Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

More Corner Ads/Pop-ups


  • Please log in to reply
10 replies to this topic

#1 jsparhawk

jsparhawk

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:04:31 AM

Posted 03 June 2012 - 01:47 AM

OK, after finding multiple threads with the same problem, I've followed those directions and have reports ready to post as requested for this issue.

I mostly use Chrome so am not sure if we're getting the problem with all browsers or not. I do know I get it with Chrome for sure. I've been getting them for 2-4 weeks for sure and originally they were showing HTML links when the cursor was over them so I had something to google. Ran Malwarebytes then and it cleared one or two things but still have pop-ups.

Sooooo...I've now run the Minitoolbox and have a report I can upload, have run the TDSSKiller and had it come up clean, have run Malwarebytes and had it come up clean and have run the aswMBR and have the report I can upload.

Though if preferred I can re-run them again tomorrow so they are fully current reports when I post them.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:31 AM

Posted 03 June 2012 - 01:55 AM

Please post

TDSSkiller,MBAM.aswmbr and mini toolbox logs

#3 jsparhawk

jsparhawk
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:04:31 AM

Posted 04 June 2012 - 11:51 PM

Sorry - forgot to enable e-mail notification of replies.

Anyway - here's the TDSSKiller...the rest to follow shortly - I figure it's been two days I'll re-run them all just in case and to get a fresh report.

================================


21:48:08.0722 6660 TDSS rootkit removing tool 2.7.36.0 May 21 2012 16:40:16
21:48:09.0858 6660 ============================================================
21:48:09.0858 6660 Current date / time: 2012/06/04 21:48:09.0858
21:48:09.0858 6660 SystemInfo:
21:48:09.0858 6660
21:48:09.0858 6660 OS Version: 6.1.7601 ServicePack: 1.0
21:48:09.0858 6660 Product type: Workstation
21:48:09.0858 6660 ComputerName: WIEST-LAPTOP
21:48:09.0858 6660 UserName: Wiest
21:48:09.0858 6660 Windows directory: C:\Windows
21:48:09.0858 6660 System windows directory: C:\Windows
21:48:09.0858 6660 Running under WOW64
21:48:09.0858 6660 Processor architecture: Intel x64
21:48:09.0858 6660 Number of processors: 2
21:48:09.0858 6660 Page size: 0x1000
21:48:09.0858 6660 Boot type: Normal boot
21:48:09.0858 6660 ============================================================
21:48:13.0793 6660 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:48:13.0877 6660 Drive \Device\Harddisk1\DR1 - Size: 0x7AC00000 (1.92 Gb), SectorSize: 0x200, Cylinders: 0xFA, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
21:48:13.0879 6660 ============================================================
21:48:13.0879 6660 \Device\Harddisk0\DR0:
21:48:13.0880 6660 MBR partitions:
21:48:13.0880 6660 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
21:48:13.0880 6660 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x23B8C000
21:48:13.0880 6660 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x23BF0000, BlocksNum 0x183E000
21:48:13.0880 6660 \Device\Harddisk1\DR1:
21:48:13.0880 6660 MBR partitions:
21:48:13.0880 6660 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x6, StartLBA 0xF3, BlocksNum 0x3D5F0D
21:48:13.0880 6660 ============================================================
21:48:13.0914 6660 C: <-> \Device\Harddisk0\DR0\Partition1
21:48:13.0973 6660 D: <-> \Device\Harddisk0\DR0\Partition2
21:48:13.0994 6660 ============================================================
21:48:13.0994 6660 Initialize success
21:48:13.0994 6660 ============================================================
21:48:16.0668 5544 ============================================================
21:48:16.0668 5544 Scan started
21:48:16.0668 5544 Mode: Manual;
21:48:16.0668 5544 ============================================================
21:49:09.0738 3296 ============================================================
21:49:09.0738 3296 Scan started
21:49:09.0738 3296 Mode: Manual; TDLFS;
21:49:09.0738 3296 ============================================================
21:49:10.0673 3296 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
21:49:10.0681 3296 1394ohci - ok
21:49:10.0786 3296 ACDaemon - ok
21:49:10.0842 3296 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
21:49:10.0846 3296 ACPI - ok
21:49:10.0919 3296 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
21:49:10.0921 3296 AcpiPmi - ok
21:49:11.0022 3296 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
21:49:11.0025 3296 AdobeARMservice - ok
21:49:11.0200 3296 AdobeFlashPlayerUpdateSvc (76d5a3d2a50402a0b9b6ed13c4371e79) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:49:11.0203 3296 AdobeFlashPlayerUpdateSvc - ok
21:49:11.0273 3296 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
21:49:11.0280 3296 adp94xx - ok
21:49:11.0324 3296 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
21:49:11.0329 3296 adpahci - ok
21:49:11.0362 3296 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
21:49:11.0365 3296 adpu320 - ok
21:49:11.0401 3296 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
21:49:11.0403 3296 AeLookupSvc - ok
21:49:11.0510 3296 AESTFilters (a6fb9db8f1a86861d955fd6975977ae0) C:\Program Files\IDT\WDM\AESTSr64.exe
21:49:11.0514 3296 AESTFilters - ok
21:49:11.0602 3296 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
21:49:11.0610 3296 AFD - ok
21:49:11.0668 3296 AgereModemAudio (b65f8dba54f251906bbe8611b5a0e7ab) C:\Program Files\LSI SoftModem\agr64svc.exe
21:49:11.0669 3296 AgereModemAudio - ok
21:49:11.0722 3296 AgereSoftModem (af4748ef93416159459769a24a0053af) C:\Windows\system32\DRIVERS\agrsm64.sys
21:49:11.0737 3296 AgereSoftModem - ok
21:49:11.0814 3296 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
21:49:11.0816 3296 agp440 - ok
21:49:11.0897 3296 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
21:49:11.0900 3296 ALG - ok
21:49:11.0927 3296 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
21:49:11.0930 3296 aliide - ok
21:49:11.0948 3296 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
21:49:11.0950 3296 amdide - ok
21:49:11.0985 3296 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
21:49:11.0988 3296 AmdK8 - ok
21:49:12.0009 3296 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
21:49:12.0011 3296 AmdPPM - ok
21:49:12.0081 3296 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
21:49:12.0084 3296 amdsata - ok
21:49:12.0112 3296 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
21:49:12.0116 3296 amdsbs - ok
21:49:12.0126 3296 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
21:49:12.0128 3296 amdxata - ok
21:49:12.0189 3296 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
21:49:12.0191 3296 AppID - ok
21:49:12.0228 3296 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
21:49:12.0230 3296 AppIDSvc - ok
21:49:12.0318 3296 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
21:49:12.0325 3296 Appinfo - ok
21:49:12.0463 3296 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:49:12.0465 3296 Apple Mobile Device - ok
21:49:12.0503 3296 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
21:49:12.0504 3296 arc - ok
21:49:12.0512 3296 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
21:49:12.0514 3296 arcsas - ok
21:49:12.0562 3296 aspnet_state - ok
21:49:12.0594 3296 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
21:49:12.0596 3296 AsyncMac - ok
21:49:12.0656 3296 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
21:49:12.0657 3296 atapi - ok
21:49:12.0747 3296 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
21:49:12.0755 3296 AudioEndpointBuilder - ok
21:49:12.0764 3296 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
21:49:12.0769 3296 AudioSrv - ok
21:49:13.0153 3296 AVGIDSAgent (6d440ff3f44ca72edfd6176c6d6a89c0) C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe
21:49:13.0208 3296 AVGIDSAgent - ok
21:49:13.0356 3296 AVGIDSDriver (e29ea1a0ec7ab9fa2dc7e75a03f12a4f) C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys
21:49:13.0359 3296 AVGIDSDriver - ok
21:49:13.0424 3296 AVGIDSEH (f823d184b8e8ffb8da3ead45dbf5bd6a) C:\Windows\system32\DRIVERS\AVGIDSEH.Sys
21:49:13.0425 3296 AVGIDSEH - ok
21:49:13.0485 3296 AVGIDSFilter (ed2b25bd7fe35d1944211968842d30da) C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys
21:49:13.0491 3296 AVGIDSFilter - ok
21:49:13.0596 3296 Avgldx64 (979cf8912449a10b987218bff80a1fa3) C:\Windows\system32\DRIVERS\avgldx64.sys
21:49:13.0623 3296 Avgldx64 - ok
21:49:13.0648 3296 Avgmfx64 (36b1a5843695766eac714daffc5b84d1) C:\Windows\system32\DRIVERS\avgmfx64.sys
21:49:13.0649 3296 Avgmfx64 - ok
21:49:13.0721 3296 Avgrkx64 (1102239fb724527f1febbbbccf6bf313) C:\Windows\system32\DRIVERS\avgrkx64.sys
21:49:13.0723 3296 Avgrkx64 - ok
21:49:13.0829 3296 Avgtdia (11f36d3ea82d9db9aa05a476a210551b) C:\Windows\system32\DRIVERS\avgtdia.sys
21:49:13.0854 3296 Avgtdia - ok
21:49:14.0014 3296 avgwd (6699ece24fe4b3f752a66c66a602ee86) C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
21:49:14.0018 3296 avgwd - ok
21:49:14.0096 3296 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
21:49:14.0098 3296 AxInstSV - ok
21:49:14.0173 3296 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
21:49:14.0180 3296 b06bdrv - ok
21:49:14.0229 3296 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
21:49:14.0233 3296 b57nd60a - ok
21:49:14.0360 3296 BBSvc (2ed050291bc1d7f9e322e328db3aaecf) C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
21:49:14.0388 3296 BBSvc - ok
21:49:14.0469 3296 BBUpdate (785de7abda13309d6065305542829e76) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
21:49:14.0472 3296 BBUpdate - ok
21:49:14.0519 3296 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
21:49:14.0521 3296 BDESVC - ok
21:49:14.0555 3296 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
21:49:14.0556 3296 Beep - ok
21:49:14.0678 3296 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
21:49:14.0686 3296 BFE - ok
21:49:14.0809 3296 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
21:49:14.0895 3296 BITS - ok
21:49:14.0952 3296 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
21:49:14.0954 3296 blbdrive - ok
21:49:15.0096 3296 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
21:49:15.0103 3296 Bonjour Service - ok
21:49:15.0162 3296 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
21:49:15.0164 3296 bowser - ok
21:49:15.0186 3296 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
21:49:15.0189 3296 BrFiltLo - ok
21:49:15.0203 3296 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
21:49:15.0206 3296 BrFiltUp - ok
21:49:15.0262 3296 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
21:49:15.0265 3296 Browser - ok
21:49:15.0304 3296 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
21:49:15.0308 3296 Brserid - ok
21:49:15.0329 3296 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
21:49:15.0330 3296 BrSerWdm - ok
21:49:15.0353 3296 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
21:49:15.0354 3296 BrUsbMdm - ok
21:49:15.0367 3296 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
21:49:15.0368 3296 BrUsbSer - ok
21:49:15.0426 3296 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
21:49:15.0428 3296 BTHMODEM - ok
21:49:15.0466 3296 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
21:49:15.0468 3296 bthserv - ok
21:49:15.0512 3296 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
21:49:15.0514 3296 cdfs - ok
21:49:15.0598 3296 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
21:49:15.0601 3296 cdrom - ok
21:49:15.0668 3296 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
21:49:15.0673 3296 CertPropSvc - ok
21:49:15.0708 3296 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
21:49:15.0712 3296 circlass - ok
21:49:15.0765 3296 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
21:49:15.0771 3296 CLFS - ok
21:49:15.0832 3296 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:49:15.0835 3296 clr_optimization_v2.0.50727_32 - ok
21:49:15.0876 3296 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:49:15.0879 3296 clr_optimization_v2.0.50727_64 - ok
21:49:16.0013 3296 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:49:16.0066 3296 clr_optimization_v4.0.30319_32 - ok
21:49:16.0109 3296 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:49:16.0112 3296 clr_optimization_v4.0.30319_64 - ok
21:49:16.0151 3296 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
21:49:16.0153 3296 CmBatt - ok
21:49:16.0212 3296 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
21:49:16.0214 3296 cmdide - ok
21:49:16.0289 3296 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
21:49:16.0299 3296 CNG - ok
21:49:16.0340 3296 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
21:49:16.0342 3296 Compbatt - ok
21:49:16.0414 3296 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
21:49:16.0416 3296 CompositeBus - ok
21:49:16.0429 3296 COMSysApp - ok
21:49:16.0452 3296 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
21:49:16.0453 3296 crcdisk - ok
21:49:16.0527 3296 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll
21:49:16.0530 3296 CryptSvc - ok
21:49:16.0657 3296 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
21:49:16.0671 3296 DcomLaunch - ok
21:49:16.0703 3296 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
21:49:16.0708 3296 defragsvc - ok
21:49:16.0770 3296 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
21:49:16.0773 3296 DfsC - ok
21:49:16.0812 3296 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
21:49:16.0816 3296 Dhcp - ok
21:49:16.0835 3296 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
21:49:16.0837 3296 discache - ok
21:49:16.0893 3296 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
21:49:16.0898 3296 Disk - ok
21:49:16.0959 3296 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
21:49:16.0961 3296 Dnscache - ok
21:49:17.0037 3296 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
21:49:17.0041 3296 dot3svc - ok
21:49:17.0147 3296 Dot4 (b42ed0320c6e41102fde0005154849bb) C:\Windows\system32\DRIVERS\Dot4.sys
21:49:17.0151 3296 Dot4 - ok
21:49:17.0216 3296 Dot4Print (e9f5969233c5d89f3c35e3a66a52a361) C:\Windows\system32\DRIVERS\Dot4Prt.sys
21:49:17.0218 3296 Dot4Print - ok
21:49:17.0246 3296 dot4usb (fd05a02b0370bc3000f402e543ca5814) C:\Windows\system32\DRIVERS\dot4usb.sys
21:49:17.0249 3296 dot4usb - ok
21:49:17.0309 3296 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
21:49:17.0312 3296 DPS - ok
21:49:17.0338 3296 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
21:49:17.0340 3296 drmkaud - ok
21:49:17.0441 3296 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
21:49:17.0454 3296 DXGKrnl - ok
21:49:17.0510 3296 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
21:49:17.0513 3296 EapHost - ok
21:49:17.0658 3296 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
21:49:17.0694 3296 ebdrv - ok
21:49:17.0816 3296 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
21:49:17.0818 3296 EFS - ok
21:49:17.0941 3296 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
21:49:17.0951 3296 ehRecvr - ok
21:49:17.0997 3296 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
21:49:18.0000 3296 ehSched - ok
21:49:18.0054 3296 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
21:49:18.0062 3296 elxstor - ok
21:49:18.0120 3296 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
21:49:18.0123 3296 ErrDev - ok
21:49:18.0187 3296 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
21:49:18.0194 3296 EventSystem - ok
21:49:18.0221 3296 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
21:49:18.0225 3296 exfat - ok
21:49:18.0252 3296 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
21:49:18.0255 3296 fastfat - ok
21:49:18.0385 3296 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
21:49:18.0396 3296 Fax - ok
21:49:18.0438 3296 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
21:49:18.0440 3296 fdc - ok
21:49:18.0463 3296 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
21:49:18.0465 3296 fdPHost - ok
21:49:18.0474 3296 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
21:49:18.0476 3296 FDResPub - ok
21:49:18.0492 3296 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
21:49:18.0508 3296 FileInfo - ok
21:49:18.0525 3296 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
21:49:18.0526 3296 Filetrace - ok
21:49:18.0563 3296 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
21:49:18.0564 3296 flpydisk - ok
21:49:18.0646 3296 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
21:49:18.0650 3296 FltMgr - ok
21:49:18.0747 3296 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
21:49:18.0761 3296 FontCache - ok
21:49:18.0881 3296 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:49:18.0934 3296 FontCache3.0.0.0 - ok
21:49:19.0075 3296 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
21:49:19.0078 3296 FsDepends - ok
21:49:19.0157 3296 fssfltr (07da62c960ddccc2d35836aeab4fc578) C:\Windows\system32\DRIVERS\fssfltr.sys
21:49:19.0159 3296 fssfltr - ok
21:49:19.0365 3296 fsssvc (28ddeeec44e988657b732cf404d504cb) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
21:49:19.0386 3296 fsssvc - ok
21:49:19.0526 3296 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
21:49:19.0528 3296 Fs_Rec - ok
21:49:19.0603 3296 FTDIBUS (fa169871d8fadcc6539c4e8726610286) C:\Windows\system32\drivers\ftdibus.sys
21:49:19.0605 3296 FTDIBUS - ok
21:49:19.0671 3296 FTSER2K (24237091348d1efb5635a1cf9649e311) C:\Windows\system32\drivers\ftser2k.sys
21:49:19.0673 3296 FTSER2K - ok
21:49:19.0752 3296 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
21:49:19.0756 3296 fvevol - ok
21:49:19.0786 3296 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
21:49:19.0788 3296 gagp30kx - ok
21:49:19.0888 3296 GameConsoleService (58f9ee8357271a5529cccbd35a80e599) C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
21:49:19.0893 3296 GameConsoleService - ok
21:49:19.0975 3296 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:49:19.0978 3296 GEARAspiWDM - ok
21:49:20.0065 3296 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
21:49:20.0076 3296 gpsvc - ok
21:49:20.0291 3296 gupdate (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:49:20.0293 3296 gupdate - ok
21:49:20.0370 3296 gupdatem (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:49:20.0372 3296 gupdatem - ok
21:49:20.0444 3296 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
21:49:20.0448 3296 gusvc - ok
21:49:20.0469 3296 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
21:49:20.0471 3296 hcw85cir - ok
21:49:20.0544 3296 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
21:49:20.0548 3296 HdAudAddService - ok
21:49:20.0581 3296 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
21:49:20.0584 3296 HDAudBus - ok
21:49:20.0605 3296 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
21:49:20.0606 3296 HidBatt - ok
21:49:20.0640 3296 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
21:49:20.0642 3296 HidBth - ok
21:49:20.0662 3296 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
21:49:20.0664 3296 HidIr - ok
21:49:20.0687 3296 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
21:49:20.0689 3296 hidserv - ok
21:49:20.0703 3296 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\drivers\hidusb.sys
21:49:20.0705 3296 HidUsb - ok
21:49:20.0763 3296 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
21:49:20.0765 3296 hkmsvc - ok
21:49:20.0825 3296 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
21:49:20.0830 3296 HomeGroupListener - ok
21:49:20.0890 3296 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
21:49:20.0894 3296 HomeGroupProvider - ok
21:49:21.0027 3296 HP Support Assistant Service (13bb1114451c63bfb41ba7daa4d70a29) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
21:49:21.0029 3296 HP Support Assistant Service - ok
21:49:21.0120 3296 HPDrvMntSvc.exe (bcc4a8b2e2e902f52e7f2e7d8e125765) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
21:49:21.0122 3296 HPDrvMntSvc.exe - ok
21:49:21.0251 3296 hpqcxs08 (5da42d24712e00728cea2342a65009b2) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
21:49:21.0255 3296 hpqcxs08 - ok
21:49:21.0330 3296 hpqddsvc (d86a39bf100069444d026d22d9a6e555) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
21:49:21.0333 3296 hpqddsvc - ok
21:49:21.0358 3296 HpqKbFiltr (9af482d058be59cc28bce52e7c4b747c) C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
21:49:21.0360 3296 HpqKbFiltr - ok
21:49:21.0460 3296 hpqwmiex (ec9739a46f1f83c6e52a7a4697f44a65) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
21:49:21.0472 3296 hpqwmiex - ok
21:49:21.0546 3296 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
21:49:21.0548 3296 HpSAMD - ok
21:49:21.0671 3296 HPSLPSVC (f37882f128efacefe353e0bae2766909) C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
21:49:21.0684 3296 HPSLPSVC - ok
21:49:21.0766 3296 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
21:49:21.0775 3296 HTTP - ok
21:49:21.0825 3296 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
21:49:21.0827 3296 hwpolicy - ok
21:49:21.0900 3296 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
21:49:21.0902 3296 i8042prt - ok
21:49:21.0992 3296 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
21:49:22.0027 3296 iaStorV - ok
21:49:22.0175 3296 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:49:22.0187 3296 idsvc - ok
21:49:22.0650 3296 igfx (3c3f27002abc69c5afe29cbe6cf7addf) C:\Windows\system32\DRIVERS\igdkmd64.sys
21:49:22.0818 3296 igfx - ok
21:49:22.0974 3296 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
21:49:22.0975 3296 iirsp - ok
21:49:23.0065 3296 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
21:49:23.0077 3296 IKEEXT - ok
21:49:23.0171 3296 IntcHdmiAddService (88a20fa54c73ded4e8dac764e9130ae9) C:\Windows\system32\drivers\IntcHdmi.sys
21:49:23.0174 3296 IntcHdmiAddService - ok
21:49:23.0230 3296 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
21:49:23.0232 3296 intelide - ok
21:49:23.0274 3296 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
21:49:23.0291 3296 intelppm - ok
21:49:23.0318 3296 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
21:49:23.0322 3296 IPBusEnum - ok
21:49:23.0383 3296 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:49:23.0386 3296 IpFilterDriver - ok
21:49:23.0460 3296 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
21:49:23.0471 3296 iphlpsvc - ok
21:49:23.0526 3296 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
21:49:23.0528 3296 IPMIDRV - ok
21:49:23.0566 3296 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
21:49:23.0569 3296 IPNAT - ok
21:49:23.0737 3296 iPod Service (50d6ccc6ff5561f9f56946b3e6164fb8) C:\Program Files\iPod\bin\iPodService.exe
21:49:23.0749 3296 iPod Service - ok
21:49:23.0779 3296 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
21:49:23.0782 3296 IRENUM - ok
21:49:23.0850 3296 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
21:49:23.0852 3296 isapnp - ok
21:49:23.0920 3296 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
21:49:23.0924 3296 iScsiPrt - ok
21:49:23.0946 3296 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
21:49:23.0948 3296 kbdclass - ok
21:49:23.0971 3296 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
21:49:23.0973 3296 kbdhid - ok
21:49:24.0027 3296 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:49:24.0030 3296 KeyIso - ok
21:49:24.0070 3296 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
21:49:24.0074 3296 KSecDD - ok
21:49:24.0144 3296 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
21:49:24.0147 3296 KSecPkg - ok
21:49:24.0184 3296 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
21:49:24.0186 3296 ksthunk - ok
21:49:24.0230 3296 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
21:49:24.0236 3296 KtmRm - ok
21:49:24.0301 3296 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
21:49:24.0305 3296 LanmanServer - ok
21:49:24.0399 3296 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
21:49:24.0405 3296 LanmanWorkstation - ok
21:49:24.0548 3296 LBTServ (88e52495b47c67126b510af53fdb0bc7) C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
21:49:24.0552 3296 LBTServ - ok
21:49:24.0618 3296 LHidFilt (b6552d382ff070b4ed34cbd6737277c0) C:\Windows\system32\DRIVERS\LHidFilt.Sys
21:49:24.0622 3296 LHidFilt - ok
21:49:24.0690 3296 LightScribeService (3503f257b3203f824b1567238ebe17e2) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
21:49:24.0692 3296 LightScribeService - ok
21:49:24.0733 3296 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
21:49:24.0735 3296 lltdio - ok
21:49:24.0777 3296 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
21:49:24.0786 3296 lltdsvc - ok
21:49:24.0799 3296 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
21:49:24.0801 3296 lmhosts - ok
21:49:24.0863 3296 LMouFilt (73c1f563ab73d459dffe682d66476558) C:\Windows\system32\DRIVERS\LMouFilt.Sys
21:49:24.0865 3296 LMouFilt - ok
21:49:24.0910 3296 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
21:49:24.0913 3296 LSI_FC - ok
21:49:24.0934 3296 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
21:49:24.0936 3296 LSI_SAS - ok
21:49:24.0959 3296 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
21:49:24.0960 3296 LSI_SAS2 - ok
21:49:24.0981 3296 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
21:49:24.0983 3296 LSI_SCSI - ok
21:49:25.0020 3296 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
21:49:25.0022 3296 luafv - ok
21:49:25.0211 3296 McComponentHostService (f453d1e6d881e8f8717e20ccd4199e85) C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe
21:49:25.0215 3296 McComponentHostService - ok
21:49:25.0293 3296 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
21:49:25.0298 3296 Mcx2Svc - ok
21:49:25.0333 3296 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
21:49:25.0334 3296 megasas - ok
21:49:25.0367 3296 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
21:49:25.0372 3296 MegaSR - ok
21:49:25.0436 3296 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
21:49:25.0439 3296 MMCSS - ok
21:49:25.0461 3296 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
21:49:25.0463 3296 Modem - ok
21:49:25.0498 3296 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
21:49:25.0500 3296 monitor - ok
21:49:25.0569 3296 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\drivers\mouclass.sys
21:49:25.0572 3296 mouclass - ok
21:49:25.0678 3296 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
21:49:25.0710 3296 mouhid - ok
21:49:25.0759 3296 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
21:49:25.0762 3296 mountmgr - ok
21:49:25.0838 3296 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
21:49:25.0840 3296 MozillaMaintenance - ok
21:49:25.0907 3296 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
21:49:25.0913 3296 mpio - ok
21:49:25.0952 3296 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
21:49:25.0955 3296 mpsdrv - ok
21:49:26.0052 3296 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
21:49:26.0063 3296 MpsSvc - ok
21:49:26.0118 3296 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
21:49:26.0121 3296 MRxDAV - ok
21:49:26.0175 3296 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
21:49:26.0178 3296 mrxsmb - ok
21:49:26.0244 3296 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:49:26.0248 3296 mrxsmb10 - ok
21:49:26.0272 3296 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:49:26.0275 3296 mrxsmb20 - ok
21:49:26.0341 3296 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
21:49:26.0343 3296 msahci - ok
21:49:26.0407 3296 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
21:49:26.0410 3296 msdsm - ok
21:49:26.0437 3296 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
21:49:26.0440 3296 MSDTC - ok
21:49:26.0479 3296 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
21:49:26.0481 3296 Msfs - ok
21:49:26.0498 3296 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
21:49:26.0499 3296 mshidkmdf - ok
21:49:26.0518 3296 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
21:49:26.0520 3296 msisadrv - ok
21:49:26.0568 3296 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
21:49:26.0572 3296 MSiSCSI - ok
21:49:26.0576 3296 msiserver - ok
21:49:26.0610 3296 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
21:49:26.0611 3296 MSKSSRV - ok
21:49:26.0626 3296 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
21:49:26.0627 3296 MSPCLOCK - ok
21:49:26.0640 3296 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
21:49:26.0655 3296 MSPQM - ok
21:49:26.0731 3296 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
21:49:26.0735 3296 MsRPC - ok
21:49:26.0805 3296 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
21:49:26.0808 3296 mssmbios - ok
21:49:26.0827 3296 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
21:49:26.0829 3296 MSTEE - ok
21:49:26.0860 3296 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
21:49:26.0862 3296 MTConfig - ok
21:49:26.0877 3296 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
21:49:26.0879 3296 Mup - ok
21:49:26.0952 3296 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
21:49:26.0959 3296 napagent - ok
21:49:27.0025 3296 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
21:49:27.0030 3296 NativeWifiP - ok
21:49:27.0121 3296 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
21:49:27.0133 3296 NDIS - ok
21:49:27.0149 3296 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
21:49:27.0151 3296 NdisCap - ok
21:49:27.0180 3296 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
21:49:27.0222 3296 NdisTapi - ok
21:49:27.0287 3296 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
21:49:27.0289 3296 Ndisuio - ok
21:49:27.0353 3296 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
21:49:27.0356 3296 NdisWan - ok
21:49:27.0417 3296 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
21:49:27.0419 3296 NDProxy - ok
21:49:27.0510 3296 Net Driver HPZ12 (2334dc48997ba203b794df3ee70521db) C:\Windows\system32\HPZinw12.dll
21:49:27.0513 3296 Net Driver HPZ12 - ok
21:49:27.0551 3296 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
21:49:27.0554 3296 NetBIOS - ok
21:49:27.0614 3296 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
21:49:27.0622 3296 NetBT - ok
21:49:27.0684 3296 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:49:27.0686 3296 Netlogon - ok
21:49:27.0744 3296 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
21:49:27.0749 3296 Netman - ok
21:49:27.0779 3296 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
21:49:27.0786 3296 netprofm - ok
21:49:27.0869 3296 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:49:27.0872 3296 NetTcpPortSharing - ok
21:49:28.0184 3296 NETw1v64 (e72f4522801ffb8f0456924fb0017bff) C:\Windows\system32\DRIVERS\NETw1v64.sys
21:49:28.0406 3296 NETw1v64 - ok
21:49:28.0905 3296 NETw5s64 (39ede676d17f37af4573c2b33ec28aca) C:\Windows\system32\DRIVERS\NETw5s64.sys
21:49:29.0114 3296 NETw5s64 - ok
21:49:29.0731 3296 netw5v64 (64428dfdaf6e88366cb51f45a79c5f69) C:\Windows\system32\DRIVERS\netw5v64.sys
21:49:29.0796 3296 netw5v64 - ok
21:49:30.0000 3296 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
21:49:30.0003 3296 nfrd960 - ok
21:49:30.0090 3296 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
21:49:30.0095 3296 NlaSvc - ok
21:49:30.0123 3296 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
21:49:30.0125 3296 Npfs - ok
21:49:30.0149 3296 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
21:49:30.0152 3296 nsi - ok
21:49:30.0168 3296 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
21:49:30.0170 3296 nsiproxy - ok
21:49:30.0331 3296 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
21:49:30.0352 3296 Ntfs - ok
21:49:30.0455 3296 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
21:49:30.0458 3296 Null - ok
21:49:30.0527 3296 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
21:49:30.0529 3296 nvraid - ok
21:49:30.0546 3296 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
21:49:30.0549 3296 nvstor - ok
21:49:30.0621 3296 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
21:49:30.0623 3296 nv_agp - ok
21:49:30.0642 3296 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
21:49:30.0644 3296 ohci1394 - ok
21:49:30.0768 3296 ose (7a56cf3e3f12e8af599963b16f50fb6a) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:49:30.0788 3296 ose - ok
21:49:30.0832 3296 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
21:49:30.0838 3296 p2pimsvc - ok
21:49:30.0866 3296 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
21:49:30.0873 3296 p2psvc - ok
21:49:30.0910 3296 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
21:49:30.0914 3296 Parport - ok
21:49:30.0979 3296 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
21:49:30.0982 3296 partmgr - ok
21:49:31.0008 3296 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
21:49:31.0016 3296 PcaSvc - ok
21:49:31.0086 3296 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
21:49:31.0089 3296 pci - ok
21:49:31.0124 3296 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
21:49:31.0126 3296 pciide - ok
21:49:31.0159 3296 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
21:49:31.0164 3296 pcmcia - ok
21:49:31.0187 3296 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
21:49:31.0188 3296 pcw - ok
21:49:31.0233 3296 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
21:49:31.0242 3296 PEAUTH - ok
21:49:31.0297 3296 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
21:49:31.0301 3296 PerfHost - ok
21:49:31.0452 3296 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
21:49:31.0473 3296 pla - ok
21:49:31.0603 3296 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
21:49:31.0621 3296 PlugPlay - ok
21:49:31.0714 3296 Pml Driver HPZ12 (ac78df349f0e4cfb8b667c0cfff83cce) C:\Windows\system32\HPZipm12.dll
21:49:31.0717 3296 Pml Driver HPZ12 - ok
21:49:31.0744 3296 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
21:49:31.0747 3296 PNRPAutoReg - ok
21:49:31.0778 3296 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
21:49:31.0781 3296 PNRPsvc - ok
21:49:31.0847 3296 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
21:49:31.0855 3296 PolicyAgent - ok
21:49:31.0886 3296 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
21:49:31.0891 3296 Power - ok
21:49:31.0981 3296 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
21:49:31.0985 3296 PptpMiniport - ok
21:49:32.0018 3296 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
21:49:32.0020 3296 Processor - ok
21:49:32.0093 3296 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
21:49:32.0098 3296 ProfSvc - ok
21:49:32.0162 3296 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:49:32.0164 3296 ProtectedStorage - ok
21:49:32.0242 3296 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
21:49:32.0244 3296 Psched - ok
21:49:32.0347 3296 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
21:49:32.0364 3296 ql2300 - ok
21:49:32.0459 3296 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
21:49:32.0471 3296 ql40xx - ok
21:49:32.0511 3296 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
21:49:32.0516 3296 QWAVE - ok
21:49:32.0543 3296 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
21:49:32.0545 3296 QWAVEdrv - ok
21:49:32.0562 3296 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
21:49:32.0564 3296 RasAcd - ok
21:49:32.0610 3296 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
21:49:32.0612 3296 RasAgileVpn - ok
21:49:32.0636 3296 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
21:49:32.0640 3296 RasAuto - ok
21:49:32.0701 3296 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
21:49:32.0704 3296 Rasl2tp - ok
21:49:32.0784 3296 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
21:49:32.0790 3296 RasMan - ok
21:49:32.0826 3296 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
21:49:32.0829 3296 RasPppoe - ok
21:49:32.0848 3296 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
21:49:32.0850 3296 RasSstp - ok
21:49:32.0875 3296 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
21:49:32.0882 3296 rdbss - ok
21:49:32.0913 3296 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
21:49:32.0915 3296 rdpbus - ok
21:49:32.0936 3296 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
21:49:32.0938 3296 RDPCDD - ok
21:49:32.0974 3296 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
21:49:32.0976 3296 RDPENCDD - ok
21:49:33.0029 3296 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
21:49:33.0031 3296 RDPREFMP - ok
21:49:33.0093 3296 RDPWD (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys
21:49:33.0097 3296 RDPWD - ok
21:49:33.0164 3296 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
21:49:33.0168 3296 rdyboost - ok
21:49:33.0226 3296 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
21:49:33.0229 3296 RemoteAccess - ok
21:49:33.0260 3296 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
21:49:33.0265 3296 RemoteRegistry - ok
21:49:33.0379 3296 RichVideo (498eb62a160674e793fa40fd65390625) C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
21:49:33.0393 3296 RichVideo - ok
21:49:33.0438 3296 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
21:49:33.0441 3296 RpcEptMapper - ok
21:49:33.0465 3296 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
21:49:33.0467 3296 RpcLocator - ok
21:49:33.0534 3296 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
21:49:33.0539 3296 RpcSs - ok
21:49:33.0593 3296 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
21:49:33.0596 3296 rspndr - ok
21:49:33.0685 3296 RSUSBSTOR (a5df2f732a6c95554e548fcb6932bd31) C:\Windows\system32\Drivers\RtsUStor.sys
21:49:33.0723 3296 RSUSBSTOR - ok
21:49:33.0813 3296 RTL8167 (365ed58b47b46de8b1c5fa759b6fcd6e) C:\Windows\system32\DRIVERS\Rt64win7.sys
21:49:33.0819 3296 RTL8167 - ok
21:49:33.0827 3296 RtsUIR - ok
21:49:33.0895 3296 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:49:33.0898 3296 SamSs - ok
21:49:33.0957 3296 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
21:49:33.0960 3296 sbp2port - ok
21:49:33.0999 3296 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
21:49:34.0004 3296 SCardSvr - ok
21:49:34.0053 3296 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
21:49:34.0054 3296 scfilter - ok
21:49:34.0146 3296 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
21:49:34.0162 3296 Schedule - ok
21:49:34.0224 3296 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
21:49:34.0225 3296 SCPolicySvc - ok
21:49:34.0292 3296 sdbus (111e0ebc0ad79cb0fa014b907b231cf0) C:\Windows\system32\drivers\sdbus.sys
21:49:34.0294 3296 sdbus - ok
21:49:34.0369 3296 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
21:49:34.0376 3296 SDRSVC - ok
21:49:34.0429 3296 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
21:49:34.0440 3296 secdrv - ok
21:49:34.0498 3296 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
21:49:34.0501 3296 seclogon - ok
21:49:34.0522 3296 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
21:49:34.0525 3296 SENS - ok
21:49:34.0554 3296 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
21:49:34.0556 3296 SensrSvc - ok
21:49:34.0574 3296 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
21:49:34.0576 3296 Serenum - ok
21:49:34.0589 3296 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
21:49:34.0592 3296 Serial - ok
21:49:34.0662 3296 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
21:49:34.0664 3296 sermouse - ok
21:49:34.0740 3296 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
21:49:34.0744 3296 SessionEnv - ok
21:49:34.0800 3296 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
21:49:34.0802 3296 sffdisk - ok
21:49:34.0819 3296 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
21:49:34.0821 3296 sffp_mmc - ok
21:49:34.0841 3296 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
21:49:34.0842 3296 sffp_sd - ok
21:49:34.0859 3296 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
21:49:34.0860 3296 sfloppy - ok
21:49:34.0900 3296 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
21:49:34.0906 3296 SharedAccess - ok
21:49:34.0988 3296 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
21:49:34.0997 3296 ShellHWDetection - ok
21:49:35.0049 3296 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
21:49:35.0051 3296 SiSRaid2 - ok
21:49:35.0072 3296 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
21:49:35.0074 3296 SiSRaid4 - ok
21:49:35.0123 3296 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
21:49:35.0125 3296 Smb - ok
21:49:35.0170 3296 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
21:49:35.0173 3296 SNMPTRAP - ok
21:49:35.0349 3296 SNP2UVC (9f85b4674aa3905f2057ead717d69eb3) C:\Windows\system32\DRIVERS\snp2uvc.sys
21:49:35.0387 3296 SNP2UVC - ok
21:49:35.0478 3296 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
21:49:35.0480 3296 spldr - ok
21:49:35.0558 3296 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
21:49:35.0566 3296 Spooler - ok
21:49:35.0739 3296 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
21:49:35.0779 3296 sppsvc - ok
21:49:35.0869 3296 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
21:49:35.0873 3296 sppuinotify - ok
21:49:35.0963 3296 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
21:49:35.0970 3296 srv - ok
21:49:36.0029 3296 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
21:49:36.0035 3296 srv2 - ok
21:49:36.0093 3296 SrvHsfHDA (0c4540311e11664b245a263e1154cef8) C:\Windows\system32\DRIVERS\VSTAZL6.SYS
21:49:36.0098 3296 SrvHsfHDA - ok
21:49:36.0182 3296 SrvHsfV92 (02071d207a9858fbe3a48cbfd59c4a04) C:\Windows\system32\DRIVERS\VSTDPV6.SYS
21:49:36.0200 3296 SrvHsfV92 - ok
21:49:36.0401 3296 SrvHsfWinac (18e40c245dbfaf36fd0134a7ef2df396) C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
21:49:36.0413 3296 SrvHsfWinac - ok
21:49:36.0487 3296 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
21:49:36.0490 3296 srvnet - ok
21:49:36.0533 3296 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
21:49:36.0537 3296 SSDPSRV - ok
21:49:36.0556 3296 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
21:49:36.0560 3296 SstpSvc - ok
21:49:36.0646 3296 STacSV (3bd758c56a55930cd6db89e3dedcf322) C:\Program Files\IDT\WDM\STacSV64.exe
21:49:36.0650 3296 STacSV - ok
21:49:36.0753 3296 Steam Client Service - ok
21:49:36.0797 3296 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
21:49:36.0799 3296 stexstor - ok
21:49:36.0828 3296 STHDA (a3fb7ad8720d7e02aa0111a6b51c2744) C:\Windows\system32\DRIVERS\stwrt64.sys
21:49:36.0834 3296 STHDA - ok
21:49:36.0891 3296 StillCam (decacb6921ded1a38642642685d77dac) C:\Windows\system32\DRIVERS\serscan.sys
21:49:36.0909 3296 StillCam - ok
21:49:36.0989 3296 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
21:49:36.0999 3296 stisvc - ok
21:49:37.0052 3296 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
21:49:37.0054 3296 swenum - ok
21:49:37.0108 3296 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
21:49:37.0116 3296 swprv - ok
21:49:37.0152 3296 SynTP (929c9fa0b18ad2ebc8340591c4bf00ff) C:\Windows\system32\DRIVERS\SynTP.sys
21:49:37.0156 3296 SynTP - ok
21:49:37.0281 3296 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
21:49:37.0340 3296 SysMain - ok
21:49:37.0536 3296 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
21:49:37.0539 3296 TabletInputService - ok
21:49:37.0613 3296 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
21:49:37.0619 3296 TapiSrv - ok
21:49:37.0648 3296 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
21:49:37.0652 3296 TBS - ok
21:49:37.0794 3296 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
21:49:37.0825 3296 Tcpip - ok
21:49:37.0999 3296 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
21:49:38.0012 3296 TCPIP6 - ok
21:49:38.0092 3296 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
21:49:38.0124 3296 tcpipreg - ok
21:49:38.0183 3296 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
21:49:38.0185 3296 TDPIPE - ok
21:49:38.0240 3296 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
21:49:38.0241 3296 TDTCP - ok
21:49:38.0307 3296 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
21:49:38.0312 3296 tdx - ok
21:49:38.0386 3296 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
21:49:38.0388 3296 TermDD - ok
21:49:38.0510 3296 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
21:49:38.0520 3296 TermService - ok
21:49:38.0554 3296 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
21:49:38.0557 3296 Themes - ok
21:49:38.0604 3296 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
21:49:38.0606 3296 THREADORDER - ok
21:49:38.0638 3296 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
21:49:38.0642 3296 TrkWks - ok
21:49:38.0727 3296 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
21:49:38.0730 3296 TrustedInstaller - ok
21:49:38.0804 3296 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
21:49:38.0806 3296 tssecsrv - ok
21:49:38.0923 3296 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
21:49:38.0925 3296 TsUsbFlt - ok
21:49:39.0005 3296 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
21:49:39.0007 3296 tunnel - ok
21:49:39.0069 3296 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
21:49:39.0071 3296 uagp35 - ok
21:49:39.0139 3296 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
21:49:39.0145 3296 udfs - ok
21:49:39.0191 3296 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
21:49:39.0224 3296 UI0Detect - ok
21:49:39.0309 3296 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
21:49:39.0335 3296 uliagpkx - ok
21:49:39.0434 3296 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
21:49:39.0457 3296 umbus - ok
21:49:39.0566 3296 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
21:49:39.0601 3296 UmPass - ok
21:49:39.0636 3296 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
21:49:39.0642 3296 upnphost - ok
21:49:39.0713 3296 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\Windows\system32\Drivers\usbaapl64.sys
21:49:39.0714 3296 USBAAPL64 - ok
21:49:39.0740 3296 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
21:49:39.0743 3296 usbccgp - ok
21:49:39.0747 3296 USBCCID - ok
21:49:39.0784 3296 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
21:49:39.0809 3296 usbcir - ok
21:49:39.0844 3296 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
21:49:39.0846 3296 usbehci - ok
21:49:39.0888 3296 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
21:49:39.0893 3296 usbhub - ok
21:49:39.0922 3296 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
21:49:39.0924 3296 usbohci - ok
21:49:39.0952 3296 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
21:49:39.0953 3296 usbprint - ok
21:49:40.0015 3296 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
21:49:40.0017 3296 usbscan - ok
21:49:40.0042 3296 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:49:40.0044 3296 USBSTOR - ok
21:49:40.0071 3296 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
21:49:40.0075 3296 usbuhci - ok
21:49:40.0143 3296 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys
21:49:40.0148 3296 usbvideo - ok
21:49:40.0188 3296 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
21:49:40.0191 3296 UxSms - ok
21:49:40.0240 3296 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:49:40.0242 3296 VaultSvc - ok
21:49:40.0329 3296 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
21:49:40.0331 3296 vdrvroot - ok
21:49:40.0453 3296 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
21:49:40.0463 3296 vds - ok
21:49:40.0506 3296 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
21:49:40.0508 3296 vga - ok
21:49:40.0530 3296 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
21:49:40.0532 3296 VgaSave - ok
21:49:40.0601 3296 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
21:49:40.0605 3296 vhdmp - ok
21:49:40.0664 3296 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
21:49:40.0666 3296 viaide - ok
21:49:40.0687 3296 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
21:49:40.0689 3296 volmgr - ok
21:49:40.0754 3296 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
21:49:40.0790 3296 volmgrx - ok
21:49:40.0833 3296 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
21:49:40.0837 3296 volsnap - ok
21:49:40.0881 3296 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
21:49:40.0884 3296 vsmraid - ok
21:49:41.0011 3296 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
21:49:41.0036 3296 VSS - ok
21:49:41.0132 3296 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
21:49:41.0134 3296 vwifibus - ok
21:49:41.0159 3296 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
21:49:41.0161 3296 vwififlt - ok
21:49:41.0203 3296 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
21:49:41.0209 3296 W32Time - ok
21:49:41.0266 3296 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
21:49:41.0280 3296 WacomPen - ok
21:49:41.0352 3296 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:49:41.0355 3296 WANARP - ok
21:49:41.0360 3296 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:49:41.0361 3296 Wanarpv6 - ok
21:49:41.0488 3296 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
21:49:41.0504 3296 WatAdminSvc - ok
21:49:41.0605 3296 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
21:49:41.0626 3296 wbengine - ok
21:49:41.0742 3296 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
21:49:41.0749 3296 WbioSrvc - ok
21:49:41.0831 3296 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
21:49:41.0838 3296 wcncsvc - ok
21:49:41.0868 3296 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
21:49:41.0872 3296 WcsPlugInService - ok
21:49:41.0906 3296 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
21:49:41.0908 3296 Wd - ok
21:49:41.0967 3296 WDC_SAM (a3d04ebf5227886029b4532f20d026f7) C:\Windows\system32\DRIVERS\wdcsam64.sys
21:49:41.0968 3296 WDC_SAM - ok
21:49:42.0111 3296 WDDMService (334e5ed94d3faff3c44f4d36b1fe1c90) C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
21:49:42.0126 3296 WDDMService - ok
21:49:42.0168 3296 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
21:49:42.0177 3296 Wdf01000 - ok
21:49:42.0199 3296 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
21:49:42.0202 3296 WdiServiceHost - ok
21:49:42.0208 3296 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
21:49:42.0212 3296 WdiSystemHost - ok
21:49:42.0364 3296 WDSmartWareBackgroundService (138ab06adbbf300aa804d7974a5aec82) C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe
21:49:42.0367 3296 WDSmartWareBackgroundService - ok
21:49:42.0440 3296 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
21:49:42.0447 3296 WebClient - ok
21:49:42.0490 3296 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
21:49:42.0495 3296 Wecsvc - ok
21:49:42.0530 3296 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
21:49:42.0535 3296 wercplsupport - ok
21:49:42.0573 3296 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
21:49:42.0577 3296 WerSvc - ok
21:49:42.0642 3296 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
21:49:42.0643 3296 WfpLwf - ok
21:49:42.0661 3296 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
21:49:42.0662 3296 WIMMount - ok
21:49:42.0680 3296 WinDefend - ok
21:49:42.0689 3296 WinHttpAutoProxySvc - ok
21:49:42.0754 3296 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
21:49:42.0766 3296 Winmgmt - ok
21:49:42.0930 3296 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
21:49:42.0965 3296 WinRM - ok
21:49:43.0146 3296 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
21:49:43.0148 3296 WinUsb - ok
21:49:43.0199 3296 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
21:49:43.0212 3296 Wlansvc - ok
21:49:43.0328 3296 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
21:49:43.0330 3296 wlcrasvc - ok
21:49:43.0566 3296 wlidsvc (2bacd71123f42cea603f4e205e1ae337) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:49:43.0616 3296 wlidsvc - ok
21:49:43.0757 3296 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
21:49:43.0759 3296 WmiAcpi - ok
21:49:43.0819 3296 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
21:49:43.0824 3296 wmiApSrv - ok
21:49:43.0869 3296 WMPNetworkSvc - ok
21:49:43.0895 3296 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
21:49:43.0901 3296 WPCSvc - ok
21:49:43.0964 3296 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
21:49:43.0970 3296 WPDBusEnum - ok
21:49:43.0998 3296 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
21:49:44.0000 3296 ws2ifsl - ok
21:49:44.0016 3296 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
21:49:44.0020 3296 wscsvc - ok
21:49:44.0086 3296 WSDPrintDevice (8d918b1db190a4d9b1753a66fa8c96e8) C:\Windows\system32\DRIVERS\WSDPrint.sys
21:49:44.0088 3296 WSDPrintDevice - ok
21:49:44.0093 3296 WSearch - ok
21:49:44.0252 3296 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
21:49:44.0303 3296 wuauserv - ok
21:49:44.0459 3296 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
21:49:44.0462 3296 WudfPf - ok
21:49:44.0486 3296 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
21:49:44.0489 3296 WUDFRd - ok
21:49:44.0551 3296 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
21:49:44.0554 3296 wudfsvc - ok
21:49:44.0585 3296 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
21:49:44.0593 3296 WwanSvc - ok
21:49:44.0652 3296 yukonw7 (b3eeacf62445e24fbb2cd4b0fb4db026) C:\Windows\system32\DRIVERS\yk62x64.sys
21:49:44.0658 3296 yukonw7 - ok
21:49:44.0711 3296 MBR (0x1B8) (79cff5ca70124fc25e75a7da0c19c3a0) \Device\Harddisk0\DR0
21:49:44.0916 3296 \Device\Harddisk0\DR0 - ok
21:49:45.0948 3296 MBR (0x1B8) (5fb38429d5d77768867c76dcbdb35194) \Device\Harddisk1\DR1
21:49:46.0050 3296 \Device\Harddisk1\DR1 - ok
21:49:46.0055 3296 Boot (0x1200) (baa1d0746180d17cc95febb07b4c27f1) \Device\Harddisk0\DR0\Partition0
21:49:46.0057 3296 \Device\Harddisk0\DR0\Partition0 - ok
21:49:46.0081 3296 Boot (0x1200) (8654605c2d41b796c55d16a20c52a0bf) \Device\Harddisk0\DR0\Partition1
21:49:46.0082 3296 \Device\Harddisk0\DR0\Partition1 - ok
21:49:46.0119 3296 Boot (0x1200) (fc34d3ea20af308fda5956073527ec75) \Device\Harddisk0\DR0\Partition2
21:49:46.0120 3296 \Device\Harddisk0\DR0\Partition2 - ok
21:49:46.0125 3296 Boot (0x1200) (f1aff8989ac361f3e193693e21d0cf52) \Device\Harddisk1\DR1\Partition0
21:49:46.0126 3296 \Device\Harddisk1\DR1\Partition0 - ok
21:49:46.0128 3296 ============================================================
21:49:46.0128 3296 Scan finished
21:49:46.0128 3296 ============================================================
21:49:46.0145 2584 Detected object count: 0
21:49:46.0145 2584 Actual detected object count: 0

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:31 AM

Posted 04 June 2012 - 11:52 PM

:thumbup2:

#5 jsparhawk

jsparhawk
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:04:31 AM

Posted 05 June 2012 - 12:23 AM

MBAM

=============


Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.06.05.02

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Wiest :: WIEST-LAPTOP [administrator]

6/4/2012 9:52:38 PM
mbam-log-2012-06-04 (21-52-38).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 233587
Time elapsed: 28 minute(s), 40 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#6 jsparhawk

jsparhawk
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:04:31 AM

Posted 05 June 2012 - 12:25 AM

aswMBR

================

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-06-04 22:23:16
-----------------------------
22:23:16.811 OS Version: Windows x64 6.1.7601 Service Pack 1
22:23:16.811 Number of processors: 2 586 0x170A
22:23:16.812 ComputerName: WIEST-LAPTOP UserName: Wiest
22:23:23.380 Initialize success
22:23:42.924 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
22:23:42.928 Disk 0 Vendor: Hitachi_HTS545032B9A300 PB3OCA0G Size: 305245MB BusType: 11
22:23:42.960 Disk 0 MBR read successfully
22:23:42.965 Disk 0 MBR scan
22:23:42.968 Disk 0 unknown MBR code
22:23:43.029 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 199 MB offset 2048
22:23:43.085 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 292632 MB offset 409600
22:23:43.122 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 12412 MB offset 599719936
22:23:43.159 Disk 0 scanning C:\Windows\system32\drivers
22:23:56.651 Service scanning
22:24:28.776 Modules scanning
22:24:28.785 Disk 0 trace - called modules:
22:24:28.819 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS PCIIDEX.SYS hal.dll msahci.sys
22:24:28.823 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004c42060]
22:24:28.830 3 CLASSPNP.SYS[fffff880010a743f] -> nt!IofCallDriver -> [0xfffffa800475e1e0]
22:24:28.835 5 ACPI.sys[fffff88000d667a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa8004775060]
22:24:28.840 Scan finished successfully
22:24:41.188 Disk 0 MBR has been saved successfully to "C:\Users\Wiest\Downloads\MBR.dat"
22:24:41.224 The log file has been saved successfully to "C:\Users\Wiest\Downloads\aswMBR.txt"

#7 jsparhawk

jsparhawk
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:04:31 AM

Posted 05 June 2012 - 12:28 AM

mini toobox

======================


MiniToolBox by Farbar Version: 14-01-2012
Ran by Wiest (administrator) on 04-06-2012 at 22:26:46
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

::1 localhost








































































































































































































149.5.18.172 www.google-analytics.com.
149.5.18.172 ad-emea.doubleclick.net.
149.5.18.172 www.statcounter.com.
108.163.215.51 www.google-analytics.com.
108.163.215.51 ad-emea.doubleclick.net.
108.163.215.51 www.statcounter.com.

127.0.0.1 localhost

========================= IP Configuration: ================================

Intel® WiFi Link 1000 BGN = Wireless Network Connection (Connected)
Realtek PCIe FE Family Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Wiest-Laptop
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : netgear.com

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : netgear.com
Description . . . . . . . . . . . : Intel® WiFi Link 1000 BGN
Physical Address. . . . . . . . . : 00-1E-64-37-B7-16
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::24d8:d989:651b:aa8a%12(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.103(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Monday, June 04, 2012 2:42:20 PM
Lease Expires . . . . . . . . . . : Tuesday, June 05, 2012 4:02:43 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 318774884
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-12-2D-3F-9A-00-26-9E-47-46-49
DNS Servers . . . . . . . . . . . : 66.133.189.215
66.133.70.2
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : colubris.lan
Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
Physical Address. . . . . . . . . : 00-26-9E-47-46-49
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter 6TO4 Adapter:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Reusable Microsoft 6To4 Adapter:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.domain.invalid:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.netgear.com:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : netgear.com
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 68:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:893:2ee2:b5d3:5d48(Preferred)
Link-local IPv6 Address . . . . . : fe80::893:2ee2:b5d3:5d48%80(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: resolve.ekgv.ca.frontiernet.net
Address: 66.133.189.215

Name: google.com
Addresses: 74.125.224.35
74.125.224.36
74.125.224.37
74.125.224.38
74.125.224.39
74.125.224.40
74.125.224.41
74.125.224.46
74.125.224.32
74.125.224.33
74.125.224.34


Pinging google.com [74.125.224.128] with 32 bytes of data:
Reply from 74.125.224.128: bytes=32 time=16ms TTL=55
Reply from 74.125.224.128: bytes=32 time=15ms TTL=55

Ping statistics for 74.125.224.128:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 15ms, Maximum = 16ms, Average = 15ms
Server: resolve.ekgv.ca.frontiernet.net
Address: 66.133.189.215

Name: yahoo.com
Addresses: 209.191.122.70
72.30.38.140
98.139.183.24


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=93ms TTL=47
Reply from 98.139.183.24: bytes=32 time=193ms TTL=46

Ping statistics for 98.139.183.24:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 93ms, Maximum = 193ms, Average = 143ms
Server: resolve.ekgv.ca.frontiernet.net
Address: 66.133.189.215

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
12...00 1e 64 37 b7 16 ......Intel® WiFi Link 1000 BGN
10...00 26 9e 47 46 49 ......Realtek PCIe FE Family Controller
1...........................Software Loopback Interface 1
11...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
19...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #2
69...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
78...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
80...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.103 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.103 281
192.168.1.103 255.255.255.255 On-link 192.168.1.103 281
192.168.1.255 255.255.255.255 On-link 192.168.1.103 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.103 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.103 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
80 58 ::/0 On-link
1 306 ::1/128 On-link
80 58 2001::/32 On-link
80 306 2001:0:4137:9e76:893:2ee2:b5d3:5d48/128
On-link
12 281 fe80::/64 On-link
80 306 fe80::/64 On-link
80 306 fe80::893:2ee2:b5d3:5d48/128
On-link
12 281 fe80::24d8:d989:651b:aa8a/128
On-link
1 306 ff00::/8 On-link
80 306 ff00::/8 On-link
12 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (06/04/2012 04:24:49 PM) (Source: Software Protection Platform Service) (User: )
Description: Acquisition of genuine ticket failed (hr=0x80072F8F) for template Id 66c92734-d682-4d71-983e-d6ec3f16059f

Error: (06/04/2012 04:24:49 PM) (Source: Software Protection Platform Service) (User: )
Description: License acquisition failure details.
hr=0x80072F8F

Error: (06/04/2012 06:12:49 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 24118956

Error: (06/04/2012 06:12:49 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 24118956

Error: (06/04/2012 06:12:49 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/04/2012 06:12:48 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 24117895

Error: (06/04/2012 06:12:48 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 24117895

Error: (06/04/2012 06:12:48 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/04/2012 06:12:47 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 24116881

Error: (06/04/2012 06:12:47 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 24116881


System errors:
=============
Error: (06/04/2012 10:15:01 PM) (Source: DCOM) (User: )
Description: {0002DF01-0000-0000-C000-000000000046}

Error: (06/04/2012 02:43:29 PM) (Source: DCOM) (User: SYSTEM)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (06/04/2012 06:47:28 AM) (Source: DCOM) (User: )
Description: {10DA4F3C-CC99-4190-BE4D-58330754E882}

Error: (06/04/2012 06:44:35 AM) (Source: DCOM) (User: SYSTEM)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (06/04/2012 06:44:33 AM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the WD SmartWare Background Service service to connect.

Error: (06/04/2012 06:28:34 AM) (Source: DCOM) (User: )
Description: {B2B3C70A-B20F-40B7-90C5-EA7E946C16E0}

Error: (06/03/2012 02:31:10 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SysMain service.

Error: (06/01/2012 11:02:15 PM) (Source: DCOM) (User: )
Description: {10DA4F3C-CC99-4190-BE4D-58330754E882}

Error: (06/01/2012 10:59:37 PM) (Source: DCOM) (User: SYSTEM)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (06/01/2012 06:49:50 AM) (Source: DCOM) (User: )
Description: {10DA4F3C-CC99-4190-BE4D-58330754E882}


Microsoft Office Sessions:
=========================
Error: (06/04/2012 04:24:49 PM) (Source: Software Protection Platform Service)(User: )
Description: hr=0x80072F8F66c92734-d682-4d71-983e-d6ec3f16059f

Error: (06/04/2012 04:24:49 PM) (Source: Software Protection Platform Service)(User: )
Description: hr=0x80072F8F00010001(0x00000000, 16:24:44:509 - http://go.microsoft.com/fwlink/?LinkId=151642)
00020001(0x00000000, 16:24:44:509)
00030001(0x00000000, 16:24:44:509 - http://go.microsoft.com)
00030002(0x00000000, 16:24:44:509 - 0)
00040001(0x00000000, 16:24:44:509 - http://go.microsoft.com)
00040002(0x00000000, 16:24:44:572 - 1, <NULL>, <NULL>, <NULL>)
00040004(0x80072F94, 16:24:46:880 - <NULL>)
00040006(0x00000000, 16:24:46:880 - 1, http://go.microsoft.com, <NULL>, <local>)
00020005(0x00000000, 16:24:46:880 - 0)
0002000C(0x00000000, 16:24:46:927 - 302)
0002000E(0x00000000, 16:24:46:927 - https://validation.sls.microsoft.com/SLWGA/slwga.asmx)
00020001(0x00000000, 16:24:46:927)
00030001(0x00000000, 16:24:46:927 - https://validation.sls.microsoft.com)
00030002(0x00000000, 16:24:46:927 - 0)
00040001(0x00000000, 16:24:46:927 - https://validation.sls.microsoft.com)
00040002(0x00000000, 16:24:46:943 - 1, <NULL>, <NULL>, <NULL>)
00040004(0x80072F94, 16:24:49:236 - <NULL>)
00040006(0x00000000, 16:24:49:236 - 1, https://validation.sls.microsoft.com, <NULL>, <local>)
00020005(0x00000000, 16:24:49:236 - 0)
00020008(0x80072F8F, 16:24:49:408 - SOAPAction: "http://microsoft.com/SL/GenuineAdvantageService/IssueToken"
Content-Type: text/xml; charset=utf-8
, <soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:soapenc="http://schemas.xmlsoap.org/soap/encoding/"><soap:Body><RequestSecurityToken xmlns="http://schemas.xmlsoap.org/ws/2004/04/security/trust"><TokenType>SLWGA</TokenType><RequestType>http://schemas.xmlsoap.org/ws/2004/04/security/trust/Issue</RequestType><UseKey><Values xsi:nil="1"/></UseKey><Claims><Values xmlns:q1="http://schemas.xmlsoap.org/ws/2004/04/security/trust" soapenc:arrayType="q1:TokenEntry[5]"><TokenEntry><Name>GenuineAdvantagePhase</Name><Value>GenuineAdvantagePhase1</Value></TokenEntry><TokenEntry><Name>GenuineAdvantageVersion</Name><Value>1.0</Value></TokenEntry><TokenEntry><Name>GenuineAdvantageTemplateId</Name><Value>66c92734-d682-4d71-983e-d6ec3f16059f</Value></TokenEntry><TokenEntry><Name>GenuineAdvantageClientTransactionId</Name><Value>56b9e09e-1c83-4104-aa4e-0ee4451a2891</Value></TokenEntry><TokenEntry><Name>GenuineAdvantageClientToken</Name><Value>&lt;clienttoken&gt;&lt;token&gt;&lt;name&gt;ClientEvent&lt;/name&gt;&lt;type&gt;EventType&lt;/type&gt;&lt;value&gt;0x00000012&lt;/value&gt;&lt;/token&gt;&lt;token&gt;&lt;name&gt;ADMIN:FirstValidation&lt;/name&gt;&lt;type&gt;Info&lt;/type&gt;&lt;value&gt;0&lt;/value&gt;&lt;/token&gt;&lt;token&gt;&lt;name&gt;ADMIN:MachineId&lt;/name&gt;&lt;type&gt;Info&lt;/type&gt;&lt;value&gt;1Far48jNusFda3j2rQtQVSCLQm4G8K9JWu771iHr94Q=&lt;/value&gt;&lt;/token&gt;&lt;token&gt;&lt;name&gt;ADMIN:NumberTimesNonGenuine&lt;/name&gt;&lt;type&gt;Info&lt;/type&gt;&lt;value&gt;0&lt;/value&gt;&lt;/token&gt;&lt;token&gt;&lt;name&gt;ADMIN:RemainingRearmCount&lt;/name&gt;&lt;type&gt;Info&lt;/type&gt;&lt;value&gt;2&lt;/value&gt;&lt;/token&gt;&lt;token&gt;&lt;name&gt;ADMIN:TimeNonGenuine&lt;/name&gt;&lt;type&gt;Info&lt;/type&gt;&lt;value&gt;0&lt;/value&gt;&lt;/token&gt;&lt;token&gt;&lt;name&gt;ADMIN:TotalValidations&lt;/name&gt;&lt;type&gt;Info&lt;/type&gt;&lt;value&gt;9&lt;/value&gt;&lt;/token&gt;&lt;token&gt;&lt;name&gt;ADMIN:UGUID&lt;/name&gt;&lt;type&gt;Info&lt;/type&gt;&lt;value&gt;40b1396a-77ba-44c9-99bf-c6c9cd310eba&lt;/value&gt;&lt;/token&gt;&lt;token&gt;&lt;name&gt;AUOptionsLocal&lt;/name&gt;&lt;type&gt;Info&lt;/type&gt;&lt;value&gt;4&lt;/value&gt;&lt;/token&gt;&lt;token&gt;&lt;name&gt;ActiveSkuDescription&lt;/name&gt;&lt;type&gt;Info&lt;/type&gt;&lt;value&gt;Windows Operating System - Windows® 7, OEM_SLP channel&lt;/value&gt;&lt;/token&gt;&lt;token&gt;&lt;name&gt;ActiveSkuId&lt;/name&gt;&lt;type&gt;Info&lt;/type&gt;&lt;value&gt;d2c04e90-c3dd-4260-b0f3-f845f5d27d64&lt;/value&gt;&lt;/token&gt;&lt;token&gt;&lt;name&gt;CodeSigning&lt;/name&gt;&lt;type&gt;Info&lt;/type&gt;&lt;value&gt;SIGNED_INFO_PRS_SIGNED&lt;/value&gt;&lt;/token&gt;&lt;token&gt;&lt;name&gt;DomainJoined&lt;/name&gt;&lt;type&gt;Info&lt;/type&gt;&lt;value&gt;false&lt;/value&gt;&lt;/token&gt;&lt;token&gt;&lt;name&gt;EditionId&lt;/name&gt;&lt;type&gt;Info&lt;/type&gt;&lt;value&gt;HomePremium&lt;/value&gt;&lt;/token&gt;&lt;token&gt;&lt;name&gt;HROffline&lt;/name&gt;&lt;type&gt;Info&lt;/type&gt;&lt;value&gt;0x00000000&lt;/value&gt;&lt;/token&gt;&lt;token&gt;&lt;name&gt;OSVersion&lt;/name&gt;&lt;type&gt;Info&lt;/type&gt;&lt;value&gt;6.1.7601.2.00010300.1.0.003&lt;/value&gt;&lt;/token&gt;&lt;token&gt;&lt;name&gt;OemMarkerVersion&lt;/name&gt;&lt;type&gt;Info&lt;/type&gt;&lt;value&gt;0x00020001&lt;/value&gt;&lt;/token&gt;&lt;token&gt;&lt;name&gt;OemTableId&lt;/name&gt;&lt;type&gt;Info&lt;/type&gt;&lt;value&gt;SLIC-MPC&lt;/value&gt;&lt;/token&gt;&lt;token&gt;&lt;name&gt;OfflineGenuineBlob&lt;/name&gt;&lt;type&gt;Info&lt;/type&gt;&lt;value&gt;tuEeGF651Pruk/Gqgfh5x9raQQR20G2p73sOvkeePC/Id2lyS3S2jo24z8t1J7gA6nt22nyvt4XeEpNQth3nUmd5mg1XyEgeLEkmb0kfChO1uWRyijdcM/pmwdQn06KvElrc1oOxsN27WyZmjmzQT+fIyNaikAJJ8QdiSFkVWYSu6v6e59NEMZZKaoCn1I/I4vtZ8NI0EQ5orRohHQo9tfc05n0Hod6LyyGYziR6pJ9DqoPOj1qUIkgkiLucrAvWRDJzJG+j/yY94uaQopnj+zAV+a3t/uykcXmJl0UqSyFAs3MdYiCiGjGzGuas4Ps77jBqBUMRM3hdtCTGpYqdkdzg039gtgmIb1SiQ2Boxj238AIE/w2Un0ozr3q2D3LcUsFxasOkvzK3h7lHOok1ShAEDFlQn3VB/V5wVFa2zUAiAP5RU6LL06Pg6l05w21N0M2jboP6pHybgGbUWKEdyz0FvJKdsToPo5tCAsn71Q+QORRdL6lxxhkMNseKWHTkWtlpazYjR+14Zox5c/xs/DX3C1AjXtHomwm+L1C6qgtk6St7VvHWf9km+yEA4YZbaue1qOvwX1Nu7rRyWN9Q7tdaR02vzt6UaKqTuWxN+y2V5A84K449DjaVBlhJeh+dDJC3cU1nqvViODDWLigFT23e3JNR0FlJ+qjjwXD7SXA9/VPtP9wW9pF+zzfz2SngHyn/fJgDNC3HxqcmoSsmU8U6VnEAAk3XRTcRq3iA2744SRrhIV2FvqgrkGg7jhA6dtaGtVjH0eub9u52IvOUrrXLNHOxlcBpc7ixSo94IRdl2sxDMKNc3b0aygVbAMCVrBhVQUTj2aZVrJ8Mdt+tfp/Mr+jqdBgcaZkWWdBwtvSHqmzifDsFtcygyDiXrhjq1mdIGQUKWc3h3QAJGDpRzR7b4tVseX1EoEYRF7rADp4v5tRdlMqOz9JMCNe4RSlFVN2v2DZnPT/rOxoq1GOyd158VBdxOPeXgUyXKEW1fMAMaeu13TTKe45R/ZLFwpBW8RkuavsaCS3DaWkzP19CB89B2Eb3ESJirt274+5S3G51oQA5QG6758bFt/lB/TD+6Nvz65QranL8MGMosvuweI5pYMa92+Yuvi691jsGV9tajjHwMcSwiYX9ZzPItQUDD/yTQiWFhCiICvUl9dagoWgIc4om76dolwLYLoU7TKCvUfYdr83tRgrQkhrRabwSdqMGY6Peb0By2ArI7Q35ZPvfLS8bkxZAHgrgg85M29mu2wACcBdlCMF3W4gmokNcWlw/fAOwBXObYDcQEcy3GbDDcUeyRAf0ISM5F9t8B/nmxaWBljsFfSDxstDs/pjTUUDDMR8R4IklJLuLq7HRQJNTV+HQW3HsFEfPZP/5MI/t+ZelRjgjGrLucUG6HBiWjVYjUTq94YWbMoWsuuCKiTmuc3TGTrd/xo83n4NJ8xvnN3lnlvUOZ9KNAzAa7AZa5CZXdkLR5dhbpj42xNY1JB2AdnuZg91F0UFl7DFv00L3id37bCGQ3HxkJIb6fLSQUtGwIovN1vH6H6MP48oUB03fM7Skt2K/SEZyNCUte4E4gSLQrx1rME0gQxxgBKzGfh5O80rpGYUNeWVSgGDolgu2drwCMJYZHns2MFxGgdjoYQo0Ua5RHy/Cqp0JqAojStbJdb/L7nOAwtzduZeuTTROJEe6Je88SvwVf5SQolahszGbC5fUM/eOink+FlMEb8TeQ4PsXWalne8ozUYA1Jj++2T5Uh8N2Lirl/z+LM2j2Q1jN1G1uH2p72+jLSEiVdSOTu8qFbDWOiOanuyogR1uwUce+3dKLsGrAwgopcOJzjZHbttLOIEd+siK8kGwiXe3Et93xScri+pvNKBal5TYvWfUpaK92dVOP910QRbOnB/6EKwX5xNbMwZaaZGNdkkabT0AkBCNc2+q4G26TzZQ9hyBGVbZVkxxn2q9EP8JX43ndMwDdXw/kQQ5vmMZwqpxEB5huI0h7n0Htvm1vpNFyyxFkDbUYNeQUrGq/1yJbr9u1PgsnS40xwn/YPpab11piFfQBODG+88CKysMgmUEd7U0ISec5hJqXYTCnNuqOcta3TVhvVh35kjyyOtX/KkYJDYrvXchLecV4BZ3O0IVoN8IITak/LWY4zXtFwo1l4uR+/0EAIerzKZThdyhbl/GPoCaNN1+zDwMfFtlUNrpc/nRMd2mrHVbU0htR+cNudwTEdevLDwWGtgKQ3ERQcw2kQo+7/Xnp1tWklRIMTZa+q+pkktUzQx9uzcdIw23sJBPgdi8MsVOjo1h1X/flF+FkK8tRQOEgGBeyMmYpBaoFtS6a2zbfGtU3uq/a/LO7kI/D8SSQWXsr3zeVQAEKGiA0YY8ecLDLkqnanyF9ddDxPNP6ekWdkW1KgcvKAfMiIn5764zv6CkhTAovTUsCums7xatwWvsT5zqHjdOOEi0gPzyaywk3V8D+kozpbA81o5qYZEUq3gaf2PMKa3shICU3UoiDmSrWrCX1c8+id22G1vINeissVUGiqV9eAuEGCiUR9adHWjBi4fGNjgDTz8d5TeC+jqc42GBxdgvCAya256VVYdPjQSsHJ0u8OrnvaVNASk4a4B/nLJ3iW+9WL4ZdL5cvmh+ydUC9JnaYA+Y6oJl1aQ2B36b2tn3EqIqkLUbW5D6VR30KRcXSDC9TIb7YQi/7AbtJt4ZKl3F6XPbPHgs8xf+Wc7vhxustBpFS55Z3y1RkRUn8qgHDSKNreQ79yg/ijRrijGHVBP8jMtmmisRWOCld2wJNiiiYPaDHC6dRP9jjVEufAiwFjpkxwvi41hkRy0D3VuKg6gqB6A/5yhd5dTil2wV8JWj3Tk9i62qBghjfQcCeuiADBYTwK61CAd/zynngF2IdSH3PRfmRg/aA35w6u6y5kex0sFl06cp0xDIie+VXfIq3gSr8aPfWPrZxb6VjJV8bnssr3uG62wgtXxhXgGrPnEOf0+f4GtZThR+DS3Px1+rE9Pr&lt;/value&gt;&lt;/token&gt;&lt;token&gt;&lt;name&gt;OfflineInstallationId&lt;/name&gt;&lt;type&gt;Info&lt;/type&gt;&lt;value&gt;019785797810055333937782034084279442089934556686041334&lt;/value&gt;&lt;/token&gt;&lt;token&gt;&lt;name&gt;PackageFlavor&lt;/name&gt;&lt;type&gt;Info&lt;/type&gt;&lt;value&gt;Windows&lt;/value&gt;&lt;/token&gt;&lt;token&gt;&lt;name&gt;PackageVersion&lt;/name&gt;&lt;type&gt;Info&lt;/type&gt;&lt;value&gt;7.1.7600.16395&lt;/value&gt;&lt;/token&gt;&lt;token&gt;&lt;name&gt;PartnerId&lt;/name&gt;&lt;type&gt;Info&lt;/type&gt;&lt;value&gt;Windows&lt;/value&gt;&lt;/token&gt;&lt;token&gt;&lt;name&gt;ProcessorArchitecture&lt;/name&gt;&lt;type&gt;Info&lt;/type&gt;&lt;value&gt;x64&lt;/value&gt;&lt;/token&gt;&lt;token&gt;&lt;name&gt;ProductLCID&lt;/name&gt;&lt;type&gt;Info&lt;/type&gt;&lt;value&gt;1033&lt;/value&gt;&lt;/token&gt;&lt;token&gt;&lt;name&gt;ProductName&lt;/name&gt;&lt;type&gt;Info&lt;/type&gt;&lt;value&gt;Windows 7 Home Premium&lt;/value&gt;&lt;/token&gt;&lt;token&gt;&lt;name&gt;ProductUniquenessGroups&lt;/name&gt;&lt;type&gt;Info&lt;/type&gt;&lt;value&gt;66c92734-d682-4d71-983e-d6ec3f16059f&lt;/value&gt;&lt;/token&gt;&lt;token&gt;&lt;name&gt;ServiceAvailable&lt;/name&gt;&lt;type&gt;Info&lt;/type&gt;&lt;value&gt;true&lt;/value&gt;&lt;/token&gt;&lt;token&gt;&lt;name&gt;SystemLCID&lt;/name&gt;&lt;type&gt;Info&lt;/type&gt;&lt;value&gt;1033&lt;/value&gt;&lt;/token&gt;&lt;token&gt;&lt;name&gt;UserLCID&lt;/name&gt;&lt;type&gt;Info&lt;/type&gt;&lt;value&gt;1033&lt;/value&gt;&lt;/token&gt;&lt;token&gt;&lt;name&gt;WMI:Win32_ComputerSystem:Manufacturer&lt;/name&gt;&lt;type&gt;Info&lt;/type&gt;&lt;value&gt;Hewlett-Packard&lt;/value&gt;&lt;/token&gt;&lt;token&gt;&lt;name&gt;WMI:Win32_ComputerSystem:Model&lt;/name&gt;&lt;type&gt;Info&lt;/type&gt;&lt;value&gt;HP G71 Notebook PC&lt;/value&gt;&lt;/token&gt;&lt;token&gt;&lt;name&gt;WMI:Win32_OperatingSystem:InstallDate&lt;/name&gt;&lt;type&gt;Info&lt;/type&gt;&lt;value&gt;20091022210143.000000-420&lt;/value&gt;&lt;/token&gt;&lt;/clienttoken&gt;</Value></TokenEntry></Values></Claims></RequestSecurityToken></soap:Body></soap:Envelope>)
00010002(0x80072F8F, 16:24:49:423 - <NULL>)
00010003(0x80072F8F, 16:24:49:423)

Error: (06/04/2012 06:12:49 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 24118956

Error: (06/04/2012 06:12:49 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 24118956

Error: (06/04/2012 06:12:49 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/04/2012 06:12:48 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 24117895

Error: (06/04/2012 06:12:48 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 24117895

Error: (06/04/2012 06:12:48 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/04/2012 06:12:47 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 24116881

Error: (06/04/2012 06:12:47 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 24116881


=========================== Installed Programs ============================

64 Bit HP CIO Components Installer (Version: 7.2.8)
7-Zip 9.13 beta
Acrobat.com (Version: 1.6.65)
Activate Norton Online Backup (Version: 1.1.20.0)
Adobe AIR (Version: 2.7.0.19530)
Adobe Flash Player 11 ActiveX 64-bit (Version: 11.2.202.235)
Adobe Flash Player 11 Plugin 64-bit (Version: 11.2.202.235)
Adobe Reader X (10.1.3) (Version: 10.1.3)
Adobe Shockwave Player 11.6 (Version: 11.6.4.634)
Amazon Kindle
Amazon MP3 Downloader 1.0.12 (Version: 1.0.12)
Angry Birds (Version: 1.5.1)
Apple Application Support (Version: 2.1.7)
Apple Mobile Device Support (Version: 5.1.1.4)
Apple Software Update (Version: 2.1.3.127)
Ask Toolbar (Version: 1.14.1.0)
Ask Toolbar Updater (Version: 1.2.0.20007)
AVG 2012 (Version: 12.0.1913)
AVG 2012 (Version: 12.0.2425)
AVG 2012 (Version: 2012.0.1913)
AviSynth 2.5
Bejeweled 2 Deluxe
Bing Bar (Version: 7.0.822.0)
Boardmaker
Bonjour (Version: 3.0.0.10)
BSF v6 US Supplemental Files
BufferChm (Version: 140.0.212.000)
C309g-m (Version: 140.0.690.000)
CDDRV_Installer (Version: 4.60)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Core FTP LE 2.1
Coupon Printer for Windows (Version: 5.0.0.0)
CutePDF Writer 2.8
CyberLink DVD Suite (Version: 6.0.3101)
CyberLink YouCam (Version: 2.0.3115)
D3DX10 (Version: 15.4.2368.0902)
DeductionPro 2009 (Version: 17.04)
Destinations (Version: 130.0.0.0)
DeviceDiscovery (Version: 140.0.212.000)
DVD Decrypter (Remove Only)
eReader (Version: 3.0.3)
erLT (Version: 1.20.0137)
ESRI MapObjects 2 Runtime
FLO-2D (Version: 2003.06.30)
Free WMA to MP3 Converter 1.16
Google Chrome (Version: 19.0.1084.52)
Google Earth (Version: 6.1.0.5001)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.3.2710.138)
Google Update Helper (Version: 1.3.21.111)
GPBaseService2 (Version: 140.0.211.000)
GrandPrix Race Manager v10 (Version: 10.0.1326)
H&R Block California 2009 (Version: 1.09.3601)
H&R Block California 2010 (Version: 1.10.4801)
H&R Block California 2011 (Version: 1.11.5001)
H&R Block Deluxe + Efile + State 2009 (Version: 09.04.6901)
H&R Block Deluxe + Efile + State 2010 (Version: 10.04.6402)
H&R Block Deluxe + Efile + State 2011 (Version: 11.05.7102)
HandBrake 0.9.5 (Version: 0.9.5)
HEC-DSS Excel Data Exchange Add-In For Excel 2003 (Version: 3.2)
HEC-DSSVue 2.0 (Version: 2.0)
HEC-RAS 3.1.3 (Version: 3.1.3)
HEC-RAS 4.0 (Version: 4.0)
HEC-RAS 4.1.0 (Version: 4.1.0)
Hewlett-Packard ACLM.NET v1.1.2.0 (Version: 1.00.0000)
Homepage Protection (Version: )
HP Advisor (Version: 3.2.9652.3188)
HP Customer Experience Enhancements (Version: 6.0.1.7)
HP Customer Participation Program 14.0 (Version: 14.0)
HP DVD Play 3.7 (Version: 3.7.0.6623)
HP Games (Version: 1.0.0.71)
HP Imaging Device Functions 14.0 (Version: 14.0)
HP Photo Creations (Version: 1.0.0.2024)
HP Photosmart Premium C309g-m All-in-One Driver Software 14.0 Rel. 6 (Version: 14.0)
HP Print Projects 1.0 (Version: 1.0)
HP Quick Launch Buttons (Version: 6.50.16.1)
HP Setup (Version: 1.2.3220.3079)
HP Smart Web Printing 4.60 (Version: 4.60)
HP Solution Center 14.0 (Version: 14.0)
HP Support Assistant (Version: 6.1.12.1)
HP Update (Version: 5.003.001.001)
HP User Guides 0148 (Version: 1.01.0005)
HP Wireless Assistant (Version: 3.50.11.2)
HPDiagnosticAlert (Version: 1.00.0000)
HPPhotoGadget (Version: 130.0.282.000)
hpPrintProjects (Version: 130.0.303.000)
HPProductAssistant (Version: 140.0.212.000)
HPSSupply (Version: 140.0.211.000)
hpWLPGInstaller (Version: 130.0.303.000)
IDT Audio (Version: 1.0.6284.0)
Instant Gallery Maker 2.1
Intel AppUp(SM) center (Version: 19079)
Intel® Graphics Media Accelerator Driver (Version: 8.15.10.1883)
InterActual Player
iTunes (Version: 10.6.1.7)
Java Auto Updater (Version: 2.0.6.1)
Java™ 6 Update 23 (64-bit) (Version: 6.0.230)
Java™ 6 Update 29 (Version: 6.0.290)
Junk Mail filter update (Version: 15.4.3502.0922)
KhalInstallWrapper (Version: 2.00.0000)
LabelPrint (Version: 2.5.1913)
LightScribe System Software (Version: 1.18.11.1)
Logitech SetPoint (Version: 4.80)
LSI HDA Modem (Version: 2.1.94)
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
MarketResearch (Version: 140.0.212.000)
Mass Effect
McAfee Security Scan Plus (Version: 2.0.181.2)
Mesh Runtime (Version: 15.4.5722.2)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Digital Image Library 10 (Version: 10.0.0612)
Microsoft Digital Image Library 9 - Blocker (Version: 9.00.0000)
Microsoft Digital Image Pro 10 (Version: 10.0.0612)
Microsoft Digital Image Suite 10 (Version: 10.0.0612)
Microsoft Live Search Toolbar (Version: 3.0.560.0)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Home and Student 60 day trial
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Standard Edition 2003 (Version: 11.0.8173.0)
Microsoft Reader
Microsoft ReportViewer 2010 Redistributable (Version: 10.0.30319)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Works (Version: 9.7.0621)
Mozilla Firefox 12.0 (x86 en-US) (Version: 12.0)
Mozilla Maintenance Service (Version: 12.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
muvee Reveal (Version: 7.0.43.12698)
MWSnap 3 (Version: 3.0.0.74)
Network64 (Version: 140.0.215.000)
Network64 (Version: 140.0.221.000)
Opera 11.52 (Version: 11.52.1100)
PDF Printer Driver (Version: 12.52)
Poser 7
Poser 7.0.4 Service Release
Power2Go (Version: 6.0.3101)
PowerDirector (Version: 7.0.3101)
PowerRecover (Version: 5.5.1923)
PS_AIO_06_C309g-m_SW_Min (Version: 140.0.690.000)
PSP Video 9 5.04 (Version: 5.04)
QLBCASL (Version: 6.40.17.2)
QuickTime (Version: 7.72.80.56)
QuickTransfer (Version: 140.0.98.000)
Realtek 8136 8168 8169 Ethernet Driver (Version: 1.00.0007)
Realtek USB 2.0 Card Reader (Version: 6.1.7100.30094)
RockMelt (Version: 0.16.91.456)
Safari (Version: 5.34.57.2)
Scan (Version: 140.0.80.000)
Shop for HP Supplies (Version: 14.0)
Shutterfly Express Uploader (Version: 1.0.0)
Shutterfly Express Uploader (Version: 1.0.0.4)
Skype Toolbars (Version: 1.0.4051)
Skype™ 4.2 (Version: 4.2.169)
SmartWebPrinting (Version: 140.0.186.000)
SolutionCenter (Version: 140.0.213.000)
Spotify (Version: 0.8.1.64.g5c5914e3)
Status (Version: 140.0.212.000)
Steam (Version: 1.0.0.0)
Switch Sound File Converter
swMSM (Version: 12.0.0.1)
Synaptics Pointing Device Driver (Version: 13.2.4.12)
TextPad 5 (Version: 5.3.1)
Toolbox (Version: 140.0.428.000)
Torchlight (Version: 1.0.69.23)
TrayApp (Version: 140.0.212.000)
Typing Tournament Home Ed v1 (Version: 1.2)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
VC 9.0 Runtime (Version: 1.0.0)
Visual C++ 8.0 Runtime Setup Package (x64) (Version: 9.0.0.623)
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
WavePad Sound Editor
WD SmartWare (Version: 1.2.0.8)
WebReg (Version: 140.0.212.017)
Win2PDF 7 (Version: 7.0.46)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live Family Safety (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
XTrkCAD 4.0.3a (Version: 4.0.3a)
Yahoo! Toolbar
YouTube Downloader App 2.03 (Version: 2.03)

========================= Memory info: ===================================

Percentage of memory in use: 88%
Total physical RAM: 3998.93 MB
Available physical RAM: 453.96 MB
Total Pagefile: 7995.12 MB
Available Pagefile: 3094.2 MB
Total Virtual: 4095.88 MB
Available Virtual: 3963.43 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:285.77 GB) (Free:32.82 GB) NTFS
2 Drive d: (RECOVERY) (Fixed) (Total:12.12 GB) (Free:2.03 GB) NTFS
3 Drive e: (Boardmaker v6) (CDROM) (Total:0.35 GB) (Free:0 GB) CDFS
4 Drive f: () (Removable) (Total:1.92 GB) (Free:1.63 GB) FAT

========================= Users: ========================================

User accounts for \\WIEST-LAPTOP

Administrator ASPNET Guest
Wiest


**** End of log ****

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:31 AM

Posted 05 June 2012 - 12:43 AM

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply


Download

Rogue killer

right click on it and select run as administrator

Now,click on HOSTS FIX option on right side

A log should get generated after the fix ,post the log here

Edited by narenxp, 05 June 2012 - 12:43 AM.


#9 jsparhawk

jsparhawk
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:04:31 AM

Posted 06 June 2012 - 07:47 PM

Here's ESET - Rogue Killer running in a moment, but about to lose access to this PC so it might be a while.

==================


C:\$Recycle.Bin\S-1-5-21-3250831651-2968466396-1559843131-1001\$RB4JYKK.exe a variant of Win32/InstallCore.T application cleaned by deleting - quarantined
C:\$Recycle.Bin\S-1-5-21-3250831651-2968466396-1559843131-1001\$RILVUCM.exe a variant of Win32/InstallCore.T application cleaned by deleting - quarantined
C:\Users\Wiest\AppData\Local\Temp\495F.tmp a variant of Win32/Kryptik.ACYZ trojan cleaned by deleting - quarantined
C:\Users\Wiest\AppData\Local\Temp\Main.class a variant of Java/Exploit.CVE-2011-3544.BK trojan cleaned by deleting - quarantined

#10 jsparhawk

jsparhawk
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:04:31 AM

Posted 06 June 2012 - 07:49 PM

Nevermind - that ran faster than I thought.

===========


RogueKiller V7.5.3 [06/05/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.geekstogo.com/forum/files/file/413-roguekiller/
Blog: http://tigzyrk.blogspot.com

Operating System: Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User: Wiest [Admin rights]
Mode: HOSTSFix -- Date: 06/06/2012 17:48:18

¤¤¤ Bad processes: 0 ¤¤¤

¤¤¤ Driver: [NOT LOADED] ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
127.0.0.1 localhost
::1 localhost
149.5.18.172 www.google-analytics.com.
149.5.18.172 ad-emea.doubleclick.net.
149.5.18.172 www.statcounter.com.
108.163.215.51 www.google-analytics.com.
108.163.215.51 ad-emea.doubleclick.net.
108.163.215.51 www.statcounter.com.


¤¤¤ Resetted HOSTS: ¤¤¤
127.0.0.1 localhost

Finished : << RKreport[1].txt >>
RKreport[1].txt

#11 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:31 AM

Posted 06 June 2012 - 08:48 PM

That looks good

Uninstall ask toolbar from add or remove programs

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp


Update your antivirus frequently,do not click on suspicious links

Safe surfing :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users