Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Hacked by cyberbully or a virus? I'm a mess over here.


  • This topic is locked This topic is locked
8 replies to this topic

#1 newguy40

newguy40

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:08:04 PM

Posted 20 March 2013 - 08:27 PM

Long story short but basically this jerk is obsessed with bullying me on an online video game forum, he was able to link some cooking photos I posted to my yelp account and somehow got my name, Facebook, email, LinkedIn, etc... This is on a rants and flames section of the games forum, where honestly I made a lot of enemies calling out obnoxious twerps and other Internet know it all's for being full of it
etc...

I should have let it go and walk away but yeah I'm a slow learner...
Anyways this kid threatened to call my boss and get me fired, posted my address, phone number, name etc.. etc... the forum mods took it down but it was too late.

He even started passing it around via private message to other members

They like to post pics of my fiance that guys have drawn bleep' on her face and other immature bs.

I'm not sure if anyone actually called my boss but they did post my works phone number a few times.

I thought I was being clever and I edited this wikipage to make fun of them and I didn't realize it but it tracked and posted my Ip address and they picked up on it right away and said they were launching a cyber attack on me and sending packets.

In reaction I changed all my passwords, deleted Facebook photo albums, paused my LinkedIn account, changed my Facebook name and tightened security etc...

this was a couple months ago.
Earlier today this guy posted another pic of me, I'm overweight so they all get a kick out of making fun of my weight..... anyways the pic was deleted off facebook a really long time ago,
How is he still able to find and post pics that were on Facebook years ago that I have deleted? He keeps posting pics of my exgirlfriend I haven't seen in years.
 

I quit posting on the forum for the most part besides the occasional in game item trade, etc..

I'm not sure if it's related to the cyber threats but my pc is screwed now. I think it's some sort of virus, not sure.
I booted into safe mode and malwarebytes couldn't find any problems as well as my AV "ESET"

The issues I'm having:
Started with firefox displaying web pages all old fashioned like it was 1990 with red x's instead of some graphics and some html code like stuff.
Then I uninstalled firefox, and chrome and reinstalled,
now I'm getting a notice whenever I try to go to half the websites I used to go to, google, facebook etc...

ojnghz.jpg
I don't know what to do I thought about clearing out my certificates but not sure if that would help.
Maybe update flash and stuff?

I'm ready to just reinstall but I have it set up with my os on a ssd and everything else on the other hard drive, so I'm worried all my paths to my files will get screwed up.

:-(      


I'm seriously wondering if he's hacked into my computer or something, I can't get rid of this guy. Any advice? Should I wipe drive/ reinstall, quit Facebook and LinkedIn? I don't like feeling violated like this.


I know this all seems incredibly immature and stupid, especially coming from a 40 year old man that's being bullied by a bunch of teenagers probably.
 



BC AdBot (Login to Remove)

 


#2 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:12:04 AM

Posted 23 March 2013 - 07:22 PM

Hello,

I will be helping you with your problems. Please be patient while I assist you.

Some points for you to keep in mind while I am helping you to make things go easier and faster for both of us

  • Please do NOT run, install or uninstall any programs,  unless instructed to do so.
    • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
  • Please do not attach logs or use code boxes, just copy and paste the text.
    • Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
  • Please read every post completely before doing anything.
    • Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.
  • Please provide feedback about your experience as we go.
    • A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.

NOTE: At the top of your post, click on the Watch Topic Button, select Immediate Notification, and click on Proceed. This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.

NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of heartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.
- Do NOT backup any unknown files ending in .exe, .com, .scr, .pif, and .bat since files of these types are more likely to be infected.

NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.

----------------------------------------------

Please do the following:

step1.gif

Please download the TDSS Rootkit Removing Tool (TDSSKiller.exe) and save it to your Desktop. <-Important!!!

  • Double-click on TDSSKiller.exe on your desktop to run the tool for known TDSS variants.
  • Vista/Windows 7 users right-click and select Run As Administrator.
  • If TDSSKiller does not run, try renaming it.
  • To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to How to change the file extension.
  • Click on change parameters
  • Under Objects to scan, check the boxes next to Verify file digital signatures, Detect TDLFS file system, then click OK.
  • Click the Start Scan button.
  • Do not use the computer during the scan
  • If the scan completes with nothing found, click Close to exit.
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
  • Note: If Cure is not an option, Skip instead, do NOT choose Delete or Quarantine unless instructed.
  • A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.2.4.0.0_27.07.2010_09.o7.26_log.txt) will be created and saved to the root directory (usually Local Disk C:).
  • Copy and paste the full contents of that file in your next reply. - If the log is too long, then split it into multiple posts.

 

step2.gif

Please download AdwCleaner by Xplode onto your desktop.

  • Double click on AdwCleaner.exe to run the tool.
  • Click on Search.
  • A logfile will automatically open after the scan has finished.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[R1].txt as well.

 

step3.gif

Please download Farbar Service Scanner and run it on the computer with the issue.

  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press Scan.
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the full contents of the log in your next reply.

 

step4.gif

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:

  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices (Only Problems)
  • List Users, Partitions and Memory size.
  • List Minidump Files
  • List Restore points

NOTE: When using "Reset FF Proxy Settings" option Firefox should be closed.

Click Go and post the full contents of the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.


Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#3 newguy40

newguy40
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:08:04 PM

Posted 23 March 2013 - 08:08 PM

21:04:55.0596 4864  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
21:04:55.0906 4864  ============================================================
21:04:55.0906 4864  Current date / time: 2013/03/23 21:04:55.0906
21:04:55.0906 4864  SystemInfo:
21:04:55.0906 4864 
21:04:55.0906 4864  OS Version: 6.1.7601 ServicePack: 1.0
21:04:55.0906 4864  Product type: Workstation
21:04:55.0906 4864  ComputerName: SOLCHITLINS-PC
21:04:55.0906 4864  UserName: Sol Chitlins
21:04:55.0906 4864  Windows directory: C:\Windows
21:04:55.0906 4864  System windows directory: C:\Windows
21:04:55.0906 4864  Running under WOW64
21:04:55.0906 4864  Processor architecture: Intel x64
21:04:55.0906 4864  Number of processors: 4
21:04:55.0906 4864  Page size: 0x1000
21:04:55.0906 4864  Boot type: Normal boot
21:04:55.0906 4864  ============================================================
21:04:56.0106 4864  Drive \Device\Harddisk0\DR0 - Size: 0x1DCF856000 (119.24 Gb), SectorSize: 0x200, Cylinders: 0x3CCE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:04:56.0116 4864  Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:04:56.0146 4864  ============================================================
21:04:56.0146 4864  \Device\Harddisk0\DR0:
21:04:56.0146 4864  MBR partitions:
21:04:56.0146 4864  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
21:04:56.0146 4864  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xEE49000
21:04:56.0146 4864  \Device\Harddisk1\DR1:
21:04:56.0146 4864  GPT partitions:
21:04:56.0146 4864  \Device\Harddisk1\DR1\Partition1: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {8660C7B5-D61C-4185-B908-7F29E67460EF}, Name: EFI system partition, StartLBA 0x800, BlocksNum 0x32000
21:04:56.0146 4864  \Device\Harddisk1\DR1\Partition2: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {B4E492C4-3083-4F01-8E9C-3AE568169DC2}, Name: Microsoft reserved partition, StartLBA 0x32800, BlocksNum 0x40000
21:04:56.0146 4864  \Device\Harddisk1\DR1\Partition3: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {3A214648-45B0-4E82-97C8-FD4CEB3D525B}, Name: Basic data partition, StartLBA 0x72800, BlocksNum 0x74693800
21:04:56.0146 4864  MBR partitions:
21:04:56.0146 4864  ============================================================
21:04:56.0146 4864  C: <-> \Device\Harddisk0\DR0\Partition2
21:04:56.0166 4864  E: <-> \Device\Harddisk1\DR1\Partition3
21:04:56.0166 4864  ============================================================
21:04:56.0166 4864  Initialize success
21:04:56.0166 4864  ============================================================
21:05:43.0210 3800  ============================================================
21:05:43.0210 3800  Scan started
21:05:43.0210 3800  Mode: Manual; SigCheck; TDLFS;
21:05:43.0210 3800  ============================================================
21:05:43.0311 3800  ================ Scan system memory ========================
21:05:43.0311 3800  System memory - ok
21:05:43.0311 3800  ================ Scan services =============================
21:05:43.0331 3800  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
21:05:43.0381 3800  1394ohci - ok
21:05:43.0381 3800  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
21:05:43.0401 3800  ACPI - ok
21:05:43.0401 3800  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
21:05:43.0421 3800  AcpiPmi - ok
21:05:43.0421 3800  [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
21:05:43.0431 3800  AdobeARMservice - ok
21:05:43.0451 3800  [ EA856F4A46320389D1899B2CAA7BF40F ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:05:43.0461 3800  AdobeFlashPlayerUpdateSvc - ok
21:05:43.0461 3800  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
21:05:43.0481 3800  adp94xx - ok
21:05:43.0491 3800  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
21:05:43.0501 3800  adpahci - ok
21:05:43.0501 3800  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
21:05:43.0511 3800  adpu320 - ok
21:05:43.0521 3800  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
21:05:43.0561 3800  AeLookupSvc - ok
21:05:43.0571 3800  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
21:05:43.0581 3800  AFD - ok
21:05:43.0591 3800  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
21:05:43.0601 3800  agp440 - ok
21:05:43.0601 3800  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
21:05:43.0611 3800  ALG - ok
21:05:43.0621 3800  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
21:05:43.0631 3800  aliide - ok
21:05:43.0631 3800  [ 8893C00A6D0A5820D4608202F99E8AD6 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
21:05:43.0651 3800  AMD External Events Utility - ok
21:05:43.0661 3800  [ C17BAFA60F941A1AF5C2B10D8632C409 ] amdhub30        C:\Windows\system32\DRIVERS\amdhub30.sys
21:05:43.0671 3800  amdhub30 - ok
21:05:43.0671 3800  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
21:05:43.0681 3800  amdide - ok
21:05:43.0681 3800  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
21:05:43.0701 3800  AmdK8 - ok
21:05:43.0781 3800  [ ACF6058602D202F36C0A2C0C97DB5E3B ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
21:05:43.0901 3800  amdkmdag - ok
21:05:43.0921 3800  [ 1E55EA0AD65688EB43CCE6AED573E82C ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
21:05:43.0931 3800  amdkmdap - ok
21:05:43.0941 3800  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
21:05:43.0941 3800  AmdPPM - ok
21:05:43.0951 3800  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
21:05:43.0961 3800  amdsata - ok
21:05:43.0961 3800  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
21:05:43.0971 3800  amdsbs - ok
21:05:43.0981 3800  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
21:05:43.0991 3800  amdxata - ok
21:05:43.0991 3800  [ 3DC51308F5E7A4BB8020D16E64E9D882 ] amdxhc          C:\Windows\system32\DRIVERS\amdxhc.sys
21:05:44.0001 3800  amdxhc - ok
21:05:44.0001 3800  [ A1434F35B7B171CB697D74D33F7D029F ] amd_sata        C:\Windows\system32\DRIVERS\amd_sata.sys
21:05:44.0011 3800  amd_sata - ok
21:05:44.0021 3800  [ E9B5A82FA268BB2D1B012030D5F4E096 ] amd_xata        C:\Windows\system32\DRIVERS\amd_xata.sys
21:05:44.0021 3800  amd_xata - ok
21:05:44.0031 3800  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
21:05:44.0071 3800  AppID - ok
21:05:44.0081 3800  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
21:05:44.0101 3800  AppIDSvc - ok
21:05:44.0111 3800  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo         C:\Windows\System32\appinfo.dll
21:05:44.0131 3800  Appinfo - ok
21:05:44.0141 3800  [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:05:44.0151 3800  Apple Mobile Device - ok
21:05:44.0151 3800  [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt         C:\Windows\System32\appmgmts.dll
21:05:44.0161 3800  AppMgmt - ok
21:05:44.0171 3800  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
21:05:44.0181 3800  arc - ok
21:05:44.0181 3800  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
21:05:44.0191 3800  arcsas - ok
21:05:44.0191 3800  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
21:05:44.0221 3800  AsyncMac - ok
21:05:44.0221 3800  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
21:05:44.0231 3800  atapi - ok
21:05:44.0241 3800  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:05:44.0281 3800  AudioEndpointBuilder - ok
21:05:44.0281 3800  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
21:05:44.0311 3800  AudioSrv - ok
21:05:44.0321 3800  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
21:05:44.0341 3800  AxInstSV - ok
21:05:44.0341 3800  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
21:05:44.0361 3800  b06bdrv - ok
21:05:44.0361 3800  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
21:05:44.0381 3800  b57nd60a - ok
21:05:44.0401 3800  [ FDE8C8DC07E75347E4C6B455A0964217 ] BCM43XX         C:\Windows\system32\DRIVERS\bcmwl664.sys
21:05:44.0451 3800  BCM43XX - ok
21:05:44.0461 3800  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
21:05:44.0471 3800  BDESVC - ok
21:05:44.0471 3800  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
21:05:44.0501 3800  Beep - ok
21:05:44.0511 3800  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
21:05:44.0541 3800  BFE - ok
21:05:44.0551 3800  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
21:05:44.0591 3800  BITS - ok
21:05:44.0591 3800  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
21:05:44.0601 3800  blbdrive - ok
21:05:44.0611 3800  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
21:05:44.0621 3800  Bonjour Service - ok
21:05:44.0621 3800  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
21:05:44.0631 3800  bowser - ok
21:05:44.0641 3800  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
21:05:44.0651 3800  BrFiltLo - ok
21:05:44.0661 3800  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
21:05:44.0671 3800  BrFiltUp - ok
21:05:44.0671 3800  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
21:05:44.0681 3800  Browser - ok
21:05:44.0691 3800  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
21:05:44.0701 3800  Brserid - ok
21:05:44.0711 3800  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
21:05:44.0721 3800  BrSerWdm - ok
21:05:44.0721 3800  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
21:05:44.0741 3800  BrUsbMdm - ok
21:05:44.0741 3800  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
21:05:44.0751 3800  BrUsbSer - ok
21:05:44.0751 3800  [ CF98190A94F62E405C8CB255018B2315 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
21:05:44.0761 3800  BthEnum - ok
21:05:44.0771 3800  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
21:05:44.0781 3800  BTHMODEM - ok
21:05:44.0781 3800  [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
21:05:44.0801 3800  BthPan - ok
21:05:44.0801 3800  [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT         C:\Windows\System32\Drivers\BTHport.sys
21:05:44.0821 3800  BTHPORT - ok
21:05:44.0821 3800  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
21:05:44.0851 3800  bthserv - ok
21:05:44.0851 3800  [ F188B7394D81010767B6DF3178519A37 ] BTHUSB          C:\Windows\System32\Drivers\BTHUSB.sys
21:05:44.0861 3800  BTHUSB - ok
21:05:44.0871 3800  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
21:05:44.0901 3800  cdfs - ok
21:05:44.0901 3800  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
21:05:44.0911 3800  cdrom - ok
21:05:44.0911 3800  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
21:05:44.0941 3800  CertPropSvc - ok
21:05:44.0951 3800  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
21:05:44.0961 3800  circlass - ok
21:05:44.0961 3800  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
21:05:44.0981 3800  CLFS - ok
21:05:44.0981 3800  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:05:44.0991 3800  clr_optimization_v2.0.50727_32 - ok
21:05:45.0001 3800  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:05:45.0011 3800  clr_optimization_v2.0.50727_64 - ok
21:05:45.0021 3800  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:05:45.0031 3800  clr_optimization_v4.0.30319_32 - ok
21:05:45.0031 3800  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:05:45.0041 3800  clr_optimization_v4.0.30319_64 - ok
21:05:45.0051 3800  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
21:05:45.0061 3800  CmBatt - ok
21:05:45.0061 3800  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
21:05:45.0071 3800  cmdide - ok
21:05:45.0081 3800  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
21:05:45.0101 3800  CNG - ok
21:05:45.0101 3800  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
21:05:45.0111 3800  Compbatt - ok
21:05:45.0111 3800  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
21:05:45.0121 3800  CompositeBus - ok
21:05:45.0131 3800  COMSysApp - ok
21:05:45.0131 3800  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
21:05:45.0141 3800  crcdisk - ok
21:05:45.0151 3800  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc        C:\Windows\system32\cryptsvc.dll
21:05:45.0161 3800  CryptSvc - ok
21:05:45.0161 3800  [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC             C:\Windows\system32\drivers\csc.sys
21:05:45.0181 3800  CSC - ok
21:05:45.0191 3800  [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService      C:\Windows\System32\cscsvc.dll
21:05:45.0201 3800  CscService - ok
21:05:45.0211 3800  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
21:05:45.0241 3800  DcomLaunch - ok
21:05:45.0251 3800  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
21:05:45.0281 3800  defragsvc - ok
21:05:45.0281 3800  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
21:05:45.0311 3800  DfsC - ok
21:05:45.0321 3800  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
21:05:45.0331 3800  Dhcp - ok
21:05:45.0331 3800  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
21:05:45.0361 3800  discache - ok
21:05:45.0361 3800  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
21:05:45.0371 3800  Disk - ok
21:05:45.0381 3800  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
21:05:45.0391 3800  Dnscache - ok
21:05:45.0391 3800  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
21:05:45.0421 3800  dot3svc - ok
21:05:45.0431 3800  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
21:05:45.0451 3800  DPS - ok
21:05:45.0461 3800  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
21:05:45.0471 3800  drmkaud - ok
21:05:45.0481 3800  [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01     C:\Windows\system32\DRIVERS\dtsoftbus01.sys
21:05:45.0491 3800  dtsoftbus01 - ok
21:05:45.0501 3800  [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
21:05:45.0521 3800  DXGKrnl - ok
21:05:45.0521 3800  [ D00EAE9C735A7DEE8049E50D73D25434 ] eamonm          C:\Windows\system32\DRIVERS\eamonm.sys
21:05:45.0531 3800  eamonm - ok
21:05:45.0531 3800  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
21:05:45.0561 3800  EapHost - ok
21:05:45.0591 3800  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
21:05:45.0631 3800  ebdrv - ok
21:05:45.0641 3800  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
21:05:45.0651 3800  EFS - ok
21:05:45.0651 3800  [ E5EDDE3C8158DD0CBC5812F201DCDED0 ] ehdrv           C:\Windows\system32\DRIVERS\ehdrv.sys
21:05:45.0661 3800  ehdrv - ok
21:05:45.0671 3800  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
21:05:45.0691 3800  ehRecvr - ok
21:05:45.0691 3800  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
21:05:45.0701 3800  ehSched - ok
21:05:45.0771 3800  [ AD4FAADE819E0DA9933BEA7C01D2C763 ] ekrn            E:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
21:05:45.0791 3800  ekrn - ok
21:05:45.0801 3800  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
21:05:45.0821 3800  elxstor - ok
21:05:45.0821 3800  [ 587F0F4145A1536A6E37EFD769B7665F ] epfw            C:\Windows\system32\DRIVERS\epfw.sys
21:05:45.0831 3800  epfw - ok
21:05:45.0831 3800  [ D2F812358EE8EE23CBB5C4DAFFB5B819 ] EpfwLWF         C:\Windows\system32\DRIVERS\EpfwLWF.sys
21:05:45.0841 3800  EpfwLWF - ok
21:05:45.0841 3800  [ 34BF55D69AB74D14C7E7A17259CB7DF8 ] epfwwfp         C:\Windows\system32\DRIVERS\epfwwfp.sys
21:05:45.0851 3800  epfwwfp - ok
21:05:45.0851 3800  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
21:05:45.0861 3800  ErrDev - ok
21:05:45.0871 3800  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
21:05:45.0911 3800  EventSystem - ok
21:05:45.0911 3800  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
21:05:45.0941 3800  exfat - ok
21:05:45.0941 3800  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
21:05:45.0971 3800  fastfat - ok
21:05:45.0981 3800  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
21:05:46.0001 3800  Fax - ok
21:05:46.0001 3800  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
21:05:46.0011 3800  fdc - ok
21:05:46.0011 3800  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
21:05:46.0041 3800  fdPHost - ok
21:05:46.0041 3800  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
21:05:46.0071 3800  FDResPub - ok
21:05:46.0071 3800  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
21:05:46.0081 3800  FileInfo - ok
21:05:46.0091 3800  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
21:05:46.0111 3800  Filetrace - ok
21:05:46.0121 3800  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
21:05:46.0121 3800  flpydisk - ok
21:05:46.0131 3800  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
21:05:46.0141 3800  FltMgr - ok
21:05:46.0151 3800  [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache       C:\Windows\system32\FntCache.dll
21:05:46.0171 3800  FontCache - ok
21:05:46.0181 3800  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:05:46.0191 3800  FontCache3.0.0.0 - ok
21:05:46.0191 3800  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
21:05:46.0201 3800  FsDepends - ok
21:05:46.0201 3800  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
21:05:46.0211 3800  Fs_Rec - ok
21:05:46.0221 3800  [ 1F7B25B858FA27015169FE95E54108ED ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
21:05:46.0231 3800  fvevol - ok
21:05:46.0231 3800  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
21:05:46.0241 3800  gagp30kx - ok
21:05:46.0251 3800  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:05:46.0251 3800  GEARAspiWDM - ok
21:05:46.0261 3800  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
21:05:46.0301 3800  gpsvc - ok
21:05:46.0301 3800  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:05:46.0311 3800  gupdate - ok
21:05:46.0311 3800  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:05:46.0321 3800  gupdatem - ok
21:05:46.0321 3800  [ BA207B48AA3D9D73FD4856400F852458 ] hcmon           C:\Windows\system32\drivers\hcmon.sys
21:05:46.0331 3800  hcmon - ok
21:05:46.0331 3800  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
21:05:46.0341 3800  hcw85cir - ok
21:05:46.0351 3800  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:05:46.0371 3800  HdAudAddService - ok
21:05:46.0371 3800  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
21:05:46.0381 3800  HDAudBus - ok
21:05:46.0391 3800  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
21:05:46.0401 3800  HidBatt - ok
21:05:46.0401 3800  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
21:05:46.0421 3800  HidBth - ok
21:05:46.0421 3800  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
21:05:46.0431 3800  HidIr - ok
21:05:46.0431 3800  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
21:05:46.0461 3800  hidserv - ok
21:05:46.0471 3800  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
21:05:46.0471 3800  HidUsb - ok
21:05:46.0481 3800  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
21:05:46.0511 3800  hkmsvc - ok
21:05:46.0511 3800  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
21:05:46.0521 3800  HomeGroupListener - ok
21:05:46.0531 3800  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
21:05:46.0541 3800  HomeGroupProvider - ok
21:05:46.0541 3800  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
21:05:46.0551 3800  HpSAMD - ok
21:05:46.0561 3800  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
21:05:46.0601 3800  HTTP - ok
21:05:46.0601 3800  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
21:05:46.0611 3800  hwpolicy - ok
21:05:46.0611 3800  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
21:05:46.0621 3800  i8042prt - ok
21:05:46.0631 3800  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
21:05:46.0641 3800  iaStorV - ok
21:05:46.0651 3800  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:05:46.0671 3800  idsvc - ok
21:05:46.0681 3800  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
21:05:46.0681 3800  iirsp - ok
21:05:46.0691 3800  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
21:05:46.0731 3800  IKEEXT - ok
21:05:46.0731 3800  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
21:05:46.0741 3800  intelide - ok
21:05:46.0751 3800  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
21:05:46.0761 3800  intelppm - ok
21:05:46.0761 3800  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
21:05:46.0791 3800  IPBusEnum - ok
21:05:46.0791 3800  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:05:46.0821 3800  IpFilterDriver - ok
21:05:46.0831 3800  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
21:05:46.0841 3800  iphlpsvc - ok
21:05:46.0851 3800  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
21:05:46.0861 3800  IPMIDRV - ok
21:05:46.0861 3800  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
21:05:46.0891 3800  IPNAT - ok
21:05:46.0901 3800  [ 4EFFC8FF6D349E971E94B1C670C0C66A ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
21:05:46.0911 3800  iPod Service - ok
21:05:46.0911 3800  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
21:05:46.0931 3800  IRENUM - ok
21:05:46.0931 3800  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
21:05:46.0941 3800  isapnp - ok
21:05:46.0941 3800  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
21:05:46.0961 3800  iScsiPrt - ok
21:05:46.0961 3800  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
21:05:46.0971 3800  kbdclass - ok
21:05:46.0971 3800  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
21:05:46.0981 3800  kbdhid - ok
21:05:46.0991 3800  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
21:05:46.0991 3800  KeyIso - ok
21:05:47.0001 3800  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
21:05:47.0011 3800  KSecDD - ok
21:05:47.0011 3800  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
21:05:47.0021 3800  KSecPkg - ok
21:05:47.0031 3800  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
21:05:47.0051 3800  ksthunk - ok
21:05:47.0061 3800  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
21:05:47.0091 3800  KtmRm - ok
21:05:47.0091 3800  [ BD56BAE4403497E31727096CEBC42956 ] L1C             C:\Windows\system32\DRIVERS\L1C62x64.sys
21:05:47.0101 3800  L1C - ok
21:05:47.0111 3800  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
21:05:47.0131 3800  LanmanServer - ok
21:05:47.0141 3800  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:05:47.0171 3800  LanmanWorkstation - ok
21:05:47.0171 3800  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
21:05:47.0201 3800  lltdio - ok
21:05:47.0201 3800  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
21:05:47.0231 3800  lltdsvc - ok
21:05:47.0241 3800  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
21:05:47.0261 3800  lmhosts - ok
21:05:47.0271 3800  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
21:05:47.0281 3800  LSI_FC - ok
21:05:47.0281 3800  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
21:05:47.0291 3800  LSI_SAS - ok
21:05:47.0301 3800  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
21:05:47.0311 3800  LSI_SAS2 - ok
21:05:47.0311 3800  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
21:05:47.0321 3800  LSI_SCSI - ok
21:05:47.0331 3800  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
21:05:47.0351 3800  luafv - ok
21:05:47.0361 3800  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
21:05:47.0371 3800  Mcx2Svc - ok
21:05:47.0371 3800  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
21:05:47.0381 3800  megasas - ok
21:05:47.0391 3800  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
21:05:47.0401 3800  MegaSR - ok
21:05:47.0401 3800  Microsoft SharePoint Workspace Audit Service - ok
21:05:47.0411 3800  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
21:05:47.0441 3800  MMCSS - ok
21:05:47.0441 3800  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
21:05:47.0471 3800  Modem - ok
21:05:47.0471 3800  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
21:05:47.0481 3800  monitor - ok
21:05:47.0481 3800  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
21:05:47.0491 3800  mouclass - ok
21:05:47.0501 3800  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
21:05:47.0511 3800  mouhid - ok
21:05:47.0511 3800  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
21:05:47.0521 3800  mountmgr - ok
21:05:47.0521 3800  [ 8A7C8F4C713E70D73946833D76B77035 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
21:05:47.0531 3800  MozillaMaintenance - ok
21:05:47.0541 3800  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
21:05:47.0551 3800  mpio - ok
21:05:47.0551 3800  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
21:05:47.0581 3800  mpsdrv - ok
21:05:47.0591 3800  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
21:05:47.0621 3800  MpsSvc - ok
21:05:47.0631 3800  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
21:05:47.0641 3800  MRxDAV - ok
21:05:47.0641 3800  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
21:05:47.0661 3800  mrxsmb - ok
21:05:47.0661 3800  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:05:47.0671 3800  mrxsmb10 - ok
21:05:47.0681 3800  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:05:47.0691 3800  mrxsmb20 - ok
21:05:47.0691 3800  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
21:05:47.0701 3800  msahci - ok
21:05:47.0701 3800  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
21:05:47.0711 3800  msdsm - ok
21:05:47.0721 3800  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
21:05:47.0731 3800  MSDTC - ok
21:05:47.0741 3800  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
21:05:47.0761 3800  Msfs - ok
21:05:47.0771 3800  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
21:05:47.0791 3800  mshidkmdf - ok
21:05:47.0801 3800  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
21:05:47.0811 3800  msisadrv - ok
21:05:47.0811 3800  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
21:05:47.0841 3800  MSiSCSI - ok
21:05:47.0841 3800  msiserver - ok
21:05:47.0851 3800  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
21:05:47.0871 3800  MSKSSRV - ok
21:05:47.0881 3800  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
21:05:47.0901 3800  MSPCLOCK - ok
21:05:47.0911 3800  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
21:05:47.0931 3800  MSPQM - ok
21:05:47.0941 3800  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
21:05:47.0951 3800  MsRPC - ok
21:05:47.0961 3800  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
21:05:47.0971 3800  mssmbios - ok
21:05:47.0971 3800  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
21:05:48.0001 3800  MSTEE - ok
21:05:48.0001 3800  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
21:05:48.0011 3800  MTConfig - ok
21:05:48.0011 3800  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
21:05:48.0021 3800  Mup - ok
21:05:48.0031 3800  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
21:05:48.0061 3800  napagent - ok
21:05:48.0071 3800  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
21:05:48.0081 3800  NativeWifiP - ok
21:05:48.0091 3800  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
21:05:48.0111 3800  NDIS - ok
21:05:48.0121 3800  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
21:05:48.0141 3800  NdisCap - ok
21:05:48.0151 3800  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
21:05:48.0171 3800  NdisTapi - ok
21:05:48.0181 3800  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
21:05:48.0201 3800  Ndisuio - ok
21:05:48.0211 3800  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
21:05:48.0231 3800  NdisWan - ok
21:05:48.0241 3800  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
21:05:48.0261 3800  NDProxy - ok
21:05:48.0271 3800  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
21:05:48.0291 3800  NetBIOS - ok
21:05:48.0301 3800  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
21:05:48.0331 3800  NetBT - ok
21:05:48.0331 3800  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
21:05:48.0341 3800  Netlogon - ok
21:05:48.0341 3800  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
21:05:48.0381 3800  Netman - ok
21:05:48.0381 3800  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
21:05:48.0421 3800  netprofm - ok
21:05:48.0421 3800  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:05:48.0431 3800  NetTcpPortSharing - ok
21:05:48.0431 3800  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
21:05:48.0441 3800  nfrd960 - ok
21:05:48.0451 3800  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
21:05:48.0461 3800  NlaSvc - ok
21:05:48.0461 3800  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
21:05:48.0491 3800  Npfs - ok
21:05:48.0491 3800  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
21:05:48.0521 3800  nsi - ok
21:05:48.0521 3800  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
21:05:48.0551 3800  nsiproxy - ok
21:05:48.0571 3800  [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
21:05:48.0601 3800  Ntfs - ok
21:05:48.0601 3800  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
21:05:48.0631 3800  Null - ok
21:05:48.0631 3800  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
21:05:48.0641 3800  nvraid - ok
21:05:48.0651 3800  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
21:05:48.0661 3800  nvstor - ok
21:05:48.0661 3800  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
21:05:48.0671 3800  nv_agp - ok
21:05:48.0671 3800  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
21:05:48.0681 3800  ohci1394 - ok
21:05:48.0691 3800  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:05:48.0701 3800  ose - ok
21:05:48.0741 3800  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
21:05:48.0811 3800  osppsvc - ok
21:05:48.0821 3800  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
21:05:48.0841 3800  p2pimsvc - ok
21:05:48.0841 3800  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
21:05:48.0861 3800  p2psvc - ok
21:05:48.0861 3800  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
21:05:48.0871 3800  Parport - ok
21:05:48.0881 3800  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
21:05:48.0881 3800  partmgr - ok
21:05:48.0891 3800  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
21:05:48.0901 3800  PcaSvc - ok
21:05:48.0911 3800  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
21:05:48.0921 3800  pci - ok
21:05:48.0921 3800  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
21:05:48.0931 3800  pciide - ok
21:05:48.0941 3800  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
21:05:48.0951 3800  pcmcia - ok
21:05:48.0951 3800  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
21:05:48.0961 3800  pcw - ok
21:05:48.0971 3800  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
21:05:49.0001 3800  PEAUTH - ok
21:05:49.0021 3800  [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
21:05:49.0041 3800  PeerDistSvc - ok
21:05:49.0051 3800  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
21:05:49.0061 3800  PerfHost - ok
21:05:49.0081 3800  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
21:05:49.0121 3800  pla - ok
21:05:49.0131 3800  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
21:05:49.0151 3800  PlugPlay - ok
21:05:49.0151 3800  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
21:05:49.0161 3800  PNRPAutoReg - ok
21:05:49.0161 3800  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
21:05:49.0181 3800  PNRPsvc - ok
21:05:49.0181 3800  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
21:05:49.0211 3800  PolicyAgent - ok
21:05:49.0221 3800  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
21:05:49.0251 3800  Power - ok
21:05:49.0251 3800  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
21:05:49.0281 3800  PptpMiniport - ok
21:05:49.0281 3800  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
21:05:49.0291 3800  Processor - ok
21:05:49.0301 3800  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
21:05:49.0311 3800  ProfSvc - ok
21:05:49.0311 3800  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
21:05:49.0321 3800  ProtectedStorage - ok
21:05:49.0331 3800  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
21:05:49.0351 3800  Psched - ok
21:05:49.0371 3800  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
21:05:49.0401 3800  ql2300 - ok
21:05:49.0401 3800  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
21:05:49.0411 3800  ql40xx - ok
21:05:49.0421 3800  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
21:05:49.0431 3800  QWAVE - ok
21:05:49.0441 3800  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
21:05:49.0451 3800  QWAVEdrv - ok
21:05:49.0451 3800  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
21:05:49.0481 3800  RasAcd - ok
21:05:49.0481 3800  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
21:05:49.0511 3800  RasAgileVpn - ok
21:05:49.0521 3800  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
21:05:49.0541 3800  RasAuto - ok
21:05:49.0551 3800  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
21:05:49.0581 3800  Rasl2tp - ok
21:05:49.0581 3800  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
21:05:49.0611 3800  RasMan - ok
21:05:49.0621 3800  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
21:05:49.0641 3800  RasPppoe - ok
21:05:49.0651 3800  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
21:05:49.0671 3800  RasSstp - ok
21:05:49.0681 3800  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
21:05:49.0711 3800  rdbss - ok
21:05:49.0711 3800  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
21:05:49.0721 3800  rdpbus - ok
21:05:49.0731 3800  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
21:05:49.0751 3800  RDPCDD - ok
21:05:49.0761 3800  [ 1B6163C503398B23FF8B939C67747683 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
21:05:49.0771 3800  RDPDR - ok
21:05:49.0771 3800  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
21:05:49.0801 3800  RDPENCDD - ok
21:05:49.0801 3800  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
21:05:49.0831 3800  RDPREFMP - ok
21:05:49.0831 3800  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
21:05:49.0851 3800  RDPWD - ok
21:05:49.0851 3800  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
21:05:49.0861 3800  rdyboost - ok
21:05:49.0871 3800  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
21:05:49.0891 3800  RemoteAccess - ok
21:05:49.0901 3800  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
21:05:49.0931 3800  RemoteRegistry - ok
21:05:49.0931 3800  [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
21:05:49.0941 3800  RFCOMM - ok
21:05:49.0951 3800  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
21:05:49.0971 3800  RpcEptMapper - ok
21:05:49.0981 3800  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
21:05:49.0991 3800  RpcLocator - ok
21:05:49.0991 3800  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
21:05:50.0021 3800  RpcSs - ok
21:05:50.0031 3800  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
21:05:50.0061 3800  rspndr - ok
21:05:50.0061 3800  [ E60C0A09F997826C7627B244195AB581 ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
21:05:50.0071 3800  s3cap - ok
21:05:50.0071 3800  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
21:05:50.0081 3800  SamSs - ok
21:05:50.0091 3800  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
21:05:50.0101 3800  sbp2port - ok
21:05:50.0101 3800  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
21:05:50.0131 3800  SCardSvr - ok
21:05:50.0131 3800  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
21:05:50.0161 3800  scfilter - ok
21:05:50.0171 3800  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
21:05:50.0211 3800  Schedule - ok
21:05:50.0211 3800  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
21:05:50.0241 3800  SCPolicySvc - ok
21:05:50.0241 3800  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
21:05:50.0251 3800  SDRSVC - ok
21:05:50.0261 3800  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
21:05:50.0281 3800  secdrv - ok
21:05:50.0291 3800  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
21:05:50.0311 3800  seclogon - ok
21:05:50.0321 3800  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
21:05:50.0351 3800  SENS - ok
21:05:50.0351 3800  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
21:05:50.0361 3800  SensrSvc - ok
21:05:50.0361 3800  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
21:05:50.0371 3800  Serenum - ok
21:05:50.0381 3800  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
21:05:50.0391 3800  Serial - ok
21:05:50.0391 3800  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
21:05:50.0411 3800  sermouse - ok
21:05:50.0421 3800  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
21:05:50.0441 3800  SessionEnv - ok
21:05:50.0451 3800  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
21:05:50.0461 3800  sffdisk - ok
21:05:50.0461 3800  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
21:05:50.0471 3800  sffp_mmc - ok
21:05:50.0481 3800  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
21:05:50.0491 3800  sffp_sd - ok
21:05:50.0491 3800  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
21:05:50.0501 3800  sfloppy - ok
21:05:50.0501 3800  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
21:05:50.0541 3800  SharedAccess - ok
21:05:50.0541 3800  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:05:50.0571 3800  ShellHWDetection - ok
21:05:50.0581 3800  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
21:05:50.0581 3800  SiSRaid2 - ok
21:05:50.0591 3800  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
21:05:50.0601 3800  SiSRaid4 - ok
21:05:50.0601 3800  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
21:05:50.0631 3800  Smb - ok
21:05:50.0641 3800  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
21:05:50.0651 3800  SNMPTRAP - ok
21:05:50.0651 3800  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
21:05:50.0661 3800  spldr - ok
21:05:50.0671 3800  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
21:05:50.0681 3800  Spooler - ok
21:05:50.0711 3800  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
21:05:50.0771 3800  sppsvc - ok
21:05:50.0781 3800  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
21:05:50.0811 3800  sppuinotify - ok
21:05:50.0811 3800  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
21:05:50.0831 3800  srv - ok
21:05:50.0831 3800  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
21:05:50.0851 3800  srv2 - ok
21:05:50.0851 3800  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
21:05:50.0861 3800  srvnet - ok
21:05:50.0871 3800  [ 8F8324ED1DE63FFC7B1A02CD2D963C72 ] ssadbus         C:\Windows\system32\DRIVERS\ssadbus.sys
21:05:50.0881 3800  ssadbus - ok
21:05:50.0881 3800  [ 58221EFCB74167B73667F0024C661CE0 ] ssadmdfl        C:\Windows\system32\DRIVERS\ssadmdfl.sys
21:05:50.0901 3800  ssadmdfl - ok
21:05:50.0901 3800  [ 4DA7C71BFAC5AD71255B7E4CAB980163 ] ssadmdm         C:\Windows\system32\DRIVERS\ssadmdm.sys
21:05:50.0911 3800  ssadmdm - ok
21:05:50.0921 3800  [ D33D1BD3EC0E766211A234F56A12726D ] ssadserd        C:\Windows\system32\DRIVERS\ssadserd.sys
21:05:50.0931 3800  ssadserd - ok
21:05:50.0931 3800  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
21:05:50.0961 3800  SSDPSRV - ok
21:05:50.0971 3800  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
21:05:51.0001 3800  SstpSvc - ok
21:05:51.0001 3800  [ 4B1D0B5B6D043AAF45AE89EABAB7B865 ] STacSV          C:\Program Files\IDT\WDM\STacSV64.exe
21:05:51.0011 3800  STacSV ( UnsignedFile.Multi.Generic ) - warning
21:05:51.0011 3800  STacSV - detected UnsignedFile.Multi.Generic (1)
21:05:51.0011 3800  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
21:05:51.0021 3800  stexstor - ok
21:05:51.0031 3800  [ 542BDF7E9256189ABBC68935FA8116A4 ] STHDA           C:\Windows\system32\DRIVERS\stwrt64.sys
21:05:51.0041 3800  STHDA - ok
21:05:51.0051 3800  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
21:05:51.0071 3800  stisvc - ok
21:05:51.0081 3800  [ 7785DC213270D2FC066538DAF94087E7 ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
21:05:51.0081 3800  storflt - ok
21:05:51.0091 3800  [ C40841817EF57D491F22EB103DA587CC ] StorSvc         C:\Windows\system32\storsvc.dll
21:05:51.0101 3800  StorSvc - ok
21:05:51.0101 3800  [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
21:05:51.0111 3800  storvsc - ok
21:05:51.0121 3800  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
21:05:51.0121 3800  swenum - ok
21:05:51.0131 3800  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
21:05:51.0161 3800  swprv - ok
21:05:51.0181 3800  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
21:05:51.0211 3800  SysMain - ok
21:05:51.0221 3800  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:05:51.0231 3800  TabletInputService - ok
21:05:51.0241 3800  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
21:05:51.0271 3800  TapiSrv - ok
21:05:51.0271 3800  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
21:05:51.0301 3800  TBS - ok
21:05:51.0321 3800  [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
21:05:51.0352 3800  Tcpip - ok
21:05:51.0372 3800  [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
21:05:51.0402 3800  TCPIP6 - ok
21:05:51.0402 3800  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
21:05:51.0412 3800  tcpipreg - ok
21:05:51.0422 3800  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
21:05:51.0432 3800  TDPIPE - ok
21:05:51.0432 3800  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
21:05:51.0442 3800  TDTCP - ok
21:05:51.0452 3800  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
21:05:51.0472 3800  tdx - ok
21:05:51.0482 3800  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
21:05:51.0482 3800  TermDD - ok
21:05:51.0492 3800  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
21:05:51.0532 3800  TermService - ok
21:05:51.0532 3800  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
21:05:51.0552 3800  Themes - ok
21:05:51.0552 3800  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
21:05:51.0582 3800  THREADORDER - ok
21:05:51.0582 3800  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
21:05:51.0612 3800  TrkWks - ok
21:05:51.0612 3800  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:05:51.0642 3800  TrustedInstaller - ok
21:05:51.0642 3800  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
21:05:51.0672 3800  tssecsrv - ok
21:05:51.0672 3800  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
21:05:51.0682 3800  TsUsbFlt - ok
21:05:51.0692 3800  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
21:05:51.0712 3800  tunnel - ok
21:05:51.0722 3800  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
21:05:51.0732 3800  uagp35 - ok
21:05:51.0732 3800  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
21:05:51.0762 3800  udfs - ok
21:05:51.0772 3800  [ 215462AE7E6A897D675E84DD1E3B3B56 ] ufad-ws60       C:\Program Files (x86)\VMware\VMware Workstation\vmware-ufad.exe
21:05:51.0782 3800  ufad-ws60 - ok
21:05:51.0782 3800  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
21:05:51.0802 3800  UI0Detect - ok
21:05:51.0802 3800  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
21:05:51.0812 3800  uliagpkx - ok
21:05:51.0812 3800  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\drivers\umbus.sys
21:05:51.0822 3800  umbus - ok
21:05:51.0832 3800  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
21:05:51.0832 3800  UmPass - ok
21:05:51.0842 3800  [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService    C:\Windows\System32\umrdp.dll
21:05:51.0852 3800  UmRdpService - ok
21:05:51.0862 3800  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
21:05:51.0892 3800  upnphost - ok
21:05:51.0892 3800  [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
21:05:51.0902 3800  USBAAPL64 - ok
21:05:51.0912 3800  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
21:05:51.0922 3800  usbccgp - ok
21:05:51.0922 3800  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
21:05:51.0932 3800  usbcir - ok
21:05:51.0942 3800  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
21:05:51.0952 3800  usbehci - ok
21:05:51.0952 3800  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
21:05:51.0962 3800  usbhub - ok
21:05:51.0972 3800  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
21:05:51.0982 3800  usbohci - ok
21:05:51.0982 3800  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
21:05:51.0992 3800  usbprint - ok
21:05:52.0002 3800  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
21:05:52.0012 3800  usbscan - ok
21:05:52.0012 3800  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:05:52.0022 3800  USBSTOR - ok
21:05:52.0022 3800  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
21:05:52.0032 3800  usbuhci - ok
21:05:52.0042 3800  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
21:05:52.0062 3800  UxSms - ok
21:05:52.0072 3800  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
21:05:52.0082 3800  VaultSvc - ok
21:05:52.0082 3800  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
21:05:52.0092 3800  vdrvroot - ok
21:05:52.0102 3800  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
21:05:52.0132 3800  vds - ok
21:05:52.0132 3800  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
21:05:52.0142 3800  vga - ok
21:05:52.0152 3800  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
21:05:52.0172 3800  VgaSave - ok
21:05:52.0182 3800  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
21:05:52.0192 3800  vhdmp - ok
21:05:52.0192 3800  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
21:05:52.0202 3800  viaide - ok
21:05:52.0202 3800  [ 6FC9B272B838EE8F5FA0E4A7E971154A ] VMAuthdService  C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
21:05:52.0212 3800  VMAuthdService - ok
21:05:52.0222 3800  [ 86EA3E79AE350FEA5331A1303054005F ] vmbus           C:\Windows\system32\drivers\vmbus.sys
21:05:52.0232 3800  vmbus - ok
21:05:52.0232 3800  [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
21:05:52.0242 3800  VMBusHID - ok
21:05:52.0242 3800  [ B49CB94DB99519F9DC7F77D2D1F215B5 ] vmci            C:\Windows\system32\drivers\vmci.sys
21:05:52.0252 3800  vmci - ok
21:05:52.0252 3800  [ 1AF6462718E5AB0ED55014A6EF3790EF ] vmkbd           C:\Windows\system32\drivers\VMkbd.sys
21:05:52.0262 3800  vmkbd - ok
21:05:52.0272 3800  [ 9D54F1339E78C95BF3D9939EBCB66378 ] VMnetAdapter    C:\Windows\system32\DRIVERS\vmnetadapter.sys
21:05:52.0272 3800  VMnetAdapter - ok
21:05:52.0282 3800  [ FB54EF3AA613D2832FD3812E7CB2FC75 ] VMnetBridge     C:\Windows\system32\DRIVERS\vmnetbridge.sys
21:05:52.0282 3800  VMnetBridge - ok
21:05:52.0292 3800  VMnetDHCP - ok
21:05:52.0292 3800  [ 163B05050FCD9635242EC5206C19A182 ] VMnetuserif     C:\Windows\system32\drivers\vmnetuserif.sys
21:05:52.0302 3800  VMnetuserif - ok
21:05:52.0302 3800  [ F22098DBDD13C1221C274496B3E18DA7 ] VMUSBArbService C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator.exe
21:05:52.0322 3800  VMUSBArbService - ok
21:05:52.0322 3800  VMware NAT Service - ok
21:05:52.0332 3800  [ F2A8EE62D7161E1598CDD269BF22A03D ] vmx86           C:\Windows\system32\drivers\vmx86.sys
21:05:52.0342 3800  vmx86 - ok
21:05:52.0342 3800  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
21:05:52.0352 3800  volmgr - ok
21:05:52.0352 3800  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
21:05:52.0372 3800  volmgrx - ok
21:05:52.0372 3800  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
21:05:52.0382 3800  volsnap - ok
21:05:52.0392 3800  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
21:05:52.0402 3800  vsmraid - ok
21:05:52.0422 3800  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
21:05:52.0462 3800  VSS - ok
21:05:52.0472 3800  [ E61C910E2DDF4797C1B1F9239636E894 ] vstor2-ws60     C:\Program Files (x86)\VMware\VMware Workstation\vstor2-ws60.sys
21:05:52.0472 3800  vstor2-ws60 - ok
21:05:52.0482 3800  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
21:05:52.0492 3800  vwifibus - ok
21:05:52.0492 3800  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
21:05:52.0512 3800  vwififlt - ok
21:05:52.0512 3800  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
21:05:52.0542 3800  W32Time - ok
21:05:52.0552 3800  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
21:05:52.0562 3800  WacomPen - ok
21:05:52.0562 3800  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
21:05:52.0592 3800  WANARP - ok
21:05:52.0592 3800  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
21:05:52.0622 3800  Wanarpv6 - ok
21:05:52.0632 3800  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
21:05:52.0662 3800  WatAdminSvc - ok
21:05:52.0672 3800  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
21:05:52.0702 3800  wbengine - ok
21:05:52.0702 3800  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
21:05:52.0722 3800  WbioSrvc - ok
21:05:52.0732 3800  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
21:05:52.0742 3800  wcncsvc - ok
21:05:52.0752 3800  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:05:52.0762 3800  WcsPlugInService - ok
21:05:52.0762 3800  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
21:05:52.0772 3800  Wd - ok
21:05:52.0782 3800  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
21:05:52.0802 3800  Wdf01000 - ok
21:05:52.0802 3800  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
21:05:52.0832 3800  WdiServiceHost - ok
21:05:52.0832 3800  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
21:05:52.0842 3800  WdiSystemHost - ok
21:05:52.0852 3800  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
21:05:52.0862 3800  WebClient - ok
21:05:52.0872 3800  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
21:05:52.0902 3800  Wecsvc - ok
21:05:52.0902 3800  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
21:05:52.0932 3800  wercplsupport - ok
21:05:52.0942 3800  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
21:05:52.0972 3800  WerSvc - ok
21:05:52.0972 3800  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
21:05:53.0002 3800  WfpLwf - ok
21:05:53.0002 3800  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
21:05:53.0012 3800  WIMMount - ok
21:05:53.0012 3800  WinDefend - ok
21:05:53.0022 3800  WinHttpAutoProxySvc - ok
21:05:53.0022 3800  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
21:05:53.0052 3800  Winmgmt - ok
21:05:53.0072 3800  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
21:05:53.0122 3800  WinRM - ok
21:05:53.0132 3800  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
21:05:53.0142 3800  WinUsb - ok
21:05:53.0152 3800  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
21:05:53.0172 3800  Wlansvc - ok
21:05:53.0172 3800  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
21:05:53.0182 3800  WmiAcpi - ok
21:05:53.0192 3800  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
21:05:53.0202 3800  wmiApSrv - ok
21:05:53.0212 3800  WMPNetworkSvc - ok
21:05:53.0212 3800  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
21:05:53.0222 3800  WPCSvc - ok
21:05:53.0222 3800  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
21:05:53.0242 3800  WPDBusEnum - ok
21:05:53.0242 3800  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
21:05:53.0272 3800  ws2ifsl - ok
21:05:53.0272 3800  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
21:05:53.0292 3800  wscsvc - ok
21:05:53.0292 3800  WSearch - ok
21:05:53.0312 3800  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
21:05:53.0362 3800  wuauserv - ok
21:05:53.0362 3800  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
21:05:53.0372 3800  WudfPf - ok
21:05:53.0382 3800  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
21:05:53.0392 3800  WUDFRd - ok
21:05:53.0392 3800  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
21:05:53.0402 3800  wudfsvc - ok
21:05:53.0412 3800  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
21:05:53.0422 3800  WwanSvc - ok
21:05:53.0432 3800  ================ Scan global ===============================
21:05:53.0442 3800  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
21:05:53.0442 3800  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
21:05:53.0452 3800  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
21:05:53.0452 3800  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
21:05:53.0462 3800  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
21:05:53.0462 3800  [Global] - ok
21:05:53.0462 3800  ================ Scan MBR ==================================
21:05:53.0462 3800  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
21:05:53.0532 3800  \Device\Harddisk0\DR0 - ok
21:05:53.0542 3800  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
21:05:53.0622 3800  \Device\Harddisk1\DR1 - ok
21:05:53.0622 3800  ================ Scan VBR ==================================
21:05:53.0622 3800  [ 8FDDDC5A938321D406346CF70D983810 ] \Device\Harddisk0\DR0\Partition1
21:05:53.0622 3800  \Device\Harddisk0\DR0\Partition1 - ok
21:05:53.0622 3800  [ 3595B04979A5444DFCD959CC892429E1 ] \Device\Harddisk0\DR0\Partition2
21:05:53.0632 3800  \Device\Harddisk0\DR0\Partition2 - ok
21:05:53.0652 3800  [ 862E9A2DDA485F741695AAD14BF9C86B ] \Device\Harddisk1\DR1\Partition1
21:05:53.0662 3800  \Device\Harddisk1\DR1\Partition1 - ok
21:05:53.0662 3800  [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk1\DR1\Partition2
21:05:53.0662 3800  \Device\Harddisk1\DR1\Partition2 - ok
21:05:53.0672 3800  [ 9257E7856EE11C3E10861FA6A70FA434 ] \Device\Harddisk1\DR1\Partition3
21:05:53.0672 3800  \Device\Harddisk1\DR1\Partition3 - ok
21:05:53.0672 3800  ============================================================
21:05:53.0672 3800  Scan finished
21:05:53.0672 3800  ============================================================
21:05:53.0672 3436  Detected object count: 1
21:05:53.0672 3436  Actual detected object count: 1
21:06:44.0966 3436  STacSV ( UnsignedFile.Multi.Generic ) - skipped by user
21:06:44.0966 3436  STacSV ( UnsignedFile.Multi.Generic ) - User select action: Skip
 



#4 newguy40

newguy40
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:08:04 PM

Posted 23 March 2013 - 08:11 PM

# AdwCleaner v2.115 - Logfile created 03/23/2013 at 21:10:49
# Updated 17/03/2013 by Xplode
# Operating system : Windows 7 Professional Service Pack 1 (64 bits)
# User : Sol Chitlins - SOLCHITLINS-PC
# Boot Mode : Normal
# Running from : E:\Users\Sol Chitlins\Desktop\AdwCleaner.exe
# Option [Search]


***** [Services] *****


***** [Files / Folders] *****

File Found : E:\Users\Sol Chitlins\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_apps.conduit.com_0.localstorage-journal
File Found : E:\Users\Sol Chitlins\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.conduit.com_0.localstorage-journal
Folder Found : C:\Program Files (x86)\Conduit
Folder Found : E:\Users\Sol Chitlins\AppData\Local\Conduit
Folder Found : E:\Users\Sol Chitlins\AppData\LocalLow\Conduit

***** [Registry] *****

Key Found : HKCU\Software\AppDataLow\Software\SmartBar
Key Found : HKCU\Software\Conduit
Key Found : HKLM\Software\Conduit
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16470

[HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://search.conduit.com?SearchSource=10&ctid=CT3220468

-\\ Mozilla Firefox v19.0.2 (en-US)

File : E:\Users\Sol Chitlins\AppData\Roaming\Mozilla\Firefox\Profiles\as3e6q02.default\prefs.js

[OK] File is clean.

-\\ Google Chrome v25.0.1364.172

File : E:\Users\Sol Chitlins\AppData\Local\Google\Chrome\User Data\Default\Preferences

Found [l.23] : icon_url = "hxxp://search.conduit.com/fav.ico",
Found [l.26] : keyword = "search.conduit.com",
Found [l.29] : search_url = "hxxp://search.conduit.com/Results.aspx?q={searchTerms}&SearchSource=49&ctid=CT3220468",
Found [l.30] : suggest_url = "hxxp://search.conduit.com/"
Found [l.1701] : homepage = "hxxp://search.conduit.com/?ctid=CT3220468&SearchSource=48",
Found [l.1879] : urls_to_restore_on_startup = [ "hxxp://search.conduit.com/?ctid=CT3220468&SearchSource=48" ]

*************************

AdwCleaner[R1].txt - [2179 octets] - [23/03/2013 21:10:49]

########## EOF - E:\AdwCleaner[R1].txt - [2239 octets] ##########



#5 newguy40

newguy40
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:08:04 PM

Posted 23 March 2013 - 08:14 PM

Farbar Service Scanner Version: 03-03-2013
Ran by Sol Chitlins (administrator) on 23-03-2013 at 21:13:36
Running from "E:\Users\Sol Chitlins\Desktop"
Windows 7 Professional Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****



#6 newguy40

newguy40
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:08:04 PM

Posted 23 March 2013 - 08:19 PM

MiniToolBox by Farbar  Version:05-03-2013
Ran by Sol Chitlins (administrator) on 23-03-2013 at 21:17:45
Running from "E:\Users\Sol Chitlins\Desktop"
Windows 7 Professional Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

 

========================= IP Configuration: ================================

Atheros AR8161/8165 PCI-E Gigabit Ethernet Controller (NDIS 6.20) = Local Area Connection (Connected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Hardware not present)
Broadcom WLAN Adapter = Wireless Network Connection (Hardware not present)
VMware Virtual Ethernet Adapter for VMnet1 = VMware Network Adapter VMnet1 (Hardware not present)
VMware Virtual Ethernet Adapter for VMnet8 = VMware Network Adapter VMnet8 (Hardware not present)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add address name="VMware Network Adapter VMnet1" address=192.168.126.1 mask=255.255.255.0
add address name="VMware Network Adapter VMnet8" address=192.168.47.1 mask=255.255.255.0


popd
# End of IPv4 configuration

 

Windows IP Configuration

   Host Name . . . . . . . . . . . . : SolChitlins-PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : hsd1.mi.comcast.net.

Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . : hsd1.mi.comcast.net.
   Description . . . . . . . . . . . : Atheros AR8161/8165 PCI-E Gigabit Ethernet Controller (NDIS 6.20)
   Physical Address. . . . . . . . . : 78-E3-B5-AE-D1-DD
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::dc38:263e:79b8:df65%13(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.1.101(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Saturday, March 23, 2013 8:52:34 PM
   Lease Expires . . . . . . . . . . : Sunday, March 24, 2013 8:52:33 PM
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 393798581
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-17-C5-EF-AC-44-6D-57-BC-E8-56
   DNS Servers . . . . . . . . . . . : 75.75.76.76
                                       75.75.75.75
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:204f:2bc7:b832:556a(Preferred)
   Link-local IPv6 Address . . . . . : fe80::204f:2bc7:b832:556a%14(Preferred)
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.hsd1.mi.comcast.net.:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : hsd1.mi.comcast.net.
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #5
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  cdns02.comcast.net
Address:  75.75.76.76

Name:    google.com
Addresses:  2607:f8b0:4009:800::1003
   74.125.225.36
   74.125.225.34
   74.125.225.46
   74.125.225.32
   74.125.225.39
   74.125.225.38
   74.125.225.40
   74.125.225.37
   74.125.225.35
   74.125.225.41
   74.125.225.33


Pinging google.com [74.125.225.137] with 32 bytes of data:
Reply from 74.125.225.137: bytes=32 time=16ms TTL=55
Reply from 74.125.225.137: bytes=32 time=16ms TTL=55

Ping statistics for 74.125.225.137:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 16ms, Maximum = 16ms, Average = 16ms
Server:  cdns02.comcast.net
Address:  75.75.76.76

DNS request timed out.
    timeout was 2 seconds.

Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=587ms TTL=51
Reply from 98.139.183.24: bytes=32 time=133ms TTL=49

Ping statistics for 98.139.183.24:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 133ms, Maximum = 587ms, Average = 360ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 13...78 e3 b5 ae d1 dd ......Atheros AR8161/8165 PCI-E Gigabit Ethernet Controller (NDIS 6.20)
  1...........................Software Loopback Interface 1
 14...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #5
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1    192.168.1.101     10
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link     192.168.1.101    266
    192.168.1.101  255.255.255.255         On-link     192.168.1.101    266
    192.168.1.255  255.255.255.255         On-link     192.168.1.101    266
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link     192.168.1.101    266
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link     192.168.1.101    266
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 14     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 14     58 2001::/32                On-link
 14    306 2001:0:4137:9e76:204f:2bc7:b832:556a/128
                                    On-link
 13    266 fe80::/64                On-link
 14    306 fe80::/64                On-link
 14    306 fe80::204f:2bc7:b832:556a/128
                                    On-link
 13    266 fe80::dc38:263e:79b8:df65/128
                                    On-link
  1    306 ff00::/8                 On-link
 14    306 ff00::/8                 On-link
 13    266 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 E:\Windows\SysWOW64\NLAapi.dll [File Not found] ()
Catalog5 02 E:\Windows\SysWOW64\napinsp.dll [File Not found] ()
Catalog5 03 E:\Windows\SysWOW64\pnrpnsp.dll [File Not found] ()
Catalog5 04 E:\Windows\SysWOW64\pnrpnsp.dll [File Not found] ()
Catalog5 05 E:\Windows\SysWOW64\wshbth.dll [File Not found] ()
Catalog5 06 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 07 E:\Windows\SysWOW64\mswsock.dll [File Not found] ()
Catalog5 08 E:\Windows\SysWOW64\winrnr.dll [File Not found] ()
Catalog9 01 E:\Windows\SysWOW64\mswsock.dll [File not found] ()
Catalog9 02 E:\Windows\SysWOW64\mswsock.dll [File not found] ()
Catalog9 03 E:\Windows\SysWOW64\mswsock.dll [File not found] ()
Catalog9 04 E:\Windows\SysWOW64\mswsock.dll [File not found] ()
Catalog9 05 E:\Windows\SysWOW64\mswsock.dll [File not found] ()
Catalog9 06 E:\Windows\SysWOW64\mswsock.dll [File not found] ()
Catalog9 07 E:\Windows\SysWOW64\mswsock.dll [File not found] ()
Catalog9 08 E:\Windows\SysWOW64\mswsock.dll [File not found] ()
Catalog9 09 E:\Windows\SysWOW64\mswsock.dll [File not found] ()
Catalog9 10 E:\Windows\SysWOW64\mswsock.dll [File not found] ()
Catalog9 11 E:\Windows\SysWOW64\mswsock.dll [File not found] ()
Catalog9 12 C:\Program Files (x86)\VMware\VMware Workstation\vsocklib.dll [346736] (VMware, Inc.)
Catalog9 13 C:\Program Files (x86)\VMware\VMware Workstation\vsocklib.dll [346736] (VMware, Inc.)
x64-Catalog5 01 E:\Windows\System32\NLAapi.dll [File Not found] ()
x64-Catalog5 02 E:\Windows\System32\napinsp.dll [File Not found] ()
x64-Catalog5 03 E:\Windows\System32\pnrpnsp.dll [File Not found] ()
x64-Catalog5 04 E:\Windows\System32\pnrpnsp.dll [File Not found] ()
x64-Catalog5 05 E:\Windows\System32\wshbth.dll [File Not found] ()
x64-Catalog5 06 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog5 07 E:\Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog5 08 E:\Windows\System32\winrnr.dll [File Not found] ()
x64-Catalog9 01 E:\Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 02 E:\Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 03 E:\Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 04 E:\Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 05 E:\Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 06 E:\Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 07 E:\Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 08 E:\Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 09 E:\Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 10 E:\Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 11 E:\Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 12 C:\Program Files (x86)\VMware\VMware Workstation\x64\vsocklib.dll [446576] (VMware, Inc.)
x64-Catalog9 13 C:\Program Files (x86)\VMware\VMware Workstation\x64\vsocklib.dll [446576] (VMware, Inc.)

========================= Event log errors: ===============================

Application errors:
==================
Error: (03/15/2013 09:13:41 PM) (Source: Windows Search Service) (User: )
Description: The index cannot be initialized.


Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (03/15/2013 09:13:41 PM) (Source: Windows Search Service) (User: )
Description: The application cannot be initialized.

Context: Windows Application


Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (03/15/2013 09:13:41 PM) (Source: Windows Search Service) (User: )
Description: The gatherer object cannot be initialized.

Context: Windows Application, SystemIndex Catalog


Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (03/15/2013 09:13:41 PM) (Source: Windows Search Service) (User: )
Description: The plug-in in <Search.TripoliIndexer> cannot be initialized.

Context: Windows Application, SystemIndex Catalog


Details:
 Element not found.  (HRESULT : 0x80070490) (0x80070490)

Error: (03/15/2013 09:13:39 PM) (Source: Windows Search Service) (User: )
Description: The plug-in in <Search.JetPropStore> cannot be initialized.

Context: Windows Application, SystemIndex Catalog


Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (03/15/2013 09:13:39 PM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service cannot load the property store information.

Context: Windows Application, SystemIndex Catalog


Details:
 The content index database is corrupt.  (HRESULT : 0xc0041800) (0xc0041800)

Error: (03/15/2013 09:13:39 PM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service is being stopped because there is a problem with the indexer: The catalog is corrupt.


Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (03/15/2013 09:13:39 PM) (Source: Windows Search Service) (User: )
Description: The search service has detected corrupted data files in the index {id=4700}. The service will attempt to automatically correct this problem by rebuilding the index.


Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (03/15/2013 09:13:39 PM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service cannot open the Jet property store.


Details:
 0x%08x (0xc0041800 - The content index database is corrupt.  (HRESULT : 0xc0041800))

Error: (03/15/2013 09:13:39 PM) (Source: ESENT) (User: )
Description: Windows (3748) Windows: Error -1811 occurred while opening logfile E:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS00CE6.log.


System errors:
=============
Error: (03/23/2013 08:53:22 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: A fatal error occurred when attempting to access the SSL server credential private key. The error code returned from the cryptographic module is 0x8009030d. The internal error state is 10001.

Error: (03/23/2013 08:21:01 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: A fatal error occurred when attempting to access the SSL server credential private key. The error code returned from the cryptographic module is 0x8009030d. The internal error state is 10001.

Error: (03/23/2013 08:20:45 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: A fatal error occurred when attempting to access the SSL server credential private key. The error code returned from the cryptographic module is 0x8009030d. The internal error state is 10001.

Error: (03/23/2013 07:55:22 PM) (Source: Service Control Manager) (User: )
Description: The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Apple Mobile Device service, but this action failed with the following error:
%%1056

Error: (03/23/2013 07:54:22 PM) (Source: Service Control Manager) (User: )
Description: The Apple Mobile Device service terminated unexpectedly.  It has done this 2 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (03/23/2013 07:54:02 PM) (Source: Service Control Manager) (User: )
Description: The Apple Mobile Device service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (03/23/2013 07:38:26 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: A fatal error occurred when attempting to access the SSL server credential private key. The error code returned from the cryptographic module is 0x8009030d. The internal error state is 10001.

Error: (03/23/2013 07:31:00 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: A fatal error occurred when attempting to access the SSL server credential private key. The error code returned from the cryptographic module is 0x8009030d. The internal error state is 10001.

Error: (03/23/2013 07:26:45 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: A fatal error occurred when attempting to access the SSL server credential private key. The error code returned from the cryptographic module is 0x8009030d. The internal error state is 10001.

Error: (03/23/2013 07:15:18 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: A fatal error occurred when attempting to access the SSL server credential private key. The error code returned from the cryptographic module is 0x8009030d. The internal error state is 10001.


Microsoft Office Sessions:
=========================
Error: (03/15/2013 09:13:41 PM) (Source: Windows Search Service)(User: )
Description:
Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (03/15/2013 09:13:41 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application


Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (03/15/2013 09:13:41 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog


Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (03/15/2013 09:13:41 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog


Details:
 Element not found.  (HRESULT : 0x80070490) (0x80070490)
Search.TripoliIndexer

Error: (03/15/2013 09:13:39 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog


Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
Search.JetPropStore

Error: (03/15/2013 09:13:39 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog


Details:
 The content index database is corrupt.  (HRESULT : 0xc0041800) (0xc0041800)

Error: (03/15/2013 09:13:39 PM) (Source: Windows Search Service)(User: )
Description:
Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
The catalog is corrupt

Error: (03/15/2013 09:13:39 PM) (Source: Windows Search Service)(User: )
Description:
Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
4700

Error: (03/15/2013 09:13:39 PM) (Source: Windows Search Service)(User: )
Description:
Details:
 0x%08x (0xc0041800 - The content index database is corrupt.  (HRESULT : 0xc0041800))

Error: (03/15/2013 09:13:39 PM) (Source: ESENT)(User: )
Description: Windows3748Windows: E:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS00CE6.log-1811


CodeIntegrity Errors:
===================================
  Date: 2013-03-23 19:48:13.865
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-03-23 19:48:13.815
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


=========================== Installed Programs ============================

7-Zip 9.22beta
Adobe AIR (Version: 3.4.0.2540)
Adobe Flash Player 11 ActiveX (Version: 11.6.602.180)
Adobe Flash Player 11 Plugin (Version: 11.6.602.180)
Adobe Reader X (10.1.5) (Version: 10.1.5)
Adobe Shockwave Player 11.6 (Version: 11.6.6.636)
AMD Accelerated Video Transcoding (Version: 2.00.0000)
AMD APP SDK Runtime (Version: 10.0.873.1)
AMD Catalyst Install Manager (Version: 3.0.864.0)
AMD Media Foundation Decoders (Version: 1.0.70120.2218)
AMD Steady Video Plug-In  (Version: 2.03.0000)
AMD VISION Engine Control Center (Version: 2012.0120.2218.39907)
Apple Application Support (Version: 2.3.3)
Apple Mobile Device Support (Version: 6.1.0.13)
Apple Software Update (Version: 2.1.3.127)
Bonjour (Version: 3.0.0.10)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (Version: 2012.0120.2218.39907)
Catalyst Control Center InstallProxy (Version: 2012.0120.2218.39907)
Catalyst Control Center Localization All (Version: 2012.0120.2218.39907)
CCC Help Chinese Standard (Version: 2012.0120.2217.39907)
CCC Help Chinese Traditional (Version: 2012.0120.2217.39907)
CCC Help Czech (Version: 2012.0120.2217.39907)
CCC Help Danish (Version: 2012.0120.2217.39907)
CCC Help Dutch (Version: 2012.0120.2217.39907)
CCC Help English (Version: 2012.0120.2217.39907)
CCC Help Finnish (Version: 2012.0120.2217.39907)
CCC Help French (Version: 2012.0120.2217.39907)
CCC Help German (Version: 2012.0120.2217.39907)
CCC Help Greek (Version: 2012.0120.2217.39907)
CCC Help Hungarian (Version: 2012.0120.2217.39907)
CCC Help Italian (Version: 2012.0120.2217.39907)
CCC Help Japanese (Version: 2012.0120.2217.39907)
CCC Help Korean (Version: 2012.0120.2217.39907)
CCC Help Norwegian (Version: 2012.0120.2217.39907)
CCC Help Polish (Version: 2012.0120.2217.39907)
CCC Help Portuguese (Version: 2012.0120.2217.39907)
CCC Help Russian (Version: 2012.0120.2217.39907)
CCC Help Spanish (Version: 2012.0120.2217.39907)
CCC Help Swedish (Version: 2012.0120.2217.39907)
CCC Help Thai (Version: 2012.0120.2217.39907)
CCC Help Turkish (Version: 2012.0120.2217.39907)
ccc-utility64 (Version: 2012.0120.2218.39907)
CCleaner (Version: 3.22)
DAEMON Tools Lite (Version: 4.45.4.0315)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
ESET Smart Security (Version: 5.2.9.1)
EverQuest
EverQuest Titanium (Version: 1.00.000)
Express Burn
Google Chrome (Version: 25.0.1364.172)
Google Update Helper (Version: 1.3.21.135)
IDT Audio (Version: 1.0.6374.0)
iTunes (Version: 11.0.2.26)
Java™ 7 (64-bit) (Version: 7.0.0)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Office 2010 Language Pack Service Pack 1 (SP1)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Visio 2010 (Version: 14.0.6029.1000)
Microsoft Office Visio MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Visio 2010 Service Pack 1 (SP1)
Microsoft Visio Professional 2010 (Version: 14.0.6029.1000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Mozilla Firefox 19.0.2 (x86 en-US) (Version: 19.0.2)
Mozilla Maintenance Service (Version: 19.0.2)
ODF Add-in for Microsoft Office (Version: 3.0.5250.0)
OpenOffice.org 3.4.1 (Version: 3.41.9593)
PeerBlock 1.1 (r518) (Version: 1.1.0.518)
Revo Uninstaller 1.94 (Version: 1.94)
swMSM (Version: 12.0.0.1)
Tixati
tools-freebsd (Version: 8.4.5.14951)
tools-linux (Version: 8.4.5.14951)
tools-netware (Version: 8.4.5.14951)
tools-solaris (Version: 8.4.5.14951)
tools-windows (Version: 8.4.5.14951)
tools-winPre2k (Version: 8.4.5.14951)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553092)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687503) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
Update for Microsoft Office 2010 (KB2767886) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2597090) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2598240) 32-Bit Edition
Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition
Ventrilo Client for Windows x64 (Version: 3.0.8.0)
Visual CertExam Suite 1.9
VMware Workstation (Version: 7.1.3.14951)
WinRAR 4.20 (64-bit) (Version: 4.20.0)

========================= Devices: ================================

Name: Broadcom WLAN Adapter
Description: Broadcom WLAN Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Broadcom
Service: BCM43XX
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Bluetooth Device (Personal Area Network)
Description: Bluetooth Device (Personal Area Network)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: BthPan
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: VMware Virtual Ethernet Adapter for VMnet1
Description: VMware Virtual Ethernet Adapter for VMnet1
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: VMware, Inc.
Service: VMnetAdapter
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: VMware Virtual Ethernet Adapter for VMnet8
Description: VMware Virtual Ethernet Adapter for VMnet8
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: VMware, Inc.
Service: VMnetAdapter
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


========================= Memory info: ===================================

Percentage of memory in use: 7%
Total physical RAM: 32182.93 MB
Available physical RAM: 29833.96 MB
Total Pagefile: 64364.05 MB
Available Pagefile: 61818.91 MB
Total Virtual: 4095.88 MB
Available Virtual: 3955.58 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:119.14 GB) (Free:57.41 GB) NTFS
2 Drive d: (PowerShell CBT) (CDROM) (Total:1.03 GB) (Free:0 GB) UDF
3 Drive e: () (Fixed) (Total:931.29 GB) (Free:837.55 GB) NTFS

========================= Users: ========================================

User accounts for \\SOLCHITLINS-PC

__vmware_user__          Administrator            Guest                   
Sol Chitlins            

========================= Minidump Files ==================================

No minidump file found

========================= Restore Points ==================================

17-02-2013 14:56:29 Revo Uninstaller's restore point - VSO ConvertXToDVD
19-02-2013 04:28:58 Windows Update
22-02-2013 07:59:31 Windows Update
24-02-2013 17:10:18 Installed DirectX
26-02-2013 08:58:26 Windows Update
27-02-2013 08:00:10 Windows Update
05-03-2013 06:36:45 Windows Update
08-03-2013 11:34:38 Windows Update
12-03-2013 08:17:55 Windows Update
14-03-2013 05:00:09 Windows Update
17-03-2013 15:11:24 Revo Uninstaller's restore point - Google Chrome
19-03-2013 03:56:06 Windows Update
19-03-2013 22:47:47 Restore Operation
19-03-2013 23:52:02 Windows Update
20-03-2013 18:00:11 Windows Update
21-03-2013 07:00:10 Windows Update

**** End of log ****

 

thank you for any help,

it's much appreciated



#7 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:12:04 AM

Posted 24 March 2013 - 05:55 PM

Hi
 
There are indications in the logs that the computer is / previously was infected. Due to this, please do the following:
 
Please follow the instructions in ==>HERE<== starting at Step 6.  If you cannot complete a step, skip it and continue.

Once the proper logs are created, then make a NEW TOPIC and post it ==>HERE<==  Please include a description of your computer issues, what you have done to resolve them, and a link to this topic.

If you can produce at least some of the logs, then please create the new topic and explain what happens when you try to create the log(s) that you couldn't get. If you cannot produce any of the logs, then still post the topic and explain that you followed the Prep. Guide, were unable to create the logs, and describe what happens when you try to create the logs.

It would be helpful if you post a note here once you have completed the steps in the guide and have started your topic in malware removal. Good luck and be patient.

If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.

Edited by dev00790, 24 March 2013 - 06:06 PM.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#8 newguy40

newguy40
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:08:04 PM

Posted 25 March 2013 - 11:50 AM

ok I did as requested, thanks

 

http://www.bleepingcomputer.com/forums/t/489756/firefox-thinks-every-site-is-unsafe-pages-loading-weird-with-red-xs-wonky/


Edited by newguy40, 25 March 2013 - 11:51 AM.


#9 Animal

Animal

    Bleepin' Animinion


  • Site Admin
  • 34,764 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Where You Least Expect Me To Be
  • Local time:05:04 PM

Posted 25 March 2013 - 11:57 AM

Now that your log is properly posted, you should NOT make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by a Malware Removal Team member, nor should you continue to ask for help elsewhere. Doing so can result in system changes which may not show it the logs you already posted. Further, any modifications you make on your own may cause confusion for the helper assisting you and could complicate the malware removal process which would extend the time it takes to clean your computer.

From this point on the Malware Removal Team should be the only members that you take advice from, until they have verified your log as clean.

Please be patient. It may take a while to get a response because the Malware Removal Team members are very busy working logs posted before yours. They are volunteers who will help you out as soon as possible. Once you have made your post and are waiting, please DO NOT make another reply until it has been responded to by a member of the Malware Removal Team. Generally the staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response there will be 1 reply. A team member, looking for a new log to work may assume another Malware Removal Team member is already assisting you and not open the thread to respond.

To avoid confusion, I am closing this topic.

The Internet is so big, so powerful and pointless that for some people it is a complete substitute for life.
Andrew Brown (1938-1994)


A learning experience is one of those things that say, "You know that thing you just did? Don't do that." Douglas Adams (1952-2001)


"Imagination is more important than knowledge. Knowledge is limited. Imagination circles the world." Albert Einstein (1879-1955)


Follow BleepingComputer on: Facebook | Twitter | Google+




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users