Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Malware or virus is redirecting search links but is not detectable with anti-virus/malware programs


  • Please log in to reply
22 replies to this topic

#1 nscroggs

nscroggs

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:08:11 AM

Posted 09 November 2012 - 09:57 PM

I am having an issue with, what I believe is, the google redirect virus or whatever it may be called now. It all started last week when I was working on my accounting homework for school and was working between Microsoft Word 2007 and various websites in IE9 (running Windows 7). I was working on my homework when suddenly all of the windows closed without warning (internet, word, and windows explorer) and my computer restarted. When Windows reloaded, my desktop background had changed to solid black and half of my desktop icons went missing. The more I did to try to fix it, the worse it got and the more icons disappeared. I found a thread on this forum that described the fix and followed it step by step. I downloaded and ran Malwarebytes, the unhide program (i dont recall the proper name but the icon is a white briefcase with a red cross on it), and another program that I renamed to iexplore.com per the instructions. I was able to restore the desktop icons and full functionality of the computer after doing that process. Although I was never able to run TDSSKiller (even with the disguised version) or Kapersky...couldn't even install them.

Now I am living with the issue of the redirected search links. I can get to Google (or any other search engine) and search normally, but when I click the link that I want, it will take me to some other random website having nothing to do with my search (for example, i search for Bleeping Computer and click the link for www.bleepingcomputer.com and it will take me to www.alaskagold.com). I have run AVG 2013, Malwarebytes, and McAfee. In the past, before and after I removed some malware with Malwarebytes, my computer would shut down (not a full shut down...literally kill the power to the computer) immediately once the scan started. Today, I was finally able to do a full scan with AVG. It did find a Trojan horse Downloader.Generic13.CAM, Trojan horse Generic.BCBS, and Trojan horse Generic13.CAM all located in C:\Windows\System32\svchost.exe and was able to heal it. My problem persists.

How can I resolve this issue and return to a normal virus/malware/trojan free life?

Any help is greatly appreciated and will be rewarded with a great deal of positive reviews via word of mouth.

Thanks!

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:11 AM

Posted 09 November 2012 - 10:06 PM

Do not run any tools unless instructed

Download Listparts from here

For 32 bit

List parts 32

For 64 bit

List parts 64

Launch it,click on SCAN,post the log

#3 nscroggs

nscroggs
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:08:11 AM

Posted 09 November 2012 - 10:10 PM

ListParts by Farbar Version: 30-10-2012
Ran by Hunter (administrator) on 09-11-2012 at 22:08:51
Windows 7 (X64)
Running From: C:\Users\Hunter\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\342UPGGQ
Language: 0409
************************************************************

========================= Memory info ======================

Percentage of memory in use: 43%
Total physical RAM: 3894.7 MB
Available physical RAM: 2212.65 MB
Total Pagefile: 7787.59 MB
Available Pagefile: 5770.31 MB
Total Virtual: 8192 MB
Available Virtual: 8191.9 MB

======================= Partitions =========================

1 Drive c: (OS) (Fixed) (Total:454.2 GB) (Free:203.17 GB) NTFS
2 Drive d: (Nov 04 2012) (CDROM) (Total:4.38 GB) (Free:4.37 GB) UDF

Disk ### Status Size Free Dyn Gpt
-------- ------------- ------- ------- --- ---
Disk 0 Online 465 GB 0 B

Partitions of Disk 0:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 OEM 109 MB 31 KB
Partition 2 Primary 11 GB 110 MB
Partition 3 Primary 454 GB 11 GB
Partition 4 Primary 10 MB 465 GB

======================================================================================================

Disk: 0
Partition 1
Type : DE
Hidden: Yes
Active: No

There is no volume associated with this partition.

======================================================================================================

Disk: 0
Partition 2
Type : 07
Hidden: No
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 1 RECOVERY NTFS Partition 11 GB Healthy System (partition with boot components)

======================================================================================================

Disk: 0
Partition 3
Type : 07
Hidden: No
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 2 C OS NTFS Partition 454 GB Healthy Boot

======================================================================================================

Disk: 0
Partition 4
Type : 17 (Suspicious Type)
Hidden: Yes
Active: Yes

There is no volume associated with this partition.

======================================================================================================

****** End Of Log ******

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:11 AM

Posted 09 November 2012 - 10:14 PM

Restart the PC

Press F8 on bootup

Select REPAIR YOUR COMPUTER

Click on REPAIR

On the System Recovery Options menu you will get the following options:

Startup Repair
System Restore
Windows Complete PC Restore
Windows Memory Diagnostic Tool
Command Prompt

Can you get to this screen?

If yes

Select command prompt and run these commands

diskpart
select disk 0
select partition 2
active


Now restart the PC and run TDSSkiller again,post the log

#5 nscroggs

nscroggs
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:08:11 AM

Posted 09 November 2012 - 10:24 PM

I can press F8 and get to that menu, but when i hit enter on "Repair the system", it goes to the normal "Windows is loading files..." it loads completely once, resets and is still sitting there. I'm not sure if it is normal for this step to take a while or not, but it seems to be taking longer than it should and the progress bar is not doing anything.

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:11 AM

Posted 09 November 2012 - 10:29 PM

Wait for some time if it still keeps loading we have another fix.

#7 nscroggs

nscroggs
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:08:11 AM

Posted 09 November 2012 - 10:40 PM

20 minutes and no progress on the bar. The screen is still saying "Windows is loading files..."

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:11 AM

Posted 09 November 2012 - 10:44 PM

`
Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

Edited by narenxp, 09 November 2012 - 11:07 PM.


#9 nscroggs

nscroggs
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:08:11 AM

Posted 09 November 2012 - 11:06 PM

RootKiller report is as follows...running avast now, then ESET...



22:58:22.0088 3336 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
22:58:22.0493 3336 ============================================================
22:58:22.0493 3336 Current date / time: 2012/11/09 22:58:22.0493
22:58:22.0493 3336 SystemInfo:
22:58:22.0493 3336
22:58:22.0493 3336 OS Version: 6.1.7601 ServicePack: 1.0
22:58:22.0493 3336 Product type: Workstation
22:58:22.0493 3336 ComputerName: HUNTER-LAPTOP
22:58:22.0493 3336 UserName: Hunter
22:58:22.0493 3336 Windows directory: C:\Windows
22:58:22.0493 3336 System windows directory: C:\Windows
22:58:22.0493 3336 Running under WOW64
22:58:22.0493 3336 Processor architecture: Intel x64
22:58:22.0493 3336 Number of processors: 4
22:58:22.0493 3336 Page size: 0x1000
22:58:22.0493 3336 Boot type: Normal boot
22:58:22.0493 3336 ============================================================
22:58:24.0038 3336 BG loaded
22:58:24.0350 3336 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:58:24.0365 3336 ============================================================
22:58:24.0365 3336 \Device\Harddisk0\DR0:
22:58:24.0365 3336 MBR partitions:
22:58:24.0365 3336 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x37000, BlocksNum 0x16E3000
22:58:24.0365 3336 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x171A000, BlocksNum 0x38C64830
22:58:24.0365 3336 ============================================================
22:58:24.0381 3336 C: <-> \Device\Harddisk0\DR0\Partition2
22:58:24.0381 3336 ============================================================
22:58:24.0381 3336 Initialize success
22:58:24.0381 3336 ============================================================
22:58:51.0556 5928 ============================================================
22:58:51.0556 5928 Scan started
22:58:51.0556 5928 Mode: Manual; TDLFS;
22:58:51.0556 5928 ============================================================
22:58:53.0865 5928 ================ Scan system memory ========================
22:58:53.0865 5928 System memory - ok
22:58:53.0865 5928 ================ Scan services =============================
22:58:54.0099 5928 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
22:58:54.0115 5928 1394ohci - ok
22:58:54.0239 5928 [ C863272577DC93199F9A2D108468EDB9 ] 9734BF6A-2DCD-40f0-BAB0-5AAFEEBE1269 C:\Program Files (x86)\Roxio\BackOnTrack\App\SaibSVC.exe
22:58:54.0239 5928 9734BF6A-2DCD-40f0-BAB0-5AAFEEBE1269 - ok
22:58:54.0317 5928 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
22:58:54.0317 5928 ACPI - ok
22:58:54.0411 5928 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
22:58:54.0411 5928 AcpiPmi - ok
22:58:54.0598 5928 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
22:58:54.0598 5928 AdobeARMservice - ok
22:58:54.0832 5928 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
22:58:54.0832 5928 AdobeFlashPlayerUpdateSvc - ok
22:58:54.0926 5928 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
22:58:54.0926 5928 adp94xx - ok
22:58:55.0019 5928 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
22:58:55.0035 5928 adpahci - ok
22:58:55.0051 5928 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
22:58:55.0051 5928 adpu320 - ok
22:58:55.0082 5928 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
22:58:55.0082 5928 AeLookupSvc - ok
22:58:55.0191 5928 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
22:58:55.0191 5928 AFD - ok
22:58:55.0253 5928 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
22:58:55.0253 5928 agp440 - ok
22:58:55.0285 5928 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
22:58:55.0285 5928 ALG - ok
22:58:55.0316 5928 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
22:58:55.0316 5928 aliide - ok
22:58:55.0331 5928 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
22:58:55.0331 5928 amdide - ok
22:58:55.0378 5928 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
22:58:55.0394 5928 AmdK8 - ok
22:58:55.0394 5928 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
22:58:55.0409 5928 AmdPPM - ok
22:58:55.0456 5928 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
22:58:55.0456 5928 amdsata - ok
22:58:55.0487 5928 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
22:58:55.0487 5928 amdsbs - ok
22:58:55.0519 5928 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
22:58:55.0534 5928 amdxata - ok
22:58:55.0597 5928 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
22:58:55.0597 5928 AppID - ok
22:58:55.0643 5928 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
22:58:55.0643 5928 AppIDSvc - ok
22:58:55.0706 5928 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
22:58:55.0706 5928 Appinfo - ok
22:58:55.0862 5928 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:58:55.0862 5928 Apple Mobile Device - ok
22:58:55.0955 5928 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
22:58:55.0955 5928 arc - ok
22:58:55.0971 5928 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
22:58:55.0971 5928 arcsas - ok
22:58:56.0127 5928 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
22:58:56.0189 5928 aspnet_state - ok
22:58:56.0221 5928 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
22:58:56.0236 5928 AsyncMac - ok
22:58:56.0267 5928 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
22:58:56.0283 5928 atapi - ok
22:58:56.0377 5928 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:58:56.0377 5928 AudioEndpointBuilder - ok
22:58:56.0409 5928 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
22:58:56.0424 5928 AudioSrv - ok
22:58:56.0549 5928 [ BD5D11CEDBCDE4FA97D2387E7069B1FF ] avgfws C:\Program Files (x86)\AVG\AVG2012\avgfws.exe
22:58:56.0549 5928 avgfws - ok
22:58:57.0111 5928 [ 56C73C5BC1656656CAC38A23B4310466 ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
22:58:57.0142 5928 AVGIDSAgent - ok
22:58:57.0204 5928 [ 388056EBD5FE6718FE669078DBE37897 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdrivera.sys
22:58:57.0204 5928 AVGIDSDriver - ok
22:58:57.0236 5928 [ 550E981747D6A6C55078C77346FFC2C6 ] AVGIDSHA C:\Windows\system32\DRIVERS\avgidsha.sys
22:58:57.0236 5928 AVGIDSHA - ok
22:58:57.0251 5928 [ 5989592A91A17587799792A81E1541D4 ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys
22:58:57.0251 5928 Avgldx64 - ok
22:58:57.0329 5928 [ 3FC43AA02545FCDDC22817829114DEC8 ] Avgloga C:\Windows\system32\DRIVERS\avgloga.sys
22:58:57.0329 5928 Avgloga - ok
22:58:57.0345 5928 [ 767B4A485FB22AA0FC0BF5EEF00572B9 ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys
22:58:57.0345 5928 Avgmfx64 - ok
22:58:57.0407 5928 [ FE4F444DBE4BBBDFD8FECF49398DEFC7 ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys
22:58:57.0407 5928 Avgrkx64 - ok
22:58:57.0454 5928 [ 6E634525613D48A1D1657FB21F21F3B2 ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys
22:58:57.0454 5928 Avgtdia - ok
22:58:57.0501 5928 [ 6B72E1E329C4E98C6B6FDD2D265E3BA3 ] avgwd C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
22:58:57.0501 5928 avgwd - ok
22:58:57.0579 5928 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
22:58:57.0579 5928 AxInstSV - ok
22:58:57.0657 5928 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
22:58:57.0657 5928 b06bdrv - ok
22:58:57.0704 5928 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
22:58:57.0704 5928 b57nd60a - ok
22:58:57.0735 5928 [ 5C0F919666954885D7760DFFE4B29A25 ] BCM42RLY C:\Windows\system32\drivers\BCM42RLY.sys
22:58:57.0735 5928 BCM42RLY - ok
22:58:57.0906 5928 [ BAB887A2B2786310A966881F074F4A99 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
22:58:57.0922 5928 BCM43XX - ok
22:58:57.0969 5928 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
22:58:57.0984 5928 BDESVC - ok
22:58:58.0000 5928 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
22:58:58.0016 5928 Beep - ok
22:58:58.0078 5928 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
22:58:58.0078 5928 BFE - ok
22:58:58.0109 5928 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
22:58:58.0125 5928 BITS - ok
22:58:58.0187 5928 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
22:58:58.0187 5928 blbdrive - ok
22:58:58.0281 5928 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
22:58:58.0281 5928 Bonjour Service - ok
22:58:58.0328 5928 [ C752A6902163B5E9C3554BA69A275F41 ] BOT4Service C:\Program Files (x86)\Roxio\BackOnTrack\App\BService.exe
22:58:58.0328 5928 BOT4Service - ok
22:58:58.0452 5928 [ 92E3765E2F9E7EE2542C9C2F6318464C ] BOTService C:\Program Files (x86)\Roxio\BackOnTrack\Instant Restore\BOTService.exe
22:58:58.0452 5928 BOTService - ok
22:58:58.0530 5928 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
22:58:58.0530 5928 bowser - ok
22:58:58.0546 5928 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
22:58:58.0546 5928 BrFiltLo - ok
22:58:58.0608 5928 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
22:58:58.0608 5928 BrFiltUp - ok
22:58:58.0640 5928 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
22:58:58.0640 5928 BridgeMP - ok
22:58:58.0702 5928 [ 8EF0D5C41EC907751B8429162B1239ED ] Browser C:\Windows\System32\browser.dll
22:58:58.0702 5928 Browser - ok
22:58:58.0733 5928 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
22:58:58.0749 5928 Brserid - ok
22:58:58.0764 5928 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
22:58:58.0764 5928 BrSerWdm - ok
22:58:58.0780 5928 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
22:58:58.0780 5928 BrUsbMdm - ok
22:58:58.0796 5928 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
22:58:58.0796 5928 BrUsbSer - ok
22:58:58.0858 5928 [ FF7C57973EEAD140062238C5A0B7D455 ] BTCFilterService C:\Windows\system32\DRIVERS\motfilt.sys
22:58:58.0858 5928 BTCFilterService - ok
22:58:58.0936 5928 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
22:58:58.0936 5928 BthEnum - ok
22:58:58.0967 5928 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
22:58:58.0967 5928 BTHMODEM - ok
22:58:58.0998 5928 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
22:58:58.0998 5928 BthPan - ok
22:58:59.0061 5928 [ 64C198198501F7560EE41D8D1EFA7952 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
22:58:59.0076 5928 BTHPORT - ok
22:58:59.0092 5928 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
22:58:59.0092 5928 bthserv - ok
22:58:59.0154 5928 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
22:58:59.0154 5928 BTHUSB - ok
22:58:59.0201 5928 [ D3466F77C2C49C6E393BA5FBA963A33E ] btusbflt C:\Windows\system32\drivers\btusbflt.sys
22:58:59.0201 5928 btusbflt - ok
22:58:59.0217 5928 [ AF838D8029AE7C27470862D63FA54D24 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
22:58:59.0217 5928 btwaudio - ok
22:58:59.0232 5928 [ 5C849BD7C78791C5CEE9F4651D7FE38D ] btwavdt C:\Windows\system32\DRIVERS\btwavdt.sys
22:58:59.0232 5928 btwavdt - ok
22:58:59.0342 5928 [ 10FFB5FA51D5713D872B41A59DFC2213 ] btwdins c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
22:58:59.0342 5928 btwdins - ok
22:58:59.0404 5928 [ 6149301DC3F81D6F9667A3FBAC410975 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
22:58:59.0404 5928 btwl2cap - ok
22:58:59.0451 5928 [ 3E1991AFA851A36DC978B0A1B0535C8B ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
22:58:59.0466 5928 btwrchid - ok
22:58:59.0513 5928 catchme - ok
22:58:59.0529 5928 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
22:58:59.0544 5928 cdfs - ok
22:58:59.0607 5928 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
22:58:59.0607 5928 cdrom - ok
22:58:59.0669 5928 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
22:58:59.0685 5928 CertPropSvc - ok
22:58:59.0716 5928 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
22:58:59.0747 5928 circlass - ok
22:58:59.0825 5928 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
22:58:59.0825 5928 CLFS - ok
22:58:59.0903 5928 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:58:59.0903 5928 clr_optimization_v2.0.50727_32 - ok
22:58:59.0919 5928 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:58:59.0934 5928 clr_optimization_v2.0.50727_64 - ok
22:59:00.0044 5928 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:59:00.0184 5928 clr_optimization_v4.0.30319_32 - ok
22:59:00.0231 5928 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:59:00.0231 5928 clr_optimization_v4.0.30319_64 - ok
22:59:00.0278 5928 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
22:59:00.0293 5928 CmBatt - ok
22:59:00.0324 5928 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
22:59:00.0340 5928 cmdide - ok
22:59:00.0402 5928 [ C4943B6C962E4B82197542447AD599F4 ] CNG C:\Windows\system32\Drivers\cng.sys
22:59:00.0402 5928 CNG - ok
22:59:00.0434 5928 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
22:59:00.0434 5928 Compbatt - ok
22:59:00.0480 5928 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
22:59:00.0480 5928 CompositeBus - ok
22:59:00.0527 5928 COMSysApp - ok
22:59:00.0558 5928 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
22:59:00.0558 5928 crcdisk - ok
22:59:00.0668 5928 [ 15597883FBE9B056F276ADA3AD87D9AF ] CryptSvc C:\Windows\system32\cryptsvc.dll
22:59:00.0668 5928 CryptSvc - ok
22:59:00.0699 5928 [ ED5CF92396A62F4C15110DCDB5E854D9 ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
22:59:00.0699 5928 CtClsFlt - ok
22:59:00.0808 5928 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
22:59:00.0808 5928 DcomLaunch - ok
22:59:00.0839 5928 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
22:59:00.0839 5928 defragsvc - ok
22:59:00.0917 5928 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
22:59:00.0917 5928 DfsC - ok
22:59:00.0995 5928 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
22:59:00.0995 5928 Dhcp - ok
22:59:01.0026 5928 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
22:59:01.0026 5928 discache - ok
22:59:01.0058 5928 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
22:59:01.0058 5928 Disk - ok
22:59:01.0120 5928 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
22:59:01.0136 5928 Dnscache - ok
22:59:01.0198 5928 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
22:59:01.0214 5928 dot3svc - ok
22:59:01.0260 5928 [ B42ED0320C6E41102FDE0005154849BB ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
22:59:01.0260 5928 Dot4 - ok
22:59:01.0276 5928 [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
22:59:01.0276 5928 Dot4Print - ok
22:59:01.0292 5928 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
22:59:01.0292 5928 dot4usb - ok
22:59:01.0338 5928 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
22:59:01.0338 5928 DPS - ok
22:59:01.0370 5928 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
22:59:01.0385 5928 drmkaud - ok
22:59:01.0510 5928 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
22:59:01.0510 5928 DXGKrnl - ok
22:59:01.0557 5928 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
22:59:01.0557 5928 EapHost - ok
22:59:01.0666 5928 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
22:59:01.0713 5928 ebdrv - ok
22:59:01.0791 5928 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
22:59:01.0791 5928 EFS - ok
22:59:01.0947 5928 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
22:59:01.0962 5928 ehRecvr - ok
22:59:01.0994 5928 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
22:59:01.0994 5928 ehSched - ok
22:59:02.0072 5928 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
22:59:02.0072 5928 elxstor - ok
22:59:02.0103 5928 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
22:59:02.0103 5928 ErrDev - ok
22:59:02.0150 5928 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
22:59:02.0150 5928 EventSystem - ok
22:59:02.0165 5928 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
22:59:02.0165 5928 exfat - ok
22:59:02.0181 5928 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
22:59:02.0181 5928 fastfat - ok
22:59:02.0243 5928 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
22:59:02.0243 5928 Fax - ok
22:59:02.0290 5928 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
22:59:02.0290 5928 fdc - ok
22:59:02.0352 5928 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
22:59:02.0352 5928 fdPHost - ok
22:59:02.0399 5928 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
22:59:02.0399 5928 FDResPub - ok
22:59:02.0477 5928 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
22:59:02.0477 5928 FileInfo - ok
22:59:02.0493 5928 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
22:59:02.0493 5928 Filetrace - ok
22:59:02.0524 5928 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
22:59:02.0524 5928 flpydisk - ok
22:59:02.0602 5928 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
22:59:02.0602 5928 FltMgr - ok
22:59:02.0789 5928 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
22:59:02.0789 5928 FontCache - ok
22:59:02.0867 5928 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:59:02.0867 5928 FontCache3.0.0.0 - ok
22:59:02.0898 5928 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
22:59:02.0898 5928 FsDepends - ok
22:59:02.0914 5928 [ E95EF8547DE20CF0603557C0CF7A9462 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
22:59:02.0914 5928 Fs_Rec - ok
22:59:02.0976 5928 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
22:59:02.0976 5928 fvevol - ok
22:59:03.0008 5928 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
22:59:03.0008 5928 gagp30kx - ok
22:59:03.0054 5928 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
22:59:03.0070 5928 GEARAspiWDM - ok
22:59:03.0117 5928 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
22:59:03.0117 5928 gpsvc - ok
22:59:03.0273 5928 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:59:03.0273 5928 gupdate - ok
22:59:03.0304 5928 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:59:03.0304 5928 gupdatem - ok
22:59:03.0320 5928 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
22:59:03.0320 5928 hcw85cir - ok
22:59:03.0398 5928 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
22:59:03.0398 5928 HdAudAddService - ok
22:59:03.0429 5928 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
22:59:03.0429 5928 HDAudBus - ok
22:59:03.0476 5928 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
22:59:03.0476 5928 HidBatt - ok
22:59:03.0507 5928 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
22:59:03.0507 5928 HidBth - ok
22:59:03.0538 5928 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
22:59:03.0538 5928 HidIr - ok
22:59:03.0600 5928 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
22:59:03.0600 5928 hidserv - ok
22:59:03.0663 5928 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
22:59:03.0663 5928 HidUsb - ok
22:59:03.0710 5928 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
22:59:03.0725 5928 hkmsvc - ok
22:59:03.0756 5928 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
22:59:03.0756 5928 HomeGroupListener - ok
22:59:03.0819 5928 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
22:59:03.0819 5928 HomeGroupProvider - ok
22:59:03.0866 5928 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
22:59:03.0866 5928 HpSAMD - ok
22:59:03.0959 5928 [ D4F91CF4DE215D6F14A06087D46725E4 ] HPSLPSVC C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
22:59:03.0975 5928 HPSLPSVC - ok
22:59:04.0068 5928 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
22:59:04.0068 5928 HTTP - ok
22:59:04.0115 5928 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
22:59:04.0115 5928 hwpolicy - ok
22:59:04.0178 5928 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
22:59:04.0178 5928 i8042prt - ok
22:59:04.0287 5928 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
22:59:04.0287 5928 iaStorV - ok
22:59:04.0365 5928 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:59:04.0365 5928 idsvc - ok
22:59:04.0911 5928 [ 677AA5991026A65ADA128C4B59CF2BAD ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
22:59:04.0973 5928 igfx - ok
22:59:05.0020 5928 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
22:59:05.0020 5928 iirsp - ok
22:59:05.0067 5928 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
22:59:05.0067 5928 IKEEXT - ok
22:59:05.0098 5928 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
22:59:05.0098 5928 Impcd - ok
22:59:05.0192 5928 [ C6C1F19205DA83C801BE7C25F4E2EE07 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
22:59:05.0192 5928 IntcDAud - ok
22:59:05.0223 5928 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
22:59:05.0223 5928 intelide - ok
22:59:05.0270 5928 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
22:59:05.0270 5928 intelppm - ok
22:59:05.0301 5928 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
22:59:05.0301 5928 IPBusEnum - ok
22:59:05.0348 5928 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:59:05.0348 5928 IpFilterDriver - ok
22:59:05.0394 5928 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
22:59:05.0394 5928 iphlpsvc - ok
22:59:05.0441 5928 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
22:59:05.0441 5928 IPMIDRV - ok
22:59:05.0504 5928 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
22:59:05.0504 5928 IPNAT - ok
22:59:05.0613 5928 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
22:59:05.0628 5928 iPod Service - ok
22:59:05.0675 5928 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
22:59:05.0675 5928 IRENUM - ok
22:59:05.0738 5928 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
22:59:05.0738 5928 isapnp - ok
22:59:05.0784 5928 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
22:59:05.0784 5928 iScsiPrt - ok
22:59:05.0800 5928 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
22:59:05.0800 5928 kbdclass - ok
22:59:05.0862 5928 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
22:59:05.0862 5928 kbdhid - ok
22:59:05.0878 5928 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
22:59:05.0878 5928 KeyIso - ok
22:59:05.0925 5928 [ DA1E991A61CFDD755A589E206B97644B ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
22:59:05.0925 5928 KSecDD - ok
22:59:05.0940 5928 [ 7E33198D956943A4F11A5474C1E9106F ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
22:59:05.0940 5928 KSecPkg - ok
22:59:05.0987 5928 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
22:59:05.0987 5928 ksthunk - ok
22:59:06.0034 5928 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
22:59:06.0034 5928 KtmRm - ok
22:59:06.0128 5928 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
22:59:06.0143 5928 LanmanServer - ok
22:59:06.0206 5928 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:59:06.0206 5928 LanmanWorkstation - ok
22:59:06.0252 5928 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
22:59:06.0252 5928 lltdio - ok
22:59:06.0299 5928 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
22:59:06.0299 5928 lltdsvc - ok
22:59:06.0315 5928 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
22:59:06.0315 5928 lmhosts - ok
22:59:06.0377 5928 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
22:59:06.0377 5928 LSI_FC - ok
22:59:06.0393 5928 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
22:59:06.0393 5928 LSI_SAS - ok
22:59:06.0424 5928 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
22:59:06.0424 5928 LSI_SAS2 - ok
22:59:06.0440 5928 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
22:59:06.0440 5928 LSI_SCSI - ok
22:59:06.0455 5928 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
22:59:06.0455 5928 luafv - ok
22:59:06.0471 5928 MBAMProtector - ok
22:59:06.0580 5928 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
22:59:06.0580 5928 MBAMScheduler - ok
22:59:06.0642 5928 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
22:59:06.0658 5928 MBAMService - ok
22:59:06.0689 5928 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
22:59:06.0689 5928 Mcx2Svc - ok
22:59:06.0736 5928 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
22:59:06.0736 5928 megasas - ok
22:59:06.0798 5928 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
22:59:06.0798 5928 MegaSR - ok
22:59:06.0861 5928 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
22:59:06.0861 5928 MMCSS - ok
22:59:06.0876 5928 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
22:59:06.0892 5928 Modem - ok
22:59:06.0923 5928 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
22:59:06.0923 5928 monitor - ok
22:59:06.0986 5928 [ D69F1E9A944A5F46A494AF901ED41118 ] motandroidusb C:\Windows\system32\Drivers\motoandroid.sys
22:59:06.0986 5928 motandroidusb - ok
22:59:07.0032 5928 [ 85198FB1E5CC4A9DB03443A385EA0AD2 ] motccgp C:\Windows\system32\DRIVERS\motccgp.sys
22:59:07.0032 5928 motccgp - ok
22:59:07.0079 5928 [ 577399C75CF85AC68E7830EB150F45EF ] motccgpfl C:\Windows\system32\DRIVERS\motccgpfl.sys
22:59:07.0079 5928 motccgpfl - ok
22:59:07.0142 5928 [ 3CC500C9B0E4D476802D277353CB2C89 ] MotDev C:\Windows\system32\DRIVERS\motodrv.sys
22:59:07.0157 5928 MotDev - ok
22:59:07.0220 5928 [ 0EF6B989AF403C1C1B6EBCBD2A280612 ] motmodem C:\Windows\system32\DRIVERS\motmodem.sys
22:59:07.0220 5928 motmodem - ok
22:59:07.0344 5928 [ 290750346F5937B02F62594B8EB03215 ] MotoHelper C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperService.exe
22:59:07.0344 5928 MotoHelper - ok
22:59:07.0376 5928 [ EBD05F60CAFC5BBA2602B8D7101082D3 ] MotoSwitchService C:\Windows\system32\DRIVERS\motswch.sys
22:59:07.0376 5928 MotoSwitchService - ok
22:59:07.0422 5928 [ 7E1BD35249F4D5A745144B3C77F9FB85 ] Motousbnet C:\Windows\system32\DRIVERS\Motousbnet.sys
22:59:07.0438 5928 Motousbnet - ok
22:59:07.0500 5928 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
22:59:07.0500 5928 mouclass - ok
22:59:07.0547 5928 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
22:59:07.0547 5928 mouhid - ok
22:59:07.0610 5928 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
22:59:07.0610 5928 mountmgr - ok
22:59:07.0656 5928 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
22:59:07.0656 5928 mpio - ok
22:59:07.0688 5928 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
22:59:07.0688 5928 mpsdrv - ok
22:59:07.0844 5928 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
22:59:07.0844 5928 MpsSvc - ok
22:59:07.0890 5928 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
22:59:07.0890 5928 MRxDAV - ok
22:59:07.0937 5928 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
22:59:07.0937 5928 mrxsmb - ok
22:59:08.0000 5928 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:59:08.0000 5928 mrxsmb10 - ok
22:59:08.0031 5928 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:59:08.0031 5928 mrxsmb20 - ok
22:59:08.0078 5928 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
22:59:08.0078 5928 msahci - ok
22:59:08.0109 5928 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
22:59:08.0124 5928 msdsm - ok
22:59:08.0156 5928 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
22:59:08.0156 5928 MSDTC - ok
22:59:08.0187 5928 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
22:59:08.0187 5928 Msfs - ok
22:59:08.0202 5928 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
22:59:08.0202 5928 mshidkmdf - ok
22:59:08.0265 5928 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
22:59:08.0265 5928 msisadrv - ok
22:59:08.0296 5928 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
22:59:08.0296 5928 MSiSCSI - ok
22:59:08.0296 5928 msiserver - ok
22:59:08.0312 5928 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
22:59:08.0327 5928 MSKSSRV - ok
22:59:08.0343 5928 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
22:59:08.0343 5928 MSPCLOCK - ok
22:59:08.0358 5928 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
22:59:08.0358 5928 MSPQM - ok
22:59:08.0421 5928 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
22:59:08.0421 5928 MsRPC - ok
22:59:08.0483 5928 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
22:59:08.0483 5928 mssmbios - ok
22:59:08.0514 5928 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
22:59:08.0514 5928 MSTEE - ok
22:59:08.0530 5928 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
22:59:08.0530 5928 MTConfig - ok
22:59:08.0561 5928 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
22:59:08.0561 5928 Mup - ok
22:59:08.0686 5928 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
22:59:08.0686 5928 napagent - ok
22:59:08.0717 5928 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
22:59:08.0733 5928 NativeWifiP - ok
22:59:08.0780 5928 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys
22:59:08.0795 5928 NDIS - ok
22:59:08.0826 5928 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
22:59:08.0826 5928 NdisCap - ok
22:59:08.0858 5928 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
22:59:08.0858 5928 NdisTapi - ok
22:59:08.0904 5928 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
22:59:08.0904 5928 Ndisuio - ok
22:59:08.0982 5928 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
22:59:08.0982 5928 NdisWan - ok
22:59:09.0014 5928 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
22:59:09.0014 5928 NDProxy - ok
22:59:09.0060 5928 [ D4F51E88C71BF8F06EA1BE320B0BB75B ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
22:59:09.0060 5928 Net Driver HPZ12 - ok
22:59:09.0092 5928 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
22:59:09.0107 5928 NetBIOS - ok
22:59:09.0154 5928 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
22:59:09.0154 5928 NetBT - ok
22:59:09.0170 5928 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
22:59:09.0170 5928 Netlogon - ok
22:59:09.0216 5928 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
22:59:09.0216 5928 Netman - ok
22:59:09.0263 5928 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:59:09.0310 5928 NetMsmqActivator - ok
22:59:09.0310 5928 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:59:09.0310 5928 NetPipeActivator - ok
22:59:09.0372 5928 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
22:59:09.0388 5928 netprofm - ok
22:59:09.0435 5928 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:59:09.0435 5928 NetTcpActivator - ok
22:59:09.0435 5928 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:59:09.0435 5928 NetTcpPortSharing - ok
22:59:09.0482 5928 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
22:59:09.0482 5928 nfrd960 - ok
22:59:09.0560 5928 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
22:59:09.0560 5928 NlaSvc - ok
22:59:09.0606 5928 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
22:59:09.0606 5928 Npfs - ok
22:59:09.0622 5928 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
22:59:09.0622 5928 nsi - ok
22:59:09.0653 5928 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
22:59:09.0653 5928 nsiproxy - ok
22:59:09.0794 5928 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
22:59:09.0809 5928 Ntfs - ok
22:59:09.0840 5928 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
22:59:09.0840 5928 Null - ok
22:59:09.0856 5928 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
22:59:09.0856 5928 nvraid - ok
22:59:09.0918 5928 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
22:59:09.0918 5928 nvstor - ok
22:59:09.0950 5928 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
22:59:09.0950 5928 nv_agp - ok
22:59:10.0043 5928 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
22:59:10.0074 5928 odserv - ok
22:59:10.0106 5928 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
22:59:10.0106 5928 ohci1394 - ok
22:59:10.0230 5928 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:59:10.0246 5928 ose - ok
22:59:10.0277 5928 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
22:59:10.0277 5928 p2pimsvc - ok
22:59:10.0340 5928 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
22:59:10.0340 5928 p2psvc - ok
22:59:10.0371 5928 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
22:59:10.0371 5928 Parport - ok
22:59:10.0418 5928 [ 871EADAC56B0A4C6512BBE32753CCF79 ] partmgr C:\Windows\system32\drivers\partmgr.sys
22:59:10.0418 5928 partmgr - ok
22:59:10.0433 5928 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
22:59:10.0449 5928 PcaSvc - ok
22:59:10.0464 5928 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
22:59:10.0464 5928 pci - ok
22:59:10.0511 5928 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
22:59:10.0527 5928 pciide - ok
22:59:10.0558 5928 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
22:59:10.0558 5928 pcmcia - ok
22:59:10.0589 5928 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
22:59:10.0589 5928 pcw - ok
22:59:10.0620 5928 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
22:59:10.0620 5928 PEAUTH - ok
22:59:10.0730 5928 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
22:59:10.0730 5928 PerfHost - ok
22:59:10.0870 5928 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
22:59:10.0886 5928 pla - ok
22:59:10.0948 5928 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
22:59:10.0964 5928 PlugPlay - ok
22:59:10.0979 5928 [ 9A80707D8B6C1806531BFD7399B3CC76 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
22:59:10.0979 5928 Pml Driver HPZ12 - ok
22:59:11.0057 5928 [ FE74BA87CDAA80AC9261F49167F0608A ] pneteth C:\Windows\system32\DRIVERS\pneteth.sys
22:59:11.0057 5928 pneteth - ok
22:59:11.0088 5928 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
22:59:11.0088 5928 PNRPAutoReg - ok
22:59:11.0104 5928 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
22:59:11.0104 5928 PNRPsvc - ok
22:59:11.0182 5928 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
22:59:11.0182 5928 PolicyAgent - ok
22:59:11.0229 5928 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
22:59:11.0229 5928 Power - ok
22:59:11.0307 5928 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
22:59:11.0307 5928 PptpMiniport - ok
22:59:11.0322 5928 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
22:59:11.0322 5928 Processor - ok
22:59:11.0369 5928 [ 5C78838B4D166D1A27DB3A8A820C799A ] ProfSvc C:\Windows\system32\profsvc.dll
22:59:11.0369 5928 ProfSvc - ok
22:59:11.0385 5928 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
22:59:11.0385 5928 ProtectedStorage - ok
22:59:11.0432 5928 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
22:59:11.0447 5928 Psched - ok
22:59:11.0510 5928 [ F2EECF8977BD3FE4E38743DDCFBECD20 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
22:59:11.0510 5928 PxHlpa64 - ok
22:59:11.0603 5928 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
22:59:11.0603 5928 ql2300 - ok
22:59:11.0634 5928 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
22:59:11.0634 5928 ql40xx - ok
22:59:11.0697 5928 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
22:59:11.0697 5928 QWAVE - ok
22:59:11.0744 5928 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
22:59:11.0744 5928 QWAVEdrv - ok
22:59:11.0759 5928 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
22:59:11.0759 5928 RasAcd - ok
22:59:11.0790 5928 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
22:59:11.0790 5928 RasAgileVpn - ok
22:59:11.0806 5928 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
22:59:11.0806 5928 RasAuto - ok
22:59:11.0837 5928 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
22:59:11.0837 5928 Rasl2tp - ok
22:59:11.0884 5928 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
22:59:11.0884 5928 RasMan - ok
22:59:11.0946 5928 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
22:59:11.0946 5928 RasPppoe - ok
22:59:11.0962 5928 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
22:59:11.0978 5928 RasSstp - ok
22:59:12.0024 5928 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
22:59:12.0040 5928 rdbss - ok
22:59:12.0056 5928 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
22:59:12.0056 5928 rdpbus - ok
22:59:12.0071 5928 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
22:59:12.0071 5928 RDPCDD - ok
22:59:12.0102 5928 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
22:59:12.0102 5928 RDPENCDD - ok
22:59:12.0134 5928 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
22:59:12.0134 5928 RDPREFMP - ok
22:59:12.0212 5928 [ 15B66C206B5CB095BAB980553F38ED23 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
22:59:12.0227 5928 RDPWD - ok
22:59:12.0290 5928 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
22:59:12.0290 5928 rdyboost - ok
22:59:12.0321 5928 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
22:59:12.0321 5928 RemoteAccess - ok
22:59:12.0352 5928 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
22:59:12.0352 5928 RemoteRegistry - ok
22:59:12.0399 5928 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
22:59:12.0399 5928 RFCOMM - ok
22:59:12.0446 5928 [ 5790BCA445CC40DF8B38C2C48608AAC2 ] RimUsb C:\Windows\system32\Drivers\RimUsb_AMD64.sys
22:59:12.0446 5928 RimUsb - ok
22:59:12.0711 5928 [ 879BF5333A3DF407019FB16B35F2A352 ] RoxMediaDB13 C:\Program Files (x86)\Common Files\Roxio Shared\13.0\SharedCOM\RoxMediaDB13.exe
22:59:12.0711 5928 RoxMediaDB13 - ok
22:59:12.0773 5928 [ DDB9FE116DF539AD256AB18C9BCA883B ] RoxWatch12 C:\Program Files (x86)\Common Files\Roxio Shared\13.0\SharedCOM\RoxWatch13.exe
22:59:12.0789 5928 RoxWatch12 - ok
22:59:12.0804 5928 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
22:59:12.0820 5928 RpcEptMapper - ok
22:59:12.0867 5928 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
22:59:12.0867 5928 RpcLocator - ok
22:59:12.0976 5928 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
22:59:12.0976 5928 RpcSs - ok
22:59:13.0023 5928 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
22:59:13.0023 5928 rspndr - ok
22:59:13.0085 5928 [ 4FE1CEF69D36E913738234303986FBB3 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
22:59:13.0101 5928 RTL8167 - ok
22:59:13.0148 5928 [ 27DB9153D259D632D15483DEEAB799ED ] Sahdad64 C:\Windows\system32\Drivers\Sahdad64.sys
22:59:13.0163 5928 Sahdad64 - ok
22:59:13.0179 5928 [ F77849D909B90BCACFCF7295AECF299B ] Saibad64 C:\Windows\system32\Drivers\Saibad64.sys
22:59:13.0179 5928 Saibad64 - ok
22:59:13.0226 5928 [ 704D415290A568F68DE20942DAC23F7E ] SaibVdAd64 C:\Windows\system32\Drivers\SaibVdAd64.sys
22:59:13.0226 5928 SaibVdAd64 - ok
22:59:13.0257 5928 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
22:59:13.0257 5928 SamSs - ok
22:59:13.0304 5928 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
22:59:13.0304 5928 sbp2port - ok
22:59:13.0366 5928 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
22:59:13.0366 5928 SCardSvr - ok
22:59:13.0428 5928 [ 07237C66E05DA6778E9F3CB67FA00736 ] SCDEmu C:\Windows\system32\drivers\SCDEmu.sys
22:59:13.0428 5928 SCDEmu - ok
22:59:13.0475 5928 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
22:59:13.0491 5928 scfilter - ok
22:59:13.0569 5928 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
22:59:13.0569 5928 Schedule - ok
22:59:13.0647 5928 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
22:59:13.0647 5928 SCPolicySvc - ok
22:59:13.0709 5928 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
22:59:13.0709 5928 SDRSVC - ok
22:59:13.0756 5928 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
22:59:13.0756 5928 secdrv - ok
22:59:13.0803 5928 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
22:59:13.0803 5928 seclogon - ok
22:59:13.0850 5928 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
22:59:13.0850 5928 SENS - ok
22:59:13.0881 5928 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
22:59:13.0881 5928 SensrSvc - ok
22:59:13.0912 5928 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
22:59:13.0912 5928 Serenum - ok
22:59:13.0959 5928 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
22:59:13.0959 5928 Serial - ok
22:59:14.0006 5928 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
22:59:14.0006 5928 sermouse - ok
22:59:14.0068 5928 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
22:59:14.0068 5928 SessionEnv - ok
22:59:14.0115 5928 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
22:59:14.0130 5928 sffdisk - ok
22:59:14.0130 5928 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
22:59:14.0130 5928 sffp_mmc - ok
22:59:14.0146 5928 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
22:59:14.0146 5928 sffp_sd - ok
22:59:14.0177 5928 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
22:59:14.0177 5928 sfloppy - ok
22:59:14.0240 5928 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
22:59:14.0240 5928 SharedAccess - ok
22:59:14.0318 5928 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:59:14.0333 5928 ShellHWDetection - ok
22:59:14.0380 5928 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
22:59:14.0396 5928 SiSRaid2 - ok
22:59:14.0427 5928 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
22:59:14.0427 5928 SiSRaid4 - ok
22:59:14.0474 5928 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
22:59:14.0474 5928 Smb - ok
22:59:14.0520 5928 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
22:59:14.0520 5928 SNMPTRAP - ok
22:59:14.0536 5928 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
22:59:14.0536 5928 spldr - ok
22:59:14.0583 5928 [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler C:\Windows\System32\spoolsv.exe
22:59:14.0598 5928 Spooler - ok
22:59:14.0926 5928 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
22:59:14.0942 5928 sppsvc - ok
22:59:14.0973 5928 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
22:59:14.0988 5928 sppuinotify - ok
22:59:15.0035 5928 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
22:59:15.0035 5928 srv - ok
22:59:15.0098 5928 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
22:59:15.0098 5928 srv2 - ok
22:59:15.0144 5928 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
22:59:15.0160 5928 srvnet - ok
22:59:15.0176 5928 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
22:59:15.0176 5928 SSDPSRV - ok
22:59:15.0191 5928 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
22:59:15.0207 5928 SstpSvc - ok
22:59:15.0222 5928 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
22:59:15.0222 5928 stexstor - ok
22:59:15.0285 5928 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
22:59:15.0285 5928 StillCam - ok
22:59:15.0363 5928 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
22:59:15.0378 5928 stisvc - ok
22:59:15.0425 5928 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
22:59:15.0425 5928 swenum - ok
22:59:15.0472 5928 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
22:59:15.0488 5928 swprv - ok
22:59:15.0534 5928 [ 1F1D1BCC1B746DE700E3E21D758262A7 ] SysCow C:\Windows\system32\drivers\syscowad64v.sys
22:59:15.0534 5928 SysCow - ok
22:59:15.0706 5928 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
22:59:15.0722 5928 SysMain - ok
22:59:15.0800 5928 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:59:15.0800 5928 TabletInputService - ok
22:59:15.0815 5928 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
22:59:15.0815 5928 TapiSrv - ok
22:59:15.0846 5928 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
22:59:15.0846 5928 TBS - ok
22:59:15.0987 5928 [ FC62769E7BFF2896035AEED399108162 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
22:59:16.0002 5928 Tcpip - ok
22:59:16.0112 5928 [ FC62769E7BFF2896035AEED399108162 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
22:59:16.0127 5928 TCPIP6 - ok
22:59:16.0174 5928 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
22:59:16.0174 5928 tcpipreg - ok
22:59:16.0205 5928 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
22:59:16.0205 5928 TDPIPE - ok
22:59:16.0221 5928 [ E4245BDA3190A582D55ED09E137401A9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
22:59:16.0221 5928 TDTCP - ok
22:59:16.0283 5928 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
22:59:16.0283 5928 tdx - ok
22:59:16.0330 5928 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
22:59:16.0330 5928 TermDD - ok
22:59:16.0392 5928 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
22:59:16.0392 5928 TermService - ok
22:59:16.0424 5928 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
22:59:16.0424 5928 Themes - ok
22:59:16.0455 5928 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
22:59:16.0455 5928 THREADORDER - ok
22:59:16.0470 5928 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
22:59:16.0470 5928 TrkWks - ok
22:59:16.0564 5928 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:59:16.0564 5928 TrustedInstaller - ok
22:59:16.0642 5928 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
22:59:16.0642 5928 tssecsrv - ok
22:59:16.0689 5928 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
22:59:16.0689 5928 TsUsbFlt - ok
22:59:16.0751 5928 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
22:59:16.0751 5928 tunnel - ok
22:59:16.0814 5928 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
22:59:16.0814 5928 uagp35 - ok
22:59:16.0892 5928 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
22:59:16.0892 5928 udfs - ok
22:59:16.0923 5928 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
22:59:16.0923 5928 UI0Detect - ok
22:59:16.0938 5928 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
22:59:16.0938 5928 uliagpkx - ok
22:59:17.0001 5928 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
22:59:17.0001 5928 umbus - ok
22:59:17.0048 5928 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
22:59:17.0048 5928 UmPass - ok
22:59:17.0110 5928 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
22:59:17.0110 5928 upnphost - ok
22:59:17.0204 5928 [ AF1B9474D67897D0C2CFF58E0ACEACCC ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
22:59:17.0204 5928 USBAAPL64 - ok
22:59:17.0235 5928 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
22:59:17.0235 5928 usbccgp - ok
22:59:17.0282 5928 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
22:59:17.0282 5928 usbcir - ok
22:59:17.0313 5928 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
22:59:17.0313 5928 usbehci - ok
22:59:17.0360 5928 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
22:59:17.0360 5928 usbhub - ok
22:59:17.0422 5928 [ 58E546BBAF87664FC57E0F6081E4F609 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
22:59:17.0422 5928 usbohci - ok
22:59:17.0453 5928 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
22:59:17.0453 5928 usbprint - ok
22:59:17.0516 5928 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
22:59:17.0516 5928 usbscan - ok
22:59:17.0547 5928 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:59:17.0547 5928 USBSTOR - ok
22:59:17.0578 5928 [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
22:59:17.0594 5928 usbuhci - ok
22:59:17.0656 5928 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
22:59:17.0656 5928 usbvideo - ok
22:59:17.0718 5928 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
22:59:17.0718 5928 UxSms - ok
22:59:17.0765 5928 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
22:59:17.0765 5928 VaultSvc - ok
22:59:17.0796 5928 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
22:59:17.0812 5928 vdrvroot - ok
22:59:17.0859 5928 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
22:59:17.0874 5928 vds - ok
22:59:17.0906 5928 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
22:59:17.0906 5928 vga - ok
22:59:17.0937 5928 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
22:59:17.0937 5928 VgaSave - ok
22:59:17.0984 5928 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
22:59:17.0984 5928 vhdmp - ok
22:59:18.0030 5928 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
22:59:18.0030 5928 viaide - ok
22:59:18.0062 5928 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
22:59:18.0062 5928 volmgr - ok
22:59:18.0108 5928 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
22:59:18.0108 5928 volmgrx - ok
22:59:18.0171 5928 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
22:59:18.0171 5928 volsnap - ok
22:59:18.0218 5928 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
22:59:18.0218 5928 vsmraid - ok
22:59:18.0327 5928 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
22:59:18.0342 5928 VSS - ok
22:59:18.0374 5928 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
22:59:18.0374 5928 vwifibus - ok
22:59:18.0389 5928 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
22:59:18.0389 5928 vwififlt - ok
22:59:18.0420 5928 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
22:59:18.0420 5928 vwifimp - ok
22:59:18.0452 5928 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
22:59:18.0452 5928 W32Time - ok
22:59:18.0498 5928 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
22:59:18.0498 5928 WacomPen - ok
22:59:18.0561 5928 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
22:59:18.0561 5928 WANARP - ok
22:59:18.0592 5928 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
22:59:18.0592 5928 Wanarpv6 - ok
22:59:18.0717 5928 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
22:59:18.0732 5928 WatAdminSvc - ok
22:59:18.0810 5928 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
22:59:18.0826 5928 wbengine - ok
22:59:18.0873 5928 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
22:59:18.0873 5928 WbioSrvc - ok
22:59:18.0920 5928 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
22:59:18.0935 5928 wcncsvc - ok
22:59:18.0951 5928 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:59:18.0951 5928 WcsPlugInService - ok
22:59:18.0982 5928 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
22:59:18.0982 5928 Wd - ok
22:59:19.0029 5928 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
22:59:19.0029 5928 Wdf01000 - ok
22:59:19.0060 5928 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
22:59:19.0060 5928 WdiServiceHost - ok
22:59:19.0076 5928 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
22:59:19.0076 5928 WdiSystemHost - ok
22:59:19.0169 5928 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
22:59:19.0169 5928 WebClient - ok
22:59:19.0200 5928 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
22:59:19.0200 5928 Wecsvc - ok
22:59:19.0216 5928 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
22:59:19.0232 5928 wercplsupport - ok
22:59:19.0247 5928 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
22:59:19.0247 5928 WerSvc - ok
22:59:19.0278 5928 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
22:59:19.0278 5928 WfpLwf - ok
22:59:19.0294 5928 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
22:59:19.0294 5928 WIMMount - ok
22:59:19.0341 5928 WinDefend - ok
22:59:19.0356 5928 WinHttpAutoProxySvc - ok
22:59:19.0403 5928 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
22:59:19.0403 5928 Winmgmt - ok
22:59:19.0528 5928 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
22:59:19.0544 5928 WinRM - ok
22:59:19.0668 5928 [ FE88B288356E7B47B74B13372ADD906D ] WinUSB C:\Windows\system32\DRIVERS\WinUSB.sys
22:59:19.0668 5928 WinUSB - ok
22:59:19.0715 5928 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
22:59:19.0715 5928 Wlansvc - ok
22:59:19.0949 5928 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:59:19.0965 5928 wlidsvc - ok
22:59:20.0012 5928 [ A96D6C0613DCF84F2D07FAEB75663072 ] wltrysvc C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE
22:59:20.0012 5928 wltrysvc - ok
22:59:20.0090 5928 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
22:59:20.0090 5928 WmiAcpi - ok
22:59:20.0152 5928 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
22:59:20.0152 5928 wmiApSrv - ok
22:59:20.0214 5928 WMPNetworkSvc - ok
22:59:20.0230 5928 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
22:59:20.0230 5928 WPCSvc - ok
22:59:20.0277 5928 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
22:59:20.0277 5928 WPDBusEnum - ok
22:59:20.0292 5928 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
22:59:20.0292 5928 ws2ifsl - ok
22:59:20.0355 5928 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
22:59:20.0370 5928 wscsvc - ok
22:59:20.0402 5928 [ 8D918B1DB190A4D9B1753A66FA8C96E8 ] WSDPrintDevice C:\Windows\system32\DRIVERS\WSDPrint.sys
22:59:20.0402 5928 WSDPrintDevice - ok
22:59:20.0417 5928 WSearch - ok
22:59:20.0573 5928 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
22:59:20.0589 5928 wuauserv - ok
22:59:20.0636 5928 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
22:59:20.0636 5928 WudfPf - ok
22:59:20.0667 5928 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
22:59:20.0667 5928 WUDFRd - ok
22:59:20.0714 5928 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
22:59:20.0714 5928 wudfsvc - ok
22:59:20.0745 5928 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
22:59:20.0776 5928 WwanSvc - ok
22:59:20.0823 5928 ================ Scan global ===============================
22:59:20.0854 5928 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
22:59:20.0916 5928 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
22:59:20.0916 5928 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
22:59:20.0948 5928 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
22:59:21.0041 5928 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
22:59:21.0041 5928 [Global] - ok
22:59:21.0041 5928 ================ Scan MBR ==================================
22:59:21.0057 5928 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
22:59:21.0587 5928 \Device\Harddisk0\DR0 - ok
22:59:21.0587 5928 ================ Scan VBR ==================================
22:59:21.0618 5928 [ ADF8F3DCB4E15BCA2D1510332CF109A3 ] \Device\Harddisk0\DR0\Partition1
22:59:21.0618 5928 \Device\Harddisk0\DR0\Partition1 - ok
22:59:21.0634 5928 [ 140102E69932C40FFB161899E933E49C ] \Device\Harddisk0\DR0\Partition2
22:59:21.0665 5928 \Device\Harddisk0\DR0\Partition2 - ok
22:59:21.0665 5928 ============================================================
22:59:21.0665 5928 Scan finished
22:59:21.0665 5928 ============================================================
22:59:21.0665 5292 Detected object count: 0
22:59:21.0665 5292 Actual detected object count: 0

#10 nscroggs

nscroggs
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:08:11 AM

Posted 09 November 2012 - 11:29 PM

Avast results...

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2012-11-09 23:07:49
-----------------------------
23:07:49.961 OS Version: Windows x64 6.1.7601 Service Pack 1
23:07:49.961 Number of processors: 4 586 0x2505
23:07:49.961 ComputerName: HUNTER-LAPTOP UserName: Hunter
23:07:51.380 Initialize success
23:11:13.436 AVAST engine defs: 12110900
23:11:26.884 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
23:11:26.884 Disk 0 Vendor: TOSHIBA_MK5065GSX GJ002D Size: 476940MB BusType: 3
23:11:26.915 Disk 0 MBR read successfully
23:11:26.930 Disk 0 MBR scan
23:11:26.930 Disk 0 Windows 7 default MBR code
23:11:26.946 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 109 MB offset 63
23:11:26.962 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 11718 MB offset 225280
23:11:26.977 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 465097 MB offset 24223744
23:11:27.008 Disk 0 scanning C:\Windows\system32\drivers
23:11:41.034 Service scanning
23:12:19.426 Modules scanning
23:12:19.426 Disk 0 trace - called modules:
23:12:19.442 ntoskrnl.exe CLASSPNP.SYS disk.sys Sahdad64.sys ACPI.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
23:12:19.458 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004bd5060]
23:12:19.458 3 CLASSPNP.SYS[fffff8800198d43f] -> nt!IofCallDriver -> [0xfffffa8004a6ba20]
23:12:19.458 5 Sahdad64.sys[fffff88001918e25] -> nt!IofCallDriver -> [0xfffffa8003aede40]
23:12:19.458 7 ACPI.sys[fffff88000f047a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa8004932060]
23:12:21.704 AVAST engine scan C:\Windows
23:12:26.181 AVAST engine scan C:\Windows\system32
23:16:42.557 AVAST engine scan C:\Windows\system32\drivers
23:17:02.853 AVAST engine scan C:\Users\Hunter
23:20:04.439 Disk 0 MBR has been saved successfully to "C:\Users\Hunter\Desktop\Virus & Malware Protection\MBR.dat"
23:20:04.439 The log file has been saved successfully to "C:\Users\Hunter\Desktop\Virus & Malware Protection\aswMBR.txt"

#11 nscroggs

nscroggs
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:08:11 AM

Posted 10 November 2012 - 02:04 AM

ESET report...

C:\Qoobox\Quarantine\C\Program Files (x86)\TelevisionFanaticEI\Installr\1.bin\64EZSETP.dll.vir Win32/Toolbar.MyWebSearch application cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Program Files (x86)\TelevisionFanaticEI\Installr\1.bin\NP64EISb.dll.vir Win32/Toolbar.MyWebSearch application cleaned by deleting - quarantined
C:\System Volume Information\SystemRestore\FRStaging\Program Files (x86)\TelevisionFanaticEI\Installr\1.bin\64EZSETP.dll Win32/Toolbar.MyWebSearch application cleaned by deleting - quarantined
C:\System Volume Information\SystemRestore\FRStaging\Program Files (x86)\TelevisionFanaticEI\Installr\1.bin\NP64EISb.dll Win32/Toolbar.MyWebSearch application cleaned by deleting - quarantined
C:\System Volume Information\SystemRestore\FRStaging\Users\Hunter\AppData\Local\Temp\ICReinstall\cnet2_fkeylogger_zip(1).exe a variant of Win32/InstallCore.D application cleaned by deleting - quarantined
C:\System Volume Information\SystemRestore\FRStaging\Users\Hunter\AppData\Local\Temp\ICReinstall\cnet2_fkeylogger_zip.exe a variant of Win32/InstallCore.D application cleaned by deleting - quarantined
C:\System Volume Information\SystemRestore\FRStaging\Users\Hunter\AppData\Local\Temp\is1598539481\BuzzdockSetup-Silent.exe multiple threats cleaned by deleting - quarantined
C:\System Volume Information\SystemRestore\FRStaging\Users\Hunter\Downloads\vlcmediaplayer-setup.exe Win32/DownloadAdmin.A.Gen application cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\09.11.2012_22.50.35\mbr0000\tdlfs0000\tsk0005.dta Win32/Olmasco.O trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\09.11.2012_22.50.35\mbr0000\tdlfs0000\tsk0006.dta Win64/Olmasco.Y trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\09.11.2012_22.50.35\mbr0000\tdlfs0000\tsk0007.dta Win32/Olmasco.O trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\09.11.2012_22.50.35\mbr0000\tdlfs0000\tsk0008.dta Win64/Olmasco.X trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\09.11.2012_22.50.35\mbr0000\tdlfs0000\tsk0009.dta probably a variant of Win32/Olmasco.O trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\09.11.2012_22.50.35\mbr0000\tdlfs0000\tsk0010.dta Win64/Olmasco.AA trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\09.11.2012_22.50.35\mbr0000\tdlfs0000\tsk0011.dta Win32/Olmasco.Q trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\09.11.2012_22.50.35\mbr0000\tdlfs0000\tsk0012.dta Win64/Olmasco.X trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\09.11.2012_22.50.35\mbr0000\tdlfs0000\tsk0014.dta Win32/Olmasco.AA trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\09.11.2012_22.50.35\mbr0000\tdlfs0000\tsk0015.dta Win64/Olmasco.Z trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\09.11.2012_22.50.35\mbr0000\tdlfs0000\tsk0020.dta Win32/Olmasco.AD trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\09.11.2012_22.50.35\mbr0000\tdlfs0000\tsk0021.dta a variant of Win32/Olmarik.AYN trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\09.11.2012_22.50.35\mbr0000\tdlfs0000\tsk0022.dta a variant of Win64/Olmasco.AB trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\09.11.2012_22.50.35\mbr0000\tdlfs0000\tsk0023.dta Win64/Olmasco.AB trojan cleaned by deleting - quarantined
C:\Users\Hunter\Downloads\vlcmediaplayer-setup.exe Win32/DownloadAdmin.A.Gen application cleaned by deleting - quarantined

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:11 AM

Posted 10 November 2012 - 02:06 AM

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

For vista and windows 7 right click on the tool and select run as administrator

After scan gets completed,post the generated log here.

#13 nscroggs

nscroggs
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:08:11 AM

Posted 10 November 2012 - 10:07 AM

Malwarebytes Log...


Malwarebytes Anti-Malware (Trial) 1.65.1.1000
www.malwarebytes.org

Database version: v2012.11.10.03

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Hunter :: HUNTER-LAPTOP [administrator]

Protection: Disabled

11/10/2012 2:16:05 AM
mbam-log-2012-11-10 (10-00-03).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 467117
Time elapsed: 1 hour(s), 28 minute(s), 39 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 2
C:\Users\Hunter\AppData\Local\Temp\73AE053A-F9DA-4FCC-A285-96F1878E8144.exe (Heuristics.Shuriken) -> No action taken.
C:\Users\Hunter\Desktop\Virus & Malware Protection\tdssfix.exe (Heuristics.Shuriken) -> No action taken.

(end)

#14 nscroggs

nscroggs
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:08:11 AM

Posted 10 November 2012 - 10:15 AM

MiniToolBox by Farbar Version: 10-11-2012 01
Ran by Hunter (administrator) on 10-11-2012 at 10:08:50
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

127.0.0.1 localhost

========================= IP Configuration: ================================

DW1501 Wireless-N WLAN Half-Mini Card = Wireless Network Connection (Connected)
Realtek PCIe FE Family Controller = Local Area Connection (Hardware not present)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Hunter-Laptop
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : dc.dc.cox.net

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : C0-CB-38-35-1C-21
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : dc.dc.cox.net
Description . . . . . . . . . . . : DW1501 Wireless-N WLAN Half-Mini Card
Physical Address. . . . . . . . . : C0-CB-38-35-1C-21
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::6d66:76c8:12cb:1f7%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.100(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Saturday, November 10, 2012 10:02:09 AM
Lease Expires . . . . . . . . . . : Sunday, November 11, 2012 10:02:10 AM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 230738744
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-30-3C-02-F0-4D-A2-AF-09-06
DNS Servers . . . . . . . . . . . : 192.168.1.1
208.67.222.222
208.67.220.220
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.dc.dc.cox.net:

Connection-specific DNS Suffix . : dc.dc.cox.net
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::5efe:192.168.1.100%23(Preferred)
Default Gateway . . . . . . . . . :
DNS Servers . . . . . . . . . . . : 192.168.1.1
208.67.222.222
208.67.220.220
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter Local Area Connection* 14:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:24a9:3ef:bb9b:c4b8(Preferred)
Link-local IPv6 Address . . . . . : fe80::24a9:3ef:bb9b:c4b8%21(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter 6TO4 Adapter:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
1.1.168.192.in-addr.arpa
primary name server = localhost
responsible mail addr = nobody.invalid
serial = 1
refresh = 600 (10 mins)
retry = 1200 (20 mins)
expire = 604800 (7 days)
default TTL = 10800 (3 hours)
Server: UnKnown
Address: 192.168.1.1

Name: google.com.dc.dc.cox.net
Address: 67.215.65.132


Pinging google.com [74.125.228.96] with 32 bytes of data:
Reply from 74.125.228.96: bytes=32 time=22ms TTL=56
Reply from 74.125.228.96: bytes=32 time=14ms TTL=56

Ping statistics for 74.125.228.96:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 14ms, Maximum = 22ms, Average = 18ms
1.1.168.192.in-addr.arpa
primary name server = localhost
responsible mail addr = nobody.invalid
serial = 1
refresh = 600 (10 mins)
retry = 1200 (20 mins)
expire = 604800 (7 days)
default TTL = 10800 (3 hours)
Server: UnKnown
Address: 192.168.1.1

Name: yahoo.com.dc.dc.cox.net
Address: 67.215.65.132


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=86ms TTL=53
Reply from 98.138.253.109: bytes=32 time=65ms TTL=53

Ping statistics for 98.138.253.109:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 65ms, Maximum = 86ms, Average = 75ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=5ms TTL=128
Reply from 127.0.0.1: bytes=32 time=3ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 3ms, Maximum = 5ms, Average = 4ms
===========================================================================
Interface List
17...c0 cb 38 35 1c 21 ......Microsoft Virtual WiFi Miniport Adapter
11...c0 cb 38 35 1c 21 ......DW1501 Wireless-N WLAN Half-Mini Card
1...........................Software Loopback Interface 1
23...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
21...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
22...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #2
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.100 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.100 281
192.168.1.100 255.255.255.255 On-link 192.168.1.100 281
192.168.1.255 255.255.255.255 On-link 192.168.1.100 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.100 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.100 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
21 58 ::/0 On-link
1 306 ::1/128 On-link
21 58 2001::/32 On-link
21 306 2001:0:4137:9e76:24a9:3ef:bb9b:c4b8/128
On-link
11 281 fe80::/64 On-link
21 306 fe80::/64 On-link
23 286 fe80::5efe:192.168.1.100/128
On-link
21 306 fe80::24a9:3ef:bb9b:c4b8/128
On-link
11 281 fe80::6d66:76c8:12cb:1f7/128
On-link
1 306 ff00::/8 On-link
21 306 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 10 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 10 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (11/10/2012 04:27:49 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (11/09/2012 11:30:00 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (11/09/2012 11:29:56 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (11/09/2012 11:29:56 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (11/09/2012 11:29:56 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (11/09/2012 11:29:50 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (11/09/2012 11:29:33 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (11/09/2012 06:41:25 PM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005

Error: (11/08/2012 11:50:56 PM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005

Error: (11/08/2012 04:25:04 AM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005


System errors:
=============
Error: (11/10/2012 02:46:00 AM) (Source: Disk) (User: )
Description: The device, \Device\Harddisk0\DR0, has a bad block.

Error: (11/10/2012 02:45:56 AM) (Source: Disk) (User: )
Description: The device, \Device\Harddisk0\DR0, has a bad block.

Error: (11/10/2012 02:45:52 AM) (Source: Disk) (User: )
Description: The device, \Device\Harddisk0\DR0, has a bad block.

Error: (11/10/2012 02:45:48 AM) (Source: Disk) (User: )
Description: The device, \Device\Harddisk0\DR0, has a bad block.

Error: (11/10/2012 02:45:44 AM) (Source: Disk) (User: )
Description: The device, \Device\Harddisk0\DR0, has a bad block.

Error: (11/10/2012 02:45:39 AM) (Source: Disk) (User: )
Description: The device, \Device\Harddisk0\DR0, has a bad block.

Error: (11/10/2012 00:29:50 AM) (Source: Disk) (User: )
Description: The device, \Device\Harddisk0\DR0, has a bad block.

Error: (11/10/2012 00:29:46 AM) (Source: Disk) (User: )
Description: The device, \Device\Harddisk0\DR0, has a bad block.

Error: (11/10/2012 00:29:42 AM) (Source: Disk) (User: )
Description: The device, \Device\Harddisk0\DR0, has a bad block.

Error: (11/10/2012 00:29:38 AM) (Source: Disk) (User: )
Description: The device, \Device\Harddisk0\DR0, has a bad block.


Microsoft Office Sessions:
=========================
Error: (08/14/2011 02:23:53 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 41758 seconds with 1800 seconds of active time. This session ended with a crash.


CodeIntegrity Errors:
===================================
Date: 2012-11-10 02:33:37
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\System Volume Information\SystemRestore\FRStaging\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-11-10 02:33:37
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\System Volume Information\SystemRestore\FRStaging\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-11-10 02:33:37
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\System Volume Information\SystemRestore\FRStaging\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-11-06 00:41:28
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\System Volume Information\SystemRestore\FRStaging\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-11-06 00:41:28
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\System Volume Information\SystemRestore\FRStaging\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-11-06 00:41:28
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\System Volume Information\SystemRestore\FRStaging\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-11-06 00:05:02
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-11-06 00:05:02
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-11-06 00:05:02
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-11-05 22:55:10
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
64 Bit HP CIO Components Installer (Version: 7.2.4)
Adobe AIR (Version: 2.6.0.19140)
Adobe Community Help (Version: 3.0.0)
Adobe Community Help (Version: 3.0.0.400)
Adobe Flash Player 11 ActiveX (Version: 11.4.402.287)
Adobe Flash Player 11 Plugin (Version: 11.4.402.287)
Adobe Illustrator CS5 (Version: 15.0)
Adobe Media Player (Version: 1.8)
Adobe Photoshop CS5 (Version: 12.0)
Adobe Reader X (10.1.4) (Version: 10.1.4)
Advanced Audio FX Engine (Version: 1.12.05)
AnswerWorks 5.0 English Runtime (Version: 5.0.7)
Apple Application Support (Version: 2.2.2)
Apple Mobile Device Support (Version: 6.0.0.59)
Apple Software Update (Version: 2.1.3.127)
AVG 2013 (Version: 2013.0.2793)
Bonjour (Version: 3.0.0.10)
calibre (Version: 0.8.37)
Cisco EAP-FAST Module (Version: 2.2.14)
Cisco LEAP Module (Version: 1.0.19)
Cisco PEAP Module (Version: 1.1.6)
D3DX10 (Version: 15.4.2368.0902)
Dell Edoc Viewer (Version: 1.0.0)
Dell Home Systems Service Agreement (Version: 2.0.0)
Dell Webcam Central (Version: 1.40.05)
DirectX 9 Runtime (Version: 1.00.0000)
Dropbox (Version: 1.4.7)
DW WLAN Card Utility (Version: 5.60.48.18)
Face Filter (Version: 1.0.007)
Garmin BaseCamp (Version: 3.3.3)
Garmin USB Drivers (Version: 2.3.1.0)
Google Earth (Version: 6.1.0.5001)
Google Update Helper (Version: 1.3.21.123)
HP Photosmart Prem C410 All-In-One Driver 14.0 Rel. 7 (Version: 14.0)
iCloud (Version: 2.0.2.187)
Intel® Graphics Media Accelerator Driver (Version: 8.15.10.2202)
iPhone Backup Extractor (Version: 4.0.2.0)
iTunes (Version: 10.7.0.21)
Java 7 Update 6 (64-bit) (Version: 7.0.60)
Java 7 Update 9 (Version: 7.0.90)
Java Auto Updater (Version: 2.1.9.0)
Java™ 6 Update 23 (64-bit) (Version: 6.0.230)
Java™ 6 Update 23 (Version: 6.0.230)
Logitech Harmony Remote Software (Version: 1.0.110307)
Logitech Harmony Remote Software 7 (Version: 7.6.0.8)
Logitech Harmony Remote Software 7 (Version: 7.7.0.0)
Malwarebytes Anti-Malware version 1.65.1.1000 (Version: 1.65.1.1000)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Access database engine 2010 (English) (Version: 14.0.6029.1000)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Standard 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Streets & Trips 2011 (Version: 18.0.26.0201)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)
MobileMe Control Panel (Version: 3.1.8.0)
MotoHelper 2.1.40 Driver 5.5.0 (Version: 2.1.40)
MotoHelper MergeModules (Version: 1.2.0)
Motorola Mobile Drivers Installation 5.5.0 (Version: 5.5.0)
MSVCRT (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Network64 (Version: 140.0.215.000)
OpenDNS Updater 2.2.1 (Version: 2.2.1)
PASW Statistics 18 (Version: 18.0.0)
PDF Settings CS5 (Version: 10.0)
PowerISO (Version: 4.6)
PS_AIO_07_C410_SW_Min (Version: 140.0.273.000)
Quicken 2010 (Version: 19.1.1.27)
QuickTime (Version: 7.72.80.56)
RBVirtualFolder64Inst (Version: 1.00.0000)
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
RealPlayer (Version: 15.0.6)
RealUpgrade 1.1 (Version: 1.1.0)
Remote Control USB Driver (Version: 2.3.2.317)
Roxio BackOnTrack (Version: 4.1)
Roxio BackOnTrackPE (Version: 4.0)
Roxio Burn - Secure (Version: 1.6)
Roxio CinePlayer (Version: 5.8)
Roxio CinePlayer Decoder Pack (Version: 4.3.0)
Roxio Creator 2012 Pro (Version: 1.3.675)
Roxio Creator 2012 Pro (Version: 13.5)
Roxio Creator 2012 Pro (Version: 6.5.0)
Roxio System Rollback (Version: 3.9.0)
Roxio System Rollback Recovery Disk (Version: 3.9.0)
Roxio Video Capture USB (Version: 1.22.0000)
Scan (Version: 140.0.80.000)
Shared C Run-time for x64 (Version: 10.0.0)
SimCity 4 Deluxe
SmartSound Common Data (Version: 1.1.0)
SmartSound Quicktracks 5 (Version: 5.1.7)
Toolbox (Version: 140.0.428.000)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Outlook 2007 (KB2596598) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2687407) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
VD64Inst (Version: 1.00.0000)
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1)
VLC media player 2.0.1 (Version: 2.0.1)
Vuze (Version: 4.7)
Vuze Remote Toolbar (Version: 6.8.2.0)
WIDCOMM Bluetooth Software (Version: 6.2.1.1100)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices (04/19/2012 2.3.1.0) (Version: 04/19/2012 2.3.1.0)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
WinRAR 4.00 (64-bit) (Version: 4.00.0)

========================= Memory info: ===================================

Percentage of memory in use: 42%
Total physical RAM: 3894.7 MB
Available physical RAM: 2241.16 MB
Total Pagefile: 7787.59 MB
Available Pagefile: 6041.6 MB
Total Virtual: 4095.88 MB
Available Virtual: 3963.16 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:454.2 GB) (Free:203.52 GB) NTFS
2 Drive d: (Nov 04 2012) (CDROM) (Total:4.38 GB) (Free:4.37 GB) UDF

========================= Users: ========================================

User accounts for \\HUNTER-LAPTOP

Administrator Guest Hunter

========================= Restore Points ==================================

06-11-2012 13:08:58 Installed Java 7 Update 9
06-11-2012 13:24:31 Windows Update
10-11-2012 00:36:33 Installed AVG 2013
10-11-2012 00:36:58 Installed AVG 2013
10-11-2012 07:06:18 Removed AVG 2013
10-11-2012 07:08:23 Removed AVG 2013

**** End of log ****

#15 nscroggs

nscroggs
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:08:11 AM

Posted 10 November 2012 - 10:28 AM

Farbar Service Scanner Version: 09-11-2012
Ran by Hunter (administrator) on 10-11-2012 at 10:15:58
Running from "C:\Users\Hunter\Desktop\Virus & Malware Protection"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users