Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Internet Browser loads automaticly


  • This topic is locked This topic is locked
8 replies to this topic

#1 3d1l

3d1l

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:12:52 AM

Posted 08 January 2013 - 12:24 PM

Hi,

I have being reading the forums for couple of days and can not find a solution to my problem. I don't know what this is specifically so please let me know if I'm posting in the wrong sub-forum.

No matter what Internet Browser I set as default (Internet Explorer / Firefox), when I restart the computer the default Internet Browser loads automatically with the page VBS.TV and quickly gets redirected to VICE.COM. Sometimes as soon as I log, sometimes a minute later.

I'm running:
Windows 7 Pro SP1
Avira Free Antivirus (free)
Malawarebytes (free)
SuperAntiSpyWare (free)
All tools updated to teh last signatures.

None of the antivirus tools reports any problem or infection.

Remove the internet browsers with all the plugins. Reinstall them without the plugins but the same problem occurs. I later add the plugins again.

I checked with MSconfig disabling all services but the browser get loaded anyways.

Then I check with autoruns and match all the services running on my computer against Bleeping Computer database and everything is ok. None of the programs that loads at startup seems to be a malware or virus.

Then I noticed that if I use another user account the problem is not repeated so logged as the user without problems, ran full scans with the three antivirus tools, made backup of the data and remove the affected user account with all the directory and files related to it.

I also use regmagik to remove all registry entries related with that user account.

Rebooted the computer and run CCleaner for both option disk cleaning and registry cleaning.

Did all that using the other account that doesn't have the problem.

I create the new user account with the same user name, log using that user and to my surprise, the Internet browser get loaded automatically with the VBS.TV page that quickly redirect to VICE.COM.

At this point I don't know what else to do. I can not find what is loading the browser automatically and opening the listed web sites.

Can you please tell me what to do?




P.D.: Is there a way to avoid having to wait 30 seconds when you get no results for your search query and you want to try quickly another search.

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,199 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:52 AM

Posted 08 January 2013 - 07:26 PM

Hello,let's try these and see.

Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results.



Please download aswMBR ( 4.5MB ) to your desktop.
  • Double click the aswMBR.exe icon, and click Run.
  • When asked if you'd like to "download the latest Avast! virus definitions", click Yes.
  • Click the Scan button to start the scan.
  • On completion of the scan, click the save log button, save it to your desktop, then copy and paste it in your next reply.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 3d1l

3d1l
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:12:52 AM

Posted 09 January 2013 - 10:16 PM

Sorry for the delay and thank you very much for your support. TDSS found something with Akami. Common sense told me to fix it but I didn't touch it waiting for your feeback. It seems that aswMBR didn't find anything. Here are the logs:

======================TDSSKiller

22:50:03.0230 5864 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
22:50:03.0901 5864 ============================================================
22:50:03.0901 5864 Current date / time: 2013/01/09 22:50:03.0901
22:50:03.0901 5864 SystemInfo:
22:50:03.0901 5864
22:50:03.0901 5864 OS Version: 6.1.7601 ServicePack: 1.0
22:50:03.0901 5864 Product type: Workstation
22:50:03.0901 5864 ComputerName: XXXXXXXXX
22:50:03.0901 5864 UserName: XXXXXXXX
22:50:03.0901 5864 Windows directory: C:\Windows
22:50:03.0901 5864 System windows directory: C:\Windows
22:50:03.0917 5864 Processor architecture: Intel x86
22:50:03.0917 5864 Number of processors: 2
22:50:03.0917 5864 Page size: 0x1000
22:50:03.0917 5864 Boot type: Normal boot
22:50:03.0917 5864 ============================================================
22:50:05.0804 5864 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x50C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000050
22:50:05.0804 5864 ============================================================
22:50:05.0804 5864 \Device\Harddisk0\DR0:
22:50:05.0945 5864 MBR partitions:
22:50:05.0945 5864 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
22:50:05.0945 5864 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x129E6800
22:50:05.0945 5864 ============================================================
22:50:06.0085 5864 C: <-> \Device\Harddisk0\DR0\Partition2
22:50:06.0085 5864 ============================================================
22:50:06.0085 5864 Initialize success
22:50:06.0085 5864 ============================================================
22:50:50.0405 4776 ============================================================
22:50:50.0405 4776 Scan started
22:50:50.0405 4776 Mode: Manual; TDLFS;
22:50:50.0405 4776 ============================================================
22:50:54.0461 4776 ================ Scan system memory ========================
22:50:54.0461 4776 System memory - ok
22:50:54.0461 4776 ================ Scan services =============================
22:50:54.0773 4776 [ 01E81C84AD1D0ACC61CF3CFD06632210 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
22:50:54.0788 4776 !SASCORE - ok
22:50:55.0693 4776 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
22:50:55.0709 4776 1394ohci - ok
22:50:55.0756 4776 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys
22:50:55.0771 4776 ACPI - ok
22:50:55.0787 4776 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
22:50:55.0818 4776 AcpiPmi - ok
22:50:55.0865 4776 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
22:50:55.0912 4776 adp94xx - ok
22:50:55.0943 4776 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
22:50:55.0974 4776 adpahci - ok
22:50:55.0990 4776 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
22:50:56.0021 4776 adpu320 - ok
22:50:56.0068 4776 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
22:50:56.0068 4776 AeLookupSvc - ok
22:50:56.0146 4776 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD C:\Windows\system32\drivers\afd.sys
22:50:56.0224 4776 AFD - ok
22:50:56.0270 4776 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys
22:50:56.0302 4776 agp440 - ok
22:50:56.0364 4776 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
22:50:56.0411 4776 aic78xx - ok
22:50:56.0754 4776 [ B9B98E08EC127900025F42462D3D0A66 ] Akamai c:\program files\common files\akamai/netsession_win_ce5ba24.dll
22:50:56.0754 4776 Suspicious file (Hidden): c:\program files\common files\akamai/netsession_win_ce5ba24.dll. md5: B9B98E08EC127900025F42462D3D0A66
22:50:56.0754 4776 Akamai ( HiddenFile.Multi.Generic ) - warning
22:50:56.0754 4776 Akamai - detected HiddenFile.Multi.Generic (1)
22:50:56.0801 4776 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
22:50:56.0801 4776 ALG - ok
22:50:56.0848 4776 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\drivers\aliide.sys
22:50:56.0879 4776 aliide - ok
22:50:56.0926 4776 [ 54A8B2DE0964D3F7071DECB75052ED94 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
22:50:56.0941 4776 AMD External Events Utility - ok
22:50:56.0972 4776 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys
22:50:56.0972 4776 amdagp - ok
22:50:57.0004 4776 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\drivers\amdide.sys
22:50:57.0035 4776 amdide - ok
22:50:57.0097 4776 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
22:50:57.0160 4776 AmdK8 - ok
22:50:58.0423 4776 [ 5BDA68B1E65589A1A06AA1D908FDF77D ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
22:50:58.0798 4776 amdkmdag - ok
22:50:58.0860 4776 [ 9751B426957669E94BBCACD716C1B529 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
22:50:58.0907 4776 amdkmdap - ok
22:50:58.0938 4776 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
22:50:58.0969 4776 AmdPPM - ok
22:50:59.0032 4776 [ D320BF87125326F996D4904FE24300FC ] amdsata C:\Windows\system32\drivers\amdsata.sys
22:50:59.0063 4776 amdsata - ok
22:50:59.0110 4776 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
22:50:59.0156 4776 amdsbs - ok
22:50:59.0172 4776 [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata C:\Windows\system32\drivers\amdxata.sys
22:50:59.0203 4776 amdxata - ok
22:50:59.0578 4776 [ D89562A6AE8E07A457452E5B5560EB43 ] AntiVirSchedulerService C:\Program Files\Avira\AntiVir Desktop\sched.exe
22:50:59.0609 4776 AntiVirSchedulerService - ok
22:50:59.0656 4776 [ E953EB70B3C4F0BA108C35D45420B86B ] AntiVirService C:\Program Files\Avira\AntiVir Desktop\avguard.exe
22:50:59.0671 4776 AntiVirService - ok
22:50:59.0812 4776 [ D1AF38FBAC0DC7E6D796B0ED01707EE0 ] AppHostSvc C:\Windows\system32\inetsrv\apphostsvc.dll
22:50:59.0843 4776 AppHostSvc - ok
22:50:59.0890 4776 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys
22:50:59.0921 4776 AppID - ok
22:50:59.0983 4776 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
22:50:59.0983 4776 AppIDSvc - ok
22:51:00.0030 4776 [ FB1959012294D6AD43E5304DF65E3C26 ] Appinfo C:\Windows\System32\appinfo.dll
22:51:00.0030 4776 Appinfo - ok
22:51:00.0046 4776 [ A45D184DF6A8803DA13A0B329517A64A ] AppMgmt C:\Windows\System32\appmgmts.dll
22:51:00.0061 4776 AppMgmt - ok
22:51:00.0124 4776 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys
22:51:00.0139 4776 arc - ok
22:51:00.0155 4776 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
22:51:00.0186 4776 arcsas - ok
22:51:00.0436 4776 [ 2FE0D5DB69014980A970D3BF9A85D2B1 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
22:51:00.0498 4776 aspnet_state - ok
22:51:00.0529 4776 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
22:51:00.0545 4776 AsyncMac - ok
22:51:00.0576 4776 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys
22:51:00.0576 4776 atapi - ok
22:51:00.0701 4776 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:51:00.0716 4776 AudioEndpointBuilder - ok
22:51:00.0716 4776 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll
22:51:00.0716 4776 Audiosrv - ok
22:51:00.0810 4776 [ A5C175039B1D6D85D0E79F5855828E4D ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
22:51:00.0841 4776 avgntflt - ok
22:51:00.0888 4776 [ 0189056DDBF23C7DEF09D2B5999C5405 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
22:51:00.0919 4776 avipbb - ok
22:51:00.0950 4776 [ FFB78D74E1EA5F811341A6E7AC547A46 ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
22:51:00.0982 4776 avkmgr - ok
22:51:01.0044 4776 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\Windows\System32\AxInstSV.dll
22:51:01.0044 4776 AxInstSV - ok
22:51:01.0153 4776 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
22:51:01.0200 4776 b06bdrv - ok
22:51:01.0247 4776 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
22:51:01.0278 4776 b57nd60x - ok
22:51:01.0340 4776 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
22:51:01.0340 4776 BDESVC - ok
22:51:01.0356 4776 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
22:51:01.0387 4776 Beep - ok
22:51:01.0574 4776 [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE C:\Windows\System32\bfe.dll
22:51:01.0652 4776 BFE - ok
22:51:01.0699 4776 [ E585445D5021971FAE10393F0F1C3961 ] BITS C:\Windows\system32\qmgr.dll
22:51:01.0730 4776 BITS - ok
22:51:01.0746 4776 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
22:51:01.0777 4776 blbdrive - ok
22:51:01.0824 4776 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
22:51:01.0855 4776 bowser - ok
22:51:01.0902 4776 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
22:51:01.0918 4776 BrFiltLo - ok
22:51:01.0949 4776 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
22:51:01.0980 4776 BrFiltUp - ok
22:51:02.0027 4776 [ 77361D72A04F18809D0EFB6CCEB74D4B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
22:51:02.0058 4776 BridgeMP - ok
22:51:02.0089 4776 [ 6E11F33D14D020F58D5E02E4D67DFA19 ] Browser C:\Windows\System32\browser.dll
22:51:02.0120 4776 Browser - ok
22:51:02.0136 4776 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
22:51:02.0214 4776 Brserid - ok
22:51:02.0230 4776 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
22:51:02.0245 4776 BrSerWdm - ok
22:51:02.0292 4776 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
22:51:02.0323 4776 BrUsbMdm - ok
22:51:02.0323 4776 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
22:51:02.0354 4776 BrUsbSer - ok
22:51:02.0401 4776 [ 2865A5C8E98C70C605F417908CEBB3A4 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
22:51:02.0432 4776 BthEnum - ok
22:51:02.0464 4776 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
22:51:02.0479 4776 BTHMODEM - ok
22:51:02.0510 4776 [ AD1872E5829E8A2C3B5B4B641C3EAB0E ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
22:51:02.0542 4776 BthPan - ok
22:51:02.0573 4776 [ C2FBF6D271D9A94D839C416BF186EAD9 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
22:51:02.0620 4776 BTHPORT - ok
22:51:02.0682 4776 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
22:51:02.0713 4776 bthserv - ok
22:51:02.0729 4776 [ C81E9413A25A439F436B1D4B6A0CF9E9 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
22:51:02.0760 4776 BTHUSB - ok
22:51:02.0807 4776 [ F549C3FB145A4928E40BB1518B2034DC ] btusbflt C:\Windows\system32\drivers\btusbflt.sys
22:51:02.0822 4776 btusbflt - ok
22:51:02.0854 4776 [ F8B4F60768328FAA2FFE2727F66809F8 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
22:51:02.0854 4776 btwaudio - ok
22:51:02.0916 4776 [ FA7446DD38DE84D4988D1F2EBB854589 ] btwavdt C:\Windows\system32\drivers\btwavdt.sys
22:51:02.0916 4776 btwavdt - ok
22:51:02.0994 4776 [ 5C24AEC670B9CCE7F2AF6DE74677CEB4 ] btwdins C:\Program Files\ThinkPad\Bluetooth Software\btwdins.exe
22:51:03.0010 4776 btwdins - ok
22:51:03.0041 4776 [ AAFD7CB76BA61FBB08E302DA208C974A ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
22:51:03.0041 4776 btwl2cap - ok
22:51:03.0056 4776 [ D5862FBC1CBC0404614FD9D85C8D880E ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
22:51:03.0056 4776 btwrchid - ok
22:51:03.0134 4776 catchme - ok
22:51:03.0150 4776 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
22:51:03.0181 4776 cdfs - ok
22:51:03.0244 4776 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
22:51:03.0275 4776 cdrom - ok
22:51:03.0337 4776 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll
22:51:03.0353 4776 CertPropSvc - ok
22:51:03.0384 4776 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
22:51:03.0415 4776 circlass - ok
22:51:03.0478 4776 [ 096C3B0B38B1289BC78697024B2A7CBA ] CiscoSerial C:\Windows\system32\DRIVERS\CiscoUsbConsoleWindowsDriver.sys
22:51:03.0478 4776 CiscoSerial - ok
22:51:03.0540 4776 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
22:51:03.0540 4776 CLFS - ok
22:51:03.0618 4776 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:51:03.0665 4776 clr_optimization_v2.0.50727_32 - ok
22:51:03.0712 4776 [ 6D7C8A951AF6AD6835C029B3CB88D333 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:51:03.0790 4776 clr_optimization_v4.0.30319_32 - ok
22:51:03.0821 4776 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
22:51:03.0852 4776 CmBatt - ok
22:51:03.0883 4776 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\drivers\cmdide.sys
22:51:03.0914 4776 cmdide - ok
22:51:03.0992 4776 [ 6427525D76F61D0C519B008D3680E8E7 ] CNG C:\Windows\system32\Drivers\cng.sys
22:51:04.0055 4776 CNG - ok
22:51:04.0133 4776 [ 726803D911045D283509D3CDD91D8E52 ] CnxtHdAudService C:\Windows\system32\drivers\CHDRT32.sys
22:51:04.0164 4776 CnxtHdAudService - ok
22:51:04.0226 4776 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
22:51:04.0258 4776 Compbatt - ok
22:51:04.0336 4776 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
22:51:04.0351 4776 CompositeBus - ok
22:51:04.0382 4776 COMSysApp - ok
22:51:04.0398 4776 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
22:51:04.0429 4776 crcdisk - ok
22:51:04.0476 4776 [ 96C0E38905CFD788313BE8E11DAE3F2F ] CryptSvc C:\Windows\system32\cryptsvc.dll
22:51:04.0476 4776 CryptSvc - ok
22:51:04.0585 4776 [ 3C2177A897B4CA2788C6FB0C3FD81D4B ] CSC C:\Windows\system32\drivers\csc.sys
22:51:04.0632 4776 CSC - ok
22:51:04.0663 4776 [ 15F93B37F6801943360D9EB42485D5D3 ] CscService C:\Windows\System32\cscsvc.dll
22:51:04.0663 4776 CscService - ok
22:51:04.0741 4776 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll
22:51:04.0772 4776 DcomLaunch - ok
22:51:04.0835 4776 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
22:51:04.0866 4776 defragsvc - ok
22:51:04.0913 4776 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
22:51:04.0944 4776 DfsC - ok
22:51:05.0022 4776 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll
22:51:05.0038 4776 Dhcp - ok
22:51:05.0069 4776 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
22:51:05.0100 4776 discache - ok
22:51:05.0147 4776 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys
22:51:05.0194 4776 Disk - ok
22:51:05.0225 4776 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
22:51:05.0240 4776 Dnscache - ok
22:51:05.0272 4776 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll
22:51:05.0272 4776 dot3svc - ok
22:51:05.0334 4776 [ 6D279BB0DE1D8E34F454E1B353F4D738 ] DozeHDD C:\Windows\system32\DRIVERS\DozeHDD.sys
22:51:05.0365 4776 DozeHDD - ok
22:51:05.0412 4776 [ A4ECDD165B0F7EE9E44A569881F4CA6D ] DozeSvc C:\Program Files\ThinkPad\Utilities\DOZESVC.EXE
22:51:05.0428 4776 DozeSvc - ok
22:51:05.0459 4776 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll
22:51:05.0459 4776 DPS - ok
22:51:05.0506 4776 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
22:51:05.0537 4776 drmkaud - ok
22:51:05.0599 4776 [ 23F5D28378A160352BA8F817BD8C71CB ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
22:51:05.0630 4776 DXGKrnl - ok
22:51:05.0677 4776 [ F8261752AB473E3B24376AAB280AD15A ] e1yexpress C:\Windows\system32\DRIVERS\e1y6232.sys
22:51:05.0677 4776 e1yexpress - ok
22:51:05.0724 4776 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
22:51:05.0724 4776 EapHost - ok
22:51:06.0192 4776 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
22:51:06.0364 4776 ebdrv - ok
22:51:06.0395 4776 [ 81951F51E318AECC2D68559E47485CC4 ] EFS C:\Windows\System32\lsass.exe
22:51:06.0410 4776 EFS - ok
22:51:06.0488 4776 [ A8C362018EFC87BEB013EE28F29C0863 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
22:51:06.0535 4776 ehRecvr - ok
22:51:06.0582 4776 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe
22:51:06.0598 4776 ehSched - ok
22:51:06.0754 4776 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
22:51:06.0816 4776 elxstor - ok
22:51:06.0847 4776 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys
22:51:06.0878 4776 ErrDev - ok
22:51:06.0941 4776 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
22:51:06.0941 4776 EventSystem - ok
22:51:07.0253 4776 [ 33ABDDB21DE2F4BB1B05A5A3A671BD64 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
22:51:07.0300 4776 EvtEng - ok
22:51:07.0331 4776 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
22:51:07.0362 4776 exfat - ok
22:51:07.0393 4776 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
22:51:07.0409 4776 fastfat - ok
22:51:07.0502 4776 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe
22:51:07.0518 4776 Fax - ok
22:51:07.0565 4776 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
22:51:07.0612 4776 fdc - ok
22:51:07.0643 4776 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
22:51:07.0643 4776 fdPHost - ok
22:51:07.0658 4776 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
22:51:07.0658 4776 FDResPub - ok
22:51:07.0674 4776 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
22:51:07.0705 4776 FileInfo - ok
22:51:07.0705 4776 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
22:51:07.0721 4776 Filetrace - ok
22:51:07.0736 4776 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
22:51:07.0768 4776 flpydisk - ok
22:51:07.0799 4776 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
22:51:07.0814 4776 FltMgr - ok
22:51:07.0986 4776 [ B3A5EC6B6B6673DB7E87C2BCDBDDC074 ] FontCache C:\Windows\system32\FntCache.dll
22:51:08.0002 4776 FontCache - ok
22:51:08.0126 4776 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
22:51:08.0142 4776 FontCache3.0.0.0 - ok
22:51:08.0173 4776 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
22:51:08.0204 4776 FsDepends - ok
22:51:08.0251 4776 [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
22:51:08.0251 4776 Fs_Rec - ok
22:51:08.0298 4776 [ AAE37F0F2F613218DCE17B42A18C38DB ] FTDIBUS C:\Windows\system32\drivers\ftdibus.sys
22:51:08.0329 4776 FTDIBUS - ok
22:51:08.0360 4776 [ 48BFD1BA45C9C9E7AB339E25ABFBA1D2 ] FTSER2K C:\Windows\system32\drivers\ftser2k.sys
22:51:08.0360 4776 FTSER2K - ok
22:51:08.0407 4776 [ 8A73E79089B282100B9393B644CB853B ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
22:51:08.0438 4776 fvevol - ok
22:51:08.0470 4776 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
22:51:08.0470 4776 gagp30kx - ok
22:51:08.0594 4776 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll
22:51:08.0657 4776 gpsvc - ok
22:51:08.0735 4776 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
22:51:08.0766 4776 hcw85cir - ok
22:51:08.0844 4776 [ A5EF29D5315111C80A5C1ABAD14C8972 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
22:51:08.0875 4776 HdAudAddService - ok
22:51:08.0922 4776 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
22:51:08.0922 4776 HDAudBus - ok
22:51:08.0953 4776 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
22:51:08.0984 4776 HidBatt - ok
22:51:09.0016 4776 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
22:51:09.0031 4776 HidBth - ok
22:51:09.0078 4776 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
22:51:09.0109 4776 HidIr - ok
22:51:09.0140 4776 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\System32\hidserv.dll
22:51:09.0140 4776 hidserv - ok
22:51:09.0172 4776 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
22:51:09.0203 4776 HidUsb - ok
22:51:09.0250 4776 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll
22:51:09.0250 4776 hkmsvc - ok
22:51:09.0296 4776 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
22:51:09.0296 4776 HomeGroupListener - ok
22:51:09.0359 4776 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
22:51:09.0359 4776 HomeGroupProvider - ok
22:51:09.0390 4776 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
22:51:09.0406 4776 HpSAMD - ok
22:51:09.0499 4776 [ BFBDBCA42710795C4446C54243970FD1 ] HsfXAudioService C:\Windows\system32\XAudio32.dll
22:51:09.0515 4776 HsfXAudioService - ok
22:51:09.0530 4776 [ CAAA4433360FD337CF68A1B0719F9CC1 ] HSF_DPV C:\Windows\system32\DRIVERS\HSX_DPV.sys
22:51:09.0577 4776 HSF_DPV - ok
22:51:09.0733 4776 [ 1664905CC1F7F176F8A592720D9629B9 ] hshld C:\Program Files\Hotspot Shield\bin\openvpnas.exe
22:51:09.0764 4776 hshld - ok
22:51:09.0811 4776 [ C08EC566056CCB470B2B98C0612BC0DB ] HssDRV6 C:\Windows\system32\DRIVERS\hssdrv6.sys
22:51:09.0827 4776 HssDRV6 - ok
22:51:09.0874 4776 [ F01ED33CD4242EDC81E5DE532571F47F ] HssSrv C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe
22:51:09.0889 4776 HssSrv - ok
22:51:09.0952 4776 [ 8B20915B82ACFE7108C3BFA45C0383AE ] HssTrayService C:\Program Files\Hotspot Shield\bin\HssTrayService.EXE
22:51:09.0983 4776 HssTrayService - ok
22:51:10.0014 4776 [ 35E91DF99B8CEAA477E0AB86052475D6 ] HssWd C:\Program Files\Hotspot Shield\bin\hsswd.exe
22:51:10.0014 4776 HssWd - ok
22:51:10.0045 4776 [ CB049FA2CE718F7468BE50F3D7192370 ] HSXHWAZL C:\Windows\system32\DRIVERS\HSXHWAZL.sys
22:51:10.0045 4776 HSXHWAZL - ok
22:51:10.0217 4776 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys
22:51:10.0295 4776 HTTP - ok
22:51:10.0342 4776 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
22:51:10.0373 4776 hwpolicy - ok
22:51:10.0435 4776 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
22:51:10.0466 4776 i8042prt - ok
22:51:10.0513 4776 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
22:51:10.0544 4776 iaStorV - ok
22:51:10.0622 4776 [ FA3D0A6DA7BB7968EFE5C5BC267F0E55 ] IBMPMDRV C:\Windows\system32\DRIVERS\ibmpmdrv.sys
22:51:10.0622 4776 IBMPMDRV - ok
22:51:10.0638 4776 [ 495F184A29B80B51735BCEE91D84FE8F ] IBMPMSVC C:\Windows\system32\ibmpmsvc.exe
22:51:10.0638 4776 IBMPMSVC - ok
22:51:10.0716 4776 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
22:51:10.0778 4776 idsvc - ok
22:51:12.0104 4776 [ 8266AE06DF974E5BA047B3E9E9E70B3F ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
22:51:12.0354 4776 igfx - ok
22:51:12.0416 4776 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
22:51:12.0463 4776 iirsp - ok
22:51:12.0619 4776 [ F95622F161474511B8D80D6B093AA610 ] IKEEXT C:\Windows\System32\ikeext.dll
22:51:12.0650 4776 IKEEXT - ok
22:51:12.0682 4776 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys
22:51:12.0713 4776 intelide - ok
22:51:14.0522 4776 [ 8266AE06DF974E5BA047B3E9E9E70B3F ] intelkmd C:\Windows\system32\DRIVERS\igdpmd32.sys
22:51:14.0819 4776 intelkmd - ok
22:51:14.0897 4776 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
22:51:14.0897 4776 intelppm - ok
22:51:14.0944 4776 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
22:51:14.0959 4776 IPBusEnum - ok
22:51:14.0975 4776 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:51:15.0006 4776 IpFilterDriver - ok
22:51:15.0068 4776 [ 4D65A07B795D6674312F879D09AA7663 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
22:51:15.0084 4776 iphlpsvc - ok
22:51:15.0115 4776 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
22:51:15.0162 4776 IPMIDRV - ok
22:51:15.0178 4776 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
22:51:15.0209 4776 IPNAT - ok
22:51:15.0240 4776 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
22:51:15.0256 4776 IRENUM - ok
22:51:15.0271 4776 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\drivers\isapnp.sys
22:51:15.0271 4776 isapnp - ok
22:51:15.0302 4776 [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
22:51:15.0334 4776 iScsiPrt - ok
22:51:15.0380 4776 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
22:51:15.0412 4776 kbdclass - ok
22:51:15.0443 4776 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
22:51:15.0458 4776 kbdhid - ok
22:51:15.0505 4776 [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso C:\Windows\system32\lsass.exe
22:51:15.0505 4776 KeyIso - ok
22:51:15.0536 4776 [ F4647BB23DB9038A7536CF6B68F4207F ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
22:51:15.0583 4776 KSecDD - ok
22:51:15.0630 4776 [ E73CAE53BBB72BA26918492C6B4C229D ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
22:51:15.0692 4776 KSecPkg - ok
22:51:15.0770 4776 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
22:51:15.0786 4776 KtmRm - ok
22:51:15.0817 4776 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\System32\srvsvc.dll
22:51:15.0833 4776 LanmanServer - ok
22:51:15.0848 4776 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:51:15.0848 4776 LanmanWorkstation - ok
22:51:16.0082 4776 [ 340288B3B2EDC8AFD5FF127DF85142A7 ] LENOVO.MICMUTE C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
22:51:16.0145 4776 LENOVO.MICMUTE - ok
22:51:16.0176 4776 [ 9AAC267A225F3CAEBB9E633F7EB16E4B ] lenovo.smi C:\Windows\system32\DRIVERS\smiif32.sys
22:51:16.0207 4776 lenovo.smi - ok
22:51:16.0238 4776 [ 158B67696EC8602CE71F9AA4F14AA96F ] Lenovo.VIRTSCRLSVC C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
22:51:16.0238 4776 Lenovo.VIRTSCRLSVC - ok
22:51:16.0285 4776 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
22:51:16.0301 4776 lltdio - ok
22:51:16.0348 4776 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
22:51:16.0348 4776 lltdsvc - ok
22:51:16.0379 4776 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
22:51:16.0394 4776 lmhosts - ok
22:51:16.0457 4776 [ 9A84F41E421287A712C90E5384400E4F ] LPDSVC C:\Windows\system32\lpdsvc.dll
22:51:16.0457 4776 LPDSVC - ok
22:51:16.0488 4776 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
22:51:16.0535 4776 LSI_FC - ok
22:51:16.0550 4776 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
22:51:16.0582 4776 LSI_SAS - ok
22:51:16.0597 4776 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
22:51:16.0675 4776 LSI_SAS2 - ok
22:51:16.0691 4776 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
22:51:16.0722 4776 LSI_SCSI - ok
22:51:16.0753 4776 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
22:51:16.0784 4776 luafv - ok
22:51:16.0816 4776 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
22:51:16.0816 4776 Mcx2Svc - ok
22:51:16.0862 4776 [ A027DE1E6C11BD2DAF61F6F276B2299F ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys
22:51:16.0894 4776 mdmxsdk - ok
22:51:16.0940 4776 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
22:51:16.0987 4776 megasas - ok
22:51:17.0018 4776 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
22:51:17.0050 4776 MegaSR - ok
22:51:17.0159 4776 Microsoft SharePoint Workspace Audit Service - ok
22:51:17.0206 4776 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
22:51:17.0221 4776 MMCSS - ok
22:51:17.0237 4776 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
22:51:17.0237 4776 Modem - ok
22:51:17.0284 4776 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
22:51:17.0284 4776 monitor - ok
22:51:17.0330 4776 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
22:51:17.0362 4776 mouclass - ok
22:51:17.0424 4776 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
22:51:17.0424 4776 mouhid - ok
22:51:17.0471 4776 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
22:51:17.0502 4776 mountmgr - ok
22:51:17.0533 4776 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\Windows\system32\drivers\mpio.sys
22:51:17.0549 4776 mpio - ok
22:51:17.0580 4776 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
22:51:17.0611 4776 mpsdrv - ok
22:51:17.0720 4776 [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc C:\Windows\system32\mpssvc.dll
22:51:17.0752 4776 MpsSvc - ok
22:51:17.0814 4776 [ A5888C609EFCC07B060DD823FA3D474A ] MQAC C:\Windows\system32\drivers\mqac.sys
22:51:17.0845 4776 MQAC - ok
22:51:17.0892 4776 [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
22:51:17.0923 4776 MRxDAV - ok
22:51:18.0001 4776 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
22:51:18.0017 4776 mrxsmb - ok
22:51:18.0048 4776 [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:51:18.0095 4776 mrxsmb10 - ok
22:51:18.0095 4776 [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:51:18.0142 4776 mrxsmb20 - ok
22:51:18.0188 4776 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\Windows\system32\drivers\msahci.sys
22:51:18.0220 4776 msahci - ok
22:51:18.0266 4776 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\Windows\system32\drivers\msdsm.sys
22:51:18.0266 4776 msdsm - ok
22:51:18.0329 4776 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
22:51:18.0376 4776 MSDTC - ok
22:51:18.0407 4776 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
22:51:18.0438 4776 Msfs - ok
22:51:18.0454 4776 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
22:51:18.0485 4776 mshidkmdf - ok
22:51:18.0500 4776 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
22:51:18.0532 4776 msisadrv - ok
22:51:18.0594 4776 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
22:51:18.0594 4776 MSiSCSI - ok
22:51:18.0594 4776 msiserver - ok
22:51:18.0625 4776 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
22:51:18.0641 4776 MSKSSRV - ok
22:51:18.0703 4776 [ ADE6270C1003923E92A9BBBA272133A9 ] msloop C:\Windows\system32\DRIVERS\loop.sys
22:51:18.0719 4776 msloop - ok
22:51:18.0766 4776 [ E582B9E88EF4980C3B76276620FE667B ] MSMQ C:\Windows\system32\mqsvc.exe
22:51:18.0766 4776 MSMQ - ok
22:51:18.0797 4776 [ 9CCED9B5AD63BECE2F8BC75A5E04CDAB ] MSMQTriggers C:\Windows\system32\mqtgsvc.exe
22:51:18.0812 4776 MSMQTriggers - ok
22:51:18.0828 4776 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
22:51:18.0844 4776 MSPCLOCK - ok
22:51:18.0890 4776 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
22:51:18.0922 4776 MSPQM - ok
22:51:18.0937 4776 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
22:51:18.0953 4776 MsRPC - ok
22:51:18.0984 4776 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
22:51:18.0984 4776 mssmbios - ok
22:51:19.0000 4776 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
22:51:19.0015 4776 MSTEE - ok
22:51:19.0015 4776 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
22:51:19.0031 4776 MTConfig - ok
22:51:19.0062 4776 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
22:51:19.0093 4776 Mup - ok
22:51:19.0156 4776 [ 797BDDFB4388C89E513B495CDF11BEF5 ] mv2 C:\Windows\system32\DRIVERS\mv2.sys
22:51:19.0187 4776 mv2 - ok
22:51:19.0265 4776 [ 31A76B78166B8BA3FDA3D137113420CF ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
22:51:19.0312 4776 MyWiFiDHCPDNS - ok
22:51:19.0405 4776 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll
22:51:19.0421 4776 napagent - ok
22:51:19.0499 4776 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
22:51:19.0499 4776 NativeWifiP - ok
22:51:19.0530 4776 [ E7C54812A2AAF43316EB6930C1FFA108 ] NDIS C:\Windows\system32\drivers\ndis.sys
22:51:19.0546 4776 NDIS - ok
22:51:19.0561 4776 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
22:51:19.0592 4776 NdisCap - ok
22:51:19.0624 4776 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
22:51:19.0624 4776 NdisTapi - ok
22:51:19.0686 4776 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
22:51:19.0717 4776 Ndisuio - ok
22:51:19.0764 4776 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
22:51:19.0795 4776 NdisWan - ok
22:51:19.0826 4776 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
22:51:19.0873 4776 NDProxy - ok
22:51:19.0936 4776 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
22:51:19.0967 4776 NetBIOS - ok
22:51:20.0014 4776 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
22:51:20.0045 4776 NetBT - ok
22:51:20.0076 4776 [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon C:\Windows\system32\lsass.exe
22:51:20.0076 4776 Netlogon - ok
22:51:20.0154 4776 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
22:51:20.0170 4776 Netman - ok
22:51:20.0201 4776 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
22:51:20.0201 4776 NetMsmqActivator - ok
22:51:20.0216 4776 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
22:51:20.0216 4776 NetPipeActivator - ok
22:51:20.0232 4776 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
22:51:20.0232 4776 netprofm - ok
22:51:20.0248 4776 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
22:51:20.0248 4776 NetTcpActivator - ok
22:51:20.0248 4776 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
22:51:20.0248 4776 NetTcpPortSharing - ok
22:51:20.0482 4776 [ 58218EC6B61B1169CF54AAB0D00F5FE2 ] netw5v32 C:\Windows\system32\DRIVERS\netw5v32.sys
22:51:20.0622 4776 netw5v32 - ok
22:51:20.0996 4776 [ 83553135AD346D247C482F1B8ACA921F ] NETwNs32 C:\Windows\system32\DRIVERS\NETwNs32.sys
22:51:21.0184 4776 NETwNs32 - ok
22:51:21.0230 4776 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
22:51:21.0277 4776 nfrd960 - ok
22:51:21.0324 4776 [ EE642A5B498F6A228A627F66F5E2AE20 ] NfsClnt C:\Windows\system32\nfsclnt.exe
22:51:21.0324 4776 NfsClnt - ok
22:51:21.0386 4776 [ 472E416409A567C7204709BF6E408CF3 ] NfsRdr C:\Windows\system32\drivers\nfsrdr.sys
22:51:21.0433 4776 NfsRdr - ok
22:51:21.0496 4776 [ 912084381D30D8B89EC4E293053F4710 ] NlaSvc C:\Windows\System32\nlasvc.dll
22:51:21.0511 4776 NlaSvc - ok
22:51:21.0527 4776 Nmea - ok
22:51:21.0589 4776 [ B48DC6ABCD3AEFF8618350CCBDC6B09A ] NPF C:\Windows\system32\drivers\npf.sys
22:51:21.0605 4776 NPF - ok
22:51:21.0636 4776 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
22:51:21.0667 4776 Npfs - ok
22:51:21.0698 4776 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
22:51:21.0698 4776 nsi - ok
22:51:21.0745 4776 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
22:51:21.0745 4776 nsiproxy - ok
22:51:21.0839 4776 [ 81189C3D7763838E55C397759D49007A ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
22:51:21.0870 4776 Ntfs - ok
22:51:21.0870 4776 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
22:51:21.0901 4776 Null - ok
22:51:21.0948 4776 [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid C:\Windows\system32\drivers\nvraid.sys
22:51:21.0995 4776 nvraid - ok
22:51:22.0026 4776 [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor C:\Windows\system32\drivers\nvstor.sys
22:51:22.0042 4776 nvstor - ok
22:51:22.0088 4776 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
22:51:22.0120 4776 nv_agp - ok
22:51:22.0182 4776 [ A3E2842B30371C1E1B6C95421CA7BA4F ] NWADI C:\Windows\system32\DRIVERS\NWADIenum.sys
22:51:22.0182 4776 NWADI - ok
22:51:22.0198 4776 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
22:51:22.0213 4776 ohci1394 - ok
22:51:22.0276 4776 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:51:22.0322 4776 ose - ok
22:51:22.0494 4776 [ 358A9CCA612C68EB2F07DDAD4CE1D8D7 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
22:51:22.0884 4776 osppsvc - ok
22:51:22.0946 4776 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
22:51:22.0962 4776 p2pimsvc - ok
22:51:22.0978 4776 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
22:51:22.0993 4776 p2psvc - ok
22:51:23.0040 4776 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
22:51:23.0056 4776 Parport - ok
22:51:23.0102 4776 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr C:\Windows\system32\drivers\partmgr.sys
22:51:23.0134 4776 partmgr - ok
22:51:23.0165 4776 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
22:51:23.0180 4776 Parvdm - ok
22:51:23.0212 4776 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
22:51:23.0227 4776 PcaSvc - ok
22:51:23.0243 4776 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\Windows\system32\drivers\pci.sys
22:51:23.0243 4776 pci - ok
22:51:23.0290 4776 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\drivers\pciide.sys
22:51:23.0305 4776 pciide - ok
22:51:23.0321 4776 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
22:51:23.0352 4776 pcmcia - ok
22:51:23.0383 4776 PCTINDIS5 - ok
22:51:23.0399 4776 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
22:51:23.0414 4776 pcw - ok
22:51:23.0461 4776 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
22:51:23.0492 4776 PEAUTH - ok
22:51:23.0602 4776 [ AF4D64D2A57B9772CF3801950B8058A6 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
22:51:23.0648 4776 PeerDistSvc - ok
22:51:23.0758 4776 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll
22:51:23.0820 4776 pla - ok
22:51:23.0898 4776 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay C:\Windows\system32\umpnpmgr.dll
22:51:23.0914 4776 PlugPlay - ok
22:51:23.0945 4776 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
22:51:23.0945 4776 PNRPAutoReg - ok
22:51:23.0960 4776 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
22:51:23.0960 4776 PNRPsvc - ok
22:51:23.0976 4776 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
22:51:23.0992 4776 PolicyAgent - ok
22:51:24.0038 4776 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll
22:51:24.0054 4776 Power - ok
22:51:24.0085 4776 [ 7A1E6CF32EDFF1F13186997FCA086FC7 ] Power Manager DBC Service C:\Program Files\ThinkPad\Utilities\PWMDBSVC.EXE
22:51:24.0116 4776 Power Manager DBC Service - ok
22:51:24.0179 4776 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
22:51:24.0179 4776 PptpMiniport - ok
22:51:24.0194 4776 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys
22:51:24.0226 4776 Processor - ok
22:51:24.0257 4776 [ 43CA4CCC22D52FB58E8988F0198851D0 ] ProfSvc C:\Windows\system32\profsvc.dll
22:51:24.0272 4776 ProfSvc - ok
22:51:24.0288 4776 [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe
22:51:24.0288 4776 ProtectedStorage - ok
22:51:24.0304 4776 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
22:51:24.0304 4776 Psched - ok
22:51:24.0350 4776 [ E6C3BE7C83135B3666DFA55608783AAA ] PsxDrv C:\Windows\system32\drivers\psxdrv.sys
22:51:24.0397 4776 PsxDrv - ok
22:51:24.0413 4776 [ 20EFF1CA8922F6A834261B985550A51D ] PwmEWSvc C:\Program Files\ThinkPad\Utilities\PWMEWSVC.EXE
22:51:24.0413 4776 PwmEWSvc - ok
22:51:24.0491 4776 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
22:51:24.0538 4776 ql2300 - ok
22:51:24.0584 4776 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
22:51:24.0616 4776 ql40xx - ok
22:51:24.0647 4776 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
22:51:24.0662 4776 QWAVE - ok
22:51:24.0678 4776 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
22:51:24.0709 4776 QWAVEdrv - ok
22:51:24.0740 4776 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
22:51:24.0772 4776 RasAcd - ok
22:51:24.0834 4776 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
22:51:24.0881 4776 RasAgileVpn - ok
22:51:24.0896 4776 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
22:51:24.0896 4776 RasAuto - ok
22:51:24.0912 4776 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
22:51:24.0943 4776 Rasl2tp - ok
22:51:25.0006 4776 [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan C:\Windows\System32\rasmans.dll
22:51:25.0006 4776 RasMan - ok
22:51:25.0021 4776 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
22:51:25.0052 4776 RasPppoe - ok
22:51:25.0052 4776 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
22:51:25.0068 4776 RasSstp - ok
22:51:25.0146 4776 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
22:51:25.0224 4776 rdbss - ok
22:51:25.0240 4776 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
22:51:25.0255 4776 rdpbus - ok
22:51:25.0302 4776 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
22:51:25.0333 4776 RDPCDD - ok
22:51:25.0333 4776 [ B973FCFC50DC1434E1970A146F7E3885 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
22:51:25.0349 4776 RDPDR - ok
22:51:25.0411 4776 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
22:51:25.0442 4776 RDPENCDD - ok
22:51:25.0458 4776 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
22:51:25.0505 4776 RDPREFMP - ok
22:51:25.0567 4776 [ 68A0387F58E226DEEE23D9715955572A ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
22:51:25.0598 4776 RdpVideoMiniport - ok
22:51:25.0661 4776 [ 244C83332F44589AE98FC347F11B2693 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
22:51:25.0708 4776 RDPWD - ok
22:51:25.0754 4776 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
22:51:25.0801 4776 rdyboost - ok
22:51:25.0957 4776 [ 03D281098CE722210C48E1E8CAFEA260 ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
22:51:25.0973 4776 RegSrvc - ok
22:51:26.0004 4776 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
22:51:26.0004 4776 RemoteAccess - ok
22:51:26.0051 4776 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
22:51:26.0066 4776 RemoteRegistry - ok
22:51:26.0082 4776 [ CB928D9E6DAF51879DD6BA8D02F01321 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
22:51:26.0098 4776 RFCOMM - ok
22:51:26.0160 4776 [ D65AC8797F0286ED269500747D6290A4 ] rimmptsk C:\Windows\system32\DRIVERS\rimmptsk.sys
22:51:26.0191 4776 rimmptsk - ok
22:51:26.0222 4776 [ 49EC82B44EB93374ED9988DA7E0E0151 ] rimsptsk C:\Windows\system32\DRIVERS\rimsptsk.sys
22:51:26.0238 4776 rimsptsk - ok
22:51:26.0316 4776 [ 616EAC1B0E48B236A5A9B8AE07FDB81C ] RimUsb C:\Windows\system32\Drivers\RimUsb.sys
22:51:26.0347 4776 RimUsb - ok
22:51:26.0410 4776 [ 2C4FB2E9F039287767C384E46EE91030 ] RimVSerPort C:\Windows\system32\DRIVERS\RimSerial.sys
22:51:26.0441 4776 RimVSerPort - ok
22:51:26.0472 4776 [ 3F400C3CCD0818858602DDB37B5DE719 ] rismxdp C:\Windows\system32\DRIVERS\rixdptsk.sys
22:51:26.0503 4776 rismxdp - ok
22:51:26.0550 4776 [ 906DCFC5EBF4EC0433F8D4FFFB0BA334 ] RMCAST C:\Windows\system32\DRIVERS\RMCAST.sys
22:51:26.0550 4776 RMCAST - ok
22:51:26.0612 4776 [ 564297827D213F52C7A3A2FF749568CA ] ROOTMODEM C:\Windows\system32\Drivers\RootMdm.sys
22:51:26.0644 4776 ROOTMODEM - ok
22:51:26.0722 4776 [ B60F58F175DE20A6739194E85B035178 ] rpcapd C:\Program Files\WinPcap\rpcapd.exe
22:51:26.0753 4776 rpcapd - ok
22:51:26.0800 4776 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
22:51:26.0800 4776 RpcEptMapper - ok
22:51:26.0846 4776 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
22:51:26.0846 4776 RpcLocator - ok
22:51:26.0893 4776 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\Windows\system32\rpcss.dll
22:51:26.0893 4776 RpcSs - ok
22:51:26.0940 4776 [ 1AFC4D697DD6E68ABDFD3C71CE0E9855 ] RpcXdr C:\Windows\system32\drivers\rpcxdr.sys
22:51:26.0956 4776 RpcXdr - ok
22:51:26.0987 4776 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
22:51:27.0018 4776 rspndr - ok
22:51:27.0065 4776 [ 7FA7F2E249A5DCBB7970630E15E1F482 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
22:51:27.0080 4776 s3cap - ok
22:51:27.0112 4776 [ 81951F51E318AECC2D68559E47485CC4 ] SamSs C:\Windows\system32\lsass.exe
22:51:27.0112 4776 SamSs - ok
22:51:27.0205 4776 [ 39763504067962108505BFF25F024345 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
22:51:27.0252 4776 SASDIFSV - ok
22:51:27.0299 4776 [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
22:51:27.0346 4776 SASKUTIL - ok
22:51:27.0377 4776 [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
22:51:27.0408 4776 sbp2port - ok
22:51:27.0439 4776 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
22:51:27.0455 4776 SCardSvr - ok
22:51:27.0486 4776 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
22:51:27.0517 4776 scfilter - ok
22:51:27.0595 4776 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\Windows\system32\schedsvc.dll
22:51:27.0595 4776 Schedule - ok
22:51:27.0642 4776 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\Windows\System32\certprop.dll
22:51:27.0642 4776 SCPolicySvc - ok
22:51:27.0704 4776 [ 0328BE1C7F1CBA23848179F8762E391C ] sdbus C:\Windows\system32\drivers\sdbus.sys
22:51:27.0720 4776 sdbus - ok
22:51:27.0751 4776 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\Windows\System32\SDRSVC.dll
22:51:27.0751 4776 SDRSVC - ok
22:51:27.0798 4776 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
22:51:27.0798 4776 secdrv - ok
22:51:27.0845 4776 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
22:51:27.0845 4776 seclogon - ok
22:51:27.0860 4776 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\system32\sens.dll
22:51:27.0860 4776 SENS - ok
22:51:27.0907 4776 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll
22:51:27.0907 4776 SensrSvc - ok
22:51:27.0923 4776 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
22:51:27.0923 4776 Serenum - ok
22:51:27.0938 4776 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys
22:51:27.0970 4776 Serial - ok
22:51:28.0001 4776 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
22:51:28.0032 4776 sermouse - ok
22:51:28.0063 4776 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\Windows\system32\sessenv.dll
22:51:28.0079 4776 SessionEnv - ok
22:51:28.0094 4776 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
22:51:28.0126 4776 sffdisk - ok
22:51:28.0141 4776 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
22:51:28.0172 4776 sffp_mmc - ok
22:51:28.0204 4776 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
22:51:28.0235 4776 sffp_sd - ok
22:51:28.0266 4776 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
22:51:28.0297 4776 sfloppy - ok
22:51:28.0391 4776 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\Windows\System32\ipnathlp.dll
22:51:28.0391 4776 SharedAccess - ok
22:51:28.0422 4776 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:51:28.0438 4776 ShellHWDetection - ok
22:51:28.0484 4776 [ F5AAA8CDDA25B6387AF590D676D25BAD ] simptcp C:\Windows\System32\tcpsvcs.exe
22:51:28.0484 4776 simptcp - ok
22:51:28.0516 4776 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys
22:51:28.0547 4776 sisagp - ok
22:51:28.0594 4776 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
22:51:28.0594 4776 SiSRaid2 - ok
22:51:28.0625 4776 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
22:51:28.0656 4776 SiSRaid4 - ok
22:51:28.0672 4776 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
22:51:28.0703 4776 Smb - ok
22:51:28.0765 4776 [ 8F5171C837E64FF0AC48F0A29DD9E180 ] SNMP C:\Windows\System32\snmp.exe
22:51:28.0781 4776 SNMP - ok
22:51:28.0796 4776 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
22:51:28.0796 4776 SNMPTRAP - ok
22:51:28.0843 4776 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
22:51:28.0874 4776 spldr - ok
22:51:28.0921 4776 [ 866A43013535DC8587C258E43579C764 ] Spooler C:\Windows\System32\spoolsv.exe
22:51:28.0937 4776 Spooler - ok
22:51:29.0030 4776 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe
22:51:29.0077 4776 sppsvc - ok
22:51:29.0124 4776 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\Windows\system32\sppuinotify.dll
22:51:29.0124 4776 sppuinotify - ok
22:51:29.0171 4776 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv C:\Windows\system32\DRIVERS\srv.sys
22:51:29.0202 4776 srv - ok
22:51:29.0233 4776 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
22:51:29.0296 4776 srv2 - ok
22:51:29.0342 4776 [ E00FDFAFF025E94F9821153750C35A6D ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL3.SYS
22:51:29.0374 4776 SrvHsfHDA - ok
22:51:29.0420 4776 [ CEB4E3B6890E1E42DCA6694D9E59E1A0 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV3.SYS
22:51:29.0436 4776 SrvHsfV92 - ok
22:51:29.0467 4776 [ BC0C7EA89194C299F051C24119000E17 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
22:51:29.0498 4776 SrvHsfWinac - ok
22:51:29.0545 4776 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
22:51:29.0545 4776 srvnet - ok
22:51:29.0608 4776 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
22:51:29.0623 4776 SSDPSRV - ok
22:51:29.0670 4776 [ A36EE93698802CD899F98BFD553D8185 ] ssmdrv C:\Windows\system32\DRIVERS\ssmdrv.sys
22:51:29.0717 4776 ssmdrv - ok
22:51:29.0748 4776 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
22:51:29.0748 4776 SstpSvc - ok
22:51:29.0795 4776 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
22:51:29.0826 4776 stexstor - ok
22:51:29.0888 4776 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll
22:51:29.0904 4776 StiSvc - ok
22:51:29.0935 4776 [ 472AF0311073DCECEAA8FA18BA2BDF89 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
22:51:29.0966 4776 storflt - ok
22:51:29.0998 4776 [ 0BF669F0A910BEDA4A32258D363AF2A5 ] StorSvc C:\Windows\system32\storsvc.dll
22:51:29.0998 4776 StorSvc - ok
22:51:30.0013 4776 [ DCAFFD62259E0BDB433DD67B5BB37619 ] storvsc C:\Windows\system32\drivers\storvsc.sys
22:51:30.0044 4776 storvsc - ok
22:51:30.0091 4776 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\drivers\swenum.sys
22:51:30.0122 4776 swenum - ok
22:51:30.0232 4776 [ FDBD13CE3B3FC298E7FBB98B026F1ECB ] swg3kser00 C:\Windows\system32\DRIVERS\swg3kser00.sys
22:51:30.0325 4776 swg3kser00 - ok
22:51:30.0341 4776 [ C61566BE5B8DA87F1B2BD3D9EC08592D ] swiwdmbx C:\Windows\system32\DRIVERS\swiwdmbx.sys
22:51:30.0356 4776 swiwdmbx - ok
22:51:30.0388 4776 [ 3D4776AB6520240AE06D277AC45BF836 ] swmsflt C:\Windows\system32\DRIVERS\swmsflt.sys
22:51:30.0403 4776 swmsflt - ok
22:51:30.0450 4776 [ AF88AE62B84D016EB5BDC12DDF1005A3 ] swmx00 C:\Windows\system32\DRIVERS\swmx00.sys
22:51:30.0481 4776 swmx00 - ok
22:51:30.0528 4776 [ 68FA9DEA71B307210045AEA89310EF7F ] SWNC5E00 C:\Windows\system32\DRIVERS\SWNC5E00.sys
22:51:30.0544 4776 SWNC5E00 - ok
22:51:30.0575 4776 [ 1D394F1585793AC2A9738028FF97FBE3 ] SWNC8UA3 C:\Windows\system32\DRIVERS\swnc8ua3.sys
22:51:30.0622 4776 SWNC8UA3 - ok
22:51:30.0684 4776 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
22:51:30.0684 4776 swprv - ok
22:51:30.0684 4776 Synth3dVsc - ok
22:51:30.0871 4776 [ 7E194E86BF306E07470A0AC56B41DE83 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
22:51:30.0965 4776 SynTP - ok
22:51:31.0012 4776 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\Windows\system32\sysmain.dll
22:51:31.0043 4776 SysMain - ok
22:51:31.0090 4776 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:51:31.0090 4776 TabletInputService - ok
22:51:31.0121 4776 [ FD90A16CEB10D4FDAA00AAF39B8FF58F ] taphss C:\Windows\system32\DRIVERS\taphss.sys
22:51:31.0152 4776 taphss - ok
22:51:31.0214 4776 [ A69C1848E37482C855D94AA05145086C ] taphss6 C:\Windows\system32\DRIVERS\taphss6.sys
22:51:31.0261 4776 taphss6 - ok
22:51:31.0308 4776 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll
22:51:31.0324 4776 TapiSrv - ok
22:51:31.0355 4776 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
22:51:31.0355 4776 TBS - ok
22:51:31.0417 4776 [ A5EBB8F648000E88B7D9390B514976BF ] Tcpip C:\Windows\system32\drivers\tcpip.sys
22:51:31.0480 4776 Tcpip - ok
22:51:31.0511 4776 [ A5EBB8F648000E88B7D9390B514976BF ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
22:51:31.0511 4776 TCPIP6 - ok
22:51:31.0558 4776 [ CCA24162E055C3714CE5A88B100C64ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
22:51:31.0604 4776 tcpipreg - ok
22:51:31.0651 4776 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
22:51:31.0682 4776 TDPIPE - ok
22:51:31.0714 4776 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
22:51:31.0745 4776 TDTCP - ok
22:51:31.0776 4776 [ B459575348C20E8121D6039DA063C704 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
22:51:31.0807 4776 tdx - ok
22:51:32.0213 4776 [ A4D2CE94B028EF1E437CF4AC3D8FF26C ] TeamViewer7 C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe
22:51:32.0291 4776 TeamViewer7 - ok
22:51:32.0306 4776 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\Windows\system32\drivers\termdd.sys
22:51:32.0338 4776 TermDD - ok
22:51:32.0369 4776 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll
22:51:32.0384 4776 TermService - ok
22:51:32.0494 4776 [ 7C62D4FBCD20097FB063F6A22D6C62BA ] Tftpd32_svc C:\Program Files\Tftpd32_SE\tftpd32_svc.exe
22:51:32.0540 4776 Tftpd32_svc - ok
22:51:32.0572 4776 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
22:51:32.0572 4776 Themes - ok
22:51:32.0587 4776 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
22:51:32.0587 4776 THREADORDER - ok
22:51:32.0634 4776 [ CE92B84ED806F1C5C340A51DFD3E49BC ] TlntSvr C:\Windows\System32\tlntsvr.exe
22:51:32.0650 4776 TlntSvr - ok
22:51:32.0806 4776 [ 9CD364ECB3A10B24C7CAC8FF89993A67 ] TPHKLOAD C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
22:51:32.0806 4776 TPHKLOAD - ok
22:51:32.0821 4776 [ C04BB65441913AB621C58A8BD3169B23 ] TPHKSVC C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
22:51:32.0821 4776 TPHKSVC - ok
22:51:32.0868 4776 [ 5AD05191DC8B444A7BA4D79B76C42A30 ] TPM C:\Windows\system32\drivers\tpm.sys
22:51:32.0899 4776 TPM - ok
22:51:32.0946 4776 [ C16EC6A5390904D3971179553852025B ] TPPWRIF C:\Windows\system32\drivers\Tppwr32v.sys
22:51:32.0977 4776 TPPWRIF - ok
22:51:32.0993 4776 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
22:51:33.0008 4776 TrkWks - ok
22:51:33.0071 4776 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:51:33.0102 4776 TrustedInstaller - ok
22:51:33.0102 4776 Suspicious service (NoAccess): trvjfzhxr
22:51:33.0164 4776 [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
22:51:33.0196 4776 tssecsrv - ok
22:51:33.0258 4776 [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
22:51:33.0289 4776 TsUsbFlt - ok
22:51:33.0289 4776 tsusbhub - ok
22:51:33.0352 4776 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
22:51:33.0383 4776 tunnel - ok
22:51:33.0414 4776 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
22:51:33.0414 4776 uagp35 - ok
22:51:33.0445 4776 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys
22:51:33.0445 4776 udfs - ok
22:51:33.0492 4776 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
22:51:33.0492 4776 UI0Detect - ok
22:51:33.0539 4776 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
22:51:33.0554 4776 uliagpkx - ok
22:51:33.0570 4776 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\Windows\system32\DRIVERS\umbus.sys
22:51:33.0601 4776 umbus - ok
22:51:33.0617 4776 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
22:51:33.0648 4776 UmPass - ok
22:51:33.0695 4776 [ 409994A8EACEEE4E328749C0353527A0 ] UmRdpService C:\Windows\System32\umrdp.dll
22:51:33.0695 4776 UmRdpService - ok
22:51:33.0726 4776 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
22:51:33.0726 4776 upnphost - ok
22:51:33.0804 4776 [ 1D9F2BD026E8E2D45033A4DF3F16B78C ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
22:51:33.0835 4776 usbaudio - ok
22:51:33.0851 4776 [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
22:51:33.0882 4776 usbccgp - ok
22:51:33.0913 4776 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\drivers\usbcir.sys
22:51:33.0913 4776 usbcir - ok
22:51:33.0976 4776 [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
22:51:34.0007 4776 usbehci - ok
22:51:34.0038 4776 [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
22:51:34.0069 4776 usbhub - ok
22:51:34.0100 4776 [ E185D44FAC515A18D9DEDDC23C2CDF44 ] usbohci C:\Windows\system32\drivers\usbohci.sys
22:51:34.0132 4776 usbohci - ok
22:51:34.0163 4776 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
22:51:34.0178 4776 usbprint - ok
22:51:34.0194 4776 [ F991AB9CC6B908DB552166768176896A ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:51:34.0225 4776 USBSTOR - ok
22:51:34.0241 4776 [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
22:51:34.0272 4776 usbuhci - ok
22:51:34.0334 4776 [ 45F4E7BF43DB40A6C6B4D92C76CBC3F2 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
22:51:34.0350 4776 usbvideo - ok
22:51:34.0381 4776 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
22:51:34.0397 4776 UxSms - ok
22:51:34.0412 4776 [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc C:\Windows\system32\lsass.exe
22:51:34.0412 4776 VaultSvc - ok
22:51:34.0459 4776 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
22:51:34.0475 4776 vdrvroot - ok
22:51:34.0537 4776 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe
22:51:34.0537 4776 vds - ok
22:51:34.0600 4776 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
22:51:34.0631 4776 vga - ok
22:51:34.0662 4776 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
22:51:34.0693 4776 VgaSave - ok
22:51:34.0693 4776 VGPU - ok
22:51:34.0724 4776 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
22:51:34.0756 4776 vhdmp - ok
22:51:34.0787 4776 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys
22:51:34.0802 4776 viaagp - ok
22:51:34.0802 4776 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
22:51:34.0834 4776 ViaC7 - ok
22:51:34.0865 4776 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\drivers\viaide.sys
22:51:34.0896 4776 viaide - ok
22:51:34.0943 4776 [ C2F2911156FDC7817C52829C86DA494E ] vmbus C:\Windows\system32\drivers\vmbus.sys
22:51:34.0990 4776 vmbus - ok
22:51:35.0005 4776 [ D4D77455211E204F370D08F4963063CE ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
22:51:35.0036 4776 VMBusHID - ok
22:51:35.0083 4776 [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr C:\Windows\system32\drivers\volmgr.sys
22:51:35.0114 4776 volmgr - ok
22:51:35.0130 4776 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
22:51:35.0161 4776 volmgrx - ok
22:51:35.0192 4776 [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
22:51:35.0224 4776 volsnap - ok
22:51:35.0270 4776 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
22:51:35.0302 4776 vsmraid - ok
22:51:35.0380 4776 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\Windows\system32\vssvc.exe
22:51:35.0395 4776 VSS - ok
22:51:35.0458 4776 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
22:51:35.0473 4776 vwifibus - ok
22:51:35.0520 4776 [ 7090D3436EEB4E7DA3373090A23448F7 ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
22:51:35.0551 4776 vwififlt - ok
22:51:35.0551 4776 [ A3F04CBEA6C2A10E6CB01F8B47611882 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
22:51:35.0551 4776 vwifimp - ok
22:51:35.0614 4776 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
22:51:35.0645 4776 W32Time - ok
22:51:35.0676 4776 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
22:51:35.0707 4776 WacomPen - ok
22:51:35.0738 4776 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
22:51:35.0770 4776 WANARP - ok
22:51:35.0785 4776 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
22:51:35.0785 4776 Wanarpv6 - ok
22:51:36.0191 4776 [ 57C8C20BFA5BEF6BD851EBAC67A8CED0 ] WAS C:\Windows\system32\inetsrv\iisw3adm.dll
22:51:36.0222 4776 WAS - ok
22:51:36.0362 4776 [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
22:51:36.0487 4776 WatAdminSvc - ok
22:51:36.0877 4776 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\Windows\system32\wbengine.exe
22:51:36.0908 4776 wbengine - ok
22:51:36.0971 4776 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
22:51:36.0986 4776 WbioSrvc - ok
22:51:37.0033 4776 [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc C:\Windows\System32\wcncsvc.dll
22:51:37.0033 4776 wcncsvc - ok
22:51:37.0049 4776 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:51:37.0049 4776 WcsPlugInService - ok
22:51:37.0096 4776 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys
22:51:37.0127 4776 Wd - ok
22:51:37.0142 4776 [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
22:51:37.0174 4776 Wdf01000 - ok
22:51:37.0174 4776 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
22:51:37.0189 4776 WdiServiceHost - ok
22:51:37.0189 4776 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
22:51:37.0189 4776 WdiSystemHost - ok
22:51:37.0236 4776 [ A9D880F97530D5B8FEE278923349929D ] WebClient C:\Windows\System32\webclnt.dll
22:51:37.0252 4776 WebClient - ok
22:51:37.0267 4776 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
22:51:37.0267 4776 Wecsvc - ok
22:51:37.0283 4776 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
22:51:37.0283 4776 wercplsupport - ok
22:51:37.0330 4776 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
22:51:37.0330 4776 WerSvc - ok
22:51:37.0361 4776 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
22:51:37.0376 4776 WfpLwf - ok
22:51:37.0408 4776 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
22:51:37.0408 4776 WIMMount - ok
22:51:37.0501 4776 [ BC43A66ED6898F405A4ACF6179A5F9B1 ] winachsf C:\Windows\system32\DRIVERS\HSX_CNXT.sys
22:51:37.0564 4776 winachsf - ok
22:51:37.0642 4776 [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
22:51:37.0642 4776 WinDefend - ok
22:51:37.0657 4776 WinHttpAutoProxySvc - ok
22:51:37.0735 4776 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
22:51:37.0766 4776 Winmgmt - ok
22:51:37.0860 4776 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\Windows\system32\WsmSvc.dll
22:51:37.0891 4776 WinRM - ok
22:51:37.0969 4776 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
22:51:37.0985 4776 Wlansvc - ok
22:51:38.0188 4776 [ 5E7C103F8475C4289847D15E129C20F7 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:51:38.0219 4776 wlidsvc - ok
22:51:38.0297 4776 [ 59C90BC8317BD3F6E5559A4DEAF35090 ] WmBEnum C:\Windows\system32\drivers\WmBEnum.sys
22:51:38.0297 4776 WmBEnum - ok
22:51:38.0328 4776 [ 999A4539AD634A741AFD357E290BD461 ] WmFilter C:\Windows\system32\drivers\WmFilter.sys
22:51:38.0344 4776 WmFilter - ok
22:51:38.0390 4776 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
22:51:38.0390 4776 WmiAcpi - ok
22:51:38.0468 4776 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
22:51:38.0500 4776 wmiApSrv - ok
22:51:38.0718 4776 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
22:51:38.0749 4776 WMPNetworkSvc - ok
22:51:38.0827 4776 [ 0B8C64B13776F17537F0705FE62799C6 ] WmVirHid C:\Windows\system32\drivers\WmVirHid.sys
22:51:38.0843 4776 WmVirHid - ok
22:51:38.0874 4776 [ 8D388AEB1A12C1192AA9B4EBCEABCBA6 ] WmXlCore C:\Windows\system32\drivers\WmXlCore.sys
22:51:38.0921 4776 WmXlCore - ok
22:51:38.0952 4776 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
22:51:38.0952 4776 WPCSvc - ok
22:51:39.0014 4776 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
22:51:39.0046 4776 WPDBusEnum - ok
22:51:39.0139 4776 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
22:51:39.0170 4776 ws2ifsl - ok
22:51:39.0202 4776 [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc C:\Windows\system32\wscsvc.dll
22:51:39.0217 4776 wscsvc - ok
22:51:39.0217 4776 WSearch - ok
22:51:39.0389 4776 [ 3026418A50C5B4761BEFA632CEDB7406 ] wuauserv C:\Windows\system32\wuaueng.dll
22:51:39.0467 4776 wuauserv - ok
22:51:39.0482 4776 [ E714A1C0354636837E20CCBF00888EE7 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
22:51:39.0514 4776 WudfPf - ok
22:51:39.0607 4776 [ 1023EE888C9B47178C5293ED5336AB69 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
22:51:39.0623 4776 WUDFRd - ok
22:51:39.0654 4776 [ 8D1E1E529A2C9E9B6A85B55A345F7629 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
22:51:39.0654 4776 wudfsvc - ok
22:51:39.0701 4776 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
22:51:39.0716 4776 WwanSvc - ok
22:51:39.0748 4776 [ 311FAFFB280FCA0D4A7739E2474EAC9F ] XAudio C:\Windows\system32\DRIVERS\XAudio32.sys
22:51:39.0779 4776 XAudio - ok
22:51:39.0826 4776 ================ Scan global ===============================
22:51:39.0872 4776 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
22:51:39.0935 4776 [ 93F86C5CCC37D70EA09CE5E76F3E4338 ] C:\Windows\system32\winsrv.dll
22:51:39.0950 4776 [ 93F86C5CCC37D70EA09CE5E76F3E4338 ] C:\Windows\system32\winsrv.dll
22:51:39.0997 4776 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
22:51:40.0013 4776 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
22:51:40.0028 4776 [Global] - ok
22:51:40.0028 4776 ================ Scan MBR ==================================
22:51:40.0028 4776 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
22:51:42.0602 4776 \Device\Harddisk0\DR0 - ok
22:51:42.0602 4776 ================ Scan VBR ==================================
22:51:42.0665 4776 [ 2C624D3C3D81D0CCA0E909A3CF6B2488 ] \Device\Harddisk0\DR0\Partition1
22:51:42.0774 4776 \Device\Harddisk0\DR0\Partition1 - ok
22:51:42.0790 4776 [ A2F7C9BA734215BB4246EC2227D3D8F0 ] \Device\Harddisk0\DR0\Partition2
22:51:42.0790 4776 \Device\Harddisk0\DR0\Partition2 - ok
22:51:42.0805 4776 ============================================================
22:51:42.0805 4776 Scan finished
22:51:42.0805 4776 ============================================================
22:51:42.0805 6700 Detected object count: 1
22:51:42.0805 6700 Actual detected object count: 1
22:53:46.0944 6700 Akamai ( HiddenFile.Multi.Generic ) - skipped by user
22:53:46.0944 6700 Akamai ( HiddenFile.Multi.Generic ) - User select action: Skip
22:56:07.0292 7784 Deinitialize success




==================================== ASWMBR

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2013-01-09 22:56:11
-----------------------------
22:56:11.957 OS Version: Windows 6.1.7601 Service Pack 1
22:56:11.957 Number of processors: 2 586 0x170A
22:56:11.957 ComputerName: XXXXXXXXXX UserName: XXXXXXXX
22:56:13.782 Initialize success
23:00:32.333 AVAST engine defs: 13010901
23:00:40.289 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
23:00:40.289 Disk 0 Vendor: HITACHI_HTS723216L9SA60 FC2ZC50B Size: 152627MB BusType: 3
23:00:40.320 Disk 0 MBR read successfully
23:00:40.320 Disk 0 MBR scan
23:00:40.335 Disk 0 Windows 7 default MBR code
23:00:40.351 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
23:00:40.367 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 152525 MB offset 206848
23:00:40.367 Disk 0 scanning sectors +312578048
23:00:40.429 Disk 0 scanning C:\Windows\system32\drivers
23:00:53.517 Service scanning
23:01:28.898 Modules scanning
23:01:40.427 Disk 0 trace - called modules:
23:01:40.458 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys halmacpi.dll ataport.SYS pciide.sys PCIIDEX.SYS atapi.sys
23:01:40.957 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x85577030]
23:01:40.957 3 CLASSPNP.SYS[8a80459e] -> nt!IofCallDriver -> [0x854c3860]
23:01:40.957 5 ACPI.sys[8a69f3d4] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0x85478610]
23:01:41.800 AVAST engine scan C:\Windows
23:01:44.810 AVAST engine scan C:\Windows\system32
23:06:16.220 AVAST engine scan C:\Windows\system32\drivers
23:06:31.476 AVAST engine scan C:\Users\ecajigas
23:07:27.403 AVAST engine scan C:\ProgramData
23:08:11.863 Scan finished successfully
23:10:59.251 Disk 0 MBR has been saved successfully to "C:\Users\ecajigas\Desktop\MBR.dat"
23:10:59.251 The log file has been saved successfully to "C:\Users\ecajigas\Desktop\aswMBR.txt"

#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,199 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:52 AM

Posted 09 January 2013 - 10:42 PM

Those are OK, its your CD drivers.

Lets look at thesenext.

MiniToolBox
Please download MiniToolBox, save it to your desktop and run it.Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.

Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run. Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
>>>

ADW Cleaner

Please download AdwCleaner by Xplode onto your desktop.

  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Delete.
  • Confirm each time with Ok.
  • You will be prompted to restart your computer. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.

Edited by boopme, 09 January 2013 - 10:43 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 3d1l

3d1l
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:12:52 AM

Posted 10 January 2013 - 09:39 PM

Here are the logs created:

==================================MINITOOLBOX

MiniToolBox by Farbar Version:08-01-2013
Ran by XXXXXXXX (administrator) on 10-01-2013 at 22:22:54
Running from "C:\Users\XXXXXXXX\Desktop"
Windows 7 Enterprise Service Pack 1 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



127.0.0.1 pagead.googlesyndication.com
127.0.0.1 pagead2.googlesyndication.com

========================= IP Configuration: ================================

Intel® WiFi Link 5300 AGN = Internal WiFi (Connected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Hardware not present)
Microsoft Loopback Adapter = MS Loopback (Hardware not present)
Intel® 82567LM Gigabit Network Connection = Internal NIC (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 3 (Media disconnected)
Anchorfree HSS VPN Adapter = Local Area Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add route prefix=0.0.0.0/0 interface="MS Loopback" nexthop=10.1.1.1 publish=Yes
add address name="MS Loopback" address=10.1.1.10 mask=255.255.255.0


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : XXXXXXXXXX
Primary Dns Suffix . . . . . . . : XXXX.XXXXXXXXXX.XXX
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : XXXX.XXXXXXXXX.XXX
Belkin

Ethernet adapter Local Area Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Anchorfree HSS VPN Adapter
Physical Address. . . . . . . . . : 00-FF-FE-BA-E7-0E
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection 3:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter #2
Physical Address. . . . . . . . . : 00-21-6A-1F-B2-6B
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 00-21-6A-1F-B2-6B
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Internal WiFi:

Connection-specific DNS Suffix . : Belkin
Description . . . . . . . . . . . : Intel® WiFi Link 5300 AGN
Physical Address. . . . . . . . . : 00-21-6A-1F-B2-6A
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::9028:f2a9:5609:c67a%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.2.4(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Thursday, January 10, 2013 7:41:13 PM
Lease Expires . . . . . . . . . . : Monday, February 17, 2149 4:51:23 AM
Default Gateway . . . . . . . . . : 192.168.2.1
DHCP Server . . . . . . . . . . . : 192.168.2.1
DHCPv6 IAID . . . . . . . . . . . : 234889578
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-37-4F-0A-00-24-7E-13-2C-87
DNS Servers . . . . . . . . . . . : 192.168.2.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Internal NIC:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : XXXX.XXXXXXXXX.XXX
Description . . . . . . . . . . . : Intel® 82567LM Gigabit Network Connection
Physical Address. . . . . . . . . : 00-24-7E-13-2C-87
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{479F4A3E-387B-4C67-A451-FCEA92C77BFA}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Reusable ISATAP Interface {04931967-680C-47B1-8AF5-9856B0BAD1DF}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter 6TO4 Adapter:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.Belkin:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : Belkin
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{AA27F1B7-170B-4679-922E-75375E2A7124}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #6
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:9d38:953c:1815:203d:3f57:fdfb(Preferred)
Link-local IPv6 Address . . . . . : fe80::1815:203d:3f57:fdfb%17(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server:
Address: 192.168.2.1

DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
Name: google.com
Addresses: 74.125.229.163
74.125.229.164
74.125.229.165
74.125.229.166
74.125.229.167
74.125.229.168
74.125.229.169
74.125.229.174
74.125.229.160
74.125.229.161
74.125.229.162


Pinging google.com [173.194.37.129] with 32 bytes of data:
Reply from 173.194.37.129: bytes=32 time=57ms TTL=55
Reply from 173.194.37.129: bytes=32 time=35ms TTL=55

Ping statistics for 173.194.37.129:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 35ms, Maximum = 57ms, Average = 46ms
Server:
Address: 192.168.2.1

DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
Name: yahoo.com
Addresses: 98.139.183.24
72.30.38.140
98.138.253.109


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=120ms TTL=49
Reply from 98.138.253.109: bytes=32 time=98ms TTL=49

Ping statistics for 98.138.253.109:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 98ms, Maximum = 120ms, Average = 109ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
25...00 ff fe ba e7 0e ......Anchorfree HSS VPN Adapter
15...00 21 6a 1f b2 6b ......Microsoft Virtual WiFi Miniport Adapter #2
14...00 21 6a 1f b2 6b ......Microsoft Virtual WiFi Miniport Adapter
11...00 21 6a 1f b2 6a ......Intel® WiFi Link 5300 AGN
10...00 24 7e 13 2c 87 ......Intel® 82567LM Gigabit Network Connection
1...........................Software Loopback Interface 1
19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
22...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
20...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
27...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #6
17...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.2.1 192.168.2.4 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.2.0 255.255.255.0 On-link 192.168.2.4 281
192.168.2.4 255.255.255.255 On-link 192.168.2.4 281
192.168.2.255 255.255.255.255 On-link 192.168.2.4 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.2.4 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.2.4 281
===========================================================================
Persistent Routes:
Network Address Netmask Gateway Address Metric
0.0.0.0 0.0.0.0 10.1.1.1 Default
===========================================================================

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
17 58 ::/0 On-link
1 306 ::1/128 On-link
17 58 2001::/32 On-link
17 306 2001:0:9d38:953c:1815:203d:3f57:fdfb/128
On-link
11 281 fe80::/64 On-link
17 306 fe80::/64 On-link
17 306 fe80::1815:203d:3f57:fdfb/128
On-link
11 281 fe80::9028:f2a9:5609:c67a/128
On-link
1 306 ff00::/8 On-link
17 306 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\system32\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 06 C:\Windows\System32\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 07 C:\Windows\System32\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648] (Microsoft Corp.)
Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648] (Microsoft Corp.)
Catalog9 01 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 27 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 28 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 29 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 30 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 31 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 32 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 33 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 34 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 35 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 36 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 37 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 38 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 39 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 40 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 41 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 42 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 43 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 44 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 45 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 46 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 47 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 48 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 49 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 50 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 51 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 52 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 53 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (01/10/2013 09:39:49 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.VC90.ATL,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"1".
Dependent Assembly Microsoft.VC90.ATL,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (01/10/2013 09:39:40 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.VC90.ATL,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"1".
Dependent Assembly Microsoft.VC90.ATL,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (01/09/2013 09:48:54 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.VC90.ATL,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"1".
Dependent Assembly Microsoft.VC90.ATL,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (01/09/2013 09:48:45 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.VC90.ATL,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"1".
Dependent Assembly Microsoft.VC90.ATL,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (01/08/2013 11:26:46 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.VC90.ATL,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"1".
Dependent Assembly Microsoft.VC90.ATL,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (01/08/2013 11:24:10 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.VC90.ATL,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"1".
Dependent Assembly Microsoft.VC90.ATL,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (01/07/2013 02:27:13 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.VC90.ATL,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"1".
Dependent Assembly Microsoft.VC90.ATL,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (01/07/2013 02:27:04 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.VC90.ATL,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"1".
Dependent Assembly Microsoft.VC90.ATL,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (01/06/2013 00:06:14 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.VC90.ATL,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"1".
Dependent Assembly Microsoft.VC90.ATL,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (01/06/2013 00:06:07 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.VC90.ATL,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"1".
Dependent Assembly Microsoft.VC90.ATL,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8" could not be found.
Please use sxstrace.exe for detailed diagnosis.


System errors:
=============
Error: (01/10/2013 07:42:25 PM) (Source: TermService) (User: )
Description: The terminal server cannot register 'TERMSRV' Service Principal Name to be used for server authentication. The following error occured: The specified domain either does not exist or could not be contacted.
.

Error: (01/10/2013 07:42:09 PM) (Source: Service Control Manager) (User: )
Description: The gupdate service failed to start due to the following error:
%%3

Error: (01/10/2013 07:40:43 PM) (Source: Microsoft-Windows-GroupPolicy) (User: PUERTOS)
Description: The processing of Group Policy failed because of lack of network connectivity to a domain controller. This may be a transient condition. A success message would be generated once the machine gets connected to the domain controller and Group Policy has succesfully processed. If you do not see a success message for several hours, then contact your administrator.

Error: (01/10/2013 07:39:48 PM) (Source: Service Control Manager) (User: )
Description: The Time Monitor service terminated with the following error:
%%2

Error: (01/10/2013 07:39:46 PM) (Source: SNMP) (User: )
Description: The SNMP Service encountered an error while accessing the registry key SYSTEM\CurrentControlSet\Services\SNMP\Parameters\ExtensionAgents.

Error: (01/10/2013 07:39:46 PM) (Source: SNMP) (User: )
Description: The SNMP Service encountered an error while accessing the registry key SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration.

Error: (01/10/2013 07:39:43 PM) (Source: Microsoft-Windows-GroupPolicy) (User: NT AUTHORITY)
Description: The processing of Group Policy failed because of lack of network connectivity to a domain controller. This may be a transient condition. A success message would be generated once the machine gets connected to the domain controller and Group Policy has succesfully processed. If you do not see a success message for several hours, then contact your administrator.

Error: (01/10/2013 07:39:41 PM) (Source: NETLOGON) (User: )
Description: This computer was not able to set up a secure session with a domain
controller in domain PUERTOS due to the following:
%%1311

This may lead to authentication problems. Make sure that this
computer is connected to the network. If the problem persists,
please contact your domain administrator.



ADDITIONAL INFO

If this computer is a domain controller for the specified domain, it
sets up the secure session to the primary domain controller emulator in the specified
domain. Otherwise, this computer sets up the secure session to any domain controller
in the specified domain.

Error: (01/10/2013 08:52:18 AM) (Source: Service Control Manager) (User: )
Description: The gupdate service failed to start due to the following error:
%%3

Error: (01/10/2013 08:49:44 AM) (Source: Service Control Manager) (User: )
Description: The Time Monitor service terminated with the following error:
%%2


Microsoft Office Sessions:
=========================
Error: (01/10/2013 09:39:49 AM) (Source: SideBySide)(User: )
Description: Microsoft.VC90.ATL,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"C:\Program Files\Common Files\Research In Motion\AppLoader\MailServerMAPIProxy64.exe

Error: (01/10/2013 09:39:40 AM) (Source: SideBySide)(User: )
Description: Microsoft.VC90.ATL,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"C:\Program Files\Research In Motion\BlackBerry Desktop\MailServerMAPIProxy64.exe

Error: (01/09/2013 09:48:54 AM) (Source: SideBySide)(User: )
Description: Microsoft.VC90.ATL,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"C:\Program Files\Common Files\Research In Motion\AppLoader\MailServerMAPIProxy64.exe

Error: (01/09/2013 09:48:45 AM) (Source: SideBySide)(User: )
Description: Microsoft.VC90.ATL,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"C:\Program Files\Research In Motion\BlackBerry Desktop\MailServerMAPIProxy64.exe

Error: (01/08/2013 11:26:46 AM) (Source: SideBySide)(User: )
Description: Microsoft.VC90.ATL,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"C:\Program Files\Research In Motion\BlackBerry Desktop\MailServerMAPIProxy64.exe

Error: (01/08/2013 11:24:10 AM) (Source: SideBySide)(User: )
Description: Microsoft.VC90.ATL,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"C:\Program Files\Research In Motion\BlackBerry Desktop\MailServerMAPIProxy64.exe

Error: (01/07/2013 02:27:13 AM) (Source: SideBySide)(User: )
Description: Microsoft.VC90.ATL,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"C:\Program Files\Common Files\Research In Motion\AppLoader\MailServerMAPIProxy64.exe

Error: (01/07/2013 02:27:04 AM) (Source: SideBySide)(User: )
Description: Microsoft.VC90.ATL,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"C:\Program Files\Research In Motion\BlackBerry Desktop\MailServerMAPIProxy64.exe

Error: (01/06/2013 00:06:14 PM) (Source: SideBySide)(User: )
Description: Microsoft.VC90.ATL,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"C:\Program Files\Common Files\Research In Motion\AppLoader\MailServerMAPIProxy64.exe

Error: (01/06/2013 00:06:07 PM) (Source: SideBySide)(User: )
Description: Microsoft.VC90.ATL,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"C:\Program Files\Research In Motion\BlackBerry Desktop\MailServerMAPIProxy64.exe


=========================== Installed Programs ============================

7-Zip 9.20
Accurate Outlook Duplicate Remover 2.1
Adobe Flash Player 11 Plugin (Version: 11.5.502.135)
Akamai NetSession Interface Service
AmazingMIDI
Apple Application Support (Version: 2.1.5)
Arasan 13.3
ATI Catalyst Install Manager (Version: 3.0.800.0)
ATI Uninstaller (Version: 8.792.5-110424b-119200C-Lenovo)
Audacity 1.3.13 (Unicode)
Autodesk Design Review 2013 (Version: 13.0.0.82)
Autodesk Design Review Browser Add-on v1.2 (Version: 1.2.0)
Avaya Site Administration (Version: 1.13.5)
Avaya Terminal Emulator (Version: 1.0.17)
Avaya VisAbility Required Components (Version: 1.3.00)
Avira Free Antivirus (Version: 13.0.0.2890)
BBSAK (Version: 1.9.11)
BlackBerry App World Browser Plugin (Version: 3.0.3.2)
BlackBerry Desktop Software 6.1 (Version: 6.1.0.35)
BlackBerry Device Software v6.0.0 for the BlackBerry 9700 smartphone (Version: 6.0.0.668 (Platform 6.6.0.236))
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Graphics Previews Vista (Version: 2011.0424.2249.39080)
Catalyst Control Center InstallProxy (Version: 2011.0424.2249.39080)
Catalyst Control Center Localization All (Version: 2011.0424.2249.39080)
ccc-core-static (Version: 2011.0424.2249.39080)
ccc-utility (Version: 2011.0424.2249.39080)
CCC Help Chinese Standard (Version: 2011.0424.2248.39080)
CCC Help Chinese Traditional (Version: 2011.0424.2248.39080)
CCC Help Dutch (Version: 2011.0424.2248.39080)
CCC Help English (Version: 2011.0424.2248.39080)
CCC Help French (Version: 2011.0424.2248.39080)
CCC Help German (Version: 2011.0424.2248.39080)
CCC Help Italian (Version: 2011.0424.2248.39080)
CCC Help Japanese (Version: 2011.0424.2248.39080)
CCC Help Korean (Version: 2011.0424.2248.39080)
CCC Help Portuguese (Version: 2011.0424.2248.39080)
CCC Help Spanish (Version: 2011.0424.2248.39080)
CCC Help Swedish (Version: 2011.0424.2248.39080)
CCleaner (Version: 3.25)
Cisco ASDM-IDM Launcher (Version: 1.5.56)
Cisco Virtual Com (Version: 1.00.0000)
Conexant 20561 SmartAudio HD (Version: 4.92.12.0)
D3DX10 (Version: 15.4.2368.0902)
dBpoweramp Midi Decoder
dBpoweramp Music Converter (Version: Release 14.2)
dBpoweramp Ogg Vorbis Codec (Version: Release 21 (Vorbis v1.3.2))
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Digger XP
DisplayFusion 3.4.1 (Version: 3.4.1.0)
DivX Setup (Version: 2.6.1.9)
Duplicate Cleaner 2.1b (Version: 2.1b)
DWG TrueView 2013 (Version: 19.0.55.0)
EasyBCD 2.2 (Version: 2.2)
Eraser 6.0.9.2343 (Version: 6.0.2343)
Everything 1.2.1.371
FFmpeg v0.6.2 for Audacity
FileZilla Client 3.5.3 (Version: 3.5.3)
Free Download Manager 3.9.2
FWTools 2.4.7
GIMP 2.8.2 (Version: 2.8.2)
Global Mapper 14 (Version: 14.00.0010)
GNS3 0.8.2 (Version: 0.8.2)
Gorilla 2
GTK2-Runtime (Version: 2.24.8-2011-12-03-ash)
Hotspot Shield 2.78 (Version: 2.78)
HxD Hex Editor version 1.7.7.0 (Version: 1.7.7.0)
ImgBurn (Version: 2.5.6.0)
InfraRecorder
Inkscape 0.48.3.1 (Version: 0.48.3.1)
inSSIDer (Version: 2.1.5)
InstallVC90Support (Version: 1.01.0000)
Intel PROSet Wireless
Intel® Network Connections Drivers (Version: 16.1)
Intel® PROSet/Wireless WiFi Software (Version: 13.04.0000)
Internet Checkers 2.1
IrfanView (remove only) (Version: 4.30)
Java 2 Runtime Environment Standard Edition v1.3.1_02
Java 7 Update 9 (Version: 7.0.90)
Java Auto Updater (Version: 2.1.9.0)
Java™ 6 Update 31 (Version: 6.0.310)
JavaFX 2.1.1 (Version: 2.1.1)
LAME v3.98.3 for Audacity
Lenovo Auto Scroll Utility (Version: 1.10)
Lenovo Patch Utility (Version: 1.0.1.1)
Lenovo System Interface Driver (Version: 1.05)
LizardTech ExpressView Browser Plug-in (Version: 6.5)
Logitech Gaming Software 5.04 (Version: 5.04.110)
Logos 5 Prerequisites (Version: 5.0.00869)
Logos Bible Software 5 (Version: 5.1.278)
Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100)
MapWindow GIS (Version: 4.8.6)
Media Player Classic - Home Cinema v1.5.2.3456 (Version: 1.5.2.3456)
Microsoft .NET Framework 4.5 (Version: 4.5.50709)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Image Composite Editor (Version: 1.2.0)
Microsoft Mathematics (Version: 4.0)
Microsoft Mathematics Add-in (32-bit) (Version: 2.0.040811.01)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000)
Microsoft Office Project Professional 2003 (Version: 11.0.8173.0)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Visio Professional 2003 (Version: 11.0.8173.0)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (Version: 10.0.40302)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (Version: 10.0.40307)
MidiPiano version 2.1.7 (Version: 2.1.7)
MiniTool Power Data Recovery
Movie Maker (Version: 16.4.3505.0912)
Mozilla Firefox 17.0.1 (x86 en-US) (Version: 17.0.1)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT110 (Version: 16.4.1108.0727)
MSXML4 Parser (Version: 1.0.0)
MyDefrag v4.3.1 (Version: 4.0.0.0)
Net-SNMP 5.6.1.1 (Version: 5.6.1.1)
Notepad++ (Version: 5.9.5)
On Screen Display (Version: 6.60.01)
OpenAL
OutlookFreeware.com Runtime (Version: 2.4.0)
PandoraRecovery (Remove Only)
Panduit Design Tool for Visio (Version: 4.0.3)
PDF-Viewer (Version: 2.5.203.0)
Photo Gallery (Version: 16.4.3505.0912)
PicPick (Version: 3.0.9)
PuTTY version 0.61 (Version: 0.61)
PX Profile Update (Version: 1.00.1.)
PyQt GPL v4.8.3 for Python v2.6 (x86) (Version: 4.8.3-1)
Python 2.6 pywin32-216
Python 2.6.6 (Version: 2.6.6150)
QuickTime (Version: 7.71.80.42)
Recuva (Version: 1.44)
RegMagik (Version: 3.26.4)
ReNamer (Version: 5.60)
RICOH R5U8xx Media Driver ver.3.64.02 (Version: 3.64.02)
Send To Toys v2.6
Star Wars Jedi Knight Jedi Academy
SUPERAntiSpyware (Version: 5.6.1014)
SWF Opener (Version: 1.3)
SyncBack
SynthFont
TablEdit 2.71
TeamViewer 7 (Version: 7.0.12979)
TeraCopy 2.2
Tftpd32 Service Edition (remove only)
The Jazz Midi Sequencer
ThinkPad Bluetooth with Enhanced Data Rate Software (Version: 6.2.1.3100)
ThinkPad FullScreen Magnifier (Version: 2.40)
ThinkPad Modem Adapter (Version: 7.80.8.50)
ThinkPad Power Management Driver (Version: 1.62.00.00)
ThinkPad Power Manager (Version: 3.62)
ThinkPad UltraNav Driver (Version: 15.3.16.1)
ThinkPad UltraNav Utility (Version: 2.13.0)
Ultra Defragmenter (Version: 5.0.4)
UltraVnc (Version: 1.0.9.6.1)
Unlocker 1.9.1 (Version: 1.9.1)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553092)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553385) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2687277) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
VLC media player 2.0.1 (Version: 2.0.1)
VMware Infrastructure Client 2.5 (Version: 2.5.0.64237)
Win7 RnR Sysprep Patch (Version: 1.00.0001)
Winamp (Version: 5.623 )
Windows Driver Package - Broadcom (BTHUSB) Bluetooth (04/08/2010 6.3.5.430) (Version: 04/08/2010 6.3.5.430)
Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) (Version: 07/28/2009 6.2.0.9800)
Windows Live Communications Platform (Version: 16.4.3505.0912)
Windows Live Essentials (Version: 16.4.3505.0912)
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0)
Windows Live Installer (Version: 16.4.3505.0912)
Windows Live Photo Common (Version: 16.4.3505.0912)
Windows Live PIMT Platform (Version: 16.4.3505.0912)
Windows Live SOXE (Version: 16.4.3505.0912)
Windows Live SOXE Definitions (Version: 16.4.3505.0912)
Windows Live UX Platform (Version: 16.4.3505.0912)
Windows Live UX Platform Language Pack (Version: 16.4.3505.0912)
WinMerge 2.12.4 (Version: 2.12.4)
WinPcap 4.1.2 (Version: 4.1.0.2001)
WinSCP 4.3.5 (Version: 4.3.5)
Wireshark 1.6.5 (Version: 1.6.5)
Xirrus Wi-Fi Inspector (Version: 1.2.0000)

========================= Memory info: ===================================

Percentage of memory in use: 28%
Total physical RAM: 3030.02 MB
Available physical RAM: 2174.71 MB
Total Pagefile: 6058.33 MB
Available Pagefile: 4885.62 MB
Total Virtual: 2047.88 MB
Available Virtual: 1925.88 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:148.95 GB) (Free:56.25 GB) NTFS

========================= Users: ========================================

User accounts for \\XXXX-XXXXX

Administrator XXXXXXXX Guest


**** End of log ****


==========================ADWCLEANER

# AdwCleaner v2.105 - Logfile created 01/10/2013 at 22:31:42
# Updated 08/01/2013 by Xplode
# Operating system : Windows 7 Enterprise Service Pack 1 (32 bits)
# User : XXXXXXXX - XXXX-XXXXX
# Boot Mode : Normal
# Running from : C:\Users\XXXXXXXX\Desktop\AdwCleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****


***** [Registry] *****

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Deleted : HKLM\Software\Conduit

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16457

[OK] Registry is clean.

-\\ Mozilla Firefox v17.0.1 (en-US)

File : C:\Users\XXXXXXXX\AppData\Roaming\Mozilla\Firefox\Profiles\0319e3x9.default\prefs.js

[OK] File is clean.

File : C:\Users\Administrator.XXXX-XXXXX\AppData\Roaming\Mozilla\Firefox\Profiles\3wfa4hjb.default\prefs.js

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [1021 octets] - [10/01/2013 22:31:42]

########## EOF - C:\AdwCleaner[S1].txt - [1081 octets] ##########

#6 3d1l

3d1l
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:12:52 AM

Posted 10 January 2013 - 09:44 PM

Arrrggghh!!! Thought that the ADWCleaner thing fix it because after rebooting the computer I didn't saw the VBS.TV or VICE.COM pages loading automatically and a couple of seconds later just finishing the post and since I already had Firefox running a browser tab opened without being requested and those pages loaded again without my consent.

#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,199 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:52 AM

Posted 10 January 2013 - 10:33 PM

OK, we need to make a new topic "VBS.TV or VICE.COM pages keep loading"

To find where they are we need to see a DDS log.

Please follow this Preparation Guide and post in a new topic.

Let me know if all went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 3d1l

3d1l
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:12:52 AM

Posted 11 January 2013 - 07:40 PM

Done a new message has been posted as instructed. DDS log reports that there could be a possible TDL3 infection.

Here is the post - VBS.TV or VICE.COM pages keep loading at startup unauthorized

#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,199 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:52 AM

Posted 11 January 2013 - 08:35 PM

Perfect!

Now that your log is properly posted, you should NOT make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by a Malware Removal Team member, nor should you continue to ask for help elsewhere. Doing so can result in system changes which may not show it the log you already posted. Further, any modifications you make on your own may cause confusion for the helper assisting you and could complicate the malware removal process which would extend the time it takes to clean your computer.

From this point on the Malware Removal Team should be the only members that you take advice from, until they have verified your log as clean.

Please be patient. It may take a while to get a response because the Malware Removal Team members are very busy working logs posted before yours. They are volunteers who will help you out as soon as possible. Once you have made your post and are waiting, please DO NOT make another reply until it has been responded to by a member of the Malware Removal Team. Generally the staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response there will be 1 reply. A team member, looking for a new log to work may assume another MRL Team member is already assisting you and not open the thread to respond.

The current wait time is 1 - 2 days and ALL logs are answered.

If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.

To avoid confusion, I am closing this topic.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users