Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Mass Redirects and Browser popups


  • Please log in to reply
8 replies to this topic

#1 AndyMan315

AndyMan315

  • Members
  • 120 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Syracuse, NY
  • Local time:05:39 PM

Posted 12 January 2013 - 06:25 PM

Title pretty much sums it up. The ads on my browsers are in the bottom left and right corners of my webpages. I have and use MBAM registered version. It has found trojans and stuff a lot in the past 2 weeks. What should I run and what logs should I post. Haven't had a problem in a while before this. Haven't used torrents in a long time either.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:39 PM

Posted 12 January 2013 - 06:49 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 AndyMan315

AndyMan315
  • Topic Starter

  • Members
  • 120 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Syracuse, NY
  • Local time:05:39 PM

Posted 13 January 2013 - 10:15 AM

TDSS

21:19:29.0229 4516 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
21:19:29.0588 4516 ============================================================
21:19:29.0588 4516 Current date / time: 2013/01/12 21:19:29.0588
21:19:29.0588 4516 SystemInfo:
21:19:29.0588 4516
21:19:29.0588 4516 OS Version: 6.1.7600 ServicePack: 0.0
21:19:29.0588 4516 Product type: Workstation
21:19:29.0588 4516 ComputerName: LLAMA-2-PC
21:19:29.0588 4516 UserName: LLAMA-2
21:19:29.0588 4516 Windows directory: C:\Windows
21:19:29.0588 4516 System windows directory: C:\Windows
21:19:29.0588 4516 Running under WOW64
21:19:29.0588 4516 Processor architecture: Intel x64
21:19:29.0588 4516 Number of processors: 4
21:19:29.0588 4516 Page size: 0x1000
21:19:29.0588 4516 Boot type: Normal boot
21:19:29.0588 4516 ============================================================
21:19:30.0367 4516 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:19:30.0384 4516 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:19:30.0387 4516 ============================================================
21:19:30.0387 4516 \Device\Harddisk0\DR0:
21:19:30.0387 4516 MBR partitions:
21:19:30.0387 4516 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
21:19:30.0387 4516 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x129E6800
21:19:30.0388 4516 \Device\Harddisk1\DR1:
21:19:30.0388 4516 MBR partitions:
21:19:30.0388 4516 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
21:19:30.0388 4516 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x746D3800
21:19:30.0388 4516 ============================================================
21:19:30.0411 4516 C: <-> \Device\Harddisk0\DR0\Partition2
21:19:30.0425 4516 E: <-> \Device\Harddisk1\DR1\Partition1
21:19:30.0444 4516 F: <-> \Device\Harddisk1\DR1\Partition2
21:19:30.0444 4516 ============================================================
21:19:30.0444 4516 Initialize success
21:19:30.0444 4516 ============================================================
21:19:31.0966 4728 ============================================================
21:19:31.0966 4728 Scan started
21:19:31.0966 4728 Mode: Manual;
21:19:31.0966 4728 ============================================================
21:19:32.0917 4728 ================ Scan system memory ========================
21:19:32.0917 4728 System memory - ok
21:19:32.0918 4728 ================ Scan services =============================
21:19:32.0993 4728 [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
21:19:32.0995 4728 !SASCORE - ok
21:19:33.0139 4728 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
21:19:33.0142 4728 1394ohci - ok
21:19:33.0161 4728 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
21:19:33.0164 4728 ACPI - ok
21:19:33.0178 4728 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
21:19:33.0179 4728 AcpiPmi - ok
21:19:33.0285 4728 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
21:19:33.0286 4728 AdobeARMservice - ok
21:19:33.0324 4728 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
21:19:33.0332 4728 adp94xx - ok
21:19:33.0342 4728 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
21:19:33.0347 4728 adpahci - ok
21:19:33.0362 4728 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
21:19:33.0365 4728 adpu320 - ok
21:19:33.0393 4728 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
21:19:33.0394 4728 AeLookupSvc - ok
21:19:33.0434 4728 [ B9384E03479D2506BC924C16A3DB87BC ] AFD C:\Windows\system32\drivers\afd.sys
21:19:33.0442 4728 AFD - ok
21:19:33.0464 4728 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
21:19:33.0465 4728 agp440 - ok
21:19:33.0485 4728 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
21:19:33.0487 4728 ALG - ok
21:19:33.0495 4728 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
21:19:33.0496 4728 aliide - ok
21:19:33.0587 4728 ALSysIO - ok
21:19:33.0602 4728 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys
21:19:33.0603 4728 amdide - ok
21:19:33.0617 4728 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
21:19:33.0619 4728 AmdK8 - ok
21:19:33.0623 4728 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
21:19:33.0625 4728 AmdPPM - ok
21:19:33.0642 4728 [ 7A4B413614C055935567CF88A9734D38 ] amdsata C:\Windows\system32\DRIVERS\amdsata.sys
21:19:33.0643 4728 amdsata - ok
21:19:33.0657 4728 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
21:19:33.0660 4728 amdsbs - ok
21:19:33.0679 4728 [ B4AD0CACBAB298671DD6F6EF7E20679D ] amdxata C:\Windows\system32\DRIVERS\amdxata.sys
21:19:33.0679 4728 amdxata - ok
21:19:33.0735 4728 [ B5C0F65D6657C6ADD9ED75EC7583390B ] AnyDVD C:\Windows\system32\Drivers\AnyDVD.sys
21:19:33.0737 4728 AnyDVD - ok
21:19:33.0761 4728 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
21:19:33.0762 4728 AppID - ok
21:19:33.0792 4728 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
21:19:33.0793 4728 AppIDSvc - ok
21:19:33.0797 4728 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
21:19:33.0798 4728 Appinfo - ok
21:19:33.0879 4728 [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:19:33.0880 4728 Apple Mobile Device - ok
21:19:33.0920 4728 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
21:19:33.0922 4728 AppMgmt - ok
21:19:33.0936 4728 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
21:19:33.0937 4728 arc - ok
21:19:33.0954 4728 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
21:19:33.0955 4728 arcsas - ok
21:19:33.0968 4728 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
21:19:33.0969 4728 AsyncMac - ok
21:19:33.0983 4728 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys
21:19:33.0983 4728 atapi - ok
21:19:34.0001 4728 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:19:34.0007 4728 AudioEndpointBuilder - ok
21:19:34.0026 4728 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll
21:19:34.0029 4728 AudioSrv - ok
21:19:34.0065 4728 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
21:19:34.0066 4728 AxInstSV - ok
21:19:34.0086 4728 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
21:19:34.0091 4728 b06bdrv - ok
21:19:34.0131 4728 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
21:19:34.0135 4728 b57nd60a - ok
21:19:34.0179 4728 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
21:19:34.0182 4728 BDESVC - ok
21:19:34.0197 4728 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
21:19:34.0198 4728 Beep - ok
21:19:34.0236 4728 [ 4992C609A6315671463E30F6512BC022 ] BFE C:\Windows\System32\bfe.dll
21:19:34.0245 4728 BFE - ok
21:19:34.0274 4728 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\Windows\System32\qmgr.dll
21:19:34.0284 4728 BITS - ok
21:19:34.0309 4728 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
21:19:34.0310 4728 blbdrive - ok
21:19:34.0447 4728 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
21:19:34.0460 4728 Bonjour Service - ok
21:19:34.0482 4728 [ 91CE0D3DC57DD377E690A2D324022B08 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
21:19:34.0484 4728 bowser - ok
21:19:34.0500 4728 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
21:19:34.0501 4728 BrFiltLo - ok
21:19:34.0519 4728 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
21:19:34.0520 4728 BrFiltUp - ok
21:19:34.0546 4728 [ 94FBC06F294D58D02361918418F996E3 ] Browser C:\Windows\System32\browser.dll
21:19:34.0549 4728 Browser - ok
21:19:34.0576 4728 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
21:19:34.0581 4728 Brserid - ok
21:19:34.0597 4728 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
21:19:34.0599 4728 BrSerWdm - ok
21:19:34.0618 4728 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
21:19:34.0620 4728 BrUsbMdm - ok
21:19:34.0637 4728 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
21:19:34.0638 4728 BrUsbSer - ok
21:19:34.0651 4728 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
21:19:34.0653 4728 BTHMODEM - ok
21:19:34.0675 4728 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
21:19:34.0677 4728 bthserv - ok
21:19:34.0691 4728 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
21:19:34.0692 4728 cdfs - ok
21:19:34.0719 4728 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
21:19:34.0721 4728 cdrom - ok
21:19:34.0745 4728 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
21:19:34.0746 4728 CertPropSvc - ok
21:19:34.0762 4728 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
21:19:34.0763 4728 circlass - ok
21:19:34.0789 4728 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
21:19:34.0795 4728 CLFS - ok
21:19:34.0897 4728 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:19:34.0908 4728 clr_optimization_v2.0.50727_32 - ok
21:19:34.0958 4728 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:19:34.0961 4728 clr_optimization_v2.0.50727_64 - ok
21:19:35.0050 4728 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:19:35.0052 4728 clr_optimization_v4.0.30319_32 - ok
21:19:35.0147 4728 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:19:35.0150 4728 clr_optimization_v4.0.30319_64 - ok
21:19:35.0179 4728 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
21:19:35.0180 4728 CmBatt - ok
21:19:35.0195 4728 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
21:19:35.0196 4728 cmdide - ok
21:19:35.0224 4728 [ F95FD4CB7DA00BA2A63CE9F6B5C053E1 ] CNG C:\Windows\system32\Drivers\cng.sys
21:19:35.0231 4728 CNG - ok
21:19:35.0248 4728 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
21:19:35.0248 4728 Compbatt - ok
21:19:35.0278 4728 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
21:19:35.0279 4728 CompositeBus - ok
21:19:35.0289 4728 COMSysApp - ok
21:19:35.0306 4728 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
21:19:35.0306 4728 crcdisk - ok
21:19:35.0331 4728 [ 8C57411B66282C01533CB776F98AD384 ] CryptSvc C:\Windows\system32\cryptsvc.dll
21:19:35.0333 4728 CryptSvc - ok
21:19:35.0369 4728 [ 4A6173C2279B498CD8F57CAE504564CB ] CSC C:\Windows\system32\drivers\csc.sys
21:19:35.0377 4728 CSC - ok
21:19:35.0398 4728 [ 873FBF927C06E5CEE04DEC617502F8FD ] CscService C:\Windows\System32\cscsvc.dll
21:19:35.0405 4728 CscService - ok
21:19:35.0439 4728 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
21:19:35.0445 4728 DcomLaunch - ok
21:19:35.0478 4728 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
21:19:35.0483 4728 defragsvc - ok
21:19:35.0493 4728 [ 3F1DC527070ACB87E40AFE46EF6DA749 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
21:19:35.0494 4728 DfsC - ok
21:19:35.0532 4728 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
21:19:35.0537 4728 Dhcp - ok
21:19:35.0558 4728 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
21:19:35.0559 4728 discache - ok
21:19:35.0588 4728 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
21:19:35.0590 4728 Disk - ok
21:19:35.0602 4728 [ 676108C4E3AA6F6B34633748BD0BEBD9 ] Dnscache C:\Windows\System32\dnsrslvr.dll
21:19:35.0615 4728 Dnscache - ok
21:19:35.0632 4728 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
21:19:35.0636 4728 dot3svc - ok
21:19:35.0689 4728 [ B42ED0320C6E41102FDE0005154849BB ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
21:19:35.0704 4728 Dot4 - ok
21:19:35.0736 4728 [ 85135AD27E79B689335C08167D917CDE ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
21:19:35.0737 4728 Dot4Print - ok
21:19:35.0750 4728 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
21:19:35.0751 4728 dot4usb - ok
21:19:35.0758 4728 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
21:19:35.0762 4728 DPS - ok
21:19:35.0792 4728 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
21:19:35.0793 4728 drmkaud - ok
21:19:35.0830 4728 [ 7CB7D2B73813CE05C7BC0F5F95D27CEC ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
21:19:35.0846 4728 DXGKrnl - ok
21:19:35.0916 4728 [ 324FCD2DD8A4229DDEF3CC954FF12FA5 ] e1kexpress C:\Windows\system32\DRIVERS\e1k62x64.sys
21:19:35.0924 4728 e1kexpress - ok
21:19:35.0959 4728 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
21:19:35.0968 4728 EapHost - ok
21:19:36.0046 4728 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
21:19:36.0093 4728 ebdrv - ok
21:19:36.0125 4728 [ 0793F40B9B8A1BDD266296409DBD91EA ] EFS C:\Windows\System32\lsass.exe
21:19:36.0126 4728 EFS - ok
21:19:36.0175 4728 [ B91D81B3B54A54CCAFC03733DBC2E29E ] ehRecvr C:\Windows\ehome\ehRecvr.exe
21:19:36.0181 4728 ehRecvr - ok
21:19:36.0195 4728 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
21:19:36.0196 4728 ehSched - ok
21:19:36.0237 4728 [ A05FC7ECA0966EBB70E4D17B855A853B ] ElbyCDIO C:\Windows\system32\Drivers\ElbyCDIO.sys
21:19:36.0238 4728 ElbyCDIO - ok
21:19:36.0267 4728 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
21:19:36.0273 4728 elxstor - ok
21:19:36.0285 4728 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
21:19:36.0286 4728 ErrDev - ok
21:19:36.0308 4728 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
21:19:36.0312 4728 EventSystem - ok
21:19:36.0369 4728 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
21:19:36.0373 4728 exfat - ok
21:19:36.0391 4728 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
21:19:36.0394 4728 fastfat - ok
21:19:36.0439 4728 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
21:19:36.0448 4728 Fax - ok
21:19:36.0468 4728 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
21:19:36.0469 4728 fdc - ok
21:19:36.0498 4728 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
21:19:36.0499 4728 fdPHost - ok
21:19:36.0512 4728 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
21:19:36.0514 4728 FDResPub - ok
21:19:36.0534 4728 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
21:19:36.0535 4728 FileInfo - ok
21:19:36.0551 4728 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
21:19:36.0552 4728 Filetrace - ok
21:19:36.0567 4728 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
21:19:36.0568 4728 flpydisk - ok
21:19:36.0584 4728 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
21:19:36.0588 4728 FltMgr - ok
21:19:36.0620 4728 [ 8AC4CB4EA61E41009FAE9AE7B2B5DA3A ] FontCache C:\Windows\system32\FntCache.dll
21:19:36.0649 4728 FontCache - ok
21:19:36.0695 4728 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:19:36.0696 4728 FontCache3.0.0.0 - ok
21:19:36.0706 4728 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
21:19:36.0707 4728 FsDepends - ok
21:19:36.0718 4728 [ E95EF8547DE20CF0603557C0CF7A9462 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
21:19:36.0718 4728 Fs_Rec - ok
21:19:36.0749 4728 [ B8B2A6E1558F8F5DE5CE431C5B2C7B09 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
21:19:36.0751 4728 fvevol - ok
21:19:36.0775 4728 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
21:19:36.0776 4728 gagp30kx - ok
21:19:36.0842 4728 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:19:36.0851 4728 GEARAspiWDM - ok
21:19:36.0879 4728 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
21:19:36.0887 4728 gpsvc - ok
21:19:36.0986 4728 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:19:36.0988 4728 gupdate - ok
21:19:37.0002 4728 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:19:37.0002 4728 gupdatem - ok
21:19:37.0030 4728 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
21:19:37.0031 4728 hamachi - ok
21:19:37.0147 4728 [ 785FD63B74B30986A9F2C7D965CA509F ] Hamachi2Svc C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
21:19:37.0181 4728 Hamachi2Svc - ok
21:19:37.0203 4728 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
21:19:37.0204 4728 hcw85cir - ok
21:19:37.0237 4728 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:19:37.0240 4728 HdAudAddService - ok
21:19:37.0259 4728 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
21:19:37.0260 4728 HDAudBus - ok
21:19:37.0273 4728 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
21:19:37.0274 4728 HidBatt - ok
21:19:37.0286 4728 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
21:19:37.0287 4728 HidBth - ok
21:19:37.0309 4728 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
21:19:37.0310 4728 HidIr - ok
21:19:37.0341 4728 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
21:19:37.0342 4728 hidserv - ok
21:19:37.0370 4728 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
21:19:37.0371 4728 HidUsb - ok
21:19:37.0412 4728 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
21:19:37.0413 4728 hkmsvc - ok
21:19:37.0418 4728 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
21:19:37.0421 4728 HomeGroupListener - ok
21:19:37.0443 4728 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
21:19:37.0445 4728 HomeGroupProvider - ok
21:19:37.0461 4728 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
21:19:37.0462 4728 HpSAMD - ok
21:19:37.0539 4728 [ 5ECEC779312AD35B1B19951A4B53FAC1 ] HPSLPSVC C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
21:19:37.0549 4728 HPSLPSVC - ok
21:19:37.0569 4728 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
21:19:37.0575 4728 HTTP - ok
21:19:37.0589 4728 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
21:19:37.0590 4728 hwpolicy - ok
21:19:37.0608 4728 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
21:19:37.0609 4728 i8042prt - ok
21:19:37.0627 4728 [ D83EFB6FD45DF9D55E9A1AFC63640D50 ] iaStorV C:\Windows\system32\DRIVERS\iaStorV.sys
21:19:37.0631 4728 iaStorV - ok
21:19:37.0669 4728 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:19:37.0677 4728 idsvc - ok
21:19:37.0686 4728 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
21:19:37.0687 4728 iirsp - ok
21:19:37.0726 4728 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
21:19:37.0734 4728 IKEEXT - ok
21:19:37.0761 4728 [ 4A9EB8AC8959C580ADCADDBDBBEBE033 ] Intel® PROSet Monitoring Service C:\Windows\system32\IProsetMonitor.exe
21:19:37.0763 4728 Intel® PROSet Monitoring Service - ok
21:19:37.0778 4728 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
21:19:37.0778 4728 intelide - ok
21:19:37.0790 4728 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
21:19:37.0791 4728 intelppm - ok
21:19:37.0804 4728 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
21:19:37.0806 4728 IPBusEnum - ok
21:19:37.0823 4728 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:19:37.0824 4728 IpFilterDriver - ok
21:19:37.0867 4728 [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
21:19:37.0872 4728 iphlpsvc - ok
21:19:37.0889 4728 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
21:19:37.0890 4728 IPMIDRV - ok
21:19:37.0907 4728 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
21:19:37.0909 4728 IPNAT - ok
21:19:37.0977 4728 [ 50D6CCC6FF5561F9F56946B3E6164FB8 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
21:19:37.0986 4728 iPod Service - ok
21:19:38.0012 4728 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
21:19:38.0013 4728 IRENUM - ok
21:19:38.0033 4728 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
21:19:38.0034 4728 isapnp - ok
21:19:38.0073 4728 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
21:19:38.0076 4728 iScsiPrt - ok
21:19:38.0094 4728 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
21:19:38.0095 4728 kbdclass - ok
21:19:38.0115 4728 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
21:19:38.0116 4728 kbdhid - ok
21:19:38.0125 4728 [ 0793F40B9B8A1BDD266296409DBD91EA ] KeyIso C:\Windows\system32\lsass.exe
21:19:38.0126 4728 KeyIso - ok
21:19:38.0140 4728 [ E8B6FCC9C83535C67F835D407620BD27 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
21:19:38.0141 4728 KSecDD - ok
21:19:38.0158 4728 [ BBE1BF6D9B661C354D4857D5FADB943B ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
21:19:38.0160 4728 KSecPkg - ok
21:19:38.0176 4728 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
21:19:38.0177 4728 ksthunk - ok
21:19:38.0234 4728 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
21:19:38.0240 4728 KtmRm - ok
21:19:38.0263 4728 [ C926920B8978DE6ACFE9E15C709E9B57 ] LanmanServer C:\Windows\system32\srvsvc.dll
21:19:38.0267 4728 LanmanServer - ok
21:19:38.0280 4728 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:19:38.0282 4728 LanmanWorkstation - ok
21:19:38.0310 4728 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
21:19:38.0311 4728 lltdio - ok
21:19:38.0334 4728 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
21:19:38.0337 4728 lltdsvc - ok
21:19:38.0362 4728 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
21:19:38.0363 4728 lmhosts - ok
21:19:38.0390 4728 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
21:19:38.0392 4728 LSI_FC - ok
21:19:38.0398 4728 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
21:19:38.0399 4728 LSI_SAS - ok
21:19:38.0411 4728 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
21:19:38.0412 4728 LSI_SAS2 - ok
21:19:38.0428 4728 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
21:19:38.0429 4728 LSI_SCSI - ok
21:19:38.0449 4728 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
21:19:38.0450 4728 luafv - ok
21:19:38.0503 4728 [ 92EB844D90615CB266F84C3202B8786E ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
21:19:38.0504 4728 MBAMProtector - ok
21:19:38.0586 4728 [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
21:19:38.0590 4728 MBAMScheduler - ok
21:19:38.0647 4728 [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
21:19:38.0653 4728 MBAMService - ok
21:19:38.0676 4728 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
21:19:38.0677 4728 Mcx2Svc - ok
21:19:38.0692 4728 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
21:19:38.0693 4728 megasas - ok
21:19:38.0704 4728 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
21:19:38.0707 4728 MegaSR - ok
21:19:38.0731 4728 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
21:19:38.0733 4728 MMCSS - ok
21:19:38.0746 4728 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
21:19:38.0747 4728 Modem - ok
21:19:38.0770 4728 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
21:19:38.0771 4728 monitor - ok
21:19:38.0797 4728 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
21:19:38.0798 4728 mouclass - ok
21:19:38.0810 4728 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
21:19:38.0811 4728 mouhid - ok
21:19:38.0833 4728 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
21:19:38.0833 4728 mountmgr - ok
21:19:38.0878 4728 [ 730A519505621DF46BCBF9CDAC9FB6AD ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
21:19:38.0879 4728 MozillaMaintenance - ok
21:19:38.0899 4728 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys
21:19:38.0901 4728 mpio - ok
21:19:38.0928 4728 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
21:19:38.0929 4728 mpsdrv - ok
21:19:38.0950 4728 [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc C:\Windows\system32\mpssvc.dll
21:19:38.0958 4728 MpsSvc - ok
21:19:38.0974 4728 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
21:19:38.0976 4728 MRxDAV - ok
21:19:38.0992 4728 [ CFDCD8CA87C2A657DEBC150AC35B5E08 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
21:19:38.0993 4728 mrxsmb - ok
21:19:39.0008 4728 [ 1BEE517B220B7F024F411AEC1571DD5A ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:19:39.0010 4728 mrxsmb10 - ok
21:19:39.0023 4728 [ 6B2D5FEF385828B6E485C1C90AFB8195 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:19:39.0024 4728 mrxsmb20 - ok
21:19:39.0035 4728 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
21:19:39.0036 4728 msahci - ok
21:19:39.0054 4728 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
21:19:39.0055 4728 msdsm - ok
21:19:39.0070 4728 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
21:19:39.0072 4728 MSDTC - ok
21:19:39.0110 4728 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
21:19:39.0110 4728 Msfs - ok
21:19:39.0124 4728 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
21:19:39.0124 4728 mshidkmdf - ok
21:19:39.0132 4728 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
21:19:39.0132 4728 msisadrv - ok
21:19:39.0163 4728 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
21:19:39.0165 4728 MSiSCSI - ok
21:19:39.0167 4728 msiserver - ok
21:19:39.0192 4728 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
21:19:39.0192 4728 MSKSSRV - ok
21:19:39.0213 4728 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
21:19:39.0214 4728 MSPCLOCK - ok
21:19:39.0240 4728 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
21:19:39.0241 4728 MSPQM - ok
21:19:39.0258 4728 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
21:19:39.0261 4728 MsRPC - ok
21:19:39.0280 4728 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
21:19:39.0281 4728 mssmbios - ok
21:19:39.0294 4728 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
21:19:39.0295 4728 MSTEE - ok
21:19:39.0311 4728 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
21:19:39.0311 4728 MTConfig - ok
21:19:39.0327 4728 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
21:19:39.0328 4728 Mup - ok
21:19:39.0357 4728 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
21:19:39.0362 4728 napagent - ok
21:19:39.0395 4728 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
21:19:39.0399 4728 NativeWifiP - ok
21:19:39.0431 4728 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\Windows\system32\drivers\ndis.sys
21:19:39.0439 4728 NDIS - ok
21:19:39.0467 4728 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
21:19:39.0468 4728 NdisCap - ok
21:19:39.0488 4728 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
21:19:39.0489 4728 NdisTapi - ok
21:19:39.0520 4728 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
21:19:39.0522 4728 Ndisuio - ok
21:19:39.0542 4728 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
21:19:39.0545 4728 NdisWan - ok
21:19:39.0559 4728 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
21:19:39.0560 4728 NDProxy - ok
21:19:39.0596 4728 [ DC6530A291D4BDF6DF399F1F128E7F8F ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
21:19:39.0598 4728 Net Driver HPZ12 - ok
21:19:39.0616 4728 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
21:19:39.0617 4728 NetBIOS - ok
21:19:39.0635 4728 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
21:19:39.0638 4728 NetBT - ok
21:19:39.0649 4728 [ 0793F40B9B8A1BDD266296409DBD91EA ] Netlogon C:\Windows\system32\lsass.exe
21:19:39.0651 4728 Netlogon - ok
21:19:39.0679 4728 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
21:19:39.0685 4728 Netman - ok
21:19:39.0700 4728 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
21:19:39.0707 4728 netprofm - ok
21:19:39.0733 4728 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:19:39.0735 4728 NetTcpPortSharing - ok
21:19:39.0757 4728 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
21:19:39.0758 4728 nfrd960 - ok
21:19:39.0786 4728 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
21:19:39.0791 4728 NlaSvc - ok
21:19:39.0802 4728 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
21:19:39.0802 4728 Npfs - ok
21:19:39.0820 4728 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
21:19:39.0822 4728 nsi - ok
21:19:39.0848 4728 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
21:19:39.0850 4728 nsiproxy - ok
21:19:39.0889 4728 [ 356698A13C4630D5B31C37378D469196 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
21:19:39.0928 4728 Ntfs - ok
21:19:39.0958 4728 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
21:19:39.0969 4728 Null - ok
21:19:40.0006 4728 [ 1F07B814C0BB5AABA703ABFF1F31F2E8 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
21:19:40.0008 4728 NVHDA - ok
21:19:40.0260 4728 [ 5104BAC2DA2A5BDD86AC6B0708B00F06 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:19:40.0464 4728 nvlddmkm - ok
21:19:40.0491 4728 [ 3E38712941E9BB4DDBEE00AFFE3FED3D ] nvraid C:\Windows\system32\DRIVERS\nvraid.sys
21:19:40.0493 4728 nvraid - ok
21:19:40.0518 4728 [ 477DC4D6DEB99BE37084C9AC6D013DA1 ] nvstor C:\Windows\system32\DRIVERS\nvstor.sys
21:19:40.0520 4728 nvstor - ok
21:19:40.0567 4728 [ DDFAFCE89A5C93D04712B86F94E9FCBA ] nvsvc C:\Windows\system32\nvvsvc.exe
21:19:40.0576 4728 nvsvc - ok
21:19:40.0629 4728 [ 84E035225474E48CD3A6A3CE52332095 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
21:19:40.0654 4728 nvUpdatusService - ok
21:19:40.0685 4728 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
21:19:40.0686 4728 nv_agp - ok
21:19:40.0713 4728 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
21:19:40.0715 4728 ohci1394 - ok
21:19:40.0776 4728 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:19:40.0778 4728 ose - ok
21:19:40.0932 4728 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
21:19:40.0953 4728 osppsvc - ok
21:19:40.0989 4728 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
21:19:40.0993 4728 p2pimsvc - ok
21:19:41.0020 4728 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
21:19:41.0026 4728 p2psvc - ok
21:19:41.0039 4728 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
21:19:41.0040 4728 Parport - ok
21:19:41.0048 4728 [ 7DAA117143316C4A1537E074A5A9EAF0 ] partmgr C:\Windows\system32\drivers\partmgr.sys
21:19:41.0049 4728 partmgr - ok
21:19:41.0063 4728 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
21:19:41.0066 4728 PcaSvc - ok
21:19:41.0082 4728 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\DRIVERS\pci.sys
21:19:41.0084 4728 pci - ok
21:19:41.0099 4728 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\DRIVERS\pciide.sys
21:19:41.0099 4728 pciide - ok
21:19:41.0117 4728 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
21:19:41.0119 4728 pcmcia - ok
21:19:41.0135 4728 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
21:19:41.0135 4728 pcw - ok
21:19:41.0154 4728 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
21:19:41.0161 4728 PEAUTH - ok
21:19:41.0198 4728 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
21:19:41.0224 4728 PeerDistSvc - ok
21:19:41.0307 4728 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
21:19:41.0309 4728 PerfHost - ok
21:19:41.0435 4728 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll
21:19:41.0463 4728 pla - ok
21:19:41.0650 4728 [ 23157D583244400E1D7FBAEE2E4B31B7 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
21:19:41.0669 4728 PlugPlay - ok
21:19:41.0715 4728 [ 71F62C51DFDFBC04C83C5C64B2B8058E ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
21:19:41.0717 4728 Pml Driver HPZ12 - ok
21:19:41.0728 4728 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
21:19:41.0729 4728 PNRPAutoReg - ok
21:19:41.0748 4728 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
21:19:41.0750 4728 PNRPsvc - ok
21:19:41.0780 4728 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
21:19:41.0786 4728 PolicyAgent - ok
21:19:41.0798 4728 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
21:19:41.0802 4728 Power - ok
21:19:41.0819 4728 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
21:19:41.0821 4728 PptpMiniport - ok
21:19:41.0851 4728 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
21:19:41.0853 4728 Processor - ok
21:19:41.0870 4728 [ F381975E1F4346DE875CB07339CE8D3A ] ProfSvc C:\Windows\system32\profsvc.dll
21:19:41.0875 4728 ProfSvc - ok
21:19:41.0892 4728 [ 0793F40B9B8A1BDD266296409DBD91EA ] ProtectedStorage C:\Windows\system32\lsass.exe
21:19:41.0894 4728 ProtectedStorage - ok
21:19:41.0910 4728 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
21:19:41.0912 4728 Psched - ok
21:19:41.0950 4728 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
21:19:41.0975 4728 ql2300 - ok
21:19:41.0986 4728 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
21:19:41.0989 4728 ql40xx - ok
21:19:42.0013 4728 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
21:19:42.0017 4728 QWAVE - ok
21:19:42.0027 4728 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
21:19:42.0028 4728 QWAVEdrv - ok
21:19:42.0046 4728 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
21:19:42.0047 4728 RasAcd - ok
21:19:42.0075 4728 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
21:19:42.0076 4728 RasAgileVpn - ok
21:19:42.0098 4728 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
21:19:42.0101 4728 RasAuto - ok
21:19:42.0113 4728 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
21:19:42.0115 4728 Rasl2tp - ok
21:19:42.0141 4728 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll
21:19:42.0147 4728 RasMan - ok
21:19:42.0159 4728 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
21:19:42.0160 4728 RasPppoe - ok
21:19:42.0177 4728 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
21:19:42.0179 4728 RasSstp - ok
21:19:42.0211 4728 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
21:19:42.0214 4728 rdbss - ok
21:19:42.0228 4728 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
21:19:42.0229 4728 rdpbus - ok
21:19:42.0255 4728 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
21:19:42.0256 4728 RDPCDD - ok
21:19:42.0281 4728 [ 9706B84DBABFC4B4CA46C5A82B14DFA3 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
21:19:42.0284 4728 RDPDR - ok
21:19:42.0288 4728 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
21:19:42.0289 4728 RDPENCDD - ok
21:19:42.0309 4728 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
21:19:42.0310 4728 RDPREFMP - ok
21:19:42.0333 4728 [ 8A3E6BEA1C53EA6177FE2B6EBA2C80D7 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
21:19:42.0336 4728 RDPWD - ok
21:19:42.0358 4728 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
21:19:42.0361 4728 rdyboost - ok
21:19:42.0387 4728 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
21:19:42.0389 4728 RemoteAccess - ok
21:19:42.0415 4728 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
21:19:42.0419 4728 RemoteRegistry - ok
21:19:42.0438 4728 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
21:19:42.0440 4728 RpcEptMapper - ok
21:19:42.0457 4728 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
21:19:42.0459 4728 RpcLocator - ok
21:19:42.0481 4728 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\system32\rpcss.dll
21:19:42.0486 4728 RpcSs - ok
21:19:42.0503 4728 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
21:19:42.0504 4728 rspndr - ok
21:19:42.0531 4728 [ 88AF6E02AB19DF7FD07ECDF9C91E9AF6 ] s3cap C:\Windows\system32\DRIVERS\vms3cap.sys
21:19:42.0532 4728 s3cap - ok
21:19:42.0550 4728 [ 0793F40B9B8A1BDD266296409DBD91EA ] SamSs C:\Windows\system32\lsass.exe
21:19:42.0551 4728 SamSs - ok
21:19:42.0593 4728 [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
21:19:42.0594 4728 SASDIFSV - ok
21:19:42.0611 4728 [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
21:19:42.0611 4728 SASKUTIL - ok
21:19:42.0632 4728 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
21:19:42.0634 4728 sbp2port - ok
21:19:42.0653 4728 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
21:19:42.0657 4728 SCardSvr - ok
21:19:42.0669 4728 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
21:19:42.0670 4728 scfilter - ok
21:19:42.0694 4728 [ EC56B171F85C7E855E7B0588AC503EEA ] Schedule C:\Windows\system32\schedsvc.dll
21:19:42.0720 4728 Schedule - ok
21:19:42.0737 4728 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll
21:19:42.0738 4728 SCPolicySvc - ok
21:19:42.0758 4728 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
21:19:42.0762 4728 SDRSVC - ok
21:19:42.0792 4728 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
21:19:42.0794 4728 secdrv - ok
21:19:42.0799 4728 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll
21:19:42.0801 4728 seclogon - ok
21:19:42.0820 4728 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
21:19:42.0822 4728 SENS - ok
21:19:42.0832 4728 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
21:19:42.0834 4728 SensrSvc - ok
21:19:42.0847 4728 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
21:19:42.0848 4728 Serenum - ok
21:19:42.0875 4728 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
21:19:42.0877 4728 Serial - ok
21:19:42.0895 4728 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
21:19:42.0897 4728 sermouse - ok
21:19:42.0918 4728 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll
21:19:42.0921 4728 SessionEnv - ok
21:19:42.0940 4728 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
21:19:42.0941 4728 sffdisk - ok
21:19:42.0953 4728 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
21:19:42.0954 4728 sffp_mmc - ok
21:19:42.0969 4728 [ 5588B8C6193EB1522490C122EB94DFFA ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
21:19:42.0970 4728 sffp_sd - ok
21:19:42.0978 4728 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
21:19:42.0979 4728 sfloppy - ok
21:19:43.0008 4728 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
21:19:43.0013 4728 SharedAccess - ok
21:19:43.0037 4728 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:19:43.0043 4728 ShellHWDetection - ok
21:19:43.0068 4728 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
21:19:43.0069 4728 SiSRaid2 - ok
21:19:43.0080 4728 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
21:19:43.0082 4728 SiSRaid4 - ok
21:19:43.0211 4728 [ 183F04C6742902F33039913A96F5B574 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
21:19:43.0278 4728 Skype C2C Service - ok
21:19:43.0320 4728 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
21:19:43.0321 4728 SkypeUpdate - ok
21:19:43.0348 4728 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
21:19:43.0361 4728 Smb - ok
21:19:43.0396 4728 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
21:19:43.0399 4728 SNMPTRAP - ok
21:19:43.0411 4728 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
21:19:43.0411 4728 spldr - ok
21:19:43.0434 4728 [ 89E8550C5862999FCF482EA562B0E98E ] Spooler C:\Windows\System32\spoolsv.exe
21:19:43.0442 4728 Spooler - ok
21:19:43.0515 4728 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe
21:19:43.0600 4728 sppsvc - ok
21:19:43.0629 4728 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
21:19:43.0631 4728 sppuinotify - ok
21:19:43.0648 4728 [ EC8F67289105BF270498095F14963464 ] srv C:\Windows\system32\DRIVERS\srv.sys
21:19:43.0653 4728 srv - ok
21:19:43.0662 4728 [ F773D2ED090B7BAA1C1A034F3CA476C8 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
21:19:43.0677 4728 srv2 - ok
21:19:43.0693 4728 [ 26E84D3649019C3244622E654DFCD75B ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
21:19:43.0695 4728 srvnet - ok
21:19:43.0712 4728 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
21:19:43.0715 4728 SSDPSRV - ok
21:19:43.0728 4728 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
21:19:43.0731 4728 SstpSvc - ok
21:19:43.0754 4728 Steam Client Service - ok
21:19:43.0809 4728 [ F0359F7CE712D69ACEF0886BDB4792ED ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
21:19:43.0815 4728 Stereo Service - ok
21:19:43.0830 4728 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
21:19:43.0832 4728 stexstor - ok
21:19:43.0871 4728 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll
21:19:43.0883 4728 stisvc - ok
21:19:43.0907 4728 [ FFD7A6F15B14234B5B0E5D49E7961895 ] storflt C:\Windows\system32\DRIVERS\vmstorfl.sys
21:19:43.0908 4728 storflt - ok
21:19:43.0941 4728 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\Windows\system32\storsvc.dll
21:19:43.0944 4728 StorSvc - ok
21:19:43.0972 4728 [ 8FCCBEFC5C440B3C23454656E551B09A ] storvsc C:\Windows\system32\DRIVERS\storvsc.sys
21:19:43.0974 4728 storvsc - ok
21:19:44.0007 4728 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
21:19:44.0008 4728 swenum - ok
21:19:44.0040 4728 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
21:19:44.0050 4728 swprv - ok
21:19:44.0094 4728 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\Windows\system32\sysmain.dll
21:19:44.0137 4728 SysMain - ok
21:19:44.0152 4728 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:19:44.0155 4728 TabletInputService - ok
21:19:44.0173 4728 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll
21:19:44.0178 4728 TapiSrv - ok
21:19:44.0194 4728 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
21:19:44.0196 4728 TBS - ok
21:19:44.0240 4728 [ 912107716BAB424C7870E8E6AF5E07E1 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
21:19:44.0275 4728 Tcpip - ok
21:19:44.0317 4728 [ 912107716BAB424C7870E8E6AF5E07E1 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
21:19:44.0329 4728 TCPIP6 - ok
21:19:44.0344 4728 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
21:19:44.0345 4728 tcpipreg - ok
21:19:44.0367 4728 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
21:19:44.0368 4728 TDPIPE - ok
21:19:44.0382 4728 [ E4245BDA3190A582D55ED09E137401A9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
21:19:44.0383 4728 TDTCP - ok
21:19:44.0397 4728 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
21:19:44.0398 4728 tdx - ok
21:19:44.0531 4728 [ 9F3E7CABE86BBDECA009DE291DB6D9E2 ] TeamViewer8 C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
21:19:44.0550 4728 TeamViewer8 - ok
21:19:44.0569 4728 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
21:19:44.0570 4728 TermDD - ok
21:19:44.0609 4728 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll
21:19:44.0633 4728 TermService - ok
21:19:44.0650 4728 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
21:19:44.0653 4728 Themes - ok
21:19:44.0665 4728 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
21:19:44.0668 4728 THREADORDER - ok
21:19:44.0680 4728 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
21:19:44.0684 4728 TrkWks - ok
21:19:44.0728 4728 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:19:44.0730 4728 TrustedInstaller - ok
21:19:44.0739 4728 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
21:19:44.0740 4728 tssecsrv - ok
21:19:44.0755 4728 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
21:19:44.0756 4728 tunnel - ok
21:19:44.0784 4728 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
21:19:44.0785 4728 uagp35 - ok
21:19:44.0803 4728 [ D47BAEAD86C65D4F4069D7CE0A4EDCEB ] udfs C:\Windows\system32\DRIVERS\udfs.sys
21:19:44.0807 4728 udfs - ok
21:19:44.0815 4728 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
21:19:44.0817 4728 UI0Detect - ok
21:19:44.0847 4728 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
21:19:44.0849 4728 uliagpkx - ok
21:19:44.0869 4728 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
21:19:44.0870 4728 umbus - ok
21:19:44.0886 4728 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
21:19:44.0887 4728 UmPass - ok
21:19:44.0912 4728 [ AF0AC98EE5077EB844413EB54287FDE3 ] UmRdpService C:\Windows\System32\umrdp.dll
21:19:44.0915 4728 UmRdpService - ok
21:19:44.0931 4728 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
21:19:44.0936 4728 upnphost - ok
21:19:44.0978 4728 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
21:19:44.0979 4728 USBAAPL64 - ok
21:19:45.0027 4728 [ 77B01BC848298223A95D4EC23E1785A1 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
21:19:45.0030 4728 usbaudio - ok
21:19:45.0044 4728 [ B26AFB54A534D634523C4FB66765B026 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
21:19:45.0046 4728 usbccgp - ok
21:19:45.0069 4728 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
21:19:45.0071 4728 usbcir - ok
21:19:45.0092 4728 [ 2EA4AFF7BE7EB4632E3AA8595B0803B5 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
21:19:45.0094 4728 usbehci - ok
21:19:45.0108 4728 [ 4C9042B8DF86C1E8E6240C218B99B39B ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
21:19:45.0114 4728 usbhub - ok
21:19:45.0132 4728 [ 58E546BBAF87664FC57E0F6081E4F609 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
21:19:45.0134 4728 usbohci - ok
21:19:45.0150 4728 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
21:19:45.0151 4728 usbprint - ok
21:19:45.0192 4728 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
21:19:45.0193 4728 usbscan - ok
21:19:45.0201 4728 [ 080D3820DA6C046BE82FC8B45A893E83 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:19:45.0203 4728 USBSTOR - ok
21:19:45.0218 4728 [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
21:19:45.0219 4728 usbuhci - ok
21:19:45.0246 4728 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
21:19:45.0248 4728 UxSms - ok
21:19:45.0258 4728 [ 0793F40B9B8A1BDD266296409DBD91EA ] VaultSvc C:\Windows\system32\lsass.exe
21:19:45.0260 4728 VaultSvc - ok
21:19:45.0284 4728 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
21:19:45.0285 4728 vdrvroot - ok
21:19:45.0309 4728 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\Windows\System32\vds.exe
21:19:45.0320 4728 vds - ok
21:19:45.0340 4728 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
21:19:45.0342 4728 vga - ok
21:19:45.0371 4728 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
21:19:45.0373 4728 VgaSave - ok
21:19:45.0391 4728 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
21:19:45.0394 4728 vhdmp - ok
21:19:45.0412 4728 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
21:19:45.0413 4728 viaide - ok
21:19:45.0447 4728 [ 1501699D7EDA984ABC4155A7DA5738D1 ] vmbus C:\Windows\system32\DRIVERS\vmbus.sys
21:19:45.0449 4728 vmbus - ok
21:19:45.0460 4728 [ AE10C35761889E65A6F7176937C5592C ] VMBusHID C:\Windows\system32\DRIVERS\VMBusHID.sys
21:19:45.0461 4728 VMBusHID - ok
21:19:45.0490 4728 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
21:19:45.0491 4728 volmgr - ok
21:19:45.0505 4728 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
21:19:45.0509 4728 volmgrx - ok
21:19:45.0523 4728 [ 58F82EED8CA24B461441F9C3E4F0BF5C ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
21:19:45.0527 4728 volsnap - ok
21:19:45.0558 4728 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
21:19:45.0560 4728 vsmraid - ok
21:19:45.0610 4728 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\Windows\system32\vssvc.exe
21:19:45.0644 4728 VSS - ok
21:19:45.0673 4728 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
21:19:45.0674 4728 vwifibus - ok
21:19:45.0686 4728 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
21:19:45.0693 4728 W32Time - ok
21:19:45.0729 4728 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
21:19:45.0730 4728 WacomPen - ok
21:19:45.0766 4728 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
21:19:45.0768 4728 WANARP - ok
21:19:45.0780 4728 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
21:19:45.0781 4728 Wanarpv6 - ok
21:19:45.0844 4728 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\Windows\system32\wbengine.exe
21:19:45.0877 4728 wbengine - ok
21:19:45.0921 4728 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
21:19:45.0925 4728 WbioSrvc - ok
21:19:45.0937 4728 [ 8321C2CA3B62B61B293CDA3451984468 ] wcncsvc C:\Windows\System32\wcncsvc.dll
21:19:45.0943 4728 wcncsvc - ok
21:19:45.0960 4728 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:19:45.0962 4728 WcsPlugInService - ok
21:19:45.0978 4728 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
21:19:45.0979 4728 Wd - ok
21:19:46.0006 4728 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
21:19:46.0011 4728 Wdf01000 - ok
21:19:46.0028 4728 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
21:19:46.0030 4728 WdiServiceHost - ok
21:19:46.0036 4728 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
21:19:46.0037 4728 WdiSystemHost - ok
21:19:46.0052 4728 [ 8A438CBB8C032A0C798B0C642FFBE572 ] WebClient C:\Windows\System32\webclnt.dll
21:19:46.0055 4728 WebClient - ok
21:19:46.0067 4728 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
21:19:46.0070 4728 Wecsvc - ok
21:19:46.0084 4728 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
21:19:46.0086 4728 wercplsupport - ok
21:19:46.0114 4728 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
21:19:46.0116 4728 WerSvc - ok
21:19:46.0141 4728 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
21:19:46.0142 4728 WfpLwf - ok
21:19:46.0160 4728 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
21:19:46.0161 4728 WIMMount - ok
21:19:46.0180 4728 WinDefend - ok
21:19:46.0185 4728 WinHttpAutoProxySvc - ok
21:19:46.0233 4728 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
21:19:46.0236 4728 Winmgmt - ok
21:19:46.0292 4728 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\Windows\system32\WsmSvc.dll
21:19:46.0335 4728 WinRM - ok
21:19:46.0390 4728 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
21:19:46.0414 4728 Wlansvc - ok
21:19:46.0451 4728 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
21:19:46.0452 4728 WmiAcpi - ok
21:19:46.0491 4728 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
21:19:46.0494 4728 wmiApSrv - ok
21:19:46.0508 4728 WMPNetworkSvc - ok
21:19:46.0516 4728 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
21:19:46.0518 4728 WPCSvc - ok
21:19:46.0531 4728 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
21:19:46.0534 4728 WPDBusEnum - ok
21:19:46.0542 4728 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
21:19:46.0543 4728 ws2ifsl - ok
21:19:46.0552 4728 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
21:19:46.0555 4728 wscsvc - ok
21:19:46.0604 4728 [ 8D918B1DB190A4D9B1753A66FA8C96E8 ] WSDPrintDevice C:\Windows\system32\DRIVERS\WSDPrint.sys
21:19:46.0605 4728 WSDPrintDevice - ok
21:19:46.0610 4728 WSearch - ok
21:19:46.0673 4728 [ 38340204A2D0228F1E87740FC5E554A7 ] wuauserv C:\Windows\system32\wuaueng.dll
21:19:46.0714 4728 wuauserv - ok
21:19:46.0755 4728 [ 7CADC74271DD6461C452C271B30BD378 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
21:19:46.0788 4728 WudfPf - ok
21:19:46.0880 4728 [ 3B197AF0FFF08AA66B6B2241CA538D64 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
21:19:46.0902 4728 WUDFRd - ok
21:19:46.0919 4728 [ B551D6637AA0E132C18AC6E504F7B79B ] wudfsvc C:\Windows\System32\WUDFSvc.dll
21:19:46.0923 4728 wudfsvc - ok
21:19:46.0943 4728 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
21:19:46.0950 4728 WwanSvc - ok
21:19:46.0965 4728 ================ Scan global ===============================
21:19:46.0993 4728 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
21:19:47.0016 4728 [ 457B44AB6D502E55F64A867D4F35C76C ] C:\Windows\system32\winsrv.dll
21:19:47.0027 4728 [ 457B44AB6D502E55F64A867D4F35C76C ] C:\Windows\system32\winsrv.dll
21:19:47.0048 4728 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
21:19:47.0075 4728 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
21:19:47.0079 4728 [Global] - ok
21:19:47.0080 4728 ================ Scan MBR ==================================
21:19:47.0092 4728 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
21:19:47.0282 4728 \Device\Harddisk0\DR0 - ok
21:19:47.0285 4728 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
21:19:47.0612 4728 \Device\Harddisk1\DR1 - ok
21:19:47.0613 4728 ================ Scan VBR ==================================
21:19:47.0615 4728 [ 2CF04C4A78F935B7F25BF2BFB0358EF8 ] \Device\Harddisk0\DR0\Partition1
21:19:47.0616 4728 \Device\Harddisk0\DR0\Partition1 - ok
21:19:47.0624 4728 [ A97E15E69224CDF226D01782CDF67F3D ] \Device\Harddisk0\DR0\Partition2
21:19:47.0625 4728 \Device\Harddisk0\DR0\Partition2 - ok
21:19:47.0627 4728 [ D28BFA5F3F36B8F7D5917EE3D259CF6D ] \Device\Harddisk1\DR1\Partition1
21:19:47.0629 4728 \Device\Harddisk1\DR1\Partition1 - ok
21:19:47.0630 4728 [ 2869EB00CE29DB2173A9F66B77B8F620 ] \Device\Harddisk1\DR1\Partition2
21:19:47.0631 4728 \Device\Harddisk1\DR1\Partition2 - ok
21:19:47.0632 4728 ============================================================
21:19:47.0632 4728 Scan finished
21:19:47.0632 4728 ============================================================
21:19:47.0640 2652 Detected object count: 0
21:19:47.0640 2652 Actual detected object count: 0
21:21:07.0285 4904 ============================================================
21:21:07.0285 4904 Scan started
21:21:07.0285 4904 Mode: Manual; TDLFS;
21:21:07.0285 4904 ============================================================
21:21:07.0536 4904 ================ Scan system memory ========================
21:21:07.0536 4904 System memory - ok
21:21:07.0537 4904 ================ Scan services =============================
21:21:07.0606 4904 [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
21:21:07.0608 4904 !SASCORE - ok
21:21:07.0738 4904 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
21:21:07.0741 4904 1394ohci - ok
21:21:07.0769 4904 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
21:21:07.0772 4904 ACPI - ok
21:21:07.0785 4904 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
21:21:07.0785 4904 AcpiPmi - ok
21:21:07.0875 4904 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
21:21:07.0876 4904 AdobeARMservice - ok
21:21:07.0905 4904 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
21:21:07.0910 4904 adp94xx - ok
21:21:07.0920 4904 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
21:21:07.0923 4904 adpahci - ok
21:21:07.0944 4904 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
21:21:07.0946 4904 adpu320 - ok
21:21:07.0983 4904 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
21:21:07.0984 4904 AeLookupSvc - ok
21:21:08.0007 4904 [ B9384E03479D2506BC924C16A3DB87BC ] AFD C:\Windows\system32\drivers\afd.sys
21:21:08.0011 4904 AFD - ok
21:21:08.0028 4904 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
21:21:08.0029 4904 agp440 - ok
21:21:08.0034 4904 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
21:21:08.0035 4904 ALG - ok
21:21:08.0052 4904 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
21:21:08.0052 4904 aliide - ok
21:21:08.0102 4904 ALSysIO - ok
21:21:08.0117 4904 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys
21:21:08.0117 4904 amdide - ok
21:21:08.0141 4904 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
21:21:08.0141 4904 AmdK8 - ok
21:21:08.0146 4904 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
21:21:08.0147 4904 AmdPPM - ok
21:21:08.0157 4904 [ 7A4B413614C055935567CF88A9734D38 ] amdsata C:\Windows\system32\DRIVERS\amdsata.sys
21:21:08.0157 4904 amdsata - ok
21:21:08.0172 4904 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
21:21:08.0174 4904 amdsbs - ok
21:21:08.0194 4904 [ B4AD0CACBAB298671DD6F6EF7E20679D ] amdxata C:\Windows\system32\DRIVERS\amdxata.sys
21:21:08.0194 4904 amdxata - ok
21:21:08.0234 4904 [ B5C0F65D6657C6ADD9ED75EC7583390B ] AnyDVD C:\Windows\system32\Drivers\AnyDVD.sys
21:21:08.0235 4904 AnyDVD - ok
21:21:08.0251 4904 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
21:21:08.0252 4904 AppID - ok
21:21:08.0274 4904 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
21:21:08.0274 4904 AppIDSvc - ok
21:21:08.0280 4904 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
21:21:08.0281 4904 Appinfo - ok
21:21:08.0328 4904 [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:21:08.0329 4904 Apple Mobile Device - ok
21:21:08.0361 4904 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
21:21:08.0363 4904 AppMgmt - ok
21:21:08.0384 4904 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
21:21:08.0385 4904 arc - ok
21:21:08.0403 4904 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
21:21:08.0404 4904 arcsas - ok
21:21:08.0416 4904 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
21:21:08.0417 4904 AsyncMac - ok
21:21:08.0431 4904 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys
21:21:08.0431 4904 atapi - ok
21:21:08.0452 4904 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:21:08.0458 4904 AudioEndpointBuilder - ok
21:21:08.0477 4904 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll
21:21:08.0483 4904 AudioSrv - ok
21:21:08.0514 4904 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
21:21:08.0515 4904 AxInstSV - ok
21:21:08.0545 4904 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
21:21:08.0549 4904 b06bdrv - ok
21:21:08.0572 4904 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
21:21:08.0575 4904 b57nd60a - ok
21:21:08.0594 4904 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
21:21:08.0595 4904 BDESVC - ok
21:21:08.0611 4904 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
21:21:08.0612 4904 Beep - ok
21:21:08.0636 4904 [ 4992C609A6315671463E30F6512BC022 ] BFE C:\Windows\System32\bfe.dll
21:21:08.0643 4904 BFE - ok
21:21:08.0674 4904 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\Windows\System32\qmgr.dll
21:21:08.0683 4904 BITS - ok
21:21:08.0698 4904 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
21:21:08.0699 4904 blbdrive - ok
21:21:08.0744 4904 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
21:21:08.0749 4904 Bonjour Service - ok
21:21:08.0764 4904 [ 91CE0D3DC57DD377E690A2D324022B08 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
21:21:08.0765 4904 bowser - ok
21:21:08.0782 4904 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
21:21:08.0782 4904 BrFiltLo - ok
21:21:08.0801 4904 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
21:21:08.0801 4904 BrFiltUp - ok
21:21:08.0819 4904 [ 94FBC06F294D58D02361918418F996E3 ] Browser C:\Windows\System32\browser.dll
21:21:08.0821 4904 Browser - ok
21:21:08.0841 4904 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
21:21:08.0844 4904 Brserid - ok
21:21:08.0862 4904 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
21:21:08.0863 4904 BrSerWdm - ok
21:21:08.0883 4904 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
21:21:08.0884 4904 BrUsbMdm - ok
21:21:08.0902 4904 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
21:21:08.0902 4904 BrUsbSer - ok
21:21:08.0916 4904 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
21:21:08.0917 4904 BTHMODEM - ok
21:21:08.0948 4904 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
21:21:08.0950 4904 bthserv - ok
21:21:08.0964 4904 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
21:21:08.0965 4904 cdfs - ok
21:21:08.0976 4904 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
21:21:08.0978 4904 cdrom - ok
21:21:08.0994 4904 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
21:21:08.0995 4904 CertPropSvc - ok
21:21:09.0010 4904 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
21:21:09.0011 4904 circlass - ok
21:21:09.0037 4904 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
21:21:09.0041 4904 CLFS - ok
21:21:09.0096 4904 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:21:09.0097 4904 clr_optimization_v2.0.50727_32 - ok
21:21:09.0148 4904 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:21:09.0149 4904 clr_optimization_v2.0.50727_64 - ok
21:21:09.0223 4904 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:21:09.0225 4904 clr_optimization_v4.0.30319_32 - ok
21:21:09.0295 4904 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:21:09.0297 4904 clr_optimization_v4.0.30319_64 - ok
21:21:09.0319 4904 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
21:21:09.0319 4904 CmBatt - ok
21:21:09.0326 4904 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
21:21:09.0327 4904 cmdide - ok
21:21:09.0348 4904 [ F95FD4CB7DA00BA2A63CE9F6B5C053E1 ] CNG C:\Windows\system32\Drivers\cng.sys
21:21:09.0352 4904 CNG - ok
21:21:09.0371 4904 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
21:21:09.0371 4904 Compbatt - ok
21:21:09.0393 4904 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
21:21:09.0394 4904 CompositeBus - ok
21:21:09.0400 4904 COMSysApp - ok
21:21:09.0420 4904 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
21:21:09.0421 4904 crcdisk - ok
21:21:09.0447 4904 [ 8C57411B66282C01533CB776F98AD384 ] CryptSvc C:\Windows\system32\cryptsvc.dll
21:21:09.0449 4904 CryptSvc - ok
21:21:09.0475 4904 [ 4A6173C2279B498CD8F57CAE504564CB ] CSC C:\Windows\system32\drivers\csc.sys
21:21:09.0480 4904 CSC - ok
21:21:09.0506 4904 [ 873FBF927C06E5CEE04DEC617502F8FD ] CscService C:\Windows\System32\cscsvc.dll
21:21:09.0513 4904 CscService - ok
21:21:09.0572 4904 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
21:21:09.0578 4904 DcomLaunch - ok
21:21:09.0601 4904 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
21:21:09.0605 4904 defragsvc - ok
21:21:09.0616 4904 [ 3F1DC527070ACB87E40AFE46EF6DA749 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
21:21:09.0617 4904 DfsC - ok
21:21:09.0646 4904 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
21:21:09.0650 4904 Dhcp - ok
21:21:09.0664 4904 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
21:21:09.0665 4904 discache - ok
21:21:09.0678 4904 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
21:21:09.0679 4904 Disk - ok
21:21:09.0692 4904 [ 676108C4E3AA6F6B34633748BD0BEBD9 ] Dnscache C:\Windows\System32\dnsrslvr.dll
21:21:09.0695 4904 Dnscache - ok
21:21:09.0714 4904 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
21:21:09.0717 4904 dot3svc - ok
21:21:09.0762 4904 [ B42ED0320C6E41102FDE0005154849BB ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
21:21:09.0763 4904 Dot4 - ok
21:21:09.0801 4904 [ 85135AD27E79B689335C08167D917CDE ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
21:21:09.0801 4904 Dot4Print - ok
21:21:09.0815 4904 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
21:21:09.0815 4904 dot4usb - ok
21:21:09.0823 4904 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
21:21:09.0825 4904 DPS - ok
21:21:09.0849 4904 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
21:21:09.0849 4904 drmkaud - ok
21:21:09.0886 4904 [ 7CB7D2B73813CE05C7BC0F5F95D27CEC ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
21:21:09.0894 4904 DXGKrnl - ok
21:21:09.0931 4904 [ 324FCD2DD8A4229DDEF3CC954FF12FA5 ] e1kexpress C:\Windows\system32\DRIVERS\e1k62x64.sys
21:21:09.0935 4904 e1kexpress - ok
21:21:09.0965 4904 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
21:21:09.0967 4904 EapHost - ok
21:21:10.0046 4904 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
21:21:10.0071 4904 ebdrv - ok
21:21:10.0098 4904 [ 0793F40B9B8A1BDD266296409DBD91EA ] EFS C:\Windows\System32\lsass.exe
21:21:10.0099 4904 EFS - ok
21:21:10.0151 4904 [ B91D81B3B54A54CCAFC03733DBC2E29E ] ehRecvr C:\Windows\ehome\ehRecvr.exe
21:21:10.0157 4904 ehRecvr - ok
21:21:10.0168 4904 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
21:21:10.0169 4904 ehSched - ok
21:21:10.0186 4904 [ A05FC7ECA0966EBB70E4D17B855A853B ] ElbyCDIO C:\Windows\system32\Drivers\ElbyCDIO.sys
21:21:10.0186 4904 ElbyCDIO - ok
21:21:10.0208 4904 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
21:21:10.0212 4904 elxstor - ok
21:21:10.0225 4904 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
21:21:10.0226 4904 ErrDev - ok
21:21:10.0249 4904 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
21:21:10.0252 4904 EventSystem - ok
21:21:10.0275 4904 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
21:21:10.0277 4904 exfat - ok
21:21:10.0298 4904 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
21:21:10.0299 4904 fastfat - ok
21:21:10.0329 4904 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
21:21:10.0334 4904 Fax - ok
21:21:10.0366 4904 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
21:21:10.0367 4904 fdc - ok
21:21:10.0388 4904 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
21:21:10.0389 4904 fdPHost - ok
21:21:10.0402 4904 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
21:21:10.0403 4904 FDResPub - ok
21:21:10.0415 4904 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
21:21:10.0416 4904 FileInfo - ok
21:21:10.0424 4904 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
21:21:10.0424 4904 Filetrace - ok
21:21:10.0440 4904 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
21:21:10.0441 4904 flpydisk - ok
21:21:10.0458 4904 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
21:21:10.0460 4904 FltMgr - ok
21:21:10.0485 4904 [ 8AC4CB4EA61E41009FAE9AE7B2B5DA3A ] FontCache C:\Windows\system32\FntCache.dll
21:21:10.0493 4904 FontCache - ok
21:21:10.0535 4904 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:21:10.0535 4904 FontCache3.0.0.0 - ok
21:21:10.0546 4904 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
21:21:10.0547 4904 FsDepends - ok
21:21:10.0558 4904 [ E95EF8547DE20CF0603557C0CF7A9462 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
21:21:10.0558 4904 Fs_Rec - ok
21:21:10.0573 4904 [ B8B2A6E1558F8F5DE5CE431C5B2C7B09 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
21:21:10.0575 4904 fvevol - ok
21:21:10.0590 4904 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
21:21:10.0590 4904 gagp30kx - ok
21:21:10.0631 4904 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:21:10.0632 4904 GEARAspiWDM - ok
21:21:10.0660 4904 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
21:21:10.0666 4904 gpsvc - ok
21:21:10.0743 4904 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:21:10.0744 4904 gupdate - ok
21:21:10.0758 4904 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:21:10.0760 4904 gupdatem - ok
21:21:10.0783 4904 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
21:21:10.0783 4904 hamachi - ok
21:21:10.0881 4904 [ 785FD63B74B30986A9F2C7D965CA509F ] Hamachi2Svc C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
21:21:10.0903 4904 Hamachi2Svc - ok
21:21:10.0918 4904 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
21:21:10.0918 4904 hcw85cir - ok
21:21:10.0954 4904 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:21:10.0957 4904 HdAudAddService - ok
21:21:10.0974 4904 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
21:21:10.0975 4904 HDAudBus - ok
21:21:10.0988 4904 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
21:21:10.0989 4904 HidBatt - ok
21:21:11.0001 4904 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
21:21:11.0002 4904 HidBth - ok
21:21:11.0015 4904 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
21:21:11.0016 4904 HidIr - ok
21:21:11.0031 4904 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
21:21:11.0032 4904 hidserv - ok
21:21:11.0043 4904 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
21:21:11.0044 4904 HidUsb - ok
21:21:11.0069 4904 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
21:21:11.0070 4904 hkmsvc - ok
21:21:11.0077 4904 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
21:21:11.0079 4904 HomeGroupListener - ok
21:21:11.0108 4904 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
21:21:11.0111 4904 HomeGroupProvider - ok
21:21:11.0126 4904 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
21:21:11.0127 4904 HpSAMD - ok
21:21:11.0192 4904 [ 5ECEC779312AD35B1B19951A4B53FAC1 ] HPSLPSVC C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
21:21:11.0202 4904 HPSLPSVC - ok
21:21:11.0228 4904 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
21:21:11.0235 4904 HTTP - ok
21:21:11.0246 4904 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
21:21:11.0246 4904 hwpolicy - ok
21:21:11.0265 4904 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
21:21:11.0266 4904 i8042prt - ok
21:21:11.0285 4904 [ D83EFB6FD45DF9D55E9A1AFC63640D50 ] iaStorV C:\Windows\system32\DRIVERS\iaStorV.sys
21:21:11.0289 4904 iaStorV - ok
21:21:11.0337 4904 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:21:11.0345 4904 idsvc - ok
21:21:11.0367 4904 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
21:21:11.0368 4904 iirsp - ok
21:21:11.0411 4904 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
21:21:11.0419 4904 IKEEXT - ok
21:21:11.0460 4904 [ 4A9EB8AC8959C580ADCADDBDBBEBE033 ] Intel® PROSet Monitoring Service C:\Windows\system32\IProsetMonitor.exe
21:21:11.0463 4904 Intel® PROSet Monitoring Service - ok
21:21:11.0485 4904 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
21:21:11.0485 4904 intelide - ok
21:21:11.0505 4904 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
21:21:11.0506 4904 intelppm - ok
21:21:11.0512 4904 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
21:21:11.0515 4904 IPBusEnum - ok
21:21:11.0530 4904 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:21:11.0531 4904 IpFilterDriver - ok
21:21:11.0558 4904 [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
21:21:11.0562 4904 iphlpsvc - ok
21:21:11.0579 4904 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
21:21:11.0580 4904 IPMIDRV - ok
21:21:11.0596 4904 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
21:21:11.0597 4904 IPNAT - ok
21:21:11.0648 4904 [ 50D6CCC6FF5561F9F56946B3E6164FB8 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
21:21:11.0653 4904 iPod Service - ok
21:21:11.0669 4904 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
21:21:11.0669 4904 IRENUM - ok
21:21:11.0689 4904 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
21:21:11.0690 4904 isapnp - ok
21:21:11.0704 4904 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
21:21:11.0706 4904 iScsiPrt - ok
21:21:11.0725 4904 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
21:21:11.0726 4904 kbdclass - ok
21:21:11.0738 4904 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
21:21:11.0739 4904 kbdhid - ok
21:21:11.0748 4904 [ 0793F40B9B8A1BDD266296409DBD91EA ] KeyIso C:\Windows\system32\lsass.exe
21:21:11.0749 4904 KeyIso - ok
21:21:11.0763 4904 [ E8B6FCC9C83535C67F835D407620BD27 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
21:21:11.0764 4904 KSecDD - ok
21:21:11.0773 4904 [ BBE1BF6D9B661C354D4857D5FADB943B ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
21:21:11.0774 4904 KSecPkg - ok
21:21:11.0783 4904 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
21:21:11.0783 4904 ksthunk - ok
21:21:11.0815 4904 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
21:21:11.0819 4904 KtmRm - ok
21:21:11.0853 4904 [ C926920B8978DE6ACFE9E15C709E9B57 ] LanmanServer C:\Windows\system32\srvsvc.dll
21:21:11.0856 4904 LanmanServer - ok
21:21:11.0870 4904 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:21:11.0873 4904 LanmanWorkstation - ok
21:21:11.0884 4904 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
21:21:11.0884 4904 lltdio - ok
21:21:11.0908 4904 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
21:21:11.0910 4904 lltdsvc - ok
21:21:11.0936 4904 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
21:21:11.0937 4904 lmhosts - ok
21:21:11.0955 4904 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
21:21:11.0956 4904 LSI_FC - ok
21:21:11.0971 4904 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
21:21:11.0972 4904 LSI_SAS - ok
21:21:11.0984 4904 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
21:21:11.0985 4904 LSI_SAS2 - ok
21:21:12.0002 4904 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
21:21:12.0003 4904 LSI_SCSI - ok
21:21:12.0023 4904 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
21:21:12.0024 4904 luafv - ok
21:21:12.0068 4904 [ 92EB844D90615CB266F84C3202B8786E ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
21:21:12.0069 4904 MBAMProtector - ok
21:21:12.0144 4904 [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
21:21:12.0148 4904 MBAMScheduler - ok
21:21:12.0190 4904 [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
21:21:12.0196 4904 MBAMService - ok
21:21:12.0224 4904 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
21:21:12.0227 4904 Mcx2Svc - ok
21:21:12.0249 4904 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
21:21:12.0250 4904 megasas - ok
21:21:12.0270 4904 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
21:21:12.0273 4904 MegaSR - ok
21:21:12.0296 4904 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
21:21:12.0299 4904 MMCSS - ok
21:21:12.0320 4904 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
21:21:12.0320 4904 Modem - ok
21:21:12.0335 4904 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
21:21:12.0336 4904 monitor - ok
21:21:12.0354 4904 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
21:21:12.0355 4904 mouclass - ok
21:21:12.0375 4904 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
21:21:12.0376 4904 mouhid - ok
21:21:12.0398 4904 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
21:21:12.0399 4904 mountmgr - ok
21:21:12.0427 4904 [ 730A519505621DF46BCBF9CDAC9FB6AD ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
21:21:12.0428 4904 MozillaMaintenance - ok
21:21:12.0448 4904 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys
21:21:12.0450 4904 mpio - ok
21:21:12.0468 4904 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
21:21:12.0469 4904 mpsdrv - ok
21:21:12.0494 4904 [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc C:\Windows\system32\mpssvc.dll
21:21:12.0502 4904 MpsSvc - ok
21:21:12.0540 4904 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
21:21:12.0541 4904 MRxDAV - ok
21:21:12.0558 4904 [ CFDCD8CA87C2A657DEBC150AC35B5E08 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
21:21:12.0559 4904 mrxsmb - ok
21:21:12.0574 4904 [ 1BEE517B220B7F024F411AEC1571DD5A ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:21:12.0577 4904 mrxsmb10 - ok
21:21:12.0589 4904 [ 6B2D5FEF385828B6E485C1C90AFB8195 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:21:12.0590 4904 mrxsmb20 - ok
21:21:12.0608 4904 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
21:21:12.0609 4904 msahci - ok
21:21:12.0628 4904 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
21:21:12.0629 4904 msdsm - ok
21:21:12.0653 4904 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
21:21:12.0655 4904 MSDTC - ok
21:21:12.0674 4904 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
21:21:12.0675 4904 Msfs - ok
21:21:12.0689 4904 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
21:21:12.0689 4904 mshidkmdf - ok
21:21:12.0697 4904 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
21:21:12.0697 4904 msisadrv - ok
21:21:12.0728 4904 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
21:21:12.0729 4904 MSiSCSI - ok
21:21:12.0733 4904 msiserver - ok
21:21:12.0748 4904 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
21:21:12.0749 4904 MSKSSRV - ok
21:21:12.0762 4904 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
21:21:12.0762 4904 MSPCLOCK - ok
21:21:12.0780 4904 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
21:21:12.0781 4904 MSPQM - ok
21:21:12.0798 4904 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
21:21:12.0801 4904 MsRPC - ok
21:21:12.0820 4904 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
21:21:12.0820 4904 mssmbios - ok
21:21:12.0834 4904 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
21:21:12.0835 4904 MSTEE - ok
21:21:12.0859 4904 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
21:21:12.0859 4904 MTConfig - ok
21:21:12.0876 4904 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
21:21:12.0876 4904 Mup - ok
21:21:12.0903 4904 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
21:21:12.0908 4904 napagent - ok
21:21:12.0928 4904 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
21:21:12.0930 4904 NativeWifiP - ok
21:21:12.0956 4904 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\Windows\system32\drivers\ndis.sys
21:21:12.0962 4904 NDIS - ok
21:21:12.0982 4904 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
21:21:12.0983 4904 NdisCap - ok
21:21:13.0003 4904 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
21:21:13.0003 4904 NdisTapi - ok
21:21:13.0018 4904 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
21:21:13.0019 4904 Ndisuio - ok
21:21:13.0041 4904 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
21:21:13.0042 4904 NdisWan - ok
21:21:13.0057 4904 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
21:21:13.0058 4904 NDProxy - ok
21:21:13.0094 4904 [ DC6530A291D4BDF6DF399F1F128E7F8F ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
21:21:13.0096 4904 Net Driver HPZ12 - ok
21:21:13.0106 4904 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
21:21:13.0107 4904 NetBIOS - ok
21:21:13.0126 4904 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
21:21:13.0128 4904 NetBT - ok
21:21:13.0139 4904 [ 0793F40B9B8A1BDD266296409DBD91EA ] Netlogon C:\Windows\system32\lsass.exe
21:21:13.0140 4904 Netlogon - ok
21:21:13.0161 4904 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
21:21:13.0164 4904 Netman - ok
21:21:13.0182 4904 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
21:21:13.0186 4904 netprofm - ok
21:21:13.0214 4904 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:21:13.0215 4904 NetTcpPortSharing - ok
21:21:13.0230 4904 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
21:21:13.0231 4904 nfrd960 - ok
21:21:13.0251 4904 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
21:21:13.0254 4904 NlaSvc - ok
21:21:13.0267 4904 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
21:21:13.0267 4904 Npfs - ok
21:21:13.0285 4904 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
21:21:13.0286 4904 nsi - ok
21:21:13.0297 4904 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
21:21:13.0297 4904 nsiproxy - ok
21:21:13.0336 4904 [ 356698A13C4630D5B31C37378D469196 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
21:21:13.0346 4904 Ntfs - ok
21:21:13.0381 4904 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
21:21:13.0381 4904 Null - ok
21:21:13.0404 4904 [ 1F07B814C0BB5AABA703ABFF1F31F2E8 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
21:21:13.0405 4904 NVHDA - ok
21:21:13.0620 4904 [ 5104BAC2DA2A5BDD86AC6B0708B00F06 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:21:13.0673 4904 nvlddmkm - ok
21:21:13.0697 4904 [ 3E38712941E9BB4DDBEE00AFFE3FED3D ] nvraid C:\Windows\system32\DRIVERS\nvraid.sys
21:21:13.0697 4904 nvraid - ok
21:21:13.0707 4904 [ 477DC4D6DEB99BE37084C9AC6D013DA1 ] nvstor C:\Windows\system32\DRIVERS\nvstor.sys
21:21:13.0707 4904 nvstor - ok
21:21:13.0731 4904 [ DDFAFCE89A5C93D04712B86F94E9FCBA ] nvsvc C:\Windows\system32\nvvsvc.exe
21:21:13.0735 4904 nvsvc - ok
21:21:13.0799 4904 [ 84E035225474E48CD3A6A3CE52332095 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
21:21:13.0811 4904 nvUpdatusService - ok
21:21:13.0832 4904 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
21:21:13.0833 4904 nv_agp - ok
21:21:13.0844 4904 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
21:21:13.0845 4904 ohci1394 - ok
21:21:13.0890 4904 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:21:13.0891 4904 ose - ok
21:21:14.0038 4904 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
21:21:14.0064 4904 osppsvc - ok
21:21:14.0095 4904 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
21:21:14.0097 4904 p2pimsvc - ok
21:21:14.0126 4904 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
21:21:14.0128 4904 p2psvc - ok
21:21:14.0136 4904 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
21:21:14.0137 4904 Parport - ok
21:21:14.0145 4904 [ 7DAA117143316C4A1537E074A5A9EAF0 ] partmgr C:\Windows\system32\drivers\partmgr.sys
21:21:14.0146 4904 partmgr - ok
21:21:14.0160 4904 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
21:21:14.0161 4904 PcaSvc - ok
21:21:14.0170 4904 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\DRIVERS\pci.sys
21:21:14.0171 4904 pci - ok
21:21:14.0180 4904 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\DRIVERS\pciide.sys
21:21:14.0180 4904 pciide - ok
21:21:14.0197 4904 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
21:21:14.0198 4904 pcmcia - ok
21:21:14.0215 4904 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
21:21:14.0216 4904 pcw - ok
21:21:14.0234 4904 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
21:21:14.0236 4904 PEAUTH - ok
21:21:14.0267 4904 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
21:21:14.0273 4904 PeerDistSvc - ok
21:21:14.0346 4904 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
21:21:14.0346 4904 PerfHost - ok
21:21:14.0381 4904 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll
21:21:14.0387 4904 pla - ok
21:21:14.0410 4904 [ 23157D583244400E1D7FBAEE2E4B31B7 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
21:21:14.0413 4904 PlugPlay - ok
21:21:14.0446 4904 [ 71F62C51DFDFBC04C83C5C64B2B8058E ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
21:21:14.0448 4904 Pml Driver HPZ12 - ok
21:21:14.0459 4904 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
21:21:14.0461 4904 PNRPAutoReg - ok
21:21:14.0479 4904 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
21:21:14.0482 4904 PNRPsvc - ok
21:21:14.0511 4904 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
21:21:14.0515 4904 PolicyAgent - ok
21:21:14.0529 4904 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
21:21:14.0532 4904 Power - ok
21:21:14.0550 4904 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
21:21:14.0551 4904 PptpMiniport - ok
21:21:14.0582 4904 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
21:21:14.0583 4904 Processor - ok
21:21:14.0617 4904 [ F381975E1F4346DE875CB07339CE8D3A ] ProfSvc C:\Windows\system32\profsvc.dll
21:21:14.0621 4904 ProfSvc - ok
21:21:14.0631 4904 [ 0793F40B9B8A1BDD266296409DBD91EA ] ProtectedStorage C:\Windows\system32\lsass.exe
21:21:14.0633 4904 ProtectedStorage - ok
21:21:14.0649 4904 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
21:21:14.0650 4904 Psched - ok
21:21:14.0692 4904 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
21:21:14.0705 4904 ql2300 - ok
21:21:14.0726 4904 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
21:21:14.0727 4904 ql40xx - ok
21:21:14.0753 4904 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
21:21:14.0757 4904 QWAVE - ok
21:21:14.0766 4904 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
21:21:14.0767 4904 QWAVEdrv - ok
21:21:14.0785 4904 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
21:21:14.0785 4904 RasAcd - ok
21:21:14.0814 4904 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
21:21:14.0814 4904 RasAgileVpn - ok
21:21:14.0828 4904 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
21:21:14.0829 4904 RasAuto - ok
21:21:14.0843 4904 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
21:21:14.0843 4904 Rasl2tp - ok
21:21:14.0855 4904 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll
21:21:14.0857 4904 RasMan - ok
21:21:14.0864 4904 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
21:21:14.0865 4904 RasPppoe - ok
21:21:14.0875 4904 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
21:21:14.0875 4904 RasSstp - ok
21:21:14.0900 4904 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
21:21:14.0902 4904 rdbss - ok
21:21:14.0909 4904 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
21:21:14.0909 4904 rdpbus - ok
21:21:14.0919 4904 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
21:21:14.0920 4904 RDPCDD - ok
21:21:14.0945 4904 [ 9706B84DBABFC4B4CA46C5A82B14DFA3 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
21:21:14.0946 4904 RDPDR - ok
21:21:14.0950 4904 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
21:21:14.0950 4904 RDPENCDD - ok
21:21:14.0965 4904 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
21:21:14.0965 4904 RDPREFMP - ok
21:21:14.0980 4904 [ 8A3E6BEA1C53EA6177FE2B6EBA2C80D7 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
21:21:14.0981 4904 RDPWD - ok
21:21:14.0997 4904 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
21:21:14.0998 4904 rdyboost - ok
21:21:15.0025 4904 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
21:21:15.0027 4904 RemoteAccess - ok
21:21:15.0046 4904 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
21:21:15.0048 4904 RemoteRegistry - ok
21:21:15.0060 4904 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
21:21:15.0061 4904 RpcEptMapper - ok
21:21:15.0079 4904 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
21:21:15.0080 4904 RpcLocator - ok
21:21:15.0103 4904 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\system32\rpcss.dll
21:21:15.0106 4904 RpcSs - ok
21:21:15.0117 4904 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
21:21:15.0117 4904 rspndr - ok
21:21:15.0137 4904 [ 88AF6E02AB19DF7FD07ECDF9C91E9AF6 ] s3cap C:\Windows\system32\DRIVERS\vms3cap.sys
21:21:15.0137 4904 s3cap - ok
21:21:15.0156 4904 [ 0793F40B9B8A1BDD266296409DBD91EA ] SamSs C:\Windows\system32\lsass.exe
21:21:15.0157 4904 SamSs - ok
21:21:15.0224 4904 [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
21:21:15.0225 4904 SASDIFSV - ok
21:21:15.0233 4904 [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
21:21:15.0233 4904 SASKUTIL - ok
21:21:15.0255 4904 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
21:21:15.0256 4904 sbp2port - ok
21:21:15.0284 4904 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
21:21:15.0288 4904 SCardSvr - ok
21:21:15.0299 4904 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
21:21:15.0300 4904 scfilter - ok
21:21:15.0335 4904 [ EC56B171F85C7E855E7B0588AC503EEA ] Schedule C:\Windows\system32\schedsvc.dll
21:21:15.0347 4904 Schedule - ok
21:21:15.0376 4904 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll
21:21:15.0378 4904 SCPolicySvc - ok
21:21:15.0398 4904 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
21:21:15.0401 4904 SDRSVC - ok
21:21:15.0407 4904 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
21:21:15.0408 4904 secdrv - ok
21:21:15.0430 4904 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll
21:21:15.0432 4904 seclogon - ok
21:21:15.0442 4904 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
21:21:15.0445 4904 SENS - ok
21:21:15.0454 4904 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
21:21:15.0457 4904 SensrSvc - ok
21:21:15.0469 4904 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
21:21:15.0470 4904 Serenum - ok
21:21:15.0481 4904 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
21:21:15.0482 4904 Serial - ok
21:21:15.0501 4904 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
21:21:15.0501 4904 sermouse - ok
21:21:15.0523 4904 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll
21:21:15.0525 4904 SessionEnv - ok
21:21:15.0545 4904 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
21:21:15.0546 4904 sffdisk - ok
21:21:15.0559 4904 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
21:21:15.0559 4904 sffp_mmc - ok
21:21:15.0567 4904 [ 5588B8C6193EB1522490C122EB94DFFA ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
21:21:15.0567 4904 sffp_sd - ok
21:21:15.0575 4904 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
21:21:15.0576 4904 sfloppy - ok
21:21:15.0596 4904 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
21:21:15.0599 4904 SharedAccess - ok
21:21:15.0625 4904 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:21:15.0629 4904 ShellHWDetection - ok
21:21:15.0649 4904 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
21:21:15.0649 4904 SiSRaid2 - ok
21:21:15.0661 4904 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
21:21:15.0661 4904 SiSRaid4 - ok
21:21:15.0776 4904 [ 183F04C6742902F33039913A96F5B574 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
21:21:15.0797 4904 Skype C2C Service - ok
21:21:15.0834 4904 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
21:21:15.0836 4904 SkypeUpdate - ok
21:21:15.0854 4904 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
21:21:15.0855 4904 Smb - ok
21:21:15.0877 4904 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
21:21:15.0879 4904 SNMPTRAP - ok
21:21:15.0892 4904 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
21:21:15.0892 4904 spldr - ok
21:21:15.0914 4904 [ 89E8550C5862999FCF482EA562B0E98E ] Spooler C:\Windows\System32\spoolsv.exe
21:21:15.0919 4904 Spooler - ok
21:21:15.0978 4904 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe
21:21:16.0004 4904 sppsvc - ok
21:21:16.0018 4904 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
21:21:16.0019 4904 sppuinotify - ok
21:21:16.0036 4904 [ EC8F67289105BF270498095F14963464 ] srv C:\Windows\system32\DRIVERS\srv.sys
21:21:16.0038 4904 srv - ok
21:21:16.0046 4904 [ F773D2ED090B7BAA1C1A034F3CA476C8 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
21:21:16.0048 4904 srv2 - ok
21:21:16.0065 4904 [ 26E84D3649019C3244622E654DFCD75B ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
21:21:16.0066 4904 srvnet - ok
21:21:16.0076 4904 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
21:21:16.0078 4904 SSDPSRV - ok
21:21:16.0092 4904 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
21:21:16.0094 4904 SstpSvc - ok
21:21:16.0110 4904 Steam Client Service - ok
21:21:16.0139 4904 [ F0359F7CE712D69ACEF0886BDB4792ED ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
21:21:16.0141 4904 Stereo Service - ok
21:21:16.0161 4904 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
21:21:16.0161 4904 stexstor - ok
21:21:16.0191 4904 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll
21:21:16.0194 4904 stisvc - ok
21:21:16.0220 4904 [ FFD7A6F15B14234B5B0E5D49E7961895 ] storflt C:\Windows\system32\DRIVERS\vmstorfl.sys
21:21:16.0221 4904 storflt - ok
21:21:16.0238 4904 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\Windows\system32\storsvc.dll
21:21:16.0239 4904 StorSvc - ok
21:21:16.0269 4904 [ 8FCCBEFC5C440B3C23454656E551B09A ] storvsc C:\Windows\system32\DRIVERS\storvsc.sys
21:21:16.0270 4904 storvsc - ok
21:21:16.0279 4904 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
21:21:16.0280 4904 swenum - ok
21:21:16.0312 4904 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
21:21:16.0319 4904 swprv - ok
21:21:16.0365 4904 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\Windows\system32\sysmain.dll
21:21:16.0383 4904 SysMain - ok
21:21:16.0400 4904 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:21:16.0402 4904 TabletInputService - ok
21:21:16.0420 4904 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll
21:21:16.0423 4904 TapiSrv - ok
21:21:16.0433 4904 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
21:21:16.0434 4904 TBS - ok
21:21:16.0469 4904 [ 912107716BAB424C7870E8E6AF5E07E1 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
21:21:16.0479 4904 Tcpip - ok
21:21:16.0508 4904 [ 912107716BAB424C7870E8E6AF5E07E1 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
21:21:16.0515 4904 TCPIP6 - ok
21:21:16.0524 4904 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
21:21:16.0524 4904 tcpipreg - ok
21:21:16.0539 4904 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
21:21:16.0539 4904 TDPIPE - ok
21:21:16.0546 4904 [ E4245BDA3190A582D55ED09E137401A9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
21:21:16.0546 4904 TDTCP - ok
21:21:16.0561 4904 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
21:21:16.0561 4904 tdx - ok
21:21:16.0694 4904 [ 9F3E7CABE86BBDECA009DE291DB6D9E2 ] TeamViewer8 C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
21:21:16.0718 4904 TeamViewer8 - ok
21:21:16.0733 4904 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
21:21:16.0734 4904 TermDD - ok
21:21:16.0753 4904 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll
21:21:16.0757 4904 TermService - ok
21:21:16.0772 4904 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
21:21:16.0773 4904 Themes - ok
21:21:16.0779 4904 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
21:21:16.0780 4904 THREADORDER - ok
21:21:16.0802 4904 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
21:21:16.0803 4904 TrkWks - ok
21:21:16.0841 4904 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:21:16.0842 4904 TrustedInstaller - ok
21:21:16.0853 4904 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
21:21:16.0854 4904 tssecsrv - ok
21:21:16.0869 4904 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
21:21:16.0871 4904 tunnel - ok
21:21:16.0890 4904 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
21:21:16.0890 4904 uagp35 - ok
21:21:16.0909 4904 [ D47BAEAD86C65D4F4069D7CE0A4EDCEB ] udfs C:\Windows\system32\DRIVERS\udfs.sys
21:21:16.0911 4904 udfs - ok
21:21:16.0919 4904 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
21:21:16.0920 4904 UI0Detect - ok
21:21:16.0936 4904 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
21:21:16.0937 4904 uliagpkx - ok
21:21:16.0958 4904 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
21:21:16.0958 4904 umbus - ok
21:21:16.0975 4904 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
21:21:16.0976 4904 UmPass - ok
21:21:17.0001 4904 [ AF0AC98EE5077EB844413EB54287FDE3 ] UmRdpService C:\Windows\System32\umrdp.dll
21:21:17.0003 4904 UmRdpService - ok
21:21:17.0019 4904 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
21:21:17.0023 4904 upnphost - ok
21:21:17.0059 4904 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
21:21:17.0059 4904 USBAAPL64 - ok
21:21:17.0083 4904 [ 77B01BC848298223A95D4EC23E1785A1 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
21:21:17.0084 4904 usbaudio - ok
21:21:17.0099 4904 [ B26AFB54A534D634523C4FB66765B026 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
21:21:17.0100 4904 usbccgp - ok
21:21:17.0116 4904 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
21:21:17.0117 4904 usbcir - ok
21:21:17.0147 4904 [ 2EA4AFF7BE7EB4632E3AA8595B0803B5 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
21:21:17.0148 4904 usbehci - ok
21:21:17.0163 4904 [ 4C9042B8DF86C1E8E6240C218B99B39B ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
21:21:17.0165 4904 usbhub - ok
21:21:17.0179 4904 [ 58E546BBAF87664FC57E0F6081E4F609 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
21:21:17.0180 4904 usbohci - ok
21:21:17.0197 4904 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
21:21:17.0197 4904 usbprint - ok
21:21:17.0231 4904 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
21:21:17.0231 4904 usbscan - ok
21:21:17.0241 4904 [ 080D3820DA6C046BE82FC8B45A893E83 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:21:17.0242 4904 USBSTOR - ok
21:21:17.0257 4904 [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
21:21:17.0258 4904 usbuhci - ok
21:21:17.0285 4904 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
21:21:17.0287 4904 UxSms - ok
21:21:17.0297 4904 [ 0793F40B9B8A1BDD266296409DBD91EA ] VaultSvc C:\Windows\system32\lsass.exe
21:21:17.0298 4904 VaultSvc - ok
21:21:17.0307 4904 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
21:21:17.0307 4904 vdrvroot - ok
21:21:17.0322 4904 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\Windows\System32\vds.exe
21:21:17.0328 4904 vds - ok
21:21:17.0346 4904 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
21:21:17.0347 4904 vga - ok
21:21:17.0368 4904 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
21:21:17.0369 4904 VgaSave - ok
21:21:17.0388 4904 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
21:21:17.0390 4904 vhdmp - ok
21:21:17.0401 4904 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
21:21:17.0401 4904 viaide - ok
21:21:17.0435 4904 [ 1501699D7EDA984ABC4155A7DA5738D1 ] vmbus C:\Windows\system32\DRIVERS\vmbus.sys
21:21:17.0437 4904 vmbus - ok
21:21:17.0449 4904 [ AE10C35761889E65A6F7176937C5592C ] VMBusHID C:\Windows\system32\DRIVERS\VMBusHID.sys
21:21:17.0449 4904 VMBusHID - ok
21:21:17.0479 4904 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
21:21:17.0480 4904 volmgr - ok
21:21:17.0494 4904 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
21:21:17.0497 4904 volmgrx - ok
21:21:17.0512 4904 [ 58F82EED8CA24B461441F9C3E4F0BF5C ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
21:21:17.0514 4904 volsnap - ok
21:21:17.0538 4904 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
21:21:17.0539 4904 vsmraid - ok
21:21:17.0580 4904 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\Windows\system32\vssvc.exe
21:21:17.0588 4904 VSS - ok
21:21:17.0595 4904 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
21:21:17.0596 4904 vwifibus - ok
21:21:17.0602 4904 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
21:21:17.0604 4904 W32Time - ok
21:21:17.0618 4904 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
21:21:17.0619 4904 WacomPen - ok
21:21:17.0638 4904 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
21:21:17.0638 4904 WANARP - ok
21:21:17.0641 4904 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
21:21:17.0642 4904 Wanarpv6 - ok
21:21:17.0667 4904 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\Windows\system32\wbengine.exe
21:21:17.0673 4904 wbengine - ok
21:21:17.0685 4904 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
21:21:17.0687 4904 WbioSrvc - ok
21:21:17.0693 4904 [ 8321C2CA3B62B61B293CDA3451984468 ] wcncsvc C:\Windows\System32\wcncsvc.dll
21:21:17.0695 4904 wcncsvc - ok
21:21:17.0707 4904 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:21:17.0708 4904 WcsPlugInService - ok
21:21:17.0726 4904 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
21:21:17.0726 4904 Wd - ok
21:21:17.0745 4904 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
21:21:17.0748 4904 Wdf01000 - ok
21:21:17.0759 4904 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
21:21:17.0761 4904 WdiServiceHost - ok
21:21:17.0764 4904 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
21:21:17.0765 4904 WdiSystemHost - ok
21:21:17.0791 4904 [ 8A438CBB8C032A0C798B0C642FFBE572 ] WebClient C:\Windows\System32\webclnt.dll
21:21:17.0793 4904 WebClient - ok
21:21:17.0806 4904 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
21:21:17.0808 4904 Wecsvc - ok
21:21:17.0823 4904 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
21:21:17.0825 4904 wercplsupport - ok
21:21:17.0836 4904 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
21:21:17.0838 4904 WerSvc - ok
21:21:17.0847 4904 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
21:21:17.0848 4904 WfpLwf - ok
21:21:17.0866 4904 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
21:21:17.0866 4904 WIMMount - ok
21:21:17.0877 4904 WinDefend - ok
21:21:17.0881 4904 WinHttpAutoProxySvc - ok
21:21:17.0922 4904 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
21:21:17.0924 4904 Winmgmt - ok
21:21:17.0980 4904 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\Windows\system32\WsmSvc.dll
21:21:17.0993 4904 WinRM - ok
21:21:18.0054 4904 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
21:21:18.0064 4904 Wlansvc - ok
21:21:18.0090 4904 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
21:21:18.0090 4904 WmiAcpi - ok
21:21:18.0123 4904 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
21:21:18.0124 4904 wmiApSrv - ok
21:21:18.0139 4904 WMPNetworkSvc - ok
21:21:18.0147 4904 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
21:21:18.0150 4904 WPCSvc - ok
21:21:18.0163 4904 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
21:21:18.0166 4904 WPDBusEnum - ok
21:21:18.0181 4904 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
21:21:18.0182 4904 ws2ifsl - ok
21:21:18.0192 4904 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
21:21:18.0194 4904 wscsvc - ok
21:21:18.0227 4904 [ 8D918B1DB190A4D9B1753A66FA8C96E8 ] WSDPrintDevice C:\Windows\system32\DRIVERS\WSDPrint.sys
21:21:18.0228 4904 WSDPrintDevice - ok
21:21:18.0232 4904 WSearch - ok
21:21:18.0305 4904 [ 38340204A2D0228F1E87740FC5E554A7 ] wuauserv C:\Windows\system32\wuaueng.dll
21:21:18.0320 4904 wuauserv - ok
21:21:18.0336 4904 [ 7CADC74271DD6461C452C271B30BD378 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
21:21:18.0337 4904 WudfPf - ok
21:21:18.0352 4904 [ 3B197AF0FFF08AA66B6B2241CA538D64 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
21:21:18.0352 4904 WUDFRd - ok
21:21:18.0366 4904 [ B551D6637AA0E132C18AC6E504F7B79B ] wudfsvc C:\Windows\System32\WUDFSvc.dll
21:21:18.0368 4904 wudfsvc - ok
21:21:18.0381 4904 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
21:21:18.0383 4904 WwanSvc - ok
21:21:18.0388 4904 ================ Scan global ===============================
21:21:18.0416 4904 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
21:21:18.0438 4904 [ 457B44AB6D502E55F64A867D4F35C76C ] C:\Windows\system32\winsrv.dll
21:21:18.0448 4904 [ 457B44AB6D502E55F64A867D4F35C76C ] C:\Windows\system32\winsrv.dll
21:21:18.0471 4904 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
21:21:18.0498 4904 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
21:21:18.0502 4904 [Global] - ok
21:21:18.0503 4904 ================ Scan MBR ==================================
21:21:18.0514 4904 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
21:21:18.0768 4904 \Device\Harddisk0\DR0 - ok
21:21:18.0773 4904 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
21:21:19.0148 4904 \Device\Harddisk1\DR1 - ok
21:21:19.0149 4904 ================ Scan VBR ==================================
21:21:19.0152 4904 [ 2CF04C4A78F935B7F25BF2BFB0358EF8 ] \Device\Harddisk0\DR0\Partition1
21:21:19.0155 4904 \Device\Harddisk0\DR0\Partition1 - ok
21:21:19.0163 4904 [ A97E15E69224CDF226D01782CDF67F3D ] \Device\Harddisk0\DR0\Partition2
21:21:19.0165 4904 \Device\Harddisk0\DR0\Partition2 - ok
21:21:19.0168 4904 [ D28BFA5F3F36B8F7D5917EE3D259CF6D ] \Device\Harddisk1\DR1\Partition1
21:21:19.0170 4904 \Device\Harddisk1\DR1\Partition1 - ok
21:21:19.0178 4904 [ 2869EB00CE29DB2173A9F66B77B8F620 ] \Device\Harddisk1\DR1\Partition2
21:21:19.0179 4904 \Device\Harddisk1\DR1\Partition2 - ok
21:21:19.0180 4904 ============================================================
21:21:19.0180 4904 Scan finished
21:21:19.0180 4904 ============================================================
21:21:19.0188 4592 Detected object count: 0
21:21:19.0188 4592 Actual detected object count: 0


aswMBR


aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2012-12-24 18:37:28
-----------------------------
18:37:28.773 OS Version: Windows x64 6.1.7600
18:37:28.774 Number of processors: 4 586 0x1E05
18:37:28.774 ComputerName: LLAMA-2-PC UserName: LLAMA-2
18:37:29.120 Initialize success
18:38:11.884 AVAST engine defs: 12122402
18:38:21.705 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-2
18:38:21.709 Disk 0 Vendor: WDC_WD1600AAJS-00YZCA0 01.03B01 Size: 152627MB BusType: 3
18:38:21.715 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP3T0L0-4
18:38:21.719 Disk 1 Vendor: Hitachi_HDS721010CLA332 JP4OA39C Size: 953869MB BusType: 3
18:38:21.738 Disk 0 MBR read successfully
18:38:21.744 Disk 0 MBR scan
18:38:21.751 Disk 0 Windows 7 default MBR code
18:38:21.771 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
18:38:21.796 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 152525 MB offset 206848
18:38:21.819 Disk 0 scanning C:\Windows\system32\drivers
18:38:34.885 Service scanning
18:38:51.515 Modules scanning
18:38:51.529 Disk 0 trace - called modules:
18:38:51.879 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
18:38:51.887 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80077b8060]
18:38:51.895 3 CLASSPNP.SYS[fffff880018ff43f] -> nt!IofCallDriver -> [0xfffffa800750a580]
18:38:51.902 5 ACPI.sys[fffff88000f66781] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP2T0L0-2[0xfffffa8007507060]
18:38:52.545 AVAST engine scan C:\Windows
18:38:54.312 AVAST engine scan C:\Windows\system32
18:41:05.925 AVAST engine scan C:\Windows\system32\drivers
18:41:13.675 AVAST engine scan C:\Users\LLAMA-2
18:42:12.822 Disk 0 MBR has been saved successfully to "C:\Users\LLAMA-2\Downloads\MBR.dat"
18:42:12.823 The log file has been saved successfully to "C:\Users\LLAMA-2\Downloads\aswMBR.txt"


aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2013-01-12 21:22:45
-----------------------------
21:22:45.150 OS Version: Windows x64 6.1.7600
21:22:45.151 Number of processors: 4 586 0x1E05
21:22:45.151 ComputerName: LLAMA-2-PC UserName: LLAMA-2
21:22:45.618 Initialize success
21:24:45.003 AVAST engine defs: 13011201
21:24:48.985 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-2
21:24:48.990 Disk 0 Vendor: WDC_WD1600AAJS-00YZCA0 01.03B01 Size: 152627MB BusType: 3
21:24:48.995 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP3T0L0-4
21:24:49.000 Disk 1 Vendor: Hitachi_HDS721010CLA332 JP4OA39C Size: 953869MB BusType: 3
21:24:49.025 Disk 0 MBR read successfully
21:24:49.031 Disk 0 MBR scan
21:24:49.039 Disk 0 Windows 7 default MBR code
21:24:49.046 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
21:24:49.058 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 152525 MB offset 206848
21:24:49.080 Disk 0 scanning C:\Windows\system32\drivers
21:24:57.081 Service scanning
21:25:12.702 Modules scanning
21:25:12.718 Disk 0 trace - called modules:
21:25:12.758 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
21:25:12.770 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80077d6060]
21:25:12.781 3 CLASSPNP.SYS[fffff8800183b43f] -> nt!IofCallDriver -> [0xfffffa8007515580]
21:25:12.794 5 ACPI.sys[fffff88000ed2781] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP2T0L0-2[0xfffffa800751b060]
21:25:13.392 AVAST engine scan C:\Windows
21:25:14.383 AVAST engine scan C:\Windows\system32
21:27:01.781 AVAST engine scan C:\Windows\system32\drivers
21:27:10.529 AVAST engine scan C:\Users\LLAMA-2
21:27:17.168 Disk 0 MBR has been saved successfully to "C:\Users\LLAMA-2\Downloads\MBR.dat"
21:27:17.206 The log file has been saved successfully to "C:\Users\LLAMA-2\Downloads\aswMBR.txt"


ESET


No threats found.

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:39 PM

Posted 13 January 2013 - 11:11 AM

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

For vista and windows 7 right click on the tool and select run as administrator

After scan gets completed,post the generated log here.


Download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here


Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the contents of text here

#5 AndyMan315

AndyMan315
  • Topic Starter

  • Members
  • 120 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Syracuse, NY
  • Local time:05:39 PM

Posted 14 January 2013 - 06:28 PM

This is going to be broken up into two replies.

MBAM

Malwarebytes Anti-Malware (PRO) 1.70.0.1100
www.malwarebytes.org

Database version: v2013.01.13.05

Windows 7 x64 NTFS
Internet Explorer 8.0.7600.16385
LLAMA-2 :: LLAMA-2-PC [administrator]

Protection: Disabled

1/13/2013 3:18:57 PM
mbam-log-2013-01-13 (15-18-57).txt

Scan type: Full scan (C:\|E:\|F:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 714348
Time elapsed: 1 hour(s), 28 minute(s), 36 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)


MiniToolBox by Farbar Version:10-01-2013
Ran by LLAMA-2 (administrator) on 13-01-2013 at 15:24:19
Running from "C:\Users\LLAMA-2\Downloads"
Windows 7 Professional (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

::1 localhost








































































































































































































50.31.74.129 www.google-analytics.com.
50.31.74.129 ad-emea.doubleclick.net.
50.31.74.129 www.statcounter.com.
217.23.13.202 www.google-analytics.com.
217.23.13.202 ad-emea.doubleclick.net.
217.23.13.202 www.statcounter.com.

127.0.0.1 localhost

========================= IP Configuration: ================================

Intel® 82578DC Gigabit Network Connection = Local Area Connection (Connected)
Hamachi Network Interface = Hamachi (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add route prefix=0.0.0.0/0 interface="Hamachi" nexthop=25.0.0.1 publish=Yes
set interface interface="Hamachi" forwarding=disabled advertise=disabled metric=9000 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled advertisedrouterlifetime=0 advertisedefaultroute=disabled currenthoplimit=0 forcearpndwolpattern=disabled enabledirectedmacwolpattern=disabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : LLAMA-2-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : twcny.rr.com

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : twcny.rr.com
Description . . . . . . . . . . . : Intel® 82578DC Gigabit Network Connection
Physical Address. . . . . . . . . : 00-27-0E-09-6F-D0
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::b5b1:e779:6b46:3899%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.100(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Sunday, December 30, 2012 1:35:26 PM
Lease Expires . . . . . . . . . . : Monday, January 14, 2013 1:35:25 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 234891022
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-17-29-0E-29-00-27-0E-09-6F-D0
DNS Servers . . . . . . . . . . . : 209.18.47.61
209.18.47.62
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Hamachi:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Hamachi Network Interface
Physical Address. . . . . . . . . : 7A-79-19-DB-6A-0F
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2620:9b::19db:6a0f(Preferred)
Link-local IPv6 Address . . . . . : fe80::190e:bbd8:dcdb:5a1a%17(Preferred)
IPv4 Address. . . . . . . . . . . : 25.219.106.15(Preferred)
Subnet Mask . . . . . . . . . . . : 255.0.0.0
Lease Obtained. . . . . . . . . . : Sunday, December 30, 2012 1:35:26 PM
Lease Expires . . . . . . . . . . : Monday, December 30, 2013 1:37:33 PM
Default Gateway . . . . . . . . . : 2620:9b::1900:1
25.0.0.1
DHCP Server . . . . . . . . . . . : 25.0.0.1
DHCPv6 IAID . . . . . . . . . . . : 293239275
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-17-29-0E-29-00-27-0E-09-6F-D0
DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
fec0:0:0:ffff::2%1
fec0:0:0:ffff::3%1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.twcny.rr.com:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : twcny.rr.com
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:348c:17a7:3f57:fe9b(Preferred)
Link-local IPv6 Address . . . . . : fe80::348c:17a7:3f57:fe9b%12(Preferred)
Default Gateway . . . . . . . . . :
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{6BE99F30-B41E-41F5-A7B0-E8CF3112EB94}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: dns-cac-lb-01.rr.com
Address: 209.18.47.61

Name: google.com
Addresses: 2607:f8b0:4004:802::1005
74.125.228.65
74.125.228.66
74.125.228.67
74.125.228.68
74.125.228.69
74.125.228.70
74.125.228.71
74.125.228.72
74.125.228.73
74.125.228.78
74.125.228.64


Pinging google.com [74.125.228.7] with 32 bytes of data:
Reply from 74.125.228.7: bytes=32 time=37ms TTL=50
Reply from 74.125.228.7: bytes=32 time=35ms TTL=50

Ping statistics for 74.125.228.7:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 35ms, Maximum = 37ms, Average = 36ms
Server: dns-cac-lb-01.rr.com
Address: 209.18.47.61

Name: yahoo.com
Addresses: 98.138.253.109
98.139.183.24
72.30.38.140


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=135ms TTL=48
Reply from 98.138.253.109: bytes=32 time=111ms TTL=49

Ping statistics for 98.138.253.109:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 111ms, Maximum = 135ms, Average = 123ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
11...00 27 0e 09 6f d0 ......Intel® 82578DC Gigabit Network Connection
17...7a 79 19 db 6a 0f ......Hamachi Network Interface
1...........................Software Loopback Interface 1
15...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
13...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 25.0.0.1 25.219.106.15 9256
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.100 20
25.0.0.0 255.0.0.0 On-link 25.219.106.15 9256
25.219.106.15 255.255.255.255 On-link 25.219.106.15 9256
25.255.255.255 255.255.255.255 On-link 25.219.106.15 9256
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.100 276
192.168.1.100 255.255.255.255 On-link 192.168.1.100 276
192.168.1.255 255.255.255.255 On-link 192.168.1.100 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.100 276
224.0.0.0 240.0.0.0 On-link 25.219.106.15 9256
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.100 276
255.255.255.255 255.255.255.255 On-link 25.219.106.15 9256
===========================================================================
Persistent Routes:
Network Address Netmask Gateway Address Metric
0.0.0.0 0.0.0.0 25.0.0.1 Default
===========================================================================

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
17 9020 ::/0 2620:9b::1900:1
1 306 ::1/128 On-link
12 58 2001::/32 On-link
12 306 2001:0:4137:9e76:348c:17a7:3f57:fe9b/128
On-link
17 276 2620:9b::/96 On-link
17 276 2620:9b::19db:6a0f/128 On-link
11 276 fe80::/64 On-link
17 276 fe80::/64 On-link
12 306 fe80::/64 On-link
17 276 fe80::190e:bbd8:dcdb:5a1a/128
On-link
12 306 fe80::348c:17a7:3f57:fe9b/128
On-link
11 276 fe80::b5b1:e779:6b46:3899/128
On-link
1 306 ff00::/8 On-link
12 306 ff00::/8 On-link
11 276 ff00::/8 On-link
17 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
If Metric Network Destination Gateway
0 4294967295 2620:9b::/96 On-link
0 9000 ::/0 2620:9b::1900:1
===========================================================================
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [51712] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70144] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (01/13/2013 10:14:50 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc.manifest2" on line C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest.

Error: (01/13/2013 00:30:40 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc.manifest2" on line C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest.

Error: (01/12/2013 09:28:28 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc.manifest.

Error: (01/12/2013 09:28:12 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc.manifest.

Error: (01/12/2013 09:28:12 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc.manifest.

Error: (01/12/2013 09:19:25 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc.manifest.

Error: (01/04/2013 06:00:27 PM) (Source: Application Error) (User: )
Description: Faulting application name: Steam.exe, version: 1.0.1595.686, time stamp: 0x50b7ef0d
Faulting module name: Steam.dll_unloaded, version: 0.0.0.0, time stamp: 0x50ccdba0
Exception code: 0xc0000005
Fault offset: 0x300b49c2
Faulting process id: 0x1114
Faulting application start time: 0xSteam.exe0
Faulting application path: Steam.exe1
Faulting module path: Steam.exe2
Report Id: Steam.exe3

Error: (01/04/2013 06:00:24 PM) (Source: Application Error) (User: )
Description: Faulting application name: Steam.exe, version: 1.0.1595.686, time stamp: 0x50b7ef0d
Faulting module name: Steam.dll_unloaded, version: 0.0.0.0, time stamp: 0x50ccdba0
Exception code: 0xc0000005
Fault offset: 0x301f3bc6
Faulting process id: 0x1114
Faulting application start time: 0xSteam.exe0
Faulting application path: Steam.exe1
Faulting module path: Steam.exe2
Report Id: Steam.exe3

Error: (12/30/2012 01:35:40 PM) (Source: Winlogon) (User: )
Description: Windows license activation failed. Error 0x00000000.

Error: (12/30/2012 01:35:40 PM) (Source: Software Protection Platform Service) (User: )
Description: License Activation (slui.exe) failed with the following error code:
0x80070005


System errors:
=============
Error: (01/06/2013 10:04:07 AM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer OWNER-PC
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{6BE99F30-B41E-41F5-A7B0-E8CF3112EB94}.
The master browser is stopping or an election is being forced.

Error: (01/05/2013 02:08:24 PM) (Source: BROWSER) (User: )
Description: The browser service has failed to retrieve the backup list too many times on transport \Device\NetBT_Tcpip_{6BE99F30-B41E-41F5-A7B0-E8CF3112EB94}.
The backup browser is stopping.

Error: (01/05/2013 11:14:48 AM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer OWNER-PC
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{6BE99F30-B41E-41F5-A7B0-E8CF3112EB94}.
The master browser is stopping or an election is being forced.

Error: (12/30/2012 01:37:47 PM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Update Service Daemon service failed to start due to the following error:
%%1069

Error: (12/30/2012 01:37:47 PM) (Source: Service Control Manager) (User: )
Description: The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured password due to the following error:
%%1330

To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).

Error: (12/30/2012 01:36:36 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (12/24/2012 06:32:25 PM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Update Service Daemon service failed to start due to the following error:
%%1069

Error: (12/24/2012 06:32:25 PM) (Source: Service Control Manager) (User: )
Description: The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured password due to the following error:
%%1330

To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).

Error: (12/22/2012 09:26:04 PM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Update Service Daemon service failed to start due to the following error:
%%1069

Error: (12/22/2012 09:26:04 PM) (Source: Service Control Manager) (User: )
Description: The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured password due to the following error:
%%1330

To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).


Microsoft Office Sessions:
=========================
Error: (01/13/2013 10:14:50 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifestC:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe

Error: (01/13/2013 00:30:40 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe

Error: (01/12/2013 09:28:28 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc.manifestC:\Users\LLAMA-2\Downloads\esetsmartinstaller_enu.exe

Error: (01/12/2013 09:28:12 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc.manifestC:\Users\LLAMA-2\Downloads\esetsmartinstaller_enu.exe

Error: (01/12/2013 09:28:12 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc.manifestC:\Users\LLAMA-2\Downloads\esetsmartinstaller_enu.exe

Error: (01/12/2013 09:19:25 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc.manifestC:\Users\LLAMA-2\Downloads\esetsmartinstaller_enu.exe

Error: (01/04/2013 06:00:27 PM) (Source: Application Error)(User: )
Description: Steam.exe1.0.1595.68650b7ef0dSteam.dll_unloaded0.0.0.050ccdba0c0000005300b49c2111401cdeacf42e6950fF:\Program Files\Steam\Steam.exeSteam.dll86e8290a-56c2-11e2-a3c7-00270e096fd0

Error: (01/04/2013 06:00:24 PM) (Source: Application Error)(User: )
Description: Steam.exe1.0.1595.68650b7ef0dSteam.dll_unloaded0.0.0.050ccdba0c0000005301f3bc6111401cdeacf42e6950fF:\Program Files\Steam\Steam.exeSteam.dll85857c02-56c2-11e2-a3c7-00270e096fd0

Error: (12/30/2012 01:35:40 PM) (Source: Winlogon)(User: )
Description: 0x000000000x00000001

Error: (12/30/2012 01:35:40 PM) (Source: Software Protection Platform Service)(User: )
Description: 0x80070005


CodeIntegrity Errors:
===================================
Date: 2013-01-04 21:06:45.382
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\x86_microsoft-windows-securestartup-core_31bf3856ad364e35_6.1.7600.16385_none_34b0fc0c53728e43\fveapibase.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-01-04 21:06:45.376
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\x86_microsoft-windows-securestartup-core_31bf3856ad364e35_6.1.7600.16385_none_34b0fc0c53728e43\fveapibase.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-01-04 21:06:45.371
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\x86_microsoft-windows-securestartup-core_31bf3856ad364e35_6.1.7600.16385_none_34b0fc0c53728e43\fveapibase.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-01-04 21:06:43.715
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\x86_microsoft-windows-s..trics-sensoradapter_31bf3856ad364e35_6.1.7600.16385_none_13881e44d6ccca6b\winbiosensoradapter.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-01-04 21:06:43.710
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\x86_microsoft-windows-s..trics-sensoradapter_31bf3856ad364e35_6.1.7600.16385_none_13881e44d6ccca6b\winbiosensoradapter.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-01-04 21:06:43.706
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\x86_microsoft-windows-s..trics-sensoradapter_31bf3856ad364e35_6.1.7600.16385_none_13881e44d6ccca6b\winbiosensoradapter.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-01-04 21:06:43.149
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\x86_microsoft-windows-s..rics-storageadapter_31bf3856ad364e35_6.1.7600.16385_none_d67ca3c3b6af653e\winbiostorageadapter.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-01-04 21:06:43.144
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\x86_microsoft-windows-s..rics-storageadapter_31bf3856ad364e35_6.1.7600.16385_none_d67ca3c3b6af653e\winbiostorageadapter.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-01-04 21:06:43.140
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\x86_microsoft-windows-s..rics-storageadapter_31bf3856ad364e35_6.1.7600.16385_none_d67ca3c3b6af653e\winbiostorageadapter.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-01-04 21:05:22.213
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\x86_microsoft-windows-appid_31bf3856ad364e35_6.1.7600.16385_none_5722666f137ae177\appid.sys because the set of per-page image hashes could not be found on the system.


=========================== Installed Programs ============================

µTorrent (Version: 3.2.0)
64 Bit HP CIO Components Installer (Version: 6.2.2)
Adobe Flash Player 11 ActiveX 64-bit (Version: 11.2.202.233)
Adobe Flash Player 11 Plugin (Version: 11.5.502.135)
Adobe Reader X (10.1.4) (Version: 10.1.4)
AIM for Windows
AnyDVD (Version: 7.1.0.0)
Apple Application Support (Version: 2.1.7)
Apple Mobile Device Support (Version: 5.1.1.4)
Apple Software Update (Version: 2.1.3.127)
ARMA 2 Dedicated Server
ARMA 2: Operation Arrowhead Beta
BattlEye for OA Uninstall
Bonjour (Version: 3.0.0.10)
CCleaner (Version: 3.26)
Core Temp 1.0 RC3 (Version: 1.0)
Counter-Strike: Global Offensive Beta
Definition update for Microsoft Office 2010 (KB982726)
ESET Online Scanner v3
FileZilla Client 3.5.3 (Version: 3.5.3)
Google Chrome (Version: 24.0.1312.52)
Google Earth (Version: 6.2.2.6613)
Google Update Helper (Version: 1.3.21.123)
HLSW v1.4.0.2
HP Photosmart D110 All-In-One Driver 14.0 Rel. 7 (Version: 14.0)
Intel® Network Connections 17.0.200.2 (Version: 17.0.200.2)
iTunes (Version: 10.6.1.7)
Java 7 Update 7 (Version: 7.0.70)
Java Auto Updater (Version: 2.1.9.0)
Java™ 7 Update 5 (64-bit) (Version: 7.0.50)
LogMeIn Hamachi (Version: 2.1.0.294)
Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Home and Student 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Single Image 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Mozilla Firefox 18.0 (x86 en-US) (Version: 18.0)
Mozilla Maintenance Service (Version: 18.0)
Mumble 1.2.3 (Version: 1.2.3)
Network64 (Version: 140.0.212.000)
Notepad++ (Version: 5.9.8)
NVIDIA 3D Vision Controller Driver 306.97 (Version: 306.97)
NVIDIA 3D Vision Driver 306.97 (Version: 306.97)
NVIDIA Control Panel 306.97 (Version: 306.97)
NVIDIA Graphics Driver 306.97 (Version: 306.97)
NVIDIA HD Audio Driver 1.3.18.0 (Version: 1.3.18.0)
NVIDIA Install Application (Version: 2.1002.85.551)
NVIDIA PhysX (Version: 9.12.0604)
NVIDIA PhysX System Software 9.12.0604 (Version: 9.12.0604)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.0697)
NVIDIA Update 1.10.8 (Version: 1.10.8)
NVIDIA Update Components (Version: 1.10.8)
Origin (Version: 9.0.13.2142)
Pidgin (Version: 2.10.6)
PS_AIO_07_D110_SW_Min (Version: 140.0.142.000)
Ravaged
Scan (Version: 140.0.77.000)
Six Updater (Version: 2.09.7016)
Skype Click to Call (Version: 6.5.11422)
Skype™ 5.10 (Version: 5.10.116)
SoulSeek 157 NS 13e
Steam (Version: 1.0.0.0)
SUPERAntiSpyware (Version: 5.6.1014)
TeamViewer 8 (Version: 8.0.16642)
Toolbox (Version: 140.0.424.000)
VLC media player 2.0.3 (Version: 2.0.3)
Winamp (Version: 5.623 )
Winamp Detector Plug-in (Version: 1.0.0.1)
WinRAR 4.11 (64-bit) (Version: 4.11.0)
YourFileDownloader (Version: 1.0.0)

========================= Memory info: ===================================

Percentage of memory in use: 46%
Total physical RAM: 8125.38 MB
Available physical RAM: 4373.73 MB
Total Pagefile: 16248.9 MB
Available Pagefile: 12618.52 MB
Total Virtual: 4095.88 MB
Available Virtual: 3962.63 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:148.95 GB) (Free:76.39 GB) NTFS
3 Drive e: (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS
4 Drive f: () (Fixed) (Total:931.41 GB) (Free:641.74 GB) NTFS

========================= Users: ========================================

User accounts for \\LLAMA-2-PC

Administrator Guest LLAMA-2
UpdatusUser

========================= Restore Points ==================================

14-12-2012 05:00:01 Scheduled Checkpoint
22-12-2012 00:19:18 Scheduled Checkpoint
24-12-2012 23:28:05 Malwarebytes Anti-Rootkit Restore Point
01-01-2013 17:17:49 Scheduled Checkpoint
09-01-2013 05:00:07 Scheduled Checkpoint

**** End of log ****




FARBAR


Farbar Service Scanner Version: 05-01-2013
Ran by LLAMA-2 (administrator) on 13-01-2013 at 15:24:45
Running from "C:\Users\LLAMA-2\Downloads"
Windows 7 Professional (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Attempt to access Google IP returned error. Google IP is offline
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys
[2009-07-13 18:25] - [2009-07-13 20:45] - 1898576 ____A (Microsoft Corporation) 912107716BAB424C7870E8E6AF5E07E1

C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

#####END OF PART 1#####

#6 AndyMan315

AndyMan315
  • Topic Starter

  • Members
  • 120 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Syracuse, NY
  • Local time:05:39 PM

Posted 14 January 2013 - 08:20 PM

#####PART 2#####

Junkware removal

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.4.2 (01.08.2013:1)
OS: Windows 7 Professional x64
Ran by LLAMA-2 on Mon 01/14/2013 at 18:29:12.71
Blog: http://thisisudax.blogspot.com
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ FireFox

Emptied folder: C:\Users\LLAMA-2\AppData\Roaming\mozilla\firefox\profiles\t4dcj65s.default\minidumps [21 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Mon 01/14/2013 at 18:34:59.37
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


rkill

Rkill 2.4.5 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 01/14/2013 08:14:25 PM in x64 mode.
Windows Version: Windows 7 Professional

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* C:\Users\LLAMA-2\Downloads\JRT.exe (PID: 4656) [UP-HEUR]

1 proccess terminated!

Checking Registry for malware related settings:

* Explorer Policy Removed: NoActiveDesktopChanges [HKLM]

Backup Registry file created at:
C:\Users\LLAMA-2\Desktop\rkill\rkill-01-14-2013-08-14-31.reg

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* Windows Firewall Disabled

[HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = dword:00000000

Checking Windows Service Integrity:

* No issues found.

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* Cannot edit the HOSTS file.
* Permissions Fixed. Administrators can now edit the HOSTS file.

* HOSTS file entries found:

127.0.0.1 localhost
::1 localhost
50.31.74.129 www.google-analytics.com.
50.31.74.129 ad-emea.doubleclick.net.
50.31.74.129 www.statcounter.com.
217.23.13.202 www.google-analytics.com.
217.23.13.202 ad-emea.doubleclick.net.
217.23.13.202 www.statcounter.com.

Program finished at: 01/14/2013 08:14:38 PM
Execution time: 0 hours(s), 0 minute(s), and 12 seconds(s)


###The above shows a lot of the redirect pages I have been getting, but i could not see this in my regular hosts file when I looked, seem to be on the right track here!###


AUTORUNS

"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Adobe ARM" "Adobe Reader and Acrobat Manager" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\adobearm.exe"
+ "APSDaemon" "Apple Push" "Apple Inc." "c:\program files (x86)\common files\apple\apple application support\apsdaemon.exe"
+ "iTunesHelper" "iTunesHelper" "Apple Inc." "c:\program files (x86)\itunes\ituneshelper.exe"
+ "LogMeIn Hamachi Ui" "Hamachi Client Application" "LogMeIn Inc." "c:\program files (x86)\logmein hamachi\hamachi-2-ui.exe"
+ "SunJavaUpdateSched" "Java™ Update Scheduler" "Sun Microsystems, Inc." "c:\program files (x86)\common files\java\java update\jusched.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Google Chrome" "Google Chrome" "Google Inc." "c:\program files (x86)\google\chrome\application\24.0.1312.52\installer\setup.exe"
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files (x86)\windows mail\winmail.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "AnyDVD" "AnyDVD Application" "SlySoft, Inc." "c:\program files (x86)\slysoft\anydvd\anydvdtray.exe"
+ "EADM" "Origin" "Electronic Arts" "c:\program files (x86)\origin\origin.exe"
+ "Skype" "Skype " "Skype Technologies S.A." "c:\program files (x86)\skype\phone\skype.exe"
+ "Steam" "Steam" "Valve Corporation" "f:\program files\steam\steam.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" ""
+ "text/xml" "Microsoft Office XML MIME Filter" "Microsoft Corporation" "c:\program files\common files\microsoft shared\office14\msoxmlmf.dll"
"HKLM\SOFTWARE\Classes\Protocols\Handler" "" "" ""
+ "skype-ie-addon-data" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer x64\skypeieplugin.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "Notepad++64" "ShellHandler for Notepad++ (64 bit)" "" "c:\program files (x86)\notepad++\nppshell_04.dll"
+ "SASContextMenu Class" "SUPERAntiSpyware Context Menu Extension" "SUPERAntiSpyware.com" "c:\program files\superantispyware\sasctxmn64.dll"
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
"HKLM\Software\Wow6432Node\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "WinRAR32" "" "" "c:\program files\winrar\rarext32.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "SASContextMenu Class" "SUPERAntiSpyware Context Menu Extension" "SUPERAntiSpyware.com" "c:\program files\superantispyware\sasctxmn64.dll"
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "WinRAR32" "" "" "c:\program files\winrar\rarext32.dll"
"HKLM\Software\Classes\Directory\Shellex\DragDropHandlers" "" "" ""
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Shellex\DragDropHandlers" "" "" ""
+ "WinRAR32" "" "" "c:\program files\winrar\rarext32.dll"
"HKLM\Software\Classes\Directory\Shellex\CopyHookHandlers" "" "" ""
+ "FileZilla3CopyHook" "fzshellext Dynamic Link Library" "" "c:\program files (x86)\filezilla ftp client\fzshellext_64.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Shellex\CopyHookHandlers" "" "" ""
+ "FileZilla3CopyHook" "fzshellext Dynamic Link Library" "" "c:\program files (x86)\filezilla ftp client\fzshellext.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files\windows sidebar\sbdrop.dll"
+ "NvCplDesktopContext" "" "NVIDIA Corporation" "c:\windows\system32\nvshext.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files (x86)\windows sidebar\sbdrop.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files (x86)\common files\adobe\acrobat\activex\pdfshell.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "WinRAR32" "" "" "c:\program files\winrar\rarext32.dll"
"HKLM\Software\Classes\Folder\ShellEx\DragDropHandlers" "" "" ""
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\DragDropHandlers" "" "" ""
+ "WinRAR32" "" "" "c:\program files\winrar\rarext32.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files\java\jre7\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files\java\jre7\bin\ssv.dll"
+ "Office Document Cache Handler" "Microsoft Office Document Cache Handler" "Microsoft Corporation" "c:\program files\microsoft office\office14\urlredir.dll"
+ "Skype add-on for Internet Explorer" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer x64\skypeieplugin.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Adobe PDF Link Helper" "Adobe PDF Helper for Internet Explorer" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files (x86)\java\jre7\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files (x86)\java\jre7\bin\ssv.dll"
+ "Office Document Cache Handler" "Microsoft Office Document Cache Handler" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\urlredir.dll"
+ "Skype Browser Helper" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer\skypeieplugin.dll"
"HKLM\Software\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "OneNote Lin&ked Notes" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files\microsoft office\office14\onbttnielinkednotes.dll"
+ "Se&nd to OneNote" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files\microsoft office\office14\onbttnie.dll"
+ "Skype Click to Call" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer x64\skypeieplugin.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "OneNote Lin&ked Notes" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\onbttnielinkednotes.dll"
+ "Se&nd to OneNote" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\onbttnie.dll"
+ "Skype Click to Call" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer\skypeieplugin.dll"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "!SASCORE" "SUPERAntiSpyware Core Service" "SUPERAntiSpyware.com" "c:\program files\superantispyware\sascore64.exe"
+ "AdobeARMservice" "Adobe Acrobat Updater keeps your Adobe software up to date." "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe"
+ "Apple Mobile Device" "Provides the interface to Apple mobile devices." "Apple Inc." "c:\program files (x86)\common files\apple\mobile device support\applemobiledeviceservice.exe"
+ "Bonjour Service" "Enables hardware devices and software services to automatically configure themselves on the network and advertise their presence." "Apple Inc." "c:\program files\bonjour\mdnsresponder.exe"
+ "gupdate" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "gupdatem" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "Hamachi2Svc" "Hamachi Client Tunneling Engine" "LogMeIn Inc." "c:\program files (x86)\logmein hamachi\hamachi-2.exe"
+ "HPSLPSVC" "Discovers and monitors the state and the configuration of the HP devices attached to your network. If the service is stopped, and your network devices change IP addresses, they might become unavailable" "Hewlett-Packard Co." "c:\program files (x86)\hp\digital imaging\bin\hpslpsvc64.dll"
+ "Intel® PROSet Monitoring Service" "The Intel® PROSet Monitoring Service actively monitors changes to the system and updates affected network devices to keep them running in optimal condition. Stopping this service may negatively affect the performance of the network devices on the system." "Intel Corporation" "c:\windows\system32\iprosetmonitor.exe"
+ "iPod Service" "iPod hardware management services" "Apple Inc." "c:\program files\ipod\bin\ipodservice.exe"
+ "MBAMScheduler" "Malwarebytes Anti-Malware scheduler" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamscheduler.exe"
+ "MBAMService" "Malwarebytes Anti-Malware service" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamservice.exe"
+ "MozillaMaintenance" "The Mozilla Maintenance Service ensures that you have the latest and most secure version of Mozilla Firefox on your computer. Keeping Firefox up to date is very important for your online security, and Mozilla strongly recommends that you keep this service enabled." "Mozilla Foundation" "c:\program files (x86)\mozilla maintenance service\maintenanceservice.exe"
+ "Net Driver HPZ12" "Dot4Net Module" "Hewlett-Packard" "c:\windows\system32\hpzinw12.dll"
+ "nvsvc" "Provides system and desktop level support to the NVIDIA display driver" "NVIDIA Corporation" "c:\windows\system32\nvvsvc.exe"
+ "nvUpdatusService" "NVIDIA Settings Update Manager service, used to check new updates from NVIDIA server." "NVIDIA Corporation" "c:\program files (x86)\nvidia corporation\nvidia update core\daemonu.exe"
+ "ose" "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports." "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\source engine\ose.exe"
+ "osppsvc" "Office Software Protection Platform Service (unlocalized description)" "Microsoft Corporation" "c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\osppsvc.exe"
+ "Pml Driver HPZ12" "PmlDrv Module" "Hewlett-Packard" "c:\windows\system32\hpzipm12.dll"
+ "Skype C2C Service" "Skype Click to Call Update Service" "Skype Technologies S.A." "c:\programdata\skype\toolbars\skype c2c service\c2c_service.exe"
+ "SkypeUpdate" "Enables the detection, download and installation of updates for Skype." "Skype Technologies" "c:\program files (x86)\skype\updater\updater.exe"
+ "Steam Client Service" "Steam Client Service monitors and updates Steam content" "Valve Corporation" "c:\program files (x86)\common files\steam\steamservice.exe"
+ "Stereo Service" "Provides system support for NVIDIA Stereoscopic 3D driver" "NVIDIA Corporation" "c:\program files (x86)\nvidia corporation\3d vision\nvscpapisvr.exe"
+ "TeamViewer8" "TeamViewer Remote Software" "TeamViewer GmbH" "c:\program files (x86)\teamviewer\version8\teamviewer_service.exe"
+ "WinDefend" "Protection against spyware and potentially unwanted software" "Microsoft Corporation" "c:\program files\windows defender\mpsvc.dll"
+ "WMPNetworkSvc" "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play" "Microsoft Corporation" "c:\program files\windows media player\wmpnetwk.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "adp94xx" "Adaptec Windows SAS/SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adp94xx.sys"
+ "adpahci" "Adaptec Windows SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adpahci.sys"
+ "adpu320" "Adaptec StorPort Ultra320 SCSI Driver (X64)" "Adaptec, Inc." "c:\windows\system32\drivers\adpu320.sys"
+ "aliide" "ALi mini IDE Driver" "Acer Laboratories Inc." "c:\windows\system32\drivers\aliide.sys"
+ "ALSysIO" "" "" "File not found: C:\Users\LLAMA-2\AppData\Local\Temp\ALSysIO64.sys"
+ "amdsata" "AHCI 1.2 Device Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdsata.sys"
+ "amdsbs" "AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform" "AMD Technologies Inc." "c:\windows\system32\drivers\amdsbs.sys"
+ "amdxata" "Storage Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdxata.sys"
+ "AnyDVD" "AnyDVD Filter Driver" "SlySoft, Inc." "c:\windows\system32\drivers\anydvd.sys"
+ "arc" "Adaptec RAID Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arc.sys"
+ "arcsas" "Adaptec SAS RAID WS03 Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arcsas.sys"
+ "aswMBR" "" "" "File not found: C:\Users\LLAMA-2\AppData\Local\Temp\aswMBR.sys"
+ "b06bdrv" "Broadcom NetXtreme II GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\bxvbda.sys"
+ "b57nd60a" "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver." "Broadcom Corporation" "c:\windows\system32\drivers\b57nd60a.sys"
+ "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys"
+ "Brserid" "Brotehr Serial I/F Driver (WDM)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserid.sys"
+ "BrSerWdm" "Brother Serial driver (WDM version)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserwdm.sys"
+ "BrUsbMdm" "Brother USB MDM Driver " "Brother Industries Ltd." "c:\windows\system32\drivers\brusbmdm.sys"
+ "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys"
+ "cmdide" "CMD PCI IDE Bus Driver" "CMD Technology, Inc." "c:\windows\system32\drivers\cmdide.sys"
+ "e1kexpress" "Intel® Gigabit Adapter NDIS 6.x driver" "Intel Corporation" "c:\windows\system32\drivers\e1k62x64.sys"
+ "ebdrv" "Broadcom NetXtreme II 10 GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\evbda.sys"
+ "ElbyCDIO" "ElbyCD Windows x64 I/O driver" "Elaborate Bytes AG" "c:\windows\system32\drivers\elbycdio.sys"
+ "elxstor" "Storport Miniport Driver for LightPulse HBAs" "Emulex" "c:\windows\system32\drivers\elxstor.sys"
+ "GEARAspiWDM" "CD DVD Filter" "GEAR Software Inc." "c:\windows\system32\drivers\gearaspiwdm.sys"
+ "hamachi" "Hamachi Virtual Network Interface Driver" "LogMeIn, Inc." "c:\windows\system32\drivers\hamachi.sys"
+ "hcw85cir" "Hauppauge WinTV 885 Consumer IR Driver for eHome" "Hauppauge Computer Works, Inc." "c:\windows\system32\drivers\hcw85cir.sys"
+ "HpSAMD" "Smart Array SAS/SATA Controller Media Driver" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpsamd.sys"
+ "iaStorV" "Intel Matrix Storage Manager driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastorv.sys"
+ "iirsp" "Intel/ICP Raid Storport Driver" "Intel Corp./ICP vortex GmbH" "c:\windows\system32\drivers\iirsp.sys"
+ "LSI_FC" "LSI Fusion-MPT FC Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_fc.sys"
+ "LSI_SAS" "LSI Fusion-MPT SAS Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas.sys"
+ "LSI_SAS2" "LSI SAS Gen2 Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas2.sys"
+ "LSI_SCSI" "LSI Fusion-MPT SCSI Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_scsi.sys"
+ "MBAMProtector" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\windows\system32\drivers\mbam.sys"
+ "megasas" "MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for x64" "LSI Corporation" "c:\windows\system32\drivers\megasas.sys"
+ "MegaSR" "LSI MegaRAID Software RAID Driver" "LSI Corporation, Inc." "c:\windows\system32\drivers\megasr.sys"
+ "nfrd960" "IBM ServeRAID Controller Driver" "IBM Corporation" "c:\windows\system32\drivers\nfrd960.sys"
+ "NVHDA" "NVIDIA HDMI Audio Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvhda64v.sys"
+ "nvlddmkm" "NVIDIA Windows Kernel Mode Driver, Version 306.97 " "NVIDIA Corporation" "c:\windows\system32\drivers\nvlddmkm.sys"
+ "nvraid" "NVIDIA® nForce™ RAID Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvraid.sys"
+ "nvstor" "NVIDIA® nForce™ Sata Performance Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvstor.sys"
+ "ql2300" "QLogic Fibre Channel Stor Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql2300.sys"
+ "ql40xx" "QLogic iSCSI Storport Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql40xx.sys"
+ "SASDIFSV" "SASDIFSV64.SYS" "SUPERAdBlocker.com and SUPERAntiSpyware.com" "c:\program files\superantispyware\sasdifsv64.sys"
+ "SASKUTIL" "SASKUTIL64.SYS" "SUPERAdBlocker.com and SUPERAntiSpyware.com" "c:\program files\superantispyware\saskutil64.sys"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "SiSRaid2" "SiS RAID Stor Miniport Driver" "Silicon Integrated Systems Corp." "c:\windows\system32\drivers\sisraid2.sys"
+ "SiSRaid4" "SiS AHCI Stor-Miniport Driver" "Silicon Integrated Systems" "c:\windows\system32\drivers\sisraid4.sys"
+ "stexstor" "Promise SuperTrak EX Series Driver for Windows " "Promise Technology" "c:\windows\system32\drivers\stexstor.sys"
+ "USBAAPL64" "Apple Mobile Device USB Driver" "Apple, Inc." "c:\windows\system32\drivers\usbaapl64.sys"
+ "viaide" "VIA Generic PCI IDE Bus Driver" "VIA Technologies, Inc." "c:\windows\system32\drivers\viaide.sys"
+ "vsmraid" "VIA RAID DRIVER FOR AMD-X86-64" "VIA Technologies Inc.,Ltd" "c:\windows\system32\drivers\vsmraid.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\syswow64\l3codeca.acm"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\syswow64\iccvid.dll"
"HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "Audio Destination" "WAVDest Filter (Sample)" "Microsoft Corporation" "c:\program files (x86)\google\google earth\client\wavdest.ax"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files (x86)\bonjour\mdnsnsp.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files\bonjour\mdnsnsp.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" ""
+ "hpf3l101.dll" "LanguageMonitor" "Hewlett-Packard Company" "c:\windows\system32\hpf3l101.dll"

#7 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:39 PM

Posted 14 January 2013 - 08:23 PM

.


Edited by narenxp, 12 March 2013 - 12:32 AM.


#8 AndyMan315

AndyMan315
  • Topic Starter

  • Members
  • 120 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Syracuse, NY
  • Local time:05:39 PM

Posted 15 January 2013 - 06:45 PM

MiniToolBox by Farbar Version:10-01-2013
Ran by LLAMA-2 (administrator) on 15-01-2013 at 18:45:38
Running from "C:\Users\LLAMA-2\Downloads"
Windows 7 Professional (X64)
Boot Mode: Normal
***************************************************************************
========================= Hosts content: =================================

# ::1 localhost


**** End of log ****

#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:39 PM

Posted 15 January 2013 - 07:06 PM

That looks good

Remove temporary and junk files

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot.If TFC locks up the system,run it in safemode


Create a new restore point

Follow this guide to turn off and turn on your restore points

XP- http://support.microsoft.com/kb/310405

Vista & windows 7- http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Turn off your system restore-It deletes old infected restore points

Turn on system restore and create a new restore point

Update JAVA and Flash player

Uninstall old version of java from control panel-Add or remove programs.Download the latest version from here

http://java.com/en/

Update your flash player

Antivirus recommendations

Update your antivirus frequently.Two free antivirus that i would suggest are

Microsoft security essentials or Avast.You can select either one of them.

If you have a paid one,make sure to update it frequently.Do not use multiple security softwares.

Informative guides that could prevent you from being infected again

How did I get infected?

http://www.bleepingcomputer.com/forums/topic2520.html

Best Practices for Safe Computing - Prevention of Malware Infection

http://www.bleepingcomputer.com/forums/topic407147.html

Simple and easy ways to keep your computer safe and secure on the Internet

http://www.bleepingcomputer.com/tutorials/keep-your-computer-safe-online/

Safe surfing :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users