Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Search Hijacked


  • Please log in to reply
7 replies to this topic

#1 hrolsons

hrolsons

  • Members
  • 226 posts
  • OFFLINE
  •  
  • Local time:03:12 AM

Posted 08 December 2012 - 08:06 PM

When I type "blue" into the search bar in Internet Explorer, it's now bringing me to "Google Custom Search" instead of the normal Google. Here is the address:

http://www.google.com/cse?cx=partner-pub-3794288947762788%3A7941509802&ie=UTF-8&sa=Search&siteurl=www.google.com%2Fcse%2Fhome%3Fcx%3Dpartner-pub-3794288947762788%3A7941509802&q=font+blue+screen#gsc.tab=0&gsc.q=blue

Can someone help me run through some scans?

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,906 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:12 AM

Posted 08 December 2012 - 09:28 PM

Hello and welcome hrolsons

We can run some scans and see wgat we get..
Were you searching blue as in you are having a blue screen?

Some system info first.

Please download MiniToolBox, save it to your desktop and run it.Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices
  • List Users, Partitions and Memory size.
  • List Minidump Files

Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run. Note: When using "Reset FF Proxy Settings" option Firefox should be closed.

>>>

Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results.


>>>>
ADW Cleaner

Please download AdwCleaner by Xplode onto your desktop.

  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Delete.
  • Confirm each time with Ok.
  • You will be prompted to restart your computer. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.

>>>>>>

ESET ONLINE


I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image
      icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.

NOTE:Sometimes if ESET finds no infections it will not create a log.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 hrolsons

hrolsons
  • Topic Starter

  • Members
  • 226 posts
  • OFFLINE
  •  
  • Local time:03:12 AM

Posted 09 December 2012 - 06:01 PM

MiniToolBox by Farbar Version: 25-11-2012
Ran by Derek (administrator) on 09-12-2012 at 15:22:18
Running from "C:\Users\Derek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\29LFFX2W"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

# ::1 localhost

========================= IP Configuration: ================================

Realtek PCIe GBE Family Controller = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : DLO-First-Build
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : 50-E5-49-C8-13-3D
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IPv4 Address. . . . . . . . . . . : 10.1.10.11(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Saturday, December 08, 2012 6:02:33 PM
Lease Expires . . . . . . . . . . : Sunday, December 16, 2012 1:02:07 PM
Default Gateway . . . . . . . . . : 10.1.10.1
DHCP Server . . . . . . . . . . . : 10.1.10.1
DNS Servers . . . . . . . . . . . : 10.1.10.1
NetBIOS over Tcpip. . . . . . . . : Enabled
Server: UnKnown
Address: 10.1.10.1

Name: google.com
Addresses: 2607:f8b0:400f:801::1001
74.125.225.197
74.125.225.198
74.125.225.193
74.125.225.201
74.125.225.206
74.125.225.194
74.125.225.192
74.125.225.195
74.125.225.196
74.125.225.199
74.125.225.200


Pinging google.com [74.125.225.200] with 32 bytes of data:
Reply from 74.125.225.200: bytes=32 time=14ms TTL=55
Reply from 74.125.225.200: bytes=32 time=23ms TTL=55

Ping statistics for 74.125.225.200:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 14ms, Maximum = 23ms, Average = 18ms
Server: UnKnown
Address: 10.1.10.1

Name: yahoo.com
Addresses: 72.30.38.140
98.139.183.24
98.138.253.109


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=60ms TTL=50
Reply from 98.138.253.109: bytes=32 time=61ms TTL=50

Ping statistics for 98.138.253.109:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 60ms, Maximum = 61ms, Average = 60ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
11...50 e5 49 c8 13 3d ......Realtek PCIe GBE Family Controller
1...........................Software Loopback Interface 1
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 10.1.10.1 10.1.10.11 10
10.1.10.0 255.255.255.0 On-link 10.1.10.11 266
10.1.10.11 255.255.255.255 On-link 10.1.10.11 266
10.1.10.255 255.255.255.255 On-link 10.1.10.11 266
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 10.1.10.11 266
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 10.1.10.11 266
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
1 306 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (12/09/2012 00:30:54 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (12/08/2012 06:02:45 PM) (Source: Report Server Windows Service (MSSQLSERVER)) (User: )
Description: Report Server Windows Service (MSSQLSERVER) cannot connect to the report server database.

Error: (12/08/2012 06:02:40 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/08/2012 03:02:38 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/08/2012 03:02:37 PM) (Source: Report Server Windows Service (MSSQLSERVER)) (User: )
Description: Report Server Windows Service (MSSQLSERVER) cannot connect to the report server database.

Error: (12/08/2012 02:46:40 PM) (Source: Report Server Windows Service (MSSQLSERVER)) (User: )
Description: Report Server Windows Service (MSSQLSERVER) cannot connect to the report server database.

Error: (12/08/2012 02:46:38 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/08/2012 00:41:15 PM) (Source: Report Server Windows Service (MSSQLSERVER)) (User: )
Description: Report Server Windows Service (MSSQLSERVER) cannot connect to the report server database.

Error: (12/08/2012 00:41:12 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/08/2012 00:39:23 PM) (Source: Report Server Windows Service (MSSQLSERVER)) (User: )
Description: Report Server Windows Service (MSSQLSERVER) cannot connect to the report server database.


System errors:
=============
Error: (12/08/2012 06:03:35 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (12/08/2012 06:02:30 PM) (Source: Service Control Manager) (User: )
Description: The AODDriver4.01 service failed to start due to the following error:
%%3

Error: (12/08/2012 03:03:51 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (12/08/2012 03:02:12 PM) (Source: Service Control Manager) (User: )
Description: The AODDriver4.01 service failed to start due to the following error:
%%3

Error: (12/08/2012 03:02:11 PM) (Source: Microsoft Antimalware) (User: )
Description: %60 has encountered an error trying to load signatures and will attempt reverting back to a known-good set of signatures.

Signatures Attempted: %24

Error Code: 0x80070002

Error description: The system cannot find the file specified.

Signature version: 1.141.1285.0;1.141.1285.0

Engine version: %600

Error: (12/08/2012 02:47:30 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (12/08/2012 02:46:25 PM) (Source: Service Control Manager) (User: )
Description: The AODDriver4.01 service failed to start due to the following error:
%%3

Error: (12/08/2012 02:46:25 PM) (Source: BugCheck) (User: )
Description: 0x00000050 (0xfffff900c1c83000, 0x0000000000000001, 0xfffff960000f23b4, 0x0000000000000000)C:\Windows\MEMORY.DMP120812-11122-01

Error: (12/08/2012 02:44:43 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (12/08/2012 02:44:43 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068


Microsoft Office Sessions:
=========================
Error: (12/09/2012 00:30:54 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe

Error: (12/08/2012 06:02:45 PM) (Source: Report Server Windows Service (MSSQLSERVER))(User: )
Description: Report Server Windows Service (MSSQLSERVER)

Error: (12/08/2012 06:02:40 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/08/2012 03:02:38 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/08/2012 03:02:37 PM) (Source: Report Server Windows Service (MSSQLSERVER))(User: )
Description: Report Server Windows Service (MSSQLSERVER)

Error: (12/08/2012 02:46:40 PM) (Source: Report Server Windows Service (MSSQLSERVER))(User: )
Description: Report Server Windows Service (MSSQLSERVER)

Error: (12/08/2012 02:46:38 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/08/2012 00:41:15 PM) (Source: Report Server Windows Service (MSSQLSERVER))(User: )
Description: Report Server Windows Service (MSSQLSERVER)

Error: (12/08/2012 00:41:12 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/08/2012 00:39:23 PM) (Source: Report Server Windows Service (MSSQLSERVER))(User: )
Description: Report Server Windows Service (MSSQLSERVER)


=========================== Installed Programs ============================

Adobe AIR (Version: 3.5.0.600)
Adobe Flash Player 11 ActiveX (Version: 11.5.502.110)
Adobe Reader XI (Version: 11.0.00)
AirPort (Version: 5.6.1.2)
AMD Accelerated Video Transcoding (Version: 12.5.100.20928)
AMD APP SDK Runtime (Version: 10.0.1016.4)
AMD Catalyst Install Manager (Version: 8.0.891.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Fuel (Version: 2012.0928.1532.26058)
AMD Media Foundation Decoders (Version: 1.0.70928.1539)
AMD Steady Video Plug-In (Version: 2.04.0000)
AMD VISION Engine Control Center (Version: 2012.0928.1532.26058)
Apple Application Support (Version: 2.2.2)
Apple Mobile Device Support (Version: 6.0.0.59)
Apple Software Update (Version: 2.1.3.127)
Bing Desktop (Version: 1.0.45.0)
Bonjour (Version: 3.0.0.10)
CANON iMAGE GATEWAY MyCamera Download Plugin (Version: 3.1.1.2)
CANON iMAGE GATEWAY Task for ZoomBrowser EX (Version: 1.9.0.9)
Canon MOV Decoder (Version: 1.8.0.7)
Canon MOV Encoder (Version: 1.6.0.1)
Canon MovieEdit Task for ZoomBrowser EX (Version: 3.7.0.4)
Canon Utilities Digital Photo Professional 3.10 (Version: 3.10.2.0)
Canon Utilities EOS Sample Music (Version: 1.0.0.204)
Canon Utilities EOS Utility (Version: 2.10.2.0)
Canon Utilities EOS Video Snapshot Task for ZoomBrowser EX (Version: 1.0.0.10)
Canon Utilities Movie Uploader for YouTube (Version: 1.2.0.7)
Canon Utilities PhotoStitch (Version: 3.1.22.46)
Canon Utilities Picture Style Editor (Version: 1.9.0.0)
Canon Utilities ZoomBrowser EX (Version: 6.7.0.24)
Canon ZoomBrowser EX Memory Card Utility (Version: 1.5.0.9)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (Version: 2012.0928.1532.26058)
Catalyst Control Center InstallProxy (Version: 2012.0928.1532.26058)
Catalyst Control Center Localization All (Version: 2012.0928.1532.26058)
ccc-utility64 (Version: 2012.0928.1532.26058)
CCC Help Chinese Standard (Version: 2012.0928.1531.26058)
CCC Help Chinese Traditional (Version: 2012.0928.1531.26058)
CCC Help Czech (Version: 2012.0928.1531.26058)
CCC Help Danish (Version: 2012.0928.1531.26058)
CCC Help Dutch (Version: 2012.0928.1531.26058)
CCC Help English (Version: 2012.0928.1531.26058)
CCC Help Finnish (Version: 2012.0928.1531.26058)
CCC Help French (Version: 2012.0928.1531.26058)
CCC Help German (Version: 2012.0928.1531.26058)
CCC Help Greek (Version: 2012.0928.1531.26058)
CCC Help Hungarian (Version: 2012.0928.1531.26058)
CCC Help Italian (Version: 2012.0928.1531.26058)
CCC Help Japanese (Version: 2012.0928.1531.26058)
CCC Help Korean (Version: 2012.0928.1531.26058)
CCC Help Norwegian (Version: 2012.0928.1531.26058)
CCC Help Polish (Version: 2012.0928.1531.26058)
CCC Help Portuguese (Version: 2012.0928.1531.26058)
CCC Help Russian (Version: 2012.0928.1531.26058)
CCC Help Spanish (Version: 2012.0928.1531.26058)
CCC Help Swedish (Version: 2012.0928.1531.26058)
CCC Help Thai (Version: 2012.0928.1531.26058)
CCC Help Turkish (Version: 2012.0928.1531.26058)
CCleaner (Version: 3.24)
D3DX10 (Version: 15.4.2368.0902)
eReg (Version: 1.20.138.34)
ESET Online Scanner v3
Etron USB3.0 Host Controller (Version: 0.104)
FlipShare (Version: 5.12.3.0)
GDR 2550 for SQL Server 2008 R2 (KB2716440) (64-bit) (Version: 10.51.2550.0)
iTunes (Version: 10.7.0.21)
Java Auto Updater (Version: 2.0.7.2)
Java™ 6 Update 37 (Version: 6.0.370)
Logitech Flow Scroll 4.0 (Version: 4.00.33)
Logitech SetPoint 6.32 (Version: 6.32.20)
Logitech Unifying Software 2.00 (Version: 2.00.43)
LogMeIn (Version: 4.1.2138)
Malwarebytes Anti-Malware version 1.65.1.1000 (Version: 1.65.1.1000)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2000 Professional (Version: 9.00.2720)
Microsoft Office 2003 Web Components (Version: 12.0.6213.1000)
Microsoft Report Viewer Redistributable 2008 (KB971119) (Version: 9.0.30731)
Microsoft Report Viewer Redistributable 2008 SP1
Microsoft Security Client (Version: 4.1.0522.0)
Microsoft Security Essentials (Version: 4.1.522.0)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft SQL Server 2008 R2 (64-bit)
Microsoft SQL Server 2008 R2 Books Online (Version: 10.50.1600.1)
Microsoft SQL Server 2008 R2 Native Client (Version: 10.51.2500.0)
Microsoft SQL Server 2008 R2 Policies (Version: 10.50.1600.1)
Microsoft SQL Server 2008 R2 RsFx Driver (Version: 10.51.2500.0)
Microsoft SQL Server 2008 R2 Setup (English) (Version: 10.51.2550.0)
Microsoft SQL Server 2008 Setup Support Files (Version: 10.1.2731.0)
Microsoft SQL Server Browser (Version: 10.51.2500.0)
Microsoft SQL Server Compact 3.5 SP2 ENU (Version: 3.5.8080.0)
Microsoft SQL Server Compact 3.5 SP2 Query Tools ENU (Version: 3.5.8080.0)
Microsoft SQL Server System CLR Types (x64) (Version: 10.51.2500.0)
Microsoft SQL Server VSS Writer (Version: 10.51.2500.0)
Microsoft Sync Framework Runtime v1.0 (x64) (Version: 1.0.1215.0)
Microsoft Sync Services for ADO.NET v2.0 (x64) (Version: 2.0.1215.0)
Microsoft VC9 runtime libraries (Version: 2.0.0)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual Studio 2008 Shell (integrated mode) - ENU (Version: 9.0.30729)
Microsoft Visual Studio 6.0 Professional Edition
Microsoft Visual Studio Tools for Applications 2.0 - ENU (Version: 9.0.35191)
Microsoft Web Publishing Wizard 1.53
Mozilla Firefox (3.0.1) (Version: 3.0.1 (en-US))
MSVCRT (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML4 Parser (Version: 1.0.0)
ON_OFF Charge B11.0110.1 (Version: 1.00.0001)
Pandora (Version: 2.0.6)
QuickTime (Version: 7.72.80.56)
Realtek Ethernet Controller Driver (Version: 7.38.113.2011)
Realtek HDMI Audio Driver for ATI (Version: 6.0.1.6409)
Realtek High Definition Audio Driver (Version: 6.0.1.6433)
Rise Of Legends (Version: 1.00.0000)
Service Pack 1 for SQL Server 2008 R2 (KB2528583) (64-bit) (Version: 10.51.2500.0)
SQL Server 2008 R2 Reporting Services (Version: 10.50.1600.1)
SQL Server 2008 R2 SP1 Analysis Services (Version: 10.51.2500.0)
SQL Server 2008 R2 SP1 BI Development Studio (Version: 10.51.2500.0)
SQL Server 2008 R2 SP1 Client Tools (Version: 10.51.2500.0)
SQL Server 2008 R2 SP1 Common Files (Version: 10.51.2500.0)
SQL Server 2008 R2 SP1 Database Engine Services (Version: 10.51.2500.0)
SQL Server 2008 R2 SP1 Database Engine Shared (Version: 10.51.2500.0)
SQL Server 2008 R2 SP1 Full text search (Version: 10.51.2500.0)
SQL Server 2008 R2 SP1 Integration Services (Version: 10.51.2500.0)
SQL Server 2008 R2 SP1 Management Studio (Version: 10.51.2500.0)
SQL Server 2008 R2 SP1 Reporting Services (Version: 10.51.2500.0)
Sql Server Customer Experience Improvement Program (Version: 10.50.1600.1)
SUPERAntiSpyware (Version: 5.6.1010)
TurboTax 2011
TurboTax 2011 wcoiper (Version: 011.000.1697)
TurboTax 2011 WinPerFedFormset (Version: 011.000.3351)
TurboTax 2011 WinPerReleaseEngine (Version: 011.000.0496)
TurboTax 2011 WinPerTaxSupport (Version: 011.000.0222)
TurboTax 2011 wrapper (Version: 011.000.0121)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
ViewSonic Monitor Drivers x64
ViewSonic Windows Vista x64 Signed Files
WebDrive (Version: 10.10.2567)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
World of Warcraft (Version: 5.1.0.16309)

========================= Devices: ================================

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft Teredo Tunneling Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: AODDriver4.01
Description: AODDriver4.01
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: AODDriver4.01
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


========================= Memory info: ===================================

Percentage of memory in use: 21%
Total physical RAM: 16365.24 MB
Available physical RAM: 12800.24 MB
Total Pagefile: 32728.68 MB
Available Pagefile: 28199.73 MB
Total Virtual: 4095.88 MB
Available Virtual: 3951.89 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:55.8 GB) (Free:2.01 GB) NTFS
2 Drive d: (AOE2) (CDROM) (Total:0.31 GB) (Free:0 GB) CDFS
3 Drive e: (1THDD) (Fixed) (Total:931.51 GB) (Free:737.7 GB) NTFS
4 Drive f: (SSD2) (Fixed) (Total:55.9 GB) (Free:55.78 GB) NTFS

========================= Users: ========================================

User accounts for \\DLO-FIRST-BUILD

Administrator Derek Guest
LogMeInRemoteUser

========================= Minidump Files ==================================

No minidump file found


**** End of log ****
15:23:25.0705 2036 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
15:23:26.0115 2036 ============================================================
15:23:26.0115 2036 Current date / time: 2012/12/09 15:23:26.0115
15:23:26.0115 2036 SystemInfo:
15:23:26.0115 2036
15:23:26.0115 2036 OS Version: 6.1.7601 ServicePack: 1.0
15:23:26.0115 2036 Product type: Workstation
15:23:26.0115 2036 ComputerName: DLO-FIRST-BUILD
15:23:26.0115 2036 UserName: Derek
15:23:26.0115 2036 Windows directory: C:\Windows
15:23:26.0115 2036 System windows directory: C:\Windows
15:23:26.0115 2036 Running under WOW64
15:23:26.0115 2036 Processor architecture: Intel x64
15:23:26.0115 2036 Number of processors: 8
15:23:26.0115 2036 Page size: 0x1000
15:23:26.0115 2036 Boot type: Normal boot
15:23:26.0115 2036 ============================================================
15:23:26.0525 2036 Drive \Device\Harddisk1\DR1 - Size: 0xDF99E6000 (55.90 Gb), SectorSize: 0x200, Cylinders: 0x1E49, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
15:23:26.0535 2036 Drive \Device\Harddisk0\DR0 - Size: 0xDF99E6000 (55.90 Gb), SectorSize: 0x200, Cylinders: 0x1C81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:23:26.0545 2036 Drive \Device\Harddisk2\DR2 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:23:26.0645 2036 ============================================================
15:23:26.0645 2036 \Device\Harddisk1\DR1:
15:23:26.0645 2036 MBR partitions:
15:23:26.0645 2036 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
15:23:26.0645 2036 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x6F99800
15:23:26.0645 2036 \Device\Harddisk0\DR0:
15:23:26.0645 2036 MBR partitions:
15:23:26.0645 2036 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x6FCB800
15:23:26.0645 2036 \Device\Harddisk2\DR2:
15:23:26.0645 2036 MBR partitions:
15:23:26.0645 2036 \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705800
15:23:26.0645 2036 ============================================================
15:23:26.0645 2036 C: <-> \Device\Harddisk1\DR1\Partition2
15:23:26.0655 2036 E: <-> \Device\Harddisk2\DR2\Partition1
15:23:26.0655 2036 F: <-> \Device\Harddisk0\DR0\Partition1
15:23:26.0655 2036 ============================================================
15:23:26.0655 2036 Initialize success
15:23:26.0655 2036 ============================================================
15:23:47.0107 3528 ============================================================
15:23:47.0107 3528 Scan started
15:23:47.0107 3528 Mode: Manual; TDLFS;
15:23:47.0107 3528 ============================================================
15:23:47.0247 3528 ================ Scan system memory ========================
15:23:47.0247 3528 System memory - ok
15:23:47.0247 3528 ================ Scan services =============================
15:23:47.0297 3528 [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE E:\Program Files\SuperAntiSpyware\SASCORE64.EXE
15:23:47.0347 3528 !SASCORE - ok
15:23:47.0387 3528 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
15:23:47.0397 3528 1394ohci - ok
15:23:47.0397 3528 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
15:23:47.0407 3528 ACPI - ok
15:23:47.0407 3528 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
15:23:47.0407 3528 AcpiPmi - ok
15:23:47.0407 3528 [ B1EA9681502EE57F87DB71D726288A5B ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
15:23:47.0427 3528 AdobeARMservice - ok
15:23:47.0457 3528 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
15:23:47.0457 3528 AdobeFlashPlayerUpdateSvc - ok
15:23:47.0467 3528 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
15:23:47.0477 3528 adp94xx - ok
15:23:47.0477 3528 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
15:23:47.0487 3528 adpahci - ok
15:23:47.0487 3528 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
15:23:47.0497 3528 adpu320 - ok
15:23:47.0497 3528 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
15:23:47.0497 3528 AeLookupSvc - ok
15:23:47.0507 3528 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
15:23:47.0517 3528 AFD - ok
15:23:47.0517 3528 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
15:23:47.0517 3528 agp440 - ok
15:23:47.0517 3528 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
15:23:47.0527 3528 ALG - ok
15:23:47.0527 3528 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
15:23:47.0527 3528 aliide - ok
15:23:47.0527 3528 [ 4C1E3649C89C7D542CD18ECC5210099D ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
15:23:47.0537 3528 AMD External Events Utility - ok
15:23:47.0557 3528 AMD FUEL Service - ok
15:23:47.0567 3528 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
15:23:47.0567 3528 amdide - ok
15:23:47.0567 3528 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
15:23:47.0567 3528 amdiox64 - ok
15:23:47.0577 3528 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
15:23:47.0577 3528 AmdK8 - ok
15:23:47.0717 3528 [ A3C0A15B39F979E8F3EABA901D72ECD7 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
15:23:47.0837 3528 amdkmdag - ok
15:23:47.0847 3528 [ 20F3CD38B107C1BD747C0EA37D450165 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
15:23:47.0857 3528 amdkmdap - ok
15:23:47.0857 3528 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
15:23:47.0857 3528 AmdPPM - ok
15:23:47.0857 3528 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
15:23:47.0867 3528 amdsata - ok
15:23:47.0867 3528 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
15:23:47.0867 3528 amdsbs - ok
15:23:47.0877 3528 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
15:23:47.0877 3528 amdxata - ok
15:23:47.0877 3528 AODDriver - ok
15:23:47.0877 3528 AODDriver4.01 - ok
15:23:47.0897 3528 [ 5A528A540B1AEE8B1C77ED65094E8CDF ] AODDriver4.2 E:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
15:23:47.0907 3528 AODDriver4.2 - ok
15:23:47.0907 3528 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
15:23:47.0907 3528 AppID - ok
15:23:47.0917 3528 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
15:23:47.0917 3528 AppIDSvc - ok
15:23:47.0917 3528 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
15:23:47.0917 3528 Appinfo - ok
15:23:47.0927 3528 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:23:47.0927 3528 Apple Mobile Device - ok
15:23:47.0927 3528 [ 6BE11AD81D4527D299F0CB5F3731AABC ] AppleCharger C:\Windows\system32\DRIVERS\AppleCharger.sys
15:23:47.0937 3528 AppleCharger - ok
15:23:47.0947 3528 [ 95EF7247C50C7241FDAE39A9B3AFF4AE ] AppleChargerSrv C:\Windows\system32\AppleChargerSrv.exe
15:23:47.0957 3528 AppleChargerSrv - ok
15:23:47.0967 3528 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
15:23:47.0967 3528 arc - ok
15:23:47.0967 3528 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
15:23:47.0977 3528 arcsas - ok
15:23:47.0977 3528 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
15:23:47.0977 3528 AsyncMac - ok
15:23:47.0977 3528 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
15:23:47.0977 3528 atapi - ok
15:23:47.0997 3528 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:23:48.0007 3528 AudioEndpointBuilder - ok
15:23:48.0017 3528 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
15:23:48.0017 3528 AudioSrv - ok
15:23:48.0027 3528 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
15:23:48.0027 3528 AxInstSV - ok
15:23:48.0037 3528 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
15:23:48.0037 3528 b06bdrv - ok
15:23:48.0047 3528 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
15:23:48.0047 3528 b57nd60a - ok
15:23:48.0057 3528 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
15:23:48.0057 3528 BDESVC - ok
15:23:48.0057 3528 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
15:23:48.0057 3528 Beep - ok
15:23:48.0067 3528 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
15:23:48.0077 3528 BFE - ok
15:23:48.0087 3528 [ 1B63F2B7CA6B5290CC124CDD07520BC9 ] BingDesktopUpdate C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe
15:23:48.0087 3528 BingDesktopUpdate - ok
15:23:48.0097 3528 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
15:23:48.0107 3528 BITS - ok
15:23:48.0117 3528 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
15:23:48.0117 3528 blbdrive - ok
15:23:48.0127 3528 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
15:23:48.0127 3528 Bonjour Service - ok
15:23:48.0127 3528 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
15:23:48.0137 3528 bowser - ok
15:23:48.0137 3528 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
15:23:48.0137 3528 BrFiltLo - ok
15:23:48.0137 3528 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
15:23:48.0137 3528 BrFiltUp - ok
15:23:48.0147 3528 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
15:23:48.0147 3528 Browser - ok
15:23:48.0157 3528 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
15:23:48.0157 3528 Brserid - ok
15:23:48.0157 3528 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
15:23:48.0157 3528 BrSerWdm - ok
15:23:48.0167 3528 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
15:23:48.0167 3528 BrUsbMdm - ok
15:23:48.0167 3528 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
15:23:48.0167 3528 BrUsbSer - ok
15:23:48.0177 3528 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
15:23:48.0177 3528 BTHMODEM - ok
15:23:48.0177 3528 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
15:23:48.0177 3528 bthserv - ok
15:23:48.0187 3528 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
15:23:48.0187 3528 cdfs - ok
15:23:48.0187 3528 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
15:23:48.0197 3528 cdrom - ok
15:23:48.0197 3528 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
15:23:48.0197 3528 CertPropSvc - ok
15:23:48.0207 3528 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
15:23:48.0207 3528 circlass - ok
15:23:48.0207 3528 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
15:23:48.0217 3528 CLFS - ok
15:23:48.0217 3528 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:23:48.0217 3528 clr_optimization_v2.0.50727_32 - ok
15:23:48.0227 3528 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
15:23:48.0227 3528 clr_optimization_v2.0.50727_64 - ok
15:23:48.0237 3528 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:23:48.0237 3528 clr_optimization_v4.0.30319_32 - ok
15:23:48.0247 3528 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
15:23:48.0247 3528 clr_optimization_v4.0.30319_64 - ok
15:23:48.0247 3528 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
15:23:48.0247 3528 CmBatt - ok
15:23:48.0257 3528 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
15:23:48.0257 3528 cmdide - ok
15:23:48.0267 3528 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
15:23:48.0267 3528 CNG - ok
15:23:48.0267 3528 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
15:23:48.0277 3528 Compbatt - ok
15:23:48.0277 3528 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
15:23:48.0277 3528 CompositeBus - ok
15:23:48.0277 3528 COMSysApp - ok
15:23:48.0287 3528 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
15:23:48.0287 3528 crcdisk - ok
15:23:48.0287 3528 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
15:23:48.0297 3528 CryptSvc - ok
15:23:48.0307 3528 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
15:23:48.0307 3528 DcomLaunch - ok
15:23:48.0317 3528 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
15:23:48.0317 3528 defragsvc - ok
15:23:48.0327 3528 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
15:23:48.0327 3528 DfsC - ok
15:23:48.0337 3528 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
15:23:48.0337 3528 Dhcp - ok
15:23:48.0337 3528 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
15:23:48.0347 3528 discache - ok
15:23:48.0347 3528 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
15:23:48.0347 3528 Disk - ok
15:23:48.0357 3528 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
15:23:48.0357 3528 Dnscache - ok
15:23:48.0357 3528 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
15:23:48.0367 3528 dot3svc - ok
15:23:48.0367 3528 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
15:23:48.0367 3528 DPS - ok
15:23:48.0377 3528 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
15:23:48.0377 3528 drmkaud - ok
15:23:48.0387 3528 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
15:23:48.0397 3528 DXGKrnl - ok
15:23:48.0397 3528 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
15:23:48.0397 3528 EapHost - ok
15:23:48.0437 3528 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
15:23:48.0457 3528 ebdrv - ok
15:23:48.0467 3528 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
15:23:48.0467 3528 EFS - ok
15:23:48.0477 3528 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
15:23:48.0487 3528 ehRecvr - ok
15:23:48.0487 3528 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
15:23:48.0487 3528 ehSched - ok
15:23:48.0497 3528 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
15:23:48.0497 3528 elxstor - ok
15:23:48.0507 3528 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
15:23:48.0507 3528 ErrDev - ok
15:23:48.0507 3528 [ 84486624268E078255BC7AA47F0960BC ] etdrv C:\Windows\etdrv.sys
15:23:48.0517 3528 etdrv - ok
15:23:48.0517 3528 [ DB6AEC32FAF5BD002D9ED6C38692D42B ] EtronHub3 C:\Windows\system32\Drivers\EtronHub3.sys
15:23:48.0527 3528 EtronHub3 - ok
15:23:48.0527 3528 [ 9CC2F24274741E12F9DF92125EA6D6D8 ] EtronXHCI C:\Windows\system32\Drivers\EtronXHCI.sys
15:23:48.0527 3528 EtronXHCI - ok
15:23:48.0537 3528 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
15:23:48.0537 3528 EventSystem - ok
15:23:48.0547 3528 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
15:23:48.0547 3528 exfat - ok
15:23:48.0557 3528 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
15:23:48.0557 3528 fastfat - ok
15:23:48.0567 3528 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
15:23:48.0577 3528 Fax - ok
15:23:48.0577 3528 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
15:23:48.0577 3528 fdc - ok
15:23:48.0577 3528 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
15:23:48.0577 3528 fdPHost - ok
15:23:48.0587 3528 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
15:23:48.0587 3528 FDResPub - ok
15:23:48.0587 3528 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
15:23:48.0587 3528 FileInfo - ok
15:23:48.0587 3528 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
15:23:48.0597 3528 Filetrace - ok
15:23:48.0597 3528 [ B8602C90D3C427D8A86CE60437615CF5 ] FlipShare Service C:\Program Files (x86)\Flip Video\FlipShare\FlipShareService.exe
15:23:48.0607 3528 FlipShare Service - ok
15:23:48.0617 3528 [ AC5FB7094F31534594CAE48306972CBD ] FlipShareServer C:\Program Files (x86)\Flip Video\FlipShareServer\FlipShareServer.exe
15:23:48.0717 3528 FlipShareServer - ok
15:23:48.0717 3528 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
15:23:48.0717 3528 flpydisk - ok
15:23:48.0727 3528 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
15:23:48.0727 3528 FltMgr - ok
15:23:48.0737 3528 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
15:23:48.0747 3528 FontCache - ok
15:23:48.0757 3528 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:23:48.0757 3528 FontCache3.0.0.0 - ok
15:23:48.0757 3528 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
15:23:48.0757 3528 FsDepends - ok
15:23:48.0767 3528 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
15:23:48.0767 3528 Fs_Rec - ok
15:23:48.0767 3528 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
15:23:48.0767 3528 fvevol - ok
15:23:48.0777 3528 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
15:23:48.0777 3528 gagp30kx - ok
15:23:48.0777 3528 [ 7907E14F9BCF3A4689C9A74A1A873CB6 ] gdrv C:\Windows\gdrv.sys
15:23:48.0787 3528 gdrv - ok
15:23:48.0787 3528 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
15:23:48.0797 3528 GEARAspiWDM - ok
15:23:48.0807 3528 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
15:23:48.0807 3528 gpsvc - ok
15:23:48.0817 3528 [ 8126331FBD4ED29EB3B356F9C905064D ] GVTDrv64 C:\Windows\GVTDrv64.sys
15:23:48.0827 3528 GVTDrv64 - ok
15:23:48.0827 3528 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
15:23:48.0827 3528 hcw85cir - ok
15:23:48.0837 3528 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:23:48.0837 3528 HdAudAddService - ok
15:23:48.0847 3528 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
15:23:48.0847 3528 HDAudBus - ok
15:23:48.0847 3528 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
15:23:48.0847 3528 HidBatt - ok
15:23:48.0857 3528 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
15:23:48.0857 3528 HidBth - ok
15:23:48.0857 3528 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
15:23:48.0857 3528 HidIr - ok
15:23:48.0857 3528 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
15:23:48.0867 3528 hidserv - ok
15:23:48.0867 3528 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
15:23:48.0867 3528 HidUsb - ok
15:23:48.0867 3528 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
15:23:48.0877 3528 hkmsvc - ok
15:23:48.0877 3528 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:23:48.0877 3528 HomeGroupListener - ok
15:23:48.0887 3528 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:23:48.0887 3528 HomeGroupProvider - ok
15:23:48.0897 3528 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
15:23:48.0897 3528 HpSAMD - ok
15:23:48.0907 3528 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
15:23:48.0917 3528 HTTP - ok
15:23:48.0917 3528 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
15:23:48.0917 3528 hwpolicy - ok
15:23:48.0927 3528 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
15:23:48.0927 3528 i8042prt - ok
15:23:48.0937 3528 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
15:23:48.0937 3528 iaStorV - ok
15:23:48.0937 3528 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
15:23:48.0937 3528 IDriverT - ok
15:23:48.0957 3528 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
15:23:48.0957 3528 idsvc - ok
15:23:48.0967 3528 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
15:23:48.0967 3528 iirsp - ok
15:23:48.0977 3528 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
15:23:48.0987 3528 IKEEXT - ok
15:23:49.0017 3528 [ 4BBB5A55EEB5EC11B20FCBB4CBB49357 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
15:23:49.0037 3528 IntcAzAudAddService - ok
15:23:49.0037 3528 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
15:23:49.0037 3528 intelide - ok
15:23:49.0047 3528 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\drivers\intelppm.sys
15:23:49.0047 3528 intelppm - ok
15:23:49.0047 3528 [ 1663A135865F0BA6E853353E98E67F2A ] IntuitUpdateServiceV4 C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
15:23:49.0047 3528 IntuitUpdateServiceV4 - ok
15:23:49.0057 3528 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
15:23:49.0057 3528 IPBusEnum - ok
15:23:49.0057 3528 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:23:49.0067 3528 IpFilterDriver - ok
15:23:49.0067 3528 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
15:23:49.0077 3528 iphlpsvc - ok
15:23:49.0077 3528 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
15:23:49.0077 3528 IPMIDRV - ok
15:23:49.0087 3528 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
15:23:49.0087 3528 IPNAT - ok
15:23:49.0097 3528 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
15:23:49.0107 3528 iPod Service - ok
15:23:49.0107 3528 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
15:23:49.0107 3528 IRENUM - ok
15:23:49.0117 3528 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
15:23:49.0117 3528 isapnp - ok
15:23:49.0117 3528 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
15:23:49.0127 3528 iScsiPrt - ok
15:23:49.0127 3528 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
15:23:49.0127 3528 kbdclass - ok
15:23:49.0127 3528 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
15:23:49.0127 3528 kbdhid - ok
15:23:49.0137 3528 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
15:23:49.0137 3528 KeyIso - ok
15:23:49.0137 3528 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
15:23:49.0137 3528 KSecDD - ok
15:23:49.0147 3528 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
15:23:49.0147 3528 KSecPkg - ok
15:23:49.0147 3528 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
15:23:49.0147 3528 ksthunk - ok
15:23:49.0157 3528 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
15:23:49.0157 3528 KtmRm - ok
15:23:49.0167 3528 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
15:23:49.0167 3528 LanmanServer - ok
15:23:49.0177 3528 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:23:49.0177 3528 LanmanWorkstation - ok
15:23:49.0187 3528 [ 7772DFAB22611050B79504E671B06E6E ] LBTServ C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
15:23:49.0197 3528 LBTServ - ok
15:23:49.0197 3528 [ ED7EC050CD6C20E1A93A4DAFB7EFD14D ] LEqdUsb C:\Windows\system32\DRIVERS\LEqdUsb.Sys
15:23:49.0197 3528 LEqdUsb - ok
15:23:49.0207 3528 [ 3267BC698E29474A8381E68904EB0390 ] LHidEqd C:\Windows\system32\DRIVERS\LHidEqd.Sys
15:23:49.0207 3528 LHidEqd - ok
15:23:49.0207 3528 [ 241F2648ADF090E2A10095BD6D6F5DCB ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys
15:23:49.0207 3528 LHidFilt - ok
15:23:49.0217 3528 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
15:23:49.0217 3528 lltdio - ok
15:23:49.0217 3528 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
15:23:49.0227 3528 lltdsvc - ok
15:23:49.0227 3528 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
15:23:49.0227 3528 lmhosts - ok
15:23:49.0317 3528 [ 7109163D8027076D2680CFC4E80E2A28 ] LMIGuardianSvc E:\Program Files (x86)\LogMeIn\x64\LMIGuardianSvc.exe
15:23:49.0327 3528 LMIGuardianSvc - ok
15:23:49.0347 3528 [ 0317335B15FF3BDA8E10197E3434CFC0 ] LMIInfo E:\Program Files (x86)\LogMeIn\x64\RaInfo.sys
15:23:49.0347 3528 LMIInfo - ok
15:23:49.0367 3528 [ 8054CE1FC8B417691960D00F931516A7 ] LMIMaint E:\Program Files (x86)\LogMeIn\x64\RaMaint.exe
15:23:49.0367 3528 LMIMaint - ok
15:23:49.0377 3528 [ 413ECDCFAD9A82804D3674C8D7EEC24E ] lmimirr C:\Windows\system32\DRIVERS\lmimirr.sys
15:23:49.0377 3528 lmimirr - ok
15:23:49.0377 3528 LMIRfsClientNP - ok
15:23:49.0387 3528 [ C57D3FAA50E6F395759FFB7C709BD944 ] LMIRfsDriver C:\Windows\system32\drivers\LMIRfsDriver.sys
15:23:49.0387 3528 LMIRfsDriver - ok
15:23:49.0387 3528 [ 342ED5A4B3326014438F36D22D803737 ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys
15:23:49.0397 3528 LMouFilt - ok
15:23:49.0407 3528 [ D3760BC17E1755091B7120CF32DBF56B ] LogMeIn E:\Program Files (x86)\LogMeIn\x64\LogMeIn.exe
15:23:49.0407 3528 LogMeIn - ok
15:23:49.0417 3528 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
15:23:49.0417 3528 LSI_FC - ok
15:23:49.0427 3528 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
15:23:49.0427 3528 LSI_SAS - ok
15:23:49.0427 3528 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
15:23:49.0437 3528 LSI_SAS2 - ok
15:23:49.0437 3528 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
15:23:49.0437 3528 LSI_SCSI - ok
15:23:49.0447 3528 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
15:23:49.0447 3528 luafv - ok
15:23:49.0457 3528 [ 29C733E1DE824670DC9315CFC9BDBCD3 ] LUsbFilt C:\Windows\system32\Drivers\LUsbFilt.Sys
15:23:49.0457 3528 LUsbFilt - ok
15:23:49.0457 3528 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
15:23:49.0457 3528 Mcx2Svc - ok
15:23:49.0457 3528 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
15:23:49.0467 3528 megasas - ok
15:23:49.0467 3528 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
15:23:49.0467 3528 MegaSR - ok
15:23:49.0477 3528 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
15:23:49.0477 3528 MMCSS - ok
15:23:49.0477 3528 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
15:23:49.0477 3528 Modem - ok
15:23:49.0487 3528 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
15:23:49.0487 3528 monitor - ok
15:23:49.0487 3528 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
15:23:49.0487 3528 mouclass - ok
15:23:49.0497 3528 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
15:23:49.0497 3528 mouhid - ok
15:23:49.0497 3528 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
15:23:49.0497 3528 mountmgr - ok
15:23:49.0507 3528 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
15:23:49.0507 3528 MpFilter - ok
15:23:49.0507 3528 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
15:23:49.0517 3528 mpio - ok
15:23:49.0517 3528 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
15:23:49.0517 3528 mpsdrv - ok
15:23:49.0527 3528 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
15:23:49.0537 3528 MpsSvc - ok
15:23:49.0537 3528 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
15:23:49.0547 3528 MRxDAV - ok
15:23:49.0547 3528 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
15:23:49.0547 3528 mrxsmb - ok
15:23:49.0557 3528 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:23:49.0557 3528 mrxsmb10 - ok
15:23:49.0567 3528 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:23:49.0567 3528 mrxsmb20 - ok
15:23:49.0567 3528 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
15:23:49.0567 3528 msahci - ok
15:23:49.0577 3528 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
15:23:49.0577 3528 msdsm - ok
15:23:49.0577 3528 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
15:23:49.0577 3528 MSDTC - ok
15:23:49.0647 3528 [ 0171827668F8DDC5C7E740E26DCAB6DD ] MsDtsServer100 E:\Program Files\Microsoft SQL Server\100\DTS\Binn\MsDtsSrvr.exe
15:23:49.0667 3528 MsDtsServer100 - ok
15:23:49.0677 3528 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
15:23:49.0677 3528 Msfs - ok
15:23:49.0687 3528 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
15:23:49.0687 3528 mshidkmdf - ok
15:23:49.0697 3528 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
15:23:49.0697 3528 msisadrv - ok
15:23:49.0697 3528 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
15:23:49.0707 3528 MSiSCSI - ok
15:23:49.0707 3528 msiserver - ok
15:23:49.0717 3528 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
15:23:49.0717 3528 MSKSSRV - ok
15:23:49.0717 3528 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe
15:23:49.0717 3528 MsMpSvc - ok
15:23:49.0727 3528 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
15:23:49.0727 3528 MSPCLOCK - ok
15:23:49.0727 3528 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
15:23:49.0727 3528 MSPQM - ok
15:23:49.0737 3528 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
15:23:49.0737 3528 MsRPC - ok
15:23:49.0747 3528 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
15:23:49.0747 3528 mssmbios - ok
15:23:49.0787 3528 [ AA511EB28672011A1D832F73E302F0A0 ] MSSQLFDLauncher E:\Program Files\Microsoft SQL Server\MSSQL10_50.MSSQLSERVER\MSSQL\Binn\fdlauncher.exe
15:23:49.0807 3528 MSSQLFDLauncher - ok
15:23:49.0817 3528 MSSQLSERVER - ok
15:23:49.0817 3528 [ 04EF36EAF5C4DBCE424D81B76F1E9231 ] MSSQLServerADHelper100 C:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
15:23:49.0817 3528 MSSQLServerADHelper100 - ok
15:23:49.0857 3528 MSSQLServerOLAPService - ok
15:23:49.0867 3528 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
15:23:49.0867 3528 MSTEE - ok
15:23:49.0867 3528 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
15:23:49.0867 3528 MTConfig - ok
15:23:49.0877 3528 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
15:23:49.0877 3528 Mup - ok
15:23:49.0887 3528 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
15:23:49.0887 3528 napagent - ok
15:23:49.0897 3528 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
15:23:49.0907 3528 NativeWifiP - ok
15:23:49.0917 3528 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
15:23:49.0927 3528 NDIS - ok
15:23:49.0927 3528 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
15:23:49.0927 3528 NdisCap - ok
15:23:49.0927 3528 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
15:23:49.0937 3528 NdisTapi - ok
15:23:49.0937 3528 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
15:23:49.0937 3528 Ndisuio - ok
15:23:49.0937 3528 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
15:23:49.0947 3528 NdisWan - ok
15:23:49.0947 3528 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
15:23:49.0947 3528 NDProxy - ok
15:23:49.0947 3528 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
15:23:49.0947 3528 NetBIOS - ok
15:23:49.0957 3528 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
15:23:49.0957 3528 NetBT - ok
15:23:49.0967 3528 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
15:23:49.0967 3528 Netlogon - ok
15:23:49.0977 3528 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
15:23:49.0977 3528 Netman - ok
15:23:49.0987 3528 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
15:23:49.0997 3528 netprofm - ok
15:23:49.0997 3528 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
15:23:49.0997 3528 NetTcpPortSharing - ok
15:23:49.0997 3528 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
15:23:50.0007 3528 nfrd960 - ok
15:23:50.0007 3528 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
15:23:50.0007 3528 NisDrv - ok
15:23:50.0017 3528 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv C:\Program Files\Microsoft Security Client\NisSrv.exe
15:23:50.0017 3528 NisSrv - ok
15:23:50.0027 3528 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
15:23:50.0027 3528 NlaSvc - ok
15:23:50.0027 3528 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
15:23:50.0027 3528 Npfs - ok
15:23:50.0037 3528 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
15:23:50.0037 3528 nsi - ok
15:23:50.0037 3528 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
15:23:50.0037 3528 nsiproxy - ok
15:23:50.0057 3528 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
15:23:50.0077 3528 Ntfs - ok
15:23:50.0077 3528 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
15:23:50.0077 3528 Null - ok
15:23:50.0087 3528 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
15:23:50.0087 3528 nvraid - ok
15:23:50.0087 3528 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
15:23:50.0097 3528 nvstor - ok
15:23:50.0097 3528 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
15:23:50.0097 3528 nv_agp - ok
15:23:50.0107 3528 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
15:23:50.0107 3528 ohci1394 - ok
15:23:50.0107 3528 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
15:23:50.0117 3528 p2pimsvc - ok
15:23:50.0127 3528 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
15:23:50.0127 3528 p2psvc - ok
15:23:50.0137 3528 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
15:23:50.0137 3528 Parport - ok
15:23:50.0137 3528 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
15:23:50.0137 3528 partmgr - ok
15:23:50.0147 3528 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
15:23:50.0147 3528 PcaSvc - ok
15:23:50.0147 3528 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
15:23:50.0157 3528 pci - ok
15:23:50.0157 3528 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
15:23:50.0157 3528 pciide - ok
15:23:50.0157 3528 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
15:23:50.0167 3528 pcmcia - ok
15:23:50.0167 3528 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
15:23:50.0167 3528 pcw - ok
15:23:50.0177 3528 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
15:23:50.0187 3528 PEAUTH - ok
15:23:50.0207 3528 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
15:23:50.0207 3528 PerfHost - ok
15:23:50.0227 3528 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
15:23:50.0247 3528 pla - ok
15:23:50.0257 3528 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
15:23:50.0257 3528 PlugPlay - ok
15:23:50.0257 3528 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
15:23:50.0267 3528 PNRPAutoReg - ok
15:23:50.0267 3528 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
15:23:50.0277 3528 PNRPsvc - ok
15:23:50.0277 3528 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
15:23:50.0287 3528 PolicyAgent - ok
15:23:50.0297 3528 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
15:23:50.0297 3528 Power - ok
15:23:50.0297 3528 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
15:23:50.0297 3528 PptpMiniport - ok
15:23:50.0307 3528 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
15:23:50.0307 3528 Processor - ok
15:23:50.0317 3528 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
15:23:50.0317 3528 ProfSvc - ok
15:23:50.0317 3528 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
15:23:50.0317 3528 ProtectedStorage - ok
15:23:50.0327 3528 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
15:23:50.0327 3528 Psched - ok
15:23:50.0347 3528 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
15:23:50.0357 3528 ql2300 - ok
15:23:50.0357 3528 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
15:23:50.0367 3528 ql40xx - ok
15:23:50.0367 3528 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
15:23:50.0377 3528 QWAVE - ok
15:23:50.0377 3528 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
15:23:50.0377 3528 QWAVEdrv - ok
15:23:50.0377 3528 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
15:23:50.0377 3528 RasAcd - ok
15:23:50.0387 3528 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
15:23:50.0387 3528 RasAgileVpn - ok
15:23:50.0387 3528 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
15:23:50.0387 3528 RasAuto - ok
15:23:50.0397 3528 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
15:23:50.0397 3528 Rasl2tp - ok
15:23:50.0407 3528 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
15:23:50.0407 3528 RasMan - ok
15:23:50.0417 3528 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
15:23:50.0417 3528 RasPppoe - ok
15:23:50.0417 3528 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
15:23:50.0417 3528 RasSstp - ok
15:23:50.0427 3528 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
15:23:50.0427 3528 rdbss - ok
15:23:50.0427 3528 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
15:23:50.0427 3528 rdpbus - ok
15:23:50.0437 3528 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
15:23:50.0437 3528 RDPCDD - ok
15:23:50.0437 3528 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
15:23:50.0437 3528 RDPENCDD - ok
15:23:50.0447 3528 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
15:23:50.0447 3528 RDPREFMP - ok
15:23:50.0447 3528 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
15:23:50.0447 3528 RDPWD - ok
15:23:50.0457 3528 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
15:23:50.0457 3528 rdyboost - ok
15:23:50.0467 3528 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
15:23:50.0467 3528 RemoteAccess - ok
15:23:50.0467 3528 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
15:23:50.0477 3528 RemoteRegistry - ok
15:23:50.0557 3528 [ B08D6B6785B947FC97F18027A7A88F86 ] ReportServer E:\Program Files\Microsoft SQL Server\MSRS10_50.MSSQLSERVER\Reporting Services\ReportServer\bin\ReportingServicesService.exe
15:23:50.0578 3528 ReportServer - ok
15:23:50.0588 3528 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
15:23:50.0588 3528 RpcEptMapper - ok
15:23:50.0588 3528 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
15:23:50.0588 3528 RpcLocator - ok
15:23:50.0598 3528 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
15:23:50.0598 3528 RpcSs - ok
15:23:50.0608 3528 [ C606C5F712A3761896CEFFA4AF6B1268 ] RsFx0151 C:\Windows\system32\DRIVERS\RsFx0151.sys
15:23:50.0608 3528 RsFx0151 - ok
15:23:50.0618 3528 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
15:23:50.0618 3528 rspndr - ok
15:23:50.0628 3528 [ 2E7D1CA91D62501713C9D6E6704395C6 ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIVX.sys
15:23:50.0628 3528 RTHDMIAzAudService - ok
15:23:50.0638 3528 [ 6D3C7E7D82D3DC92DC2A8B0DF9F20F8A ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
15:23:50.0638 3528 RTL8167 - ok
15:23:50.0638 3528 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
15:23:50.0638 3528 SamSs - ok
15:23:50.0658 3528 [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV E:\Program Files\SuperAntiSpyware\SASDIFSV64.SYS
15:23:50.0658 3528 SASDIFSV - ok
15:23:50.0658 3528 [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL E:\Program Files\SuperAntiSpyware\SASKUTIL64.SYS
15:23:50.0658 3528 SASKUTIL - ok
15:23:50.0668 3528 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
15:23:50.0668 3528 sbp2port - ok
15:23:50.0668 3528 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
15:23:50.0678 3528 SCardSvr - ok
15:23:50.0678 3528 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
15:23:50.0678 3528 scfilter - ok
15:23:50.0688 3528 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
15:23:50.0708 3528 Schedule - ok
15:23:50.0708 3528 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
15:23:50.0708 3528 SCPolicySvc - ok
15:23:50.0718 3528 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
15:23:50.0718 3528 SDRSVC - ok
15:23:50.0718 3528 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
15:23:50.0728 3528 seclogon - ok
15:23:50.0728 3528 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
15:23:50.0728 3528 SENS - ok
15:23:50.0728 3528 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
15:23:50.0738 3528 SensrSvc - ok
15:23:50.0738 3528 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
15:23:50.0738 3528 Serenum - ok
15:23:50.0738 3528 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
15:23:50.0748 3528 Serial - ok
15:23:50.0748 3528 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
15:23:50.0748 3528 sermouse - ok
15:23:50.0758 3528 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
15:23:50.0758 3528 SessionEnv - ok
15:23:50.0758 3528 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
15:23:50.0758 3528 sffdisk - ok
15:23:50.0768 3528 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
15:23:50.0768 3528 sffp_mmc - ok
15:23:50.0768 3528 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
15:23:50.0768 3528 sffp_sd - ok
15:23:50.0768 3528 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
15:23:50.0778 3528 sfloppy - ok
15:23:50.0778 3528 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
15:23:50.0788 3528 SharedAccess - ok
15:23:50.0788 3528 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:23:50.0798 3528 ShellHWDetection - ok
15:23:50.0798 3528 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
15:23:50.0798 3528 SiSRaid2 - ok
15:23:50.0808 3528 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
15:23:50.0808 3528 SiSRaid4 - ok
15:23:50.0808 3528 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
15:23:50.0808 3528 Smb - ok
15:23:50.0818 3528 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
15:23:50.0818 3528 SNMPTRAP - ok
15:23:50.0818 3528 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
15:23:50.0828 3528 spldr - ok
15:23:50.0828 3528 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
15:23:50.0838 3528 Spooler - ok
15:23:50.0888 3528 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
15:23:50.0938 3528 sppsvc - ok
15:23:50.0938 3528 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
15:23:50.0948 3528 sppuinotify - ok
15:23:50.0948 3528 [ 7D67C07C63796775CC5492BCFEAFF125 ] SQLBrowser C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
15:23:50.0958 3528 SQLBrowser - ok
15:23:50.0978 3528 [ A99D9DCA14281E0B787501CAE4D995E0 ] SQLSERVERAGENT E:\Program Files\Microsoft SQL Server\MSSQL10_50.MSSQLSERVER\MSSQL\Binn\SQLAGENT.EXE
15:23:50.0988 3528 SQLSERVERAGENT - ok
15:23:50.0998 3528 [ F98DDFBFE0EE66D4C4B00693512B9527 ] SQLWriter C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
15:23:50.0998 3528 SQLWriter - ok
15:23:51.0008 3528 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
15:23:51.0008 3528 srv - ok
15:23:51.0018 3528 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
15:23:51.0018 3528 srv2 - ok
15:23:51.0028 3528 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
15:23:51.0028 3528 srvnet - ok
15:23:51.0038 3528 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
15:23:51.0038 3528 SSDPSRV - ok
15:23:51.0048 3528 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
15:23:51.0048 3528 SstpSvc - ok
15:23:51.0048 3528 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
15:23:51.0048 3528 stexstor - ok
15:23:51.0058 3528 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
15:23:51.0068 3528 stisvc - ok
15:23:51.0068 3528 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
15:23:51.0068 3528 swenum - ok
15:23:51.0078 3528 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
15:23:51.0088 3528 swprv - ok
15:23:51.0118 3528 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
15:23:51.0138 3528 SysMain - ok
15:23:51.0148 3528 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:23:51.0148 3528 TabletInputService - ok
15:23:51.0158 3528 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
15:23:51.0168 3528 TapiSrv - ok
15:23:51.0168 3528 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
15:23:51.0178 3528 TBS - ok
15:23:51.0198 3528 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
15:23:51.0218 3528 Tcpip - ok
15:23:51.0238 3528 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
15:23:51.0248 3528 TCPIP6 - ok
15:23:51.0248 3528 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
15:23:51.0248 3528 tcpipreg - ok
15:23:51.0258 3528 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
15:23:51.0258 3528 TDPIPE - ok
15:23:51.0258 3528 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
15:23:51.0258 3528 TDTCP - ok
15:23:51.0268 3528 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
15:23:51.0268 3528 tdx - ok
15:23:51.0268 3528 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
15:23:51.0268 3528 TermDD - ok
15:23:51.0278 3528 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
15:23:51.0288 3528 TermService - ok
15:23:51.0288 3528 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
15:23:51.0298 3528 Themes - ok
15:23:51.0298 3528 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
15:23:51.0298 3528 THREADORDER - ok
15:23:51.0308 3528 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
15:23:51.0308 3528 TrkWks - ok
15:23:51.0308 3528 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:23:51.0308 3528 TrustedInstaller - ok
15:23:51.0318 3528 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
15:23:51.0318 3528 tssecsrv - ok
15:23:51.0318 3528 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
15:23:51.0328 3528 TsUsbFlt - ok
15:23:51.0328 3528 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
15:23:51.0328 3528 TsUsbGD - ok
15:23:51.0328 3528 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
15:23:51.0338 3528 tunnel - ok
15:23:51.0338 3528 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
15:23:51.0338 3528 uagp35 - ok
15:23:51.0348 3528 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
15:23:51.0348 3528 udfs - ok
15:23:51.0358 3528 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
15:23:51.0358 3528 UI0Detect - ok
15:23:51.0358 3528 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
15:23:51.0368 3528 uliagpkx - ok
15:23:51.0368 3528 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
15:23:51.0378 3528 umbus - ok
15:23:51.0378 3528 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
15:23:51.0378 3528 UmPass - ok
15:23:51.0388 3528 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
15:23:51.0388 3528 upnphost - ok
15:23:51.0398 3528 [ AF1B9474D67897D0C2CFF58E0ACEACCC ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
15:23:51.0398 3528 USBAAPL64 - ok
15:23:51.0398 3528 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
15:23:51.0408 3528 usbccgp - ok
15:23:51.0408 3528 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
15:23:51.0408 3528 usbcir - ok
15:23:51.0408 3528 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
15:23:51.0418 3528 usbehci - ok
15:23:51.0418 3528 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
15:23:51.0428 3528 usbhub - ok
15:23:51.0428 3528 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
15:23:51.0428 3528 usbohci - ok
15:23:51.0428 3528 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\drivers\usbprint.sys
15:23:51.0428 3528 usbprint - ok
15:23:51.0438 3528 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:23:51.0438 3528 USBSTOR - ok
15:23:51.0438 3528 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
15:23:51.0438 3528 usbuhci - ok
15:23:51.0448 3528 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
15:23:51.0448 3528 UxSms - ok
15:23:51.0448 3528 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
15:23:51.0448 3528 VaultSvc - ok
15:23:51.0458 3528 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
15:23:51.0458 3528 vdrvroot - ok
15:23:51.0468 3528 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
15:23:51.0478 3528 vds - ok
15:23:51.0478 3528 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
15:23:51.0478 3528 vga - ok
15:23:51.0488 3528 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
15:23:51.0488 3528 VgaSave - ok
15:23:51.0488 3528 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
15:23:51.0488 3528 vhdmp - ok
15:23:51.0498 3528 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
15:23:51.0498 3528 viaide - ok
15:23:51.0498 3528 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
15:23:51.0498 3528 volmgr - ok
15:23:51.0508 3528 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
15:23:51.0508 3528 volmgrx - ok
15:23:51.0518 3528 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
15:23:51.0518 3528 volsnap - ok
15:23:51.0528 3528 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
15:23:51.0528 3528 vsmraid - ok
15:23:51.0548 3528 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
15:23:51.0568 3528 VSS - ok
15:23:51.0568 3528 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
15:23:51.0568 3528 vwifibus - ok
15:23:51.0578 3528 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
15:23:51.0578 3528 W32Time - ok
15:23:51.0588 3528 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
15:23:51.0588 3528 WacomPen - ok
15:23:51.0588 3528 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
15:23:51.0598 3528 WANARP - ok
15:23:51.0598 3528 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
15:23:51.0598 3528 Wanarpv6 - ok
15:23:51.0618 3528 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
15:23:51.0628 3528 WatAdminSvc - ok
15:23:51.0648 3528 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
15:23:51.0668 3528 wbengine - ok
15:23:51.0678 3528 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
15:23:51.0678 3528 WbioSrvc - ok
15:23:51.0688 3528 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
15:23:51.0688 3528 wcncsvc - ok
15:23:51.0698 3528 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:23:51.0698 3528 WcsPlugInService - ok
15:23:51.0698 3528 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
15:23:51.0698 3528 Wd - ok
15:23:51.0718 3528 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
15:23:51.0718 3528 Wdf01000 - ok
15:23:51.0728 3528 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
15:23:51.0728 3528 WdiServiceHost - ok
15:23:51.0728 3528 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
15:23:51.0738 3528 WdiSystemHost - ok
15:23:51.0738 3528 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
15:23:51.0748 3528 WebClient - ok
15:23:51.0778 3528 [ BAC29C61EAB31363AC7DE6C45C432208 ] WebDriveFSD E:\Program Files\WebDrive\wdfsd.sys
15:23:51.0788 3528 WebDriveFSD - ok
15:23:51.0828 3528 [ AB908A13345541385BB4C59C08E4DCA8 ] WebDriveService E:\Program Files\WebDrive\wdService.exe
15:23:52.0528 3528 WebDriveService - ok
15:23:52.0538 3528 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
15:23:52.0538 3528 Wecsvc - ok
15:23:52.0548 3528 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
15:23:52.0548 3528 wercplsupport - ok
15:23:52.0548 3528 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
15:23:52.0558 3528 WerSvc - ok
15:23:52.0558 3528 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
15:23:52.0558 3528 WfpLwf - ok
15:23:52.0558 3528 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
15:23:52.0558 3528 WIMMount - ok
15:23:52.0568 3528 WinDefend - ok
15:23:52.0568 3528 WinHttpAutoProxySvc - ok
15:23:52.0578 3528 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
15:23:52.0588 3528 Winmgmt - ok
15:23:52.0608 3528 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
15:23:52.0628 3528 WinRM - ok
15:23:52.0638 3528 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
15:23:52.0638 3528 WinUsb - ok
15:23:52.0648 3528 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
15:23:52.0658 3528 Wlansvc - ok
15:23:52.0678 3528 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:23:52.0698 3528 wlidsvc - ok
15:23:52.0708 3528 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
15:23:52.0708 3528 WmiAcpi - ok
15:23:52.0708 3528 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
15:23:52.0718 3528 wmiApSrv - ok
15:23:52.0718 3528 WMPNetworkSvc - ok
15:23:52.0718 3528 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
15:23:52.0728 3528 WPCSvc - ok
15:23:52.0728 3528 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
15:23:52.0728 3528 WPDBusEnum - ok
15:23:52.0738 3528 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
15:23:52.0738 3528 ws2ifsl - ok
15:23:52.0738 3528 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
15:23:52.0748 3528 wscsvc - ok
15:23:52.0748 3528 [ 8D918B1DB190A4D9B1753A66FA8C96E8 ] WSDPrintDevice C:\Windows\system32\DRIVERS\WSDPrint.sys
15:23:52.0758 3528 WSDPrintDevice - ok
15:23:52.0758 3528 WSearch - ok
15:23:52.0788 3528 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
15:23:52.0808 3528 wuauserv - ok
15:23:52.0818 3528 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
15:23:52.0818 3528 WudfPf - ok
15:23:52.0828 3528 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
15:23:52.0828 3528 WUDFRd - ok
15:23:52.0828 3528 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
15:23:52.0828 3528 wudfsvc - ok
15:23:52.0838 3528 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
15:23:52.0838 3528 WwanSvc - ok
15:23:52.0848 3528 ================ Scan global ===============================
15:23:52.0848 3528 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
15:23:52.0858 3528 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
15:23:52.0858 3528 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
15:23:52.0868 3528 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
15:23:52.0868 3528 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
15:23:52.0878 3528 [Global] - ok
15:23:52.0878 3528 ================ Scan MBR ==================================
15:23:52.0878 3528 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
15:23:52.0988 3528 \Device\Harddisk1\DR1 - ok
15:23:52.0988 3528 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
15:23:53.0008 3528 \Device\Harddisk0\DR0 - ok
15:23:53.0018 3528 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk2\DR2
15:23:53.0088 3528 \Device\Harddisk2\DR2 - ok
15:23:53.0088 3528 ================ Scan VBR ==================================
15:23:53.0088 3528 [ A71DF3EF9608E728DC8F45F0F83ED044 ] \Device\Harddisk1\DR1\Partition1
15:23:53.0088 3528 \Device\Harddisk1\DR1\Partition1 - ok
15:23:53.0098 3528 [ 34DB54E839D6EB3191103F583A495552 ] \Device\Harddisk1\DR1\Partition2
15:23:53.0098 3528 \Device\Harddisk1\DR1\Partition2 - ok
15:23:53.0098 3528 [ B207D09E0C7C717A912B0AB93140B4FB ] \Device\Harddisk0\DR0\Partition1
15:23:53.0098 3528 \Device\Harddisk0\DR0\Partition1 - ok
15:23:53.0098 3528 [ 35798E99C99E80977A0541C023F0B237 ] \Device\Harddisk2\DR2\Partition1
15:23:53.0108 3528 \Device\Harddisk2\DR2\Partition1 - ok
15:23:53.0108 3528 ============================================================
15:23:53.0108 3528 Scan finished
15:23:53.0108 3528 ============================================================
15:23:53.0108 2336 Detected object count: 0
15:23:53.0108 2336 Actual detected object count: 0

# AdwCleaner v2.100 - Logfile created 12/09/2012 at 15:26:49
# Updated 09/12/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Derek - DLO-FIRST-BUILD
# Boot Mode : Normal
# Running from : C:\Users\Derek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\N5UA8G2P\AdwCleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****


***** [Registry] *****


***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16455

[OK] Registry is clean.

-\\ Mozilla Firefox v3.0.1 (en-US)

Profile name : default
File : C:\Users\Derek\AppData\Roaming\Mozilla\Firefox\Profiles\ywsyelz3.default\prefs.js

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [6272 octets] - [09/10/2012 15:23:26]
AdwCleaner[R2].txt - [6332 octets] - [09/10/2012 15:27:39]
AdwCleaner[R3].txt - [6392 octets] - [09/10/2012 18:16:46]
AdwCleaner[R4].txt - [1138 octets] - [07/12/2012 15:01:45]
AdwCleaner[R5].txt - [1259 octets] - [08/12/2012 17:55:21]
AdwCleaner[S1].txt - [6390 octets] - [09/10/2012 18:17:41]
AdwCleaner[S2].txt - [1199 octets] - [07/12/2012 15:02:03]
AdwCleaner[S3].txt - [1319 octets] - [08/12/2012 18:01:36]
AdwCleaner[S5].txt - [1250 octets] - [09/12/2012 15:26:49]

########## EOF - C:\AdwCleaner[S5].txt - [1310 octets] ##########

ESET found no threats.

#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,906 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:12 AM

Posted 09 December 2012 - 07:29 PM

OK,lets check something else.

Please download GooredFix from one of the locations below and save it to your Desktop
Download Mirror #1
Download Mirror #2
  • Ensure all Firefox windows are closed.
  • To run the tool, double-click it (XP), or right-click and select Run As Administrator (Vista).
  • When prompted to run the scan, click Yes.
  • GooredFix will check for infections, and then a log will appear. Please post the contents of that log in your next reply (it can also be found on your desktop, called GooredFix.txt).

>>>>
Please download aswMBR ( 4.5MB ) to your desktop.
  • Double click the aswMBR.exe icon, and click Run.
  • When asked if you'd like to "download the latest Avast! virus definitions", click Yes.
  • Click the Scan button to start the scan.
  • On completion of the scan, click the save log button, save it to your desktop, then copy and paste it in your next reply.







Important Note: Your version of Java is out of date. Older versions have vulnerabilities that malicious sites can use to exploit and infect your system.Please follow these steps to remove older version Java components and update:
  • Download the latest version of Java Runtime Environment (JRE) Version 7 and save it to your desktop.
  • Look for "Java Platform, Standard Edition".
  • Click the "Download JRE" button to the right.
  • Read the License Agreement, and then check the box that says: "Accept License Agreement".
  • From the list, select your OS and Platform (32-bit or 64-bit).
    64-bit OS users, should read: Which Java download should I choose for my 64-bit Windows operating system?
  • If a download for an Offline Installation is available, it is recommended to choose that and save the file to your desktop.
  • Close any programs you may have running - especially your web browser.
Go to Posted Image > Control Panel, double-click on Add/Remove Programs or Programs and Features in Vista/Windows 7 and remove all older versions of Java.
  • Check (highlight) any item with Java Runtime Environment (JRE or J2SE) in the name.
  • Click the Remove or Change/Remove button and follow the onscreen instructions for the Java uninstaller.
  • Repeat as many times as necessary to remove each Java versions.
  • Reboot your computer once all Java components are removed.
  • Then from your desktop double-click on jre-7u9-windows-i586.exe (or jre-7u9-windows-x64.exe for 64-bit) to install the newest version.
  • If using Windows 7 or Vista and the installer refuses to launch due to insufficient user permissions, then Run As Administrator.
  • When the Java Setup - Welcome window opens, click the Install > button.
  • If offered any unwanted software or toolbars during installation, just uncheck the box before continuing unless you want it.
  • The McAfee Security Scan Plus tool is installed by default unless you uncheck the McAfee installation box when updating Java.
Note: The Java Quick Starter (JQS.exe) adds a service to improve the initial startup time of Java applets and applications but it's not necessary.
To disable the JQS service if you don't want to use it:
  • Go to Start > Control Panel > Java > Advanced > Miscellaneous and uncheck the box for Java Quick Starter.
  • Click Ok and reboot your computer.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 hrolsons

hrolsons
  • Topic Starter

  • Members
  • 226 posts
  • OFFLINE
  •  
  • Local time:03:12 AM

Posted 10 December 2012 - 03:32 PM

GooredFix by jpshortstuff (03.07.10.1)
Log created at 12:34 on 10/12/2012 (Derek)
Firefox version 3.0.1 (en-US)

========== GooredScan ==========

(none)

========== GooredLog ==========

C:\Program Files (x86)\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd} [15:49 30/10/2012]

C:\Users\Derek\Application Data\Mozilla\Firefox\Profiles\ywsyelz3.default\extensions\
(none)

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"{5D3F3872-91E9-4d59-AD9F-AA174A3145DD}"="C:\Program Files\Logitech\FlowScroll\LogiSmoothFirefoxExt" [16:12 14/06/2012]

-=E.O.F=-

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2012-12-10 12:35:39
-----------------------------
12:35:39.376 OS Version: Windows x64 6.1.7601 Service Pack 1
12:35:39.376 Number of processors: 8 586 0x102
12:35:39.376 ComputerName: DLO-FIRST-BUILD UserName: Derek
12:35:39.563 Initialize success
12:37:05.611 AVAST engine defs: 12121000
13:15:04.526 Disk 0 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-1
13:15:04.536 Disk 0 Vendor: Patriot_Pyro 332ABBF0 Size: 57241MB BusType: 3
13:15:04.536 Disk 1 (boot) \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP0T1L0-5
13:15:04.546 Disk 1 Vendor: Patriot_Pyro 332ABBF0 Size: 57241MB BusType: 3
13:15:04.546 Disk 2 \Device\Harddisk2\DR2 -> \Device\Ide\IdeDeviceP2T1L0-7
13:15:04.556 Disk 2 Vendor: Hitachi_HDS721010CLA332 JP4OA3EA Size: 953869MB BusType: 3
13:15:04.556 Disk 1 MBR read successfully
13:15:04.566 Disk 1 MBR scan
13:15:04.616 Disk 1 Windows 7 default MBR code
13:15:04.626 Disk 1 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
13:15:04.646 Disk 1 Partition 2 00 07 HPFS/NTFS NTFS 57139 MB offset 206848
13:15:04.686 Disk 1 scanning C:\Windows\system32\drivers
13:15:09.927 Service scanning
13:15:22.187 Modules scanning
13:15:22.197 Disk 1 trace - called modules:
13:15:22.207 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS pciide.sys
13:15:22.217 1 nt!IofCallDriver -> \Device\Harddisk1\DR1[0xfffffa800d2bf790]
13:15:22.217 3 CLASSPNP.SYS[fffff8800165143f] -> nt!IofCallDriver -> [0xfffffa800cb19340]
13:15:22.227 5 ACPI.sys[fffff88000f3a7a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T1L0-5[0xfffffa800cd9c060]
13:15:22.577 AVAST engine scan C:\Windows
13:15:23.528 AVAST engine scan C:\Windows\system32
13:17:56.649 AVAST engine scan C:\Windows\system32\drivers
13:18:02.698 AVAST engine scan C:\Users\Derek
13:19:24.791 AVAST engine scan C:\ProgramData
13:19:35.229 Scan finished successfully
13:24:31.635 Disk 1 MBR has been saved successfully to "C:\Users\Derek\Desktop\MBR.dat"
13:24:31.635 The log file has been saved successfully to "C:\Users\Derek\Desktop\aswMBR.txt"

#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,906 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:12 AM

Posted 10 December 2012 - 03:44 PM

Disable the Add Ons one at a time to see if one is causing this..

http://windows.microsoft.com/en-US/windows7/How-to-manage-add-ons-in-Internet-Explorer-9
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 hrolsons

hrolsons
  • Topic Starter

  • Members
  • 226 posts
  • OFFLINE
  •  
  • Local time:03:12 AM

Posted 10 December 2012 - 03:56 PM

Turned off all Add Ons and toolbars and problem persists after restarting IE.

#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,906 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:12 AM

Posted 10 December 2012 - 04:00 PM

Hmmm we'll have to dig it out then,,,
Please follow this Preparation Guide and post in a new topic.

Let me know if all went well.

Include this link back to here...
http://www.bleepingcomputer.com/forums/topic477860.html/page__pid__2917950#top
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users