Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Random pages opening


  • This topic is locked This topic is locked
13 replies to this topic

#1 Notsoanonymous

Notsoanonymous

  • Members
  • 63 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:44 AM

Posted 16 September 2012 - 07:02 PM

Hello,
I have this annoying problem which i'm sure, is a virus (kinda think about a rootkit). About 5 days ago, my AVG popped up and told me i had a virus in my appdata/roaming folder called compatibleSxs.exe. I clicked put in quarantine and then poop my laptop started doing a earkiller sound and went in BSOD. Long story short, i booted in safe mode, got my hands on the compatiblesxs file and uploaded it to virustotal here were the results : 4 out of 42 antiviruses found something :
McAfee-GW-Edition Heuristic.BehavesLike.Win32.Downloader.A
ESET-NOD32 a variant of Win32/Injector.WHK
AntiVir TR/Dropper.Gen
TheHacker Posible_Worm32

so i deleted the file and though everything was over. I scanned my computer with malwarebytes in safe mode and normal mode (and with AVG too after) and had nthing so i though i was ok. About 2 hours ago, i came back home and started browsing the net with firefox when i noticed that random pages were opening in my thumbs. How to fix this? I tried tdsskiller and nothing.

I have a Windows 7 64bits operating system, AVG as antivirus, MalwareBytes to perform scans.

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,530 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:44 AM

Posted 16 September 2012 - 07:40 PM

Lets look for more rootkits.
Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Run RKill....


Download and Run RKill
  • Please download RKill by Grinler from one of the 4 links below and save it to your desktop.

    Link 1
    Link 2
    Link 3
    Link 4

  • Before we begin, you should disable your anti-malware softwares you have installed so they do not interfere RKill running as some anti-malware softwares detect RKill as malicious. Please refer to this page if you are not sure how.
  • Double-click on Rkill on your desktop to run it. (If you are using Windows Vista, please right-click on it and select Run As Administrator)
  • A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed.
  • If nothing happens or if the tool does not run, please let me know in your next reply

Do not reboot your computer after running rkill as the malware programs will start again. Or if rebooting is required run it again.


If you continue having problems running rkill.com, you can download iExplore.exe or eXplorer.exe, which are renamed copies of rkill.com, and try them instead.



Please download TDSSKiller.zip and and extract it.
  • Run TDSSKiller.exe.
  • Click on Change Parameters
  • Put a check in the box of Detect TDLFS file system
  • Click Start scan.
  • When it is finished the utility outputs a list of detected objects with description.
    The utility automatically selects an action (Cure or Delete) for malicious objects.
    The utility prompts the user to select an action to apply to suspicious objects (Skip, by default). Let the options as it is and click Continue
  • Let reboot if needed and tell me if the tool needed a reboot.
  • Click on Report and post the contents of the text file that will open.

    Note: By default, the utility outputs the log into system disk (it is usually the disk with installed operating system, C:\) root folder. The Log has a name like: TDSSKiller.Version_Date_Time_log.txt.





Lastly....I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on the following link to open ESET OnlineScan in a new window.
    ESET OnlineScan
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on Posted Image to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image icon on your desktop.
  • Check Posted Image
  • Click the Posted Image button.
  • Accept any security warnings from your browser.
  • Under scan settings, check Posted Image and check Remove found threats
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, push Posted Image
  • Push Posted Image, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Push the Posted Image button.
  • Push Posted Image


NOTE: In some instances if no malware is found there will be no log produced.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 Notsoanonymous

Notsoanonymous
  • Topic Starter

  • Members
  • 63 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:44 AM

Posted 16 September 2012 - 07:53 PM

My computer is in french which is my base language even if i speak a decent english, will you still be able to understand the log?

#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,530 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:44 AM

Posted 16 September 2012 - 07:54 PM

Yes ,,, I should be OK
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 Notsoanonymous

Notsoanonymous
  • Topic Starter

  • Members
  • 63 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:44 AM

Posted 16 September 2012 - 08:07 PM

Sorry again for the language, here is the minitoolbox log, I tried running Rkill twice and it gave me a BSOD twice.


MiniToolBox ::
--

MiniToolBox by Farbar Version: 23-07-2012
Ran by Samuel (administrator) on 16-09-2012 at 20:50:53
Microsoft Windows 7 Édition Familiale Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Configuration IP de Windows

Cache de r‚solution DNS vid‚.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Atheros AR9485WB-EG Wireless Network Adapter = Connexion réseau sans fil (Connected)
VMware Virtual Ethernet Adapter for VMnet1 = VMware Network Adapter VMnet1 (Connected)
VMware Virtual Ethernet Adapter for VMnet8 = VMware Network Adapter VMnet8 (Connected)
Hamachi Network Interface = Hamachi (Connected)
Realtek PCIe GBE Family Controller = Connexion au réseau local (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Connexion réseau sans fil 3 (Media disconnected)


# ----------------------------------
# Configuration du protocole IPv4
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add route prefix=0.0.0.0/0 interface="Hamachi" nexthop=5.0.0.1 publish=Oui
set interface interface="Hamachi" forwarding=disabled advertise=disabled metric=9000 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled advertisedrouterlifetime=0 advertisedefaultroute=disabled currenthoplimit=0 forcearpndwolpattern=disabled enabledirectedmacwolpattern=disabled
add address name="VMware Network Adapter VMnet1" address=192.168.117.1 mask=255.255.255.0
add address name="VMware Network Adapter VMnet8" address=192.168.98.1 mask=255.255.255.0


popd
# Fin de la configuration du protocole IPv4



Configuration IP de Windows

Nom de l'h“te . . . . . . . . . . : SamVAIO
Suffixe DNS principal . . . . . . :
Type de noeud. . . . . . . . . . : Hybride
Routage IP activ‚ . . . . . . . . : Non
Proxy WINS activ‚ . . . . . . . . : Non
Liste de recherche du suffixe DNS.: home

Carte r‚seau sans fil Connexion r‚seau sans fil 3ÿ:

Statut du m‚dia. . . . . . . . . . . . : M‚dia d‚connect‚
Suffixe DNS propre … la connexion. . . :
Description. . . . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter #2
Adresse physique . . . . . . . . . . . : 06-27-37-BB-44-47
DHCP activ‚. . . . . . . . . . . . . . : Oui
Configuration automatique activ‚e. . . : Oui

Carte r‚seau sans fil Connexion r‚seau sans filÿ:

Suffixe DNS propre … la connexion. . . : home
Description. . . . . . . . . . . . . . : Atheros AR9485WB-EG Wireless Network Adapter
Adresse physique . . . . . . . . . . . : 64-27-37-BB-44-47
DHCP activ‚. . . . . . . . . . . . . . : Oui
Configuration automatique activ‚e. . . : Oui
Adresse IPv6 de liaison locale. . . . .: fe80::90d3:5f06:75c0:f357%14(pr‚f‚r‚)
Adresse IPv4. . . . . . . . . . . . . .: 192.168.2.21(pr‚f‚r‚)
Masque de sous-r‚seau. . . .ÿ. . . . . : 255.255.255.0
Bail obtenu. . . . . . . . .ÿ. . . . . : 16 septembre 2012 20:35:44
Bail expirant. . . . . . . . .ÿ. . . . : 19 septembre 2012 20:35:44
Passerelle par d‚faut. . . .ÿ. . . . . : 192.168.2.1
Serveur DHCP . . . . . . . . . . . . . : 192.168.2.1
IAID DHCPv6 . . . . . . . . . . . : 358885175
DUID de client DHCPv6. . . . . . . . : 00-01-00-01-17-7C-D6-B1-54-53-ED-23-21-47
Serveurs DNS. . . . . . . . . . . . . : 192.168.2.1
NetBIOS sur Tcpip. . . . . . . . . . . : Activ‚

Carte Ethernet Connexion au r‚seau local :

Statut du m‚dia. . . . . . . . . . . . : M‚dia d‚connect‚
Suffixe DNS propre … la connexion. . . :
Description. . . . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Adresse physique . . . . . . . . . . . : 54-53-ED-23-21-47
DHCP activ‚. . . . . . . . . . . . . . : Oui
Configuration automatique activ‚e. . . : Oui

Carte Ethernet VMware Network Adapter VMnet1 :

Suffixe DNS propre … la connexion. . . :
Description. . . . . . . . . . . . . . : VMware Virtual Ethernet Adapter for VMnet1
Adresse physique . . . . . . . . . . . : 00-50-56-C0-00-01
DHCP activ‚. . . . . . . . . . . . . . : Non
Configuration automatique activ‚e. . . : Oui
Adresse IPv6 de liaison locale. . . . .: fe80::e47f:252:127a:d56%17(pr‚f‚r‚)
Adresse IPv4. . . . . . . . . . . . . .: 192.168.117.1(pr‚f‚r‚)
Masque de sous-r‚seau. . . .ÿ. . . . . : 255.255.255.0
Passerelle par d‚faut. . . .ÿ. . . . . :
IAID DHCPv6 . . . . . . . . . . . : 469782614
DUID de client DHCPv6. . . . . . . . : 00-01-00-01-17-7C-D6-B1-54-53-ED-23-21-47
Serveurs DNS. . . . . . . . . . . . . : fec0:0:0:ffff::1%1
fec0:0:0:ffff::2%1
fec0:0:0:ffff::3%1
NetBIOS sur Tcpip. . . . . . . . . . . : Activ‚

Carte Ethernet VMware Network Adapter VMnet8 :

Suffixe DNS propre … la connexion. . . :
Description. . . . . . . . . . . . . . : VMware Virtual Ethernet Adapter for VMnet8
Adresse physique . . . . . . . . . . . : 00-50-56-C0-00-08
DHCP activ‚. . . . . . . . . . . . . . : Non
Configuration automatique activ‚e. . . : Oui
Adresse IPv6 de liaison locale. . . . .: fe80::7521:3bb8:261c:ecd2%18(pr‚f‚r‚)
Adresse IPv4. . . . . . . . . . . . . .: 192.168.98.1(pr‚f‚r‚)
Masque de sous-r‚seau. . . .ÿ. . . . . : 255.255.255.0
Passerelle par d‚faut. . . .ÿ. . . . . :
IAID DHCPv6 . . . . . . . . . . . : 486559830
DUID de client DHCPv6. . . . . . . . : 00-01-00-01-17-7C-D6-B1-54-53-ED-23-21-47
Serveurs DNS. . . . . . . . . . . . . : fec0:0:0:ffff::1%1
fec0:0:0:ffff::2%1
fec0:0:0:ffff::3%1
NetBIOS sur Tcpip. . . . . . . . . . . : Activ‚

Carte Ethernet Hamachi :

Suffixe DNS propre … la connexion. . . :
Description. . . . . . . . . . . . . . : Hamachi Network Interface
Adresse physique . . . . . . . . . . . : 7A-79-05-1F-E6-88
DHCP activ‚. . . . . . . . . . . . . . : Oui
Configuration automatique activ‚e. . . : Oui
Adresse IPv6. . . . . . . . . . .ÿ. . .: 2620:9b::51f:e688(pr‚f‚r‚)
Adresse IPv6 de liaison locale. . . . .: fe80::e9f9:eba4:d344:8496%20(pr‚f‚r‚)
Adresse IPv4. . . . . . . . . . . . . .: 5.31.230.136(pr‚f‚r‚)
Masque de sous-r‚seau. . . .ÿ. . . . . : 255.0.0.0
Bail obtenu. . . . . . . . .ÿ. . . . . : 16 septembre 2012 20:35:40
Bail expirant. . . . . . . . .ÿ. . . . : 16 septembre 2012 20:54:48
Passerelle par d‚faut. . . .ÿ. . . . . : 5.0.0.1
Serveur DHCP . . . . . . . . . . . . . : 5.0.0.1
IAID DHCPv6 . . . . . . . . . . . : 528120118
DUID de client DHCPv6. . . . . . . . : 00-01-00-01-17-7C-D6-B1-54-53-ED-23-21-47
Serveurs DNS. . . . . . . . . . . . . : fec0:0:0:ffff::1%1
fec0:0:0:ffff::2%1
fec0:0:0:ffff::3%1
NetBIOS sur Tcpip. . . . . . . . . . . : Activ‚

Carte Tunnel isatap.{DAEDF7C8-D1BC-41F0-AA00-E843FFBF2A02} :

Statut du m‚dia. . . . . . . . . . . . : M‚dia d‚connect‚
Suffixe DNS propre … la connexion. . . :
Description. . . . . . . . . . . . . . : Carte Microsoft ISATAP
Adresse physique . . . . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP activ‚. . . . . . . . . . . . . . : Non
Configuration automatique activ‚e. . . : Oui

Carte Tunnel isatap.{04AD6CDC-F23A-4637-ABE7-5EF1C48FB4D7} :

Statut du m‚dia. . . . . . . . . . . . : M‚dia d‚connect‚
Suffixe DNS propre … la connexion. . . :
Description. . . . . . . . . . . . . . : Carte Microsoft ISATAP #2
Adresse physique . . . . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP activ‚. . . . . . . . . . . . . . : Non
Configuration automatique activ‚e. . . : Oui

Carte Tunnel isatap.home :

Statut du m‚dia. . . . . . . . . . . . : M‚dia d‚connect‚
Suffixe DNS propre … la connexion. . . : home
Description. . . . . . . . . . . . . . : Carte Microsoft ISATAP #3
Adresse physique . . . . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP activ‚. . . . . . . . . . . . . . : Non
Configuration automatique activ‚e. . . : Oui

Carte Tunnel Teredo Tunneling Pseudo-Interface :

Statut du m‚dia. . . . . . . . . . . . : M‚dia d‚connect‚
Suffixe DNS propre … la connexion. . . :
Description. . . . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Adresse physique . . . . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP activ‚. . . . . . . . . . . . . . : Non
Configuration automatique activ‚e. . . : Oui

Carte Tunnel isatap.{D1871A1D-C8C1-4D62-8C20-3AE22F9F4865} :

Statut du m‚dia. . . . . . . . . . . . : M‚dia d‚connect‚
Suffixe DNS propre … la connexion. . . :
Description. . . . . . . . . . . . . . : Carte Microsoft ISATAP #4
Adresse physique . . . . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP activ‚. . . . . . . . . . . . . . : Non
Configuration automatique activ‚e. . . : Oui

Carte Tunnel isatap.{4CF5F2DC-A9D7-4F9F-9BF9-5CEEA0D782C4} :

Statut du m‚dia. . . . . . . . . . . . : M‚dia d‚connect‚
Suffixe DNS propre … la connexion. . . :
Description. . . . . . . . . . . . . . : Carte Microsoft ISATAP #5
Adresse physique . . . . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP activ‚. . . . . . . . . . . . . . : Non
Configuration automatique activ‚e. . . : Oui

Carte Tunnel isatap.{4D9C85FD-9B46-4E6A-A9C7-406C3DDF75C8} :

Statut du m‚dia. . . . . . . . . . . . : M‚dia d‚connect‚
Suffixe DNS propre … la connexion. . . :
Description. . . . . . . . . . . . . . : Carte Microsoft ISATAP #6
Adresse physique . . . . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP activ‚. . . . . . . . . . . . . . : Non
Configuration automatique activ‚e. . . : Oui
Serveur : mynetwork.home
Address: 192.168.2.1

Nom : google.com
Addresses: 2607:f8b0:4006:802::1001
173.194.43.2
173.194.43.0
173.194.43.3
173.194.43.7
173.194.43.5
173.194.43.6
173.194.43.9
173.194.43.1
173.194.43.8
173.194.43.14
173.194.43.4


Envoi d'une requˆte 'ping' sur google.com [173.194.43.4] avec 32 octets de donn‚esÿ:
R‚ponse de 173.194.43.4ÿ: octets=32 temps=13 ms TTL=54
R‚ponse de 173.194.43.4ÿ: octets=32 temps=15 ms TTL=54

Statistiques Ping pour 173.194.43.4:
Paquetsÿ: envoy‚s = 2, re‡us = 2, perdus = 0 (perte 0%),
Dur‚e approximative des boucles en millisecondes :
Minimum = 13ms, Maximum = 15ms, Moyenne = 14ms
Serveur : mynetwork.home
Address: 192.168.2.1

Nom : yahoo.com
Addresses: 72.30.38.140
98.138.253.109
98.139.183.24


Envoi d'une requˆte 'ping' sur yahoo.com [98.139.183.24] avec 32 octets de donn‚esÿ:
R‚ponse de 98.139.183.24ÿ: octets=32 temps=70 ms TTL=49
R‚ponse de 98.139.183.24ÿ: octets=32 temps=112 ms TTL=48

Statistiques Ping pour 98.139.183.24:
Paquetsÿ: envoy‚s = 2, re‡us = 2, perdus = 0 (perte 0%),
Dur‚e approximative des boucles en millisecondes :
Minimum = 70ms, Maximum = 112ms, Moyenne = 91ms
Serveur : mynetwork.home
Address: 192.168.2.1

Nom : bleepingcomputer.com
Address: 208.43.87.2


Envoi d'une requˆte 'ping' sur bleepingcomputer.com [208.43.87.2] avec 32 octets de donn‚esÿ:
R‚ponse de 208.43.87.2ÿ: Impossible de joindre l'h“te de destination.
R‚ponse de 208.43.87.2ÿ: Impossible de joindre l'h“te de destination.

Statistiques Ping pour 208.43.87.2:
Paquetsÿ: envoy‚s = 2, re‡us = 2, perdus = 0 (perte 0%),

Envoi d'une requˆte 'Ping' 127.0.0.1 avec 32 octets de donn‚esÿ:
R‚ponse de 127.0.0.1ÿ: octets=32 temps<1ms TTL=128
R‚ponse de 127.0.0.1ÿ: octets=32 temps<1ms TTL=128

Statistiques Ping pour 127.0.0.1:
Paquetsÿ: envoy‚s = 2, re‡us = 2, perdus = 0 (perte 0%),
Dur‚e approximative des boucles en millisecondes :
Minimum = 0ms, Maximum = 0ms, Moyenne = 0ms
===========================================================================
Liste d'Interfaces
25...06 27 37 bb 44 47 ......Microsoft Virtual WiFi Miniport Adapter #2
14...64 27 37 bb 44 47 ......Atheros AR9485WB-EG Wireless Network Adapter
13...54 53 ed 23 21 47 ......Realtek PCIe GBE Family Controller
17...00 50 56 c0 00 01 ......VMware Virtual Ethernet Adapter for VMnet1
18...00 50 56 c0 00 08 ......VMware Virtual Ethernet Adapter for VMnet8
20...7a 79 05 1f e6 88 ......Hamachi Network Interface
1...........................Software Loopback Interface 1
27...00 00 00 00 00 00 00 e0 Carte Microsoft ISATAP
16...00 00 00 00 00 00 00 e0 Carte Microsoft ISATAP #2
23...00 00 00 00 00 00 00 e0 Carte Microsoft ISATAP #3
15...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
19...00 00 00 00 00 00 00 e0 Carte Microsoft ISATAP #4
21...00 00 00 00 00 00 00 e0 Carte Microsoft ISATAP #5
26...00 00 00 00 00 00 00 e0 Carte Microsoft ISATAP #6
===========================================================================

IPv4 Table de routage
===========================================================================
Itin‚raires actifsÿ:
Destination r‚seau Masque r‚seau Adr. passerelle Adr. interface M‚trique
0.0.0.0 0.0.0.0 5.0.0.1 5.31.230.136 9256
0.0.0.0 0.0.0.0 192.168.2.1 192.168.2.21 25
5.0.0.0 255.0.0.0 On-link 5.31.230.136 9256
5.31.230.136 255.255.255.255 On-link 5.31.230.136 9256
5.255.255.255 255.255.255.255 On-link 5.31.230.136 9256
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.2.0 255.255.255.0 On-link 192.168.2.21 281
192.168.2.21 255.255.255.255 On-link 192.168.2.21 281
192.168.2.255 255.255.255.255 On-link 192.168.2.21 281
192.168.98.0 255.255.255.0 On-link 192.168.98.1 276
192.168.98.1 255.255.255.255 On-link 192.168.98.1 276
192.168.98.255 255.255.255.255 On-link 192.168.98.1 276
192.168.117.0 255.255.255.0 On-link 192.168.117.1 276
192.168.117.1 255.255.255.255 On-link 192.168.117.1 276
192.168.117.255 255.255.255.255 On-link 192.168.117.1 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 5.31.230.136 9256
224.0.0.0 240.0.0.0 On-link 192.168.117.1 276
224.0.0.0 240.0.0.0 On-link 192.168.98.1 276
224.0.0.0 240.0.0.0 On-link 192.168.2.21 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 5.31.230.136 9256
255.255.255.255 255.255.255.255 On-link 192.168.117.1 276
255.255.255.255 255.255.255.255 On-link 192.168.98.1 276
255.255.255.255 255.255.255.255 On-link 192.168.2.21 281
===========================================================================
Itin‚raires persistantsÿ:
Adresse r‚seau Masque r‚seau Adresse passerelle M‚trique
0.0.0.0 0.0.0.0 5.0.0.1 Par d‚faut
===========================================================================

IPv6 Table de routage
===========================================================================
Itin‚raires actifsÿ:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
20 276 2620:9b::/64 On-link
20 276 2620:9b::/96 On-link
20 276 2620:9b::51f:e688/128 On-link
20 276 fe80::/64 On-link
17 276 fe80::/64 On-link
18 276 fe80::/64 On-link
14 281 fe80::/64 On-link
18 276 fe80::7521:3bb8:261c:ecd2/128
On-link
14 281 fe80::90d3:5f06:75c0:f357/128
On-link
17 276 fe80::e47f:252:127a:d56/128
On-link
20 276 fe80::e9f9:eba4:d344:8496/128
On-link
1 306 ff00::/8 On-link
20 276 ff00::/8 On-link
17 276 ff00::/8 On-link
18 276 ff00::/8 On-link
14 281 ff00::/8 On-link
===========================================================================
Itin‚raires persistantsÿ:
If Metric Network Destination Gateway
0 4294967295 2620:9b::/96 On-link
===========================================================================
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 10 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 12 C:\Windows\SysWOW64\vsocklib.dll [63088] (VMware, Inc.)
Catalog9 13 C:\Windows\SysWOW64\vsocklib.dll [63088] (VMware, Inc.)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 10 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 12 C:\Windows\System32\vsocklib.dll [67184] (VMware, Inc.)
x64-Catalog9 13 C:\Windows\System32\vsocklib.dll [67184] (VMware, Inc.)

========================= Event log errors: ===============================

Application errors:
==================
Error: (09/16/2012 08:37:12 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/16/2012 08:27:23 PM) (Source: Microsoft Security Client Setup) (User: SamVAIO)SamVAIO
Description: HRESULT:0x8004FF11
Description:Can’t install Microsoft Security Essentials on a computer running in safe mode. Your computer is currently running in safe mode. To install Security Essentials, your computer must be running in normal mode. Please restart your computer in normal mode, and then try to run the Security Essentials Setup Wizard again. Error code:0x8004FF11.

Error: (09/16/2012 07:10:55 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/16/2012 06:22:11 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/14/2012 05:12:23 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/13/2012 05:27:39 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/12/2012 07:47:08 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/11/2012 08:38:14 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/11/2012 07:40:00 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/11/2012 07:11:23 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (09/16/2012 08:34:45 PM) (Source: Service Control Manager) (User: )
Description: Le service Explorateur d’ordinateurs dépend du service Serveur qui n’a pas pu démarrer en raison de l’erreur :
%%1068

Error: (09/16/2012 08:34:45 PM) (Source: Service Control Manager) (User: )
Description: Le service Explorateur d’ordinateurs dépend du service Serveur qui n’a pas pu démarrer en raison de l’erreur :
%%1068

Error: (09/16/2012 08:34:45 PM) (Source: Service Control Manager) (User: )
Description: Le service Explorateur d’ordinateurs dépend du service Serveur qui n’a pas pu démarrer en raison de l’erreur :
%%1068

Error: (09/16/2012 08:34:17 PM) (Source: Service Control Manager) (User: )
Description: Le service Explorateur d’ordinateurs dépend du service Serveur qui n’a pas pu démarrer en raison de l’erreur :
%%1068

Error: (09/16/2012 08:34:17 PM) (Source: Service Control Manager) (User: )
Description: Le service Explorateur d’ordinateurs dépend du service Serveur qui n’a pas pu démarrer en raison de l’erreur :
%%1068

Error: (09/16/2012 08:34:17 PM) (Source: Service Control Manager) (User: )
Description: Le service Explorateur d’ordinateurs dépend du service Serveur qui n’a pas pu démarrer en raison de l’erreur :
%%1068

Error: (09/16/2012 08:32:19 PM) (Source: Service Control Manager) (User: )
Description: Le service Explorateur d’ordinateurs dépend du service Serveur qui n’a pas pu démarrer en raison de l’erreur :
%%1068

Error: (09/16/2012 08:32:19 PM) (Source: Service Control Manager) (User: )
Description: Le service Explorateur d’ordinateurs dépend du service Serveur qui n’a pas pu démarrer en raison de l’erreur :
%%1068

Error: (09/16/2012 08:32:19 PM) (Source: Service Control Manager) (User: )
Description: Le service Explorateur d’ordinateurs dépend du service Serveur qui n’a pas pu démarrer en raison de l’erreur :
%%1068

Error: (09/16/2012 08:31:52 PM) (Source: Service Control Manager) (User: )
Description: Le service Explorateur d’ordinateurs dépend du service Serveur qui n’a pas pu démarrer en raison de l’erreur :
%%1068


Microsoft Office Sessions:
=========================
Error: (09/16/2012 08:37:12 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/16/2012 08:27:23 PM) (Source: Microsoft Security Client Setup)(User: SamVAIO)SamVAIO
Description: HRESULT:0x8004FF11
Description:Can’t install Microsoft Security Essentials on a computer running in safe mode. Your computer is currently running in safe mode. To install Security Essentials, your computer must be running in normal mode. Please restart your computer in normal mode, and then try to run the Security Essentials Setup Wizard again. Error code:0x8004FF11.

Error: (09/16/2012 07:10:55 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/16/2012 06:22:11 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/14/2012 05:12:23 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/13/2012 05:27:39 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/12/2012 07:47:08 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/11/2012 08:38:14 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/11/2012 07:40:00 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/11/2012 07:11:23 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


=========================== Installed Programs ============================

7-Zip 9.20
ACID Music Studio 8.0 (Version: 8.0.178)
Adobe Flash Player 11 ActiveX (Version: 11.3.300.271)
Adobe Flash Player 11 Plugin (Version: 11.3.300.271)
Adobe Reader X (10.1.4) - Français (Version: 10.1.4)
AMD APP SDK Runtime (Version: 10.0.923.1)
AMD Catalyst Install Manager (Version: 8.0.873.0)
Apple Application Support (Version: 2.1.9)
Apple Mobile Device Support (Version: 5.2.0.6)
Atheros Bluetooth Suite (64) (Version: 7.4.0.120)
µTorrent (Version: 2.2.1)
AVG 2012 (Version: 12.0.2221)
AVG 2012 (Version: 12.0.2437)
AVG 2012 (Version: 2012.0.2221)
BlueStacks (Version: 0.7.3.766)
Bonjour (Version: 3.0.0.10)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center (Version: 2012.0117.2242.40496)
Catalyst Control Center Graphics Previews Common (Version: 2012.0117.2242.40496)
Catalyst Control Center Localization All (Version: 2012.0117.2242.40496)
ccc-utility64 (Version: 2012.0117.2242.40496)
CCC Help Chinese Standard (Version: 2012.0117.2241.40496)
CCC Help Chinese Traditional (Version: 2012.0117.2241.40496)
CCC Help Czech (Version: 2012.0117.2241.40496)
CCC Help Danish (Version: 2012.0117.2241.40496)
CCC Help Dutch (Version: 2012.0117.2241.40496)
CCC Help English (Version: 2012.0117.2241.40496)
CCC Help Finnish (Version: 2012.0117.2241.40496)
CCC Help French (Version: 2012.0117.2241.40496)
CCC Help German (Version: 2012.0117.2241.40496)
CCC Help Greek (Version: 2012.0117.2241.40496)
CCC Help Hungarian (Version: 2012.0117.2241.40496)
CCC Help Italian (Version: 2012.0117.2241.40496)
CCC Help Japanese (Version: 2012.0117.2241.40496)
CCC Help Korean (Version: 2012.0117.2241.40496)
CCC Help Norwegian (Version: 2012.0117.2241.40496)
CCC Help Polish (Version: 2012.0117.2241.40496)
CCC Help Portuguese (Version: 2012.0117.2241.40496)
CCC Help Russian (Version: 2012.0117.2241.40496)
CCC Help Spanish (Version: 2012.0117.2241.40496)
CCC Help Swedish (Version: 2012.0117.2241.40496)
CCC Help Thai (Version: 2012.0117.2241.40496)
CCC Help Turkish (Version: 2012.0117.2241.40496)
CCleaner (Version: 3.21)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (Version: 15.4.5722.2)
CyberLink PowerDVD (Version: 9.0.5009.52)
D3DX10 (Version: 15.4.2368.0902)
DAEMON Tools Lite (Version: 4.45.4.0315)
Defraggler (Version: 2.10)
Diablo II
Diagnostic du ventilateur de l'UC VAIO (Version: 1.1.0.09200)
Dropbox (Version: 1.4.12)
DVD Architect Studio 5.0 (Version: 5.0.157)
Evernote v. 4.5.2 (Version: 4.5.2.5904)
F.lux
FDUx86 (Version: 1.0.0)
Fraps (remove only)
Galerie de photos Windows Live (Version: 15.4.3502.0922)
Game Booster 3 (Version: 3.4)
Intel® Control Center (Version: 1.2.1.1007)
Intel® Management Engine Components (Version: 8.0.2.1410)
Intel® Rapid Storage Technology (Version: 11.0.0.1032)
Intel® USB 3.0 eXtensible Host Controller Driver (Version: 1.0.3.214)
Intel® Trusted Connect Service Client (Version: 1.23.605.1)
iTunes (Version: 10.6.3.25)
Java Auto Updater (Version: 2.1.6.0)
Java™ 7 Update 1 (64-bit) (Version: 7.0.10)
Java™ 7 Update 5 (Version: 7.0.50)
JavaFX 2.1.1 (Version: 2.1.1)
Junk Mail filter update (Version: 15.4.3502.0922)
KUx86 (Version: 1.0.0)
LogMeIn Hamachi (Version: 2.1.0.210)
Malwarebytes Anti-Malware version 1.65.0.1400 (Version: 1.65.0.1400)
Manuel VAIO (Version: 2.3.0.12300)
Media Gallery (Version: 2.1.0.13300)
Mesh Runtime (Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile FRA Language Pack (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended FRA Language Pack (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Games for Windows - LIVE Redistributable (Version: 3.5.88.0)
Microsoft Games for Windows Marketplace (Version: 3.5.50.0)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Security Client (Version: 4.0.1526.0)
Microsoft Security Essentials (Version: 4.0.1526.0)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft XNA Framework Redistributable 4.0 (Version: 4.0.20823.0)
Module linguistique Microsoft .NET Framework 4 Client Profile FRA (Version: 4.0.30319)
Module linguistique Microsoft .NET Framework 4 Extended FRA (Version: 4.0.30319)
Mozilla Firefox 15.0.1 (x86 fr) (Version: 15.0.1)
Mozilla Maintenance Service (Version: 15.0.1)
Mozilla Thunderbird 14.0 (x86 fr) (Version: 14.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT Redists (Version: 1.0)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP3 Parser (KB973685) (Version: 4.30.2107.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
Nexus Mod Manager (Version: 0.20.0)
ObjectDock Plus 2 (Version: 1.00)
osu! (Version: 0.0.0.0)
Outil de restauration de données VAIO (Version: 1.9.0.13190)
PCSX2 - Playstation 2 Emulator
PlayMemories Home (Version: 6.1.01.14210)
PlayStation®Network Downloader (Version: 2.07.00849)
PlayStation®Store (Version: 4.5.15.13232)
Qualcomm Atheros Direct Connect (Version: 3.1)
Qualcomm Atheros WiFi Driver Installation (Version: 3.0)
Rainmeter (Version: 2.3.3 r1522)
Realtek High Definition Audio Driver (Version: 6.0.1.6570)
Realtek PCIE Card Reader (Version: 6.1.7601.92)
Recuva (Version: 1.43)
Remote Keyboard (Version: 1.2.0.09270)
Remote Play with PlayStation®3 (Version: 1.1.0.21090)
RESIDENT EVIL 5 (Version: 1.0.0.129)
RuneScape Launcher 1.2 (Version: 1.2.0)
RuneScape Launcher 1.2.2 (Version: 1.2.2)
Skype™ 5.10 (Version: 5.10.116)
Sound Forge Audio Studio 10.0 (Version: 10.0.176)
SSLx64 (Version: 1.0.0)
SSLx86 (Version: 1.0.0)
Stardock Software (Version: 1.00)
Start Killer (Version: 3.2)
Steam (Version: 1.0.0.0)
Street Fighter X Tekken (Version: 1.0.0.0)
Synaptics Pointing Device Driver (Version: 15.3.45.0)
System Requirements Lab CYRI (Version: 4.5.1.0)
The Elder Scrolls V: Skyrim
tools-freebsd (Version: 8.8.4.744019)
tools-linux (Version: 8.8.4.744019)
tools-netware (Version: 8.8.4.744019)
tools-solaris (Version: 8.8.4.744019)
tools-windows (Version: 8.8.4.744019)
tools-winPre2k (Version: 8.8.4.744019)
TrackID™ with BRAVIA (Version: 1.2.0.09270)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
VAIO - Clavier à distance (Version: 1.2.0.09270)
VAIO - Clavier à distance avec PlayStation®3 (Version: 1.2.0.09210)
VAIO - Lecture à distance avec PlayStation®3 (Version: 1.1.0.21090)
VAIO - Microsoft Visual C++ 2010 SP1 Runtime 10.0.40219.325 (Version: 1.0.00.01300)
VAIO - PlayMemories Home Plug-in (Version: 2.0.01.03310)
VAIO - TrackID™ avec BRAVIA (Version: 1.2.0.09270)
VAIO Care (Version: 7.3.1.05290)
VAIO Control Center (Version: 5.2.1.15070)
VAIO Data Restore Tool (Version: 1.9.0.13190)
VAIO Easy Connect (Version: 1.1.2.01120)
VAIO Gate (Version: 2.4.1.09230)
VAIO Gate Default (Version: 2.5.2.02090)
VAIO Gesture Control (Version: 1.0.0.12300)
VAIO Help and Support (Version: 17.00.0109)
VAIO Improvement (Version: 1.3.0.12280)
VAIO OOBE (Version: 12.2.1.2483)
VAIO Sample Contents (Version: 1.4.0.09010)
VAIO Satisfaction Survey. (Version: 3.0)
VAIO Smart Network (Version: 3.11.1.15220)
VAIO Transfer Support (Version: 1.7.1.06040)
VAIO Update (Version: 5.7.1.05100)
VCCx64 (Version: 1.0.0)
VCCx86 (Version: 1.0.0)
Vegas Movie Studio HD Platinum 11.0 (Version: 11.0.256)
VHD (Version: 1.0.0)
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
VIx64 (Version: 1.0.0)
VIx86 (Version: 1.0.0)
VLC media player 2.0.2 (Version: 2.0.2)
VLC Streamer 2.56
VmciSockets (Version: 9.1.54.1)
VMLx86 (Version: 1.0.0)
VMware Workstation (Version: 8.0.4.30409)
VPMx64 (Version: 1.0.0)
VSNx64 (Version: 1.0.0)
VSNx86 (Version: 1.0.0)
VSSTx64 (Version: 1.0.0)
VSSTx86 (Version: 1.0.0)
VU5x64 (Version: 1.0.0)
VU5x86 (Version: 1.0.0)
VWSTx86 (Version: 1.0.0)
Windows Live (Version: 15.4.3502.0922)
Windows Live (Version: 15.4.3555.0308)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
WinRAR 4.11 (32-bit) (Version: 4.11.0)
Xvid Video Codec (Version: 1.3.2)

========================= Memory info: ===================================

Percentage of memory in use: 28%
Total physical RAM: 8162.36 MB
Available physical RAM: 5796.51 MB
Total Pagefile: 16322.91 MB
Available Pagefile: 12729.98 MB
Total Virtual: 4095.88 MB
Available Virtual: 3947.99 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:676.69 GB) (Free:514.14 GB) NTFS

========================= Users: ========================================

comptes d'utilisateurs de \\SAMVAIO

Administrateur Invit‚ Samuel
La commande s'est termin‚e correctement.


**** End of log ****

#6 Notsoanonymous

Notsoanonymous
  • Topic Starter

  • Members
  • 63 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:44 AM

Posted 16 September 2012 - 08:18 PM

Rkill still gives BSOD. Here's tdsskiller's log :

21:16:31.0575 8104 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
21:16:31.0830 8104 ============================================================
21:16:31.0830 8104 Current date / time: 2012/09/16 21:16:31.0830
21:16:31.0830 8104 SystemInfo:
21:16:31.0830 8104
21:16:31.0830 8104 OS Version: 6.1.7601 ServicePack: 1.0
21:16:31.0830 8104 Product type: Workstation
21:16:31.0830 8104 ComputerName: SAMVAIO
21:16:31.0830 8104 UserName: Samuel
21:16:31.0830 8104 Windows directory: C:\Windows
21:16:31.0830 8104 System windows directory: C:\Windows
21:16:31.0830 8104 Running under WOW64
21:16:31.0830 8104 Processor architecture: Intel x64
21:16:31.0830 8104 Number of processors: 8
21:16:31.0830 8104 Page size: 0x1000
21:16:31.0830 8104 Boot type: Normal boot
21:16:31.0830 8104 ============================================================
21:16:32.0986 8104 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:16:32.0991 8104 ============================================================
21:16:32.0991 8104 \Device\Harddisk0\DR0:
21:16:32.0991 8104 MBR partitions:
21:16:32.0991 8104 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2B35000, BlocksNum 0xAF000
21:16:32.0991 8104 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2BE4000, BlocksNum 0x54961800
21:16:32.0991 8104 ============================================================
21:16:33.0051 8104 C: <-> \Device\Harddisk0\DR0\Partition2
21:16:33.0051 8104 ============================================================
21:16:33.0051 8104 Initialize success
21:16:33.0051 8104 ============================================================
21:16:56.0029 7384 ============================================================
21:16:56.0029 7384 Scan started
21:16:56.0029 7384 Mode: Manual; TDLFS;
21:16:56.0029 7384 ============================================================
21:16:56.0229 7384 ================ Scan system memory ========================
21:16:56.0229 7384 System memory - ok
21:16:56.0229 7384 ================ Scan services =============================
21:16:56.0534 7384 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
21:16:56.0559 7384 1394ohci - ok
21:16:56.0619 7384 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
21:16:56.0644 7384 ACPI - ok
21:16:56.0659 7384 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
21:16:56.0674 7384 AcpiPmi - ok
21:16:56.0784 7384 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
21:16:56.0784 7384 AdobeARMservice - ok
21:16:57.0590 7384 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:16:57.0595 7384 AdobeFlashPlayerUpdateSvc - ok
21:16:57.0640 7384 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
21:16:57.0645 7384 adp94xx - ok
21:16:57.0670 7384 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
21:16:57.0675 7384 adpahci - ok
21:16:57.0685 7384 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
21:16:57.0685 7384 adpu320 - ok
21:16:57.0730 7384 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
21:16:57.0730 7384 AeLookupSvc - ok
21:16:57.0930 7384 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
21:16:57.0960 7384 AFD - ok
21:16:58.0005 7384 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
21:16:58.0010 7384 agp440 - ok
21:16:58.0030 7384 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
21:16:58.0035 7384 ALG - ok
21:16:58.0055 7384 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
21:16:58.0060 7384 aliide - ok
21:16:58.0255 7384 ALSysIO - ok
21:16:58.0415 7384 [ 010F8750A454224982CED18F35AA2C04 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
21:16:58.0420 7384 AMD External Events Utility - ok
21:16:58.0450 7384 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
21:16:58.0455 7384 amdide - ok
21:16:58.0475 7384 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
21:16:58.0490 7384 AmdK8 - ok
21:16:58.0925 7384 [ 623EC962E3F8366B3C5DD03B51DE5075 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
21:16:59.0255 7384 amdkmdag - ok
21:16:59.0305 7384 [ DF73398D14D9A20E0E1ADAEDA63B32D5 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
21:16:59.0315 7384 amdkmdap - ok
21:16:59.0355 7384 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
21:16:59.0375 7384 AmdPPM - ok
21:16:59.0445 7384 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
21:16:59.0445 7384 amdsata - ok
21:16:59.0460 7384 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
21:16:59.0465 7384 amdsbs - ok
21:16:59.0480 7384 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
21:16:59.0480 7384 amdxata - ok
21:16:59.0500 7384 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
21:16:59.0515 7384 AppID - ok
21:16:59.0575 7384 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
21:16:59.0580 7384 AppIDSvc - ok
21:16:59.0610 7384 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
21:16:59.0615 7384 Appinfo - ok
21:16:59.0675 7384 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:16:59.0675 7384 Apple Mobile Device - ok
21:16:59.0730 7384 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
21:16:59.0735 7384 arc - ok
21:16:59.0790 7384 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
21:16:59.0790 7384 arcsas - ok
21:17:00.0495 7384 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
21:17:00.0495 7384 aspnet_state - ok
21:17:00.0555 7384 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
21:17:00.0570 7384 AsyncMac - ok
21:17:00.0610 7384 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
21:17:00.0615 7384 atapi - ok
21:17:00.0645 7384 [ D0B119D6F52BDCA8D204F79D27690209 ] AthBTPort C:\Windows\system32\DRIVERS\btath_flt.sys
21:17:00.0650 7384 AthBTPort - ok
21:17:00.0705 7384 [ 86F8A0A8D59D0AE2B1096F3103F0E0AD ] AtherosSvc C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
21:17:00.0710 7384 AtherosSvc - ok
21:17:00.0965 7384 [ 237EE0B7A65D55E08EB7530F77423480 ] athr C:\Windows\system32\DRIVERS\athrx.sys
21:17:01.0066 7384 athr - ok
21:17:01.0166 7384 [ 2B3B05C0A7768BF033217EB8F33F9C35 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
21:17:01.0166 7384 AtiHDAudioService - ok
21:17:01.0351 7384 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:17:01.0361 7384 AudioEndpointBuilder - ok
21:17:01.0376 7384 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
21:17:01.0381 7384 AudioSrv - ok
21:17:01.0581 7384 [ F6A528DE535396C2FB1A4E3C6F00CEC4 ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe
21:17:01.0666 7384 AVGIDSAgent - ok
21:17:01.0706 7384 [ 1B2E9FCDC26DC7C81D4131430E2DC936 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdrivera.sys
21:17:01.0706 7384 AVGIDSDriver - ok
21:17:01.0716 7384 [ 0F293406F64B48D5D2F0D3A1117F3A83 ] AVGIDSFilter C:\Windows\system32\DRIVERS\avgidsfiltera.sys
21:17:01.0721 7384 AVGIDSFilter - ok
21:17:01.0766 7384 [ CFFC3A4A638F462E0561CB368B9A7A3A ] AVGIDSHA C:\Windows\system32\DRIVERS\avgidsha.sys
21:17:01.0766 7384 AVGIDSHA - ok
21:17:01.0801 7384 [ 221FEBAB02D6C97C95558348CC354A85 ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys
21:17:01.0806 7384 Avgldx64 - ok
21:17:01.0836 7384 [ A6AEC362AAE5E2DDA7445E7690CB0F33 ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys
21:17:01.0841 7384 Avgmfx64 - ok
21:17:01.0901 7384 [ 645C7F0A0E39758A0024A9B1748273C0 ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys
21:17:01.0901 7384 Avgrkx64 - ok
21:17:02.0051 7384 [ F8C3C7ED612A41B05C66358FC9786BFD ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys
21:17:02.0056 7384 Avgtdia - ok
21:17:02.0136 7384 [ EA1145DEBCD508FD25BD1E95C4346929 ] avgwd C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
21:17:02.0141 7384 avgwd - ok
21:17:02.0221 7384 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
21:17:02.0226 7384 AxInstSV - ok
21:17:02.0276 7384 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
21:17:02.0356 7384 b06bdrv - ok
21:17:02.0456 7384 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
21:17:02.0481 7384 b57nd60a - ok
21:17:02.0576 7384 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
21:17:02.0581 7384 BDESVC - ok
21:17:02.0631 7384 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
21:17:02.0646 7384 Beep - ok
21:17:02.0696 7384 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
21:17:02.0711 7384 BFE - ok
21:17:02.0756 7384 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
21:17:02.0786 7384 BITS - ok
21:17:02.0931 7384 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
21:17:02.0946 7384 blbdrive - ok
21:17:03.0251 7384 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
21:17:03.0256 7384 Bonjour Service - ok
21:17:03.0271 7384 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
21:17:03.0291 7384 bowser - ok
21:17:03.0341 7384 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
21:17:03.0356 7384 BrFiltLo - ok
21:17:03.0361 7384 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
21:17:03.0371 7384 BrFiltUp - ok
21:17:03.0441 7384 [ 8EF0D5C41EC907751B8429162B1239ED ] Browser C:\Windows\System32\browser.dll
21:17:03.0446 7384 Browser - ok
21:17:03.0451 7384 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
21:17:03.0476 7384 Brserid - ok
21:17:03.0481 7384 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
21:17:03.0491 7384 BrSerWdm - ok
21:17:03.0496 7384 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
21:17:03.0501 7384 BrUsbMdm - ok
21:17:03.0506 7384 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
21:17:03.0516 7384 BrUsbSer - ok
21:17:03.0851 7384 [ 9D7BF8AB181DA27E2C13F701FCD5BD2F ] BstHdAndroidSvc C:\Program Files (x86)\BlueStacks\HD-Service.exe
21:17:03.0866 7384 BstHdAndroidSvc - ok
21:17:04.0026 7384 [ 781591A2EDC56188C31EF6D6AA53B66E ] BstHdDrv C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys
21:17:04.0051 7384 BstHdDrv - ok
21:17:04.0211 7384 [ 15C160D8419F9FE74161B88B6A8EB799 ] BstHdLogRotatorSvc C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
21:17:04.0216 7384 BstHdLogRotatorSvc - ok
21:17:04.0416 7384 [ C05ED3246C06EC56F10D85B0304CD09E ] BTATH_A2DP C:\Windows\system32\drivers\btath_a2dp.sys
21:17:04.0421 7384 BTATH_A2DP - ok
21:17:04.0461 7384 [ 2D27F7A831657D63AFC78E5E78DCA83F ] btath_avdt C:\Windows\system32\drivers\btath_avdt.sys
21:17:04.0476 7384 btath_avdt - ok
21:17:04.0711 7384 [ E6B734A37ADE36FE1A77035F4E484C8C ] BTATH_BUS C:\Windows\system32\DRIVERS\btath_bus.sys
21:17:04.0711 7384 BTATH_BUS - ok
21:17:04.0776 7384 [ FB3833E63FF602B69C2FF085846DCF43 ] BTATH_HCRP C:\Windows\system32\DRIVERS\btath_hcrp.sys
21:17:04.0781 7384 BTATH_HCRP - ok
21:17:04.0886 7384 [ 371A11C1333BA526263A987A93ACDE3D ] BTATH_LWFLT C:\Windows\system32\DRIVERS\btath_lwflt.sys
21:17:04.0886 7384 BTATH_LWFLT - ok
21:17:04.0961 7384 [ ABCD3C16CA850A7594CEB9AD5D966810 ] BTATH_RCP C:\Windows\system32\DRIVERS\btath_rcp.sys
21:17:04.0966 7384 BTATH_RCP - ok
21:17:05.0091 7384 [ 680BE9ED6431DAFA844F5F7B61B11F9A ] BTATH_VDP C:\Windows\system32\drivers\btath_vdp.sys
21:17:05.0096 7384 BTATH_VDP - ok
21:17:05.0311 7384 [ 4FBDD8AF372ED5CB2EA63C0890C62435 ] BtFilter C:\Windows\system32\DRIVERS\btfilter.sys
21:17:05.0316 7384 BtFilter - ok
21:17:05.0391 7384 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys
21:17:05.0406 7384 BthEnum - ok
21:17:05.0456 7384 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
21:17:05.0476 7384 BTHMODEM - ok
21:17:05.0526 7384 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
21:17:05.0546 7384 BthPan - ok
21:17:05.0746 7384 [ 64C198198501F7560EE41D8D1EFA7952 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
21:17:05.0776 7384 BTHPORT - ok
21:17:05.0811 7384 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
21:17:05.0816 7384 bthserv - ok
21:17:05.0891 7384 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
21:17:05.0911 7384 BTHUSB - ok
21:17:05.0966 7384 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
21:17:05.0986 7384 cdfs - ok
21:17:06.0051 7384 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
21:17:06.0096 7384 cdrom - ok
21:17:06.0201 7384 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
21:17:06.0201 7384 CertPropSvc - ok
21:17:06.0291 7384 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
21:17:06.0311 7384 circlass - ok
21:17:06.0346 7384 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
21:17:06.0351 7384 CLFS - ok
21:17:06.0416 7384 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:17:06.0421 7384 clr_optimization_v2.0.50727_32 - ok
21:17:06.0466 7384 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:17:06.0471 7384 clr_optimization_v2.0.50727_64 - ok
21:17:06.0601 7384 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:17:06.0606 7384 clr_optimization_v4.0.30319_32 - ok
21:17:06.0641 7384 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:17:06.0641 7384 clr_optimization_v4.0.30319_64 - ok
21:17:06.0721 7384 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
21:17:06.0731 7384 CmBatt - ok
21:17:06.0751 7384 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
21:17:06.0751 7384 cmdide - ok
21:17:06.0776 7384 [ C4943B6C962E4B82197542447AD599F4 ] CNG C:\Windows\system32\Drivers\cng.sys
21:17:06.0781 7384 CNG - ok
21:17:06.0806 7384 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
21:17:06.0806 7384 Compbatt - ok
21:17:06.0821 7384 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
21:17:06.0836 7384 CompositeBus - ok
21:17:06.0851 7384 COMSysApp - ok
21:17:06.0861 7384 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
21:17:06.0861 7384 crcdisk - ok
21:17:06.0891 7384 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
21:17:06.0896 7384 CryptSvc - ok
21:17:07.0121 7384 [ 461A0688205D088D2A2EBEEDEE81622E ] DCDhcpService C:\Program Files\Sony\VAIO Smart Network\WFDA\DCDhcpService.exe
21:17:07.0141 7384 DCDhcpService - ok
21:17:07.0176 7384 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
21:17:07.0181 7384 DcomLaunch - ok
21:17:07.0211 7384 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
21:17:07.0246 7384 defragsvc - ok
21:17:07.0271 7384 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
21:17:07.0286 7384 DfsC - ok
21:17:07.0316 7384 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
21:17:07.0341 7384 Dhcp - ok
21:17:07.0391 7384 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
21:17:07.0406 7384 discache - ok
21:17:07.0486 7384 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
21:17:07.0486 7384 Disk - ok
21:17:07.0501 7384 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
21:17:07.0536 7384 Dnscache - ok
21:17:07.0576 7384 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
21:17:07.0611 7384 dot3svc - ok
21:17:07.0616 7384 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
21:17:07.0636 7384 DPS - ok
21:17:07.0666 7384 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
21:17:07.0671 7384 drmkaud - ok
21:17:07.0761 7384 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
21:17:07.0766 7384 dtsoftbus01 - ok
21:17:07.0791 7384 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
21:17:07.0801 7384 DXGKrnl - ok
21:17:07.0831 7384 [ 50AD8FC1DC800FF36087994C8F7FDFF2 ] e1yexpress C:\Windows\system32\DRIVERS\e1y60x64.sys
21:17:07.0851 7384 e1yexpress - ok
21:17:07.0876 7384 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
21:17:07.0891 7384 EapHost - ok
21:17:07.0971 7384 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
21:17:08.0156 7384 ebdrv - ok
21:17:08.0236 7384 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
21:17:08.0236 7384 EFS - ok
21:17:08.0606 7384 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
21:17:08.0611 7384 ehRecvr - ok
21:17:08.0631 7384 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
21:17:08.0636 7384 ehSched - ok
21:17:08.0661 7384 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
21:17:08.0671 7384 elxstor - ok
21:17:08.0676 7384 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
21:17:08.0686 7384 ErrDev - ok
21:17:08.0756 7384 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
21:17:08.0761 7384 EventSystem - ok
21:17:08.0786 7384 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
21:17:08.0806 7384 exfat - ok
21:17:08.0901 7384 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
21:17:08.0926 7384 fastfat - ok
21:17:09.0146 7384 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
21:17:09.0221 7384 Fax - ok
21:17:09.0241 7384 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
21:17:09.0261 7384 fdc - ok
21:17:09.0306 7384 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
21:17:09.0326 7384 fdPHost - ok
21:17:09.0336 7384 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
21:17:09.0356 7384 FDResPub - ok
21:17:09.0386 7384 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
21:17:09.0391 7384 FileInfo - ok
21:17:09.0401 7384 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
21:17:09.0421 7384 Filetrace - ok
21:17:09.0461 7384 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
21:17:09.0476 7384 flpydisk - ok
21:17:09.0501 7384 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
21:17:09.0506 7384 FltMgr - ok
21:17:09.0546 7384 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
21:17:09.0591 7384 FontCache - ok
21:17:09.0646 7384 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:17:09.0646 7384 FontCache3.0.0.0 - ok
21:17:09.0666 7384 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
21:17:09.0671 7384 FsDepends - ok
21:17:09.0691 7384 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
21:17:09.0701 7384 Fs_Rec - ok
21:17:09.0756 7384 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
21:17:09.0756 7384 fvevol - ok
21:17:09.0811 7384 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
21:17:09.0811 7384 gagp30kx - ok
21:17:09.0896 7384 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:17:09.0896 7384 GEARAspiWDM - ok
21:17:10.0078 7384 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
21:17:10.0098 7384 gpsvc - ok
21:17:10.0133 7384 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
21:17:10.0133 7384 hamachi - ok
21:17:10.0248 7384 [ 21D24138B736983F6E23823E092E9428 ] Hamachi2Svc C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
21:17:10.0293 7384 Hamachi2Svc - ok
21:17:10.0338 7384 [ ADB4348DA1345877B04E22203AFC8993 ] hcmon C:\Windows\system32\drivers\hcmon.sys
21:17:10.0338 7384 hcmon - ok
21:17:10.0428 7384 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
21:17:10.0443 7384 hcw85cir - ok
21:17:10.0478 7384 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:17:10.0538 7384 HdAudAddService - ok
21:17:10.0588 7384 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
21:17:10.0593 7384 HDAudBus - ok
21:17:10.0613 7384 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
21:17:10.0643 7384 HidBatt - ok
21:17:10.0693 7384 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
21:17:10.0708 7384 HidBth - ok
21:17:10.0798 7384 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
21:17:10.0808 7384 HidIr - ok
21:17:10.0853 7384 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
21:17:10.0868 7384 hidserv - ok
21:17:10.0913 7384 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
21:17:10.0933 7384 HidUsb - ok
21:17:10.0973 7384 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
21:17:11.0013 7384 hkmsvc - ok
21:17:11.0053 7384 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
21:17:11.0078 7384 HomeGroupListener - ok
21:17:11.0173 7384 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
21:17:11.0173 7384 HomeGroupProvider - ok
21:17:11.0213 7384 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
21:17:11.0213 7384 HpSAMD - ok
21:17:11.0428 7384 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
21:17:11.0448 7384 HTTP - ok
21:17:11.0493 7384 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
21:17:11.0493 7384 hwpolicy - ok
21:17:11.0618 7384 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
21:17:11.0633 7384 i8042prt - ok
21:17:11.0763 7384 [ C224331A54571C8C9162F7714400BBBD ] iaStor C:\Windows\system32\drivers\iaStor.sys
21:17:11.0768 7384 iaStor - ok
21:17:11.0963 7384 [ 7D4B9A48430ED57ACA6373B71D5904CA ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
21:17:11.0963 7384 IAStorDataMgrSvc - ok
21:17:12.0103 7384 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
21:17:12.0108 7384 iaStorV - ok
21:17:12.0558 7384 [ 3CC7B3BB1A9EA201A040883EDFAA67A0 ] IconMan_R C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
21:17:12.0583 7384 IconMan_R - ok
21:17:12.0798 7384 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:17:12.0808 7384 idsvc - ok
21:17:12.0878 7384 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
21:17:12.0878 7384 iirsp - ok
21:17:12.0913 7384 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
21:17:12.0978 7384 IKEEXT - ok
21:17:13.0409 7384 [ E83BB47C3446F0497019DE7FD6C6A86F ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
21:17:13.0434 7384 IntcAzAudAddService - ok
21:17:13.0489 7384 [ 832CE330DD987227B7DEA8C03F22AEFA ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
21:17:13.0494 7384 Intel® Capability Licensing Service Interface - ok
21:17:13.0584 7384 [ 709C8623721A1F1EF388EA75A07EC33B ] Intel® ME Service C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
21:17:13.0584 7384 Intel® ME Service - ok
21:17:13.0609 7384 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
21:17:13.0614 7384 intelide - ok
21:17:13.0699 7384 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
21:17:13.0699 7384 intelppm - ok
21:17:13.0749 7384 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
21:17:13.0764 7384 IPBusEnum - ok
21:17:13.0789 7384 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:17:13.0799 7384 IpFilterDriver - ok
21:17:13.0824 7384 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
21:17:13.0824 7384 iphlpsvc - ok
21:17:13.0834 7384 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
21:17:13.0849 7384 IPMIDRV - ok
21:17:13.0849 7384 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
21:17:13.0884 7384 IPNAT - ok
21:17:13.0919 7384 [ A9AB99EE7D39725EAFEC82732D2B3271 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
21:17:13.0919 7384 iPod Service - ok
21:17:13.0939 7384 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
21:17:13.0949 7384 IRENUM - ok
21:17:13.0949 7384 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
21:17:13.0954 7384 isapnp - ok
21:17:13.0979 7384 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
21:17:13.0984 7384 iScsiPrt - ok
21:17:14.0049 7384 [ 6BCEF45131C8B8E1C558BE540B190B3C ] iusb3hcs C:\Windows\system32\DRIVERS\iusb3hcs.sys
21:17:14.0049 7384 iusb3hcs - ok
21:17:14.0154 7384 [ F080EADA8715F811B58BD35BB774F2F9 ] iusb3hub C:\Windows\system32\DRIVERS\iusb3hub.sys
21:17:14.0159 7384 iusb3hub - ok
21:17:14.0309 7384 [ 0F1756D9396740F053221FA6260FCE66 ] iusb3xhc C:\Windows\system32\DRIVERS\iusb3xhc.sys
21:17:14.0314 7384 iusb3xhc - ok
21:17:14.0339 7384 [ C44B44E24B929631D9D7368F5B2B40CF ] jhi_service C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
21:17:14.0344 7384 jhi_service - ok
21:17:14.0369 7384 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
21:17:14.0374 7384 kbdclass - ok
21:17:14.0399 7384 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
21:17:14.0409 7384 kbdhid - ok
21:17:14.0424 7384 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
21:17:14.0424 7384 KeyIso - ok
21:17:14.0454 7384 [ DA1E991A61CFDD755A589E206B97644B ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
21:17:14.0459 7384 KSecDD - ok
21:17:14.0469 7384 [ 7E33198D956943A4F11A5474C1E9106F ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
21:17:14.0469 7384 KSecPkg - ok
21:17:14.0484 7384 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
21:17:14.0489 7384 ksthunk - ok
21:17:14.0524 7384 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
21:17:14.0559 7384 KtmRm - ok
21:17:14.0599 7384 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
21:17:14.0614 7384 LanmanServer - ok
21:17:14.0644 7384 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:17:14.0659 7384 LanmanWorkstation - ok
21:17:14.0709 7384 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
21:17:14.0729 7384 lltdio - ok
21:17:14.0779 7384 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
21:17:14.0819 7384 lltdsvc - ok
21:17:14.0834 7384 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
21:17:14.0854 7384 lmhosts - ok
21:17:14.0909 7384 [ 75F29D77B0540FCF47EE3BE000BBABDA ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
21:17:14.0914 7384 LMS - ok
21:17:14.0944 7384 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
21:17:14.0949 7384 LSI_FC - ok
21:17:14.0954 7384 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
21:17:14.0954 7384 LSI_SAS - ok
21:17:14.0959 7384 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
21:17:14.0959 7384 LSI_SAS2 - ok
21:17:14.0964 7384 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
21:17:14.0964 7384 LSI_SCSI - ok
21:17:15.0029 7384 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
21:17:15.0044 7384 luafv - ok
21:17:15.0149 7384 [ B9FC4CCE5758B816F27DD4D1EED11841 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
21:17:15.0149 7384 MBAMProtector - ok
21:17:15.0239 7384 [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
21:17:15.0239 7384 MBAMScheduler - ok
21:17:15.0279 7384 [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
21:17:15.0279 7384 MBAMService - ok
21:17:15.0314 7384 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
21:17:15.0329 7384 Mcx2Svc - ok
21:17:15.0344 7384 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
21:17:15.0344 7384 megasas - ok
21:17:15.0474 7384 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
21:17:15.0474 7384 MegaSR - ok
21:17:15.0604 7384 [ 6B01B7414A105B9E51652089A03027CF ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
21:17:15.0604 7384 MEIx64 - ok
21:17:15.0714 7384 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
21:17:15.0729 7384 MMCSS - ok
21:17:15.0739 7384 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
21:17:15.0749 7384 Modem - ok
21:17:15.0789 7384 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
21:17:15.0789 7384 monitor - ok
21:17:15.0839 7384 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
21:17:15.0839 7384 mouclass - ok
21:17:15.0899 7384 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
21:17:15.0914 7384 mouhid - ok
21:17:15.0924 7384 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
21:17:15.0929 7384 mountmgr - ok
21:17:16.0094 7384 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
21:17:16.0099 7384 MozillaMaintenance - ok
21:17:16.0309 7384 [ 94C66EDEDCDB6A126880472F9A704D8E ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
21:17:16.0309 7384 MpFilter - ok
21:17:16.0384 7384 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
21:17:16.0384 7384 mpio - ok
21:17:16.0409 7384 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
21:17:16.0424 7384 mpsdrv - ok
21:17:16.0609 7384 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
21:17:16.0644 7384 MpsSvc - ok
21:17:16.0654 7384 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
21:17:16.0669 7384 MRxDAV - ok
21:17:16.0714 7384 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
21:17:16.0724 7384 mrxsmb - ok
21:17:16.0744 7384 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:17:16.0754 7384 mrxsmb10 - ok
21:17:16.0774 7384 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:17:16.0784 7384 mrxsmb20 - ok
21:17:16.0804 7384 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
21:17:16.0804 7384 msahci - ok
21:17:16.0829 7384 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
21:17:16.0834 7384 msdsm - ok
21:17:16.0889 7384 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
21:17:16.0924 7384 MSDTC - ok
21:17:16.0959 7384 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
21:17:16.0969 7384 Msfs - ok
21:17:17.0009 7384 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
21:17:17.0014 7384 mshidkmdf - ok
21:17:17.0034 7384 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
21:17:17.0034 7384 msisadrv - ok
21:17:17.0124 7384 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
21:17:17.0139 7384 MSiSCSI - ok
21:17:17.0144 7384 msiserver - ok
21:17:17.0174 7384 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
21:17:17.0179 7384 MSKSSRV - ok
21:17:17.0289 7384 [ 59FAAF2C83C8169EA20F9E335E418907 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
21:17:17.0289 7384 MsMpSvc - ok
21:17:17.0334 7384 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
21:17:17.0339 7384 MSPCLOCK - ok
21:17:17.0344 7384 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
21:17:17.0349 7384 MSPQM - ok
21:17:17.0439 7384 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
21:17:17.0444 7384 MsRPC - ok
21:17:17.0469 7384 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
21:17:17.0474 7384 mssmbios - ok
21:17:17.0494 7384 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
21:17:17.0509 7384 MSTEE - ok
21:17:17.0579 7384 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
21:17:17.0584 7384 MTConfig - ok
21:17:17.0614 7384 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
21:17:17.0614 7384 Mup - ok
21:17:17.0639 7384 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
21:17:17.0649 7384 napagent - ok
21:17:17.0759 7384 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
21:17:17.0774 7384 NativeWifiP - ok
21:17:17.0794 7384 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys
21:17:17.0799 7384 NDIS - ok
21:17:17.0819 7384 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
21:17:17.0829 7384 NdisCap - ok
21:17:17.0854 7384 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
21:17:17.0864 7384 NdisTapi - ok
21:17:17.0884 7384 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
21:17:17.0894 7384 Ndisuio - ok
21:17:17.0904 7384 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
21:17:17.0919 7384 NdisWan - ok
21:17:17.0929 7384 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
21:17:17.0939 7384 NDProxy - ok
21:17:17.0964 7384 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
21:17:17.0974 7384 NetBIOS - ok
21:17:18.0019 7384 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
21:17:18.0044 7384 NetBT - ok
21:17:18.0054 7384 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
21:17:18.0059 7384 Netlogon - ok
21:17:18.0104 7384 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
21:17:18.0139 7384 Netman - ok
21:17:18.0199 7384 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:17:18.0204 7384 NetMsmqActivator - ok
21:17:18.0209 7384 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:17:18.0209 7384 NetPipeActivator - ok
21:17:18.0229 7384 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
21:17:18.0234 7384 netprofm - ok
21:17:18.0234 7384 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:17:18.0239 7384 NetTcpActivator - ok
21:17:18.0239 7384 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:17:18.0239 7384 NetTcpPortSharing - ok
21:17:18.0309 7384 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
21:17:18.0314 7384 nfrd960 - ok
21:17:18.0364 7384 [ 91B4E0273D2F6C24EF845F2B41311289 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
21:17:18.0369 7384 NisDrv - ok
21:17:18.0424 7384 [ 10A43829A9E606AF3EEF25A1C1665923 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
21:17:18.0429 7384 NisSrv - ok
21:17:18.0474 7384 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
21:17:18.0509 7384 NlaSvc - ok
21:17:18.0564 7384 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
21:17:18.0584 7384 Npfs - ok
21:17:18.0609 7384 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
21:17:18.0624 7384 nsi - ok
21:17:18.0644 7384 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
21:17:18.0654 7384 nsiproxy - ok
21:17:18.0709 7384 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
21:17:18.0739 7384 Ntfs - ok
21:17:18.0784 7384 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
21:17:18.0789 7384 Null - ok
21:17:19.0044 7384 [ DD81FBC57AB9134CDDC5CE90880BFD80 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:17:19.0244 7384 nvlddmkm - ok
21:17:19.0324 7384 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
21:17:19.0324 7384 nvraid - ok
21:17:19.0339 7384 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
21:17:19.0344 7384 nvstor - ok
21:17:19.0369 7384 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
21:17:19.0369 7384 nv_agp - ok
21:17:19.0394 7384 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
21:17:19.0404 7384 ohci1394 - ok
21:17:19.0439 7384 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
21:17:19.0439 7384 p2pimsvc - ok
21:17:19.0454 7384 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
21:17:19.0474 7384 p2psvc - ok
21:17:19.0499 7384 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
21:17:19.0514 7384 Parport - ok
21:17:19.0589 7384 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
21:17:19.0589 7384 partmgr - ok
21:17:19.0609 7384 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
21:17:19.0624 7384 PcaSvc - ok
21:17:19.0639 7384 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
21:17:19.0644 7384 pci - ok
21:17:19.0654 7384 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
21:17:19.0654 7384 pciide - ok
21:17:19.0674 7384 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
21:17:19.0679 7384 pcmcia - ok
21:17:19.0694 7384 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
21:17:19.0694 7384 pcw - ok
21:17:19.0724 7384 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
21:17:19.0759 7384 PEAUTH - ok
21:17:19.0879 7384 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
21:17:19.0909 7384 PerfHost - ok
21:17:19.0974 7384 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
21:17:19.0999 7384 pla - ok
21:17:20.0034 7384 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
21:17:20.0049 7384 PlugPlay - ok
21:17:20.0144 7384 [ 9C4D0DE187CBC24F658C52EFC93B1C73 ] PMBDeviceInfoProvider c:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
21:17:20.0144 7384 PMBDeviceInfoProvider - ok
21:17:20.0174 7384 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
21:17:20.0199 7384 PNRPAutoReg - ok
21:17:20.0239 7384 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
21:17:20.0239 7384 PNRPsvc - ok
21:17:20.0274 7384 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
21:17:20.0304 7384 PolicyAgent - ok
21:17:20.0334 7384 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
21:17:20.0334 7384 Power - ok
21:17:20.0359 7384 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
21:17:20.0374 7384 PptpMiniport - ok
21:17:20.0384 7384 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
21:17:20.0389 7384 Processor - ok
21:17:20.0429 7384 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
21:17:20.0449 7384 ProfSvc - ok
21:17:20.0479 7384 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
21:17:20.0479 7384 ProtectedStorage - ok
21:17:20.0504 7384 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
21:17:20.0504 7384 Psched - ok
21:17:20.0554 7384 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
21:17:20.0594 7384 ql2300 - ok
21:17:20.0614 7384 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
21:17:20.0614 7384 ql40xx - ok
21:17:20.0649 7384 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
21:17:20.0684 7384 QWAVE - ok
21:17:20.0714 7384 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
21:17:20.0729 7384 QWAVEdrv - ok
21:17:20.0784 7384 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
21:17:20.0789 7384 RasAcd - ok
21:17:20.0839 7384 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
21:17:20.0849 7384 RasAgileVpn - ok
21:17:20.0869 7384 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
21:17:20.0884 7384 RasAuto - ok
21:17:20.0909 7384 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
21:17:20.0924 7384 Rasl2tp - ok
21:17:20.0939 7384 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
21:17:20.0959 7384 RasMan - ok
21:17:20.0964 7384 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
21:17:20.0974 7384 RasPppoe - ok
21:17:21.0049 7384 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
21:17:21.0059 7384 RasSstp - ok
21:17:21.0074 7384 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
21:17:21.0094 7384 rdbss - ok
21:17:21.0109 7384 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
21:17:21.0119 7384 rdpbus - ok
21:17:21.0144 7384 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
21:17:21.0149 7384 RDPCDD - ok
21:17:21.0154 7384 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
21:17:21.0164 7384 RDPENCDD - ok
21:17:21.0199 7384 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
21:17:21.0204 7384 RDPREFMP - ok
21:17:21.0309 7384 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
21:17:21.0324 7384 RDPWD - ok
21:17:21.0354 7384 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
21:17:21.0354 7384 rdyboost - ok
21:17:21.0384 7384 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
21:17:21.0399 7384 RemoteAccess - ok
21:17:21.0419 7384 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
21:17:21.0434 7384 RemoteRegistry - ok
21:17:21.0474 7384 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
21:17:21.0494 7384 RFCOMM - ok
21:17:21.0524 7384 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
21:17:21.0539 7384 RpcEptMapper - ok
21:17:21.0589 7384 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
21:17:21.0604 7384 RpcLocator - ok
21:17:21.0644 7384 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
21:17:21.0649 7384 RpcSs - ok
21:17:21.0674 7384 [ EBBFA2B4E317AF86E93FEC4C04D7A9B3 ] RSPCIESTOR C:\Windows\system32\DRIVERS\RtsPStor.sys
21:17:21.0679 7384 RSPCIESTOR - ok
21:17:21.0704 7384 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
21:17:21.0714 7384 rspndr - ok
21:17:21.0754 7384 [ 9140DB0911DE035FED0A9A77A2D156EA ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
21:17:21.0759 7384 RTL8167 - ok
21:17:21.0799 7384 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
21:17:21.0799 7384 SamSs - ok
21:17:21.0824 7384 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
21:17:21.0824 7384 sbp2port - ok
21:17:21.0854 7384 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
21:17:21.0869 7384 SCardSvr - ok
21:17:21.0909 7384 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
21:17:21.0924 7384 scfilter - ok
21:17:21.0984 7384 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
21:17:22.0054 7384 Schedule - ok
21:17:22.0099 7384 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
21:17:22.0104 7384 SCPolicySvc - ok
21:17:22.0129 7384 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
21:17:22.0159 7384 sdbus - ok
21:17:22.0164 7384 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
21:17:22.0204 7384 SDRSVC - ok
21:17:22.0274 7384 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
21:17:22.0284 7384 secdrv - ok
21:17:22.0289 7384 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
21:17:22.0304 7384 seclogon - ok
21:17:22.0319 7384 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
21:17:22.0334 7384 SENS - ok
21:17:22.0349 7384 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
21:17:22.0364 7384 SensrSvc - ok
21:17:22.0399 7384 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
21:17:22.0404 7384 Serenum - ok
21:17:22.0449 7384 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
21:17:22.0484 7384 Serial - ok
21:17:22.0534 7384 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
21:17:22.0549 7384 sermouse - ok
21:17:22.0624 7384 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
21:17:22.0664 7384 SessionEnv - ok
21:17:22.0724 7384 [ 85D0F874734C105D02280B39BF0AD23F ] SFEP C:\Windows\system32\DRIVERS\SFEP.sys
21:17:22.0739 7384 SFEP - ok
21:17:22.0809 7384 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
21:17:22.0819 7384 sffdisk - ok
21:17:22.0834 7384 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
21:17:22.0844 7384 sffp_mmc - ok
21:17:22.0864 7384 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
21:17:22.0874 7384 sffp_sd - ok
21:17:22.0909 7384 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
21:17:22.0919 7384 sfloppy - ok
21:17:22.0949 7384 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
21:17:22.0974 7384 SharedAccess - ok
21:17:23.0064 7384 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:17:23.0094 7384 ShellHWDetection - ok
21:17:23.0159 7384 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
21:17:23.0159 7384 SiSRaid2 - ok
21:17:23.0174 7384 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
21:17:23.0179 7384 SiSRaid4 - ok
21:17:23.0229 7384 [ DDAA5F4A6B958FC313EBD02DD925752F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
21:17:23.0229 7384 SkypeUpdate - ok
21:17:23.0269 7384 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
21:17:23.0279 7384 Smb - ok
21:17:23.0339 7384 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
21:17:23.0354 7384 SNMPTRAP - ok
21:17:23.0439 7384 [ 4AEA7A1C3CA06D95D6966C34D13C0D8B ] SOHCImp C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
21:17:23.0444 7384 SOHCImp - ok
21:17:23.0449 7384 [ 16FD95781117E13107D477AE36219E6F ] SOHDs C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
21:17:23.0449 7384 SOHDs - ok
21:17:23.0514 7384 [ C03E480E63A80D73FABE28D24D3B6B47 ] SpfService C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe
21:17:23.0519 7384 SpfService - ok
21:17:23.0544 7384 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
21:17:23.0544 7384 spldr - ok
21:17:23.0574 7384 [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler C:\Windows\System32\spoolsv.exe
21:17:23.0579 7384 Spooler - ok
21:17:23.0634 7384 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
21:17:23.0654 7384 sppsvc - ok
21:17:23.0689 7384 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
21:17:23.0704 7384 sppuinotify - ok
21:17:23.0724 7384 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
21:17:23.0749 7384 srv - ok
21:17:23.0759 7384 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
21:17:23.0774 7384 srv2 - ok
21:17:23.0819 7384 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
21:17:23.0854 7384 srvnet - ok
21:17:23.0889 7384 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
21:17:23.0904 7384 SSDPSRV - ok
21:17:23.0929 7384 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
21:17:23.0939 7384 SstpSvc - ok
21:17:23.0974 7384 Steam Client Service - ok
21:17:23.0984 7384 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
21:17:23.0984 7384 stexstor - ok
21:17:24.0019 7384 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
21:17:24.0035 7384 stisvc - ok
21:17:24.0095 7384 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
21:17:24.0100 7384 swenum - ok
21:17:24.0165 7384 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
21:17:24.0180 7384 swprv - ok
21:17:24.0275 7384 [ BD4F51AEF67AB7D57698BC4AAD983D1F ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
21:17:24.0280 7384 SynTP - ok
21:17:24.0320 7384 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
21:17:24.0350 7384 SysMain - ok
21:17:24.0375 7384 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:17:24.0390 7384 TabletInputService - ok
21:17:24.0470 7384 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
21:17:24.0485 7384 TapiSrv - ok
21:17:24.0530 7384 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
21:17:24.0530 7384 TBS - ok
21:17:24.0610 7384 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
21:17:24.0655 7384 Tcpip - ok
21:17:24.0710 7384 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
21:17:24.0720 7384 TCPIP6 - ok
21:17:24.0745 7384 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
21:17:24.0755 7384 tcpipreg - ok
21:17:24.0770 7384 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
21:17:24.0775 7384 TDPIPE - ok
21:17:24.0795 7384 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
21:17:24.0805 7384 TDTCP - ok
21:17:24.0835 7384 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
21:17:24.0865 7384 tdx - ok
21:17:24.0885 7384 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
21:17:24.0885 7384 TermDD - ok
21:17:24.0925 7384 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
21:17:24.0945 7384 TermService - ok
21:17:24.0965 7384 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
21:17:24.0985 7384 Themes - ok
21:17:24.0995 7384 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
21:17:24.0995 7384 THREADORDER - ok
21:17:25.0015 7384 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
21:17:25.0030 7384 TrkWks - ok
21:17:25.0080 7384 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:17:25.0095 7384 TrustedInstaller - ok
21:17:25.0105 7384 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
21:17:25.0115 7384 tssecsrv - ok
21:17:25.0145 7384 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
21:17:25.0155 7384 TsUsbFlt - ok
21:17:25.0180 7384 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
21:17:25.0185 7384 TsUsbGD - ok
21:17:25.0205 7384 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
21:17:25.0240 7384 tunnel - ok
21:17:25.0255 7384 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
21:17:25.0255 7384 uagp35 - ok
21:17:25.0275 7384 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
21:17:25.0295 7384 udfs - ok
21:17:25.0325 7384 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
21:17:25.0340 7384 UI0Detect - ok
21:17:25.0365 7384 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
21:17:25.0365 7384 uliagpkx - ok
21:17:25.0395 7384 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
21:17:25.0400 7384 umbus - ok
21:17:25.0430 7384 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
21:17:25.0435 7384 UmPass - ok
21:17:25.0520 7384 [ 193AD338F2A64D17300AD640ADFA5D0A ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
21:17:25.0525 7384 UNS - ok
21:17:25.0550 7384 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
21:17:25.0575 7384 upnphost - ok
21:17:25.0645 7384 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
21:17:25.0670 7384 USBAAPL64 - ok
21:17:25.0695 7384 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
21:17:25.0710 7384 usbccgp - ok
21:17:25.0725 7384 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
21:17:25.0745 7384 usbcir - ok
21:17:25.0760 7384 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
21:17:25.0775 7384 usbehci - ok
21:17:25.0805 7384 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
21:17:25.0840 7384 usbhub - ok
21:17:25.0860 7384 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
21:17:25.0870 7384 usbohci - ok
21:17:25.0910 7384 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
21:17:25.0920 7384 usbprint - ok
21:17:25.0995 7384 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
21:17:26.0015 7384 usbscan - ok
21:17:26.0065 7384 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:17:26.0085 7384 USBSTOR - ok
21:17:26.0105 7384 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
21:17:26.0120 7384 usbuhci - ok
21:17:26.0215 7384 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
21:17:26.0240 7384 usbvideo - ok
21:17:26.0310 7384 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
21:17:26.0375 7384 UxSms - ok
21:17:26.0575 7384 [ 203FD19D70549A2939E1AE3A36608151 ] VAIO Event Service C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
21:17:26.0580 7384 VAIO Event Service - ok
21:17:26.0835 7384 [ 59308CD511A5F3EE33595FFD46F76B31 ] VAIO Power Management C:\Program Files\Sony\VAIO Power Management\SPMService.exe
21:17:26.0845 7384 VAIO Power Management - ok
21:17:26.0900 7384 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
21:17:26.0905 7384 VaultSvc - ok
21:17:27.0320 7384 [ ADD5A5BA64D0710E1C764A8D4DAD510E ] VCFw C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
21:17:27.0330 7384 VCFw - ok
21:17:27.0625 7384 [ EEE5AD6FB40B35F7867C3A49B98BB4EF ] VcmIAlzMgr C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
21:17:27.0630 7384 VcmIAlzMgr - ok
21:17:27.0780 7384 [ FD5BD55C1854208BC9C51DBCFC3C1941 ] VcmINSMgr C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe
21:17:27.0790 7384 VcmINSMgr - ok
21:17:27.0905 7384 [ 9BC1F203C5604C24F345BCFCD6956BAE ] VcmXmlIfHelper C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe
21:17:27.0905 7384 VcmXmlIfHelper - ok
21:17:28.0235 7384 [ 9F2D25FA154A32C8C80420A46FBBF815 ] VCService C:\Program Files\Sony\VAIO Care\VCService.exe
21:17:28.0235 7384 VCService - ok
21:17:28.0350 7384 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
21:17:28.0350 7384 vdrvroot - ok
21:17:28.0530 7384 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
21:17:28.0535 7384 vds - ok
21:17:28.0570 7384 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
21:17:28.0585 7384 vga - ok
21:17:28.0600 7384 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
21:17:28.0615 7384 VgaSave - ok
21:17:28.0640 7384 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
21:17:28.0640 7384 vhdmp - ok
21:17:28.0665 7384 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
21:17:28.0665 7384 viaide - ok
21:17:28.0850 7384 [ 1562A089B46C821487AFF8D01EE5547E ] VMAuthdService C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
21:17:28.0855 7384 VMAuthdService - ok
21:17:28.0930 7384 [ 87FC1DD880E8CAC4FAEBB84AF61A87C4 ] vmci C:\Windows\system32\DRIVERS\vmci.sys
21:17:28.0930 7384 vmci - ok
21:17:29.0035 7384 [ B259C31378BC855AFD1B53F59311C251 ] VMnetAdapter C:\Windows\system32\DRIVERS\vmnetadapter.sys
21:17:29.0035 7384 VMnetAdapter - ok
21:17:29.0105 7384 [ DEC4CE720FFEDA939CF1BA315CFBD993 ] VMnetBridge C:\Windows\system32\DRIVERS\vmnetbridge.sys
21:17:29.0105 7384 VMnetBridge - ok
21:17:29.0110 7384 VMnetDHCP - ok
21:17:29.0135 7384 [ 41F8BFC7A658FF4FA27AC10E9C5D14A7 ] VMnetuserif C:\Windows\system32\drivers\vmnetuserif.sys
21:17:29.0135 7384 VMnetuserif - ok
21:17:29.0230 7384 [ 415B167695C4B5960A13098622EF3D80 ] vmusb C:\Windows\system32\Drivers\vmusb.sys
21:17:29.0230 7384 vmusb - ok
21:17:29.0595 7384 [ 18903CA7936912C337C9D28858880CF2 ] VMUSBArbService C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
21:17:29.0600 7384 VMUSBArbService - ok
21:17:29.0600 7384 VMware NAT Service - ok
21:17:32.0610 7384 [ 09895634295862AE7087C08BBF17B346 ] VMwareHostd C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
21:17:32.0660 7384 VMwareHostd - ok
21:17:32.0780 7384 [ 61B270C2437EE87455864E4EEDD8867D ] vmx86 C:\Windows\system32\drivers\vmx86.sys
21:17:32.0780 7384 vmx86 - ok
21:17:32.0840 7384 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
21:17:32.0840 7384 volmgr - ok
21:17:32.0920 7384 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
21:17:32.0925 7384 volmgrx - ok
21:17:33.0005 7384 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
21:17:33.0005 7384 volsnap - ok
21:17:33.0081 7384 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
21:17:33.0081 7384 vsmraid - ok
21:17:33.0421 7384 [ 596E65BDEE804CC6658A39756CC61849 ] VSNService C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
21:17:33.0431 7384 VSNService - ok
21:17:33.0916 7384 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
21:17:33.0951 7384 VSS - ok
21:17:35.0356 7384 [ 6107E33A30C0B923F31C872E1980D2D1 ] vstor2-mntapi10-shared C:\Windows\syswow64\drivers\vstor2-mntapi10-shared.sys
21:17:35.0356 7384 vstor2-mntapi10-shared - ok
21:17:35.0786 7384 [ F5742637A15179AD47C41855A3BF9415 ] VUAgent C:\Program Files\Sony\VAIO Update Common\VUAgent.exe
21:17:35.0801 7384 VUAgent - ok
21:17:35.0821 7384 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
21:17:35.0886 7384 vwifibus - ok
21:17:35.0981 7384 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
21:17:35.0996 7384 vwififlt - ok
21:17:36.0111 7384 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
21:17:36.0126 7384 vwifimp - ok
21:17:36.0311 7384 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
21:17:36.0346 7384 W32Time - ok
21:17:36.0371 7384 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
21:17:36.0391 7384 WacomPen - ok
21:17:36.0511 7384 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
21:17:36.0541 7384 WANARP - ok
21:17:36.0571 7384 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
21:17:36.0571 7384 Wanarpv6 - ok
21:17:37.0071 7384 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
21:17:37.0116 7384 WatAdminSvc - ok
21:17:37.0241 7384 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
21:17:37.0316 7384 wbengine - ok
21:17:37.0361 7384 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
21:17:37.0376 7384 WbioSrvc - ok
21:17:37.0411 7384 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
21:17:37.0426 7384 wcncsvc - ok
21:17:37.0456 7384 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:17:37.0471 7384 WcsPlugInService - ok
21:17:37.0526 7384 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
21:17:37.0526 7384 Wd - ok
21:17:37.0751 7384 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
21:17:37.0761 7384 Wdf01000 - ok
21:17:37.0781 7384 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
21:17:37.0811 7384 WdiServiceHost - ok
21:17:37.0811 7384 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
21:17:37.0816 7384 WdiSystemHost - ok
21:17:37.0856 7384 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
21:17:37.0871 7384 WebClient - ok
21:17:37.0916 7384 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
21:17:37.0936 7384 Wecsvc - ok
21:17:37.0961 7384 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
21:17:37.0961 7384 wercplsupport - ok
21:17:38.0011 7384 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
21:17:38.0046 7384 WerSvc - ok
21:17:38.0181 7384 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
21:17:38.0216 7384 WfpLwf - ok
21:17:38.0236 7384 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
21:17:38.0236 7384 WIMMount - ok
21:17:38.0281 7384 WinDefend - ok
21:17:38.0291 7384 WinHttpAutoProxySvc - ok
21:17:38.0721 7384 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
21:17:38.0736 7384 Winmgmt - ok
21:17:38.0936 7384 [ 0C0195C48B6B8582FA6F6373032118DA ] WinRing0_1_2_0 C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys
21:17:38.0946 7384 WinRing0_1_2_0 - ok
21:17:39.0461 7384 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
21:17:39.0491 7384 WinRM - ok
21:17:39.0706 7384 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
21:17:39.0721 7384 WinUsb - ok
21:17:39.0971 7384 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
21:17:39.0996 7384 Wlansvc - ok
21:17:40.0162 7384 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
21:17:40.0162 7384 wlcrasvc - ok
21:17:40.0912 7384 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:17:40.0927 7384 wlidsvc - ok
21:17:40.0997 7384 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
21:17:41.0002 7384 WmiAcpi - ok
21:17:41.0102 7384 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
21:17:41.0107 7384 wmiApSrv - ok
21:17:41.0187 7384 WMPNetworkSvc - ok
21:17:41.0287 7384 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
21:17:41.0337 7384 WPCSvc - ok
21:17:41.0352 7384 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
21:17:41.0372 7384 WPDBusEnum - ok
21:17:41.0422 7384 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
21:17:41.0432 7384 ws2ifsl - ok
21:17:41.0487 7384 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
21:17:41.0492 7384 wscsvc - ok
21:17:41.0492 7384 WSearch - ok
21:17:42.0197 7384 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
21:17:42.0217 7384 wuauserv - ok
21:17:42.0277 7384 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
21:17:42.0292 7384 WudfPf - ok
21:17:42.0417 7384 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
21:17:42.0442 7384 WUDFRd - ok
21:17:42.0512 7384 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
21:17:42.0527 7384 wudfsvc - ok
21:17:42.0617 7384 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
21:17:42.0657 7384 WwanSvc - ok
21:17:42.0877 7384 [ A5B25E310678175F4779499FFF7D0994 ] ZAtheros Bt&Wlan Coex Agent C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
21:17:42.0882 7384 ZAtheros Bt&Wlan Coex Agent - ok
21:17:43.0057 7384 ================ Scan global ===============================
21:17:43.0117 7384 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
21:17:43.0217 7384 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
21:17:43.0272 7384 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
21:17:43.0327 7384 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
21:17:43.0662 7384 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
21:17:43.0667 7384 [Global] - ok
21:17:43.0667 7384 ================ Scan MBR ==================================
21:17:43.0692 7384 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
21:17:44.0897 7384 \Device\Harddisk0\DR0 - ok
21:17:44.0902 7384 ================ Scan VBR ==================================
21:17:44.0942 7384 [ 0E33965508EC026B5DC0B282A61DEF70 ] \Device\Harddisk0\DR0\Partition1
21:17:44.0942 7384 \Device\Harddisk0\DR0\Partition1 - ok
21:17:44.0972 7384 [ C7B89345F43FA049433A93AC51B0812D ] \Device\Harddisk0\DR0\Partition2
21:17:44.0972 7384 \Device\Harddisk0\DR0\Partition2 - ok
21:17:44.0977 7384 ============================================================
21:17:44.0977 7384 Scan finished
21:17:44.0977 7384 ============================================================
21:17:44.0992 7464 Detected object count: 0
21:17:44.0992 7464 Actual detected object count: 0

#7 Notsoanonymous

Notsoanonymous
  • Topic Starter

  • Members
  • 63 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:44 AM

Posted 16 September 2012 - 09:19 PM

I'll post the other log (eset) tomorrow.

Rkill still gives BSOD.

#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,530 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:44 AM

Posted 16 September 2012 - 09:27 PM

OK, we'll skip Rkill for now.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 Notsoanonymous

Notsoanonymous
  • Topic Starter

  • Members
  • 63 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:44 AM

Posted 17 September 2012 - 05:14 PM

ESET was about 83% and had no infections found when suddenly it gave me a BSOD. What now? :/

#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,530 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:44 AM

Posted 17 September 2012 - 06:41 PM

OK, we will need to use sreonfer tools and get a deeper lookk to kill this.

Please go here....Preparation Guide ,do steps 6-9.

Create a DDS log and post it in the new topic explained in step 9 which is here Virus, Trojan, Spyware, and Malware Removal Logs and not in this topic,thanks.
If GMER won't run (it may not on a 64 bit system) skip it and move on.

Let me know if that went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#11 Notsoanonymous

Notsoanonymous
  • Topic Starter

  • Members
  • 63 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:44 AM

Posted 17 September 2012 - 06:51 PM

My system is indeed, 64-bits so does that means GMER won't work?

Edit : Also i stopped having random thumbs openining but i think it's still there.

Edited by Notsoanonymous, 17 September 2012 - 06:52 PM.


#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,530 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:44 AM

Posted 17 September 2012 - 06:57 PM

That's correct,skip GMER.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#13 Notsoanonymous

Notsoanonymous
  • Topic Starter

  • Members
  • 63 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:44 AM

Posted 18 September 2012 - 05:41 PM

Just got a phone call from a fake windows saying that i had a virus. Yeah. What do i do now? I tried posting like you said but nothing.

#14 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,530 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:44 AM

Posted 18 September 2012 - 07:40 PM

Ok, ignore them. The malware staff needs to analyze the DDS log and will reply to you on what to do next.

Now that your log is properly posted, you should NOT make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by a Malware Removal Team member, nor should you continue to ask for help elsewhere. Doing so can result in system changes which may not show it the log you already posted. Further, any modifications you make on your own may cause confusion for the helper assisting you and could complicate the malware removal process which would extend the time it takes to clean your computer.

From this point on the Malware Removal Team should be the only members that you take advice from, until they have verified your log as clean.

Please be patient. It may take a while to get a response because the Malware Removal Team members are very busy working logs posted before yours. They are volunteers who will help you out as soon as possible. Once you have made your post and are waiting, please DO NOT make another reply until it has been responded to by a member of the Malware Removal Team. Generally the staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response there will be 1 reply. A team member, looking for a new log to work may assume another MRL Team member is already assisting you and not open the thread to respond.

The current wait time is 1 - 3 days and ALL logs are answered.

If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.

To avoid confusion, I am closing this topic
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users