Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

BSOD!!! Is it from a Virus???


  • Please log in to reply
12 replies to this topic

#1 turtle0423

turtle0423

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Local time:08:23 AM

Posted 26 July 2012 - 10:57 PM

Recently, my computer has just went through the notorious Google Redirect Virus and for two days there were no signs of pop ups (newsfudge, search engine redirections, other ads, etc.) HOWEVER..... Today, it seems that every time I turn my computer on, it seems that it goes through the BSOD... So right now, I'm writing on the forum via Safe Mode With Networking so that I can use the internet without crashing on the blue screen. It has done that three times already in a span of 20 minutes... Did my virus come back to haunt me???

Currently, I am performing a full scan through my malwarebytes...

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:23 AM

Posted 26 July 2012 - 11:06 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 turtle0423

turtle0423
  • Topic Starter

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Local time:08:23 AM

Posted 26 July 2012 - 11:40 PM

TDSS KILLER LOG


1:34:00.0199 2080 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
21:34:00.0667 2080 ============================================================
21:34:00.0667 2080 Current date / time: 2012/07/26 21:34:00.0667
21:34:00.0667 2080 SystemInfo:
21:34:00.0667 2080
21:34:00.0667 2080 OS Version: 6.1.7601 ServicePack: 1.0
21:34:00.0667 2080 Product type: Workstation
21:34:00.0667 2080 ComputerName: CHRISTY_KANG
21:34:00.0667 2080 UserName: Christy Kang
21:34:00.0667 2080 Windows directory: C:\Windows
21:34:00.0667 2080 System windows directory: C:\Windows
21:34:00.0667 2080 Running under WOW64
21:34:00.0667 2080 Processor architecture: Intel x64
21:34:00.0667 2080 Number of processors: 4
21:34:00.0667 2080 Page size: 0x1000
21:34:00.0667 2080 Boot type: Safe boot with network
21:34:00.0667 2080 ============================================================
21:34:01.0244 2080 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:34:01.0244 2080 ============================================================
21:34:01.0244 2080 \Device\Harddisk0\DR0:
21:34:01.0244 2080 MBR partitions:
21:34:01.0244 2080 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1BC5800, BlocksNum 0x32000
21:34:01.0244 2080 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1BF7800, BlocksNum 0x3878E030
21:34:01.0244 2080 ============================================================
21:34:01.0275 2080 C: <-> \Device\Harddisk0\DR0\Partition1
21:34:01.0275 2080 ============================================================
21:34:01.0275 2080 Initialize success
21:34:01.0275 2080 ============================================================
21:34:02.0867 3316 ============================================================
21:34:02.0867 3316 Scan started
21:34:02.0867 3316 Mode: Manual;
21:34:02.0867 3316 ============================================================
21:34:04.0021 3316 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
21:34:04.0021 3316 1394ohci - ok
21:34:04.0224 3316 ACDaemon (adc420616c501b45d26c0fd3ef1e54e4) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
21:34:04.0271 3316 ACDaemon - ok
21:34:04.0380 3316 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
21:34:04.0380 3316 ACPI - ok
21:34:04.0427 3316 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
21:34:04.0427 3316 AcpiPmi - ok
21:34:04.0536 3316 AdobeFlashPlayerUpdateSvc (6c40d5ed8951ab7b90d08af655224ee4) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:34:04.0536 3316 AdobeFlashPlayerUpdateSvc - ok
21:34:04.0661 3316 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys
21:34:04.0661 3316 adp94xx - ok
21:34:04.0707 3316 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys
21:34:04.0707 3316 adpahci - ok
21:34:04.0817 3316 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys
21:34:04.0817 3316 adpu320 - ok
21:34:04.0863 3316 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
21:34:04.0863 3316 AeLookupSvc - ok
21:34:04.0973 3316 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
21:34:04.0973 3316 AFD - ok
21:34:05.0035 3316 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
21:34:05.0035 3316 agp440 - ok
21:34:05.0113 3316 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
21:34:05.0113 3316 ALG - ok
21:34:05.0144 3316 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
21:34:05.0144 3316 aliide - ok
21:34:05.0191 3316 AMD External Events Utility (7288df84b363113ef5a5e182d48afc2c) C:\Windows\system32\atiesrxx.exe
21:34:05.0191 3316 AMD External Events Utility - ok
21:34:05.0253 3316 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
21:34:05.0253 3316 amdide - ok
21:34:05.0300 3316 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys
21:34:05.0300 3316 AmdK8 - ok
21:34:05.0753 3316 amdkmdag (49c7d5f147dadffbed4e746903c7e15a) C:\Windows\system32\DRIVERS\atikmdag.sys
21:34:05.0909 3316 amdkmdag - ok
21:34:06.0049 3316 amdkmdap (2b76e84dc24a0ae24a26878acb82b631) C:\Windows\system32\DRIVERS\atikmpag.sys
21:34:06.0049 3316 amdkmdap - ok
21:34:06.0065 3316 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys
21:34:06.0080 3316 AmdPPM - ok
21:34:06.0096 3316 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
21:34:06.0096 3316 amdsata - ok
21:34:06.0127 3316 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys
21:34:06.0127 3316 amdsbs - ok
21:34:06.0143 3316 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
21:34:06.0143 3316 amdxata - ok
21:34:06.0174 3316 AMPPAL (9921e78bc29634235f4bf5809e7e8cde) C:\Windows\system32\DRIVERS\AMPPAL.sys
21:34:06.0189 3316 AMPPAL - ok
21:34:06.0189 3316 AMPPALP (9921e78bc29634235f4bf5809e7e8cde) C:\Windows\system32\DRIVERS\amppal.sys
21:34:06.0189 3316 AMPPALP - ok
21:34:06.0345 3316 AMPPALR3 (83a0e7ba4ae616d3654e700d9c5ff9db) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
21:34:06.0345 3316 AMPPALR3 - ok
21:34:06.0533 3316 ApfiltrService (29a7bf049ce611dcc51adecca23a466d) C:\Windows\system32\DRIVERS\Apfiltr.sys
21:34:06.0548 3316 ApfiltrService - ok
21:34:06.0611 3316 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
21:34:06.0611 3316 AppID - ok
21:34:06.0657 3316 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
21:34:06.0657 3316 AppIDSvc - ok
21:34:06.0704 3316 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
21:34:06.0704 3316 Appinfo - ok
21:34:06.0829 3316 Apple Mobile Device (f401929ee0cc92bfe7f15161ca535383) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:34:06.0829 3316 Apple Mobile Device - ok
21:34:06.0969 3316 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys
21:34:06.0985 3316 arc - ok
21:34:06.0985 3316 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys
21:34:06.0985 3316 arcsas - ok
21:34:07.0032 3316 ArcSoftKsUFilter (c130bc4a51b1382b2be8e44579ec4c0a) C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys
21:34:07.0032 3316 ArcSoftKsUFilter - ok
21:34:07.0125 3316 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
21:34:07.0219 3316 aspnet_state - ok
21:34:07.0297 3316 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
21:34:07.0297 3316 AsyncMac - ok
21:34:07.0328 3316 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
21:34:07.0328 3316 atapi - ok
21:34:07.0437 3316 athr (e857eee6b92aaa473ebb3465add8f7e7) C:\Windows\system32\DRIVERS\athrx.sys
21:34:07.0453 3316 athr - ok
21:34:07.0609 3316 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
21:34:07.0609 3316 AudioEndpointBuilder - ok
21:34:07.0609 3316 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
21:34:07.0625 3316 AudioSrv - ok
21:34:07.0656 3316 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
21:34:07.0656 3316 AxInstSV - ok
21:34:07.0734 3316 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys
21:34:07.0734 3316 b06bdrv - ok
21:34:07.0781 3316 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
21:34:07.0781 3316 b57nd60a - ok
21:34:07.0859 3316 BBSvc (216ec30beaa9ae6818b21c969500d308) C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
21:34:07.0859 3316 BBSvc - ok
21:34:07.0905 3316 BBUpdate (785de7abda13309d6065305542829e76) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
21:34:07.0905 3316 BBUpdate - ok
21:34:07.0937 3316 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
21:34:07.0937 3316 BDESVC - ok
21:34:07.0968 3316 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
21:34:07.0968 3316 Beep - ok
21:34:08.0061 3316 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
21:34:08.0061 3316 BFE - ok
21:34:08.0358 3316 BHDrvx64 (c8ab71a5102d0fc103f6dfc750005137) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\BASHDefs\20120619.001_6e2\BHDrvx64.sys
21:34:08.0373 3316 BHDrvx64 - ok
21:34:08.0483 3316 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
21:34:08.0483 3316 blbdrive - ok
21:34:08.0701 3316 Bluetooth Device Monitor (e52221ff68aabb5bee32a7dee69e7eab) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
21:34:08.0717 3316 Bluetooth Device Monitor - ok
21:34:08.0779 3316 Bluetooth Media Service (5cfa8896a5e10b226b0606b4c84d97ae) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
21:34:08.0795 3316 Bluetooth Media Service - ok
21:34:08.0873 3316 Bluetooth OBEX Service (03fe8826f70fc84401b554c4004c4593) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
21:34:08.0919 3316 Bluetooth OBEX Service - ok
21:34:09.0044 3316 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
21:34:09.0044 3316 Bonjour Service - ok
21:34:09.0263 3316 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
21:34:09.0263 3316 bowser - ok
21:34:09.0309 3316 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys
21:34:09.0325 3316 BrFiltLo - ok
21:34:09.0356 3316 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys
21:34:09.0356 3316 BrFiltUp - ok
21:34:09.0465 3316 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
21:34:09.0465 3316 BridgeMP - ok
21:34:09.0497 3316 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
21:34:09.0497 3316 Browser - ok
21:34:09.0528 3316 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
21:34:09.0528 3316 Brserid - ok
21:34:09.0559 3316 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
21:34:09.0559 3316 BrSerWdm - ok
21:34:09.0559 3316 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
21:34:09.0559 3316 BrUsbMdm - ok
21:34:09.0559 3316 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
21:34:09.0575 3316 BrUsbSer - ok
21:34:09.0606 3316 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\DRIVERS\BthEnum.sys
21:34:09.0606 3316 BthEnum - ok
21:34:09.0621 3316 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\drivers\bthmodem.sys
21:34:09.0637 3316 BTHMODEM - ok
21:34:09.0653 3316 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys
21:34:09.0653 3316 BthPan - ok
21:34:09.0699 3316 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\Windows\system32\Drivers\BTHport.sys
21:34:09.0715 3316 BTHPORT - ok
21:34:09.0731 3316 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
21:34:09.0731 3316 bthserv - ok
21:34:09.0793 3316 BTHSSecurityMgr (a5b3e8b2b78c7b3da56a0de490e6718c) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
21:34:09.0793 3316 BTHSSecurityMgr - ok
21:34:09.0824 3316 BTHUSB (f188b7394d81010767b6df3178519a37) C:\Windows\system32\Drivers\BTHUSB.sys
21:34:09.0824 3316 BTHUSB - ok
21:34:09.0855 3316 btmaux (a0ca8f0493d26e67436929856e32f585) C:\Windows\system32\DRIVERS\btmaux.sys
21:34:09.0855 3316 btmaux - ok
21:34:09.0871 3316 btmhsf (2b72e1339186a059be27bc1697f4a9c1) C:\Windows\system32\DRIVERS\btmhsf.sys
21:34:09.0871 3316 btmhsf - ok
21:34:09.0980 3316 cbVSCService (ed5411a69c5bac78d245c893af64352a) C:\Program Files (x86)\Cobian Backup 10\cbVSCService.exe
21:34:09.0996 3316 cbVSCService - ok
21:34:10.0058 3316 ccSet_NIS (9a2a298479be9354fed42c9a40a9c214) C:\Windows\system32\drivers\NISx64\1300000.080\ccSetx64.sys
21:34:10.0058 3316 ccSet_NIS - ok
21:34:10.0105 3316 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
21:34:10.0105 3316 cdfs - ok
21:34:10.0136 3316 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
21:34:10.0152 3316 cdrom - ok
21:34:10.0183 3316 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
21:34:10.0183 3316 CertPropSvc - ok
21:34:10.0214 3316 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys
21:34:10.0214 3316 circlass - ok
21:34:10.0245 3316 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
21:34:10.0261 3316 CLFS - ok
21:34:10.0355 3316 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:34:10.0370 3316 clr_optimization_v2.0.50727_32 - ok
21:34:10.0448 3316 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:34:10.0448 3316 clr_optimization_v2.0.50727_64 - ok
21:34:10.0495 3316 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:34:10.0573 3316 clr_optimization_v4.0.30319_32 - ok
21:34:10.0682 3316 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:34:10.0791 3316 clr_optimization_v4.0.30319_64 - ok
21:34:10.0885 3316 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
21:34:10.0885 3316 CmBatt - ok
21:34:10.0901 3316 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
21:34:10.0901 3316 cmdide - ok
21:34:10.0963 3316 CNG (9ac4f97c2d3e93367e2148ea940cd2cd) C:\Windows\system32\Drivers\cng.sys
21:34:10.0979 3316 CNG - ok
21:34:11.0057 3316 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
21:34:11.0057 3316 Compbatt - ok
21:34:11.0103 3316 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\DRIVERS\CompositeBus.sys
21:34:11.0119 3316 CompositeBus - ok
21:34:11.0150 3316 COMSysApp - ok
21:34:11.0181 3316 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys
21:34:11.0181 3316 crcdisk - ok
21:34:11.0244 3316 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
21:34:11.0259 3316 CryptSvc - ok
21:34:11.0462 3316 cvhsvc (72794d112cbaff3bc0c29bf7350d4741) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
21:34:11.0478 3316 cvhsvc - ok
21:34:11.0571 3316 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
21:34:11.0665 3316 DcomLaunch - ok
21:34:11.0712 3316 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
21:34:11.0712 3316 defragsvc - ok
21:34:11.0774 3316 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
21:34:11.0774 3316 DfsC - ok
21:34:11.0821 3316 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
21:34:11.0837 3316 Dhcp - ok
21:34:11.0852 3316 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
21:34:11.0852 3316 discache - ok
21:34:11.0883 3316 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys
21:34:11.0883 3316 Disk - ok
21:34:11.0915 3316 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
21:34:11.0915 3316 Dnscache - ok
21:34:11.0946 3316 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
21:34:11.0961 3316 dot3svc - ok
21:34:11.0993 3316 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
21:34:12.0008 3316 DPS - ok
21:34:12.0024 3316 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
21:34:12.0024 3316 drmkaud - ok
21:34:12.0102 3316 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
21:34:12.0102 3316 DXGKrnl - ok
21:34:12.0149 3316 e1yexpress (50ad8fc1dc800ff36087994c8f7fdff2) C:\Windows\system32\DRIVERS\e1y60x64.sys
21:34:12.0149 3316 e1yexpress - ok
21:34:12.0180 3316 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
21:34:12.0180 3316 EapHost - ok
21:34:12.0367 3316 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys
21:34:12.0398 3316 ebdrv - ok
21:34:12.0539 3316 eeCtrl (ba6420c1f7070ed8f1ba372844f3e1ec) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
21:34:12.0539 3316 eeCtrl - ok
21:34:12.0679 3316 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
21:34:12.0679 3316 EFS - ok
21:34:12.0804 3316 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
21:34:12.0804 3316 ehRecvr - ok
21:34:12.0851 3316 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
21:34:12.0851 3316 ehSched - ok
21:34:12.0960 3316 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys
21:34:12.0960 3316 elxstor - ok
21:34:13.0131 3316 EraserUtilRebootDrv (1343df3451bc0c442dc69837c6fba21b) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
21:34:13.0131 3316 EraserUtilRebootDrv - ok
21:34:13.0147 3316 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
21:34:13.0147 3316 ErrDev - ok
21:34:13.0303 3316 esgiguard - ok
21:34:13.0443 3316 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
21:34:13.0443 3316 EventSystem - ok
21:34:13.0662 3316 EvtEng (54fc81b0162478a72a93dbbeafb35671) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
21:34:13.0677 3316 EvtEng - ok
21:34:13.0849 3316 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
21:34:13.0849 3316 exfat - ok
21:34:13.0880 3316 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
21:34:13.0896 3316 fastfat - ok
21:34:13.0989 3316 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
21:34:14.0005 3316 Fax - ok
21:34:14.0021 3316 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys
21:34:14.0021 3316 fdc - ok
21:34:14.0052 3316 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
21:34:14.0052 3316 fdPHost - ok
21:34:14.0067 3316 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
21:34:14.0067 3316 FDResPub - ok
21:34:14.0067 3316 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
21:34:14.0067 3316 FileInfo - ok
21:34:14.0099 3316 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
21:34:14.0099 3316 Filetrace - ok
21:34:14.0114 3316 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys
21:34:14.0114 3316 flpydisk - ok
21:34:14.0130 3316 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
21:34:14.0145 3316 FltMgr - ok
21:34:14.0223 3316 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
21:34:14.0223 3316 FontCache - ok
21:34:14.0301 3316 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:34:14.0301 3316 FontCache3.0.0.0 - ok
21:34:14.0364 3316 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
21:34:14.0364 3316 FsDepends - ok
21:34:14.0395 3316 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
21:34:14.0395 3316 Fs_Rec - ok
21:34:14.0457 3316 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
21:34:14.0457 3316 fvevol - ok
21:34:14.0489 3316 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys
21:34:14.0489 3316 gagp30kx - ok
21:34:14.0520 3316 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:34:14.0520 3316 GEARAspiWDM - ok
21:34:14.0645 3316 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
21:34:14.0660 3316 gpsvc - ok
21:34:14.0723 3316 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
21:34:14.0723 3316 hcw85cir - ok
21:34:14.0801 3316 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
21:34:14.0801 3316 HdAudAddService - ok
21:34:14.0879 3316 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\DRIVERS\HDAudBus.sys
21:34:14.0879 3316 HDAudBus - ok
21:34:14.0925 3316 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys
21:34:14.0925 3316 HidBatt - ok
21:34:14.0957 3316 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys
21:34:14.0957 3316 HidBth - ok
21:34:15.0003 3316 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys
21:34:15.0003 3316 HidIr - ok
21:34:15.0035 3316 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
21:34:15.0035 3316 hidserv - ok
21:34:15.0159 3316 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\drivers\hidusb.sys
21:34:15.0159 3316 HidUsb - ok
21:34:15.0206 3316 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
21:34:15.0206 3316 hkmsvc - ok
21:34:15.0222 3316 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
21:34:15.0222 3316 HomeGroupListener - ok
21:34:15.0253 3316 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
21:34:15.0253 3316 HomeGroupProvider - ok
21:34:15.0284 3316 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
21:34:15.0284 3316 HpSAMD - ok
21:34:15.0347 3316 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
21:34:15.0347 3316 HTTP - ok
21:34:15.0362 3316 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
21:34:15.0362 3316 hwpolicy - ok
21:34:15.0393 3316 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
21:34:15.0393 3316 i8042prt - ok
21:34:15.0456 3316 iaStor (2fdaec4b02729c48c0fd1b0b4695995b) C:\Windows\system32\drivers\iaStor.sys
21:34:15.0456 3316 iaStor - ok
21:34:15.0581 3316 IAStorDataMgrSvc (d41861e56e7552c13674d7f147a02464) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
21:34:15.0581 3316 IAStorDataMgrSvc - ok
21:34:15.0627 3316 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
21:34:15.0627 3316 iaStorV - ok
21:34:15.0643 3316 iBtFltCoex (e049dd2969a2c0af9ff99dd5f1182695) C:\Windows\system32\DRIVERS\iBtFltCoex.sys
21:34:15.0643 3316 iBtFltCoex - ok
21:34:15.0752 3316 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:34:15.0768 3316 idsvc - ok
21:34:15.0986 3316 IDSVia64 (ce0bf35c79e03bb89da6b14fac838605) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\IPSDefs\20120626.001\IDSvia64.sys
21:34:15.0986 3316 IDSVia64 - ok
21:34:16.0080 3316 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys
21:34:16.0080 3316 iirsp - ok
21:34:16.0142 3316 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
21:34:16.0158 3316 IKEEXT - ok
21:34:16.0314 3316 IntcAzAudAddService (cdb772f707ac24b43a20c821852ca61f) C:\Windows\system32\drivers\RTKVHD64.sys
21:34:16.0329 3316 IntcAzAudAddService - ok
21:34:16.0517 3316 IntcDAud (fc727061c0f47c8059e88e05d5c8e381) C:\Windows\system32\DRIVERS\IntcDAud.sys
21:34:16.0517 3316 IntcDAud - ok
21:34:16.0563 3316 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
21:34:16.0579 3316 intelide - ok
21:34:17.0297 3316 intelkmd (33faa40b288002c89529dbd14f3ab72c) C:\Windows\system32\DRIVERS\igdpmd64.sys
21:34:17.0499 3316 intelkmd - ok
21:34:17.0624 3316 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
21:34:17.0624 3316 intelppm - ok
21:34:17.0640 3316 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
21:34:17.0655 3316 IPBusEnum - ok
21:34:17.0671 3316 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:34:17.0671 3316 IpFilterDriver - ok
21:34:17.0749 3316 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
21:34:17.0765 3316 iphlpsvc - ok
21:34:17.0796 3316 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
21:34:17.0796 3316 IPMIDRV - ok
21:34:17.0827 3316 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
21:34:17.0827 3316 IPNAT - ok
21:34:17.0921 3316 iPod Service (a9ab99ee7d39725eafec82732d2b3271) C:\Program Files\iPod\bin\iPodService.exe
21:34:17.0936 3316 iPod Service - ok
21:34:17.0967 3316 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
21:34:17.0967 3316 IRENUM - ok
21:34:17.0967 3316 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
21:34:17.0967 3316 isapnp - ok
21:34:18.0014 3316 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
21:34:18.0014 3316 iScsiPrt - ok
21:34:18.0123 3316 jhi_service (6c85719a21b3f62c2c76280f4bd36c7b) C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
21:34:18.0123 3316 jhi_service - ok
21:34:18.0139 3316 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
21:34:18.0139 3316 kbdclass - ok
21:34:18.0170 3316 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
21:34:18.0170 3316 kbdhid - ok
21:34:18.0201 3316 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:34:18.0201 3316 KeyIso - ok
21:34:18.0248 3316 KSecDD (97a7070aea4c058b6418519e869a63b4) C:\Windows\system32\Drivers\ksecdd.sys
21:34:18.0248 3316 KSecDD - ok
21:34:18.0264 3316 KSecPkg (26c43a7c2862447ec59deda188d1da07) C:\Windows\system32\Drivers\ksecpkg.sys
21:34:18.0264 3316 KSecPkg - ok
21:34:18.0295 3316 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
21:34:18.0295 3316 ksthunk - ok
21:34:18.0342 3316 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
21:34:18.0342 3316 KtmRm - ok
21:34:18.0389 3316 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\System32\srvsvc.dll
21:34:18.0404 3316 LanmanServer - ok
21:34:18.0435 3316 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
21:34:18.0451 3316 LanmanWorkstation - ok
21:34:18.0482 3316 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
21:34:18.0482 3316 lltdio - ok
21:34:18.0576 3316 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
21:34:18.0576 3316 lltdsvc - ok
21:34:18.0623 3316 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
21:34:18.0623 3316 lmhosts - ok
21:34:18.0810 3316 LMS (f4a17dcab576267c85663e64f3ace5a4) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
21:34:18.0810 3316 LMS - ok
21:34:18.0888 3316 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys
21:34:18.0888 3316 LSI_FC - ok
21:34:18.0903 3316 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys
21:34:18.0903 3316 LSI_SAS - ok
21:34:18.0903 3316 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys
21:34:18.0903 3316 LSI_SAS2 - ok
21:34:18.0935 3316 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys
21:34:18.0935 3316 LSI_SCSI - ok
21:34:18.0966 3316 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
21:34:18.0966 3316 luafv - ok
21:34:19.0013 3316 MBAMProtector (dc8490812a3b72811ae534f423b4c206) C:\Windows\system32\drivers\mbam.sys
21:34:19.0013 3316 MBAMProtector - ok
21:34:19.0091 3316 MBAMService (43683e970f008c93c9429ef428147a54) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
21:34:19.0106 3316 MBAMService - ok
21:34:19.0137 3316 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
21:34:19.0137 3316 Mcx2Svc - ok
21:34:19.0153 3316 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys
21:34:19.0153 3316 megasas - ok
21:34:19.0184 3316 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys
21:34:19.0184 3316 MegaSR - ok
21:34:19.0215 3316 MEIx64 (a6518dcc42f7a6e999bb3bea8fd87567) C:\Windows\system32\DRIVERS\HECIx64.sys
21:34:19.0215 3316 MEIx64 - ok
21:34:19.0247 3316 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
21:34:19.0247 3316 MMCSS - ok
21:34:19.0262 3316 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
21:34:19.0262 3316 Modem - ok
21:34:19.0293 3316 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
21:34:19.0293 3316 monitor - ok
21:34:19.0340 3316 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
21:34:19.0340 3316 mouclass - ok
21:34:19.0356 3316 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\drivers\mouhid.sys
21:34:19.0371 3316 mouhid - ok
21:34:19.0387 3316 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
21:34:19.0387 3316 mountmgr - ok
21:34:19.0403 3316 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
21:34:19.0418 3316 mpio - ok
21:34:19.0418 3316 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
21:34:19.0418 3316 mpsdrv - ok
21:34:19.0496 3316 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
21:34:19.0512 3316 MpsSvc - ok
21:34:19.0527 3316 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
21:34:19.0543 3316 MRxDAV - ok
21:34:19.0574 3316 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
21:34:19.0574 3316 mrxsmb - ok
21:34:19.0605 3316 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:34:19.0605 3316 mrxsmb10 - ok
21:34:19.0621 3316 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:34:19.0621 3316 mrxsmb20 - ok
21:34:19.0637 3316 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
21:34:19.0637 3316 msahci - ok
21:34:19.0652 3316 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
21:34:19.0652 3316 msdsm - ok
21:34:19.0699 3316 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
21:34:19.0699 3316 MSDTC - ok
21:34:19.0715 3316 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
21:34:19.0715 3316 Msfs - ok
21:34:19.0730 3316 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
21:34:19.0730 3316 mshidkmdf - ok
21:34:19.0746 3316 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
21:34:19.0746 3316 msisadrv - ok
21:34:19.0777 3316 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
21:34:19.0777 3316 MSiSCSI - ok
21:34:19.0777 3316 msiserver - ok
21:34:19.0808 3316 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
21:34:19.0808 3316 MSKSSRV - ok
21:34:19.0808 3316 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
21:34:19.0808 3316 MSPCLOCK - ok
21:34:19.0824 3316 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
21:34:19.0824 3316 MSPQM - ok
21:34:19.0855 3316 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
21:34:19.0855 3316 MsRPC - ok
21:34:19.0871 3316 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
21:34:19.0871 3316 mssmbios - ok
21:34:19.0902 3316 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
21:34:19.0902 3316 MSTEE - ok
21:34:19.0917 3316 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys
21:34:19.0917 3316 MTConfig - ok
21:34:19.0949 3316 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
21:34:19.0949 3316 Mup - ok
21:34:20.0027 3316 MyWiFiDHCPDNS (4bbb9d9c4df259fae2d172c5bb25ddd0) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
21:34:20.0027 3316 MyWiFiDHCPDNS - ok
21:34:20.0073 3316 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
21:34:20.0073 3316 napagent - ok
21:34:20.0120 3316 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
21:34:20.0136 3316 NativeWifiP - ok
21:34:20.0292 3316 NAVENG (8043d41f881d6ace40b854ad6e32217f) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\VirusDefs\20120626.019\ENG64.SYS
21:34:20.0292 3316 NAVENG - ok
21:34:20.0401 3316 NAVEX15 (9a9ab2fc45d701daed465d14980f1305) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\VirusDefs\20120626.019\EX64.SYS
21:34:20.0417 3316 NAVEX15 - ok
21:34:20.0651 3316 NDIS (c38b8ae57f78915905064a9a24dc1586) C:\Windows\system32\drivers\ndis.sys
21:34:20.0651 3316 NDIS - ok
21:34:20.0713 3316 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
21:34:20.0713 3316 NdisCap - ok
21:34:20.0744 3316 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
21:34:20.0744 3316 NdisTapi - ok
21:34:20.0760 3316 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
21:34:20.0760 3316 Ndisuio - ok
21:34:20.0791 3316 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
21:34:20.0791 3316 NdisWan - ok
21:34:20.0807 3316 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
21:34:20.0822 3316 NDProxy - ok
21:34:20.0853 3316 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
21:34:20.0853 3316 NetBIOS - ok
21:34:20.0869 3316 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
21:34:20.0869 3316 NetBT - ok
21:34:20.0900 3316 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:34:20.0900 3316 Netlogon - ok
21:34:20.0947 3316 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
21:34:20.0963 3316 Netman - ok
21:34:21.0056 3316 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:34:21.0119 3316 NetMsmqActivator - ok
21:34:21.0119 3316 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:34:21.0119 3316 NetPipeActivator - ok
21:34:21.0165 3316 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
21:34:21.0165 3316 netprofm - ok
21:34:21.0165 3316 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:34:21.0165 3316 NetTcpActivator - ok
21:34:21.0165 3316 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:34:21.0165 3316 NetTcpPortSharing - ok
21:34:21.0587 3316 NETwNs64 (ac69618de5bcce8747c9ab0aae1003c1) C:\Windows\system32\DRIVERS\NETwNs64.sys
21:34:21.0743 3316 NETwNs64 - ok
21:34:21.0930 3316 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys
21:34:21.0930 3316 nfrd960 - ok
21:34:22.0055 3316 NIS (efbfe525e03c7444187262c85d776532) C:\Program Files (x86)\Norton Internet Security\Engine\19.0.0.128\ccSvcHst.exe
21:34:22.0070 3316 NIS - ok
21:34:22.0101 3316 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
21:34:22.0101 3316 NlaSvc - ok
21:34:22.0133 3316 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
21:34:22.0133 3316 Npfs - ok
21:34:22.0148 3316 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
21:34:22.0148 3316 nsi - ok
21:34:22.0164 3316 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
21:34:22.0164 3316 nsiproxy - ok
21:34:22.0273 3316 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
21:34:22.0289 3316 Ntfs - ok
21:34:22.0382 3316 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
21:34:22.0382 3316 Null - ok
21:34:22.0429 3316 nusb3hub (01266516e6e88d183a2b58722eeb4443) C:\Windows\system32\DRIVERS\nusb3hub.sys
21:34:22.0429 3316 nusb3hub - ok
21:34:22.0445 3316 nusb3xhc (5ec04f55cc5f165f21752712437df638) C:\Windows\system32\DRIVERS\nusb3xhc.sys
21:34:22.0445 3316 nusb3xhc - ok
21:34:23.0131 3316 nvlddmkm (dd81fbc57ab9134cddc5ce90880bfd80) C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:34:23.0349 3316 nvlddmkm - ok
21:34:23.0474 3316 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
21:34:23.0474 3316 nvraid - ok
21:34:23.0490 3316 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
21:34:23.0490 3316 nvstor - ok
21:34:23.0521 3316 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
21:34:23.0521 3316 nv_agp - ok
21:34:23.0537 3316 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
21:34:23.0537 3316 ohci1394 - ok
21:34:23.0849 3316 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:34:23.0880 3316 ose - ok
21:34:24.0223 3316 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
21:34:24.0332 3316 osppsvc - ok
21:34:24.0441 3316 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
21:34:24.0441 3316 p2pimsvc - ok
21:34:24.0473 3316 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
21:34:24.0488 3316 p2psvc - ok
21:34:24.0551 3316 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys
21:34:24.0551 3316 Parport - ok
21:34:24.0613 3316 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
21:34:24.0613 3316 partmgr - ok
21:34:24.0644 3316 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
21:34:24.0660 3316 PcaSvc - ok
21:34:24.0707 3316 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
21:34:24.0707 3316 pci - ok
21:34:24.0722 3316 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
21:34:24.0722 3316 pciide - ok
21:34:24.0753 3316 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys
21:34:24.0753 3316 pcmcia - ok
21:34:24.0753 3316 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
21:34:24.0753 3316 pcw - ok
21:34:24.0800 3316 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
21:34:24.0816 3316 PEAUTH - ok
21:34:24.0878 3316 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
21:34:25.0019 3316 PerfHost - ok
21:34:25.0112 3316 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
21:34:25.0128 3316 pla - ok
21:34:25.0190 3316 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
21:34:25.0190 3316 PlugPlay - ok
21:34:25.0331 3316 PMBDeviceInfoProvider (ae6c778717de2f6b0c0b5335036d3363) c:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
21:34:25.0409 3316 PMBDeviceInfoProvider - ok
21:34:25.0440 3316 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
21:34:25.0440 3316 PNRPAutoReg - ok
21:34:25.0455 3316 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
21:34:25.0471 3316 PNRPsvc - ok
21:34:25.0518 3316 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
21:34:25.0518 3316 PolicyAgent - ok
21:34:25.0549 3316 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
21:34:25.0565 3316 Power - ok
21:34:25.0611 3316 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
21:34:25.0611 3316 PptpMiniport - ok
21:34:25.0627 3316 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys
21:34:25.0627 3316 Processor - ok
21:34:25.0689 3316 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
21:34:25.0689 3316 ProfSvc - ok
21:34:25.0721 3316 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:34:25.0736 3316 ProtectedStorage - ok
21:34:25.0767 3316 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
21:34:25.0767 3316 Psched - ok
21:34:25.0877 3316 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys
21:34:25.0892 3316 ql2300 - ok
21:34:26.0001 3316 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys
21:34:26.0001 3316 ql40xx - ok
21:34:26.0033 3316 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
21:34:26.0033 3316 QWAVE - ok
21:34:26.0079 3316 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
21:34:26.0079 3316 QWAVEdrv - ok
21:34:26.0095 3316 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
21:34:26.0095 3316 RasAcd - ok
21:34:26.0126 3316 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
21:34:26.0126 3316 RasAgileVpn - ok
21:34:26.0157 3316 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
21:34:26.0157 3316 RasAuto - ok
21:34:26.0189 3316 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
21:34:26.0189 3316 Rasl2tp - ok
21:34:26.0220 3316 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
21:34:26.0235 3316 RasMan - ok
21:34:26.0251 3316 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
21:34:26.0251 3316 RasPppoe - ok
21:34:26.0282 3316 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
21:34:26.0282 3316 RasSstp - ok
21:34:26.0313 3316 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
21:34:26.0313 3316 rdbss - ok
21:34:26.0329 3316 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\drivers\rdpbus.sys
21:34:26.0329 3316 rdpbus - ok
21:34:26.0345 3316 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
21:34:26.0345 3316 RDPCDD - ok
21:34:26.0376 3316 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
21:34:26.0376 3316 RDPENCDD - ok
21:34:26.0407 3316 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
21:34:26.0407 3316 RDPREFMP - ok
21:34:26.0438 3316 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
21:34:26.0438 3316 RDPWD - ok
21:34:26.0469 3316 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
21:34:26.0469 3316 rdyboost - ok
21:34:26.0610 3316 RegSrvc (a436f5e7d80bbdbb0826d0f176d5bea8) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
21:34:26.0625 3316 RegSrvc - ok
21:34:26.0641 3316 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
21:34:26.0657 3316 RemoteAccess - ok
21:34:26.0672 3316 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
21:34:26.0672 3316 RemoteRegistry - ok
21:34:26.0766 3316 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys
21:34:26.0766 3316 RFCOMM - ok
21:34:26.0797 3316 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
21:34:26.0797 3316 RpcEptMapper - ok
21:34:26.0813 3316 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
21:34:26.0813 3316 RpcLocator - ok
21:34:26.0859 3316 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
21:34:26.0875 3316 RpcSs - ok
21:34:26.0922 3316 RSPCIESTOR (f8fea7764348c59262b340916cbfeb40) C:\Windows\system32\DRIVERS\RtsPStor.sys
21:34:26.0922 3316 RSPCIESTOR - ok
21:34:26.0953 3316 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
21:34:26.0953 3316 rspndr - ok
21:34:27.0000 3316 RTL8167 (ea5532868ba76923d75bcb2a1448d810) C:\Windows\system32\DRIVERS\Rt64win7.sys
21:34:27.0000 3316 RTL8167 - ok
21:34:27.0047 3316 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:34:27.0047 3316 SamSs - ok
21:34:27.0062 3316 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
21:34:27.0062 3316 sbp2port - ok
21:34:27.0093 3316 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
21:34:27.0093 3316 SCardSvr - ok
21:34:27.0109 3316 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
21:34:27.0125 3316 scfilter - ok
21:34:27.0187 3316 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
21:34:27.0203 3316 Schedule - ok
21:34:27.0234 3316 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
21:34:27.0234 3316 SCPolicySvc - ok
21:34:27.0265 3316 sdbus (111e0ebc0ad79cb0fa014b907b231cf0) C:\Windows\system32\DRIVERS\sdbus.sys
21:34:27.0265 3316 sdbus - ok
21:34:27.0312 3316 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
21:34:27.0312 3316 SDRSVC - ok
21:34:27.0327 3316 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
21:34:27.0327 3316 secdrv - ok
21:34:27.0343 3316 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
21:34:27.0359 3316 seclogon - ok
21:34:27.0359 3316 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
21:34:27.0374 3316 SENS - ok
21:34:27.0405 3316 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
21:34:27.0405 3316 SensrSvc - ok
21:34:27.0437 3316 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\drivers\serenum.sys
21:34:27.0437 3316 Serenum - ok
21:34:27.0452 3316 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\drivers\serial.sys
21:34:27.0452 3316 Serial - ok
21:34:27.0468 3316 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys
21:34:27.0468 3316 sermouse - ok
21:34:27.0499 3316 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
21:34:27.0499 3316 SessionEnv - ok
21:34:27.0530 3316 SFEP (286d3889e6ab5589646ff8a63cb928ae) C:\Windows\system32\DRIVERS\SFEP.sys
21:34:27.0530 3316 SFEP - ok
21:34:27.0546 3316 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
21:34:27.0546 3316 sffdisk - ok
21:34:27.0561 3316 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
21:34:27.0561 3316 sffp_mmc - ok
21:34:27.0577 3316 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
21:34:27.0577 3316 sffp_sd - ok
21:34:27.0608 3316 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys
21:34:27.0608 3316 sfloppy - ok
21:34:27.0671 3316 Sftfs (c6cc9297bd53e5229653303e556aa539) C:\Windows\system32\DRIVERS\Sftfslh.sys
21:34:27.0671 3316 Sftfs - ok
21:34:27.0811 3316 sftlist (13693b6354dd6e72dc5131da7d764b90) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
21:34:27.0873 3316 sftlist - ok
21:34:27.0905 3316 Sftplay (390aa7bc52cee43f6790cdea1e776703) C:\Windows\system32\DRIVERS\Sftplaylh.sys
21:34:27.0905 3316 Sftplay - ok
21:34:27.0920 3316 Sftredir (617e29a0b0a2807466560d4c4e338d3e) C:\Windows\system32\DRIVERS\Sftredirlh.sys
21:34:27.0920 3316 Sftredir - ok
21:34:27.0951 3316 Sftvol (8f571f016fa1976f445147e9e6c8ae9b) C:\Windows\system32\DRIVERS\Sftvollh.sys
21:34:27.0951 3316 Sftvol - ok
21:34:27.0967 3316 sftvsa (c3cddd18f43d44ab713cf8c4916f7696) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
21:34:27.0967 3316 sftvsa - ok
21:34:28.0045 3316 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
21:34:28.0061 3316 SharedAccess - ok
21:34:28.0092 3316 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
21:34:28.0107 3316 ShellHWDetection - ok
21:34:28.0139 3316 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys
21:34:28.0139 3316 SiSRaid2 - ok
21:34:28.0154 3316 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys
21:34:28.0154 3316 SiSRaid4 - ok
21:34:28.0357 3316 Skype C2C Service (0f97e7a47a52f4a36969f0fc319654c2) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
21:34:28.0435 3316 Skype C2C Service - ok
21:34:28.0513 3316 SkypeUpdate (c70aebd3608ed9fcea2a1bae83567ffc) C:\Program Files (x86)\Skype\Updater\Updater.exe
21:34:28.0513 3316 SkypeUpdate - ok
21:34:28.0653 3316 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
21:34:28.0653 3316 Smb - ok
21:34:28.0731 3316 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
21:34:28.0731 3316 SNMPTRAP - ok
21:34:28.0887 3316 SOHCImp (ddf2ec98af6fc70608a4f9ce4db52758) C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
21:34:28.0887 3316 SOHCImp - ok
21:34:28.0903 3316 SOHDs (5fa03f5ea6efef6d17b4a1a48c40a23c) C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
21:34:28.0903 3316 SOHDs - ok
21:34:28.0997 3316 SpfService (65e5659e9c2a0762d05657c0e22a7ca2) C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe
21:34:28.0997 3316 SpfService - ok
21:34:29.0028 3316 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
21:34:29.0028 3316 spldr - ok
21:34:29.0059 3316 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
21:34:29.0075 3316 Spooler - ok
21:34:29.0231 3316 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
21:34:29.0293 3316 sppsvc - ok
21:34:29.0636 3316 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
21:34:29.0636 3316 sppuinotify - ok
21:34:29.0777 3316 SRTSP (df26fa7825f9cd39fceb3f2f27e813a7) C:\Windows\system32\drivers\NISx64\1300000.080\SRTSP64.SYS
21:34:29.0777 3316 SRTSP - ok
21:34:29.0808 3316 SRTSPX (a8ade1e0092b8097ddb76c9a6dc5f193) C:\Windows\system32\drivers\NISx64\1300000.080\SRTSPX64.SYS
21:34:29.0808 3316 SRTSPX - ok
21:34:29.0855 3316 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
21:34:29.0855 3316 srv - ok
21:34:29.0886 3316 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
21:34:29.0886 3316 srv2 - ok
21:34:29.0886 3316 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
21:34:29.0901 3316 srvnet - ok
21:34:29.0948 3316 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
21:34:29.0948 3316 SSDPSRV - ok
21:34:29.0948 3316 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
21:34:29.0964 3316 SstpSvc - ok
21:34:29.0979 3316 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys
21:34:29.0979 3316 stexstor - ok
21:34:30.0042 3316 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
21:34:30.0042 3316 stisvc - ok
21:34:30.0057 3316 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
21:34:30.0057 3316 swenum - ok
21:34:30.0089 3316 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
21:34:30.0104 3316 swprv - ok
21:34:30.0198 3316 SymDS (8b2430762099598da40686f754632efd) C:\Windows\system32\drivers\NISx64\1300000.080\SYMDS64.SYS
21:34:30.0198 3316 SymDS - ok
21:34:30.0260 3316 SymEFA (f016d755aadd6a16555809d4b289497e) C:\Windows\system32\drivers\NISx64\1300000.080\SYMEFA64.SYS
21:34:30.0276 3316 SymEFA - ok
21:34:30.0307 3316 SymEvent (36b77f5c9e21f88a8c8ec67ad5415819) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
21:34:30.0307 3316 SymEvent - ok
21:34:30.0338 3316 SymIRON (321b635a0c0ff48047d37f6f078c5342) C:\Windows\system32\drivers\NISx64\1300000.080\Ironx64.SYS
21:34:30.0338 3316 SymIRON - ok
21:34:30.0354 3316 SymNetS (5ea027a364116963e37a281b1949ffd5) C:\Windows\system32\drivers\NISx64\1300000.080\SYMNETS.SYS
21:34:30.0369 3316 SymNetS - ok
21:34:30.0463 3316 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
21:34:30.0479 3316 SysMain - ok
21:34:30.0619 3316 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
21:34:30.0619 3316 TabletInputService - ok
21:34:30.0681 3316 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
21:34:30.0681 3316 TapiSrv - ok
21:34:30.0728 3316 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
21:34:30.0728 3316 TBS - ok
21:34:30.0915 3316 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
21:34:30.0947 3316 Tcpip - ok
21:34:31.0149 3316 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
21:34:31.0165 3316 TCPIP6 - ok
21:34:31.0259 3316 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
21:34:31.0259 3316 tcpipreg - ok
21:34:31.0274 3316 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
21:34:31.0274 3316 TDPIPE - ok
21:34:31.0305 3316 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
21:34:31.0305 3316 TDTCP - ok
21:34:31.0321 3316 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
21:34:31.0321 3316 tdx - ok
21:34:31.0337 3316 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\DRIVERS\termdd.sys
21:34:31.0337 3316 TermDD - ok
21:34:31.0399 3316 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
21:34:31.0399 3316 TermService - ok
21:34:31.0415 3316 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
21:34:31.0415 3316 Themes - ok
21:34:31.0446 3316 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
21:34:31.0446 3316 THREADORDER - ok
21:34:31.0477 3316 TPM (dbcc20c02e8a3e43b03c304a4e40a84f) C:\Windows\system32\drivers\tpm.sys
21:34:31.0477 3316 TPM - ok
21:34:31.0508 3316 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
21:34:31.0508 3316 TrkWks - ok
21:34:31.0555 3316 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
21:34:31.0555 3316 TrustedInstaller - ok
21:34:31.0571 3316 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
21:34:31.0571 3316 tssecsrv - ok
21:34:31.0586 3316 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
21:34:31.0586 3316 TsUsbFlt - ok
21:34:31.0617 3316 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\Windows\system32\drivers\TsUsbGD.sys
21:34:31.0617 3316 TsUsbGD - ok
21:34:31.0633 3316 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
21:34:31.0633 3316 tunnel - ok
21:34:31.0649 3316 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys
21:34:31.0649 3316 uagp35 - ok
21:34:31.0727 3316 uCamMonitor (1fe69f3c1ca1cf4b7ec7e2e9090fffdc) c:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
21:34:31.0727 3316 uCamMonitor - ok
21:34:31.0758 3316 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
21:34:31.0758 3316 udfs - ok
21:34:31.0789 3316 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
21:34:31.0789 3316 UI0Detect - ok
21:34:31.0836 3316 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
21:34:31.0836 3316 uliagpkx - ok
21:34:31.0867 3316 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
21:34:31.0867 3316 umbus - ok
21:34:31.0883 3316 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys
21:34:31.0898 3316 UmPass - ok
21:34:32.0054 3316 UNS (db641944f7e4b14c13c3fefc89843f69) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
21:34:32.0085 3316 UNS - ok
21:34:32.0195 3316 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
21:34:32.0195 3316 upnphost - ok
21:34:32.0273 3316 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\Windows\system32\Drivers\usbaapl64.sys
21:34:32.0273 3316 USBAAPL64 - ok
21:34:32.0288 3316 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
21:34:32.0288 3316 usbccgp - ok
21:34:32.0319 3316 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
21:34:32.0319 3316 usbcir - ok
21:34:32.0351 3316 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
21:34:32.0351 3316 usbehci - ok
21:34:32.0382 3316 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
21:34:32.0397 3316 usbhub - ok
21:34:32.0397 3316 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
21:34:32.0397 3316 usbohci - ok
21:34:32.0413 3316 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\drivers\usbprint.sys
21:34:32.0429 3316 usbprint - ok
21:34:32.0444 3316 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:34:32.0444 3316 USBSTOR - ok
21:34:32.0460 3316 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
21:34:32.0460 3316 usbuhci - ok
21:34:32.0491 3316 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\system32\Drivers\usbvideo.sys
21:34:32.0491 3316 usbvideo - ok
21:34:32.0522 3316 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
21:34:32.0522 3316 UxSms - ok
21:34:32.0663 3316 VAIO Event Service (203fd19d70549a2939e1ae3a36608151) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
21:34:32.0663 3316 VAIO Event Service - ok
21:34:32.0865 3316 VAIO Power Management (63dd41d4c6f5fd59beb08c88292ca76a) C:\Program Files\Sony\VAIO Power Management\SPMService.exe
21:34:32.0881 3316 VAIO Power Management - ok
21:34:32.0912 3316 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:34:32.0912 3316 VaultSvc - ok
21:34:33.0084 3316 VCFw (c642c93a30dcf1514f2c0502f864ee81) C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
21:34:33.0084 3316 VCFw - ok
21:34:33.0224 3316 VcmIAlzMgr (f9d722a62c881b59439f9fc27bc7e285) C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
21:34:33.0224 3316 VcmIAlzMgr - ok
21:34:33.0318 3316 VcmINSMgr (2f06d134554ba84fe253dbc481dcfe6d) C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe
21:34:33.0318 3316 VcmINSMgr - ok
21:34:33.0411 3316 VcmXmlIfHelper (9bc1f203c5604c24f345bcfcd6956bae) C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe
21:34:33.0411 3316 VcmXmlIfHelper - ok
21:34:33.0489 3316 VCService (b26dab275900e604f247f5a8b72cffe1) C:\Program Files\Sony\VAIO Care\VCService.exe
21:34:33.0489 3316 VCService - ok
21:34:33.0630 3316 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
21:34:33.0630 3316 vdrvroot - ok
21:34:33.0661 3316 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
21:34:33.0677 3316 vds - ok
21:34:33.0708 3316 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
21:34:33.0708 3316 vga - ok
21:34:33.0723 3316 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
21:34:33.0723 3316 VgaSave - ok
21:34:33.0755 3316 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
21:34:33.0755 3316 vhdmp - ok
21:34:33.0755 3316 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
21:34:33.0755 3316 viaide - ok
21:34:33.0833 3316 VIPAppService (f211e659aaf2d82e4dbd6ea4a8178829) C:\Program Files (x86)\Symantec\VIP Access Client\VIPAppService.exe
21:34:33.0848 3316 VIPAppService - ok
21:34:33.0926 3316 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
21:34:33.0926 3316 volmgr - ok
21:34:33.0957 3316 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
21:34:33.0973 3316 volmgrx - ok
21:34:34.0020 3316 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
21:34:34.0020 3316 volsnap - ok
21:34:34.0067 3316 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys
21:34:34.0067 3316 vsmraid - ok
21:34:34.0238 3316 VSNService (6b427ef11b77646e7e3eefb2c4870191) C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
21:34:34.0254 3316 VSNService - ok
21:34:34.0363 3316 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
21:34:34.0379 3316 VSS - ok
21:34:34.0613 3316 VUAgent (5498369d830f2d22104af518e50d8aaf) C:\Program Files\Sony\VAIO Update Common\VUAgent.exe
21:34:34.0628 3316 VUAgent - ok
21:34:34.0862 3316 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
21:34:34.0862 3316 vwifibus - ok
21:34:34.0893 3316 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
21:34:34.0893 3316 vwififlt - ok
21:34:34.0940 3316 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
21:34:34.0940 3316 vwifimp - ok
21:34:35.0018 3316 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
21:34:35.0018 3316 W32Time - ok
21:34:35.0065 3316 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys
21:34:35.0065 3316 WacomPen - ok
21:34:35.0143 3316 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:34:35.0143 3316 WANARP - ok
21:34:35.0159 3316 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:34:35.0159 3316 Wanarpv6 - ok
21:34:35.0315 3316 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
21:34:35.0330 3316 WatAdminSvc - ok
21:34:35.0408 3316 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
21:34:35.0424 3316 wbengine - ok
21:34:35.0611 3316 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
21:34:35.0611 3316 WbioSrvc - ok
21:34:35.0658 3316 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
21:34:35.0658 3316 wcncsvc - ok
21:34:35.0689 3316 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
21:34:35.0689 3316 WcsPlugInService - ok
21:34:35.0736 3316 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys
21:34:35.0736 3316 Wd - ok
21:34:35.0783 3316 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
21:34:35.0783 3316 Wdf01000 - ok
21:34:35.0829 3316 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
21:34:35.0845 3316 WdiServiceHost - ok
21:34:35.0845 3316 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
21:34:35.0845 3316 WdiSystemHost - ok
21:34:35.0876 3316 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
21:34:35.0876 3316 WebClient - ok
21:34:35.0923 3316 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
21:34:35.0923 3316 Wecsvc - ok
21:34:35.0939 3316 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
21:34:35.0954 3316 wercplsupport - ok
21:34:36.0001 3316 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
21:34:36.0001 3316 WerSvc - ok
21:34:36.0079 3316 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
21:34:36.0079 3316 WfpLwf - ok
21:34:36.0095 3316 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
21:34:36.0095 3316 WIMMount - ok
21:34:36.0126 3316 WinDefend - ok
21:34:36.0126 3316 WinHttpAutoProxySvc - ok
21:34:36.0219 3316 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
21:34:36.0235 3316 Winmgmt - ok
21:34:36.0329 3316 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
21:34:36.0360 3316 WinRM - ok
21:34:36.0485 3316 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
21:34:36.0500 3316 WinUsb - ok
21:34:36.0641 3316 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
21:34:36.0656 3316 Wlansvc - ok
21:34:36.0797 3316 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
21:34:36.0797 3316 wlcrasvc - ok
21:34:36.0999 3316 wlidsvc (2bacd71123f42cea603f4e205e1ae337) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:34:37.0031 3316 wlidsvc - ok
21:34:37.0155 3316 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
21:34:37.0155 3316 WmiAcpi - ok
21:34:37.0233 3316 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
21:34:37.0233 3316 wmiApSrv - ok
21:34:37.0265 3316 WMPNetworkSvc - ok
21:34:37.0327 3316 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
21:34:37.0327 3316 WPCSvc - ok
21:34:37.0358 3316 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
21:34:37.0358 3316 WPDBusEnum - ok
21:34:37.0405 3316 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
21:34:37.0405 3316 ws2ifsl - ok
21:34:37.0561 3316 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\system32\wscsvc.dll
21:34:37.0561 3316 wscsvc - ok
21:34:37.0561 3316 WSearch - ok
21:34:37.0733 3316 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
21:34:37.0764 3316 wuauserv - ok
21:34:37.0873 3316 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
21:34:37.0873 3316 WudfPf - ok
21:34:37.0889 3316 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
21:34:37.0889 3316 WUDFRd - ok
21:34:37.0920 3316 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
21:34:37.0920 3316 wudfsvc - ok
21:34:37.0935 3316 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
21:34:37.0951 3316 WwanSvc - ok
21:34:38.0029 3316 X6va008 - ok
21:34:38.0045 3316 X6va009 - ok
21:34:38.0076 3316 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
21:34:38.0169 3316 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - infected
21:34:38.0169 3316 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.c (0)
21:34:38.0169 3316 Boot (0x1200) (16df17afa6fa1751b352a516c034f7e3) \Device\Harddisk0\DR0\Partition0
21:34:38.0169 3316 \Device\Harddisk0\DR0\Partition0 - ok
21:34:38.0185 3316 Boot (0x1200) (760584b9473d977a36be0cb3ad4e6294) \Device\Harddisk0\DR0\Partition1
21:34:38.0185 3316 \Device\Harddisk0\DR0\Partition1 - ok
21:34:38.0185 3316 ============================================================
21:34:38.0185 3316 Scan finished
21:34:38.0185 3316 ============================================================
21:34:38.0185 3840 Detected object count: 1
21:34:38.0185 3840 Actual detected object count: 1
21:34:54.0643 3840 \Device\Harddisk0\DR0\# - copied to quarantine
21:34:54.0643 3840 \Device\Harddisk0\DR0 - copied to quarantine
21:34:54.0737 3840 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
21:34:54.0737 3840 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
21:34:54.0752 3840 \Device\Harddisk0\DR0\TDLFS\sub.dll - copied to quarantine
21:34:54.0752 3840 \Device\Harddisk0\DR0\TDLFS\subx.dll - copied to quarantine
21:34:54.0768 3840 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
21:34:54.0768 3840 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
21:34:54.0768 3840 \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
21:34:54.0768 3840 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
21:34:54.0784 3840 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
21:34:54.0784 3840 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
21:34:54.0784 3840 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
21:34:54.0784 3840 \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
21:34:54.0784 3840 \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
21:34:54.0784 3840 \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
21:34:54.0862 3840 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - will be cured on reboot
21:34:54.0924 3840 \Device\Harddisk0\DR0 - ok
21:34:55.0142 3840 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - User select action: Cure
21:35:18.0230 2052 Deinitialize success

#4 turtle0423

turtle0423
  • Topic Starter

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Local time:08:23 AM

Posted 26 July 2012 - 11:54 PM

AVAST!!! LOG

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-07-26 21:41:05
-----------------------------
21:41:05.435 OS Version: Windows x64 6.1.7601 Service Pack 1
21:41:05.435 Number of processors: 4 586 0x2A07
21:41:05.435 ComputerName: CHRISTY_KANG UserName: Christy Kang
21:41:08.025 Initialze error C0000061 - driver not loaded
21:41:49.802 AVAST engine defs: 12072602
21:41:51.908 Service scanning
21:42:23.888 Modules scanning
21:42:23.888 Disk 0 trace - called modules:
21:42:23.888
21:42:24.918 AVAST engine scan C:\Windows
21:42:27.788 AVAST engine scan C:\Windows\system32
21:44:31.715 AVAST engine scan C:\Windows\system32\drivers
21:44:43.181 AVAST engine scan C:\Users\Christy Kang
21:47:25.203 AVAST engine scan C:\ProgramData
21:49:40.284 Scan finished successfully
21:50:31.768 The log file has been saved successfully to "C:\Users\Christy Kang\Downloads\7 26 LOG.txt"

#5 turtle0423

turtle0423
  • Topic Starter

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Local time:08:23 AM

Posted 27 July 2012 - 12:48 AM

C:\FRST\Quarantine\services.exe Win64/Patched.B.Gen trojan deleted - quarantined
C:\FRST\Quarantine\{44593c15-50b0-7a27-4585-9b77e3ace328}\U\80000032.@ a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\26.07.2012_21.34.00\mbr0000\tdlfs0000\tsk0000.dta a variant of Win32/Olmarik.AYI trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\26.07.2012_21.34.00\mbr0000\tdlfs0000\tsk0001.dta Win64/Olmarik.AK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\26.07.2012_21.34.00\mbr0000\tdlfs0000\tsk0002.dta Win32/Olmarik.AYH trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\26.07.2012_21.34.00\mbr0000\tdlfs0000\tsk0003.dta Win64/Olmarik.AL trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\26.07.2012_21.34.00\mbr0000\tdlfs0000\tsk0004.dta a variant of Win32/Rootkit.Kryptik.NH trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\26.07.2012_21.34.00\mbr0000\tdlfs0000\tsk0005.dta Win64/Olmarik.AK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\26.07.2012_21.34.00\mbr0000\tdlfs0000\tsk0009.dta Win32/Olmarik.AFK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\26.07.2012_21.34.00\mbr0000\tdlfs0000\tsk0010.dta Win64/Olmarik.AK trojan cleaned by deleting - quarantined
C:\Users\Christy Kang\AppData\Local\ArcSoft\Apple\injlcofe.dll a variant of Win32/Kryptik.AIZP trojan cleaned by deleting - quarantined

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:23 AM

Posted 27 July 2012 - 09:50 AM

Run ASWMBR again and post the log

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log

#7 turtle0423

turtle0423
  • Topic Starter

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Local time:08:23 AM

Posted 27 July 2012 - 05:09 PM

AVAST LOG

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-07-27 15:04:03
-----------------------------
15:04:03.769 OS Version: Windows x64 6.1.7601 Service Pack 1
15:04:03.769 Number of processors: 4 586 0x2A07
15:04:03.769 ComputerName: CHRISTY_KANG UserName: Christy Kang
15:04:04.830 Initialze error C0000061 - driver not loaded
15:04:13.129 AVAST engine defs: 12072602
15:04:15.828 Service scanning
15:04:47.822 Modules scanning
15:04:47.822 Disk 0 trace - called modules:
15:04:47.822
15:04:50.540 AVAST engine scan C:\Windows
15:04:54.353 AVAST engine scan C:\Windows\system32
15:07:11.889 AVAST engine scan C:\Windows\system32\drivers
15:07:24.119 AVAST engine scan C:\Users\Christy Kang
15:08:29.171 The log file has been saved successfully to "C:\Users\Christy Kang\Downloads\7 27 AVAST LOG.txt"

#8 turtle0423

turtle0423
  • Topic Starter

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Local time:08:23 AM

Posted 27 July 2012 - 06:54 PM

MINITOOLBOX RESULTS

MiniToolBox by Farbar Version: 23-07-2012
Ran by Christy Kang (administrator) on 27-07-2012 at 16:52:04
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

127.0.0.1 localhost

========================= IP Configuration: ================================

Intel® Centrino® Advanced-N 6230 = Wireless Network Connection (Connected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 3 (Media disconnected)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Christy_Kang
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Bluetooth Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
Physical Address. . . . . . . . . : 88-53-2E-DD-38-B6
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : E10A06SWDL.COM
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : F0-BF-97-EC-BF-5C
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection 3:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter #2
Physical Address. . . . . . . . . : 88-53-2E-DD-38-B3
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 88-53-2E-DD-38-B3
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel® Centrino® Advanced-N 6230
Physical Address. . . . . . . . . : 88-53-2E-DD-38-B2
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::95cc:e8c2:8346:d831%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.8(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Friday, July 27, 2012 4:08:23 PM
Lease Expires . . . . . . . . . . : Saturday, July 28, 2012 4:08:23 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 243815214
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-17-1B-90-BD-88-53-2E-DD-38-B2
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{32DD4C7A-D348-4B9C-A1EA-F7A850C5A105}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:1895:743:3f57:fef7(Preferred)
Link-local IPv6 Address . . . . . : fe80::1895:743:3f57:fef7%17(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: UnKnown
Address: 192.168.1.1

Name: google.com
Addresses: 2607:f8b0:400a:800::1003
173.194.33.33
173.194.33.46
173.194.33.36
173.194.33.32
173.194.33.37
173.194.33.41
173.194.33.38
173.194.33.35
173.194.33.39
173.194.33.40
173.194.33.34


Pinging google.com [173.194.33.41] with 32 bytes of data:
Reply from 173.194.33.41: bytes=32 time=11ms TTL=55
Reply from 173.194.33.41: bytes=32 time=11ms TTL=55

Ping statistics for 173.194.33.41:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 11ms, Maximum = 11ms, Average = 11ms
Server: UnKnown
Address: 192.168.1.1

Name: yahoo.com
Addresses: 98.139.183.24
72.30.38.140
209.191.122.70


Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=33ms TTL=52
Reply from 72.30.38.140: bytes=32 time=74ms TTL=52

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 33ms, Maximum = 74ms, Average = 53ms
Server: UnKnown
Address: 192.168.1.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
16...88 53 2e dd 38 b6 ......Bluetooth Device (Personal Area Network)
14...f0 bf 97 ec bf 5c ......Realtek PCIe GBE Family Controller
13...88 53 2e dd 38 b3 ......Microsoft Virtual WiFi Miniport Adapter #2
12...88 53 2e dd 38 b3 ......Microsoft Virtual WiFi Miniport Adapter
11...88 53 2e dd 38 b2 ......Intel® Centrino® Advanced-N 6230
1...........................Software Loopback Interface 1
19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
17...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.8 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.8 281
192.168.1.8 255.255.255.255 On-link 192.168.1.8 281
192.168.1.255 255.255.255.255 On-link 192.168.1.8 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.8 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.8 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
17 58 ::/0 On-link
1 306 ::1/128 On-link
17 58 2001::/32 On-link
17 306 2001:0:4137:9e76:1895:743:3f57:fef7/128
On-link
11 281 fe80::/64 On-link
17 306 fe80::/64 On-link
17 306 fe80::1895:743:3f57:fef7/128
On-link
11 281 fe80::95cc:e8c2:8346:d831/128
On-link
1 306 ff00::/8 On-link
17 306 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 10 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 10 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (07/27/2012 04:52:12 PM) (Source: Application Error) (User: )
Description: Faulting application name: VCSystemTray.exe, version: 7.2.0.10270, time stamp: 0x4eac2a4b
Faulting module name: KERNELBASE.dll, version: 6.1.7601.17651, time stamp: 0x4e21213c
Exception code: 0xe0434352
Fault offset: 0x000000000000cacd
Faulting process id: 0x19a4
Faulting application start time: 0xVCSystemTray.exe0
Faulting application path: VCSystemTray.exe1
Faulting module path: VCSystemTray.exe2
Report Id: VCSystemTray.exe3

Error: (07/27/2012 04:52:11 PM) (Source: .NET Runtime) (User: )
Description: Application: VCSystemTray.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.Reflection.TargetInvocationException
Stack:
at System.RuntimeType.InvokeDispMethod(System.String, System.Reflection.BindingFlags, System.Object, System.Object[], Boolean[], Int32, System.String[])
at System.RuntimeType.InvokeMember(System.String, System.Reflection.BindingFlags, System.Reflection.Binder, System.Object, System.Object[], System.Reflection.ParameterModifier[], System.Globalization.CultureInfo, System.String[])
at ContactAndSupportBL.ContactAndSupportVaioUpdateLinks.FetchVaioUpdateURLs()
at ContactAndSupportBL.ContactAndSupportVaioUpdateLinks.get_SupportByProductURL()
at ContactAndSupportBL.ContactAndSupportModuleInit.AddVaioUpdateMenuLinks()
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
at System.Threading.ThreadHelper.ThreadStart()

Error: (07/27/2012 04:51:51 PM) (Source: Application Error) (User: )
Description: Faulting application name: VUAgent.exe, version: 5.6.0.10270, time stamp: 0x4ea92ef2
Faulting module name: OLEAUT32.dll, version: 6.1.7601.17676, time stamp: 0x4e587ee8
Exception code: 0xc0000005
Fault offset: 0x0000000000001353
Faulting process id: 0x78
Faulting application start time: 0xVUAgent.exe0
Faulting application path: VUAgent.exe1
Faulting module path: VUAgent.exe2
Report Id: VUAgent.exe3

Error: (07/27/2012 04:18:23 PM) (Source: CVHSVC) (User: )
Description: Information only.
Error: Initialization failed 0x80070424 Type: 88::UnexpectedError.

Error: (07/27/2012 04:08:22 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/27/2012 04:00:07 PM) (Source: Application Error) (User: )
Description: Faulting application name: VCSystemTray.exe, version: 7.2.0.10270, time stamp: 0x4eac2a4b
Faulting module name: KERNELBASE.dll, version: 6.1.7601.17651, time stamp: 0x4e21213c
Exception code: 0xe0434352
Fault offset: 0x000000000000cacd
Faulting process id: 0x1588
Faulting application start time: 0xVCSystemTray.exe0
Faulting application path: VCSystemTray.exe1
Faulting module path: VCSystemTray.exe2
Report Id: VCSystemTray.exe3

Error: (07/27/2012 04:00:07 PM) (Source: .NET Runtime) (User: )
Description: Application: VCSystemTray.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.Reflection.TargetInvocationException
Stack:
at System.RuntimeType.InvokeDispMethod(System.String, System.Reflection.BindingFlags, System.Object, System.Object[], Boolean[], Int32, System.String[])
at System.RuntimeType.InvokeMember(System.String, System.Reflection.BindingFlags, System.Reflection.Binder, System.Object, System.Object[], System.Reflection.ParameterModifier[], System.Globalization.CultureInfo, System.String[])
at ContactAndSupportBL.ContactAndSupportVaioUpdateLinks.FetchVaioUpdateURLs()
at ContactAndSupportBL.ContactAndSupportVaioUpdateLinks.get_SupportByProductURL()
at ContactAndSupportBL.ContactAndSupportModuleInit.AddVaioUpdateMenuLinks()
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
at System.Threading.ThreadHelper.ThreadStart()

Error: (07/27/2012 03:59:46 PM) (Source: Application Error) (User: )
Description: Faulting application name: VUAgent.exe, version: 5.6.0.10270, time stamp: 0x4ea92ef2
Faulting module name: OLEAUT32.dll, version: 6.1.7601.17676, time stamp: 0x4e587ee8
Exception code: 0xc0000005
Fault offset: 0x0000000000001353
Faulting process id: 0x162c
Faulting application start time: 0xVUAgent.exe0
Faulting application path: VUAgent.exe1
Faulting module path: VUAgent.exe2
Report Id: VUAgent.exe3

Error: (07/27/2012 03:21:43 PM) (Source: CVHSVC) (User: )
Description: Information only.
Error: Initialization failed 0x80070424 Type: 88::UnexpectedError.

Error: (07/27/2012 03:11:32 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (07/27/2012 04:51:54 PM) (Source: Service Control Manager) (User: )
Description: The VUAgent service terminated unexpectedly. It has done this 1 time(s).

Error: (07/27/2012 04:19:55 PM) (Source: DCOM) (User: )
Description: {E60687F7-01A1-40AA-86AC-DB1CBF673334}

Error: (07/27/2012 04:17:20 PM) (Source: Service Control Manager) (User: )
Description: The Windows Update service hung on starting.

Error: (07/27/2012 04:14:33 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the eventlog service.

Error: (07/27/2012 04:12:33 PM) (Source: Service Control Manager) (User: )
Description: The VAIO Care Performance Service service hung on starting.

Error: (07/27/2012 04:07:27 PM) (Source: DCOM) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}

Error: (07/27/2012 03:59:48 PM) (Source: Service Control Manager) (User: )
Description: The VUAgent service terminated unexpectedly. It has done this 1 time(s).

Error: (07/27/2012 03:15:53 PM) (Source: Service Control Manager) (User: )
Description: The VAIO Care Performance Service service hung on starting.

Error: (07/27/2012 03:08:03 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (07/27/2012 03:08:03 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068


Microsoft Office Sessions:
=========================
Error: (07/27/2012 04:52:12 PM) (Source: Application Error)(User: )
Description: VCSystemTray.exe7.2.0.102704eac2a4bKERNELBASE.dll6.1.7601.176514e21213ce0434352000000000000cacd19a401cd6c50e816be3bC:\Program Files\Sony\VAIO Care\VCSystemTray.exeC:\Windows\system32\KERNELBASE.dll153f03ad-d846-11e1-87ab-88532edd38b6

Error: (07/27/2012 04:52:11 PM) (Source: .NET Runtime)(User: )
Description: Application: VCSystemTray.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.Reflection.TargetInvocationException
Stack:
at System.RuntimeType.InvokeDispMethod(System.String, System.Reflection.BindingFlags, System.Object, System.Object[], Boolean[], Int32, System.String[])
at System.RuntimeType.InvokeMember(System.String, System.Reflection.BindingFlags, System.Reflection.Binder, System.Object, System.Object[], System.Reflection.ParameterModifier[], System.Globalization.CultureInfo, System.String[])
at ContactAndSupportBL.ContactAndSupportVaioUpdateLinks.FetchVaioUpdateURLs()
at ContactAndSupportBL.ContactAndSupportVaioUpdateLinks.get_SupportByProductURL()
at ContactAndSupportBL.ContactAndSupportModuleInit.AddVaioUpdateMenuLinks()
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
at System.Threading.ThreadHelper.ThreadStart()

Error: (07/27/2012 04:51:51 PM) (Source: Application Error)(User: )
Description: VUAgent.exe5.6.0.102704ea92ef2OLEAUT32.dll6.1.7601.176764e587ee8c000000500000000000013537801cd6c4db581566eC:\Program Files\Sony\VAIO Update Common\VUAgent.exeC:\Windows\system32\OLEAUT32.dll09000f64-d846-11e1-87ab-88532edd38b6

Error: (07/27/2012 04:18:23 PM) (Source: CVHSVC)(User: )
Description: Error: Initialization failed 0x80070424 Type: 88::UnexpectedError.

Error: (07/27/2012 04:08:22 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/27/2012 04:00:07 PM) (Source: Application Error)(User: )
Description: VCSystemTray.exe7.2.0.102704eac2a4bKERNELBASE.dll6.1.7601.176514e21213ce0434352000000000000cacd158801cd6c487aba7fa1C:\Program Files\Sony\VAIO Care\VCSystemTray.exeC:\Windows\system32\KERNELBASE.dllceba0752-d83e-11e1-a427-88532edd38b6

Error: (07/27/2012 04:00:07 PM) (Source: .NET Runtime)(User: )
Description: Application: VCSystemTray.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.Reflection.TargetInvocationException
Stack:
at System.RuntimeType.InvokeDispMethod(System.String, System.Reflection.BindingFlags, System.Object, System.Object[], Boolean[], Int32, System.String[])
at System.RuntimeType.InvokeMember(System.String, System.Reflection.BindingFlags, System.Reflection.Binder, System.Object, System.Object[], System.Reflection.ParameterModifier[], System.Globalization.CultureInfo, System.String[])
at ContactAndSupportBL.ContactAndSupportVaioUpdateLinks.FetchVaioUpdateURLs()
at ContactAndSupportBL.ContactAndSupportVaioUpdateLinks.get_SupportByProductURL()
at ContactAndSupportBL.ContactAndSupportModuleInit.AddVaioUpdateMenuLinks()
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
at System.Threading.ThreadHelper.ThreadStart()

Error: (07/27/2012 03:59:46 PM) (Source: Application Error)(User: )
Description: VUAgent.exe5.6.0.102704ea92ef2OLEAUT32.dll6.1.7601.176764e587ee8c00000050000000000001353162c01cd6c45cfbf6afcC:\Program Files\Sony\VAIO Update Common\VUAgent.exeC:\Windows\system32\OLEAUT32.dllc1ea8319-d83e-11e1-a427-88532edd38b6

Error: (07/27/2012 03:21:43 PM) (Source: CVHSVC)(User: )
Description: Error: Initialization failed 0x80070424 Type: 88::UnexpectedError.

Error: (07/27/2012 03:11:32 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


=========================== Installed Programs ============================

Adobe Flash Player 11 ActiveX (Version: 11.3.300.268)
Adobe Flash Player 11 Plugin (Version: 11.3.300.268)
Adobe Reader X MUI (Version: 10.0.0)
Alps Pointing-device for VAIO
AMD APP SDK Runtime (Version: 2.4.650.9)
AMD Media Foundation Decoders (Version: 1.0.61011.0701)
Apple Application Support (Version: 2.1.9)
Apple Mobile Device Support (Version: 5.2.0.6)
Apple Software Update (Version: 2.1.3.127)
Application Manager for VAIO
ArcSoft Magic-i Visual Effects 2 (Version: 2.0.1.154)
ArcSoft WebCam Companion 4 (Version: 4.0.21.484)
ATI Catalyst Install Manager (Version: 3.0.829.0)
Audition (Version: 1.00.0000)
Bing Bar (Version: 7.0.831.0)
Bonjour (Version: 3.0.0.10)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center (Version: 2011.1011.657.10569)
Catalyst Control Center Graphics Previews Common (Version: 2011.1011.657.10569)
Catalyst Control Center InstallProxy (Version: 2011.1011.657.10569)
Catalyst Control Center Localization All (Version: 2011.1011.657.10569)
Catalyst Control Center Profiles Mobile (Version: 2011.1011.657.10569)
ccc-utility64 (Version: 2011.1011.657.10569)
CCC Help Chinese Standard (Version: 2011.1011.0656.10569)
CCC Help Chinese Traditional (Version: 2011.1011.0656.10569)
CCC Help Czech (Version: 2011.1011.0656.10569)
CCC Help Danish (Version: 2011.1011.0656.10569)
CCC Help Dutch (Version: 2011.1011.0656.10569)
CCC Help English (Version: 2011.1011.0656.10569)
CCC Help Finnish (Version: 2011.1011.0656.10569)
CCC Help French (Version: 2011.1011.0656.10569)
CCC Help German (Version: 2011.1011.0656.10569)
CCC Help Greek (Version: 2011.1011.0656.10569)
CCC Help Hungarian (Version: 2011.1011.0656.10569)
CCC Help Italian (Version: 2011.1011.0656.10569)
CCC Help Japanese (Version: 2011.1011.0656.10569)
CCC Help Korean (Version: 2011.1011.0656.10569)
CCC Help Norwegian (Version: 2011.1011.0656.10569)
CCC Help Polish (Version: 2011.1011.0656.10569)
CCC Help Portuguese (Version: 2011.1011.0656.10569)
CCC Help Russian (Version: 2011.1011.0656.10569)
CCC Help Spanish (Version: 2011.1011.0656.10569)
CCC Help Swedish (Version: 2011.1011.0656.10569)
CCC Help Thai (Version: 2011.1011.0656.10569)
CCC Help Turkish (Version: 2011.1011.0656.10569)
CCleaner (Version: 3.20)
Cobian Backup 10
D3DX10 (Version: 15.4.2368.0902)
ESET Online Scanner v3
Evernote v. 4.5 (Version: 4.5.0.5229)
FDUx86 (Version: 1.0.0)
Intel PROSet Wireless
Intel® Display Audio Driver (Version: 6.14.00.3074)
Intel® Identity Protection Technology 1.1.2.0 (Version: 1.1.2.0)
Intel® Management Engine Components (Version: 7.0.0.1144)
Intel® PROSet/Wireless for Bluetooth® 3.0 + High Speed (Version: 1.1.0.0157)
Intel® PROSet/Wireless Software for Bluetooth® Technology (Version: 1.1.1.0581)
Intel® PROSet/Wireless WiFi Software (Version: 14.01.1000)
Intel® Rapid Storage Technology (Version: 10.6.0.1002)
iTunes (Version: 10.6.3.25)
Java Auto Updater (Version: 2.0.6.1)
Java™ 6 Update 27 (64-bit) (Version: 6.0.270)
Java™ 6 Update 27 (Version: 6.0.270)
Junk Mail filter update (Version: 15.4.3502.0922)
Keyboard Shortcuts (Version: 1.1.0.08290)
KUx86 (Version: 1.0.0)
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
Media Gallery (Version: 1.5.4.09210)
Media Go (Version: 2.0.317)
Mesh Runtime (Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office Starter 2010 - English (Version: 14.0.5139.5005)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft SQL Server Compact 3.5 SP2 ENU (Version: 3.5.8080.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP3 Parser (KB2721691) (Version: 4.30.2114.0)
MSXML 4.0 SP3 Parser (KB973685) (Version: 4.30.2107.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
Norton Internet Security (Version: 19.0.0.128)
Oasis2Service (Version: 1.0.1)
OOBE (Version: 12.1.1.2)
PlayReady PC Runtime amd64 (Version: 1.3.0)
PlayStation®Network Downloader (Version: 2.07.00849)
PlayStation®Store (Version: 4.5.15.13232)
PMB (Version: 5.8.02.10270)
PMB VAIO Edition Plug-in (Version: 1.7.00.10100)
PX Profile Update (Version: 1.00.1.)
Quick Web Access (Version: 1.4.8.1)
Reader for PC (Version: 1.1.02.10070)
Realtek Ethernet Controller Driver (Version: 7.40.126.2011)
Realtek High Definition Audio Driver (Version: 6.0.1.6225)
Realtek PCIE Card Reader (Version: 6.1.7601.82)
Remote Keyboard (Version: 1.2.0.09270)
Remote Play with PlayStation®3 (Version: 1.1.0.21090)
Renesas Electronics USB 3.0 Host Controller Driver (Version: 2.1.16.0)
Skype Click to Call (Version: 6.1.10441)
Skype™ 5.9 (Version: 5.9.123)
SSLx64 (Version: 1.0.0)
SSLx86 (Version: 1.0.0)
TrackID™ with BRAVIA (Version: 1.2.0.09270)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
VAIO - Media Gallery (Version: 1.5.4.09210)
VAIO - PMB VAIO Edition Guide (Version: 1.7.00.10100)
VAIO - PMB VAIO Edition Plug-in (Version: 1.7.00.10100)
VAIO - Remote Keyboard (Version: 1.2.0.09270)
VAIO - Remote Keyboard with PlayStation®3 (Version: 1.2.0.09210)
VAIO - Remote Play with PlayStation®3 (Version: 1.1.0.21090)
VAIO - TrackID™ with BRAVIA (Version: 1.2.0.09270)
VAIO Care (Version: 6.3.0.09020)
VAIO Care (Version: 7.2.0.10310)
VAIO Control Center (Version: 5.1.3.12120)
VAIO CPU Fan Diagnostic (Version: 1.1.0.09200)
VAIO Data Restore Tool (Version: 1.8.0.09210)
VAIO Easy Connect (Version: 1.1.1.12200)
VAIO Gate (Version: 2.4.1.09230)
VAIO Gate Default (Version: 2.5.1.09230)
VAIO Help and Support (Version: 16.00.1011)
VAIO Improvement (Version: 1.2.0.09270)
VAIO Manual (Version: 1.5.0.09200)
VAIO Messenger (Version: 2.0.424.0)
VAIO Sample Contents (Version: 1.4.0.09010)
VAIO Satisfaction Survey. (Version: 3.0)
VAIO Smart Network (Version: 3.10.0.09300)
VAIO Transfer Support (Version: 1.6.0.09220)
VAIO Update (Version: 5.6.0.10270)
VAIO Update Merge Module x64 (Version: 5.6.10270)
VCCx64 (Version: 1.0.0)
VCCx86 (Version: 1.0.0)
VHD (Version: 1.0.0)
VIP Access (Version: 2.0.2.141)
VIx64 (Version: 1.0.0)
VIx86 (Version: 1.0.0)
VMLx86 (Version: 1.0.0)
VPMx64 (Version: 1.0.0)
VSNx64 (Version: 1.0.0)
VSNx86 (Version: 1.0.0)
VSSTx64 (Version: 1.0.0)
VSSTx86 (Version: 1.0.0)
VU5x64 (Version: 1.0.0)
VU5x86 (Version: 1.0.0)
VWSTx86 (Version: 1.0.0)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3538.0513)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3538.0513)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)

========================= Memory info: ===================================

Percentage of memory in use: 51%
Total physical RAM: 4011.86 MB
Available physical RAM: 1935.09 MB
Total Pagefile: 8021.91 MB
Available Pagefile: 4961 MB
Total Virtual: 4095.88 MB
Available Virtual: 3953.44 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:451.78 GB) (Free:406.16 GB) NTFS
2 Drive d: () (Removable) (Total:1.81 GB) (Free:1.21 GB) FAT

========================= Users: ========================================

User accounts for \\CHRISTY_KANG

Administrator Christy Kang Guest


**** End of log ****

#9 turtle0423

turtle0423
  • Topic Starter

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Local time:08:23 AM

Posted 27 July 2012 - 06:55 PM

FSS LOG

Farbar Service Scanner Version: 26-07-2012
Ran by Christy Kang (administrator) on 27-07-2012 at 16:55:09
Running from "C:\Users\Christy Kang\Desktop"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============
BITS Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to retrieve start type of BITS. The value does not exist.
The ImagePath of BITS service is OK.
The ServiceDll of BITS service is OK.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

Other Services:
==============

sharedaccess Service is not running. Checking service configuration:
The start type of sharedaccess service is set to Auto
The ImagePath of sharedaccess service is OK.
The ServiceDll of sharedaccess service is OK.


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

#10 turtle0423

turtle0423
  • Topic Starter

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Local time:08:23 AM

Posted 27 July 2012 - 07:02 PM

# AdwCleaner v1.703 - Logfile created 07/27/2012 at 16:58:28
# Updated 20/07/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Christy Kang - CHRISTY_KANG
# Running from : C:\Users\Christy Kang\Downloads\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\Users\Christy Kang\AppData\Local\Wajam
Folder Deleted : C:\Users\Christy Kang\AppData\LocalLow\BabylonToolbar
Folder Deleted : C:\Users\Christy Kang\AppData\LocalLow\Playbryte
Folder Deleted : C:\Users\Christy Kang\AppData\Roaming\Babylon
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\Tarma Installer
Folder Deleted : C:\Program Files (x86)\Playbryte
Folder Deleted : C:\Program Files (x86)\Wajam
File Deleted : C:\Users\Public\Desktop\eBay.lnk

***** [Registry] *****


***** [Registre - GUID] *****

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{7D86A08B-0A8F-4BE0-B693-F05E6947E780}

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

*************************

AdwCleaner[R1].txt - [1243 octets] - [27/07/2012 16:57:56]
AdwCleaner[S1].txt - [1194 octets] - [27/07/2012 16:58:28]

########## EOF - C:\AdwCleaner[S1].txt - [1322 octets] ##########

#11 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:23 AM

Posted 28 July 2012 - 12:08 AM

ASWMBR log is incomplete.Can you run it in safemode?

#12 turtle0423

turtle0423
  • Topic Starter

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Local time:08:23 AM

Posted 29 July 2012 - 04:22 AM

^ that was in safe mode actually.... do you want me to run it in regular mode???

#13 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:23 AM

Posted 29 July 2012 - 05:41 AM

Yes please




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users