Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Firewall shutting off randomly


  • Please log in to reply
8 replies to this topic

#1 tacois1

tacois1

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:05:24 AM

Posted 08 February 2013 - 12:22 PM

I sure it is a rootkit that is in my firewall because it has just started turing off randomly doing it for a week now.. I have ran malware bytes, kaspersky antivirus, and avg and nothing has came up at all... Bascially the rootkit is hidden really good or something is really messing up  my computer... My pc is windows 7 64 bit, on newest windows updated...please help

 

*moderator edit: moved from Windows 7 to the appropriate forum. Also edited for language. ~ Queen-Evie*


Edited by Queen-Evie, 08 February 2013 - 12:49 PM.


BC AdBot (Login to Remove)

 


#2 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,393 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:03:24 AM

Posted 08 February 2013 - 12:45 PM

You posted that you have run Kaspersky and AVG, you can have more than one active antivirus, but you should not run two applications simultaneously.  Antivirus programs do not usually play well together, and running two at the same time will often lead to one singling out the other as a virus, or in some cases even casue file corruption.


Edited by Queen-Evie, 08 February 2013 - 12:50 PM.
edited to remove reference to posting in AM I INFECTED after moving the topic to this forum

Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#3 tacois1

tacois1
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:05:24 AM

Posted 08 February 2013 - 12:49 PM

Well i ran kaspersky rescue disc avg is my main antivirus though.any other suggestions?.thanks..


Edited by tacois1, 08 February 2013 - 01:21 PM.


#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,058 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:24 AM

Posted 08 February 2013 - 01:27 PM

Hello, pease run these next..

 

MiniToolBox
Please download MiniToolBox, save it to your desktop and run it.Checkmark the following checkboxes:


  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.

 

Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run. Note: When using "Reset FF Proxy Settings" option Firefox should be closed.

 

>>>>

Please download Rkill by Grinler and save it to your desktop.

Link 1
Link 2

  • Double-click on the Rkill desktop icon to run the tool.
  • If using Vista, right-click on it and [url="http://vistasupport.mvps.org/run_as_administrator.htm"][color="blue"]

    Run As Administrator[/color][/url].

  • A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
  • If not, delete the file, then download and use the one provided in Link 2.
  • If it does not work, repeat the process and attempt to use one of the remaining links until the tool runs.
  • If the tool does not run from any of the links provided, please let me know.

Do not reboot the computer, you will need to run the application again.

 

 

 

Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)
 
Do not change the default options on scan results.

 

 

Please download aswMBR ( 4.5MB ) to your desktop.


  • Double click the aswMBR.exe icon, and click Run.
  • When asked if you'd like to "download the latest Avast! virus definitions", click Yes.
  • Click the Scan button to start the scan.
  • On completion of the scan, click the  save log button, save it to your desktop, then copy and paste it in your next reply.

Edited by boopme, 08 February 2013 - 01:29 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 tacois1

tacois1
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:05:24 AM

Posted 08 February 2013 - 04:45 PM

 
Thanks for replying back :)
 
MiniToolBox by Farbar  Version:10-01-2013
Ran by whitley kids (administrator) on 08-02-2013 at 15:19:36
Running from "C:\Users\whitley kids\Downloads"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================
 
 
 
========================= IP Configuration: ================================
 
Realtek PCIe GBE Family Controller = Local Area Connection (Connected)
Hamachi Network Interface = Hamachi (Connected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
add route prefix=0.0.0.0/0 interface="Local Area Connection* 6-AVG Network Filter Driver-0000" nexthop=5.0.0.1 publish=Yes
add route prefix=0.0.0.0/0 interface="Hamachi" nexthop=25.0.0.1 publish=Yes
set interface interface="Local Area Connection* 6-AVG Network Filter Driver-0000" forwarding=disabled advertise=disabled metric=9000 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled advertisedrouterlifetime=0 advertisedefaultroute=disabled currenthoplimit=0 forcearpndwolpattern=disabled enabledirectedmacwolpattern=disabled
set interface interface="Hamachi" forwarding=disabled advertise=disabled metric=9000 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled advertisedrouterlifetime=0 advertisedefaultroute=disabled currenthoplimit=0 forcearpndwolpattern=disabled enabledirectedmacwolpattern=disabled
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : whitleykids-PC
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : hsd1.in.comcast.net.
 
Ethernet adapter Local Area Connection:
 
   Connection-specific DNS Suffix  . : hsd1.in.comcast.net.
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : B8-AC-6F-DD-2B-59
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::c882:4661:73d6:f198%10(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.1.101(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Friday, February 08, 2013 3:14:15 PM
   Lease Expires . . . . . . . . . . : Saturday, February 09, 2013 3:14:14 PM
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 246983791
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-6E-EA-24-B8-AC-6F-DD-2B-59
   DNS Servers . . . . . . . . . . . : 75.75.75.75
                                       75.75.76.76
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Ethernet adapter Hamachi:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Hamachi Network Interface
   Physical Address. . . . . . . . . : 7A-79-19-32-03-C6
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2620:9b::1932:3c6(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::c16a:2784:f8ae:5b92%16(Preferred) 
   IPv4 Address. . . . . . . . . . . : 25.50.3.198(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.0.0.0
   Lease Obtained. . . . . . . . . . : Friday, February 08, 2013 3:14:15 PM
   Lease Expires . . . . . . . . . . : Saturday, February 08, 2014 3:16:22 PM
   Default Gateway . . . . . . . . . : 2620:9b::1900:1
                                       25.0.0.1
   DHCP Server . . . . . . . . . . . : 25.0.0.1
   DHCPv6 IAID . . . . . . . . . . . : 259684723
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-6E-EA-24-B8-AC-6F-DD-2B-59
   DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
                                       fec0:0:0:ffff::2%1
                                       fec0:0:0:ffff::3%1
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Tunnel adapter isatap.{9377EEC4-0663-414A-B51C-B10FA00C3CC8}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter isatap.hsd1.in.comcast.net.:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : hsd1.in.comcast.net.
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Teredo Tunneling Pseudo-Interface:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6ab8:c71:39aa:3f57:fe9a(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::c71:39aa:3f57:fe9a%14(Preferred) 
   Default Gateway . . . . . . . . . : 
   NetBIOS over Tcpip. . . . . . . . : Disabled
Server:  cdns01.comcast.net
Address:  75.75.75.75
 
Name:    google.com
Addresses:  2607:f8b0:4009:803::100e
      74.125.225.67
      74.125.225.73
      74.125.225.65
      74.125.225.78
      74.125.225.69
      74.125.225.66
      74.125.225.64
      74.125.225.70
      74.125.225.71
      74.125.225.68
      74.125.225.72
 
 
Pinging google.com [74.125.225.68] with 32 bytes of data:
Reply from 74.125.225.68: bytes=32 time=19ms TTL=55
Reply from 74.125.225.68: bytes=32 time=19ms TTL=55
 
Ping statistics for 74.125.225.68:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 19ms, Maximum = 19ms, Average = 19ms
Server:  cdns01.comcast.net
Address:  75.75.75.75
 
DNS request timed out.
    timeout was 2 seconds.
Name:    yahoo.com
Addresses:  98.138.253.109
      206.190.36.45
      98.139.183.24
 
 
Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=950ms TTL=51
Reply from 98.139.183.24: bytes=32 time=324ms TTL=51
 
Ping statistics for 98.139.183.24:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 324ms, Maximum = 950ms, Average = 637ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=13ms TTL=128
Reply from 127.0.0.1: bytes=32 time=4ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 4ms, Maximum = 13ms, Average = 8ms
===========================================================================
Interface List
 10...b8 ac 6f dd 2b 59 ......Realtek PCIe GBE Family Controller
 16...7a 79 19 32 03 c6 ......Hamachi Network Interface
  1...........................Software Loopback Interface 1
 11...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 13...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
 14...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0         25.0.0.1      25.50.3.198   9256
          0.0.0.0          0.0.0.0      192.168.1.1    192.168.1.101     20
         25.0.0.0        255.0.0.0         On-link       25.50.3.198   9256
      25.50.3.198  255.255.255.255         On-link       25.50.3.198   9256
   25.255.255.255  255.255.255.255         On-link       25.50.3.198   9256
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link     192.168.1.101    276
    192.168.1.101  255.255.255.255         On-link     192.168.1.101    276
    192.168.1.255  255.255.255.255         On-link     192.168.1.101    276
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link     192.168.1.101    276
        224.0.0.0        240.0.0.0         On-link       25.50.3.198   9256
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link     192.168.1.101    276
  255.255.255.255  255.255.255.255         On-link       25.50.3.198   9256
===========================================================================
Persistent Routes:
  Network Address          Netmask  Gateway Address  Metric
          0.0.0.0          0.0.0.0          5.0.0.1  Default 
          0.0.0.0          0.0.0.0         25.0.0.1  Default 
===========================================================================
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 16   9020 ::/0                     2620:9b::1900:1
  1    306 ::1/128                  On-link
 14     58 2001::/32                On-link
 14    306 2001:0:9d38:6ab8:c71:39aa:3f57:fe9a/128
                                    On-link
 16    276 2620:9b::/96             On-link
 16    276 2620:9b::1932:3c6/128    On-link
 10    276 fe80::/64                On-link
 16    276 fe80::/64                On-link
 14    306 fe80::/64                On-link
 14    306 fe80::c71:39aa:3f57:fe9a/128
                                    On-link
 16    276 fe80::c16a:2784:f8ae:5b92/128
                                    On-link
 10    276 fe80::c882:4661:73d6:f198/128
                                    On-link
  1    306 ff00::/8                 On-link
 14    306 ff00::/8                 On-link
 10    276 ff00::/8                 On-link
 16    276 ff00::/8                 On-link
===========================================================================
Persistent Routes:
 If Metric Network Destination      Gateway
  0 4294967295 2620:9b::/96             On-link
  0 4294967295 2620:9b::/96             On-link
  0   9000 ::/0                     2620:9b::1900:1
===========================================================================
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog5 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (02/07/2013 10:47:45 PM) (Source: System Restore) (User: )
Description: An unspecified error occurred during System Restore: (Scheduled Checkpoint). Additional information: 0x80070005.
 
Error: (02/07/2013 05:34:42 PM) (Source: Application Error) (User: )
Description: Faulting application name: avgmfapx.exe, version: 13.0.0.2897, time stamp: 0x5107ef3b
Faulting module name: avgmfapx.exe, version: 13.0.0.2897, time stamp: 0x5107ef3b
Exception code: 0xc0000005
Fault offset: 0x003120e7
Faulting process id: 0x1adc
Faulting application start time: 0xavgmfapx.exe0
Faulting application path: avgmfapx.exe1
Faulting module path: avgmfapx.exe2
Report Id: avgmfapx.exe3
 
Error: (02/07/2013 05:34:30 PM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2013 -- Error 27025. CA_Error27025: ModifyRegistry(0xE001003D): Setting of firewall registry keys failed
 
Error: (02/07/2013 04:34:23 PM) (Source: Application Error) (User: )
Description: Faulting application name: avgmfapx.exe, version: 13.0.0.2897, time stamp: 0x5107ef3b
Faulting module name: avgmfapx.exe, version: 13.0.0.2897, time stamp: 0x5107ef3b
Exception code: 0xc0000005
Fault offset: 0x003120e7
Faulting process id: 0x90c
Faulting application start time: 0xavgmfapx.exe0
Faulting application path: avgmfapx.exe1
Faulting module path: avgmfapx.exe2
Report Id: avgmfapx.exe3
 
Error: (02/07/2013 04:34:11 PM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2013 -- Error 27025. CA_Error27025: ModifyRegistry(0xE001003D): Setting of firewall registry keys failed
 
Error: (02/07/2013 03:34:23 PM) (Source: Application Error) (User: )
Description: Faulting application name: avgmfapx.exe, version: 13.0.0.2897, time stamp: 0x5107ef3b
Faulting module name: avgmfapx.exe, version: 13.0.0.2897, time stamp: 0x5107ef3b
Exception code: 0xc0000005
Fault offset: 0x003120e7
Faulting process id: 0x1998
Faulting application start time: 0xavgmfapx.exe0
Faulting application path: avgmfapx.exe1
Faulting module path: avgmfapx.exe2
Report Id: avgmfapx.exe3
 
Error: (02/07/2013 03:34:11 PM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2013 -- Error 27025. CA_Error27025: ModifyRegistry(0xE001003D): Setting of firewall registry keys failed
 
Error: (02/07/2013 02:34:27 PM) (Source: Application Error) (User: )
Description: Faulting application name: avgmfapx.exe, version: 13.0.0.2897, time stamp: 0x5107ef3b
Faulting module name: avgmfapx.exe, version: 13.0.0.2897, time stamp: 0x5107ef3b
Exception code: 0xc0000005
Fault offset: 0x003120e7
Faulting process id: 0x958
Faulting application start time: 0xavgmfapx.exe0
Faulting application path: avgmfapx.exe1
Faulting module path: avgmfapx.exe2
Report Id: avgmfapx.exe3
 
Error: (02/07/2013 02:34:15 PM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2013 -- Error 27025. CA_Error27025: ModifyRegistry(0xE001003D): Setting of firewall registry keys failed
 
Error: (02/07/2013 01:34:24 PM) (Source: Application Error) (User: )
Description: Faulting application name: avgmfapx.exe, version: 13.0.0.2897, time stamp: 0x5107ef3b
Faulting module name: avgmfapx.exe, version: 13.0.0.2897, time stamp: 0x5107ef3b
Exception code: 0xc0000005
Fault offset: 0x003120e7
Faulting process id: 0x27f8
Faulting application start time: 0xavgmfapx.exe0
Faulting application path: avgmfapx.exe1
Faulting module path: avgmfapx.exe2
Report Id: avgmfapx.exe3
 
 
System errors:
=============
Error: (02/08/2013 03:14:16 PM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for FailureActions with the following error: 
%%5
 
Error: (02/07/2013 10:52:45 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Provider Host service which failed to start because of the following error: 
%%1068
 
Error: (02/07/2013 10:52:44 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error: 
%%1068
 
Error: (02/07/2013 10:52:44 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error: 
%%1068
 
Error: (02/07/2013 10:52:44 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error: 
%%1068
 
Error: (02/07/2013 10:52:45 PM) (Source: DCOM) (User: )
Description: 1084WSearch{9E175B6D-F52A-11D8-B9A5-505054503030}
 
Error: (02/07/2013 10:52:44 PM) (Source: DCOM) (User: )
Description: 1084WSearch{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
 
Error: (02/07/2013 10:52:43 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error: 
%%1068
 
Error: (02/07/2013 10:52:43 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error: 
%%1068
 
Error: (02/07/2013 10:52:43 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error: 
%%1068
 
 
Microsoft Office Sessions:
=========================
Error: (02/07/2013 10:47:45 PM) (Source: System Restore)(User: )
Description: Scheduled Checkpoint0x80070005
 
Error: (02/07/2013 05:34:42 PM) (Source: Application Error)(User: )
Description: avgmfapx.exe13.0.0.28975107ef3bavgmfapx.exe13.0.0.28975107ef3bc0000005003120e71adc01ce058327ccbd0aC:\Program Files (x86)\AVG\AVG2013\avgmfapx.exeC:\Program Files (x86)\AVG\AVG2013\avgmfapx.exe9003c273-7176-11e2-adf9-b8ac6fdd2b59
 
Error: (02/07/2013 05:34:30 PM) (Source: MsiInstaller)(User: NT AUTHORITY)
Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2013 -- Error 27025. CA_Error27025: ModifyRegistry(0xE001003D): Setting of firewall registry keys failed(NULL)(NULL)(NULL)(NULL)(NULL)
 
Error: (02/07/2013 04:34:23 PM) (Source: Application Error)(User: )
Description: avgmfapx.exe13.0.0.28975107ef3bavgmfapx.exe13.0.0.28975107ef3bc0000005003120e790c01ce057ac602a1aeC:\Program Files (x86)\AVG\AVG2013\avgmfapx.exeC:\Program Files (x86)\AVG\AVG2013\avgmfapx.exe22e0a66f-716e-11e2-adf9-b8ac6fdd2b59
 
Error: (02/07/2013 04:34:11 PM) (Source: MsiInstaller)(User: NT AUTHORITY)
Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2013 -- Error 27025. CA_Error27025: ModifyRegistry(0xE001003D): Setting of firewall registry keys failed(NULL)(NULL)(NULL)(NULL)(NULL)
 
Error: (02/07/2013 03:34:23 PM) (Source: Application Error)(User: )
Description: avgmfapx.exe13.0.0.28975107ef3bavgmfapx.exe13.0.0.28975107ef3bc0000005003120e7199801ce0572642b9241C:\Program Files (x86)\AVG\AVG2013\avgmfapx.exeC:\Program Files (x86)\AVG\AVG2013\avgmfapx.exec11c36c1-7165-11e2-adf9-b8ac6fdd2b59
 
Error: (02/07/2013 03:34:11 PM) (Source: MsiInstaller)(User: NT AUTHORITY)
Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2013 -- Error 27025. CA_Error27025: ModifyRegistry(0xE001003D): Setting of firewall registry keys failed(NULL)(NULL)(NULL)(NULL)(NULL)
 
Error: (02/07/2013 02:34:27 PM) (Source: Application Error)(User: )
Description: avgmfapx.exe13.0.0.28975107ef3bavgmfapx.exe13.0.0.28975107ef3bc0000005003120e795801ce056a02824bd1C:\Program Files (x86)\AVG\AVG2013\avgmfapx.exeC:\Program Files (x86)\AVG\AVG2013\avgmfapx.exe61bda16f-715d-11e2-adf9-b8ac6fdd2b59
 
Error: (02/07/2013 02:34:15 PM) (Source: MsiInstaller)(User: NT AUTHORITY)
Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2013 -- Error 27025. CA_Error27025: ModifyRegistry(0xE001003D): Setting of firewall registry keys failed(NULL)(NULL)(NULL)(NULL)(NULL)
 
Error: (02/07/2013 01:34:24 PM) (Source: Application Error)(User: )
Description: avgmfapx.exe13.0.0.28975107ef3bavgmfapx.exe13.0.0.28975107ef3bc0000005003120e727f801ce0561a0ac2695C:\Program Files (x86)\AVG\AVG2013\avgmfapx.exeC:\Program Files (x86)\AVG\AVG2013\avgmfapx.exefe3365fe-7154-11e2-adf9-b8ac6fdd2b59
 
 
=========================== Installed Programs ============================
 
µTorrent (Version: 3.2.3.28705)
Ace of Spades (Version: 0.75.015)
Adobe AIR (Version: 3.5.0.600)
Adobe Flash Player 11 ActiveX (Version: 11.5.502.146)
Adobe Flash Player 11 Plugin (Version: 11.5.502.146)
Adobe Reader 9.5.3 (Version: 9.5.3)
AMD Accelerated Video Transcoding (Version: 12.5.100.21219)
AMD APP SDK Runtime (Version: 10.0.1084.4)
AMD Catalyst Install Manager (Version: 8.0.903.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Media Foundation Decoders (Version: 1.0.71219.1540)
Amnesia - The Dark Descent  (Version: 1.0.0)
APB Reloaded
Apple Application Support (Version: 2.2.2)
Apple Mobile Device Support (Version: 6.0.0.59)
Apple Software Update (Version: 2.1.3.127)
applicationupdater
ARMA 2
ARMA 2: Operation Arrowhead
ATI AVIVO64 Codecs (Version: 11.6.0.10419)
AVG 2013 (Version: 13.0.2639)
AVG 2013 (Version: 13.0.2897)
AVG 2013 (Version: 2013.0.2897)
AVG PC TuneUp (Version: 12.0.4000.108)
AVG PC TuneUp Language Pack (en-US) (Version: 12.0.4000.108)
Battlefield Heroes
BattlEye for OA Uninstall
Best Buy pc app (Version: 3.0.0.0)
Bing Bar (Version: 7.0.850.0)
Blacklight: Retribution
Bonjour (Version: 3.0.0.10)
Brawl Busters
BrickForce 1.4.40 (Version: 1.4.40)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center (Version: 2012.1219.1521.27485)
Catalyst Control Center Graphics Previews Common (Version: 2012.1219.1521.27485)
Catalyst Control Center InstallProxy (Version: 2012.1219.1521.27485)
Catalyst Control Center Localization All (Version: 2012.1219.1521.27485)
ccc-utility64 (Version: 2012.1219.1521.27485)
CCC Help Chinese Standard (Version: 2012.1219.1520.27485)
CCC Help Chinese Traditional (Version: 2012.1219.1520.27485)
CCC Help Czech (Version: 2012.1219.1520.27485)
CCC Help Danish (Version: 2012.1219.1520.27485)
CCC Help Dutch (Version: 2012.1219.1520.27485)
CCC Help English (Version: 2012.1219.1520.27485)
CCC Help Finnish (Version: 2012.1219.1520.27485)
CCC Help French (Version: 2012.1219.1520.27485)
CCC Help German (Version: 2012.1219.1520.27485)
CCC Help Greek (Version: 2012.1219.1520.27485)
CCC Help Hungarian (Version: 2012.1219.1520.27485)
CCC Help Italian (Version: 2012.1219.1520.27485)
CCC Help Japanese (Version: 2012.1219.1520.27485)
CCC Help Korean (Version: 2012.1219.1520.27485)
CCC Help Norwegian (Version: 2012.1219.1520.27485)
CCC Help Polish (Version: 2012.1219.1520.27485)
CCC Help Portuguese (Version: 2012.1219.1520.27485)
CCC Help Russian (Version: 2012.1219.1520.27485)
CCC Help Spanish (Version: 2012.1219.1520.27485)
CCC Help Swedish (Version: 2012.1219.1520.27485)
CCC Help Thai (Version: 2012.1219.1520.27485)
CCC Help Turkish (Version: 2012.1219.1520.27485)
CCleaner (Version: 3.26)
Combat Arms
Consumer In-Home Service Agreement (Version: 2.0.0)
Dell DataSafe Local Backup - Support Software (Version: 9.4.60)
Dell DataSafe Local Backup (Version: 9.4.60)
Dell Dock (Version: 2.0)
Dell Edoc Viewer (Version: 1.0.0)
Dell Getting Started Guide (Version: 1.00.0000)
Diablo II
Diablo III (Version: 1.0.6.13644)
Dota 2
Facebook Video Calling 1.1.1.1 (Version: 1.1.1)
gamelauncher-ps2-live
GodsWar (Version: 1.01.33)
Google Chrome (Version: 24.0.1312.57)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.4.3607.2246)
Google Update Helper (Version: 1.3.21.123)
GoToAssist 8.0.0.514
Grand Chase
Guild Wars 2
Hi-Rez Studios Authenticate and Update Service (Version: 3.0.0.0)
HydraVision (Version: 4.2.200.0)
iCloud (Version: 2.0.2.187)
IGG Web3D Player version 1.0.0.37 (Version: 1.0.0.37)
Intel® Control Center (Version: 1.2.1.1007)
Intel® Graphics Media Accelerator Driver
Intel® Rapid Storage Technology (Version: 9.6.0.1014)
iTunes (Version: 10.7.0.21)
Java Auto Updater (Version: 2.0.7.2)
Java™ 6 Update 37 (64-bit) (Version: 6.0.370)
Java™ 6 Update 37 (Version: 6.0.370)
Junk Mail filter update (Version: 14.0.8089.726)
Kalydo Player 4.04.00 (Version: 4.04.00)
League of Legends (Version: 1.3)
LogMeIn Hamachi (Version: 2.1.0.294)
Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office Starter 2010 - English (Version: 14.0.4763.1000)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Sync Framework Runtime Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Sync Framework Services Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft XNA Framework Redistributable 4.0 (Version: 4.0.20823.0)
MSVCRT (Version: 14.0.1468.721)
Mumble 1.2.3 (Version: 1.2.3)
Nexon Game Manager
NVIDIA PhysX (Version: 9.10.0513)
Pando Media Booster (Version: 2.6.0.8)
PlanetSide 2 (Version: 1.0.3.181)
PowerISO (Version: 5.5)
PunkBuster Services (Version: 0.992)
Realtek High Definition Audio Driver (Version: 6.0.1.5963)
ROBLOX Player for whitley kids
Rosetta Stone Ltd Services (Version: 3.2.18)
Roxio Burn (Version: 1.01)
Secunia PSI (3.0.0.4001) (Version: 3.0.0.4001)
Security Task Manager 1.8d (Version: 1.8d)
Sins of a Solar Empire: Rebellion
Sins of a Solar Empire: Trinity
Six Updater (Version: 2.09.7014)
Skype™ 6.1 (Version: 6.1.129)
Smite (Version: 0.1.1267.1)
Spotify (Version: 0.8.5.1333.g822e0de8)
Steam (Version: 1.0.0.0)
Team Fortress 2
TeamSpeak 3 Client (Version: 3.0.8)
TeamViewer 7 (Version: 7.0.12979)
Tribes Ascend (Version: 1.0.1185.4)
Unity Web Player (Version: )
Unreal Development Kit: 2012-05
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Ventrilo Client for Windows x64 (Version: 3.0.8.0)
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1)
VLC media player 2.0.2 (Version: 2.0.2)
Windows Live Call (Version: 14.0.8064.0206)
Windows Live Communications Platform (Version: 14.0.8064.206)
Windows Live Essentials (Version: 14.0.8089.0726)
Windows Live Essentials (Version: 14.0.8089.726)
Windows Live Mail (Version: 14.0.8089.0726)
Windows Live Messenger (Version: 14.0.8089.0726)
Windows Live Movie Maker (Version: 14.0.8091.0730)
Windows Live Photo Gallery (Version: 14.0.8081.709)
Windows Live Sign-in Assistant (Version: 5.000.818.5)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Live Writer (Version: 14.0.8089.0726)
WinRAR 4.01 (32-bit) (Version: 4.01.0)
World of Tanks
World of Warcraft (Version: 4.3.4.15595)
XSplit (Version: 1.0.1206.0203)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 47%
Total physical RAM: 4094.98 MB
Available physical RAM: 2140.62 MB
Total Pagefile: 8188.16 MB
Available Pagefile: 5750.85 MB
Total Virtual: 4095.88 MB
Available Virtual: 3958.97 MB
 
========================= Partitions: =====================================
 
1 Drive c: (OS) (Fixed) (Total:455.84 GB) (Free:199.85 GB) NTFS
2 Drive d: (KRD10) (CDROM) (Total:0.26 GB) (Free:0 GB) CDFS
 
========================= Users: ========================================
 
User accounts for \\WHITLEYKIDS-PC
 
Administrator            Guest                    whitley kids             
 
 
**** End of log ****
 
 
Rkill 2.4.6 by Lawrence Abrams (Grinler)
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
 
Program started at: 02/08/2013 03:21:55 PM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1
 
Checking for Windows services to stop:
 
 * No malware services found to stop.
 
Checking for processes to terminate:
 
 * No malware processes found to kill.
 
Checking Registry for malware related settings:
 
 * Explorer Policy Removed:  NoActiveDesktopChanges [HKLM]
 
Backup Registry file created at:
 C:\Users\whitley kids\Desktop\rkill\rkill-02-08-2013-03-22-03.reg
 
Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
 
Performing miscellaneous checks:
 
 * Windows Defender Disabled
 
   [HKLM\SOFTWARE\Microsoft\Windows Defender]
   "DisableAntiSpyware" = dword:00000001
 
Checking Windows Service Integrity: 
 
 * Windows Defender (WinDefend) is not Running.
   Startup Type set to: Manual
 
Searching for Missing Digital Signatures: 
 
 * No issues found.
 
Checking HOSTS File: 
 
 * No issues found.
 
Program finished at: 02/08/2013 03:22:20 PM
Execution time: 0 hours(s), 0 minute(s), and 24 seconds(s)
 
 
15:23:39.0502 6744  TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
15:23:40.0357 6744  ============================================================
15:23:40.0357 6744  Current date / time: 2013/02/08 15:23:40.0357
15:23:40.0357 6744  SystemInfo:
15:23:40.0358 6744  
15:23:40.0358 6744  OS Version: 6.1.7601 ServicePack: 1.0
15:23:40.0358 6744  Product type: Workstation
15:23:40.0358 6744  ComputerName: WHITLEYKIDS-PC
15:23:40.0358 6744  UserName: whitley kids
15:23:40.0358 6744  Windows directory: C:\Windows
15:23:40.0358 6744  System windows directory: C:\Windows
15:23:40.0358 6744  Running under WOW64
15:23:40.0358 6744  Processor architecture: Intel x64
15:23:40.0358 6744  Number of processors: 2
15:23:40.0358 6744  Page size: 0x1000
15:23:40.0358 6744  Boot type: Normal boot
15:23:40.0358 6744  ============================================================
15:23:41.0722 6744  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:23:41.0747 6744  ============================================================
15:23:41.0747 6744  \Device\Harddisk0\DR0:
15:23:41.0749 6744  MBR partitions:
15:23:41.0749 6744  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x13C3000
15:23:41.0749 6744  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x13D7000, BlocksNum 0x38FAE800
15:23:41.0749 6744  ============================================================
15:23:41.0839 6744  C: <-> \Device\Harddisk0\DR0\Partition2
15:23:41.0839 6744  ============================================================
15:23:41.0840 6744  Initialize success
15:23:41.0840 6744  ============================================================
15:24:23.0378 6544  ============================================================
15:24:23.0378 6544  Scan started
15:24:23.0378 6544  Mode: Manual; TDLFS; 
15:24:23.0378 6544  ============================================================
15:24:29.0081 6544  ================ Scan system memory ========================
15:24:29.0081 6544  System memory - ok
15:24:29.0081 6544  ================ Scan services =============================
15:24:30.0273 6544  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
15:24:30.0276 6544  1394ohci - ok
15:24:30.0413 6544  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
15:24:30.0417 6544  ACPI - ok
15:24:30.0489 6544  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
15:24:30.0491 6544  AcpiPmi - ok
15:24:30.0886 6544  [ 424877CB9D5517F980FF7BACA2EB379D ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
15:24:30.0891 6544  AdobeFlashPlayerUpdateSvc - ok
15:24:31.0093 6544  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
15:24:31.0102 6544  adp94xx - ok
15:24:31.0216 6544  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
15:24:31.0223 6544  adpahci - ok
15:24:31.0315 6544  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
15:24:31.0319 6544  adpu320 - ok
15:24:31.0542 6544  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
15:24:31.0544 6544  AeLookupSvc - ok
15:24:31.0692 6544  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
15:24:31.0697 6544  AFD - ok
15:24:31.0756 6544  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
15:24:31.0758 6544  agp440 - ok
15:24:31.0791 6544  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
15:24:31.0792 6544  ALG - ok
15:24:31.0855 6544  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
15:24:31.0857 6544  aliide - ok
15:24:31.0937 6544  [ 4EAAAAB8759644D572522FBCDD196A13 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
15:24:31.0940 6544  AMD External Events Utility - ok
15:24:31.0972 6544  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
15:24:31.0974 6544  amdide - ok
15:24:32.0040 6544  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
15:24:32.0043 6544  AmdK8 - ok
15:24:33.0007 6544  [ 22A14DF59FB8D0BE918C597988AF4296 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
15:24:34.0124 6544  amdkmdag - ok
15:24:34.0326 6544  [ EE22D3ED6D55A855E709F811CCCA97ED ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
15:24:34.0352 6544  amdkmdap - ok
15:24:34.0380 6544  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
15:24:34.0382 6544  AmdPPM - ok
15:24:34.0465 6544  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
15:24:34.0468 6544  amdsata - ok
15:24:34.0568 6544  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
15:24:34.0578 6544  amdsbs - ok
15:24:34.0620 6544  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
15:24:34.0633 6544  amdxata - ok
15:24:34.0713 6544  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
15:24:34.0715 6544  AppID - ok
15:24:34.0765 6544  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
15:24:34.0766 6544  AppIDSvc - ok
15:24:34.0888 6544  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo         C:\Windows\System32\appinfo.dll
15:24:34.0890 6544  Appinfo - ok
15:24:35.0287 6544  [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:24:35.0289 6544  Apple Mobile Device - ok
15:24:35.0359 6544  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
15:24:35.0361 6544  arc - ok
15:24:35.0392 6544  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
15:24:35.0394 6544  arcsas - ok
15:24:35.0635 6544  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
15:24:35.0665 6544  aspnet_state - ok
15:24:35.0763 6544  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
15:24:35.0765 6544  AsyncMac - ok
15:24:35.0833 6544  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
15:24:35.0835 6544  atapi - ok
15:24:35.0975 6544  [ 437F55435623D4D54D36197F5AD8B435 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
15:24:36.0021 6544  AtiHDAudioService - ok
15:24:36.0179 6544  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:24:36.0186 6544  AudioEndpointBuilder - ok
15:24:36.0199 6544  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
15:24:36.0203 6544  AudioSrv - ok
15:24:36.0314 6544  [ 3D1FFAA3358CA0D8A298DEA8BECFC468 ] Avgfwfd         C:\Windows\system32\DRIVERS\avgfwd6a.sys
15:24:36.0316 6544  Avgfwfd - ok
15:24:36.0755 6544  [ D0BE22C910E46550C6308D50DDA76B94 ] avgfws          C:\Program Files (x86)\AVG\AVG2013\avgfws.exe
15:24:36.0772 6544  avgfws - ok
15:24:37.0014 6544  [ 4AFC14AFA58878FAA1D249E7E90EA54B ] AVGIDSAgent     C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
15:24:37.0103 6544  AVGIDSAgent - ok
15:24:37.0152 6544  [ 388056EBD5FE6718FE669078DBE37897 ] AVGIDSDriver    C:\Windows\system32\DRIVERS\avgidsdrivera.sys
15:24:37.0154 6544  AVGIDSDriver - ok
15:24:37.0223 6544  [ 550E981747D6A6C55078C77346FFC2C6 ] AVGIDSHA        C:\Windows\system32\DRIVERS\avgidsha.sys
15:24:37.0225 6544  AVGIDSHA - ok
15:24:37.0345 6544  [ 5989592A91A17587799792A81E1541D4 ] Avgldx64        C:\Windows\system32\DRIVERS\avgldx64.sys
15:24:37.0350 6544  Avgldx64 - ok
15:24:37.0431 6544  [ 3FC43AA02545FCDDC22817829114DEC8 ] Avgloga         C:\Windows\system32\DRIVERS\avgloga.sys
15:24:37.0435 6544  Avgloga - ok
15:24:37.0485 6544  [ 841C40C193889730848849AC220D9242 ] Avgmfx64        C:\Windows\system32\DRIVERS\avgmfx64.sys
15:24:37.0488 6544  Avgmfx64 - ok
15:24:37.0510 6544  [ FE4F444DBE4BBBDFD8FECF49398DEFC7 ] Avgrkx64        C:\Windows\system32\DRIVERS\avgrkx64.sys
15:24:37.0512 6544  Avgrkx64 - ok
15:24:37.0559 6544  [ 6E634525613D48A1D1657FB21F21F3B2 ] Avgtdia         C:\Windows\system32\DRIVERS\avgtdia.sys
15:24:37.0564 6544  Avgtdia - ok
15:24:37.0581 6544  [ 95AED7BB68CF3381AF19DA81BC7DD3FB ] avgtp           C:\Windows\system32\drivers\avgtpx64.sys
15:24:37.0582 6544  avgtp - ok
15:24:37.0649 6544  [ 6B72E1E329C4E98C6B6FDD2D265E3BA3 ] avgwd           C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
15:24:37.0653 6544  avgwd - ok
15:24:37.0692 6544  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
15:24:37.0694 6544  AxInstSV - ok
15:24:37.0820 6544  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
15:24:37.0828 6544  b06bdrv - ok
15:24:37.0903 6544  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
15:24:37.0908 6544  b57nd60a - ok
15:24:38.0008 6544  [ 01A24B415926BB5F772DBE12459D97DE ] BBSvc           C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
15:24:38.0012 6544  BBSvc - ok
15:24:38.0059 6544  [ 785DE7ABDA13309D6065305542829E76 ] BBUpdate        C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
15:24:38.0064 6544  BBUpdate - ok
15:24:38.0098 6544  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
15:24:38.0099 6544  BDESVC - ok
15:24:38.0139 6544  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
15:24:38.0140 6544  Beep - ok
15:24:38.0268 6544  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
15:24:38.0279 6544  BFE - ok
15:24:38.0372 6544  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
15:24:38.0386 6544  BITS - ok
15:24:38.0450 6544  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
15:24:38.0452 6544  blbdrive - ok
15:24:38.0623 6544  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
15:24:38.0627 6544  Bonjour Service - ok
15:24:38.0676 6544  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
15:24:38.0677 6544  bowser - ok
15:24:38.0727 6544  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
15:24:38.0729 6544  BrFiltLo - ok
15:24:38.0746 6544  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
15:24:38.0748 6544  BrFiltUp - ok
15:24:38.0820 6544  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
15:24:38.0823 6544  Browser - ok
15:24:38.0904 6544  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
15:24:38.0910 6544  Brserid - ok
15:24:38.0930 6544  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
15:24:38.0932 6544  BrSerWdm - ok
15:24:38.0950 6544  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
15:24:38.0952 6544  BrUsbMdm - ok
15:24:38.0967 6544  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
15:24:38.0968 6544  BrUsbSer - ok
15:24:38.0993 6544  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
15:24:38.0995 6544  BTHMODEM - ok
15:24:39.0065 6544  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
15:24:39.0067 6544  bthserv - ok
15:24:39.0099 6544  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
15:24:39.0102 6544  cdfs - ok
15:24:39.0142 6544  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\drivers\cdrom.sys
15:24:39.0144 6544  cdrom - ok
15:24:39.0190 6544  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
15:24:39.0191 6544  CertPropSvc - ok
15:24:39.0203 6544  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
15:24:39.0206 6544  circlass - ok
15:24:39.0269 6544  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
15:24:39.0273 6544  CLFS - ok
15:24:39.0339 6544  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:24:39.0341 6544  clr_optimization_v2.0.50727_32 - ok
15:24:39.0426 6544  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
15:24:39.0429 6544  clr_optimization_v2.0.50727_64 - ok
15:24:39.0639 6544  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:24:39.0822 6544  clr_optimization_v4.0.30319_32 - ok
15:24:39.0881 6544  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
15:24:39.0902 6544  clr_optimization_v4.0.30319_64 - ok
15:24:39.0944 6544  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
15:24:39.0945 6544  CmBatt - ok
15:24:39.0961 6544  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
15:24:39.0963 6544  cmdide - ok
15:24:40.0016 6544  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
15:24:40.0024 6544  CNG - ok
15:24:40.0090 6544  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
15:24:40.0091 6544  Compbatt - ok
15:24:40.0128 6544  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
15:24:40.0130 6544  CompositeBus - ok
15:24:40.0156 6544  COMSysApp - ok
15:24:40.0191 6544  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
15:24:40.0192 6544  crcdisk - ok
15:24:40.0249 6544  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc        C:\Windows\system32\cryptsvc.dll
15:24:40.0252 6544  CryptSvc - ok
15:24:40.0417 6544  [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc          C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
15:24:40.0427 6544  cvhsvc - ok
15:24:40.0492 6544  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
15:24:40.0499 6544  DcomLaunch - ok
15:24:40.0583 6544  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
15:24:40.0585 6544  defragsvc - ok
15:24:40.0639 6544  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
15:24:40.0641 6544  DfsC - ok
15:24:40.0758 6544  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
15:24:40.0763 6544  Dhcp - ok
15:24:40.0802 6544  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
15:24:40.0803 6544  discache - ok
15:24:40.0910 6544  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
15:24:40.0911 6544  Disk - ok
15:24:40.0979 6544  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
15:24:40.0982 6544  Dnscache - ok
15:24:41.0183 6544  [ 0840ABBBDF438691EE65A20040635CBE ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
15:24:41.0197 6544  DockLoginService - ok
15:24:41.0394 6544  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
15:24:41.0398 6544  dot3svc - ok
15:24:41.0650 6544  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
15:24:41.0655 6544  DPS - ok
15:24:41.0780 6544  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
15:24:41.0782 6544  drmkaud - ok
15:24:42.0033 6544  [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
15:24:42.0076 6544  DXGKrnl - ok
15:24:42.0210 6544  EagleX64 - ok
15:24:42.0272 6544  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
15:24:42.0274 6544  EapHost - ok
15:24:42.0766 6544  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
15:24:43.0011 6544  ebdrv - ok
15:24:43.0054 6544  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
15:24:43.0055 6544  EFS - ok
15:24:43.0281 6544  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
15:24:43.0288 6544  ehRecvr - ok
15:24:43.0314 6544  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
15:24:43.0315 6544  ehSched - ok
15:24:43.0471 6544  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
15:24:43.0481 6544  elxstor - ok
15:24:43.0533 6544  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
15:24:43.0535 6544  ErrDev - ok
15:24:43.0725 6544  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
15:24:43.0732 6544  EventSystem - ok
15:24:43.0776 6544  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
15:24:43.0781 6544  exfat - ok
15:24:43.0822 6544  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
15:24:43.0825 6544  fastfat - ok
15:24:43.0938 6544  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
15:24:43.0949 6544  Fax - ok
15:24:43.0979 6544  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
15:24:43.0980 6544  fdc - ok
15:24:44.0016 6544  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
15:24:44.0017 6544  fdPHost - ok
15:24:44.0035 6544  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
15:24:44.0037 6544  FDResPub - ok
15:24:44.0088 6544  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
15:24:44.0090 6544  FileInfo - ok
15:24:44.0107 6544  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
15:24:44.0108 6544  Filetrace - ok
15:24:44.0139 6544  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
15:24:44.0140 6544  flpydisk - ok
15:24:44.0176 6544  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
15:24:44.0179 6544  FltMgr - ok
15:24:44.0264 6544  [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache       C:\Windows\system32\FntCache.dll
15:24:44.0281 6544  FontCache - ok
15:24:44.0341 6544  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:24:44.0344 6544  FontCache3.0.0.0 - ok
15:24:44.0381 6544  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
15:24:44.0382 6544  FsDepends - ok
15:24:44.0401 6544  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
15:24:44.0403 6544  Fs_Rec - ok
15:24:44.0440 6544  [ 1F7B25B858FA27015169FE95E54108ED ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
15:24:44.0441 6544  fvevol - ok
15:24:44.0493 6544  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
15:24:44.0496 6544  gagp30kx - ok
15:24:44.0527 6544  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
15:24:44.0529 6544  GEARAspiWDM - ok
15:24:44.0623 6544  [ D3316F6E3C011435F36E3D6E49B3196C ] GoToAssist      C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
15:24:44.0625 6544  GoToAssist - ok
15:24:44.0677 6544  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
15:24:44.0681 6544  gpsvc - ok
15:24:44.0798 6544  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:24:44.0800 6544  gupdate - ok
15:24:44.0868 6544  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:24:44.0871 6544  gupdatem - ok
15:24:44.0962 6544  [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
15:24:44.0965 6544  gusvc - ok
15:24:45.0016 6544  [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi         C:\Windows\system32\DRIVERS\hamachi.sys
15:24:45.0018 6544  hamachi - ok
15:24:46.0511 6544  [ 785FD63B74B30986A9F2C7D965CA509F ] Hamachi2Svc     C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
15:24:46.0595 6544  Hamachi2Svc - ok
15:24:46.0786 6544  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
15:24:46.0788 6544  hcw85cir - ok
15:24:46.0955 6544  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:24:46.0962 6544  HdAudAddService - ok
15:24:47.0063 6544  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
15:24:47.0065 6544  HDAudBus - ok
15:24:47.0089 6544  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
15:24:47.0091 6544  HidBatt - ok
15:24:47.0108 6544  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
15:24:47.0109 6544  HidBth - ok
15:24:47.0126 6544  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
15:24:47.0128 6544  HidIr - ok
15:24:47.0170 6544  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
15:24:47.0171 6544  hidserv - ok
15:24:47.0212 6544  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
15:24:47.0212 6544  HidUsb - ok
15:24:47.0311 6544  [ 34E95DE386032FD7F14C228DD8E1CDBF ] HiPatchService  C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
15:24:47.0312 6544  HiPatchService - ok
15:24:47.0372 6544  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
15:24:47.0374 6544  hkmsvc - ok
15:24:47.0451 6544  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:24:47.0455 6544  HomeGroupListener - ok
15:24:47.0516 6544  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:24:47.0520 6544  HomeGroupProvider - ok
15:24:47.0560 6544  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
15:24:47.0563 6544  HpSAMD - ok
15:24:47.0619 6544  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
15:24:47.0630 6544  HTTP - ok
15:24:47.0661 6544  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
15:24:47.0663 6544  hwpolicy - ok
15:24:47.0726 6544  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
15:24:47.0728 6544  i8042prt - ok
15:24:47.0813 6544  [ 1D004CB1DA6323B1F55CAEF7F94B61D9 ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
15:24:47.0818 6544  iaStor - ok
15:24:47.0926 6544  [ 31A0E93CDF29007D6C6FFFB632F375ED ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
15:24:47.0927 6544  IAStorDataMgrSvc - ok
15:24:48.0036 6544  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
15:24:48.0062 6544  iaStorV - ok
15:24:48.0457 6544  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
15:24:48.0508 6544  idsvc - ok
15:24:49.0526 6544  [ AC4B14E985B2BB19386CC8203FE49BCD ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
15:24:49.0806 6544  igfx - ok
15:24:49.0851 6544  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
15:24:49.0853 6544  iirsp - ok
15:24:49.0908 6544  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
15:24:49.0922 6544  IKEEXT - ok
15:24:50.0141 6544  [ 492CD3A94913D753B4591CD9E29EC843 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
15:24:50.0176 6544  IntcAzAudAddService - ok
15:24:50.0228 6544  [ D485D3BD3E2179AA86853A182F70699F ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys
15:24:50.0230 6544  IntcHdmiAddService - ok
15:24:50.0277 6544  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
15:24:50.0279 6544  intelide - ok
15:24:50.0320 6544  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
15:24:50.0322 6544  intelppm - ok
15:24:50.0366 6544  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
15:24:50.0369 6544  IPBusEnum - ok
15:24:50.0398 6544  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:24:50.0401 6544  IpFilterDriver - ok
15:24:50.0483 6544  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
15:24:50.0490 6544  iphlpsvc - ok
15:24:50.0542 6544  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
15:24:50.0544 6544  IPMIDRV - ok
15:24:50.0584 6544  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
15:24:50.0587 6544  IPNAT - ok
15:24:50.0760 6544  [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
15:24:50.0775 6544  iPod Service - ok
15:24:50.0836 6544  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
15:24:50.0839 6544  IRENUM - ok
15:24:50.0878 6544  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
15:24:50.0891 6544  isapnp - ok
15:24:50.0948 6544  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
15:24:50.0960 6544  iScsiPrt - ok
15:24:50.0994 6544  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
15:24:50.0995 6544  kbdclass - ok
15:24:51.0041 6544  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
15:24:51.0042 6544  kbdhid - ok
15:24:51.0062 6544  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
15:24:51.0064 6544  KeyIso - ok
15:24:51.0111 6544  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
15:24:51.0113 6544  KSecDD - ok
15:24:51.0170 6544  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
15:24:51.0174 6544  KSecPkg - ok
15:24:51.0226 6544  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
15:24:51.0228 6544  ksthunk - ok
15:24:51.0314 6544  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
15:24:51.0322 6544  KtmRm - ok
15:24:51.0360 6544  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
15:24:51.0365 6544  LanmanServer - ok
15:24:51.0431 6544  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:24:51.0433 6544  LanmanWorkstation - ok
15:24:51.0493 6544  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
15:24:51.0493 6544  lltdio - ok
15:24:51.0555 6544  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
15:24:51.0562 6544  lltdsvc - ok
15:24:51.0581 6544  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
15:24:51.0584 6544  lmhosts - ok
15:24:51.0636 6544  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
15:24:51.0639 6544  LSI_FC - ok
15:24:51.0662 6544  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
15:24:51.0665 6544  LSI_SAS - ok
15:24:51.0687 6544  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
15:24:51.0689 6544  LSI_SAS2 - ok
15:24:51.0714 6544  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
15:24:51.0716 6544  LSI_SCSI - ok
15:24:51.0745 6544  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
15:24:51.0746 6544  luafv - ok
15:24:51.0825 6544  [ 92EB844D90615CB266F84C3202B8786E ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
15:24:51.0826 6544  MBAMProtector - ok
15:24:51.0919 6544  [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
15:24:51.0925 6544  MBAMScheduler - ok
15:24:52.0082 6544  [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
15:24:52.0092 6544  MBAMService - ok
15:24:52.0130 6544  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
15:24:52.0134 6544  Mcx2Svc - ok
15:24:52.0150 6544  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
15:24:52.0153 6544  megasas - ok
15:24:52.0234 6544  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
15:24:52.0239 6544  MegaSR - ok
15:24:52.0302 6544  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
15:24:52.0305 6544  MMCSS - ok
15:24:52.0316 6544  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
15:24:52.0318 6544  Modem - ok
15:24:52.0365 6544  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
15:24:52.0366 6544  monitor - ok
15:24:52.0404 6544  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
15:24:52.0405 6544  mouclass - ok
15:24:52.0464 6544  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
15:24:52.0466 6544  mouhid - ok
15:24:52.0496 6544  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
15:24:52.0499 6544  mountmgr - ok
15:24:52.0569 6544  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
15:24:52.0573 6544  mpio - ok
15:24:52.0608 6544  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
15:24:52.0610 6544  mpsdrv - ok
15:24:52.0681 6544  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
15:24:52.0691 6544  MpsSvc - ok
15:24:52.0744 6544  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
15:24:52.0747 6544  MRxDAV - ok
15:24:52.0797 6544  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
15:24:52.0800 6544  mrxsmb - ok
15:24:52.0889 6544  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:24:52.0892 6544  mrxsmb10 - ok
15:24:52.0903 6544  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:24:52.0905 6544  mrxsmb20 - ok
15:24:52.0942 6544  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
15:24:52.0943 6544  msahci - ok
15:24:52.0980 6544  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
15:24:52.0983 6544  msdsm - ok
15:24:53.0011 6544  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
15:24:53.0016 6544  MSDTC - ok
15:24:53.0078 6544  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
15:24:53.0079 6544  Msfs - ok
15:24:53.0114 6544  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
15:24:53.0115 6544  mshidkmdf - ok
15:24:53.0143 6544  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
15:24:53.0145 6544  msisadrv - ok
15:24:53.0234 6544  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
15:24:53.0238 6544  MSiSCSI - ok
15:24:53.0245 6544  msiserver - ok
15:24:53.0341 6544  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
15:24:53.0343 6544  MSKSSRV - ok
15:24:53.0413 6544  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
15:24:53.0463 6544  MSPCLOCK - ok
15:24:53.0531 6544  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
15:24:53.0534 6544  MSPQM - ok
15:24:53.0595 6544  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
15:24:53.0600 6544  MsRPC - ok
15:24:53.0645 6544  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
15:24:53.0646 6544  mssmbios - ok
15:24:53.0692 6544  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
15:24:53.0694 6544  MSTEE - ok
15:24:53.0715 6544  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
15:24:53.0717 6544  MTConfig - ok
15:24:53.0780 6544  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
15:24:53.0783 6544  Mup - ok
15:24:54.0008 6544  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
15:24:54.0017 6544  napagent - ok
15:24:54.0118 6544  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
15:24:54.0124 6544  NativeWifiP - ok
15:24:54.0224 6544  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
15:24:54.0238 6544  NDIS - ok
15:24:54.0268 6544  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
15:24:54.0269 6544  NdisCap - ok
15:24:54.0327 6544  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
15:24:54.0329 6544  NdisTapi - ok
15:24:54.0398 6544  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
15:24:54.0412 6544  Ndisuio - ok
15:24:54.0467 6544  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
15:24:54.0473 6544  NdisWan - ok
15:24:54.0489 6544  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
15:24:54.0492 6544  NDProxy - ok
15:24:54.0528 6544  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
15:24:54.0529 6544  NetBIOS - ok
15:24:54.0560 6544  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
15:24:54.0563 6544  NetBT - ok
15:24:54.0578 6544  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
15:24:54.0579 6544  Netlogon - ok
15:24:54.0668 6544  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
15:24:54.0679 6544  Netman - ok
15:24:54.0738 6544  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:24:54.0786 6544  NetMsmqActivator - ok
15:24:54.0794 6544  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:24:54.0796 6544  NetPipeActivator - ok
15:24:54.0877 6544  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
15:24:54.0880 6544  netprofm - ok
15:24:54.0891 6544  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:24:54.0892 6544  NetTcpActivator - ok
15:24:54.0897 6544  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:24:54.0898 6544  NetTcpPortSharing - ok
15:24:54.0937 6544  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
15:24:54.0939 6544  nfrd960 - ok
15:24:54.0979 6544  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
15:24:54.0981 6544  NlaSvc - ok
15:24:55.0032 6544  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
15:24:55.0033 6544  Npfs - ok
15:24:55.0077 6544  npggsvc - ok
15:24:55.0087 6544  NPPTNT2 - ok
15:24:55.0139 6544  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
15:24:55.0141 6544  nsi - ok
15:24:55.0181 6544  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
15:24:55.0182 6544  nsiproxy - ok
15:24:55.0296 6544  [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
15:24:55.0320 6544  Ntfs - ok
15:24:55.0349 6544  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
15:24:55.0350 6544  Null - ok
15:24:55.0402 6544  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
15:24:55.0406 6544  nvraid - ok
15:24:55.0479 6544  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
15:24:55.0482 6544  nvstor - ok
15:24:55.0526 6544  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
15:24:55.0529 6544  nv_agp - ok
15:24:55.0567 6544  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
15:24:55.0570 6544  ohci1394 - ok
15:24:55.0657 6544  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:24:55.0660 6544  ose - ok
15:24:56.0631 6544  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
15:24:56.0728 6544  osppsvc - ok
15:24:56.0827 6544  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
15:24:56.0833 6544  p2pimsvc - ok
15:24:56.0903 6544  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
15:24:56.0909 6544  p2psvc - ok
15:24:56.0949 6544  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
15:24:56.0951 6544  Parport - ok
15:24:57.0018 6544  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
15:24:57.0020 6544  partmgr - ok
15:24:57.0056 6544  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
15:24:57.0060 6544  PcaSvc - ok
15:24:57.0112 6544  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
15:24:57.0115 6544  pci - ok
15:24:57.0145 6544  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
15:24:57.0147 6544  pciide - ok
15:24:57.0216 6544  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
15:24:57.0223 6544  pcmcia - ok
15:24:57.0247 6544  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
15:24:57.0250 6544  pcw - ok
15:24:57.0375 6544  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
15:24:57.0385 6544  PEAUTH - ok
15:24:57.0512 6544  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
15:24:57.0515 6544  PerfHost - ok
15:24:57.0621 6544  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
15:24:57.0641 6544  pla - ok
15:24:57.0670 6544  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
15:24:57.0673 6544  PlugPlay - ok
15:24:57.0749 6544  PnkBstrA - ok
15:24:57.0810 6544  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
15:24:57.0813 6544  PNRPAutoReg - ok
15:24:57.0851 6544  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
15:24:57.0853 6544  PNRPsvc - ok
15:24:57.0970 6544  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
15:24:57.0979 6544  PolicyAgent - ok
15:24:58.0042 6544  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
15:24:58.0047 6544  Power - ok
15:24:58.0101 6544  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
15:24:58.0103 6544  PptpMiniport - ok
15:24:58.0146 6544  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
15:24:58.0147 6544  Processor - ok
15:24:58.0185 6544  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
15:24:58.0187 6544  ProfSvc - ok
15:24:58.0203 6544  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
15:24:58.0204 6544  ProtectedStorage - ok
15:24:58.0243 6544  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
15:24:58.0244 6544  Psched - ok
15:24:58.0277 6544  [ FB46E9A827A8799EBD7BFA9128C91F37 ] PSI             C:\Windows\system32\DRIVERS\psi_mf.sys
15:24:58.0278 6544  PSI - ok
15:24:58.0345 6544  [ 4712CC14E720ECCCC0AA16949D18AAF1 ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
15:24:58.0349 6544  PxHlpa64 - ok
15:24:58.0637 6544  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
15:24:58.0652 6544  ql2300 - ok
15:24:58.0700 6544  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
15:24:58.0704 6544  ql40xx - ok
15:24:58.0762 6544  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
15:24:58.0767 6544  QWAVE - ok
15:24:58.0789 6544  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
15:24:58.0790 6544  QWAVEdrv - ok
15:24:58.0826 6544  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
15:24:58.0827 6544  RasAcd - ok
15:24:58.0903 6544  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
15:24:58.0905 6544  RasAgileVpn - ok
15:24:58.0918 6544  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
15:24:58.0919 6544  RasAuto - ok
15:24:58.0958 6544  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
15:24:58.0959 6544  Rasl2tp - ok
15:24:59.0025 6544  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
15:24:59.0031 6544  RasMan - ok
15:24:59.0070 6544  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
15:24:59.0071 6544  RasPppoe - ok
15:24:59.0095 6544  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
15:24:59.0098 6544  RasSstp - ok
15:24:59.0158 6544  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
15:24:59.0163 6544  rdbss - ok
15:24:59.0182 6544  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
15:24:59.0183 6544  rdpbus - ok
15:24:59.0211 6544  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
15:24:59.0213 6544  RDPCDD - ok
15:24:59.0250 6544  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
15:24:59.0251 6544  RDPENCDD - ok
15:24:59.0260 6544  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
15:24:59.0261 6544  RDPREFMP - ok
15:24:59.0340 6544  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
15:24:59.0344 6544  RDPWD - ok
15:24:59.0407 6544  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
15:24:59.0411 6544  rdyboost - ok
15:24:59.0442 6544  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
15:24:59.0445 6544  RemoteAccess - ok
15:24:59.0504 6544  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
15:24:59.0509 6544  RemoteRegistry - ok
15:24:59.0626 6544  [ E7062DBD907E0C5CEEB5ABDAF07E6B32 ] RosettaStoneDaemon C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe
15:24:59.0641 6544  RosettaStoneDaemon - ok
15:24:59.0702 6544  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
15:24:59.0704 6544  RpcEptMapper - ok
15:24:59.0757 6544  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
15:24:59.0759 6544  RpcLocator - ok
15:24:59.0799 6544  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
15:24:59.0802 6544  RpcSs - ok
15:24:59.0862 6544  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
15:24:59.0864 6544  rspndr - ok
15:24:59.0919 6544  [ F65F171165FBB613F7AA3CC78E8CAB42 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
15:24:59.0924 6544  RTL8167 - ok
15:24:59.0937 6544  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
15:24:59.0938 6544  SamSs - ok
15:24:59.0972 6544  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
15:24:59.0974 6544  sbp2port - ok
15:25:00.0007 6544  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
15:25:00.0012 6544  SCardSvr - ok
15:25:00.0120 6544  [ E25632DF954CE70928946BB36F829CF4 ] SCDEmu          C:\Windows\system32\drivers\SCDEmu.sys
15:25:00.0124 6544  SCDEmu - ok
15:25:00.0156 6544  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
15:25:00.0157 6544  scfilter - ok
15:25:00.0248 6544  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
15:25:00.0266 6544  Schedule - ok
15:25:00.0324 6544  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
15:25:00.0325 6544  SCPolicySvc - ok
15:25:00.0406 6544  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
15:25:00.0409 6544  SDRSVC - ok
15:25:00.0432 6544  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
15:25:00.0436 6544  secdrv - ok
15:25:00.0450 6544  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
15:25:00.0452 6544  seclogon - ok
15:25:00.0572 6544  [ 9901DCF2B6DD2AD12CB42BD559E0C92D ] Secunia PSI Agent C:\Program Files (x86)\Secunia\PSI\PSIA.exe
15:25:00.0588 6544  Secunia PSI Agent - ok
15:25:00.0659 6544  [ 4F2056349F8BA4154D5213BF8A476B14 ] Secunia Update Agent C:\Program Files (x86)\Secunia\PSI\sua.exe
15:25:00.0669 6544  Secunia Update Agent - ok
15:25:00.0708 6544  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
15:25:00.0711 6544  SENS - ok
15:25:00.0749 6544  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
15:25:00.0752 6544  SensrSvc - ok
15:25:00.0804 6544  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
15:25:00.0806 6544  Serenum - ok
15:25:00.0827 6544  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
15:25:00.0829 6544  Serial - ok
15:25:00.0870 6544  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
15:25:00.0872 6544  sermouse - ok
15:25:00.0918 6544  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
15:25:00.0922 6544  SessionEnv - ok
15:25:00.0963 6544  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
15:25:00.0965 6544  sffdisk - ok
15:25:00.0985 6544  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
15:25:00.0987 6544  sffp_mmc - ok
15:25:01.0006 6544  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
15:25:01.0008 6544  sffp_sd - ok
15:25:01.0034 6544  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
15:25:01.0036 6544  sfloppy - ok
15:25:01.0186 6544  [ C6CC9297BD53E5229653303E556AA539 ] Sftfs           C:\Windows\system32\DRIVERS\Sftfslh.sys
15:25:01.0200 6544  Sftfs - ok
15:25:01.0293 6544  [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist         C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
15:25:01.0298 6544  sftlist - ok
15:25:01.0407 6544  [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay         C:\Windows\system32\DRIVERS\Sftplaylh.sys
15:25:01.0412 6544  Sftplay - ok
15:25:01.0427 6544  [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir        C:\Windows\system32\DRIVERS\Sftredirlh.sys
15:25:01.0428 6544  Sftredir - ok
15:25:01.0585 6544  [ 74EC60E20516AAA573BE74F31175270F ] SftService      C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
15:25:01.0593 6544  SftService - ok
15:25:01.0624 6544  [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol          C:\Windows\system32\DRIVERS\Sftvollh.sys
15:25:01.0625 6544  Sftvol - ok
15:25:01.0670 6544  [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa          C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
15:25:01.0673 6544  sftvsa - ok
15:25:01.0719 6544  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
15:25:01.0721 6544  SharedAccess - ok
15:25:01.0753 6544  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:25:01.0759 6544  ShellHWDetection - ok
15:25:01.0790 6544  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
15:25:01.0792 6544  SiSRaid2 - ok
15:25:01.0833 6544  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
15:25:01.0836 6544  SiSRaid4 - ok
15:25:01.0942 6544  [ 8C4F0DCC6A5100D48F9B2F950CDD220F ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
15:25:01.0945 6544  SkypeUpdate - ok
15:25:01.0977 6544  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
15:25:01.0979 6544  Smb - ok
15:25:02.0006 6544  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
15:25:02.0008 6544  SNMPTRAP - ok
15:25:02.0019 6544  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
15:25:02.0021 6544  spldr - ok
15:25:02.0054 6544  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
15:25:02.0062 6544  Spooler - ok
15:25:02.0191 6544  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
15:25:02.0268 6544  sppsvc - ok
15:25:02.0315 6544  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
15:25:02.0317 6544  sppuinotify - ok
15:25:02.0363 6544  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
15:25:02.0370 6544  srv - ok
15:25:02.0391 6544  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
15:25:02.0396 6544  srv2 - ok
15:25:02.0402 6544  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
15:25:02.0405 6544  srvnet - ok
15:25:02.0425 6544  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
15:25:02.0429 6544  SSDPSRV - ok
15:25:02.0440 6544  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
15:25:02.0441 6544  SstpSvc - ok
15:25:02.0488 6544  Steam Client Service - ok
15:25:02.0516 6544  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
15:25:02.0518 6544  stexstor - ok
15:25:02.0565 6544  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
15:25:02.0576 6544  stisvc - ok
15:25:02.0613 6544  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
15:25:02.0614 6544  swenum - ok
15:25:02.0681 6544  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
15:25:02.0689 6544  swprv - ok
15:25:02.0811 6544  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
15:25:02.0835 6544  SysMain - ok
15:25:02.0866 6544  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:25:02.0867 6544  TabletInputService - ok
15:25:02.0894 6544  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
15:25:02.0899 6544  TapiSrv - ok
15:25:02.0938 6544  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
15:25:02.0941 6544  TBS - ok
15:25:03.0024 6544  [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
15:25:03.0048 6544  Tcpip - ok
15:25:03.0084 6544  [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
15:25:03.0093 6544  TCPIP6 - ok
15:25:03.0125 6544  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
15:25:03.0126 6544  tcpipreg - ok
15:25:03.0159 6544  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
15:25:03.0160 6544  TDPIPE - ok
15:25:03.0183 6544  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
15:25:03.0185 6544  TDTCP - ok
15:25:03.0224 6544  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
15:25:03.0226 6544  tdx - ok
15:25:03.0752 6544  [ A4D2CE94B028EF1E437CF4AC3D8FF26C ] TeamViewer7     C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
15:25:03.0772 6544  TeamViewer7 - ok
15:25:03.0813 6544  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
15:25:03.0815 6544  TermDD - ok
15:25:03.0881 6544  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
15:25:03.0893 6544  TermService - ok
15:25:03.0927 6544  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
15:25:03.0929 6544  Themes - ok
15:25:03.0961 6544  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
15:25:03.0962 6544  THREADORDER - ok
15:25:04.0000 6544  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
15:25:04.0005 6544  TrkWks - ok
15:25:04.0070 6544  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:25:04.0072 6544  TrustedInstaller - ok
15:25:04.0108 6544  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
15:25:04.0109 6544  tssecsrv - ok
15:25:04.0152 6544  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
15:25:04.0155 6544  TsUsbFlt - ok
15:25:04.0360 6544  [ DD296C78B0D2C3F5E42DC0D2972CD992 ] TuneUp.UtilitiesSvc C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
15:25:04.0373 6544  TuneUp.UtilitiesSvc - ok
15:25:04.0423 6544  [ 7BC3381C0713F613B31ACDE38B71CB53 ] TuneUpUtilitiesDrv C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys
15:25:04.0424 6544  TuneUpUtilitiesDrv - ok
15:25:04.0495 6544  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
15:25:04.0498 6544  tunnel - ok
15:25:04.0533 6544  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
15:25:04.0535 6544  uagp35 - ok
15:25:04.0597 6544  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
15:25:04.0603 6544  udfs - ok
15:25:04.0670 6544  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
15:25:04.0673 6544  UI0Detect - ok
15:25:04.0690 6544  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
15:25:04.0692 6544  uliagpkx - ok
15:25:04.0728 6544  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\drivers\umbus.sys
15:25:04.0729 6544  umbus - ok
15:25:04.0744 6544  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
15:25:04.0745 6544  UmPass - ok
15:25:04.0767 6544  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
15:25:04.0772 6544  upnphost - ok
15:25:04.0800 6544  [ AF1B9474D67897D0C2CFF58E0ACEACCC ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
15:25:04.0802 6544  USBAAPL64 - ok
15:25:04.0856 6544  [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
15:25:04.0859 6544  usbaudio - ok
15:25:04.0901 6544  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
15:25:04.0904 6544  usbccgp - ok
15:25:04.0937 6544  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
15:25:04.0940 6544  usbcir - ok
15:25:04.0968 6544  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
15:25:04.0969 6544  usbehci - ok
15:25:04.0996 6544  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
15:25:05.0000 6544  usbhub - ok
15:25:05.0010 6544  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
15:25:05.0012 6544  usbohci - ok
15:25:05.0037 6544  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
15:25:05.0039 6544  usbprint - ok
15:25:05.0050 6544  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:25:05.0051 6544  USBSTOR - ok
15:25:05.0065 6544  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
15:25:05.0067 6544  usbuhci - ok
15:25:05.0096 6544  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
15:25:05.0098 6544  UxSms - ok
15:25:05.0120 6544  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
15:25:05.0122 6544  VaultSvc - ok
15:25:05.0161 6544  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
15:25:05.0163 6544  vdrvroot - ok
15:25:05.0188 6544  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
15:25:05.0192 6544  vds - ok
15:25:05.0220 6544  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
15:25:05.0222 6544  vga - ok
15:25:05.0239 6544  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
15:25:05.0240 6544  VgaSave - ok
15:25:05.0298 6544  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
15:25:05.0302 6544  vhdmp - ok
15:25:05.0323 6544  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
15:25:05.0325 6544  viaide - ok
15:25:05.0339 6544  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
15:25:05.0340 6544  volmgr - ok
15:25:05.0404 6544  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
15:25:05.0408 6544  volmgrx - ok
15:25:05.0455 6544  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
15:25:05.0462 6544  volsnap - ok
15:25:05.0515 6544  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
15:25:05.0519 6544  vsmraid - ok
15:25:05.0596 6544  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
15:25:05.0619 6544  VSS - ok
15:25:05.0812 6544  [ 50D3941555FEFDF46424431702EC5FB6 ] vToolbarUpdater14.0.1 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\14.0.1\ToolbarUpdater.exe
15:25:05.0822 6544  vToolbarUpdater14.0.1 - ok
15:25:05.0977 6544  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
15:25:05.0979 6544  vwifibus - ok
15:25:06.0032 6544  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
15:25:06.0040 6544  W32Time - ok
15:25:06.0082 6544  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
15:25:06.0085 6544  WacomPen - ok
15:25:06.0123 6544  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
15:25:06.0125 6544  WANARP - ok
15:25:06.0132 6544  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
15:25:06.0134 6544  Wanarpv6 - ok
15:25:06.0376 6544  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
15:25:06.0389 6544  WatAdminSvc - ok
15:25:06.0557 6544  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
15:25:06.0579 6544  wbengine - ok
15:25:06.0626 6544  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
15:25:06.0631 6544  WbioSrvc - ok
15:25:06.0662 6544  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
15:25:06.0665 6544  wcncsvc - ok
15:25:06.0676 6544  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:25:06.0677 6544  WcsPlugInService - ok
15:25:06.0703 6544  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
15:25:06.0705 6544  Wd - ok
15:25:06.0779 6544  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
15:25:06.0788 6544  Wdf01000 - ok
15:25:06.0804 6544  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
15:25:06.0806 6544  WdiServiceHost - ok
15:25:06.0811 6544  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
15:25:06.0813 6544  WdiSystemHost - ok
15:25:06.0845 6544  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
15:25:06.0848 6544  WebClient - ok
15:25:06.0868 6544  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
15:25:06.0871 6544  Wecsvc - ok
15:25:06.0884 6544  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
15:25:06.0886 6544  wercplsupport - ok
15:25:06.0925 6544  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
15:25:06.0927 6544  WerSvc - ok
15:25:06.0967 6544  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
15:25:06.0968 6544  WfpLwf - ok
15:25:07.0024 6544  [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr         C:\Windows\system32\DRIVERS\wimfltr.sys
15:25:07.0028 6544  WimFltr - ok
15:25:07.0053 6544  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
15:25:07.0055 6544  WIMMount - ok
15:25:07.0103 6544  WinDefend - ok
15:25:07.0130 6544  WinHttpAutoProxySvc - ok
15:25:07.0272 6544  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
15:25:07.0275 6544  Winmgmt - ok
15:25:07.0385 6544  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
15:25:07.0401 6544  WinRM - ok
15:25:07.0526 6544  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
15:25:07.0529 6544  WinUsb - ok
15:25:07.0580 6544  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
15:25:07.0592 6544  Wlansvc - ok
15:25:07.0623 6544  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
15:25:07.0624 6544  WmiAcpi - ok
15:25:07.0686 6544  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
15:25:07.0690 6544  wmiApSrv - ok
15:25:07.0845 6544  WMPNetworkSvc - ok
15:25:07.0880 6544  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
15:25:07.0883 6544  WPCSvc - ok
15:25:07.0907 6544  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
15:25:07.0911 6544  WPDBusEnum - ok
15:25:08.0033 6544  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
15:25:08.0035 6544  ws2ifsl - ok
15:25:08.0113 6544  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
15:25:08.0117 6544  wscsvc - ok
15:25:08.0124 6544  WSearch - ok
15:25:08.0327 6544  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
15:25:08.0388 6544  wuauserv - ok
15:25:08.0423 6544  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
15:25:08.0424 6544  WudfPf - ok
15:25:08.0487 6544  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
15:25:08.0604 6544  WUDFRd - ok
15:25:08.0777 6544  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
15:25:08.0781 6544  wudfsvc - ok
15:25:08.0812 6544  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
15:25:08.0815 6544  WwanSvc - ok
15:25:08.0928 6544  X6va006 - ok
15:25:08.0939 6544  X6va007 - ok
15:25:09.0132 6544  X6va008 - ok
15:25:09.0199 6544  [ 2EE48CFCE7CA8E0DB4C44C7476C0943B ] xusb21          C:\Windows\system32\DRIVERS\xusb21.sys
15:25:09.0201 6544  xusb21 - ok
15:25:09.0219 6544  ================ Scan global ===============================
15:25:09.0255 6544  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
15:25:09.0294 6544  [ 9E479C2B605C25DA4971ABA36250FAEF ] C:\Windows\system32\winsrv.dll
15:25:09.0311 6544  [ 9E479C2B605C25DA4971ABA36250FAEF ] C:\Windows\system32\winsrv.dll
15:25:09.0366 6544  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
15:25:09.0465 6544  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
15:25:09.0472 6544  [Global] - ok
15:25:09.0473 6544  ================ Scan MBR ==================================
15:25:09.0504 6544  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
15:25:22.0411 6544  \Device\Harddisk0\DR0 - ok
15:25:22.0415 6544  ================ Scan VBR ==================================
15:25:22.0444 6544  [ C0DCB1CE73AECE3A5ED354F06426E8E2 ] \Device\Harddisk0\DR0\Partition1
15:25:22.0447 6544  \Device\Harddisk0\DR0\Partition1 - ok
15:25:22.0467 6544  [ 29EDEAF933CADACF4A3A7B693892494F ] \Device\Harddisk0\DR0\Partition2
15:25:22.0469 6544  \Device\Harddisk0\DR0\Partition2 - ok
15:25:22.0470 6544  ============================================================
15:25:22.0470 6544  Scan finished
15:25:22.0470 6544  ============================================================
15:25:22.0488 1560  Detected object count: 0
15:25:22.0488 1560  Actual detected object count: 0
 
aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2013-02-08 15:28:28
-----------------------------
15:28:28.519    OS Version: Windows x64 6.1.7601 Service Pack 1
15:28:28.519    Number of processors: 2 586 0x170A
15:28:28.520    ComputerName: WHITLEYKIDS-PC  UserName: whitley kids
15:28:31.343    Initialize success
15:29:54.345    AVAST engine defs: 13020800
15:30:25.600    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
15:30:25.602    Disk 0 Vendor: WDC_WD50 05.0 Size: 476940MB BusType: 3
15:30:25.613    Disk 0 MBR read successfully
15:30:25.615    Disk 0 MBR scan
15:30:25.619    Disk 0 Windows 7 default MBR code
15:30:25.622    Disk 0 Partition 1 00     DE Dell Utility MSDOS5.0       39 MB offset 63
15:30:25.636    Disk 0 Partition 2 80 (A) 07    HPFS/NTFS NTFS        10118 MB offset 81920
15:30:25.650    Disk 0 Partition 3 00     07    HPFS/NTFS NTFS       466781 MB offset 20803584
15:30:25.668    Disk 0 scanning C:\Windows\system32\drivers
15:30:33.446    Service scanning
15:30:52.423    Modules scanning
15:30:52.429    Disk 0 trace - called modules:
15:30:52.446    ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll 
15:30:52.789    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800491a060]
15:30:52.794    3 CLASSPNP.SYS[fffff88001bbe43f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004444050]
15:30:54.364    AVAST engine scan C:\Windows
15:30:55.872    AVAST engine scan C:\Windows\system32
15:55:16.726    AVAST engine scan C:\Windows\system32\drivers
15:56:03.986    AVAST engine scan C:\Users\whitley kids
16:26:48.387    AVAST engine scan C:\ProgramData
16:28:54.061    Scan finished successfully
16:44:33.208    Disk 0 MBR has been saved successfully to "C:\Users\whitley kids\Downloads\MBR.dat"
16:44:33.214    The log file has been saved successfully to "C:\Users\whitley kids\Downloads\aswMBR.txt"
 
 
 
 


#6 tacois1

tacois1
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:05:24 AM

Posted 08 February 2013 - 11:53 PM

Ok..i guess no one is going to reply back :(



#7 tacois1

tacois1
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:05:24 AM

Posted 09 February 2013 - 12:41 AM

Ok..i guess no one is going to reply back :(



#8 Brawdy14

Brawdy14

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Local time:10:24 AM

Posted 14 February 2013 - 05:32 AM

You have to be patient, 'tacois1' - folk here are volunteers!

 

What you need, perhaps, is an attention getter - a bit like THIS one I got this morning!  http://aumha.org/.htm


or view a copy, here: http://i45.tinypic.com/iqelc8.jpg

 

I'm sure someone will help you shortly.

 

Regards

--
 



#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,058 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:24 AM

Posted 14 February 2013 - 11:26 AM

Hello, I think I lost you during the Board Upgrade...

 

I think we have a corruption in AVG.. Please remove and reinstall it.

 

 

Use their uninstaller here.

http://www.avg.com/us-en/utilities


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users