Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Avg/Malware Bytes Virus


  • Please log in to reply
9 replies to this topic

#1 Osiris1825

Osiris1825

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:06:09 PM

Posted 20 November 2012 - 12:39 AM

I think I may have a virus, I had Norton Security Suite from Comcast and for the past 2 days it keeps trying to start and gets an error every time. I tried running Malware Bytes and it will start the scan and time will start to elapse but the number in "objects scanned" remains at 0 and it does not move. I tried running Chameleon Malware Bytes and it updates and says that it removed any malicious files but when it goes to start Malware Bytes after that the program freezes and then closes. I downloaded AVG since Norton couldn't boot up and I can't get AVG to update and the scan says that it scans but "scanned objects" remains at 0 for that as well. I was going to uninstall Norton and try reinstalling it but also I cannot open my Add/Remove Programs from the control panel, when I click on it nothing actually comes up and I couldn't find the uninstall file in the Norton folder or the Norton Security Suite folder. Also I don't know if this is related but for the past 3 months or so occasionally my keyboard will type a number instead of a letter when I begin typing. Any help would be much appreciated, thanks in advance!

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,220 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:09 PM

Posted 20 November 2012 - 11:20 AM

Hello, please reboot to Safe Mode with Nerworking and run these. How to start Windows in Safe Mode


MiniToolBox
Please download MiniToolBox, save it to your desktop and run it.Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices
  • List Users, Partitions and Memory size.
  • List Minidump Files

Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run. Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Please Download

TDSSkiller


Launch it. Click on change parameters-Select TDLFS file system

Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results.




Please download aswMBR ( 4.5MB ) to your desktop.
  • Double click the aswMBR.exe icon, and click Run.
  • When asked if you'd like to "download the latest Avast! virus definitions", click Yes.
  • Click the Scan button to start the scan.
  • On completion of the scan, click the save log button, save it to your desktop, then copy and paste it in your next reply.




I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image
      icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 Osiris1825

Osiris1825
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:06:09 PM

Posted 21 November 2012 - 09:34 PM

MiniToolBox by Farbar Version: 10-11-2012 02
Ran by Riley (administrator) on 21-11-2012 at 20:17:35
Windows 7 Ultimate Service Pack 1 (X64)
Boot Mode: Network
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================


127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com

There are 15255 more lines starting with "127.0.0.1"

========================= IP Configuration: ================================

Realtek RTL8169/8110 Family PCI Gigabit Ethernet NIC (NDIS 6.20) = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global defaultcurhoplimit=64 icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Riley-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek RTL8169/8110 Family PCI Gigabit Ethernet NIC (NDIS 6.20)
Physical Address. . . . . . . . . : 54-04-A6-04-DF-42
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::8441:aa82:9065:4da5%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.8(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Wednesday, November 21, 2012 8:15:48 PM
Lease Expires . . . . . . . . . . : Thursday, November 22, 2012 8:15:48 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 240387238
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-98-2E-0D-54-04-A6-04-DF-42
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{AA71DCA7-E6BF-4F8E-813B-D26776C48A93}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: UnKnown
Address: 192.168.1.1

Name: google.com
Addresses: 2607:f8b0:4002:c02::65
74.125.137.113
74.125.137.138
74.125.137.100
74.125.137.101
74.125.137.102
74.125.137.139


Pinging google.com [74.125.140.101] with 32 bytes of data:
Reply from 74.125.140.101: bytes=32 time=30ms TTL=45
Reply from 74.125.140.101: bytes=32 time=31ms TTL=45

Ping statistics for 74.125.140.101:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 30ms, Maximum = 31ms, Average = 30ms
Server: UnKnown
Address: 192.168.1.1

Name: yahoo.com
Addresses: 98.138.253.109
72.30.38.140
98.139.183.24


Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=93ms TTL=47
Reply from 72.30.38.140: bytes=32 time=94ms TTL=47

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 93ms, Maximum = 94ms, Average = 93ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=64
Reply from 127.0.0.1: bytes=32 time<1ms TTL=64

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
11...54 04 a6 04 df 42 ......Realtek RTL8169/8110 Family PCI Gigabit Ethernet NIC (NDIS 6.20)
1...........................Software Loopback Interface 1
14...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.8 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.8 276
192.168.1.8 255.255.255.255 On-link 192.168.1.8 276
192.168.1.255 255.255.255.255 On-link 192.168.1.8 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.8 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.8 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
11 276 fe80::/64 On-link
11 276 fe80::8441:aa82:9065:4da5/128
On-link
1 306 ff00::/8 On-link
11 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (11/21/2012 08:17:28 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/21/2012 08:10:55 PM) (Source: Application Error) (User: )
Description: Faulting application name: KwikMedia.exe, version: 1.18.86.100, time stamp: 0x50251728
Faulting module name: KERNELBASE.dll, version: 6.1.7601.17932, time stamp: 0x50327672
Exception code: 0xe0434352
Fault offset: 0x0000c41f
Faulting process id: 0x1278
Faulting application start time: 0xKwikMedia.exe0
Faulting application path: KwikMedia.exe1
Faulting module path: KwikMedia.exe2
Report Id: KwikMedia.exe3

Error: (11/21/2012 08:10:54 PM) (Source: .NET Runtime) (User: )
Description: Application: KwikMedia.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.ArgumentNullException
Stack:
at MediaHub.EntryPoint.Main(System.String[])
at System.AppDomain._nExecuteAssembly(System.Reflection.RuntimeAssembly, System.String[])
at System.AppDomain.ExecuteAssembly(System.String, System.String[])
at <Module>.RunAssemblyWithCommandLine(Char*, Char*, Char*)

Error: (11/21/2012 08:10:24 PM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: Failed to end a Windows Installer transaction . Error 5 occurred while ending the transaction.

Error: (11/21/2012 08:08:44 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/21/2012 08:08:28 PM) (Source: LightScribeService) (User: )
Description: The LightScribe service was unable to create the system resource it needed

Error: (11/21/2012 08:06:20 PM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: Failed to end a Windows Installer transaction . Error 5 occurred while ending the transaction.

Error: (11/21/2012 08:06:06 PM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: Failed to end a Windows Installer transaction . Error 5 occurred while ending the transaction.

Error: (11/21/2012 02:55:03 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "*" of attribute "language" in element "assemblyIdentity" is invalid.

Error: (11/21/2012 02:54:59 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "ACME,processorArchitecture="x86",type="win32",version="12.0.0.0"1".
Dependent Assembly ACME,processorArchitecture="x86",type="win32",version="12.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.


System errors:
=============
Error: (11/21/2012 08:18:06 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (11/21/2012 08:18:06 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (11/21/2012 08:18:06 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (11/21/2012 08:16:06 PM) (Source: DCOM) (User: )
Description: 1084NVSvc{DCAB0989-1301-4319-BE5F-ADE89F88581C}

Error: (11/21/2012 08:15:59 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (11/21/2012 08:15:59 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (11/21/2012 08:15:59 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (11/21/2012 08:15:59 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (11/21/2012 08:15:59 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (11/21/2012 08:15:59 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068


Microsoft Office Sessions:
=========================
Error: (11/21/2012 08:17:28 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/21/2012 08:10:55 PM) (Source: Application Error)(User: )
Description: KwikMedia.exe1.18.86.10050251728KERNELBASE.dll6.1.7601.1793250327672e04343520000c41f127801cdc84e376fe1d7C:\Program Files (x86)\Nero\KM\KwikMedia.exeC:\Windows\syswow64\KERNELBASE.dll76b4dc82-3441-11e2-b148-5404a604df42

Error: (11/21/2012 08:10:54 PM) (Source: .NET Runtime)(User: )
Description: Application: KwikMedia.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.ArgumentNullException
Stack:
at MediaHub.EntryPoint.Main(System.String[])
at System.AppDomain._nExecuteAssembly(System.Reflection.RuntimeAssembly, System.String[])
at System.AppDomain.ExecuteAssembly(System.String, System.String[])
at <Module>.RunAssemblyWithCommandLine(Char*, Char*, Char*)

Error: (11/21/2012 08:10:24 PM) (Source: MsiInstaller)(User: NT AUTHORITY)
Description: 5(NULL)(NULL)(NULL)(NULL)

Error: (11/21/2012 08:08:44 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/21/2012 08:08:28 PM) (Source: LightScribeService)(User: )
Description:

Error: (11/21/2012 08:06:20 PM) (Source: MsiInstaller)(User: NT AUTHORITY)
Description: 5(NULL)(NULL)(NULL)(NULL)

Error: (11/21/2012 08:06:06 PM) (Source: MsiInstaller)(User: NT AUTHORITY)
Description: 5(NULL)(NULL)(NULL)(NULL)

Error: (11/21/2012 02:55:03 AM) (Source: SideBySide)(User: )
Description: assemblyIdentitylanguage*d:\spybot - search & destroy\DelZip179.dlld:\spybot - search & destroy\DelZip179.dll8

Error: (11/21/2012 02:54:59 AM) (Source: SideBySide)(User: )
Description: ACME,processorArchitecture="x86",type="win32",version="12.0.0.0"c:\program files (x86)\Nero\Nero 12\nero recode\NeroBRServer.exe.Manifest


CodeIntegrity Errors:
===================================
Date: 2012-11-21 00:15:45.353
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-11-21 00:15:45.337
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-11-18 03:03:57.346
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\RimSerial_AMD64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-11-18 03:03:57.300
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\1394ohci.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-11-18 03:03:57.268
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\1394ohci.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-11-18 03:03:57.237
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\nvlddmkm.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-11-18 03:03:57.066
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\nvlddmkm.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-11-18 03:03:56.894
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.0.145\Definitions\BASHDefs\20120811.003\BHDrvx64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-11-18 03:03:56.863
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.0.145\Definitions\BASHDefs\20120811.003\BHDrvx64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-11-18 03:03:56.816
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\blbdrive.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


=========================== Installed Programs ============================

Adobe AIR (Version: 3.1.0.4880)
Adobe Flash Player 11 ActiveX (Version: 11.4.402.287)
Adobe Flash Player 11 Plugin (Version: 11.4.402.287)
Adobe Photoshop CS6 (Version: 13.0)
Adobe Reader X (10.1.4) (Version: 10.1.4)
AIM 7
AVG 2013 (Version: 13.0.2629)
Batman: Arkham City™ (Version: 1.0.0001.131)
Batman: Arkham City™ (Version: 1.0.0003.131)
BitTorrent (Version: 7.6.1)
BlackBerry Desktop Software 7.1 (Version: 7.1.0.32)
CCleaner (Version: 3.24)
COMODO System Utilities (Version: 4.0.226743.26)
Cool & Quiet
DeskPins (remove only)
DivX Setup (Version: 2.6.1.5)
DraftDominator Version 13.0e
Dual-Core Optimizer (Version: 1.1.4.0169)
Fraps (remove only)
Google Chrome (Version: 23.0.1271.64)
Java 7 Update 9 (Version: 7.0.90)
Java Auto Updater (Version: 2.1.9.0)
Java™ 6 Update 31 (Version: 6.0.310)
JavaFX 2.1.1 (Version: 2.1.1)
League of Legends (Version: 1.3)
LightScribe System Software (Version: 1.18.22.2)
Logitech G930 (Version: 1.0.364)
Logitech Gaming Software (Version: 8.20.74)
Logitech Gaming Software 8.30 (Version: 8.30.86)
LOLReplay (Version: 0.8.0.1)
Malwarebytes Anti-Malware version 1.65.1.1000 (Version: 1.65.1.1000)
Managed DirectX (0901) (Version: 4.09.00.0901)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Games for Windows - LIVE Redistributable (Version: 3.5.92.0)
Microsoft Games for Windows Marketplace (Version: 3.5.50.0)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
mIRC (Version: 7.19)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Mumble 1.2.3 (Version: 1.2.3)
myfantasyleague.com Game Day 2012 (Version: 1.0)
Nero 12 (Version: 12.0.02000)
Nero Audio Pack 1 (Version: 11.0.11500.110.0)
Nero BackItUp (Version: 12.0.2001)
Nero BackItUp Help (CHM) (Version: 12.0.3000)
Nero Blu-ray Player (Version: 12.0.14300)
Nero Blu-ray Player Help (CHM) (Version: 12.0.4000)
Nero Burning ROM (Version: 12.0.20000)
Nero Burning ROM Help (CHM) (Version: 12.0.3000)
Nero ControlCenter (Version: 11.0.15200)
Nero ControlCenter Help (CHM) (Version: 12.0.5000)
Nero Core Components (Version: 11.0.18100)
Nero Disc Menus Basic (Version: 12.0.11500)
Nero Effects Basic (Version: 12.0.11500)
Nero Express (Version: 12.0.20000)
Nero Express Help (CHM) (Version: 12.0.5000)
Nero Kwik Media (Version: 1.18.18200)
Nero Kwik Media Help (CHM) (Version: 12.0.4000)
Nero Kwik Themes Basic (Version: 12.0.11500)
Nero PiP Effects Basic (Version: 12.0.11500)
Nero Recode (Version: 12.0.24000)
Nero Recode Help (CHM) (Version: 12.0.4000)
Nero RescueAgent (Version: 12.0.9000)
Nero RescueAgent Help (CHM) (Version: 12.0.3000)
Nero SharedVideoCodecs (Version: 1.0.12100.2.0)
Nero Update (Version: 11.0.11800.31.0)
Nero Video (Version: 12.0.3000)
Nero Video Help (CHM) (Version: 12.0.4000)
neroxml (Version: 1.0.0)
Norton Security Suite (Version: 6.2.1.5)
NVIDIA 3D Vision Controller Driver 301.42 (Version: 301.42)
NVIDIA 3D Vision Driver 306.97 (Version: 306.97)
NVIDIA 3D Vision Video Player (Version: 1.7.2)
NVIDIA Control Panel 306.97 (Version: 306.97)
NVIDIA Graphics Driver 306.97 (Version: 306.97)
NVIDIA HD Audio Driver 1.3.16.0 (Version: 1.3.16.0)
NVIDIA Install Application (Version: 2.1002.85.551)
NVIDIA PhysX (Version: 9.12.0213)
NVIDIA PhysX System Software 9.12.0213 (Version: 9.12.0213)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.0697)
NVIDIA Update 1.10.8 (Version: 1.10.8)
NVIDIA Update Components (Version: 1.10.8)
PDF Settings CS6 (Version: 11.0)
Prerequisite installer (Version: 12.0.0002)
Skype Click to Call (Version: 6.3.11079)
Skype™ 5.10 (Version: 5.10.116)
Spybot - Search & Destroy (Version: 1.6.2)
Steam (Version: 1.0.0.0)
Stronghold Kingdoms
Stronghold Kingdoms (Version: Stronghold Kingdoms (Installer v1.17))
Stronghold Kingdoms Steward version 1.2.3 Beta (Version: 1.2.3 Beta)
TortoiseSVN 1.7.6.22632 (64 bit) (Version: 1.7.22632)
Ultima Online Classic Client (Version: )
Ultima Online Stygian Abyss Classic (Version: )
Unity Web Player (Version: )
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
Vegas Movie Studio Platinum 9.0 (Version: 9.0.92)
Ventrilo Client for Windows x64 (Version: 3.0.8.0)
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1)
VLC media player 2.0.1 (Version: 2.0.1)
Welcome App (Start-up experience) (Version: 12.0.14000)
Windows Live ID Sign-in Assistant (Version: 6.500.3165.0)
Wise Registry Cleaner 7.42
World of Warcraft (Version: 5.0.5.16057)
World of Warcraft Beta (Version: 5.0.4.15929)
YTD Video Downloader 3.9.2

========================= Devices: ================================

Name: Marvell 91xx Config ATA Device
Description: Marvell 91xx Config ATA Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Security Processor Loader Driver
Description: Security Processor Loader Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: spldr
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Universal Serial Bus (USB) Controller
Description: Universal Serial Bus (USB) Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


========================= Memory info: ===================================

Percentage of memory in use: 6%
Total physical RAM: 16375.11 MB
Available physical RAM: 15271.34 MB
Total Pagefile: 32748.42 MB
Available Pagefile: 31653.85 MB
Total Virtual: 4095.88 MB
Available Virtual: 3973.46 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:111.79 GB) (Free:15.55 GB) NTFS
2 Drive d: () (Fixed) (Total:931.51 GB) (Free:665.16 GB) NTFS
3 Drive e: () (Fixed) (Total:139.73 GB) (Free:100.93 GB) NTFS

========================= Users: ========================================

User accounts for \\RILEY-PC

Administrator Guest Riley
UpdatusUser

========================= Minidump Files ==================================

No minidump file found


**** End of log ****











MiniToolBox by Farbar Version: 10-11-2012 02
Ran by Riley (administrator) on 21-11-2012 at 20:17:35
Windows 7 Ultimate Service Pack 1 (X64)
Boot Mode: Network
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================


127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com

There are 15255 more lines starting with "127.0.0.1"

========================= IP Configuration: ================================

Realtek RTL8169/8110 Family PCI Gigabit Ethernet NIC (NDIS 6.20) = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global defaultcurhoplimit=64 icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Riley-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek RTL8169/8110 Family PCI Gigabit Ethernet NIC (NDIS 6.20)
Physical Address. . . . . . . . . : 54-04-A6-04-DF-42
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::8441:aa82:9065:4da5%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.8(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Wednesday, November 21, 2012 8:15:48 PM
Lease Expires . . . . . . . . . . : Thursday, November 22, 2012 8:15:48 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 240387238
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-98-2E-0D-54-04-A6-04-DF-42
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{AA71DCA7-E6BF-4F8E-813B-D26776C48A93}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: UnKnown
Address: 192.168.1.1

Name: google.com
Addresses: 2607:f8b0:4002:c02::65
74.125.137.113
74.125.137.138
74.125.137.100
74.125.137.101
74.125.137.102
74.125.137.139


Pinging google.com [74.125.140.101] with 32 bytes of data:
Reply from 74.125.140.101: bytes=32 time=30ms TTL=45
Reply from 74.125.140.101: bytes=32 time=31ms TTL=45

Ping statistics for 74.125.140.101:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 30ms, Maximum = 31ms, Average = 30ms
Server: UnKnown
Address: 192.168.1.1

Name: yahoo.com
Addresses: 98.138.253.109
72.30.38.140
98.139.183.24


Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=93ms TTL=47
Reply from 72.30.38.140: bytes=32 time=94ms TTL=47

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 93ms, Maximum = 94ms, Average = 93ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=64
Reply from 127.0.0.1: bytes=32 time<1ms TTL=64

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
11...54 04 a6 04 df 42 ......Realtek RTL8169/8110 Family PCI Gigabit Ethernet NIC (NDIS 6.20)
1...........................Software Loopback Interface 1
14...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.8 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.8 276
192.168.1.8 255.255.255.255 On-link 192.168.1.8 276
192.168.1.255 255.255.255.255 On-link 192.168.1.8 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.8 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.8 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
11 276 fe80::/64 On-link
11 276 fe80::8441:aa82:9065:4da5/128
On-link
1 306 ff00::/8 On-link
11 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (11/21/2012 08:17:28 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/21/2012 08:10:55 PM) (Source: Application Error) (User: )
Description: Faulting application name: KwikMedia.exe, version: 1.18.86.100, time stamp: 0x50251728
Faulting module name: KERNELBASE.dll, version: 6.1.7601.17932, time stamp: 0x50327672
Exception code: 0xe0434352
Fault offset: 0x0000c41f
Faulting process id: 0x1278
Faulting application start time: 0xKwikMedia.exe0
Faulting application path: KwikMedia.exe1
Faulting module path: KwikMedia.exe2
Report Id: KwikMedia.exe3

Error: (11/21/2012 08:10:54 PM) (Source: .NET Runtime) (User: )
Description: Application: KwikMedia.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.ArgumentNullException
Stack:
at MediaHub.EntryPoint.Main(System.String[])
at System.AppDomain._nExecuteAssembly(System.Reflection.RuntimeAssembly, System.String[])
at System.AppDomain.ExecuteAssembly(System.String, System.String[])
at <Module>.RunAssemblyWithCommandLine(Char*, Char*, Char*)

Error: (11/21/2012 08:10:24 PM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: Failed to end a Windows Installer transaction . Error 5 occurred while ending the transaction.

Error: (11/21/2012 08:08:44 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/21/2012 08:08:28 PM) (Source: LightScribeService) (User: )
Description: The LightScribe service was unable to create the system resource it needed

Error: (11/21/2012 08:06:20 PM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: Failed to end a Windows Installer transaction . Error 5 occurred while ending the transaction.

Error: (11/21/2012 08:06:06 PM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: Failed to end a Windows Installer transaction . Error 5 occurred while ending the transaction.

Error: (11/21/2012 02:55:03 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "*" of attribute "language" in element "assemblyIdentity" is invalid.

Error: (11/21/2012 02:54:59 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "ACME,processorArchitecture="x86",type="win32",version="12.0.0.0"1".
Dependent Assembly ACME,processorArchitecture="x86",type="win32",version="12.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.


System errors:
=============
Error: (11/21/2012 08:18:06 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (11/21/2012 08:18:06 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (11/21/2012 08:18:06 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (11/21/2012 08:16:06 PM) (Source: DCOM) (User: )
Description: 1084NVSvc{DCAB0989-1301-4319-BE5F-ADE89F88581C}

Error: (11/21/2012 08:15:59 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (11/21/2012 08:15:59 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (11/21/2012 08:15:59 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (11/21/2012 08:15:59 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (11/21/2012 08:15:59 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (11/21/2012 08:15:59 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068


Microsoft Office Sessions:
=========================
Error: (11/21/2012 08:17:28 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/21/2012 08:10:55 PM) (Source: Application Error)(User: )
Description: KwikMedia.exe1.18.86.10050251728KERNELBASE.dll6.1.7601.1793250327672e04343520000c41f127801cdc84e376fe1d7C:\Program Files (x86)\Nero\KM\KwikMedia.exeC:\Windows\syswow64\KERNELBASE.dll76b4dc82-3441-11e2-b148-5404a604df42

Error: (11/21/2012 08:10:54 PM) (Source: .NET Runtime)(User: )
Description: Application: KwikMedia.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.ArgumentNullException
Stack:
at MediaHub.EntryPoint.Main(System.String[])
at System.AppDomain._nExecuteAssembly(System.Reflection.RuntimeAssembly, System.String[])
at System.AppDomain.ExecuteAssembly(System.String, System.String[])
at <Module>.RunAssemblyWithCommandLine(Char*, Char*, Char*)

Error: (11/21/2012 08:10:24 PM) (Source: MsiInstaller)(User: NT AUTHORITY)
Description: 5(NULL)(NULL)(NULL)(NULL)

Error: (11/21/2012 08:08:44 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/21/2012 08:08:28 PM) (Source: LightScribeService)(User: )
Description:

Error: (11/21/2012 08:06:20 PM) (Source: MsiInstaller)(User: NT AUTHORITY)
Description: 5(NULL)(NULL)(NULL)(NULL)

Error: (11/21/2012 08:06:06 PM) (Source: MsiInstaller)(User: NT AUTHORITY)
Description: 5(NULL)(NULL)(NULL)(NULL)

Error: (11/21/2012 02:55:03 AM) (Source: SideBySide)(User: )
Description: assemblyIdentitylanguage*d:\spybot - search & destroy\DelZip179.dlld:\spybot - search & destroy\DelZip179.dll8

Error: (11/21/2012 02:54:59 AM) (Source: SideBySide)(User: )
Description: ACME,processorArchitecture="x86",type="win32",version="12.0.0.0"c:\program files (x86)\Nero\Nero 12\nero recode\NeroBRServer.exe.Manifest


CodeIntegrity Errors:
===================================
Date: 2012-11-21 00:15:45.353
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-11-21 00:15:45.337
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-11-18 03:03:57.346
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\RimSerial_AMD64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-11-18 03:03:57.300
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\1394ohci.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-11-18 03:03:57.268
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\1394ohci.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-11-18 03:03:57.237
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\nvlddmkm.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-11-18 03:03:57.066
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\nvlddmkm.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-11-18 03:03:56.894
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.0.145\Definitions\BASHDefs\20120811.003\BHDrvx64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-11-18 03:03:56.863
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.0.145\Definitions\BASHDefs\20120811.003\BHDrvx64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-11-18 03:03:56.816
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\blbdrive.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


=========================== Installed Programs ============================

Adobe AIR (Version: 3.1.0.4880)
Adobe Flash Player 11 ActiveX (Version: 11.4.402.287)
Adobe Flash Player 11 Plugin (Version: 11.4.402.287)
Adobe Photoshop CS6 (Version: 13.0)
Adobe Reader X (10.1.4) (Version: 10.1.4)
AIM 7
AVG 2013 (Version: 13.0.2629)
Batman: Arkham City™ (Version: 1.0.0001.131)
Batman: Arkham City™ (Version: 1.0.0003.131)
BitTorrent (Version: 7.6.1)
BlackBerry Desktop Software 7.1 (Version: 7.1.0.32)
CCleaner (Version: 3.24)
COMODO System Utilities (Version: 4.0.226743.26)
Cool & Quiet
DeskPins (remove only)
DivX Setup (Version: 2.6.1.5)
DraftDominator Version 13.0e
Dual-Core Optimizer (Version: 1.1.4.0169)
Fraps (remove only)
Google Chrome (Version: 23.0.1271.64)
Java 7 Update 9 (Version: 7.0.90)
Java Auto Updater (Version: 2.1.9.0)
Java™ 6 Update 31 (Version: 6.0.310)
JavaFX 2.1.1 (Version: 2.1.1)
League of Legends (Version: 1.3)
LightScribe System Software (Version: 1.18.22.2)
Logitech G930 (Version: 1.0.364)
Logitech Gaming Software (Version: 8.20.74)
Logitech Gaming Software 8.30 (Version: 8.30.86)
LOLReplay (Version: 0.8.0.1)
Malwarebytes Anti-Malware version 1.65.1.1000 (Version: 1.65.1.1000)
Managed DirectX (0901) (Version: 4.09.00.0901)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Games for Windows - LIVE Redistributable (Version: 3.5.92.0)
Microsoft Games for Windows Marketplace (Version: 3.5.50.0)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
mIRC (Version: 7.19)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Mumble 1.2.3 (Version: 1.2.3)
myfantasyleague.com Game Day 2012 (Version: 1.0)
Nero 12 (Version: 12.0.02000)
Nero Audio Pack 1 (Version: 11.0.11500.110.0)
Nero BackItUp (Version: 12.0.2001)
Nero BackItUp Help (CHM) (Version: 12.0.3000)
Nero Blu-ray Player (Version: 12.0.14300)
Nero Blu-ray Player Help (CHM) (Version: 12.0.4000)
Nero Burning ROM (Version: 12.0.20000)
Nero Burning ROM Help (CHM) (Version: 12.0.3000)
Nero ControlCenter (Version: 11.0.15200)
Nero ControlCenter Help (CHM) (Version: 12.0.5000)
Nero Core Components (Version: 11.0.18100)
Nero Disc Menus Basic (Version: 12.0.11500)
Nero Effects Basic (Version: 12.0.11500)
Nero Express (Version: 12.0.20000)
Nero Express Help (CHM) (Version: 12.0.5000)
Nero Kwik Media (Version: 1.18.18200)
Nero Kwik Media Help (CHM) (Version: 12.0.4000)
Nero Kwik Themes Basic (Version: 12.0.11500)
Nero PiP Effects Basic (Version: 12.0.11500)
Nero Recode (Version: 12.0.24000)
Nero Recode Help (CHM) (Version: 12.0.4000)
Nero RescueAgent (Version: 12.0.9000)
Nero RescueAgent Help (CHM) (Version: 12.0.3000)
Nero SharedVideoCodecs (Version: 1.0.12100.2.0)
Nero Update (Version: 11.0.11800.31.0)
Nero Video (Version: 12.0.3000)
Nero Video Help (CHM) (Version: 12.0.4000)
neroxml (Version: 1.0.0)
Norton Security Suite (Version: 6.2.1.5)
NVIDIA 3D Vision Controller Driver 301.42 (Version: 301.42)
NVIDIA 3D Vision Driver 306.97 (Version: 306.97)
NVIDIA 3D Vision Video Player (Version: 1.7.2)
NVIDIA Control Panel 306.97 (Version: 306.97)
NVIDIA Graphics Driver 306.97 (Version: 306.97)
NVIDIA HD Audio Driver 1.3.16.0 (Version: 1.3.16.0)
NVIDIA Install Application (Version: 2.1002.85.551)
NVIDIA PhysX (Version: 9.12.0213)
NVIDIA PhysX System Software 9.12.0213 (Version: 9.12.0213)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.0697)
NVIDIA Update 1.10.8 (Version: 1.10.8)
NVIDIA Update Components (Version: 1.10.8)
PDF Settings CS6 (Version: 11.0)
Prerequisite installer (Version: 12.0.0002)
Skype Click to Call (Version: 6.3.11079)
Skype™ 5.10 (Version: 5.10.116)
Spybot - Search & Destroy (Version: 1.6.2)
Steam (Version: 1.0.0.0)
Stronghold Kingdoms
Stronghold Kingdoms (Version: Stronghold Kingdoms (Installer v1.17))
Stronghold Kingdoms Steward version 1.2.3 Beta (Version: 1.2.3 Beta)
TortoiseSVN 1.7.6.22632 (64 bit) (Version: 1.7.22632)
Ultima Online Classic Client (Version: )
Ultima Online Stygian Abyss Classic (Version: )
Unity Web Player (Version: )
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
Vegas Movie Studio Platinum 9.0 (Version: 9.0.92)
Ventrilo Client for Windows x64 (Version: 3.0.8.0)
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1)
VLC media player 2.0.1 (Version: 2.0.1)
Welcome App (Start-up experience) (Version: 12.0.14000)
Windows Live ID Sign-in Assistant (Version: 6.500.3165.0)
Wise Registry Cleaner 7.42
World of Warcraft (Version: 5.0.5.16057)
World of Warcraft Beta (Version: 5.0.4.15929)
YTD Video Downloader 3.9.2

========================= Devices: ================================

Name: Marvell 91xx Config ATA Device
Description: Marvell 91xx Config ATA Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Security Processor Loader Driver
Description: Security Processor Loader Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: spldr
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Universal Serial Bus (USB) Controller
Description: Universal Serial Bus (USB) Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


========================= Memory info: ===================================

Percentage of memory in use: 6%
Total physical RAM: 16375.11 MB
Available physical RAM: 15271.34 MB
Total Pagefile: 32748.42 MB
Available Pagefile: 31653.85 MB
Total Virtual: 4095.88 MB
Available Virtual: 3973.46 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:111.79 GB) (Free:15.55 GB) NTFS
2 Drive d: () (Fixed) (Total:931.51 GB) (Free:665.16 GB) NTFS
3 Drive e: () (Fixed) (Total:139.73 GB) (Free:100.93 GB) NTFS

========================= Users: ========================================

User accounts for \\RILEY-PC

Administrator Guest Riley
UpdatusUser

========================= Minidump Files ==================================

No minidump file found


**** End of log ****










MiniToolBox by Farbar Version: 10-11-2012 02
Ran by Riley (administrator) on 21-11-2012 at 20:17:35
Windows 7 Ultimate Service Pack 1 (X64)
Boot Mode: Network
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================


127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com

There are 15255 more lines starting with "127.0.0.1"

========================= IP Configuration: ================================

Realtek RTL8169/8110 Family PCI Gigabit Ethernet NIC (NDIS 6.20) = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global defaultcurhoplimit=64 icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Riley-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek RTL8169/8110 Family PCI Gigabit Ethernet NIC (NDIS 6.20)
Physical Address. . . . . . . . . : 54-04-A6-04-DF-42
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::8441:aa82:9065:4da5%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.8(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Wednesday, November 21, 2012 8:15:48 PM
Lease Expires . . . . . . . . . . : Thursday, November 22, 2012 8:15:48 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 240387238
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-98-2E-0D-54-04-A6-04-DF-42
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{AA71DCA7-E6BF-4F8E-813B-D26776C48A93}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: UnKnown
Address: 192.168.1.1

Name: google.com
Addresses: 2607:f8b0:4002:c02::65
74.125.137.113
74.125.137.138
74.125.137.100
74.125.137.101
74.125.137.102
74.125.137.139


Pinging google.com [74.125.140.101] with 32 bytes of data:
Reply from 74.125.140.101: bytes=32 time=30ms TTL=45
Reply from 74.125.140.101: bytes=32 time=31ms TTL=45

Ping statistics for 74.125.140.101:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 30ms, Maximum = 31ms, Average = 30ms
Server: UnKnown
Address: 192.168.1.1

Name: yahoo.com
Addresses: 98.138.253.109
72.30.38.140
98.139.183.24


Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=93ms TTL=47
Reply from 72.30.38.140: bytes=32 time=94ms TTL=47

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 93ms, Maximum = 94ms, Average = 93ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=64
Reply from 127.0.0.1: bytes=32 time<1ms TTL=64

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
11...54 04 a6 04 df 42 ......Realtek RTL8169/8110 Family PCI Gigabit Ethernet NIC (NDIS 6.20)
1...........................Software Loopback Interface 1
14...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.8 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.8 276
192.168.1.8 255.255.255.255 On-link 192.168.1.8 276
192.168.1.255 255.255.255.255 On-link 192.168.1.8 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.8 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.8 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
11 276 fe80::/64 On-link
11 276 fe80::8441:aa82:9065:4da5/128
On-link
1 306 ff00::/8 On-link
11 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (11/21/2012 08:17:28 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/21/2012 08:10:55 PM) (Source: Application Error) (User: )
Description: Faulting application name: KwikMedia.exe, version: 1.18.86.100, time stamp: 0x50251728
Faulting module name: KERNELBASE.dll, version: 6.1.7601.17932, time stamp: 0x50327672
Exception code: 0xe0434352
Fault offset: 0x0000c41f
Faulting process id: 0x1278
Faulting application start time: 0xKwikMedia.exe0
Faulting application path: KwikMedia.exe1
Faulting module path: KwikMedia.exe2
Report Id: KwikMedia.exe3

Error: (11/21/2012 08:10:54 PM) (Source: .NET Runtime) (User: )
Description: Application: KwikMedia.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.ArgumentNullException
Stack:
at MediaHub.EntryPoint.Main(System.String[])
at System.AppDomain._nExecuteAssembly(System.Reflection.RuntimeAssembly, System.String[])
at System.AppDomain.ExecuteAssembly(System.String, System.String[])
at <Module>.RunAssemblyWithCommandLine(Char*, Char*, Char*)

Error: (11/21/2012 08:10:24 PM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: Failed to end a Windows Installer transaction . Error 5 occurred while ending the transaction.

Error: (11/21/2012 08:08:44 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/21/2012 08:08:28 PM) (Source: LightScribeService) (User: )
Description: The LightScribe service was unable to create the system resource it needed

Error: (11/21/2012 08:06:20 PM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: Failed to end a Windows Installer transaction . Error 5 occurred while ending the transaction.

Error: (11/21/2012 08:06:06 PM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: Failed to end a Windows Installer transaction . Error 5 occurred while ending the transaction.

Error: (11/21/2012 02:55:03 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "*" of attribute "language" in element "assemblyIdentity" is invalid.

Error: (11/21/2012 02:54:59 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "ACME,processorArchitecture="x86",type="win32",version="12.0.0.0"1".
Dependent Assembly ACME,processorArchitecture="x86",type="win32",version="12.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.


System errors:
=============
Error: (11/21/2012 08:18:06 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (11/21/2012 08:18:06 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (11/21/2012 08:18:06 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (11/21/2012 08:16:06 PM) (Source: DCOM) (User: )
Description: 1084NVSvc{DCAB0989-1301-4319-BE5F-ADE89F88581C}

Error: (11/21/2012 08:15:59 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (11/21/2012 08:15:59 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (11/21/2012 08:15:59 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (11/21/2012 08:15:59 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (11/21/2012 08:15:59 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (11/21/2012 08:15:59 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068


Microsoft Office Sessions:
=========================
Error: (11/21/2012 08:17:28 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/21/2012 08:10:55 PM) (Source: Application Error)(User: )
Description: KwikMedia.exe1.18.86.10050251728KERNELBASE.dll6.1.7601.1793250327672e04343520000c41f127801cdc84e376fe1d7C:\Program Files (x86)\Nero\KM\KwikMedia.exeC:\Windows\syswow64\KERNELBASE.dll76b4dc82-3441-11e2-b148-5404a604df42

Error: (11/21/2012 08:10:54 PM) (Source: .NET Runtime)(User: )
Description: Application: KwikMedia.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.ArgumentNullException
Stack:
at MediaHub.EntryPoint.Main(System.String[])
at System.AppDomain._nExecuteAssembly(System.Reflection.RuntimeAssembly, System.String[])
at System.AppDomain.ExecuteAssembly(System.String, System.String[])
at <Module>.RunAssemblyWithCommandLine(Char*, Char*, Char*)

Error: (11/21/2012 08:10:24 PM) (Source: MsiInstaller)(User: NT AUTHORITY)
Description: 5(NULL)(NULL)(NULL)(NULL)

Error: (11/21/2012 08:08:44 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/21/2012 08:08:28 PM) (Source: LightScribeService)(User: )
Description:

Error: (11/21/2012 08:06:20 PM) (Source: MsiInstaller)(User: NT AUTHORITY)
Description: 5(NULL)(NULL)(NULL)(NULL)

Error: (11/21/2012 08:06:06 PM) (Source: MsiInstaller)(User: NT AUTHORITY)
Description: 5(NULL)(NULL)(NULL)(NULL)

Error: (11/21/2012 02:55:03 AM) (Source: SideBySide)(User: )
Description: assemblyIdentitylanguage*d:\spybot - search & destroy\DelZip179.dlld:\spybot - search & destroy\DelZip179.dll8

Error: (11/21/2012 02:54:59 AM) (Source: SideBySide)(User: )
Description: ACME,processorArchitecture="x86",type="win32",version="12.0.0.0"c:\program files (x86)\Nero\Nero 12\nero recode\NeroBRServer.exe.Manifest


CodeIntegrity Errors:
===================================
Date: 2012-11-21 00:15:45.353
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-11-21 00:15:45.337
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-11-18 03:03:57.346
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\RimSerial_AMD64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-11-18 03:03:57.300
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\1394ohci.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-11-18 03:03:57.268
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\1394ohci.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-11-18 03:03:57.237
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\nvlddmkm.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-11-18 03:03:57.066
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\nvlddmkm.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-11-18 03:03:56.894
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.0.145\Definitions\BASHDefs\20120811.003\BHDrvx64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-11-18 03:03:56.863
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.0.145\Definitions\BASHDefs\20120811.003\BHDrvx64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-11-18 03:03:56.816
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\blbdrive.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


=========================== Installed Programs ============================

Adobe AIR (Version: 3.1.0.4880)
Adobe Flash Player 11 ActiveX (Version: 11.4.402.287)
Adobe Flash Player 11 Plugin (Version: 11.4.402.287)
Adobe Photoshop CS6 (Version: 13.0)
Adobe Reader X (10.1.4) (Version: 10.1.4)
AIM 7
AVG 2013 (Version: 13.0.2629)
Batman: Arkham City™ (Version: 1.0.0001.131)
Batman: Arkham City™ (Version: 1.0.0003.131)
BitTorrent (Version: 7.6.1)
BlackBerry Desktop Software 7.1 (Version: 7.1.0.32)
CCleaner (Version: 3.24)
COMODO System Utilities (Version: 4.0.226743.26)
Cool & Quiet
DeskPins (remove only)
DivX Setup (Version: 2.6.1.5)
DraftDominator Version 13.0e
Dual-Core Optimizer (Version: 1.1.4.0169)
Fraps (remove only)
Google Chrome (Version: 23.0.1271.64)
Java 7 Update 9 (Version: 7.0.90)
Java Auto Updater (Version: 2.1.9.0)
Java™ 6 Update 31 (Version: 6.0.310)
JavaFX 2.1.1 (Version: 2.1.1)
League of Legends (Version: 1.3)
LightScribe System Software (Version: 1.18.22.2)
Logitech G930 (Version: 1.0.364)
Logitech Gaming Software (Version: 8.20.74)
Logitech Gaming Software 8.30 (Version: 8.30.86)
LOLReplay (Version: 0.8.0.1)
Malwarebytes Anti-Malware version 1.65.1.1000 (Version: 1.65.1.1000)
Managed DirectX (0901) (Version: 4.09.00.0901)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Games for Windows - LIVE Redistributable (Version: 3.5.92.0)
Microsoft Games for Windows Marketplace (Version: 3.5.50.0)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
mIRC (Version: 7.19)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Mumble 1.2.3 (Version: 1.2.3)
myfantasyleague.com Game Day 2012 (Version: 1.0)
Nero 12 (Version: 12.0.02000)
Nero Audio Pack 1 (Version: 11.0.11500.110.0)
Nero BackItUp (Version: 12.0.2001)
Nero BackItUp Help (CHM) (Version: 12.0.3000)
Nero Blu-ray Player (Version: 12.0.14300)
Nero Blu-ray Player Help (CHM) (Version: 12.0.4000)
Nero Burning ROM (Version: 12.0.20000)
Nero Burning ROM Help (CHM) (Version: 12.0.3000)
Nero ControlCenter (Version: 11.0.15200)
Nero ControlCenter Help (CHM) (Version: 12.0.5000)
Nero Core Components (Version: 11.0.18100)
Nero Disc Menus Basic (Version: 12.0.11500)
Nero Effects Basic (Version: 12.0.11500)
Nero Express (Version: 12.0.20000)
Nero Express Help (CHM) (Version: 12.0.5000)
Nero Kwik Media (Version: 1.18.18200)
Nero Kwik Media Help (CHM) (Version: 12.0.4000)
Nero Kwik Themes Basic (Version: 12.0.11500)
Nero PiP Effects Basic (Version: 12.0.11500)
Nero Recode (Version: 12.0.24000)
Nero Recode Help (CHM) (Version: 12.0.4000)
Nero RescueAgent (Version: 12.0.9000)
Nero RescueAgent Help (CHM) (Version: 12.0.3000)
Nero SharedVideoCodecs (Version: 1.0.12100.2.0)
Nero Update (Version: 11.0.11800.31.0)
Nero Video (Version: 12.0.3000)
Nero Video Help (CHM) (Version: 12.0.4000)
neroxml (Version: 1.0.0)
Norton Security Suite (Version: 6.2.1.5)
NVIDIA 3D Vision Controller Driver 301.42 (Version: 301.42)
NVIDIA 3D Vision Driver 306.97 (Version: 306.97)
NVIDIA 3D Vision Video Player (Version: 1.7.2)
NVIDIA Control Panel 306.97 (Version: 306.97)
NVIDIA Graphics Driver 306.97 (Version: 306.97)
NVIDIA HD Audio Driver 1.3.16.0 (Version: 1.3.16.0)
NVIDIA Install Application (Version: 2.1002.85.551)
NVIDIA PhysX (Version: 9.12.0213)
NVIDIA PhysX System Software 9.12.0213 (Version: 9.12.0213)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.0697)
NVIDIA Update 1.10.8 (Version: 1.10.8)
NVIDIA Update Components (Version: 1.10.8)
PDF Settings CS6 (Version: 11.0)
Prerequisite installer (Version: 12.0.0002)
Skype Click to Call (Version: 6.3.11079)
Skype™ 5.10 (Version: 5.10.116)
Spybot - Search & Destroy (Version: 1.6.2)
Steam (Version: 1.0.0.0)
Stronghold Kingdoms
Stronghold Kingdoms (Version: Stronghold Kingdoms (Installer v1.17))
Stronghold Kingdoms Steward version 1.2.3 Beta (Version: 1.2.3 Beta)
TortoiseSVN 1.7.6.22632 (64 bit) (Version: 1.7.22632)
Ultima Online Classic Client (Version: )
Ultima Online Stygian Abyss Classic (Version: )
Unity Web Player (Version: )
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
Vegas Movie Studio Platinum 9.0 (Version: 9.0.92)
Ventrilo Client for Windows x64 (Version: 3.0.8.0)
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1)
VLC media player 2.0.1 (Version: 2.0.1)
Welcome App (Start-up experience) (Version: 12.0.14000)
Windows Live ID Sign-in Assistant (Version: 6.500.3165.0)
Wise Registry Cleaner 7.42
World of Warcraft (Version: 5.0.5.16057)
World of Warcraft Beta (Version: 5.0.4.15929)
YTD Video Downloader 3.9.2

========================= Devices: ================================

Name: Marvell 91xx Config ATA Device
Description: Marvell 91xx Config ATA Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Security Processor Loader Driver
Description: Security Processor Loader Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: spldr
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Universal Serial Bus (USB) Controller
Description: Universal Serial Bus (USB) Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


========================= Memory info: ===================================

Percentage of memory in use: 6%
Total physical RAM: 16375.11 MB
Available physical RAM: 15271.34 MB
Total Pagefile: 32748.42 MB
Available Pagefile: 31653.85 MB
Total Virtual: 4095.88 MB
Available Virtual: 3973.46 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:111.79 GB) (Free:15.55 GB) NTFS
2 Drive d: () (Fixed) (Total:931.51 GB) (Free:665.16 GB) NTFS
3 Drive e: () (Fixed) (Total:139.73 GB) (Free:100.93 GB) NTFS

========================= Users: ========================================

User accounts for \\RILEY-PC

Administrator Guest Riley
UpdatusUser

========================= Minidump Files ==================================

No minidump file found


**** End of log ****





The ESET Online Scanner revealed no infections and it only had the option to "Finish" after it completed I did not see where to export that log?

#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,220 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:09 PM

Posted 21 November 2012 - 10:42 PM

Hi, you posted 3 minitool logs instead of the TDSS and aswMBR logs.

Sometimes if ESET finds no infections it will not create a log.

Edited by boopme, 21 November 2012 - 10:44 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 Osiris1825

Osiris1825
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:06:09 PM

Posted 22 November 2012 - 12:23 AM

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2012-11-21 20:23:21
-----------------------------
20:23:21.987 OS Version: Windows x64 6.1.7601 Service Pack 1
20:23:21.987 Number of processors: 12 586 0x2C02
20:23:21.987 ComputerName: RILEY-PC UserName: Riley
20:23:22.174 Initialize success
20:23:49.701 AVAST engine defs: 12112101
20:24:00.948 Disk 0 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP4T1L0-9
20:24:00.948 Disk 0 Vendor: WDC_WD10EADS-00L5B1 01.01A01 Size: 953869MB BusType: 3
20:24:00.948 Disk 1 (boot) \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP5T1L0-b
20:24:00.948 Disk 1 Vendor: OCZ-VERTEX3_MI 2.15 Size: 114473MB BusType: 3
20:24:00.980 Disk 2 \Device\Harddisk2\DR2 -> \Device\Ide\IdeDeviceP7T0L0-e
20:24:00.980 Disk 2 Vendor: WDC_WD1500HLFS-01G6U0 04.04V01 Size: 143089MB BusType: 3
20:24:00.980 Disk 1 MBR read successfully
20:24:00.980 Disk 1 MBR scan
20:24:00.980 Disk 1 Windows 7 default MBR code
20:24:00.995 Disk 1 Partition 1 80 (A) 07 HPFS/NTFS NTFS 114471 MB offset 2048
20:24:00.995 Disk 1 scanning C:\Windows\system32\drivers
20:24:03.257 Service scanning
20:24:09.794 Modules scanning
20:24:09.794 Disk 1 trace - called modules:
20:24:09.794 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
20:24:09.794 1 nt!IofCallDriver -> \Device\Harddisk1\DR1[0xfffffa800d5cd790]
20:24:09.809 3 CLASSPNP.SYS[fffff88001b7743f] -> nt!IofCallDriver -> [0xfffffa800d362670]
20:24:09.809 5 ACPI.sys[fffff88000fab7a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP5T1L0-b[0xfffffa800d3a7060]
20:24:10.059 AVAST engine scan C:\Windows
20:24:10.418 AVAST engine scan C:\Windows\system32
20:25:06.118 AVAST engine scan C:\Windows\system32\drivers
20:25:08.980 AVAST engine scan C:\Users\Riley
20:25:47.060 AVAST engine scan C:\ProgramData
20:25:54.961 Scan finished successfully
20:26:10.127 Disk 1 MBR has been saved successfully to "C:\Users\Riley\Desktop\MBR.dat"
20:26:10.127 The log file has been saved successfully to "C:\Users\Riley\Desktop\aswMBR.txt"

20:20:05.0804 2900 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
20:20:06.0133 2900 ============================================================
20:20:06.0133 2900 Current date / time: 2012/11/21 20:20:06.0133
20:20:06.0133 2900 SystemInfo:
20:20:06.0133 2900
20:20:06.0133 2900 OS Version: 6.1.7601 ServicePack: 1.0
20:20:06.0133 2900 Product type: Workstation
20:20:06.0134 2900 ComputerName: RILEY-PC
20:20:06.0134 2900 UserName: Riley
20:20:06.0134 2900 Windows directory: C:\Windows
20:20:06.0134 2900 System windows directory: C:\Windows
20:20:06.0134 2900 Running under WOW64
20:20:06.0134 2900 Processor architecture: Intel x64
20:20:06.0134 2900 Number of processors: 12
20:20:06.0134 2900 Page size: 0x1000
20:20:06.0134 2900 Boot type: Safe boot with network
20:20:06.0134 2900 ============================================================
20:20:06.0409 2900 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:20:06.0409 2900 Drive \Device\Harddisk1\DR1 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:20:06.0410 2900 Drive \Device\Harddisk2\DR2 - Size: 0x22EF13E000 (139.74 Gb), SectorSize: 0x200, Cylinders: 0x4741, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:20:06.0413 2900 ============================================================
20:20:06.0413 2900 \Device\Harddisk0\DR0:
20:20:06.0413 2900 MBR partitions:
20:20:06.0413 2900 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705800
20:20:06.0413 2900 \Device\Harddisk1\DR1:
20:20:06.0413 2900 MBR partitions:
20:20:06.0413 2900 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xDF93800
20:20:06.0413 2900 \Device\Harddisk2\DR2:
20:20:06.0413 2900 MBR partitions:
20:20:06.0413 2900 \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x11777800
20:20:06.0413 2900 ============================================================
20:20:06.0414 2900 C: <-> \Device\Harddisk1\DR1\Partition1
20:20:06.0449 2900 D: <-> \Device\Harddisk0\DR0\Partition1
20:20:06.0460 2900 E: <-> \Device\Harddisk2\DR2\Partition1
20:20:06.0460 2900 ============================================================
20:20:06.0460 2900 Initialize success
20:20:06.0460 2900 ============================================================
20:20:45.0557 2604 ============================================================
20:20:45.0557 2604 Scan started
20:20:45.0557 2604 Mode: Manual; TDLFS;
20:20:45.0557 2604 ============================================================
20:20:45.0627 2604 ================ Scan system memory ========================
20:20:45.0627 2604 System memory - ok
20:20:45.0628 2604 ================ Scan services =============================
20:20:45.0653 2604 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
20:20:45.0655 2604 1394ohci - ok
20:20:45.0660 2604 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
20:20:45.0662 2604 ACPI - ok
20:20:45.0687 2604 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
20:20:45.0688 2604 AcpiPmi - ok
20:20:45.0693 2604 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
20:20:45.0695 2604 AdobeARMservice - ok
20:20:45.0714 2604 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
20:20:45.0716 2604 AdobeFlashPlayerUpdateSvc - ok
20:20:45.0723 2604 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
20:20:45.0727 2604 adp94xx - ok
20:20:45.0732 2604 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
20:20:45.0735 2604 adpahci - ok
20:20:45.0751 2604 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
20:20:45.0753 2604 adpu320 - ok
20:20:45.0756 2604 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
20:20:45.0757 2604 AeLookupSvc - ok
20:20:45.0763 2604 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
20:20:45.0767 2604 AFD - ok
20:20:45.0770 2604 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
20:20:45.0770 2604 agp440 - ok
20:20:45.0773 2604 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
20:20:45.0774 2604 ALG - ok
20:20:45.0776 2604 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
20:20:45.0776 2604 aliide - ok
20:20:45.0778 2604 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
20:20:45.0778 2604 amdide - ok
20:20:45.0781 2604 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
20:20:45.0782 2604 AmdK8 - ok
20:20:45.0784 2604 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
20:20:45.0785 2604 AmdPPM - ok
20:20:45.0787 2604 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
20:20:45.0789 2604 amdsata - ok
20:20:45.0792 2604 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
20:20:45.0794 2604 amdsbs - ok
20:20:45.0811 2604 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
20:20:45.0811 2604 amdxata - ok
20:20:45.0814 2604 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
20:20:45.0814 2604 AppID - ok
20:20:45.0817 2604 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
20:20:45.0817 2604 AppIDSvc - ok
20:20:45.0819 2604 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
20:20:45.0820 2604 Appinfo - ok
20:20:45.0824 2604 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
20:20:45.0826 2604 AppMgmt - ok
20:20:45.0828 2604 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
20:20:45.0830 2604 arc - ok
20:20:45.0832 2604 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
20:20:45.0833 2604 arcsas - ok
20:20:45.0836 2604 [ 68726474C69B738EAC3A62E06B33ADDC ] AsIO C:\Windows\syswow64\drivers\AsIO.sys
20:20:45.0837 2604 AsIO - ok
20:20:45.0839 2604 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
20:20:45.0839 2604 AsyncMac - ok
20:20:45.0841 2604 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
20:20:45.0842 2604 atapi - ok
20:20:45.0849 2604 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:20:45.0855 2604 AudioEndpointBuilder - ok
20:20:45.0862 2604 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
20:20:45.0864 2604 AudioSrv - ok
20:20:45.0875 2604 avgntflt - ok
20:20:45.0878 2604 avipbb - ok
20:20:45.0880 2604 avkmgr - ok
20:20:45.0883 2604 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
20:20:45.0884 2604 AxInstSV - ok
20:20:45.0891 2604 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
20:20:45.0895 2604 b06bdrv - ok
20:20:45.0899 2604 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
20:20:45.0902 2604 b57nd60a - ok
20:20:45.0907 2604 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
20:20:45.0908 2604 BDESVC - ok
20:20:45.0910 2604 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
20:20:45.0910 2604 Beep - ok
20:20:45.0918 2604 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
20:20:45.0923 2604 BFE - ok
20:20:45.0953 2604 [ E99F59342171101EE2446D0CD1A60A8D ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.0.145\Definitions\BASHDefs\20120811.003\BHDrvx64.sys
20:20:45.0966 2604 BHDrvx64 - ok
20:20:45.0976 2604 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
20:20:45.0986 2604 BITS - ok
20:20:46.0003 2604 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
20:20:46.0004 2604 blbdrive - ok
20:20:46.0006 2604 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
20:20:46.0007 2604 bowser - ok
20:20:46.0009 2604 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
20:20:46.0010 2604 BrFiltLo - ok
20:20:46.0012 2604 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
20:20:46.0012 2604 BrFiltUp - ok
20:20:46.0015 2604 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
20:20:46.0017 2604 Browser - ok
20:20:46.0021 2604 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
20:20:46.0024 2604 Brserid - ok
20:20:46.0026 2604 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
20:20:46.0026 2604 BrSerWdm - ok
20:20:46.0028 2604 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
20:20:46.0029 2604 BrUsbMdm - ok
20:20:46.0031 2604 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
20:20:46.0031 2604 BrUsbSer - ok
20:20:46.0033 2604 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
20:20:46.0034 2604 BTHMODEM - ok
20:20:46.0038 2604 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
20:20:46.0039 2604 bthserv - ok
20:20:46.0043 2604 [ 0E1737A63AEC0F6DE231BB59836C0A11 ] ccSet_N360 C:\Windows\system32\drivers\N360x64\0602010.005\ccSetx64.sys
20:20:46.0045 2604 ccSet_N360 - ok
20:20:46.0048 2604 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
20:20:46.0049 2604 cdfs - ok
20:20:46.0066 2604 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
20:20:46.0068 2604 cdrom - ok
20:20:46.0070 2604 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
20:20:46.0071 2604 CertPropSvc - ok
20:20:46.0073 2604 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
20:20:46.0074 2604 circlass - ok
20:20:46.0080 2604 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
20:20:46.0083 2604 CLFS - ok
20:20:46.0087 2604 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:20:46.0089 2604 clr_optimization_v2.0.50727_32 - ok
20:20:46.0118 2604 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:20:46.0120 2604 clr_optimization_v2.0.50727_64 - ok
20:20:46.0125 2604 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:20:46.0129 2604 clr_optimization_v4.0.30319_32 - ok
20:20:46.0134 2604 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:20:46.0137 2604 clr_optimization_v4.0.30319_64 - ok
20:20:46.0139 2604 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
20:20:46.0140 2604 CmBatt - ok
20:20:46.0142 2604 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
20:20:46.0142 2604 cmdide - ok
20:20:46.0148 2604 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
20:20:46.0152 2604 CNG - ok
20:20:46.0154 2604 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
20:20:46.0155 2604 Compbatt - ok
20:20:46.0157 2604 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
20:20:46.0157 2604 CompositeBus - ok
20:20:46.0159 2604 COMSysApp - ok
20:20:46.0162 2604 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
20:20:46.0162 2604 crcdisk - ok
20:20:46.0167 2604 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
20:20:46.0168 2604 CryptSvc - ok
20:20:46.0189 2604 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
20:20:46.0193 2604 CSC - ok
20:20:46.0200 2604 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
20:20:46.0206 2604 CscService - ok
20:20:46.0213 2604 [ F473349F3FDCC29616337612C868B5EB ] CSUService C:\Program Files\COMODO\COMODO System Utilities\CSUService.exe
20:20:46.0216 2604 CSUService - ok
20:20:46.0223 2604 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
20:20:46.0228 2604 DcomLaunch - ok
20:20:46.0232 2604 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
20:20:46.0235 2604 defragsvc - ok
20:20:46.0249 2604 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
20:20:46.0250 2604 DfsC - ok
20:20:46.0254 2604 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
20:20:46.0257 2604 Dhcp - ok
20:20:46.0282 2604 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
20:20:46.0283 2604 discache - ok
20:20:46.0285 2604 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
20:20:46.0286 2604 Disk - ok
20:20:46.0289 2604 [ 5DB085A8A6600BE6401F2B24EECB5415 ] dmvsc C:\Windows\system32\drivers\dmvsc.sys
20:20:46.0290 2604 dmvsc - ok
20:20:46.0293 2604 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
20:20:46.0295 2604 Dnscache - ok
20:20:46.0313 2604 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
20:20:46.0316 2604 dot3svc - ok
20:20:46.0319 2604 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
20:20:46.0321 2604 DPS - ok
20:20:46.0323 2604 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
20:20:46.0324 2604 drmkaud - ok
20:20:46.0333 2604 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
20:20:46.0342 2604 DXGKrnl - ok
20:20:46.0345 2604 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
20:20:46.0346 2604 EapHost - ok
20:20:46.0375 2604 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
20:20:46.0401 2604 ebdrv - ok
20:20:46.0409 2604 [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
20:20:46.0414 2604 eeCtrl - ok
20:20:46.0416 2604 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
20:20:46.0417 2604 EFS - ok
20:20:46.0425 2604 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
20:20:46.0431 2604 ehRecvr - ok
20:20:46.0440 2604 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
20:20:46.0441 2604 ehSched - ok
20:20:46.0448 2604 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
20:20:46.0452 2604 elxstor - ok
20:20:46.0455 2604 [ C5BCCB378D0A896304A3E71BE7215983 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
20:20:46.0456 2604 EraserUtilRebootDrv - ok
20:20:46.0458 2604 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
20:20:46.0459 2604 ErrDev - ok
20:20:46.0466 2604 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
20:20:46.0470 2604 EventSystem - ok
20:20:46.0473 2604 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
20:20:46.0475 2604 exfat - ok
20:20:46.0479 2604 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
20:20:46.0481 2604 fastfat - ok
20:20:46.0488 2604 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
20:20:46.0494 2604 Fax - ok
20:20:46.0504 2604 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
20:20:46.0504 2604 fdc - ok
20:20:46.0507 2604 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
20:20:46.0507 2604 fdPHost - ok
20:20:46.0509 2604 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
20:20:46.0510 2604 FDResPub - ok
20:20:46.0512 2604 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
20:20:46.0513 2604 FileInfo - ok
20:20:46.0515 2604 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
20:20:46.0516 2604 Filetrace - ok
20:20:46.0517 2604 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
20:20:46.0518 2604 flpydisk - ok
20:20:46.0522 2604 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
20:20:46.0525 2604 FltMgr - ok
20:20:46.0536 2604 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
20:20:46.0545 2604 FontCache - ok
20:20:46.0549 2604 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:20:46.0550 2604 FontCache3.0.0.0 - ok
20:20:46.0581 2604 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
20:20:46.0581 2604 FsDepends - ok
20:20:46.0584 2604 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
20:20:46.0584 2604 Fs_Rec - ok
20:20:46.0588 2604 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
20:20:46.0590 2604 fvevol - ok
20:20:46.0592 2604 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
20:20:46.0593 2604 gagp30kx - ok
20:20:46.0601 2604 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
20:20:46.0608 2604 gpsvc - ok
20:20:46.0622 2604 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
20:20:46.0623 2604 hcw85cir - ok
20:20:46.0627 2604 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
20:20:46.0631 2604 HdAudAddService - ok
20:20:46.0633 2604 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
20:20:46.0634 2604 HDAudBus - ok
20:20:46.0636 2604 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
20:20:46.0637 2604 HidBatt - ok
20:20:46.0640 2604 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
20:20:46.0641 2604 HidBth - ok
20:20:46.0644 2604 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
20:20:46.0645 2604 HidIr - ok
20:20:46.0647 2604 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
20:20:46.0648 2604 hidserv - ok
20:20:46.0650 2604 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
20:20:46.0651 2604 HidUsb - ok
20:20:46.0654 2604 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
20:20:46.0655 2604 hkmsvc - ok
20:20:46.0659 2604 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
20:20:46.0661 2604 HomeGroupListener - ok
20:20:46.0664 2604 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
20:20:46.0667 2604 HomeGroupProvider - ok
20:20:46.0669 2604 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
20:20:46.0670 2604 HpSAMD - ok
20:20:46.0691 2604 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
20:20:46.0696 2604 HTTP - ok
20:20:46.0720 2604 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
20:20:46.0720 2604 hwpolicy - ok
20:20:46.0723 2604 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
20:20:46.0724 2604 i8042prt - ok
20:20:46.0729 2604 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
20:20:46.0733 2604 iaStorV - ok
20:20:46.0754 2604 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:20:46.0761 2604 idsvc - ok
20:20:46.0768 2604 [ CE0BF35C79E03BB89DA6B14FAC838605 ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.0.145\Definitions\IPSDefs\20120821.001\IDSvia64.sys
20:20:46.0773 2604 IDSVia64 - ok
20:20:46.0776 2604 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
20:20:46.0776 2604 iirsp - ok
20:20:46.0785 2604 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
20:20:46.0792 2604 IKEEXT - ok
20:20:46.0810 2604 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
20:20:46.0811 2604 intelide - ok
20:20:46.0813 2604 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
20:20:46.0814 2604 intelppm - ok
20:20:46.0817 2604 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
20:20:46.0818 2604 IPBusEnum - ok
20:20:46.0820 2604 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:20:46.0821 2604 IpFilterDriver - ok
20:20:46.0828 2604 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
20:20:46.0833 2604 iphlpsvc - ok
20:20:46.0835 2604 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
20:20:46.0837 2604 IPMIDRV - ok
20:20:46.0839 2604 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
20:20:46.0840 2604 IPNAT - ok
20:20:46.0843 2604 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
20:20:46.0843 2604 IRENUM - ok
20:20:46.0845 2604 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
20:20:46.0845 2604 isapnp - ok
20:20:46.0850 2604 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
20:20:46.0853 2604 iScsiPrt - ok
20:20:46.0855 2604 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
20:20:46.0855 2604 kbdclass - ok
20:20:46.0857 2604 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
20:20:46.0858 2604 kbdhid - ok
20:20:46.0874 2604 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
20:20:46.0874 2604 KeyIso - ok
20:20:46.0877 2604 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
20:20:46.0878 2604 KSecDD - ok
20:20:46.0882 2604 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
20:20:46.0883 2604 KSecPkg - ok
20:20:46.0885 2604 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
20:20:46.0886 2604 ksthunk - ok
20:20:46.0891 2604 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
20:20:46.0895 2604 KtmRm - ok
20:20:46.0900 2604 [ CE4347E2D90DB2E5517B6F2BC720A862 ] LADF_CaptureOnly C:\Windows\system32\DRIVERS\ladfGSCamd64.sys
20:20:46.0904 2604 LADF_CaptureOnly - ok
20:20:46.0909 2604 [ 85A9D21D3AE2EA963E111CB150895877 ] LADF_RenderOnly C:\Windows\system32\DRIVERS\ladfGSRamd64.sys
20:20:46.0912 2604 LADF_RenderOnly - ok
20:20:46.0916 2604 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
20:20:46.0919 2604 LanmanServer - ok
20:20:46.0922 2604 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:20:46.0923 2604 LanmanWorkstation - ok
20:20:46.0939 2604 [ FA529FB35694C24BF98A9EF67C1CD9D0 ] LGBusEnum C:\Windows\system32\drivers\LGBusEnum.sys
20:20:46.0940 2604 LGBusEnum - ok
20:20:46.0942 2604 [ 94B29CE153765E768F004FB3440BE2B0 ] LGVirHid C:\Windows\system32\drivers\LGVirHid.sys
20:20:46.0943 2604 LGVirHid - ok
20:20:46.0946 2604 [ C34411A244029F1C08687F7C752C4563 ] LightScribeService C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
20:20:46.0947 2604 LightScribeService - ok
20:20:46.0949 2604 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
20:20:46.0950 2604 lltdio - ok
20:20:46.0954 2604 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
20:20:46.0957 2604 lltdsvc - ok
20:20:46.0959 2604 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
20:20:46.0960 2604 lmhosts - ok
20:20:46.0963 2604 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
20:20:46.0965 2604 LSI_FC - ok
20:20:46.0967 2604 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
20:20:46.0968 2604 LSI_SAS - ok
20:20:46.0971 2604 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
20:20:46.0972 2604 LSI_SAS2 - ok
20:20:46.0974 2604 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
20:20:46.0975 2604 LSI_SCSI - ok
20:20:46.0978 2604 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
20:20:46.0979 2604 luafv - ok
20:20:46.0982 2604 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
20:20:46.0983 2604 Mcx2Svc - ok
20:20:46.0985 2604 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
20:20:46.0986 2604 megasas - ok
20:20:47.0004 2604 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
20:20:47.0007 2604 MegaSR - ok
20:20:47.0010 2604 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
20:20:47.0011 2604 MMCSS - ok
20:20:47.0013 2604 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
20:20:47.0014 2604 Modem - ok
20:20:47.0016 2604 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
20:20:47.0016 2604 monitor - ok
20:20:47.0018 2604 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
20:20:47.0019 2604 mouclass - ok
20:20:47.0021 2604 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
20:20:47.0022 2604 mouhid - ok
20:20:47.0025 2604 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
20:20:47.0026 2604 mountmgr - ok
20:20:47.0029 2604 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
20:20:47.0030 2604 mpio - ok
20:20:47.0033 2604 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
20:20:47.0034 2604 mpsdrv - ok
20:20:47.0042 2604 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
20:20:47.0049 2604 MpsSvc - ok
20:20:47.0066 2604 MREMP50 - ok
20:20:47.0069 2604 MREMP50a64 - ok
20:20:47.0070 2604 MREMPR5 - ok
20:20:47.0072 2604 MRENDIS5 - ok
20:20:47.0075 2604 MRESP50 - ok
20:20:47.0077 2604 MRESP50a64 - ok
20:20:47.0081 2604 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
20:20:47.0083 2604 MRxDAV - ok
20:20:47.0086 2604 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
20:20:47.0088 2604 mrxsmb - ok
20:20:47.0092 2604 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:20:47.0095 2604 mrxsmb10 - ok
20:20:47.0098 2604 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:20:47.0099 2604 mrxsmb20 - ok
20:20:47.0101 2604 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
20:20:47.0102 2604 msahci - ok
20:20:47.0105 2604 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
20:20:47.0107 2604 msdsm - ok
20:20:47.0110 2604 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
20:20:47.0112 2604 MSDTC - ok
20:20:47.0130 2604 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
20:20:47.0131 2604 Msfs - ok
20:20:47.0133 2604 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
20:20:47.0133 2604 mshidkmdf - ok
20:20:47.0135 2604 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
20:20:47.0135 2604 msisadrv - ok
20:20:47.0167 2604 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
20:20:47.0169 2604 MSiSCSI - ok
20:20:47.0182 2604 msiserver - ok
20:20:47.0185 2604 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
20:20:47.0185 2604 MSKSSRV - ok
20:20:47.0187 2604 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
20:20:47.0187 2604 MSPCLOCK - ok
20:20:47.0189 2604 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
20:20:47.0189 2604 MSPQM - ok
20:20:47.0195 2604 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
20:20:47.0198 2604 MsRPC - ok
20:20:47.0201 2604 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
20:20:47.0201 2604 mssmbios - ok
20:20:47.0203 2604 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
20:20:47.0204 2604 MSTEE - ok
20:20:47.0205 2604 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
20:20:47.0206 2604 MTConfig - ok
20:20:47.0208 2604 [ 2219A3D695405E7BA2186BA6B9EDE14A ] MTsensor C:\Windows\system32\DRIVERS\ASACPI.sys
20:20:47.0208 2604 MTsensor - ok
20:20:47.0211 2604 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
20:20:47.0211 2604 Mup - ok
20:20:47.0216 2604 [ C6948F034D7EDABCFA2234D399FC78BC ] N360 C:\Program Files (x86)\Norton Security Suite\Engine\6.2.1.5\ccSvcHst.exe
20:20:47.0218 2604 N360 - ok
20:20:47.0224 2604 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
20:20:47.0228 2604 napagent - ok
20:20:47.0248 2604 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
20:20:47.0251 2604 NativeWifiP - ok
20:20:47.0259 2604 [ E0E4A1F81A7D69C595A8A9DDAD084C19 ] NAUpdate C:\Program Files (x86)\Nero\Update\NASvc.exe
20:20:47.0266 2604 NAUpdate - ok
20:20:47.0297 2604 [ 149A9AD81BB327E892FA1ACB77722442 ] NAVENG C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.0.145\Definitions\VirusDefs\20120820.034\ENG64.SYS
20:20:47.0299 2604 NAVENG - ok
20:20:47.0317 2604 [ 4AF8750E71B549FEC5F6D1D01398CA69 ] NAVEX15 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.0.145\Definitions\VirusDefs\20120820.034\EX64.SYS
20:20:47.0334 2604 NAVEX15 - ok
20:20:47.0344 2604 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
20:20:47.0352 2604 NDIS - ok
20:20:47.0369 2604 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
20:20:47.0371 2604 NdisCap - ok
20:20:47.0373 2604 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
20:20:47.0373 2604 NdisTapi - ok
20:20:47.0375 2604 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
20:20:47.0376 2604 Ndisuio - ok
20:20:47.0379 2604 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
20:20:47.0381 2604 NdisWan - ok
20:20:47.0383 2604 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
20:20:47.0384 2604 NDProxy - ok
20:20:47.0386 2604 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
20:20:47.0386 2604 NetBIOS - ok
20:20:47.0390 2604 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
20:20:47.0392 2604 NetBT - ok
20:20:47.0394 2604 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
20:20:47.0395 2604 Netlogon - ok
20:20:47.0400 2604 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
20:20:47.0403 2604 Netman - ok
20:20:47.0409 2604 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
20:20:47.0413 2604 netprofm - ok
20:20:47.0416 2604 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:20:47.0417 2604 NetTcpPortSharing - ok
20:20:47.0434 2604 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
20:20:47.0435 2604 nfrd960 - ok
20:20:47.0439 2604 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
20:20:47.0442 2604 NlaSvc - ok
20:20:47.0444 2604 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
20:20:47.0445 2604 Npfs - ok
20:20:47.0447 2604 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
20:20:47.0448 2604 nsi - ok
20:20:47.0450 2604 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
20:20:47.0451 2604 nsiproxy - ok
20:20:47.0467 2604 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
20:20:47.0481 2604 Ntfs - ok
20:20:47.0497 2604 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
20:20:47.0498 2604 Null - ok
20:20:47.0529 2604 [ 102806B360D0E6BC6E55BF47EF655D43 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
20:20:47.0531 2604 NVHDA - ok
20:20:47.0643 2604 [ 5104BAC2DA2A5BDD86AC6B0708B00F06 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
20:20:47.0751 2604 nvlddmkm - ok
20:20:47.0756 2604 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
20:20:47.0758 2604 nvraid - ok
20:20:47.0761 2604 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
20:20:47.0763 2604 nvstor - ok
20:20:47.0772 2604 [ DDFAFCE89A5C93D04712B86F94E9FCBA ] nvsvc C:\Windows\system32\nvvsvc.exe
20:20:47.0780 2604 nvsvc - ok
20:20:47.0793 2604 [ 84E035225474E48CD3A6A3CE52332095 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
20:20:47.0803 2604 nvUpdatusService - ok
20:20:47.0810 2604 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
20:20:47.0811 2604 nv_agp - ok
20:20:47.0814 2604 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
20:20:47.0815 2604 ohci1394 - ok
20:20:47.0820 2604 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
20:20:47.0823 2604 p2pimsvc - ok
20:20:47.0829 2604 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
20:20:47.0833 2604 p2psvc - ok
20:20:47.0836 2604 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
20:20:47.0837 2604 Parport - ok
20:20:47.0839 2604 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
20:20:47.0840 2604 partmgr - ok
20:20:47.0844 2604 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
20:20:47.0846 2604 PcaSvc - ok
20:20:47.0849 2604 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
20:20:47.0851 2604 pci - ok
20:20:47.0853 2604 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
20:20:47.0854 2604 pciide - ok
20:20:47.0857 2604 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
20:20:47.0860 2604 pcmcia - ok
20:20:47.0873 2604 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
20:20:47.0874 2604 pcw - ok
20:20:47.0881 2604 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
20:20:47.0886 2604 PEAUTH - ok
20:20:47.0899 2604 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
20:20:47.0911 2604 PeerDistSvc - ok
20:20:47.0928 2604 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
20:20:47.0935 2604 PerfHost - ok
20:20:47.0951 2604 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
20:20:47.0963 2604 pla - ok
20:20:47.0969 2604 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
20:20:47.0973 2604 PlugPlay - ok
20:20:47.0976 2604 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
20:20:47.0976 2604 PNRPAutoReg - ok
20:20:47.0981 2604 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
20:20:47.0983 2604 PNRPsvc - ok
20:20:47.0989 2604 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
20:20:47.0993 2604 PolicyAgent - ok
20:20:48.0018 2604 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
20:20:48.0020 2604 Power - ok
20:20:48.0023 2604 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
20:20:48.0024 2604 PptpMiniport - ok
20:20:48.0026 2604 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
20:20:48.0027 2604 Processor - ok
20:20:48.0031 2604 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
20:20:48.0033 2604 ProfSvc - ok
20:20:48.0035 2604 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
20:20:48.0036 2604 ProtectedStorage - ok
20:20:48.0038 2604 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
20:20:48.0039 2604 Psched - ok
20:20:48.0053 2604 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
20:20:48.0066 2604 ql2300 - ok
20:20:48.0069 2604 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
20:20:48.0071 2604 ql40xx - ok
20:20:48.0074 2604 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
20:20:48.0077 2604 QWAVE - ok
20:20:48.0079 2604 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
20:20:48.0079 2604 QWAVEdrv - ok
20:20:48.0081 2604 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
20:20:48.0082 2604 RasAcd - ok
20:20:48.0085 2604 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
20:20:48.0086 2604 RasAgileVpn - ok
20:20:48.0089 2604 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
20:20:48.0090 2604 RasAuto - ok
20:20:48.0093 2604 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
20:20:48.0094 2604 Rasl2tp - ok
20:20:48.0098 2604 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
20:20:48.0102 2604 RasMan - ok
20:20:48.0104 2604 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
20:20:48.0105 2604 RasPppoe - ok
20:20:48.0108 2604 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
20:20:48.0109 2604 RasSstp - ok
20:20:48.0113 2604 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
20:20:48.0115 2604 rdbss - ok
20:20:48.0129 2604 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
20:20:48.0130 2604 rdpbus - ok
20:20:48.0131 2604 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
20:20:48.0132 2604 RDPCDD - ok
20:20:48.0136 2604 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
20:20:48.0138 2604 RDPDR - ok
20:20:48.0140 2604 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
20:20:48.0140 2604 RDPENCDD - ok
20:20:48.0143 2604 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
20:20:48.0143 2604 RDPREFMP - ok
20:20:48.0147 2604 [ 70CBA1A0C98600A2AA1863479B35CB90 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
20:20:48.0147 2604 RdpVideoMiniport - ok
20:20:48.0151 2604 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
20:20:48.0153 2604 RDPWD - ok
20:20:48.0182 2604 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
20:20:48.0184 2604 rdyboost - ok
20:20:48.0187 2604 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
20:20:48.0188 2604 RemoteAccess - ok
20:20:48.0191 2604 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
20:20:48.0193 2604 RemoteRegistry - ok
20:20:48.0196 2604 [ AD42432D22940B4215177BE113E4919C ] RimUsb C:\Windows\system32\Drivers\RimUsb_AMD64.sys
20:20:48.0197 2604 RimUsb - ok
20:20:48.0199 2604 [ 4AAFFFA67AC4DFA3D9985D78573887E2 ] RimVSerPort C:\Windows\system32\DRIVERS\RimSerial_AMD64.sys
20:20:48.0200 2604 RimVSerPort - ok
20:20:48.0202 2604 [ 388D3DD1A6457280F3BADBA9F3ACD6B1 ] ROOTMODEM C:\Windows\system32\Drivers\RootMdm.sys
20:20:48.0203 2604 ROOTMODEM - ok
20:20:48.0206 2604 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
20:20:48.0207 2604 RpcEptMapper - ok
20:20:48.0209 2604 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
20:20:48.0209 2604 RpcLocator - ok
20:20:48.0215 2604 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
20:20:48.0218 2604 RpcSs - ok
20:20:48.0220 2604 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
20:20:48.0221 2604 rspndr - ok
20:20:48.0225 2604 [ BAEFEE35D27A5440D35092CE10267BEC ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
20:20:48.0227 2604 RTL8167 - ok
20:20:48.0243 2604 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
20:20:48.0244 2604 s3cap - ok
20:20:48.0246 2604 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
20:20:48.0247 2604 SamSs - ok
20:20:48.0249 2604 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
20:20:48.0251 2604 sbp2port - ok
20:20:48.0255 2604 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
20:20:48.0258 2604 SCardSvr - ok
20:20:48.0260 2604 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
20:20:48.0260 2604 scfilter - ok
20:20:48.0271 2604 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
20:20:48.0280 2604 Schedule - ok
20:20:48.0283 2604 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
20:20:48.0284 2604 SCPolicySvc - ok
20:20:48.0287 2604 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
20:20:48.0289 2604 SDRSVC - ok
20:20:48.0291 2604 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
20:20:48.0292 2604 secdrv - ok
20:20:48.0308 2604 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
20:20:48.0309 2604 seclogon - ok
20:20:48.0312 2604 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
20:20:48.0313 2604 SENS - ok
20:20:48.0315 2604 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
20:20:48.0316 2604 SensrSvc - ok
20:20:48.0318 2604 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
20:20:48.0319 2604 Serenum - ok
20:20:48.0321 2604 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
20:20:48.0322 2604 Serial - ok
20:20:48.0324 2604 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
20:20:48.0325 2604 sermouse - ok
20:20:48.0331 2604 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
20:20:48.0332 2604 SessionEnv - ok
20:20:48.0334 2604 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
20:20:48.0335 2604 sffdisk - ok
20:20:48.0337 2604 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
20:20:48.0337 2604 sffp_mmc - ok
20:20:48.0339 2604 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
20:20:48.0339 2604 sffp_sd - ok
20:20:48.0341 2604 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
20:20:48.0342 2604 sfloppy - ok
20:20:48.0347 2604 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
20:20:48.0350 2604 SharedAccess - ok
20:20:48.0355 2604 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:20:48.0359 2604 ShellHWDetection - ok
20:20:48.0373 2604 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
20:20:48.0373 2604 SiSRaid2 - ok
20:20:48.0376 2604 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
20:20:48.0377 2604 SiSRaid4 - ok
20:20:48.0404 2604 [ 388AE59FE75F1B959DFA0900923C61BB ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
20:20:48.0429 2604 Skype C2C Service - ok
20:20:48.0438 2604 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
20:20:48.0439 2604 SkypeUpdate - ok
20:20:48.0442 2604 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
20:20:48.0443 2604 Smb - ok
20:20:48.0447 2604 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
20:20:48.0448 2604 SNMPTRAP - ok
20:20:48.0450 2604 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
20:20:48.0451 2604 spldr - ok
20:20:48.0458 2604 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
20:20:48.0463 2604 Spooler - ok
20:20:48.0494 2604 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
20:20:48.0522 2604 sppsvc - ok
20:20:48.0525 2604 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
20:20:48.0527 2604 sppuinotify - ok
20:20:48.0535 2604 [ 06B9A7BA94356EC5207C5DDB59540378 ] SRTSP C:\Windows\System32\Drivers\N360x64\0602010.005\SRTSP64.SYS
20:20:48.0541 2604 SRTSP - ok
20:20:48.0544 2604 [ FBB8945A61E55A2345D12487C74A9D76 ] SRTSPX C:\Windows\system32\drivers\N360x64\0602010.005\SRTSPX64.SYS
20:20:48.0544 2604 SRTSPX - ok
20:20:48.0550 2604 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
20:20:48.0555 2604 srv - ok
20:20:48.0568 2604 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
20:20:48.0571 2604 srv2 - ok
20:20:48.0575 2604 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
20:20:48.0577 2604 srvnet - ok
20:20:48.0580 2604 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
20:20:48.0583 2604 SSDPSRV - ok
20:20:48.0585 2604 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
20:20:48.0586 2604 SstpSvc - ok
20:20:48.0589 2604 Steam Client Service - ok
20:20:48.0595 2604 [ F0359F7CE712D69ACEF0886BDB4792ED ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
20:20:48.0598 2604 Stereo Service - ok
20:20:48.0601 2604 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
20:20:48.0602 2604 stexstor - ok
20:20:48.0609 2604 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
20:20:48.0614 2604 stisvc - ok
20:20:48.0629 2604 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
20:20:48.0630 2604 storflt - ok
20:20:48.0632 2604 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
20:20:48.0633 2604 storvsc - ok
20:20:48.0635 2604 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
20:20:48.0635 2604 swenum - ok
20:20:48.0643 2604 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
20:20:48.0648 2604 SwitchBoard - ok
20:20:48.0654 2604 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
20:20:48.0659 2604 swprv - ok
20:20:48.0665 2604 [ 8B2430762099598DA40686F754632EFD ] SymDS C:\Windows\system32\drivers\N360x64\0602010.005\SYMDS64.SYS
20:20:48.0669 2604 SymDS - ok
20:20:48.0690 2604 [ F90C7A190399165D3AB2245048D34786 ] SymEFA C:\Windows\system32\drivers\N360x64\0602010.005\SYMEFA64.SYS
20:20:48.0699 2604 SymEFA - ok
20:20:48.0718 2604 [ 898BB48C797483420DF523B2BBC1ECDB ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
20:20:48.0719 2604 SymEvent - ok
20:20:48.0723 2604 [ 5013A76CAAA1D7CF1C55214B490B4E35 ] SymIRON C:\Windows\system32\drivers\N360x64\0602010.005\Ironx64.SYS
20:20:48.0725 2604 SymIRON - ok
20:20:48.0730 2604 [ 3911BD0E68C010E5438A87706ABBE9AB ] SymNetS C:\Windows\System32\Drivers\N360x64\0602010.005\SYMNETS.SYS
20:20:48.0734 2604 SymNetS - ok
20:20:48.0734 2604 [ C3A39C4079305480972D29C44B868C78 ] Synth3dVsc C:\Windows\system32\drivers\synth3dvsc.sys
20:20:48.0734 2604 Synth3dVsc - ok
20:20:48.0749 2604 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
20:20:48.0765 2604 SysMain - ok
20:20:48.0780 2604 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:20:48.0780 2604 TabletInputService - ok
20:20:48.0780 2604 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
20:20:48.0780 2604 TapiSrv - ok
20:20:48.0780 2604 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
20:20:48.0780 2604 TBS - ok
20:20:48.0812 2604 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
20:20:48.0827 2604 Tcpip - ok
20:20:48.0858 2604 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
20:20:48.0874 2604 TCPIP6 - ok
20:20:48.0874 2604 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
20:20:48.0874 2604 tcpipreg - ok
20:20:48.0874 2604 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
20:20:48.0874 2604 TDPIPE - ok
20:20:48.0890 2604 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
20:20:48.0890 2604 TDTCP - ok
20:20:48.0890 2604 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
20:20:48.0890 2604 tdx - ok
20:20:48.0890 2604 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
20:20:48.0890 2604 TermDD - ok
20:20:48.0890 2604 [ 2B5BDFF688EC9871D7EC5837833374E9 ] terminpt C:\Windows\system32\drivers\terminpt.sys
20:20:48.0890 2604 terminpt - ok
20:20:48.0905 2604 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
20:20:48.0905 2604 TermService - ok
20:20:48.0905 2604 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
20:20:48.0905 2604 Themes - ok
20:20:48.0921 2604 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
20:20:48.0921 2604 THREADORDER - ok
20:20:48.0936 2604 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
20:20:48.0936 2604 TrkWks - ok
20:20:48.0936 2604 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:20:48.0936 2604 TrustedInstaller - ok
20:20:48.0936 2604 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
20:20:48.0936 2604 tssecsrv - ok
20:20:48.0936 2604 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
20:20:48.0952 2604 TsUsbFlt - ok
20:20:48.0952 2604 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
20:20:48.0952 2604 TsUsbGD - ok
20:20:48.0952 2604 [ E1748D04AE40118B62BC18AC86032192 ] tsusbhub C:\Windows\system32\drivers\tsusbhub.sys
20:20:48.0952 2604 tsusbhub - ok
20:20:48.0952 2604 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
20:20:48.0952 2604 tunnel - ok
20:20:48.0952 2604 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
20:20:48.0952 2604 uagp35 - ok
20:20:48.0968 2604 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
20:20:48.0968 2604 udfs - ok
20:20:48.0968 2604 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
20:20:48.0968 2604 UI0Detect - ok
20:20:48.0968 2604 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
20:20:48.0968 2604 uliagpkx - ok
20:20:48.0983 2604 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
20:20:48.0999 2604 umbus - ok
20:20:49.0014 2604 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
20:20:49.0014 2604 UmPass - ok
20:20:49.0030 2604 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
20:20:49.0030 2604 UmRdpService - ok
20:20:49.0030 2604 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
20:20:49.0030 2604 upnphost - ok
20:20:49.0046 2604 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
20:20:49.0046 2604 usbaudio - ok
20:20:49.0061 2604 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
20:20:49.0061 2604 usbccgp - ok
20:20:49.0061 2604 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
20:20:49.0061 2604 usbcir - ok
20:20:49.0061 2604 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
20:20:49.0061 2604 usbehci - ok
20:20:49.0061 2604 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
20:20:49.0077 2604 usbhub - ok
20:20:49.0077 2604 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
20:20:49.0077 2604 usbohci - ok
20:20:49.0077 2604 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\drivers\usbprint.sys
20:20:49.0077 2604 usbprint - ok
20:20:49.0077 2604 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:20:49.0077 2604 USBSTOR - ok
20:20:49.0077 2604 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
20:20:49.0077 2604 usbuhci - ok
20:20:49.0092 2604 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
20:20:49.0092 2604 UxSms - ok
20:20:49.0092 2604 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
20:20:49.0092 2604 VaultSvc - ok
20:20:49.0092 2604 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
20:20:49.0092 2604 vdrvroot - ok
20:20:49.0092 2604 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
20:20:49.0108 2604 vds - ok
20:20:49.0124 2604 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
20:20:49.0124 2604 vga - ok
20:20:49.0124 2604 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
20:20:49.0124 2604 VgaSave - ok
20:20:49.0124 2604 VGPU - ok
20:20:49.0124 2604 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
20:20:49.0124 2604 vhdmp - ok
20:20:49.0124 2604 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
20:20:49.0124 2604 viaide - ok
20:20:49.0139 2604 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
20:20:49.0139 2604 vmbus - ok
20:20:49.0139 2604 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
20:20:49.0139 2604 VMBusHID - ok
20:20:49.0139 2604 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
20:20:49.0139 2604 volmgr - ok
20:20:49.0139 2604 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
20:20:49.0155 2604 volmgrx - ok
20:20:49.0155 2604 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
20:20:49.0155 2604 volsnap - ok
20:20:49.0155 2604 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
20:20:49.0155 2604 vsmraid - ok
20:20:49.0202 2604 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
20:20:49.0217 2604 VSS - ok
20:20:49.0217 2604 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
20:20:49.0217 2604 vwifibus - ok
20:20:49.0233 2604 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
20:20:49.0233 2604 W32Time - ok
20:20:49.0248 2604 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
20:20:49.0248 2604 WacomPen - ok
20:20:49.0248 2604 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
20:20:49.0248 2604 WANARP - ok
20:20:49.0248 2604 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
20:20:49.0248 2604 Wanarpv6 - ok
20:20:49.0264 2604 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
20:20:49.0280 2604 WatAdminSvc - ok
20:20:49.0280 2604 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
20:20:49.0295 2604 wbengine - ok
20:20:49.0311 2604 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
20:20:49.0311 2604 WbioSrvc - ok
20:20:49.0311 2604 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
20:20:49.0311 2604 wcncsvc - ok
20:20:49.0326 2604 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:20:49.0326 2604 WcsPlugInService - ok
20:20:49.0342 2604 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
20:20:49.0358 2604 Wd - ok
20:20:49.0373 2604 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
20:20:49.0373 2604 Wdf01000 - ok
20:20:49.0389 2604 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
20:20:49.0389 2604 WdiServiceHost - ok
20:20:49.0389 2604 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
20:20:49.0389 2604 WdiSystemHost - ok
20:20:49.0389 2604 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
20:20:49.0389 2604 WebClient - ok
20:20:49.0404 2604 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
20:20:49.0404 2604 Wecsvc - ok
20:20:49.0404 2604 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
20:20:49.0404 2604 wercplsupport - ok
20:20:49.0404 2604 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
20:20:49.0404 2604 WerSvc - ok
20:20:49.0404 2604 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
20:20:49.0404 2604 WfpLwf - ok
20:20:49.0404 2604 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
20:20:49.0420 2604 WIMMount - ok
20:20:49.0436 2604 WinDefend - ok
20:20:49.0436 2604 WinHttpAutoProxySvc - ok
20:20:49.0436 2604 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
20:20:49.0436 2604 Winmgmt - ok
20:20:49.0451 2604 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
20:20:49.0482 2604 WinRM - ok
20:20:49.0482 2604 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
20:20:49.0498 2604 Wlansvc - ok
20:20:49.0514 2604 [ 98F138897EF4246381D197CB81846D62 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:20:49.0529 2604 wlidsvc - ok
20:20:49.0560 2604 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
20:20:49.0560 2604 WmiAcpi - ok
20:20:49.0560 2604 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
20:20:49.0560 2604 wmiApSrv - ok
20:20:49.0560 2604 WMPNetworkSvc - ok
20:20:49.0560 2604 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
20:20:49.0560 2604 WPCSvc - ok
20:20:49.0560 2604 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
20:20:49.0576 2604 WPDBusEnum - ok
20:20:49.0576 2604 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
20:20:49.0576 2604 ws2ifsl - ok
20:20:49.0576 2604 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
20:20:49.0576 2604 wscsvc - ok
20:20:49.0576 2604 WSearch - ok
20:20:49.0607 2604 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
20:20:49.0623 2604 wuauserv - ok
20:20:49.0623 2604 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
20:20:49.0623 2604 WudfPf - ok
20:20:49.0623 2604 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
20:20:49.0638 2604 WUDFRd - ok
20:20:49.0638 2604 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
20:20:49.0638 2604 wudfsvc - ok
20:20:49.0638 2604 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
20:20:49.0638 2604 WwanSvc - ok
20:20:49.0654 2604 ================ Scan global ===============================
20:20:49.0654 2604 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
20:20:49.0654 2604 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
20:20:49.0654 2604 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
20:20:49.0654 2604 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
20:20:49.0670 2604 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
20:20:49.0670 2604 [Global] - ok
20:20:49.0670 2604 ================ Scan MBR ==================================
20:20:49.0685 2604 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
20:20:49.0857 2604 \Device\Harddisk0\DR0 - ok
20:20:49.0857 2604 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
20:20:49.0935 2604 \Device\Harddisk1\DR1 - ok
20:20:49.0935 2604 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk2\DR2
20:20:49.0966 2604 \Device\Harddisk2\DR2 - ok
20:20:49.0966 2604 ================ Scan VBR ==================================
20:20:49.0966 2604 [ 5445B16AC3781F77FE495E82A72EDE1D ] \Device\Harddisk0\DR0\Partition1
20:20:49.0966 2604 \Device\Harddisk0\DR0\Partition1 - ok
20:20:49.0982 2604 [ 6D2F97C95E6C662C9BA10BD9D902992D ] \Device\Harddisk1\DR1\Partition1
20:20:49.0982 2604 \Device\Harddisk1\DR1\Partition1 - ok
20:20:49.0997 2604 [ 6047C1B4721FBACF086167924CED6D70 ] \Device\Harddisk2\DR2\Partition1
20:20:49.0997 2604 \Device\Harddisk2\DR2\Partition1 - ok
20:20:49.0997 2604 ============================================================
20:20:49.0997 2604 Scan finished
20:20:49.0997 2604 ============================================================
20:20:49.0997 2600 Detected object count: 0
20:20:49.0997 2600 Actual detected object count: 0
20:21:40.0120 2904 Deinitialize success

sorry about that.

#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,220 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:09 PM

Posted 22 November 2012 - 01:06 PM

I think you still have remnants of Norton on here and it may be blocking updates.
b]Run the Norton Removal Tool[/b]
We are going to remove the left-overs from your Norton installation. The Norton Removal Tool uninstalls all Norton 2003 and later products, Norton 360, and Norton SystemWorks 12.0 from your computer. If you plan to continue to use your Norton products again in the future, you should ensure that you have safely stored your product key.

  • Download the Norton Removal tool to your Desktop.
  • Double click the Norton Removal Tool icon.
  • Allow any security warnings and type your administrator password if required.
  • Follow the instructions given.
  • Restart your PC


If still no joy it may be Spybot's Teatimer.
We need to disable Spybot S&D's "TeaTimer"
TeaTimer works by preventing ANY changes to the system. It will attempt to undo any fixes we run, because it blocks these fixes from running.

In order to safeguard your system from problems that can be brought on by a half finished fix, we need to disable TeaTimer. We can reenable it when we're done if you like.
  • Open SpyBot Search and Destroy by going to Start -> All Programs -> Spybot Search and Destroy -> Spybot Search and Destroy.
  • If prompted with a legal dialog, accept the warning.
  • Click Mode > Advanced Mode.
    Posted Image
  • You may be presented with a warning dialog. If so, click Yes
  • Click on Tools and then Resident
    Posted Image
  • Uncheck this checkbox: "Resident TeaTimer {protection of over-all system settings) active"
  • Close/Exit Spybot Search and Destroy

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 Osiris1825

Osiris1825
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:06:09 PM

Posted 22 November 2012 - 01:47 PM

Thanks for the reply, When I try to run the Norton Remover I get the message "This product requires Microsoft Installer(MSI) verson 1.1 or greater." Also for Spyboy SND both boxes are unchecked already in the resident tab.

Edited by Osiris1825, 22 November 2012 - 01:52 PM.


#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,220 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:09 PM

Posted 22 November 2012 - 01:52 PM

Try again from here
http://www.bleepingcomputer.com/download/norton-removal-tool/
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 Osiris1825

Osiris1825
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:06:09 PM

Posted 22 November 2012 - 02:00 PM

I'm getting the same thing, I think it has deleted some of my OS files or something because I noticed earlier today I can't access my personalize window. When I try to open that I get an error dialoge saying "Windows cannot find ". Make sure you typed the name correctly, and then try again."

#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,220 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:09 PM

Posted 22 November 2012 - 02:04 PM

OK, let be safe and not bork the unit.

Let's get a deeper look. Please follow this Preparation Guide

and post in a new topic.
Include this link back to here...

http://www.bleepingcomputer.com/forums/topic475887.html/page__pid__2903008#entry2903008

Let me know if all went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users