Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Popup add in bottom right corner coupled with redirects


  • This topic is locked This topic is locked
26 replies to this topic

#1 Coopers1234

Coopers1234

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:02:52 AM

Posted 18 May 2012 - 06:36 AM

Hey,

I randomly get adds that appear on the bottom right hand corner of my browser window. These adds usually appear in the shape of an iphone, when i close the add it minimises into a "recommended for you" white box. Now whenever these adds appear the next link i click redirects me to an random advertisement site.

I am running Windows 7 64-bit OS with chrome. I have run Ad-Aware, Malware Bytes, Avast and Bit Defender, all of which have come up clean.

Thanks in advance.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:22 PM

Posted 18 May 2012 - 06:41 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here


Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

#3 Coopers1234

Coopers1234
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:02:52 AM

Posted 19 May 2012 - 03:46 AM

Here we are:


TDSSKILLER

17:39:36.0013 5816 TDSS rootkit removing tool 2.7.35.0 May 16 2012 07:37:57
17:39:36.0681 5816 ============================================================
17:39:36.0681 5816 Current date / time: 2012/05/19 17:39:36.0681
17:39:36.0681 5816 SystemInfo:
17:39:36.0681 5816
17:39:36.0681 5816 OS Version: 6.1.7601 ServicePack: 1.0
17:39:36.0681 5816 Product type: Workstation
17:39:36.0681 5816 ComputerName: INITIAL-PC
17:39:36.0681 5816 UserName: Emil
17:39:36.0681 5816 Windows directory: C:\Windows
17:39:36.0681 5816 System windows directory: C:\Windows
17:39:36.0681 5816 Running under WOW64
17:39:36.0681 5816 Processor architecture: Intel x64
17:39:36.0681 5816 Number of processors: 4
17:39:36.0681 5816 Page size: 0x1000
17:39:36.0681 5816 Boot type: Normal boot
17:39:36.0681 5816 ============================================================
17:39:36.0862 5816 Drive \Device\Harddisk0\DR0 - Size: 0x1DCF74DE00 (119.24 Gb), SectorSize: 0x200, Cylinders: 0x3CCD, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:39:36.0867 5816 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:39:36.0870 5816 ============================================================
17:39:36.0870 5816 \Device\Harddisk0\DR0:
17:39:36.0870 5816 MBR partitions:
17:39:36.0870 5816 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
17:39:36.0870 5816 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xEE48800
17:39:36.0870 5816 \Device\Harddisk1\DR1:
17:39:36.0870 5816 MBR partitions:
17:39:36.0870 5816 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705800
17:39:36.0870 5816 ============================================================
17:39:36.0872 5816 C: <-> \Device\Harddisk0\DR0\Partition1
17:39:36.0885 5816 E: <-> \Device\Harddisk1\DR1\Partition0
17:39:36.0885 5816 ============================================================
17:39:36.0885 5816 Initialize success
17:39:36.0885 5816 ============================================================
17:40:02.0113 4368 ============================================================
17:40:02.0113 4368 Scan started
17:40:02.0113 4368 Mode: Manual; TDLFS;
17:40:02.0113 4368 ============================================================
17:40:02.0315 4368 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\DRIVERS\1394ohci.sys
17:40:02.0316 4368 1394ohci - ok
17:40:02.0414 4368 ABBYY.Licensing.FineReader.Sprint.9.0 (b33cf4de909a5b30f526d82053a63c8e) E:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
17:40:02.0418 4368 ABBYY.Licensing.FineReader.Sprint.9.0 - ok
17:40:02.0427 4368 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
17:40:02.0429 4368 ACPI - ok
17:40:02.0431 4368 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
17:40:02.0432 4368 AcpiPmi - ok
17:40:02.0456 4368 AdobeFlashPlayerUpdateSvc (76d5a3d2a50402a0b9b6ed13c4371e79) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:40:02.0457 4368 AdobeFlashPlayerUpdateSvc - ok
17:40:02.0468 4368 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys
17:40:02.0472 4368 adp94xx - ok
17:40:02.0481 4368 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys
17:40:02.0484 4368 adpahci - ok
17:40:02.0489 4368 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys
17:40:02.0491 4368 adpu320 - ok
17:40:02.0495 4368 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
17:40:02.0496 4368 AeLookupSvc - ok
17:40:02.0507 4368 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
17:40:02.0511 4368 AFD - ok
17:40:02.0514 4368 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
17:40:02.0515 4368 agp440 - ok
17:40:02.0518 4368 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
17:40:02.0519 4368 ALG - ok
17:40:02.0521 4368 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
17:40:02.0522 4368 aliide - ok
17:40:02.0603 4368 ALSysIO - ok
17:40:02.0605 4368 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
17:40:02.0606 4368 amdide - ok
17:40:02.0609 4368 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys
17:40:02.0610 4368 AmdK8 - ok
17:40:02.0613 4368 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys
17:40:02.0614 4368 AmdPPM - ok
17:40:02.0617 4368 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
17:40:02.0618 4368 amdsata - ok
17:40:02.0623 4368 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys
17:40:02.0625 4368 amdsbs - ok
17:40:02.0627 4368 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
17:40:02.0628 4368 amdxata - ok
17:40:02.0630 4368 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
17:40:02.0632 4368 AppID - ok
17:40:02.0634 4368 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
17:40:02.0635 4368 AppIDSvc - ok
17:40:02.0638 4368 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
17:40:02.0641 4368 Appinfo - ok
17:40:02.0648 4368 AppMgmt (4aba3e75a76195a3e38ed2766c962899) C:\Windows\System32\appmgmts.dll
17:40:02.0650 4368 AppMgmt - ok
17:40:02.0653 4368 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys
17:40:02.0657 4368 arc - ok
17:40:02.0660 4368 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys
17:40:02.0661 4368 arcsas - ok
17:40:02.0663 4368 asahci64 (d7989234601a2de9a1801f4ed9533b6e) C:\Windows\system32\DRIVERS\asahci64.sys
17:40:02.0664 4368 asahci64 - ok
17:40:02.0667 4368 asmthub3 (6fe3237c1177e66437e7ad0e8ac1a6e5) C:\Windows\system32\DRIVERS\asmthub3.sys
17:40:02.0669 4368 asmthub3 - ok
17:40:02.0678 4368 asmtxhci (c4043e39a2abbc56581ca25df161e9f7) C:\Windows\system32\DRIVERS\asmtxhci.sys
17:40:02.0681 4368 asmtxhci - ok
17:40:02.0694 4368 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
17:40:02.0694 4368 aspnet_state - ok
17:40:02.0696 4368 AsrAppCharger (912a215ce180a6e7c923c662d7ec777d) C:\Windows\system32\DRIVERS\AsrAppCharger.sys
17:40:02.0698 4368 AsrAppCharger - ok
17:40:02.0701 4368 AsrHidFilter (edc0c73fa41df1c8b1fea3852aed2848) C:\Windows\system32\DRIVERS\AsrHidFilter.sys
17:40:02.0702 4368 AsrHidFilter - ok
17:40:02.0705 4368 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
17:40:02.0706 4368 AsyncMac - ok
17:40:02.0708 4368 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
17:40:02.0709 4368 atapi - ok
17:40:02.0724 4368 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
17:40:02.0728 4368 AudioEndpointBuilder - ok
17:40:02.0732 4368 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
17:40:02.0735 4368 AudioSrv - ok
17:40:02.0750 4368 avc3 (f57de310bf3bd9df0f7d301c1d7f5432) C:\Windows\system32\DRIVERS\avc3.sys
17:40:02.0753 4368 avc3 - ok
17:40:02.0761 4368 avchv (4c6bcc638798abe1f70afca70d889c3f) C:\Windows\system32\DRIVERS\avchv.sys
17:40:02.0764 4368 avchv - ok
17:40:02.0776 4368 avckf (6dc4cca415bbf2fc629beb532aa0e6cd) C:\Windows\system32\DRIVERS\avckf.sys
17:40:02.0778 4368 avckf - ok
17:40:02.0783 4368 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
17:40:02.0784 4368 AxInstSV - ok
17:40:02.0795 4368 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys
17:40:02.0798 4368 b06bdrv - ok
17:40:02.0806 4368 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
17:40:02.0808 4368 b57nd60a - ok
17:40:02.0814 4368 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
17:40:02.0815 4368 BDESVC - ok
17:40:02.0826 4368 bdfsfltr (ea195950fa5dd4a8f7bc00822213a363) C:\Windows\system32\DRIVERS\bdfsfltr.sys
17:40:02.0827 4368 bdfsfltr - ok
17:40:02.0930 4368 bdfwfpf (4ce4b0098fc315c237fa8867f07886c4) E:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys
17:40:02.0931 4368 bdfwfpf - ok
17:40:02.0934 4368 bdsandbox (31571d77c6186ad228f52ee4ebdf8ee9) C:\Windows\system32\drivers\bdsandbox.sys
17:40:02.0935 4368 bdsandbox - ok
17:40:02.0938 4368 BDVEDISK (b89deff4817b4cc6fc2bcd8f83b4e75d) C:\Windows\system32\DRIVERS\bdvedisk.sys
17:40:02.0940 4368 BDVEDISK - ok
17:40:02.0942 4368 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
17:40:02.0943 4368 Beep - ok
17:40:02.0960 4368 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
17:40:02.0964 4368 BFE - ok
17:40:02.0984 4368 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
17:40:02.0990 4368 BITS - ok
17:40:02.0998 4368 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
17:40:02.0999 4368 blbdrive - ok
17:40:03.0002 4368 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
17:40:03.0003 4368 bowser - ok
17:40:03.0005 4368 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys
17:40:03.0006 4368 BrFiltLo - ok
17:40:03.0008 4368 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys
17:40:03.0009 4368 BrFiltUp - ok
17:40:03.0012 4368 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
17:40:03.0014 4368 Browser - ok
17:40:03.0020 4368 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
17:40:03.0023 4368 Brserid - ok
17:40:03.0026 4368 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
17:40:03.0028 4368 BrSerWdm - ok
17:40:03.0031 4368 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
17:40:03.0032 4368 BrUsbMdm - ok
17:40:03.0033 4368 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
17:40:03.0034 4368 BrUsbSer - ok
17:40:03.0038 4368 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\drivers\bthmodem.sys
17:40:03.0039 4368 BTHMODEM - ok
17:40:03.0043 4368 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
17:40:03.0045 4368 bthserv - ok
17:40:03.0047 4368 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
17:40:03.0051 4368 cdfs - ok
17:40:03.0055 4368 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
17:40:03.0059 4368 cdrom - ok
17:40:03.0063 4368 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
17:40:03.0064 4368 CertPropSvc - ok
17:40:03.0066 4368 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys
17:40:03.0067 4368 circlass - ok
17:40:03.0075 4368 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
17:40:03.0078 4368 CLFS - ok
17:40:03.0086 4368 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:40:03.0088 4368 clr_optimization_v2.0.50727_32 - ok
17:40:03.0093 4368 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:40:03.0096 4368 clr_optimization_v2.0.50727_64 - ok
17:40:03.0106 4368 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:40:03.0108 4368 clr_optimization_v4.0.30319_32 - ok
17:40:03.0116 4368 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:40:03.0117 4368 clr_optimization_v4.0.30319_64 - ok
17:40:03.0119 4368 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\drivers\CmBatt.sys
17:40:03.0120 4368 CmBatt - ok
17:40:03.0121 4368 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
17:40:03.0122 4368 cmdide - ok
17:40:03.0136 4368 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
17:40:03.0139 4368 CNG - ok
17:40:03.0142 4368 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys
17:40:03.0143 4368 Compbatt - ok
17:40:03.0145 4368 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\DRIVERS\CompositeBus.sys
17:40:03.0146 4368 CompositeBus - ok
17:40:03.0147 4368 COMSysApp - ok
17:40:03.0150 4368 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys
17:40:03.0151 4368 crcdisk - ok
17:40:03.0157 4368 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll
17:40:03.0159 4368 CryptSvc - ok
17:40:03.0171 4368 CSC (54da3dfd29ed9f1619b6f53f3ce55e49) C:\Windows\system32\drivers\csc.sys
17:40:03.0175 4368 CSC - ok
17:40:03.0191 4368 CscService (3ab183ab4d2c79dcf459cd2c1266b043) C:\Windows\System32\cscsvc.dll
17:40:03.0195 4368 CscService - ok
17:40:03.0208 4368 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
17:40:03.0212 4368 DcomLaunch - ok
17:40:03.0220 4368 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
17:40:03.0223 4368 defragsvc - ok
17:40:03.0231 4368 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
17:40:03.0232 4368 DfsC - ok
17:40:03.0240 4368 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
17:40:03.0242 4368 Dhcp - ok
17:40:03.0245 4368 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
17:40:03.0246 4368 discache - ok
17:40:03.0249 4368 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys
17:40:03.0250 4368 Disk - ok
17:40:03.0253 4368 dmvsc (5db085a8a6600be6401f2b24eecb5415) C:\Windows\system32\drivers\dmvsc.sys
17:40:03.0254 4368 dmvsc - ok
17:40:03.0259 4368 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
17:40:03.0261 4368 Dnscache - ok
17:40:03.0268 4368 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
17:40:03.0270 4368 dot3svc - ok
17:40:03.0276 4368 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
17:40:03.0277 4368 DPS - ok
17:40:03.0280 4368 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
17:40:03.0280 4368 drmkaud - ok
17:40:03.0286 4368 dtsoftbus01 (400582b09e0bb557d0ec28a945150eeb) C:\Windows\system32\DRIVERS\dtsoftbus01.sys
17:40:03.0288 4368 dtsoftbus01 - ok
17:40:03.0309 4368 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
17:40:03.0313 4368 DXGKrnl - ok
17:40:03.0318 4368 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
17:40:03.0320 4368 EapHost - ok
17:40:03.0389 4368 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys
17:40:03.0408 4368 ebdrv - ok
17:40:03.0429 4368 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
17:40:03.0430 4368 EFS - ok
17:40:03.0445 4368 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys
17:40:03.0450 4368 elxstor - ok
17:40:03.0452 4368 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
17:40:03.0453 4368 ErrDev - ok
17:40:03.0465 4368 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
17:40:03.0468 4368 EventSystem - ok
17:40:03.0474 4368 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
17:40:03.0476 4368 exfat - ok
17:40:03.0481 4368 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
17:40:03.0483 4368 fastfat - ok
17:40:03.0499 4368 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
17:40:03.0504 4368 Fax - ok
17:40:03.0506 4368 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
17:40:03.0507 4368 fdc - ok
17:40:03.0509 4368 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
17:40:03.0511 4368 fdPHost - ok
17:40:03.0513 4368 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
17:40:03.0514 4368 FDResPub - ok
17:40:03.0517 4368 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
17:40:03.0518 4368 FileInfo - ok
17:40:03.0520 4368 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
17:40:03.0521 4368 Filetrace - ok
17:40:03.0523 4368 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys
17:40:03.0524 4368 flpydisk - ok
17:40:03.0531 4368 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
17:40:03.0533 4368 FltMgr - ok
17:40:03.0557 4368 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
17:40:03.0565 4368 FontCache - ok
17:40:03.0570 4368 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:40:03.0571 4368 FontCache3.0.0.0 - ok
17:40:03.0578 4368 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
17:40:03.0579 4368 FsDepends - ok
17:40:03.0581 4368 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
17:40:03.0581 4368 Fs_Rec - ok
17:40:03.0587 4368 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
17:40:03.0589 4368 fvevol - ok
17:40:03.0592 4368 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys
17:40:03.0593 4368 gagp30kx - ok
17:40:03.0609 4368 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
17:40:03.0615 4368 gpsvc - ok
17:40:03.0617 4368 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
17:40:03.0618 4368 hcw85cir - ok
17:40:03.0627 4368 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
17:40:03.0630 4368 HdAudAddService - ok
17:40:03.0635 4368 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\DRIVERS\HDAudBus.sys
17:40:03.0636 4368 HDAudBus - ok
17:40:03.0638 4368 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys
17:40:03.0639 4368 HidBatt - ok
17:40:03.0642 4368 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys
17:40:03.0643 4368 HidBth - ok
17:40:03.0645 4368 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys
17:40:03.0647 4368 HidIr - ok
17:40:03.0649 4368 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
17:40:03.0650 4368 hidserv - ok
17:40:03.0652 4368 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
17:40:03.0653 4368 HidUsb - ok
17:40:03.0656 4368 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
17:40:03.0660 4368 hkmsvc - ok
17:40:03.0666 4368 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
17:40:03.0669 4368 HomeGroupListener - ok
17:40:03.0674 4368 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
17:40:03.0677 4368 HomeGroupProvider - ok
17:40:03.0680 4368 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
17:40:03.0681 4368 HpSAMD - ok
17:40:03.0697 4368 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
17:40:03.0702 4368 HTTP - ok
17:40:03.0704 4368 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
17:40:03.0704 4368 hwpolicy - ok
17:40:03.0709 4368 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
17:40:03.0710 4368 i8042prt - ok
17:40:03.0723 4368 iaStor (2fdaec4b02729c48c0fd1b0b4695995b) C:\Windows\system32\DRIVERS\iaStor.sys
17:40:03.0725 4368 iaStor - ok
17:40:03.0730 4368 IAStorDataMgrSvc (d41861e56e7552c13674d7f147a02464) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
17:40:03.0730 4368 IAStorDataMgrSvc - ok
17:40:03.0740 4368 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
17:40:03.0743 4368 iaStorV - ok
17:40:03.0764 4368 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:40:03.0770 4368 idsvc - ok
17:40:04.0020 4368 igfx (174bcac474de13b2650e444cf124828e) C:\Windows\system32\DRIVERS\igdkmd64.sys
17:40:04.0089 4368 igfx - ok
17:40:04.0112 4368 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys
17:40:04.0113 4368 iirsp - ok
17:40:04.0131 4368 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
17:40:04.0137 4368 IKEEXT - ok
17:40:04.0199 4368 IntcAzAudAddService (c7124da48e557d8f88d0d7f1254557f4) C:\Windows\system32\drivers\RTKVHD64.sys
17:40:04.0211 4368 IntcAzAudAddService - ok
17:40:04.0233 4368 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
17:40:04.0234 4368 intelide - ok
17:40:04.0236 4368 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
17:40:04.0237 4368 intelppm - ok
17:40:04.0240 4368 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
17:40:04.0241 4368 IPBusEnum - ok
17:40:04.0244 4368 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:40:04.0245 4368 IpFilterDriver - ok
17:40:04.0258 4368 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
17:40:04.0261 4368 iphlpsvc - ok
17:40:04.0265 4368 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
17:40:04.0266 4368 IPMIDRV - ok
17:40:04.0270 4368 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
17:40:04.0271 4368 IPNAT - ok
17:40:04.0273 4368 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
17:40:04.0274 4368 IRENUM - ok
17:40:04.0276 4368 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
17:40:04.0276 4368 isapnp - ok
17:40:04.0284 4368 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
17:40:04.0286 4368 iScsiPrt - ok
17:40:04.0289 4368 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
17:40:04.0290 4368 kbdclass - ok
17:40:04.0292 4368 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
17:40:04.0293 4368 kbdhid - ok
17:40:04.0295 4368 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:40:04.0296 4368 KeyIso - ok
17:40:04.0299 4368 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
17:40:04.0300 4368 KSecDD - ok
17:40:04.0304 4368 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
17:40:04.0305 4368 KSecPkg - ok
17:40:04.0307 4368 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
17:40:04.0308 4368 ksthunk - ok
17:40:04.0316 4368 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
17:40:04.0321 4368 KtmRm - ok
17:40:04.0325 4368 LADF_DHP2 (86dcbf8a41c78561a1da07ab5e7b1ccc) C:\Windows\system32\DRIVERS\ladfDHP2amd64.sys
17:40:04.0327 4368 LADF_DHP2 - ok
17:40:04.0335 4368 LADF_SBVM (175c04c7813ce64616b5cb046e5e1383) C:\Windows\system32\DRIVERS\ladfSBVMamd64.sys
17:40:04.0338 4368 LADF_SBVM - ok
17:40:04.0346 4368 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
17:40:04.0348 4368 LanmanServer - ok
17:40:04.0353 4368 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
17:40:04.0355 4368 LanmanWorkstation - ok
17:40:04.0359 4368 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
17:40:04.0360 4368 lltdio - ok
17:40:04.0367 4368 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
17:40:04.0370 4368 lltdsvc - ok
17:40:04.0372 4368 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
17:40:04.0374 4368 lmhosts - ok
17:40:04.0382 4368 LMS (9ad4bee2fe76d4ca39ac969b617e94fb) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
17:40:04.0384 4368 LMS - ok
17:40:04.0389 4368 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys
17:40:04.0392 4368 LSI_FC - ok
17:40:04.0396 4368 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys
17:40:04.0398 4368 LSI_SAS - ok
17:40:04.0400 4368 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys
17:40:04.0402 4368 LSI_SAS2 - ok
17:40:04.0406 4368 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys
17:40:04.0409 4368 LSI_SCSI - ok
17:40:04.0413 4368 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
17:40:04.0415 4368 luafv - ok
17:40:04.0417 4368 MBfilt (8ff2d95cba49b405c5de27039ff0bf35) C:\Windows\system32\drivers\MBfilt64.sys
17:40:04.0419 4368 MBfilt - ok
17:40:04.0421 4368 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys
17:40:04.0424 4368 megasas - ok
17:40:04.0432 4368 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys
17:40:04.0435 4368 MegaSR - ok
17:40:04.0438 4368 MEIx64 (a6518dcc42f7a6e999bb3bea8fd87567) C:\Windows\system32\DRIVERS\HECIx64.sys
17:40:04.0440 4368 MEIx64 - ok
17:40:04.0441 4368 MEMSWEEP2 (f9ce67e9e0226079b59107b649851f96) C:\Windows\system32\9F36.tmp
17:40:04.0446 4368 MEMSWEEP2 - ok
17:40:04.0500 4368 Microsoft Office Groove Audit Service (123271bd5237ab991dc5c21fdf8835eb) E:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
17:40:04.0501 4368 Microsoft Office Groove Audit Service - ok
17:40:04.0504 4368 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
17:40:04.0506 4368 MMCSS - ok
17:40:04.0508 4368 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
17:40:04.0509 4368 Modem - ok
17:40:04.0511 4368 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
17:40:04.0511 4368 monitor - ok
17:40:04.0514 4368 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
17:40:04.0514 4368 mouclass - ok
17:40:04.0516 4368 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
17:40:04.0517 4368 mouhid - ok
17:40:04.0520 4368 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
17:40:04.0521 4368 mountmgr - ok
17:40:04.0525 4368 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
17:40:04.0530 4368 mpio - ok
17:40:04.0533 4368 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
17:40:04.0534 4368 mpsdrv - ok
17:40:04.0552 4368 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
17:40:04.0558 4368 MpsSvc - ok
17:40:04.0563 4368 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
17:40:04.0564 4368 MRxDAV - ok
17:40:04.0569 4368 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
17:40:04.0571 4368 mrxsmb - ok
17:40:04.0578 4368 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:40:04.0581 4368 mrxsmb10 - ok
17:40:04.0585 4368 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:40:04.0587 4368 mrxsmb20 - ok
17:40:04.0589 4368 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
17:40:04.0589 4368 msahci - ok
17:40:04.0593 4368 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
17:40:04.0595 4368 msdsm - ok
17:40:04.0599 4368 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
17:40:04.0601 4368 MSDTC - ok
17:40:04.0605 4368 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
17:40:04.0607 4368 Msfs - ok
17:40:04.0608 4368 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
17:40:04.0609 4368 mshidkmdf - ok
17:40:04.0610 4368 MSICDSetup - ok
17:40:04.0614 4368 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
17:40:04.0614 4368 msisadrv - ok
17:40:04.0619 4368 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
17:40:04.0623 4368 MSiSCSI - ok
17:40:04.0624 4368 msiserver - ok
17:40:04.0627 4368 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
17:40:04.0629 4368 MSKSSRV - ok
17:40:04.0630 4368 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
17:40:04.0631 4368 MSPCLOCK - ok
17:40:04.0634 4368 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
17:40:04.0635 4368 MSPQM - ok
17:40:04.0643 4368 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
17:40:04.0645 4368 MsRPC - ok
17:40:04.0649 4368 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
17:40:04.0650 4368 mssmbios - ok
17:40:04.0651 4368 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
17:40:04.0652 4368 MSTEE - ok
17:40:04.0654 4368 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys
17:40:04.0655 4368 MTConfig - ok
17:40:04.0658 4368 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
17:40:04.0659 4368 Mup - ok
17:40:04.0669 4368 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
17:40:04.0674 4368 napagent - ok
17:40:04.0683 4368 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
17:40:04.0686 4368 NativeWifiP - ok
17:40:04.0708 4368 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
17:40:04.0714 4368 NDIS - ok
17:40:04.0717 4368 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
17:40:04.0718 4368 NdisCap - ok
17:40:04.0720 4368 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
17:40:04.0721 4368 NdisTapi - ok
17:40:04.0724 4368 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
17:40:04.0725 4368 Ndisuio - ok
17:40:04.0729 4368 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
17:40:04.0731 4368 NdisWan - ok
17:40:04.0734 4368 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
17:40:04.0735 4368 NDProxy - ok
17:40:04.0737 4368 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
17:40:04.0738 4368 NetBIOS - ok
17:40:04.0744 4368 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
17:40:04.0746 4368 NetBT - ok
17:40:04.0749 4368 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:40:04.0749 4368 Netlogon - ok
17:40:04.0759 4368 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
17:40:04.0762 4368 Netman - ok
17:40:04.0774 4368 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:40:04.0776 4368 NetMsmqActivator - ok
17:40:04.0777 4368 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:40:04.0778 4368 NetPipeActivator - ok
17:40:04.0789 4368 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
17:40:04.0793 4368 netprofm - ok
17:40:04.0796 4368 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:40:04.0797 4368 NetTcpActivator - ok
17:40:04.0799 4368 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:40:04.0799 4368 NetTcpPortSharing - ok
17:40:04.0807 4368 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys
17:40:04.0808 4368 nfrd960 - ok
17:40:04.0815 4368 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
17:40:04.0818 4368 NlaSvc - ok
17:40:04.0821 4368 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
17:40:04.0822 4368 Npfs - ok
17:40:04.0824 4368 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
17:40:04.0826 4368 nsi - ok
17:40:04.0828 4368 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
17:40:04.0828 4368 nsiproxy - ok
17:40:04.0865 4368 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
17:40:04.0875 4368 Ntfs - ok
17:40:04.0897 4368 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
17:40:04.0898 4368 Null - ok
17:40:04.0903 4368 NVHDA (8d4aac74b571fc356560e5b308955e93) C:\Windows\system32\drivers\nvhda64v.sys
17:40:04.0905 4368 NVHDA - ok
17:40:05.0184 4368 nvlddmkm (9c1996dd3c0469bc8933321f15709f5a) C:\Windows\system32\DRIVERS\nvlddmkm.sys
17:40:05.0233 4368 nvlddmkm - ok
17:40:05.0258 4368 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
17:40:05.0259 4368 nvraid - ok
17:40:05.0263 4368 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
17:40:05.0266 4368 nvstor - ok
17:40:05.0285 4368 NVSvc (34e5498528bb3d5a951f889f8756ad26) C:\Windows\system32\nvvsvc.exe
17:40:05.0290 4368 NVSvc - ok
17:40:05.0415 4368 nvUpdatusService (cd0bfaa6872cfe38c908d313ae17c350) E:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
17:40:05.0445 4368 nvUpdatusService - ok
17:40:05.0450 4368 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
17:40:05.0452 4368 nv_agp - ok
17:40:05.0515 4368 odserv (785f487a64950f3cb8e9f16253ba3b7b) E:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
17:40:05.0518 4368 odserv - ok
17:40:05.0522 4368 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
17:40:05.0523 4368 ohci1394 - ok
17:40:05.0548 4368 ose (5a432a042dae460abe7199b758e8606c) E:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:40:05.0550 4368 ose - ok
17:40:05.0560 4368 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
17:40:05.0563 4368 p2pimsvc - ok
17:40:05.0574 4368 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
17:40:05.0578 4368 p2psvc - ok
17:40:05.0583 4368 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys
17:40:05.0584 4368 Parport - ok
17:40:05.0587 4368 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
17:40:05.0588 4368 partmgr - ok
17:40:05.0593 4368 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
17:40:05.0595 4368 PcaSvc - ok
17:40:05.0601 4368 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
17:40:05.0602 4368 pci - ok
17:40:05.0604 4368 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
17:40:05.0605 4368 pciide - ok
17:40:05.0610 4368 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys
17:40:05.0613 4368 pcmcia - ok
17:40:05.0615 4368 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
17:40:05.0616 4368 pcw - ok
17:40:05.0627 4368 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
17:40:05.0632 4368 PEAUTH - ok
17:40:05.0657 4368 PeerDistSvc (b9b0a4299dd2d76a4243f75fd54dc680) C:\Windows\system32\peerdistsvc.dll
17:40:05.0666 4368 PeerDistSvc - ok
17:40:05.0685 4368 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
17:40:05.0690 4368 PerfHost - ok
17:40:05.0739 4368 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
17:40:05.0751 4368 pla - ok
17:40:05.0763 4368 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
17:40:05.0767 4368 PlugPlay - ok
17:40:05.0769 4368 PnkBstrA - ok
17:40:05.0773 4368 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
17:40:05.0775 4368 PNRPAutoReg - ok
17:40:05.0783 4368 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
17:40:05.0785 4368 PNRPsvc - ok
17:40:05.0797 4368 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
17:40:05.0801 4368 PolicyAgent - ok
17:40:05.0807 4368 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
17:40:05.0810 4368 Power - ok
17:40:05.0817 4368 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
17:40:05.0819 4368 PptpMiniport - ok
17:40:05.0821 4368 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys
17:40:05.0823 4368 Processor - ok
17:40:05.0828 4368 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
17:40:05.0831 4368 ProfSvc - ok
17:40:05.0833 4368 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:40:05.0834 4368 ProtectedStorage - ok
17:40:05.0839 4368 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
17:40:05.0840 4368 Psched - ok
17:40:05.0872 4368 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys
17:40:05.0882 4368 ql2300 - ok
17:40:05.0906 4368 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys
17:40:05.0908 4368 ql40xx - ok
17:40:05.0914 4368 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
17:40:05.0917 4368 QWAVE - ok
17:40:05.0920 4368 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
17:40:05.0922 4368 QWAVEdrv - ok
17:40:05.0924 4368 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
17:40:05.0926 4368 RasAcd - ok
17:40:05.0929 4368 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
17:40:05.0930 4368 RasAgileVpn - ok
17:40:05.0934 4368 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
17:40:05.0936 4368 RasAuto - ok
17:40:05.0941 4368 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
17:40:05.0942 4368 Rasl2tp - ok
17:40:05.0951 4368 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
17:40:05.0954 4368 RasMan - ok
17:40:05.0959 4368 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
17:40:05.0960 4368 RasPppoe - ok
17:40:05.0964 4368 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
17:40:05.0965 4368 RasSstp - ok
17:40:05.0972 4368 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
17:40:05.0975 4368 rdbss - ok
17:40:05.0977 4368 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
17:40:05.0978 4368 rdpbus - ok
17:40:05.0980 4368 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
17:40:05.0981 4368 RDPCDD - ok
17:40:05.0987 4368 RDPDR (1b6163c503398b23ff8b939c67747683) C:\Windows\system32\drivers\rdpdr.sys
17:40:05.0989 4368 RDPDR - ok
17:40:05.0992 4368 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
17:40:05.0992 4368 RDPENCDD - ok
17:40:05.0995 4368 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
17:40:05.0995 4368 RDPREFMP - ok
17:40:05.0998 4368 RdpVideoMiniport (70cba1a0c98600a2aa1863479b35cb90) C:\Windows\system32\drivers\rdpvideominiport.sys
17:40:06.0000 4368 RdpVideoMiniport - ok
17:40:06.0006 4368 RDPWD (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys
17:40:06.0010 4368 RDPWD - ok
17:40:06.0016 4368 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
17:40:06.0018 4368 rdyboost - ok
17:40:06.0021 4368 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
17:40:06.0023 4368 RemoteAccess - ok
17:40:06.0028 4368 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
17:40:06.0030 4368 RemoteRegistry - ok
17:40:06.0034 4368 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
17:40:06.0035 4368 RpcEptMapper - ok
17:40:06.0037 4368 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
17:40:06.0039 4368 RpcLocator - ok
17:40:06.0050 4368 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
17:40:06.0053 4368 RpcSs - ok
17:40:06.0057 4368 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
17:40:06.0058 4368 rspndr - ok
17:40:06.0068 4368 RTL8167 (f4c374b1c46de294b573bb43723ac3f6) C:\Windows\system32\DRIVERS\Rt64win7.sys
17:40:06.0072 4368 RTL8167 - ok
17:40:06.0077 4368 RzSynapse (24510c4a77aba3b07aefa840db888637) C:\Windows\system32\DRIVERS\RzSynapse.sys
17:40:06.0081 4368 RzSynapse - ok
17:40:06.0083 4368 s3cap (e60c0a09f997826c7627b244195ab581) C:\Windows\system32\drivers\vms3cap.sys
17:40:06.0084 4368 s3cap - ok
17:40:06.0086 4368 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:40:06.0087 4368 SamSs - ok
17:40:06.0095 4368 SbFw (cdb954c736d51dc5fa712c039af4f683) C:\Windows\system32\drivers\SbFw.sys
17:40:06.0098 4368 SbFw - ok
17:40:06.0102 4368 SBFWIMCL (5de22e3cb6140213da2e0599b08d525c) C:\Windows\system32\DRIVERS\sbfwim.sys
17:40:06.0104 4368 SBFWIMCL - ok
17:40:06.0105 4368 SBFWIMCLMP (5de22e3cb6140213da2e0599b08d525c) C:\Windows\system32\DRIVERS\SBFWIM.sys
17:40:06.0106 4368 SBFWIMCLMP - ok
17:40:06.0109 4368 sbhips (a5bc45f8c2f30350e7566799c86b2f5d) C:\Windows\system32\drivers\sbhips.sys
17:40:06.0113 4368 sbhips - ok
17:40:06.0117 4368 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
17:40:06.0118 4368 sbp2port - ok
17:40:06.0119 4368 SBRE - ok
17:40:06.0124 4368 SbTis (f9955774a6bf0a5ca696f591c7b80a79) C:\Windows\system32\drivers\sbtis.sys
17:40:06.0126 4368 SbTis - ok
17:40:06.0131 4368 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
17:40:06.0134 4368 SCardSvr - ok
17:40:06.0137 4368 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
17:40:06.0138 4368 scfilter - ok
17:40:06.0162 4368 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
17:40:06.0169 4368 Schedule - ok
17:40:06.0174 4368 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
17:40:06.0174 4368 SCPolicySvc - ok
17:40:06.0179 4368 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
17:40:06.0181 4368 SDRSVC - ok
17:40:06.0187 4368 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
17:40:06.0188 4368 secdrv - ok
17:40:06.0191 4368 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
17:40:06.0192 4368 seclogon - ok
17:40:06.0195 4368 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
17:40:06.0197 4368 SENS - ok
17:40:06.0200 4368 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
17:40:06.0201 4368 SensrSvc - ok
17:40:06.0204 4368 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
17:40:06.0205 4368 Serenum - ok
17:40:06.0209 4368 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
17:40:06.0210 4368 Serial - ok
17:40:06.0212 4368 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys
17:40:06.0213 4368 sermouse - ok
17:40:06.0220 4368 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
17:40:06.0224 4368 SessionEnv - ok
17:40:06.0226 4368 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
17:40:06.0227 4368 sffdisk - ok
17:40:06.0229 4368 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
17:40:06.0230 4368 sffp_mmc - ok
17:40:06.0233 4368 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
17:40:06.0234 4368 sffp_sd - ok
17:40:06.0236 4368 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys
17:40:06.0237 4368 sfloppy - ok
17:40:06.0246 4368 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
17:40:06.0251 4368 SharedAccess - ok
17:40:06.0261 4368 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
17:40:06.0264 4368 ShellHWDetection - ok
17:40:06.0268 4368 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys
17:40:06.0269 4368 SiSRaid2 - ok
17:40:06.0272 4368 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys
17:40:06.0274 4368 SiSRaid4 - ok
17:40:06.0305 4368 SkypeUpdate (6128e98eaaed364ed1a32708d2fd22cb) E:\Program Files (x86)\Skype\Updater\Updater.exe
17:40:06.0305 4368 SkypeUpdate - ok
17:40:06.0309 4368 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
17:40:06.0311 4368 Smb - ok
17:40:06.0315 4368 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
17:40:06.0317 4368 SNMPTRAP - ok
17:40:06.0319 4368 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
17:40:06.0320 4368 spldr - ok
17:40:06.0333 4368 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
17:40:06.0337 4368 Spooler - ok
17:40:06.0411 4368 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
17:40:06.0431 4368 sppsvc - ok
17:40:06.0452 4368 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
17:40:06.0454 4368 sppuinotify - ok
17:40:06.0468 4368 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
17:40:06.0472 4368 srv - ok
17:40:06.0482 4368 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
17:40:06.0485 4368 srv2 - ok
17:40:06.0491 4368 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
17:40:06.0493 4368 srvnet - ok
17:40:06.0499 4368 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
17:40:06.0501 4368 SSDPSRV - ok
17:40:06.0505 4368 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
17:40:06.0507 4368 SstpSvc - ok
17:40:06.0515 4368 Steam Client Service - ok
17:40:06.0519 4368 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys
17:40:06.0520 4368 stexstor - ok
17:40:06.0534 4368 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
17:40:06.0538 4368 stisvc - ok
17:40:06.0542 4368 storflt (7785dc213270d2fc066538daf94087e7) C:\Windows\system32\drivers\vmstorfl.sys
17:40:06.0543 4368 storflt - ok
17:40:06.0545 4368 storvsc (d34e4943d5ac096c8edeebfd80d76e23) C:\Windows\system32\drivers\storvsc.sys
17:40:06.0547 4368 storvsc - ok
17:40:06.0549 4368 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
17:40:06.0549 4368 swenum - ok
17:40:06.0626 4368 SwitchBoard (f577910a133a592234ebaad3f3afa258) E:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
17:40:06.0630 4368 SwitchBoard - ok
17:40:06.0642 4368 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
17:40:06.0646 4368 swprv - ok
17:40:06.0651 4368 Synth3dVsc (c3a39c4079305480972d29c44b868c78) C:\Windows\system32\drivers\synth3dvsc.sys
17:40:06.0652 4368 Synth3dVsc - ok
17:40:06.0689 4368 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
17:40:06.0701 4368 SysMain - ok
17:40:06.0722 4368 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
17:40:06.0724 4368 TabletInputService - ok
17:40:06.0732 4368 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
17:40:06.0736 4368 TapiSrv - ok
17:40:06.0739 4368 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
17:40:06.0741 4368 TBS - ok
17:40:06.0786 4368 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
17:40:06.0797 4368 Tcpip - ok
17:40:06.0859 4368 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
17:40:06.0866 4368 TCPIP6 - ok
17:40:06.0892 4368 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
17:40:06.0893 4368 tcpipreg - ok
17:40:06.0896 4368 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
17:40:06.0897 4368 TDPIPE - ok
17:40:06.0900 4368 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
17:40:06.0902 4368 TDTCP - ok
17:40:06.0906 4368 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
17:40:06.0908 4368 tdx - ok
17:40:06.0911 4368 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\DRIVERS\termdd.sys
17:40:06.0911 4368 TermDD - ok
17:40:06.0914 4368 terminpt (2b5bdff688ec9871d7ec5837833374e9) C:\Windows\system32\drivers\terminpt.sys
17:40:06.0915 4368 terminpt - ok
17:40:06.0928 4368 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
17:40:06.0933 4368 TermService - ok
17:40:06.0936 4368 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
17:40:06.0938 4368 Themes - ok
17:40:06.0941 4368 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
17:40:06.0942 4368 THREADORDER - ok
17:40:06.0946 4368 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
17:40:06.0948 4368 TrkWks - ok
17:40:06.0956 4368 trufos (df219721ddffcbe03aa894b6b6742ba1) C:\Windows\system32\DRIVERS\trufos.sys
17:40:06.0958 4368 trufos - ok
17:40:06.0963 4368 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
17:40:06.0964 4368 TrustedInstaller - ok
17:40:06.0968 4368 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
17:40:06.0969 4368 tssecsrv - ok
17:40:06.0972 4368 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
17:40:06.0974 4368 TsUsbFlt - ok
17:40:06.0976 4368 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\Windows\system32\drivers\TsUsbGD.sys
17:40:06.0977 4368 TsUsbGD - ok
17:40:06.0981 4368 tsusbhub (e1748d04ae40118b62bc18ac86032192) C:\Windows\system32\drivers\tsusbhub.sys
17:40:06.0983 4368 tsusbhub - ok
17:40:06.0986 4368 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
17:40:06.0988 4368 tunnel - ok
17:40:06.0991 4368 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys
17:40:06.0992 4368 uagp35 - ok
17:40:06.0999 4368 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
17:40:07.0002 4368 udfs - ok
17:40:07.0007 4368 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
17:40:07.0009 4368 UI0Detect - ok
17:40:07.0012 4368 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
17:40:07.0013 4368 uliagpkx - ok
17:40:07.0015 4368 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
17:40:07.0016 4368 umbus - ok
17:40:07.0018 4368 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys
17:40:07.0019 4368 UmPass - ok
17:40:07.0025 4368 UmRdpService (a293dcd756d04d8492a750d03b9a297c) C:\Windows\System32\umrdp.dll
17:40:07.0027 4368 UmRdpService - ok
17:40:07.0080 4368 UNS (cd114ce02a10fa79c229770788106842) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
17:40:07.0096 4368 UNS - ok
17:40:07.0141 4368 Update Server (7de3f30967cf77bd1fc440c2b847629a) E:\Program Files\Common Files\Bitdefender\Bitdefender Arrakis Server\bin\arrakis3.exe
17:40:07.0143 4368 Update Server - ok
17:40:07.0190 4368 UPDATESRV (6fa5ffc3765c9c444d82faf1d46c1cae) E:\Program Files\Bitdefender\Bitdefender 2012\updatesrv.exe
17:40:07.0191 4368 UPDATESRV - ok
17:40:07.0217 4368 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
17:40:07.0220 4368 upnphost - ok
17:40:07.0229 4368 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys
17:40:07.0231 4368 usbaudio - ok
17:40:07.0234 4368 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
17:40:07.0236 4368 usbccgp - ok
17:40:07.0239 4368 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
17:40:07.0241 4368 usbcir - ok
17:40:07.0244 4368 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
17:40:07.0245 4368 usbehci - ok
17:40:07.0253 4368 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
17:40:07.0256 4368 usbhub - ok
17:40:07.0259 4368 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
17:40:07.0260 4368 usbohci - ok
17:40:07.0263 4368 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\drivers\usbprint.sys
17:40:07.0264 4368 usbprint - ok
17:40:07.0268 4368 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:40:07.0269 4368 USBSTOR - ok
17:40:07.0271 4368 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
17:40:07.0272 4368 usbuhci - ok
17:40:07.0275 4368 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
17:40:07.0276 4368 UxSms - ok
17:40:07.0279 4368 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:40:07.0280 4368 VaultSvc - ok
17:40:07.0282 4368 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
17:40:07.0283 4368 vdrvroot - ok
17:40:07.0295 4368 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
17:40:07.0300 4368 vds - ok
17:40:07.0303 4368 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
17:40:07.0305 4368 vga - ok
17:40:07.0307 4368 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
17:40:07.0308 4368 VgaSave - ok
17:40:07.0310 4368 VGPU - ok
17:40:07.0316 4368 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
17:40:07.0319 4368 vhdmp - ok
17:40:07.0321 4368 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
17:40:07.0322 4368 viaide - ok
17:40:07.0326 4368 VirtuWDDM (2fdd9f870bde9c0353d6e82b4b309c44) C:\Windows\system32\DRIVERS\VirtuWDDM.sys
17:40:07.0328 4368 VirtuWDDM - ok
17:40:07.0333 4368 vmbus (86ea3e79ae350fea5331a1303054005f) C:\Windows\system32\drivers\vmbus.sys
17:40:07.0335 4368 vmbus - ok
17:40:07.0338 4368 VMBusHID (7de90b48f210d29649380545db45a187) C:\Windows\system32\drivers\VMBusHID.sys
17:40:07.0339 4368 VMBusHID - ok
17:40:07.0342 4368 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
17:40:07.0343 4368 volmgr - ok
17:40:07.0351 4368 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
17:40:07.0354 4368 volmgrx - ok
17:40:07.0362 4368 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
17:40:07.0365 4368 volsnap - ok
17:40:07.0371 4368 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys
17:40:07.0373 4368 vsmraid - ok
17:40:07.0407 4368 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
17:40:07.0417 4368 VSS - ok
17:40:07.0418 4368 VSSERV - ok
17:40:07.0442 4368 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
17:40:07.0443 4368 vwifibus - ok
17:40:07.0452 4368 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
17:40:07.0456 4368 W32Time - ok
17:40:07.0460 4368 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys
17:40:07.0461 4368 WacomPen - ok
17:40:07.0465 4368 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
17:40:07.0467 4368 WANARP - ok
17:40:07.0468 4368 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
17:40:07.0469 4368 Wanarpv6 - ok
17:40:07.0497 4368 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
17:40:07.0505 4368 WatAdminSvc - ok
17:40:07.0540 4368 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
17:40:07.0550 4368 wbengine - ok
17:40:07.0575 4368 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
17:40:07.0578 4368 WbioSrvc - ok
17:40:07.0589 4368 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
17:40:07.0593 4368 wcncsvc - ok
17:40:07.0596 4368 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
17:40:07.0598 4368 WcsPlugInService - ok
17:40:07.0605 4368 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys
17:40:07.0606 4368 Wd - ok
17:40:07.0620 4368 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
17:40:07.0624 4368 Wdf01000 - ok
17:40:07.0629 4368 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
17:40:07.0631 4368 WdiServiceHost - ok
17:40:07.0632 4368 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
17:40:07.0634 4368 WdiSystemHost - ok
17:40:07.0641 4368 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
17:40:07.0644 4368 WebClient - ok
17:40:07.0651 4368 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
17:40:07.0654 4368 Wecsvc - ok
17:40:07.0659 4368 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
17:40:07.0661 4368 wercplsupport - ok
17:40:07.0665 4368 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
17:40:07.0667 4368 WerSvc - ok
17:40:07.0673 4368 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
17:40:07.0675 4368 WfpLwf - ok
17:40:07.0677 4368 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
17:40:07.0678 4368 WIMMount - ok
17:40:07.0690 4368 WinDefend - ok
17:40:07.0694 4368 WinHttpAutoProxySvc - ok
17:40:07.0706 4368 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
17:40:07.0709 4368 Winmgmt - ok
17:40:07.0754 4368 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
17:40:07.0766 4368 WinRM - ok
17:40:07.0793 4368 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
17:40:07.0794 4368 WinUsb - ok
17:40:07.0814 4368 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
17:40:07.0821 4368 Wlansvc - ok
17:40:07.0948 4368 wlidsvc (2bacd71123f42cea603f4e205e1ae337) E:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:40:07.0980 4368 wlidsvc - ok
17:40:07.0983 4368 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
17:40:07.0983 4368 WmiAcpi - ok
17:40:07.0995 4368 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
17:40:07.0997 4368 wmiApSrv - ok
17:40:08.0000 4368 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
17:40:08.0002 4368 WPCSvc - ok
17:40:08.0006 4368 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
17:40:08.0008 4368 WPDBusEnum - ok
17:40:08.0011 4368 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
17:40:08.0012 4368 ws2ifsl - ok
17:40:08.0016 4368 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
17:40:08.0018 4368 wscsvc - ok
17:40:08.0020 4368 WSearch - ok
17:40:08.0071 4368 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
17:40:08.0086 4368 wuauserv - ok
17:40:08.0111 4368 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
17:40:08.0114 4368 WudfPf - ok
17:40:08.0120 4368 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
17:40:08.0122 4368 WUDFRd - ok
17:40:08.0126 4368 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
17:40:08.0128 4368 wudfsvc - ok
17:40:08.0135 4368 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
17:40:08.0138 4368 WwanSvc - ok
17:40:08.0143 4368 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
17:40:08.0339 4368 \Device\Harddisk0\DR0 - ok
17:40:08.0348 4368 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk1\DR1
17:40:08.0409 4368 \Device\Harddisk1\DR1 - ok
17:40:08.0410 4368 Boot (0x1200) (59ec285b5ab12c498d454ffa2569c07e) \Device\Harddisk0\DR0\Partition0
17:40:08.0411 4368 \Device\Harddisk0\DR0\Partition0 - ok
17:40:08.0413 4368 Boot (0x1200) (0ac7ae466985280c79d332bfe95560a0) \Device\Harddisk0\DR0\Partition1
17:40:08.0413 4368 \Device\Harddisk0\DR0\Partition1 - ok
17:40:08.0439 4368 Boot (0x1200) (f4fb659c284f28482bf7af9b797a796c) \Device\Harddisk1\DR1\Partition0
17:40:08.0440 4368 \Device\Harddisk1\DR1\Partition0 - ok
17:40:08.0441 4368 ============================================================
17:40:08.0441 4368 Scan finished
17:40:08.0441 4368 ============================================================
17:40:08.0446 5796 Detected object count: 0
17:40:08.0446 5796 Actual detected object count: 0

aswMBR

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-05-19 17:41:49
-----------------------------
17:41:49.363 OS Version: Windows x64 6.1.7601 Service Pack 1
17:41:49.363 Number of processors: 4 586 0x2A07
17:41:49.364 ComputerName: INITIAL-PC UserName: Emil
17:41:49.453 Initialize success
17:43:54.401 AVAST engine defs: 12051900
17:49:48.528 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
17:49:48.529 Disk 0 Vendor: M4-CT128 0009 Size: 122103MB BusType: 3
17:49:48.531 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IAAStorageDevice-2
17:49:48.532 Disk 1 Vendor: WDC_WD10 05.0 Size: 953869MB BusType: 3
17:49:48.534 Disk 0 MBR read successfully
17:49:48.535 Disk 0 MBR scan
17:49:48.584 Disk 0 Windows 7 default MBR code
17:49:48.587 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
17:49:48.591 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 122001 MB offset 206848
17:49:48.598 Disk 0 scanning C:\Windows\system32\drivers
17:49:50.873 Service scanning
17:49:53.064 Service MSICDSetup D:\CDriver64.sys **LOCKED** 21
17:49:56.286 Modules scanning
17:49:56.292 Disk 0 trace - called modules:
17:49:56.295 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
17:49:56.298 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800a092060]
17:49:56.300 3 CLASSPNP.SYS[fffff88001c5143f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8008dc3050]
17:49:56.404 AVAST engine scan C:\Windows
17:49:56.849 AVAST engine scan C:\Windows\system32
17:50:50.667 AVAST engine scan C:\Windows\system32\drivers
17:50:54.245 AVAST engine scan E:\Users\Emil
18:05:12.268 AVAST engine scan C:\ProgramData
18:05:23.885 Scan finished successfully
18:11:35.610 Disk 0 MBR has been saved successfully to "E:\Users\Emil\Documents\MBR.dat"
18:11:35.615 The log file has been saved successfully to "E:\Users\Emil\Documents\aswMBR1.txt"

mini toolbox


MiniToolBox by Farbar Version: 18-01-2012
Ran by Emil (administrator) on 19-05-2012 at 18:13:22
Microsoft Windows 7 Ultimate Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

::1 localhost

67.215.245.19 www.google-analytics.com.
67.215.245.19 ad-emea.doubleclick.net.
67.215.245.19 www.statcounter.com.
108.163.215.51 www.google-analytics.com.
108.163.215.51 ad-emea.doubleclick.net.
108.163.215.51 www.statcounter.com.

127.0.0.1 localhost

========================= IP Configuration: ================================

Realtek PCIe GBE Family Controller = Local Area Connection 2 (Connected)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Initial-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : home

Ethernet adapter Local Area Connection 2:

Connection-specific DNS Suffix . : home
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller #2
Physical Address. . . . . . . . . : BC-5F-F4-0C-9D-FD
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::3147:394d:ff76:dfc0%13(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.6(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Saturday, 19 May 2012 4:15:12 PM
Lease Expires . . . . . . . . . . : Sunday, 20 May 2012 4:15:12 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 314335220
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-72-5F-8B-BC-5F-F4-0C-9D-FB
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : BC-5F-F4-0C-9D-FB
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{E2AA3872-FAEC-497B-977C-81F3BDC57D2E}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.home:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : home
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:5ef5:79fd:14eb:2d3b:3f57:fef9(Preferred)
Link-local IPv6 Address . . . . . : fe80::14eb:2d3b:3f57:fef9%15(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: NB6PLUS4W.home
Address: 192.168.1.1

Name: google.com
Addresses: 2404:6800:4006:803::1002
74.125.237.105
74.125.237.110
74.125.237.96
74.125.237.97
74.125.237.98
74.125.237.99
74.125.237.100
74.125.237.101
74.125.237.102
74.125.237.103
74.125.237.104


Pinging google.com [74.125.237.105] with 32 bytes of data:
Reply from 74.125.237.105: bytes=32 time=52ms TTL=54
Reply from 74.125.237.105: bytes=32 time=53ms TTL=53

Ping statistics for 74.125.237.105:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 52ms, Maximum = 53ms, Average = 52ms
Server: NB6PLUS4W.home
Address: 192.168.1.1

Name: yahoo.com
Addresses: 209.191.122.70
72.30.38.140
98.139.183.24


Pinging yahoo.com [209.191.122.70] with 32 bytes of data:
Reply from 209.191.122.70: bytes=32 time=240ms TTL=53
Reply from 209.191.122.70: bytes=32 time=240ms TTL=53

Ping statistics for 209.191.122.70:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 240ms, Maximum = 240ms, Average = 240ms
Server: NB6PLUS4W.home
Address: 192.168.1.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
13...bc 5f f4 0c 9d fd ......Realtek PCIe GBE Family Controller #2
11...bc 5f f4 0c 9d fb ......Realtek PCIe GBE Family Controller
1...........................Software Loopback Interface 1
12...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
14...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
15...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.6 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.6 276
192.168.1.6 255.255.255.255 On-link 192.168.1.6 276
192.168.1.255 255.255.255.255 On-link 192.168.1.6 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.6 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.6 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
15 58 ::/0 On-link
1 306 ::1/128 On-link
15 58 2001::/32 On-link
15 306 2001:0:5ef5:79fd:14eb:2d3b:3f57:fef9/128
On-link
13 276 fe80::/64 On-link
15 306 fe80::/64 On-link
15 306 fe80::14eb:2d3b:3f57:fef9/128
On-link
13 276 fe80::3147:394d:ff76:dfc0/128
On-link
1 306 ff00::/8 On-link
15 306 ff00::/8 On-link
13 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 E:\Windows\SysWOW64\NLAapi.dll [File Not found] ()
Catalog5 02 E:\Windows\SysWOW64\napinsp.dll [File Not found] ()
Catalog5 03 E:\Windows\SysWOW64\pnrpnsp.dll [File Not found] ()
Catalog5 04 E:\Windows\SysWOW64\pnrpnsp.dll [File Not found] ()
Catalog5 05 E:\Windows\SysWOW64\mswsock.dll [File Not found] ()
Catalog5 06 E:\Windows\SysWOW64\winrnr.dll [File Not found] ()
Catalog5 07 E:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 E:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 E:\Windows\SysWOW64\mswsock.dll [File Not found] ()
Catalog9 02 E:\Windows\SysWOW64\mswsock.dll [File Not found] ()
Catalog9 03 E:\Windows\SysWOW64\mswsock.dll [File Not found] ()
Catalog9 04 E:\Windows\SysWOW64\mswsock.dll [File Not found] ()
Catalog9 05 E:\Windows\SysWOW64\mswsock.dll [File Not found] ()
Catalog9 06 E:\Windows\SysWOW64\mswsock.dll [File Not found] ()
Catalog9 07 E:\Windows\SysWOW64\mswsock.dll [File Not found] ()
Catalog9 08 E:\Windows\SysWOW64\mswsock.dll [File Not found] ()
Catalog9 09 E:\Windows\SysWOW64\mswsock.dll [File Not found] ()
Catalog9 10 E:\Windows\SysWOW64\mswsock.dll [File Not found] ()
x64-Catalog5 01 E:\Windows\System32\NLAapi.dll [File Not found] ()
x64-Catalog5 02 E:\Windows\System32\napinsp.dll [File Not found] ()
x64-Catalog5 03 E:\Windows\System32\pnrpnsp.dll [File Not found] ()
x64-Catalog5 04 E:\Windows\System32\pnrpnsp.dll [File Not found] ()
x64-Catalog5 05 E:\Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog5 06 E:\Windows\System32\winrnr.dll [File Not found] ()
x64-Catalog5 07 E:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 08 E:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 E:\Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 02 E:\Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 03 E:\Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 04 E:\Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 05 E:\Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 06 E:\Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 07 E:\Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 08 E:\Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 09 E:\Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 10 E:\Windows\System32\mswsock.dll [File Not found] ()

========================= Event log errors: ===============================

Application errors:
==================
Error: (05/19/2012 05:21:17 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.

Error: (05/19/2012 04:23:14 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.

Details:
AddCoreCsiFiles : RtlConvertNtFilePathToWin32Path() failed.

System Error:
0xC0000039 (unresolvable).

Error: (05/19/2012 04:23:14 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.

Details:
AddCoreCsiFiles : RtlConvertNtFilePathToWin32Path() failed.

System Error:
0xC0000039 (unresolvable).

Error: (05/19/2012 04:16:47 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/18/2012 02:02:04 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.

Error: (05/18/2012 10:00:59 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/17/2012 11:22:38 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/16/2012 09:59:57 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.

Error: (05/16/2012 09:42:59 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/16/2012 02:14:27 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.

Details:
AddCoreCsiFiles : RtlConvertNtFilePathToWin32Path() failed.

System Error:
0xC0000039 (unresolvable).


System errors:
=============
Error: (05/19/2012 04:15:24 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
AsrHidFilter
SBRE
trufos

Error: (05/18/2012 09:59:38 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
AsrHidFilter
SBRE
trufos

Error: (05/17/2012 11:21:18 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
AsrHidFilter
SBRE
trufos

Error: (05/16/2012 09:41:38 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
AsrHidFilter
SBRE
trufos

Error: (05/15/2012 07:01:11 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
AsrHidFilter
SBRE
trufos

Error: (05/14/2012 10:52:05 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
AsrHidFilter
SBRE
trufos

Error: (05/13/2012 11:01:14 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
AsrHidFilter
SBRE
trufos

Error: (05/12/2012 08:21:42 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
AsrHidFilter
SBRE
trufos

Error: (05/11/2012 10:10:06 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
AsrHidFilter
SBRE
trufos

Error: (05/10/2012 09:50:17 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
AsrHidFilter
SBRE
trufos


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
ABBYY FineReader 9.0 Sprint (Version: 9.01.506.5829)
Acrobat.com (Version: 0.0.0)
Acrobat.com (Version: 1.1.377)
Ad-Aware Browsing Protection (Version: 0.9.0.2)
Adobe AIR (Version: 1.5.3.9120)
Adobe Community Help (Version: 3.0.0)
Adobe Community Help (Version: 3.0.0.400)
Adobe Flash Player 11 ActiveX 64-bit (Version: 11.2.202.235)
Adobe Flash Player 11 Plugin 64-bit (Version: 11.2.202.235)
Adobe Media Player (Version: 1.8)
Adobe Photoshop CS5 (Version: 12.0)
Adobe Reader 9 (Version: 9.0.0)
Asmedia ASM104x USB 3.0 Host Controller Driver (Version: 1.10.1.0)
Asmedia ASM106x SATA Host Controller Driver (Version: 1.2.2.000)
ASRock App Charger v1.0.4
µTorrent (Version: 3.1.0)
Battlefield 3™ (Version: 1.0.0.0)
Battlelog Web Plugins (Version: 1.118.0)
Bitdefender Antivirus Plus 2012 (Version: 15.0.36)
ComicRack v0.9.153 (Version: v0.9.153)
D3DX10 (Version: 15.4.2368.0902)
DAEMON Tools Lite (Version: 4.45.1.0236)
Diablo III (Version: 1.0.1.9558)
Dota 2
Epson Easy Photo Print 2 (Version: 2.2.0.0)
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) (Version: 1.00.0000)
Epson Event Manager (Version: 2.40.0001)
Epson FAX Utility (Version: 1.10.00)
Epson PC-FAX Driver
EPSON Scan
EPSON WorkForce 630 Series Manual
EPSON WorkForce 630 Series Network Guide
EpsonNet Setup 3.3 (Version: 3.3a)
ESN Sonar (Version: 0.70.4)
F-Stream Tuning v0.1.73.5
Google Chrome (Version: 19.0.1084.46)
GrabIt 1.7.2 Beta 6 (build 1008)
Guild Wars
Heroes of Newerth (Version: 2.3.0)
InstantBoot
Intel® Control Center (Version: 1.2.1.1007)
Intel® Management Engine Components (Version: 7.0.0.1144)
Intel® Processor Graphics (Version: 8.15.10.2361)
Intel® Rapid Storage Technology (Version: 10.6.0.1002)
Internode Monthly Usage Meter 8.2a
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 31 (Version: 6.0.310)
LastPass (uninstall only)
Logitech G35 (Version: 1.1.178)
Magicka
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft XNA Framework Redistributable 3.1 (Version: 3.1.10527.0)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)
Mobipocket Reader 6.2 (Version: 6.2.608)
Mozilla Firefox 11.0 (x86 en-US) (Version: 11.0)
MSVCRT (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Nexus Mod Manager (Version: 0.14.1)
NVIDIA Control Panel 295.73 (Version: 295.73)
NVIDIA Graphics Driver 295.73 (Version: 295.73)
NVIDIA HD Audio Driver 1.3.12.0 (Version: 1.3.12.0)
NVIDIA Install Application (Version: 2.1002.62.312)
NVIDIA PhysX (Version: 9.12.0209)
NVIDIA PhysX System Software 9.12.0209 (Version: 9.12.0209)
NVIDIA Update 1.7.11 (Version: 1.7.11)
NVIDIA Update Components (Version: 1.7.11)
Origin (Version: 8.5.2.23)
PDF Settings CS5 (Version: 10.0)
PunkBuster Services (Version: 0.991)
QuickPar 0.9 (Version: 0.9)
Razer Megalodon Firmware Updater (Version: 2.12.02)
Razer Naga (Version: 3.02.05)
Realtek Ethernet Controller Driver (Version: 7.44.421.2011)
Realtek High Definition Audio Driver (Version: 6.0.1.6378)
Skype™ 5.8 (Version: 5.8.158)
Steam (Version: 1.0.0.0)
TeamSpeak 3 Client
TERA (Version: 1.38)
The Elder Scrolls V: Skyrim
THX TruStudio (Version: 1.00.01)
Unigine Heaven DX11 Benchmark 2.5 version 2.5 (Version: 2.5)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2598290) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
Ventrilo Client for Windows x64 (Version: 3.0.8.0)
VIRTU 1.2.102 (Version: 1.2.102)
VLC media player 1.1.11 (Version: 1.1.11)
Winamp (Version: 5.623 )
Winamp Detector Plug-in (Version: 1.0.0.1)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3538.0513)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3538.0513)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
WinRAR 4.10 beta 4 (64-bit) (Version: 4.10.4)

========================= Memory info: ===================================

Percentage of memory in use: 43%
Total physical RAM: 8104.57 MB
Available physical RAM: 4566.89 MB
Total Pagefile: 16207.34 MB
Available Pagefile: 12148.73 MB
Total Virtual: 4095.88 MB
Available Virtual: 3947.88 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:119.14 GB) (Free:70.58 GB) NTFS
3 Drive e: (Primary) (Fixed) (Total:931.51 GB) (Free:458.75 GB) NTFS

========================= Users: ========================================

User accounts for \\INITIAL-PC

Administrator Emil Guest
UpdatusUser


**** End of log ****

Edited by Orange Blossom, 23 July 2012 - 09:41 AM.
Removed excess white space. ~ OB


#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:22 PM

Posted 19 May 2012 - 08:13 AM

Click on startmenu and type

cmd

right click on it and select run as administrator

Now copy following commands and press ENTER one by one

cd C:\windows\system32\drivers\etc
takeown /a /f hosts
cacls hosts /p everyone:f


Press Y

attrib -s -h -r hosts

After running these commands

Download

Hosts fixit

Run it,restart the PC

Now launch mini toolbox and checkmark hosts contents alone and post the new log

good luck

#5 Coopers1234

Coopers1234
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:02:52 AM

Posted 19 May 2012 - 10:15 AM

MiniToolBox by Farbar Version: 18-01-2012
Ran by Emil (administrator) on 20-05-2012 at 00:44:53
Microsoft Windows 7 Ultimate Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
========================= Hosts content: =================================

# ::1 localhost


**** End of log ****

Hope i did it right

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:22 PM

Posted 19 May 2012 - 10:36 AM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

Click on startmenu and type

cmd

right click on it and select run as administrator & run this command

netsh winsock reset

Restart the PC,and launch mini toolbox,check mark

List Winsock Entries

Click on GO and post the generated log

#7 Coopers1234

Coopers1234
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:02:52 AM

Posted 20 May 2012 - 05:18 AM

There were no threats found using ESET online scanner.

Mini Toolbox


MiniToolBox by Farbar Version: 18-01-2012
Ran by Emil (administrator) on 20-05-2012 at 19:47:48
Microsoft Windows 7 Ultimate Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
========================= Winsock entries =====================================

Catalog5 01 E:\Windows\SysWOW64\NLAapi.dll [File Not found] ()
Catalog5 02 E:\Windows\SysWOW64\napinsp.dll [File Not found] ()
Catalog5 03 E:\Windows\SysWOW64\pnrpnsp.dll [File Not found] ()
Catalog5 04 E:\Windows\SysWOW64\pnrpnsp.dll [File Not found] ()
Catalog5 05 E:\Windows\SysWOW64\mswsock.dll [File Not found] ()
Catalog5 06 E:\Windows\SysWOW64\winrnr.dll [File Not found] ()
Catalog5 07 E:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 E:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 E:\Windows\SysWOW64\mswsock.dll [File Not found] ()
Catalog9 02 E:\Windows\SysWOW64\mswsock.dll [File Not found] ()
Catalog9 03 E:\Windows\SysWOW64\mswsock.dll [File Not found] ()
Catalog9 04 E:\Windows\SysWOW64\mswsock.dll [File Not found] ()
Catalog9 05 E:\Windows\SysWOW64\mswsock.dll [File Not found] ()
Catalog9 06 E:\Windows\SysWOW64\mswsock.dll [File Not found] ()
Catalog9 07 E:\Windows\SysWOW64\mswsock.dll [File Not found] ()
Catalog9 08 E:\Windows\SysWOW64\mswsock.dll [File Not found] ()
Catalog9 09 E:\Windows\SysWOW64\mswsock.dll [File Not found] ()
Catalog9 10 E:\Windows\SysWOW64\mswsock.dll [File Not found] ()
x64-Catalog5 01 E:\Windows\System32\NLAapi.dll [File Not found] ()
x64-Catalog5 02 E:\Windows\System32\napinsp.dll [File Not found] ()
x64-Catalog5 03 E:\Windows\System32\pnrpnsp.dll [File Not found] ()
x64-Catalog5 04 E:\Windows\System32\pnrpnsp.dll [File Not found] ()
x64-Catalog5 05 E:\Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog5 06 E:\Windows\System32\winrnr.dll [File Not found] ()
x64-Catalog5 07 E:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 08 E:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 E:\Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 02 E:\Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 03 E:\Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 04 E:\Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 05 E:\Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 06 E:\Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 07 E:\Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 08 E:\Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 09 E:\Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 10 E:\Windows\System32\mswsock.dll [File Not found] ()

**** End of log ****

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:22 PM

Posted 20 May 2012 - 05:57 AM

Did you do this

right click on it and select run as administrator & run this command

netsh winsock reset

Restart the PC



#9 Coopers1234

Coopers1234
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:02:52 AM

Posted 20 May 2012 - 06:33 AM

Yeah i did. Retried and same result:


MiniToolBox by Farbar Version: 18-01-2012
Ran by Emil (administrator) on 20-05-2012 at 21:00:54
Microsoft Windows 7 Ultimate Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
========================= Winsock entries =====================================

Catalog5 01 E:\Windows\SysWOW64\NLAapi.dll [File Not found] ()
Catalog5 02 E:\Windows\SysWOW64\napinsp.dll [File Not found] ()
Catalog5 03 E:\Windows\SysWOW64\pnrpnsp.dll [File Not found] ()
Catalog5 04 E:\Windows\SysWOW64\pnrpnsp.dll [File Not found] ()
Catalog5 05 E:\Windows\SysWOW64\mswsock.dll [File Not found] ()
Catalog5 06 E:\Windows\SysWOW64\winrnr.dll [File Not found] ()
Catalog5 07 E:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 E:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 E:\Windows\SysWOW64\mswsock.dll [File Not found] ()
Catalog9 02 E:\Windows\SysWOW64\mswsock.dll [File Not found] ()
Catalog9 03 E:\Windows\SysWOW64\mswsock.dll [File Not found] ()
Catalog9 04 E:\Windows\SysWOW64\mswsock.dll [File Not found] ()
Catalog9 05 E:\Windows\SysWOW64\mswsock.dll [File Not found] ()
Catalog9 06 E:\Windows\SysWOW64\mswsock.dll [File Not found] ()
Catalog9 07 E:\Windows\SysWOW64\mswsock.dll [File Not found] ()
Catalog9 08 E:\Windows\SysWOW64\mswsock.dll [File Not found] ()
Catalog9 09 E:\Windows\SysWOW64\mswsock.dll [File Not found] ()
Catalog9 10 E:\Windows\SysWOW64\mswsock.dll [File Not found] ()
x64-Catalog5 01 E:\Windows\System32\NLAapi.dll [File Not found] ()
x64-Catalog5 02 E:\Windows\System32\napinsp.dll [File Not found] ()
x64-Catalog5 03 E:\Windows\System32\pnrpnsp.dll [File Not found] ()
x64-Catalog5 04 E:\Windows\System32\pnrpnsp.dll [File Not found] ()
x64-Catalog5 05 E:\Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog5 06 E:\Windows\System32\winrnr.dll [File Not found] ()
x64-Catalog5 07 E:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 08 E:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 E:\Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 02 E:\Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 03 E:\Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 04 E:\Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 05 E:\Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 06 E:\Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 07 E:\Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 08 E:\Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 09 E:\Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 10 E:\Windows\System32\mswsock.dll [File Not found] ()

**** End of log ****


This may be irrelevant but could it be because it looking for system 32 on my E drive; windows is installed on C drive...

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:22 PM

Posted 20 May 2012 - 06:46 AM

Probably yes :thumbup2:

Download

TFC


Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off


Update your antivirus frequently,do not click on suspicious links

Safe surfing :)

#11 Coopers1234

Coopers1234
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:02:52 AM

Posted 20 May 2012 - 07:06 AM

Thank you so much. Hopefully i'll never need your help again :lol:

Edited by Coopers1234, 20 May 2012 - 07:06 AM.


#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:22 PM

Posted 20 May 2012 - 07:13 AM

:thumbsup:

You're welcome

#13 ZIEVEN

ZIEVEN

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:06:22 PM

Posted 07 July 2012 - 04:36 AM

Hi. I have got the same problem and i am not abele to solv this problem myself.

So i have don the first step that narenxp postet
Hope someone can help me out!

-----------------------------------

10:58:09.0717 2728 TDSS rootkit removing tool 2.7.44.0 Jul 2 2012 20:01:08
10:58:10.0215 2728 ============================================================
10:58:10.0215 2728 Current date / time: 2012/07/07 10:58:10.0215
10:58:10.0215 2728 SystemInfo:
10:58:10.0215 2728
10:58:10.0215 2728 OS Version: 6.1.7601 ServicePack: 1.0
10:58:10.0215 2728 Product type: Workstation
10:58:10.0215 2728 ComputerName: BJORN-THINK
10:58:10.0216 2728 UserName: Bjørn
10:58:10.0216 2728 Windows directory: C:\Windows
10:58:10.0216 2728 System windows directory: C:\Windows
10:58:10.0216 2728 Running under WOW64
10:58:10.0216 2728 Processor architecture: Intel x64
10:58:10.0216 2728 Number of processors: 4
10:58:10.0216 2728 Page size: 0x1000
10:58:10.0216 2728 Boot type: Normal boot
10:58:10.0216 2728 ============================================================
10:58:11.0573 2728 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:58:11.0581 2728 ============================================================
10:58:11.0581 2728 \Device\Harddisk0\DR0:
10:58:11.0582 2728 MBR partitions:
10:58:11.0582 2728 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x2EE000
10:58:11.0582 2728 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x38157000
10:58:11.0582 2728 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x38445800, BlocksNum 0x1F40000
10:58:11.0582 2728 ============================================================
10:58:11.0620 2728 C: <-> \Device\Harddisk0\DR0\Partition1
10:58:11.0731 2728 Q: <-> \Device\Harddisk0\DR0\Partition2
10:58:11.0731 2728 ============================================================
10:58:11.0731 2728 Initialize success
10:58:11.0731 2728 ============================================================
10:58:26.0174 6740 ============================================================
10:58:26.0174 6740 Scan started
10:58:26.0174 6740 Mode: Manual; TDLFS;
10:58:26.0174 6740 ============================================================
10:58:27.0372 6740 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
10:58:27.0403 6740 1394ohci - ok
10:58:27.0444 6740 5U877 (f4af97702bad85bfef64b9a557f11b6f) C:\Windows\system32\DRIVERS\5U877.sys
10:58:27.0781 6740 5U877 - ok
10:58:27.0824 6740 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
10:58:27.0838 6740 ACPI - ok
10:58:27.0859 6740 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
10:58:27.0870 6740 AcpiPmi - ok
10:58:27.0948 6740 AcPrfMgrSvc (1933db4808793f3bd7ab34a39a809425) C:\Program Files (x86)\Lenovo\Access Connections\AcPrfMgrSvc.exe
10:58:27.0951 6740 AcPrfMgrSvc - ok
10:58:27.0984 6740 AcSvc (e7af543334b21d84124709061a9ae4d7) C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe
10:58:28.0001 6740 AcSvc - ok
10:58:28.0111 6740 Ad-Aware Service (09e61047b0cef21559cfcedf4f14d216) C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareService.exe
10:58:28.0121 6740 Ad-Aware Service - ok
10:58:28.0232 6740 AdobeFlashPlayerUpdateSvc (f3cd7b20b27d1772c946df993ff3635c) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
10:58:28.0234 6740 AdobeFlashPlayerUpdateSvc - ok
10:58:28.0348 6740 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys
10:58:28.0400 6740 adp94xx - ok
10:58:28.0440 6740 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys
10:58:28.0466 6740 adpahci - ok
10:58:28.0490 6740 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys
10:58:28.0500 6740 adpu320 - ok
10:58:28.0552 6740 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
10:58:28.0556 6740 AeLookupSvc - ok
10:58:28.0606 6740 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
10:58:28.0636 6740 AFD - ok
10:58:28.0662 6740 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
10:58:28.0668 6740 agp440 - ok
10:58:28.0693 6740 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
10:58:28.0713 6740 ALG - ok
10:58:28.0732 6740 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
10:58:28.0736 6740 aliide - ok
10:58:28.0740 6740 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
10:58:28.0756 6740 amdide - ok
10:58:28.0768 6740 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys
10:58:28.0782 6740 AmdK8 - ok
10:58:28.0796 6740 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys
10:58:28.0801 6740 AmdPPM - ok
10:58:28.0817 6740 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
10:58:28.0832 6740 amdsata - ok
10:58:28.0855 6740 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys
10:58:28.0879 6740 amdsbs - ok
10:58:28.0893 6740 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
10:58:28.0897 6740 amdxata - ok
10:58:28.0919 6740 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
10:58:28.0924 6740 AppID - ok
10:58:28.0963 6740 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
10:58:28.0979 6740 AppIDSvc - ok
10:58:28.0997 6740 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
10:58:29.0001 6740 Appinfo - ok
10:58:29.0049 6740 AppMgmt (4aba3e75a76195a3e38ed2766c962899) C:\Windows\System32\appmgmts.dll
10:58:29.0082 6740 AppMgmt - ok
10:58:29.0105 6740 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys
10:58:29.0127 6740 arc - ok
10:58:29.0164 6740 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys
10:58:29.0170 6740 arcsas - ok
10:58:29.0245 6740 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
10:58:29.0259 6740 aspnet_state - ok
10:58:29.0290 6740 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
10:58:29.0298 6740 AsyncMac - ok
10:58:29.0328 6740 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
10:58:29.0343 6740 atapi - ok
10:58:29.0403 6740 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
10:58:29.0409 6740 AudioEndpointBuilder - ok
10:58:29.0418 6740 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
10:58:29.0425 6740 AudioSrv - ok
10:58:29.0476 6740 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
10:58:29.0493 6740 AxInstSV - ok
10:58:29.0541 6740 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys
10:58:29.0571 6740 b06bdrv - ok
10:58:29.0608 6740 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
10:58:29.0640 6740 b57nd60a - ok
10:58:29.0666 6740 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
10:58:29.0682 6740 BDESVC - ok
10:58:29.0699 6740 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
10:58:29.0712 6740 Beep - ok
10:58:29.0772 6740 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
10:58:29.0779 6740 BFE - ok
10:58:29.0834 6740 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
10:58:29.0871 6740 BITS - ok
10:58:29.0923 6740 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
10:58:29.0943 6740 blbdrive - ok
10:58:29.0976 6740 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
10:58:29.0992 6740 bowser - ok
10:58:30.0017 6740 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys
10:58:30.0022 6740 BrFiltLo - ok
10:58:30.0039 6740 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys
10:58:30.0044 6740 BrFiltUp - ok
10:58:30.0065 6740 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
10:58:30.0069 6740 Browser - ok
10:58:30.0098 6740 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
10:58:30.0131 6740 Brserid - ok
10:58:30.0151 6740 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
10:58:30.0166 6740 BrSerWdm - ok
10:58:30.0182 6740 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
10:58:30.0199 6740 BrUsbMdm - ok
10:58:30.0212 6740 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
10:58:30.0227 6740 BrUsbSer - ok
10:58:30.0257 6740 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\DRIVERS\BthEnum.sys
10:58:30.0261 6740 BthEnum - ok
10:58:30.0285 6740 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\drivers\bthmodem.sys
10:58:30.0301 6740 BTHMODEM - ok
10:58:30.0316 6740 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys
10:58:30.0321 6740 BthPan - ok
10:58:30.0377 6740 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\Windows\system32\Drivers\BTHport.sys
10:58:30.0407 6740 BTHPORT - ok
10:58:30.0446 6740 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
10:58:30.0461 6740 bthserv - ok
10:58:30.0494 6740 BTHUSB (f188b7394d81010767b6df3178519a37) C:\Windows\system32\Drivers\BTHUSB.sys
10:58:30.0499 6740 BTHUSB - ok
10:58:30.0557 6740 BTWAMPFL (f8cfafbd5bf8b3ddb0d3c2943a5af8ce) C:\Windows\system32\DRIVERS\btwampfl.sys
10:58:30.0602 6740 BTWAMPFL - ok
10:58:30.0651 6740 btwaudio (24bff9d75310f3059ee44f38bf0de0b2) C:\Windows\system32\drivers\btwaudio.sys
10:58:30.0691 6740 btwaudio - ok
10:58:30.0724 6740 btwavdt (858b305ade425732cff9ded182f94fb8) C:\Windows\system32\DRIVERS\btwavdt.sys
10:58:30.0760 6740 btwavdt - ok
10:58:30.0892 6740 btwdins (6ef8cc2f2fda2098089a33f43f4e019d) C:\Program Files\ThinkPad\Bluetooth Software\btwdins.exe
10:58:30.0904 6740 btwdins - ok
10:58:30.0917 6740 btwl2cap (b9354f9f111c64f2495b60f1e24cb453) C:\Windows\system32\DRIVERS\btwl2cap.sys
10:58:30.0942 6740 btwl2cap - ok
10:58:30.0949 6740 btwrchid (3bd876387d6c538690300f9ec198856b) C:\Windows\system32\DRIVERS\btwrchid.sys
10:58:30.0957 6740 btwrchid - ok
10:58:31.0016 6740 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
10:58:31.0043 6740 cdfs - ok
10:58:31.0090 6740 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
10:58:31.0116 6740 cdrom - ok
10:58:31.0156 6740 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
10:58:31.0158 6740 CertPropSvc - ok
10:58:31.0182 6740 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys
10:58:31.0198 6740 circlass - ok
10:58:31.0228 6740 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
10:58:31.0232 6740 CLFS - ok
10:58:31.0298 6740 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:58:31.0303 6740 clr_optimization_v2.0.50727_32 - ok
10:58:31.0338 6740 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
10:58:31.0350 6740 clr_optimization_v2.0.50727_64 - ok
10:58:31.0410 6740 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:58:31.0414 6740 clr_optimization_v4.0.30319_32 - ok
10:58:31.0456 6740 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
10:58:31.0471 6740 clr_optimization_v4.0.30319_64 - ok
10:58:31.0501 6740 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
10:58:31.0514 6740 CmBatt - ok
10:58:31.0531 6740 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
10:58:31.0537 6740 cmdide - ok
10:58:31.0576 6740 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
10:58:31.0599 6740 CNG - ok
10:58:31.0689 6740 CnxtHdAudService (290cd2777caf8a5e5499c7fc9e74cb87) C:\Windows\system32\drivers\CHDRT64.sys
10:58:31.0763 6740 CnxtHdAudService - ok
10:58:31.0872 6740 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys
10:58:31.0887 6740 Compbatt - ok
10:58:31.0913 6740 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\DRIVERS\CompositeBus.sys
10:58:31.0928 6740 CompositeBus - ok
10:58:31.0941 6740 COMSysApp - ok
10:58:31.0950 6740 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys
10:58:31.0968 6740 crcdisk - ok
10:58:31.0999 6740 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
10:58:32.0002 6740 CryptSvc - ok
10:58:32.0041 6740 CSC (54da3dfd29ed9f1619b6f53f3ce55e49) C:\Windows\system32\drivers\csc.sys
10:58:32.0076 6740 CSC - ok
10:58:32.0130 6740 CscService (3ab183ab4d2c79dcf459cd2c1266b043) C:\Windows\System32\cscsvc.dll
10:58:32.0151 6740 CscService - ok
10:58:32.0235 6740 cvhsvc (72794d112cbaff3bc0c29bf7350d4741) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
10:58:32.0242 6740 cvhsvc - ok
10:58:32.0336 6740 CxAudMsg (9d0d050170d47e778b624a28c90f23de) C:\Windows\system32\CxAudMsg64.exe
10:58:32.0355 6740 CxAudMsg - ok
10:58:32.0422 6740 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
10:58:32.0454 6740 DcomLaunch - ok
10:58:32.0489 6740 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
10:58:32.0507 6740 defragsvc - ok
10:58:32.0548 6740 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
10:58:32.0565 6740 DfsC - ok
10:58:32.0612 6740 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
10:58:32.0616 6740 Dhcp - ok
10:58:32.0634 6740 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
10:58:32.0652 6740 discache - ok
10:58:32.0684 6740 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys
10:58:32.0696 6740 Disk - ok
10:58:32.0712 6740 dmvsc (5db085a8a6600be6401f2b24eecb5415) C:\Windows\system32\drivers\dmvsc.sys
10:58:32.0726 6740 dmvsc - ok
10:58:32.0753 6740 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
10:58:32.0754 6740 Dnscache - ok
10:58:32.0775 6740 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
10:58:32.0809 6740 dot3svc - ok
10:58:32.0837 6740 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
10:58:32.0842 6740 DPS - ok
10:58:32.0868 6740 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
10:58:32.0886 6740 drmkaud - ok
10:58:32.0938 6740 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
10:58:32.0975 6740 DXGKrnl - ok
10:58:33.0003 6740 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
10:58:33.0007 6740 EapHost - ok
10:58:33.0161 6740 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys
10:58:33.0230 6740 ebdrv - ok
10:58:33.0315 6740 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
10:58:33.0317 6740 EFS - ok
10:58:33.0382 6740 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
10:58:33.0389 6740 ehRecvr - ok
10:58:33.0432 6740 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
10:58:33.0435 6740 ehSched - ok
10:58:33.0500 6740 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys
10:58:33.0537 6740 elxstor - ok
10:58:33.0553 6740 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
10:58:33.0557 6740 ErrDev - ok
10:58:33.0621 6740 ESUSClient_TNO (b3f4bf54aaf49a5acb2ed7593abe7b3c) C:\Program Files (x86)\Telenor Norway\ESUS_TNO\ESUS_TNO.exe
10:58:33.0626 6740 ESUSClient_TNO - ok
10:58:33.0670 6740 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
10:58:33.0687 6740 EventSystem - ok
10:58:33.0807 6740 EvtEng (e3a96d5ae6e5c7b5472011ba77353368) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
10:58:33.0822 6740 EvtEng - ok
10:58:33.0936 6740 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
10:58:33.0964 6740 exfat - ok
10:58:33.0988 6740 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
10:58:34.0010 6740 fastfat - ok
10:58:34.0069 6740 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
10:58:34.0076 6740 Fax - ok
10:58:34.0087 6740 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys
10:58:34.0093 6740 fdc - ok
10:58:34.0123 6740 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
10:58:34.0125 6740 fdPHost - ok
10:58:34.0138 6740 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
10:58:34.0158 6740 FDResPub - ok
10:58:34.0180 6740 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
10:58:34.0198 6740 FileInfo - ok
10:58:34.0210 6740 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
10:58:34.0214 6740 Filetrace - ok
10:58:34.0231 6740 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys
10:58:34.0235 6740 flpydisk - ok
10:58:34.0259 6740 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
10:58:34.0295 6740 FltMgr - ok
10:58:34.0366 6740 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
10:58:34.0422 6740 FontCache - ok
10:58:34.0467 6740 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:58:34.0470 6740 FontCache3.0.0.0 - ok
10:58:34.0514 6740 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
10:58:34.0521 6740 FsDepends - ok
10:58:34.0571 6740 fssfltr (07da62c960ddccc2d35836aeab4fc578) C:\Windows\system32\DRIVERS\fssfltr.sys
10:58:34.0597 6740 fssfltr - ok
10:58:34.0747 6740 fsssvc (28ddeeec44e988657b732cf404d504cb) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
10:58:34.0826 6740 fsssvc - ok
10:58:34.0947 6740 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
10:58:34.0961 6740 Fs_Rec - ok
10:58:35.0005 6740 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
10:58:35.0034 6740 fvevol - ok
10:58:35.0068 6740 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys
10:58:35.0074 6740 gagp30kx - ok
10:58:35.0127 6740 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
10:58:35.0150 6740 gpsvc - ok
10:58:35.0168 6740 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
10:58:35.0173 6740 hcw85cir - ok
10:58:35.0210 6740 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
10:58:35.0244 6740 HdAudAddService - ok
10:58:35.0267 6740 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\DRIVERS\HDAudBus.sys
10:58:35.0271 6740 HDAudBus - ok
10:58:35.0285 6740 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys
10:58:35.0303 6740 HidBatt - ok
10:58:35.0319 6740 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys
10:58:35.0334 6740 HidBth - ok
10:58:35.0354 6740 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys
10:58:35.0359 6740 HidIr - ok
10:58:35.0373 6740 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
10:58:35.0374 6740 hidserv - ok
10:58:35.0396 6740 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
10:58:35.0400 6740 HidUsb - ok
10:58:35.0428 6740 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
10:58:35.0430 6740 hkmsvc - ok
10:58:35.0454 6740 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
10:58:35.0484 6740 HomeGroupListener - ok
10:58:35.0520 6740 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
10:58:35.0526 6740 HomeGroupProvider - ok
10:58:35.0555 6740 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
10:58:35.0561 6740 HpSAMD - ok
10:58:35.0616 6740 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
10:58:35.0643 6740 HTTP - ok
10:58:35.0656 6740 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
10:58:35.0661 6740 hwpolicy - ok
10:58:35.0736 6740 HyperW7Svc (e935c8099f9196bf19224d9ee4808612) C:\Program Files\Lenovo\RapidBoot\HyperW7Svc64.exe
10:58:35.0741 6740 HyperW7Svc - ok
10:58:35.0775 6740 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
10:58:35.0782 6740 i8042prt - ok
10:58:35.0822 6740 iaStor (d7921d5a870b11cc1adab198a519d50a) C:\Windows\system32\DRIVERS\iaStor.sys
10:58:35.0827 6740 iaStor - ok
10:58:35.0863 6740 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
10:58:35.0894 6740 iaStorV - ok
10:58:35.0922 6740 IBMPMDRV (2151176db657aeff9b873d23380c3f5b) C:\Windows\system32\DRIVERS\ibmpmdrv.sys
10:58:35.0942 6740 IBMPMDRV - ok
10:58:35.0957 6740 IBMPMSVC (c76a67aed080538d420550c903696788) C:\Windows\system32\ibmpmsvc.exe
10:58:35.0959 6740 IBMPMSVC - ok
10:58:36.0062 6740 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
10:58:36.0077 6740 idsvc - ok
10:58:36.0607 6740 igfx (33faa40b288002c89529dbd14f3ab72c) C:\Windows\system32\DRIVERS\igdkmd64.sys
10:58:36.0994 6740 igfx - ok
10:58:37.0118 6740 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys
10:58:37.0124 6740 iirsp - ok
10:58:37.0192 6740 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
10:58:37.0220 6740 IKEEXT - ok
10:58:37.0252 6740 intaud_WaveExtensible (caddf0927dac63edae48f5c35a61d87d) C:\Windows\system32\drivers\intelaud.sys
10:58:37.0260 6740 intaud_WaveExtensible - ok
10:58:37.0301 6740 IntcDAud (fc727061c0f47c8059e88e05d5c8e381) C:\Windows\system32\DRIVERS\IntcDAud.sys
10:58:37.0328 6740 IntcDAud - ok
10:58:37.0346 6740 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
10:58:37.0350 6740 intelide - ok
10:58:37.0363 6740 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
10:58:37.0365 6740 intelppm - ok
10:58:37.0381 6740 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
10:58:37.0383 6740 IPBusEnum - ok
10:58:37.0399 6740 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:58:37.0417 6740 IpFilterDriver - ok
10:58:37.0453 6740 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
10:58:37.0471 6740 iphlpsvc - ok
10:58:37.0489 6740 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
10:58:37.0502 6740 IPMIDRV - ok
10:58:37.0533 6740 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
10:58:37.0550 6740 IPNAT - ok
10:58:37.0584 6740 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
10:58:37.0591 6740 IRENUM - ok
10:58:37.0608 6740 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
10:58:37.0621 6740 isapnp - ok
10:58:37.0652 6740 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
10:58:37.0686 6740 iScsiPrt - ok
10:58:37.0727 6740 iwdbus (716f66336f10885d935b08174dc54242) C:\Windows\system32\DRIVERS\iwdbus.sys
10:58:37.0748 6740 iwdbus - ok
10:58:37.0820 6740 jhi_service (6c85719a21b3f62c2c76280f4bd36c7b) C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
10:58:37.0835 6740 jhi_service - ok
10:58:37.0859 6740 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
10:58:37.0866 6740 kbdclass - ok
10:58:37.0886 6740 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
10:58:37.0892 6740 kbdhid - ok
10:58:37.0919 6740 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
10:58:37.0922 6740 KeyIso - ok
10:58:37.0939 6740 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
10:58:37.0947 6740 KSecDD - ok
10:58:37.0965 6740 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
10:58:37.0991 6740 KSecPkg - ok
10:58:38.0006 6740 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
10:58:38.0018 6740 ksthunk - ok
10:58:38.0067 6740 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
10:58:38.0098 6740 KtmRm - ok
10:58:38.0133 6740 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
10:58:38.0148 6740 LanmanServer - ok
10:58:38.0168 6740 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
10:58:38.0172 6740 LanmanWorkstation - ok
10:58:38.0242 6740 LENOVO.CAMMUTE (56b74943929bc575914631edc0e72220) C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe
10:58:38.0245 6740 LENOVO.CAMMUTE - ok
10:58:38.0285 6740 lenovo.smi (2b9d8555dc004e240082d18e7725ce20) C:\Windows\system32\DRIVERS\smiifx64.sys
10:58:38.0298 6740 lenovo.smi - ok
10:58:38.0308 6740 LENOVO.TPKNRSVC (f9b51b2a5da1222a910021c71e9ea559) C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
10:58:38.0311 6740 LENOVO.TPKNRSVC - ok
10:58:38.0328 6740 Lenovo.VIRTSCRLSVC (f7de50781dc4d162c1005eb30d98f931) C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
10:58:38.0332 6740 Lenovo.VIRTSCRLSVC - ok
10:58:38.0358 6740 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
10:58:38.0372 6740 lltdio - ok
10:58:38.0413 6740 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
10:58:38.0445 6740 lltdsvc - ok
10:58:38.0464 6740 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
10:58:38.0483 6740 lmhosts - ok
10:58:38.0539 6740 LMS (e7859ba062db5e23c6dd34ad66b09f50) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
10:58:38.0555 6740 LMS - ok
10:58:38.0590 6740 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys
10:58:38.0612 6740 LSI_FC - ok
10:58:38.0648 6740 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys
10:58:38.0656 6740 LSI_SAS - ok
10:58:38.0678 6740 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys
10:58:38.0692 6740 LSI_SAS2 - ok
10:58:38.0709 6740 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys
10:58:38.0717 6740 LSI_SCSI - ok
10:58:38.0747 6740 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
10:58:38.0755 6740 luafv - ok
10:58:38.0782 6740 MBAMProtector (dbc08862a71459e74f7538b432c114cc) C:\Windows\system32\drivers\mbam.sys
10:58:39.0121 6740 MBAMProtector - ok
10:58:39.0162 6740 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
10:58:39.0179 6740 MBAMService - ok
10:58:39.0202 6740 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
10:58:39.0208 6740 Mcx2Svc - ok
10:58:39.0220 6740 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys
10:58:39.0224 6740 megasas - ok
10:58:39.0254 6740 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys
10:58:39.0262 6740 MegaSR - ok
10:58:39.0291 6740 MEIx64 (a6518dcc42f7a6e999bb3bea8fd87567) C:\Windows\system32\DRIVERS\HECIx64.sys
10:58:39.0307 6740 MEIx64 - ok
10:58:39.0325 6740 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
10:58:39.0328 6740 MMCSS - ok
10:58:39.0344 6740 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
10:58:39.0359 6740 Modem - ok
10:58:39.0378 6740 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
10:58:39.0379 6740 monitor - ok
10:58:39.0402 6740 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
10:58:39.0420 6740 mouclass - ok
10:58:39.0456 6740 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
10:58:39.0468 6740 mouhid - ok
10:58:39.0490 6740 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
10:58:39.0504 6740 mountmgr - ok
10:58:39.0558 6740 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
10:58:39.0561 6740 MozillaMaintenance - ok
10:58:39.0615 6740 MpFilter (94c66ededcdb6a126880472f9a704d8e) C:\Windows\system32\DRIVERS\MpFilter.sys
10:58:39.0625 6740 MpFilter - ok
10:58:39.0647 6740 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
10:58:39.0675 6740 mpio - ok
10:58:39.0696 6740 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
10:58:39.0702 6740 mpsdrv - ok
10:58:39.0755 6740 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
10:58:39.0763 6740 MpsSvc - ok
10:58:39.0783 6740 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
10:58:39.0790 6740 MRxDAV - ok
10:58:39.0824 6740 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
10:58:39.0854 6740 mrxsmb - ok
10:58:39.0885 6740 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:58:39.0914 6740 mrxsmb10 - ok
10:58:39.0936 6740 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:58:39.0943 6740 mrxsmb20 - ok
10:58:39.0955 6740 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
10:58:39.0971 6740 msahci - ok
10:58:39.0988 6740 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
10:58:39.0995 6740 msdsm - ok
10:58:40.0016 6740 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
10:58:40.0041 6740 MSDTC - ok
10:58:40.0068 6740 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
10:58:40.0073 6740 Msfs - ok
10:58:40.0096 6740 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
10:58:40.0109 6740 mshidkmdf - ok
10:58:40.0124 6740 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
10:58:40.0129 6740 msisadrv - ok
10:58:40.0162 6740 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
10:58:40.0175 6740 MSiSCSI - ok
10:58:40.0180 6740 msiserver - ok
10:58:40.0209 6740 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
10:58:40.0220 6740 MSKSSRV - ok
10:58:40.0286 6740 MsMpSvc (59faaf2c83c8169ea20f9e335e418907) c:\Program Files\Microsoft Security Client\MsMpEng.exe
10:58:40.0289 6740 MsMpSvc - ok
10:58:40.0305 6740 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
10:58:40.0323 6740 MSPCLOCK - ok
10:58:40.0339 6740 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
10:58:40.0352 6740 MSPQM - ok
10:58:40.0385 6740 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
10:58:40.0410 6740 MsRPC - ok
10:58:40.0425 6740 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
10:58:40.0426 6740 mssmbios - ok
10:58:40.0437 6740 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
10:58:40.0440 6740 MSTEE - ok
10:58:40.0448 6740 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys
10:58:40.0466 6740 MTConfig - ok
10:58:40.0480 6740 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
10:58:40.0484 6740 Mup - ok
10:58:40.0560 6740 MyWiFiDHCPDNS (8f57db74bf5407a4cda6c8b005dc8dd0) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
10:58:40.0576 6740 MyWiFiDHCPDNS - ok
10:58:40.0622 6740 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
10:58:40.0641 6740 napagent - ok
10:58:40.0671 6740 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
10:58:40.0703 6740 NativeWifiP - ok
10:58:40.0775 6740 NDIS (c38b8ae57f78915905064a9a24dc1586) C:\Windows\system32\drivers\ndis.sys
10:58:40.0811 6740 NDIS - ok
10:58:40.0825 6740 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
10:58:40.0830 6740 NdisCap - ok
10:58:40.0858 6740 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
10:58:40.0863 6740 NdisTapi - ok
10:58:40.0889 6740 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
10:58:40.0903 6740 Ndisuio - ok
10:58:40.0927 6740 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
10:58:40.0941 6740 NdisWan - ok
10:58:40.0958 6740 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
10:58:40.0979 6740 NDProxy - ok
10:58:40.0998 6740 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
10:58:41.0017 6740 NetBIOS - ok
10:58:41.0047 6740 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
10:58:41.0057 6740 NetBT - ok
10:58:41.0075 6740 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
10:58:41.0076 6740 Netlogon - ok
10:58:41.0128 6740 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
10:58:41.0133 6740 Netman - ok
10:58:41.0203 6740 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:58:41.0223 6740 NetMsmqActivator - ok
10:58:41.0228 6740 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:58:41.0230 6740 NetPipeActivator - ok
10:58:41.0276 6740 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
10:58:41.0284 6740 netprofm - ok
10:58:41.0288 6740 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:58:41.0291 6740 NetTcpActivator - ok
10:58:41.0295 6740 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:58:41.0297 6740 NetTcpPortSharing - ok
10:58:41.0666 6740 NETwNs64 (50ad7f7040c22bb7caa59a0880875a21) C:\Windows\system32\DRIVERS\NETwNs64.sys
10:58:41.0841 6740 NETwNs64 - ok
10:58:41.0974 6740 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys
10:58:41.0989 6740 nfrd960 - ok
10:58:42.0015 6740 NgFilter (43aca95edd074639e4489949e754e938) C:\Windows\system32\DRIVERS\ngfilter.sys
10:58:42.0025 6740 NgFilter - ok
10:58:42.0051 6740 NgLog (3f090199046429cb2d389b306c90071d) C:\Windows\system32\DRIVERS\nglog.sys
10:58:42.0062 6740 NgLog - ok
10:58:42.0077 6740 NgVpn (2d5548c430e96e539d9ec31fe763ddd8) C:\Windows\system32\DRIVERS\ngvpn.sys
10:58:42.0080 6740 NgVpn - ok
10:58:42.0118 6740 NgVpnMgr (451ea65ac412b39a66f40fb04a77cf38) C:\Windows\system32\ngvpnmgr.exe
10:58:42.0138 6740 NgVpnMgr - ok
10:58:42.0151 6740 NgWfp (d96f9b5f107a4734dfeccc237c4b4f9b) C:\Windows\system32\DRIVERS\ngwfp.sys
10:58:42.0171 6740 NgWfp - ok
10:58:42.0206 6740 NisDrv (91b4e0273d2f6c24ef845f2b41311289) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
10:58:42.0213 6740 NisDrv - ok
10:58:42.0279 6740 NisSrv (10a43829a9e606af3eef25a1c1665923) c:\Program Files\Microsoft Security Client\NisSrv.exe
10:58:42.0296 6740 NisSrv - ok
10:58:42.0346 6740 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
10:58:42.0355 6740 NlaSvc - ok
10:58:42.0389 6740 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
10:58:42.0394 6740 Npfs - ok
10:58:42.0404 6740 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
10:58:42.0406 6740 nsi - ok
10:58:42.0421 6740 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
10:58:42.0424 6740 nsiproxy - ok
10:58:42.0510 6740 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
10:58:42.0568 6740 Ntfs - ok
10:58:42.0664 6740 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
10:58:42.0670 6740 Null - ok
10:58:42.0690 6740 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
10:58:42.0718 6740 nvraid - ok
10:58:42.0753 6740 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
10:58:42.0788 6740 nvstor - ok
10:58:42.0807 6740 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
10:58:42.0836 6740 nv_agp - ok
10:58:42.0854 6740 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
10:58:42.0861 6740 ohci1394 - ok
10:58:42.0902 6740 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:58:42.0907 6740 ose - ok
10:58:43.0154 6740 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
10:58:43.0265 6740 osppsvc - ok
10:58:43.0371 6740 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
10:58:43.0395 6740 p2pimsvc - ok
10:58:43.0427 6740 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
10:58:43.0460 6740 p2psvc - ok
10:58:43.0497 6740 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys
10:58:43.0513 6740 Parport - ok
10:58:43.0545 6740 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
10:58:43.0564 6740 partmgr - ok
10:58:43.0592 6740 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
10:58:43.0595 6740 PcaSvc - ok
10:58:43.0617 6740 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
10:58:43.0640 6740 pci - ok
10:58:43.0660 6740 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
10:58:43.0676 6740 pciide - ok
10:58:43.0700 6740 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys
10:58:43.0720 6740 pcmcia - ok
10:58:43.0736 6740 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
10:58:43.0741 6740 pcw - ok
10:58:43.0775 6740 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
10:58:43.0827 6740 PEAUTH - ok
10:58:43.0920 6740 PeerDistSvc (b9b0a4299dd2d76a4243f75fd54dc680) C:\Windows\system32\peerdistsvc.dll
10:58:43.0932 6740 PeerDistSvc - ok
10:58:43.0993 6740 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
10:58:43.0995 6740 PerfHost - ok
10:58:44.0061 6740 PHCORE (52c9f4359af4a25969b882aecc6f3bda) C:\Program Files\Lenovo\RapidBoot\PHCORE64.SYS
10:58:44.0064 6740 PHCORE - ok
10:58:44.0181 6740 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
10:58:44.0218 6740 pla - ok
10:58:44.0340 6740 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
10:58:44.0347 6740 PlugPlay - ok
10:58:44.0361 6740 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
10:58:44.0373 6740 PNRPAutoReg - ok
10:58:44.0407 6740 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
10:58:44.0411 6740 PNRPsvc - ok
10:58:44.0448 6740 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
10:58:44.0484 6740 PolicyAgent - ok
10:58:44.0516 6740 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
10:58:44.0518 6740 Power - ok
10:58:44.0562 6740 Power Manager DBC Service (836fe79de8767d77136b6491a3d61089) C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE
10:58:44.0563 6740 Power Manager DBC Service - ok
10:58:44.0620 6740 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
10:58:44.0637 6740 PptpMiniport - ok
10:58:44.0656 6740 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys
10:58:44.0669 6740 Processor - ok
10:58:44.0696 6740 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
10:58:44.0706 6740 ProfSvc - ok
10:58:44.0734 6740 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
10:58:44.0735 6740 ProtectedStorage - ok
10:58:44.0766 6740 psadd (b8035af9cc0ccba9a09ac0a0d9801797) C:\Windows\system32\DRIVERS\psadd.sys
10:58:44.0781 6740 psadd - ok
10:58:44.0809 6740 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
10:58:44.0830 6740 Psched - ok
10:58:44.0878 6740 PSI_SVC_2 (f036cfb275d0c55f4e45fbbf5f98b3c8) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
10:58:44.0895 6740 PSI_SVC_2 - ok
10:58:44.0941 6740 PwmEWSvc (576444157f1cb25ae2057eed586d4889) C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE
10:58:44.0946 6740 PwmEWSvc - ok
10:58:45.0027 6740 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys
10:58:45.0109 6740 ql2300 - ok
10:58:45.0209 6740 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys
10:58:45.0233 6740 ql40xx - ok
10:58:45.0276 6740 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
10:58:45.0307 6740 QWAVE - ok
10:58:45.0327 6740 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
10:58:45.0336 6740 QWAVEdrv - ok
10:58:45.0353 6740 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
10:58:45.0357 6740 RasAcd - ok
10:58:45.0395 6740 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
10:58:45.0412 6740 RasAgileVpn - ok
10:58:45.0434 6740 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
10:58:45.0447 6740 RasAuto - ok
10:58:45.0473 6740 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
10:58:45.0496 6740 Rasl2tp - ok
10:58:45.0540 6740 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
10:58:45.0556 6740 RasMan - ok
10:58:45.0574 6740 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
10:58:45.0592 6740 RasPppoe - ok
10:58:45.0620 6740 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
10:58:45.0642 6740 RasSstp - ok
10:58:45.0676 6740 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
10:58:45.0704 6740 rdbss - ok
10:58:45.0724 6740 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
10:58:45.0730 6740 rdpbus - ok
10:58:45.0735 6740 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
10:58:45.0739 6740 RDPCDD - ok
10:58:45.0764 6740 RDPDR (1b6163c503398b23ff8b939c67747683) C:\Windows\system32\drivers\rdpdr.sys
10:58:45.0792 6740 RDPDR - ok
10:58:45.0819 6740 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
10:58:45.0825 6740 RDPENCDD - ok
10:58:45.0839 6740 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
10:58:45.0852 6740 RDPREFMP - ok
10:58:45.0888 6740 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
10:58:45.0900 6740 RDPWD - ok
10:58:45.0927 6740 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
10:58:45.0946 6740 rdyboost - ok
10:58:46.0053 6740 RegSrvc (fd11c1287d38a46fb72353e14d50089c) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
10:58:46.0086 6740 RegSrvc - ok
10:58:46.0128 6740 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
10:58:46.0150 6740 RemoteAccess - ok
10:58:46.0187 6740 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
10:58:46.0201 6740 RemoteRegistry - ok
10:58:46.0265 6740 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys
10:58:46.0287 6740 RFCOMM - ok
10:58:46.0315 6740 risdxc (5a227511ed22ddfedf7ef7323c8f7d2f) C:\Windows\system32\DRIVERS\risdxc64.sys
10:58:46.0474 6740 risdxc - ok
10:58:46.0490 6740 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
10:58:46.0491 6740 RpcEptMapper - ok
10:58:46.0508 6740 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
10:58:46.0512 6740 RpcLocator - ok
10:58:46.0549 6740 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
10:58:46.0553 6740 RpcSs - ok
10:58:46.0584 6740 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
10:58:46.0589 6740 rspndr - ok
10:58:46.0654 6740 RTL8167 (ee082e06a82ff630351d1e0ebbd3d8d0) C:\Windows\system32\DRIVERS\Rt64win7.sys
10:58:46.0693 6740 RTL8167 - ok
10:58:46.0711 6740 s3cap (e60c0a09f997826c7627b244195ab581) C:\Windows\system32\drivers\vms3cap.sys
10:58:46.0731 6740 s3cap - ok
10:58:46.0764 6740 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
10:58:46.0767 6740 SamSs - ok
10:58:46.0772 6740 SAService - ok
10:58:47.0017 6740 SBAMSvc (bce943896289a91ad75cc5652620b1c6) C:\Program Files (x86)\Ad-Aware Antivirus\SBAMSvc.exe
10:58:47.0074 6740 SBAMSvc - ok
10:58:47.0175 6740 sbapifs (6e342316e72f4b6fa39c99e06373a1a3) C:\Windows\system32\DRIVERS\sbapifs.sys
10:58:47.0207 6740 sbapifs - ok
10:58:47.0248 6740 SbFw (19954328dda3d656f8a879b3a46ffed6) C:\Windows\system32\drivers\SbFw.sys
10:58:47.0337 6740 SbFw - ok
10:58:47.0363 6740 SBFWIMCL (513b3bfcd3c465b9820c2d05fa94e630) C:\Windows\system32\DRIVERS\sbfwim.sys
10:58:47.0368 6740 SBFWIMCL - ok
10:58:47.0377 6740 SBFWIMCLMP (513b3bfcd3c465b9820c2d05fa94e630) C:\Windows\system32\DRIVERS\SBFWIM.sys
10:58:47.0382 6740 SBFWIMCLMP - ok
10:58:47.0407 6740 sbhips (b671eef468d13016b9286f5835a06ae1) C:\Windows\system32\drivers\sbhips.sys
10:58:47.0444 6740 sbhips - ok
10:58:47.0474 6740 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
10:58:47.0488 6740 sbp2port - ok
10:58:47.0512 6740 SBRE (9aceb2a2362fc87a3825963e61ba9076) C:\Windows\system32\drivers\SBREdrv.sys
10:58:47.0538 6740 SBRE - ok
10:58:47.0554 6740 sbwtis (eab54adcceca64b2f38cd859fb494895) C:\Windows\system32\DRIVERS\sbwtis.sys
10:58:47.0580 6740 sbwtis - ok
10:58:47.0617 6740 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
10:58:47.0647 6740 SCardSvr - ok
10:58:47.0667 6740 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
10:58:47.0677 6740 scfilter - ok
10:58:47.0743 6740 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
10:58:47.0770 6740 Schedule - ok
10:58:47.0798 6740 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
10:58:47.0800 6740 SCPolicySvc - ok
10:58:47.0820 6740 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
10:58:47.0841 6740 SDRSVC - ok
10:58:47.0958 6740 SDScannerService (e1f35f902b825c7b18236271f398dda2) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
10:58:48.0005 6740 SDScannerService - ok
10:58:48.0057 6740 SDUpdateService (2db434f4ce96b3fb65d44b3ad5a4de3e) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
10:58:48.0091 6740 SDUpdateService - ok
10:58:48.0111 6740 SDWSCService (59dce6783f9ed27eb72c81466e363bf8) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
10:58:48.0112 6740 SDWSCService - ok
10:58:48.0224 6740 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
10:58:48.0237 6740 secdrv - ok
10:58:48.0260 6740 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
10:58:48.0263 6740 seclogon - ok
10:58:48.0272 6740 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
10:58:48.0275 6740 SENS - ok
10:58:48.0292 6740 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
10:58:48.0306 6740 SensrSvc - ok
10:58:48.0319 6740 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\drivers\serenum.sys
10:58:48.0333 6740 Serenum - ok
10:58:48.0352 6740 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\drivers\serial.sys
10:58:48.0369 6740 Serial - ok
10:58:48.0402 6740 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys
10:58:48.0406 6740 sermouse - ok
10:58:48.0435 6740 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
10:58:48.0437 6740 SessionEnv - ok
10:58:48.0454 6740 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
10:58:48.0458 6740 sffdisk - ok
10:58:48.0467 6740 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
10:58:48.0479 6740 sffp_mmc - ok
10:58:48.0483 6740 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
10:58:48.0486 6740 sffp_sd - ok
10:58:48.0497 6740 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys
10:58:48.0509 6740 sfloppy - ok
10:58:48.0560 6740 Sftfs (c6cc9297bd53e5229653303e556aa539) C:\Windows\system32\DRIVERS\Sftfslh.sys
10:58:48.0616 6740 Sftfs - ok
10:58:48.0719 6740 sftlist (13693b6354dd6e72dc5131da7d764b90) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
10:58:48.0728 6740 sftlist - ok
10:58:48.0863 6740 Sftplay (390aa7bc52cee43f6790cdea1e776703) C:\Windows\system32\DRIVERS\Sftplaylh.sys
10:58:48.0885 6740 Sftplay - ok
10:58:48.0905 6740 Sftredir (617e29a0b0a2807466560d4c4e338d3e) C:\Windows\system32\DRIVERS\Sftredirlh.sys
10:58:48.0910 6740 Sftredir - ok
10:58:48.0925 6740 Sftvol (8f571f016fa1976f445147e9e6c8ae9b) C:\Windows\system32\DRIVERS\Sftvollh.sys
10:58:48.0942 6740 Sftvol - ok
10:58:48.0973 6740 sftvsa (c3cddd18f43d44ab713cf8c4916f7696) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
10:58:48.0976 6740 sftvsa - ok
10:58:49.0022 6740 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
10:58:49.0039 6740 SharedAccess - ok
10:58:49.0080 6740 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
10:58:49.0095 6740 ShellHWDetection - ok
10:58:49.0135 6740 Shockprf (c3f190562fe82efda7ccef305ebad3e3) C:\Windows\system32\DRIVERS\Apsx64.sys
10:58:49.0165 6740 Shockprf - ok
10:58:49.0201 6740 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys
10:58:49.0217 6740 SiSRaid2 - ok
10:58:49.0236 6740 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys
10:58:49.0242 6740 SiSRaid4 - ok
10:58:49.0263 6740 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
10:58:49.0270 6740 Smb - ok
10:58:49.0303 6740 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
10:58:49.0308 6740 SNMPTRAP - ok
10:58:49.0319 6740 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
10:58:49.0333 6740 spldr - ok
10:58:49.0377 6740 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
10:58:49.0396 6740 Spooler - ok
10:58:49.0553 6740 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
10:58:49.0616 6740 sppsvc - ok
10:58:49.0707 6740 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
10:58:49.0724 6740 sppuinotify - ok
10:58:49.0810 6740 SROSVC (d2aeeb5c15b4b256dc4ec2ce8219b090) C:\Program Files (x86)\Lenovo\Screen Reading Optimizer\SROSVC.exe
10:58:49.0831 6740 SROSVC - ok
10:58:49.0884 6740 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
10:58:49.0920 6740 srv - ok
10:58:49.0965 6740 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
10:58:49.0987 6740 srv2 - ok
10:58:50.0009 6740 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
10:58:50.0031 6740 srvnet - ok
10:58:50.0071 6740 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
10:58:50.0088 6740 SSDPSRV - ok
10:58:50.0107 6740 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
10:58:50.0123 6740 SstpSvc - ok
10:58:50.0142 6740 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys
10:58:50.0160 6740 stexstor - ok
10:58:50.0196 6740 StillCam (decacb6921ded1a38642642685d77dac) C:\Windows\system32\DRIVERS\serscan.sys
10:58:50.0214 6740 StillCam - ok
10:58:50.0254 6740 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
10:58:50.0290 6740 stisvc - ok
10:58:50.0304 6740 storflt (7785dc213270d2fc066538daf94087e7) C:\Windows\system32\drivers\vmstorfl.sys
10:58:50.0311 6740 storflt - ok
10:58:50.0327 6740 StorSvc (c40841817ef57d491f22eb103da587cc) C:\Windows\system32\storsvc.dll
10:58:50.0343 6740 StorSvc - ok
10:58:50.0375 6740 storvsc (d34e4943d5ac096c8edeebfd80d76e23) C:\Windows\system32\drivers\storvsc.sys
10:58:50.0379 6740 storvsc - ok
10:58:50.0454 6740 SUService (6ea2f517373771cac5188e82617c9c0b) C:\Program Files (x86)\Lenovo\System Update\SUService.exe
10:58:50.0457 6740 SUService - ok
10:58:50.0471 6740 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
10:58:50.0484 6740 swenum - ok
10:58:50.0518 6740 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
10:58:50.0557 6740 swprv - ok
10:58:50.0618 6740 SynTP (772493a8945495f1a287bf6c4ca25b48) C:\Windows\system32\DRIVERS\SynTP.sys
10:58:50.0673 6740 SynTP - ok
10:58:50.0795 6740 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
10:58:50.0860 6740 SysMain - ok
10:58:50.0954 6740 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
10:58:50.0980 6740 TabletInputService - ok
10:58:51.0010 6740 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
10:58:51.0017 6740 TapiSrv - ok
10:58:51.0039 6740 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
10:58:51.0061 6740 TBS - ok
10:58:51.0189 6740 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
10:58:51.0251 6740 Tcpip - ok
10:58:51.0412 6740 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
10:58:51.0431 6740 TCPIP6 - ok
10:58:51.0503 6740 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
10:58:51.0507 6740 tcpipreg - ok
10:58:51.0518 6740 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
10:58:51.0534 6740 TDPIPE - ok
10:58:51.0563 6740 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
10:58:51.0574 6740 TDTCP - ok
10:58:51.0596 6740 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
10:58:51.0601 6740 tdx - ok
10:58:51.0779 6740 TeamViewer7 (33966a658ff37e0c65d46e59f37e2380) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
10:58:51.0873 6740 TeamViewer7 - ok
10:58:51.0936 6740 TelenorhjelpenSvc (d05475e6004f2e058c123f9d6cd301d6) C:\Program Files (x86)\Telenor Norway\Telenorhjelpen\Service.exe
10:58:51.0958 6740 TelenorhjelpenSvc - ok
10:58:52.0059 6740 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\DRIVERS\termdd.sys
10:58:52.0082 6740 TermDD - ok
10:58:52.0144 6740 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
10:58:52.0154 6740 TermService - ok
10:58:52.0170 6740 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
10:58:52.0174 6740 Themes - ok
10:58:52.0200 6740 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
10:58:52.0203 6740 THREADORDER - ok
10:58:52.0230 6740 TPDIGIMN (1bb77eccbfa3675b1ee8d6d6d37a1e1e) C:\Windows\system32\DRIVERS\ApsHM64.sys
10:58:52.0237 6740 TPDIGIMN - ok
10:58:52.0256 6740 TPHDEXLGSVC (88f81d810ff16ac65b02643daf308d4f) C:\Windows\system32\TPHDEXLG64.exe
10:58:52.0266 6740 TPHDEXLGSVC - ok
10:58:52.0288 6740 TPM (dbcc20c02e8a3e43b03c304a4e40a84f) C:\Windows\system32\drivers\tpm.sys
10:58:52.0302 6740 TPM - ok
10:58:52.0331 6740 TPPWRIF (7165b5a9b4867f64a6d6935f57d4196b) C:\Windows\system32\drivers\Tppwr64v.sys
10:58:52.0347 6740 TPPWRIF - ok
10:58:52.0370 6740 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
10:58:52.0372 6740 TrkWks - ok
10:58:52.0423 6740 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
10:58:52.0433 6740 TrustedInstaller - ok
10:58:52.0453 6740 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
10:58:52.0468 6740 tssecsrv - ok
10:58:52.0484 6740 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
10:58:52.0491 6740 TsUsbFlt - ok
10:58:52.0510 6740 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\Windows\system32\drivers\TsUsbGD.sys
10:58:52.0520 6740 TsUsbGD - ok
10:58:52.0547 6740 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
10:58:52.0552 6740 tunnel - ok
10:58:52.0564 6740 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys
10:58:52.0568 6740 uagp35 - ok
10:58:52.0611 6740 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
10:58:52.0638 6740 udfs - ok
10:58:52.0689 6740 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
10:58:52.0700 6740 UI0Detect - ok
10:58:52.0784 6740 UleadBurningHelper (be788a747457e6916586c410ec0111e7) C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
10:58:52.0787 6740 UleadBurningHelper - ok
10:58:52.0798 6740 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
10:58:52.0803 6740 uliagpkx - ok
10:58:52.0843 6740 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
10:58:52.0847 6740 umbus - ok
10:58:52.0862 6740 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys
10:58:52.0866 6740 UmPass - ok
10:58:52.0892 6740 UmRdpService (a293dcd756d04d8492a750d03b9a297c) C:\Windows\System32\umrdp.dll
10:58:52.0895 6740 UmRdpService - ok
10:58:53.0057 6740 UNS (e91f8afbd7fb96c94b266579d6bfa77a) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
10:58:53.0075 6740 UNS - ok
10:58:53.0181 6740 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
10:58:53.0215 6740 upnphost - ok
10:58:53.0249 6740 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
10:58:53.0268 6740 usbccgp - ok
10:58:53.0303 6740 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
10:58:53.0320 6740 usbcir - ok
10:58:53.0337 6740 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
10:58:53.0341 6740 usbehci - ok
10:58:53.0379 6740 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
10:58:53.0407 6740 usbhub - ok
10:58:53.0426 6740 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
10:58:53.0443 6740 usbohci - ok
10:58:53.0463 6740 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\drivers\usbprint.sys
10:58:53.0467 6740 usbprint - ok
10:58:53.0497 6740 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\drivers\USBSTOR.SYS
10:58:53.0513 6740 USBSTOR - ok
10:58:53.0532 6740 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
10:58:53.0536 6740 usbuhci - ok
10:58:53.0562 6740 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\system32\Drivers\usbvideo.sys
10:58:53.0598 6740 usbvideo - ok
10:58:53.0653 6740 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
10:58:53.0658 6740 UxSms - ok
10:58:53.0691 6740 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
10:58:53.0692 6740 VaultSvc - ok
10:58:53.0731 6740 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
10:58:53.0751 6740 vdrvroot - ok
10:58:53.0786 6740 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
10:58:53.0814 6740 vds - ok
10:58:53.0830 6740 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
10:58:53.0849 6740 vga - ok
10:58:53.0869 6740 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
10:58:53.0873 6740 VgaSave - ok
10:58:53.0908 6740 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
10:58:53.0928 6740 vhdmp - ok
10:58:53.0939 6740 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
10:58:53.0951 6740 viaide - ok
10:58:54.0017 6740 VIPAppService (94bb24c999c97c7b31ac154559c9ecee) C:\Program Files (x86)\Symantec\VIP Access Client\VIPAppService.exe
10:58:54.0019 6740 VIPAppService - ok
10:58:54.0047 6740 vmbus (86ea3e79ae350fea5331a1303054005f) C:\Windows\system32\drivers\vmbus.sys
10:58:54.0074 6740 vmbus - ok
10:58:54.0088 6740 VMBusHID (7de90b48f210d29649380545db45a187) C:\Windows\system32\drivers\VMBusHID.sys
10:58:54.0094 6740 VMBusHID - ok
10:58:54.0109 6740 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
10:58:54.0126 6740 volmgr - ok
10:58:54.0157 6740 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
10:58:54.0173 6740 volmgrx - ok
10:58:54.0199 6740 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
10:58:54.0231 6740 volsnap - ok
10:58:54.0267 6740 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys
10:58:54.0292 6740 vsmraid - ok
10:58:54.0390 6740 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
10:58:54.0461 6740 VSS - ok
10:58:54.0576 6740 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
10:58:54.0591 6740 vwifibus - ok
10:58:54.0611 6740 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
10:58:54.0617 6740 vwififlt - ok
10:58:54.0640 6740 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
10:58:54.0641 6740 vwifimp - ok
10:58:54.0691 6740 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
10:58:54.0695 6740 W32Time - ok
10:58:54.0741 6740 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys
10:58:54.0758 6740 WacomPen - ok
10:58:54.0799 6740 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
10:58:54.0808 6740 WANARP - ok
10:58:54.0825 6740 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
10:58:54.0829 6740 Wanarpv6 - ok
10:58:54.0953 6740 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
10:58:54.0993 6740 WatAdminSvc - ok
10:58:55.0067 6740 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
10:58:55.0110 6740 wbengine - ok
10:58:55.0208 6740 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
10:58:55.0229 6740 WbioSrvc - ok
10:58:55.0263 6740 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
10:58:55.0299 6740 wcncsvc - ok
10:58:55.0320 6740 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
10:58:55.0327 6740 WcsPlugInService - ok
10:58:55.0369 6740 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys
10:58:55.0374 6740 Wd - ok
10:58:55.0421 6740 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
10:58:55.0450 6740 Wdf01000 - ok
10:58:55.0469 6740 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
10:58:55.0473 6740 WdiServiceHost - ok
10:58:55.0478 6740 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
10:58:55.0482 6740 WdiSystemHost - ok
10:58:55.0510 6740 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
10:58:55.0518 6740 WebClient - ok
10:58:55.0537 6740 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
10:58:55.0550 6740 Wecsvc - ok
10:58:55.0566 6740 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
10:58:55.0569 6740 wercplsupport - ok
10:58:55.0585 6740 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
10:58:55.0588 6740 WerSvc - ok
10:58:55.0615 6740 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
10:58:55.0618 6740 WfpLwf - ok
10:58:55.0627 6740 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
10:58:55.0643 6740 WIMMount - ok
10:58:55.0666 6740 WinDefend - ok
10:58:55.0683 6740 WinHttpAutoProxySvc - ok
10:58:55.0741 6740 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
10:58:55.0754 6740 Winmgmt - ok
10:58:55.0847 6740 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
10:58:55.0906 6740 WinRM - ok
10:58:56.0025 6740 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
10:58:56.0069 6740 Wlansvc - ok
10:58:56.0139 6740 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
10:58:56.0142 6740 wlcrasvc - ok
10:58:56.0296 6740 wlidsvc (2bacd71123f42cea603f4e205e1ae337) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
10:58:56.0355 6740 wlidsvc - ok
10:58:56.0471 6740 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
10:58:56.0487 6740 WmiAcpi - ok
10:58:56.0547 6740 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
10:58:56.0579 6740 wmiApSrv - ok
10:58:56.0609 6740 WMPNetworkSvc - ok
10:58:56.0633 6740 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
10:58:56.0649 6740 WPCSvc - ok
10:58:56.0663 6740 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
10:58:56.0684 6740 WPDBusEnum - ok
10:58:56.0701 6740 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
10:58:56.0717 6740 ws2ifsl - ok
10:58:56.0735 6740 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
10:58:56.0737 6740 wscsvc - ok
10:58:56.0768 6740 WSDPrintDevice (8d918b1db190a4d9b1753a66fa8c96e8) C:\Windows\system32\DRIVERS\WSDPrint.sys
10:58:56.0771 6740 WSDPrintDevice - ok
10:58:56.0774 6740 WSearch - ok
10:58:56.0901 6740 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
10:58:56.0981 6740 wuauserv - ok
10:58:57.0086 6740 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
10:58:57.0103 6740 WudfPf - ok
10:58:57.0141 6740 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
10:58:57.0154 6740 WUDFRd - ok
10:58:57.0185 6740 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
10:58:57.0200 6740 wudfsvc - ok
10:58:57.0224 6740 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
10:58:57.0243 6740 WwanSvc - ok
10:58:57.0285 6740 MBR (0x1B8) (d1e51c91978b1042fac60bb7a68f53bb) \Device\Harddisk0\DR0
10:58:57.0627 6740 \Device\Harddisk0\DR0 - ok
10:58:57.0630 6740 Boot (0x1200) (fa6bed6a91e157e68b2bcebb00e38073) \Device\Harddisk0\DR0\Partition0
10:58:57.0632 6740 \Device\Harddisk0\DR0\Partition0 - ok
10:58:57.0662 6740 Boot (0x1200) (8f0393d3435fe44c1afaba46b41035c1) \Device\Harddisk0\DR0\Partition1
10:58:57.0665 6740 \Device\Harddisk0\DR0\Partition1 - ok
10:58:57.0695 6740 Boot (0x1200) (70dc1f8856a5c3057b4e5ce605263155) \Device\Harddisk0\DR0\Partition2
10:58:57.0698 6740 \Device\Harddisk0\DR0\Partition2 - ok
10:58:57.0698 6740 ============================================================
10:58:57.0698 6740 Scan finished
10:58:57.0698 6740 ============================================================
10:58:57.0709 1824 Detected object count: 0
10:58:57.0709 1824 Actual detected object count: 0

-------------------------

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-07-07 11:00:16
-----------------------------
11:00:16.787 OS Version: Windows x64 6.1.7601 Service Pack 1
11:00:16.787 Number of processors: 4 586 0x2A07
11:00:16.787 ComputerName: BJORN-THINK UserName: Bjørn
11:00:20.680 Initialize success
11:02:24.752 AVAST engine defs: 12070700
11:07:42.820 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
11:07:42.824 Disk 0 Vendor: ST950042 0003 Size: 476940MB BusType: 3
11:07:42.837 Disk 0 MBR read successfully
11:07:42.842 Disk 0 MBR scan
11:07:42.853 Disk 0 unknown MBR code
11:07:42.863 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 1500 MB offset 2048
11:07:42.900 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 459438 MB offset 3074048
11:07:42.949 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 16000 MB offset 944003072
11:07:43.071 Disk 0 scanning C:\Windows\system32\drivers
11:07:55.888 Service scanning
11:08:24.648 Modules scanning
11:08:24.666 Disk 0 trace - called modules:
11:08:24.719 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys iaStor.sys hal.dll
11:08:25.056 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80066aa060]
11:08:25.068 3 CLASSPNP.SYS[fffff8800186c43f] -> nt!IofCallDriver -> [0xfffffa8003cf5040]
11:08:25.083 5 ACPI.sys[fffff88000f027a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8005450050]
11:08:28.298 AVAST engine scan C:\Windows
11:08:31.129 AVAST engine scan C:\Windows\system32
11:13:22.097 AVAST engine scan C:\Windows\system32\drivers
11:13:36.357 AVAST engine scan C:\Users\Bjørn
11:14:57.503 AVAST engine scan C:\ProgramData
11:17:52.752 Scan finished successfully
11:30:57.427 Disk 0 MBR has been saved successfully to "C:\MBR.dat"
11:30:57.432 The log file has been saved successfully to "C:\aswMBR.txt"




-------------------------

MiniToolBox by Farbar Version: 25-06-2012
Ran by Bjørn (administrator) on 07-07-2012 at 11:30:29
Microsoft Windows 7 Professional Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP-konfigurasjon

DNS Resolver-bufferen ble t›mt.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

::1 localhost








































































































































































































149.5.18.173 www.google-analytics.com.
149.5.18.173 ad-emea.doubleclick.net.
149.5.18.173 www.statcounter.com.
108.163.215.51 www.google-analytics.com.
108.163.215.51 ad-emea.doubleclick.net.
108.163.215.51 www.statcounter.com.

127.0.0.1 localhost

========================= IP Configuration: ================================

Intel® WiFi Link 1000 BGN = Trådløs nettverkstilkobling (Connected)
Aventail VPN Adapter = Lokal tilkobling 2 (Connected)
Realtek PCIe GBE Family Controller = Lokal tilkobling (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Trådløs nettverkstilkobling 2 (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Trådløs nettverkstilkobling 3 (Media disconnected)


# ----------------------------------
# IPv4-konfigurasjon
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
set subinterface interface=?>. subinterface=ethernet_6 mtu=1477


popd
# Slutt p† IPv4-konfigurasjon



Windows IP-konfigurasjon

Vertsnavn . . . . . . . . . . . : Bj›rn-THINK
Prim‘r DNS-suffiks . . . . . . . :
Nodetype . . . . . . . . . . . . : Hybrid
IP-ruting aktivert . . . . . . . : Nei
WINS Proxy aktivert . . . . . . . : Nei
S›keliste for DNS-suffiks . . . . : lan

Ethernet-kort Lokal tilkobling:

Medietilstand . . . . . . . . . . : Medium frakoblet
Tilkoblingsspesifikt DNS-suffiks :
Beskrivelse . . . . . . . . . . : Realtek PCIe GBE Family Controller
Fysisk adresse . . . . . . . . . : F0-DE-F1-AC-11-7B
DHCP aktivert . . . . . . . . . . : Ja
Automatisk konfigurasjon aktivert : Ja

Tr†dl›st LAN-kort Tr†dl›s nettverkstilkobling 3:

Medietilstand . . . . . . . . . . : Medium frakoblet
Tilkoblingsspesifikt DNS-suffiks :
Beskrivelse . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter #2
Fysisk adresse . . . . . . . . . : 74-E5-0B-85-CF-BF
DHCP aktivert . . . . . . . . . . : Ja
Automatisk konfigurasjon aktivert : Ja

Tr†dl›st LAN-kort Tr†dl›s nettverkstilkobling 2:

Medietilstand . . . . . . . . . . : Medium frakoblet
Tilkoblingsspesifikt DNS-suffiks :
Beskrivelse . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Fysisk adresse . . . . . . . . . : 74-E5-0B-85-CF-BF
DHCP aktivert . . . . . . . . . . : Ja
Automatisk konfigurasjon aktivert : Ja

Tr†dl›st LAN-kort Tr†dl›s nettverkstilkobling:

Tilkoblingsspesifikt DNS-suffiks : lan
Beskrivelse . . . . . . . . . . : Intel® WiFi Link 1000 BGN
Fysisk adresse . . . . . . . . . : 74-E5-0B-85-CF-BE
DHCP aktivert . . . . . . . . . . : Ja
Automatisk konfigurasjon aktivert : Ja
Koblingslokal IPv6-adresse. . . . : fe80::d5de:add2:40dd:9378%14(Foretrukket)
IPv4-adresse. . . . . . . . . . . : 10.0.0.58(Foretrukket)
Nettverksmaske . . . . . . . . . .: 255.255.255.0
Leieavtale inng†tt. . . . . . . . : 7. juli 2012 10:50:42
Leieavtale utl›per. . . . . . . . : 8. juli 2012 10:50:42
Standard gateway . . . . . . . . .: 10.0.0.138
DHCP-server . . . . . . . . . . . : 10.0.0.138
DHCPv6-IAID . . . . . . . . . . . : 376759563
DHCPv6 klient-DUID. . . . . . . . : 00-01-00-01-16-63-4F-F9-F0-DE-F1-AC-11-7B
DNS-servere . . . . . . . . . . . : 193.213.112.4
130.67.15.198
10.0.0.138
NetBIOS over Tcpip. . . . . . . . : Aktivert

Tunnelkort isatap.lan:

Medietilstand . . . . . . . . . . : Medium frakoblet
Tilkoblingsspesifikt DNS-suffiks : lan
Beskrivelse . . . . . . . . . . : Microsoft ISATAP Adapter
Fysisk adresse . . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktivert . . . . . . . . . . : Nei
Automatisk konfigurasjon aktivert : Ja

Tunnelkort Lokal tilkobling* 12:

Medietilstand . . . . . . . . . . : Medium frakoblet
Tilkoblingsspesifikt DNS-suffiks :
Beskrivelse . . . . . . . . . . : Microsoft 6to4 Adapter
Fysisk adresse . . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktivert . . . . . . . . . . : Nei
Automatisk konfigurasjon aktivert : Ja

Tunnelkort Teredo Tunneling Pseudo-Interface:

Tilkoblingsspesifikt DNS-suffiks :
Beskrivelse . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Fysisk adresse . . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktivert . . . . . . . . . . : Nei
Automatisk konfigurasjon aktivert : Ja
IPv6-adresse. . . . . . . . . . . : 2001:0:5ef5:79fd:1821:37ee:f5ff:ffc5(Foretrukket)
Koblingslokal IPv6-adresse. . . . : fe80::1821:37ee:f5ff:ffc5%18(Foretrukket)
Standard gateway . . . . . . . . .: ::
NetBIOS over Tcpip. . . . . . . . : Deaktivert
Server: ns12.e.nsc.no
Address: 193.213.112.4

Navn: google.com
Addresses: 2a00:1450:400f:801::1004
173.194.32.38
173.194.32.33
173.194.32.41
173.194.32.37
173.194.32.36
173.194.32.32
173.194.32.39
173.194.32.34
173.194.32.40
173.194.32.46
173.194.32.35


Pinger google.com [173.194.32.39] med 32 byte data:
Svar fra 173.194.32.39: byte=32 tid=69ms TTL=50
Svar fra 173.194.32.39: byte=32 tid=92ms TTL=50

Ping-statistikker for 173.194.32.39:
Pakker: sendt = 2, mottatt = 2, tapt = 0 (0% tap),
Gjennomsnittlig tid for tur-retur i millisekunder:
minimum = 69ms, maksimum = 92ms, gjennomsnittlig = 80ms
Server: ns12.e.nsc.no
Address: 193.213.112.4

Navn: yahoo.com
Addresses: 98.139.183.24
209.191.122.70
72.30.38.140


Pinger yahoo.com [209.191.122.70] med 32 byte data:
Svar fra 209.191.122.70: byte=32 tid=235ms TTL=49
Svar fra 209.191.122.70: byte=32 tid=258ms TTL=49

Ping-statistikker for 209.191.122.70:
Pakker: sendt = 2, mottatt = 2, tapt = 0 (0% tap),
Gjennomsnittlig tid for tur-retur i millisekunder:
minimum = 235ms, maksimum = 258ms, gjennomsnittlig = 246ms
Server: ns12.e.nsc.no
Address: 193.213.112.4

Navn: bleepingcomputer.com
Address: 208.43.87.2


Pinger bleepingcomputer.com [208.43.87.2] med 32 byte data:
Svar fra 208.43.87.2: M†lverten kan ikke n†s.
Svar fra 208.43.87.2: M†lverten kan ikke n†s.

Ping-statistikker for 208.43.87.2:
Pakker: sendt = 2, mottatt = 2, tapt = 0 (0% tap),

Pinger 127.0.0.1 med 32 byte data:
Svar fra 127.0.0.1: byte=32 tid=4ms TTL=128
Svar fra 127.0.0.1: byte=32 tid=1ms TTL=128

Ping-statistikker for 127.0.0.1:
Pakker: sendt = 2, mottatt = 2, tapt = 0 (0% tap),
Gjennomsnittlig tid for tur-retur i millisekunder:
minimum = 1ms, maksimum = 4ms, gjennomsnittlig = 2ms
===========================================================================
Grensesnittliste
17...f0 de f1 ac 11 7b ......Realtek PCIe GBE Family Controller
16...74 e5 0b 85 cf bf ......Microsoft Virtual WiFi Miniport Adapter #2
15...74 e5 0b 85 cf bf ......Microsoft Virtual WiFi Miniport Adapter
14...74 e5 0b 85 cf be ......Intel® WiFi Link 1000 BGN
1...........................Software Loopback Interface 1
27...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
13...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
18...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 rutetabell
===========================================================================
Aktive ruter:
Nettverksm†l Nettverksmaske Gateway Grensesnitt Metrikk
0.0.0.0 0.0.0.0 10.0.0.138 10.0.0.58 25
10.0.0.0 255.255.255.0 Ved LAN 10.0.0.58 281
10.0.0.58 255.255.255.255 Ved LAN 10.0.0.58 281
10.0.0.255 255.255.255.255 Ved LAN 10.0.0.58 281
127.0.0.0 255.0.0.0 Ved LAN 127.0.0.1 306
127.0.0.1 255.255.255.255 Ved LAN 127.0.0.1 306
127.255.255.255 255.255.255.255 Ved LAN 127.0.0.1 306
224.0.0.0 240.0.0.0 Ved LAN 127.0.0.1 306
224.0.0.0 240.0.0.0 Ved LAN 10.0.0.58 281
255.255.255.255 255.255.255.255 Ved LAN 127.0.0.1 306
255.255.255.255 255.255.255.255 Ved LAN 10.0.0.58 281
===========================================================================
Faste ruter:
Ingen

IPv6 rutetabell
===========================================================================
Aktive ruter:
Gr Metr. Nettv. M†l Gateway
18 58 ::/0 Ved LAN
1 306 ::1/128 Ved LAN
18 58 2001::/32 Ved LAN
18 306 2001:0:5ef5:79fd:1821:37ee:f5ff:ffc5/128
Ved LAN
14 281 fe80::/64 Ved LAN
18 306 fe80::/64 Ved LAN
18 306 fe80::1821:37ee:f5ff:ffc5/128
Ved LAN
14 281 fe80::d5de:add2:40dd:9378/128
Ved LAN
1 306 ff00::/8 Ved LAN
18 306 ff00::/8 Ved LAN
14 281 ff00::/8 Ved LAN
===========================================================================
Faste ruter:
Ingen
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (07/07/2012 10:52:55 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/07/2012 10:52:44 AM) (Source: Application Error) (User: )
Description: Programnavn med feil: svchost.exe_LanmanServer, versjon: 6.1.7600.16385, tidsangivelse: 0x4a5bc3c1
Modulnavn med feil: unknown, versjon: 0.0.0.0, tidsangivelse: 0x00000000
Unntakskode: 0xc0000005
Feilforskyvning: 0x0000000000000000
Feil prosess-ID: 0x1a4
Feil starttid for program: 0xsvchost.exe_LanmanServer0
Feil programbane: svchost.exe_LanmanServer1
Feil modulbane: svchost.exe_LanmanServer2
Rapport-ID: svchost.exe_LanmanServer3

Error: (07/07/2012 10:50:34 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/07/2012 10:19:43 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/07/2012 10:16:03 AM) (Source: SideBySide) (User: )
Description: Generering av aktiveringskontekst mislyktes for C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1. Feil i manifest- eller policyfilen C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2 i linje C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
En komponentversjon som kreves av programmet, er i konflikt med en annen komponentversjon som allerede er aktiv.
Komponentene i konflikt er:.
Komponent 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponent 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (07/07/2012 10:16:02 AM) (Source: SideBySide) (User: )
Description: Generering av aktiveringskontekst mislyktes for C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1. Feil i manifest- eller policyfilen C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2 i linje C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
En komponentversjon som kreves av programmet, er i konflikt med en annen komponentversjon som allerede er aktiv.
Komponentene i konflikt er:.
Komponent 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponent 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (07/07/2012 10:16:00 AM) (Source: SideBySide) (User: )
Description: Generering av aktiveringskontekst mislyktes for C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1. Feil i manifest- eller policyfilen C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2 i linje C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
En komponentversjon som kreves av programmet, er i konflikt med en annen komponentversjon som allerede er aktiv.
Komponentene i konflikt er:.
Komponent 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponent 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (07/07/2012 10:15:47 AM) (Source: SideBySide) (User: )
Description: Generering av aktiveringskontekst mislyktes for C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1. Feil i manifest- eller policyfilen C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2 i linje C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
En komponentversjon som kreves av programmet, er i konflikt med en annen komponentversjon som allerede er aktiv.
Komponentene i konflikt er:.
Komponent 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponent 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (07/07/2012 10:12:27 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/07/2012 01:04:51 AM) (Source: SideBySide) (User: )
Description: Generering av aktiveringskontekst mislyktes for 1. Feil i manifest- eller policyfilen 2 i linje 3.
Ugyldig XML-syntaks.


System errors:
=============
Error: (07/07/2012 10:54:51 AM) (Source: Service Control Manager) (User: )
Description: Tjenestekontrollbehandling forsøkte å utføre en korrigerende handling (Start tjenesten på nytt) etter det uventede avbruddet av tjenesten Windows Management Instrumentation, men handlingen mislyktes med følgende feil:
%%1056

Error: (07/07/2012 10:54:51 AM) (Source: Service Control Manager) (User: )
Description: Tjenestekontrollbehandling forsøkte å utføre en korrigerende handling (Start tjenesten på nytt) etter det uventede avbruddet av tjenesten Multimedia Class Scheduler, men handlingen mislyktes med følgende feil:
%%1056

Error: (07/07/2012 10:54:51 AM) (Source: Service Control Manager) (User: )
Description: Tjenestekontrollbehandling forsøkte å utføre en korrigerende handling (Start tjenesten på nytt) etter det uventede avbruddet av tjenesten User Profile Service, men handlingen mislyktes med følgende feil:
%%1056

Error: (07/07/2012 10:53:51 AM) (Source: Service Control Manager) (User: )
Description: Tjenestekontrollbehandling forsøkte å utføre en korrigerende handling (Start tjenesten på nytt) etter det uventede avbruddet av tjenesten Background Intelligent Transfer Service, men handlingen mislyktes med følgende feil:
%%1056

Error: (07/07/2012 10:52:51 AM) (Source: Service Control Manager) (User: )
Description: Tjenesten Windows Management Instrumentation ble uventet avbrutt. Det har den blitt 1 gang(er). Følgende korrigerende handling blir utført om 120000 millisekunder: Start tjenesten på nytt.

Error: (07/07/2012 10:52:51 AM) (Source: Service Control Manager) (User: )
Description: Tjenesten Themes ble uventet avbrutt. Det har den blitt 1 gang(er). Følgende korrigerende handling blir utført om 60000 millisekunder: Start tjenesten på nytt.

Error: (07/07/2012 10:52:51 AM) (Source: Service Control Manager) (User: )
Description: Tjenesten Shell Hardware Detection ble uventet avbrutt. Det har den blitt 1 gang(er). Følgende korrigerende handling blir utført om 60000 millisekunder: Start tjenesten på nytt.

Error: (07/07/2012 10:52:51 AM) (Source: Service Control Manager) (User: )
Description: Tjenesten System Event Notification Service ble uventet avbrutt. Det har den blitt 1 gang(er). Følgende korrigerende handling blir utført om 120000 millisekunder: Start tjenesten på nytt.

Error: (07/07/2012 10:52:51 AM) (Source: Service Control Manager) (User: )
Description: Tjenesten Secondary Logon ble uventet avbrutt. Det har den blitt 1 gang(er). Følgende korrigerende handling blir utført om 120000 millisekunder: Start tjenesten på nytt.

Error: (07/07/2012 10:52:51 AM) (Source: Service Control Manager) (User: )
Description: Tjenesten Task Scheduler ble uventet avbrutt. Det har den blitt 1 gang(er). Følgende korrigerende handling blir utført om 60000 millisekunder: Start tjenesten på nytt.


Microsoft Office Sessions:
=========================
Error: (07/07/2012 10:52:55 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/07/2012 10:52:44 AM) (Source: Application Error)(User: )
Description: svchost.exe_LanmanServer6.1.7600.163854a5bc3c1unknown0.0.0.000000000c000000500000000000000001a401cd5c1d9102b2b8C:\Windows\system32\svchost.exeunknown1d8663af-c811-11e1-a766-f0def1ac117b

Error: (07/07/2012 10:50:34 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/07/2012 10:19:43 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/07/2012 10:16:03 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Bjørn\Downloads\esetsmartinstaller_enu.exe

Error: (07/07/2012 10:16:02 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Bjørn\Downloads\esetsmartinstaller_enu.exe

Error: (07/07/2012 10:16:00 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Bjørn\Downloads\esetsmartinstaller_enu.exe

Error: (07/07/2012 10:15:47 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Bjørn\Downloads\esetsmartinstaller_enu.exe

Error: (07/07/2012 10:12:27 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/07/2012 01:04:51 AM) (Source: SideBySide)(User: )
Description: C:\Program Files (x86)\Lenovo\Access Connections\AcCryptHlpr.dllC:\Program Files (x86)\Lenovo\Access Connections\AcCryptHlpr.dll0


=========================== Installed Programs ============================

ActiveX-kontroll för fjärranslutningar för Windows Live Mesh (Version: 15.4.5722.2)
Ad-Aware Antivirus (Version: 10.1.211.3382)
Ad-Aware Browsing Protection (Version: 0.9.0.2)
Ad-Aware Security Toolbar (Version: 2.1.0.20)
Adobe Flash Player 11 ActiveX (Version: 11.3.300.257)
Adobe Flash Player 11 Plugin (Version: 11.3.300.262)
Adobe Reader 9.5.1 - Norsk (Version: 9.5.1)
Aventail Access Manager (Version: 10.54.41)
Aventail Connect (Version: 10.54.41)
Aventail Web Proxy Agent (Version: 10.54.41)
BisonCam Twain Pro (Version: 1.5.4.7)
Burn.Now 4.5 (Version: 4.5.0)
CCleaner (Version: 3.20)
Conexant HD Audio (Version: 8.32.27.0)
Corel Burn.Now Lenovo Edition (Version: 4.5.0)
Corel DVD MovieFactory 7 (Version: 7.0.0)
Corel DVD MovieFactory Lenovo Edition (Version: 7.0.0)
Corel WinDVD (Version: 10.0.5.828)
Create Recovery Media (Version: 1.20.0.00)
D3DX10 (Version: 15.4.2368.0902)
Direct DiscRecorder (Version: 1.00.0000)
Disable AMT Profile Synchronization Pop-up for Windows XP/Vista/7 (Version: 1.00)
Escenic Content Studio
ESET Online Scanner v3
Evernote v. 4.2.3 (Version: 4.2.3.15)
HP Photo Creations (Version: 1.0.0.5192)
HP Photosmart 5510 series grunnleggende enhetsprogramvare (Version: 25.0.621.0)
HP Photosmart 5510 series Hjelp (Version: 140.0.2.2)
HP Photosmart 5510 series produktforbedringsundersøkelse (Version: 25.0.621.0)
HP Update (Version: 5.003.000.004)
Integrated Camera Driver Installer Package Ver.1.1.0.1147 (Version: 1.1.0.1147)
Intel PROSet Wireless
Intel® Control Center (Version: 1.2.1.1007)
Intel® Identity Protection Technology 1.1.2.0 (Version: 1.1.2.0)
Intel® Management Engine Components (Version: 7.0.0.1144)
Intel® Processor Graphics (Version: 8.15.10.2476)
Intel® PROSet/Wireless WiFi Software (Version: 14.2.0000)
Intel® WiDi (Version: 2.1.41.0)
Intel® Wireless Display
Java Auto Updater (Version: 2.0.6.1)
Java™ 6 Update 30 (Version: 6.0.300)
Junk Mail filter update (Version: 15.4.3502.0922)
Lenovo Auto Scroll Utility (Version: 1.10)
Lenovo Patch Utility (Version: 1.00.0000)
Lenovo Patch Utility 64 bit (Version: 1.20.0001)
Lenovo Registration (Version: 1.0.4)
Lenovo Screen Reading Optimizer (Version: 1.10)
Lenovo SimpleTap (Version: 2.1.0003.00)
Lenovo System Interface Driver (Version: 1.05)
Lenovo ThinkVantage Toolbox (Version: 6.0.5849.23)
Lenovo User Guide (Version: 1.0.0008.00)
Lenovo Warranty Information (Version: 1.0.0005.00)
Lenovo Welcome (Version: 3.00.006.0)
Malwarebytes Anti-Malware versjon 1.61.0.1400 (Version: 1.61.0.1400)
Mesh Runtime (Version: 15.4.5722.2)
Message Center Plus (Version: 2.0.0012.00)
Messenger-kumppani (Version: 15.4.3502.0922)
Messenger Assistent (Version: 15.4.3502.0922)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Antimalware Service NB-NO Language Pack (Version: 3.0.8402.2)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Klikk og bruk 2010 (Version: 14.0.4763.1004)
Microsoft Office Starter 2010 - norsk (Version: 14.0.5128.5002)
Microsoft Security Client (Version: 4.0.1526.0)
Microsoft Security Client NB-NO Language Pack (Version: 2.1.1116.0)
Microsoft Security Essentials (Version: 4.0.1526.0)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Mozilla Firefox 13.0.1 (x86 nb-NO) (Version: 13.0.1)
Mozilla Maintenance Service (Version: 13.0.1)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
RapidBoot (Version: 1.11)
Realtek Ethernet Controller Driver (Version: 7.37.1229.2010)
Registry Patch to Enable Maximum Power Saving on WiFi Adapters for Windows 7 (Version: 1.00)
RICOH_Media_Driver_v2.14.18.01 (Version: 2.14.18.01)
Spybot - Search & Destroy (Version: 2.0.8)
System Update (Version: 4.01.0015)
TeamViewer 7 (Version: 7.0.12313)
Telenor Software Update Service (Version: 1.0.3.147)
Telenorhjelpen (Version: 3.1.1.564)
ThinkPad Bluetooth with Enhanced Data Rate Software (Version: 6.4.0.2900)
ThinkPad Power Management Driver (Version: 1.64.00.00)
ThinkPad Power Manager (Version: 3.64)
ThinkPad UltraNav Driver (Version: 15.3.27.1)
ThinkVantage Access Connections (Version: 5.85)
ThinkVantage Active Protection System (Version: 1.75)
ThinkVantage AutoLock (Version: 1.05)
ThinkVantage Communications Utility (Version: 2.07)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
VIP Access (Version: 2.0.2.140)
Windows Driver Package - Intel (iaStor) hdc (11/06/2010 10.1.0.1008) (Version: 11/06/2010 10.1.0.1008)
Windows Driver Package - Lenovo 1.64.00.00 (07/28/2011 1.64.00.00) (Version: 07/28/2011 1.64.00.00)
Windows Driver Package - Realtek (RTL8167) Net (12/29/2010 7.037.1229.2010) (Version: 12/29/2010 7.037.1229.2010)
Windows Driver Package - Synaptics (SynTP) Mouse (05/19/2011 15.3.8.0) (Version: 05/19/2011 15.3.8.0)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live Family Safety (Version: 15.4.3555.0308)
Windows Live Fotogalleri (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX-kontroll for eksterne tilkoblinger (Version: 15.4.5722.2)
Windows Live Mesh ActiveX-objekt til fjernforbindelser (Version: 15.4.5722.2)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Meshin etäyhteyksien ActiveX-komponentti (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Liven asennustyökalu (Version: 15.4.3502.0922)
Windows Liven sähköposti (Version: 15.4.3502.0922)
Windows Liven valokuvavalikoima (Version: 15.4.3502.0922)

========================= Memory info: ===================================

Percentage of memory in use: 66%
Total physical RAM: 4007.23 MB
Available physical RAM: 1332.39 MB
Total Pagefile: 8012.66 MB
Available Pagefile: 5015.55 MB
Total Virtual: 4095.88 MB
Available Virtual: 3965.09 MB

========================= Partitions: =====================================

1 Drive c: (Windows7_OS) (Fixed) (Total:448.67 GB) (Free:404.86 GB) NTFS
3 Drive q: (Lenovo_Recovery) (Fixed) (Total:15.62 GB) (Free:2.75 GB) NTFS

========================= Users: ========================================

Brukerkontoer for \\BJORN-THINK

Administrator Bj›rn Gjest
Kommandoen er fullf›rt.


**** End of log ****

----------------

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:22 PM

Posted 07 July 2012 - 04:43 AM

Download

Rogue killer

right click on it and select run as administrator

Now,click on HOSTS FIX option on right side

A log should get generated after the fix ,post the log here


Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log



Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#15 ZIEVEN

ZIEVEN

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:06:22 PM

Posted 07 July 2012 - 11:26 AM

This log file is located at C:\rkill.log.
Please post this only if requested to by the person helping you.
Otherwise you can close this log when you wish.

Rkill was run on 06.07.2012 at 18:49:13.
Operating System: Windows 7 Professional


Processes terminated by Rkill or while it was running:

C:\PROGRA~2\ThinkPad\UTILIT~1\SCHTASK.exe


Rkill completed on 06.07.2012 at 18:49:28



nothing found with embam and ecet.

thanks for helping




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users