Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Java Exploit CVE-2012-0507


  • Please log in to reply
7 replies to this topic

#1 skypilotpete

skypilotpete

  • Members
  • 51 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Adelaide, South Australia
  • Local time:02:06 AM

Posted 15 August 2012 - 07:43 PM

A couple of days ago, on doing a routine full scan with MSE, I discovered that I several Java Exploit CVE-2012-0507 malicious applets in the Java temporary folders. I had never heard of this before and did some Googling. What I found suggests that these applets are used as back doors for other potentially more serious malware. This leads me to worry that, even though I seem to have got rid of the Java Exploit, can I be sure that there's not something more serious lurking in the background that hasn't revealed itself yet. I have listed the steps I have taken so far and I hope that someone will take the time to tell me if there is anything more I should be doing in this situation.

1) Updated to latest version of Java and uninstalled old versions.
2) Disabled Java in Firefox. Will only use IE if an absolutely essential web page requires Java.
3) Included Java in the CCleaner settings.
4) Replaced Superantispyware Pro with Malwarebytes Pro as resident anti-spyware
5) Did 3 complete scans with Malwarebytes - one in safe mode
6) Did 2 complete scans with Superantispyware - one in safe mode
7) Did 3 complete scans with Microsoft Security Essentials - one in safe mode
8) Did 2 complete scans with Hitman Pro 3.5, Panda Activescan and Eset Free Online Scanner.

Everything is now showing my system as clean. Is there anything more I should do?

I run Windows 7 64 Home Premium.
Malwarebytes Pro, Microsoft Security Essentials, Online Armor Premium, Spywareblaster

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:36 AM

Posted 15 August 2012 - 08:01 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 skypilotpete

skypilotpete
  • Topic Starter

  • Members
  • 51 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Adelaide, South Australia
  • Local time:02:06 AM

Posted 15 August 2012 - 11:27 PM

Thanks for your instructions. I have posted the suggested logs below. The online ESET scan came up with the message "No threats found" and did not give me any option to save a log, and obviously there was no list of found threats to click on. I have copied in the text from the ESET scan results window at the end of this post.

TDSKILLER LOG:

10:44:14.0930 4784 TDSS rootkit removing tool 2.8.6.0 Aug 13 2012 17:24:05
10:44:15.0250 4784 ============================================================
10:44:15.0250 4784 Current date / time: 2012/08/16 10:44:15.0250
10:44:15.0250 4784 SystemInfo:
10:44:15.0250 4784
10:44:15.0262 4784 OS Version: 6.1.7601 ServicePack: 1.0
10:44:15.0262 4784 Product type: Workstation
10:44:15.0262 4784 ComputerName: Q6600
10:44:15.0263 4784 UserName: Administrator 2
10:44:15.0263 4784 Windows directory: C:\Windows
10:44:15.0263 4784 System windows directory: C:\Windows
10:44:15.0263 4784 Running under WOW64
10:44:15.0263 4784 Processor architecture: Intel x64
10:44:15.0263 4784 Number of processors: 4
10:44:15.0263 4784 Page size: 0x1000
10:44:15.0263 4784 Boot type: Normal boot
10:44:15.0263 4784 ============================================================
10:44:17.0248 4784 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:44:17.0254 4784 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:44:17.0260 4784 ============================================================
10:44:17.0260 4784 \Device\Harddisk0\DR0:
10:44:17.0260 4784 MBR partitions:
10:44:17.0262 4784 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3A385000
10:44:17.0262 4784 \Device\Harddisk1\DR1:
10:44:17.0262 4784 MBR partitions:
10:44:17.0262 4784 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705800
10:44:17.0262 4784 ============================================================
10:44:17.0272 4784 C: <-> \Device\Harddisk0\DR0\Partition1
10:44:17.0277 4784 D: <-> \Device\Harddisk1\DR1\Partition1
10:44:17.0278 4784 ============================================================
10:44:17.0278 4784 Initialize success
10:44:17.0278 4784 ============================================================
10:45:08.0182 4844 ============================================================
10:45:08.0182 4844 Scan started
10:45:08.0182 4844 Mode: Manual; TDLFS;
10:45:08.0182 4844 ============================================================
10:45:08.0430 4844 ================ Scan services =============================
10:45:08.0515 4844 [ 7d9d615201a483d6fa99491c2e655a5a ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
10:45:08.0516 4844 !SASCORE - ok
10:45:08.0639 4844 [ a87d604aea360176311474c87a63bb88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
10:45:08.0642 4844 1394ohci - ok
10:45:08.0677 4844 [ d81d9e70b8a6dd14d42d7b4efa65d5f2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
10:45:08.0682 4844 ACPI - ok
10:45:08.0710 4844 [ 99f8e788246d495ce3794d7e7821d2ca ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
10:45:08.0711 4844 AcpiPmi - ok
10:45:08.0757 4844 [ d44bcaf639e4e45307c2bc80715273d5 ] adfs C:\Windows\system32\drivers\adfs.sys
10:45:08.0760 4844 adfs - ok
10:45:08.0874 4844 [ 9444a3530c2e88b7ed96a566ff9ccc13 ] Adobe Version Cue CS4 C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe
10:45:08.0881 4844 Adobe Version Cue CS4 - ok
10:45:08.0932 4844 [ 2f6b34b83843f0c5118b63ac634f5bf4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
10:45:08.0947 4844 adp94xx - ok
10:45:08.0985 4844 [ 597f78224ee9224ea1a13d6350ced962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
10:45:08.0990 4844 adpahci - ok
10:45:09.0002 4844 [ e109549c90f62fb570b9540c4b148e54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
10:45:09.0006 4844 adpu320 - ok
10:45:09.0032 4844 [ 4b78b431f225fd8624c5655cb1de7b61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
10:45:09.0034 4844 AeLookupSvc - ok
10:45:09.0085 4844 [ 1c7857b62de5994a75b054a9fd4c3825 ] AFD C:\Windows\system32\drivers\afd.sys
10:45:09.0109 4844 AFD - ok
10:45:09.0137 4844 [ 608c14dba7299d8cb6ed035a68a15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
10:45:09.0139 4844 agp440 - ok
10:45:09.0156 4844 [ 3290d6946b5e30e70414990574883ddb ] ALG C:\Windows\System32\alg.exe
10:45:09.0159 4844 ALG - ok
10:45:09.0170 4844 [ 5812713a477a3ad7363c7438ca2ee038 ] aliide C:\Windows\system32\drivers\aliide.sys
10:45:09.0171 4844 aliide - ok
10:45:09.0181 4844 [ 1ff8b4431c353ce385c875f194924c0c ] amdide C:\Windows\system32\drivers\amdide.sys
10:45:09.0182 4844 amdide - ok
10:45:09.0199 4844 [ 7024f087cff1833a806193ef9d22cda9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
10:45:09.0201 4844 AmdK8 - ok
10:45:09.0216 4844 [ 1e56388b3fe0d031c44144eb8c4d6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
10:45:09.0217 4844 AmdPPM - ok
10:45:09.0244 4844 [ d4121ae6d0c0e7e13aa221aa57ef2d49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
10:45:09.0246 4844 amdsata - ok
10:45:09.0271 4844 [ f67f933e79241ed32ff46a4f29b5120b ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
10:45:09.0275 4844 amdsbs - ok
10:45:09.0286 4844 [ 540daf1cea6094886d72126fd7c33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
10:45:09.0287 4844 amdxata - ok
10:45:09.0340 4844 [ 147866af11f5eab84c52436c9cae3693 ] AnyDVD C:\Windows\system32\Drivers\AnyDVD.sys
10:45:09.0342 4844 AnyDVD - ok
10:45:09.0377 4844 [ 89a69c3f2f319b43379399547526d952 ] AppID C:\Windows\system32\drivers\appid.sys
10:45:09.0379 4844 AppID - ok
10:45:09.0391 4844 [ 0bc381a15355a3982216f7172f545de1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
10:45:09.0392 4844 AppIDSvc - ok
10:45:09.0414 4844 [ 3977d4a871ca0d4f2ed1e7db46829731 ] Appinfo C:\Windows\System32\appinfo.dll
10:45:09.0415 4844 Appinfo - ok
10:45:09.0477 4844 [ 7ef47644b74ebe721cc32211d3c35e76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
10:45:09.0480 4844 Apple Mobile Device - ok
10:45:09.0537 4844 [ 0eeff7103e4f3e783f3d2b870af67f1c ] appliand C:\Windows\system32\DRIVERS\appliand.sys
10:45:09.0540 4844 appliand - ok
10:45:09.0559 4844 [ 0eeff7103e4f3e783f3d2b870af67f1c ] appliandMP C:\Windows\system32\DRIVERS\appliand.sys
10:45:09.0559 4844 appliandMP - ok
10:45:09.0571 4844 [ c484f8ceb1717c540242531db7845c4e ] arc C:\Windows\system32\DRIVERS\arc.sys
10:45:09.0574 4844 arc - ok
10:45:09.0582 4844 [ 019af6924aefe7839f61c830227fe79c ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
10:45:09.0585 4844 arcsas - ok
10:45:09.0671 4844 [ 9217d874131ae6ff8f642f124f00a555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
10:45:09.0686 4844 aspnet_state - ok
10:45:09.0714 4844 [ 769765ce2cc62867468cea93969b2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
10:45:09.0715 4844 AsyncMac - ok
10:45:09.0736 4844 [ 02062c0b390b7729edc9e69c680a6f3c ] atapi C:\Windows\system32\drivers\atapi.sys
10:45:09.0737 4844 atapi - ok
10:45:09.0779 4844 [ f23fef6d569fce88671949894a8becf1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
10:45:09.0782 4844 AudioEndpointBuilder - ok
10:45:09.0804 4844 [ f23fef6d569fce88671949894a8becf1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
10:45:09.0807 4844 AudioSrv - ok
10:45:09.0846 4844 [ a6bf31a71b409dfa8cac83159e1e2aff ] AxInstSV C:\Windows\System32\AxInstSV.dll
10:45:09.0849 4844 AxInstSV - ok
10:45:09.0884 4844 [ 3e5b191307609f7514148c6832bb0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
10:45:09.0899 4844 b06bdrv - ok
10:45:09.0929 4844 [ b5ace6968304a3900eeb1ebfd9622df2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
10:45:09.0934 4844 b57nd60a - ok
10:45:09.0970 4844 [ fde360167101b4e45a96f939f388aeb0 ] BDESVC C:\Windows\System32\bdesvc.dll
10:45:09.0972 4844 BDESVC - ok
10:45:09.0980 4844 [ 16a47ce2decc9b099349a5f840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
10:45:09.0981 4844 Beep - ok
10:45:10.0034 4844 [ 82974d6a2fd19445cc5171fc378668a4 ] BFE C:\Windows\System32\bfe.dll
10:45:10.0057 4844 BFE - ok
10:45:10.0082 4844 [ 1ea7969e3271cbc59e1730697dc74682 ] BITS C:\Windows\System32\qmgr.dll
10:45:10.0166 4844 BITS - ok
10:45:10.0186 4844 [ 61583ee3c3a17003c4acd0475646b4d3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
10:45:10.0189 4844 blbdrive - ok
10:45:10.0257 4844 [ ebbcd5dfbb1de70e8f4af8fa59e401fd ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
10:45:10.0260 4844 Bonjour Service - ok
10:45:10.0297 4844 [ 6c02a83164f5cc0a262f4199f0871cf5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
10:45:10.0300 4844 bowser - ok
10:45:10.0314 4844 [ f09eee9edc320b5e1501f749fde686c8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
10:45:10.0315 4844 BrFiltLo - ok
10:45:10.0325 4844 [ b114d3098e9bdb8bea8b053685831be6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
10:45:10.0326 4844 BrFiltUp - ok
10:45:10.0352 4844 [ 05f5a0d14a2ee1d8255c2aa0e9e8e694 ] Browser C:\Windows\System32\browser.dll
10:45:10.0354 4844 Browser - ok
10:45:10.0367 4844 [ 43bea8d483bf1870f018e2d02e06a5bd ] Brserid C:\Windows\System32\Drivers\Brserid.sys
10:45:10.0372 4844 Brserid - ok
10:45:10.0384 4844 [ a6eca2151b08a09caceca35c07f05b42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
10:45:10.0386 4844 BrSerWdm - ok
10:45:10.0395 4844 [ b79968002c277e869cf38bd22cd61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
10:45:10.0396 4844 BrUsbMdm - ok
10:45:10.0400 4844 [ a87528880231c54e75ea7a44943b38bf ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
10:45:10.0401 4844 BrUsbSer - ok
10:45:10.0414 4844 [ 9da669f11d1f894ab4eb69bf546a42e8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
10:45:10.0415 4844 BTHMODEM - ok
10:45:10.0437 4844 [ 95f9c2976059462cbbf227f7aab10de9 ] bthserv C:\Windows\system32\bthserv.dll
10:45:10.0440 4844 bthserv - ok
10:45:10.0461 4844 [ b8bd2bb284668c84865658c77574381a ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
10:45:10.0464 4844 cdfs - ok
10:45:10.0499 4844 [ f036ce71586e93d94dab220d7bdf4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
10:45:10.0501 4844 cdrom - ok
10:45:10.0536 4844 [ f17d1d393bbc69c5322fbfafaca28c7f ] CertPropSvc C:\Windows\System32\certprop.dll
10:45:10.0537 4844 CertPropSvc - ok
10:45:10.0542 4844 [ d7cd5c4e1b71fa62050515314cfb52cf ] circlass C:\Windows\system32\DRIVERS\circlass.sys
10:45:10.0544 4844 circlass - ok
10:45:10.0582 4844 [ ff60401f1c659ca2ed4bae85d3fd14da ] CISVC C:\Windows\system32\CISVC.EXE
10:45:10.0584 4844 CISVC - ok
10:45:10.0597 4844 [ fe1ec06f2253f691fe36217c592a0206 ] CLFS C:\Windows\system32\CLFS.sys
10:45:10.0604 4844 CLFS - ok
10:45:10.0647 4844 [ d88040f816fda31c3b466f0fa0918f29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:45:10.0652 4844 clr_optimization_v2.0.50727_32 - ok
10:45:10.0682 4844 [ d1ceea2b47cb998321c579651ce3e4f8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
10:45:10.0694 4844 clr_optimization_v2.0.50727_64 - ok
10:45:10.0754 4844 [ c5a75eb48e2344abdc162bda79e16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:45:10.0851 4844 clr_optimization_v4.0.30319_32 - ok
10:45:10.0869 4844 [ c6f9af94dcd58122a4d7e89db6bed29d ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
10:45:10.0874 4844 clr_optimization_v4.0.30319_64 - ok
10:45:10.0892 4844 [ 0840155d0bddf1190f84a663c284bd33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
10:45:10.0894 4844 CmBatt - ok
10:45:10.0922 4844 [ e19d3f095812725d88f9001985b94edd ] cmdide C:\Windows\system32\drivers\cmdide.sys
10:45:10.0924 4844 cmdide - ok
10:45:10.0977 4844 [ 62b8ec0cb4c2e4afb2207e5a8dde48dc ] cmudaxp C:\Windows\system32\drivers\cmudaxp.sys
10:45:11.0012 4844 cmudaxp - ok
10:45:11.0049 4844 [ 9ac4f97c2d3e93367e2148ea940cd2cd ] CNG C:\Windows\system32\Drivers\cng.sys
10:45:11.0056 4844 CNG - ok
10:45:11.0071 4844 [ 102de219c3f61415f964c88e9085ad14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
10:45:11.0072 4844 Compbatt - ok
10:45:11.0136 4844 [ 59d203c3f46f3ca536ecac0e084cd887 ] CompFilter64 C:\Windows\system32\DRIVERS\lvbflt64.sys
10:45:11.0144 4844 CompFilter64 - ok
10:45:11.0187 4844 [ 03edb043586cceba243d689bdda370a8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
10:45:11.0189 4844 CompositeBus - ok
10:45:11.0205 4844 COMSysApp - ok
10:45:11.0272 4844 [ 3ca734ce373e5675fbc15ca2c45228e5 ] cpudrv64 C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys
10:45:11.0274 4844 cpudrv64 - ok
10:45:11.0326 4844 [ 95c88d25e211a4d52a82c53e5d93e634 ] cpuz133 C:\Windows\system32\drivers\cpuz133_x64.sys
10:45:11.0327 4844 cpuz133 - ok
10:45:11.0357 4844 [ 17719a7f571d4cd08223f0b30f71b8b8 ] cpuz134 C:\Windows\system32\drivers\cpuz134_x64.sys
10:45:11.0359 4844 cpuz134 - ok
10:45:11.0362 4844 [ 1c827878a998c18847245fe1f34ee597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
10:45:11.0364 4844 crcdisk - ok
10:45:11.0399 4844 [ 4f5414602e2544a4554d95517948b705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
10:45:11.0400 4844 CryptSvc - ok
10:45:11.0449 4844 [ 1ca90212a99db6975c344826d11055c9 ] dc3d C:\Windows\system32\DRIVERS\dc3d.sys
10:45:11.0450 4844 dc3d - ok
10:45:11.0484 4844 [ 5c627d1b1138676c0a7ab2c2c190d123 ] DcomLaunch C:\Windows\system32\rpcss.dll
10:45:11.0489 4844 DcomLaunch - ok
10:45:11.0532 4844 [ 3cec7631a84943677aa8fa8ee5b6b43d ] defragsvc C:\Windows\System32\defragsvc.dll
10:45:11.0537 4844 defragsvc - ok
10:45:11.0570 4844 [ 9bb2ef44eaa163b29c4a4587887a0fe4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
10:45:11.0572 4844 DfsC - ok
10:45:11.0609 4844 [ 113212d25d0c9bb8901a9833774da97f ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
10:45:11.0619 4844 dg_ssudbus - ok
10:45:11.0660 4844 [ 43d808f5d9e1a18e5eeb5ebc83969e4e ] Dhcp C:\Windows\system32\dhcpcore.dll
10:45:11.0665 4844 Dhcp - ok
10:45:11.0681 4844 [ 13096b05847ec78f0977f2c0f79e9ab3 ] discache C:\Windows\system32\drivers\discache.sys
10:45:11.0682 4844 discache - ok
10:45:11.0710 4844 [ 9819eee8b5ea3784ec4af3b137a5244c ] Disk C:\Windows\system32\DRIVERS\disk.sys
10:45:11.0712 4844 Disk - ok
10:45:11.0745 4844 [ 16835866aaa693c7d7fceba8fff706e4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
10:45:11.0747 4844 Dnscache - ok
10:45:11.0774 4844 [ b1fb3ddca0fdf408750d5843591afbc6 ] dot3svc C:\Windows\System32\dot3svc.dll
10:45:11.0779 4844 dot3svc - ok
10:45:11.0806 4844 [ b26f4f737e8f9df4f31af6cf31d05820 ] DPS C:\Windows\system32\dps.dll
10:45:11.0810 4844 DPS - ok
10:45:11.0831 4844 [ 9b19f34400d24df84c858a421c205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
10:45:11.0832 4844 drmkaud - ok
10:45:11.0870 4844 [ f5bee30450e18e6b83a5012c100616fd ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
10:45:11.0895 4844 DXGKrnl - ok
10:45:11.0915 4844 [ e2dda8726da9cb5b2c4000c9018a9633 ] EapHost C:\Windows\System32\eapsvc.dll
10:45:11.0917 4844 EapHost - ok
10:45:11.0984 4844 [ dc5d737f51be844d8c82c695eb17372f ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
10:45:12.0045 4844 ebdrv - ok
10:45:12.0070 4844 [ c118a82cd78818c29ab228366ebf81c3 ] EFS C:\Windows\System32\lsass.exe
10:45:12.0072 4844 EFS - ok
10:45:12.0135 4844 [ 9387a484d31209d7fc3f795a787294db ] ElbyCDFL C:\Windows\system32\Drivers\ElbyCDFL.sys
10:45:12.0136 4844 ElbyCDFL - ok
10:45:12.0177 4844 [ a05fc7eca0966ebb70e4d17b855a853b ] ElbyCDIO C:\Windows\system32\Drivers\ElbyCDIO.sys
10:45:12.0190 4844 ElbyCDIO - ok
10:45:12.0219 4844 [ 0e5da5369a0fcaea12456dd852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
10:45:12.0232 4844 elxstor - ok
10:45:12.0242 4844 [ 34a3c54752046e79a126e15c51db409b ] ErrDev C:\Windows\system32\drivers\errdev.sys
10:45:12.0242 4844 ErrDev - ok
10:45:12.0271 4844 [ 4166f82be4d24938977dd1746be9b8a0 ] EventSystem C:\Windows\system32\es.dll
10:45:12.0277 4844 EventSystem - ok
10:45:12.0291 4844 [ a510c654ec00c1e9bdd91eeb3a59823b ] exfat C:\Windows\system32\drivers\exfat.sys
10:45:12.0295 4844 exfat - ok
10:45:12.0307 4844 [ 0adc83218b66a6db380c330836f3e36d ] fastfat C:\Windows\system32\drivers\fastfat.sys
10:45:12.0311 4844 fastfat - ok
10:45:12.0324 4844 [ d765d19cd8ef61f650c384f62fac00ab ] fdc C:\Windows\system32\DRIVERS\fdc.sys
10:45:12.0326 4844 fdc - ok
10:45:12.0341 4844 [ 0438cab2e03f4fb61455a7956026fe86 ] fdPHost C:\Windows\system32\fdPHost.dll
10:45:12.0342 4844 fdPHost - ok
10:45:12.0355 4844 [ 802496cb59a30349f9a6dd22d6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
10:45:12.0357 4844 FDResPub - ok
10:45:12.0371 4844 [ 655661be46b5f5f3fd454e2c3095b930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
10:45:12.0372 4844 FileInfo - ok
10:45:12.0389 4844 [ 5f671ab5bc87eea04ec38a6cd5962a47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
10:45:12.0390 4844 Filetrace - ok
10:45:12.0444 4844 [ 1f63900e2eb00101b9aca2b7a870704e ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
10:45:12.0460 4844 FLEXnet Licensing Service - ok
10:45:12.0516 4844 [ 1c3fb052a0bb72edaed90785c34d6eed ] FLEXnet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
10:45:12.0541 4844 FLEXnet Licensing Service 64 - ok
10:45:12.0567 4844 [ c172a0f53008eaeb8ea33fe10e177af5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
10:45:12.0569 4844 flpydisk - ok
10:45:12.0596 4844 [ da6b67270fd9db3697b20fce94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
10:45:12.0601 4844 FltMgr - ok
10:45:12.0644 4844 [ 5c4cb4086fb83115b153e47add961a0c ] FontCache C:\Windows\system32\FntCache.dll
10:45:12.0651 4844 FontCache - ok
10:45:12.0707 4844 [ a8b7f3818ab65695e3a0bb3279f6dce6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:45:12.0707 4844 FontCache3.0.0.0 - ok
10:45:12.0721 4844 [ d43703496149971890703b4b1b723eac ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
10:45:12.0724 4844 FsDepends - ok
10:45:12.0754 4844 [ 6bd9295cc032dd3077c671fccf579a7b ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
10:45:12.0756 4844 Fs_Rec - ok
10:45:12.0797 4844 [ 1f7b25b858fa27015169fe95e54108ed ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
10:45:12.0801 4844 fvevol - ok
10:45:12.0826 4844 [ 8c778d335c9d272cfd3298ab02abe3b6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
10:45:12.0827 4844 gagp30kx - ok
10:45:12.0859 4844 [ e403aacf8c7bb11375122d2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
10:45:12.0861 4844 GEARAspiWDM - ok
10:45:12.0902 4844 [ 277bbc7e1aa1ee957f573a10eca7ef3a ] gpsvc C:\Windows\System32\gpsvc.dll
10:45:12.0907 4844 gpsvc - ok
10:45:12.0996 4844 [ f02a533f517eb38333cb12a9e8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:45:13.0000 4844 gupdate - ok
10:45:13.0021 4844 [ f02a533f517eb38333cb12a9e8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:45:13.0022 4844 gupdatem - ok
10:45:13.0076 4844 [ c1b577b2169900f4cf7190c39f085794 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
10:45:13.0080 4844 gusvc - ok
10:45:13.0092 4844 [ f2523ef6460fc42405b12248338ab2f0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
10:45:13.0094 4844 hcw85cir - ok
10:45:13.0141 4844 [ 975761c778e33cd22498059b91e7373a ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
10:45:13.0146 4844 HdAudAddService - ok
10:45:13.0171 4844 [ 97bfed39b6b79eb12cddbfeed51f56bb ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
10:45:13.0174 4844 HDAudBus - ok
10:45:13.0184 4844 [ 78e86380454a7b10a5eb255dc44a355f ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
10:45:13.0185 4844 HidBatt - ok
10:45:13.0202 4844 [ 7fd2a313f7afe5c4dab14798c48dd104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
10:45:13.0205 4844 HidBth - ok
10:45:13.0222 4844 [ 0a77d29f311b88cfae3b13f9c1a73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
10:45:13.0224 4844 HidIr - ok
10:45:13.0244 4844 [ bd9eb3958f213f96b97b1d897dee006d ] hidserv C:\Windows\system32\hidserv.dll
10:45:13.0246 4844 hidserv - ok
10:45:13.0286 4844 [ 9592090a7e2b61cd582b612b6df70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
10:45:13.0289 4844 HidUsb - ok
10:45:13.0313 4844 [ 387e72e739e15e3d37907a86d9ff98e2 ] hkmsvc C:\Windows\system32\kmsvc.dll
10:45:13.0315 4844 hkmsvc - ok
10:45:13.0340 4844 [ efdfb3dd38a4376f93e7985173813abd ] HomeGroupListener C:\Windows\system32\ListSvc.dll
10:45:13.0345 4844 HomeGroupListener - ok
10:45:13.0376 4844 [ 908acb1f594274965a53926b10c81e89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
10:45:13.0379 4844 HomeGroupProvider - ok
10:45:13.0458 4844 [ c671b945d186b23718eaf4eb79e32865 ] hotcore3 C:\Windows\syswow64\drivers\hotcore3.sys
10:45:13.0459 4844 hotcore3 - ok
10:45:13.0484 4844 [ 39d2abcd392f3d8a6dce7b60ae7b8efc ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
10:45:13.0485 4844 HpSAMD - ok
10:45:13.0529 4844 [ 0ea7de1acb728dd5a369fd742d6eee28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
10:45:13.0554 4844 HTTP - ok
10:45:13.0578 4844 [ a5462bd6884960c9dc85ed49d34ff392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
10:45:13.0580 4844 hwpolicy - ok
10:45:13.0601 4844 [ fa55c73d4affa7ee23ac4be53b4592d3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
10:45:13.0604 4844 i8042prt - ok
10:45:13.0638 4844 [ aaaf44db3bd0b9d1fb6969b23ecc8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
10:45:13.0644 4844 iaStorV - ok
10:45:13.0681 4844 [ 5988fc40f8db5b0739cd1e3a5d0d78bd ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
10:45:13.0714 4844 idsvc - ok
10:45:13.0733 4844 [ 5c18831c61933628f5bb0ea2675b9d21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
10:45:13.0734 4844 iirsp - ok
10:45:13.0763 4844 [ fcd84c381e0140af901e58d48882d26b ] IKEEXT C:\Windows\System32\ikeext.dll
10:45:13.0768 4844 IKEEXT - ok
10:45:13.0783 4844 [ f00f20e70c6ec3aa366910083a0518aa ] intelide C:\Windows\system32\drivers\intelide.sys
10:45:13.0784 4844 intelide - ok
10:45:13.0799 4844 [ ada036632c664caa754079041cf1f8c1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
10:45:13.0800 4844 intelppm - ok
10:45:13.0825 4844 [ 098a91c54546a3b878dad6a7e90a455b ] IPBusEnum C:\Windows\system32\ipbusenum.dll
10:45:13.0828 4844 IPBusEnum - ok
10:45:13.0854 4844 [ c9f0e1bd74365a8771590e9008d22ab6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:45:13.0856 4844 IpFilterDriver - ok
10:45:13.0894 4844 [ a34a587fffd45fa649fba6d03784d257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
10:45:13.0908 4844 iphlpsvc - ok
10:45:13.0936 4844 [ 0fc1aea580957aa8817b8f305d18ca3a ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
10:45:13.0938 4844 IPMIDRV - ok
10:45:13.0955 4844 [ af9b39a7e7b6caa203b3862582e9f2d0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
10:45:13.0958 4844 IPNAT - ok
10:45:14.0043 4844 [ 755e4ba6dce627a2683bb7640553c8d6 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
10:45:14.0048 4844 iPod Service - ok
10:45:14.0074 4844 [ 3abf5e7213eb28966d55d58b515d5ce9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
10:45:14.0075 4844 IRENUM - ok
10:45:14.0111 4844 [ 2f7b28dc3e1183e5eb418df55c204f38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
10:45:14.0113 4844 isapnp - ok
10:45:14.0143 4844 [ d931d7309deb2317035b07c9f9e6b0bd ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
10:45:14.0148 4844 iScsiPrt - ok
10:45:14.0203 4844 [ 9c6f3f69163133fb8e56ac4a6e163452 ] ISODrive C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys
10:45:14.0205 4844 ISODrive - ok
10:45:14.0230 4844 [ bc02336f1cba7dcc7d1213bb588a68a5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
10:45:14.0233 4844 kbdclass - ok
10:45:14.0264 4844 [ 0705eff5b42a9db58548eec3b26bb484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
10:45:14.0265 4844 kbdhid - ok
10:45:14.0278 4844 [ c118a82cd78818c29ab228366ebf81c3 ] KeyIso C:\Windows\system32\lsass.exe
10:45:14.0279 4844 KeyIso - ok
10:45:14.0309 4844 [ 97a7070aea4c058b6418519e869a63b4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
10:45:14.0311 4844 KSecDD - ok
10:45:14.0323 4844 [ 26c43a7c2862447ec59deda188d1da07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
10:45:14.0326 4844 KSecPkg - ok
10:45:14.0338 4844 [ 6869281e78cb31a43e969f06b57347c4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
10:45:14.0339 4844 ksthunk - ok
10:45:14.0368 4844 [ 6ab66e16aa859232f64deb66887a8c9c ] KtmRm C:\Windows\system32\msdtckrm.dll
10:45:14.0374 4844 KtmRm - ok
10:45:14.0404 4844 [ d9f42719019740baa6d1c6d536cbdaa6 ] LanmanServer C:\Windows\system32\srvsvc.dll
10:45:14.0409 4844 LanmanServer - ok
10:45:14.0439 4844 [ 851a1382eed3e3a7476db004f4ee3e1a ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
10:45:14.0443 4844 LanmanWorkstation - ok
10:45:14.0533 4844 [ 19eff704cd16dd0429e128431f1dd631 ] LBTServ C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
10:45:14.0539 4844 LBTServ - ok
10:45:14.0571 4844 [ 1074c77a47835e03c15bf92452f9a750 ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys
10:45:14.0573 4844 LHidFilt - ok
10:45:14.0593 4844 [ 1538831cf8ad2979a04c423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
10:45:14.0595 4844 lltdio - ok
10:45:14.0620 4844 [ c1185803384ab3feed115f79f109427f ] lltdsvc C:\Windows\System32\lltdsvc.dll
10:45:14.0626 4844 lltdsvc - ok
10:45:14.0640 4844 [ f993a32249b66c9d622ea5592a8b76b8 ] lmhosts C:\Windows\System32\lmhsvc.dll
10:45:14.0643 4844 lmhosts - ok
10:45:14.0651 4844 [ 96999c364c649e2866a268f7420a304a ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys
10:45:14.0653 4844 LMouFilt - ok
10:45:14.0683 4844 [ 1a93e54eb0ece102495a51266dcdb6a6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
10:45:14.0685 4844 LSI_FC - ok
10:45:14.0700 4844 [ 1047184a9fdc8bdbff857175875ee810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
10:45:14.0703 4844 LSI_SAS - ok
10:45:14.0714 4844 [ 30f5c0de1ee8b5bc9306c1f0e4a75f93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
10:45:14.0715 4844 LSI_SAS2 - ok
10:45:14.0728 4844 [ 0504eacaff0d3c8aed161c4b0d369d4a ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
10:45:14.0730 4844 LSI_SCSI - ok
10:45:14.0758 4844 [ 43d0f98e1d56ccddb0d5254cff7b356e ] luafv C:\Windows\system32\drivers\luafv.sys
10:45:14.0759 4844 luafv - ok
10:45:14.0783 4844 [ 11ddb1d900078fbe3691df7b878aec28 ] LUsbFilt C:\Windows\system32\Drivers\LUsbFilt.Sys
10:45:14.0784 4844 LUsbFilt - ok
10:45:14.0821 4844 [ c586cc39820b6e7fe3657fed8329d300 ] lvpopf64 C:\Windows\system32\DRIVERS\lvpopf64.sys
10:45:14.0826 4844 lvpopf64 - ok
10:45:14.0855 4844 [ b3944d06eb4b64d57bd7e5fe89415f58 ] LVPr2M64 C:\Windows\system32\DRIVERS\LVPr2M64.sys
10:45:14.0856 4844 LVPr2M64 - ok
10:45:14.0881 4844 [ b3944d06eb4b64d57bd7e5fe89415f58 ] LVPr2Mon C:\Windows\system32\DRIVERS\LVPr2M64.sys
10:45:14.0881 4844 LVPr2Mon - ok
10:45:14.0925 4844 [ 0c85b2b6fb74b36a251792d45e0ef860 ] LVRS64 C:\Windows\system32\DRIVERS\lvrs64.sys
10:45:14.0931 4844 LVRS64 - ok
10:45:14.0965 4844 [ b0c0292b0c70e203cba44333c0e3d106 ] lvsels64 C:\Windows\system32\DRIVERS\lvsels64.sys
10:45:14.0968 4844 lvsels64 - ok
10:45:15.0006 4844 [ 6d5ea90f86f9b28cd44af6ba9be03bf9 ] LVUSBS64 C:\Windows\system32\drivers\LVUSBS64.sys
10:45:15.0009 4844 LVUSBS64 - ok
10:45:15.0128 4844 [ ff3a488924b0032b1a9ca6948c1fa9e8 ] LVUVC64 C:\Windows\system32\DRIVERS\lvuvc64.sys
10:45:15.0214 4844 LVUVC64 - ok
10:45:15.0275 4844 [ dc8490812a3b72811ae534f423b4c206 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
10:45:15.0276 4844 MBAMProtector - ok
10:45:15.0319 4844 [ 43683e970f008c93c9429ef428147a54 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
10:45:15.0323 4844 MBAMService - ok
10:45:15.0379 4844 [ 11f714f85530a2bd134074dc30e99fca ] MDM C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
10:45:15.0381 4844 MDM - ok
10:45:15.0403 4844 [ a55805f747c6edb6a9080d7c633bd0f4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
10:45:15.0404 4844 megasas - ok
10:45:15.0420 4844 [ baf74ce0072480c3b6b7c13b2a94d6b3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
10:45:15.0425 4844 MegaSR - ok
10:45:15.0465 4844 [ d70476ad02d6fd75282b196d3b58831d ] MEMSWEEP2 C:\Windows\system32\69C5.tmp
10:45:15.0466 4844 MEMSWEEP2 - ok
10:45:15.0484 4844 [ e40e80d0304a73e8d269f7141d77250b ] MMCSS C:\Windows\system32\mmcss.dll
10:45:15.0486 4844 MMCSS - ok
10:45:15.0499 4844 [ 800ba92f7010378b09f9ed9270f07137 ] Modem C:\Windows\system32\drivers\modem.sys
10:45:15.0500 4844 Modem - ok
10:45:15.0520 4844 [ b03d591dc7da45ece20b3b467e6aadaa ] monitor C:\Windows\system32\DRIVERS\monitor.sys
10:45:15.0521 4844 monitor - ok
10:45:15.0561 4844 [ 7d27ea49f3c1f687d357e77a470aea99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
10:45:15.0564 4844 mouclass - ok
10:45:15.0584 4844 [ d3bf052c40b0c4166d9fd86a4288c1e6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
10:45:15.0586 4844 mouhid - ok
10:45:15.0611 4844 [ 32e7a3d591d671a6df2db515a5cbe0fa ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
10:45:15.0614 4844 mountmgr - ok
10:45:15.0660 4844 [ 46297fa8e30a6007f14118fc2b942fbc ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
10:45:15.0663 4844 MozillaMaintenance - ok
10:45:15.0706 4844 [ 94c66ededcdb6a126880472f9a704d8e ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
10:45:15.0710 4844 MpFilter - ok
10:45:15.0729 4844 [ a44b420d30bd56e145d6a2bc8768ec58 ] mpio C:\Windows\system32\drivers\mpio.sys
10:45:15.0731 4844 mpio - ok
10:45:15.0739 4844 [ 6c38c9e45ae0ea2fa5e551f2ed5e978f ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
10:45:15.0741 4844 mpsdrv - ok
10:45:15.0779 4844 [ 54ffc9c8898113ace189d4aa7199d2c1 ] MpsSvc C:\Windows\system32\mpssvc.dll
10:45:15.0795 4844 MpsSvc - ok
10:45:15.0826 4844 [ dc722758b8261e1abafd31a3c0a66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
10:45:15.0830 4844 MRxDAV - ok
10:45:15.0861 4844 [ a5d9106a73dc88564c825d317cac68ac ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
10:45:15.0864 4844 mrxsmb - ok
10:45:15.0894 4844 [ d711b3c1d5f42c0c2415687be09fc163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:45:15.0899 4844 mrxsmb10 - ok
10:45:15.0930 4844 [ 9423e9d355c8d303e76b8cfbd8a5c30c ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:45:15.0933 4844 mrxsmb20 - ok
10:45:15.0948 4844 [ c25f0bafa182cbca2dd3c851c2e75796 ] msahci C:\Windows\system32\drivers\msahci.sys
10:45:15.0950 4844 msahci - ok
10:45:15.0971 4844 [ db801a638d011b9633829eb6f663c900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
10:45:15.0975 4844 msdsm - ok
10:45:16.0000 4844 [ de0ece52236cfa3ed2dbfc03f28253a8 ] MSDTC C:\Windows\System32\msdtc.exe
10:45:16.0004 4844 MSDTC - ok
10:45:16.0029 4844 [ aa3fb40e17ce1388fa1bedab50ea8f96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
10:45:16.0030 4844 Msfs - ok
10:45:16.0048 4844 [ f9d215a46a8b9753f61767fa72a20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
10:45:16.0049 4844 mshidkmdf - ok
10:45:16.0075 4844 [ d916874bbd4f8b07bfb7fa9b3ccae29d ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
10:45:16.0078 4844 msisadrv - ok
10:45:16.0119 4844 [ 808e98ff49b155c522e6400953177b08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
10:45:16.0123 4844 MSiSCSI - ok
10:45:16.0129 4844 msiserver - ok
10:45:16.0149 4844 [ 49ccf2c4fea34ffad8b1b59d49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
10:45:16.0150 4844 MSKSSRV - ok
10:45:16.0206 4844 [ 59faaf2c83c8169ea20f9e335e418907 ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe
10:45:16.0208 4844 MsMpSvc - ok
10:45:16.0219 4844 [ bdd71ace35a232104ddd349ee70e1ab3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
10:45:16.0220 4844 MSPCLOCK - ok
10:45:16.0229 4844 [ 4ed981241db27c3383d72092b618a1d0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
10:45:16.0230 4844 MSPQM - ok
10:45:16.0265 4844 [ 759a9eeb0fa9ed79da1fb7d4ef78866d ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
10:45:16.0270 4844 MsRPC - ok
10:45:16.0298 4844 [ 0eed230e37515a0eaee3c2e1bc97b288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
10:45:16.0299 4844 mssmbios - ok
10:45:16.0313 4844 [ 2e66f9ecb30b4221a318c92ac2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
10:45:16.0314 4844 MSTEE - ok
10:45:16.0325 4844 [ 7ea404308934e675bffde8edf0757bcd ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
10:45:16.0326 4844 MTConfig - ok
10:45:16.0353 4844 [ f9a18612fd3526fe473c1bda678d61c8 ] Mup C:\Windows\system32\Drivers\mup.sys
10:45:16.0354 4844 Mup - ok
10:45:16.0394 4844 [ 582ac6d9873e31dfa28a4547270862dd ] napagent C:\Windows\system32\qagentRT.dll
10:45:16.0409 4844 napagent - ok
10:45:16.0445 4844 [ 1ea3749c4114db3e3161156ffffa6b33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
10:45:16.0450 4844 NativeWifiP - ok
10:45:16.0490 4844 [ 79b47fd40d9a817e932f9d26fac0a81c ] NDIS C:\Windows\system32\drivers\ndis.sys
10:45:16.0515 4844 NDIS - ok
10:45:16.0536 4844 [ 9f9a1f53aad7da4d6fef5bb73ab811ac ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
10:45:16.0538 4844 NdisCap - ok
10:45:16.0564 4844 [ 30639c932d9fef22b31268fe25a1b6e5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
10:45:16.0565 4844 NdisTapi - ok
10:45:16.0589 4844 [ 136185f9fb2cc61e573e676aa5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
10:45:16.0590 4844 Ndisuio - ok
10:45:16.0616 4844 [ 53f7305169863f0a2bddc49e116c2e11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
10:45:16.0619 4844 NdisWan - ok
10:45:16.0646 4844 [ 015c0d8e0e0421b4cfd48cffe2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
10:45:16.0648 4844 NDProxy - ok
10:45:16.0675 4844 [ 86743d9f5d2b1048062b14b1d84501c4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
10:45:16.0678 4844 NetBIOS - ok
10:45:16.0715 4844 [ 09594d1089c523423b32a4229263f068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
10:45:16.0720 4844 NetBT - ok
10:45:16.0735 4844 [ c118a82cd78818c29ab228366ebf81c3 ] Netlogon C:\Windows\system32\lsass.exe
10:45:16.0736 4844 Netlogon - ok
10:45:16.0775 4844 [ 847d3ae376c0817161a14a82c8922a9e ] Netman C:\Windows\System32\netman.dll
10:45:16.0781 4844 Netman - ok
10:45:16.0840 4844 [ d22cd77d4f0d63d1169bb35911bff12d ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:45:16.0859 4844 NetMsmqActivator - ok
10:45:16.0878 4844 [ d22cd77d4f0d63d1169bb35911bff12d ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:45:16.0879 4844 NetPipeActivator - ok
10:45:16.0898 4844 [ 5f28111c648f1e24f7dbc87cdeb091b8 ] netprofm C:\Windows\System32\netprofm.dll
10:45:16.0903 4844 netprofm - ok
10:45:16.0910 4844 [ d22cd77d4f0d63d1169bb35911bff12d ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:45:16.0911 4844 NetTcpActivator - ok
10:45:16.0918 4844 [ d22cd77d4f0d63d1169bb35911bff12d ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:45:16.0919 4844 NetTcpPortSharing - ok
10:45:16.0946 4844 [ 77889813be4d166cdab78ddba990da92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
10:45:16.0948 4844 nfrd960 - ok
10:45:16.0981 4844 [ 91b4e0273d2f6c24ef845f2b41311289 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
10:45:16.0983 4844 NisDrv - ok
10:45:17.0026 4844 [ 10a43829a9e606af3eef25a1c1665923 ] NisSrv C:\Program Files\Microsoft Security Client\NisSrv.exe
10:45:17.0031 4844 NisSrv - ok
10:45:17.0059 4844 [ 1ee99a89cc788ada662441d1e9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
10:45:17.0065 4844 NlaSvc - ok
10:45:17.0163 4844 [ 193fa51dddd0bffded1c340f0434999a ] NMIndexingService C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
10:45:17.0169 4844 NMIndexingService - ok
10:45:17.0203 4844 [ 907b5e1e4a592e5edc5e4ccbde4863c2 ] nmwcd C:\Windows\system32\drivers\ccdcmbx64.sys
10:45:17.0204 4844 nmwcd - ok
10:45:17.0239 4844 [ 41c1ac1f3613435eb32d67bcb80a5fa5 ] nmwcdc C:\Windows\system32\drivers\ccdcmbox64.sys
10:45:17.0240 4844 nmwcdc - ok
10:45:17.0274 4844 [ 863aa6c58ac85a22355ae943c605e44b ] nmwcdnsucx64 C:\Windows\system32\drivers\nmwcdnsucx64.sys
10:45:17.0276 4844 nmwcdnsucx64 - ok
10:45:17.0301 4844 [ 9573223e205907247ae6d948e3453770 ] nmwcdnsux64 C:\Windows\system32\drivers\nmwcdnsux64.sys
10:45:17.0305 4844 nmwcdnsux64 - ok
10:45:17.0358 4844 [ 3ceee0be85d24d911b9c02714817774c ] NPF C:\Windows\system32\drivers\npf.sys
10:45:17.0359 4844 NPF - ok
10:45:17.0376 4844 [ 1e4c4ab5c9b8dd13179bbdc75a2a01f7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
10:45:17.0378 4844 Npfs - ok
10:45:17.0388 4844 [ d54bfdf3e0c953f823b3d0bfe4732528 ] nsi C:\Windows\system32\nsisvc.dll
10:45:17.0389 4844 nsi - ok
10:45:17.0405 4844 [ e7f5ae18af4168178a642a9247c63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
10:45:17.0406 4844 nsiproxy - ok
10:45:17.0426 4844 [ 9338574167490c5d571fa85e858a5fed ] ntcdrdrv C:\Windows\system32\DRIVERS\ntcdrdrv.sys
10:45:17.0428 4844 ntcdrdrv - ok
10:45:17.0493 4844 [ a2f74975097f52a00745f9637451fdd8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
10:45:17.0528 4844 Ntfs - ok
10:45:17.0548 4844 [ 9899284589f75fa8724ff3d16aed75c1 ] Null C:\Windows\system32\drivers\Null.sys
10:45:17.0549 4844 Null - ok
10:45:17.0850 4844 [ 9c1996dd3c0469bc8933321f15709f5a ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
10:45:18.0091 4844 nvlddmkm - ok
10:45:18.0126 4844 [ 0a92cb65770442ed0dc44834632f66ad ] nvraid C:\Windows\system32\drivers\nvraid.sys
10:45:18.0130 4844 nvraid - ok
10:45:18.0160 4844 [ dab0e87525c10052bf65f06152f37e4a ] nvstor C:\Windows\system32\drivers\nvstor.sys
10:45:18.0163 4844 nvstor - ok
10:45:18.0214 4844 [ dfda089bb2cd0ff7e789e2ef6ba1e4ba ] nvsvc C:\Windows\system32\nvvsvc.exe
10:45:18.0220 4844 nvsvc - ok
10:45:18.0311 4844 [ e7818cd4fb51284c948d68a7a85a69b8 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
10:45:18.0324 4844 nvUpdatusService - ok
10:45:18.0355 4844 [ 270d7cd42d6e3979f6dd0146650f0e05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
10:45:18.0358 4844 nv_agp - ok
10:45:18.0421 4844 [ faef7b156e073f0450c5087f57696f0b ] OAcat C:\Program Files (x86)\Online Armor\OAcat.exe
10:45:18.0423 4844 OAcat - ok
10:45:18.0501 4844 [ 9c78f13766ab2629e11fb0dfb162ee33 ] OADevice C:\Windows\SysWow64\Drivers\OADriver.sys
10:45:18.0504 4844 OADevice - ok
10:45:18.0538 4844 [ 6cdb036083ef969210d2f747c8ab5771 ] oahlpXX C:\Windows\syswow64\drivers\oahlp64.sys
10:45:18.0539 4844 oahlpXX - ok
10:45:18.0548 4844 [ c2b6a1ccee9669119a7fc9dab2008b68 ] OAmon C:\Windows\SysWOW64\Drivers\OAmon.sys
10:45:18.0549 4844 OAmon - ok
10:45:18.0564 4844 [ f99c170cf63de515c51bb11e76ea23ec ] OAnet C:\Windows\system32\DRIVERS\oanet.sys
10:45:18.0565 4844 OAnet - ok
10:45:18.0591 4844 [ 3589478e4b22ce21b41fa1bfc0b8b8a0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
10:45:18.0594 4844 ohci1394 - ok
10:45:18.0631 4844 [ 7a56cf3e3f12e8af599963b16f50fb6a ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:45:18.0634 4844 ose - ok
10:45:18.0671 4844 [ 4965b005492cba7719e82b71e3245495 ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:45:18.0675 4844 ose64 - ok
10:45:18.0793 4844 [ 61bffb5f57ad12f83ab64b7181829b34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
10:45:18.0819 4844 osppsvc - ok
10:45:18.0854 4844 [ 3eac4455472cc2c97107b5291e0dcafe ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
10:45:18.0860 4844 p2pimsvc - ok
10:45:18.0883 4844 [ 927463ecb02179f88e4b9a17568c63c3 ] p2psvc C:\Windows\system32\p2psvc.dll
10:45:18.0898 4844 p2psvc - ok
10:45:18.0921 4844 [ 0086431c29c35be1dbc43f52cc273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
10:45:18.0924 4844 Parport - ok
10:45:18.0949 4844 [ e9766131eeade40a27dc27d2d68fba9c ] partmgr C:\Windows\system32\drivers\partmgr.sys
10:45:18.0951 4844 partmgr - ok
10:45:19.0000 4844 [ 8a0f8a9580d9f2fc512a35d5709088a9 ] pavboot C:\Windows\system32\drivers\pavboot64.sys
10:45:19.0003 4844 pavboot - ok
10:45:19.0023 4844 [ 3aeaa8b561e63452c655dc0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
10:45:19.0025 4844 PcaSvc - ok
10:45:19.0069 4844 [ bc0018c2d29f655188a0ed3fa94fdb24 ] pccsmcfd C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
10:45:19.0070 4844 pccsmcfd - ok
10:45:19.0086 4844 [ 94575c0571d1462a0f70bde6bd6ee6b3 ] pci C:\Windows\system32\drivers\pci.sys
10:45:19.0091 4844 pci - ok
10:45:19.0114 4844 [ b5b8b5ef2e5cb34df8dcf8831e3534fa ] pciide C:\Windows\system32\drivers\pciide.sys
10:45:19.0115 4844 pciide - ok
10:45:19.0138 4844 [ b2e81d4e87ce48589f98cb8c05b01f2f ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
10:45:19.0141 4844 pcmcia - ok
10:45:19.0189 4844 [ af7ce12c4f3dc8cb2b07685c916bbcfe ] pcouffin C:\Windows\system32\Drivers\pcouffin.sys
10:45:19.0191 4844 pcouffin - ok
10:45:19.0206 4844 [ d6b9c2e1a11a3a4b26a182ffef18f603 ] pcw C:\Windows\system32\drivers\pcw.sys
10:45:19.0208 4844 pcw - ok
10:45:19.0234 4844 [ 68769c3356b3be5d1c732c97b9a80d6e ] PEAUTH C:\Windows\system32\drivers\peauth.sys
10:45:19.0250 4844 PEAUTH - ok
10:45:19.0284 4844 [ e495e408c93141e8fc72dc0c6046ddfa ] PerfHost C:\Windows\SysWow64\perfhost.exe
10:45:19.0360 4844 PerfHost - ok
10:45:19.0400 4844 pfc - ok
10:45:19.0456 4844 [ c7cf6a6e137463219e1259e3f0f0dd6c ] pla C:\Windows\system32\pla.dll
10:45:19.0490 4844 pla - ok
10:45:19.0518 4844 [ 25fbdef06c4d92815b353f6e792c8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
10:45:19.0523 4844 PlugPlay - ok
10:45:19.0545 4844 [ 7195581cec9bb7d12abe54036acc2e38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
10:45:19.0549 4844 PNRPAutoReg - ok
10:45:19.0569 4844 [ 3eac4455472cc2c97107b5291e0dcafe ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
10:45:19.0573 4844 PNRPsvc - ok
10:45:19.0610 4844 [ 4f0878fd62d5f7444c5f1c4c66d9d293 ] Point64 C:\Windows\system32\DRIVERS\point64.sys
10:45:19.0613 4844 Point64 - ok
10:45:19.0650 4844 [ 4f15d75adf6156bf56eced6d4a55c389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
10:45:19.0658 4844 PolicyAgent - ok
10:45:19.0688 4844 [ 6ba9d927dded70bd1a9caded45f8b184 ] Power C:\Windows\system32\umpo.dll
10:45:19.0690 4844 Power - ok
10:45:19.0726 4844 [ f92a2c41117a11a00be01ca01a7fcde9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
10:45:19.0729 4844 PptpMiniport - ok
10:45:19.0754 4844 [ 0d922e23c041efb1c3fac2a6f943c9bf ] Processor C:\Windows\system32\DRIVERS\processr.sys
10:45:19.0755 4844 Processor - ok
10:45:19.0795 4844 [ 53e83f1f6cf9d62f32801cf66d8352a8 ] ProfSvc C:\Windows\system32\profsvc.dll
10:45:19.0800 4844 ProfSvc - ok
10:45:19.0816 4844 [ c118a82cd78818c29ab228366ebf81c3 ] ProtectedStorage C:\Windows\system32\lsass.exe
10:45:19.0818 4844 ProtectedStorage - ok
10:45:19.0858 4844 [ 0557cf5a2556bd58e26384169d72438d ] Psched C:\Windows\system32\DRIVERS\pacer.sys
10:45:19.0860 4844 Psched - ok
10:45:19.0900 4844 [ a53a15a11ebfd21077463ee2c7afeef0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
10:45:19.0935 4844 ql2300 - ok
10:45:19.0955 4844 [ 4f6d12b51de1aaeff7dc58c4d75423c8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
10:45:19.0958 4844 ql40xx - ok
10:45:19.0988 4844 [ 906191634e99aea92c4816150bda3732 ] QWAVE C:\Windows\system32\qwave.dll
10:45:19.0994 4844 QWAVE - ok
10:45:20.0010 4844 [ 76707bb36430888d9ce9d705398adb6c ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
10:45:20.0011 4844 QWAVEdrv - ok
10:45:20.0026 4844 [ 5a0da8ad5762fa2d91678a8a01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
10:45:20.0028 4844 RasAcd - ok
10:45:20.0045 4844 [ 7ecff9b22276b73f43a99a15a6094e90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
10:45:20.0046 4844 RasAgileVpn - ok
10:45:20.0061 4844 [ 8f26510c5383b8dbe976de1cd00fc8c7 ] RasAuto C:\Windows\System32\rasauto.dll
10:45:20.0065 4844 RasAuto - ok
10:45:20.0099 4844 [ 471815800ae33e6f1c32fb1b97c490ca ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
10:45:20.0101 4844 Rasl2tp - ok
10:45:20.0138 4844 [ ee867a0870fc9e4972ba9eaad35651e2 ] RasMan C:\Windows\System32\rasmans.dll
10:45:20.0145 4844 RasMan - ok
10:45:20.0163 4844 [ 855c9b1cd4756c5e9a2aa58a15f58c25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
10:45:20.0164 4844 RasPppoe - ok
10:45:20.0181 4844 [ e8b1e447b008d07ff47d016c2b0eeecb ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
10:45:20.0184 4844 RasSstp - ok
10:45:20.0213 4844 [ 77f665941019a1594d887a74f301fa2f ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
10:45:20.0218 4844 rdbss - ok
10:45:20.0231 4844 [ 302da2a0539f2cf54d7c6cc30c1f2d8d ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
10:45:20.0234 4844 rdpbus - ok
10:45:20.0250 4844 [ cea6cc257fc9b7715f1c2b4849286d24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
10:45:20.0251 4844 RDPCDD - ok
10:45:20.0274 4844 [ bb5971a4f00659529a5c44831af22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
10:45:20.0275 4844 RDPENCDD - ok
10:45:20.0290 4844 [ 216f3fa57533d98e1f74ded70113177a ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
10:45:20.0291 4844 RDPREFMP - ok
10:45:20.0315 4844 [ e61608aa35e98999af9aaeeea6114b0a ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
10:45:20.0319 4844 RDPWD - ok
10:45:20.0358 4844 [ 34ed295fa0121c241bfef24764fc4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
10:45:20.0361 4844 rdyboost - ok
10:45:20.0383 4844 [ 254fb7a22d74e5511c73a3f6d802f192 ] RemoteAccess C:\Windows\System32\mprdim.dll
10:45:20.0386 4844 RemoteAccess - ok
10:45:20.0405 4844 [ e4d94f24081440b5fc5aa556c7c62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
10:45:20.0409 4844 RemoteRegistry - ok
10:45:20.0435 4844 [ e4dc58cf7b3ea515ae917ff0d402a7bb ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
10:45:20.0438 4844 RpcEptMapper - ok
10:45:20.0461 4844 [ d5ba242d4cf8e384db90e6a8ed850b8c ] RpcLocator C:\Windows\system32\locator.exe
10:45:20.0463 4844 RpcLocator - ok
10:45:20.0496 4844 [ 5c627d1b1138676c0a7ab2c2c190d123 ] RpcSs C:\Windows\system32\rpcss.dll
10:45:20.0501 4844 RpcSs - ok
10:45:20.0531 4844 [ ddc86e4f8e7456261e637e3552e804ff ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
10:45:20.0534 4844 rspndr - ok
10:45:20.0583 4844 [ ee082e06a82ff630351d1e0ebbd3d8d0 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
10:45:20.0598 4844 RTL8167 - ok
10:45:20.0691 4844 SABKUTIL - ok
10:45:20.0708 4844 [ c118a82cd78818c29ab228366ebf81c3 ] SamSs C:\Windows\system32\lsass.exe
10:45:20.0710 4844 SamSs - ok
10:45:20.0766 4844 [ 3289766038db2cb14d07dc84392138d5 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
10:45:20.0768 4844 SASDIFSV - ok
10:45:20.0806 4844 [ 7ce61c25c159f50f9eaf6d77fc83fa35 ] SASENUM C:\Program Files (x86)\SUPERAntiSpyware\SASENUM.SYS
10:45:20.0808 4844 SASENUM - ok
10:45:20.0871 4844 SASKUTIL - ok
10:45:20.0923 4844 [ 495588414f5c62c333f1a69e17e5fb9f ] SbieDrv C:\Program Files\Sandboxie\SbieDrv.sys
10:45:20.0925 4844 SbieDrv - ok
10:45:20.0940 4844 [ 099007b7a80e1917ffa110ce7785a3c9 ] SbieSvc C:\Program Files\Sandboxie\SbieSvc.exe
10:45:20.0941 4844 SbieSvc - ok
10:45:20.0976 4844 [ ac03af3329579fffb455aa2daabbe22b ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
10:45:20.0979 4844 sbp2port - ok
10:45:21.0003 4844 [ 9b7395789e3791a3b6d000fe6f8b131e ] SCardSvr C:\Windows\System32\SCardSvr.dll
10:45:21.0009 4844 SCardSvr - ok
10:45:21.0038 4844 [ 253f38d0d7074c02ff8deb9836c97d2b ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
10:45:21.0039 4844 scfilter - ok
10:45:21.0089 4844 [ 262f6592c3299c005fd6bec90fc4463a ] Schedule C:\Windows\system32\schedsvc.dll
10:45:21.0096 4844 Schedule - ok
10:45:21.0131 4844 [ f17d1d393bbc69c5322fbfafaca28c7f ] SCPolicySvc C:\Windows\System32\certprop.dll
10:45:21.0133 4844 SCPolicySvc - ok
10:45:21.0161 4844 [ 6ea4234dc55346e0709560fe7c2c1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
10:45:21.0166 4844 SDRSVC - ok
10:45:21.0203 4844 [ 3ea8a16169c26afbeb544e0e48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
10:45:21.0204 4844 secdrv - ok
10:45:21.0235 4844 [ bc617a4e1b4fa8df523a061739a0bd87 ] seclogon C:\Windows\system32\seclogon.dll
10:45:21.0238 4844 seclogon - ok
10:45:21.0251 4844 [ c32ab8fa018ef34c0f113bd501436d21 ] SENS C:\Windows\System32\sens.dll
10:45:21.0254 4844 SENS - ok
10:45:21.0271 4844 [ 0336cffafaab87a11541f1cf1594b2b2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
10:45:21.0275 4844 SensrSvc - ok
10:45:21.0294 4844 [ cb624c0035412af0debec78c41f5ca1b ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
10:45:21.0295 4844 Serenum - ok
10:45:21.0323 4844 [ c1d8e28b2c2adfaec4ba89e9fda69bd6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
10:45:21.0325 4844 Serial - ok
10:45:21.0354 4844 [ 1c545a7d0691cc4a027396535691c3e3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
10:45:21.0355 4844 sermouse - ok
10:45:21.0435 4844 [ 7d3903af48e6c1dc2704eafcb608d031 ] ServiceLayer C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
10:45:21.0439 4844 ServiceLayer - ok
10:45:21.0485 4844 [ 0b6231bf38174a1628c4ac812cc75804 ] SessionEnv C:\Windows\system32\sessenv.dll
10:45:21.0489 4844 SessionEnv - ok
10:45:21.0514 4844 [ a554811bcd09279536440c964ae35bbf ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
10:45:21.0515 4844 sffdisk - ok
10:45:21.0530 4844 [ ff414f0baefeba59bc6c04b3db0b87bf ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
10:45:21.0531 4844 sffp_mmc - ok
10:45:21.0548 4844 [ dd85b78243a19b59f0637dcf284da63c ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
10:45:21.0549 4844 sffp_sd - ok
10:45:21.0560 4844 [ a9d601643a1647211a1ee2ec4e433ff4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
10:45:21.0561 4844 sfloppy - ok
10:45:21.0598 4844 [ b95f6501a2f8b2e78c697fec401970ce ] SharedAccess C:\Windows\System32\ipnathlp.dll
10:45:21.0604 4844 SharedAccess - ok
10:45:21.0636 4844 [ aaf932b4011d14052955d4b212a4da8d ] ShellHWDetection C:\Windows\System32\shsvcs.dll
10:45:21.0640 4844 ShellHWDetection - ok
10:45:21.0668 4844 [ 843caf1e5fde1ffd5ff768f23a51e2e1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
10:45:21.0669 4844 SiSRaid2 - ok
10:45:21.0689 4844 [ 6a6c106d42e9ffff8b9fcb4f754f6da4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
10:45:21.0691 4844 SiSRaid4 - ok
10:45:21.0719 4844 [ 548260a7b8654e024dc30bf8a7c5baa4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
10:45:21.0721 4844 Smb - ok
10:45:21.0774 4844 [ 6313f223e817cc09aa41811daa7f541d ] SNMPTRAP C:\Windows\System32\snmptrap.exe
10:45:21.0776 4844 SNMPTRAP - ok
10:45:21.0820 4844 [ 3bb48f7e33c2b76184ddf233000c09cd ] Sony SCSI Helper Service C:\Program Files (x86)\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe
10:45:21.0823 4844 Sony SCSI Helper Service - ok
10:45:21.0835 4844 [ b9e31e5cacdfe584f34f730a677803f9 ] spldr C:\Windows\system32\drivers\spldr.sys
10:45:21.0836 4844 spldr - ok
10:45:21.0873 4844 [ 85daa09a98c9286d4ea2ba8d0e644377 ] Spooler C:\Windows\System32\spoolsv.exe
10:45:21.0878 4844 Spooler - ok
10:45:21.0963 4844 [ e17e0188bb90fae42d83e98707efa59c ] sppsvc C:\Windows\system32\sppsvc.exe
10:45:22.0031 4844 sppsvc - ok
10:45:22.0053 4844 [ 93d7d61317f3d4bc4f4e9f8a96a7de45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
10:45:22.0056 4844 sppuinotify - ok
10:45:22.0091 4844 [ 441fba48bff01fdb9d5969ebc1838f0b ] srv C:\Windows\system32\DRIVERS\srv.sys
10:45:22.0105 4844 srv - ok
10:45:22.0125 4844 [ b4adebbf5e3677cce9651e0f01f7cc28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
10:45:22.0131 4844 srv2 - ok
10:45:22.0151 4844 [ 27e461f0be5bff5fc737328f749538c3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
10:45:22.0155 4844 srvnet - ok
10:45:22.0178 4844 [ 51b52fbd583cde8aa9ba62b8b4298f33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
10:45:22.0183 4844 SSDPSRV - ok
10:45:22.0208 4844 [ ab7aebf58dad8daab7a6c45e6a8885cb ] SstpSvc C:\Windows\system32\sstpsvc.dll
10:45:22.0211 4844 SstpSvc - ok
10:45:22.0254 4844 [ 78cd64791f8634cf7b582fd085e57c4b ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
10:45:22.0259 4844 ssudmdm - ok
10:45:22.0276 4844 [ f3817967ed533d08327dc73bc4d5542a ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
10:45:22.0278 4844 stexstor - ok
10:45:22.0325 4844 [ 8dd52e8e6128f4b2da92ce27402871c1 ] stisvc C:\Windows\System32\wiaservc.dll
10:45:22.0343 4844 stisvc - ok
10:45:22.0483 4844 [ 578a7d52c4f7ca65e109b4e7c7ac5cb3 ] SvcOnlineArmor C:\Program Files (x86)\Online Armor\oasrv.exe
10:45:22.0506 4844 SvcOnlineArmor - ok
10:45:22.0541 4844 [ d01ec09b6711a5f8e7e6564a4d0fbc90 ] swenum C:\Windows\system32\drivers\swenum.sys
10:45:22.0543 4844 swenum - ok
10:45:22.0605 4844 [ e08e46fdd841b7184194011ca1955a0b ] swprv C:\Windows\System32\swprv.dll
10:45:22.0640 4844 swprv - ok
10:45:22.0788 4844 [ bf9ccc0bf39b418c8d0ae8b05cf95b7d ] SysMain C:\Windows\system32\sysmain.dll
10:45:22.0823 4844 SysMain - ok
10:45:22.0854 4844 [ e3c61fd7b7c2557e1f1b0b4cec713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
10:45:22.0858 4844 TabletInputService - ok
10:45:22.0886 4844 [ 40f0849f65d13ee87b9a9ae3c1dd6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
10:45:22.0893 4844 TapiSrv - ok
10:45:22.0916 4844 [ 1be03ac720f4d302ea01d40f588162f6 ] TBS C:\Windows\System32\tbssvc.dll
10:45:22.0920 4844 TBS - ok
10:45:22.0988 4844 [ acb82bda8f46c84f465c1afa517dc4b9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
10:45:23.0023 4844 Tcpip - ok
10:45:23.0068 4844 [ acb82bda8f46c84f465c1afa517dc4b9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
10:45:23.0078 4844 TCPIP6 - ok
10:45:23.0113 4844 [ df687e3d8836bfb04fcc0615bf15a519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
10:45:23.0115 4844 tcpipreg - ok
10:45:23.0141 4844 [ 3371d21011695b16333a3934340c4e7c ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
10:45:23.0144 4844 TDPIPE - ok
10:45:23.0170 4844 [ 51c5eceb1cdee2468a1748be550cfbc8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
10:45:23.0171 4844 TDTCP - ok
10:45:23.0210 4844 [ ddad5a7ab24d8b65f8d724f5c20fd806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
10:45:23.0213 4844 tdx - ok
10:45:23.0229 4844 [ 561e7e1f06895d78de991e01dd0fb6e5 ] TermDD C:\Windows\system32\drivers\termdd.sys
10:45:23.0231 4844 TermDD - ok
10:45:23.0278 4844 [ 2e648163254233755035b46dd7b89123 ] TermService C:\Windows\System32\termsrv.dll
10:45:23.0303 4844 TermService - ok
10:45:23.0321 4844 [ f0344071948d1a1fa732231785a0664c ] Themes C:\Windows\system32\themeservice.dll
10:45:23.0324 4844 Themes - ok
10:45:23.0348 4844 [ e40e80d0304a73e8d269f7141d77250b ] THREADORDER C:\Windows\system32\mmcss.dll
10:45:23.0350 4844 THREADORDER - ok
10:45:23.0375 4844 [ 3e24b7fe52bc455da8d6e2cc2b4ca23f ] tifsfilter C:\Windows\system32\DRIVERS\tifsfilt.sys
10:45:23.0378 4844 tifsfilter - ok
10:45:23.0406 4844 [ ec4fd4d147985a97e881729e808e6f34 ] timounter C:\Windows\system32\DRIVERS\timntr.sys
10:45:23.0430 4844 timounter - ok
10:45:23.0475 4844 [ 4fc78b0ef21560dd1df52166d1db28d8 ] TotRec7 C:\Windows\system32\drivers\TotRec7.sys
10:45:23.0479 4844 TotRec7 - ok
10:45:23.0523 4844 [ 0047cb661895d9a5278b419642b8b369 ] TotRec8 C:\Windows\system32\drivers\TotRec8.sys
10:45:23.0525 4844 TotRec8 - ok
10:45:23.0536 4844 [ 7e7afd841694f6ac397e99d75cead49d ] TrkWks C:\Windows\System32\trkwks.dll
10:45:23.0539 4844 TrkWks - ok
10:45:23.0606 4844 [ 370a6907ddf79532a39319492b1fa38a ] truecrypt C:\Windows\system32\drivers\truecrypt.sys
10:45:23.0611 4844 truecrypt - ok
10:45:23.0661 4844 [ 773212b2aaa24c1e31f10246b15b276c ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
10:45:23.0665 4844 TrustedInstaller - ok
10:45:23.0698 4844 [ ce18b2cdfc837c99e5fae9ca6cba5d30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
10:45:23.0699 4844 tssecsrv - ok
10:45:23.0741 4844 [ d11c783e3ef9a3c52c0ebe83cc5000e9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
10:45:23.0744 4844 TsUsbFlt - ok
10:45:23.0796 4844 [ 3566a8daafa27af944f5d705eaa64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
10:45:23.0799 4844 tunnel - ok
10:45:23.0831 4844 [ b4dd609bd7e282bfc683cec7eaaaad67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
10:45:23.0833 4844 uagp35 - ok
10:45:23.0871 4844 [ ff4232a1a64012baa1fd97c7b67df593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
10:45:23.0876 4844 udfs - ok
10:45:23.0909 4844 [ 3cbdec8d06b9968aba702eba076364a1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
10:45:23.0913 4844 UI0Detect - ok
10:45:23.0934 4844 [ 4bfe1bc28391222894cbf1e7d0e42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
10:45:23.0936 4844 uliagpkx - ok
10:45:24.0031 4844 [ 694bcf23662f97d987cf4c6739c35f8b ] UltraMonUtility C:\Program Files (x86)\Common Files\Realtime Soft\UltraMonMirrorDrv\x64\UltraMonUtility.sys
10:45:24.0033 4844 UltraMonUtility - ok
10:45:24.0069 4844 [ dc54a574663a895c8763af0fa1ff7561 ] umbus C:\Windows\system32\drivers\umbus.sys
10:45:24.0071 4844 umbus - ok
10:45:24.0086 4844 [ b2e8e8cb557b156da5493bbddcc1474d ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
10:45:24.0088 4844 UmPass - ok
10:45:24.0146 4844 [ 67a95b9d129ed5399e7965cd09cf30e7 ] UMVPFSrv C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
10:45:24.0149 4844 UMVPFSrv - ok
10:45:24.0188 4844 [ d47ec6a8e81633dd18d2436b19baf6de ] upnphost C:\Windows\System32\upnphost.dll
10:45:24.0203 4844 upnphost - ok
10:45:24.0243 4844 [ 4e93c8496359e97830c75ac36393654d ] upperdev C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys
10:45:24.0245 4844 upperdev - ok
10:45:24.0271 4844 [ f724b03c3dfaacf08d17d38bf3333583 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
10:45:24.0273 4844 USBAAPL64 - ok
10:45:24.0291 4844 [ 82e8f44688e6fac57b5b7c6fc7adbc2a ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
10:45:24.0294 4844 usbaudio - ok
10:45:24.0328 4844 [ 6f1a3157a1c89435352ceb543cdb359c ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
10:45:24.0329 4844 usbccgp - ok
10:45:24.0368 4844 [ af0892a803fdda7492f595368e3b68e7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
10:45:24.0370 4844 usbcir - ok
10:45:24.0399 4844 [ c025055fe7b87701eb042095df1a2d7b ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
10:45:24.0401 4844 usbehci - ok
10:45:24.0445 4844 [ 287c6c9410b111b68b52ca298f7b8c24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
10:45:24.0450 4844 usbhub - ok
10:45:24.0469 4844 [ 58e546bbaf87664fc57e0f6081e4f609 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
10:45:24.0471 4844 usbohci - ok
10:45:24.0495 4844 [ 73188f58fb384e75c4063d29413cee3d ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
10:45:24.0496 4844 usbprint - ok
10:45:24.0528 4844 [ aaa2513c8aed8b54b189fd0c6b1634c0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
10:45:24.0529 4844 usbscan - ok
10:45:24.0564 4844 [ 8844cb19a37b65e27049d4a7786726a9 ] UsbserFilt C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys
10:45:24.0565 4844 UsbserFilt - ok
10:45:24.0583 4844 [ fed648b01349a3c8395a5169db5fb7d6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:45:24.0585 4844 USBSTOR - ok
10:45:24.0630 4844 [ 62069a34518bcf9c1fd9e74b3f6db7cd ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
10:45:24.0633 4844 usbuhci - ok
10:45:24.0650 4844 [ edbb23cbcf2cdf727d64ff9b51a6070e ] UxSms C:\Windows\System32\uxsms.dll
10:45:24.0653 4844 UxSms - ok
10:45:24.0673 4844 [ c118a82cd78818c29ab228366ebf81c3 ] VaultSvc C:\Windows\system32\lsass.exe
10:45:24.0674 4844 VaultSvc - ok
10:45:24.0693 4844 [ c5c876ccfc083ff3b128f933823e87bd ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
10:45:24.0694 4844 vdrvroot - ok
10:45:24.0744 4844 [ 8d6b481601d01a456e75c3210f1830be ] vds C:\Windows\System32\vds.exe
10:45:24.0759 4844 vds - ok
10:45:24.0778 4844 [ da4da3f5e02943c2dc8c6ed875de68dd ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
10:45:24.0779 4844 vga - ok
10:45:24.0789 4844 [ 53e92a310193cb3c03bea963de7d9cfc ] VgaSave C:\Windows\System32\drivers\vga.sys
10:45:24.0790 4844 VgaSave - ok
10:45:24.0814 4844 [ 2ce2df28c83aeaf30084e1b1eb253cbb ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
10:45:24.0818 4844 vhdmp - ok
10:45:24.0844 4844 [ e5689d93ffe4e5d66c0178761240dd54 ] viaide C:\Windows\system32\drivers\viaide.sys
10:45:24.0845 4844 viaide - ok
10:45:24.0878 4844 [ d2aafd421940f640b407aefaaebd91b0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
10:45:24.0879 4844 volmgr - ok
10:45:24.0915 4844 [ a255814907c89be58b79ef2f189b843b ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
10:45:24.0921 4844 volmgrx - ok
10:45:24.0944 4844 [ 0d08d2f3b3ff84e433346669b5e0f639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
10:45:24.0949 4844 volsnap - ok
10:45:24.0983 4844 [ 5e2016ea6ebaca03c04feac5f330d997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
10:45:24.0985 4844 vsmraid - ok
10:45:25.0038 4844 [ b60ba0bc31b0cb414593e169f6f21cc2 ] VSS C:\Windows\system32\vssvc.exe
10:45:25.0073 4844 VSS - ok
10:45:25.0090 4844 [ 36d4720b72b5c5d9cb2b9c29e9df67a1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
10:45:25.0091 4844 vwifibus - ok
10:45:25.0113 4844 [ 1c9d80cc3849b3788048078c26486e1a ] W32Time C:\Windows\system32\w32time.dll
10:45:25.0129 4844 W32Time - ok
10:45:25.0154 4844 [ 4e9440f4f152a7b944cb1663d3935a3e ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
10:45:25.0156 4844 WacomPen - ok
10:45:25.0176 4844 [ 356afd78a6ed4457169241ac3965230c ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
10:45:25.0179 4844 WANARP - ok
10:45:25.0195 4844 [ 356afd78a6ed4457169241ac3965230c ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
10:45:25.0196 4844 Wanarpv6 - ok
10:45:25.0253 4844 [ 3cec96de223e49eaae3651fcf8faea6c ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
10:45:25.0279 4844 WatAdminSvc - ok
10:45:25.0338 4844 [ 78f4e7f5c56cb9716238eb57da4b6a75 ] wbengine C:\Windows\system32\wbengine.exe
10:45:25.0373 4844 wbengine - ok
10:45:25.0399 4844 [ 3aa101e8edab2db4131333f4325c76a3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
10:45:25.0404 4844 WbioSrvc - ok
10:45:25.0444 4844 [ 7368a2afd46e5a4481d1de9d14848edd ] wcncsvc C:\Windows\System32\wcncsvc.dll
10:45:25.0451 4844 wcncsvc - ok
10:45:25.0473 4844 [ 20f7441334b18cee52027661df4a6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
10:45:25.0475 4844 WcsPlugInService - ok
10:45:25.0491 4844 [ 72889e16ff12ba0f235467d6091b17dc ] Wd C:\Windows\system32\DRIVERS\wd.sys
10:45:25.0493 4844 Wd - ok
10:45:25.0529 4844 [ 441bd2d7b4f98134c3a4f9fa570fd250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
10:45:25.0554 4844 Wdf01000 - ok
10:45:25.0573 4844 [ bf1fc3f79b863c914687a737c2f3d681 ] WdiServiceHost C:\Windows\system32\wdi.dll
10:45:25.0576 4844 WdiServiceHost - ok
10:45:25.0586 4844 [ bf1fc3f79b863c914687a737c2f3d681 ] WdiSystemHost C:\Windows\system32\wdi.dll
10:45:25.0589 4844 WdiSystemHost - ok
10:45:25.0620 4844 [ 3db6d04e1c64272f8b14eb8bc4616280 ] WebClient C:\Windows\System32\webclnt.dll
10:45:25.0626 4844 WebClient - ok
10:45:25.0661 4844 [ c749025a679c5103e575e3b48e092c43 ] Wecsvc C:\Windows\system32\wecsvc.dll
10:45:25.0668 4844 Wecsvc - ok
10:45:25.0688 4844 [ 7e591867422dc788b9e5bd337a669a08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
10:45:25.0691 4844 wercplsupport - ok
10:45:25.0724 4844 [ 6d137963730144698cbd10f202e9f251 ] WerSvc C:\Windows\System32\WerSvc.dll
10:45:25.0728 4844 WerSvc - ok
10:45:25.0765 4844 [ 611b23304bf067451a9fdee01fbdd725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
10:45:25.0766 4844 WfpLwf - ok
10:45:25.0785 4844 [ 05ecaec3e4529a7153b3136ceb49f0ec ] WIMMount C:\Windows\system32\drivers\wimmount.sys
10:45:25.0786 4844 WIMMount - ok
10:45:25.0803 4844 WinDefend - ok
10:45:25.0831 4844 WinHttpAutoProxySvc - ok
10:45:25.0881 4844 [ 19b07e7e8915d701225da41cb3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
10:45:25.0886 4844 Winmgmt - ok
10:45:25.0945 4844 [ bcb1310604aa415c4508708975b3931e ] WinRM C:\Windows\system32\WsmSvc.dll
10:45:25.0988 4844 WinRM - ok
10:45:26.0051 4844 [ fe88b288356e7b47b74b13372add906d ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
10:45:26.0054 4844 WinUsb - ok
10:45:26.0095 4844 [ 4fada86e62f18a1b2f42ba18ae24e6aa ] Wlansvc C:\Windows\System32\wlansvc.dll
10:45:26.0121 4844 Wlansvc - ok
10:45:26.0246 4844 [ 7e47c328fc4768cb8beafbcfafa70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
10:45:26.0259 4844 wlidsvc - ok
10:45:26.0286 4844 [ f6ff8944478594d0e414d3f048f0d778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
10:45:26.0288 4844 WmiAcpi - ok
10:45:26.0320 4844 [ 38b84c94c5a8af291adfea478ae54f93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
10:45:26.0324 4844 wmiApSrv - ok
10:45:26.0344 4844 WMPNetworkSvc - ok
10:45:26.0360 4844 [ 96c6e7100d724c69fcf9e7bf590d1dca ] WPCSvc C:\Windows\System32\wpcsvc.dll
10:45:26.0364 4844 WPCSvc - ok
10:45:26.0395 4844 [ 93221146d4ebbf314c29b23cd6cc391d ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
10:45:26.0399 4844 WPDBusEnum - ok
10:45:26.0428 4844 [ 6bcc1d7d2fd2453957c5479a32364e52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
10:45:26.0430 4844 ws2ifsl - ok
10:45:26.0454 4844 [ e8b1fe6669397d1772d8196df0e57a9e ] wscsvc C:\Windows\System32\wscsvc.dll
10:45:26.0458 4844 wscsvc - ok
10:45:26.0474 4844 WSearch - ok
10:45:26.0569 4844 [ d9ef901dca379cfe914e9fa13b73b4c4 ] wuauserv C:\Windows\system32\wuaueng.dll
10:45:26.0620 4844 wuauserv - ok
10:45:26.0639 4844 [ d3381dc54c34d79b22cee0d65ba91b7c ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
10:45:26.0641 4844 WudfPf - ok
10:45:26.0685 4844 [ cf8d590be3373029d57af80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
10:45:26.0690 4844 WUDFRd - ok
10:45:26.0715 4844 [ 7a95c95b6c4cf292d689106bcae49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
10:45:26.0719 4844 wudfsvc - ok
10:45:26.0758 4844 [ 9a3452b3c2a46c073166c5cf49fad1ae ] WwanSvc C:\Windows\System32\wwansvc.dll
10:45:26.0831 4844 WwanSvc - ok
10:45:26.0895 4844 [ ec9c9bde42e3b8e9f0811468f2723e4f ] XobniService C:\Program Files\Xobni\XobniService.exe
10:45:26.0896 4844 XobniService - ok
10:45:26.0910 4844 ================ Scan global ===============================
10:45:26.0921 4844 (ba0cd8c393e8c9f83354106093832c7b) C:\Windows\system32\basesrv.dll
10:45:26.0954 4844 (eb6a48cc998e1090e44e8e7f1009a640) C:\Windows\system32\winsrv.dll
10:45:26.0970 4844 (eb6a48cc998e1090e44e8e7f1009a640) C:\Windows\system32\winsrv.dll
10:45:26.0991 4844 (d6160f9d869ba3af0b787f971db56368) C:\Windows\system32\sxssrv.dll
10:45:27.0011 4844 (24acb7e5be595468e3b9aa488b9b4fcb) C:\Windows\system32\services.exe
10:45:27.0014 4844 [Global] - ok
10:45:27.0015 4844 ================ Scan MBR ==================================
10:45:27.0026 4844 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
10:45:27.0270 4844 \Device\Harddisk0\DR0 - ok
10:45:27.0274 4844 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk1\DR1
10:45:27.0325 4844 \Device\Harddisk1\DR1 - ok
10:45:27.0326 4844 ================ Scan VBR ==================================
10:45:27.0328 4844 Boot (0x1200) (c1b5bb8900adec30a81c988c0d36191d) \Device\Harddisk0\DR0\Partition1
10:45:27.0330 4844 \Device\Harddisk0\DR0\Partition1 - ok
10:45:27.0331 4844 Boot (0x1200) (367c74f0ec7000a8417f79261552f3ec) \Device\Harddisk1\DR1\Partition1
10:45:27.0333 4844 \Device\Harddisk1\DR1\Partition1 - ok
10:45:27.0334 4844 ============================================================
10:45:27.0334 4844 Scan finished
10:45:27.0334 4844 ============================================================
10:45:27.0343 3672 Detected object count: 0
10:45:27.0343 3672 Actual detected object count: 0


ASWMBR LOG

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-16 10:54:34
-----------------------------
10:54:34.861 OS Version: Windows x64 6.1.7601 Service Pack 1
10:54:34.861 Number of processors: 4 586 0xF07
10:54:34.862 ComputerName: Q6600 UserName:
10:54:36.756 Initialize success
10:56:52.022 AVAST engine defs: 12081503
10:57:22.396 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T1L0-6
10:57:22.399 Disk 0 Vendor: WDC_WD5000AAKS-22TMA0 12.01C01 Size: 476940MB BusType: 3
10:57:22.401 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP4T0L0-4
10:57:22.404 Disk 1 Vendor: SAMSUNG_HD103SJ 1AJ10001 Size: 953869MB BusType: 3
10:57:22.417 Disk 0 MBR read successfully
10:57:22.420 Disk 0 MBR scan
10:57:22.436 Disk 0 Windows 7 default MBR code
10:57:22.454 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 476938 MB offset 2048
10:57:22.527 Disk 0 scanning C:\Windows\system32\drivers
10:58:46.021 Service scanning
10:59:36.219 Modules scanning
10:59:36.227 Disk 0 trace - called modules:
10:59:36.242 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
10:59:36.247 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8007dfb060]
10:59:36.253 3 CLASSPNP.SYS[fffff8800142b43f] -> nt!IofCallDriver -> [0xfffffa800773a520]
10:59:36.258 5 ACPI.sys[fffff88000f647a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP2T1L0-6[0xfffffa8007750680]
10:59:37.449 AVAST engine scan C:\Windows
10:59:43.333 AVAST engine scan C:\Windows\system32
11:06:35.151 AVAST engine scan C:\Windows\system32\drivers
11:07:01.593 AVAST engine scan C:\Users\Administrator 2
11:07:20.221 AVAST engine scan C:\ProgramData
11:10:23.154 Scan finished successfully
11:13:08.690 Disk 0 MBR has been saved successfully to "C:\Users\Administrator 2\Desktop\MBR.dat"
11:13:08.711 The log file has been saved successfully to "C:\Users\Administrator 2\Desktop\aswMBR.txt"


ESET Online Scan Results

No threats found.
Scanned files: 338166
Infected files: 0
Cleaned files: 0
Total scan time: 01:34:15
Scan status: Finished

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:36 AM

Posted 15 August 2012 - 11:29 PM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log

#5 skypilotpete

skypilotpete
  • Topic Starter

  • Members
  • 51 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Adelaide, South Australia
  • Local time:02:06 AM

Posted 16 August 2012 - 03:05 AM

Thanks again for your help.

I have run Malwarebytes again and it reports no infections.


MINI TOOLBOX LOG

MiniToolBox by Farbar Version: 23-07-2012
Ran by Administrator 2 (administrator) on 16-08-2012 at 17:09:56
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Realtek PCIe GBE Family Controller = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add route prefix=0.0.0.0/0 interface="Local Area Connection" nexthop=192.168.1.254 metric=1 publish=Yes
add address name="Local Area Connection" address=192.168.1.50 mask=255.255.255.0


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Q6600
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : 00-21-85-66-B7-3E
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv4 Address. . . . . . . . . . . : 192.168.1.50(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.1.254
DNS Servers . . . . . . . . . . . : 192.231.203.132
192.231.203.3
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{2B06F1C8-FFE2-4537-AA74-E22F2E888B94}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 9:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:9d38:953c:10a5:16b3:3f57:fecd(Preferred)
Link-local IPv6 Address . . . . . : fe80::10a5:16b3:3f57:fecd%11(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: resolv.internode.on.net
Address: 192.231.203.132

Name: google.com
Addresses: 2404:6800:4006:801::1002
74.125.237.33
74.125.237.34
74.125.237.35
74.125.237.36
74.125.237.37
74.125.237.38
74.125.237.39
74.125.237.40
74.125.237.41
74.125.237.46
74.125.237.32


Pinging google.com [74.125.237.32] with 32 bytes of data:
Reply from 74.125.237.32: bytes=32 time=56ms TTL=54
Reply from 74.125.237.32: bytes=32 time=55ms TTL=55

Ping statistics for 74.125.237.32:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 55ms, Maximum = 56ms, Average = 55ms
Server: resolv.internode.on.net
Address: 192.231.203.132

Name: yahoo.com
Addresses: 98.138.253.109
98.139.183.24
72.30.38.140


Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=252ms TTL=52
Reply from 72.30.38.140: bytes=32 time=324ms TTL=52

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 252ms, Maximum = 324ms, Average = 288ms
Server: resolv.internode.on.net
Address: 192.231.203.132

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=6ms TTL=128
Reply from 127.0.0.1: bytes=32 time=3ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 3ms, Maximum = 6ms, Average = 4ms
===========================================================================
Interface List
10...00 21 85 66 b7 3e ......Realtek PCIe GBE Family Controller
1...........................Software Loopback Interface 1
21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
11...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.254 192.168.1.50 21
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.50 276
192.168.1.50 255.255.255.255 On-link 192.168.1.50 276
192.168.1.255 255.255.255.255 On-link 192.168.1.50 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.50 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.50 276
===========================================================================
Persistent Routes:
Network Address Netmask Gateway Address Metric
0.0.0.0 0.0.0.0 192.168.1.254 1
===========================================================================

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
11 58 ::/0 On-link
1 306 ::1/128 On-link
11 58 2001::/32 On-link
11 306 2001:0:9d38:953c:10a5:16b3:3f57:fecd/128
On-link
11 306 fe80::/64 On-link
11 306 fe80::10a5:16b3:3f57:fecd/128
On-link
1 306 ff00::/8 On-link
11 306 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 08 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 08 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/16/2012 10:18:48 AM) (Source: Windows Search Service) (User: )
Description: The index cannot be initialized.

Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (08/16/2012 10:18:48 AM) (Source: Windows Search Service) (User: )
Description: The application cannot be initialized.

Context: Windows Application

Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (08/16/2012 10:18:48 AM) (Source: Windows Search Service) (User: )
Description: The gatherer object cannot be initialized.

Context: Windows Application, SystemIndex Catalog

Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (08/16/2012 10:18:48 AM) (Source: Windows Search Service) (User: )
Description: The plug-in in <Search.TripoliIndexer> cannot be initialized.

Context: Windows Application, SystemIndex Catalog

Details:
Element not found. (HRESULT : 0x80070490) (0x80070490)

Error: (08/16/2012 10:18:47 AM) (Source: Windows Search Service) (User: )
Description: The plug-in in <Search.JetPropStore> cannot be initialized.

Context: Windows Application, SystemIndex Catalog

Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (08/16/2012 10:18:46 AM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service cannot load the property store information.

Context: Windows Application, SystemIndex Catalog

Details:
The content index database is corrupt. (HRESULT : 0xc0041800) (0xc0041800)

Error: (08/16/2012 10:18:46 AM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service is being stopped because there is a problem with the indexer: The catalog is corrupt.

Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (08/16/2012 10:18:46 AM) (Source: Windows Search Service) (User: )
Description: The search service has detected corrupted data files in the index {id=4700}. The service will attempt to automatically correct this problem by rebuilding the index.

Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (08/16/2012 10:18:46 AM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service cannot open the Jet property store.

Details:
0x%08x (0xc0041800 - The content index database is corrupt. (HRESULT : 0xc0041800))

Error: (08/16/2012 10:18:44 AM) (Source: ESENT) (User: )
Description: Windows (4476) Windows: Error -1811 occurred while opening logfile C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS00046.log.


System errors:
=============
Error: (08/16/2012 10:19:29 AM) (Source: WMPNetworkSvc) (User: )
Description: WMPNetworkSvc0x80070422

Error: (08/16/2012 10:19:03 AM) (Source: Service Control Manager) (User: )
Description: The Windows Search service failed to start due to the following error:
%%1053

Error: (08/16/2012 10:19:03 AM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Windows Search service to connect.

Error: (08/16/2012 10:19:00 AM) (Source: Service Control Manager) (User: )
Description: The Windows Search service failed to start due to the following error:
%%1053

Error: (08/16/2012 10:19:00 AM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Windows Search service to connect.

Error: (08/16/2012 10:19:00 AM) (Source: DCOM) (User: )
Description: 1053WSearch{9E175B6D-F52A-11D8-B9A5-505054503030}

Error: (08/16/2012 10:18:49 AM) (Source: Service Control Manager) (User: )
Description: The Windows Search service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service.

Error: (08/16/2012 10:18:49 AM) (Source: Service Control Manager) (User: )
Description: The Windows Search service terminated with service-specific error %%-1073473535.

Error: (08/16/2012 10:16:56 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
SABKUTIL
SASKUTIL

Error: (08/16/2012 10:15:16 AM) (Source: Application Popup) (User: )
Description: \SystemRoot\SysWow64\drivers\pfc.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.


Microsoft Office Sessions:
=========================
Error: (08/16/2012 10:18:48 AM) (Source: Windows Search Service)(User: )
Description: Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (08/16/2012 10:18:48 AM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application

Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (08/16/2012 10:18:48 AM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog

Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (08/16/2012 10:18:48 AM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog

Details:
Element not found. (HRESULT : 0x80070490) (0x80070490)
Search.TripoliIndexer

Error: (08/16/2012 10:18:47 AM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog

Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)
Search.JetPropStore

Error: (08/16/2012 10:18:46 AM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog

Details:
The content index database is corrupt. (HRESULT : 0xc0041800) (0xc0041800)

Error: (08/16/2012 10:18:46 AM) (Source: Windows Search Service)(User: )
Description: Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)
The catalog is corrupt

Error: (08/16/2012 10:18:46 AM) (Source: Windows Search Service)(User: )
Description: Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)
4700

Error: (08/16/2012 10:18:46 AM) (Source: Windows Search Service)(User: )
Description: Details:
0x%08x (0xc0041800 - The content index database is corrupt. (HRESULT : 0xc0041800))

Error: (08/16/2012 10:18:44 AM) (Source: ESENT)(User: )
Description: Windows4476Windows: C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS00046.log-1811


=========================== Installed Programs ============================

7-Zip 9.20 (x64 edition) (Version: 9.20.00.0)
A-PDF Restrictions Remover 1.5
abcAVI
AC3Filter 1.63b (Version: 1.63b)
Acrobat.com (Version: 0.0.0)
Acrobat.com (Version: 1.2.443)
ActiveState ActivePython 2.7.1.4 (32-bit) (Version: 2.7.4)
Adobe Acrobat 9 Pro - English, Français, Deutsch (Version: 9.5.1)
Adobe Acrobat 9.5.1 - CPSID_83708
Adobe AIR (Version: 1.1.0.5790)
Adobe Anchor Service CS4 (Version: 2.0)
Adobe Anchor Service x64 CS4 (Version: 2.0)
Adobe Asset Services CS4 (Version: 4)
Adobe Audition 1.5 (Version: 1.5)
Adobe Bridge CS4 (Version: 3)
Adobe CMaps CS4 (Version: 2.0)
Adobe CMaps x64 CS4 (Version: 2.0)
Adobe Color - Photoshop Specific CS4 (Version: 2.0)
Adobe Color EU Recommended Settings CS4 (Version: 2.0)
Adobe Color JA Extra Settings CS4 (Version: 2.0)
Adobe Color NA Extra Settings CS4 (Version: 2.0)
Adobe Color Video Profiles CS CS4 (Version: 2.0)
Adobe Contribute CS4 (Version: 5.0)
Adobe Creative Suite 4 Web Premium (Version: 4.0)
Adobe CS4 American English Speech Analysis Models (Version: 1)
Adobe CS4 French Speech Analysis Models (Version: 1)
Adobe CS4 German Speech Analysis Models (Version: 1)
Adobe CS4 International English Speech Analysis Models (Version: 1)
Adobe CS4 Italian Speech Analysis Models (Version: 1)
Adobe CS4 Japanese Speech Analysis Models (Version: 1)
Adobe CS4 Korean Speech Analysis Models (Version: 1)
Adobe CS4 Spanish Speech Analysis Models (Version: 1)
Adobe CSI CS4 (Version: 1)
Adobe CSI CS4 x64 (Version: 1)
Adobe Default Language CS4 (Version: 2.0)
Adobe Device Central CS4 (Version: 2)
Adobe Dreamweaver CS4 (Version: 10.0)
Adobe Drive CS4 (Version: 1)
Adobe Drive CS4 x64 (Version: 1)
Adobe Dynamiclink Support (Version: 1)
Adobe ExtendScript Toolkit CS4 (Version: 3.0.0)
Adobe Extension Manager CS4 (Version: 2.0)
Adobe Fireworks CS4 (Version: 10.0)
Adobe Flash CS4 (Version: 10.0)
Adobe Flash CS4 Extension - Flash Lite STI en (Version: 3.0)
Adobe Flash CS4 STI-en (Version: 10.0)
Adobe Flash Player 10 Plugin (Version: 10.3.183.10)
Adobe Fonts All (Version: 2.0)
Adobe Fonts All x64 (Version: 2.0)
Adobe Illustrator CS4 (Version: 14.0)
Adobe Linguistics CS4 (Version: 4.0.0)
Adobe Linguistics CS4 x64 (Version: 4.0.0)
Adobe Media Encoder CS4 (Version: 1.0)
Adobe Media Encoder CS4 Importer (Version: 1.0)
Adobe Media Player (Version: 0.0.0)
Adobe Media Player (Version: 1.1)
Adobe Output Module (Version: 2.0)
Adobe PDF Library Files CS4 (Version: 9.0)
Adobe PDF Library Files x64 CS4 (Version: 9.0)
Adobe Photoshop CS4 (64 Bit) (Version: 11.0)
Adobe Photoshop CS4 (Version: 11.0)
Adobe Photoshop CS4 Support (Version: 11.0)
Adobe Reader 9.4.5 (Version: 9.4.5)
Adobe Search for Help (Version: 1.0)
Adobe Service Manager Extension (Version: 1.0)
Adobe Setup (Version: 2.0)
Adobe Soundbooth CS4 (Version: 2)
Adobe Soundbooth CS4 Codecs (Version: 2)
Adobe Type Support CS4 (Version: 9.0)
Adobe Type Support x64 CS4 (Version: 9.0)
Adobe Update Manager CS4 (Version: 6.0.0)
Adobe Version Cue CS4 Server (Version: 4.0)
Adobe WinSoft Linguistics Plugin (Version: 1.1)
Adobe WinSoft Linguistics Plugin x64 (Version: 1.1)
Adobe XMP Panels CS4 (Version: 2.0)
AdobeColorCommonSetCMYK (Version: 2.0)
AdobeColorCommonSetRGB (Version: 2.0)
Advanced Renamer
Amazon Kindle
AnyDVD (Version: 7.0.5.0)
Apple Application Support (Version: 2.1.7)
Apple Mobile Device Support (Version: 5.1.1.4)
Apple Software Update (Version: 2.1.3.127)
ASUS Xonar DX Audio Driver
µTorrent (Version: 2.0.4)
AudibleManager (Version: 1996963054.48.56.4073866)
Auslogics Disk Defrag (Version: version 3.2)
BatchPurifier (Version: 4.0.1)
Belarc Advisor 8.2 (Version: 8.2.6.0)
Bonjour (Version: 3.0.0.10)
Bulk Rename Utility 2.7.1.2
calibre (Version: 0.8.62)
CameraHelperMsi (Version: 13.30.1395.0)
Canon Easy-PhotoPrint EX
Canon Inkjet Printer Driver Add-On Module
Canon MG5300 series MP Drivers
Canon MG5300 series On-screen Manual
Canon MP Navigator EX 5.0
Canon My Printer
Canon Solution Menu EX
CCleaner (Version: 3.21)
CLAM-Chordata 1.0.0 (Version: 1.0.0)
CloneCD
CloneDVD2 (Version: 2.9.3.0)
ComicRack v0.9.152 (Version: v0.9.152)
Connect (Version: 1.0.0.1)
ConvertXtoDVD 4.1.19.365 (Version: 4.1.19.365)
COWON Media Center - jetAudio Plus VX (Version: 8.0.15)
CPUID CPU-Z 1.55
CPUID HWMonitor 1.16
D3DX10 (Version: 15.4.2368.0902)
dBpoweramp AAC Encoder
dBpoweramp DirectShow Decoder (Version: Release 2)
dBpoweramp m4a Codec (Version: Release 14 r2)
dBpoweramp m4a Nero AAC Encoder (Version: Release 1)
dBpoweramp m4b Audio book Encoder
dBpoweramp Music Converter (Version: Release 14.2)
dBpoweramp Windows Media Audio 10 Codec (Version: Release 7)
Debugging Tools for Windows (x64) (Version: 6.11.1.404)
Definition Update for Microsoft Office 2010 (KB982726) 64-Bit Edition
DHTML Editing Component (Version: 6.02.0001)
DivX ;-) Audio Compressor 4.02
DivX Setup (Version: 2.6.1.8)
DVD Decrypter (Remove Only)
DVD Shrink 3.2
DVDFab 8.1.6.3 (11/02/2012) Qt
e-tax 2008
erLT (Version: 1.20.138.34)
ESET Online Scanner v3
Express Scribe
GetFLV 9.0.6.0
GetFLV Pro 9.0.3.1
GoodSync (Version: 8.9.8.0)
Google Update Helper (Version: 1.3.21.115)
GPL Ghostscript 8.70
GroupMail :: Personal Edition (Version: 5.3.0.112)
HitmanPro 3.6 (Version: 3.6.1.164)
ImgBurn (Version: 2.5.5.0)
Internode Monthly Usage Meter 8.1z
IrfanView (remove only) (Version: 4.27)
iTunes (Version: 10.6.0.40)
Java Auto Updater (Version: 2.1.6.0)
Java™ 7 Update 5 (Version: 7.0.50)
JavaFX 2.1.1 (Version: 2.1.1)
Junk Mail filter update (Version: 15.4.3502.0922)
Jutoh 1.34 (Version: 1.34)
kuler (Version: 2.0)
Logitech SetPoint 6.30 (Version: 6.30.43)
Logitech Webcam Software (Version: 2.30)
LWS Facebook (Version: 13.30.1346.0)
LWS Gallery (Version: 13.30.1379.0)
LWS Help_main (Version: 13.30.1396.0)
LWS Launcher (Version: 13.30.1379.0)
LWS Motion Detection (Version: 13.30.1395.0)
LWS Pictures And Video (Version: 13.30.1395.0)
LWS Twitter (Version: 13.30.1346.0)
LWS Video Mask Maker (Version: 13.30.1379.0)
LWS VideoEffects (Version: 13.25.1005.0)
LWS Webcam Software (Version: 13.30.1379.0)
LWS WLM Plugin (Version: 1.30.1201.0)
LWS YouTube Plugin (Version: 13.30.1346.0)
MailWasher Pro
MailWasherPro (Version: 1.20.0)
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
Media Player Classic - Home Cinema 1.6.0.4014 x64 (Version: 1.6.0.4014)
MediaFACE 4.01 (Version: 4.01)
MediaFACE 4.01 Image Library (Version: 4.01)
MediaInfo 0.7.50 (Version: 0.7.50)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30320)
Microsoft .NET Framework 4 Extended (Version: 4.0.30320)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft IntelliPoint 8.2 (Version: 8.20.468.0)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office FrontPage 2003 (Version: 11.0.8173.0)
Microsoft Office Office 32-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Professional 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 32-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Single Image 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Online Services Sign In (Version: 1.0.1427.40)
Microsoft Outlook Personal Folders Backup (Version: 1.10.0.0)
Microsoft Security Client (Version: 4.0.1526.0)
Microsoft Security Essentials (Version: 4.0.1526.0)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Works 7.0 (Version: 07.02.0808)
Microsoft_VC90_CRT_x64 (Version: 1.0.0)
Morgan Stream Switcher
Mozilla Firefox 14.0.1 (x86 en-US) (Version: 14.0.1)
Mozilla Maintenance Service (Version: 14.0.1)
Mozilla Thunderbird 13.0.1 (x86 en-US) (Version: 13.0.1)
Mp3tag v2.49 (Version: v2.49)
MSVC80_x64_v2 (Version: 1.0.3.0)
MSVC80_x86_v2 (Version: 1.0.3.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MultiRenamer
Nero 7 Ultra Edition (Version: 7.03.1151)
neroxml (Version: 1.0.0)
Newsbin Pro (Version: 6.21)
NewsLeecher v4.0 Final
Nokia Connectivity Cable Driver (Version: 6.84.0.0)
Nokia Connectivity Cable Driver (Version: 7.1.36.0)
Nokia PC Suite (Version: 7.1.60.0)
NoteBurner 2.35
NoteTab Light 6 (Remove only) (Version: 6.2)
Nuance OmniPage 17 (Version: 17.1.0000)
NVIDIA 3D Vision Controller Driver (Version: 275.33)
NVIDIA 3D Vision Controller Driver 275.33 (Version: 275.33)
NVIDIA Control Panel 275.33 (Version: 275.33)
NVIDIA Graphics Driver 275.33 (Version: 275.33)
NVIDIA Install Application (Version: 2.275.80.0)
NVIDIA PhysX (Version: 9.10.0514)
NVIDIA PhysX System Software 9.10.0514 (Version: 9.10.0514)
NVIDIA Update 1.3.5 (Version: 1.3.5)
NVIDIA Update Components (Version: 1.3.5)
Online Armor 4.5 (Version: 4.5)
OpenAL
OpenOffice.org 3.3 (Version: 3.3.9567)
Panda ActiveScan 2.0 (Version: 01.04.01.0014)
Paragon Partition Manager 9.0 Professional
PC Connectivity Solution (Version: 10.50.2.0)
PDF Settings CS4 (Version: 9.0)
PeerBlock 1.1 (r518) (Version: 1.1.0.518)
PFConfig 1.0.296 (Version: 1.0.296)
PFPortChecker 1.0.36 (Version: 1.0.36)
Photoshop Camera Raw (Version: 5.0)
Photoshop Camera Raw_x64 (Version: 5.0)
Picasa 3 (Version: 3.8)
Pixel Bender Toolkit (Version: 1.0)
Portforward Static IP Address 1.0.44 (Version: 1.0.44)
PSPad editor
PVSonyDll (Version: 1.00.0001)
Python 2.7 pycrypto-2.1.0
QuickPar 0.9 (Version: 0.9)
QuickTime (Version: 7.69.80.9)
Reader Library by Sony (Version: 3.3.00.07130)
Replay AV 8 (Version: 8.83B)
Replay Converter 2.75C
Replay Converter 4 (Version: 4.20)
Replay Media Catcher 4 (4.4.1) (Version: 4.4.1)
Safari (Version: 5.33.21.1)
Samsung Kies (Version: 2.3.0.12035_16)
SAMSUNG USB Driver for Mobile Phones (Version: 1.5.4.0)
Sandboxie 3.72 (64-bit) (Version: 3.72)
SeaTools for Windows (Version: 1.2.0.6)
Shockwave
Skype Click to Call (Version: 5.6.8442)
Skype™ 5.5 (Version: 5.5.124)
Spelling Dictionaries Support For Adobe Reader 9 (Version: 9.0.0)
SpywareBlaster 4.6 (Version: 4.6.0)
Suite Shared Configuration CS4 (Version: 1.0)
SUPERAntiSpyware (Version: 4.42.1000)
SUPERAntiSpyware Free Edition (Version: 4.35.0.1000)
System Requirements Lab
System Requirements Lab for Intel (Version: 4.3.16.0)
ThumbView_Lite 1.0
Total Recorder 8.3 VideoPro Edition
TrueCrypt (Version: 7.1a)
UltraISO Premium V9.36
UltraMon (Version: 3.1.0)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553181) 64-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 64-Bit Edition
Update for Microsoft Office 2010 (KB2553270) 64-Bit Edition
Update for Microsoft Office 2010 (KB2553272) 64-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 64-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2598289) 64-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 64-Bit Edition
Update for Microsoft OneNote 2010 (KB2589345) 64-Bit Edition
Update for Microsoft Outlook 2010 (KB2553248) 64-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 64-Bit Edition
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
Video Padlock (Version: 1.14)
VLC media player 2.0.0 (Version: 2.0.0)
VSO Inspector 2.1.0.6 (Version: 2.1.0.6)
VueScan
Web Album Copier (Version: 0.3.37)
WeBuilder 2011 v11.3 (Version: WeBuilder 2011)
Windows Driver Package - Nokia Modem (06/09/2010 7.01.0.8) (Version: 06/09/2010 7.01.0.8)
Windows Driver Package - Nokia Modem (10/07/2010 4.6) (Version: 10/07/2010 4.6)
Windows Driver Package - Nokia pccsmcfd (08/22/2008 7.0.0.0) (Version: 08/22/2008 7.0.0.0)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3502.0922)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3502.0922)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8117.416)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3502.0922)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
WinPcap 4.0.2 (Version: 4.0.0.1040)
WinRAR archiver
Works Suite OS Pack (Version: 3.0.0.0000)
Xobni (Version: 1.9.5.12910)
Xobni Core (Version: 1.0.0)
xplorer² professional 64 bit (Version: 1.8.1.4)
Xvid 1.2.2 final uninstall (Version: 1.2)

========================= Memory info: ===================================

Percentage of memory in use: 31%
Total physical RAM: 8191.18 MB
Available physical RAM: 5574.35 MB
Total Pagefile: 20489.37 MB
Available Pagefile: 17739.93 MB
Total Virtual: 4095.88 MB
Available Virtual: 3954.52 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:465.76 GB) (Free:368.86 GB) NTFS
2 Drive d: () (Fixed) (Total:931.51 GB) (Free:438.87 GB) NTFS

========================= Users: ========================================

User accounts for \\Q6600

Administrator Administrator 2 Chris
Guest Internet UpdatusUser
Visitor


**** End of log ****


FSS LOG

Farbar Service Scanner Version: 06-08-2012
Ran by Administrator 2 (administrator) on 16-08-2012 at 17:14:12
Running from "C:\Users\Administrator 2\Downloads"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****


ADWCLEANER LOG


# AdwCleaner v1.801 - Logfile created 08/16/2012 at 17:19:06
# Updated 14/08/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Administrator 2 - Q6600
# Boot Mode : Normal
# Running from : C:\Users\Administrator 2\Downloads\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****


***** [Registry] *****

Key Deleted : HKLM\SOFTWARE\Conduit

***** [Registre - GUID] *****


***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

-\\ Mozilla Firefox v14.0.1 (en-US)

Profile name : default
File : C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\ghvwz9om.default\prefs.js

[OK] File is clean.

Profile name : default
File : C:\Users\Administrator 2\AppData\Roaming\Mozilla\Firefox\Profiles\cemtm1zh.default\prefs.js

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [555 octets] - [16/08/2012 17:16:54]
AdwCleaner[S2].txt - [994 octets] - [16/08/2012 17:19:06]

########## EOF - C:\AdwCleaner[S2].txt - [1121 octets] ##########

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:36 AM

Posted 16 August 2012 - 03:46 AM

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot.If TFC locks up the system,run it in safemode

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Update your flash player

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp

Update your antivirus frequently,do not click on suspicious links

Safe surfing :)

#7 skypilotpete

skypilotpete
  • Topic Starter

  • Members
  • 51 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Adelaide, South Australia
  • Local time:02:06 AM

Posted 16 August 2012 - 07:42 PM

All done - thanks for all your help.

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:36 AM

Posted 16 August 2012 - 08:55 PM

You're welcome :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users