%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.0.101(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Sunday, October 28, 2012 8:58:11 PM
Lease Expires . . . . . . . . . . : Sunday, November 04, 2012 8:58:11 PM
Default Gateway . . . . . . . . . : fe80::226:5aff:fef6:ac48%11
192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DNS Servers . . . . . . . . . . . : 192.168.0.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{1FAE2723-B4E9-4006-A7AB-132482078397}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6ab8:49b:158d:b3ef:9a2d(Preferred)
Link-local IPv6 Address . . . . . : fe80::49b:158d:b3ef:9a2d%15(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.hsd1.il.comcast.net.:

Connection-specific DNS Suffix . : hsd1.il.comcast.net.
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::5efe:192.168.0.101%19(Preferred)
Default Gateway . . . . . . . . . :
DNS Servers . . . . . . . . . . . : 192.168.0.1
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{1E009B5E-BEA2-48F9-87A6-3CE9D67066B2}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
1.0.168.192.in-addr.arpa
primary name server = localhost
responsible mail addr = nobody.invalid
serial = 1
refresh = 600 (10 mins)
retry = 1200 (20 mins)
expire = 604800 (7 days)
default TTL = 10800 (3 hours)
(root) ??? unknown type 41 ???
Server: UnKnown
Address: 192.168.0.1

Name: google.com.hsd1.il.comcast.net
Address: 208.69.32.145

Pinging google.com [74.125.225.8] with 32 bytes of data:
Reply from 74.125.225.8: bytes=32 time=11ms TTL=55
Reply from 74.125.225.8: bytes=32 time=9ms TTL=55

Ping statistics for 74.125.225.8:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 9ms, Maximum = 11ms, Average = 10ms
Server: UnKnown
Address: 192.168.0.1

Name: yahoo.com.hsd1.il.comcast.net
Address: 208.69.32.145

Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=76ms TTL=49
Reply from 98.139.183.24: bytes=32 time=116ms TTL=49

Ping statistics for 98.139.183.24:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 76ms, Maximum = 116ms, Average = 96ms
Server: UnKnown
Address: 192.168.0.1

Name: bleepingcomputer.com.hsd1.il.comcast.net
Address: 208.69.32.145

Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Request timed out.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 1, Lost = 1 (50% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
14...10 1f 74 fc 1a f4 ......Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.20)
12...74 e5 0b 2d 2a 91 ......Microsoft Virtual WiFi Miniport Adapter
11...74 e5 0b 2d 2a 90 ......Intel® WiFi Link 1000 BGN
1...........................Software Loopback Interface 1
18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
15...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.101 30
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.0.0 255.255.255.0 On-link 192.168.0.101 286
192.168.0.101 255.255.255.255 On-link 192.168.0.101 286
192.168.0.255 255.255.255.255 On-link 192.168.0.101 286
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.0.101 286
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.0.101 286
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
11 286 ::/0 fe80::226:5aff:fef6:ac48
15 58 ::/0 On-link
1 306 ::1/128 On-link
15 58 2001::/32 On-link
15 306 2001:0:9d38:6ab8:49b:158d:b3ef:9a2d/128
On-link
11 286 fe80::/64 On-link
15 306 fe80::/64 On-link
19 286 fe80::5efe:192.168.0.101/128
On-link
15 306 fe80::49b:158d:b3ef:9a2d/128
On-link
11 286 fe80::4cb1:d9b:8c1e:b6e4/128
On-link
1 306 ff00::/8 On-link
15 306 ff00::/8 On-link
11 286 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (10/28/2012 08:46:32 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/28/2012 07:25:46 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/28/2012 02:01:11 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/28/2012 01:54:30 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/28/2012 01:54:30 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/28/2012 01:54:27 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/28/2012 10:29:22 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/28/2012 10:29:16 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/28/2012 10:28:00 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/28/2012 10:28:00 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

System errors:
=============
Error: (10/28/2012 07:42:45 PM) (Source: iaStor) (User: )
Description: The device, \Device\Ide\iaStor0, did not respond within the timeout period.

Error: (10/28/2012 07:42:44 PM) (Source: iaStor) (User: )
Description: The device, \Device\Ide\iaStor0, did not respond within the timeout period.

Error: (10/28/2012 07:42:43 PM) (Source: iaStor) (User: )
Description: The device, \Device\Ide\iaStor0, did not respond within the timeout period.

Error: (10/28/2012 07:42:42 PM) (Source: iaStor) (User: )
Description: The device, \Device\Ide\iaStor0, did not respond within the timeout period.

Error: (10/28/2012 07:42:41 PM) (Source: iaStor) (User: )
Description: The device, \Device\Ide\iaStor0, did not respond within the timeout period.

Error: (10/28/2012 07:42:40 PM) (Source: iaStor) (User: )
Description: The device, \Device\Ide\iaStor0, did not respond within the timeout period.

Error: (10/28/2012 07:38:42 PM) (Source: iaStor) (User: )
Description: The device, \Device\Ide\iaStor0, did not respond within the timeout period.

Error: (10/28/2012 07:38:41 PM) (Source: iaStor) (User: )
Description: The device, \Device\Ide\iaStor0, did not respond within the timeout period.

Error: (10/28/2012 07:38:40 PM) (Source: iaStor) (User: )
Description: The device, \Device\Ide\iaStor0, did not respond within the timeout period.

Error: (10/28/2012 07:24:41 PM) (Source: DCOM) (User: )
Description: 1084WSearch{9E175B6D-F52A-11D8-B9A5-505054503030}

Microsoft Office Sessions:
=========================
Error: (10/28/2012 08:46:32 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/28/2012 07:25:46 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/28/2012 02:01:11 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\bear\Downloads\esetsmartinstaller_enu.exe

Error: (10/28/2012 01:54:30 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\bear\Downloads\esetsmartinstaller_enu.exe

Error: (10/28/2012 01:54:30 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\bear\Downloads\esetsmartinstaller_enu.exe

Error: (10/28/2012 01:54:27 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\bear\Downloads\esetsmartinstaller_enu (2).exe

Error: (10/28/2012 10:29:22 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\bear\Downloads\esetsmartinstaller_enu (2).exe

Error: (10/28/2012 10:29:16 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\bear\Downloads\esetsmartinstaller_enu (2).exe

Error: (10/28/2012 10:28:00 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\bear\Downloads\esetsmartinstaller_enu (1).exe

Error: (10/28/2012 10:28:00 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\bear\Downloads\esetsmartinstaller_enu.exe

=========================== Installed Programs ============================

µTorrent (Version: 3.1.3)
64 Bit HP CIO Components Installer (Version: 6.2.1)
Acoustica Effects Pack (Version: 3.0)
Acoustica Mixcraft 5
Adobe AIR (Version: 1.5.3.9130)
Adobe Community Help (Version: 3.2.1)
Adobe Community Help (Version: 3.2.1.650)
Adobe Flash Player 11 ActiveX (Version: 11.4.402.287)
Adobe Photoshop Elements 9 (Version: 9.0)
Adobe Premiere Elements 9 (Version: 9.0)
Adobe Reader X (10.1.2) (Version: 10.1.2)
Adobe Shockwave Player 11.5 (Version: 11.5.9.620)
Agatha Christie - Peril at End House (Version: 2.2.0.95)
ALPS Touch Pad Driver (Version: 7.206.1717.117)
Apple Application Support (Version: 2.2.2)
Apple Mobile Device Support (Version: 6.0.0.59)
Apple Software Update (Version: 2.1.3.127)
Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver (Version: 1.0.2.43)
Audacity 1.3.14 (Unicode)
Audible Download Manager (Version: 6.6.0.15)
AuthenTec TrueAPI (Version: 1.3.0.144)
AVG 2012 (Version: 12.0.2221)
AVG 2012 (Version: 12.0.2441)
AVG 2012 (Version: 2012.0.2221)
Bejeweled 3 (Version: 2.2.0.97)
Blackhawk Striker 2 (Version: 2.2.0.95)
Blasterball 3 (Version: 2.2.0.97)
Bonjour (Version: 3.0.0.10)
Bounce Symphony (Version: 2.2.0.97)
Brownstone Equation Editor 5 (Version: 5.2)
BufferChm (Version: 130.0.331.000)
C4700 (Version: 130.0.373.000)
Cake Mania (Version: 2.2.0.95)
calibre (Version: 0.8.32)
CD Wave Editor 1.98 (Version: 1.9.8.1)
Chronicles of Albian (Version: 2.2.0.95)
Chuzzle Deluxe (Version: 2.2.0.95)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Cradle of Rome 2 (Version: 2.2.0.95)
CyberLink YouCam (Version: 3.5.1.4119)
D3DX10 (Version: 15.4.2368.0902)
dBpoweramp CD Writer (Version: Release 4)
dBpoweramp DSP Effects (Version: Release 7)
dBpoweramp Music Converter (Version: Release 14.1)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Destinations (Version: 130.0.0.0)
DeviceDiscovery (Version: 130.0.372.000)
Elements 9 Organizer (Version: 9.0)
Elements STI Installer (Version: 1.0)
ESET Online Scanner v3
ESU for Microsoft Windows 7 SP1 (Version: 2.1.1)
Evernote v. 4.2.3 (Version: 4.2.3.22)
ExamView Assessment Suite
ExamView Player
Facebook Messenger 2.1.4651.0 (Version: 2.1.4651.0)
Farm Frenzy (Version: 2.2.0.95)
FATE (Version: 2.2.0.97)
FileZilla Client 3.5.3 (Version: 3.5.3)
foobar2000 v1.1.10 (Version: 1.1.10)
Free RAR Extract Frog (Version: 4.10)
Glencoe PuzzleMaker 2.0
Google Chrome (Version: 22.0.1229.94)
Google Drive (Version: 1.4.3365.1552)
Google Earth Plug-in (Version: 6.2.2.6613)
Google Talk (remove only)
Google Talk Plugin (Version: 3.9.1.9832)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.4.3230.2052)
Google Update Helper (Version: 1.3.21.123)
Governor of Poker 2 Premium Edition (Version: 2.2.0.95)
GPBaseService2 (Version: 130.0.371.000)
Hewlett-Packard ACLM.NET v1.1.1.0 (Version: 1.00.0000)
HP 3D DriveGuard (Version: 4.1.9.1)
HP Client Services (Version: 1.1.12938.3539)
HP CoolSense (Version: 2.1.0)
HP Customer Experience Enhancements (Version: 6.0.1.7)
HP Customer Participation Program 13.0 (Version: 13.0)
HP Documentation (Version: 1.1.0.0)
HP Games (Version: 1.0.2.5)
HP Imaging Device Functions 13.0 (Version: 13.0)
HP Launch Box (Version: 1.0.11)
HP On Screen Display (Version: 1.2.2)
HP Photosmart C4700 All-In-One Driver Software 13.0 Rel .6 (Version: 13.0)
HP Power Manager (Version: 1.2.3)
HP Print Projects 1.0 (Version: 1.0)
HP Quick Launch (Version: 2.4.3)
HP QuickWeb (Version: 3.1.0.9742)
HP Setup (Version: 8.7.4751.3798)
HP Setup Manager (Version: 1.1.13476.3753)
HP SimplePass 2011 (Version: 5.3.0.273)
HP Smart Web Printing 4.5 (Version: 4.5)
HP Software Framework (Version: 4.1.6.1)
HP Solution Center 13.0 (Version: 13.0)
HP Support Assistant (Version: 6.0.5.4)
HP Update (Version: 4.000.011.006)
HPPhotoGadget (Version: 130.0.282.000)
hpPrintProjects (Version: 130.0.303.000)
HPProductAssistant (Version: 130.0.371.000)
HPSSupply (Version: 130.0.371.000)
hpWLPGInstaller (Version: 130.0.303.000)
iCloud (Version: 2.0.2.187)
IDT Audio (Version: 1.0.6341.0)
ImgBurn (Version: 2.5.7.0)
Intel PROSet Wireless
Intel® Control Center (Version: 1.2.1.1007)
Intel® Identity Protection Technology 1.1.2.0 (Version: 1.1.2.0)
Intel® Management Engine Components (Version: 7.0.0.1144)
Intel® Processor Graphics (Version: 8.15.10.2372)
Intel® PROSet/Wireless WiFi Software (Version: 14.01.1000)
Intel® Rapid Storage Technology (Version: 10.5.0.1026)
Intel® WiDi (Version: 2.1.39.0)
Intel® Wireless Display
iTunes (Version: 10.7.0.21)
Java Auto Updater (Version: 2.1.6.0)
Java™ 6 Update 31 (Version: 6.0.310)
Java™ 7 Update 5 (Version: 7.0.50)
JavaFX 2.1.1 (Version: 2.1.1)
Jewel Quest: The Sleepless Star - Collector's Edition (Version: 2.2.0.95)
Junk Mail filter update (Version: 15.4.3502.0922)
LogMeIn (Version: 4.1.2138)
Mah Jong Medley (Version: 2.2.0.95)
Malwarebytes Anti-Malware version 1.65.1.1000 (Version: 1.65.1.1000)
MarketResearch (Version: 130.0.374.000)
McAfee Security Scan Plus (Version: 2.0.181.2)
Mesh Runtime (Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Home and Student 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Professional Edition 2003 (Version: 11.0.8173.0)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Single Image 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft PowerPoint Viewer (Version: 14.0.6029.1000)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP2 Parser and SDK (Version: 4.20.9818.0)
Music Manager
Mystery of Mortlake Mansion (Version: 2.2.0.97)
Namco All-Stars: PAC-MAN (Version: 2.2.0.95)
Network64 (Version: 130.0.374.000)
Penguins! (Version: 2.2.0.95)
Plants vs. Zombies - Game of the Year (Version: 2.2.0.95)
Poker Superstars III (Version: 2.2.0.95)
Polar Bowler (Version: 2.2.0.97)
Polar Golfer (Version: 2.2.0.95)
PS_AIO_06_C4700_SW_Min (Version: 130.0.373.000)
QuickTime (Version: 7.72.80.56)
Realtek PCIE Card Reader (Version: 6.1.7600.80)
Recovery Manager (Version: 2.0.0)
Scan (Version: 13.0.0.0)
Shop for HP Supplies (Version: 13.0)
Slingo Supreme (Version: 2.2.0.97)
SmartSound Quicktracks for Premiere Elements 9.0 (Version: 3.12.3090)
SmartWebPrinting (Version: 130.0.373.000)
SolutionCenter (Version: 130.0.373.000)
Status (Version: 130.0.373.000)
Toolbox (Version: 130.0.648.000)
Trader's Little Helper 2.7.0 (Version: 2.7.0)
TrayApp (Version: 130.0.376.000)
Ulead GIF Animator 5
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553272) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2598289) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2589345) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2553248) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Update Installer for WildTangent Games App
Vacation Quest - The Hawaiian Islands (Version: 2.2.0.97)
Validity WBF DDK (Version: 4.3.205.0)
VIP Access SDK (1.0.1.2) (Version: 1.0.1.2)
Virtual Villagers 5 - New Believers (Version: 2.2.0.97)
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
VLC media player 2.0.1 (Version: 2.0.1)
WebReg (Version: 130.0.132.017)
WildTangent Games App (HP Games) (Version: 4.0.5.2)
Wimba Diploma 6
Wimba Diploma 6 (Version: 6.67.0106)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Movie Maker 2.6 (Version: 2.6.4037.0)
Yahoo! Toolbar
Zuma Deluxe (Version: 2.2.0.95)

========================= Memory info: ===================================

Percentage of memory in use: 30%
Total physical RAM: 6091.86 MB
Available physical RAM: 4213.34 MB
Total Pagefile: 12181.91 MB
Available Pagefile: 10102.34 MB
Total Virtual: 4095.88 MB
Available Virtual: 3956.94 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:571.06 GB) (Free:339.3 GB) NTFS
2 Drive d: (Recovery) (Fixed) (Total:20.95 GB) (Free:2.26 GB) NTFS
3 Drive e: (HP_TOOLS) (Fixed) (Total:3.96 GB) (Free:1.08 GB) FAT32

========================= Users: ========================================

User accounts for \\MSLANSTER-HP

Administrator bear Guest
MsLanster

========================= Restore Points ==================================

**** End of log ****

Farbar:

Farbar Service Scanner Version: 27-10-2012
Ran by bear (administrator) on 28-10-2012 at 21:03:55
Running from "C:\Users\bear\Downloads"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.

Windows Firewall:
=============

Firewall Disabled Policy:
==================

System Restore:
============

System Restore Disabled Policy:
========================

Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================

Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.

Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1

Other Services:
==============

File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit

**** End of log ****

Adware Cleaner:

# AdwCleaner v2.005 - Logfile created 10/28/2012 at 21:04:54
# Updated 14/10/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : bear - MSLANSTER-HP
# Boot Mode : Normal
# Running from : C:\Users\bear\Downloads\adwcleaner (1).exe
# Option [Delete]

***** [Services] *****

***** [Files / Folders] *****

***** [Registry] *****

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

-\\ Google Chrome v22.0.1229.94

File : C:\Users\MsLanster\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

File : C:\Users\bear\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [5854 octets] - [27/10/2012 21:15:37]
AdwCleaner[S2].txt - [833 octets] - [28/10/2012 21:04:54]

########## EOF - C:\AdwCleaner[S2].txt - [892 octets] ##########

JRT:

Junkware Removal Tool (JRT) by Thisisu
Version: 2.2.4 (10.28.2012)
OS: Windows 7 Home Premium x64
Ran by bear on Sun 10/28/2012 at 21:10:07.40
Blog: http://thisisudax.blogspot.com
**************************************************************

*** Services: 0 Detections

*** Registry Values: 0 Detections

*** Registry Keys: 0 Detections

*** Files: 0 Detections

*** Folders: 0 Detections

*** Event Viewer Logs - Cleared

**************************************************************
Scan was completed on Sun 10/28/2012 at 21:30:37.02
End of Report

#6 narenxp

Forum Addict

BC Advisor
16,365 posts

Gender:Male
Location:India

Posted 28 October 2012 - 10:04 PM

Still redirected?

Download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here

Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the contents of text here