Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Icon moved on screen! Help please Possible KEYLOGGER!


  • Please log in to reply
59 replies to this topic

#1 lindaga35

lindaga35

  • Members
  • 384 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:07:46 PM

Posted 01 February 2013 - 08:37 AM

When i log on my laptop the google icon has moved!

I've ran malwarebytes and microsoft Essentials. Nothing is found each time.

What do you suggest i do?

Thank you for your help

BC AdBot (Login to Remove)

 


#2 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:11:46 PM

Posted 02 February 2013 - 05:06 PM

Hi

What do you mean by the google icon moves?
- Does the icon appear in one place before you log off, and then a different place after you've logged back in?
- How about when the computer has been restarted - same problem?

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#3 lindaga35

lindaga35
  • Topic Starter

  • Members
  • 384 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:07:46 PM

Posted 02 February 2013 - 10:22 PM

Yes when I log off its in one place. Then when i log back in its moved.

It's the same when its restarted too.

I had updated java the other day and i think it started around that time.

#4 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:11:46 PM

Posted 03 February 2013 - 05:34 AM

Ok

I need some more information:

------

I will be helping you with your problems. Please be patient while I assist you.

Some points for you to keep in mind while I am helping you to make things go easier and faster for both of us

  • Please do NOT run, install or uninstall any programs, unless instructed to do so.
    • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
  • Please do not attach logs or use code boxes, just copy and paste the text.
    • Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
  • Please read every post completely before doing anything.
    • Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.
  • Please provide feedback about your experience as we go.
    • A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.

NOTE: At the top of your post, click on the Watch Topic Button, select Immediate Notification, and click on Proceed. This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.

NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of heartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.
- Do NOT backup any unknown files ending in .exe, .com, .scr, .pif, and .bat since files of these types are more likely to be infected.

NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.

----------------------------------------------

Please do the following:

:step1:

Please download the TDSS Rootkit Removing Tool (TDSSKiller.exe) and save it to your Desktop. <-Important!!!
  • Double-click on TDSSKiller.exe on your desktop to run the tool for known TDSS variants.
    Vista/Windows 7 users right-click and select Run As Administrator.
  • If TDSSKiller does not run, try renaming it.
  • To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to How to change the file extension.
  • Click on change parameters
  • Under Objects to scan, check the boxes next to Verify file digital signatures, Detect TDLFS file system, then click OK.
  • Click the Start Scan button.
  • Do not use the computer during the scan
  • If the scan completes with nothing found, click Close to exit.
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Note: If Cure is not an option, Skip instead, do NOT choose Delete or Quarantine unless instructed.
  • A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.2.4.0.0_27.07.2010_09.o7.26_log.txt) will be created and saved to the root directory (usually Local Disk C:).
  • Copy and paste the full contents of that file in your next reply. - If the log is too long, then split it into multiple posts.


:step2:

Please download AdwCleaner by Xplode onto your desktop.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Search.
  • A logfile will automatically open after the scan has finished.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[R1].txt as well.


:step3:

Please download Farbar Service Scanner and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press Scan.
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the full contents of the log in your next reply.


:step4:

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices (Only Problems)
  • List Users, Partitions and Memory size.
  • List Minidump Files
  • List Restore points
NOTE: When using "Reset FF Proxy Settings" option Firefox should be closed.

Click Go and post the full contents of the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#5 lindaga35

lindaga35
  • Topic Starter

  • Members
  • 384 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:07:46 PM

Posted 03 February 2013 - 09:31 AM

When i down loaded the tsskiller it didnt give me the option of saving it to my desktop. It only saved it to my downloads. do you still want me to run it? i wasnt for sure so i wanted to ask you BEFORE i did anything else.

I know you said all the steps need to be done in order.

Thanks!!

#6 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:11:46 PM

Posted 03 February 2013 - 10:56 AM

in that case try running it from the downloads folder

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#7 lindaga35

lindaga35
  • Topic Starter

  • Members
  • 384 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:07:46 PM

Posted 03 February 2013 - 04:01 PM

the AdwCleaner by Xplode WOULDNT RUN. it said it was out of date when i said i do not want to down load a new one it tried to open a pdf file but it said it couldnt.

HERE IS THE REST OF THE REPORTS:
15:30:02.0273 4512 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
15:30:02.0991 4512 ============================================================
15:30:02.0991 4512 Current date / time: 2013/02/03 15:30:02.0991
15:30:02.0991 4512 SystemInfo:
15:30:02.0991 4512
15:30:02.0991 4512 OS Version: 6.1.7601 ServicePack: 1.0
15:30:02.0991 4512 Product type: Workstation
15:30:02.0991 4512 ComputerName: COURTNEY-HP
15:30:02.0991 4512 UserName: courtney
15:30:02.0991 4512 Windows directory: C:\Windows
15:30:02.0991 4512 System windows directory: C:\Windows
15:30:02.0991 4512 Running under WOW64
15:30:02.0991 4512 Processor architecture: Intel x64
15:30:02.0991 4512 Number of processors: 1
15:30:02.0991 4512 Page size: 0x1000
15:30:02.0991 4512 Boot type: Normal boot
15:30:02.0991 4512 ============================================================
15:30:04.0441 4512 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:30:04.0660 4512 ============================================================
15:30:04.0660 4512 \Device\Harddisk0\DR0:
15:30:04.0660 4512 MBR partitions:
15:30:04.0660 4512 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
15:30:04.0660 4512 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x23114800
15:30:04.0660 4512 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x23178800, BlocksNum 0x2282000
15:30:04.0660 4512 \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x253FA800, BlocksNum 0x33AB0
15:30:04.0660 4512 ============================================================
15:30:04.0675 4512 C: <-> \Device\Harddisk0\DR0\Partition2
15:30:04.0738 4512 D: <-> \Device\Harddisk0\DR0\Partition3
15:30:04.0738 4512 ============================================================
15:30:04.0738 4512 Initialize success
15:30:04.0738 4512 ============================================================
15:32:37.0736 2788 ============================================================
15:32:37.0736 2788 Scan started
15:32:37.0736 2788 Mode: Manual; SigCheck; TDLFS;
15:32:37.0736 2788 ============================================================
15:32:38.0095 2788 ================ Scan system memory ========================
15:32:38.0095 2788 System memory - ok
15:32:38.0110 2788 ================ Scan services =============================
15:32:38.0313 2788 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
15:32:38.0422 2788 1394ohci - ok
15:32:38.0469 2788 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
15:32:38.0500 2788 ACPI - ok
15:32:38.0532 2788 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
15:32:38.0594 2788 AcpiPmi - ok
15:32:38.0719 2788 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
15:32:38.0734 2788 AdobeARMservice - ok
15:32:38.0890 2788 [ 424877CB9D5517F980FF7BACA2EB379D ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
15:32:38.0906 2788 AdobeFlashPlayerUpdateSvc - ok
15:32:38.0953 2788 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
15:32:38.0984 2788 adp94xx - ok
15:32:39.0031 2788 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
15:32:39.0046 2788 adpahci - ok
15:32:39.0093 2788 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
15:32:39.0109 2788 adpu320 - ok
15:32:39.0140 2788 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
15:32:39.0249 2788 AeLookupSvc - ok
15:32:39.0358 2788 [ D1E343BC00136CE03C4D403194D06A80 ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
15:32:39.0374 2788 AERTFilters - ok
15:32:39.0421 2788 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
15:32:39.0468 2788 AFD - ok
15:32:39.0530 2788 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
15:32:39.0546 2788 agp440 - ok
15:32:39.0577 2788 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
15:32:39.0624 2788 ALG - ok
15:32:39.0670 2788 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
15:32:39.0686 2788 aliide - ok
15:32:39.0702 2788 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
15:32:39.0717 2788 amdide - ok
15:32:39.0764 2788 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
15:32:39.0811 2788 AmdK8 - ok
15:32:39.0826 2788 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
15:32:39.0873 2788 AmdPPM - ok
15:32:39.0904 2788 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
15:32:39.0936 2788 amdsata - ok
15:32:39.0967 2788 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
15:32:39.0982 2788 amdsbs - ok
15:32:40.0014 2788 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
15:32:40.0029 2788 amdxata - ok
15:32:40.0076 2788 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
15:32:40.0201 2788 AppID - ok
15:32:40.0248 2788 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
15:32:40.0294 2788 AppIDSvc - ok
15:32:40.0341 2788 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
15:32:40.0372 2788 Appinfo - ok
15:32:40.0435 2788 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:32:40.0450 2788 Apple Mobile Device - ok
15:32:40.0497 2788 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
15:32:40.0513 2788 arc - ok
15:32:40.0528 2788 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
15:32:40.0544 2788 arcsas - ok
15:32:40.0575 2788 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
15:32:40.0638 2788 AsyncMac - ok
15:32:40.0669 2788 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
15:32:40.0684 2788 atapi - ok
15:32:40.0747 2788 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:32:40.0809 2788 AudioEndpointBuilder - ok
15:32:40.0825 2788 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
15:32:40.0872 2788 AudioSrv - ok
15:32:40.0918 2788 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
15:32:40.0965 2788 AxInstSV - ok
15:32:41.0012 2788 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
15:32:41.0043 2788 b06bdrv - ok
15:32:41.0090 2788 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
15:32:41.0121 2788 b57nd60a - ok
15:32:41.0168 2788 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
15:32:41.0215 2788 BDESVC - ok
15:32:41.0246 2788 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
15:32:41.0308 2788 Beep - ok
15:32:41.0371 2788 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
15:32:41.0433 2788 BFE - ok
15:32:41.0496 2788 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
15:32:41.0558 2788 BITS - ok
15:32:41.0589 2788 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
15:32:41.0620 2788 blbdrive - ok
15:32:41.0683 2788 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
15:32:41.0714 2788 Bonjour Service - ok
15:32:41.0745 2788 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
15:32:41.0776 2788 bowser - ok
15:32:41.0808 2788 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
15:32:41.0870 2788 BrFiltLo - ok
15:32:41.0886 2788 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
15:32:41.0917 2788 BrFiltUp - ok
15:32:41.0948 2788 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
15:32:41.0995 2788 Browser - ok
15:32:42.0042 2788 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
15:32:42.0073 2788 Brserid - ok
15:32:42.0120 2788 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
15:32:42.0135 2788 BrSerWdm - ok
15:32:42.0166 2788 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
15:32:42.0213 2788 BrUsbMdm - ok
15:32:42.0229 2788 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
15:32:42.0260 2788 BrUsbSer - ok
15:32:42.0307 2788 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
15:32:42.0338 2788 BTHMODEM - ok
15:32:42.0385 2788 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
15:32:42.0432 2788 bthserv - ok
15:32:42.0494 2788 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
15:32:42.0541 2788 cdfs - ok
15:32:42.0603 2788 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
15:32:42.0634 2788 cdrom - ok
15:32:42.0681 2788 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
15:32:42.0728 2788 CertPropSvc - ok
15:32:42.0790 2788 [ 533328A3D9A9C286682525842547540C ] CinemaNow Service C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemanowSvc.exe
15:32:42.0822 2788 CinemaNow Service - ok
15:32:42.0868 2788 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
15:32:42.0900 2788 circlass - ok
15:32:42.0946 2788 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
15:32:42.0962 2788 CLFS - ok
15:32:43.0024 2788 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:32:43.0040 2788 clr_optimization_v2.0.50727_32 - ok
15:32:43.0102 2788 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
15:32:43.0118 2788 clr_optimization_v2.0.50727_64 - ok
15:32:43.0196 2788 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:32:43.0212 2788 clr_optimization_v4.0.30319_32 - ok
15:32:43.0290 2788 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
15:32:43.0305 2788 clr_optimization_v4.0.30319_64 - ok
15:32:43.0336 2788 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
15:32:43.0383 2788 CmBatt - ok
15:32:43.0399 2788 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
15:32:43.0414 2788 cmdide - ok
15:32:43.0461 2788 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
15:32:43.0492 2788 CNG - ok
15:32:43.0539 2788 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
15:32:43.0555 2788 Compbatt - ok
15:32:43.0602 2788 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
15:32:43.0633 2788 CompositeBus - ok
15:32:43.0664 2788 COMSysApp - ok
15:32:43.0711 2788 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
15:32:43.0726 2788 crcdisk - ok
15:32:43.0773 2788 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
15:32:43.0820 2788 CryptSvc - ok
15:32:43.0914 2788 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
15:32:43.0945 2788 cvhsvc - ok
15:32:43.0976 2788 [ B1C55A95006D621D04FE4A23F86C0A54 ] DCamUSBEMPIA C:\Windows\system32\DRIVERS\emDevice64.sys
15:32:44.0007 2788 DCamUSBEMPIA - ok
15:32:44.0070 2788 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
15:32:44.0132 2788 DcomLaunch - ok
15:32:44.0179 2788 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
15:32:44.0241 2788 defragsvc - ok
15:32:44.0288 2788 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
15:32:44.0335 2788 DfsC - ok
15:32:44.0413 2788 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
15:32:44.0460 2788 Dhcp - ok
15:32:44.0506 2788 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
15:32:44.0553 2788 discache - ok
15:32:44.0600 2788 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
15:32:44.0616 2788 Disk - ok
15:32:44.0647 2788 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
15:32:44.0694 2788 Dnscache - ok
15:32:44.0756 2788 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
15:32:44.0803 2788 dot3svc - ok
15:32:44.0850 2788 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
15:32:44.0896 2788 DPS - ok
15:32:44.0943 2788 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
15:32:44.0959 2788 drmkaud - ok
15:32:45.0037 2788 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
15:32:45.0084 2788 DXGKrnl - ok
15:32:45.0115 2788 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
15:32:45.0177 2788 EapHost - ok
15:32:45.0271 2788 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
15:32:45.0349 2788 ebdrv - ok
15:32:45.0380 2788 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
15:32:45.0427 2788 EFS - ok
15:32:45.0505 2788 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
15:32:45.0552 2788 ehRecvr - ok
15:32:45.0583 2788 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
15:32:45.0614 2788 ehSched - ok
15:32:45.0645 2788 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
15:32:45.0676 2788 elxstor - ok
15:32:45.0723 2788 [ 8543BB84CD5872CD1619183F5CBBE3F9 ] emAudio C:\Windows\system32\drivers\emAudio64.sys
15:32:45.0754 2788 emAudio - ok
15:32:45.0801 2788 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
15:32:45.0817 2788 ErrDev - ok
15:32:45.0895 2788 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
15:32:45.0942 2788 EventSystem - ok
15:32:45.0988 2788 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
15:32:46.0051 2788 exfat - ok
15:32:46.0066 2788 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
15:32:46.0129 2788 fastfat - ok
15:32:46.0191 2788 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
15:32:46.0222 2788 Fax - ok
15:32:46.0254 2788 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
15:32:46.0285 2788 fdc - ok
15:32:46.0347 2788 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
15:32:46.0410 2788 fdPHost - ok
15:32:46.0441 2788 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
15:32:46.0488 2788 FDResPub - ok
15:32:46.0519 2788 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
15:32:46.0534 2788 FileInfo - ok
15:32:46.0550 2788 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
15:32:46.0612 2788 Filetrace - ok
15:32:46.0659 2788 [ 73FBB50C4D92ADC30A9D57A269489A0B ] FiltUSBEMPIA C:\Windows\system32\DRIVERS\emFilter64.sys
15:32:46.0675 2788 FiltUSBEMPIA - ok
15:32:46.0706 2788 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
15:32:46.0722 2788 flpydisk - ok
15:32:46.0768 2788 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
15:32:46.0784 2788 FltMgr - ok
15:32:46.0846 2788 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
15:32:46.0893 2788 FontCache - ok
15:32:46.0971 2788 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:32:46.0987 2788 FontCache3.0.0.0 - ok
15:32:47.0002 2788 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
15:32:47.0018 2788 FsDepends - ok
15:32:47.0065 2788 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
15:32:47.0080 2788 Fs_Rec - ok
15:32:47.0127 2788 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
15:32:47.0143 2788 fvevol - ok
15:32:47.0174 2788 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
15:32:47.0190 2788 gagp30kx - ok
15:32:47.0252 2788 [ CE16683CFD11FE70BDE435DDA5EA1FCA ] GameConsoleService C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
15:32:47.0268 2788 GameConsoleService - ok
15:32:47.0299 2788 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
15:32:47.0314 2788 GEARAspiWDM - ok
15:32:47.0377 2788 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
15:32:47.0439 2788 gpsvc - ok
15:32:47.0502 2788 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:32:47.0517 2788 gupdate - ok
15:32:47.0517 2788 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:32:47.0533 2788 gupdatem - ok
15:32:47.0580 2788 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
15:32:47.0595 2788 hcw85cir - ok
15:32:47.0658 2788 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:32:47.0704 2788 HdAudAddService - ok
15:32:47.0720 2788 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
15:32:47.0751 2788 HDAudBus - ok
15:32:47.0782 2788 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
15:32:47.0814 2788 HidBatt - ok
15:32:47.0860 2788 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
15:32:47.0892 2788 HidBth - ok
15:32:47.0907 2788 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
15:32:47.0938 2788 HidIr - ok
15:32:47.0970 2788 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
15:32:48.0016 2788 hidserv - ok
15:32:48.0079 2788 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
15:32:48.0094 2788 HidUsb - ok
15:32:48.0141 2788 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
15:32:48.0188 2788 hkmsvc - ok
15:32:48.0235 2788 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:32:48.0266 2788 HomeGroupListener - ok
15:32:48.0313 2788 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:32:48.0328 2788 HomeGroupProvider - ok
15:32:48.0422 2788 [ BB1FC298BE53AAB1E110F6E786BD8AC5 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
15:32:48.0438 2788 HP Support Assistant Service ( UnsignedFile.Multi.Generic ) - warning
15:32:48.0438 2788 HP Support Assistant Service - detected UnsignedFile.Multi.Generic (1)
15:32:48.0531 2788 [ 3A09322A8AA8B0C79036686A0EBE7B4C ] HP Wireless Assistant Service C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
15:32:48.0547 2788 HP Wireless Assistant Service - ok
15:32:48.0609 2788 [ 9B7EDD3FE7C211C36E921D34D18A3A0A ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
15:32:48.0640 2788 hpqwmiex - ok
15:32:48.0687 2788 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
15:32:48.0703 2788 HpSAMD - ok
15:32:48.0750 2788 [ F630DD7564EBB7248A13B1CC774D9EA6 ] HPWMISVC C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
15:32:48.0765 2788 HPWMISVC - ok
15:32:48.0828 2788 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
15:32:48.0890 2788 HTTP - ok
15:32:48.0921 2788 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
15:32:48.0937 2788 hwpolicy - ok
15:32:48.0984 2788 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
15:32:48.0999 2788 i8042prt - ok
15:32:49.0030 2788 [ 1384872112E8E7FD5786ECEB8BDDF4C9 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
15:32:49.0062 2788 iaStor - ok
15:32:49.0108 2788 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
15:32:49.0124 2788 iaStorV - ok
15:32:49.0186 2788 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
15:32:49.0218 2788 idsvc - ok
15:32:49.0467 2788 [ C6238C6ABD6AC99F5D152DA4E9439A3D ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
15:32:49.0779 2788 igfx - ok
15:32:49.0810 2788 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
15:32:49.0826 2788 iirsp - ok
15:32:49.0888 2788 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
15:32:49.0951 2788 IKEEXT - ok
15:32:50.0029 2788 [ B88E24BD77A0CE2CFFEE2FACF1151BE0 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
15:32:50.0091 2788 IntcAzAudAddService - ok
15:32:50.0122 2788 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
15:32:50.0138 2788 intelide - ok
15:32:50.0185 2788 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
15:32:50.0216 2788 intelppm - ok
15:32:50.0247 2788 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
15:32:50.0294 2788 IPBusEnum - ok
15:32:50.0341 2788 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:32:50.0388 2788 IpFilterDriver - ok
15:32:50.0450 2788 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
15:32:50.0481 2788 iphlpsvc - ok
15:32:50.0512 2788 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
15:32:50.0544 2788 IPMIDRV - ok
15:32:50.0559 2788 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
15:32:50.0622 2788 IPNAT - ok
15:32:50.0684 2788 [ 0F261EC4F514926177C70C1832374231 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
15:32:50.0715 2788 iPod Service - ok
15:32:50.0762 2788 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
15:32:50.0840 2788 IRENUM - ok
15:32:50.0871 2788 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
15:32:50.0887 2788 isapnp - ok
15:32:50.0918 2788 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
15:32:50.0934 2788 iScsiPrt - ok
15:32:50.0980 2788 [ BE72D2B3A99615F84E270C80F0A18448 ] ISWKL C:\Program Files\CheckPoint\ZAForceField\ISWKL.sys
15:32:50.0996 2788 ISWKL - ok
15:32:51.0058 2788 [ D9A4C1353CC653F8E2FE4D2C6A490E96 ] IswSvc C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe
15:32:51.0074 2788 IswSvc - ok
15:32:51.0121 2788 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
15:32:51.0136 2788 kbdclass - ok
15:32:51.0168 2788 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
15:32:51.0183 2788 kbdhid - ok
15:32:51.0199 2788 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
15:32:51.0214 2788 KeyIso - ok
15:32:51.0246 2788 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
15:32:51.0261 2788 KSecDD - ok
15:32:51.0292 2788 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
15:32:51.0308 2788 KSecPkg - ok
15:32:51.0355 2788 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
15:32:51.0402 2788 ksthunk - ok
15:32:51.0464 2788 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
15:32:51.0511 2788 KtmRm - ok
15:32:51.0573 2788 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
15:32:51.0620 2788 LanmanServer - ok
15:32:51.0667 2788 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:32:51.0714 2788 LanmanWorkstation - ok
15:32:51.0807 2788 [ 7550D101BF49FDB1F92666A233EE36C4 ] LightScribeService C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
15:32:51.0870 2788 LightScribeService ( UnsignedFile.Multi.Generic ) - warning
15:32:51.0870 2788 LightScribeService - detected UnsignedFile.Multi.Generic (1)
15:32:51.0916 2788 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
15:32:51.0963 2788 lltdio - ok
15:32:52.0010 2788 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
15:32:52.0057 2788 lltdsvc - ok
15:32:52.0072 2788 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
15:32:52.0119 2788 lmhosts - ok
15:32:52.0150 2788 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
15:32:52.0166 2788 LSI_FC - ok
15:32:52.0182 2788 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
15:32:52.0197 2788 LSI_SAS - ok
15:32:52.0228 2788 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
15:32:52.0244 2788 LSI_SAS2 - ok
15:32:52.0275 2788 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
15:32:52.0291 2788 LSI_SCSI - ok
15:32:52.0322 2788 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
15:32:52.0369 2788 luafv - ok
15:32:52.0447 2788 [ 4208B958E35F0E596AA241EFB664636B ] lxdxCATSCustConnectService C:\Windows\system32\spool\DRIVERS\x64\3\\lxdxserv.exe
15:32:52.0462 2788 lxdxCATSCustConnectService - ok
15:32:52.0478 2788 lxdx_device - ok
15:32:52.0525 2788 [ 024DA28053D57E9E32BEE52600576BBB ] MarvinBus C:\Windows\system32\DRIVERS\MarvinBus64.sys
15:32:52.0556 2788 MarvinBus - ok
15:32:52.0603 2788 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
15:32:52.0634 2788 Mcx2Svc - ok
15:32:52.0681 2788 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
15:32:52.0696 2788 megasas - ok
15:32:52.0712 2788 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
15:32:52.0728 2788 MegaSR - ok
15:32:52.0774 2788 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
15:32:52.0852 2788 MMCSS - ok
15:32:52.0899 2788 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
15:32:52.0946 2788 Modem - ok
15:32:52.0977 2788 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
15:32:53.0008 2788 monitor - ok
15:32:53.0040 2788 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
15:32:53.0055 2788 mouclass - ok
15:32:53.0086 2788 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
15:32:53.0102 2788 mouhid - ok
15:32:53.0133 2788 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
15:32:53.0149 2788 mountmgr - ok
15:32:53.0211 2788 [ 9C3758018DED02F4AE53CCA1C5F084A2 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
15:32:53.0227 2788 MozillaMaintenance - ok
15:32:53.0274 2788 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
15:32:53.0305 2788 MpFilter - ok
15:32:53.0320 2788 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
15:32:53.0336 2788 mpio - ok
15:32:53.0367 2788 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
15:32:53.0414 2788 mpsdrv - ok
15:32:53.0461 2788 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
15:32:53.0539 2788 MpsSvc - ok
15:32:53.0570 2788 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
15:32:53.0601 2788 MRxDAV - ok
15:32:53.0648 2788 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
15:32:53.0695 2788 mrxsmb - ok
15:32:53.0742 2788 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:32:53.0757 2788 mrxsmb10 - ok
15:32:53.0788 2788 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:32:53.0820 2788 mrxsmb20 - ok
15:32:53.0851 2788 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
15:32:53.0851 2788 msahci - ok
15:32:53.0898 2788 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
15:32:53.0913 2788 msdsm - ok
15:32:53.0929 2788 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
15:32:53.0976 2788 MSDTC - ok
15:32:54.0022 2788 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
15:32:54.0069 2788 Msfs - ok
15:32:54.0085 2788 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
15:32:54.0116 2788 mshidkmdf - ok
15:32:54.0147 2788 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
15:32:54.0163 2788 msisadrv - ok
15:32:54.0194 2788 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
15:32:54.0256 2788 MSiSCSI - ok
15:32:54.0272 2788 msiserver - ok
15:32:54.0319 2788 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
15:32:54.0381 2788 MSKSSRV - ok
15:32:54.0428 2788 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
15:32:54.0444 2788 MsMpSvc - ok
15:32:54.0475 2788 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
15:32:54.0537 2788 MSPCLOCK - ok
15:32:54.0553 2788 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
15:32:54.0615 2788 MSPQM - ok
15:32:54.0662 2788 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
15:32:54.0678 2788 MsRPC - ok
15:32:54.0709 2788 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
15:32:54.0724 2788 mssmbios - ok
15:32:54.0756 2788 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
15:32:54.0834 2788 MSTEE - ok
15:32:54.0834 2788 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
15:32:54.0865 2788 MTConfig - ok
15:32:54.0896 2788 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
15:32:54.0912 2788 Mup - ok
15:32:54.0958 2788 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
15:32:55.0021 2788 napagent - ok
15:32:55.0068 2788 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
15:32:55.0099 2788 NativeWifiP - ok
15:32:55.0161 2788 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
15:32:55.0192 2788 NDIS - ok
15:32:55.0224 2788 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
15:32:55.0286 2788 NdisCap - ok
15:32:55.0317 2788 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
15:32:55.0364 2788 NdisTapi - ok
15:32:55.0411 2788 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
15:32:55.0458 2788 Ndisuio - ok
15:32:55.0504 2788 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
15:32:55.0567 2788 NdisWan - ok
15:32:55.0598 2788 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
15:32:55.0660 2788 NDProxy - ok
15:32:55.0707 2788 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
15:32:55.0770 2788 NetBIOS - ok
15:32:55.0816 2788 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
15:32:55.0863 2788 NetBT - ok
15:32:55.0894 2788 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
15:32:55.0910 2788 Netlogon - ok
15:32:55.0957 2788 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
15:32:56.0004 2788 Netman - ok
15:32:56.0035 2788 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
15:32:56.0097 2788 netprofm - ok
15:32:56.0144 2788 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
15:32:56.0160 2788 NetTcpPortSharing - ok
15:32:56.0316 2788 [ 64428DFDAF6E88366CB51F45A79C5F69 ] netw5v64 C:\Windows\system32\DRIVERS\netw5v64.sys
15:32:56.0487 2788 netw5v64 - ok
15:32:56.0503 2788 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
15:32:56.0518 2788 nfrd960 - ok
15:32:56.0581 2788 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
15:32:56.0596 2788 NisDrv - ok
15:32:56.0628 2788 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
15:32:56.0659 2788 NisSrv - ok
15:32:56.0721 2788 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
15:32:56.0752 2788 NlaSvc - ok
15:32:56.0784 2788 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
15:32:56.0830 2788 Npfs - ok
15:32:56.0877 2788 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
15:32:56.0924 2788 nsi - ok
15:32:56.0955 2788 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
15:32:57.0002 2788 nsiproxy - ok
15:32:57.0064 2788 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
15:32:57.0111 2788 Ntfs - ok
15:32:57.0142 2788 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
15:32:57.0205 2788 Null - ok
15:32:57.0252 2788 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
15:32:57.0267 2788 nvraid - ok
15:32:57.0298 2788 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
15:32:57.0314 2788 nvstor - ok
15:32:57.0345 2788 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
15:32:57.0361 2788 nv_agp - ok
15:32:57.0392 2788 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
15:32:57.0408 2788 ohci1394 - ok
15:32:57.0439 2788 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:32:57.0454 2788 ose - ok
15:32:57.0626 2788 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
15:32:57.0782 2788 osppsvc - ok
15:32:57.0829 2788 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
15:32:57.0844 2788 p2pimsvc - ok
15:32:57.0860 2788 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
15:32:57.0891 2788 p2psvc - ok
15:32:57.0922 2788 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
15:32:57.0938 2788 Parport - ok
15:32:57.0969 2788 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
15:32:57.0985 2788 partmgr - ok
15:32:58.0032 2788 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
15:32:58.0063 2788 PcaSvc - ok
15:32:58.0110 2788 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
15:32:58.0125 2788 pci - ok
15:32:58.0141 2788 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
15:32:58.0156 2788 pciide - ok
15:32:58.0203 2788 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
15:32:58.0219 2788 pcmcia - ok
15:32:58.0234 2788 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
15:32:58.0250 2788 pcw - ok
15:32:58.0297 2788 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
15:32:58.0359 2788 PEAUTH - ok
15:32:58.0453 2788 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
15:32:58.0484 2788 PerfHost - ok
15:32:58.0562 2788 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
15:32:58.0624 2788 pla - ok
15:32:58.0671 2788 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
15:32:58.0734 2788 PlugPlay - ok
15:32:58.0749 2788 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
15:32:58.0780 2788 PNRPAutoReg - ok
15:32:58.0796 2788 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
15:32:58.0827 2788 PNRPsvc - ok
15:32:58.0874 2788 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
15:32:58.0921 2788 PolicyAgent - ok
15:32:58.0952 2788 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
15:32:59.0014 2788 Power - ok
15:32:59.0061 2788 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
15:32:59.0124 2788 PptpMiniport - ok
15:32:59.0155 2788 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
15:32:59.0186 2788 Processor - ok
15:32:59.0233 2788 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
15:32:59.0248 2788 ProfSvc - ok
15:32:59.0264 2788 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
15:32:59.0280 2788 ProtectedStorage - ok
15:32:59.0342 2788 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
15:32:59.0389 2788 Psched - ok
15:32:59.0436 2788 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
15:32:59.0482 2788 ql2300 - ok
15:32:59.0529 2788 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
15:32:59.0545 2788 ql40xx - ok
15:32:59.0592 2788 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
15:32:59.0623 2788 QWAVE - ok
15:32:59.0670 2788 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
15:32:59.0701 2788 QWAVEdrv - ok
15:32:59.0732 2788 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
15:32:59.0763 2788 RasAcd - ok
15:32:59.0810 2788 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
15:32:59.0857 2788 RasAgileVpn - ok
15:32:59.0888 2788 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
15:32:59.0950 2788 RasAuto - ok
15:33:00.0013 2788 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
15:33:00.0060 2788 Rasl2tp - ok
15:33:00.0091 2788 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
15:33:00.0138 2788 RasMan - ok
15:33:00.0184 2788 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
15:33:00.0231 2788 RasPppoe - ok
15:33:00.0262 2788 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
15:33:00.0325 2788 RasSstp - ok
15:33:00.0372 2788 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
15:33:00.0418 2788 rdbss - ok
15:33:00.0450 2788 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
15:33:00.0481 2788 rdpbus - ok
15:33:00.0496 2788 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
15:33:00.0559 2788 RDPCDD - ok
15:33:00.0574 2788 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
15:33:00.0637 2788 RDPENCDD - ok
15:33:00.0668 2788 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
15:33:00.0715 2788 RDPREFMP - ok
15:33:00.0793 2788 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
15:33:00.0808 2788 RdpVideoMiniport - ok
15:33:00.0855 2788 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
15:33:00.0886 2788 RDPWD - ok
15:33:00.0949 2788 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
15:33:00.0964 2788 rdyboost - ok
15:33:00.0996 2788 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
15:33:01.0058 2788 RemoteAccess - ok
15:33:01.0089 2788 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
15:33:01.0136 2788 RemoteRegistry - ok
15:33:01.0167 2788 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
15:33:01.0230 2788 RpcEptMapper - ok
15:33:01.0276 2788 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
15:33:01.0308 2788 RpcLocator - ok
15:33:01.0354 2788 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
15:33:01.0401 2788 RpcSs - ok
15:33:01.0448 2788 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
15:33:01.0495 2788 rspndr - ok
15:33:01.0573 2788 [ 22D6B47D004A6568C500680BE2972854 ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
15:33:01.0588 2788 RSUSBSTOR - ok
15:33:01.0635 2788 [ EE082E06A82FF630351D1E0EBBD3D8D0 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
15:33:01.0666 2788 RTL8167 - ok
15:33:01.0713 2788 [ CE594045B2969F5FC3F77B824629AC7F ] rtl8192se C:\Windows\system32\DRIVERS\rtl8192se.sys
15:33:01.0744 2788 rtl8192se - ok
15:33:01.0791 2788 [ 5FFF3E71B4724BB10918FD6DD7413D99 ] RtVOsdService C:\Program Files\Realtek\RtVOsd\RtVOsdService.exe
15:33:01.0838 2788 RtVOsdService ( UnsignedFile.Multi.Generic ) - warning
15:33:01.0838 2788 RtVOsdService - detected UnsignedFile.Multi.Generic (1)
15:33:01.0854 2788 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
15:33:01.0869 2788 SamSs - ok
15:33:01.0900 2788 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
15:33:01.0916 2788 sbp2port - ok
15:33:01.0963 2788 [ EECBBF7D76300E5558D316983961FFC1 ] ScanUSBEMPIA C:\Windows\system32\DRIVERS\emScan64.sys
15:33:01.0978 2788 ScanUSBEMPIA - ok
15:33:02.0010 2788 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
15:33:02.0072 2788 SCardSvr - ok
15:33:02.0103 2788 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
15:33:02.0166 2788 scfilter - ok
15:33:02.0228 2788 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
15:33:02.0290 2788 Schedule - ok
15:33:02.0322 2788 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
15:33:02.0368 2788 SCPolicySvc - ok
15:33:02.0415 2788 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\drivers\sdbus.sys
15:33:02.0446 2788 sdbus - ok
15:33:02.0478 2788 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
15:33:02.0524 2788 SDRSVC - ok
15:33:02.0556 2788 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
15:33:02.0587 2788 secdrv - ok
15:33:02.0634 2788 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
15:33:02.0696 2788 seclogon - ok
15:33:02.0712 2788 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
15:33:02.0758 2788 SENS - ok
15:33:02.0805 2788 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
15:33:02.0836 2788 SensrSvc - ok
15:33:02.0868 2788 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
15:33:02.0899 2788 Serenum - ok
15:33:02.0914 2788 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
15:33:02.0946 2788 Serial - ok
15:33:02.0961 2788 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
15:33:02.0992 2788 sermouse - ok
15:33:03.0055 2788 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
15:33:03.0102 2788 SessionEnv - ok
15:33:03.0133 2788 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
15:33:03.0180 2788 sffdisk - ok
15:33:03.0195 2788 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
15:33:03.0226 2788 sffp_mmc - ok
15:33:03.0258 2788 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
15:33:03.0289 2788 sffp_sd - ok
15:33:03.0320 2788 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
15:33:03.0336 2788 sfloppy - ok
15:33:03.0398 2788 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
15:33:03.0429 2788 Sftfs - ok
15:33:03.0492 2788 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
15:33:03.0523 2788 sftlist - ok
15:33:03.0538 2788 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
15:33:03.0554 2788 Sftplay - ok
15:33:03.0585 2788 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
15:33:03.0601 2788 Sftredir - ok
15:33:03.0601 2788 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
15:33:03.0616 2788 Sftvol - ok
15:33:03.0663 2788 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
15:33:03.0679 2788 sftvsa - ok
15:33:03.0710 2788 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
15:33:03.0757 2788 SharedAccess - ok
15:33:03.0819 2788 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:33:03.0866 2788 ShellHWDetection - ok
15:33:03.0897 2788 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
15:33:03.0913 2788 SiSRaid2 - ok
15:33:03.0944 2788 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
15:33:03.0960 2788 SiSRaid4 - ok
15:33:04.0006 2788 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
15:33:04.0069 2788 Smb - ok
15:33:04.0131 2788 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
15:33:04.0162 2788 SNMPTRAP - ok
15:33:04.0209 2788 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
15:33:04.0225 2788 spldr - ok
15:33:04.0272 2788 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
15:33:04.0318 2788 Spooler - ok
15:33:04.0428 2788 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
15:33:04.0521 2788 sppsvc - ok
15:33:04.0552 2788 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
15:33:04.0615 2788 sppuinotify - ok
15:33:04.0662 2788 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
15:33:04.0708 2788 srv - ok
15:33:04.0755 2788 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
15:33:04.0771 2788 srv2 - ok
15:33:04.0818 2788 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
15:33:04.0849 2788 SrvHsfHDA - ok
15:33:04.0896 2788 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
15:33:04.0942 2788 SrvHsfV92 - ok
15:33:04.0974 2788 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
15:33:05.0020 2788 SrvHsfWinac - ok
15:33:05.0052 2788 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
15:33:05.0083 2788 srvnet - ok
15:33:05.0145 2788 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
15:33:05.0192 2788 SSDPSRV - ok
15:33:05.0223 2788 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
15:33:05.0270 2788 SstpSvc - ok
15:33:05.0301 2788 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
15:33:05.0317 2788 stexstor - ok
15:33:05.0364 2788 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
15:33:05.0410 2788 stisvc - ok
15:33:05.0442 2788 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
15:33:05.0457 2788 swenum - ok
15:33:05.0520 2788 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
15:33:05.0582 2788 swprv - ok
15:33:05.0644 2788 [ AC3CC98B1BDB6540021D3FFB105AC2B9 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
15:33:05.0660 2788 SynTP - ok
15:33:05.0738 2788 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
15:33:05.0800 2788 SysMain - ok
15:33:05.0832 2788 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:33:05.0863 2788 TabletInputService - ok
15:33:05.0878 2788 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
15:33:05.0941 2788 TapiSrv - ok
15:33:05.0972 2788 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
15:33:06.0019 2788 TBS - ok
15:33:06.0097 2788 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
15:33:06.0144 2788 Tcpip - ok
15:33:06.0222 2788 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
15:33:06.0268 2788 TCPIP6 - ok
15:33:06.0331 2788 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
15:33:06.0346 2788 tcpipreg - ok
15:33:06.0393 2788 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
15:33:06.0409 2788 TDPIPE - ok
15:33:06.0440 2788 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
15:33:06.0471 2788 TDTCP - ok
15:33:06.0518 2788 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
15:33:06.0565 2788 tdx - ok
15:33:06.0580 2788 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
15:33:06.0596 2788 TermDD - ok
15:33:06.0658 2788 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
15:33:06.0705 2788 TermService - ok
15:33:06.0736 2788 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
15:33:06.0768 2788 Themes - ok
15:33:06.0799 2788 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
15:33:06.0846 2788 THREADORDER - ok
15:33:06.0892 2788 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
15:33:06.0939 2788 TrkWks - ok
15:33:07.0002 2788 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:33:07.0064 2788 TrustedInstaller - ok
15:33:07.0111 2788 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
15:33:07.0158 2788 tssecsrv - ok
15:33:07.0204 2788 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
15:33:07.0236 2788 TsUsbFlt - ok
15:33:07.0282 2788 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
15:33:07.0329 2788 tunnel - ok
15:33:07.0360 2788 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
15:33:07.0376 2788 uagp35 - ok
15:33:07.0423 2788 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
15:33:07.0470 2788 udfs - ok
15:33:07.0516 2788 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
15:33:07.0532 2788 UI0Detect - ok
15:33:07.0548 2788 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
15:33:07.0563 2788 uliagpkx - ok
15:33:07.0610 2788 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
15:33:07.0641 2788 umbus - ok
15:33:07.0688 2788 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
15:33:07.0719 2788 UmPass - ok
15:33:07.0750 2788 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
15:33:07.0813 2788 upnphost - ok
15:33:07.0860 2788 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
15:33:07.0860 2788 USBAAPL64 ( UnsignedFile.Multi.Generic ) - warning
15:33:07.0860 2788 USBAAPL64 - detected UnsignedFile.Multi.Generic (1)
15:33:07.0922 2788 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
15:33:07.0953 2788 usbaudio - ok
15:33:07.0984 2788 [ C85B8247FADD432FA54FE11667C8D97D ] usbbus C:\Windows\system32\DRIVERS\lgx64bus.sys
15:33:08.0000 2788 usbbus - ok
15:33:08.0031 2788 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
15:33:08.0094 2788 usbccgp - ok
15:33:08.0125 2788 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
15:33:08.0156 2788 usbcir - ok
15:33:08.0187 2788 [ D8CDC12F5429878F23DDB3785A0FDF95 ] UsbDiag C:\Windows\system32\DRIVERS\lgx64diag.sys
15:33:08.0218 2788 UsbDiag - ok
15:33:08.0250 2788 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
15:33:08.0281 2788 usbehci - ok
15:33:08.0328 2788 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
15:33:08.0359 2788 usbhub - ok
15:33:08.0406 2788 [ 79FA7A22B0F6F0082F640CBC82A00FCE ] USBModem C:\Windows\system32\DRIVERS\lgx64modem.sys
15:33:08.0437 2788 USBModem - ok
15:33:08.0452 2788 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
15:33:08.0468 2788 usbohci - ok
15:33:08.0515 2788 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
15:33:08.0546 2788 usbprint - ok
15:33:08.0577 2788 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
15:33:08.0624 2788 usbscan - ok
15:33:08.0655 2788 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:33:08.0733 2788 USBSTOR - ok
15:33:08.0764 2788 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
15:33:08.0780 2788 usbuhci - ok
15:33:08.0811 2788 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
15:33:08.0858 2788 UxSms - ok
15:33:08.0874 2788 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
15:33:08.0889 2788 VaultSvc - ok
15:33:08.0936 2788 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
15:33:08.0952 2788 vdrvroot - ok
15:33:09.0014 2788 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
15:33:09.0076 2788 vds - ok
15:33:09.0108 2788 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
15:33:09.0123 2788 vga - ok
15:33:09.0154 2788 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
15:33:09.0217 2788 VgaSave - ok
15:33:09.0248 2788 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
15:33:09.0279 2788 vhdmp - ok
15:33:09.0295 2788 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
15:33:09.0310 2788 viaide - ok
15:33:09.0342 2788 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
15:33:09.0357 2788 volmgr - ok
15:33:09.0420 2788 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
15:33:09.0435 2788 volmgrx - ok
15:33:09.0482 2788 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
15:33:09.0498 2788 volsnap - ok
15:33:09.0560 2788 [ 1065A957523ED51AAFFF737CC63010A6 ] Vsdatant C:\Windows\system32\DRIVERS\vsdatant.sys
15:33:09.0576 2788 Vsdatant - ok
15:33:09.0622 2788 vsmon - ok
15:33:09.0669 2788 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
15:33:09.0685 2788 vsmraid - ok
15:33:09.0763 2788 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
15:33:09.0825 2788 VSS - ok
15:33:09.0856 2788 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
15:33:09.0888 2788 vwifibus - ok
15:33:09.0919 2788 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
15:33:09.0966 2788 vwififlt - ok
15:33:10.0012 2788 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
15:33:10.0044 2788 vwifimp - ok
15:33:10.0075 2788 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
15:33:10.0122 2788 W32Time - ok
15:33:10.0168 2788 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
15:33:10.0200 2788 WacomPen - ok
15:33:10.0262 2788 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
15:33:10.0324 2788 WANARP - ok
15:33:10.0324 2788 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
15:33:10.0371 2788 Wanarpv6 - ok
15:33:10.0449 2788 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
15:33:10.0480 2788 WatAdminSvc - ok
15:33:10.0543 2788 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
15:33:10.0605 2788 wbengine - ok
15:33:10.0621 2788 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
15:33:10.0652 2788 WbioSrvc - ok
15:33:10.0699 2788 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
15:33:10.0730 2788 wcncsvc - ok
15:33:10.0761 2788 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:33:10.0777 2788 WcsPlugInService - ok
15:33:10.0808 2788 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
15:33:10.0824 2788 Wd - ok
15:33:10.0870 2788 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
15:33:10.0902 2788 Wdf01000 - ok
15:33:10.0933 2788 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
15:33:10.0980 2788 WdiServiceHost - ok
15:33:10.0995 2788 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
15:33:11.0011 2788 WdiSystemHost - ok
15:33:11.0073 2788 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
15:33:11.0104 2788 WebClient - ok
15:33:11.0136 2788 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
15:33:11.0182 2788 Wecsvc - ok
15:33:11.0198 2788 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
15:33:11.0260 2788 wercplsupport - ok
15:33:11.0292 2788 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
15:33:11.0338 2788 WerSvc - ok
15:33:11.0370 2788 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
15:33:11.0416 2788 WfpLwf - ok
15:33:11.0448 2788 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
15:33:11.0463 2788 WIMMount - ok
15:33:11.0479 2788 WinDefend - ok
15:33:11.0494 2788 WinHttpAutoProxySvc - ok
15:33:11.0557 2788 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
15:33:11.0619 2788 Winmgmt - ok
15:33:11.0682 2788 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
15:33:11.0775 2788 WinRM - ok
15:33:11.0838 2788 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
15:33:11.0869 2788 WinUsb - ok
15:33:11.0916 2788 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
15:33:11.0962 2788 Wlansvc - ok
15:33:12.0056 2788 [ 98F138897EF4246381D197CB81846D62 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:33:12.0118 2788 wlidsvc - ok
15:33:12.0150 2788 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
15:33:12.0165 2788 WmiAcpi - ok
15:33:12.0212 2788 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
15:33:12.0243 2788 wmiApSrv - ok
15:33:12.0274 2788 WMPNetworkSvc - ok
15:33:12.0306 2788 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
15:33:12.0321 2788 WPCSvc - ok
15:33:12.0368 2788 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
15:33:12.0399 2788 WPDBusEnum - ok
15:33:12.0415 2788 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
15:33:12.0462 2788 ws2ifsl - ok
15:33:12.0508 2788 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
15:33:12.0540 2788 wscsvc - ok
15:33:12.0555 2788 WSearch - ok
15:33:12.0633 2788 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
15:33:12.0696 2788 wuauserv - ok
15:33:12.0742 2788 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
15:33:12.0774 2788 WudfPf - ok
15:33:12.0836 2788 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
15:33:12.0867 2788 WUDFRd - ok
15:33:12.0898 2788 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
15:33:12.0914 2788 wudfsvc - ok
15:33:12.0961 2788 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
15:33:12.0992 2788 WwanSvc - ok
15:33:13.0054 2788 [ B3EEACF62445E24FBB2CD4B0FB4DB026 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
15:33:13.0086 2788 yukonw7 - ok
15:33:13.0117 2788 ================ Scan global ===============================
15:33:13.0148 2788 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
15:33:13.0179 2788 [ 9E479C2B605C25DA4971ABA36250FAEF ] C:\Windows\system32\winsrv.dll
15:33:13.0195 2788 [ 9E479C2B605C25DA4971ABA36250FAEF ] C:\Windows\system32\winsrv.dll
15:33:13.0226 2788 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
15:33:13.0257 2788 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
15:33:13.0257 2788 [Global] - ok
15:33:13.0257 2788 ================ Scan MBR ==================================
15:33:13.0288 2788 [ 8FFBB27037B29E6FBFC4EB4FBD8C137E ] \Device\Harddisk0\DR0
15:33:13.0538 2788 \Device\Harddisk0\DR0 - ok
15:33:13.0538 2788 ================ Scan VBR ==================================
15:33:13.0554 2788 [ 81B40609E6E2E71E0BFE0D2F46290E43 ] \Device\Harddisk0\DR0\Partition1
15:33:13.0554 2788 \Device\Harddisk0\DR0\Partition1 - ok
15:33:13.0569 2788 [ 2A3C115F434EFA736AFB940118AF559B ] \Device\Harddisk0\DR0\Partition2
15:33:13.0569 2788 \Device\Harddisk0\DR0\Partition2 - ok
15:33:13.0600 2788 [ D203B583C15F673DFEF8EA7F2A8436F6 ] \Device\Harddisk0\DR0\Partition3
15:33:13.0600 2788 \Device\Harddisk0\DR0\Partition3 - ok
15:33:13.0632 2788 [ AE20261E92F5B840E7572BD18F7D815C ] \Device\Harddisk0\DR0\Partition4
15:33:13.0632 2788 \Device\Harddisk0\DR0\Partition4 - ok
15:33:13.0632 2788 ============================================================
15:33:13.0632 2788 Scan finished
15:33:13.0632 2788 ============================================================
15:33:13.0647 4128 Detected object count: 4
15:33:13.0647 4128 Actual detected object count: 4
15:36:09.0709 4128 HP Support Assistant Service ( UnsignedFile.Multi.Generic ) - skipped by user
15:36:09.0709 4128 HP Support Assistant Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:36:09.0709 4128 LightScribeService ( UnsignedFile.Multi.Generic ) - skipped by user
15:36:09.0709 4128 LightScribeService ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:36:09.0709 4128 RtVOsdService ( UnsignedFile.Multi.Generic ) - skipped by user
15:36:09.0709 4128 RtVOsdService ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:36:09.0709 4128 USBAAPL64 ( UnsignedFile.Multi.Generic ) - skipped by user
15:36:09.0709 4128 USBAAPL64 ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:37:27.0725 4876 Deinitialize success

#8 lindaga35

lindaga35
  • Topic Starter

  • Members
  • 384 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:07:46 PM

Posted 03 February 2013 - 04:06 PM

Here is the other one's that will run.

Farbar Service Scanner Version: 30-01-2013
Ran by courtney (administrator) on 03-02-2013 at 15:46:43
Running from "C:\Users\courtney\Downloads"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Attempt to access Google IP returned error. Google IP is offline
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****



MiniToolBox by Farbar Version:10-01-2013
Ran by courtney (administrator) on 03-02-2013 at 15:51:01
Running from "C:\Users\courtney\Downloads"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Realtek RTL8191SE 802.11b/g/n WiFi Adapter = Wireless Network Connection (Connected)
Realtek PCIe FE Family Controller = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : courtney-HP
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Broadcast
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : Home

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 68-A3-C4-4F-A2-93
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : Home
Description . . . . . . . . . . . : Realtek RTL8191SE 802.11b/g/n WiFi Adapter
Physical Address. . . . . . . . . : 68-A3-C4-4F-A2-93
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::1570:9c53:5296:fe79%12(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.254.2(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Sunday, February 03, 2013 3:39:19 PM
Lease Expires . . . . . . . . . . : Monday, July 27, 2020 6:39:24 AM
Default Gateway . . . . . . . . . : 192.168.254.254
DHCP Server . . . . . . . . . . . : 192.168.254.254
DHCPv6 IAID . . . . . . . . . . . : 325624772
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-96-40-88-98-4B-E1-BA-4B-68
DNS Servers . . . . . . . . . . . : 192.168.254.254
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
Physical Address. . . . . . . . . : 98-4B-E1-BA-4B-68
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6ab8:3c86:1947:3f57:1fd(Preferred)
Link-local IPv6 Address . . . . . : fe80::3c86:1947:3f57:1fd%15(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter Local Area Connection* 12:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.Home:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 9:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : Home
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: MyRouter.Home
Address: 192.168.254.254

Name: google.com
Addresses: 2607:f8b0:4002:c01::64
74.125.140.113
74.125.140.138
74.125.140.139
74.125.140.100
74.125.140.101
74.125.140.102


Pinging google.com [74.125.140.113] with 32 bytes of data:
Reply from 74.125.140.113: bytes=32 time=27ms TTL=49
Reply from 74.125.140.113: bytes=32 time=13ms TTL=49

Ping statistics for 74.125.140.113:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 13ms, Maximum = 27ms, Average = 20ms
Server: MyRouter.Home
Address: 192.168.254.254

Name: yahoo.com
Addresses: 98.138.253.109
98.139.183.24
206.190.36.45


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=90ms TTL=49
Reply from 98.138.253.109: bytes=32 time=82ms TTL=49

Ping statistics for 98.138.253.109:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 82ms, Maximum = 90ms, Average = 86ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=9ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 9ms, Average = 4ms
===========================================================================
Interface List
14...68 a3 c4 4f a2 93 ......Microsoft Virtual WiFi Miniport Adapter
12...68 a3 c4 4f a2 93 ......Realtek RTL8191SE 802.11b/g/n WiFi Adapter
10...98 4b e1 ba 4b 68 ......Realtek PCIe FE Family Controller
1...........................Software Loopback Interface 1
15...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
11...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
16...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.254.254 192.168.254.2 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.254.0 255.255.255.0 On-link 192.168.254.2 281
192.168.254.2 255.255.255.255 On-link 192.168.254.2 281
192.168.254.255 255.255.255.255 On-link 192.168.254.2 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.254.2 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.254.2 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
15 58 ::/0 On-link
1 306 ::1/128 On-link
15 58 2001::/32 On-link
15 306 2001:0:9d38:6ab8:3c86:1947:3f57:1fd/128
On-link
12 281 fe80::/64 On-link
15 306 fe80::/64 On-link
12 281 fe80::1570:9c53:5296:fe79/128
On-link
15 306 fe80::3c86:1947:3f57:1fd/128
On-link
1 306 ff00::/8 On-link
15 306 ff00::/8 On-link
12 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528] (Microsoft Corporation)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 08 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304] (Microsoft Corporation)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 08 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (02/03/2013 02:35:16 PM) (Source: ESENT) (User: )
Description: wuaueng.dll (476) SUS20ClientDataStore: The version store for this instance (0) has reached its maximum size of 32Mb. It is likely that a long-running transaction is preventing cleanup of the version store and causing it to build up in size. Updates will be rejected until the long-running transaction has been completely committed or rolled back.

Possible long-running transaction:

SessionId: 0x00000000012A04A0

Session-context: 0x00000000

Session-context ThreadId: 0x00000000000011A8

Cleanup: 1

Error: (02/03/2013 02:34:00 PM) (Source: ESENT) (User: )
Description: wuaueng.dll (476) SUS20ClientDataStore: The version store for this instance (0) has reached its maximum size of 32Mb. It is likely that a long-running transaction is preventing cleanup of the version store and causing it to build up in size. Updates will be rejected until the long-running transaction has been completely committed or rolled back.

Possible long-running transaction:

SessionId: 0x00000000012A04A0

Session-context: 0x00000000

Session-context ThreadId: 0x00000000000011A8

Cleanup: 1

Error: (02/03/2013 02:33:23 PM) (Source: ESENT) (User: )
Description: wuaueng.dll (476) SUS20ClientDataStore: The version store for this instance (0) has reached its maximum size of 32Mb. It is likely that a long-running transaction is preventing cleanup of the version store and causing it to build up in size. Updates will be rejected until the long-running transaction has been completely committed or rolled back.

Possible long-running transaction:

SessionId: 0x00000000012A04A0

Session-context: 0x00000000

Session-context ThreadId: 0x00000000000011A8

Cleanup: 1

Error: (02/03/2013 11:29:22 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"1".Error in manifest or policy file "WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"2" on line WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"3.
Component identity found in manifest does not match the identity of the component requested.
Reference is WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1".
Definition is WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1".
Please use sxstrace.exe for detailed diagnosis.

Error: (02/03/2013 09:12:02 AM) (Source: ESENT) (User: )
Description: wuaueng.dll (476) SUS20ClientDataStore: The version store for this instance (0) has reached its maximum size of 32Mb. It is likely that a long-running transaction is preventing cleanup of the version store and causing it to build up in size. Updates will be rejected until the long-running transaction has been completely committed or rolled back.

Possible long-running transaction:

SessionId: 0x00000000019004A0

Session-context: 0x00000000

Session-context ThreadId: 0x0000000000000C64

Cleanup: 1

Error: (02/03/2013 09:11:06 AM) (Source: ESENT) (User: )
Description: wuaueng.dll (476) SUS20ClientDataStore: The version store for this instance (0) has reached its maximum size of 32Mb. It is likely that a long-running transaction is preventing cleanup of the version store and causing it to build up in size. Updates will be rejected until the long-running transaction has been completely committed or rolled back.

Possible long-running transaction:

SessionId: 0x00000000019004A0

Session-context: 0x00000000

Session-context ThreadId: 0x0000000000000C64

Cleanup: 1

Error: (02/03/2013 09:10:26 AM) (Source: ESENT) (User: )
Description: wuaueng.dll (476) SUS20ClientDataStore: The version store for this instance (0) has reached its maximum size of 32Mb. It is likely that a long-running transaction is preventing cleanup of the version store and causing it to build up in size. Updates will be rejected until the long-running transaction has been completely committed or rolled back.

Possible long-running transaction:

SessionId: 0x00000000019004A0

Session-context: 0x00000000

Session-context ThreadId: 0x0000000000000C64

Cleanup: 1

Error: (02/02/2013 10:20:15 PM) (Source: ESENT) (User: )
Description: wuaueng.dll (476) SUS20ClientDataStore: The version store for this instance (0) has reached its maximum size of 32Mb. It is likely that a long-running transaction is preventing cleanup of the version store and causing it to build up in size. Updates will be rejected until the long-running transaction has been completely committed or rolled back.

Possible long-running transaction:

SessionId: 0x00000000018F04A0

Session-context: 0x00000000

Session-context ThreadId: 0x0000000000001324

Cleanup: 1

Error: (02/02/2013 10:14:06 PM) (Source: System Restore) (User: )
Description: An unspecified error occurred during System Restore: (Windows Update). Additional information: 0x80070005.

Error: (02/02/2013 09:44:09 PM) (Source: ESENT) (User: )
Description: wuaueng.dll (480) SUS20ClientDataStore: The version store for this instance (0) has reached its maximum size of 32Mb. It is likely that a long-running transaction is preventing cleanup of the version store and causing it to build up in size. Updates will be rejected until the long-running transaction has been completely committed or rolled back.

Possible long-running transaction:

SessionId: 0x0000000000F004A0

Session-context: 0x00000000

Session-context ThreadId: 0x0000000000000F14

Cleanup: 1


System errors:
=============
Error: (02/03/2013 03:39:22 PM) (Source: Service Control Manager) (User: )
Description: The lxdxCATSCustConnectService service failed to start due to the following error:
%%1053

Error: (02/03/2013 03:39:22 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the lxdxCATSCustConnectService service to connect.

Error: (02/03/2013 10:43:33 AM) (Source: BROWSER) (User: )
Description: The browser service has failed to retrieve the backup list too many times on transport \Device\NetBT_Tcpip_{F8B22C3B-8A70-4B43-91D2-BA7D9ADF8568}.
The backup browser is stopping.

Error: (02/03/2013 10:31:16 AM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer LINDA-PC
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{F8B22C3B-8A70-4B43-91D2-BA7D9ADF8568}.
The master browser is stopping or an election is being forced.

Error: (02/03/2013 09:09:18 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the wlidsvc service.

Error: (02/02/2013 11:09:58 PM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer LINDA-PC
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{F8B22C3B-8A70-4B43-91D2-BA7D9ADF8568}.
The master browser is stopping or an election is being forced.

Error: (02/02/2013 10:13:40 PM) (Source: Service Control Manager) (User: )
Description: The lxdxCATSCustConnectService service failed to start due to the following error:
%%1053

Error: (02/02/2013 10:13:40 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the lxdxCATSCustConnectService service to connect.

Error: (02/02/2013 09:32:01 PM) (Source: Service Control Manager) (User: )
Description: The lxdxCATSCustConnectService service failed to start due to the following error:
%%1053

Error: (02/02/2013 09:32:01 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the lxdxCATSCustConnectService service to connect.


Microsoft Office Sessions:
=========================
Error: (02/03/2013 02:35:16 PM) (Source: ESENT)(User: )
Description: wuaueng.dll476SUS20ClientDataStore: 0320x00000000012A04A00x000000000x00000000000011A81

Error: (02/03/2013 02:34:00 PM) (Source: ESENT)(User: )
Description: wuaueng.dll476SUS20ClientDataStore: 0320x00000000012A04A00x000000000x00000000000011A81

Error: (02/03/2013 02:33:23 PM) (Source: ESENT)(User: )
Description: wuaueng.dll476SUS20ClientDataStore: 0320x00000000012A04A00x000000000x00000000000011A81

Error: (02/03/2013 11:29:22 AM) (Source: SideBySide)(User: )
Description: WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1"c:\program files (x86)\windows live\photo gallery\MovieMaker.Exec:\program files (x86)\windows live\photo gallery\WLMFDS.DLL8

Error: (02/03/2013 09:12:02 AM) (Source: ESENT)(User: )
Description: wuaueng.dll476SUS20ClientDataStore: 0320x00000000019004A00x000000000x0000000000000C641

Error: (02/03/2013 09:11:06 AM) (Source: ESENT)(User: )
Description: wuaueng.dll476SUS20ClientDataStore: 0320x00000000019004A00x000000000x0000000000000C641

Error: (02/03/2013 09:10:26 AM) (Source: ESENT)(User: )
Description: wuaueng.dll476SUS20ClientDataStore: 0320x00000000019004A00x000000000x0000000000000C641

Error: (02/02/2013 10:20:15 PM) (Source: ESENT)(User: )
Description: wuaueng.dll476SUS20ClientDataStore: 0320x00000000018F04A00x000000000x00000000000013241

Error: (02/02/2013 10:14:06 PM) (Source: System Restore)(User: )
Description: Windows Update0x80070005

Error: (02/02/2013 09:44:09 PM) (Source: ESENT)(User: )
Description: wuaueng.dll480SUS20ClientDataStore: 0320x0000000000F004A00x000000000x0000000000000F141


CodeIntegrity Errors:
===================================
Date: 2013-02-03 15:38:25.227
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-02-03 15:29:14.463
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-02-03 10:48:35.795
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-02-03 10:27:44.627
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-02-03 10:22:18.412
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-02-03 10:04:08.575
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-02-03 09:40:51.879
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-02-03 09:31:40.139
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-02-03 09:09:30.342
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-02-02 22:40:05.120
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.


=========================== Installed Programs ============================

Acrobat.com (Version: 1.6.65)
Adobe AIR (Version: 3.5.0.600)
Adobe Flash Player 11 ActiveX (Version: 11.5.502.146)
Adobe Flash Player 11 Plugin (Version: 11.5.502.146)
Adobe Reader XI (11.0.01) (Version: 11.0.01)
Adobe Shockwave Player 11.5 (Version: 11.5.7.609)
Adobe Shockwave Player 11.6 (Version: 11.6.7.637)
Apple Application Support (Version: 2.3.2)
Apple Mobile Device Support (Version: 6.0.1.3)
Apple Software Update (Version: 2.1.3.127)
Bejeweled 2 Deluxe (Version: 2.2.0.95)
Blackhawk Striker 2 (Version: 2.2.0.95)
Bonjour (Version: 3.0.0.10)
Build-a-lot 2 (Version: 2.2.0.95)
CCleaner (Version: 3.27)
Chuzzle Deluxe (Version: 2.2.0.95)
CinemaNow Media Manager (Version: 1.9.1.105)
Cisco EAP-FAST Module (Version: 2.2.14)
Cisco LEAP Module (Version: 1.0.19)
Cisco PEAP Module (Version: 1.1.6)
Coupon Printer for Windows (Version: 5.0.0.1)
CyberLink DVD Suite (Version: 7.0.3003)
CyberLink MediaShow (Version: 5.0.1616)
CyberLink PowerDVD 9 (Version: 9.0.1.4217)
CyberLink YouCam (Version: 3.0.2511)
Diner Dash 2 Restaurant Rescue (Version: 2.2.0.95)
Dora's Carnival Adventure (Version: 2.2.0.95)
Energy Star Digital Logo (Version: 1.0.1)
Escape Rosecliff Island (Version: 2.2.0.95)
ESU for Microsoft Windows 7 (Version: 1.0.0)
FATE (Version: 2.2.0.95)
FileHippo.com Update Checker
Final Drive Nitro (Version: 2.2.0.95)
Google Chrome (Version: 24.0.1312.57)
Google Earth (Version: 7.0.2.8415)
Google Update Helper (Version: 1.3.21.123)
Heroes of Hellas 2 - Olympia (Version: 2.2.0.95)
Hewlett-Packard ACLM.NET v1.2.1.1 (Version: 1.00.0000)
HP Advisor (Version: 3.4.10262.3295)
HP Customer Experience Enhancements (Version: 6.0.1.7)
HP Documentation (Version: 1.1.1.0)
HP Game Console
HP Games (Version: 1.0.1.3)
HP MediaSmart CinemaNow 2.0 (Version: 2.0)
HP Photo Creations (Version: 1.0.0.3611)
HP Power Manager (Version: 1.0.3)
HP Quick Launch (Version: 2.3.6)
HP Setup (Version: 8.1.4186.3400)
HP Software Framework (Version: 4.0.108.1)
HP Support Assistant (Version: 7.0.39.15)
HP Wireless Assistant (Version: 4.0.9.0)
Intel® Control Center (Version: 1.2.1.1007)
Intel® Graphics Media Accelerator Driver (Version: 8.15.10.2086)
Intel® Rapid Storage Technology (Version: 9.6.2.1001)
iTunes (Version: 11.0.1.12)
Java 7 Update 11 (64-bit) (Version: 7.0.110)
Java 7 Update 13 (Version: 7.0.130)
Java Auto Updater (Version: 2.1.9.0)
Jewel Quest 3 (Version: 2.2.0.95)
Jewel Quest Solitaire 2 (Version: 2.2.0.95)
Junk Mail filter update (Version: 14.0.8117.416)
Kidzui
LabelPrint (Version: 2.5.2907)
Lexmark 3600-4600 Series
LG United Mobile Drivers (Version: 3.3.0.0)
LightScribe System Software (Version: 1.18.15.1)
Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Starter 2010 - English (Version: 14.0.4763.1000)
Microsoft Security Client (Version: 4.1.0522.0)
Microsoft Security Essentials (Version: 4.1.522.0)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0)
Mozilla Firefox 18.0.1 (x86 en-US) (Version: 18.0.1)
Mozilla Maintenance Service (Version: 18.0.1)
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Penguins! (Version: 2.2.0.95)
PhotoNow! (Version: 1.1.6904)
Pinnacle Studio 12 (Version: 12.1.3.6605)
Pinnacle Video Driver (Version: 12.1.0.029)
Plants vs. Zombies (Version: 2.2.0.95)
Poker Superstars III (Version: 2.2.0.95)
Polar Bowler (Version: 2.2.0.95)
Polar Golfer (Version: 2.2.0.95)
Power2Go (Version: 6.1.4204)
PowerDirector (Version: 8.0.3003)
Publix Preschool Pals (Version: 1.00)
QuickTime (Version: 7.73.80.64)
Realtek Ethernet Controller Driver For Windows 7 (Version: 7.18.322.2010)
Realtek High Definition Audio Driver (Version: 6.0.1.6122)
Realtek USB 2.0 Card Reader (Version: 6.1.7600.30120)
REALTEK Wireless LAN Software (Version: 1.00.10.0329)
Recovery Manager (Version: 5.5.3023)
Roxio CinemaNow 2.0 (Version: 1.0.278)
RtVOsd (Version: 1.0.3)
SpongeBob SquarePants® Operation Krabby Patty
Spotify (Version: 0.8.5.1333.g822e0de8)
swMSM (Version: 12.0.0.1)
Synaptics Pointing Device Driver (Version: 15.3.29.0)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
VC 9.0 Runtime (Version: 1.0.0)
Virtual Families (Version: 2.2.0.95)
Virtual Villagers - The Secret City (Version: 2.2.0.95)
Wheel of Fortune 2 (Version: 2.2.0.95)
Windows Live Call (Version: 14.0.8117.0416)
Windows Live Communications Platform (Version: 14.0.8117.416)
Windows Live Essentials (Version: 14.0.8117.0416)
Windows Live Essentials (Version: 14.0.8117.416)
Windows Live ID Sign-in Assistant (Version: 6.500.3165.0)
Windows Live Mail (Version: 14.0.8117.0416)
Windows Live Messenger (Version: 14.0.8117.0416)
Windows Live Movie Maker (Version: 14.0.8117.0416)
Windows Live Photo Gallery (Version: 14.0.8117.416)
Windows Live Sync (Version: 14.0.8117.416)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Live Writer (Version: 14.0.8117.0416)
Yahoo! Detect
ZoneAlarm Firewall (Version: 11.0.000.038)
ZoneAlarm Free Firewall (Version: 11.0.000.038)
ZoneAlarm LTD Toolbar
ZoneAlarm Security (Version: 11.0.000.038)
Zoodles (Version: 3.0.2)
Zuma Deluxe (Version: 2.2.0.95)

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 37%
Total physical RAM: 3002.92 MB
Available physical RAM: 1889.27 MB
Total Pagefile: 6004.04 MB
Available Pagefile: 4705.26 MB
Total Virtual: 4095.88 MB
Available Virtual: 3971.11 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:280.54 GB) (Free:224.28 GB) NTFS
2 Drive d: (RECOVERY) (Fixed) (Total:17.25 GB) (Free:2.5 GB) NTFS

========================= Users: ========================================

User accounts for \\COURTNEY-HP

Administrator courtney Guest

========================= Minidump Files ==================================

No minidump file found

========================= Restore Points ==================================

17-01-2013 11:37:08 Windows Update
19-01-2013 14:31:59 Installed Java 7 Update 11
19-01-2013 19:37:05 Removed Java™ 6 Update 29
19-01-2013 19:38:00 Removed Java™ 6 Update 23
19-01-2013 19:38:52 Removed Java™ 6 Update 20 (64-bit)
19-01-2013 19:39:44 Removed Java 7 Update 11
19-01-2013 19:40:32 Removed Java 7 Update 10 (64-bit)
19-01-2013 20:00:58 Installed Java 7 Update 11 (64-bit)
21-01-2013 01:57:32 Windows Backup
21-01-2013 22:16:50 Windows Update
25-01-2013 19:18:22 Windows Update
28-01-2013 19:44:57 Windows Update
01-02-2013 11:33:01 Windows Update
01-02-2013 20:27:39 Installed Java 7 Update 13
03-02-2013 03:09:01 Restore Operation

**** End of log ****

#9 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:11:46 PM

Posted 05 February 2013 - 02:25 AM

Hi

Please do the following next:

:step1:

  • Run AdwCleaner, when prompted to update it please agree to it.
  • Click on Search.
  • A logfile will automatically open after the scan has finished.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[R1].txt as well.


:step2:
  • Launch Malwarebytes' Anti-Malware (MBAM)
  • Click on the tab update, then click Check for Updates
  • If an update is found, it will download and install the latest version.
  • Then on the Scanner tab select Perform full scan, then click Scan.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Be sure that everything is checked, and click Remove Selected.
  • When completed, a log will open in Notepad.
  • Post the full contents of the log in your next reply.

Note: Be sure to restart the computer.

The log can also be found here:
C:\Users\<Username>\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt


:step3:

I'd like us to scan your machine with ESET Online Scanner:

Note: You can use either Internet Explorer or Mozilla FireFox for this scan. You will however need to disable your current installed Anti-Virus, how to do so can be read here.

Note: Vista / Windows 7 / Windows 8 users: You will need to to right-click on the either the IE or FF icon in the Start Menu or Quick Launch Bar on the Taskbar and select Run as Administrator from the context menu.

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image
      icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • On ESET: Click the Back button, then the Finish button.
Note: Do not forget to re-enable your Anti-Virus application after running the above scan!


:step4:

I see there are timeouts in the logs that may be being caused by lxdxCATSCustConnectService which appears to be a service part of lexmark software.
- Do you have a Lexmark printer installed?


:step5:

How is the computer running now?

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#10 lindaga35

lindaga35
  • Topic Starter

  • Members
  • 384 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:07:46 PM

Posted 05 February 2013 - 12:43 PM

Yes I have a Lexmark printer installed but I dont plug it into the usb port unless I use it. Here is all the logs. Thank YOU again for helping me!

# AdwCleaner v2.111 - Logfile created 02/05/2013 at 12:35:04
# Updated 05/02/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : courtney - COURTNEY-HP
# Boot Mode : Normal
# Running from : C:\Users\courtney\Downloads\AdwCleaner.exe
# Option [Search]


***** [Services] *****


***** [Files / Folders] *****

File Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eBay.lnk
File Found : C:\user.js
Folder Found : C:\Program Files (x86)\Conduit
Folder Found : C:\Users\courtney\AppData\Local\APN
Folder Found : C:\Users\courtney\AppData\Local\Conduit
Folder Found : C:\Users\courtney\AppData\LocalLow\Conduit

***** [Registry] *****

Key Found : HKCU\Software\AppDataLow\Software\Conduit
Key Found : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Found : HKCU\Software\AppDataLow\Software\SmartBar
Key Found : HKCU\Software\AppDataLow\Software\Toolbar
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Found : HKLM\Software\Conduit
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{FFB96CC1-7EB3-449D-B827-DB661701C6BB}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngine
Key Found : HKLM\SOFTWARE\Classes\Interface\{23119123-0854-469D-807A-171568457991}
Key Found : HKLM\SOFTWARE\Classes\Interface\{FFB96CC1-7EB3-449D-B827-DB661701C6BB}
Key Found : HKU\S-1-5-21-1791465075-395002626-1073807703-1000\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16457

[OK] Registry is clean.

-\\ Mozilla Firefox v18.0.1 (en-US)

File : C:\Users\courtney\AppData\Roaming\Mozilla\Firefox\Profiles\ynz9gzjj.default-1359375014595\prefs.js

[OK] File is clean.

-\\ Google Chrome v24.0.1312.57

File : C:\Users\courtney\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [2383 octets] - [03/02/2013 15:43:19]
AdwCleaner[R2].txt - [2443 octets] - [03/02/2013 15:43:49]
AdwCleaner[R3].txt - [2503 octets] - [05/02/2013 12:30:21]
AdwCleaner[R4].txt - [2563 octets] - [05/02/2013 12:32:07]
AdwCleaner[R5].txt - [2500 octets] - [05/02/2013 12:35:04]

########## EOF - C:\AdwCleaner[R5].txt - [2560 octets] ##########



Malwarebytes Anti-Malware 1.70.0.1100
www.malwarebytes.org

Database version: v2013.02.05.07

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
courtney :: COURTNEY-HP [administrator]

2/5/2013 11:06:38 AM
mbam-log-2013-02-05 (11-06-38).txt

Scan type: Full scan (C:\|D:\|E:\|Q:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 405685
Time elapsed: 1 hour(s), 2 minute(s), 11 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

ESET Online Scanner:


C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LIXMVQOA\ApnIC[1].0 a variant of Win32/Bundled.Toolbar.Ask application
C:\Users\courtney\Downloads\avira_free_antivirus_en.exe a variant of Win32/Bundled.Toolbar.Ask application deleted - quarantined
C:\Users\courtney\Downloads\frostwire-5.3.7.windows.exe multiple threats cleaned by deleting - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LIXMVQOA\ApnIC[1].0 a variant of Win32/Bundled.Toolbar.Ask application cleaned by deleting - quarantined

#11 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:11:46 PM

Posted 05 February 2013 - 04:17 PM

Hi

Please do the following next:

:step1:

  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Delete.
  • Confirm each time with Ok.
  • You will be prompted to restart your computer. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.


:step2:

You may have missed my previous question:

How is the computer running now?


Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#12 lindaga35

lindaga35
  • Topic Starter

  • Members
  • 384 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:07:46 PM

Posted 05 February 2013 - 07:36 PM

When i restarted it and then clicked on fire fox to post, fire fox updated it self. I couldnt stop it.

It seems to be ok now, is my Computer Clean now?? Should I update Java on my other Laptop? it keeps saying there is a new one but im afraid?? Thanks so very much!

here is the report:

# AdwCleaner v2.111 - Logfile created 02/05/2013 at 19:21:34
# Updated 05/02/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : courtney - COURTNEY-HP
# Boot Mode : Normal
# Running from : C:\Users\courtney\Downloads\AdwCleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

File Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eBay.lnk
File Deleted : C:\user.js
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Users\courtney\AppData\Local\APN
Folder Deleted : C:\Users\courtney\AppData\Local\Conduit
Folder Deleted : C:\Users\courtney\AppData\LocalLow\Conduit

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\AppDataLow\Software\Toolbar
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{FFB96CC1-7EB3-449D-B827-DB661701C6BB}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngine
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{23119123-0854-469D-807A-171568457991}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FFB96CC1-7EB3-449D-B827-DB661701C6BB}

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16457

[OK] Registry is clean.

-\\ Mozilla Firefox v18.0.1 (en-US)

File : C:\Users\courtney\AppData\Roaming\Mozilla\Firefox\Profiles\ynz9gzjj.default-1359375014595\prefs.js

[OK] File is clean.

-\\ Google Chrome v24.0.1312.57

File : C:\Users\courtney\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [2383 octets] - [03/02/2013 15:43:19]
AdwCleaner[R2].txt - [2443 octets] - [03/02/2013 15:43:49]
AdwCleaner[R3].txt - [2503 octets] - [05/02/2013 12:30:21]
AdwCleaner[R4].txt - [2563 octets] - [05/02/2013 12:32:07]
AdwCleaner[R5].txt - [2623 octets] - [05/02/2013 12:35:04]
AdwCleaner[S1].txt - [2444 octets] - [05/02/2013 19:21:34]

########## EOF - C:\AdwCleaner[S1].txt - [2504 octets] ##########

#13 lindaga35

lindaga35
  • Topic Starter

  • Members
  • 384 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:07:46 PM

Posted 05 February 2013 - 08:42 PM

Now when I use IE and i try and click on something it disappears. Did i do something wrong?

#14 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:11:46 PM

Posted 06 February 2013 - 03:23 PM

Hi

It seems to be ok now, is my Computer Clean now??

We'll let you know when we believe it's clean.

Should I update Java on my other Laptop? it keeps saying there is a new one but im afraid??

Not for the moment.

Now when I use IE and i try and click on something it disappears. Did i do something wrong?

Please explain this in detail

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#15 lindaga35

lindaga35
  • Topic Starter

  • Members
  • 384 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:07:46 PM

Posted 06 February 2013 - 05:11 PM

Google crome and IE isnt showing images at all. I can see a outline of one but nothing is inside of it. So when I run my mouse over the outline it disappears. I can still click on the image though.

I'm sorry to be such a problem




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users