Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Program Files x86 is gone, some web pages scrambled


  • Please log in to reply
34 replies to this topic

#1 VicVegas

VicVegas

  • Members
  • 202 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Cornville, USA
  • Local time:04:43 PM

Posted 07 June 2012 - 11:03 PM

Well great, I just fix another computer and then this happens.

Well. Title pretty much says it all. I'm running Windows Vista, this morning the computer was acting fine, then all of a sudden I started noticing the certain pages had parts of them all over the place as well as text overlapping each other, then I noticed that the cursor (the blinking line when typing text) was being overlapped with a gray block. I tried uninstalling firefox completely and removing temporary files, that didn't work. Besides it's affecting all my browsers.

A bit later whilst downloading numerous scan tools I noticed that "C:/program files (x86)" was completely gone and it's contents seemingly moved to "C:/program files". Also Mozilla's uninstaller won't work anymore, the computer freezes for a few seconds whenever I download a file.

I currently have no useful logs to show, I've just run MBAM and it found nothing.

I will most likely just use my recovery disk, as what few instances I've read of x86 disappearing said that the person was pretty boned.

Update:
Emsisoft Anti-Malware found nothing...
aswMBR found nothing...
Super Anti Spyware found nothing...

Actually it only seems to be showing that grey box on the MSN homepage.

Update 2: Wait... I- I think the little flashing gray box related to Bing's Facebook thingamajig. I didn't install it myself, but it's just a little retractable box that shows alongside searches. Looks legit and it doesn't redirect or anything, but it's not on any of my other computers for some reason... :blink:

Then that thing about the pages being scrambled may have just been some unlucky site choices actually. MSN always gives me trouble, but does anyone else have problems with "prequeladventure.com"?

Regardless. The computer has been acting a bit stiff lately and x86 is still missing. If it's all the same to everyone else I may post some log files in the other forum to be sure once I'm done scanning with everything.

Edited by VicVegas, 08 June 2012 - 04:50 AM.


BC AdBot (Login to Remove)

 


#2 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:09:43 PM

Posted 09 June 2012 - 05:50 AM

Hello,

I will be helping you with your problems. Please be patient while I assist you.

Some points for you to keep in mind while I am helping you to make things go easier and faster for both of us

  • Please do NOT run any tools unless instructed to do so.
    • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
  • Please do not attach logs or use code boxes, just copy and paste the text.
    • Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
  • Please read every post completely before doing anything.
    • Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.
  • Please provide feedback about your experience as we go.
    • A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.

NOTE: At the top of your post, click on the Watch Topic Button, select Immediate Notification, and click on Proceed. This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.

NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of hartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.

NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.

----------------------------------------------

Please do the following:

Step 1

Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.


Step 2

Please download Farbar Service Scanner and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.


Step 3

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices
  • List Users, Partitions and Memory size.
  • List Minidump Files
  • List Restore points
Click Go and post the full contents of the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

NOTE: When using "Reset FF Proxy Settings" option Firefox should be closed.


Step 4

Please download the TDSS Rootkit Removing Tool (TDSSKiller.exe) and save it to your Desktop. <-Important!!!

  • Double-click on TDSSKiller.exe on your desktop to run the tool for known TDSS variants.
    Vista/Windows 7 users right-click and select Run As Administrator.
  • If TDSSKiller does not run, try renaming it.
  • To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to How to change the file extension.
  • Click on change parameters
  • Check the boxes next to Verify file digital signatures and Detect TDLFS file system, then click OK.
  • Click the Start Scan button.
  • Do not use the computer during the scan
  • If the scan completes with nothing found, click Close to exit.
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Note: If Cure is not an option, Skip instead, do not choose Delete unless instructed.
  • A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.2.4.0.0_27.07.2010_09.o7.26_log.txt) will be created and saved to the root directory (usually Local Disk C:).
  • Copy and paste the contents of that file in your next reply.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#3 VicVegas

VicVegas
  • Topic Starter

  • Members
  • 202 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Cornville, USA
  • Local time:04:43 PM

Posted 11 June 2012 - 01:47 PM

Results of screen317's Security Check version 0.99.41
Windows Vista Service Pack 2 x86 (UAC is enabled)
Internet Explorer 9
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Disabled!
avast! Antivirus
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
Spybot - Search & Destroy
SUPERAntiSpyware
Malwarebytes Anti-Malware version 1.60.1.1000
CCleaner
JavaFX 2.1.0
Java™ 6 Update 31
Java™ 7 Update 4
Java™ SE Runtime Environment 6
Adobe Flash Player 11.2.202.235
Adobe Reader X (10.1.3)
Mozilla Firefox (13.0)
````````Process Check: objlist.exe by Laurent````````
Comodo Firewall cmdagent.exe
Comodo Firewall cfp.exe
Emsisoft Anti-Malware a2service.exe
AVAST Software Avast AvastSvc.exe
AVAST Software Avast AvastUI.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: 1 %
````````````````````End of Log``````````````````````

Farbar Service Scanner Version: 09-06-2012
Ran by Admin (administrator) on 11-06-2012 at 13:21:28
Running from "C:\Users\Admin\Desktop"
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall"=DWORD:0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall"=DWORD:0


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is OK.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcsvc.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys
[2012-05-09 18:14] - [2012-03-30 07:39] - 0905600 ____A (Microsoft Corporation) 27D470DABC77BC60D0A3B0E4DEB6CB91

C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll => MD5 is legit
C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****

MiniToolBox by Farbar Version: 09-06-2012
Ran by Admin (administrator) on 11-06-2012 at 13:23:23
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

::1 localhost

127.0.0.1 localhost

========================= IP Configuration: ================================

LAN-Express AS IEEE 802.11g PCI-E Adapter = Wireless Network Connection (Connected)
Marvell Yukon 88E8036 PCI-E Fast Ethernet Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Servitron
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : LAN-Express AS IEEE 802.11g PCI-E Adapter
Physical Address. . . . . . . . . : 00-19-7E-27-96-60
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::b105:c57:1461:78b1%9(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.104(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Thursday, June 07, 2012 10:22:01 PM
Lease Expires . . . . . . . . . . : Monday, June 11, 2012 1:30:36 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 218110333
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-98-91-10-00-13-A9-F6-2E-DE
DNS Servers . . . . . . . . . . . : 8.26.56.26
156.154.70.22
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Marvell Yukon 88E8036 PCI-E Fast Ethernet Controller
Physical Address. . . . . . . . . : 00-13-A9-F6-2E-DE
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 6:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{94AF4B5C-5A56-4F84-9412-C10C5A5E064A}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 7:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{36AC859A-BC71-4B65-98FD-88CB0B7E1C03}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 9:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: ns1.recursive.dns.com
Address: 8.26.56.26

Name: google.com
Addresses: 2a00:1450:8005::71
173.194.69.138
173.194.69.101
173.194.69.113
173.194.69.139
173.194.69.100
173.194.69.102



Pinging google.com [173.194.69.100] with 32 bytes of data:

Reply from 173.194.69.100: bytes=32 time=139ms TTL=40

Reply from 173.194.69.100: bytes=32 time=137ms TTL=40



Ping statistics for 173.194.69.100:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 137ms, Maximum = 139ms, Average = 138ms

Server: ns1.recursive.dns.com
Address: 8.26.56.26

Name: yahoo.com
Addresses: 72.30.38.140
98.139.183.24
209.191.122.70



Pinging yahoo.com [209.191.122.70] with 32 bytes of data:

Reply from 209.191.122.70: bytes=32 time=38ms TTL=48

Reply from 209.191.122.70: bytes=32 time=37ms TTL=48



Ping statistics for 209.191.122.70:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 37ms, Maximum = 38ms, Average = 37ms

Server: ns1.recursive.dns.com
Address: 8.26.56.26

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:

Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
9 ...00 19 7e 27 96 60 ...... LAN-Express AS IEEE 802.11g PCI-E Adapter
8 ...00 13 a9 f6 2e de ...... Marvell Yukon 88E8036 PCI-E Fast Ethernet Controller
1 ........................... Software Loopback Interface 1
10 ...00 00 00 00 00 00 00 e0 isatap.{94AF4B5C-5A56-4F84-9412-C10C5A5E064A}
14 ...00 00 00 00 00 00 00 e0 isatap.{36AC859A-BC71-4B65-98FD-88CB0B7E1C03}
11 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.104 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.104 281
192.168.1.104 255.255.255.255 On-link 192.168.1.104 281
192.168.1.255 255.255.255.255 On-link 192.168.1.104 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.104 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.104 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
9 281 fe80::/64 On-link
9 281 fe80::b105:c57:1461:78b1/128
On-link
1 306 ff00::/8 On-link
9 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 C:\Windows\System32\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 06 C:\Windows\System32\winrnr.dll [19968] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (04/26/2012 06:06:03 AM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\ADMIN\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\ZJ9ZIULE.DEFAULT\CACHE\A> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (04/26/2012 06:06:03 AM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\ADMIN\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\ZJ9ZIULE.DEFAULT\CACHE\A> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (04/26/2012 06:06:03 AM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\ADMIN\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\ZJ9ZIULE.DEFAULT\CACHE\9> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (04/26/2012 06:06:03 AM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\ADMIN\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\ZJ9ZIULE.DEFAULT\CACHE\9> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (04/26/2012 06:06:03 AM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\ADMIN\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\ZJ9ZIULE.DEFAULT\CACHE\8> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (04/26/2012 06:06:03 AM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\ADMIN\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\ZJ9ZIULE.DEFAULT\CACHE\8> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (04/26/2012 06:06:02 AM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\ADMIN\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\ZJ9ZIULE.DEFAULT\CACHE\7> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (04/26/2012 06:06:02 AM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\ADMIN\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\ZJ9ZIULE.DEFAULT\CACHE\7> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (04/26/2012 06:06:02 AM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\ADMIN\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\ZJ9ZIULE.DEFAULT\CACHE\6> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (04/26/2012 06:06:02 AM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\ADMIN\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\ZJ9ZIULE.DEFAULT\CACHE\6> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)


System errors:
=============
Error: (06/07/2012 10:23:24 PM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058

Error: (06/07/2012 08:22:00 PM) (Source: Service Control Manager) (User: )
Description: Windows Update

Error: (06/07/2012 08:16:47 PM) (Source: Service Control Manager) (User: )
Description: 30000ShellHWDetection

Error: (06/07/2012 08:13:38 PM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058

Error: (06/03/2012 11:28:05 AM) (Source: BROWSER) (User: )
Description: The browser service has failed to retrieve the backup list too many times on transport \Device\NetBT_Tcpip_{36AC859A-BC71-4B65-98FD-88CB0B7E1C03}.
The backup browser is stopping.

Error: (06/03/2012 11:01:23 AM) (Source: Dhcp) (User: )
Description: Your computer has lost the lease to its IP address 192.168.1.104 on the Network Card with network address 00197E279660.

Error: (05/30/2012 08:50:53 AM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058

Error: (05/30/2012 08:46:25 AM) (Source: DCOM) (User: )
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}

Error: (05/23/2012 03:24:02 PM) (Source: Dhcp) (User: )
Description: The IP address lease 192.168.1.104 for the Network Card with network address 00197E279660 has been denied by the DHCP server 192.168.1.1 (The DHCP Server sent a DHCPNACK message).

Error: (05/20/2012 04:44:28 PM) (Source: cdrom) (User: )
Description: The device, \Device\CdRom0, has a bad block.


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

Activation Assistant for the 2007 Microsoft Office suites
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0)
Adobe Flash Player 11 ActiveX (Version: 11.2.202.235)
Adobe Flash Player 11 Plugin (Version: 11.2.202.235)
Adobe Reader X (10.1.3) (Version: 10.1.3)
AOL Helper (Version: 1.0.0)
AOL Toolbar 4.0
AppMon Utility (Version: 2.1.00.02020)
Audacity 1.2.6
avast! Free Antivirus (Version: 7.0.1426.0)
CCleaner (Version: 3.19)
Click to DVD 2.0.05 Menu Data (Version: 2.0.05)
Click to DVD 2.6.00 (Version: 2.6.00)
COMODO Internet Security (Version: 5.8.16726.2131)
D3DX10 (Version: 15.4.2368.0902)
DSD Direct (Version: 2.0.01)
DSD Playback Plug-in (Version: 1.1)
Emsisoft Anti-Malware (Version: 6.5)
ESET Online Scanner v3
Fraps (remove only)
GIMP 2.6.11 (Version: 2.6.11)
Grouper Screen Saver 1.0 (Version: 1.0)
HDAUDIO SoftV92 Data Fax Modem with SmartCP
Image Converter 3 (Version: 3.0)
Internet Explorer Zoom Utility (Version: 2.0.00.11011)
Java Auto Updater (Version: 2.1.6.0)
Java™ 6 Update 31 (Version: 6.0.310)
Java™ 7 Update 4 (Version: 7.0.40)
Java™ SE Runtime Environment 6 (Version: 1.6.0.0)
JavaFX 2.1.0 (Version: 2.1.0)
LEGO Racers 2
LocationFree Player (Version: 3.02.0000)
Malwarebytes Anti-Malware version 1.60.1.1000 (Version: 1.60.1.1000)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2656353)
Microsoft .NET Framework 1.1 Security Update (KB2656370)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Home and Student 2007 (Version: 12.0.4518.1014)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (French) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Silverlight (Version: 4.0.60531.0)
Microsoft SQL Server 2005
Microsoft SQL Server 2005 Express Edition (VAIO_VEDB) (Version: 9.1.2047.00)
Microsoft SQL Server Native Client (Version: 9.00.2047.00)
Microsoft SQL Server Setup Support Files (English) (Version: 9.00.2047.00)
Microsoft SQL Server VSS Writer (Version: 9.00.2047.00)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.50727.42)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Works (Version: 08.05.0818)
Mozilla Firefox 13.0 (x86 en-US) (Version: 13.0)
Mozilla Maintenance Service (Version: 13.0)
MSVCRT (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB927978) (Version: 4.20.9841.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP2 Parser and SDK (Version: 4.20.9818.0)
Napster (Version: 3.8.0.9)
Napster Burn Engine (Version: 3.5.0000)
NVIDIA Drivers
OpenMG Limited Patch 4.7-07-13-24-01
OpenMG Secure Module 4.7.00 (Version: 4.7.00.12140)
Paint.NET v3.5.10 (Version: 3.60.0)
Phierha (Version: 1.70.0001)
QuickBooks Product Listing Service (Version: 2.0.148)
QuickBooks Simple Start Free Starter Edition (Version: )
Roxio Easy Media Creator Home (Version: 9.0.178)
Sam and Max - Season Two - Sam and Max Episode 201 - Ice Station Santa (Version: 1.0.0.1)
Segoe UI (Version: 15.4.2271.0615)
Setting Utility Series (Version: 2.1.00.15070)
Simple Start Entice (Version: 1.00.0000)
Skype Click to Call (Version: 5.9.9216)
Skype™ 5.8 (Version: 5.8.158)
SonicStage 4.3 (Version: 4.3)
SonicStage Mastering Studio (Version: 2.3.01)
SonicStage Mastering Studio Audio Filter (Version: 2.3.01)
SonicStage Mastering Studio Audio Filter Custom Preset (Version: 2.3)
SonicStage Mastering Studio Plugins (Version: 2.3)
Sony Utilities DLL (Version: 7.1.00.13300)
Sony Video Shared Library (Version: 3.1.00)
Spiderman 3 XXXX
Spybot - Search & Destroy (Version: 1.6.2)
SUPERAntiSpyware (Version: 5.0.1146)
SupportSoft Assisted Service (Version: 15)
Unity Web Player (All users) (Version: )
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
VAIO Action Setup (Version: 3.2.00.01250)
VAIO Azure Float Wallpaper (Version: 1.0.00.10100)
VAIO Camera Capture Utility (Version: 2.2.00.14140)
VAIO Camera Utility (Version: 2.0.01.02070)
VAIO Center Access Bar (Version: 1.00.030607)
VAIO Central (Version: 2.0.00.121006)
VAIO Entertainment Center (Version: 1.00.0306)
VAIO Entertainment Platform (Version: 2.0.02.13290)
VAIO Event Service (Version: 3.1.00.14130)
VAIO Floral Dusk Wallpaper (Version: 1.0.00.10100)
VAIO Help And Support (Version: 2.10.0223)
VAIO Media (Version: 6.0.10)
VAIO Media 6.0 (Version: 6.0.10)
VAIO Media AC3 Decoder 1.0
VAIO Media Content Collection 6.0
VAIO Media Integrated Server 6.0
VAIO Media Redistribution 6.0 (Version: 6.0.10)
VAIO Media Registration Tool (Version: 6.0.10)
VAIO Media Registration Tool 6.0 (Version: 6.0.10)
VAIO OOBE (Version: 2.00.0306)
VAIO Photo 2007 (Version: 1.0.01.01250)
VAIO Productivity Center (Version: 1.00.0301)
VAIO Security Center (Version: 4.00.0301)
VAIO Service Utility (Version: 1.1.1.3)
VAIO Survey (Version: 5.00.2607)
VAIO Teal Whisper Wallpaper (Version: 1.0.00.10100)
VAIO Update 3 (Version: 3.0.01.02050)
VAIO Video & Photo Suite (Version: 1.1.00.13301)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3538.0513)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
WinDVD for VAIO (Version: 8.0-B6.113)

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 52%
Total physical RAM: 2045.45 MB
Available physical RAM: 961.55 MB
Total Pagefile: 4330.12 MB
Available Pagefile: 2552.24 MB
Total Virtual: 2047.88 MB
Available Virtual: 1958.17 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:226 GB) (Free:149.72 GB) NTFS
4 Drive f: (NEW_YEARS_EVE) (CDROM) (Total:7.72 GB) (Free:0 GB) UDF

========================= Users: ========================================

User accounts for \\SERVITRON

Admin Administrator ASPNET
Guest

========================= Minidump Files ==================================

No minidump file found

========================= Restore Points ==================================

07-06-2012 09:51:09 Scheduled Checkpoint
08-06-2012 00:59:44 Restore Operation
08-06-2012 02:44:06 Installed Java™ 7 Update 4
08-06-2012 02:46:26 Installed JavaFX 2.1.0
08-06-2012 08:00:15 Windows Update
09-06-2012 05:00:04 Scheduled Checkpoint
10-06-2012 05:00:04 Scheduled Checkpoint
11-06-2012 05:00:06 Scheduled Checkpoint

**** End of log ****

13:26:39.0651 4864 TDSS rootkit removing tool 2.7.36.0 May 21 2012 16:40:16
13:26:40.0165 4864 ============================================================
13:26:40.0165 4864 Current date / time: 2012/06/11 13:26:40.0165
13:26:40.0165 4864 SystemInfo:
13:26:40.0165 4864
13:26:40.0165 4864 OS Version: 6.0.6002 ServicePack: 2.0
13:26:40.0165 4864 Product type: Workstation
13:26:40.0165 4864 ComputerName: SERVITRON
13:26:40.0165 4864 UserName: Admin
13:26:40.0165 4864 Windows directory: C:\Windows
13:26:40.0165 4864 System windows directory: C:\Windows
13:26:40.0165 4864 Processor architecture: Intel x86
13:26:40.0165 4864 Number of processors: 2
13:26:40.0165 4864 Page size: 0x1000
13:26:40.0165 4864 Boot type: Normal boot
13:26:40.0165 4864 ============================================================
13:26:41.0289 4864 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
13:26:41.0304 4864 ============================================================
13:26:41.0304 4864 \Device\Harddisk0\DR0:
13:26:41.0304 4864 MBR partitions:
13:26:41.0304 4864 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0xDC6800, BlocksNum 0x1C3FE800
13:26:41.0304 4864 ============================================================
13:26:41.0335 4864 C: <-> \Device\Harddisk0\DR0\Partition0
13:26:41.0335 4864 ============================================================
13:26:41.0335 4864 Initialize success
13:26:41.0335 4864 ============================================================
13:26:51.0351 4032 ============================================================
13:26:51.0351 4032 Scan started
13:26:51.0351 4032 Mode: Manual; SigCheck; TDLFS;
13:26:51.0351 4032 ============================================================
13:26:52.0037 4032 !SASCORE (c0393eb99a6c72c6bef9bfc4a72b33a6) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
13:26:52.0255 4032 !SASCORE - ok
13:26:52.0396 4032 a2acc (05dac43a484272de87eac038814a7840) C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\a2accx86.sys
13:26:52.0458 4032 a2acc - ok
13:26:52.0989 4032 a2AntiMalware (0d5cb73fd036d9e904e0fc443e4e71ca) C:\Program Files\Emsisoft Anti-Malware\a2service.exe
13:26:53.0223 4032 a2AntiMalware - ok
13:26:53.0410 4032 A2DDA (f7eabca8375ea2dc6f35c4bca4757515) C:\Program Files\Emsisoft Anti-Malware\a2ddax86.sys
13:26:53.0425 4032 A2DDA - ok
13:26:53.0644 4032 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
13:26:53.0675 4032 ACPI - ok
13:26:53.0815 4032 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
13:26:53.0847 4032 AdobeARMservice - ok
13:26:53.0940 4032 AdobeFlashPlayerUpdateSvc (76d5a3d2a50402a0b9b6ed13c4371e79) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
13:26:53.0971 4032 AdobeFlashPlayerUpdateSvc - ok
13:26:54.0065 4032 adp94xx (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys
13:26:54.0112 4032 adp94xx - ok
13:26:54.0143 4032 adpahci (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys
13:26:54.0174 4032 adpahci - ok
13:26:54.0252 4032 adpu160m (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys
13:26:54.0268 4032 adpu160m - ok
13:26:54.0299 4032 adpu320 (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys
13:26:54.0330 4032 adpu320 - ok
13:26:54.0424 4032 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
13:26:54.0502 4032 AeLookupSvc - ok
13:26:54.0580 4032 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
13:26:54.0689 4032 AFD - ok
13:26:54.0783 4032 agp440 (ef23439cdd587f64c2c1b8825cead7d8) C:\Windows\system32\drivers\agp440.sys
13:26:54.0798 4032 agp440 - ok
13:26:54.0829 4032 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
13:26:54.0845 4032 aic78xx - ok
13:26:54.0876 4032 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
13:26:55.0204 4032 ALG - ok
13:26:55.0235 4032 aliide (90395b64600ebb4552e26e178c94b2e4) C:\Windows\system32\drivers\aliide.sys
13:26:55.0266 4032 aliide - ok
13:26:55.0344 4032 amdagp (2b13e304c9dfdfa5eb582f6a149fa2c7) C:\Windows\system32\drivers\amdagp.sys
13:26:55.0360 4032 amdagp - ok
13:26:55.0375 4032 amdide (0577df1d323fe75a739c787893d300ea) C:\Windows\system32\drivers\amdide.sys
13:26:55.0407 4032 amdide - ok
13:26:55.0485 4032 AmdK7 (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys
13:26:55.0703 4032 AmdK7 - ok
13:26:55.0750 4032 AmdK8 (0ca0071da4315b00fc1328ca86b425da) C:\Windows\system32\drivers\amdk8.sys
13:26:55.0859 4032 AmdK8 - ok
13:26:55.0921 4032 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
13:26:55.0953 4032 Appinfo - ok
13:26:56.0031 4032 arc (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys
13:26:56.0062 4032 arc - ok
13:26:56.0140 4032 arcsas (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys
13:26:56.0155 4032 arcsas - ok
13:26:56.0249 4032 aswFsBlk (0ae43c6c411254049279c2ee55630f95) C:\Windows\system32\drivers\aswFsBlk.sys
13:26:56.0265 4032 aswFsBlk - ok
13:26:56.0358 4032 aswMonFlt (6693141560b1615d8dccf0d8eb00087e) C:\Windows\system32\drivers\aswMonFlt.sys
13:26:56.0389 4032 aswMonFlt - ok
13:26:56.0436 4032 aswRdr (da12626fd9a67f4e917e2f2fbe1e1764) C:\Windows\system32\drivers\aswRdr.sys
13:26:56.0452 4032 aswRdr - ok
13:26:56.0514 4032 aswSnx (dcb199b967375753b5019ec15f008f53) C:\Windows\system32\drivers\aswSnx.sys
13:26:56.0561 4032 aswSnx - ok
13:26:56.0592 4032 aswSP (b32873e5a1443c0a1e322266e203bf10) C:\Windows\system32\drivers\aswSP.sys
13:26:56.0623 4032 aswSP - ok
13:26:56.0639 4032 aswTdi (6ff544175a9180c5d88534d3d9c9a9f7) C:\Windows\system32\drivers\aswTdi.sys
13:26:56.0670 4032 aswTdi - ok
13:26:56.0748 4032 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
13:26:56.0826 4032 AsyncMac - ok
13:26:56.0873 4032 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
13:26:56.0889 4032 atapi - ok
13:26:56.0998 4032 athr (b600e2c287e9fb70ffbd7cc103c10bee) C:\Windows\system32\DRIVERS\athr.sys
13:26:57.0123 4032 athr - ok
13:26:57.0232 4032 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
13:26:57.0294 4032 AudioEndpointBuilder - ok
13:26:57.0294 4032 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
13:26:57.0341 4032 Audiosrv - ok
13:26:57.0435 4032 avast! Antivirus (4041d31508a2a084dfb42c595854090f) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
13:26:57.0466 4032 avast! Antivirus - ok
13:26:57.0575 4032 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
13:26:57.0669 4032 Beep - ok
13:26:57.0793 4032 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
13:26:57.0887 4032 BFE - ok
13:26:58.0074 4032 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\System32\qmgr.dll
13:26:58.0199 4032 BITS - ok
13:26:58.0215 4032 blbdrive - ok
13:26:58.0277 4032 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
13:26:58.0371 4032 bowser - ok
13:26:58.0464 4032 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
13:26:58.0542 4032 BrFiltLo - ok
13:26:58.0573 4032 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
13:26:58.0683 4032 BrFiltUp - ok
13:26:58.0714 4032 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
13:26:58.0823 4032 Browser - ok
13:26:58.0901 4032 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
13:26:59.0041 4032 Brserid - ok
13:26:59.0213 4032 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
13:26:59.0307 4032 BrSerWdm - ok
13:26:59.0353 4032 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
13:26:59.0463 4032 BrUsbMdm - ok
13:26:59.0494 4032 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
13:26:59.0603 4032 BrUsbSer - ok
13:26:59.0962 4032 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
13:27:00.0071 4032 BTHMODEM - ok
13:27:00.0165 4032 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
13:27:00.0258 4032 cdfs - ok
13:27:00.0305 4032 Cdr4_xp (bc7c5eff872b7d333c1ffc60d67a7ba4) C:\Windows\system32\drivers\Cdr4_xp.sys
13:27:00.0321 4032 Cdr4_xp - ok
13:27:00.0352 4032 Cdralw2k (09c87f312928cda77a3b044098ec2381) C:\Windows\system32\drivers\Cdralw2k.sys
13:27:00.0383 4032 Cdralw2k - ok
13:27:00.0477 4032 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
13:27:00.0539 4032 cdrom - ok
13:27:00.0601 4032 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
13:27:00.0664 4032 CertPropSvc - ok
13:27:00.0679 4032 circlass (da8e0afc7baa226c538ef53ac2f90897) C:\Windows\system32\drivers\circlass.sys
13:27:00.0789 4032 circlass - ok
13:27:00.0851 4032 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
13:27:00.0882 4032 CLFS - ok
13:27:00.0960 4032 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:27:00.0991 4032 clr_optimization_v2.0.50727_32 - ok
13:27:01.0101 4032 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:27:01.0132 4032 clr_optimization_v4.0.30319_32 - ok
13:27:01.0350 4032 cmdAgent (907324001ae25ac5959c91eaa34cabae) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
13:27:01.0553 4032 cmdAgent - ok
13:27:01.0725 4032 cmdGuard (22d54351b7a2c94814d00faa502ff381) C:\Windows\system32\DRIVERS\cmdguard.sys
13:27:01.0756 4032 cmdGuard - ok
13:27:01.0834 4032 cmdHlp (ffb59cad4be8c317624d40959a48a5db) C:\Windows\system32\DRIVERS\cmdhlp.sys
13:27:01.0849 4032 cmdHlp - ok
13:27:01.0881 4032 cmdide (45201046c776ffdaf3fc8a0029c581c8) C:\Windows\system32\drivers\cmdide.sys
13:27:01.0912 4032 cmdide - ok
13:27:01.0927 4032 Compbatt (82b8c91d327cfecf76cb58716f7d4997) C:\Windows\system32\drivers\compbatt.sys
13:27:01.0959 4032 Compbatt - ok
13:27:01.0959 4032 COMSysApp - ok
13:27:01.0990 4032 crcdisk (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys
13:27:02.0005 4032 crcdisk - ok
13:27:02.0021 4032 Crusoe (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys
13:27:02.0130 4032 Crusoe - ok
13:27:02.0193 4032 CryptSvc (fb27772beaf8e1d28ccd825c09da939b) C:\Windows\system32\cryptsvc.dll
13:27:02.0239 4032 CryptSvc - ok
13:27:02.0333 4032 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
13:27:02.0442 4032 DcomLaunch - ok
13:27:02.0458 4032 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
13:27:02.0567 4032 DfsC - ok
13:27:02.0723 4032 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
13:27:02.0895 4032 DFSR - ok
13:27:03.0753 4032 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
13:27:03.0831 4032 Dhcp - ok
13:27:03.0940 4032 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
13:27:03.0971 4032 disk - ok
13:27:04.0049 4032 DMICall (f206e28ed74c491fd5d7c0a1119ce37f) C:\Windows\system32\DRIVERS\DMICall.sys
13:27:04.0080 4032 DMICall - ok
13:27:04.0158 4032 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
13:27:04.0283 4032 Dnscache - ok
13:27:04.0314 4032 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
13:27:04.0377 4032 dot3svc - ok
13:27:04.0470 4032 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
13:27:04.0533 4032 DPS - ok
13:27:04.0611 4032 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
13:27:04.0689 4032 drmkaud - ok
13:27:04.0767 4032 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
13:27:04.0829 4032 DXGKrnl - ok
13:27:04.0891 4032 E1G60 (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys
13:27:05.0016 4032 E1G60 - ok
13:27:05.0063 4032 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
13:27:05.0110 4032 EapHost - ok
13:27:05.0188 4032 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
13:27:05.0219 4032 Ecache - ok
13:27:05.0281 4032 ehRecvr (9be3744d295a7701eb425332014f0797) C:\Windows\ehome\ehRecvr.exe
13:27:05.0328 4032 ehRecvr - ok
13:27:05.0359 4032 ehSched (ad1870c8e5d6dd340c829e6074bf3c3f) C:\Windows\ehome\ehsched.exe
13:27:05.0469 4032 ehSched - ok
13:27:05.0484 4032 ehstart (c27c4ee8926e74aa72efcab24c5242c3) C:\Windows\ehome\ehstart.dll
13:27:05.0547 4032 ehstart - ok
13:27:05.0609 4032 elxstor (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys
13:27:05.0640 4032 elxstor - ok
13:27:05.0703 4032 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
13:27:05.0796 4032 EMDMgmt - ok
13:27:05.0874 4032 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
13:27:05.0937 4032 EventSystem - ok
13:27:06.0015 4032 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
13:27:06.0061 4032 exfat - ok
13:27:06.0077 4032 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
13:27:06.0139 4032 fastfat - ok
13:27:06.0217 4032 fdc (63bdada84951b9c03e641800e176898a) C:\Windows\system32\DRIVERS\fdc.sys
13:27:06.0295 4032 fdc - ok
13:27:06.0327 4032 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
13:27:06.0405 4032 fdPHost - ok
13:27:06.0451 4032 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
13:27:06.0561 4032 FDResPub - ok
13:27:06.0623 4032 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
13:27:06.0639 4032 FileInfo - ok
13:27:06.0670 4032 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
13:27:06.0748 4032 Filetrace - ok
13:27:06.0795 4032 flpydisk (6603957eff5ec62d25075ea8ac27de68) C:\Windows\system32\DRIVERS\flpydisk.sys
13:27:06.0873 4032 flpydisk - ok
13:27:06.0919 4032 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
13:27:06.0966 4032 FltMgr - ok
13:27:07.0091 4032 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
13:27:07.0231 4032 FontCache - ok
13:27:07.0325 4032 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
13:27:07.0341 4032 FontCache3.0.0.0 - ok
13:27:07.0387 4032 Fs_Rec (b972a66758577e0bfd1de0f91aaa27b5) C:\Windows\system32\drivers\Fs_Rec.sys
13:27:07.0481 4032 Fs_Rec - ok
13:27:07.0512 4032 gagp30kx (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys
13:27:07.0543 4032 gagp30kx - ok
13:27:07.0590 4032 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
13:27:07.0699 4032 gpsvc - ok
13:27:07.0762 4032 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
13:27:07.0855 4032 HdAudAddService - ok
13:27:07.0918 4032 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
13:27:08.0011 4032 HDAudBus - ok
13:27:08.0043 4032 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
13:27:08.0136 4032 HidBth - ok
13:27:08.0183 4032 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
13:27:08.0292 4032 HidIr - ok
13:27:08.0339 4032 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\system32\hidserv.dll
13:27:08.0448 4032 hidserv - ok
13:27:08.0479 4032 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
13:27:08.0557 4032 HidUsb - ok
13:27:08.0604 4032 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
13:27:08.0667 4032 hkmsvc - ok
13:27:08.0760 4032 HpCISSs (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys
13:27:08.0791 4032 HpCISSs - ok
13:27:08.0869 4032 HSFHWAZL (46d67209550973257601a533e2ac5785) C:\Windows\system32\DRIVERS\VSTAZL3.SYS
13:27:08.0932 4032 HSFHWAZL - ok
13:27:09.0057 4032 HSF_DPV (53229dcf431d76434816cd29251168a0) C:\Windows\system32\DRIVERS\HSX_DPV.sys
13:27:09.0150 4032 HSF_DPV - ok
13:27:09.0166 4032 HSXHWAZL (31f949d452201f2f0af0c88d7db512cd) C:\Windows\system32\DRIVERS\HSXHWAZL.sys
13:27:09.0244 4032 HSXHWAZL - ok
13:27:09.0306 4032 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
13:27:09.0447 4032 HTTP - ok
13:27:09.0509 4032 i2omp (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys
13:27:09.0540 4032 i2omp - ok
13:27:09.0634 4032 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
13:27:09.0712 4032 i8042prt - ok
13:27:09.0712 4032 ialm - ok
13:27:09.0743 4032 iaStorV (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys
13:27:09.0790 4032 iaStorV - ok
13:27:09.0915 4032 ICScsiSV (4b2cd05e33d86ebd486daa0b403743f9) C:\Program Files\Sony\Image Converter 3\ICScsiSV.exe
13:27:09.0946 4032 ICScsiSV - ok
13:27:09.0961 4032 IcVzMonLauncher (f3da2b062a361c2bc9dc6e42f6d283f0) C:\Program Files\Sony\Image Converter 3\IcVzMonLauncher.exe
13:27:09.0993 4032 IcVzMonLauncher - ok
13:27:10.0039 4032 IDriverT (daf66902f08796f9c694901660e5a64a) C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
13:27:10.0086 4032 IDriverT ( UnsignedFile.Multi.Generic ) - warning
13:27:10.0086 4032 IDriverT - detected UnsignedFile.Multi.Generic (1)
13:27:10.0227 4032 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
13:27:10.0320 4032 idsvc - ok
13:27:10.0461 4032 igfx - ok
13:27:10.0554 4032 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
13:27:10.0570 4032 iirsp - ok
13:27:10.0632 4032 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
13:27:10.0695 4032 IKEEXT - ok
13:27:10.0773 4032 Image Converter video recording monitor for VAIO Entertainment (fe9bf2ef80a435ba0b5f8fd9c926d5a8) C:\Program Files\Sony\Image Converter 3\IcVzMon.exe
13:27:10.0788 4032 Image Converter video recording monitor for VAIO Entertainment - ok
13:27:10.0819 4032 inspect (d9f7411dbc673dbcdf517192301c8530) C:\Windows\system32\DRIVERS\inspect.sys
13:27:10.0851 4032 inspect - ok
13:27:10.0882 4032 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
13:27:10.0897 4032 intelide - ok
13:27:10.0991 4032 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
13:27:11.0069 4032 intelppm - ok
13:27:11.0116 4032 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
13:27:11.0163 4032 IPBusEnum - ok
13:27:11.0225 4032 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
13:27:11.0303 4032 IpFilterDriver - ok
13:27:11.0350 4032 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
13:27:11.0412 4032 iphlpsvc - ok
13:27:11.0412 4032 IpInIp - ok
13:27:11.0443 4032 IPMIDRV (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys
13:27:11.0537 4032 IPMIDRV - ok
13:27:11.0568 4032 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
13:27:11.0662 4032 IPNAT - ok
13:27:11.0709 4032 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
13:27:11.0787 4032 IRENUM - ok
13:27:11.0833 4032 isapnp (350fca7e73cf65bcef43fae1e4e91293) C:\Windows\system32\drivers\isapnp.sys
13:27:11.0865 4032 isapnp - ok
13:27:11.0943 4032 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
13:27:11.0989 4032 iScsiPrt - ok
13:27:12.0005 4032 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
13:27:12.0021 4032 iteatapi - ok
13:27:12.0052 4032 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
13:27:12.0067 4032 iteraid - ok
13:27:12.0099 4032 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
13:27:12.0130 4032 kbdclass - ok
13:27:12.0145 4032 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
13:27:12.0192 4032 kbdhid - ok
13:27:12.0208 4032 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
13:27:12.0317 4032 KeyIso - ok
13:27:12.0364 4032 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
13:27:12.0411 4032 KSecDD - ok
13:27:12.0504 4032 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
13:27:12.0598 4032 KtmRm - ok
13:27:12.0629 4032 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\system32\srvsvc.dll
13:27:12.0738 4032 LanmanServer - ok
13:27:12.0769 4032 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
13:27:12.0894 4032 LanmanWorkstation - ok
13:27:12.0925 4032 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
13:27:12.0972 4032 lltdio - ok
13:27:13.0003 4032 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
13:27:13.0050 4032 lltdsvc - ok
13:27:13.0097 4032 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
13:27:13.0206 4032 lmhosts - ok
13:27:13.0253 4032 LSI_FC (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys
13:27:13.0284 4032 LSI_FC - ok
13:27:13.0300 4032 LSI_SAS (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys
13:27:13.0331 4032 LSI_SAS - ok
13:27:13.0409 4032 LSI_SCSI (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys
13:27:13.0425 4032 LSI_SCSI - ok
13:27:13.0456 4032 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
13:27:13.0549 4032 luafv - ok
13:27:13.0627 4032 Mcx2Svc (aef9babb8a506bc4ce0451a64aaded46) C:\Windows\system32\Mcx2Svc.dll
13:27:13.0659 4032 Mcx2Svc - ok
13:27:13.0721 4032 mdmxsdk (0cea2d0d3fa284b85ed5b68365114f76) C:\Windows\system32\DRIVERS\mdmxsdk.sys
13:27:13.0752 4032 mdmxsdk - ok
13:27:13.0830 4032 megasas (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys
13:27:13.0846 4032 megasas - ok
13:27:13.0877 4032 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
13:27:13.0939 4032 MMCSS - ok
13:27:13.0971 4032 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
13:27:14.0017 4032 Modem - ok
13:27:14.0049 4032 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
13:27:14.0095 4032 monitor - ok
13:27:14.0142 4032 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
13:27:14.0158 4032 mouclass - ok
13:27:14.0189 4032 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
13:27:14.0236 4032 mouhid - ok
13:27:14.0267 4032 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
13:27:14.0298 4032 MountMgr - ok
13:27:14.0361 4032 MozillaMaintenance (6380ff81dd4d78b23398752d2f46ea43) C:\Program Files\Mozilla Maintenance Service\maintenanceservice_tmp.exe
13:27:14.0392 4032 MozillaMaintenance - ok
13:27:14.0501 4032 mpio (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys
13:27:14.0532 4032 mpio - ok
13:27:14.0563 4032 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
13:27:14.0641 4032 mpsdrv - ok
13:27:14.0704 4032 MpsSvc (5de62c6e9108f14f6794060a9bdecaec) C:\Windows\system32\mpssvc.dll
13:27:14.0813 4032 MpsSvc - ok
13:27:14.0875 4032 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
13:27:14.0891 4032 Mraid35x - ok
13:27:14.0922 4032 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
13:27:14.0969 4032 MRxDAV - ok
13:27:15.0047 4032 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
13:27:15.0141 4032 mrxsmb - ok
13:27:15.0187 4032 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
13:27:15.0234 4032 mrxsmb10 - ok
13:27:15.0265 4032 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
13:27:15.0328 4032 mrxsmb20 - ok
13:27:15.0375 4032 msahci (742aed7939e734c36b7e8d6228ce26b7) C:\Windows\system32\drivers\msahci.sys
13:27:15.0390 4032 msahci - ok
13:27:15.0484 4032 MSCSPTISRV (8e46a7bac823dd82d4fb2a34c3df4c1d) C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
13:27:15.0499 4032 MSCSPTISRV ( UnsignedFile.Multi.Generic ) - warning
13:27:15.0499 4032 MSCSPTISRV - detected UnsignedFile.Multi.Generic (1)
13:27:15.0562 4032 msdsm (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys
13:27:15.0577 4032 msdsm - ok
13:27:15.0640 4032 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
13:27:15.0687 4032 MSDTC - ok
13:27:15.0780 4032 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
13:27:15.0827 4032 Msfs - ok
13:27:15.0905 4032 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
13:27:15.0936 4032 msisadrv - ok
13:27:15.0967 4032 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
13:27:16.0061 4032 MSiSCSI - ok
13:27:16.0061 4032 msiserver - ok
13:27:16.0123 4032 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
13:27:16.0170 4032 MSKSSRV - ok
13:27:16.0217 4032 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
13:27:16.0295 4032 MSPCLOCK - ok
13:27:16.0326 4032 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
13:27:16.0373 4032 MSPQM - ok
13:27:16.0451 4032 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
13:27:16.0482 4032 MsRPC - ok
13:27:16.0529 4032 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
13:27:16.0545 4032 mssmbios - ok
13:27:16.0638 4032 MSSQL$VAIO_VEDB - ok
13:27:16.0716 4032 MSSQLServerADHelper (adaf062116b4e6d96e44d26486a87af6) C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe
13:27:16.0747 4032 MSSQLServerADHelper - ok
13:27:16.0779 4032 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
13:27:16.0857 4032 MSTEE - ok
13:27:16.0903 4032 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
13:27:16.0919 4032 Mup - ok
13:27:16.0966 4032 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
13:27:17.0044 4032 napagent - ok
13:27:17.0106 4032 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
13:27:17.0200 4032 NativeWifiP - ok
13:27:17.0278 4032 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
13:27:17.0325 4032 NDIS - ok
13:27:17.0403 4032 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
13:27:17.0449 4032 NdisTapi - ok
13:27:17.0481 4032 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
13:27:17.0527 4032 Ndisuio - ok
13:27:17.0559 4032 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
13:27:17.0621 4032 NdisWan - ok
13:27:17.0637 4032 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
13:27:17.0715 4032 NDProxy - ok
13:27:17.0761 4032 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
13:27:17.0808 4032 NetBIOS - ok
13:27:17.0855 4032 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
13:27:17.0949 4032 netbt - ok
13:27:17.0995 4032 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
13:27:18.0027 4032 Netlogon - ok
13:27:18.0058 4032 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
13:27:18.0120 4032 Netman - ok
13:27:18.0167 4032 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
13:27:18.0261 4032 netprofm - ok
13:27:18.0370 4032 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
13:27:18.0401 4032 NetTcpPortSharing - ok
13:27:18.0448 4032 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
13:27:18.0463 4032 nfrd960 - ok
13:27:18.0510 4032 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
13:27:18.0604 4032 NlaSvc - ok
13:27:18.0651 4032 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
13:27:18.0682 4032 Npfs - ok
13:27:18.0713 4032 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
13:27:18.0775 4032 nsi - ok
13:27:18.0807 4032 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
13:27:18.0853 4032 nsiproxy - ok
13:27:18.0931 4032 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
13:27:19.0009 4032 Ntfs - ok
13:27:19.0041 4032 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
13:27:19.0150 4032 ntrigdigi - ok
13:27:19.0197 4032 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
13:27:19.0275 4032 Null - ok
13:27:19.0493 4032 nvlddmkm (e70d10238e1c7463728d56920d1eb186) C:\Windows\system32\DRIVERS\nvlddmkm.sys
13:27:19.0821 4032 nvlddmkm - ok
13:27:19.0930 4032 nvraid (e69e946f80c1c31c53003bfbf50cbb7c) C:\Windows\system32\drivers\nvraid.sys
13:27:19.0961 4032 nvraid - ok
13:27:19.0977 4032 nvstor (9e0ba19a28c498a6d323d065db76dffc) C:\Windows\system32\drivers\nvstor.sys
13:27:19.0992 4032 nvstor - ok
13:27:20.0023 4032 nv_agp (07c186427eb8fcc3d8d7927187f260f7) C:\Windows\system32\drivers\nv_agp.sys
13:27:20.0055 4032 nv_agp - ok
13:27:20.0055 4032 NwlnkFlt - ok
13:27:20.0070 4032 NwlnkFwd - ok
13:27:20.0226 4032 odserv (84de1dd996b48b05ace31ad015fa108a) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
13:27:20.0273 4032 odserv - ok
13:27:20.0351 4032 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys
13:27:20.0398 4032 ohci1394 - ok
13:27:20.0491 4032 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:27:20.0523 4032 ose - ok
13:27:20.0585 4032 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
13:27:20.0694 4032 p2pimsvc - ok
13:27:20.0710 4032 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
13:27:20.0788 4032 p2psvc - ok
13:27:20.0881 4032 PACSPTISVR (753a8f339f231d2b857e2ccd51a6e6ca) C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
13:27:20.0944 4032 PACSPTISVR ( UnsignedFile.Multi.Generic ) - warning
13:27:20.0944 4032 PACSPTISVR - detected UnsignedFile.Multi.Generic (1)
13:27:20.0991 4032 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
13:27:21.0069 4032 Parport - ok
13:27:21.0115 4032 partmgr (b9c2b89f08670e159f7181891e449cd9) C:\Windows\system32\drivers\partmgr.sys
13:27:21.0131 4032 partmgr - ok
13:27:21.0193 4032 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
13:27:21.0271 4032 Parvdm - ok
13:27:21.0318 4032 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
13:27:21.0443 4032 PcaSvc - ok
13:27:21.0474 4032 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
13:27:21.0505 4032 pci - ok
13:27:21.0537 4032 pciide (3b1901e401473e03eb8c874271e50c26) C:\Windows\system32\DRIVERS\pciide.sys
13:27:21.0568 4032 pciide - ok
13:27:21.0646 4032 pcmcia (3bb2244f343b610c29c98035504c9b75) C:\Windows\system32\DRIVERS\pcmcia.sys
13:27:21.0677 4032 pcmcia - ok
13:27:21.0802 4032 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
13:27:21.0989 4032 PEAUTH - ok
13:27:22.0129 4032 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
13:27:22.0239 4032 pla - ok
13:27:22.0348 4032 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
13:27:22.0441 4032 PlugPlay - ok
13:27:22.0519 4032 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
13:27:22.0597 4032 PNRPAutoReg - ok
13:27:22.0597 4032 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
13:27:22.0644 4032 PNRPsvc - ok
13:27:22.0753 4032 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
13:27:22.0878 4032 PolicyAgent - ok
13:27:22.0972 4032 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
13:27:23.0019 4032 PptpMiniport - ok
13:27:23.0050 4032 Processor (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys
13:27:23.0159 4032 Processor - ok
13:27:23.0221 4032 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
13:27:23.0315 4032 ProfSvc - ok
13:27:23.0346 4032 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
13:27:23.0377 4032 ProtectedStorage - ok
13:27:23.0424 4032 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
13:27:23.0487 4032 PSched - ok
13:27:23.0533 4032 PxHelp20 (59464c712c8c75e4513064f5a485582f) C:\Windows\system32\Drivers\PxHelp20.sys
13:27:23.0565 4032 PxHelp20 - ok
13:27:23.0721 4032 QBCFMonitorService (3007c594b10783c84c0261e280cf1cfd) C:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
13:27:23.0783 4032 QBCFMonitorService ( UnsignedFile.Multi.Generic ) - warning
13:27:23.0783 4032 QBCFMonitorService - detected UnsignedFile.Multi.Generic (1)
13:27:23.0830 4032 QBFCService (92aa40e2b692e8637d45fb2d01137d17) C:\Program Files\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe
13:27:23.0892 4032 QBFCService ( UnsignedFile.Multi.Generic ) - warning
13:27:23.0892 4032 QBFCService - detected UnsignedFile.Multi.Generic (1)
13:27:23.0986 4032 ql2300 (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys
13:27:24.0079 4032 ql2300 - ok
13:27:24.0142 4032 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
13:27:24.0173 4032 ql40xx - ok
13:27:24.0204 4032 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
13:27:24.0251 4032 QWAVE - ok
13:27:24.0267 4032 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
13:27:24.0329 4032 QWAVEdrv - ok
13:27:24.0391 4032 R5U870FLx86 (5276cc54b23a8a2ec699d724a1c2735d) C:\Windows\system32\Drivers\R5U870FLx86.sys
13:27:24.0501 4032 R5U870FLx86 - ok
13:27:24.0563 4032 R5U870FUx86 (359e944e0b179529c851795a911eed8c) C:\Windows\system32\Drivers\R5U870FUx86.sys
13:27:24.0625 4032 R5U870FUx86 - ok
13:27:24.0688 4032 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
13:27:24.0719 4032 RasAcd - ok
13:27:24.0797 4032 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
13:27:24.0891 4032 RasAuto - ok
13:27:24.0937 4032 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
13:27:25.0015 4032 Rasl2tp - ok
13:27:25.0078 4032 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
13:27:25.0140 4032 RasMan - ok
13:27:25.0156 4032 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
13:27:25.0234 4032 RasPppoe - ok
13:27:25.0281 4032 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
13:27:25.0343 4032 RasSstp - ok
13:27:25.0405 4032 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
13:27:25.0452 4032 rdbss - ok
13:27:25.0483 4032 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
13:27:25.0577 4032 RDPCDD - ok
13:27:25.0639 4032 rdpdr (e8bd98d46f2ed77132ba927fccb47d8b) C:\Windows\system32\drivers\rdpdr.sys
13:27:25.0733 4032 rdpdr - ok
13:27:25.0733 4032 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
13:27:25.0795 4032 RDPENCDD - ok
13:27:25.0858 4032 RDPWD (79c6df8477250f5c54f7c5ae1d6b814e) C:\Windows\system32\drivers\RDPWD.sys
13:27:25.0936 4032 RDPWD - ok
13:27:25.0998 4032 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
13:27:26.0061 4032 RemoteAccess - ok
13:27:26.0092 4032 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
13:27:26.0139 4032 RemoteRegistry - ok
13:27:26.0170 4032 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
13:27:26.0201 4032 RpcLocator - ok
13:27:26.0248 4032 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
13:27:26.0295 4032 RpcSs - ok
13:27:26.0357 4032 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
13:27:26.0435 4032 rspndr - ok
13:27:26.0482 4032 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
13:27:26.0513 4032 SamSs - ok
13:27:26.0591 4032 SASDIFSV (39763504067962108505bff25f024345) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
13:27:26.0607 4032 SASDIFSV - ok
13:27:26.0622 4032 SASKUTIL (77b9fc20084b48408ad3e87570eb4a85) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
13:27:26.0638 4032 SASKUTIL - ok
13:27:26.0669 4032 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
13:27:26.0685 4032 sbp2port - ok
13:27:26.0778 4032 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
13:27:26.0825 4032 SCardSvr - ok
13:27:26.0887 4032 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
13:27:26.0997 4032 Schedule - ok
13:27:27.0075 4032 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
13:27:27.0121 4032 SCPolicySvc - ok
13:27:27.0168 4032 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
13:27:27.0293 4032 SDRSVC - ok
13:27:27.0309 4032 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
13:27:27.0387 4032 secdrv - ok
13:27:27.0418 4032 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
13:27:27.0465 4032 seclogon - ok
13:27:27.0496 4032 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\System32\sens.dll
13:27:27.0558 4032 SENS - ok
13:27:27.0589 4032 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
13:27:27.0667 4032 Serenum - ok
13:27:27.0699 4032 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
13:27:27.0792 4032 Serial - ok
13:27:27.0823 4032 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
13:27:27.0870 4032 sermouse - ok
13:27:27.0917 4032 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
13:27:28.0011 4032 SessionEnv - ok
13:27:28.0057 4032 sffdisk (103b79418da647736ee95645f305f68a) C:\Windows\system32\drivers\sffdisk.sys
13:27:28.0120 4032 sffdisk - ok
13:27:28.0151 4032 sffp_mmc (8fd08a310645fe872eeec6e08c6bf3ee) C:\Windows\system32\drivers\sffp_mmc.sys
13:27:28.0229 4032 sffp_mmc - ok
13:27:28.0229 4032 sffp_sd (9cfa05fcfcb7124e69cfc812b72f9614) C:\Windows\system32\drivers\sffp_sd.sys
13:27:28.0307 4032 sffp_sd - ok
13:27:28.0323 4032 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
13:27:28.0432 4032 sfloppy - ok
13:27:28.0494 4032 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
13:27:28.0572 4032 SharedAccess - ok
13:27:28.0603 4032 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
13:27:28.0666 4032 ShellHWDetection - ok
13:27:28.0681 4032 sisagp (d2a595d6eebeeaf4334f8e50efbc9931) C:\Windows\system32\drivers\sisagp.sys
13:27:28.0697 4032 sisagp - ok
13:27:28.0728 4032 SiSRaid2 (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys
13:27:28.0759 4032 SiSRaid2 - ok
13:27:28.0775 4032 SiSRaid4 (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys
13:27:28.0791 4032 SiSRaid4 - ok
13:27:28.0853 4032 SkypeUpdate (8c5477eb1c03ca76cd8eb66a610a9e90) C:\Program Files\Skype\Updater\Updater.exe
13:27:28.0869 4032 SkypeUpdate - ok
13:27:28.0931 4032 slim (256281b8d91455ece034b3cbd4536b12) C:\Windows\system32\drivers\slim.sys
13:27:29.0056 4032 slim - ok
13:27:29.0227 4032 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
13:27:29.0695 4032 slsvc - ok
13:27:29.0851 4032 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
13:27:29.0898 4032 SLUINotify - ok
13:27:29.0961 4032 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
13:27:30.0039 4032 Smb - ok
13:27:30.0101 4032 SNC (db31d8989b3450569c29780e7fa98c48) C:\Windows\system32\Drivers\SonyNC.sys
13:27:30.0132 4032 SNC - ok
13:27:30.0163 4032 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
13:27:30.0195 4032 SNMPTRAP - ok
13:27:30.0351 4032 SonicStage Back-End Service (86da2befb800d726fea98a539606553c) C:\Program Files\Common Files\Sony Shared\AVLib\SsBeSvc.exe
13:27:30.0382 4032 SonicStage Back-End Service - ok
13:27:30.0397 4032 SonyImgF (bcda64bc74578cf82544538b4be646bf) C:\Windows\system32\DRIVERS\SonyImgF.sys
13:27:30.0413 4032 SonyImgF ( UnsignedFile.Multi.Generic ) - warning
13:27:30.0413 4032 SonyImgF - detected UnsignedFile.Multi.Generic (1)
13:27:30.0429 4032 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
13:27:30.0460 4032 spldr - ok
13:27:30.0491 4032 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
13:27:30.0616 4032 Spooler - ok
13:27:30.0647 4032 SPTISRV (e3e6c96b0ef4492c3c8fd0deef4e35a1) C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
13:27:30.0663 4032 SPTISRV ( UnsignedFile.Multi.Generic ) - warning
13:27:30.0663 4032 SPTISRV - detected UnsignedFile.Multi.Generic (1)
13:27:30.0725 4032 SQLBrowser (5673e79bbb62a4c35b10d821ff1b4aca) C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
13:27:30.0772 4032 SQLBrowser - ok
13:27:30.0803 4032 SQLWriter (9263c8898732e2b890f7e954e7729ab7) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
13:27:30.0834 4032 SQLWriter - ok
13:27:30.0897 4032 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
13:27:31.0006 4032 srv - ok
13:27:31.0037 4032 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
13:27:31.0084 4032 srv2 - ok
13:27:31.0099 4032 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
13:27:31.0177 4032 srvnet - ok
13:27:31.0224 4032 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
13:27:31.0271 4032 SSDPSRV - ok
13:27:31.0349 4032 SSScsiSV (6eb13f919d22d5056b4fb66aa3bb497a) C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe
13:27:31.0380 4032 SSScsiSV - ok
13:27:31.0458 4032 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
13:27:31.0536 4032 SstpSvc - ok
13:27:31.0630 4032 STHDA (6c7e2b9e0919149357e2d5057fe58146) C:\Windows\system32\drivers\stwrt.sys
13:27:31.0692 4032 STHDA - ok
13:27:31.0801 4032 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
13:27:31.0879 4032 stisvc - ok
13:27:31.0911 4032 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
13:27:31.0942 4032 swenum - ok
13:27:31.0973 4032 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
13:27:32.0035 4032 swprv - ok
13:27:32.0067 4032 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
13:27:32.0098 4032 Symc8xx - ok
13:27:32.0098 4032 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
13:27:32.0129 4032 Sym_hi - ok
13:27:32.0145 4032 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
13:27:32.0160 4032 Sym_u3 - ok
13:27:32.0223 4032 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
13:27:32.0332 4032 SysMain - ok
13:27:32.0394 4032 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
13:27:32.0425 4032 TabletInputService - ok
13:27:32.0472 4032 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
13:27:32.0535 4032 TapiSrv - ok
13:27:32.0566 4032 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
13:27:32.0644 4032 TBS - ok
13:27:32.0737 4032 Tcpip (27d470dabc77bc60d0a3b0e4deb6cb91) C:\Windows\system32\drivers\tcpip.sys
13:27:32.0784 4032 Tcpip - ok
13:27:32.0815 4032 Tcpip6 (27d470dabc77bc60d0a3b0e4deb6cb91) C:\Windows\system32\DRIVERS\tcpip.sys
13:27:32.0862 4032 Tcpip6 - ok
13:27:32.0925 4032 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
13:27:33.0018 4032 tcpipreg - ok
13:27:33.0065 4032 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
13:27:33.0143 4032 TDPIPE - ok
13:27:33.0190 4032 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
13:27:33.0237 4032 TDTCP - ok
13:27:33.0299 4032 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
13:27:33.0361 4032 tdx - ok
13:27:33.0377 4032 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
13:27:33.0408 4032 TermDD - ok
13:27:33.0471 4032 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
13:27:33.0580 4032 TermService - ok
13:27:33.0642 4032 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
13:27:33.0673 4032 Themes - ok
13:27:33.0705 4032 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
13:27:33.0751 4032 THREADORDER - ok
13:27:33.0861 4032 ti21sony (dcd46a3fc856167fd985507492ae610a) C:\Windows\system32\drivers\ti21sony.sys
13:27:33.0923 4032 ti21sony - ok
13:27:33.0985 4032 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
13:27:34.0063 4032 TrkWks - ok
13:27:34.0157 4032 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
13:27:34.0204 4032 TrustedInstaller - ok
13:27:34.0266 4032 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
13:27:34.0344 4032 tssecsrv - ok
13:27:34.0391 4032 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
13:27:34.0422 4032 tunmp - ok
13:27:34.0422 4032 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
13:27:34.0485 4032 tunnel - ok
13:27:34.0516 4032 uagp35 (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\drivers\uagp35.sys
13:27:34.0547 4032 uagp35 - ok
13:27:34.0578 4032 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
13:27:34.0641 4032 udfs - ok
13:27:34.0687 4032 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
13:27:34.0765 4032 UI0Detect - ok
13:27:34.0828 4032 uliagpkx (75e6890ebfce0841d3291b02e7a8bdb0) C:\Windows\system32\drivers\uliagpkx.sys
13:27:34.0859 4032 uliagpkx - ok
13:27:34.0906 4032 uliahci (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys
13:27:34.0937 4032 uliahci - ok
13:27:34.0999 4032 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
13:27:35.0015 4032 UlSata - ok
13:27:35.0031 4032 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
13:27:35.0077 4032 ulsata2 - ok
13:27:35.0109 4032 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
13:27:35.0171 4032 umbus - ok
13:27:35.0218 4032 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
13:27:35.0280 4032 upnphost - ok
13:27:35.0374 4032 USBAVCap (5deb97f34a15952af1b61147c0fa1f96) C:\Windows\system32\drivers\USBAVCap.sys
13:27:35.0483 4032 USBAVCap - ok
13:27:35.0530 4032 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
13:27:35.0561 4032 usbccgp - ok
13:27:35.0592 4032 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
13:27:35.0670 4032 usbcir - ok
13:27:35.0748 4032 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
13:27:35.0811 4032 usbehci - ok
13:27:35.0857 4032 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
13:27:35.0951 4032 usbhub - ok
13:27:35.0998 4032 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
13:27:36.0091 4032 usbohci - ok
13:27:36.0123 4032 usbprint (b51e52acf758be00ef3a58ea452fe360) C:\Windows\system32\drivers\usbprint.sys
13:27:36.0232 4032 usbprint - ok
13:27:36.0310 4032 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
13:27:36.0341 4032 USBSTOR - ok
13:27:36.0388 4032 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
13:27:36.0435 4032 usbuhci - ok
13:27:36.0466 4032 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
13:27:36.0513 4032 usbvideo - ok
13:27:36.0544 4032 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
13:27:36.0622 4032 UxSms - ok
13:27:36.0762 4032 VAIO Entertainment TV Device Arbitration Service (4e9c6bf8d0655bb7538088dc6f2306d9) C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe
13:27:36.0825 4032 VAIO Entertainment TV Device Arbitration Service ( UnsignedFile.Multi.Generic ) - warning
13:27:36.0825 4032 VAIO Entertainment TV Device Arbitration Service - detected UnsignedFile.Multi.Generic (1)
13:27:36.0903 4032 VAIO Event Service (8a9f18adad471402236ca931553bf79b) C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
13:27:36.0934 4032 VAIO Event Service - ok
13:27:37.0137 4032 VAIOMediaPlatform-IntegratedServer-AppServer (88dc6b884824a578b0e1e9c3790c105b) C:\Program Files\Sony\VAIO Media Integrated Server\VMISrv.exe
13:27:37.0293 4032 VAIOMediaPlatform-IntegratedServer-AppServer ( UnsignedFile.Multi.Generic ) - warning
13:27:37.0293 4032 VAIOMediaPlatform-IntegratedServer-AppServer - detected UnsignedFile.Multi.Generic (1)
13:27:37.0386 4032 VAIOMediaPlatform-IntegratedServer-HTTP (56e33aaa46cba8431e72486196afb3a1) C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe
13:27:37.0480 4032 VAIOMediaPlatform-IntegratedServer-HTTP ( UnsignedFile.Multi.Generic ) - warning
13:27:37.0480 4032 VAIOMediaPlatform-IntegratedServer-HTTP - detected UnsignedFile.Multi.Generic (1)
13:27:37.0558 4032 VAIOMediaPlatform-IntegratedServer-UPnP (addf0e4e19bd2ff0a0b852d324fdc281) C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
13:27:37.0729 4032 VAIOMediaPlatform-IntegratedServer-UPnP ( UnsignedFile.Multi.Generic ) - warning
13:27:37.0729 4032 VAIOMediaPlatform-IntegratedServer-UPnP - detected UnsignedFile.Multi.Generic (1)
13:27:37.0823 4032 VAIOMediaPlatform-UCLS-AppServer (52d4f568fe7d05ae5026b8717eeb59eb) C:\Program Files\Sony\VAIO Media Integrated Server\UCLS.exe
13:27:37.0963 4032 VAIOMediaPlatform-UCLS-AppServer ( UnsignedFile.Multi.Generic ) - warning
13:27:37.0963 4032 VAIOMediaPlatform-UCLS-AppServer - detected UnsignedFile.Multi.Generic (1)
13:27:38.0057 4032 VAIOMediaPlatform-UCLS-HTTP (56e33aaa46cba8431e72486196afb3a1) C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe
13:27:38.0073 4032 VAIOMediaPlatform-UCLS-HTTP ( UnsignedFile.Multi.Generic ) - warning
13:27:38.0073 4032 VAIOMediaPlatform-UCLS-HTTP - detected UnsignedFile.Multi.Generic (1)
13:27:38.0182 4032 VAIOMediaPlatform-UCLS-UPnP (addf0e4e19bd2ff0a0b852d324fdc281) C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
13:27:38.0244 4032 VAIOMediaPlatform-UCLS-UPnP ( UnsignedFile.Multi.Generic ) - warning
13:27:38.0244 4032 VAIOMediaPlatform-UCLS-UPnP - detected UnsignedFile.Multi.Generic (1)
13:27:38.0369 4032 Vcsw - ok
13:27:38.0556 4032 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
13:27:38.0728 4032 vds - ok
13:27:38.0790 4032 vga (7d92be0028ecdedec74617009084b5ef) C:\Windows\system32\DRIVERS\vgapnp.sys
13:27:38.0899 4032 vga - ok
13:27:38.0946 4032 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
13:27:39.0024 4032 VgaSave - ok
13:27:39.0071 4032 viaagp (045d9961e591cf0674a920b6ba3ba5cb) C:\Windows\system32\drivers\viaagp.sys
13:27:39.0102 4032 viaagp - ok
13:27:39.0118 4032 ViaC7 (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys
13:27:39.0211 4032 ViaC7 - ok
13:27:39.0258 4032 viaide (fd2e3175fcada350c7ab4521dca187ec) C:\Windows\system32\drivers\viaide.sys
13:27:39.0274 4032 viaide - ok
13:27:39.0305 4032 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
13:27:39.0336 4032 volmgr - ok
13:27:39.0383 4032 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
13:27:39.0414 4032 volmgrx - ok
13:27:39.0445 4032 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
13:27:39.0477 4032 volsnap - ok
13:27:39.0508 4032 vsmraid (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys
13:27:39.0539 4032 vsmraid - ok
13:27:39.0617 4032 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
13:27:39.0695 4032 VSS - ok
13:27:39.0820 4032 VzCdbSvc (5feb20d9ed9a2bd4f234222b0a3bb855) C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
13:27:39.0835 4032 VzCdbSvc ( UnsignedFile.Multi.Generic ) - warning
13:27:39.0835 4032 VzCdbSvc - detected UnsignedFile.Multi.Generic (1)
13:27:39.0851 4032 VzFw (3757dfd3c07896ef660d4060366e7b4e) C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe
13:27:39.0913 4032 VzFw ( UnsignedFile.Multi.Generic ) - warning
13:27:39.0913 4032 VzFw - detected UnsignedFile.Multi.Generic (1)
13:27:40.0038 4032 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
13:27:40.0101 4032 W32Time - ok
13:27:40.0163 4032 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
13:27:40.0225 4032 WacomPen - ok
13:27:40.0272 4032 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
13:27:40.0303 4032 Wanarp - ok
13:27:40.0319 4032 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
13:27:40.0350 4032 Wanarpv6 - ok
13:27:40.0413 4032 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
13:27:40.0491 4032 wcncsvc - ok
13:27:40.0553 4032 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
13:27:40.0584 4032 WcsPlugInService - ok
13:27:40.0615 4032 Wd (afc5ad65b991c1e205cf25cfdbf7a6f4) C:\Windows\system32\drivers\wd.sys
13:27:40.0631 4032 Wd - ok
13:27:40.0678 4032 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
13:27:40.0725 4032 Wdf01000 - ok
13:27:40.0756 4032 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
13:27:40.0849 4032 WdiServiceHost - ok
13:27:40.0849 4032 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
13:27:40.0912 4032 WdiSystemHost - ok
13:27:40.0943 4032 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
13:27:40.0990 4032 WebClient - ok
13:27:41.0021 4032 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
13:27:41.0146 4032 Wecsvc - ok
13:27:41.0177 4032 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
13:27:41.0255 4032 wercplsupport - ok
13:27:41.0302 4032 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
13:27:41.0395 4032 WerSvc - ok
13:27:41.0442 4032 WimFltr (c8d53a13e867d5a7eafb19400016560f) C:\Windows\system32\DRIVERS\wimfltr.sys
13:27:41.0473 4032 WimFltr - ok
13:27:41.0520 4032 winachsf (6d2350bb6e77e800fc4be4e5b7a2e89a) C:\Windows\system32\DRIVERS\HSX_CNXT.sys
13:27:41.0583 4032 winachsf - ok
13:27:41.0661 4032 WinDefend (4575aa12561c5648483403541d0d7f2b) C:\Program Files\Windows Defender\mpsvc.dll
13:27:41.0692 4032 WinDefend - ok
13:27:41.0707 4032 WinHttpAutoProxySvc - ok
13:27:41.0770 4032 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
13:27:41.0801 4032 Winmgmt - ok
13:27:41.0879 4032 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
13:27:41.0973 4032 WinRM - ok
13:27:42.0066 4032 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
13:27:42.0144 4032 Wlansvc - ok
13:27:42.0347 4032 wlidsvc (fb01d4ae207b9efdbabfc55dc95c7e31) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
13:27:42.0550 4032 wlidsvc - ok
13:27:42.0706 4032 WmiAcpi (701a9f884a294327e9141d73746ee279) C:\Windows\system32\drivers\wmiacpi.sys
13:27:42.0846 4032 WmiAcpi - ok
13:27:42.0909 4032 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
13:27:42.0987 4032 wmiApSrv - ok
13:27:43.0080 4032 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
13:27:43.0189 4032 WMPNetworkSvc - ok
13:27:43.0236 4032 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
13:27:43.0283 4032 WPCSvc - ok
13:27:43.0314 4032 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
13:27:43.0423 4032 WPDBusEnum - ok
13:27:43.0486 4032 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
13:27:43.0548 4032 WpdUsb - ok
13:27:43.0720 4032 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
13:27:43.0767 4032 WPFFontCache_v0400 - ok
13:27:43.0860 4032 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
13:27:43.0938 4032 ws2ifsl - ok
13:27:43.0969 4032 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\System32\wscsvc.dll
13:27:44.0001 4032 wscsvc - ok
13:27:44.0016 4032 WSearch - ok
13:27:44.0125 4032 wuauserv (6298277b73c77fa99106b271a7525163) C:\Windows\system32\wuaueng.dll
13:27:44.0297 4032 wuauserv - ok
13:27:44.0453 4032 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
13:27:44.0547 4032 WUDFRd - ok
13:27:44.0593 4032 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
13:27:44.0687 4032 wudfsvc - ok
13:27:44.0749 4032 XAudio (5a7ff9a18ff6d7e0527fe3abf9204ef8) C:\Windows\system32\DRIVERS\xaudio.sys
13:27:44.0781 4032 XAudio - ok
13:27:44.0827 4032 XAudioService (28dc5d626e036a75a572556f0a6eb1f6) C:\Windows\system32\DRIVERS\xaudio.exe
13:27:44.0874 4032 XAudioService - ok
13:27:44.0921 4032 yukonwlh (7d1f3b131d503ef43ee594b5a2b9b427) C:\Windows\system32\DRIVERS\yk60x86.sys
13:27:45.0061 4032 yukonwlh - ok
13:27:45.0108 4032 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
13:27:45.0701 4032 \Device\Harddisk0\DR0 - ok
13:27:45.0701 4032 Boot (0x1200) (dcb9d20d01da2c4cbb778c37fbca8ef1) \Device\Harddisk0\DR0\Partition0
13:27:45.0701 4032 \Device\Harddisk0\DR0\Partition0 - ok
13:27:45.0717 4032 ============================================================
13:27:45.0717 4032 Scan finished
13:27:45.0717 4032 ============================================================
13:27:45.0732 5068 Detected object count: 16
13:27:45.0732 5068 Actual detected object count: 16
13:29:03.0841 5068 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
13:29:03.0841 5068 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:29:03.0841 5068 MSCSPTISRV ( UnsignedFile.Multi.Generic ) - skipped by user
13:29:03.0841 5068 MSCSPTISRV ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:29:03.0841 5068 PACSPTISVR ( UnsignedFile.Multi.Generic ) - skipped by user
13:29:03.0841 5068 PACSPTISVR ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:29:03.0841 5068 QBCFMonitorService ( UnsignedFile.Multi.Generic ) - skipped by user
13:29:03.0841 5068 QBCFMonitorService ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:29:03.0857 5068 QBFCService ( UnsignedFile.Multi.Generic ) - skipped by user
13:29:03.0857 5068 QBFCService ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:29:03.0857 5068 SonyImgF ( UnsignedFile.Multi.Generic ) - skipped by user
13:29:03.0857 5068 SonyImgF ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:29:03.0857 5068 SPTISRV ( UnsignedFile.Multi.Generic ) - skipped by user
13:29:03.0857 5068 SPTISRV ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:29:03.0857 5068 VAIO Entertainment TV Device Arbitration Service ( UnsignedFile.Multi.Generic ) - skipped by user
13:29:03.0857 5068 VAIO Entertainment TV Device Arbitration Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:29:03.0857 5068 VAIOMediaPlatform-IntegratedServer-AppServer ( UnsignedFile.Multi.Generic ) - skipped by user
13:29:03.0857 5068 VAIOMediaPlatform-IntegratedServer-AppServer ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:29:03.0857 5068 VAIOMediaPlatform-IntegratedServer-HTTP ( UnsignedFile.Multi.Generic ) - skipped by user
13:29:03.0873 5068 VAIOMediaPlatform-IntegratedServer-HTTP ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:29:03.0873 5068 VAIOMediaPlatform-IntegratedServer-UPnP ( UnsignedFile.Multi.Generic ) - skipped by user
13:29:03.0873 5068 VAIOMediaPlatform-IntegratedServer-UPnP ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:29:03.0873 5068 VAIOMediaPlatform-UCLS-AppServer ( UnsignedFile.Multi.Generic ) - skipped by user
13:29:03.0873 5068 VAIOMediaPlatform-UCLS-AppServer ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:29:03.0873 5068 VAIOMediaPlatform-UCLS-HTTP ( UnsignedFile.Multi.Generic ) - skipped by user
13:29:03.0873 5068 VAIOMediaPlatform-UCLS-HTTP ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:29:03.0873 5068 VAIOMediaPlatform-UCLS-UPnP ( UnsignedFile.Multi.Generic ) - skipped by user
13:29:03.0873 5068 VAIOMediaPlatform-UCLS-UPnP ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:29:03.0873 5068 VzCdbSvc ( UnsignedFile.Multi.Generic ) - skipped by user
13:29:03.0873 5068 VzCdbSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:29:03.0888 5068 VzFw ( UnsignedFile.Multi.Generic ) - skipped by user
13:29:03.0888 5068 VzFw ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:29:06.0837 6876 Deinitialize success

Hope I did this right.

#4 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:09:43 PM

Posted 11 June 2012 - 03:50 PM

Hi

I'd like us to scan your machine with ESET Online Scanner:

Note: You can use either Internet Explorer or Mozilla FireFox for this scan. You will however need to disable your current installed Anti-Virus, how to do so can be read here.

Note: Vista/Windows 7 users: You will need to to right-click on the either the IE or FF icon in the Start Menu or Quick Launch Bar on the Taskbar and select Run as Administrator from the context menu.

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image
      icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • On ESET: Click the Back button, then the Finish button.
Note: Do not forget to re-enable your Anti-Virus application after running the above scan!

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#5 VicVegas

VicVegas
  • Topic Starter

  • Members
  • 202 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Cornville, USA
  • Local time:04:43 PM

Posted 12 June 2012 - 05:32 PM

ESETSmartInstaller@High as downloader log:
all ok
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=5d2f70a1bc51aa4798a06c59d35f03bc
# end=finished
# remove_checked=true
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2012-06-12 01:44:24
# local_time=2012-06-12 08:44:24 (-0600, Central Daylight Time)
# country="United States"
# lang=1033
# osver=6.0.6002 NT Service Pack 2
# compatibility_mode=3073 16777213 80 71 7488115 14992082 0 0
# compatibility_mode=5892 16776574 100 100 46248043 176110573 0 0
# compatibility_mode=8192 67108863 100 0 40476809 40476809 0 0
# scanned=125604
# found=0
# cleaned=0
# scan_time=5618

It would be difficult to describe how everything is acting, outside of the one way I'm not really supposed to say "the same" but in all actuality at this point it's hard to tell anything is "up", apart from the file paths and at least one webpage that I'm still having trouble with, whereby some of the .gif images will look like a bad TV reception and the rest of the page is just all over the place.

#6 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:09:43 PM

Posted 14 June 2012 - 01:42 PM

Hi

  • Please take screenshot(s) of the problem(s) (How to take a screenshot)
  • Save it (them) as a picture file(s) (eg .jpg / .gif) to your desktop using e.g. Paint.
  • Upload the file(s) saved on your desktop to a site like Mediafire
  • Please post the link to each file in your next reply.
Note:
The reasons I ask you to upload the file(s) to a site like Mediafire, instead of posting the picture(s) on BC instead:

1) It would take up a significant portion of your storage allowance if on BC.
2) If the picture(s) is / are subsequently deleted from BC storage, then they would not show in this post anymore.

Edited by dev00790, 14 June 2012 - 01:43 PM.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#7 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:09:43 PM

Posted 01 July 2012 - 08:08 AM

Hi

Are you still with me?

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#8 VicVegas

VicVegas
  • Topic Starter

  • Members
  • 202 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Cornville, USA
  • Local time:04:43 PM

Posted 19 July 2012 - 03:28 PM

Eh, everything seems to be fine now (with this computer) so I'm not worried.

All that seems to be going on is a problem with one webpage (a commonly used one which should be completely safe) and as of now I have issues with that site on all of my computers. Other users on the site don't seem to mention it though, so I'm clueless. It's probably nothing though. Probably...

However, I'm now experiencing some slow downs and odd behavior on my laptop (big shocker) so I made a thread for it in the Windows 7 forum, inevitably I'll probably be back here for that computer.

Getting real sick of this though. This summer has just been unbelievably bad with computer trouble of all kinds.

Edited by VicVegas, 19 July 2012 - 03:39 PM.


#9 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:09:43 PM

Posted 19 July 2012 - 06:50 PM

Hi

If you wish to be receiving help here, then please don't continue with the other thread you made until I've finished helping you.

Which thread do you want to continue with?

Edited by dev00790, 19 July 2012 - 06:55 PM.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#10 VicVegas

VicVegas
  • Topic Starter

  • Members
  • 202 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Cornville, USA
  • Local time:04:43 PM

Posted 19 July 2012 - 07:16 PM

Since this thread is for a different computer, it's probably best if I not continue here. I'm not entirely convinced my problems are an infection (I'd likely be wrong) since I've run every scanner under the sun on this machine and all I've found was something computer stores use to mess with the wallpaper display (that's what I gathered anyway) and as far as I could tell it was doing nothing.

I'll make a new thread if necessary. Thanks for your help.

#11 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:09:43 PM

Posted 19 July 2012 - 07:32 PM

I advise you stay with me on this thread for this,

Windows Vista Service Pack 2 x86

computer, since we haven't ruled out the possibility of malware being a cause

Of course it's your choice

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#12 VicVegas

VicVegas
  • Topic Starter

  • Members
  • 202 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Cornville, USA
  • Local time:04:43 PM

Posted 19 July 2012 - 07:56 PM

Sure sure, I'll get a screenshot of the problems. I think I've got it figured out what went wrong though. :)

#13 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:09:43 PM

Posted 20 July 2012 - 07:07 AM

:thumbup2:

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#14 VicVegas

VicVegas
  • Topic Starter

  • Members
  • 202 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Cornville, USA
  • Local time:04:43 PM

Posted 22 July 2012 - 02:12 PM

I'm guessing I was just wrong in thinking x86 was supposed to be on this Vista. Maybe it's my version, or something else I did? I'm not sure, I could just swear it was there before, but it may have something to do with me reinstalling the OS at one point a while back and then just not noticing.
Posted Image
And going through some old posts the site seems to be undergoing some construction, though each of my computers seem to show the site a little differently.
Posted Image
I think I'm in the clear. :mellow:

Edit: Darn PB re-sized my images. Well If you need bigger images I'll try posting them on Mediafire. I'm just not accustomed to using file sites. Weird as it may sound I've just never had any reason to use them.

Edited by VicVegas, 22 July 2012 - 02:16 PM.


#15 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:09:43 PM

Posted 22 July 2012 - 04:11 PM

Hi

I'm guessing I was just wrong in thinking x86 was supposed to be on this Vista.


64 bit is also known as x64, and 32bit is also known as x86.

The computer above is Vista 32bit.
One way of seeing this is since on Vista 32bit: C:\Program Files doesn't have (x86) at the end, however for 64bit, it is C:\ProgramFiles (x86) - it's a way that Microsoft does it.

-------------

Next:

:step1:
Please delete SecurityCheck from your desktop, since this is outdated.

Then follow step 1 of my earlier post.


:step2:
Please delete Farbars Service Scanner (FSS) from your desktop, since this is outdated.

Then follow step 2 of my earlier post.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users