Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Worried after allowing remote access to fix a problem. Am I at risk?


  • Please log in to reply
10 replies to this topic

#1 julie35

julie35

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:01:12 AM

Posted 13 April 2013 - 09:38 AM

Hi,

 

I posted yesterday about a couple of problems (1 now fixed) but the other is still unresolved.

I have a HP laptop and I thought I was getting help from HP Support and I received a phone call from a technician who asked for remote access so he could fix my problem. He mentioned a one off fee for the service. When I asked he said he would find out how much it was and let me know asap. He downloaded a programme to scan my PC. and found thousands of problems and told me that things were clashing and causing the problems I had. I had to ask twice more about the charge and I was getting suspicious but I still thought I was talking to HP Support. He told me how much the fee was and said I had a year's cover/ 24/7 and nothing more to pay etc. When I said I couldn't pay he said he was unable to help, deleted what he'd downloaded and gave me some contact details in case I changed my mind and ended the call.

 

I'm now worried in case he has planted anything in my PC and I'm scared to do any internet banking. I don't want to change passwords etc in case my PC is vulnerable.

 

How can I find out is my PC is safe to use?

 

 

Many thanks,

 

Julie

 

 

I found out the technician was from "Technician4pc.com" if that helps?



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,906 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:12 PM

Posted 17 April 2013 - 08:05 PM

Hello Julie, sorry for the wait. Lets run these and see what they say.

 

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:


  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.

Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

 

Note: When using "Reset FF Proxy Settings" option Firefox should be closed

 

 

 

Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)
 
Do not change the default options on scan results.

 

 

 


Please download AdwCleaner by Xplode onto your desktop.
•Close all open programs and internet browsers.
•Double click on adwcleaner.exe to run the tool.
•Click on Delete.
•Confirm each time with Ok.
•You will be prompted to restart your computer. A text file will open after the restart.
•Please post the contents of that logfile with your next reply.
•You can find the logfile at C:\AdwCleaner[S1].txt as well.


>>>>

Now I'd like us to scan your machine with ESET OnlineScan

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png  button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.

 

NOTE:Sometimes if ESET finds no infections it will not create a log.


Edited by boopme, 17 April 2013 - 08:05 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 julie35

julie35
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:01:12 AM

Posted 18 April 2013 - 12:15 PM

Thanks for the reply. 

 

I've downloaded the programmes now,  I'll run them and post the results.



#4 julie35

julie35
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:01:12 AM

Posted 18 April 2013 - 12:20 PM

Mini Tool Box result.

 

 

 

MiniToolBox by Farbar  Version:05-03-2013
Ran by tesco (administrator) on 18-04-2013 at 18:17:44
Running from "C:\Users\tesco\Desktop"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================
 
 
 
========================= IP Configuration: ================================
 
Broadcom 4313 802.11b/g/n = Wireless Network Connection (Connected)
Realtek PCIe FE Family Controller = Local Area Connection (Media disconnected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
set subinterface interface=????? subinterface=ethernet_9 mtu=1477
add address name="Local Area Connection" address=192.168.137.1 mask=255.255.255.0
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : Julie-HP
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : 520b.com
 
Wireless LAN adapter Wireless Network Connection 2:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
   Physical Address. . . . . . . . . : 70-F3-95-AB-75-60
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Wireless LAN adapter Wireless Network Connection:
 
   Connection-specific DNS Suffix  . : 520b.com
   Description . . . . . . . . . . . : Broadcom 4313 802.11b/g/n
   Physical Address. . . . . . . . . : 70-F3-95-AB-75-60
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::851c:37d5:2c57:5a01%13(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.1.3(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : 18 April 2013 17:18:12
   Lease Expires . . . . . . . . . . : 19 April 2013 17:18:12
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 359723925
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-2D-21-41-90-FB-A6-C0-D8-B2
   DNS Servers . . . . . . . . . . . : 192.168.1.1
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Ethernet adapter Bluetooth Network Connection:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
   Physical Address. . . . . . . . . : 70-F3-95-6A-6E-5E
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Ethernet adapter Local Area Connection:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
   Physical Address. . . . . . . . . : 90-FB-A6-C0-D8-B2
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter isatap.{F5D7EA64-28EF-4F1C-9AB1-0B02B0C0930D}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Teredo Tunneling Pseudo-Interface:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  UnKnown
Address:  192.168.1.1
 
Name:    google.com.520b.com
Address:  67.198.168.4
 
 
Pinging google.com [173.194.41.137] with 32 bytes of data:
Reply from 173.194.41.137: bytes=32 time=33ms TTL=54
Reply from 173.194.41.137: bytes=32 time=32ms TTL=54
 
Ping statistics for 173.194.41.137:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 32ms, Maximum = 33ms, Average = 32ms
Server:  UnKnown
Address:  192.168.1.1
 
Name:    yahoo.com.520b.com
Address:  67.198.168.4
 
 
Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=882ms TTL=43
Reply from 98.138.253.109: bytes=32 time=415ms TTL=43
 
Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 415ms, Maximum = 882ms, Average = 648ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 15...70 f3 95 ab 75 60 ......Microsoft Virtual WiFi Miniport Adapter
 13...70 f3 95 ab 75 60 ......Broadcom 4313 802.11b/g/n
 12...70 f3 95 6a 6e 5e ......Bluetooth Device (Personal Area Network)
 10...90 fb a6 c0 d8 b2 ......Realtek PCIe FE Family Controller
  1...........................Software Loopback Interface 1
 17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 14...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1      192.168.1.3     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link       192.168.1.3    281
      192.168.1.3  255.255.255.255         On-link       192.168.1.3    281
    192.168.1.255  255.255.255.255         On-link       192.168.1.3    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link       192.168.1.3    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link       192.168.1.3    281
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
 13    281 fe80::/64                On-link
 13    281 fe80::851c:37d5:2c57:5a01/128
                                    On-link
  1    306 ff00::/8                 On-link
 13    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 10 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 10 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (04/18/2013 05:33:49 PM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005
 
Error: (04/17/2013 11:15:53 PM) (Source: Application Hang) (User: )
Description: The program explorer.exe version 6.1.7601.17567 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: 1bc0
 
Start Time: 01ce3b96177565df
 
Termination Time: 60000
 
Application Path: C:\Windows\explorer.exe
 
Report Id: 2e72de6b-a7ac-11e2-a128-70f3956a6e5e
 
Error: (04/17/2013 10:37:53 PM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005
 
Error: (04/17/2013 09:50:35 PM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005
 
Error: (04/17/2013 07:05:06 PM) (Source: Application Hang) (User: )
Description: The program Explorer.EXE version 6.1.7601.17567 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: 7d8
 
Start Time: 01ce3b9165bdbcd3
 
Termination Time: 9766
 
Application Path: C:\Windows\Explorer.EXE
 
Report Id: 4a565325-a789-11e2-a128-70f3956a6e5e
 
Error: (04/17/2013 06:44:47 PM) (Source: Application Error) (User: )
Description: Faulting application name: Glinx.exe, version: 1.0.1.0, time stamp: 0x3e4d59ac
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x7efde000
Faulting process id: 0x1428
Faulting application start time: 0xGlinx.exe0
Faulting application path: Glinx.exe1
Faulting module path: Glinx.exe2
Report Id: Glinx.exe3
 
Error: (04/17/2013 06:43:19 PM) (Source: Application Error) (User: )
Description: Faulting application name: Glinx.exe, version: 1.0.1.0, time stamp: 0x3e4d59ac
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x7efde000
Faulting process id: 0xd20
Faulting application start time: 0xGlinx.exe0
Faulting application path: Glinx.exe1
Faulting module path: Glinx.exe2
Report Id: Glinx.exe3
 
Error: (04/17/2013 06:42:49 PM) (Source: Application Error) (User: )
Description: Faulting application name: Glinx.exe, version: 1.0.1.0, time stamp: 0x3e4d59ac
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x7efde000
Faulting process id: 0x17a0
Faulting application start time: 0xGlinx.exe0
Faulting application path: Glinx.exe1
Faulting module path: Glinx.exe2
Report Id: Glinx.exe3
 
Error: (04/17/2013 06:27:00 PM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005
 
Error: (04/16/2013 06:48:37 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 4212
 
 
System errors:
=============
Error: (04/18/2013 05:18:13 PM) (Source: Service Control Manager) (User: )
Description: The Kaspersky Anti-Virus Service service failed to start due to the following error: 
%%2
 
Error: (04/17/2013 11:48:16 PM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for FailureActions with the following error: 
%%5
 
Error: (04/17/2013 09:08:43 PM) (Source: ipnathlp) (User: )
Description: 0
 
Error: (04/17/2013 06:31:32 PM) (Source: Service Control Manager) (User: )
Description: The Kaspersky Anti-Virus Service service failed to start due to the following error: 
%%2
 
Error: (04/17/2013 06:31:27 PM) (Source: BugCheck) (User: )
Description: 0x0000000a (0x00000000c0000010, 0x0000000000000002, 0x0000000000000001, 0xfffff800030db542)C:\Windows\MEMORY.DMP041713-62806-01
 
Error: (04/17/2013 06:31:26 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 18:28:47 on ?17/?04/?2013 was unexpected.
 
Error: (04/17/2013 04:43:37 PM) (Source: Service Control Manager) (User: )
Description: The Kaspersky Anti-Virus Service service failed to start due to the following error: 
%%2
 
Error: (04/17/2013 00:20:14 AM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for FailureActions with the following error: 
%%5
 
Error: (04/16/2013 05:55:47 PM) (Source: Service Control Manager) (User: )
Description: The Kaspersky Anti-Virus Service service failed to start due to the following error: 
%%2
 
Error: (04/16/2013 01:17:17 AM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for FailureActions with the following error: 
%%5
 
 
Microsoft Office Sessions:
=========================
 
=========================== Installed Programs ============================
 
 Update for Microsoft Office 2007 (KB2508958)
64 Bit HP CIO Components Installer (Version: 7.2.8)
Acrobat.com (Version: 1.6.65)
Adobe AIR (Version: 1.5.0.7220)
Adobe Flash Player 10 Plugin (Version: 10.0.42.34)
Adobe Flash Player 11 ActiveX (Version: 11.6.602.180)
Adobe Reader 9.5.4 MUI (Version: 9.5.4)
Adobe Shockwave Player 11.5 (Version: 11.5.7.609)
Advanced SystemCare 6 (Version: 6.0)
ALOT Appbar
Apple Application Support (Version: 2.3.3)
Apple Mobile Device Support (Version: 6.1.0.13)
Apple Software Update (Version: 2.1.3.127)
ATI Catalyst Install Manager (Version: 3.0.774.0)
Audacity 1.2.6
AVG 2013 (Version: 13.0.3162)
AVG 2013 (Version: 13.0.3272)
AVG 2013 (Version: 2013.0.3272)
Before You Know It 3.6 (Version: 3.6)
Bejeweled 2 Deluxe (Version: 2.2.0.95)
Big Fish Games: Game Manager (Version: 3.0.1.60)
BlackBerry Desktop Software 7.1 (Version: 7.1.0.32)
Blackhawk Striker 2 (Version: 2.2.0.95)
Bonjour (Version: 3.0.0.10)
Broadcom 2070 Bluetooth 3.0 (Version: 6.3.0.5600)
Broadcom 802.11 Wireless LAN Adapter (Version: 5.60.350.6)
Browser Manager
BufferChm (Version: 130.0.331.000)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Core Implementation (Version: 2010.0630.510.7373)
Catalyst Control Center Graphics Full Existing (Version: 2010.0630.510.7373)
Catalyst Control Center Graphics Full New (Version: 2010.0630.510.7373)
Catalyst Control Center Graphics Light (Version: 2010.0630.510.7373)
Catalyst Control Center Graphics Previews Common (Version: 2010.0630.510.7373)
Catalyst Control Center Graphics Previews Vista (Version: 2010.0630.510.7373)
Catalyst Control Center InstallProxy (Version: 2010.0630.510.7373)
Catalyst Control Center Localization All (Version: 2010.0630.510.7373)
CCC Help Chinese Standard (Version: 2010.0630.0509.7373)
CCC Help Chinese Traditional (Version: 2010.0630.0509.7373)
CCC Help Czech (Version: 2010.0630.0509.7373)
CCC Help Danish (Version: 2010.0630.0509.7373)
CCC Help Dutch (Version: 2010.0630.0509.7373)
CCC Help English (Version: 2010.0630.0509.7373)
CCC Help Finnish (Version: 2010.0630.0509.7373)
CCC Help French (Version: 2010.0630.0509.7373)
CCC Help German (Version: 2010.0630.0509.7373)
CCC Help Greek (Version: 2010.0630.0509.7373)
CCC Help Hungarian (Version: 2010.0630.0509.7373)
CCC Help Italian (Version: 2010.0630.0509.7373)
CCC Help Japanese (Version: 2010.0630.0509.7373)
CCC Help Korean (Version: 2010.0630.0509.7373)
CCC Help Norwegian (Version: 2010.0630.0509.7373)
CCC Help Polish (Version: 2010.0630.0509.7373)
CCC Help Portuguese (Version: 2010.0630.0509.7373)
CCC Help Russian (Version: 2010.0630.0509.7373)
CCC Help Spanish (Version: 2010.0630.0509.7373)
CCC Help Swedish (Version: 2010.0630.0509.7373)
CCC Help Thai (Version: 2010.0630.0509.7373)
CCC Help Turkish (Version: 2010.0630.0509.7373)
ccc-core-static (Version: 2010.0630.510.7373)
ccc-utility64 (Version: 2010.0630.510.7373)
Chuzzle Deluxe (Version: 2.2.0.95)
Copy (Version: 130.0.428.000)
CyberLink DVD Suite (Version: 7.0.3003)
CyberLink PowerDVD 9 (Version: 9.0.1.5122)
CyberLink YouCam (Version: 3.5.1.4305)
D3DX10 (Version: 15.4.2368.0902)
Destinations (Version: 130.0.0.0)
DeviceDiscovery (Version: 130.0.465.000)
DJ_AIO_03_F2200_Software_Min (Version: 130.0.365.000)
Dora's Carnival Adventure (Version: 2.2.0.95)
Energy Star Digital Logo (Version: 1.0.1)
Escape Rosecliff Island (Version: 2.2.0.95)
ESU for Microsoft Windows 7 (Version: 1.0.0)
F2200 (Version: 130.0.365.000)
FATE (Version: 2.2.0.95)
Final Drive Nitro (Version: 2.2.0.95)
Gamers Unite! Snag Bar
Google Chrome (Version: 26.0.1410.64)
Google Earth Plug-in (Version: 7.0.3.8542)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.4.3607.2246)
Google Update Helper (Version: 1.3.21.135)
GPBaseService2 (Version: 130.0.371.000)
Hewlett-Packard ACLM.NET v1.1.0.0 (Version: 1.00.0000)
HP Advisor (Version: 3.4.12850.3526)
HP Customer Experience Enhancements (Version: 6.0.1.4)
HP Customer Participation Program 13.0 (Version: 13.0)
HP Deskjet F2200 All-In-One Driver Software 13.0 Rel. 3 (Version: 13.0)
HP Documentation (Version: 1.0.0.0)
HP Games (Version: 1.0.1.3)
HP Imaging Device Functions 13.0 (Version: 13.0)
HP Photo Creations (Version: 1.0.0.3611)
HP Photosmart Essential 3.5 (Version: 3.5)
HP Power Manager (Version: 1.4.4)
HP Product Detection (Version: 11.14.0001)
HP Product Detection (Version: 11.15.0005)
HP Quick Launch (Version: 2.6.3)
HP Setup (Version: 8.1.4186.3400)
HP Smart Web Printing 4.51 (Version: 4.51)
HP Software Framework (Version: 4.1.13.1)
HP Solution Center 13.0 (Version: 13.0)
HP Support Assistant (Version: 6.0.5.4)
HP Update (Version: 5.003.001.001)
HP Wireless Assistant (Version: 4.0.9.0)
HPPhotoGadget (Version: 130.0.282.000)
HPPhotoSmartDiscLabelContent1 (Version: 2.04.0000)
HPPhotosmartEssential (Version: 2.04.0000)
HPProductAssistant (Version: 130.0.371.000)
HPSSupply (Version: 130.0.371.000)
Internet TV for Windows Media Center (Version: 4.2.2.0)
iTunes (Version: 11.0.2.26)
Jasc Paint Shop Pro 8 (Version: 8.10.0000)
Java 7 Update 17 (Version: 7.0.170)
Java Auto Updater (Version: 2.1.9.0)
Java™ 6 Update 20 (64-bit) (Version: 6.0.200)
Java™ 6 Update 29 (Version: 6.0.290)
JavaFX 2.1.0 (Version: 2.1.0)
Jewel Quest - Heritage (Version: 2.2.0.95)
Junk Mail filter update (Version: 15.4.3502.0922)
Kobo (Version: 3.1.5)
LabelPrint (Version: 2.5.2907)
LightScribe System Software (Version: 1.18.15.1)
Magic Desktop
MarketResearch (Version: 130.0.374.000)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook Connector (Version: 14.0.5118.5000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Starter 2010 - English (Version: 14.0.4763.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.20125.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Penguins! (Version: 2.2.0.95)
PhotoNow! (Version: 1.1.6904)
Plants vs. Zombies (Version: 2.2.0.95)
Poker Superstars III (Version: 2.2.0.95)
Polar Bowler (Version: 2.2.0.95)
Polar Golfer (Version: 2.2.0.95)
Power2Go (Version: 6.1.4204)
PowerDirector (Version: 8.0.3003)
QuickTime (Version: 7.73.80.64)
Realtek Ethernet Controller Driver For Windows 7 (Version: 7.21.531.2010)
Realtek High Definition Audio Driver (Version: 6.0.1.6066)
Realtek USB 2.0 Card Reader (Version: 6.1.7600.30105)
Recovery Manager (Version: 5.5.3023)
RtVOsd (Version: 1.0.3)
Scan (Version: 13.0.0.0)
Scratch (Version: 1.4.0.0)
Shop for HP Supplies (Version: 13.0)
SmartWebPrinting (Version: 130.0.457.000)
SolutionCenter (Version: 130.0.373.000)
Status (Version: 130.0.469.000)
Synaptics Pointing Device Driver (Version: 15.3.29.0)
Teaching-you French (Version: 10.0)
Toolbox (Version: 130.0.648.000)
TrayApp (Version: 130.0.422.000)
Unity Web Player (Version: )
UnloadSupport (Version: 11.0.0)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596802) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2768021) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Update Installer for WildTangent Games App
Virtual Villagers - The Secret City (Version: 2.2.0.95)
Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1)
WebReg (Version: 130.0.132.017)
WildTangent Games App (HP Games) (Version: 4.0.5.31)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8117.416)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
WinRAR 4.11 (32-bit) (Version: 4.11.0)
Zuma Deluxe (Version: 2.2.0.95)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 58%
Total physical RAM: 3834.9 MB
Available physical RAM: 1576.15 MB
Total Pagefile: 7667.99 MB
Available Pagefile: 4866.73 MB
Total Virtual: 4095.88 MB
Available Virtual: 3970.46 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:450.07 GB) (Free:360.87 GB) NTFS
2 Drive d: (RECOVERY) (Fixed) (Total:15.39 GB) (Free:2.22 GB) NTFS
3 Drive e: (110708_1202) (CDROM) (Total:4.29 GB) (Free:0 GB) UDF
4 Drive f: (ADATA CH11) (Fixed) (Total:596.02 GB) (Free:579.99 GB) FAT32
5 Drive g: (SD CARD) (Removable) (Total:1.84 GB) (Free:1.82 GB) FAT
 
========================= Users: ========================================
 
User accounts for \\JULIE-HP
 
Administrator            Guest                    tesco                    
 
 
**** End of log ****


#5 julie35

julie35
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:01:12 AM

Posted 18 April 2013 - 12:27 PM

TDSSkiller 

 

 

 

18:23:21.0150 6992  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
18:23:22.0428 6992  ============================================================
18:23:22.0428 6992  Current date / time: 2013/04/18 18:23:22.0428
18:23:22.0428 6992  SystemInfo:
18:23:22.0428 6992  
18:23:22.0428 6992  OS Version: 6.1.7601 ServicePack: 1.0
18:23:22.0428 6992  Product type: Workstation
18:23:22.0429 6992  ComputerName: JULIE-HP
18:23:22.0429 6992  UserName: tesco
18:23:22.0429 6992  Windows directory: C:\Windows
18:23:22.0429 6992  System windows directory: C:\Windows
18:23:22.0429 6992  Running under WOW64
18:23:22.0429 6992  Processor architecture: Intel x64
18:23:22.0429 6992  Number of processors: 3
18:23:22.0429 6992  Page size: 0x1000
18:23:22.0429 6992  Boot type: Normal boot
18:23:22.0429 6992  ============================================================
18:23:23.0533 6992  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:23:23.0537 6992  Drive \Device\Harddisk1\DR1 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
18:23:23.0958 6992  Drive \Device\Harddisk2\DR2 - Size: 0x75E00000 (1.84 Gb), SectorSize: 0x200, Cylinders: 0xF0, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
18:23:23.0964 6992  ============================================================
18:23:23.0964 6992  \Device\Harddisk0\DR0:
18:23:23.0965 6992  MBR partitions:
18:23:23.0965 6992  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
18:23:23.0965 6992  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x38425000
18:23:23.0965 6992  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x38489000, BlocksNum 0x1EC9000
18:23:23.0965 6992  \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x3A352000, BlocksNum 0x33830
18:23:23.0965 6992  \Device\Harddisk1\DR1:
18:23:23.0976 6992  MBR partitions:
18:23:23.0976 6992  \Device\Harddisk1\DR1\Partition1: MBR, Type 0xC, StartLBA 0x3F, BlocksNum 0x4A856E82
18:23:23.0976 6992  \Device\Harddisk2\DR2:
18:23:23.0978 6992  MBR partitions:
18:23:23.0978 6992  \Device\Harddisk2\DR2\Partition1: MBR, Type 0x6, StartLBA 0xE3, BlocksNum 0x3AEF1D
18:23:23.0978 6992  ============================================================
18:23:24.0018 6992  C: <-> \Device\Harddisk0\DR0\Partition2
18:23:24.0052 6992  D: <-> \Device\Harddisk0\DR0\Partition3
18:23:24.0054 6992  F: <-> \Device\Harddisk1\DR1\Partition1
18:23:24.0055 6992  ============================================================
18:23:24.0055 6992  Initialize success
18:23:24.0055 6992  ============================================================
18:23:40.0578 5356  ============================================================
18:23:40.0579 5356  Scan started
18:23:40.0579 5356  Mode: Manual; 
18:23:40.0579 5356  ============================================================
18:23:41.0653 5356  ================ Scan system memory ========================
18:23:41.0653 5356  System memory - ok
18:23:41.0654 5356  ================ Scan services =============================
18:23:41.0777 5356  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
18:23:41.0794 5356  1394ohci - ok
18:23:41.0825 5356  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
18:23:41.0832 5356  ACPI - ok
18:23:41.0846 5356  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
18:23:41.0849 5356  AcpiPmi - ok
18:23:41.0962 5356  [ EA856F4A46320389D1899B2CAA7BF40F ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:23:41.0967 5356  AdobeFlashPlayerUpdateSvc - ok
18:23:42.0003 5356  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
18:23:42.0011 5356  adp94xx - ok
18:23:42.0034 5356  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
18:23:42.0040 5356  adpahci - ok
18:23:42.0063 5356  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
18:23:42.0086 5356  adpu320 - ok
18:23:42.0204 5356  [ 993F7B0BA5188A0007C085AA10257B8E ] AdvancedSystemCareService6 C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe
18:23:42.0225 5356  AdvancedSystemCareService6 - ok
18:23:42.0260 5356  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
18:23:42.0264 5356  AeLookupSvc - ok
18:23:42.0319 5356  [ D1E343BC00136CE03C4D403194D06A80 ] AERTFilters     C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
18:23:42.0324 5356  AERTFilters - ok
18:23:42.0382 5356  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
18:23:42.0393 5356  AFD - ok
18:23:42.0418 5356  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
18:23:42.0422 5356  agp440 - ok
18:23:42.0437 5356  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
18:23:42.0441 5356  ALG - ok
18:23:42.0453 5356  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
18:23:42.0456 5356  aliide - ok
18:23:42.0479 5356  [ 29C151492510640343B00B63996E4070 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
18:23:42.0484 5356  AMD External Events Utility - ok
18:23:42.0502 5356  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
18:23:42.0505 5356  amdide - ok
18:23:42.0532 5356  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
18:23:42.0536 5356  AmdK8 - ok
18:23:42.0702 5356  [ 2C9C4824664C61351FF1E0169262D026 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
18:23:42.0823 5356  amdkmdag - ok
18:23:42.0865 5356  [ EF7382689D3B17AC2983202E7A40AB45 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
18:23:42.0869 5356  amdkmdap - ok
18:23:42.0886 5356  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
18:23:42.0889 5356  AmdPPM - ok
18:23:42.0908 5356  [ 53D8D46D51D390ABDB54ECA623165CB7 ] amdsata         C:\Windows\system32\DRIVERS\amdsata.sys
18:23:42.0909 5356  amdsata - ok
18:23:42.0935 5356  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
18:23:42.0939 5356  amdsbs - ok
18:23:42.0944 5356  [ 75C51148154E34EB3D7BB84749A758D5 ] amdxata         C:\Windows\system32\DRIVERS\amdxata.sys
18:23:42.0946 5356  amdxata - ok
18:23:42.0973 5356  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
18:23:42.0975 5356  AppID - ok
18:23:42.0990 5356  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
18:23:42.0992 5356  AppIDSvc - ok
18:23:43.0015 5356  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo         C:\Windows\System32\appinfo.dll
18:23:43.0018 5356  Appinfo - ok
18:23:43.0081 5356  [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
18:23:43.0112 5356  Apple Mobile Device - ok
18:23:43.0146 5356  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
18:23:43.0150 5356  arc - ok
18:23:43.0180 5356  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
18:23:43.0185 5356  arcsas - ok
18:23:43.0201 5356  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
18:23:43.0204 5356  AsyncMac - ok
18:23:43.0229 5356  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
18:23:43.0231 5356  atapi - ok
18:23:43.0263 5356  [ 2D648572BA9A610952FCAFBA1E119C2D ] AtiHdmiService  C:\Windows\system32\drivers\AtiHdmi.sys
18:23:43.0267 5356  AtiHdmiService - ok
18:23:43.0282 5356  [ E82E61F46D1336447F4DEFF8C074F13E ] AtiPcie         C:\Windows\system32\DRIVERS\AtiPcie64.sys
18:23:43.0284 5356  AtiPcie - ok
18:23:43.0321 5356  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:23:43.0330 5356  AudioEndpointBuilder - ok
18:23:43.0343 5356  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
18:23:43.0349 5356  AudioSrv - ok
18:23:43.0374 5356  [ 3D1FFAA3358CA0D8A298DEA8BECFC468 ] Avgfwfd         C:\Windows\system32\DRIVERS\avgfwd6a.sys
18:23:43.0384 5356  Avgfwfd - ok
18:23:43.0549 5356  [ DC4739DD82EAFD85299B4E87B5F63207 ] avgfws          C:\Program Files (x86)\AVG\AVG2013\avgfws.exe
18:23:43.0589 5356  avgfws - ok
18:23:43.0688 5356  [ 0D8244A9DB70BC6C36E2FB56F6039AB6 ] AVGIDSAgent     C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
18:23:43.0740 5356  AVGIDSAgent - ok
18:23:43.0772 5356  [ AC6CB348F67B6B1B75C0EFB8927A8B03 ] AVGIDSDriver    C:\Windows\system32\DRIVERS\avgidsdrivera.sys
18:23:43.0776 5356  AVGIDSDriver - ok
18:23:43.0799 5356  [ 2940FACB6EF92BD1936E4A1E2502468E ] AVGIDSHA        C:\Windows\system32\DRIVERS\avgidsha.sys
18:23:43.0802 5356  AVGIDSHA - ok
18:23:43.0833 5356  [ 54B66C4AEEC6C4F742F3569EBA03EBB8 ] Avgldx64        C:\Windows\system32\DRIVERS\avgldx64.sys
18:23:43.0840 5356  Avgldx64 - ok
18:23:43.0893 5356  [ 13667B5D6310228A9FEF2BA5FCD9081F ] Avgloga         C:\Windows\system32\DRIVERS\avgloga.sys
18:23:43.0901 5356  Avgloga - ok
18:23:43.0924 5356  [ BE82F9A1F2CCF4CE746D0C645D94079E ] Avgmfx64        C:\Windows\system32\DRIVERS\avgmfx64.sys
18:23:43.0930 5356  Avgmfx64 - ok
18:23:43.0971 5356  [ 5D11620DEF66F9DC9468FEE385A8429B ] Avgrkx64        C:\Windows\system32\DRIVERS\avgrkx64.sys
18:23:43.0975 5356  Avgrkx64 - ok
18:23:43.0996 5356  [ 71309F30D4F4565EC611FE3FC33A3A0F ] Avgtdia         C:\Windows\system32\DRIVERS\avgtdia.sys
18:23:44.0003 5356  Avgtdia - ok
18:23:44.0041 5356  [ DC98337F0D2A9F6C0B6FB682297ECE3B ] avgwd           C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
18:23:44.0047 5356  avgwd - ok
18:23:44.0056 5356  AVP - ok
18:23:44.0080 5356  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
18:23:44.0085 5356  AxInstSV - ok
18:23:44.0110 5356  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
18:23:44.0117 5356  b06bdrv - ok
18:23:44.0143 5356  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
18:23:44.0147 5356  b57nd60a - ok
18:23:44.0239 5356  [ 0E7A9264576B40638A3FBC804DE1FF76 ] BCM43XX         C:\Windows\system32\DRIVERS\bcmwl664.sys
18:23:44.0272 5356  BCM43XX - ok
18:23:44.0291 5356  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
18:23:44.0295 5356  BDESVC - ok
18:23:44.0305 5356  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
18:23:44.0307 5356  Beep - ok
18:23:44.0338 5356  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
18:23:44.0347 5356  BFE - ok
18:23:44.0382 5356  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
18:23:44.0404 5356  BITS - ok
18:23:44.0431 5356  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
18:23:44.0434 5356  blbdrive - ok
18:23:44.0480 5356  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
18:23:44.0491 5356  Bonjour Service - ok
18:23:44.0525 5356  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
18:23:44.0529 5356  bowser - ok
18:23:44.0552 5356  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:23:44.0555 5356  BrFiltLo - ok
18:23:44.0573 5356  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:23:44.0575 5356  BrFiltUp - ok
18:23:44.0595 5356  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
18:23:44.0599 5356  Browser - ok
18:23:44.0743 5356  [ CA2E0AAA6943618108D786FF31848989 ] Browser Manager C:\ProgramData\Browser Manager\2.6.1125.80\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe
18:23:44.0773 5356  Browser Manager - ok
18:23:44.0798 5356  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
18:23:44.0804 5356  Brserid - ok
18:23:44.0825 5356  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
18:23:44.0828 5356  BrSerWdm - ok
18:23:44.0849 5356  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
18:23:44.0852 5356  BrUsbMdm - ok
18:23:44.0873 5356  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
18:23:44.0875 5356  BrUsbSer - ok
18:23:44.0899 5356  [ CF98190A94F62E405C8CB255018B2315 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
18:23:44.0901 5356  BthEnum - ok
18:23:44.0917 5356  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
18:23:44.0920 5356  BTHMODEM - ok
18:23:44.0941 5356  [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
18:23:44.0967 5356  BthPan - ok
18:23:45.0012 5356  [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT         C:\Windows\System32\Drivers\BTHport.sys
18:23:45.0024 5356  BTHPORT - ok
18:23:45.0054 5356  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
18:23:45.0058 5356  bthserv - ok
18:23:45.0085 5356  [ F188B7394D81010767B6DF3178519A37 ] BTHUSB          C:\Windows\System32\Drivers\BTHUSB.sys
18:23:45.0087 5356  BTHUSB - ok
18:23:45.0121 5356  [ 59E3510784548C6939C1B3B985C232E3 ] btwampfl        C:\Windows\system32\drivers\btwampfl.sys
18:23:45.0127 5356  btwampfl - ok
18:23:45.0133 5356  btwaudio - ok
18:23:45.0152 5356  btwavdt - ok
18:23:45.0160 5356  btwl2cap - ok
18:23:45.0168 5356  btwrchid - ok
18:23:45.0193 5356  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
18:23:45.0197 5356  cdfs - ok
18:23:45.0223 5356  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\drivers\cdrom.sys
18:23:45.0228 5356  cdrom - ok
18:23:45.0266 5356  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
18:23:45.0270 5356  CertPropSvc - ok
18:23:45.0286 5356  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
18:23:45.0289 5356  circlass - ok
18:23:45.0314 5356  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
18:23:45.0320 5356  CLFS - ok
18:23:45.0382 5356  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:23:45.0386 5356  clr_optimization_v2.0.50727_32 - ok
18:23:45.0420 5356  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:23:45.0424 5356  clr_optimization_v2.0.50727_64 - ok
18:23:45.0458 5356  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:23:45.0461 5356  clr_optimization_v4.0.30319_32 - ok
18:23:45.0490 5356  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:23:45.0494 5356  clr_optimization_v4.0.30319_64 - ok
18:23:45.0520 5356  [ 50F92C943F18B070F166D019DFAB3D9A ] clwvd           C:\Windows\system32\DRIVERS\clwvd.sys
18:23:45.0529 5356  clwvd - ok
18:23:45.0556 5356  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
18:23:45.0558 5356  CmBatt - ok
18:23:45.0584 5356  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
18:23:45.0586 5356  cmdide - ok
18:23:45.0611 5356  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
18:23:45.0641 5356  CNG - ok
18:23:45.0663 5356  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
18:23:45.0665 5356  Compbatt - ok
18:23:45.0683 5356  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
18:23:45.0686 5356  CompositeBus - ok
18:23:45.0692 5356  COMSysApp - ok
18:23:45.0717 5356  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
18:23:45.0718 5356  crcdisk - ok
18:23:45.0742 5356  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc        C:\Windows\system32\cryptsvc.dll
18:23:45.0746 5356  CryptSvc - ok
18:23:45.0817 5356  [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc          C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
18:23:45.0827 5356  cvhsvc - ok
18:23:45.0855 5356  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
18:23:45.0863 5356  DcomLaunch - ok
18:23:45.0886 5356  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
18:23:45.0892 5356  defragsvc - ok
18:23:45.0914 5356  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
18:23:45.0917 5356  DfsC - ok
18:23:45.0945 5356  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
18:23:45.0950 5356  Dhcp - ok
18:23:45.0972 5356  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
18:23:45.0974 5356  discache - ok
18:23:46.0002 5356  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
18:23:46.0004 5356  Disk - ok
18:23:46.0028 5356  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
18:23:46.0032 5356  Dnscache - ok
18:23:46.0053 5356  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
18:23:46.0058 5356  dot3svc - ok
18:23:46.0100 5356  [ B42ED0320C6E41102FDE0005154849BB ] Dot4            C:\Windows\system32\DRIVERS\Dot4.sys
18:23:46.0104 5356  Dot4 - ok
18:23:46.0121 5356  [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print       C:\Windows\system32\DRIVERS\Dot4Prt.sys
18:23:46.0123 5356  Dot4Print - ok
18:23:46.0147 5356  [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb         C:\Windows\system32\DRIVERS\dot4usb.sys
18:23:46.0150 5356  dot4usb - ok
18:23:46.0176 5356  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
18:23:46.0180 5356  DPS - ok
18:23:46.0190 5356  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
18:23:46.0192 5356  drmkaud - ok
18:23:46.0229 5356  [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
18:23:46.0241 5356  DXGKrnl - ok
18:23:46.0259 5356  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
18:23:46.0262 5356  EapHost - ok
18:23:46.0367 5356  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
18:23:46.0410 5356  ebdrv - ok
18:23:46.0439 5356  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
18:23:46.0441 5356  EFS - ok
18:23:46.0497 5356  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
18:23:46.0515 5356  ehRecvr - ok
18:23:46.0543 5356  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
18:23:46.0559 5356  ehSched - ok
18:23:46.0587 5356  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
18:23:46.0596 5356  elxstor - ok
18:23:46.0607 5356  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
18:23:46.0610 5356  ErrDev - ok
18:23:46.0657 5356  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
18:23:46.0664 5356  EventSystem - ok
18:23:46.0688 5356  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
18:23:46.0693 5356  exfat - ok
18:23:46.0699 5356  ezSharedSvc - ok
18:23:46.0721 5356  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
18:23:46.0726 5356  fastfat - ok
18:23:46.0756 5356  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
18:23:46.0765 5356  Fax - ok
18:23:46.0784 5356  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
18:23:46.0786 5356  fdc - ok
18:23:46.0806 5356  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
18:23:46.0808 5356  fdPHost - ok
18:23:46.0822 5356  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
18:23:46.0825 5356  FDResPub - ok
18:23:46.0837 5356  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
18:23:46.0840 5356  FileInfo - ok
18:23:46.0858 5356  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
18:23:46.0860 5356  Filetrace - ok
18:23:46.0870 5356  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
18:23:46.0872 5356  flpydisk - ok
18:23:46.0894 5356  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
18:23:46.0898 5356  FltMgr - ok
18:23:46.0935 5356  [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache       C:\Windows\system32\FntCache.dll
18:23:46.0949 5356  FontCache - ok
18:23:46.0993 5356  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:23:46.0995 5356  FontCache3.0.0.0 - ok
18:23:47.0030 5356  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
18:23:47.0034 5356  FsDepends - ok
18:23:47.0061 5356  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
18:23:47.0072 5356  Fs_Rec - ok
18:23:47.0107 5356  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
18:23:47.0111 5356  fvevol - ok
18:23:47.0130 5356  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
18:23:47.0133 5356  gagp30kx - ok
18:23:47.0180 5356  [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
18:23:47.0201 5356  GamesAppService - ok
18:23:47.0226 5356  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
18:23:47.0229 5356  GEARAspiWDM - ok
18:23:47.0269 5356  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
18:23:47.0289 5356  gpsvc - ok
18:23:47.0330 5356  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:23:47.0333 5356  gupdate - ok
18:23:47.0345 5356  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:23:47.0348 5356  gupdatem - ok
18:23:47.0407 5356  [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
18:23:47.0413 5356  gusvc - ok
18:23:47.0450 5356  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
18:23:47.0455 5356  hcw85cir - ok
18:23:47.0494 5356  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:23:47.0504 5356  HdAudAddService - ok
18:23:47.0531 5356  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
18:23:47.0536 5356  HDAudBus - ok
18:23:47.0553 5356  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
18:23:47.0556 5356  HidBatt - ok
18:23:47.0569 5356  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
18:23:47.0572 5356  HidBth - ok
18:23:47.0585 5356  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
18:23:47.0588 5356  HidIr - ok
18:23:47.0612 5356  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
18:23:47.0615 5356  hidserv - ok
18:23:47.0631 5356  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
18:23:47.0633 5356  HidUsb - ok
18:23:47.0663 5356  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
18:23:47.0667 5356  hkmsvc - ok
18:23:47.0686 5356  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
18:23:47.0691 5356  HomeGroupListener - ok
18:23:47.0720 5356  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
18:23:47.0725 5356  HomeGroupProvider - ok
18:23:47.0769 5356  [ 3A09322A8AA8B0C79036686A0EBE7B4C ] HP Wireless Assistant Service C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
18:23:47.0771 5356  HP Wireless Assistant Service - ok
18:23:47.0924 5356  [ 1DAE5C46D42B02A6D5862E1482EFB390 ] hpqcxs08        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
18:23:47.0930 5356  hpqcxs08 - ok
18:23:47.0950 5356  [ 99E8EEF42FE2F4AF29B08C3355DD7685 ] hpqddsvc        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
18:23:47.0970 5356  hpqddsvc - ok
18:23:48.0032 5356  [ 01091B900E15878B4434F9C726C4541D ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
18:23:48.0050 5356  hpqwmiex - ok
18:23:48.0081 5356  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
18:23:48.0084 5356  HpSAMD - ok
18:23:48.0128 5356  [ 77C15D7E8F002A173EEBFF0B20CD697D ] HPWMISVC        C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
18:23:48.0158 5356  HPWMISVC - ok
18:23:48.0211 5356  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
18:23:48.0222 5356  HTTP - ok
18:23:48.0248 5356  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
18:23:48.0250 5356  hwpolicy - ok
18:23:48.0269 5356  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
18:23:48.0272 5356  i8042prt - ok
18:23:48.0295 5356  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
18:23:48.0302 5356  iaStorV - ok
18:23:48.0338 5356  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:23:48.0352 5356  idsvc - ok
18:23:48.0508 5356  [ A87261EF1546325B559374F5689CF5BC ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
18:23:48.0573 5356  igfx - ok
18:23:48.0594 5356  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
18:23:48.0596 5356  iirsp - ok
18:23:48.0636 5356  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
18:23:48.0647 5356  IKEEXT - ok
18:23:48.0727 5356  [ E76FDFFF07F8A2FA81FF250DDA0F6BBA ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
18:23:48.0789 5356  IntcAzAudAddService - ok
18:23:48.0809 5356  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
18:23:48.0811 5356  intelide - ok
18:23:48.0832 5356  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
18:23:48.0834 5356  intelppm - ok
18:23:48.0857 5356  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
18:23:48.0861 5356  IPBusEnum - ok
18:23:48.0885 5356  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:23:48.0888 5356  IpFilterDriver - ok
18:23:48.0920 5356  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
18:23:48.0929 5356  iphlpsvc - ok
18:23:48.0951 5356  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
18:23:48.0954 5356  IPMIDRV - ok
18:23:48.0968 5356  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
18:23:48.0972 5356  IPNAT - ok
18:23:49.0043 5356  [ 4EFFC8FF6D349E971E94B1C670C0C66A ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
18:23:49.0058 5356  iPod Service - ok
18:23:49.0084 5356  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
18:23:49.0087 5356  IRENUM - ok
18:23:49.0097 5356  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
18:23:49.0099 5356  isapnp - ok
18:23:49.0116 5356  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
18:23:49.0122 5356  iScsiPrt - ok
18:23:49.0138 5356  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
18:23:49.0141 5356  kbdclass - ok
18:23:49.0154 5356  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
18:23:49.0157 5356  kbdhid - ok
18:23:49.0163 5356  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
18:23:49.0165 5356  KeyIso - ok
18:23:49.0193 5356  [ E656FE10D6D27794AFA08136685A69E8 ] KL1             C:\Windows\system32\DRIVERS\kl1.sys
18:23:49.0200 5356  KL1 - ok
18:23:49.0214 5356  [ D865DD8B0448E3F963D68C04C532858F ] kl2             C:\Windows\system32\DRIVERS\kl2.sys
18:23:49.0216 5356  kl2 - ok
18:23:49.0245 5356  [ 8490798365236B6C8E54DEDD27A42D07 ] KLIF            C:\Windows\system32\DRIVERS\klif.sys
18:23:49.0265 5356  KLIF - ok
18:23:49.0294 5356  [ 9468D07E91BA136D82415F5DFC1FE168 ] klmouflt        C:\Windows\system32\DRIVERS\klmouflt.sys
18:23:49.0296 5356  klmouflt - ok
18:23:49.0324 5356  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
18:23:49.0326 5356  KSecDD - ok
18:23:49.0344 5356  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
18:23:49.0348 5356  KSecPkg - ok
18:23:49.0366 5356  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
18:23:49.0368 5356  ksthunk - ok
18:23:49.0400 5356  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
18:23:49.0407 5356  KtmRm - ok
18:23:49.0438 5356  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
18:23:49.0444 5356  LanmanServer - ok
18:23:49.0470 5356  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:23:49.0475 5356  LanmanWorkstation - ok
18:23:49.0509 5356  [ 7550D101BF49FDB1F92666A233EE36C4 ] LightScribeService C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
18:23:49.0541 5356  LightScribeService - ok
18:23:49.0566 5356  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
18:23:49.0569 5356  lltdio - ok
18:23:49.0602 5356  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
18:23:49.0609 5356  lltdsvc - ok
18:23:49.0625 5356  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
18:23:49.0628 5356  lmhosts - ok
18:23:49.0651 5356  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
18:23:49.0655 5356  LSI_FC - ok
18:23:49.0673 5356  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
18:23:49.0677 5356  LSI_SAS - ok
18:23:49.0707 5356  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:23:49.0709 5356  LSI_SAS2 - ok
18:23:49.0725 5356  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:23:49.0729 5356  LSI_SCSI - ok
18:23:49.0744 5356  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
18:23:49.0747 5356  luafv - ok
18:23:49.0770 5356  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
18:23:49.0774 5356  Mcx2Svc - ok
18:23:49.0803 5356  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
18:23:49.0806 5356  megasas - ok
18:23:49.0821 5356  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
18:23:49.0826 5356  MegaSR - ok
18:23:49.0895 5356  [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
18:23:49.0900 5356  Microsoft Office Groove Audit Service - ok
18:23:49.0935 5356  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
18:23:49.0942 5356  MMCSS - ok
18:23:49.0958 5356  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
18:23:49.0963 5356  Modem - ok
18:23:49.0977 5356  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
18:23:49.0980 5356  monitor - ok
18:23:50.0000 5356  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
18:23:50.0003 5356  mouclass - ok
18:23:50.0028 5356  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
18:23:50.0031 5356  mouhid - ok
18:23:50.0059 5356  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
18:23:50.0061 5356  mountmgr - ok
18:23:50.0082 5356  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
18:23:50.0086 5356  mpio - ok
18:23:50.0101 5356  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
18:23:50.0104 5356  mpsdrv - ok
18:23:50.0141 5356  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
18:23:50.0152 5356  MpsSvc - ok
18:23:50.0184 5356  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
18:23:50.0188 5356  MRxDAV - ok
18:23:50.0221 5356  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
18:23:50.0225 5356  mrxsmb - ok
18:23:50.0240 5356  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:23:50.0245 5356  mrxsmb10 - ok
18:23:50.0261 5356  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:23:50.0264 5356  mrxsmb20 - ok
18:23:50.0279 5356  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
18:23:50.0281 5356  msahci - ok
18:23:50.0304 5356  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
18:23:50.0307 5356  msdsm - ok
18:23:50.0321 5356  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
18:23:50.0326 5356  MSDTC - ok
18:23:50.0385 5356  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
18:23:50.0390 5356  Msfs - ok
18:23:50.0422 5356  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
18:23:50.0426 5356  mshidkmdf - ok
18:23:50.0453 5356  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
18:23:50.0456 5356  msisadrv - ok
18:23:50.0503 5356  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
18:23:50.0511 5356  MSiSCSI - ok
18:23:50.0525 5356  msiserver - ok
18:23:50.0557 5356  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
18:23:50.0560 5356  MSKSSRV - ok
18:23:50.0572 5356  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
18:23:50.0575 5356  MSPCLOCK - ok
18:23:50.0583 5356  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
18:23:50.0585 5356  MSPQM - ok
18:23:50.0619 5356  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
18:23:50.0624 5356  MsRPC - ok
18:23:50.0642 5356  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
18:23:50.0644 5356  mssmbios - ok
18:23:50.0659 5356  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
18:23:50.0661 5356  MSTEE - ok
18:23:50.0673 5356  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
18:23:50.0675 5356  MTConfig - ok
18:23:50.0694 5356  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
18:23:50.0696 5356  Mup - ok
18:23:50.0730 5356  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
18:23:50.0738 5356  napagent - ok
18:23:50.0757 5356  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
18:23:50.0763 5356  NativeWifiP - ok
18:23:50.0816 5356  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
18:23:50.0827 5356  NDIS - ok
18:23:50.0852 5356  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
18:23:50.0854 5356  NdisCap - ok
18:23:50.0868 5356  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
18:23:50.0871 5356  NdisTapi - ok
18:23:50.0898 5356  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
18:23:50.0901 5356  Ndisuio - ok
18:23:50.0928 5356  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
18:23:50.0932 5356  NdisWan - ok
18:23:50.0958 5356  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
18:23:50.0961 5356  NDProxy - ok
18:23:51.0008 5356  [ 2334DC48997BA203B794DF3EE70521DB ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
18:23:51.0022 5356  Net Driver HPZ12 - ok
18:23:51.0032 5356  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
18:23:51.0034 5356  NetBIOS - ok
18:23:51.0067 5356  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
18:23:51.0071 5356  NetBT - ok
18:23:51.0090 5356  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
18:23:51.0092 5356  Netlogon - ok
18:23:51.0121 5356  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
18:23:51.0128 5356  Netman - ok
18:23:51.0150 5356  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
18:23:51.0158 5356  netprofm - ok
18:23:51.0192 5356  [ B72BB9496A126FCFC7FC5945DED9B411 ] netr28x         C:\Windows\system32\DRIVERS\netr28x.sys
18:23:51.0200 5356  netr28x - ok
18:23:51.0225 5356  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:23:51.0228 5356  NetTcpPortSharing - ok
18:23:51.0359 5356  [ 64428DFDAF6E88366CB51F45A79C5F69 ] netw5v64        C:\Windows\system32\DRIVERS\netw5v64.sys
18:23:51.0422 5356  netw5v64 - ok
18:23:51.0441 5356  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
18:23:51.0443 5356  nfrd960 - ok
18:23:51.0460 5356  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
18:23:51.0466 5356  NlaSvc - ok
18:23:51.0483 5356  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
18:23:51.0486 5356  Npfs - ok
18:23:51.0513 5356  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
18:23:51.0516 5356  nsi - ok
18:23:51.0531 5356  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
18:23:51.0532 5356  nsiproxy - ok
18:23:51.0611 5356  [ B8965FB53551B5455630A4B804D0791F ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
18:23:51.0634 5356  Ntfs - ok
18:23:51.0668 5356  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
18:23:51.0671 5356  Null - ok
18:23:51.0700 5356  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
18:23:51.0703 5356  nvraid - ok
18:23:51.0717 5356  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
18:23:51.0721 5356  nvstor - ok
18:23:51.0732 5356  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
18:23:51.0735 5356  nv_agp - ok
18:23:51.0778 5356  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
18:23:51.0785 5356  odserv - ok
18:23:51.0794 5356  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
18:23:51.0797 5356  ohci1394 - ok
18:23:51.0826 5356  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:23:51.0829 5356  ose - ok
18:23:51.0987 5356  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
18:23:52.0048 5356  osppsvc - ok
18:23:52.0084 5356  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
18:23:52.0091 5356  p2pimsvc - ok
18:23:52.0115 5356  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
18:23:52.0122 5356  p2psvc - ok
18:23:52.0144 5356  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
18:23:52.0147 5356  Parport - ok
18:23:52.0181 5356  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
18:23:52.0183 5356  partmgr - ok
18:23:52.0212 5356  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
18:23:52.0219 5356  PcaSvc - ok
18:23:52.0235 5356  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
18:23:52.0238 5356  pci - ok
18:23:52.0261 5356  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
18:23:52.0263 5356  pciide - ok
18:23:52.0291 5356  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
18:23:52.0296 5356  pcmcia - ok
18:23:52.0321 5356  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
18:23:52.0323 5356  pcw - ok
18:23:52.0354 5356  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
18:23:52.0362 5356  PEAUTH - ok
18:23:52.0460 5356  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
18:23:52.0463 5356  PerfHost - ok
18:23:52.0537 5356  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
18:23:52.0560 5356  pla - ok
18:23:52.0603 5356  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
18:23:52.0610 5356  PlugPlay - ok
18:23:52.0667 5356  [ AC78DF349F0E4CFB8B667C0CFFF83CCE ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
18:23:52.0697 5356  Pml Driver HPZ12 - ok
18:23:52.0717 5356  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
18:23:52.0721 5356  PNRPAutoReg - ok
18:23:52.0743 5356  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
18:23:52.0748 5356  PNRPsvc - ok
18:23:52.0773 5356  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
18:23:52.0781 5356  PolicyAgent - ok
18:23:52.0812 5356  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
18:23:52.0817 5356  Power - ok
18:23:52.0843 5356  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
18:23:52.0847 5356  PptpMiniport - ok
18:23:52.0870 5356  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
18:23:52.0873 5356  Processor - ok
18:23:52.0903 5356  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
18:23:52.0908 5356  ProfSvc - ok
18:23:52.0923 5356  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
18:23:52.0925 5356  ProtectedStorage - ok
18:23:52.0950 5356  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
18:23:52.0952 5356  Psched - ok
18:23:52.0997 5356  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
18:23:53.0015 5356  ql2300 - ok
18:23:53.0029 5356  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
18:23:53.0032 5356  ql40xx - ok
18:23:53.0059 5356  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
18:23:53.0065 5356  QWAVE - ok
18:23:53.0083 5356  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
18:23:53.0085 5356  QWAVEdrv - ok
18:23:53.0099 5356  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
18:23:53.0101 5356  RasAcd - ok
18:23:53.0120 5356  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
18:23:53.0122 5356  RasAgileVpn - ok
18:23:53.0135 5356  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
18:23:53.0140 5356  RasAuto - ok
18:23:53.0168 5356  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
18:23:53.0171 5356  Rasl2tp - ok
18:23:53.0202 5356  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
18:23:53.0209 5356  RasMan - ok
18:23:53.0238 5356  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
18:23:53.0242 5356  RasPppoe - ok
18:23:53.0259 5356  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
18:23:53.0262 5356  RasSstp - ok
18:23:53.0291 5356  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
18:23:53.0296 5356  rdbss - ok
18:23:53.0322 5356  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
18:23:53.0325 5356  rdpbus - ok
18:23:53.0345 5356  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
18:23:53.0347 5356  RDPCDD - ok
18:23:53.0364 5356  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
18:23:53.0365 5356  RDPENCDD - ok
18:23:53.0380 5356  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
18:23:53.0381 5356  RDPREFMP - ok
18:23:53.0421 5356  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
18:23:53.0430 5356  RDPWD - ok
18:23:53.0479 5356  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
18:23:53.0486 5356  rdyboost - ok
18:23:53.0524 5356  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
18:23:53.0528 5356  RemoteAccess - ok
18:23:53.0556 5356  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
18:23:53.0561 5356  RemoteRegistry - ok
18:23:53.0586 5356  [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
18:23:53.0590 5356  RFCOMM - ok
18:23:53.0632 5356  [ AD42432D22940B4215177BE113E4919C ] RimUsb          C:\Windows\system32\Drivers\RimUsb_AMD64.sys
18:23:53.0636 5356  RimUsb - ok
18:23:53.0676 5356  [ 4AAFFFA67AC4DFA3D9985D78573887E2 ] RimVSerPort     C:\Windows\system32\DRIVERS\RimSerial_AMD64.sys
18:23:53.0679 5356  RimVSerPort - ok
18:23:53.0705 5356  [ 388D3DD1A6457280F3BADBA9F3ACD6B1 ] ROOTMODEM       C:\Windows\system32\Drivers\RootMdm.sys
18:23:53.0707 5356  ROOTMODEM - ok
18:23:53.0722 5356  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
18:23:53.0727 5356  RpcEptMapper - ok
18:23:53.0745 5356  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
18:23:53.0749 5356  RpcLocator - ok
18:23:53.0781 5356  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
18:23:53.0788 5356  RpcSs - ok
18:23:53.0804 5356  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
18:23:53.0807 5356  rspndr - ok
18:23:53.0835 5356  [ 483DF0B58CA532E5240E59DC41F30AA2 ] RSUSBSTOR       C:\Windows\system32\Drivers\RtsUStor.sys
18:23:53.0840 5356  RSUSBSTOR - ok
18:23:53.0872 5356  [ EE082E06A82FF630351D1E0EBBD3D8D0 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
18:23:53.0887 5356  RTL8167 - ok
18:23:53.0910 5356  [ FEBFB5730E12F62CA38F86A066E7348D ] RtVOsdService   C:\Program Files\Realtek\RtVOsd\RtVOsdService.exe
18:23:54.0139 5356  RtVOsdService - ok
18:23:54.0147 5356  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
18:23:54.0149 5356  SamSs - ok
18:23:54.0196 5356  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
18:23:54.0199 5356  sbp2port - ok
18:23:54.0223 5356  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
18:23:54.0228 5356  SCardSvr - ok
18:23:54.0255 5356  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
18:23:54.0258 5356  scfilter - ok
18:23:54.0299 5356  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
18:23:54.0315 5356  Schedule - ok
18:23:54.0350 5356  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
18:23:54.0352 5356  SCPolicySvc - ok
18:23:54.0373 5356  [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus           C:\Windows\system32\drivers\sdbus.sys
18:23:54.0377 5356  sdbus - ok
18:23:54.0400 5356  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
18:23:54.0405 5356  SDRSVC - ok
18:23:54.0435 5356  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
18:23:54.0438 5356  secdrv - ok
18:23:54.0484 5356  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
18:23:54.0487 5356  seclogon - ok
18:23:54.0505 5356  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
18:23:54.0509 5356  SENS - ok
18:23:54.0529 5356  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
18:23:54.0533 5356  SensrSvc - ok
18:23:54.0550 5356  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
18:23:54.0553 5356  Serenum - ok
18:23:54.0581 5356  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
18:23:54.0585 5356  Serial - ok
18:23:54.0603 5356  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
18:23:54.0605 5356  sermouse - ok
18:23:54.0649 5356  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
18:23:54.0653 5356  SessionEnv - ok
18:23:54.0676 5356  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
18:23:54.0678 5356  sffdisk - ok
18:23:54.0692 5356  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
18:23:54.0694 5356  sffp_mmc - ok
18:23:54.0707 5356  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
18:23:54.0709 5356  sffp_sd - ok
18:23:54.0726 5356  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
18:23:54.0728 5356  sfloppy - ok
18:23:54.0765 5356  [ C6CC9297BD53E5229653303E556AA539 ] Sftfs           C:\Windows\system32\DRIVERS\Sftfslh.sys
18:23:54.0785 5356  Sftfs - ok
18:23:54.0840 5356  [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist         C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
18:23:54.0847 5356  sftlist - ok
18:23:54.0871 5356  [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay         C:\Windows\system32\DRIVERS\Sftplaylh.sys
18:23:54.0875 5356  Sftplay - ok
18:23:54.0893 5356  [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir        C:\Windows\system32\DRIVERS\Sftredirlh.sys
18:23:54.0895 5356  Sftredir - ok
18:23:54.0905 5356  [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol          C:\Windows\system32\DRIVERS\Sftvollh.sys
18:23:54.0907 5356  Sftvol - ok
18:23:54.0929 5356  [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa          C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
18:23:54.0933 5356  sftvsa - ok
18:23:54.0974 5356  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
18:23:54.0985 5356  SharedAccess - ok
18:23:55.0035 5356  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:23:55.0043 5356  ShellHWDetection - ok
18:23:55.0071 5356  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:23:55.0074 5356  SiSRaid2 - ok
18:23:55.0100 5356  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
18:23:55.0103 5356  SiSRaid4 - ok
18:23:55.0136 5356  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
18:23:55.0139 5356  Smb - ok
18:23:55.0177 5356  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
18:23:55.0181 5356  SNMPTRAP - ok
18:23:55.0196 5356  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
18:23:55.0198 5356  spldr - ok
18:23:55.0234 5356  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
18:23:55.0245 5356  Spooler - ok
18:23:55.0366 5356  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
18:23:55.0433 5356  sppsvc - ok
18:23:55.0449 5356  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
18:23:55.0453 5356  sppuinotify - ok
18:23:55.0483 5356  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
18:23:55.0491 5356  srv - ok
18:23:55.0513 5356  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
18:23:55.0519 5356  srv2 - ok
18:23:55.0555 5356  [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA       C:\Windows\system32\DRIVERS\VSTAZL6.SYS
18:23:55.0561 5356  SrvHsfHDA - ok
18:23:55.0597 5356  [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92       C:\Windows\system32\DRIVERS\VSTDPV6.SYS
18:23:55.0614 5356  SrvHsfV92 - ok
18:23:55.0640 5356  [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac     C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
18:23:55.0649 5356  SrvHsfWinac - ok
18:23:55.0673 5356  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
18:23:55.0677 5356  srvnet - ok
18:23:55.0705 5356  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
18:23:55.0711 5356  SSDPSRV - ok
18:23:55.0732 5356  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
18:23:55.0736 5356  SstpSvc - ok
18:23:55.0757 5356  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
18:23:55.0759 5356  stexstor - ok
18:23:55.0793 5356  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
18:23:55.0802 5356  stisvc - ok
18:23:55.0827 5356  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
18:23:55.0829 5356  swenum - ok
18:23:55.0851 5356  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
18:23:55.0859 5356  swprv - ok
18:23:55.0886 5356  [ AC3CC98B1BDB6540021D3FFB105AC2B9 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
18:23:55.0892 5356  SynTP - ok
18:23:55.0975 5356  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
18:23:56.0005 5356  SysMain - ok
18:23:56.0027 5356  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:23:56.0031 5356  TabletInputService - ok
18:23:56.0060 5356  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
18:23:56.0066 5356  TapiSrv - ok
18:23:56.0090 5356  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
18:23:56.0094 5356  TBS - ok
18:23:56.0163 5356  [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
18:23:56.0190 5356  Tcpip - ok
18:23:56.0223 5356  [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
18:23:56.0236 5356  TCPIP6 - ok
18:23:56.0275 5356  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
18:23:56.0278 5356  tcpipreg - ok
18:23:56.0311 5356  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
18:23:56.0314 5356  TDPIPE - ok
18:23:56.0337 5356  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
18:23:56.0340 5356  TDTCP - ok
18:23:56.0383 5356  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
18:23:56.0388 5356  tdx - ok
18:23:56.0436 5356  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
18:23:56.0441 5356  TermDD - ok
18:23:56.0495 5356  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
18:23:56.0515 5356  TermService - ok
18:23:56.0544 5356  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
18:23:56.0548 5356  Themes - ok
18:23:56.0578 5356  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
18:23:56.0580 5356  THREADORDER - ok
18:23:56.0606 5356  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
18:23:56.0611 5356  TrkWks - ok
18:23:56.0664 5356  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:23:56.0669 5356  TrustedInstaller - ok
18:23:56.0716 5356  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
18:23:56.0720 5356  tssecsrv - ok
18:23:56.0748 5356  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
18:23:56.0751 5356  TsUsbFlt - ok
18:23:56.0780 5356  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
18:23:56.0783 5356  tunnel - ok
18:23:56.0804 5356  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
18:23:56.0807 5356  uagp35 - ok
18:23:56.0839 5356  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
18:23:56.0845 5356  udfs - ok
18:23:56.0874 5356  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
18:23:56.0878 5356  UI0Detect - ok
18:23:56.0893 5356  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
18:23:56.0896 5356  uliagpkx - ok
18:23:56.0923 5356  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
18:23:56.0925 5356  umbus - ok
18:23:56.0949 5356  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
18:23:56.0951 5356  UmPass - ok
18:23:56.0985 5356  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
18:23:56.0992 5356  upnphost - ok
18:23:57.0019 5356  [ AF1B9474D67897D0C2CFF58E0ACEACCC ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
18:23:57.0031 5356  USBAAPL64 - ok
18:23:57.0060 5356  [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
18:23:57.0063 5356  usbaudio - ok
18:23:57.0078 5356  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
18:23:57.0081 5356  usbccgp - ok
18:23:57.0101 5356  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
18:23:57.0105 5356  usbcir - ok
18:23:57.0125 5356  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
18:23:57.0127 5356  usbehci - ok
18:23:57.0152 5356  [ 2C780746DC44A28FE67004DC58173F05 ] usbfilter       C:\Windows\system32\DRIVERS\usbfilter.sys
18:23:57.0155 5356  usbfilter - ok
18:23:57.0174 5356  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
18:23:57.0180 5356  usbhub - ok
18:23:57.0195 5356  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
18:23:57.0198 5356  usbohci - ok
18:23:57.0223 5356  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
18:23:57.0226 5356  usbprint - ok
18:23:57.0249 5356  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
18:23:57.0251 5356  usbscan - ok
18:23:57.0270 5356  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:23:57.0273 5356  USBSTOR - ok
18:23:57.0291 5356  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
18:23:57.0294 5356  usbuhci - ok
18:23:57.0315 5356  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
18:23:57.0319 5356  usbvideo - ok
18:23:57.0349 5356  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
18:23:57.0354 5356  UxSms - ok
18:23:57.0374 5356  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
18:23:57.0377 5356  VaultSvc - ok
18:23:57.0388 5356  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
18:23:57.0391 5356  vdrvroot - ok
18:23:57.0428 5356  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
18:23:57.0437 5356  vds - ok
18:23:57.0462 5356  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
18:23:57.0464 5356  vga - ok
18:23:57.0478 5356  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
18:23:57.0481 5356  VgaSave - ok
18:23:57.0512 5356  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
18:23:57.0516 5356  vhdmp - ok
18:23:57.0537 5356  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
18:23:57.0539 5356  viaide - ok
18:23:57.0558 5356  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
18:23:57.0561 5356  volmgr - ok
18:23:57.0591 5356  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
18:23:57.0597 5356  volmgrx - ok
18:23:57.0616 5356  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
18:23:57.0621 5356  volsnap - ok
18:23:57.0645 5356  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
18:23:57.0649 5356  vsmraid - ok
18:23:57.0699 5356  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
18:23:57.0719 5356  VSS - ok
18:23:57.0735 5356  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
18:23:57.0737 5356  vwifibus - ok
18:23:57.0758 5356  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
18:23:57.0760 5356  vwififlt - ok
18:23:57.0772 5356  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
18:23:57.0774 5356  vwifimp - ok
18:23:57.0806 5356  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
18:23:57.0813 5356  W32Time - ok
18:23:57.0842 5356  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
18:23:57.0844 5356  WacomPen - ok
18:23:57.0861 5356  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
18:23:57.0864 5356  WANARP - ok
18:23:57.0872 5356  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
18:23:57.0874 5356  Wanarpv6 - ok
18:23:57.0937 5356  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
18:23:57.0957 5356  WatAdminSvc - ok
18:23:58.0026 5356  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
18:23:58.0052 5356  wbengine - ok
18:23:58.0076 5356  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
18:23:58.0081 5356  WbioSrvc - ok
18:23:58.0112 5356  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
18:23:58.0119 5356  wcncsvc - ok
18:23:58.0137 5356  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:23:58.0141 5356  WcsPlugInService - ok
18:23:58.0162 5356  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
18:23:58.0164 5356  Wd - ok
18:23:58.0194 5356  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
18:23:58.0204 5356  Wdf01000 - ok
18:23:58.0227 5356  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
18:23:58.0232 5356  WdiServiceHost - ok
18:23:58.0240 5356  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
18:23:58.0244 5356  WdiSystemHost - ok
18:23:58.0271 5356  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
18:23:58.0278 5356  WebClient - ok
18:23:58.0299 5356  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
18:23:58.0305 5356  Wecsvc - ok
18:23:58.0323 5356  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
18:23:58.0327 5356  wercplsupport - ok
18:23:58.0345 5356  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
18:23:58.0349 5356  WerSvc - ok
18:23:58.0449 5356  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
18:23:58.0453 5356  WfpLwf - ok
18:23:58.0476 5356  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
18:23:58.0478 5356  WIMMount - ok
18:23:58.0523 5356  WinDefend - ok
18:23:58.0553 5356  WinHttpAutoProxySvc - ok
18:23:58.0603 5356  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
18:23:58.0608 5356  Winmgmt - ok
18:23:58.0671 5356  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
18:23:58.0701 5356  WinRM - ok
18:23:58.0759 5356  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
18:23:58.0762 5356  WinUsb - ok
18:23:58.0809 5356  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
18:23:58.0821 5356  Wlansvc - ok
18:23:58.0926 5356  [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:23:58.0952 5356  wlidsvc - ok
18:23:58.0981 5356  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
18:23:58.0983 5356  WmiAcpi - ok
18:23:59.0022 5356  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
18:23:59.0028 5356  wmiApSrv - ok
18:23:59.0071 5356  WMPNetworkSvc - ok
18:23:59.0102 5356  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
18:23:59.0111 5356  WPCSvc - ok
18:23:59.0139 5356  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
18:23:59.0143 5356  WPDBusEnum - ok
18:23:59.0163 5356  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
18:23:59.0165 5356  ws2ifsl - ok
18:23:59.0192 5356  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
18:23:59.0196 5356  wscsvc - ok
18:23:59.0205 5356  WSearch - ok
18:23:59.0296 5356  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
18:23:59.0325 5356  wuauserv - ok
18:23:59.0362 5356  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
18:23:59.0366 5356  WudfPf - ok
18:23:59.0386 5356  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
18:23:59.0390 5356  WUDFRd - ok
18:23:59.0416 5356  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
18:23:59.0420 5356  wudfsvc - ok
18:23:59.0441 5356  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
18:23:59.0447 5356  WwanSvc - ok
18:23:59.0474 5356  [ B3EEACF62445E24FBB2CD4B0FB4DB026 ] yukonw7         C:\Windows\system32\DRIVERS\yk62x64.sys
18:23:59.0481 5356  yukonw7 - ok
18:23:59.0517 5356  ================ Scan global ===============================
18:23:59.0555 5356  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
18:23:59.0586 5356  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
18:23:59.0598 5356  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
18:23:59.0623 5356  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
18:23:59.0650 5356  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
18:23:59.0656 5356  [Global] - ok
18:23:59.0657 5356  ================ Scan MBR ==================================
18:23:59.0670 5356  [ 4BAA08B1FB083525D6846A6D50D6BD60 ] \Device\Harddisk0\DR0
18:23:59.0911 5356  \Device\Harddisk0\DR0 - ok
18:23:59.0918 5356  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR1
18:24:00.0308 5356  \Device\Harddisk1\DR1 - ok
18:24:00.0316 5356  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk2\DR2
18:24:00.0362 5356  \Device\Harddisk2\DR2 - ok
18:24:00.0362 5356  ================ Scan VBR ==================================
18:24:00.0365 5356  [ B78692AE60735F706185AA441FA23C63 ] \Device\Harddisk0\DR0\Partition1
18:24:00.0369 5356  \Device\Harddisk0\DR0\Partition1 - ok
18:24:00.0394 5356  [ CCC75576BFFB08DEDAA27A79659F0E0D ] \Device\Harddisk0\DR0\Partition2
18:24:00.0396 5356  \Device\Harddisk0\DR0\Partition2 - ok
18:24:00.0425 5356  [ 07EBE3B24CF4B5B066F73B16F81BD23F ] \Device\Harddisk0\DR0\Partition3
18:24:00.0428 5356  \Device\Harddisk0\DR0\Partition3 - ok
18:24:00.0448 5356  [ DD2C024857FE75F5C7665F2C8DA26085 ] \Device\Harddisk0\DR0\Partition4
18:24:00.0449 5356  \Device\Harddisk0\DR0\Partition4 - ok
18:24:00.0513 5356  [ 44920DB66203A4DF1408DC6C1E11EBA9 ] \Device\Harddisk1\DR1\Partition1
18:24:00.0516 5356  \Device\Harddisk1\DR1\Partition1 - ok
18:24:00.0526 5356  [ 26ECFEB2ACB393D55090D9D5BFA7EEDC ] \Device\Harddisk2\DR2\Partition1
18:24:00.0530 5356  \Device\Harddisk2\DR2\Partition1 - ok
18:24:00.0531 5356  ============================================================
18:24:00.0531 5356  Scan finished
18:24:00.0531 5356  ============================================================
18:24:00.0559 4704  Detected object count: 0
18:24:00.0559 4704  Actual detected object count: 0


#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,906 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:12 PM

Posted 18 April 2013 - 01:23 PM

How is it running after ESET?.. We need to fix a couple things yet.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 julie35

julie35
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:01:12 AM

Posted 18 April 2013 - 04:24 PM

Sorry for the delay, I had to go out.
 
Here's the ADWCleaner log, I'll run the other one that you mentioned next.
 
 
 
# AdwCleaner v2.200 - Logfile created 04/18/2013 at 18:32:05
# Updated 02/04/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : tesco - JULIE-HP
# Boot Mode : Normal
# Running from : C:\Users\tesco\Desktop\AdwCleaner.exe
# Option [Delete]
 
 
***** [Services] *****
 
Stopped & Deleted : Browser Manager
 
***** [Files / Folders] *****
 
Deleted on reboot : C:\ProgramData\Browser Manager
File Deleted : C:\user.js
File Deleted : C:\Users\tesco\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data
File Deleted : C:\Users\tesco\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
Folder Deleted : C:\Program Files (x86)\Free Offers from Freeze.com
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\Users\Homework\AppData\LocalLow\Search Settings
Folder Deleted : C:\Users\tesco\AppData\Local\Ilivid Player
Folder Deleted : C:\Users\tesco\AppData\Local\PackageAware
Folder Deleted : C:\Users\tesco\AppData\LocalLow\BabylonToolbar
Folder Deleted : C:\Users\tesco\AppData\Roaming\Babylon
Folder Deleted : C:\Users\tesco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Browser Manager
 
***** [Registry] *****
 
Data Deleted : HKLM\..\Windows [AppInit_DLLs] = c:\progra~3\browse~1\261125~1.80\{16cdf~1\browse~1.dll
Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong
Key Deleted : HKCU\Software\BrowserMngr
Key Deleted : HKCU\Software\DataMngr
Key Deleted : HKCU\Software\DataMngr_Toolbar
Key Deleted : HKCU\Software\ilivid
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Deleted : HKCU\Software\957d88ab43abd12
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\Software\BrowserMngr
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Deleted : HKLM\SOFTWARE\Classes\Applications\ilividsetupv1.exe
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\Software\DataMngr
Key Deleted : HKLM\Software\Freeze.com
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetupV1_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetupV1_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\957d88ab43abd12
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\pgafcinpmmpklohkojmllohdhomoefph
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
Key Deleted : HKU\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : HKU\S-1-5-21-3676548519-3249346600-1507408620-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [BrowserMngrDefaultScope]
Value Deleted : HKCU\Software\Mozilla\Firefox\Extensions [{0F827075-B026-42F3-885D-98981EE7B1AE}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{98889811-442D-49DD-99D7-DC866BE87DBC}]
 
***** [Internet Browsers] *****
 
-\\ Internet Explorer v9.0.8112.16476
 
Replaced : [HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls - Tabs] = hxxp://search.babylon.com/?affID=115589&tt=120912_cpc_3812_2&babsrc=NT_ss&mntrId=ba6c06ac00000000000070f395ab7560 --> hxxp://www.google.com
 
-\\ Google Chrome v26.0.1410.64
 
File : C:\Users\tesco\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
Deleted [l.2587] : homepage = "hxxp://search.babylon.com/?affID=115589&tt=120912_cpc_3812_2&babsrc=HP_ss&mntrId=ba6[...]
Deleted [l.3284] : urls_to_restore_on_startup = [ "hxxp://search.babylon.com/?affID=115589&tt=120912_cpc_3812_2&[...]
 
*************************
 
AdwCleaner[S1].txt - [5533 octets] - [18/04/2013 18:32:05]
 
########## EOF - C:\AdwCleaner[S1].txt - [5593 octets] ##########


#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,906 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:12 PM

Posted 18 April 2013 - 07:00 PM

OK, whenever is fine.

 

Did they ask you to do something like this...

To create a .reg file, follow these steps:
1. To start the Registry Editor, click Start, type Regedit, and then press Enter.
2. To configure search engines for individual users, select HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes. To configure search engines for all users on a computer, select HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes.
3. Select Export from the File menu. Save the .reg file.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 julie35

julie35
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:01:12 AM

Posted 18 April 2013 - 07:25 PM

Final scan result.....

 

 

 

C:\Users\All Users\Browser Manager\2.6.1125.80\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe a variant of Win32/bProtector.A application
C:\Users\All Users\Browser Manager\2.6.1125.80\{16cdff19-861d-48e3-a751-d99a27784753}\uninstall.exe a variant of Win32/bProtector.A application
C:\Users\All Users\Browser Manager\2.6.1125.80\{16cdff19-861d-48e3-a751-d99a27784753}\FirefoxExtension\content\browsemngr.js Win32/bProtector.F application
C:\ProgramData\Browser Manager\2.6.1125.80\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe a variant of Win32/bProtector.A application cleaned by deleting - quarantined
C:\ProgramData\Browser Manager\2.6.1125.80\{16cdff19-861d-48e3-a751-d99a27784753}\uninstall.exe a variant of Win32/bProtector.A application cleaned by deleting - quarantined
C:\ProgramData\Browser Manager\2.6.1125.80\{16cdff19-861d-48e3-a751-d99a27784753}\FirefoxExtension\content\browsemngr.js Win32/bProtector.F application cleaned by deleting - quarantined
C:\Users\tesco\Downloads\asc-setup.exe a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Users\tesco\Downloads\DownloadManagerSetup.exe a variant of Win32/InstallCore.AY application cleaned by deleting - quarantined
C:\Users\tesco\Downloads\movie_player_1280.exe a variant of Win32/InstallIQ application cleaned by deleting - quarantined
C:\Users\tesco\Downloads\musicoasis.exe a variant of Win32/InstallIQ application cleaned by deleting - quarantined
C:\Users\tesco\Downloads\Setup (1).exe a variant of Win32/Adware.iBryte.D application cleaned by deleting - quarantined
C:\Users\tesco\Downloads\setup.exe a variant of Win32/AirAdInstaller.A application cleaned by deleting - quarantined
C:\Users\tesco\Downloads\windows media player setup.exe a variant of Win32/Soft32Downloader.C application cleaned by deleting - quarantined
C:\Users\tesco\Downloads\winzip155.exe Win32/OpenCandy application deleted - quarantined
 

The "technician" on the phone didn't ask me to do anything apart from allowing remote access, I have no idea what he was doing once he was in - it was all too fast for me to follow. he ran a scan and said there were almost 12000 problems that needed fixing and asked for money. He was also asking if I use the pc for internet banking. It sounded suspicious and I got rid of him as fast as I could. I just want to make sure my personal info and my pc aren't at risk.

 

Thanks for the help so far btw :-)



#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,906 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:12 PM

Posted 18 April 2013 - 09:15 PM

You're very welcome!! From the minitool log errors/

 

glinx.exe is a process from GameHouse, Inc.. It can be found in the location of C:\Windows\System32. It is a potential security risk which can be modified maliciously by a virus. It should be disabled and removed. Unless you play those games.

 

While you are in the control panel.. Uninstaller...remove these Old versions, can be exploited by malware.

 

Adobe Reader 9.5.4 MUI (Version: 9.5.4)

Java™ 6 Update 20 (64-bit) (Version: 6.0.200)
Java™ 6 Update 29 (Version: 6.0.290)
JavaFX 2.1.0 (Version: 2.1.0)
 
Reboot
 
Install Adobe Reader XI

 

 

It looks good now..

Run these to clean the Temp folder and remove tracking cookies.

You should make sure you have your passwords written down first as you may need to Log in to some sites again after.

.

 

Please download TFC (Temp File Cleaner) by Old Timer and save it to your desktop.
alternate download link

  • Save any unsaved work. TFC will close ALL open programs including your browser!
  • Double-click on TFC.exe to run it. If you are using Vista, right-click on the file and choose Run As Administrator.
  • Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
  • TFC will clear out all temp folders for all user accounts (temp, IE temp, Java, FF, Opera, Chrome, Safari), including Administrator, All Users, LocalService, NetworkService, and any other accounts in the user folder.
  • Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway to ensure a complete clean.
Note: It is normal for the computer to be slow to boot after running TFC cleaner the first time.

 

 

 

 


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,906 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:12 PM

Posted 18 April 2013 - 09:17 PM

Forgot SAS...
 
Please download and scan with SUPERAntiSpyware Free
  • Double-click SUPERAntiSypware.exe and use the default settings for installation. For instructions with screenshots, please refer to the How to use SUPERAntiSpyware to scan and remove malware from your computer Guide.
  • An icon will be created on your desktop. Double-click that icon to launch the program.
  • If it will not start, go to Start > All Prgrams > SUPERAntiSpyware and click on Alternate Start.
  • If asked to update the program definitions, click "Yes". If not, update the definitions before scanning by selecting "Check for Updates". (If you encounter any problems while downloading the updates, manually download them from here. Double-click on the hyperlink for Download Installer and save SASDEFINITIONS.EXE to your desktop. Then double-click on SASDEFINITIONS.EXE to install the definitions.
  • )
  • In the Main Menu, click the Preferences... button.
  • Click the "General and Startup" tab, and under Start-up Options, make sure "Start SUPERAntiSpyware when Windows starts" box is unchecked.
  • Click the "Scanning Control" tab, and under Scanner Options, make sure the following are checked (leave all other options as they are set):
    • Close browsers before scanning.
    • Scan for tracking cookies.
    • Terminate memory threats before quarantining.
  • Click the "Close" button to leave the Control Center screen.
    • Back on the main screen, under "Select Scan Type" check the box for Complete Scan.
    • If your computer is badly infected, be sure to check the box next to Enable Rescue Scan (Highly Infected Systems ONLY).
    • Click the Scan your computer... button.
    • After the scan is complete, a Scan Summary box will appear with potentially harmful items that were detected. Click "OK".
    • Make sure everything has a checkmark next to it and click "Next".
    • A notification will appear that "Quarantine and Removal is Complete". Click "OK" and then click the "Finish" button to return to the main menu.
    • If asked if you want to reboot, click "Yes" and reboot normally.
  • To retrieve the scan log after reboot, launch SUPERAntiSpyware again.
    • Click the View Scan Logs button at the bottom.
    • This will open the Scanner Logs Window.
    • Click on the log to highlight it and then click on View Selected Log to open it.
    • Copy and paste the scan log results in your next reply.
    -- Some types of malware will disable security tools. If SUPERAntiSpyware will not install, please refer to these instructions for using the SUPERAntiSpyware Installer. If SUPERAntiSpyware is already installed but will not run, then follow the instructions for using RUNSAS.EXE to launch the program.
I feel you are safe now.

Edited by boopme, 18 April 2013 - 09:18 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users