Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Avast crashes; thought to be malware/virus


  • Please log in to reply
14 replies to this topic

#1 Geo Terrifrit

Geo Terrifrit

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:01:49 AM

Posted 03 January 2013 - 10:36 PM

Hello. I'm having an issue that seemed to start after downloading JoytoKey from Cnet. Initially, it attempted a taskkill.exe command that I closed immediately. It also attempted a reboot, but I was able to cancel that as well. I've already deleted the downloader/installer, but I believe I still might be infected with something. I've run Malwarebytes and that didn't detect anything. I did Avast's boot-time scan and it did catch some PUPs and Trojans. I tried to download something via downloader (not from Cnet) and Avast crashed again. I just want to be sure that whatever virus got into my system via downloader is gone.

I also don't know whether to post a DDS log or not, but I'm going to keep it to myself until it's needed.

Thanks for looking into this.

Edited by Geo Terrifrit, 03 January 2013 - 11:15 PM.


BC AdBot (Login to Remove)

 


#2 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:07:49 AM

Posted 04 January 2013 - 11:50 AM

Hello,

I will be helping you with your problems. Please be patient while I assist you.

Some points for you to keep in mind while I am helping you to make things go easier and faster for both of us

  • Please do NOT run, install or uninstall any programs, unless instructed to do so.
    • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
  • Please do not attach logs or use code boxes, just copy and paste the text.
    • Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
  • Please read every post completely before doing anything.
    • Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.
  • Please provide feedback about your experience as we go.
    • A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.

NOTE: At the top of your post, click on the Watch Topic Button, select Immediate Notification, and click on Proceed. This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.

NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of heartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.

NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.

----------------------------------------------

Please do the following:

:step1:

Please download the TDSS Rootkit Removing Tool (TDSSKiller.exe) and save it to your Desktop. <-Important!!!
  • Double-click on TDSSKiller.exe on your desktop to run the tool for known TDSS variants.
    Vista/Windows 7 users right-click and select Run As Administrator.
  • If TDSSKiller does not run, try renaming it.
  • To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to How to change the file extension.
  • Click on change parameters
  • Under Objects to scan, check the boxes next to Verify file digital signatures, Detect TDLFS file system, then click OK.
  • Click the Start Scan button.
  • Do not use the computer during the scan
  • If the scan completes with nothing found, click Close to exit.
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Note: If Cure is not an option, Skip instead, do NOT choose Delete or Quarantine unless instructed.
  • A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.2.4.0.0_27.07.2010_09.o7.26_log.txt) will be created and saved to the root directory (usually Local Disk C:).
  • Copy and paste the full contents of that file in your next reply. - If the log is too long, then split it into multiple posts.


:step2:

Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the full contents of that document.


:step3:

Please download Farbar Service Scanner and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press Scan.
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the full contents of the log in your next reply.


:step4:

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices (Only Problems)
  • List Users, Partitions and Memory size.
  • List Minidump Files
  • List Restore points
NOTE: When using "Reset FF Proxy Settings" option Firefox should be closed.

Click Go and post the full contents of the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#3 Geo Terrifrit

Geo Terrifrit
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:01:49 AM

Posted 04 January 2013 - 02:41 PM

Alright, here's the TDSSKiller Log.

12:36:44.0024 4192 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
12:36:44.0674 4192 ============================================================
12:36:44.0674 4192 Current date / time: 2013/01/04 12:36:44.0674
12:36:44.0674 4192 SystemInfo:
12:36:44.0674 4192
12:36:44.0674 4192 OS Version: 6.1.7601 ServicePack: 1.0
12:36:44.0674 4192 Product type: Workstation
12:36:44.0675 4192 ComputerName: COMP
12:36:44.0675 4192 UserName: Bryan
12:36:44.0675 4192 Windows directory: C:\Windows
12:36:44.0675 4192 System windows directory: C:\Windows
12:36:44.0675 4192 Running under WOW64
12:36:44.0675 4192 Processor architecture: Intel x64
12:36:44.0675 4192 Number of processors: 2
12:36:44.0675 4192 Page size: 0x1000
12:36:44.0675 4192 Boot type: Normal boot
12:36:44.0675 4192 ============================================================
12:36:50.0650 4192 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:36:50.0669 4192 Drive \Device\Harddisk1\DR1 - Size: 0x3CA80000 (0.95 Gb), SectorSize: 0x200, Cylinders: 0x7B, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
12:36:50.0672 4192 ============================================================
12:36:50.0672 4192 \Device\Harddisk0\DR0:
12:36:50.0672 4192 MBR partitions:
12:36:50.0672 4192 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1D4C000
12:36:50.0672 4192 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D60000, BlocksNum 0x38625830
12:36:50.0672 4192 \Device\Harddisk1\DR1:
12:36:50.0673 4192 MBR partitions:
12:36:50.0673 4192 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x6, StartLBA 0xF9, BlocksNum 0x1E5307
12:36:50.0673 4192 ============================================================
12:36:50.0710 4192 C: <-> \Device\Harddisk0\DR0\Partition2
12:36:50.0710 4192 ============================================================
12:36:50.0710 4192 Initialize success
12:36:50.0710 4192 ============================================================
12:37:34.0636 2508 ============================================================
12:37:34.0636 2508 Scan started
12:37:34.0636 2508 Mode: Manual; SigCheck; TDLFS;
12:37:34.0636 2508 ============================================================
12:37:35.0192 2508 ================ Scan system memory ========================
12:37:35.0192 2508 System memory - ok
12:37:35.0193 2508 ================ Scan services =============================
12:37:35.0360 2508 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
12:37:35.0566 2508 1394ohci - ok
12:37:35.0603 2508 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
12:37:35.0631 2508 ACPI - ok
12:37:35.0663 2508 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
12:37:35.0720 2508 AcpiPmi - ok
12:37:35.0818 2508 [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
12:37:35.0835 2508 AdobeARMservice - ok
12:37:35.0979 2508 [ 95CE557D16A75606CCC2D7F3B0B0BCCB ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
12:37:35.0998 2508 AdobeFlashPlayerUpdateSvc - ok
12:37:36.0045 2508 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
12:37:36.0072 2508 adp94xx - ok
12:37:36.0094 2508 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
12:37:36.0116 2508 adpahci - ok
12:37:36.0127 2508 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
12:37:36.0148 2508 adpu320 - ok
12:37:36.0180 2508 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
12:37:36.0235 2508 AeLookupSvc - ok
12:37:36.0339 2508 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\AESTSr64.exe
12:37:36.0399 2508 AESTFilters - ok
12:37:36.0460 2508 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
12:37:36.0504 2508 AFD - ok
12:37:36.0552 2508 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
12:37:36.0569 2508 agp440 - ok
12:37:36.0769 2508 [ B9B98E08EC127900025F42462D3D0A66 ] Akamai c:\program files (x86)\common files\akamai/netsession_win_ce5ba24.dll
12:37:36.0769 2508 Suspicious file (Hidden): c:\program files (x86)\common files\akamai/netsession_win_ce5ba24.dll. md5: B9B98E08EC127900025F42462D3D0A66
12:37:36.0780 2508 Akamai ( HiddenFile.Multi.Generic ) - warning
12:37:36.0780 2508 Akamai - detected HiddenFile.Multi.Generic (1)
12:37:36.0813 2508 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
12:37:36.0915 2508 ALG - ok
12:37:37.0186 2508 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
12:37:37.0202 2508 aliide - ok
12:37:37.0219 2508 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
12:37:37.0235 2508 amdide - ok
12:37:37.0273 2508 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
12:37:37.0353 2508 AmdK8 - ok
12:37:37.0386 2508 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
12:37:37.0432 2508 AmdPPM - ok
12:37:37.0476 2508 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
12:37:37.0495 2508 amdsata - ok
12:37:37.0510 2508 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
12:37:37.0531 2508 amdsbs - ok
12:37:37.0546 2508 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
12:37:37.0564 2508 amdxata - ok
12:37:37.0609 2508 [ 3CC4531F11648A6081A7BA3AA4924D04 ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
12:37:37.0666 2508 ApfiltrService - ok
12:37:37.0707 2508 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
12:37:37.0774 2508 AppID - ok
12:37:37.0814 2508 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
12:37:37.0898 2508 AppIDSvc - ok
12:37:37.0940 2508 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
12:37:38.0015 2508 Appinfo - ok
12:37:38.0102 2508 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
12:37:38.0118 2508 Apple Mobile Device - ok
12:37:38.0144 2508 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
12:37:38.0162 2508 arc - ok
12:37:38.0170 2508 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
12:37:38.0189 2508 arcsas - ok
12:37:38.0287 2508 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
12:37:38.0303 2508 aspnet_state - ok
12:37:38.0354 2508 [ 4FCAEF0C5BE7629AEB878998E0FE959B ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
12:37:38.0368 2508 aswFsBlk - ok
12:37:38.0427 2508 [ B50CDD87772D6A11CB90924AAD399DF8 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
12:37:38.0442 2508 aswMonFlt - ok
12:37:38.0484 2508 [ 57768C7DB4681F2510F247F82EF31D4F ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
12:37:38.0500 2508 aswRdr - ok
12:37:38.0531 2508 [ E71D826A1F3CE9C9DE3E77F2D02AFFBF ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
12:37:38.0578 2508 aswSnx - ok
12:37:38.0613 2508 [ 538A32E2C99BF073D4CA76C30BEDAA60 ] aswSP C:\Windows\system32\drivers\aswSP.sys
12:37:38.0652 2508 aswSP - ok
12:37:38.0673 2508 [ 6EDC79D73745FD44C41B55B2D13D0B70 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
12:37:38.0687 2508 aswTdi - ok
12:37:38.0708 2508 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
12:37:38.0773 2508 AsyncMac - ok
12:37:38.0806 2508 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
12:37:38.0823 2508 atapi - ok
12:37:38.0866 2508 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
12:37:38.0946 2508 AudioEndpointBuilder - ok
12:37:38.0959 2508 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
12:37:39.0008 2508 AudioSrv - ok
12:37:39.0084 2508 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
12:37:39.0100 2508 avast! Antivirus - ok
12:37:39.0148 2508 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
12:37:39.0205 2508 AxInstSV - ok
12:37:39.0251 2508 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
12:37:39.0285 2508 b06bdrv - ok
12:37:39.0325 2508 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
12:37:39.0366 2508 b57nd60a - ok
12:37:39.0414 2508 [ E001DD475A7C27EBE5A0DB45C11BAD71 ] BCM42RLY C:\Windows\system32\drivers\BCM42RLY.sys
12:37:39.0428 2508 BCM42RLY - ok
12:37:39.0522 2508 [ 37394D3553E220FB732C21E217E1BD8B ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
12:37:39.0621 2508 BCM43XX - ok
12:37:39.0664 2508 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
12:37:39.0701 2508 BDESVC - ok
12:37:39.0746 2508 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
12:37:39.0812 2508 Beep - ok
12:37:39.0874 2508 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
12:37:39.0973 2508 BFE - ok
12:37:40.0029 2508 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
12:37:40.0128 2508 BITS - ok
12:37:40.0165 2508 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
12:37:40.0193 2508 blbdrive - ok
12:37:40.0263 2508 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
12:37:40.0285 2508 Bonjour Service - ok
12:37:40.0313 2508 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
12:37:40.0370 2508 bowser - ok
12:37:40.0412 2508 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
12:37:40.0445 2508 BrFiltLo - ok
12:37:40.0463 2508 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
12:37:40.0484 2508 BrFiltUp - ok
12:37:40.0504 2508 [ 5C2F352A4E961D72518261257AAE204B ] Bridge C:\Windows\system32\DRIVERS\bridge.sys
12:37:40.0570 2508 Bridge - ok
12:37:40.0593 2508 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
12:37:40.0642 2508 BridgeMP - ok
12:37:40.0678 2508 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
12:37:40.0743 2508 Browser - ok
12:37:40.0765 2508 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
12:37:40.0806 2508 Brserid - ok
12:37:40.0831 2508 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
12:37:40.0872 2508 BrSerWdm - ok
12:37:40.0910 2508 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
12:37:40.0948 2508 BrUsbMdm - ok
12:37:40.0975 2508 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
12:37:41.0019 2508 BrUsbSer - ok
12:37:41.0042 2508 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
12:37:41.0084 2508 BTHMODEM - ok
12:37:41.0136 2508 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
12:37:41.0202 2508 bthserv - ok
12:37:41.0237 2508 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
12:37:41.0303 2508 cdfs - ok
12:37:41.0348 2508 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
12:37:41.0386 2508 cdrom - ok
12:37:41.0450 2508 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
12:37:41.0537 2508 CertPropSvc - ok
12:37:41.0578 2508 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
12:37:41.0600 2508 circlass - ok
12:37:41.0630 2508 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
12:37:41.0655 2508 CLFS - ok
12:37:41.0723 2508 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:37:41.0740 2508 clr_optimization_v2.0.50727_32 - ok
12:37:41.0793 2508 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
12:37:41.0808 2508 clr_optimization_v2.0.50727_64 - ok
12:37:41.0892 2508 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:37:41.0909 2508 clr_optimization_v4.0.30319_32 - ok
12:37:41.0956 2508 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
12:37:41.0972 2508 clr_optimization_v4.0.30319_64 - ok
12:37:41.0985 2508 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
12:37:42.0020 2508 CmBatt - ok
12:37:42.0037 2508 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
12:37:42.0054 2508 cmdide - ok
12:37:42.0091 2508 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
12:37:42.0141 2508 CNG - ok
12:37:42.0181 2508 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
12:37:42.0197 2508 Compbatt - ok
12:37:42.0233 2508 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
12:37:42.0276 2508 CompositeBus - ok
12:37:42.0295 2508 COMSysApp - ok
12:37:42.0310 2508 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
12:37:42.0326 2508 crcdisk - ok
12:37:42.0364 2508 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
12:37:42.0433 2508 CryptSvc - ok
12:37:42.0449 2508 [ ED5CF92396A62F4C15110DCDB5E854D9 ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
12:37:42.0482 2508 CtClsFlt - ok
12:37:42.0525 2508 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
12:37:42.0605 2508 DcomLaunch - ok
12:37:42.0655 2508 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
12:37:42.0714 2508 defragsvc - ok
12:37:42.0777 2508 [ 2B9A817DC1BDAD9CE5495099B6A7136A ] Desura Install Service C:\Program Files (x86)\Common Files\Desura\desura_service.exe
12:37:42.0794 2508 Desura Install Service - ok
12:37:42.0846 2508 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
12:37:42.0915 2508 DfsC - ok
12:37:43.0093 2508 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
12:37:43.0186 2508 Dhcp - ok
12:37:43.0219 2508 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
12:37:43.0273 2508 discache - ok
12:37:43.0313 2508 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
12:37:43.0333 2508 Disk - ok
12:37:43.0357 2508 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
12:37:43.0424 2508 Dnscache - ok
12:37:43.0488 2508 [ 0840ABBBDF438691EE65A20040635CBE ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
12:37:43.0494 2508 DockLoginService ( UnsignedFile.Multi.Generic ) - warning
12:37:43.0494 2508 DockLoginService - detected UnsignedFile.Multi.Generic (1)
12:37:43.0532 2508 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
12:37:43.0598 2508 dot3svc - ok
12:37:43.0637 2508 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
12:37:43.0698 2508 DPS - ok
12:37:43.0737 2508 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
12:37:43.0783 2508 drmkaud - ok
12:37:43.0851 2508 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
12:37:43.0898 2508 DXGKrnl - ok
12:37:43.0918 2508 EagleX64 - ok
12:37:43.0946 2508 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
12:37:43.0999 2508 EapHost - ok
12:37:44.0092 2508 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
12:37:44.0214 2508 ebdrv - ok
12:37:44.0243 2508 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
12:37:44.0291 2508 EFS - ok
12:37:44.0351 2508 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
12:37:44.0408 2508 ehRecvr - ok
12:37:44.0446 2508 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
12:37:44.0487 2508 ehSched - ok
12:37:44.0537 2508 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
12:37:44.0564 2508 elxstor - ok
12:37:44.0582 2508 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
12:37:44.0622 2508 ErrDev - ok
12:37:44.0681 2508 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
12:37:44.0746 2508 EventSystem - ok
12:37:44.0764 2508 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
12:37:44.0830 2508 exfat - ok
12:37:44.0858 2508 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
12:37:44.0913 2508 fastfat - ok
12:37:44.0964 2508 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
12:37:45.0040 2508 Fax - ok
12:37:45.0072 2508 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
12:37:45.0105 2508 fdc - ok
12:37:45.0130 2508 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
12:37:45.0177 2508 fdPHost - ok
12:37:45.0192 2508 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
12:37:45.0249 2508 FDResPub - ok
12:37:45.0280 2508 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
12:37:45.0299 2508 FileInfo - ok
12:37:45.0320 2508 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
12:37:45.0393 2508 Filetrace - ok
12:37:45.0429 2508 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
12:37:45.0448 2508 flpydisk - ok
12:37:45.0495 2508 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
12:37:45.0518 2508 FltMgr - ok
12:37:45.0576 2508 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
12:37:45.0664 2508 FontCache - ok
12:37:45.0722 2508 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
12:37:45.0737 2508 FontCache3.0.0.0 - ok
12:37:45.0760 2508 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
12:37:45.0778 2508 FsDepends - ok
12:37:45.0830 2508 [ 07DA62C960DDCCC2D35836AEAB4FC578 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
12:37:45.0845 2508 fssfltr - ok
12:37:45.0962 2508 [ 28DDEEEC44E988657B732CF404D504CB ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
12:37:46.0024 2508 fsssvc - ok
12:37:46.0060 2508 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
12:37:46.0076 2508 Fs_Rec - ok
12:37:46.0133 2508 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
12:37:46.0157 2508 fvevol - ok
12:37:46.0192 2508 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
12:37:46.0208 2508 gagp30kx - ok
12:37:46.0250 2508 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
12:37:46.0263 2508 GEARAspiWDM - ok
12:37:46.0293 2508 [ D3316F6E3C011435F36E3D6E49B3196C ] GoToAssist C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
12:37:46.0308 2508 GoToAssist - ok
12:37:46.0348 2508 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
12:37:46.0434 2508 gpsvc - ok
12:37:46.0556 2508 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:37:46.0574 2508 gupdate - ok
12:37:46.0612 2508 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:37:46.0627 2508 gupdatem - ok
12:37:46.0655 2508 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
12:37:46.0671 2508 hamachi - ok
12:37:46.0698 2508 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
12:37:46.0733 2508 hcw85cir - ok
12:37:46.0785 2508 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
12:37:46.0823 2508 HdAudAddService - ok
12:37:46.0870 2508 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
12:37:46.0912 2508 HDAudBus - ok
12:37:46.0922 2508 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
12:37:46.0958 2508 HidBatt - ok
12:37:46.0980 2508 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
12:37:47.0004 2508 HidBth - ok
12:37:47.0019 2508 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
12:37:47.0045 2508 HidIr - ok
12:37:47.0076 2508 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
12:37:47.0136 2508 hidserv - ok
12:37:47.0179 2508 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
12:37:47.0198 2508 HidUsb - ok
12:37:47.0288 2508 [ 34E95DE386032FD7F14C228DD8E1CDBF ] HiPatchService C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
12:37:47.0318 2508 HiPatchService ( UnsignedFile.Multi.Generic ) - warning
12:37:47.0318 2508 HiPatchService - detected UnsignedFile.Multi.Generic (1)
12:37:47.0357 2508 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
12:37:47.0421 2508 hkmsvc - ok
12:37:47.0465 2508 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
12:37:47.0506 2508 HomeGroupListener - ok
12:37:47.0540 2508 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
12:37:47.0587 2508 HomeGroupProvider - ok
12:37:47.0631 2508 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
12:37:47.0652 2508 HpSAMD - ok
12:37:47.0704 2508 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
12:37:47.0784 2508 HTTP - ok
12:37:47.0819 2508 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
12:37:47.0836 2508 hwpolicy - ok
12:37:47.0874 2508 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
12:37:47.0896 2508 i8042prt - ok
12:37:47.0937 2508 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
12:37:47.0962 2508 iaStorV - ok
12:37:48.0014 2508 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
12:37:48.0058 2508 idsvc - ok
12:37:48.0344 2508 [ 4EAA4261E1AD4B860657CADA790B9B38 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
12:37:48.0629 2508 igfx - ok
12:37:48.0717 2508 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
12:37:48.0734 2508 iirsp - ok
12:37:48.0787 2508 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
12:37:48.0878 2508 IKEEXT - ok
12:37:48.0928 2508 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
12:37:48.0945 2508 intelide - ok
12:37:48.0965 2508 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
12:37:49.0005 2508 intelppm - ok
12:37:49.0049 2508 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
12:37:49.0120 2508 IPBusEnum - ok
12:37:49.0178 2508 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:37:49.0221 2508 IpFilterDriver - ok
12:37:49.0272 2508 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
12:37:49.0360 2508 iphlpsvc - ok
12:37:49.0400 2508 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
12:37:49.0442 2508 IPMIDRV - ok
12:37:49.0474 2508 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
12:37:49.0540 2508 IPNAT - ok
12:37:49.0630 2508 [ 0F261EC4F514926177C70C1832374231 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
12:37:49.0668 2508 iPod Service - ok
12:37:49.0704 2508 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
12:37:49.0728 2508 IRENUM - ok
12:37:49.0783 2508 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
12:37:49.0800 2508 isapnp - ok
12:37:49.0851 2508 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
12:37:49.0873 2508 iScsiPrt - ok
12:37:49.0900 2508 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
12:37:49.0917 2508 kbdclass - ok
12:37:49.0958 2508 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
12:37:49.0997 2508 kbdhid - ok
12:37:50.0021 2508 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
12:37:50.0041 2508 KeyIso - ok
12:37:50.0074 2508 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
12:37:50.0092 2508 KSecDD - ok
12:37:50.0130 2508 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
12:37:50.0150 2508 KSecPkg - ok
12:37:50.0182 2508 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
12:37:50.0250 2508 ksthunk - ok
12:37:50.0290 2508 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
12:37:50.0347 2508 KtmRm - ok
12:37:50.0392 2508 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
12:37:50.0466 2508 LanmanServer - ok
12:37:50.0526 2508 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:37:50.0596 2508 LanmanWorkstation - ok
12:37:50.0640 2508 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
12:37:50.0711 2508 lltdio - ok
12:37:50.0745 2508 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
12:37:50.0810 2508 lltdsvc - ok
12:37:50.0825 2508 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
12:37:50.0890 2508 lmhosts - ok
12:37:50.0925 2508 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
12:37:50.0943 2508 LSI_FC - ok
12:37:50.0962 2508 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
12:37:50.0980 2508 LSI_SAS - ok
12:37:50.0987 2508 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
12:37:51.0006 2508 LSI_SAS2 - ok
12:37:51.0014 2508 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
12:37:51.0033 2508 LSI_SCSI - ok
12:37:51.0062 2508 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
12:37:51.0129 2508 luafv - ok
12:37:51.0215 2508 [ A8382713F5870E4AF1DE4E8F7AF9D882 ] Macromedia Licensing Service C:\Program Files (x86)\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe
12:37:51.0245 2508 Macromedia Licensing Service ( UnsignedFile.Multi.Generic ) - warning
12:37:51.0245 2508 Macromedia Licensing Service - detected UnsignedFile.Multi.Generic (1)
12:37:51.0282 2508 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
12:37:51.0304 2508 Mcx2Svc - ok
12:37:51.0343 2508 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
12:37:51.0361 2508 megasas - ok
12:37:51.0411 2508 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
12:37:51.0436 2508 MegaSR - ok
12:37:51.0482 2508 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
12:37:51.0545 2508 MMCSS - ok
12:37:51.0565 2508 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
12:37:51.0629 2508 Modem - ok
12:37:51.0659 2508 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
12:37:51.0698 2508 monitor - ok
12:37:51.0726 2508 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
12:37:51.0744 2508 mouclass - ok
12:37:51.0751 2508 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
12:37:51.0787 2508 mouhid - ok
12:37:51.0820 2508 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
12:37:51.0838 2508 mountmgr - ok
12:37:51.0860 2508 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
12:37:51.0878 2508 mpio - ok
12:37:51.0892 2508 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
12:37:51.0938 2508 mpsdrv - ok
12:37:51.0979 2508 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
12:37:52.0063 2508 MpsSvc - ok
12:37:52.0099 2508 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
12:37:52.0134 2508 MRxDAV - ok
12:37:52.0171 2508 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
12:37:52.0226 2508 mrxsmb - ok
12:37:52.0268 2508 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:37:52.0327 2508 mrxsmb10 - ok
12:37:52.0354 2508 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:37:52.0375 2508 mrxsmb20 - ok
12:37:52.0408 2508 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
12:37:52.0425 2508 msahci - ok
12:37:52.0460 2508 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
12:37:52.0478 2508 msdsm - ok
12:37:52.0500 2508 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
12:37:52.0537 2508 MSDTC - ok
12:37:52.0571 2508 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
12:37:52.0616 2508 Msfs - ok
12:37:52.0636 2508 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
12:37:52.0702 2508 mshidkmdf - ok
12:37:52.0737 2508 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
12:37:52.0753 2508 msisadrv - ok
12:37:52.0796 2508 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
12:37:52.0861 2508 MSiSCSI - ok
12:37:52.0868 2508 msiserver - ok
12:37:52.0901 2508 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
12:37:52.0962 2508 MSKSSRV - ok
12:37:52.0992 2508 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
12:37:53.0046 2508 MSPCLOCK - ok
12:37:53.0063 2508 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
12:37:53.0130 2508 MSPQM - ok
12:37:53.0180 2508 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
12:37:53.0204 2508 MsRPC - ok
12:37:53.0247 2508 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
12:37:53.0265 2508 mssmbios - ok
12:37:53.0352 2508 MSSQL$SQLEXPRESS - ok
12:37:53.0436 2508 [ 7A2A8C975356858EB38466A6B1592E8D ] MSSQLServerADHelper100 c:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
12:37:53.0454 2508 MSSQLServerADHelper100 - ok
12:37:53.0486 2508 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
12:37:53.0544 2508 MSTEE - ok
12:37:53.0567 2508 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
12:37:53.0586 2508 MTConfig - ok
12:37:53.0603 2508 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
12:37:53.0622 2508 Mup - ok
12:37:53.0666 2508 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
12:37:53.0749 2508 napagent - ok
12:37:53.0782 2508 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
12:37:53.0834 2508 NativeWifiP - ok
12:37:53.0892 2508 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
12:37:53.0941 2508 NDIS - ok
12:37:53.0964 2508 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
12:37:54.0008 2508 NdisCap - ok
12:37:54.0027 2508 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
12:37:54.0072 2508 NdisTapi - ok
12:37:54.0100 2508 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
12:37:54.0163 2508 Ndisuio - ok
12:37:54.0201 2508 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
12:37:54.0262 2508 NdisWan - ok
12:37:54.0304 2508 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
12:37:54.0370 2508 NDProxy - ok
12:37:54.0402 2508 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
12:37:54.0463 2508 NetBIOS - ok
12:37:54.0506 2508 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
12:37:54.0568 2508 NetBT - ok
12:37:54.0599 2508 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
12:37:54.0618 2508 Netlogon - ok
12:37:54.0652 2508 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
12:37:54.0739 2508 Netman - ok
12:37:54.0791 2508 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:37:54.0808 2508 NetMsmqActivator - ok
12:37:54.0814 2508 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:37:54.0831 2508 NetPipeActivator - ok
12:37:54.0860 2508 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
12:37:54.0941 2508 netprofm - ok
12:37:54.0948 2508 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:37:54.0966 2508 NetTcpActivator - ok
12:37:54.0974 2508 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:37:54.0991 2508 NetTcpPortSharing - ok
12:37:55.0043 2508 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
12:37:55.0060 2508 nfrd960 - ok
12:37:55.0102 2508 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
12:37:55.0147 2508 NlaSvc - ok
12:37:55.0170 2508 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
12:37:55.0215 2508 Npfs - ok
12:37:55.0243 2508 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
12:37:55.0303 2508 nsi - ok
12:37:55.0326 2508 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
12:37:55.0392 2508 nsiproxy - ok
12:37:55.0459 2508 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
12:37:55.0528 2508 Ntfs - ok
12:37:55.0545 2508 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
12:37:55.0591 2508 Null - ok
12:37:55.0632 2508 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
12:37:55.0651 2508 nvraid - ok
12:37:55.0680 2508 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
12:37:55.0722 2508 nvstor - ok
12:37:55.0747 2508 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
12:37:55.0773 2508 nv_agp - ok
12:37:55.0821 2508 [ 952AB3BDEF38A7391AA05BC8C6028F15 ] NWADI C:\Windows\system32\DRIVERS\NWADIenum.sys
12:37:55.0879 2508 NWADI - ok
12:37:55.0903 2508 [ DE3ABD010D9734CD4AD4E0BA81F50B63 ] NWUSBCDFIL64 C:\Windows\system32\DRIVERS\NwUsbCdFil64.sys
12:37:55.0918 2508 NWUSBCDFIL64 - ok
12:37:55.0967 2508 [ 6AE72C04633788C3C3B71B5BEB17183C ] NWUSBModem C:\Windows\system32\DRIVERS\nwusbmdm.sys
12:37:56.0009 2508 NWUSBModem - ok
12:37:56.0041 2508 [ 6AE72C04633788C3C3B71B5BEB17183C ] NWUSBPort C:\Windows\system32\DRIVERS\nwusbser.sys
12:37:56.0061 2508 NWUSBPort - ok
12:37:56.0110 2508 [ 6AE72C04633788C3C3B71B5BEB17183C ] NWUSBPort2 C:\Windows\system32\DRIVERS\nwusbser2.sys
12:37:56.0129 2508 NWUSBPort2 - ok
12:37:56.0155 2508 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
12:37:56.0175 2508 ohci1394 - ok
12:37:56.0230 2508 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:37:56.0248 2508 ose - ok
12:37:56.0441 2508 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
12:37:56.0611 2508 osppsvc - ok
12:37:56.0639 2508 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
12:37:56.0687 2508 p2pimsvc - ok
12:37:56.0734 2508 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
12:37:56.0761 2508 p2psvc - ok
12:37:56.0781 2508 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
12:37:56.0801 2508 Parport - ok
12:37:56.0839 2508 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
12:37:56.0858 2508 partmgr - ok
12:37:56.0880 2508 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
12:37:56.0923 2508 PcaSvc - ok
12:37:56.0977 2508 PCDSRVC{1E208CE0-FB7451FF-06020101}_0 - ok
12:37:56.0992 2508 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
12:37:57.0012 2508 pci - ok
12:37:57.0045 2508 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
12:37:57.0077 2508 pciide - ok
12:37:57.0106 2508 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
12:37:57.0127 2508 pcmcia - ok
12:37:57.0149 2508 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
12:37:57.0167 2508 pcw - ok
12:37:57.0189 2508 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
12:37:57.0278 2508 PEAUTH - ok
12:37:57.0375 2508 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
12:37:57.0413 2508 PerfHost - ok
12:37:57.0497 2508 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
12:37:57.0603 2508 pla - ok
12:37:57.0661 2508 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
12:37:57.0743 2508 PlugPlay - ok
12:37:57.0779 2508 PnkBstrA - ok
12:37:57.0805 2508 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
12:37:57.0839 2508 PNRPAutoReg - ok
12:37:57.0862 2508 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
12:37:57.0886 2508 PNRPsvc - ok
12:37:57.0923 2508 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
12:37:58.0006 2508 PolicyAgent - ok
12:37:58.0052 2508 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
12:37:58.0115 2508 Power - ok
12:37:58.0389 2508 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
12:37:58.0456 2508 PptpMiniport - ok
12:37:58.0479 2508 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
12:37:58.0516 2508 Processor - ok
12:37:58.0575 2508 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
12:37:58.0599 2508 ProfSvc - ok
12:37:58.0609 2508 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
12:37:58.0629 2508 ProtectedStorage - ok
12:37:58.0673 2508 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
12:37:58.0737 2508 Psched - ok
12:37:58.0779 2508 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
12:37:58.0794 2508 PxHlpa64 - ok
12:37:58.0844 2508 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
12:37:58.0911 2508 ql2300 - ok
12:37:58.0930 2508 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
12:37:58.0948 2508 ql40xx - ok
12:37:58.0977 2508 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
12:37:59.0008 2508 QWAVE - ok
12:37:59.0028 2508 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
12:37:59.0065 2508 QWAVEdrv - ok
12:37:59.0093 2508 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
12:37:59.0152 2508 RasAcd - ok
12:37:59.0188 2508 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
12:37:59.0233 2508 RasAgileVpn - ok
12:37:59.0252 2508 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
12:37:59.0321 2508 RasAuto - ok
12:37:59.0351 2508 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
12:37:59.0409 2508 Rasl2tp - ok
12:37:59.0455 2508 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
12:37:59.0507 2508 RasMan - ok
12:37:59.0544 2508 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
12:37:59.0617 2508 RasPppoe - ok
12:37:59.0657 2508 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
12:37:59.0718 2508 RasSstp - ok
12:37:59.0761 2508 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
12:37:59.0831 2508 rdbss - ok
12:37:59.0861 2508 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
12:37:59.0895 2508 rdpbus - ok
12:37:59.0920 2508 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
12:37:59.0984 2508 RDPCDD - ok
12:38:00.0020 2508 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
12:38:00.0081 2508 RDPENCDD - ok
12:38:00.0111 2508 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
12:38:00.0153 2508 RDPREFMP - ok
12:38:00.0190 2508 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
12:38:00.0230 2508 RDPWD - ok
12:38:00.0280 2508 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
12:38:00.0301 2508 rdyboost - ok
12:38:00.0334 2508 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
12:38:00.0392 2508 RemoteAccess - ok
12:38:00.0423 2508 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
12:38:00.0491 2508 RemoteRegistry - ok
12:38:00.0515 2508 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
12:38:00.0573 2508 RpcEptMapper - ok
12:38:00.0602 2508 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
12:38:00.0641 2508 RpcLocator - ok
12:38:00.0679 2508 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
12:38:00.0733 2508 RpcSs - ok
12:38:00.0785 2508 [ C9FE05A63C500ABE3AFA5786504C4D36 ] RsFx0105 C:\Windows\system32\DRIVERS\RsFx0105.sys
12:38:00.0805 2508 RsFx0105 - ok
12:38:00.0848 2508 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
12:38:00.0909 2508 rspndr - ok
12:38:00.0937 2508 [ 4A25DC970C58104602ED274DACAFD784 ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
12:38:00.0955 2508 RSUSBSTOR - ok
12:38:00.0994 2508 [ EE082E06A82FF630351D1E0EBBD3D8D0 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
12:38:01.0018 2508 RTL8167 - ok
12:38:01.0031 2508 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
12:38:01.0050 2508 SamSs - ok
12:38:01.0073 2508 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
12:38:01.0091 2508 sbp2port - ok
12:38:01.0125 2508 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
12:38:01.0175 2508 SCardSvr - ok
12:38:01.0211 2508 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
12:38:01.0270 2508 scfilter - ok
12:38:01.0341 2508 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
12:38:01.0443 2508 Schedule - ok
12:38:01.0483 2508 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
12:38:01.0527 2508 SCPolicySvc - ok
12:38:01.0572 2508 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
12:38:01.0596 2508 SDRSVC - ok
12:38:01.0680 2508 [ 16A252022535B680046F6E34E136D378 ] SeaPort C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
12:38:01.0702 2508 SeaPort - ok
12:38:01.0736 2508 [ 3EA8A16169C26AFBEB544E0E48421186 ] Secdrv C:\Windows\system32\drivers\SECDRV.SYS
12:38:01.0798 2508 Secdrv - ok
12:38:01.0825 2508 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
12:38:01.0880 2508 seclogon - ok
12:38:01.0903 2508 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
12:38:01.0950 2508 SENS - ok
12:38:01.0979 2508 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
12:38:02.0016 2508 SensrSvc - ok
12:38:02.0036 2508 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
12:38:02.0071 2508 Serenum - ok
12:38:02.0098 2508 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
12:38:02.0117 2508 Serial - ok
12:38:02.0150 2508 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
12:38:02.0184 2508 sermouse - ok
12:38:02.0234 2508 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
12:38:02.0307 2508 SessionEnv - ok
12:38:02.0355 2508 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
12:38:02.0396 2508 sffdisk - ok
12:38:02.0419 2508 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
12:38:02.0452 2508 sffp_mmc - ok
12:38:02.0476 2508 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
12:38:02.0519 2508 sffp_sd - ok
12:38:02.0549 2508 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
12:38:02.0588 2508 sfloppy - ok
12:38:02.0624 2508 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
12:38:02.0692 2508 SharedAccess - ok
12:38:02.0728 2508 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:38:02.0800 2508 ShellHWDetection - ok
12:38:02.0835 2508 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
12:38:02.0854 2508 SiSRaid2 - ok
12:38:02.0867 2508 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
12:38:02.0884 2508 SiSRaid4 - ok
12:38:02.0967 2508 [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
12:38:02.0984 2508 SkypeUpdate - ok
12:38:03.0009 2508 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
12:38:03.0054 2508 Smb - ok
12:38:03.0100 2508 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
12:38:03.0137 2508 SNMPTRAP - ok
12:38:03.0176 2508 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
12:38:03.0193 2508 spldr - ok
12:38:03.0241 2508 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
12:38:03.0282 2508 Spooler - ok
12:38:03.0397 2508 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
12:38:03.0577 2508 sppsvc - ok
12:38:03.0612 2508 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
12:38:03.0677 2508 sppuinotify - ok
12:38:03.0752 2508 [ 602884696850C86434530790B110E8EB ] sptd C:\Windows\system32\Drivers\sptd.sys
12:38:03.0753 2508 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 602884696850C86434530790B110E8EB
12:38:03.0756 2508 sptd ( LockedFile.Multi.Generic ) - warning
12:38:03.0756 2508 sptd - detected LockedFile.Multi.Generic (1)
12:38:03.0875 2508 [ 45E65FB17A4CD5FACBD3CA16C8334C82 ] SQLAgent$SQLEXPRESS c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE
12:38:03.0898 2508 SQLAgent$SQLEXPRESS - ok
12:38:03.0968 2508 [ 10D936DCED9EACD1A1B3FCDDA6D7A4EB ] SQLBrowser c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
12:38:03.0988 2508 SQLBrowser - ok
12:38:04.0052 2508 [ F92E5F93BE572B512DA3C016B675EDE0 ] SQLWriter c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
12:38:04.0069 2508 SQLWriter - ok
12:38:04.0097 2508 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
12:38:04.0138 2508 srv - ok
12:38:04.0182 2508 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
12:38:04.0221 2508 srv2 - ok
12:38:04.0252 2508 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
12:38:04.0288 2508 srvnet - ok
12:38:04.0336 2508 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
12:38:04.0405 2508 SSDPSRV - ok
12:38:04.0453 2508 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
12:38:04.0522 2508 SstpSvc - ok
12:38:04.0654 2508 [ 444109453A2B87E6C16BCDA5953E81A9 ] STacSV C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\STacSV64.exe
12:38:04.0691 2508 STacSV - ok
12:38:04.0776 2508 Steam Client Service - ok
12:38:04.0807 2508 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
12:38:04.0825 2508 stexstor - ok
12:38:04.0862 2508 [ 02E784FA49032F84964DB90A3ED81890 ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
12:38:04.0908 2508 STHDA - ok
12:38:04.0960 2508 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
12:38:05.0026 2508 stisvc - ok
12:38:05.0063 2508 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
12:38:05.0079 2508 swenum - ok
12:38:05.0105 2508 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
12:38:05.0191 2508 swprv - ok
12:38:05.0257 2508 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
12:38:05.0350 2508 SysMain - ok
12:38:05.0379 2508 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
12:38:05.0425 2508 TabletInputService - ok
12:38:05.0460 2508 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
12:38:05.0533 2508 TapiSrv - ok
12:38:05.0571 2508 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
12:38:05.0619 2508 TBS - ok
12:38:05.0686 2508 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
12:38:05.0772 2508 Tcpip - ok
12:38:05.0835 2508 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
12:38:05.0884 2508 TCPIP6 - ok
12:38:05.0916 2508 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
12:38:05.0942 2508 tcpipreg - ok
12:38:05.0972 2508 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
12:38:06.0035 2508 TDPIPE - ok
12:38:06.0075 2508 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
12:38:06.0109 2508 TDTCP - ok
12:38:06.0150 2508 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
12:38:06.0193 2508 tdx - ok
12:38:06.0227 2508 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
12:38:06.0244 2508 TermDD - ok
12:38:06.0288 2508 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
12:38:06.0364 2508 TermService - ok
12:38:06.0400 2508 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
12:38:06.0440 2508 Themes - ok
12:38:06.0459 2508 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
12:38:06.0506 2508 THREADORDER - ok
12:38:06.0523 2508 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
12:38:06.0572 2508 TrkWks - ok
12:38:06.0618 2508 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:38:06.0674 2508 TrustedInstaller - ok
12:38:06.0715 2508 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
12:38:06.0781 2508 tssecsrv - ok
12:38:06.0830 2508 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
12:38:06.0861 2508 TsUsbFlt - ok
12:38:06.0921 2508 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
12:38:06.0964 2508 tunnel - ok
12:38:07.0003 2508 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
12:38:07.0021 2508 uagp35 - ok
12:38:07.0058 2508 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
12:38:07.0121 2508 udfs - ok
12:38:07.0165 2508 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
12:38:07.0188 2508 UI0Detect - ok
12:38:07.0215 2508 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
12:38:07.0233 2508 uliagpkx - ok
12:38:07.0278 2508 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
12:38:07.0312 2508 umbus - ok
12:38:07.0348 2508 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
12:38:07.0385 2508 UmPass - ok
12:38:07.0422 2508 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
12:38:07.0502 2508 upnphost - ok
12:38:07.0561 2508 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
12:38:07.0568 2508 USBAAPL64 ( UnsignedFile.Multi.Generic ) - warning
12:38:07.0568 2508 USBAAPL64 - detected UnsignedFile.Multi.Generic (1)
12:38:07.0600 2508 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
12:38:07.0639 2508 usbccgp - ok
12:38:07.0689 2508 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
12:38:07.0712 2508 usbcir - ok
12:38:07.0742 2508 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
12:38:07.0776 2508 usbehci - ok
12:38:07.0807 2508 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
12:38:07.0830 2508 usbhub - ok
12:38:07.0853 2508 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
12:38:07.0882 2508 usbohci - ok
12:38:07.0922 2508 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
12:38:07.0963 2508 usbprint - ok
12:38:07.0991 2508 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:38:08.0024 2508 USBSTOR - ok
12:38:08.0050 2508 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
12:38:08.0091 2508 usbuhci - ok
12:38:08.0151 2508 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
12:38:08.0175 2508 usbvideo - ok
12:38:08.0204 2508 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
12:38:08.0264 2508 UxSms - ok
12:38:08.0276 2508 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
12:38:08.0299 2508 VaultSvc - ok
12:38:08.0336 2508 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
12:38:08.0353 2508 vdrvroot - ok
12:38:08.0399 2508 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
12:38:08.0479 2508 vds - ok
12:38:08.0519 2508 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
12:38:08.0542 2508 vga - ok
12:38:08.0555 2508 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
12:38:08.0616 2508 VgaSave - ok
12:38:08.0663 2508 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
12:38:08.0686 2508 vhdmp - ok
12:38:08.0702 2508 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
12:38:08.0720 2508 viaide - ok
12:38:08.0742 2508 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
12:38:08.0761 2508 volmgr - ok
12:38:08.0794 2508 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
12:38:08.0819 2508 volmgrx - ok
12:38:08.0847 2508 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
12:38:08.0869 2508 volsnap - ok
12:38:08.0899 2508 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
12:38:08.0918 2508 vsmraid - ok
12:38:08.0971 2508 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
12:38:09.0080 2508 VSS - ok
12:38:09.0103 2508 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
12:38:09.0143 2508 vwifibus - ok
12:38:09.0170 2508 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
12:38:09.0195 2508 vwififlt - ok
12:38:09.0230 2508 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
12:38:09.0260 2508 vwifimp - ok
12:38:09.0316 2508 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
12:38:09.0381 2508 W32Time - ok
12:38:09.0405 2508 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
12:38:09.0424 2508 WacomPen - ok
12:38:09.0514 2508 [ 4AA2CC5979AFF984227364F2C23B04F3 ] WajamUpdater C:\Program Files (x86)\Wajam\Updater\WajamUpdater.exe
12:38:09.0539 2508 WajamUpdater ( UnsignedFile.Multi.Generic ) - warning
12:38:09.0539 2508 WajamUpdater - detected UnsignedFile.Multi.Generic (1)
12:38:09.0605 2508 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
12:38:09.0671 2508 WANARP - ok
12:38:09.0698 2508 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
12:38:09.0742 2508 Wanarpv6 - ok
12:38:09.0807 2508 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
12:38:09.0869 2508 WatAdminSvc - ok
12:38:09.0929 2508 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
12:38:10.0004 2508 wbengine - ok
12:38:10.0056 2508 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
12:38:10.0091 2508 WbioSrvc - ok
12:38:10.0125 2508 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
12:38:10.0185 2508 wcncsvc - ok
12:38:10.0203 2508 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:38:10.0241 2508 WcsPlugInService - ok
12:38:10.0276 2508 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
12:38:10.0293 2508 Wd - ok
12:38:10.0338 2508 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
12:38:10.0381 2508 Wdf01000 - ok
12:38:10.0392 2508 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
12:38:10.0439 2508 WdiServiceHost - ok
12:38:10.0445 2508 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
12:38:10.0473 2508 WdiSystemHost - ok
12:38:10.0507 2508 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
12:38:10.0561 2508 WebClient - ok
12:38:10.0593 2508 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
12:38:10.0665 2508 Wecsvc - ok
12:38:10.0688 2508 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
12:38:10.0752 2508 wercplsupport - ok
12:38:10.0776 2508 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
12:38:10.0844 2508 WerSvc - ok
12:38:10.0876 2508 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
12:38:10.0919 2508 WfpLwf - ok
12:38:10.0957 2508 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
12:38:10.0977 2508 WimFltr - ok
12:38:11.0009 2508 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
12:38:11.0026 2508 WIMMount - ok
12:38:11.0044 2508 WinDefend - ok
12:38:11.0063 2508 WinHttpAutoProxySvc - ok
12:38:11.0111 2508 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
12:38:11.0173 2508 Winmgmt - ok
12:38:11.0254 2508 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
12:38:11.0382 2508 WinRM - ok
12:38:11.0457 2508 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
12:38:11.0497 2508 WinUsb - ok
12:38:11.0539 2508 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
12:38:11.0603 2508 Wlansvc - ok
12:38:11.0675 2508 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
12:38:11.0690 2508 wlcrasvc - ok
12:38:11.0814 2508 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
12:38:11.0907 2508 wlidsvc - ok
12:38:11.0934 2508 [ 13B0A570E1AE451C92DA550085D72CF3 ] wltrysvc C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE
12:38:11.0955 2508 wltrysvc ( UnsignedFile.Multi.Generic ) - warning
12:38:11.0955 2508 wltrysvc - detected UnsignedFile.Multi.Generic (1)
12:38:11.0997 2508 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
12:38:12.0031 2508 WmiAcpi - ok
12:38:12.0070 2508 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
12:38:12.0106 2508 wmiApSrv - ok
12:38:12.0143 2508 WMPNetworkSvc - ok
12:38:12.0171 2508 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
12:38:12.0193 2508 WPCSvc - ok
12:38:12.0226 2508 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
12:38:12.0252 2508 WPDBusEnum - ok
12:38:12.0273 2508 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
12:38:12.0317 2508 ws2ifsl - ok
12:38:12.0336 2508 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
12:38:12.0385 2508 wscsvc - ok
12:38:12.0390 2508 WSearch - ok
12:38:12.0480 2508 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
12:38:12.0540 2508 wuauserv - ok
12:38:12.0574 2508 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
12:38:12.0641 2508 WudfPf - ok
12:38:12.0677 2508 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
12:38:12.0698 2508 WUDFRd - ok
12:38:12.0730 2508 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
12:38:12.0777 2508 wudfsvc - ok
12:38:12.0809 2508 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
12:38:12.0860 2508 WwanSvc - ok
12:38:13.0082 2508 X6va003 - ok
12:38:13.0216 2508 X6va005 - ok
12:38:13.0455 2508 X6va006 - ok
12:38:13.0593 2508 X6va009 - ok
12:38:13.0620 2508 X6va011 - ok
12:38:13.0714 2508 [ 2EE48CFCE7CA8E0DB4C44C7476C0943B ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys
12:38:13.0742 2508 xusb21 - ok
12:38:13.0801 2508 ================ Scan global ===============================
12:38:13.0834 2508 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
12:38:13.0869 2508 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\system32\winsrv.dll
12:38:13.0891 2508 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\system32\winsrv.dll
12:38:13.0940 2508 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
12:38:13.0968 2508 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
12:38:13.0975 2508 [Global] - ok
12:38:13.0976 2508 ================ Scan MBR ==================================
12:38:13.0988 2508 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
12:38:14.0317 2508 \Device\Harddisk0\DR0 - ok
12:38:14.0327 2508 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
12:38:14.0557 2508 \Device\Harddisk1\DR1 - ok
12:38:14.0560 2508 ================ Scan VBR ==================================
12:38:14.0575 2508 [ D6F66A4799A81078EEE3EB4855343D7A ] \Device\Harddisk0\DR0\Partition1
12:38:14.0576 2508 \Device\Harddisk0\DR0\Partition1 - ok
12:38:14.0613 2508 [ 5E0E0E7E04F85FB3FCC85C3F4B665345 ] \Device\Harddisk0\DR0\Partition2
12:38:14.0614 2508 \Device\Harddisk0\DR0\Partition2 - ok
12:38:14.0623 2508 [ FA29772A6A1B733CF52534245AA90D1D ] \Device\Harddisk1\DR1\Partition1
12:38:14.0625 2508 \Device\Harddisk1\DR1\Partition1 - ok
12:38:14.0626 2508 ============================================================
12:38:14.0626 2508 Scan finished
12:38:14.0626 2508 ============================================================
12:38:14.0647 4092 Detected object count: 8
12:38:14.0647 4092 Actual detected object count: 8
12:40:13.0061 4092 Akamai ( HiddenFile.Multi.Generic ) - skipped by user
12:40:13.0061 4092 Akamai ( HiddenFile.Multi.Generic ) - User select action: Skip
12:40:13.0064 4092 DockLoginService ( UnsignedFile.Multi.Generic ) - skipped by user
12:40:13.0064 4092 DockLoginService ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:40:13.0066 4092 HiPatchService ( UnsignedFile.Multi.Generic ) - skipped by user
12:40:13.0066 4092 HiPatchService ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:40:13.0069 4092 Macromedia Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
12:40:13.0069 4092 Macromedia Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:40:13.0072 4092 sptd ( LockedFile.Multi.Generic ) - skipped by user
12:40:13.0072 4092 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
12:40:13.0075 4092 USBAAPL64 ( UnsignedFile.Multi.Generic ) - skipped by user
12:40:13.0075 4092 USBAAPL64 ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:40:13.0077 4092 WajamUpdater ( UnsignedFile.Multi.Generic ) - skipped by user
12:40:13.0078 4092 WajamUpdater ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:40:13.0080 4092 wltrysvc ( UnsignedFile.Multi.Generic ) - skipped by user
12:40:13.0080 4092 wltrysvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:40:32.0512 6752 ============================================================
12:40:32.0512 6752 Scan started
12:40:32.0512 6752 Mode: Manual; SigCheck; TDLFS;
12:40:32.0512 6752 ============================================================
12:40:33.0044 6752 ================ Scan system memory ========================
12:40:33.0044 6752 System memory - ok
12:40:33.0044 6752 ================ Scan services =============================
12:40:33.0170 6752 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
12:40:33.0212 6752 1394ohci - ok
12:40:33.0258 6752 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
12:40:33.0281 6752 ACPI - ok
12:40:33.0307 6752 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
12:40:33.0327 6752 AcpiPmi - ok
12:40:33.0417 6752 [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
12:40:33.0433 6752 AdobeARMservice - ok
12:40:33.0544 6752 [ 95CE557D16A75606CCC2D7F3B0B0BCCB ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
12:40:33.0562 6752 AdobeFlashPlayerUpdateSvc - ok
12:40:33.0600 6752 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
12:40:33.0624 6752 adp94xx - ok
12:40:33.0636 6752 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
12:40:33.0658 6752 adpahci - ok
12:40:33.0669 6752 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
12:40:33.0687 6752 adpu320 - ok
12:40:33.0713 6752 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
12:40:33.0756 6752 AeLookupSvc - ok
12:40:33.0839 6752 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\AESTSr64.exe
12:40:33.0857 6752 AESTFilters - ok
12:40:33.0892 6752 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
12:40:33.0916 6752 AFD - ok
12:40:33.0952 6752 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
12:40:33.0968 6752 agp440 - ok
12:40:34.0101 6752 [ B9B98E08EC127900025F42462D3D0A66 ] Akamai c:\program files (x86)\common files\akamai/netsession_win_ce5ba24.dll
12:40:34.0101 6752 Suspicious file (Hidden): c:\program files (x86)\common files\akamai/netsession_win_ce5ba24.dll. md5: B9B98E08EC127900025F42462D3D0A66
12:40:34.0112 6752 Akamai ( HiddenFile.Multi.Generic ) - warning
12:40:34.0112 6752 Akamai - detected HiddenFile.Multi.Generic (1)
12:40:34.0135 6752 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
12:40:34.0154 6752 ALG - ok
12:40:34.0185 6752 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
12:40:34.0202 6752 aliide - ok
12:40:34.0219 6752 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
12:40:34.0234 6752 amdide - ok
12:40:34.0284 6752 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
12:40:34.0302 6752 AmdK8 - ok
12:40:34.0318 6752 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
12:40:34.0338 6752 AmdPPM - ok
12:40:34.0365 6752 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
12:40:34.0384 6752 amdsata - ok
12:40:34.0394 6752 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
12:40:34.0414 6752 amdsbs - ok
12:40:34.0434 6752 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
12:40:34.0452 6752 amdxata - ok
12:40:34.0486 6752 [ 3CC4531F11648A6081A7BA3AA4924D04 ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
12:40:34.0503 6752 ApfiltrService - ok
12:40:34.0540 6752 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
12:40:34.0582 6752 AppID - ok
12:40:34.0614 6752 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
12:40:34.0657 6752 AppIDSvc - ok
12:40:34.0695 6752 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
12:40:34.0737 6752 Appinfo - ok
12:40:34.0802 6752 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
12:40:34.0816 6752 Apple Mobile Device - ok
12:40:34.0844 6752 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
12:40:34.0860 6752 arc - ok
12:40:34.0869 6752 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
12:40:34.0888 6752 arcsas - ok
12:40:34.0986 6752 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
12:40:35.0001 6752 aspnet_state - ok
12:40:35.0031 6752 [ 4FCAEF0C5BE7629AEB878998E0FE959B ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
12:40:35.0045 6752 aswFsBlk - ok
12:40:35.0082 6752 [ B50CDD87772D6A11CB90924AAD399DF8 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
12:40:35.0097 6752 aswMonFlt - ok
12:40:35.0128 6752 [ 57768C7DB4681F2510F247F82EF31D4F ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
12:40:35.0142 6752 aswRdr - ok
12:40:35.0175 6752 [ E71D826A1F3CE9C9DE3E77F2D02AFFBF ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
12:40:35.0205 6752 aswSnx - ok
12:40:35.0246 6752 [ 538A32E2C99BF073D4CA76C30BEDAA60 ] aswSP C:\Windows\system32\drivers\aswSP.sys
12:40:35.0273 6752 aswSP - ok
12:40:35.0294 6752 [ 6EDC79D73745FD44C41B55B2D13D0B70 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
12:40:35.0309 6752 aswTdi - ok
12:40:35.0330 6752 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
12:40:35.0374 6752 AsyncMac - ok
12:40:35.0405 6752 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
12:40:35.0422 6752 atapi - ok
12:40:35.0465 6752 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
12:40:35.0519 6752 AudioEndpointBuilder - ok
12:40:35.0543 6752 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
12:40:35.0592 6752 AudioSrv - ok
12:40:35.0650 6752 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
12:40:35.0665 6752 avast! Antivirus - ok
12:40:35.0702 6752 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
12:40:35.0728 6752 AxInstSV - ok
12:40:35.0750 6752 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
12:40:35.0772 6752 b06bdrv - ok
12:40:35.0791 6752 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
12:40:35.0812 6752 b57nd60a - ok
12:40:35.0846 6752 [ E001DD475A7C27EBE5A0DB45C11BAD71 ] BCM42RLY C:\Windows\system32\drivers\BCM42RLY.sys
12:40:35.0860 6752 BCM42RLY - ok
12:40:36.0055 6752 [ 37394D3553E220FB732C21E217E1BD8B ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
12:40:36.0112 6752 BCM43XX - ok
12:40:36.0152 6752 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
12:40:36.0173 6752 BDESVC - ok
12:40:36.0189 6752 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
12:40:36.0232 6752 Beep - ok
12:40:36.0273 6752 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
12:40:36.0333 6752 BFE - ok
12:40:36.0384 6752 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
12:40:36.0438 6752 BITS - ok
12:40:36.0453 6752 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
12:40:36.0472 6752 blbdrive - ok
12:40:36.0519 6752 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
12:40:36.0542 6752 Bonjour Service - ok
12:40:36.0567 6752 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
12:40:36.0585 6752 bowser - ok
12:40:36.0600 6752 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
12:40:36.0621 6752 BrFiltLo - ok
12:40:36.0640 6752 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
12:40:36.0661 6752 BrFiltUp - ok
12:40:36.0681 6752 [ 5C2F352A4E961D72518261257AAE204B ] Bridge C:\Windows\system32\DRIVERS\bridge.sys
12:40:36.0726 6752 Bridge - ok
12:40:36.0733 6752 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
12:40:36.0780 6752 BridgeMP - ok
12:40:36.0811 6752 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
12:40:36.0832 6752 Browser - ok
12:40:36.0853 6752 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
12:40:36.0876 6752 Brserid - ok
12:40:36.0897 6752 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
12:40:36.0919 6752 BrSerWdm - ok
12:40:36.0931 6752 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
12:40:36.0952 6752 BrUsbMdm - ok
12:40:36.0963 6752 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
12:40:36.0982 6752 BrUsbSer - ok
12:40:36.0990 6752 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
12:40:37.0013 6752 BTHMODEM - ok
12:40:37.0047 6752 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
12:40:37.0092 6752 bthserv - ok
12:40:37.0114 6752 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
12:40:37.0159 6752 cdfs - ok
12:40:37.0204 6752 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
12:40:37.0224 6752 cdrom - ok
12:40:37.0262 6752 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
12:40:37.0307 6752 CertPropSvc - ok
12:40:37.0323 6752 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
12:40:37.0344 6752 circlass - ok
12:40:37.0375 6752 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
12:40:37.0397 6752 CLFS - ok
12:40:37.0467 6752 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:40:37.0483 6752 clr_optimization_v2.0.50727_32 - ok
12:40:37.0526 6752 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
12:40:37.0541 6752 clr_optimization_v2.0.50727_64 - ok
12:40:37.0603 6752 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:40:37.0618 6752 clr_optimization_v4.0.30319_32 - ok
12:40:37.0680 6752 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
12:40:37.0696 6752 clr_optimization_v4.0.30319_64 - ok
12:40:37.0703 6752 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
12:40:37.0723 6752 CmBatt - ok
12:40:37.0737 6752 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
12:40:37.0757 6752 cmdide - ok
12:40:37.0802 6752 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
12:40:37.0833 6752 CNG - ok
12:40:37.0859 6752 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
12:40:37.0876 6752 Compbatt - ok
12:40:37.0911 6752 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
12:40:37.0932 6752 CompositeBus - ok
12:40:37.0938 6752 COMSysApp - ok
12:40:37.0955 6752 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
12:40:37.0971 6752 crcdisk - ok
12:40:38.0009 6752 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
12:40:38.0029 6752 CryptSvc - ok
12:40:38.0050 6752 [ ED5CF92396A62F4C15110DCDB5E854D9 ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
12:40:38.0069 6752 CtClsFlt - ok
12:40:38.0114 6752 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
12:40:38.0168 6752 DcomLaunch - ok
12:40:38.0200 6752 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
12:40:38.0251 6752 defragsvc - ok
12:40:38.0288 6752 [ 2B9A817DC1BDAD9CE5495099B6A7136A ] Desura Install Service C:\Program Files (x86)\Common Files\Desura\desura_service.exe
12:40:38.0305 6752 Desura Install Service - ok
12:40:38.0335 6752 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
12:40:38.0377 6752 DfsC - ok
12:40:38.0420 6752 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
12:40:38.0445 6752 Dhcp - ok
12:40:38.0464 6752 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
12:40:38.0508 6752 discache - ok
12:40:38.0524 6752 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
12:40:38.0543 6752 Disk - ok
12:40:38.0545 6752 Scan interrupted by user!
12:40:38.0545 6752 ================ Scan global ===============================
12:40:38.0545 6752 Scan interrupted by user!
12:40:38.0545 6752 ================ Scan MBR ==================================
12:40:38.0545 6752 Scan interrupted by user!
12:40:38.0546 6752 ================ Scan VBR ==================================
12:40:38.0546 6752 Scan interrupted by user!
12:40:38.0547 6752 ============================================================
12:40:38.0547 6752 Scan finished
12:40:38.0547 6752 ============================================================
12:40:38.0560 3112 Detected object count: 1
12:40:38.0560 3112 Actual detected object count: 1
12:40:42.0090 3112 Akamai ( HiddenFile.Multi.Generic ) - skipped by user
12:40:42.0090 3112 Akamai ( HiddenFile.Multi.Generic ) - User select action: Skip
12:41:21.0770 7148 ============================================================
12:41:21.0770 7148 Scan started
12:41:21.0770 7148 Mode: Manual; SigCheck; TDLFS;
12:41:21.0770 7148 ============================================================
12:41:22.0329 7148 ================ Scan system memory ========================
12:41:22.0329 7148 System memory - ok
12:41:22.0329 7148 ================ Scan services =============================
12:41:22.0455 7148 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
12:41:22.0477 7148 1394ohci - ok
12:41:22.0521 7148 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
12:41:22.0543 7148 ACPI - ok
12:41:22.0570 7148 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
12:41:22.0590 7148 AcpiPmi - ok
12:41:22.0680 7148 [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
12:41:22.0694 7148 AdobeARMservice - ok
12:41:22.0807 7148 [ 95CE557D16A75606CCC2D7F3B0B0BCCB ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
12:41:22.0823 7148 AdobeFlashPlayerUpdateSvc - ok
12:41:22.0863 7148 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
12:41:22.0887 7148 adp94xx - ok
12:41:22.0899 7148 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
12:41:22.0920 7148 adpahci - ok
12:41:22.0930 7148 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
12:41:22.0950 7148 adpu320 - ok
12:41:22.0976 7148 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
12:41:23.0020 7148 AeLookupSvc - ok
12:41:23.0102 7148 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\AESTSr64.exe
12:41:23.0118 7148 AESTFilters - ok
12:41:23.0155 7148 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
12:41:23.0178 7148 AFD - ok
12:41:23.0215 7148 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
12:41:23.0231 7148 agp440 - ok
12:41:23.0365 7148 [ B9B98E08EC127900025F42462D3D0A66 ] Akamai c:\program files (x86)\common files\akamai/netsession_win_ce5ba24.dll
12:41:23.0366 7148 Suspicious file (Hidden): c:\program files (x86)\common files\akamai/netsession_win_ce5ba24.dll. md5: B9B98E08EC127900025F42462D3D0A66
12:41:23.0376 7148 Akamai ( HiddenFile.Multi.Generic ) - warning
12:41:23.0376 7148 Akamai - detected HiddenFile.Multi.Generic (1)
12:41:23.0398 7148 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
12:41:23.0417 7148 ALG - ok
12:41:23.0437 7148 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
12:41:23.0454 7148 aliide - ok
12:41:23.0471 7148 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
12:41:23.0487 7148 amdide - ok
12:41:23.0513 7148 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
12:41:23.0532 7148 AmdK8 - ok
12:41:23.0548 7148 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
12:41:23.0566 7148 AmdPPM - ok
12:41:23.0594 7148 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
12:41:23.0611 7148 amdsata - ok
12:41:23.0622 7148 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
12:41:23.0641 7148 amdsbs - ok
12:41:23.0664 7148 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
12:41:23.0680 7148 amdxata - ok
12:41:23.0716 7148 [ 3CC4531F11648A6081A7BA3AA4924D04 ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
12:41:23.0731 7148 ApfiltrService - ok
12:41:23.0769 7148 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
12:41:23.0813 7148 AppID - ok
12:41:23.0843 7148 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
12:41:23.0887 7148 AppIDSvc - ok
12:41:23.0924 7148 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
12:41:23.0966 7148 Appinfo - ok
12:41:24.0020 7148 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
12:41:24.0036 7148 Apple Mobile Device - ok
12:41:24.0062 7148 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
12:41:24.0079 7148 arc - ok
12:41:24.0087 7148 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
12:41:24.0105 7148 arcsas - ok
12:41:24.0204 7148 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
12:41:24.0218 7148 aspnet_state - ok
12:41:24.0249 7148 [ 4FCAEF0C5BE7629AEB878998E0FE959B ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
12:41:24.0264 7148 aswFsBlk - ok
12:41:24.0322 7148 [ B50CDD87772D6A11CB90924AAD399DF8 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
12:41:24.0339 7148 aswMonFlt - ok
12:41:24.0480 7148 [ 57768C7DB4681F2510F247F82EF31D4F ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
12:41:24.0495 7148 aswRdr - ok
12:41:24.0538 7148 [ E71D826A1F3CE9C9DE3E77F2D02AFFBF ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
12:41:24.0569 7148 aswSnx - ok
12:41:24.0586 7148 [ 538A32E2C99BF073D4CA76C30BEDAA60 ] aswSP C:\Windows\system32\drivers\aswSP.sys
12:41:24.0606 7148 aswSP - ok
12:41:24.0624 7148 [ 6EDC79D73745FD44C41B55B2D13D0B70 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
12:41:24.0639 7148 aswTdi - ok
12:41:24.0660 7148 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
12:41:24.0704 7148 AsyncMac - ok
12:41:24.0735 7148 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
12:41:24.0752 7148 atapi - ok
12:41:24.0795 7148 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
12:41:24.0844 7148 AudioEndpointBuilder - ok
12:41:24.0873 7148 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
12:41:24.0921 7148 AudioSrv - ok
12:41:24.0980 7148 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
12:41:24.0995 7148 avast! Antivirus - ok
12:41:25.0032 7148 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
12:41:25.0059 7148 AxInstSV - ok
12:41:25.0079 7148 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
12:41:25.0102 7148 b06bdrv - ok
12:41:25.0121 7148 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
12:41:25.0142 7148 b57nd60a - ok
12:41:25.0176 7148 [ E001DD475A7C27EBE5A0DB45C11BAD71 ] BCM42RLY C:\Windows\system32\drivers\BCM42RLY.sys
12:41:25.0189 7148 BCM42RLY - ok
12:41:25.0277 7148 [ 37394D3553E220FB732C21E217E1BD8B ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
12:41:25.0344 7148 BCM43XX - ok
12:41:25.0382 7148 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
12:41:25.0402 7148 BDESVC - ok
12:41:25.0419 7148 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
12:41:25.0461 7148 Beep - ok
12:41:25.0503 7148 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
12:41:25.0555 7148 BFE - ok
12:41:25.0603 7148 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
12:41:25.0658 7148 BITS - ok
12:41:25.0672 7148 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
12:41:25.0690 7148 blbdrive - ok
12:41:25.0737 7148 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
12:41:25.0757 7148 Bonjour Service - ok
12:41:25.0786 7148 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
12:41:25.0806 7148 bowser - ok
12:41:25.0819 7148 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
12:41:25.0840 7148 BrFiltLo - ok
12:41:25.0858 7148 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
12:41:25.0879 7148 BrFiltUp - ok
12:41:25.0899 7148 [ 5C2F352A4E961D72518261257AAE204B ] Bridge C:\Windows\system32\DRIVERS\bridge.sys
12:41:25.0944 7148 Bridge - ok
12:41:25.0950 7148 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
12:41:25.0994 7148 BridgeMP - ok
12:41:26.0030 7148 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
12:41:26.0049 7148 Browser - ok
12:41:26.0072 7148 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
12:41:26.0093 7148 Brserid - ok
12:41:26.0104 7148 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
12:41:26.0126 7148 BrSerWdm - ok
12:41:26.0139 7148 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
12:41:26.0159 7148 BrUsbMdm - ok
12:41:26.0171 7148 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
12:41:26.0189 7148 BrUsbSer - ok
12:41:26.0197 7148 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
12:41:26.0219 7148 BTHMODEM - ok
12:41:26.0243 7148 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
12:41:26.0287 7148 bthserv - ok
12:41:26.0313 7148 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
12:41:26.0358 7148 cdfs - ok
12:41:26.0389 7148 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
12:41:26.0410 7148 cdrom - ok
12:41:26.0447 7148 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
12:41:26.0490 7148 CertPropSvc - ok
12:41:26.0508 7148 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
12:41:26.0530 7148 circlass - ok
12:41:26.0549 7148 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
12:41:26.0572 7148 CLFS - ok
12:41:26.0641 7148 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:41:26.0656 7148 clr_optimization_v2.0.50727_32 - ok
12:41:26.0700 7148 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
12:41:26.0715 7148 clr_optimization_v2.0.50727_64 - ok
12:41:26.0788 7148 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:41:26.0805 7148 clr_optimization_v4.0.30319_32 - ok
12:41:26.0842 7148 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
12:41:26.0858 7148 clr_optimization_v4.0.30319_64 - ok
12:41:26.0865 7148 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
12:41:26.0885 7148 CmBatt - ok
12:41:26.0900 7148 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
12:41:26.0916 7148 cmdide - ok
12:41:26.0954 7148 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
12:41:26.0983 7148 CNG - ok
12:41:27.0011 7148 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
12:41:27.0027 7148 Compbatt - ok
12:41:27.0063 7148 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
12:41:27.0084 7148 CompositeBus - ok
12:41:27.0090 7148 COMSysApp - ok
12:41:27.0107 7148 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
12:41:27.0123 7148 crcdisk - ok
12:41:27.0161 7148 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
12:41:27.0180 7148 CryptSvc - ok
12:41:27.0202 7148 [ ED5CF92396A62F4C15110DCDB5E854D9 ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
12:41:27.0218 7148 CtClsFlt - ok
12:41:27.0255 7148 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
12:41:27.0304 7148 DcomLaunch - ok
12:41:27.0329 7148 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
12:41:27.0380 7148 defragsvc - ok
12:41:27.0407 7148 [ 2B9A817DC1BDAD9CE5495099B6A7136A ] Desura Install Service C:\Program Files (x86)\Common Files\Desura\desura_service.exe
12:41:27.0422 7148 Desura Install Service - ok
12:41:27.0454 7148 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
12:41:27.0498 7148 DfsC - ok
12:41:27.0538 7148 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
12:41:27.0561 7148 Dhcp - ok
12:41:27.0583 7148 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
12:41:27.0627 7148 discache - ok
12:41:27.0643 7148 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
12:41:27.0660 7148 Disk - ok
12:41:27.0687 7148 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
12:41:27.0707 7148 Dnscache - ok
12:41:27.0764 7148 [ 0840ABBBDF438691EE65A20040635CBE ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
12:41:27.0768 7148 DockLoginService ( UnsignedFile.Multi.Generic ) - warning
12:41:27.0768 7148 DockLoginService - detected UnsignedFile.Multi.Generic (1)
12:41:27.0806 7148 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
12:41:27.0852 7148 dot3svc - ok
12:41:27.0888 7148 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
12:41:27.0932 7148 DPS - ok
12:41:27.0956 7148 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
12:41:27.0976 7148 drmkaud - ok
12:41:28.0025 7148 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
12:41:28.0057 7148 DXGKrnl - ok
12:41:28.0064 7148 EagleX64 - ok
12:41:28.0099 7148 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
12:41:28.0144 7148 EapHost - ok
12:41:28.0234 7148 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
12:41:28.0290 7148 ebdrv - ok
12:41:28.0317 7148 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
12:41:28.0343 7148 EFS - ok
12:41:28.0391 7148 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
12:41:28.0418 7148 ehRecvr - ok
12:41:28.0442 7148 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
12:41:28.0462 7148 ehSched - ok
12:41:28.0489 7148 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
12:41:28.0515 7148 elxstor - ok
12:41:28.0534 7148 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
12:41:28.0555 7148 ErrDev - ok
12:41:28.0600 7148 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
12:41:28.0649 7148 EventSystem - ok
12:41:28.0672 7148 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
12:41:28.0717 7148 exfat - ok
12:41:28.0733 7148 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
12:41:28.0780 7148 fastfat - ok
12:41:28.0816 7148 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
12:41:28.0846 7148 Fax - ok
12:41:28.0869 7148 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
12:41:28.0887 7148 fdc - ok
12:41:28.0905 7148 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
12:41:28.0949 7148 fdPHost - ok
12:41:28.0967 7148 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
12:41:29.0012 7148 FDResPub - ok
12:41:29.0032 7148 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
12:41:29.0049 7148 FileInfo - ok
12:41:29.0057 7148 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
12:41:29.0103 7148 Filetrace - ok
12:41:29.0125 7148 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
12:41:29.0144 7148 flpydisk - ok
12:41:29.0179 7148 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
12:41:29.0200 7148 FltMgr - ok
12:41:29.0260 7148 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
12:41:29.0292 7148 FontCache - ok
12:41:29.0351 7148 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
12:41:29.0365 7148 FontCache3.0.0.0 - ok
12:41:29.0389 7148 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
12:41:29.0405 7148 FsDepends - ok
12:41:29.0437 7148 [ 07DA62C960DDCCC2D35836AEAB4FC578 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
12:41:29.0452 7148 fssfltr - ok
12:41:29.0602 7148 [ 28DDEEEC44E988657B732CF404D504CB ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
12:41:29.0640 7148 fsssvc - ok
12:41:29.0677 7148 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
12:41:29.0694 7148 Fs_Rec - ok
12:41:29.0729 7148 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
12:41:29.0752 7148 fvevol - ok
12:41:29.0765 7148 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
12:41:29.0783 7148 gagp30kx - ok
12:41:29.0805 7148 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
12:41:29.0817 7148 GEARAspiWDM - ok
12:41:29.0845 7148 [ D3316F6E3C011435F36E3D6E49B3196C ] GoToAssist C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
12:41:29.0858 7148 GoToAssist - ok
12:41:29.0910 7148 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
12:41:29.0961 7148 gpsvc - ok
12:41:30.0052 7148 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:41:30.0066 7148 gupdate - ok
12:41:30.0085 7148 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:41:30.0099 7148 gupdatem - ok
12:41:30.0128 7148 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
12:41:30.0143 7148 hamachi - ok
12:41:30.0160 7148 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
12:41:30.0178 7148 hcw85cir - ok
12:41:30.0214 7148 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
12:41:30.0239 7148 HdAudAddService - ok
12:41:30.0255 7148 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
12:41:30.0277 7148 HDAudBus - ok
12:41:30.0285 7148 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
12:41:30.0305 7148 HidBatt - ok
12:41:30.0331 7148 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
12:41:30.0353 7148 HidBth - ok
12:41:30.0370 7148 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
12:41:30.0391 7148 HidIr - ok
12:41:30.0427 7148 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
12:41:30.0471 7148 hidserv - ok
12:41:30.0486 7148 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
12:41:30.0504 7148 HidUsb - ok
12:41:30.0551 7148 [ 34E95DE386032FD7F14C228DD8E1CDBF ] HiPatchService C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
12:41:30.0556 7148 HiPatchService ( UnsignedFile.Multi.Generic ) - warning
12:41:30.0556 7148 HiPatchService - detected UnsignedFile.Multi.Generic (1)
12:41:30.0586 7148 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
12:41:30.0631 7148 hkmsvc - ok
12:41:30.0672 7148 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
12:41:30.0694 7148 HomeGroupListener - ok
12:41:30.0736 7148 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
12:41:30.0758 7148 HomeGroupProvider - ok
12:41:30.0783 7148 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
12:41:30.0799 7148 HpSAMD - ok
12:41:30.0845 7148 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
12:41:30.0895 7148 HTTP - ok
12:41:30.0926 7148 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
12:41:30.0942 7148 hwpolicy - ok
12:41:30.0981 7148 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
12:41:31.0000 7148 i8042prt - ok
12:41:31.0044 7148 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
12:41:31.0067 7148 iaStorV - ok
12:41:31.0120 7148 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
12:41:31.0148 7148 idsvc - ok
12:41:31.0387 7148 [ 4EAA4261E1AD4B860657CADA790B9B38 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
12:41:31.0530 7148 igfx - ok
12:41:31.0579 7148 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
12:41:31.0595 7148 iirsp - ok
12:41:31.0649 7148 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
12:41:31.0703 7148 IKEEXT - ok
12:41:31.0746 7148 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
12:41:31.0762 7148 intelide - ok
12:41:31.0783 7148 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
12:41:31.0802 7148 intelppm - ok
12:41:31.0823 7148 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
12:41:31.0868 7148 IPBusEnum - ok
12:41:31.0906 7148 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:41:31.0949 7148 IpFilterDriver - ok
12:41:31.0990 7148 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
12:41:32.0017 7148 iphlpsvc - ok
12:41:32.0051 7148 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
12:41:32.0070 7148 IPMIDRV - ok
12:41:32.0092 7148 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
12:41:32.0137 7148 IPNAT - ok
12:41:32.0182 7148 [ 0F261EC4F514926177C70C1832374231 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
12:41:32.0206 7148 iPod Service - ok
12:41:32.0221 7148 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
12:41:32.0244 7148 IRENUM - ok
12:41:32.0279 7148 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
12:41:32.0295 7148 isapnp - ok
12:41:32.0335 7148 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
12:41:32.0356 7148 iScsiPrt - ok
12:41:32.0372 7148 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
12:41:32.0391 7148 kbdclass - ok
12:41:32.0430 7148 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
12:41:32.0448 7148 kbdhid - ok
12:41:32.0472 7148 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
12:41:32.0492 7148 KeyIso - ok
12:41:32.0524 7148 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
12:41:32.0542 7148 KSecDD - ok
12:41:32.0582 7148 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
12:41:32.0600 7148 KSecPkg - ok
12:41:32.0623 7148 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
12:41:32.0666 7148 ksthunk - ok
12:41:32.0697 7148 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
12:41:32.0747 7148 KtmRm - ok
12:41:32.0777 7148 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
12:41:32.0823 7148 LanmanServer - ok
12:41:32.0855 7148 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:41:32.0903 7148 LanmanWorkstation - ok
12:41:32.0925 7148 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
12:41:32.0968 7148 lltdio - ok
12:41:32.0997 7148 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
12:41:33.0046 7148 lltdsvc - ok
12:41:33.0065 7148 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
12:41:33.0110 7148 lmhosts - ok
12:41:33.0131 7148 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
12:41:33.0150 7148 LSI_FC - ok
12:41:33.0159 7148 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
12:41:33.0177 7148 LSI_SAS - ok
12:41:33.0185 7148 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
12:41:33.0203 7148 LSI_SAS2 - ok
12:41:33.0210 7148 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
12:41:33.0230 7148 LSI_SCSI - ok
12:41:33.0246 7148 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
12:41:33.0290 7148 luafv - ok
12:41:33.0322 7148 [ A8382713F5870E4AF1DE4E8F7AF9D882 ] Macromedia Licensing Service C:\Program Files (x86)\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe
12:41:33.0330 7148 Macromedia Licensing Service ( UnsignedFile.Multi.Generic ) - warning
12:41:33.0330 7148 Macromedia Licensing Service - detected UnsignedFile.Multi.Generic (1)
12:41:33.0367 7148 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
12:41:33.0388 7148 Mcx2Svc - ok
12:41:33.0406 7148 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
12:41:33.0422 7148 megasas - ok
12:41:33.0441 7148 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
12:41:33.0461 7148 MegaSR - ok
12:41:33.0478 7148 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
12:41:33.0525 7148 MMCSS - ok
12:41:33.0538 7148 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
12:41:33.0582 7148 Modem - ok
12:41:33.0600 7148 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
12:41:33.0621 7148 monitor - ok
12:41:33.0633 7148 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
12:41:33.0650 7148 mouclass - ok
12:41:33.0658 7148 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
12:41:33.0678 7148 mouhid - ok
12:41:33.0716 7148 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
12:41:33.0733 7148 mountmgr - ok
12:41:33.0756 7148 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
12:41:33.0776 7148 mpio - ok
12:41:33.0799 7148 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
12:41:33.0846 7148 mpsdrv - ok
12:41:33.0886 7148 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
12:41:33.0945 7148 MpsSvc - ok
12:41:33.0972 7148 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
12:41:33.0998 7148 MRxDAV - ok
12:41:34.0033 7148 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
12:41:34.0053 7148 mrxsmb - ok
12:41:34.0097 7148 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:41:34.0117 7148 mrxsmb10 - ok
12:41:34.0139 7148 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:41:34.0161 7148 mrxsmb20 - ok
12:41:34.0192 7148 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
12:41:34.0209 7148 msahci - ok
12:41:34.0245 7148 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
12:41:34.0263 7148 msdsm - ok
12:41:34.0284 7148 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
12:41:34.0307 7148 MSDTC - ok
12:41:34.0378 7148 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
12:41:34.0424 7148 Msfs - ok
12:41:34.0510 7148 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
12:41:34.0555 7148 mshidkmdf - ok
12:41:34.0589 7148 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
12:41:34.0606 7148 msisadrv - ok
12:41:34.0637 7148 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
12:41:34.0686 7148 MSiSCSI - ok
12:41:34.0692 7148 msiserver - ok
12:41:34.0708 7148 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
12:41:34.0751 7148 MSKSSRV - ok
12:41:34.0766 7148 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
12:41:34.0809 7148 MSPCLOCK - ok
12:41:34.0825 7148 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
12:41:34.0871 7148 MSPQM - ok
12:41:34.0909 7148 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
12:41:34.0932 7148 MsRPC - ok
12:41:34.0954 7148 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
12:41:34.0971 7148 mssmbios - ok
12:41:35.0048 7148 MSSQL$SQLEXPRESS - ok
12:41:35.0132 7148 [ 7A2A8C975356858EB38466A6B1592E8D ] MSSQLServerADHelper100 c:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
12:41:35.0151 7148 MSSQLServerADHelper100 - ok
12:41:35.0170 7148 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
12:41:35.0213 7148 MSTEE - ok
12:41:35.0230 7148 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
12:41:35.0251 7148 MTConfig - ok
12:41:35.0277 7148 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
12:41:35.0294 7148 Mup - ok
12:41:35.0340 7148 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
12:41:35.0389 7148 napagent - ok
12:41:35.0412 7148 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
12:41:35.0439 7148 NativeWifiP - ok
12:41:35.0487 7148 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
12:41:35.0519 7148 NDIS - ok
12:41:35.0537 7148 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
12:41:35.0580 7148 NdisCap - ok
12:41:35.0601 7148 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
12:41:35.0644 7148 NdisTapi - ok
12:41:35.0674 7148 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
12:41:35.0715 7148 Ndisuio - ok
12:41:35.0752 7148 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
12:41:35.0796 7148 NdisWan - ok
12:41:35.0833 7148 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
12:41:35.0875 7148 NDProxy - ok
12:41:35.0887 7148 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
12:41:35.0936 7148 NetBIOS - ok
12:41:35.0979 7148 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
12:41:36.0023 7148 NetBT - ok
12:41:36.0039 7148 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
12:41:36.0060 7148 Netlogon - ok
12:41:36.0092 7148 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
12:41:36.0141 7148 Netman - ok
12:41:36.0165 7148 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:41:36.0181 7148 NetMsmqActivator - ok
12:41:36.0188 7148 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:41:36.0205 7148 NetPipeActivator - ok
12:41:36.0245 7148 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
12:41:36.0295 7148 netprofm - ok
12:41:36.0302 7148 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:41:36.0323 7148 NetTcpActivator - ok
12:41:36.0330 7148 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:41:36.0349 7148 NetTcpPortSharing - ok
12:41:36.0372 7148 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
12:41:36.0389 7148 nfrd960 - ok
12:41:36.0420 7148 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
12:41:36.0443 7148 NlaSvc - ok
12:41:36.0454 7148 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
12:41:36.0497 7148 Npfs - ok
12:41:36.0516 7148 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
12:41:36.0563 7148 nsi - ok
12:41:36.0577 7148 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
12:41:36.0619 7148 nsiproxy - ok
12:41:36.0699 7148 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
12:41:36.0744 7148 Ntfs - ok
12:41:36.0763 7148 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
12:41:36.0806 7148 Null - ok
12:41:36.0839 7148 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
12:41:36.0858 7148 nvraid - ok
12:41:36.0886 7148 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
12:41:36.0905 7148 nvstor - ok
12:41:36.0921 7148 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
12:41:36.0940 7148 nv_agp - ok
12:41:36.0983 7148 [ 952AB3BDEF38A7391AA05BC8C6028F15 ] NWADI C:\Windows\system32\DRIVERS\NWADIenum.sys
12:41:37.0002 7148 NWADI - ok
12:41:37.0021 7148 [ DE3ABD010D9734CD4AD4E0BA81F50B63 ] NWUSBCDFIL64 C:\Windows\system32\DRIVERS\NwUsbCdFil64.sys
12:41:37.0036 7148 NWUSBCDFIL64 - ok
12:41:37.0085 7148 [ 6AE72C04633788C3C3B71B5BEB17183C ] NWUSBModem C:\Windows\system32\DRIVERS\nwusbmdm.sys
12:41:37.0103 7148 NWUSBModem - ok
12:41:37.0137 7148 [ 6AE72C04633788C3C3B71B5BEB17183C ] NWUSBPort C:\Windows\system32\DRIVERS\nwusbser.sys
12:41:37.0156 7148 NWUSBPort - ok
12:41:37.0195 7148 [ 6AE72C04633788C3C3B71B5BEB17183C ] NWUSBPort2 C:\Windows\system32\DRIVERS\nwusbser2.sys
12:41:37.0213 7148 NWUSBPort2 - ok
12:41:37.0240 7148 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
12:41:37.0259 7148 ohci1394 - ok
12:41:37.0303 7148 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:41:37.0319 7148 ose - ok
12:41:37.0492 7148 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
12:41:37.0589 7148 osppsvc - ok
12:41:37.0625 7148 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
12:41:37.0649 7148 p2pimsvc - ok
12:41:37.0709 7148 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
12:41:37.0735 7148 p2psvc - ok
12:41:37.0767 7148 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
12:41:37.0786 7148 Parport - ok
12:41:37.0814 7148 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
12:41:37.0832 7148 partmgr - ok
12:41:37.0876 7148 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
12:41:37.0905 7148 PcaSvc - ok
12:41:37.0910 7148 PCDSRVC{1E208CE0-FB7451FF-06020101}_0 - ok
12:41:37.0989 7148 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
12:41:38.0011 7148 pci - ok
12:41:38.0053 7148 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
12:41:38.0071 7148 pciide - ok
12:41:38.0114 7148 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
12:41:38.0134 7148 pcmcia - ok
12:41:38.0179 7148 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
12:41:38.0197 7148 pcw - ok
12:41:38.0253 7148 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
12:41:38.0304 7148 PEAUTH - ok
12:41:38.0460 7148 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
12:41:38.0482 7148 PerfHost - ok
12:41:38.0560 7148 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
12:41:38.0620 7148 pla - ok
12:41:38.0669 7148 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
12:41:38.0696 7148 PlugPlay - ok
12:41:38.0704 7148 PnkBstrA - ok
12:41:38.0724 7148 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
12:41:38.0745 7148 PNRPAutoReg - ok
12:41:38.0769 7148 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
12:41:38.0794 7148 PNRPsvc - ok
12:41:38.0876 7148 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
12:41:38.0925 7148 PolicyAgent - ok
12:41:38.0993 7148 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
12:41:39.0044 7148 Power - ok
12:41:39.0075 7148 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
12:41:39.0119 7148 PptpMiniport - ok
12:41:39.0187 7148 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
12:41:39.0207 7148 Processor - ok
12:41:39.0328 7148 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
12:41:39.0356 7148 ProfSvc - ok
12:41:39.0428 7148 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
12:41:39.0452 7148 ProtectedStorage - ok
12:41:39.0492 7148 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
12:41:39.0536 7148 Psched - ok
12:41:39.0565 7148 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
12:41:39.0580 7148 PxHlpa64 - ok
12:41:39.0629 7148 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
12:41:39.0670 7148 ql2300 - ok
12:41:39.0704 7148 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
12:41:39.0723 7148 ql40xx - ok
12:41:39.0762 7148 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
12:41:39.0790 7148 QWAVE - ok
12:41:39.0870 7148 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
12:41:39.0895 7148 QWAVEdrv - ok
12:41:39.0934 7148 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
12:41:39.0977 7148 RasAcd - ok
12:41:40.0018 7148 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
12:41:40.0063 7148 RasAgileVpn - ok
12:41:40.0149 7148 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
12:41:40.0197 7148 RasAuto - ok
12:41:40.0237 7148 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
12:41:40.0280 7148 Rasl2tp - ok
12:41:40.0363 7148 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
12:41:40.0413 7148 RasMan - ok
12:41:40.0440 7148 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
12:41:40.0486 7148 RasPppoe - ok
12:41:40.0576 7148 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
12:41:40.0620 7148 RasSstp - ok
12:41:40.0702 7148 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
12:41:40.0748 7148 rdbss - ok
12:41:40.0835 7148 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
12:41:40.0857 7148 rdpbus - ok
12:41:41.0039 7148 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
12:41:41.0082 7148 RDPCDD - ok
12:41:41.0106 7148 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
12:41:41.0152 7148 RDPENCDD - ok
12:41:41.0185 7148 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
12:41:41.0229 7148 RDPREFMP - ok
12:41:41.0287 7148 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
12:41:41.0308 7148 RDPWD - ok
12:41:41.0377 7148 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
12:41:41.0398 7148 rdyboost - ok
12:41:41.0665 7148 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
12:41:41.0715 7148 RemoteAccess - ok
12:41:41.0753 7148 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
12:41:41.0801 7148 RemoteRegistry - ok
12:41:41.0823 7148 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
12:41:41.0872 7148 RpcEptMapper - ok
12:41:41.0898 7148 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
12:41:41.0919 7148 RpcLocator - ok
12:41:41.0965 7148 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
12:41:42.0016 7148 RpcSs - ok
12:41:42.0138 7148 [ C9FE05A63C500ABE3AFA5786504C4D36 ] RsFx0105 C:\Windows\system32\DRIVERS\RsFx0105.sys
12:41:42.0157 7148 RsFx0105 - ok
12:41:42.0189 7148 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
12:41:42.0252 7148 rspndr - ok
12:41:42.0289 7148 [ 4A25DC970C58104602ED274DACAFD784 ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
12:41:42.0306 7148 RSUSBSTOR - ok
12:41:42.0446 7148 [ EE082E06A82FF630351D1E0EBBD3D8D0 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
12:41:42.0473 7148 RTL8167 - ok
12:41:42.0516 7148 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
12:41:42.0536 7148 SamSs - ok
12:41:42.0648 7148 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
12:41:42.0666 7148 sbp2port - ok
12:41:42.0700 7148 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
12:41:42.0751 7148 SCardSvr - ok
12:41:42.0797 7148 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
12:41:42.0840 7148 scfilter - ok
12:41:42.0883 7148 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
12:41:42.0949 7148 Schedule - ok
12:41:43.0068 7148 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
12:41:43.0113 7148 SCPolicySvc - ok
12:41:43.0225 7148 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
12:41:43.0252 7148 SDRSVC - ok
12:41:43.0388 7148 [ 16A252022535B680046F6E34E136D378 ] SeaPort C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
12:41:43.0408 7148 SeaPort - ok
12:41:43.0478 7148 [ 3EA8A16169C26AFBEB544E0E48421186 ] Secdrv C:\Windows\system32\drivers\SECDRV.SYS
12:41:43.0522 7148 Secdrv - ok
12:41:43.0544 7148 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
12:41:43.0596 7148 seclogon - ok
12:41:43.0678 7148 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
12:41:43.0755 7148 SENS - ok
12:41:43.0798 7148 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
12:41:43.0824 7148 SensrSvc - ok
12:41:43.0844 7148 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
12:41:43.0872 7148 Serenum - ok
12:41:43.0884 7148 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
12:41:43.0910 7148 Serial - ok
12:41:43.0991 7148 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
12:41:44.0009 7148 sermouse - ok
12:41:44.0053 7148 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
12:41:44.0101 7148 SessionEnv - ok
12:41:44.0163 7148 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
12:41:44.0182 7148 sffdisk - ok
12:41:44.0193 7148 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
12:41:44.0212 7148 sffp_mmc - ok
12:41:44.0229 7148 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
12:41:44.0250 7148 sffp_sd - ok
12:41:44.0279 7148 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
12:41:44.0298 7148 sfloppy - ok
12:41:44.0333 7148 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
12:41:44.0421 7148 SharedAccess - ok
12:41:44.0458 7148 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:41:44.0508 7148 ShellHWDetection - ok
12:41:44.0531 7148 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
12:41:44.0548 7148 SiSRaid2 - ok
12:41:44.0629 7148 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
12:41:44.0647 7148 SiSRaid4 - ok
12:41:44.0766 7148 [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
12:41:44.0782 7148 SkypeUpdate - ok
12:41:44.0805 7148 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
12:41:44.0851 7148 Smb - ok
12:41:44.0907 7148 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
12:41:44.0929 7148 SNMPTRAP - ok
12:41:44.0960 7148 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
12:41:44.0977 7148 spldr - ok
12:41:45.0080 7148 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
12:41:45.0108 7148 Spooler - ok
12:41:45.0204 7148 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
12:41:45.0295 7148 sppsvc - ok
12:41:45.0308 7148 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
12:41:45.0358 7148 sppuinotify - ok
12:41:45.0403 7148 [ 602884696850C86434530790B110E8EB ] sptd C:\Windows\system32\Drivers\sptd.sys
12:41:45.0404 7148 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 602884696850C86434530790B110E8EB
12:41:45.0406 7148 sptd ( LockedFile.Multi.Generic ) - warning
12:41:45.0407 7148 sptd - detected LockedFile.Multi.Generic (1)
12:41:45.0515 7148 [ 45E65FB17A4CD5FACBD3CA16C8334C82 ] SQLAgent$SQLEXPRESS c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE
12:41:45.0536 7148 SQLAgent$SQLEXPRESS - ok
12:41:45.0597 7148 [ 10D936DCED9EACD1A1B3FCDDA6D7A4EB ] SQLBrowser c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
12:41:45.0616 7148 SQLBrowser - ok
12:41:45.0670 7148 [ F92E5F93BE572B512DA3C016B675EDE0 ] SQLWriter c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
12:41:45.0685 7148 SQLWriter - ok
12:41:45.0715 7148 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
12:41:45.0739 7148 srv - ok
12:41:45.0777 7148 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
12:41:45.0799 7148 srv2 - ok
12:41:45.0826 7148 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
12:41:45.0846 7148 srvnet - ok
12:41:45.0876 7148 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
12:41:45.0925 7148 SSDPSRV - ok
12:41:45.0938 7148 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
12:41:45.0992 7148 SstpSvc - ok
12:41:46.0072 7148 [ 444109453A2B87E6C16BCDA5953E81A9 ] STacSV C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\STacSV64.exe
12:41:46.0091 7148 STacSV - ok
12:41:46.0128 7148 Steam Client Service - ok
12:41:46.0159 7148 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
12:41:46.0176 7148 stexstor - ok
12:41:46.0214 7148 [ 02E784FA49032F84964DB90A3ED81890 ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
12:41:46.0237 7148 STHDA - ok
12:41:46.0278 7148 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
12:41:46.0313 7148 stisvc - ok
12:41:46.0347 7148 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
12:41:46.0364 7148 swenum - ok
12:41:46.0389 7148 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
12:41:46.0443 7148 swprv - ok
12:41:46.0509 7148 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
12:41:46.0556 7148 SysMain - ok
12:41:46.0586 7148 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
12:41:46.0615 7148 TabletInputService - ok
12:41:46.0644 7148 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
12:41:46.0693 7148 TapiSrv - ok
12:41:46.0712 7148 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
12:41:46.0759 7148 TBS - ok
12:41:46.0826 7148 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
12:41:46.0875 7148 Tcpip - ok
12:41:46.0926 7148 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
12:41:46.0973 7148 TCPIP6 - ok
12:41:47.0001 7148 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
12:41:47.0019 7148 tcpipreg - ok
12:41:47.0046 7148 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
12:41:47.0064 7148 TDPIPE - ok
12:41:47.0093 7148 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
12:41:47.0111 7148 TDTCP - ok
12:41:47.0134 7148 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
12:41:47.0177 7148 tdx - ok
12:41:47.0211 7148 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
12:41:47.0229 7148 TermDD - ok
12:41:47.0273 7148 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
12:41:47.0326 7148 TermService - ok
12:41:47.0352 7148 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
12:41:47.0381 7148 Themes - ok
12:41:47.0400 7148 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
12:41:47.0446 7148 THREADORDER - ok
12:41:47.0486 7148 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
12:41:47.0537 7148 TrkWks - ok
12:41:47.0592 7148 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:41:47.0636 7148 TrustedInstaller - ok
12:41:47.0666 7148 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
12:41:47.0708 7148 tssecsrv - ok
12:41:47.0747 7148 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
12:41:47.0765 7148 TsUsbFlt - ok
12:41:47.0793 7148 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
12:41:47.0836 7148 tunnel - ok
12:41:47.0865 7148 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
12:41:47.0882 7148 uagp35 - ok
12:41:47.0919 7148 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
12:41:47.0964 7148 udfs - ok
12:41:47.0993 7148 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
12:41:48.0017 7148 UI0Detect - ok
12:41:48.0032 7148 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
12:41:48.0049 7148 uliagpkx - ok
12:41:48.0072 7148 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
12:41:48.0093 7148 umbus - ok
12:41:48.0110 7148 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
12:41:48.0128 7148 UmPass - ok
12:41:48.0150 7148 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
12:41:48.0201 7148 upnphost - ok
12:41:48.0234 7148 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
12:41:48.0241 7148 USBAAPL64 ( UnsignedFile.Multi.Generic ) - warning
12:41:48.0241 7148 USBAAPL64 - detected UnsignedFile.Multi.Generic (1)
12:41:48.0261 7148 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
12:41:48.0280 7148 usbccgp - ok
12:41:48.0306 7148 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
12:41:48.0330 7148 usbcir - ok
12:41:48.0348 7148 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
12:41:48.0368 7148 usbehci - ok
12:41:48.0402 7148 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
12:41:48.0426 7148 usbhub - ok
12:41:48.0447 7148 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
12:41:48.0465 7148 usbohci - ok
12:41:48.0483 7148 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
12:41:48.0505 7148 usbprint - ok
12:41:48.0519 7148 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:41:48.0538 7148 USBSTOR - ok
12:41:48.0556 7148 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
12:41:48.0575 7148 usbuhci - ok
12:41:48.0591 7148 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
12:41:48.0616 7148 usbvideo - ok
12:41:48.0644 7148 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
12:41:48.0692 7148 UxSms - ok
12:41:48.0704 7148 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
12:41:48.0725 7148 VaultSvc - ok
12:41:48.0742 7148 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
12:41:48.0758 7148 vdrvroot - ok
12:41:48.0804 7148 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
12:41:48.0857 7148 vds - ok
12:41:48.0881 7148 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
12:41:48.0902 7148 vga - ok
12:41:48.0916 7148 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
12:41:48.0963 7148 VgaSave - ok
12:41:48.0981 7148 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
12:41:49.0004 7148 vhdmp - ok
12:41:49.0042 7148 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
12:41:49.0058 7148 viaide - ok
12:41:49.0082 7148 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
12:41:49.0100 7148 volmgr - ok
12:41:49.0134 7148 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
12:41:49.0156 7148 volmgrx - ok
12:41:49.0186 7148 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
12:41:49.0207 7148 volsnap - ok
12:41:49.0227 7148 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
12:41:49.0252 7148 vsmraid - ok
12:41:49.0310 7148 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
12:41:49.0382 7148 VSS - ok
12:41:49.0398 7148 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
12:41:49.0421 7148 vwifibus - ok
12:41:49.0431 7148 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
12:41:49.0455 7148 vwififlt - ok
12:41:49.0469 7148 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
12:41:49.0492 7148 vwifimp - ok
12:41:49.0533 7148 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
12:41:49.0585 7148 W32Time - ok
12:41:49.0600 7148 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
12:41:49.0620 7148 WacomPen - ok
12:41:49.0687 7148 [ 4AA2CC5979AFF984227364F2C23B04F3 ] WajamUpdater C:\Program Files (x86)\Wajam\Updater\WajamUpdater.exe
12:41:49.0697 7148 WajamUpdater ( UnsignedFile.Multi.Generic ) - warning
12:41:49.0697 7148 WajamUpdater - detected UnsignedFile.Multi.Generic (1)
12:41:49.0733 7148 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
12:41:49.0777 7148 WANARP - ok
12:41:49.0782 7148 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
12:41:49.0825 7148 Wanarpv6 - ok
12:41:49.0879 7148 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
12:41:49.0918 7148 WatAdminSvc - ok
12:41:49.0991 7148 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
12:41:50.0037 7148 wbengine - ok
12:41:50.0074 7148 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
12:41:50.0103 7148 WbioSrvc - ok
12:41:50.0143 7148 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
12:41:50.0174 7148 wcncsvc - ok
12:41:50.0188 7148 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:41:50.0210 7148 WcsPlugInService - ok
12:41:50.0239 7148 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
12:41:50.0256 7148 Wd - ok
12:41:50.0300 7148 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
12:41:50.0331 7148 Wdf01000 - ok
12:41:50.0344 7148 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
12:41:50.0375 7148 WdiServiceHost - ok
12:41:50.0379 7148 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
12:41:50.0408 7148 WdiSystemHost - ok
12:41:50.0436 7148 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
12:41:50.0467 7148 WebClient - ok
12:41:50.0489 7148 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
12:41:50.0543 7148 Wecsvc - ok
12:41:50.0562 7148 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
12:41:50.0612 7148 wercplsupport - ok
12:41:50.0627 7148 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
12:41:50.0678 7148 WerSvc - ok
12:41:50.0694 7148 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
12:41:50.0742 7148 WfpLwf - ok
12:41:50.0775 7148 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
12:41:50.0795 7148 WimFltr - ok
12:41:50.0816 7148 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
12:41:50.0833 7148 WIMMount - ok
12:41:50.0851 7148 WinDefend - ok
12:41:50.0866 7148 WinHttpAutoProxySvc - ok
12:41:50.0907 7148 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
12:41:50.0955 7148 Winmgmt - ok
12:41:51.0028 7148 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
12:41:51.0103 7148 WinRM - ok
12:41:51.0142 7148 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
12:41:51.0163 7148 WinUsb - ok
12:41:51.0202 7148 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
12:41:51.0243 7148 Wlansvc - ok
12:41:51.0293 7148 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
12:41:51.0308 7148 wlcrasvc - ok
12:41:51.0420 7148 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
12:41:51.0471 7148 wlidsvc - ok
12:41:51.0496 7148 [ 13B0A570E1AE451C92DA550085D72CF3 ] wltrysvc C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE
12:41:51.0502 7148 wltrysvc ( UnsignedFile.Multi.Generic ) - warning
12:41:51.0502 7148 wltrysvc - detected UnsignedFile.Multi.Generic (1)
12:41:51.0527 7148 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
12:41:51.0545 7148 WmiAcpi - ok
12:41:51.0589 7148 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
12:41:51.0617 7148 wmiApSrv - ok
12:41:51.0640 7148 WMPNetworkSvc - ok
12:41:51.0668 7148 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
12:41:51.0690 7148 WPCSvc - ok
12:41:51.0712 7148 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
12:41:51.0742 7148 WPDBusEnum - ok
12:41:51.0769 7148 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
12:41:51.0816 7148 ws2ifsl - ok
12:41:51.0833 7148 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
12:41:51.0862 7148 wscsvc - ok
12:41:51.0869 7148 WSearch - ok
12:41:51.0956 7148 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
12:41:52.0020 7148 wuauserv - ok
12:41:52.0048 7148 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
12:41:52.0068 7148 WudfPf - ok
12:41:52.0085 7148 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
12:41:52.0105 7148 WUDFRd - ok
12:41:52.0138 7148 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
12:41:52.0161 7148 wudfsvc - ok
12:41:52.0173 7148 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
12:41:52.0202 7148 WwanSvc - ok
12:41:52.0379 7148 X6va003 - ok
12:41:52.0498 7148 X6va005 - ok
12:41:52.0652 7148 X6va006 - ok
12:41:52.0713 7148 X6va009 - ok
12:41:52.0718 7148 X6va011 - ok
12:41:52.0811 7148 [ 2EE48CFCE7CA8E0DB4C44C7476C0943B ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys
12:41:52.0827 7148 xusb21 - ok
12:41:52.0844 7148 ================ Scan global ===============================
12:41:52.0876 7148 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
12:41:52.0910 7148 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\system32\winsrv.dll
12:41:52.0932 7148 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\system32\winsrv.dll
12:41:52.0959 7148 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
12:41:52.0987 7148 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
12:41:52.0993 7148 [Global] - ok
12:41:52.0993 7148 ================ Scan MBR ==================================
12:41:53.0007 7148 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
12:41:53.0347 7148 \Device\Harddisk0\DR0 - ok
12:41:53.0359 7148 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
12:41:53.0589 7148 \Device\Harddisk1\DR1 - ok
12:41:53.0589 7148 ================ Scan VBR ==================================
12:41:53.0617 7148 [ D6F66A4799A81078EEE3EB4855343D7A ] \Device\Harddisk0\DR0\Partition1
12:41:53.0619 7148 \Device\Harddisk0\DR0\Partition1 - ok
12:41:53.0654 7148 [ 5E0E0E7E04F85FB3FCC85C3F4B665345 ] \Device\Harddisk0\DR0\Partition2
12:41:53.0656 7148 \Device\Harddisk0\DR0\Partition2 - ok
12:41:53.0663 7148 [ FA29772A6A1B733CF52534245AA90D1D ] \Device\Harddisk1\DR1\Partition1
12:41:53.0665 7148 \Device\Harddisk1\DR1\Partition1 - ok
12:41:53.0665 7148 ============================================================
12:41:53.0665 7148 Scan finished
12:41:53.0665 7148 ============================================================
12:41:53.0678 0452 Detected object count: 8
12:41:53.0678 0452 Actual detected object count: 8
12:41:58.0524 0452 Akamai ( HiddenFile.Multi.Generic ) - skipped by user
12:41:58.0524 0452 Akamai ( HiddenFile.Multi.Generic ) - User select action: Skip
12:41:58.0527 0452 DockLoginService ( UnsignedFile.Multi.Generic ) - skipped by user
12:41:58.0527 0452 DockLoginService ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:41:58.0530 0452 HiPatchService ( UnsignedFile.Multi.Generic ) - skipped by user
12:41:58.0530 0452 HiPatchService ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:41:58.0532 0452 Macromedia Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
12:41:58.0533 0452 Macromedia Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:41:58.0535 0452 sptd ( LockedFile.Multi.Generic ) - skipped by user
12:41:58.0535 0452 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
12:41:58.0538 0452 USBAAPL64 ( UnsignedFile.Multi.Generic ) - skipped by user
12:41:58.0538 0452 USBAAPL64 ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:41:58.0542 0452 WajamUpdater ( UnsignedFile.Multi.Generic ) - skipped by user
12:41:58.0543 0452 WajamUpdater ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:41:58.0544 0452 wltrysvc ( UnsignedFile.Multi.Generic ) - skipped by user
12:41:58.0544 0452 wltrysvc ( UnsignedFile.Multi.Generic ) - User select action: Skip

And the security check log.

Results of screen317's Security Check version 0.99.56
Windows 7 Service Pack 1 x64 (UAC is enabled)
Internet Explorer 9
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
avast! Antivirus
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
Malwarebytes Anti-Malware version 1.70.0.1100
Java 7 Update 9
Adobe Flash Player 11.5.502.135
Adobe Reader 10.1.2 Adobe Reader out of Date!
Mozilla Firefox (17.0.1)
Google Chrome 21.0.1180.83
Google Chrome 21.0.1180.89
Google Chrome 22.0.1229.79
Google Chrome 22.0.1229.92
Google Chrome 22.0.1229.94
Google Chrome 23.0.1271.64
Google Chrome 23.0.1271.91
Google Chrome 23.0.1271.95
Google Chrome 23.0.1271.97
````````Process Check: objlist.exe by Laurent````````
AVAST Software Avast AvastSvc.exe
AVAST Software Avast AvastUI.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: 7%
````````````````````End of Log``````````````````````

And the Farbar Service Scanner Log.

Farbar Service Scanner Version: 23-12-2012
Ran by Bryan (administrator) on 04-01-2013 at 13:31:46
Running from "C:\Users\Bryan\Desktop"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

And finally, the MiniToolBox Log.

MiniToolBox by Farbar Version: 25-11-2012
Ran by Bryan (administrator) on 04-01-2013 at 13:33:51
Running from "C:\Users\Bryan\Desktop"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Dell Wireless 1397 WLAN Mini-Card = Wireless Network Connection (Connected)
MAC Bridge Miniport = Network Bridge (Hardware not present)
Realtek PCIe FE Family Controller = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled taskoffload=disabled
add route prefix=0.0.0.0/0 interface="ethernet_13" nexthop=5.0.0.1 publish=Yes
add route prefix=0.0.0.0/0 interface="ethernet_9" nexthop=25.0.0.1 publish=Yes
set interface interface="ethernet_13" forwarding=disabled advertise=disabled metric=9000 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled advertisedrouterlifetime=0 advertisedefaultroute=disabled currenthoplimit=0 forcearpndwolpattern=disabled enabledirectedmacwolpattern=disabled
set interface interface="ethernet_9" forwarding=disabled advertise=disabled metric=9000 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled advertisedrouterlifetime=0 advertisedefaultroute=disabled currenthoplimit=0 forcearpndwolpattern=disabled enabledirectedmacwolpattern=disabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Comp
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Broadcast
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : att.net

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 00-22-5F-FC-BB-9B
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : att.net
Description . . . . . . . . . . . : Dell Wireless 1397 WLAN Mini-Card
Physical Address. . . . . . . . . : 00-22-5F-FC-BB-9B
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2602:306:bc68:5d80:e535:cd9f:d798:9f98(Preferred)
Temporary IPv6 Address. . . . . . : 2602:306:bc68:5d80:4a6:afe1:44dc:c421(Preferred)
Link-local IPv6 Address . . . . . : fe80::e535:cd9f:d798:9f98%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.68(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Wednesday, January 02, 2013 11:14:04 PM
Lease Expires . . . . . . . . . . : Saturday, January 05, 2013 7:33:35 AM
Default Gateway . . . . . . . . . : fe80::92b1:34ff:feab:67a0%11
192.168.1.254
DHCP Server . . . . . . . . . . . : 192.168.1.254
DHCPv6 IAID . . . . . . . . . . . : 234889823
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-12-44-64-DB-00-25-64-5B-A3-B5
DNS Servers . . . . . . . . . . . : 192.168.1.254
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
Physical Address. . . . . . . . . : 00-25-64-5B-A3-B5
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{A7990BB9-14D6-4DE2-A0C7-459228860992}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.att.net:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 47:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:9d38:953c:c57:17cc:9439:7a27(Preferred)
Link-local IPv6 Address . . . . . : fe80::c57:17cc:9439:7a27%58(Preferred)
Default Gateway . . . . . . . . . :
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{D7F5923D-0847-474F-9496-2C06BB32FBB2}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #7
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{8CF12E42-BE9F-49CA-9909-5F8C6A821073}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #11
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: dsldevice.att.net
Address: 192.168.1.254

Name: google.com
Addresses: 2607:f8b0:4002:c04::71
74.125.134.138
74.125.134.139
74.125.134.100
74.125.134.101
74.125.134.102
74.125.134.113


Pinging google.com [2607:f8b0:4002:c03::66] with 32 bytes of data:
Reply from 2607:f8b0:4002:c03::66: time=43ms
Reply from 2607:f8b0:4002:c03::66: time=73ms

Ping statistics for 2607:f8b0:4002:c03::66:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 43ms, Maximum = 73ms, Average = 58ms
Server: dsldevice.att.net
Address: 192.168.1.254

Name: yahoo.com
Addresses: 72.30.38.140
98.138.253.109
98.139.183.24


Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=132ms TTL=49
Reply from 72.30.38.140: bytes=32 time=87ms TTL=49

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 87ms, Maximum = 132ms, Average = 109ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
12...00 22 5f fc bb 9b ......Microsoft Virtual WiFi Miniport Adapter
11...00 22 5f fc bb 9b ......Dell Wireless 1397 WLAN Mini-Card
10...00 25 64 5b a3 b5 ......Realtek PCIe FE Family Controller
1...........................Software Loopback Interface 1
19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
57...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
58...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
60...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #7
62...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #11
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.254 192.168.1.68 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.68 281
192.168.1.68 255.255.255.255 On-link 192.168.1.68 281
192.168.1.255 255.255.255.255 On-link 192.168.1.68 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.68 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.68 281
===========================================================================
Persistent Routes:
Network Address Netmask Gateway Address Metric
0.0.0.0 0.0.0.0 5.0.0.1 Default
0.0.0.0 0.0.0.0 25.0.0.1 Default
===========================================================================

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
11 281 ::/0 fe80::92b1:34ff:feab:67a0
1 306 ::1/128 On-link
58 58 2001::/32 On-link
58 306 2001:0:9d38:953c:c57:17cc:9439:7a27/128
On-link
11 33 2602:306:bc68:5d80::/64 On-link
11 281 2602:306:bc68:5d80:4a6:afe1:44dc:c421/128
On-link
11 281 2602:306:bc68:5d80:e535:cd9f:d798:9f98/128
On-link
11 281 fe80::/64 On-link
58 306 fe80::/64 On-link
58 306 fe80::c57:17cc:9439:7a27/128
On-link
11 281 fe80::e535:cd9f:d798:9f98/128
On-link
1 306 ff00::/8 On-link
58 306 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
If Metric Network Destination Gateway
0 4294967295 2620:9b::/96 On-link
0 9000 ::/0 2620:9b::1900:1
===========================================================================
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (01/04/2013 11:06:11 AM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine ConvertStringSidToSid(S-1-5-21-1932846709-1072812983-2826705724-1002.bak). hr = 0x80070539, The security ID structure is invalid.
.


Operation:
OnIdentify event
Gathering Writer Data

Context:
Execution Context: Shadow Copy Optimization Writer
Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Writer Name: Shadow Copy Optimization Writer
Writer Instance ID: {1305e058-4f8f-4d4e-8f4c-0f60ac7799ce}

Error: (01/04/2013 07:33:33 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 31756843

Error: (01/04/2013 07:33:33 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 31756843

Error: (01/04/2013 07:33:33 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (01/03/2013 10:44:22 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6037

Error: (01/03/2013 10:44:22 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6037

Error: (01/03/2013 10:44:22 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (01/03/2013 10:44:20 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 4649

Error: (01/03/2013 10:44:20 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 4649

Error: (01/03/2013 10:44:20 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second


System errors:
=============
Error: (01/04/2013 07:33:50 AM) (Source: Service Control Manager) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:
%%-2140993535

Error: (01/04/2013 07:33:50 AM) (Source: Service Control Manager) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error:
%%-2140993535

Error: (01/04/2013 07:33:48 AM) (Source: Service Control Manager) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:
%%-2140993535

Error: (01/04/2013 07:33:48 AM) (Source: Service Control Manager) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error:
%%-2140993535

Error: (01/04/2013 07:33:50 AM) (Source: PNRPSvc) (User: )
Description: 0x80630801

Error: (01/04/2013 07:33:48 AM) (Source: PNRPSvc) (User: )
Description: 0x80630801

Error: (01/03/2013 01:00:52 PM) (Source: Service Control Manager) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error:
%%-2140993535

Error: (01/03/2013 01:00:52 PM) (Source: Service Control Manager) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:
%%-2140993535

Error: (01/03/2013 01:00:52 PM) (Source: PNRPSvc) (User: )
Description: 0x80630801

Error: (01/03/2013 01:00:50 PM) (Source: Service Control Manager) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:
%%-2140993535


Microsoft Office Sessions:
=========================
Error: (01/04/2013 11:06:11 AM) (Source: VSS)(User: )
Description: ConvertStringSidToSid(S-1-5-21-1932846709-1072812983-2826705724-1002.bak)0x80070539, The security ID structure is invalid.


Operation:
OnIdentify event
Gathering Writer Data

Context:
Execution Context: Shadow Copy Optimization Writer
Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Writer Name: Shadow Copy Optimization Writer
Writer Instance ID: {1305e058-4f8f-4d4e-8f4c-0f60ac7799ce}

Error: (01/04/2013 07:33:33 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 31756843

Error: (01/04/2013 07:33:33 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 31756843

Error: (01/04/2013 07:33:33 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (01/03/2013 10:44:22 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6037

Error: (01/03/2013 10:44:22 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6037

Error: (01/03/2013 10:44:22 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (01/03/2013 10:44:20 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 4649

Error: (01/03/2013 10:44:20 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 4649

Error: (01/03/2013 10:44:20 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second


CodeIntegrity Errors:
===================================
Date: 2011-11-18 06:25:54.893
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2011-11-18 06:25:54.703
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2011-11-18 06:25:46.414
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2011-11-18 06:25:46.190
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


=========================== Installed Programs ============================

“??u”n‘z“V‘\ Ver1.10?A?b?v?f?[?g
7-Zip 4.65
Acrobat.com (Version: 2.1.0)
Acrobat.com (Version: 2.1.0.0)
Adobe AIR (Version: 3.1.0.4880)
Adobe Flash Player 11 ActiveX (Version: 11.5.502.135)
Adobe Flash Player 11 Plugin (Version: 11.5.502.135)
Adobe Photoshop 7.0 (Version: 7.0)
Adobe Reader X (10.1.2) (Version: 10.1.2)
Advanced Audio FX Engine (Version: 1.12.05)
Age of Empires II - The Conquerors - 1.0e Patch FINAL (Version: 1.0e)
Akamai NetSession Interface
Akamai NetSession Interface Service
Any Video Converter 3.3.5
Apple Application Support (Version: 2.3.2)
Apple Mobile Device Support (Version: 6.0.1.3)
Apple Software Update (Version: 2.1.3.127)
Ask Toolbar Updater (Version: 1.2.0.20007)
Audacity 1.3.14 (Unicode)
avast! Free Antivirus (Version: 7.0.1474.0)
Battle for Wesnoth 1.10.4 (Version: 1.10.4)
Beat Hazard
Bonjour (Version: 3.0.0.10)
CamStudio
Cisco EAP-FAST Module (Version: 2.2.14)
Cisco LEAP Module (Version: 1.0.19)
Cisco PEAP Module (Version: 1.1.6)
Combined Community Codec Pack 2012-12-30 (Version: 2012.12.30.0)
Counter-Strike: Condition Zero
Coupon Companion Plugin (Version: 1.24.151.151)
Crystal Reports for Visual Studio (Version: 12.51.0.240)
D3DX10 (Version: 15.4.2368.0902)
DAEMON Tools Toolbar (Version: 1.1.2.0185)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Dell Dock (Version: 2.0.0)
Dell Edoc Viewer (Version: 1.0.0)
Dell Getting Started Guide (Version: 1.00.0000)
Dell Touchpad (Version: 7.102.101.221)
Dell Webcam Central (Version: 1.40.05)
Dell Wireless WLAN Card Utility (Version: 5.30.21.0)
DeSmuME (a FREE GNU Licenced Software Emulator for the Nintendo
Desura (Version: 100.53)
DFOLauncher
Dfterm2
DirectVobSub 2.40.3851 (x64) (Version: 2.40.3851)
DivX Plus Media Foundation Components (Version: 1.0.0)
DivX Version Checker (Version: 7.1.0.9)
Dotfuscator Software Services - Community Edition (Version: 5.0.2500.0)
Dropbox (Version: 1.6.10)
Dual-Core Optimizer (Version: 1.1.4.0169)
EA Download Manager (Version: 7.0.0.74)
Earth's Special Forces
Fate/hollow ataraxia (Version: 1.00)
FL Studio 10
foobar2000 v1.1.7 (Version: 1.1.7)
GameMaker-Studio 1.1
GameMaker 8.1
Garry's Mod
GCFScape 1.8.2
GIMP 2.6.11 (Version: 2.6.11)
Google Chrome (Version: 23.0.1271.97)
Google Update Helper (Version: 1.3.21.123)
GoToAssist 8.0.0.514
GoToMeeting 5.1.0.880 (Version: 5.1.0.880)
Guild Wars 2
Half-Life 2
Half-Life 2: Lost Coast
Half-Life Dedicated Server Update Tool
Half-Life: Blue Shift
Half-Life: Opposing Force
Hi-Rez Studios Authenticate and Update Service (Version: 3.0.0.0)
HydraIRC (Version: 0.3.165)
iCloud (Version: 1.1.0.40)
IDT Audio (Version: 1.0.6217.0)
IFSCL (Version: 1.9.0)
IL Download Manager
ImgBurn (Version: 2.5.6.0)
Intel® Graphics Media Accelerator Driver (Version: 8.15.10.2555)
Internet TV for Windows Media Center (Version: 3.2.1.0)
iTunes (Version: 11.0.1.12)
Java 7 Update 9 (Version: 7.0.90)
Java Auto Updater (Version: 2.1.9.0)
jGRASP (Version: 1.8.7_07)
JumpStart 3rd Grade 2001
Junk Mail filter update (Version: 15.4.3502.0922)
League of Legends (Version: 1.3)
Left 4 Dead
Left 4 Dead 2
Live! Cam Avatar Creator (Version: 4.6.3009.1)
Livestream Procaster (Version: 20.0.151)
Macromedia Flash MX 2004 (Version: 7)
Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100)
Mesh Runtime (Version: 15.4.5722.2)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft .NET Framework 4 Multi-Targeting Pack (Version: 4.0.30319)
Microsoft Age of Empires II
Microsoft Age of Empires II: The Conquerors Expansion
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft ASP.NET MVC 2 - Visual Studio 2010 Tools (Version: 2.0.50217.0)
Microsoft ASP.NET MVC 2 (Version: 2.0.50217.0)
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) (Version: 3.5.30730.0)
Microsoft Games for Windows - LIVE Redistributable (Version: 3.5.92.0)
Microsoft Games for Windows Marketplace (Version: 3.5.50.0)
Microsoft Help Viewer 1.1 (Version: 1.1.40219)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Home and Student 2010 (Version: 14.0.6029.1000)
Microsoft Office Live Add-in 1.5 (Version: 2.0.4024.1)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Single Image 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Search Enhancement Pack (Version: 3.0.133.0)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft Silverlight 3 SDK (Version: 3.0.40818.0)
Microsoft Silverlight 4 SDK (Version: 4.0.50826.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft SQL Server 2008 (64-bit)
Microsoft SQL Server 2008 Browser (Version: 10.3.5500.0)
Microsoft SQL Server 2008 Common Files (Version: 10.3.5500.0)
Microsoft SQL Server 2008 Database Engine Services (Version: 10.3.5500.0)
Microsoft SQL Server 2008 Database Engine Shared (Version: 10.3.5500.0)
Microsoft SQL Server 2008 Native Client (Version: 10.3.5500.0)
Microsoft SQL Server 2008 R2 Data-Tier Application Framework (Version: 10.50.1750.9)
Microsoft SQL Server 2008 R2 Data-Tier Application Project (Version: 10.50.1750.9)
Microsoft SQL Server 2008 R2 Management Objects (Version: 10.50.1750.9)
Microsoft SQL Server 2008 R2 Management Objects (x64) (Version: 10.50.1750.9)
Microsoft SQL Server 2008 R2 Transact-SQL Language Service (Version: 10.50.1750.9)
Microsoft SQL Server 2008 RsFx Driver (Version: 10.3.5500.0)
Microsoft SQL Server 2008 Setup Support Files (Version: 10.3.5500.0)
Microsoft SQL Server Compact 3.5 SP2 ENU (Version: 3.5.8080.0)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (Version: 3.5.8080.0)
Microsoft SQL Server Database Publishing Wizard 1.4 (Version: 10.1.2512.8)
Microsoft SQL Server System CLR Types (Version: 10.50.1750.9)
Microsoft SQL Server System CLR Types (x64) (Version: 10.50.1750.9)
Microsoft SQL Server VSS Writer (Version: 10.3.5500.0)
Microsoft Sync Framework Runtime v1.0 SP1 (x64) (Version: 1.0.3010.0)
Microsoft Sync Framework SDK v1.0 SP1 (Version: 1.0.3010.0)
Microsoft Sync Framework Services v1.0 SP1 (x64) (Version: 1.0.3010.0)
Microsoft Sync Services for ADO.NET v2.0 SP1 (x64) (Version: 2.0.3010.0)
Microsoft Team Foundation Server 2010 Object Model - ENU (Version: 10.0.40219)
Microsoft Text-to-Speech Engine 4.0 (English)
Microsoft Visual Basic 2010 Express - ENU (Version: 10.0.40219)
Microsoft Visual C++ Compilers 2010 Standard - enu - x64 (Version: 10.0.40219)
Microsoft Visual C++ Compilers 2010 Standard - enu - x86 (Version: 10.0.40219)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Designtime - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x64 Runtime - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Runtime - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual F# 2.0 Runtime (Version: 10.0.40219)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (Version: 10.0.40219)
Microsoft Visual Studio 2010 Express Prerequisites x64 - ENU (Version: 10.0.40219)
Microsoft Visual Studio 2010 Office Developer Tools (x64) (Version: 10.0.40219)
Microsoft Visual Studio 2010 Professional - ENU (Version: 10.0.30319)
Microsoft Visual Studio 2010 Professional - ENU (Version: 10.0.40219)
Microsoft Visual Studio 2010 Service Pack 1 (Version: 10.0.40219)
Microsoft Visual Studio 2010 SharePoint Developer Tools (Version: 10.0.40219)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.40302)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.40307)
Microsoft Visual Studio Macro Tools (Version: 9.0.30729)
Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0)
Microsoft XNA Framework Redistributable 3.1 (Version: 3.1.10527.0)
Microsoft XNA Framework Redistributable 4.0 (Version: 4.0.20823.0)
MINERVA: Metastasis
Mobile Broadband Generic Drivers (Version: 2.02.07.002.14)
Morrowind
Mozilla Firefox 17.0.1 (x86 en-US) (Version: 17.0.1)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT Redists (Version: 1.0)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML4 Parser (Version: 1.0.0)
Mumble 1.2.3 (Version: 1.2.3)
Nexon Game Manager
NickToons Racing
NSIS Hisoutensoku English
NVIDIA PhysX (Version: 9.12.0213)
OGPlanet Game Launcher (Version: 1.0.0)
osu! (Version: 0.0.0.0)
Pando Media Booster (Version: 2.6.0.8)
PCSX2 - Playstation 2 Emulator
Plants vs. Zombies
Pokemon Online 1.0.21
Portal
Portal 2
PowerDVD DX (Version: 8.3.5424)
Project64 1.6 (Version: 1.6)
PunkBuster Services (Version: 0.993)
Quake II
Quickset64 (Version: 9.6.6)
QuickTime (Version: 7.73.80.64)
REACTOR (Version: 1.00.0000)
RGSS-RTP Standard (Version: 1.0.0)
RGSS-RTP Standard (Version: 1.04)
ROBLOX Player for Bryan
Roxio Burn (Version: 1.0)
Roxio Burn (Version: 1.0.0)
Roxio Update Manager (Version: 6.0.0)
RPG Maker 2003 v1.08
RPG Maker VX (Version: 1.02)
RPG Maker VX RTP (Version: 1.02)
RPGXP (Version: 1.0.0)
RPGツクール2003 - Untitled
RPTools MapTool
Safari (Version: 5.34.52.7)
SAMSUNG Mobile Modem Driver Set
Samsung Mobile phone USB driver Drive Software
SAMSUNG Mobile USB Modem 1.0 Software
SAMSUNG Mobile USB Modem Software
Secure Download Manager (Version: 3.0.5)
SEGA Genesis & Mega Drive Classics
SelectionLinks (Version: 1.0)
Service Pack 3 for SQL Server 2008 (KB2546951) (64-bit) (Version: 10.3.5500.0)
Sierra Utilities
Skype? 6.0 (Version: 6.0.126)
Soku Lobby (Version: 0.7.9.10)
Sql Server Customer Experience Improvement Program (Version: 10.3.5500.0)
Star Wars - Battlefront II
Star Wars Empire at War (Version: 1.0)
Star Wars Empire at War Forces of Corruption (Version: 1.0)
Star WarsR: Knights of the Old Republic ™
Steam (Version: 1.0.0.0)
Super Crate Box
Super Meat Boy
Switch Sound File Converter
swMSM (Version: 12.0.0.1)
System Requirements Lab for Intel (Version: 4.4.24.0)
Team Fortress 2
Team Fortress Classic
TeamSpeak 3 Client
Terraria
The Adventures of Zack The Great DEMO
The Binding of Isaac
Touch The Sky (Version: 5.1 Tasswin:1.71.08 (XP))
Tremulous 1.1.0
Tremulous Gameplay Preview
Unity Web Player (Version: 2.5.5b4_50)
Universe Sandbox
Unreal Development Kit
Unreal Gold
Unreal Tournament 2004
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2687277) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition
VC80CRTRedist - 8.0.50727.4053 (Version: 1.1.0)
Vegas Pro 10.0 (Version: 10.0.387)
VIRTUAL-ON Uninstaller
Visual C++ 8.0 Runtime Setup Package (x64) (Version: 9.0.0.623)
Visual Studio 2010 Prerequisites - English (Version: 10.0.40219)
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU (Version: 4.0.8080.0)
VLC media player 2.0.4 (Version: 2.0.4)
Voobly Game Data (Version: Voobly Game Datas)
Wajam (Version: 1.50)
WavePad Sound Editor
WCF RIA Services V1.0 SP1 (Version: 4.1.60114.0)
Web Deployment Tool (Version: 1.1.0618)
Winamp (Version: 5.623 )
Winamp Detector Plug-in (Version: 1.0.0.1)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live Family Safety (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live OneCare safety scanner
Windows Live OneCare safety scanner (Version: 1.0.0.0)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8117.416)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Media Center Add-in for Flash (Version: 3.1.1.0)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
WinRAR archiver
Wonderland Online (Version: 6.0.1)
WONswap
Xfire (remove only)
XSplit (Version: 1.1.1210.3101)
Yume Nikki 0.10 English
μTorrent (Version: 3.1.3)
東方緋想天 Ver1.06a
神採りアルケミーマイスター
神採りアルケミーマイスター (Version: 1.00.0006)

========================= Devices: ================================

Name: MAC Bridge Miniport
Description: MAC Bridge Miniport
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: BridgeMP
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


========================= Memory info: ===================================

Percentage of memory in use: 54%
Total physical RAM: 4058.36 MB
Available physical RAM: 1840.36 MB
Total Pagefile: 8114.92 MB
Available Pagefile: 5510.36 MB
Total Virtual: 4095.88 MB
Available Virtual: 3965.09 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:451.07 GB) (Free:119.07 GB) NTFS
3 Drive e: () (Removable) (Total:0.95 GB) (Free:0.95 GB) FAT

========================= Users: ========================================

User accounts for \\COMP

Administrator Bryan Guest
Guy Kami Mcx1-COMP

========================= Minidump Files ==================================

========================= Restore Points ==================================

31-12-2012 16:07:35 インストール済み 神採りアルケミーマイスター
31-12-2012 16:32:56 インストール済み 神採りアルケミーマイスター Ver2.00 Update
31-12-2012 16:37:30 削除済み 神採りアルケミーマイスター Ver2.00 Update
01-01-2013 10:15:19 Windows Update
02-01-2013 17:39:02 Installed DirectX
04-01-2013 17:06:11 Windows Update

**** End of log ****

I hope all of this information helps you.

#4 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:07:49 AM

Posted 04 January 2013 - 08:11 PM

Hi

Please do the following next:

:step1:

  • Launch Malwarebytes' Anti-Malware (MBAM)
  • Click on the tab update, then click Check for Updates
  • If an update is found, it will download and install the latest version.
  • Then on the Scanner tab select Perform full scan, then click Scan.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Be sure that everything is checked, and click Remove Selected.
  • When completed, a log will open in Notepad.
  • Post the log in your next reply.

Note: Be sure to restart the computer.

The log can also be found here:
C:\Documents and Settings\<Username>\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
Or at C:\Users\<Username>\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt


:step2:

I'd like us to scan your machine with ESET Online Scanner:

Note: You can use either Internet Explorer or Mozilla FireFox for this scan. You will however need to disable your current installed Anti-Virus, how to do so can be read here.

Note: Vista/Windows 7 users: You will need to to right-click on the either the IE or FF icon in the Start Menu or Quick Launch Bar on the Taskbar and select Run as Administrator from the context menu.

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image
      icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • On ESET: Click the Back button, then the Finish button.
Note: Do not forget to re-enable your Anti-Virus application after running the above scan!


:step3:

Please download AdwCleaner by Xplode onto your desktop.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Search.
  • A logfile will automatically open after the scan has finished.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[R1].txt as well.


:step4:

How is the computer running now?

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#5 Geo Terrifrit

Geo Terrifrit
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:01:49 AM

Posted 05 January 2013 - 10:55 PM

Here's the ESET Online Scanner log.

ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6844
# api_version=3.0.2
# EOSSerial=e46227c18d8c4143935d6b117c728cdc
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2013-01-05 09:38:20
# local_time=2013-01-05 03:38:20 (-0600, Central Standard Time)
# country="United States"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=774 16777213 100 94 0 133210172 0 0
# compatibility_mode=5893 16776573 100 94 0 108965350 0 0
# scanned=414194
# found=5
# cleaned=0
# scan_time=15333
C:\Program Files (x86)\Coupon Companion Plugin\Coupon Companion Plugin.dll a variant of Win32/Toolbar.CrossRider.A application (unable to clean) 11C28559EA3D238DCCF2C457C4972E3EB6291EA5 I
C:\Users\Bryan\AppData\Local\Temp\Update_47e8.exe a variant of Win32/MessengerPlus.A application (unable to clean) 6F25672114DFD8114FB90985CF46BC9F28BB5300 I
C:\Users\Bryan\AppData\Local\Temp\Update_567c.exe a variant of Win32/MessengerPlus.A application (unable to clean) 4D1AD0146D7FEB037E208CE5924C190AE9D423F4 I
C:\Users\Bryan\AppData\Local\Temp\Update_83ee.exe a variant of Win32/MessengerPlus.A application (unable to clean) 4D1AD0146D7FEB037E208CE5924C190AE9D423F4 I
C:\Users\Bryan\AppData\Local\Temp\Update_af1f.exe a variant of Win32/MessengerPlus.A application (unable to clean) 4D1AD0146D7FEB037E208CE5924C190AE9D423F4 I

And the AdWCleaner Log.

# AdwCleaner v2.104 - Logfile created 01/05/2013 at 21:33:11
# Updated 29/12/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Bryan - COMP
# Boot Mode : Normal
# Running from : C:\Users\Bryan\Videos\Videos from youtube\Downloads\AdwCleaner.exe
# Option [Search]


***** [Services] *****

Found : WajamUpdater

***** [Files / Folders] *****

File Found : C:\Users\Bryan\AppData\Local\Temp\Uninstall.exe
Folder Found : C:\Program Files (x86)\Conduit
Folder Found : C:\Program Files (x86)\DAEMON Tools Toolbar
Folder Found : C:\Program Files (x86)\OApps
Folder Found : C:\Program Files (x86)\Wajam
Folder Found : C:\Users\Bryan\AppData\Local\Conduit
Folder Found : C:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn
Folder Found : C:\Users\Bryan\AppData\Local\Wajam
Folder Found : C:\Users\Bryan\AppData\LocalLow\AVG Security Toolbar
Folder Found : C:\Users\Bryan\AppData\LocalLow\Conduit
Folder Found : C:\Users\Bryan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam
Folder Found : C:\Users\Guy\AppData\Local\AVG Security Toolbar
Folder Found : C:\Users\Guy\AppData\LocalLow\AVG Security Toolbar
Folder Found : C:\Users\Guy\AppData\LocalLow\Conduit
Folder Found : C:\Users\Guy\AppData\LocalLow\MyWebSearch
Folder Found : C:\Users\Kami\AppData\Local\AVG Security Toolbar
Folder Found : C:\Users\Kami\AppData\LocalLow\AVG Security Toolbar
Folder Found : C:\Users\Kami\AppData\LocalLow\Conduit

***** [Registry] *****

Key Found : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Found : HKCU\Software\AppDataLow\Software\Crossrider
Key Found : HKCU\Software\BrowserCompanion
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\Cr_Installer
Key Found : HKCU\Software\InstalledBrowserExtensions
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Found : HKCU\Software\Softonic
Key Found : HKCU\Software\Wajam
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{18EAB056-9057-F224-FD4C-1F6569C4D8D2}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{4327FABE-3C22-4689-8DBF-D226CF777FE9}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
Key Found : HKLM\SOFTWARE\Classes\AppID\{1FAEE6D5-34F4-42AA-8025-3FD8F3EC4634}
Key Found : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}
Key Found : HKLM\SOFTWARE\Classes\CrossriderApp0021804.BHO
Key Found : HKLM\SOFTWARE\Classes\CrossriderApp0021804.BHO.1
Key Found : HKLM\SOFTWARE\Classes\CrossriderApp0021804.Sandbox
Key Found : HKLM\SOFTWARE\Classes\CrossriderApp0021804.Sandbox.1
Key Found : HKLM\SOFTWARE\Classes\DTToolbar.ToolBandObj
Key Found : HKLM\SOFTWARE\Classes\DTToolbar.ToolBandObj.1
Key Found : HKLM\SOFTWARE\Classes\Toolbar.CT2801948
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{095BFD3C-4602-4FE1-96F1-AEFAFBFD067D}
Key Found : HKLM\SOFTWARE\Classes\wajam.WajamBHO
Key Found : HKLM\SOFTWARE\Classes\wajam.WajamBHO.1
Key Found : HKLM\SOFTWARE\Classes\wajam.WajamDownloader
Key Found : HKLM\SOFTWARE\Classes\wajam.WajamDownloader.1
Key Found : HKLM\Software\Conduit
Key Found : HKLM\Software\Wajam
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{5D64294B-1341-4FE7-B6D8-7C36828D4DD5}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Key Found : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gclijllifhfpomppedeljakfegbcpojn
Key Found : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Wajam
Key Found : HKLM\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Found : HKLM\SOFTWARE\Classes\Interface\{07B18EAC-A523-4961-B6BB-170DE4475CCA}
Key Found : HKLM\SOFTWARE\Classes\Interface\{17DE5E5E-BFE3-4E83-8E1F-8755795359EC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{2E9937FC-CF2F-4F56-AF54-5A6A3DD375CC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{3E720453-B472-4954-B7AA-33069EB53906}
Key Found : HKLM\SOFTWARE\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Key Found : HKLM\SOFTWARE\Classes\Interface\{63D0ED2D-B45B-4458-8B3B-60C69BBBD83C}
Key Found : HKLM\SOFTWARE\Classes\Interface\{BBABDC90-F3D5-4801-863A-EE6AE529862D}
Key Found : HKLM\SOFTWARE\Classes\Interface\{E342AF55-B78A-4CD0-A2BB-DA7F52D9D25F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{E79DFBCB-5697-4FBD-94E5-5B2A9C7C1612}
Key Found : HKLM\SOFTWARE\Classes\Interface\{EB9E5C1C-B1F9-4C2B-BE8A-27D6446FDAF8}
Key Found : HKU\S-1-5-21-1932846709-1072812983-2826705724-1000\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Key Found : HKU\S-1-5-21-1932846709-1072812983-2826705724-1000\Software\Microsoft\Internet Explorer\SearchScopes\{18EAB056-9057-F224-FD4C-1F6569C4D8D2}
Key Found : HKU\S-1-5-21-1932846709-1072812983-2826705724-1000\Software\Microsoft\Internet Explorer\SearchScopes\{4327FABE-3C22-4689-8DBF-D226CF777FE9}
Key Found : HKU\S-1-5-21-1932846709-1072812983-2826705724-1000\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [support@predictad.com]
Value Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{32099AAC-C132-4136-9E9A-4E364A424E17}]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16457

[OK] Registry is clean.

-\\ Mozilla Firefox v17.0.1 (en-US)

File : C:\Users\Bryan\AppData\Roaming\Mozilla\Firefox\Profiles\z7jx71wt.default\prefs.js

[OK] File is clean.

File : C:\Users\Bryan\AppData\Roaming\Mozilla\Firefox\Profiles\zla5zcuf.default\prefs.js

Found : user_pref("extensions.crossriderapp21804.adsOldValue", -1);

File : C:\Users\Guy\AppData\Roaming\Mozilla\Firefox\Profiles\uvzme5k4.default\prefs.js

Found : user_pref("browser.search.defaultengine", "Ask.com");
Found : user_pref("browser.search.defaultenginename", "Ask.com");
Found : user_pref("browser.search.order.1", "Ask.com");
Found : user_pref("browser.search.selectedEngine", "Ask.com");
Found : user_pref("extensions.asktb.ff-original-keyword-url", "hxxp://search.avg.com/route/?d=4c2cc685&v=7.0[...]
Found : user_pref("extensions.sahtb.url.merchants.data", "<?xml version=\"1.0\" ?><MerchantSettings><v n=\"3[...]
Found : user_pref("extensions.sahtb.url.prefs.data", "<ToolbarPrefs>\r\n <XMLVersion Number=\"{bdd09e8b-8dee[...]
Found : user_pref("extensions.crossriderapp21804.adsOldValue", -1);

File : C:\Users\Kami\AppData\Roaming\Mozilla\Firefox\Profiles\d9xfttlc.default\prefs.js

Found : user_pref("browser.search.defaultengine", "Ask.com");
Found : user_pref("browser.search.defaultenginename", "Ask.com");
Found : user_pref("browser.search.order.1", "Ask.com");
Found : user_pref("extensions.asktb.ff-original-keyword-url", "hxxp://search.avg.com/route/?d=4c2cc685&v=7.0[...]
Found : user_pref("extensions.crossriderapp21804.adsOldValue", -1);

File : C:\Users\Kami.Comp\AppData\Roaming\Mozilla\Firefox\Profiles\fqxzygzo.default\prefs.js

Found : user_pref("extensions.crossriderapp21804.adsOldValue", -1);

-\\ Google Chrome v23.0.1271.97

File : C:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Preferences

Found [l.19] : urls_to_restore_on_startup = [ "hxxp://search.conduit.com/?ctid=CT2801948&SearchSource=48" ]
Found [l.47] : icon_url = "hxxp://search.conduit.com/fav.ico",
Found [l.50] : keyword = "search.conduit.com",
Found [l.53] : search_url = "hxxp://search.conduit.com/Results.aspx?q={searchTerms}&hl=en&SelfSearch=1&SearchSource=49&ctid=CT2801948",
Found [l.54] : suggest_url = "hxxp://search.conduit.com/"
Found [l.621] : urls_to_restore_on_startup = [ "hxxp://search.conduit.com/?ctid=CT2801948&SearchSource=48" ]

-\\ Chromium v directory_upgrade: true
}

File : C:\Users\Bryan\AppData\Local\Chromium\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [9584 octets] - [05/01/2013 21:33:11]

########## EOF - C:\AdwCleaner[R1].txt - [9644 octets] ##########

It's actually better than before, in terms of using applications. I feel like there's been a weight lifted from the memory and CPU, but we haven't really done anything in terms of removing, repairing, or replacing files, which is odd to me. The problem should still be here, right?

Edited by Geo Terrifrit, 05 January 2013 - 10:55 PM.


#6 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:07:49 AM

Posted 06 January 2013 - 07:41 AM

Hi

Please do the following next:

:step1:

The MBAM log was not posted. Please add this in your next reply.

The log can also be found here:
C:\Users\<Username>\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt


:step2:

  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Delete.
  • Confirm each time with Ok.
  • You will be prompted to restart your computer. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#7 Geo Terrifrit

Geo Terrifrit
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:01:49 AM

Posted 06 January 2013 - 12:43 PM

Sorry about that. I completely forgot about the Malwarebytes log.

Malwarebytes Anti-Malware 1.70.0.1100
www.malwarebytes.org

Database version: v2013.01.05.02

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Bryan :: COMP [administrator]

1/4/2013 11:10:28 PM
mbam-log-2013-01-04 (23-10-28).txt

Scan type: Full scan (C:\|D:\|E:\|F:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 974604
Time elapsed: 4 hour(s), 41 minute(s), 56 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

And here's the AdwCleaner log after restart.

# AdwCleaner v2.104 - Logfile created 01/06/2013 at 11:30:56
# Updated 29/12/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Bryan - COMP
# Boot Mode : Normal
# Running from : C:\Users\Bryan\Desktop\AdwCleaner.exe
# Option [Delete]


***** [Services] *****

Stopped & Deleted : WajamUpdater

***** [Files / Folders] *****

File Deleted : C:\Users\Bryan\AppData\Local\Temp\Uninstall.exe
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\DAEMON Tools Toolbar
Folder Deleted : C:\Program Files (x86)\OApps
Folder Deleted : C:\Program Files (x86)\Wajam
Folder Deleted : C:\Users\Bryan\AppData\Local\Conduit
Folder Deleted : C:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn
Folder Deleted : C:\Users\Bryan\AppData\Local\Wajam
Folder Deleted : C:\Users\Bryan\AppData\LocalLow\AVG Security Toolbar
Folder Deleted : C:\Users\Bryan\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Bryan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam
Folder Deleted : C:\Users\Guy\AppData\Local\AVG Security Toolbar
Folder Deleted : C:\Users\Guy\AppData\LocalLow\AVG Security Toolbar
Folder Deleted : C:\Users\Guy\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Guy\AppData\LocalLow\MyWebSearch
Folder Deleted : C:\Users\Kami\AppData\Local\AVG Security Toolbar
Folder Deleted : C:\Users\Kami\AppData\LocalLow\AVG Security Toolbar
Folder Deleted : C:\Users\Kami\AppData\LocalLow\Conduit

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKCU\Software\BrowserCompanion
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Cr_Installer
Key Deleted : HKCU\Software\InstalledBrowserExtensions
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\Wajam
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{18EAB056-9057-F224-FD4C-1F6569C4D8D2}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{4327FABE-3C22-4689-8DBF-D226CF777FE9}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FAEE6D5-34F4-42AA-8025-3FD8F3EC4634}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0021804.BHO
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0021804.BHO.1
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0021804.Sandbox
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0021804.Sandbox.1
Key Deleted : HKLM\SOFTWARE\Classes\DTToolbar.ToolBandObj
Key Deleted : HKLM\SOFTWARE\Classes\DTToolbar.ToolBandObj.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2801948
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{095BFD3C-4602-4FE1-96F1-AEFAFBFD067D}
Key Deleted : HKLM\SOFTWARE\Classes\wajam.WajamBHO
Key Deleted : HKLM\SOFTWARE\Classes\wajam.WajamBHO.1
Key Deleted : HKLM\SOFTWARE\Classes\wajam.WajamDownloader
Key Deleted : HKLM\SOFTWARE\Classes\wajam.WajamDownloader.1
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\Wajam
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{5D64294B-1341-4FE7-B6D8-7C36828D4DD5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gclijllifhfpomppedeljakfegbcpojn
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Wajam
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{07B18EAC-A523-4961-B6BB-170DE4475CCA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{17DE5E5E-BFE3-4E83-8E1F-8755795359EC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2E9937FC-CF2F-4F56-AF54-5A6A3DD375CC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3E720453-B472-4954-B7AA-33069EB53906}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{63D0ED2D-B45B-4458-8B3B-60C69BBBD83C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BBABDC90-F3D5-4801-863A-EE6AE529862D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E342AF55-B78A-4CD0-A2BB-DA7F52D9D25F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E79DFBCB-5697-4FBD-94E5-5B2A9C7C1612}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EB9E5C1C-B1F9-4C2B-BE8A-27D6446FDAF8}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [support@predictad.com]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{32099AAC-C132-4136-9E9A-4E364A424E17}]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16457

[OK] Registry is clean.

-\\ Mozilla Firefox v17.0.1 (en-US)

File : C:\Users\Bryan\AppData\Roaming\Mozilla\Firefox\Profiles\z7jx71wt.default\prefs.js

[OK] File is clean.

File : C:\Users\Bryan\AppData\Roaming\Mozilla\Firefox\Profiles\zla5zcuf.default\prefs.js

C:\Users\Bryan\AppData\Roaming\Mozilla\Firefox\Profiles\zla5zcuf.default\user.js ... Deleted !

Deleted : user_pref("extensions.crossriderapp21804.adsOldValue", -1);

File : C:\Users\Guy\AppData\Roaming\Mozilla\Firefox\Profiles\uvzme5k4.default\prefs.js

Deleted : user_pref("browser.search.defaultengine", "Ask.com");
Deleted : user_pref("browser.search.defaultenginename", "Ask.com");
Deleted : user_pref("browser.search.order.1", "Ask.com");
Deleted : user_pref("browser.search.selectedEngine", "Ask.com");
Deleted : user_pref("extensions.asktb.ff-original-keyword-url", "hxxp://search.avg.com/route/?d=4c2cc685&v=7.0[...]
Deleted : user_pref("extensions.sahtb.url.merchants.data", "<?xml version=\"1.0\" ?><MerchantSettings><v n=\"3[...]
Deleted : user_pref("extensions.sahtb.url.prefs.data", "<ToolbarPrefs>\r\n <XMLVersion Number=\"{bdd09e8b-8dee[...]
Deleted : user_pref("extensions.crossriderapp21804.adsOldValue", -1);

File : C:\Users\Kami\AppData\Roaming\Mozilla\Firefox\Profiles\d9xfttlc.default\prefs.js

Deleted : user_pref("browser.search.defaultengine", "Ask.com");
Deleted : user_pref("browser.search.defaultenginename", "Ask.com");
Deleted : user_pref("browser.search.order.1", "Ask.com");
Deleted : user_pref("extensions.asktb.ff-original-keyword-url", "hxxp://search.avg.com/route/?d=4c2cc685&v=7.0[...]
Deleted : user_pref("extensions.crossriderapp21804.adsOldValue", -1);

File : C:\Users\Kami.Comp\AppData\Roaming\Mozilla\Firefox\Profiles\fqxzygzo.default\prefs.js

Deleted : user_pref("extensions.crossriderapp21804.adsOldValue", -1);

-\\ Google Chrome v23.0.1271.97

File : C:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Preferences

Deleted [l.19] : urls_to_restore_on_startup = [ "hxxp://search.conduit.com/?ctid=CT2801948&SearchSource=48"[...]
Deleted [l.47] : icon_url = "hxxp://search.conduit.com/fav.ico",
Deleted [l.50] : keyword = "search.conduit.com",
Deleted [l.53] : search_url = "hxxp://search.conduit.com/Results.aspx?q={searchTerms}&hl=en&SelfSearch=1&Searc[...]
Deleted [l.54] : suggest_url = "hxxp://search.conduit.com/"
Deleted [l.621] : urls_to_restore_on_startup = [ "hxxp://search.conduit.com/?ctid=CT2801948&SearchSource=48" ]

-\\ Chromium v directory_upgrade: true
}

File : C:\Users\Bryan\AppData\Local\Chromium\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [9681 octets] - [05/01/2013 21:33:11]
AdwCleaner[R2].txt - [9712 octets] - [05/01/2013 21:50:31]
AdwCleaner[S1].txt - [9350 octets] - [06/01/2013 11:30:56]

########## EOF - C:\AdwCleaner[S1].txt - [9410 octets] ##########

#8 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:07:49 AM

Posted 06 January 2013 - 05:48 PM

How is the computer running now?

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#9 Geo Terrifrit

Geo Terrifrit
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:01:49 AM

Posted 07 January 2013 - 01:15 AM

Seems to be running without any issues. It took a while for the computer to boot up Windows though after removing the files that AdwCleaner detected. Probably was AdwCleaner finishing its job.

#10 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:07:49 AM

Posted 07 January 2013 - 04:11 PM

Hi

Please do the following next:

:step1:

Important Note: Your version of Java is outdated. Older versions have vulnerabilities that malicious sites can use to exploit and infect your system.


Please follow these steps to remove older version Java components and update:

  • Download the latest version of Java Runtime Environment (JRE) Version 10 and save it to your desktop.
  • Look for "Java Platform, Standard Edition".
  • Click the "Download JRE" button to the right.
  • Read the License Agreement, and then check the box that says: "Accept License Agreement".
  • From the list, select your OS and Platform (32-bit or 64-bit).
    64-bit OS users, should read: Which Java download should I choose for my 64-bit Windows operating system?
  • If a download for an Offline Installation is available, it is recommended to choose that and save the file to your desktop.
  • Close any programs you may have running - especially your web browser.

Go to Posted Image > Control Panel, double-click on Add/Remove Programs or Programs and Features in Vista/Windows 7 and remove all older versions of Java.
  • Check (highlight) any item with Java Runtime Environment (JRE or J2SE) in the name.
  • Click the Remove or Change/Remove button and follow the onscreen instructions for the Java uninstaller.
  • Repeat as many times as necessary to remove each Java versions.
  • Reboot your computer once all Java components are removed.
  • Then from your desktop double-click on jre-7u10-windows-i586.exe (or jre-7u10-windows-x64.exe for 64-bit) to install the newest version.
  • If using Windows 7 or Vista and the installer refuses to launch due to insufficient user permissions, then Run As Administrator.
  • When the Java Setup - Welcome window opens, click the Install > button.
  • If offered any unwanted software or toolbars during installation, just uncheck the box before continuing unless you want it.
  • The McAfee Security Scan Plus tool is installed by default unless you uncheck the McAfee installation box when updating Java.

Note: The Java Quick Starter (JQS.exe) adds a service to improve the initial startup time of Java applets and applications but it's not necessary.
To disable the JQS service if you don't want to use it:
  • Go to Start > Control Panel > Java > Advanced > Miscellaneous and uncheck the box for Java Quick Starter.
  • Click Ok and reboot your computer.


:step2:

Important Note: Your version of Adobe Reader is outdated.

Older versions have vulnerabilities that malicious sites can use to exploit and infect your system.

Please follow these steps to remove older version Adobe components and update:
  • Download the latest version of Adobe Reader. and save it to your desktop.
  • Uncheck the "Free McAfee Security plan Plus" option or any other Toolbar you are offered
  • Click the download button at the bottom.
  • If you use Internet Explorer and do not wish to install the ActiveX element, simply click on the click here to download link on the next page.
  • Remove all older version of Adobe Reader: Go to Add/remove and uninstall all versions of Adobe Reader, Acrobat Reader and Adobe Acrobat.
    If you are unsure of how to use Add or Remove Programs (or Programs and Features), the please see this tutorial:How To Remove An Installed Program From Your Computer
  • Then from your desktop double-click on Adobe Reader to install the newest version.
    If using Windows Vista and the installer refuses to launch due to insufficient user permissions, then Run As Administrator.
  • When the "Adobe Setup - Welcome" window opens, click the Install > button.
  • If offered to install a Toolbar, just uncheck the box before continuing unless you want it.

Your Adobe Reader is now up to date!



:step3:

Give it 24 hours, then reply with an update on how the computer is running then.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#11 Geo Terrifrit

Geo Terrifrit
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:01:49 AM

Posted 08 January 2013 - 05:52 PM

There has been no new or old recurring symptoms that may be related to the virus that I have seen. I have had no issues in the 24-hour period and I still don't have issues now. Things are running normally (if not better) than before the virus attack.

#12 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:07:49 AM

Posted 09 January 2013 - 08:03 AM

Hi

Please rerun Minitoolbox on your desktop

Checkmark the following checkboxes:
  • List last 10 Event Viewer log
  • List Installed Programs

Click Go and post the full contents of the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#13 Geo Terrifrit

Geo Terrifrit
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:01:49 AM

Posted 09 January 2013 - 06:38 PM

Here's the log.

MiniToolBox by Farbar Version: 25-11-2012
Ran by Bryan (administrator) on 09-01-2013 at 17:38:05
Running from "C:\Users\Bryan\All Desktop Items\BC Security stuff"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Event log errors: ===============================

Application errors:
==================
Error: (01/09/2013 05:37:22 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (01/09/2013 09:33:36 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 37568005

Error: (01/09/2013 09:33:36 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 37568005

Error: (01/09/2013 09:33:36 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (01/09/2013 09:33:35 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 37566819

Error: (01/09/2013 09:33:35 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 37566819

Error: (01/09/2013 09:33:35 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (01/09/2013 09:33:34 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 37565821

Error: (01/09/2013 09:33:34 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 37565821

Error: (01/09/2013 09:33:34 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second


System errors:
=============
Error: (01/09/2013 09:33:46 AM) (Source: Service Control Manager) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error:
%%-2140993535

Error: (01/09/2013 09:33:46 AM) (Source: Service Control Manager) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:
%%-2140993535

Error: (01/09/2013 09:33:46 AM) (Source: Service Control Manager) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error:
%%-2140993535

Error: (01/09/2013 09:33:46 AM) (Source: Service Control Manager) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:
%%-2140993535

Error: (01/09/2013 09:33:46 AM) (Source: PNRPSvc) (User: )
Description: 0x80630801

Error: (01/09/2013 09:33:46 AM) (Source: PNRPSvc) (User: )
Description: 0x80630801

Error: (01/08/2013 04:13:09 PM) (Source: Service Control Manager) (User: )
Description: The Windows Media Player Network Sharing Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service.

Error: (01/08/2013 02:39:11 PM) (Source: Service Control Manager) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error:
%%-2140993535

Error: (01/08/2013 02:39:11 PM) (Source: Service Control Manager) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:
%%-2140993535

Error: (01/08/2013 02:39:11 PM) (Source: Service Control Manager) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error:
%%-2140993535


Microsoft Office Sessions:
=========================
Error: (01/09/2013 05:37:22 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Bryan\All Desktop Items\BC Security stuff\esetsmartinstaller_enu.exe

Error: (01/09/2013 09:33:36 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 37568005

Error: (01/09/2013 09:33:36 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 37568005

Error: (01/09/2013 09:33:36 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (01/09/2013 09:33:35 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 37566819

Error: (01/09/2013 09:33:35 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 37566819

Error: (01/09/2013 09:33:35 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (01/09/2013 09:33:34 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 37565821

Error: (01/09/2013 09:33:34 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 37565821

Error: (01/09/2013 09:33:34 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second


CodeIntegrity Errors:
===================================
Date: 2011-11-18 06:25:54.893
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2011-11-18 06:25:54.703
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2011-11-18 06:25:46.414
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2011-11-18 06:25:46.190
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


=========================== Installed Programs ============================

7-Zip 4.65
Acrobat.com (Version: 2.1.0)
Acrobat.com (Version: 2.1.0.0)
Adobe AIR (Version: 3.1.0.4880)
Adobe Flash Player 11 ActiveX (Version: 11.5.502.146)
Adobe Flash Player 11 Plugin (Version: 11.5.502.146)
Adobe Photoshop 7.0 (Version: 7.0)
Adobe Reader XI (Version: 11.0.00)
Advanced Audio FX Engine (Version: 1.12.05)
Age of Empires II - The Conquerors - 1.0e Patch FINAL (Version: 1.0e)
Akamai NetSession Interface
Akamai NetSession Interface Service
Any Video Converter 3.3.5
Apple Application Support (Version: 2.3.2)
Apple Mobile Device Support (Version: 6.0.1.3)
Apple Software Update (Version: 2.1.3.127)
Audacity 1.3.14 (Unicode)
avast! Free Antivirus (Version: 7.0.1474.0)
Battle for Wesnoth 1.10.4 (Version: 1.10.4)
Beat Hazard
Bonjour (Version: 3.0.0.10)
CamStudio
Cisco EAP-FAST Module (Version: 2.2.14)
Cisco LEAP Module (Version: 1.0.19)
Cisco PEAP Module (Version: 1.1.6)
Combined Community Codec Pack 2012-12-30 (Version: 2012.12.30.0)
Counter-Strike: Condition Zero
Coupon Companion Plugin (Version: 1.24.151.151)
Crystal Reports for Visual Studio (Version: 12.51.0.240)
D3DX10 (Version: 15.4.2368.0902)
DAEMON Tools Toolbar (Version: 1.1.2.0185)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Dell Dock (Version: 2.0.0)
Dell Edoc Viewer (Version: 1.0.0)
Dell Getting Started Guide (Version: 1.00.0000)
Dell Touchpad (Version: 7.102.101.221)
Dell Webcam Central (Version: 1.40.05)
Dell Wireless WLAN Card Utility (Version: 5.30.21.0)
DeSmuME (a FREE GNU Licenced Software Emulator for the Nintendo
Desura (Version: 100.53)
DFOLauncher
Dfterm2
DirectVobSub 2.40.3851 (x64) (Version: 2.40.3851)
DivX Plus Media Foundation Components (Version: 1.0.0)
DivX Version Checker (Version: 7.1.0.9)
Dotfuscator Software Services - Community Edition (Version: 5.0.2500.0)
Dropbox (Version: 1.6.10)
Dual-Core Optimizer (Version: 1.1.4.0169)
EA Download Manager (Version: 7.0.0.74)
Earth's Special Forces
ESET Online Scanner v3
Fate/hollow ataraxia (Version: 1.00)
FL Studio 10
foobar2000 v1.1.7 (Version: 1.1.7)
GameMaker-Studio 1.1
GameMaker 8.1
Garry's Mod
GCFScape 1.8.2
GIMP 2.6.11 (Version: 2.6.11)
Google Chrome (Version: 23.0.1271.97)
Google Update Helper (Version: 1.3.21.123)
GoToAssist 8.0.0.514
GoToMeeting 5.1.0.880 (Version: 5.1.0.880)
Guild Wars 2
Half-Life 2
Half-Life 2: Lost Coast
Half-Life Dedicated Server Update Tool
Half-Life: Blue Shift
Half-Life: Opposing Force
Hi-Rez Studios Authenticate and Update Service (Version: 3.0.0.0)
HydraIRC (Version: 0.3.165)
iCloud (Version: 1.1.0.40)
IDT Audio (Version: 1.0.6217.0)
IFSCL (Version: 1.9.0)
IL Download Manager
ImgBurn (Version: 2.5.6.0)
Intel® Graphics Media Accelerator Driver (Version: 8.15.10.2555)
Internet TV for Windows Media Center (Version: 3.2.1.0)
iTunes (Version: 11.0.1.12)
Java 7 Update 10 (64-bit) (Version: 7.0.100)
Java SE Development Kit 7 Update 10 (64-bit) (Version: 1.7.0.100)
jGRASP (Version: 1.8.7_07)
JumpStart 3rd Grade 2001
Junk Mail filter update (Version: 15.4.3502.0922)
LAME v3.99.3 (for Windows)
League of Legends (Version: 1.3)
Left 4 Dead
Left 4 Dead 2
Live! Cam Avatar Creator (Version: 4.6.3009.1)
Livestream Procaster (Version: 20.0.151)
Mabinogi
Macromedia Flash MX 2004 (Version: 7)
Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100)
MapleStory
Mesh Runtime (Version: 15.4.5722.2)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft .NET Framework 4 Multi-Targeting Pack (Version: 4.0.30319)
Microsoft Age of Empires II
Microsoft Age of Empires II: The Conquerors Expansion
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft ASP.NET MVC 2 - Visual Studio 2010 Tools (Version: 2.0.50217.0)
Microsoft ASP.NET MVC 2 (Version: 2.0.50217.0)
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) (Version: 3.5.30730.0)
Microsoft Games for Windows - LIVE Redistributable (Version: 3.5.92.0)
Microsoft Games for Windows Marketplace (Version: 3.5.50.0)
Microsoft Help Viewer 1.1 (Version: 1.1.40219)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Home and Student 2010 (Version: 14.0.6029.1000)
Microsoft Office Live Add-in 1.5 (Version: 2.0.4024.1)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Single Image 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Search Enhancement Pack (Version: 3.0.133.0)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft Silverlight 3 SDK (Version: 3.0.40818.0)
Microsoft Silverlight 4 SDK (Version: 4.0.50826.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft SQL Server 2008 (64-bit)
Microsoft SQL Server 2008 Browser (Version: 10.3.5500.0)
Microsoft SQL Server 2008 Common Files (Version: 10.3.5500.0)
Microsoft SQL Server 2008 Database Engine Services (Version: 10.3.5500.0)
Microsoft SQL Server 2008 Database Engine Shared (Version: 10.3.5500.0)
Microsoft SQL Server 2008 Native Client (Version: 10.3.5500.0)
Microsoft SQL Server 2008 R2 Data-Tier Application Framework (Version: 10.50.1750.9)
Microsoft SQL Server 2008 R2 Data-Tier Application Project (Version: 10.50.1750.9)
Microsoft SQL Server 2008 R2 Management Objects (Version: 10.50.1750.9)
Microsoft SQL Server 2008 R2 Management Objects (x64) (Version: 10.50.1750.9)
Microsoft SQL Server 2008 R2 Transact-SQL Language Service (Version: 10.50.1750.9)
Microsoft SQL Server 2008 RsFx Driver (Version: 10.3.5500.0)
Microsoft SQL Server 2008 Setup Support Files (Version: 10.3.5500.0)
Microsoft SQL Server Compact 3.5 SP2 ENU (Version: 3.5.8080.0)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (Version: 3.5.8080.0)
Microsoft SQL Server Database Publishing Wizard 1.4 (Version: 10.1.2512.8)
Microsoft SQL Server System CLR Types (Version: 10.50.1750.9)
Microsoft SQL Server System CLR Types (x64) (Version: 10.50.1750.9)
Microsoft SQL Server VSS Writer (Version: 10.3.5500.0)
Microsoft Sync Framework Runtime v1.0 SP1 (x64) (Version: 1.0.3010.0)
Microsoft Sync Framework SDK v1.0 SP1 (Version: 1.0.3010.0)
Microsoft Sync Framework Services v1.0 SP1 (x64) (Version: 1.0.3010.0)
Microsoft Sync Services for ADO.NET v2.0 SP1 (x64) (Version: 2.0.3010.0)
Microsoft Team Foundation Server 2010 Object Model - ENU (Version: 10.0.40219)
Microsoft Text-to-Speech Engine 4.0 (English)
Microsoft Visual Basic 2010 Express - ENU (Version: 10.0.40219)
Microsoft Visual C++ Compilers 2010 Standard - enu - x64 (Version: 10.0.40219)
Microsoft Visual C++ Compilers 2010 Standard - enu - x86 (Version: 10.0.40219)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Designtime - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x64 Runtime - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Runtime - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual F# 2.0 Runtime (Version: 10.0.40219)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (Version: 10.0.40219)
Microsoft Visual Studio 2010 Express Prerequisites x64 - ENU (Version: 10.0.40219)
Microsoft Visual Studio 2010 Office Developer Tools (x64) (Version: 10.0.40219)
Microsoft Visual Studio 2010 Professional - ENU (Version: 10.0.30319)
Microsoft Visual Studio 2010 Professional - ENU (Version: 10.0.40219)
Microsoft Visual Studio 2010 Service Pack 1 (Version: 10.0.40219)
Microsoft Visual Studio 2010 SharePoint Developer Tools (Version: 10.0.40219)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.40302)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.40307)
Microsoft Visual Studio Macro Tools (Version: 9.0.30729)
Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0)
Microsoft XNA Framework Redistributable 3.1 (Version: 3.1.10527.0)
Microsoft XNA Framework Redistributable 4.0 (Version: 4.0.20823.0)
MINERVA: Metastasis
Mobile Broadband Generic Drivers (Version: 2.02.07.002.14)
Morrowind
Mozilla Firefox 17.0.1 (x86 en-US) (Version: 17.0.1)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT Redists (Version: 1.0)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML4 Parser (Version: 1.0.0)
Mumble 1.2.3 (Version: 1.2.3)
Nexon Game Manager
NickToons Racing
NSIS Hisoutensoku English
NVIDIA PhysX (Version: 9.12.0213)
OGPlanet Game Launcher (Version: 1.0.0)
osu! (Version: 0.0.0.0)
Pando Media Booster (Version: 2.6.0.8)
PCSX2 - Playstation 2 Emulator
Plants vs. Zombies
Pokemon Online 1.0.21
Portal
Portal 2
PowerDVD DX (Version: 8.3.5424)
Project64 1.6 (Version: 1.6)
PunkBuster Services (Version: 0.993)
Quake II
Quickset64 (Version: 9.6.6)
QuickTime (Version: 7.73.80.64)
REACTOR (Version: 1.00.0000)
RGSS-RTP Standard (Version: 1.0.0)
RGSS-RTP Standard (Version: 1.04)
ROBLOX Player for Bryan
Roxio Burn (Version: 1.0)
Roxio Burn (Version: 1.0.0)
Roxio Update Manager (Version: 6.0.0)
RPG Maker 2003 v1.08
RPG Maker VX (Version: 1.02)
RPG Maker VX RTP (Version: 1.02)
RPGXP (Version: 1.0.0)
RPGツクール2000 ランタイムパッケージ
RPGツクール2003 - Untitled
RPTools MapTool
Safari (Version: 5.34.52.7)
SAMSUNG Mobile Modem Driver Set
Samsung Mobile phone USB driver Drive Software
SAMSUNG Mobile USB Modem 1.0 Software
SAMSUNG Mobile USB Modem Software
Secure Download Manager (Version: 3.0.5)
SEGA Genesis & Mega Drive Classics
SelectionLinks (Version: 1.0)
Service Pack 3 for SQL Server 2008 (KB2546951) (64-bit) (Version: 10.3.5500.0)
Sierra Utilities
Skype? 6.0 (Version: 6.0.126)
Soku Lobby (Version: 0.7.10.2)
Sql Server Customer Experience Improvement Program (Version: 10.3.5500.0)
Star Wars - Battlefront II
Star Wars Empire at War (Version: 1.0)
Star Wars Empire at War Forces of Corruption (Version: 1.0)
Star WarsR: Knights of the Old Republic ™
Steam (Version: 1.0.0.0)
Super Crate Box
Super Meat Boy
Switch Sound File Converter
swMSM (Version: 12.0.0.1)
System Requirements Lab for Intel (Version: 4.4.24.0)
Team Fortress 2
Team Fortress Classic
TeamSpeak 3 Client
Terraria
The Adventures of Zack The Great DEMO
The Binding of Isaac
Touch The Sky (Version: 5.1 Tasswin:1.71.08 (XP))
Tremulous 1.1.0
Tremulous Gameplay Preview
Unity Web Player (Version: 2.5.5b4_50)
Universe Sandbox
Unreal Development Kit
Unreal Gold
Unreal Tournament 2004
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2687277) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition
VC80CRTRedist - 8.0.50727.4053 (Version: 1.1.0)
Vegas Pro 10.0 (Version: 10.0.387)
VIRTUAL-ON Uninstaller
Visual C++ 8.0 Runtime Setup Package (x64) (Version: 9.0.0.623)
Visual Studio 2010 Prerequisites - English (Version: 10.0.40219)
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU (Version: 4.0.8080.0)
VLC media player 2.0.4 (Version: 2.0.4)
Voobly Game Data (Version: Voobly Game Datas)
WavePad Sound Editor
WCF RIA Services V1.0 SP1 (Version: 4.1.60114.0)
Web Deployment Tool (Version: 1.1.0618)
Winamp (Version: 5.623 )
Winamp Detector Plug-in (Version: 1.0.0.1)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live Family Safety (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live OneCare safety scanner
Windows Live OneCare safety scanner (Version: 1.0.0.0)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8117.416)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Media Center Add-in for Flash (Version: 3.1.1.0)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
WinRAR archiver
Wonderland Online (Version: 6.0.1)
WONswap
Xfire (remove only)
XSplit (Version: 1.1.1210.3101)
Yume Nikki 0.10 English
μTorrent (Version: 3.1.3)
東方非想天則 Ver1.10aアップデート
神採りアルケミーマイスター
神採りアルケミーマイスター (Version: 1.00.0006)

**** End of log ****

#14 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:07:49 AM

Posted 10 January 2013 - 12:27 PM

FINAL STEPS

If you are not experiencing any other malware related issues, it is time to do our final steps:

  • Any programs that we had you download and/or install can be removed at this time.
  • If you used DeFogger to disable your Disk Emulation Software, you can reopen DeFogger and use the "Enable" button.
  • You can download this tool to delete more traces of our tools. Delete the tool itself afterwards.
  • Toggle System Restore OFF and then back ON.
  • You should delete your our old, potentially infected System Restore points and create a new, clean restore point.
    • If you are using Windows XP, read and follow the steps on "How to turn off or turn on System Restore" from this link
    • If you are using Windows Vista, read and follow the steps on "How do I turn System Restore on and off?" proceeded by "How do I create a restore point manually?" from this link.
    • If you are using Windows 7, read and follow the steps on "To delete all restore points" from this link proceeded by "Create a restore point" from this link.
    • If you are using Windows 8, read and follow the steps on "Disabling System Restore" from this link proceeded by "Manually Creating Restore Points" from this link.
  • Recommended reading material to protect your computer from infection in the future:
    Be safe :hello:

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#15 Geo Terrifrit

Geo Terrifrit
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:01:49 AM

Posted 10 January 2013 - 04:28 PM

I believe I have a PUP still in my system. It's the coupon companion plugin that is installed. If there is some way to remove it completely for certain (I have a feeling uninstalling it isn't going to be the end of it), I would greatly appreciate it.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users