Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Google Hot Search Infection


  • Please log in to reply
11 replies to this topic

#1 redrain

redrain

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:04:04 PM

Posted 26 May 2013 - 10:14 PM

Hello new member here hoping to have a little assistance with a problem that rose to my attention today. I am have had this infection longer than that however since I rarely use google search, and instead just use the most visited tabs to vist my favorite websites with firefox. At the time of my posting I've already ran through a quick search with Avast before starting a full system scan with it, and MalwareBytes. While they might deal with the issue on their own it couldn't hurt to have someone else help me tackle the issue in the event my above steps fail to locate the infection on their own.



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,528 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:04 PM

Posted 26 May 2013 - 10:22 PM

Hello redrain, lets get a look.

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results.



Please download AdwCleaner by Xplode onto your desktop.
•Close all open programs and internet browsers.
•Double click on adwcleaner.exe to run the tool.
•Click on Delete.
•Confirm each time with Ok.
•You will be prompted to restart your computer. A text file will open after the restart.
•Please post the contents of that logfile with your next reply.
•You can find the logfile at C:\AdwCleaner[S1].txt as well.




Now I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
NOTE:Sometimes if ESET finds no infections it will not create a log.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 redrain

redrain
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:04:04 PM

Posted 27 May 2013 - 02:26 AM

Alright here all the results from all my scans along with a quick MalwareBytes scan, and I certainly hope it will help you out as my issue still seems to be clinging around as I post this.
 
 
# AdwCleaner v2.301 - Logfile created 05/27/2013 at 00:28:07
# Updated 16/05/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Cody - CODY-PC
# Boot Mode : Normal
# Running from : C:\Users\Cody\Downloads\AdwCleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

File Deleted : C:\END

***** [Registry] *****


***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16455

[OK] Registry is clean.

-\\ Mozilla Firefox v21.0 (en-US)

File : C:\Users\Cody\AppData\Roaming\Mozilla\Firefox\Profiles\xjgvr1p8.default\prefs.js

[OK] File is clean.

-\\ Google Chrome v27.0.1453.94

File : C:\Users\Cody\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [828 octets] - [27/05/2013 00:28:07]

########## EOF - C:\AdwCleaner[S1].txt - [887 octets] ##########









00:32:15.0482 3808  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
00:32:16.0808 3808  ============================================================
00:32:16.0808 3808  Current date / time: 2013/05/27 00:32:16.0808
00:32:16.0808 3808  SystemInfo:
00:32:16.0808 3808  
00:32:16.0808 3808  OS Version: 6.1.7601 ServicePack: 1.0
00:32:16.0808 3808  Product type: Workstation
00:32:16.0808 3808  ComputerName: CODY-PC
00:32:16.0808 3808  UserName: Cody
00:32:16.0808 3808  Windows directory: C:\Windows
00:32:16.0808 3808  System windows directory: C:\Windows
00:32:16.0808 3808  Running under WOW64
00:32:16.0808 3808  Processor architecture: Intel x64
00:32:16.0808 3808  Number of processors: 8
00:32:16.0808 3808  Page size: 0x1000
00:32:16.0808 3808  Boot type: Normal boot
00:32:16.0808 3808  ============================================================
00:32:18.0274 3808  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x990F5, SectorsPerTrack: 0x13, TracksPerCylinder: 0xA4, Type 'K0', Flags 0x00000040
00:32:18.0290 3808  ============================================================
00:32:18.0290 3808  \Device\Harddisk0\DR0:
00:32:18.0290 3808  MBR partitions:
00:32:18.0290 3808  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
00:32:18.0290 3808  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x746D3000
00:32:18.0290 3808  ============================================================
00:32:18.0337 3808  C: <-> \Device\Harddisk0\DR0\Partition2
00:32:18.0337 3808  ============================================================
00:32:18.0337 3808  Initialize success
00:32:18.0337 3808  ============================================================
00:32:27.0074 5128  ============================================================
00:32:27.0074 5128  Scan started
00:32:27.0074 5128  Mode: Manual; TDLFS;
00:32:27.0074 5128  ============================================================
00:32:29.0382 5128  ================ Scan system memory ========================
00:32:29.0382 5128  System memory - ok
00:32:29.0382 5128  ================ Scan services =============================
00:32:29.0804 5128  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
00:32:29.0804 5128  1394ohci - ok
00:32:29.0835 5128  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
00:32:29.0835 5128  ACPI - ok
00:32:29.0882 5128  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
00:32:29.0882 5128  AcpiPmi - ok
00:32:30.0038 5128  [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
00:32:30.0053 5128  AdobeARMservice - ok
00:32:30.0147 5128  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
00:32:30.0162 5128  adp94xx - ok
00:32:30.0194 5128  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
00:32:30.0209 5128  adpahci - ok
00:32:30.0225 5128  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
00:32:30.0240 5128  adpu320 - ok
00:32:30.0272 5128  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
00:32:30.0272 5128  AeLookupSvc - ok
00:32:30.0350 5128  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
00:32:30.0350 5128  AFD - ok
00:32:30.0381 5128  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
00:32:30.0381 5128  agp440 - ok
00:32:30.0381 5128  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
00:32:30.0381 5128  ALG - ok
00:32:30.0412 5128  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
00:32:30.0412 5128  aliide - ok
00:32:30.0428 5128  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
00:32:30.0428 5128  amdide - ok
00:32:30.0443 5128  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
00:32:30.0443 5128  AmdK8 - ok
00:32:30.0443 5128  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
00:32:30.0459 5128  AmdPPM - ok
00:32:30.0490 5128  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
00:32:30.0490 5128  amdsata - ok
00:32:30.0521 5128  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
00:32:30.0521 5128  amdsbs - ok
00:32:30.0537 5128  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
00:32:30.0537 5128  amdxata - ok
00:32:30.0537 5128  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
00:32:30.0552 5128  AppID - ok
00:32:30.0568 5128  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
00:32:30.0568 5128  AppIDSvc - ok
00:32:30.0615 5128  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo         C:\Windows\System32\appinfo.dll
00:32:30.0615 5128  Appinfo - ok
00:32:30.0724 5128  [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
00:32:30.0724 5128  Apple Mobile Device - ok
00:32:30.0755 5128  [ 6BE11AD81D4527D299F0CB5F3731AABC ] AppleCharger    C:\Windows\system32\DRIVERS\AppleCharger.sys
00:32:30.0755 5128  AppleCharger - ok
00:32:30.0771 5128  [ 95EF7247C50C7241FDAE39A9B3AFF4AE ] AppleChargerSrv C:\Windows\system32\AppleChargerSrv.exe
00:32:30.0771 5128  AppleChargerSrv - ok
00:32:30.0786 5128  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\drivers\arc.sys
00:32:30.0786 5128  arc - ok
00:32:30.0833 5128  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\drivers\arcsas.sys
00:32:30.0833 5128  arcsas - ok
00:32:30.0974 5128  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
00:32:31.0005 5128  aspnet_state - ok
00:32:31.0052 5128  [ B217378ED9A964E15346A67FEF609A17 ] aswFsBlk        C:\Windows\system32\drivers\aswFsBlk.sys
00:32:31.0052 5128  aswFsBlk - ok
00:32:31.0052 5128  [ E92635BB235B03ED03B17CBB59F77FA4 ] aswMonFlt       C:\Windows\system32\drivers\aswMonFlt.sys
00:32:31.0052 5128  aswMonFlt - ok
00:32:31.0067 5128  [ 8F90459AFB7FD4557D935CE639EF6110 ] aswRdr          C:\Windows\System32\Drivers\aswrdr2.sys
00:32:31.0067 5128  aswRdr - ok
00:32:31.0083 5128  [ DE6759B8D8E62BF0FFF2B05F05AFCEE6 ] aswRvrt         C:\Windows\system32\drivers\aswRvrt.sys
00:32:31.0083 5128  aswRvrt - ok
00:32:31.0108 5128  [ AB8B4D3136D18A20777036E0F0CFC5E1 ] aswSnx          C:\Windows\system32\drivers\aswSnx.sys
00:32:31.0108 5128  aswSnx - ok
00:32:31.0118 5128  [ 97D4D725BD32C965119E6C8E252F8C64 ] aswSP           C:\Windows\system32\drivers\aswSP.sys
00:32:31.0118 5128  aswSP - ok
00:32:31.0128 5128  [ D62C10D1829C65115111C160EA956260 ] aswTdi          C:\Windows\system32\drivers\aswTdi.sys
00:32:31.0128 5128  aswTdi - ok
00:32:31.0138 5128  [ 7E44C2684A6CA779B9D07CB4BD3F649D ] aswVmm          C:\Windows\system32\drivers\aswVmm.sys
00:32:31.0138 5128  aswVmm - ok
00:32:31.0158 5128  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
00:32:31.0158 5128  AsyncMac - ok
00:32:31.0248 5128  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
00:32:31.0248 5128  atapi - ok
00:32:31.0308 5128  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
00:32:31.0318 5128  AudioEndpointBuilder - ok
00:32:31.0328 5128  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
00:32:31.0328 5128  AudioSrv - ok
00:32:31.0378 5128  [ 41735B82DB57E4EBE9504EC400FD120E ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
00:32:31.0378 5128  avast! Antivirus - ok
00:32:31.0398 5128  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
00:32:31.0398 5128  AxInstSV - ok
00:32:31.0418 5128  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
00:32:31.0428 5128  b06bdrv - ok
00:32:31.0438 5128  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
00:32:31.0438 5128  b57nd60a - ok
00:32:31.0468 5128  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
00:32:31.0468 5128  BDESVC - ok
00:32:31.0478 5128  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
00:32:31.0478 5128  Beep - ok
00:32:31.0498 5128  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
00:32:31.0508 5128  BFE - ok
00:32:31.0538 5128  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
00:32:31.0548 5128  BITS - ok
00:32:31.0578 5128  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
00:32:31.0578 5128  blbdrive - ok
00:32:31.0678 5128  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
00:32:31.0678 5128  Bonjour Service - ok
00:32:31.0698 5128  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
00:32:31.0698 5128  bowser - ok
00:32:31.0718 5128  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
00:32:31.0718 5128  BrFiltLo - ok
00:32:31.0728 5128  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
00:32:31.0728 5128  BrFiltUp - ok
00:32:31.0768 5128  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
00:32:31.0768 5128  Browser - ok
00:32:31.0788 5128  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
00:32:31.0788 5128  Brserid - ok
00:32:31.0808 5128  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
00:32:31.0808 5128  BrSerWdm - ok
00:32:31.0818 5128  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
00:32:31.0818 5128  BrUsbMdm - ok
00:32:31.0828 5128  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
00:32:31.0828 5128  BrUsbSer - ok
00:32:31.0848 5128  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
00:32:31.0848 5128  BTHMODEM - ok
00:32:31.0878 5128  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
00:32:31.0878 5128  bthserv - ok
00:32:31.0888 5128  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
00:32:31.0888 5128  cdfs - ok
00:32:31.0918 5128  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
00:32:31.0918 5128  cdrom - ok
00:32:31.0938 5128  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
00:32:31.0938 5128  CertPropSvc - ok
00:32:31.0958 5128  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\drivers\circlass.sys
00:32:31.0958 5128  circlass - ok
00:32:31.0968 5128  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
00:32:31.0978 5128  CLFS - ok
00:32:32.0018 5128  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
00:32:32.0018 5128  clr_optimization_v2.0.50727_32 - ok
00:32:32.0058 5128  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
00:32:32.0058 5128  clr_optimization_v2.0.50727_64 - ok
00:32:32.0128 5128  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
00:32:32.0228 5128  clr_optimization_v4.0.30319_32 - ok
00:32:32.0248 5128  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
00:32:32.0318 5128  clr_optimization_v4.0.30319_64 - ok
00:32:32.0358 5128  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
00:32:32.0358 5128  CmBatt - ok
00:32:32.0368 5128  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
00:32:32.0368 5128  cmdide - ok
00:32:32.0388 5128  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
00:32:32.0388 5128  CNG - ok
00:32:32.0408 5128  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
00:32:32.0408 5128  Compbatt - ok
00:32:32.0418 5128  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
00:32:32.0418 5128  CompositeBus - ok
00:32:32.0428 5128  COMSysApp - ok
00:32:32.0438 5128  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
00:32:32.0438 5128  crcdisk - ok
00:32:32.0478 5128  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc        C:\Windows\system32\cryptsvc.dll
00:32:32.0478 5128  CryptSvc - ok
00:32:32.0498 5128  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
00:32:32.0508 5128  DcomLaunch - ok
00:32:32.0538 5128  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
00:32:32.0538 5128  defragsvc - ok
00:32:32.0598 5128  [ 2B9A817DC1BDAD9CE5495099B6A7136A ] Desura Install Service C:\Program Files (x86)\Common Files\Desura\desura_service.exe
00:32:32.0598 5128  Desura Install Service - ok
00:32:32.0618 5128  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
00:32:32.0618 5128  DfsC - ok
00:32:32.0648 5128  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
00:32:32.0648 5128  Dhcp - ok
00:32:32.0668 5128  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
00:32:32.0668 5128  discache - ok
00:32:32.0698 5128  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\drivers\disk.sys
00:32:32.0698 5128  Disk - ok
00:32:32.0718 5128  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
00:32:32.0718 5128  Dnscache - ok
00:32:32.0738 5128  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
00:32:32.0738 5128  dot3svc - ok
00:32:32.0748 5128  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
00:32:32.0748 5128  DPS - ok
00:32:32.0778 5128  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
00:32:32.0778 5128  drmkaud - ok
00:32:32.0798 5128  [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
00:32:32.0798 5128  DXGKrnl - ok
00:32:32.0808 5128  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
00:32:32.0818 5128  EapHost - ok
00:32:32.0858 5128  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\drivers\evbda.sys
00:32:32.0888 5128  ebdrv - ok
00:32:32.0918 5128  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
00:32:32.0918 5128  EFS - ok
00:32:32.0968 5128  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
00:32:32.0968 5128  ehRecvr - ok
00:32:32.0988 5128  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
00:32:32.0988 5128  ehSched - ok
00:32:33.0018 5128  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
00:32:33.0018 5128  elxstor - ok
00:32:33.0028 5128  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
00:32:33.0028 5128  ErrDev - ok
00:32:33.0058 5128  [ 84486624268E078255BC7AA47F0960BC ] etdrv           C:\Windows\etdrv.sys
00:32:33.0058 5128  etdrv - ok
00:32:33.0078 5128  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
00:32:33.0078 5128  EventSystem - ok
00:32:33.0098 5128  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
00:32:33.0098 5128  exfat - ok
00:32:33.0118 5128  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
00:32:33.0118 5128  fastfat - ok
00:32:33.0222 5128  [ 83158CA47591AF55A9759B5C648B0462 ] FastFreeConverterUpdt C:\Program Files (x86)\Fast Free Converter\FastFreeConverterUpdt.exe
00:32:33.0238 5128  FastFreeConverterUpdt - ok
00:32:33.0300 5128  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
00:32:33.0300 5128  Fax - ok
00:32:33.0347 5128  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\drivers\fdc.sys
00:32:33.0347 5128  fdc - ok
00:32:33.0362 5128  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
00:32:33.0362 5128  fdPHost - ok
00:32:33.0362 5128  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
00:32:33.0378 5128  FDResPub - ok
00:32:33.0394 5128  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
00:32:33.0394 5128  FileInfo - ok
00:32:33.0409 5128  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
00:32:33.0409 5128  Filetrace - ok
00:32:33.0425 5128  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
00:32:33.0425 5128  flpydisk - ok
00:32:33.0440 5128  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
00:32:33.0440 5128  FltMgr - ok
00:32:33.0472 5128  [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache       C:\Windows\system32\FntCache.dll
00:32:33.0472 5128  FontCache - ok
00:32:33.0503 5128  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
00:32:33.0503 5128  FontCache3.0.0.0 - ok
00:32:33.0518 5128  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
00:32:33.0518 5128  FsDepends - ok
00:32:33.0550 5128  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
00:32:33.0550 5128  Fs_Rec - ok
00:32:33.0565 5128  [ 1F7B25B858FA27015169FE95E54108ED ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
00:32:33.0581 5128  fvevol - ok
00:32:33.0596 5128  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
00:32:33.0596 5128  gagp30kx - ok
00:32:33.0628 5128  [ 7907E14F9BCF3A4689C9A74A1A873CB6 ] gdrv            C:\Windows\gdrv.sys
00:32:33.0628 5128  gdrv - ok
00:32:33.0674 5128  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
00:32:33.0690 5128  GEARAspiWDM - ok
00:32:33.0706 5128  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
00:32:33.0706 5128  gpsvc - ok
00:32:33.0752 5128  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
00:32:33.0752 5128  gupdate - ok
00:32:33.0752 5128  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
00:32:33.0752 5128  gupdatem - ok
00:32:33.0799 5128  [ 8126331FBD4ED29EB3B356F9C905064D ] GVTDrv64        C:\Windows\GVTDrv64.sys
00:32:33.0799 5128  GVTDrv64 - ok
00:32:33.0830 5128  [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi         C:\Windows\system32\DRIVERS\hamachi.sys
00:32:33.0830 5128  hamachi - ok
00:32:33.0846 5128  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
00:32:33.0846 5128  hcw85cir - ok
00:32:33.0877 5128  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
00:32:33.0877 5128  HdAudAddService - ok
00:32:33.0908 5128  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
00:32:33.0908 5128  HDAudBus - ok
00:32:33.0924 5128  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
00:32:33.0924 5128  HidBatt - ok
00:32:33.0940 5128  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
00:32:33.0940 5128  HidBth - ok
00:32:33.0955 5128  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\drivers\hidir.sys
00:32:33.0955 5128  HidIr - ok
00:32:33.0986 5128  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
00:32:33.0986 5128  hidserv - ok
00:32:34.0002 5128  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
00:32:34.0002 5128  HidUsb - ok
00:32:34.0049 5128  [ 34E95DE386032FD7F14C228DD8E1CDBF ] HiPatchService  C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
00:32:34.0049 5128  HiPatchService - ok
00:32:34.0064 5128  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
00:32:34.0064 5128  hkmsvc - ok
00:32:34.0080 5128  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
00:32:34.0080 5128  HomeGroupListener - ok
00:32:34.0111 5128  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
00:32:34.0111 5128  HomeGroupProvider - ok
00:32:34.0127 5128  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
00:32:34.0127 5128  HpSAMD - ok
00:32:34.0158 5128  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
00:32:34.0158 5128  HTTP - ok
00:32:34.0189 5128  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
00:32:34.0189 5128  hwpolicy - ok
00:32:34.0205 5128  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
00:32:34.0205 5128  i8042prt - ok
00:32:34.0236 5128  [ D7921D5A870B11CC1ADAB198A519D50A ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
00:32:34.0236 5128  iaStor - ok
00:32:34.0267 5128  [ 8FFF9083252C16FE3960173722605E9E ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
00:32:34.0267 5128  IAStorDataMgrSvc - ok
00:32:34.0298 5128  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
00:32:34.0314 5128  iaStorV - ok
00:32:34.0330 5128  [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
00:32:34.0330 5128  IDriverT - ok
00:32:34.0361 5128  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
00:32:34.0376 5128  idsvc - ok
00:32:34.0408 5128  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
00:32:34.0408 5128  iirsp - ok
00:32:34.0439 5128  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
00:32:34.0439 5128  IKEEXT - ok
00:32:34.0501 5128  [ 03076F51AF9F78A272CCCDE03E9340CE ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
00:32:34.0517 5128  IntcAzAudAddService - ok
00:32:34.0532 5128  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
00:32:34.0532 5128  intelide - ok
00:32:34.0548 5128  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
00:32:34.0548 5128  intelppm - ok
00:32:34.0564 5128  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
00:32:34.0564 5128  IPBusEnum - ok
00:32:34.0579 5128  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
00:32:34.0595 5128  IpFilterDriver - ok
00:32:34.0626 5128  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
00:32:34.0642 5128  iphlpsvc - ok
00:32:34.0673 5128  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
00:32:34.0673 5128  IPMIDRV - ok
00:32:34.0673 5128  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
00:32:34.0673 5128  IPNAT - ok
00:32:34.0751 5128  [ 4EFFC8FF6D349E971E94B1C670C0C66A ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
00:32:34.0751 5128  iPod Service - ok
00:32:34.0766 5128  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
00:32:34.0766 5128  IRENUM - ok
00:32:34.0798 5128  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
00:32:34.0798 5128  isapnp - ok
00:32:34.0829 5128  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
00:32:34.0829 5128  iScsiPrt - ok
00:32:34.0844 5128  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
00:32:34.0844 5128  kbdclass - ok
00:32:34.0860 5128  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
00:32:34.0860 5128  kbdhid - ok
00:32:34.0876 5128  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
00:32:34.0876 5128  KeyIso - ok
00:32:34.0891 5128  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
00:32:34.0891 5128  KSecDD - ok
00:32:34.0907 5128  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
00:32:34.0907 5128  KSecPkg - ok
00:32:34.0922 5128  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
00:32:34.0922 5128  ksthunk - ok
00:32:34.0938 5128  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
00:32:34.0954 5128  KtmRm - ok
00:32:34.0969 5128  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
00:32:34.0969 5128  LanmanServer - ok
00:32:34.0985 5128  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
00:32:35.0000 5128  LanmanWorkstation - ok
00:32:35.0016 5128  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
00:32:35.0016 5128  lltdio - ok
00:32:35.0032 5128  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
00:32:35.0032 5128  lltdsvc - ok
00:32:35.0032 5128  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
00:32:35.0047 5128  lmhosts - ok
00:32:35.0078 5128  [ 0803906D607A9B83184447B75B60ECC2 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
00:32:35.0078 5128  LMS - ok
00:32:35.0094 5128  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
00:32:35.0094 5128  LSI_FC - ok
00:32:35.0125 5128  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
00:32:35.0125 5128  LSI_SAS - ok
00:32:35.0141 5128  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
00:32:35.0141 5128  LSI_SAS2 - ok
00:32:35.0156 5128  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
00:32:35.0156 5128  LSI_SCSI - ok
00:32:35.0188 5128  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
00:32:35.0188 5128  luafv - ok
00:32:35.0203 5128  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
00:32:35.0203 5128  Mcx2Svc - ok
00:32:35.0219 5128  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\drivers\megasas.sys
00:32:35.0219 5128  megasas - ok
00:32:35.0234 5128  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
00:32:35.0234 5128  MegaSR - ok
00:32:35.0250 5128  [ 1C6E73FC46B509EFF9D0086AA37132DF ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
00:32:35.0250 5128  MEIx64 - ok
00:32:35.0266 5128  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
00:32:35.0266 5128  MMCSS - ok
00:32:35.0281 5128  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
00:32:35.0281 5128  Modem - ok
00:32:35.0312 5128  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
00:32:35.0312 5128  monitor - ok
00:32:35.0328 5128  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
00:32:35.0328 5128  mouclass - ok
00:32:35.0359 5128  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
00:32:35.0359 5128  mouhid - ok
00:32:35.0359 5128  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
00:32:35.0359 5128  mountmgr - ok
00:32:35.0406 5128  [ 825BF0E46B4470A463AEB641480C5FCA ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
00:32:35.0406 5128  MozillaMaintenance - ok
00:32:35.0422 5128  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
00:32:35.0422 5128  mpio - ok
00:32:35.0437 5128  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
00:32:35.0437 5128  mpsdrv - ok
00:32:35.0453 5128  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
00:32:35.0453 5128  MpsSvc - ok
00:32:35.0468 5128  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
00:32:35.0468 5128  MRxDAV - ok
00:32:35.0500 5128  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
00:32:35.0500 5128  mrxsmb - ok
00:32:35.0515 5128  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
00:32:35.0515 5128  mrxsmb10 - ok
00:32:35.0515 5128  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
00:32:35.0515 5128  mrxsmb20 - ok
00:32:35.0531 5128  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
00:32:35.0531 5128  msahci - ok
00:32:35.0546 5128  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
00:32:35.0546 5128  msdsm - ok
00:32:35.0578 5128  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
00:32:35.0578 5128  MSDTC - ok
00:32:35.0609 5128  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
00:32:35.0609 5128  Msfs - ok
00:32:35.0624 5128  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
00:32:35.0624 5128  mshidkmdf - ok
00:32:35.0640 5128  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
00:32:35.0640 5128  msisadrv - ok
00:32:35.0656 5128  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
00:32:35.0656 5128  MSiSCSI - ok
00:32:35.0656 5128  msiserver - ok
00:32:35.0671 5128  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
00:32:35.0671 5128  MSKSSRV - ok
00:32:35.0687 5128  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
00:32:35.0687 5128  MSPCLOCK - ok
00:32:35.0687 5128  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
00:32:35.0687 5128  MSPQM - ok
00:32:35.0687 5128  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
00:32:35.0702 5128  MsRPC - ok
00:32:35.0702 5128  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
00:32:35.0702 5128  mssmbios - ok
00:32:35.0718 5128  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
00:32:35.0718 5128  MSTEE - ok
00:32:35.0718 5128  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
00:32:35.0718 5128  MTConfig - ok
00:32:35.0734 5128  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
00:32:35.0734 5128  Mup - ok
00:32:35.0749 5128  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
00:32:35.0765 5128  napagent - ok
00:32:35.0780 5128  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
00:32:35.0796 5128  NativeWifiP - ok
00:32:35.0827 5128  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
00:32:35.0843 5128  NDIS - ok
00:32:35.0858 5128  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
00:32:35.0858 5128  NdisCap - ok
00:32:35.0874 5128  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
00:32:35.0874 5128  NdisTapi - ok
00:32:35.0874 5128  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
00:32:35.0874 5128  Ndisuio - ok
00:32:35.0890 5128  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
00:32:35.0890 5128  NdisWan - ok
00:32:35.0905 5128  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
00:32:35.0905 5128  NDProxy - ok
00:32:35.0905 5128  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
00:32:35.0905 5128  NetBIOS - ok
00:32:35.0921 5128  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
00:32:35.0921 5128  NetBT - ok
00:32:35.0921 5128  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
00:32:35.0921 5128  Netlogon - ok
00:32:35.0952 5128  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
00:32:35.0952 5128  Netman - ok
00:32:35.0999 5128  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
00:32:36.0030 5128  NetMsmqActivator - ok
00:32:36.0046 5128  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
00:32:36.0046 5128  NetPipeActivator - ok
00:32:36.0061 5128  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
00:32:36.0061 5128  netprofm - ok
00:32:36.0061 5128  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
00:32:36.0061 5128  NetTcpActivator - ok
00:32:36.0061 5128  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
00:32:36.0061 5128  NetTcpPortSharing - ok
00:32:36.0092 5128  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
00:32:36.0092 5128  nfrd960 - ok
00:32:36.0108 5128  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
00:32:36.0124 5128  NlaSvc - ok
00:32:36.0124 5128  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
00:32:36.0124 5128  Npfs - ok
00:32:36.0155 5128  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
00:32:36.0155 5128  nsi - ok
00:32:36.0155 5128  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
00:32:36.0155 5128  nsiproxy - ok
00:32:36.0202 5128  [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
00:32:36.0217 5128  Ntfs - ok
00:32:36.0233 5128  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
00:32:36.0233 5128  Null - ok
00:32:36.0373 5128  [ FCBA1C22727939E7CFF9EB08FE9692AB ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
00:32:36.0420 5128  nvlddmkm - ok
00:32:36.0451 5128  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
00:32:36.0451 5128  nvraid - ok
00:32:36.0451 5128  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
00:32:36.0467 5128  nvstor - ok
00:32:36.0498 5128  [ 10C232F6CFFD51D2332898AE7AE0FF23 ] nvsvc           C:\Windows\system32\nvvsvc.exe
00:32:36.0498 5128  nvsvc - ok
00:32:36.0560 5128  [ 4789E020D2617046862D1790FC235FF6 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
00:32:36.0560 5128  nvUpdatusService - ok
00:32:36.0592 5128  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
00:32:36.0592 5128  nv_agp - ok
00:32:36.0592 5128  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
00:32:36.0592 5128  ohci1394 - ok
00:32:36.0623 5128  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
00:32:36.0623 5128  p2pimsvc - ok
00:32:36.0623 5128  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
00:32:36.0638 5128  p2psvc - ok
00:32:36.0654 5128  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
00:32:36.0654 5128  Parport - ok
00:32:36.0685 5128  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
00:32:36.0685 5128  partmgr - ok
00:32:36.0685 5128  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
00:32:36.0701 5128  PcaSvc - ok
00:32:36.0701 5128  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
00:32:36.0701 5128  pci - ok
00:32:36.0716 5128  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
00:32:36.0716 5128  pciide - ok
00:32:36.0732 5128  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
00:32:36.0732 5128  pcmcia - ok
00:32:36.0748 5128  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
00:32:36.0748 5128  pcw - ok
00:32:36.0763 5128  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
00:32:36.0763 5128  PEAUTH - ok
00:32:36.0857 5128  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
00:32:36.0857 5128  PerfHost - ok
00:32:36.0888 5128  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
00:32:36.0904 5128  pla - ok
00:32:36.0935 5128  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
00:32:36.0935 5128  PlugPlay - ok
00:32:36.0982 5128  PnkBstrA - ok
00:32:36.0982 5128  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
00:32:36.0982 5128  PNRPAutoReg - ok
00:32:36.0997 5128  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
00:32:36.0997 5128  PNRPsvc - ok
00:32:37.0028 5128  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
00:32:37.0028 5128  PolicyAgent - ok
00:32:37.0060 5128  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
00:32:37.0060 5128  Power - ok
00:32:37.0091 5128  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
00:32:37.0091 5128  PptpMiniport - ok
00:32:37.0091 5128  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\drivers\processr.sys
00:32:37.0091 5128  Processor - ok
00:32:37.0122 5128  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
00:32:37.0122 5128  ProfSvc - ok
00:32:37.0138 5128  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
00:32:37.0138 5128  ProtectedStorage - ok
00:32:37.0153 5128  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
00:32:37.0153 5128  Psched - ok
00:32:37.0184 5128  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
00:32:37.0200 5128  ql2300 - ok
00:32:37.0231 5128  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
00:32:37.0231 5128  ql40xx - ok
00:32:37.0262 5128  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
00:32:37.0278 5128  QWAVE - ok
00:32:37.0278 5128  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
00:32:37.0278 5128  QWAVEdrv - ok
00:32:37.0294 5128  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
00:32:37.0294 5128  RasAcd - ok
00:32:37.0309 5128  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
00:32:37.0309 5128  RasAgileVpn - ok
00:32:37.0309 5128  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
00:32:37.0309 5128  RasAuto - ok
00:32:37.0325 5128  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
00:32:37.0325 5128  Rasl2tp - ok
00:32:37.0356 5128  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
00:32:37.0356 5128  RasMan - ok
00:32:37.0372 5128  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
00:32:37.0372 5128  RasPppoe - ok
00:32:37.0387 5128  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
00:32:37.0387 5128  RasSstp - ok
00:32:37.0403 5128  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
00:32:37.0403 5128  rdbss - ok
00:32:37.0403 5128  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
00:32:37.0403 5128  rdpbus - ok
00:32:37.0434 5128  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
00:32:37.0434 5128  RDPCDD - ok
00:32:37.0434 5128  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
00:32:37.0434 5128  RDPENCDD - ok
00:32:37.0450 5128  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
00:32:37.0450 5128  RDPREFMP - ok
00:32:37.0465 5128  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
00:32:37.0465 5128  RDPWD - ok
00:32:37.0496 5128  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
00:32:37.0496 5128  rdyboost - ok
00:32:37.0512 5128  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
00:32:37.0512 5128  RemoteAccess - ok
00:32:37.0528 5128  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
00:32:37.0528 5128  RemoteRegistry - ok
00:32:37.0543 5128  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
00:32:37.0543 5128  RpcEptMapper - ok
00:32:37.0543 5128  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
00:32:37.0543 5128  RpcLocator - ok
00:32:37.0559 5128  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
00:32:37.0574 5128  RpcSs - ok
00:32:37.0590 5128  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
00:32:37.0590 5128  rspndr - ok
00:32:37.0621 5128  [ 712944C0A377E9B8743F95BD83E882D4 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
00:32:37.0621 5128  RTL8167 - ok
00:32:37.0637 5128  [ 2B38C905492F36FE42B59DA52D6B4EB7 ] RtNdPt60        C:\Windows\system32\DRIVERS\RtNdPt60.sys
00:32:37.0652 5128  RtNdPt60 - ok
00:32:37.0652 5128  [ 8DF706A5A12A4832A3291A1FF26A7CC1 ] RTTEAMPT        C:\Windows\system32\DRIVERS\RtTeam60.sys
00:32:37.0652 5128  RTTEAMPT - ok
00:32:37.0668 5128  [ 8B6B42D782202363A562F82B0E13B1C0 ] RTVLANPT        C:\Windows\system32\DRIVERS\RtVlan60.sys
00:32:37.0668 5128  RTVLANPT - ok
00:32:37.0684 5128  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
00:32:37.0684 5128  SamSs - ok
00:32:37.0699 5128  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
00:32:37.0699 5128  sbp2port - ok
00:32:37.0715 5128  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
00:32:37.0715 5128  SCardSvr - ok
00:32:37.0730 5128  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
00:32:37.0730 5128  scfilter - ok
00:32:37.0746 5128  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
00:32:37.0762 5128  Schedule - ok
00:32:37.0777 5128  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
00:32:37.0777 5128  SCPolicySvc - ok
00:32:37.0793 5128  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
00:32:37.0793 5128  SDRSVC - ok
00:32:37.0824 5128  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
00:32:37.0824 5128  secdrv - ok
00:32:37.0840 5128  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
00:32:37.0840 5128  seclogon - ok
00:32:37.0855 5128  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
00:32:37.0855 5128  SENS - ok
00:32:37.0871 5128  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
00:32:37.0871 5128  SensrSvc - ok
00:32:37.0886 5128  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
00:32:37.0886 5128  Serenum - ok
00:32:37.0902 5128  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
00:32:37.0902 5128  Serial - ok
00:32:37.0918 5128  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
00:32:37.0918 5128  sermouse - ok
00:32:37.0933 5128  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
00:32:37.0933 5128  SessionEnv - ok
00:32:37.0933 5128  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
00:32:37.0933 5128  sffdisk - ok
00:32:37.0933 5128  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
00:32:37.0933 5128  sffp_mmc - ok
00:32:37.0933 5128  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
00:32:37.0933 5128  sffp_sd - ok
00:32:37.0933 5128  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
00:32:37.0933 5128  sfloppy - ok
00:32:37.0964 5128  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
00:32:37.0964 5128  SharedAccess - ok
00:32:37.0980 5128  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
00:32:37.0996 5128  ShellHWDetection - ok
00:32:38.0011 5128  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
00:32:38.0011 5128  SiSRaid2 - ok
00:32:38.0027 5128  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
00:32:38.0027 5128  SiSRaid4 - ok
00:32:38.0136 5128  [ EB17DF573B4423DF0B3B2EE3B268A6DE ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
00:32:38.0152 5128  Skype C2C Service - ok
00:32:38.0198 5128  [ 7C15061CD0372487903B07B9BB03AFAD ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
00:32:38.0198 5128  SkypeUpdate - ok
00:32:38.0245 5128  [ 101556F6216E97F1258D87C38203695F ] Smart TimeLock  C:\Program Files (x86)\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe
00:32:38.0245 5128  Smart TimeLock - ok
00:32:38.0276 5128  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
00:32:38.0276 5128  Smb - ok
00:32:38.0308 5128  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
00:32:38.0308 5128  SNMPTRAP - ok
00:32:38.0308 5128  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
00:32:38.0308 5128  spldr - ok
00:32:38.0339 5128  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
00:32:38.0354 5128  Spooler - ok
00:32:38.0401 5128  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
00:32:38.0432 5128  sppsvc - ok
00:32:38.0448 5128  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
00:32:38.0448 5128  sppuinotify - ok
00:32:38.0464 5128  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
00:32:38.0479 5128  srv - ok
00:32:38.0479 5128  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
00:32:38.0495 5128  srv2 - ok
00:32:38.0495 5128  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
00:32:38.0495 5128  srvnet - ok
00:32:38.0510 5128  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
00:32:38.0526 5128  SSDPSRV - ok
00:32:38.0526 5128  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
00:32:38.0526 5128  SstpSvc - ok
00:32:38.0573 5128  Steam Client Service - ok
00:32:38.0651 5128  [ 5A19667A580B1CE886EAF968B9743F45 ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
00:32:38.0651 5128  Stereo Service - ok
00:32:38.0666 5128  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\drivers\stexstor.sys
00:32:38.0666 5128  stexstor - ok
00:32:38.0713 5128  [ DECACB6921DED1A38642642685D77DAC ] StillCam        C:\Windows\system32\DRIVERS\serscan.sys
00:32:38.0713 5128  StillCam - ok
00:32:38.0729 5128  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
00:32:38.0744 5128  stisvc - ok
00:32:38.0744 5128  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
00:32:38.0744 5128  swenum - ok
00:32:38.0760 5128  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
00:32:38.0760 5128  swprv - ok
00:32:38.0791 5128  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
00:32:38.0807 5128  SysMain - ok
00:32:38.0822 5128  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
00:32:38.0822 5128  TabletInputService - ok
00:32:38.0838 5128  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
00:32:38.0838 5128  TapiSrv - ok
00:32:38.0854 5128  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
00:32:38.0854 5128  TBS - ok
00:32:38.0916 5128  [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
00:32:38.0932 5128  Tcpip - ok
00:32:38.0947 5128  [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
00:32:38.0963 5128  TCPIP6 - ok
00:32:38.0978 5128  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
00:32:38.0978 5128  tcpipreg - ok
00:32:38.0994 5128  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
00:32:38.0994 5128  TDPIPE - ok
00:32:39.0010 5128  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
00:32:39.0010 5128  TDTCP - ok
00:32:39.0025 5128  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
00:32:39.0025 5128  tdx - ok
00:32:39.0041 5128  [ 8DF706A5A12A4832A3291A1FF26A7CC1 ] TEAM            C:\Windows\system32\DRIVERS\RtTeam60.sys
00:32:39.0041 5128  TEAM - ok
00:32:39.0056 5128  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
00:32:39.0056 5128  TermDD - ok
00:32:39.0072 5128  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
00:32:39.0088 5128  TermService - ok
00:32:39.0088 5128  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
00:32:39.0088 5128  Themes - ok
00:32:39.0103 5128  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
00:32:39.0103 5128  THREADORDER - ok
00:32:39.0119 5128  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
00:32:39.0119 5128  TrkWks - ok
00:32:39.0150 5128  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
00:32:39.0150 5128  TrustedInstaller - ok
00:32:39.0166 5128  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
00:32:39.0166 5128  tssecsrv - ok
00:32:39.0181 5128  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
00:32:39.0181 5128  TsUsbFlt - ok
00:32:39.0197 5128  [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
00:32:39.0212 5128  TsUsbGD - ok
00:32:39.0228 5128  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
00:32:39.0228 5128  tunnel - ok
00:32:39.0244 5128  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
00:32:39.0244 5128  uagp35 - ok
00:32:39.0259 5128  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
00:32:39.0259 5128  udfs - ok
00:32:39.0259 5128  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
00:32:39.0275 5128  UI0Detect - ok
00:32:39.0290 5128  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
00:32:39.0290 5128  uliagpkx - ok
00:32:39.0306 5128  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
00:32:39.0306 5128  umbus - ok
00:32:39.0306 5128  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\drivers\umpass.sys
00:32:39.0306 5128  UmPass - ok
00:32:39.0384 5128  [ EB79C6C91A99930015EF29AE7FA802D1 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
00:32:39.0400 5128  UNS - ok
00:32:39.0415 5128  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
00:32:39.0431 5128  upnphost - ok
00:32:39.0462 5128  [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
00:32:39.0478 5128  USBAAPL64 - ok
00:32:39.0509 5128  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\drivers\usbccgp.sys
00:32:39.0524 5128  usbccgp - ok
00:32:39.0540 5128  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
00:32:39.0540 5128  usbcir - ok
00:32:39.0556 5128  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\drivers\usbehci.sys
00:32:39.0556 5128  usbehci - ok
00:32:39.0571 5128  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
00:32:39.0587 5128  usbhub - ok
00:32:39.0602 5128  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
00:32:39.0602 5128  usbohci - ok
00:32:39.0618 5128  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\drivers\usbprint.sys
00:32:39.0618 5128  usbprint - ok
00:32:39.0634 5128  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
00:32:39.0634 5128  USBSTOR - ok
00:32:39.0649 5128  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
00:32:39.0649 5128  usbuhci - ok
00:32:39.0665 5128  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
00:32:39.0665 5128  UxSms - ok
00:32:39.0680 5128  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
00:32:39.0680 5128  VaultSvc - ok
00:32:39.0696 5128  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
00:32:39.0696 5128  vdrvroot - ok
00:32:39.0712 5128  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
00:32:39.0727 5128  vds - ok
00:32:39.0727 5128  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
00:32:39.0727 5128  vga - ok
00:32:39.0727 5128  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
00:32:39.0727 5128  VgaSave - ok
00:32:39.0743 5128  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
00:32:39.0743 5128  vhdmp - ok
00:32:39.0758 5128  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
00:32:39.0758 5128  viaide - ok
00:32:39.0774 5128  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
00:32:39.0774 5128  volmgr - ok
00:32:39.0790 5128  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
00:32:39.0790 5128  volmgrx - ok
00:32:39.0821 5128  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
00:32:39.0821 5128  volsnap - ok
00:32:39.0836 5128  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
00:32:39.0836 5128  vsmraid - ok
00:32:39.0883 5128  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
00:32:39.0883 5128  VSS - ok
00:32:39.0899 5128  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
00:32:39.0899 5128  vwifibus - ok
00:32:39.0914 5128  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
00:32:39.0930 5128  W32Time - ok
00:32:39.0946 5128  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
00:32:39.0946 5128  WacomPen - ok
00:32:39.0961 5128  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
00:32:39.0961 5128  WANARP - ok
00:32:39.0961 5128  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
00:32:39.0961 5128  Wanarpv6 - ok
00:32:40.0008 5128  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
00:32:40.0008 5128  WatAdminSvc - ok
00:32:40.0039 5128  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
00:32:40.0055 5128  wbengine - ok
00:32:40.0070 5128  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
00:32:40.0070 5128  WbioSrvc - ok
00:32:40.0086 5128  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
00:32:40.0086 5128  wcncsvc - ok
00:32:40.0102 5128  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
00:32:40.0102 5128  WcsPlugInService - ok
00:32:40.0117 5128  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\drivers\wd.sys
00:32:40.0117 5128  Wd - ok
00:32:40.0164 5128  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
00:32:40.0164 5128  Wdf01000 - ok
00:32:40.0180 5128  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
00:32:40.0180 5128  WdiServiceHost - ok
00:32:40.0195 5128  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
00:32:40.0195 5128  WdiSystemHost - ok
00:32:40.0195 5128  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
00:32:40.0211 5128  WebClient - ok
00:32:40.0211 5128  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
00:32:40.0226 5128  Wecsvc - ok
00:32:40.0226 5128  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
00:32:40.0226 5128  wercplsupport - ok
00:32:40.0258 5128  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
00:32:40.0258 5128  WerSvc - ok
00:32:40.0258 5128  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
00:32:40.0258 5128  WfpLwf - ok
00:32:40.0273 5128  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
00:32:40.0273 5128  WIMMount - ok
00:32:40.0273 5128  WinDefend - ok
00:32:40.0273 5128  WinHttpAutoProxySvc - ok
00:32:40.0320 5128  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
00:32:40.0320 5128  Winmgmt - ok
00:32:40.0367 5128  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
00:32:40.0382 5128  WinRM - ok
00:32:40.0429 5128  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
00:32:40.0429 5128  WinUsb - ok
00:32:40.0460 5128  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
00:32:40.0460 5128  Wlansvc - ok
00:32:40.0476 5128  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
00:32:40.0476 5128  WmiAcpi - ok
00:32:40.0492 5128  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
00:32:40.0492 5128  wmiApSrv - ok
00:32:40.0523 5128  WMPNetworkSvc - ok
00:32:40.0538 5128  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
00:32:40.0538 5128  WPCSvc - ok
00:32:40.0554 5128  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
00:32:40.0554 5128  WPDBusEnum - ok
00:32:40.0570 5128  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
00:32:40.0570 5128  ws2ifsl - ok
00:32:40.0601 5128  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
00:32:40.0601 5128  wscsvc - ok
00:32:40.0601 5128  WSearch - ok
00:32:40.0663 5128  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
00:32:40.0694 5128  wuauserv - ok
00:32:40.0726 5128  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
00:32:40.0726 5128  WudfPf - ok
00:32:40.0741 5128  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
00:32:40.0741 5128  WUDFRd - ok
00:32:40.0757 5128  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
00:32:40.0757 5128  wudfsvc - ok
00:32:40.0772 5128  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
00:32:40.0772 5128  WwanSvc - ok
00:32:40.0866 5128  X6va005 - ok
00:32:40.0928 5128  X6va011 - ok
00:32:40.0928 5128  ================ Scan global ===============================
00:32:40.0944 5128  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
00:32:40.0991 5128  [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
00:32:40.0991 5128  [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
00:32:41.0022 5128  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
00:32:41.0022 5128  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
00:32:41.0038 5128  [Global] - ok
00:32:41.0038 5128  ================ Scan MBR ==================================
00:32:41.0038 5128  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
00:32:41.0350 5128  \Device\Harddisk0\DR0 - ok
00:32:41.0350 5128  ================ Scan VBR ==================================
00:32:41.0350 5128  [ 0AE33EC8E51CD168A6A305CD6ABC2224 ] \Device\Harddisk0\DR0\Partition1
00:32:41.0350 5128  \Device\Harddisk0\DR0\Partition1 - ok
00:32:41.0381 5128  [ ACD4297CBD043312E371C70C703A07AA ] \Device\Harddisk0\DR0\Partition2
00:32:41.0381 5128  \Device\Harddisk0\DR0\Partition2 - ok
00:32:41.0381 5128  ============================================================
00:32:41.0381 5128  Scan finished
00:32:41.0381 5128  ============================================================
00:32:41.0396 2716  Detected object count: 0
00:32:41.0396 2716  Actual detected object count: 0










MiniToolBox by Farbar  Version:21-04-2013
Ran by Cody (administrator) on 27-05-2013 at 00:34:33
Running from "C:\Users\Cody\Downloads"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Realtek PCIe GBE Family Controller = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add route prefix=0.0.0.0/0 interface="ethernet_9" nexthop=25.0.0.1 publish=Yes
set interface interface="ethernet_9" forwarding=disabled advertise=disabled metric=9000 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled advertisedrouterlifetime=0 advertisedefaultroute=disabled currenthoplimit=0 forcearpndwolpattern=disabled enabledirectedmacwolpattern=disabled


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : Cody-PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : 50-E5-49-20-D1-F3
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::180b:860d:668e:7912%11(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.1.7(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Monday, May 27, 2013 12:30:22 AM
   Lease Expires . . . . . . . . . . : Tuesday, May 28, 2013 12:30:22 AM
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 240182601
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-17-76-D5-B8-50-E5-49-20-D1-F3
   DNS Servers . . . . . . . . . . . : 192.168.1.1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{7A2572D4-C2C8-4769-BEFD-10FD75FE9377}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6ab8:806:fcb:3f57:fef8(Preferred)
   Link-local IPv6 Address . . . . . : fe80::806:fcb:3f57:fef8%12(Preferred)
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled
Server:  UnKnown
Address:  192.168.1.1

Name:    google.com
Addresses:  2607:f8b0:4002:c05::66
      74.125.130.139
      74.125.130.100
      74.125.130.101
      74.125.130.102
      74.125.130.113
      74.125.130.138


Pinging google.com [74.125.130.102] with 32 bytes of data:
Reply from 74.125.130.102: bytes=32 time=297ms TTL=46
Reply from 74.125.130.102: bytes=32 time=126ms TTL=46

Ping statistics for 74.125.130.102:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 126ms, Maximum = 297ms, Average = 211ms
Server:  UnKnown
Address:  192.168.1.1

Name:    yahoo.com
Addresses:  206.190.36.45
      98.138.253.109
      98.139.183.24


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=141ms TTL=47
Reply from 98.139.183.24: bytes=32 time=121ms TTL=48

Ping statistics for 98.139.183.24:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 121ms, Maximum = 141ms, Average = 131ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 11...50 e5 49 20 d1 f3 ......Realtek PCIe GBE Family Controller
  1...........................Software Loopback Interface 1
 13...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1      192.168.1.7     20
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link       192.168.1.7    276
      192.168.1.7  255.255.255.255         On-link       192.168.1.7    276
    192.168.1.255  255.255.255.255         On-link       192.168.1.7    276
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link       192.168.1.7    276
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link       192.168.1.7    276
===========================================================================
Persistent Routes:
  Network Address          Netmask  Gateway Address  Metric
          0.0.0.0          0.0.0.0         25.0.0.1  Default
===========================================================================

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 12     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 12     58 2001::/32                On-link
 12    306 2001:0:9d38:6ab8:806:fcb:3f57:fef8/128
                                    On-link
 11    276 fe80::/64                On-link
 12    306 fe80::/64                On-link
 12    306 fe80::806:fcb:3f57:fef8/128
                                    On-link
 11    276 fe80::180b:860d:668e:7912/128
                                    On-link
  1    306 ff00::/8                 On-link
 12    306 ff00::/8                 On-link
 11    276 ff00::/8                 On-link
===========================================================================
Persistent Routes:
 If Metric Network Destination      Gateway
  0 4294967295 2620:9b::/96             On-link
  0   9000 ::/0                     2620:9b::500:1
  0   9000 ::/0                     2620:9b::1900:1
===========================================================================
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (05/27/2013 00:31:59 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/26/2013 07:00:00 PM) (Source: Windows Backup) (User: )
Description: The backup did not complete because of an error writing to the backup location F:\. The error is: The backup location cannot be found or is not valid. Review your backup settings and check the backup location. (0x81000006).

Error: (05/26/2013 05:03:41 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/26/2013 02:50:01 AM) (Source: Application Hang) (User: )
Description: The program Launcher.exe version 2013.5.24.21 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1e64

Start Time: 01ce59f47200b5c0

Termination Time: 2

Application Path: C:\Users\Cody\AppData\Local\Warframe\Downloaded\Public\Tools\Launcher.exe

Report Id: 9dd0ca47-c5e9-11e2-8c60-50e54920d1f3

Error: (05/26/2013 02:34:45 AM) (Source: Application Hang) (User: )
Description: The program Launcher.exe version 2013.5.24.21 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1de0

Start Time: 01ce59f41811b470

Termination Time: 1

Application Path: C:\Users\Cody\AppData\Local\Warframe\Downloaded\Public\Tools\Launcher.exe

Report Id: 7c7bdbb6-c5e7-11e2-8c60-50e54920d1f3

Error: (05/26/2013 02:28:57 AM) (Source: Application Hang) (User: )
Description: The program Launcher.exe version 2013.5.24.21 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 17e4

Start Time: 01ce59f34c160c40

Termination Time: 2

Application Path: C:\Users\Cody\AppData\Local\Warframe\Downloaded\Public\Tools\Launcher.exe

Report Id: ae4b4b1e-c5e6-11e2-8c60-50e54920d1f3

Error: (05/26/2013 02:18:22 AM) (Source: Application Error) (User: )
Description: Faulting application name: Warframe.x64.exe, version: 2013.5.24.21, time stamp: 0x51a01aa6
Faulting module name: Warframe.x64.exe, version: 2013.5.24.21, time stamp: 0x51a01aa6
Exception code: 0x80000003
Fault offset: 0x00000000006b95a5
Faulting process id: 0x20d0
Faulting application start time: 0xWarframe.x64.exe0
Faulting application path: Warframe.x64.exe1
Faulting module path: Warframe.x64.exe2
Report Id: Warframe.x64.exe3

Error: (05/26/2013 02:17:07 AM) (Source: Application Hang) (User: )
Description: The program Launcher.exe version 2013.5.24.21 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 540

Start Time: 01ce59f04fc430ca

Termination Time: 2

Application Path: C:\Users\Cody\AppData\Local\Warframe\Downloaded\Public\Tools\Launcher.exe

Report Id: 04afdb34-c5e5-11e2-8c60-50e54920d1f3

Error: (05/25/2013 09:37:01 PM) (Source: Application Error) (User: )
Description: Faulting application name: DustAET.exe, version: 1.0.0.0, time stamp: 0x519db0ca
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x0952a7f0
Faulting process id: 0x2310
Faulting application start time: 0xDustAET.exe0
Faulting application path: DustAET.exe1
Faulting module path: DustAET.exe2
Report Id: DustAET.exe3

Error: (05/25/2013 09:36:59 PM) (Source: .NET Runtime) (User: )
Description: Application: DustAET.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.NullReferenceException
Stack:
   at Dust.PCClasses.InputKey.IsPressed(Dust.PCClasses.AlternateKeyboardLayouts, Microsoft.Xna.Framework.Input.MouseState)
   at Dust.PCClasses.PCManager.IsWorldMapClicked(Dust.PCClasses.InputKey)
   at Dust.PCClasses.PCManager.UpdateWorldMapInput(Boolean ByRef, Boolean ByRef, Boolean ByRef, Boolean ByRef, Boolean ByRef, Boolean ByRef, Boolean ByRef, Boolean ByRef)
   at Dust.NavClasses.WorldMap.DoInput(Int32)
   at Dust.NavClasses.WorldMap.Update(Dust.Particles.ParticleManager, Single)
   at Dust.Game1.Update(Microsoft.Xna.Framework.GameTime)
   at Microsoft.Xna.Framework.Game.Tick()
   at Microsoft.Xna.Framework.Game.HostIdle(System.Object, System.EventArgs)
   at Microsoft.Xna.Framework.GameHost.OnIdle()
   at Microsoft.Xna.Framework.WindowsGameHost.RunOneFrame()
   at Microsoft.Xna.Framework.WindowsGameHost.ApplicationIdle(System.Object, System.EventArgs)
   at System.Windows.Forms.Application+ThreadContext.System.Windows.Forms.UnsafeNativeMethods.IMsoComponent.FDoIdle(Int32)
   at System.Windows.Forms.Application+ComponentManager.System.Windows.Forms.UnsafeNativeMethods.IMsoComponentManager.FPushMessageLoop(IntPtr, Int32, Int32)
   at System.Windows.Forms.Application+ThreadContext.RunMessageLoopInner(Int32, System.Windows.Forms.ApplicationContext)
   at System.Windows.Forms.Application+ThreadContext.RunMessageLoop(Int32, System.Windows.Forms.ApplicationContext)
   at System.Windows.Forms.Application.Run(System.Windows.Forms.Form)
   at Microsoft.Xna.Framework.WindowsGameHost.Run()
   at Microsoft.Xna.Framework.Game.RunGame(Boolean)
   at Dust.Program.Main(System.String[])


System errors:
=============
Error: (05/23/2013 06:21:25 PM) (Source: Service Control Manager) (User: )
Description: The FastFreeConverterUpdt service is marked as an interactive service.  However, the system is configured to not allow interactive services.  This service may not function properly.

Error: (05/22/2013 04:11:06 AM) (Source: volsnap) (User: )
Description: The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.

Error: (05/21/2013 10:39:02 PM) (Source: Service Control Manager) (User: )
Description: The Steam Client Service service failed to start due to the following error:
%%1053

Error: (05/21/2013 10:39:02 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Steam Client Service service to connect.

Error: (05/18/2013 09:08:19 AM) (Source: Service Control Manager) (User: )
Description: The Steam Client Service service failed to start due to the following error:
%%1053

Error: (05/18/2013 09:08:19 AM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Steam Client Service service to connect.

Error: (05/17/2013 02:10:35 AM) (Source: Service Control Manager) (User: )
Description: The Steam Client Service service failed to start due to the following error:
%%1053

Error: (05/17/2013 02:10:35 AM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Steam Client Service service to connect.

Error: (05/15/2013 06:21:36 PM) (Source: Service Control Manager) (User: )
Description: The Steam Client Service service failed to start due to the following error:
%%1053

Error: (05/15/2013 06:21:36 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Steam Client Service service to connect.


Microsoft Office Sessions:
=========================
Error: (05/27/2013 00:31:59 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/26/2013 07:00:00 PM) (Source: Windows Backup)(User: )
Description: F:\The backup location cannot be found or is not valid. Review your backup settings and check the backup location. (0x81000006)

Error: (05/26/2013 05:03:41 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/26/2013 02:50:01 AM) (Source: Application Hang)(User: )
Description: Launcher.exe2013.5.24.211e6401ce59f47200b5c02C:\Users\Cody\AppData\Local\Warframe\Downloaded\Public\Tools\Launcher.exe9dd0ca47-c5e9-11e2-8c60-50e54920d1f3

Error: (05/26/2013 02:34:45 AM) (Source: Application Hang)(User: )
Description: Launcher.exe2013.5.24.211de001ce59f41811b4701C:\Users\Cody\AppData\Local\Warframe\Downloaded\Public\Tools\Launcher.exe7c7bdbb6-c5e7-11e2-8c60-50e54920d1f3

Error: (05/26/2013 02:28:57 AM) (Source: Application Hang)(User: )
Description: Launcher.exe2013.5.24.2117e401ce59f34c160c402C:\Users\Cody\AppData\Local\Warframe\Downloaded\Public\Tools\Launcher.exeae4b4b1e-c5e6-11e2-8c60-50e54920d1f3

Error: (05/26/2013 02:18:22 AM) (Source: Application Error)(User: )
Description: Warframe.x64.exe2013.5.24.2151a01aa6Warframe.x64.exe2013.5.24.2151a01aa68000000300000000006b95a520d001ce59f1db329ac9C:\Users\Cody\Desktop\New folder (2)\Downloaded\Public\Warframe.x64.exeC:\Users\Cody\Desktop\New folder (2)\Downloaded\Public\Warframe.x64.exe35de9364-c5e5-11e2-8c60-50e54920d1f3

Error: (05/26/2013 02:17:07 AM) (Source: Application Hang)(User: )
Description: Launcher.exe2013.5.24.2154001ce59f04fc430ca2C:\Users\Cody\AppData\Local\Warframe\Downloaded\Public\Tools\Launcher.exe04afdb34-c5e5-11e2-8c60-50e54920d1f3

Error: (05/25/2013 09:37:01 PM) (Source: Application Error)(User: )
Description: DustAET.exe1.0.0.0519db0caunknown0.0.0.000000000c00000050952a7f0231001ce59c8bbae16dcC:\Program Files (x86)\Steam\steamapps\common\Dust An Elysian Tail\DustAET.exeunknowne8141678-c5bd-11e2-8c60-50e54920d1f3

Error: (05/25/2013 09:36:59 PM) (Source: .NET Runtime)(User: )
Description: Application: DustAET.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.NullReferenceException
Stack:
   at Dust.PCClasses.InputKey.IsPressed(Dust.PCClasses.AlternateKeyboardLayouts, Microsoft.Xna.Framework.Input.MouseState)
   at Dust.PCClasses.PCManager.IsWorldMapClicked(Dust.PCClasses.InputKey)
   at Dust.PCClasses.PCManager.UpdateWorldMapInput(Boolean ByRef, Boolean ByRef, Boolean ByRef, Boolean ByRef, Boolean ByRef, Boolean ByRef, Boolean ByRef, Boolean ByRef)
   at Dust.NavClasses.WorldMap.DoInput(Int32)
   at Dust.NavClasses.WorldMap.Update(Dust.Particles.ParticleManager, Single)
   at Dust.Game1.Update(Microsoft.Xna.Framework.GameTime)
   at Microsoft.Xna.Framework.Game.Tick()
   at Microsoft.Xna.Framework.Game.HostIdle(System.Object, System.EventArgs)
   at Microsoft.Xna.Framework.GameHost.OnIdle()
   at Microsoft.Xna.Framework.WindowsGameHost.RunOneFrame()
   at Microsoft.Xna.Framework.WindowsGameHost.ApplicationIdle(System.Object, System.EventArgs)
   at System.Windows.Forms.Application+ThreadContext.System.Windows.Forms.UnsafeNativeMethods.IMsoComponent.FDoIdle(Int32)
   at System.Windows.Forms.Application+ComponentManager.System.Windows.Forms.UnsafeNativeMethods.IMsoComponentManager.FPushMessageLoop(IntPtr, Int32, Int32)
   at System.Windows.Forms.Application+ThreadContext.RunMessageLoopInner(Int32, System.Windows.Forms.ApplicationContext)
   at System.Windows.Forms.Application+ThreadContext.RunMessageLoop(Int32, System.Windows.Forms.ApplicationContext)
   at System.Windows.Forms.Application.Run(System.Windows.Forms.Form)
   at Microsoft.Xna.Framework.WindowsGameHost.Run()
   at Microsoft.Xna.Framework.Game.RunGame(Boolean)
   at Dust.Program.Main(System.String[])


=========================== Installed Programs ============================

@BIOS (Version: 2.11)
A Game of Dwarves
ACDSee Pro 3 (Version: 3.0.355)
Adobe Flash Media Live Encoder 3.2 (Version: 3.2.0)
Adobe Flash Player 11 ActiveX (Version: 11.7.700.202)
Adobe Flash Player 11 Plugin (Version: 11.5.502.135)
Adobe Reader X (10.1.6) (Version: 10.1.6)
Analogue (Version: 1.3)
Analogue: A Hate Story
Apple Application Support (Version: 2.3.3)
Apple Mobile Device Support (Version: 6.1.0.13)
Apple Software Update (Version: 2.1.3.127)
Arx Fatalis
Assassin's Creed Revelations
ATLAS Translation Standard V14.0 Trial Version (Version: 14.00.2000)
avast! Free Antivirus (Version: 8.0.1483.0)
Bastion
Battlefield 3? (Version: 1.6.0.0)
Battlelog Web Plugins (Version: 2.1.3)
Bonjour (Version: 3.0.0.10)
Chivalry: Medieval Warfare
CosmicBreak_eng
Counter-Strike: Global Offensive
Counter-Strike: Global Offensive - SDK
Cry of Fear
Dead Pixels
Deadly 30 version 1.0 (Version: 1.0)
Desura (Version: 100.53)
Desura: Project Zomboid (Version: Fanboy)
DLC Quest
Dota 2
Drunken Robot Pornography
Dungeonland
Dust: An Elysian Tail
Dwarfs F2P
ESN Sonar (Version: 0.70.4)
ETHERVAPOR (Version: 1.0.0.129)
Family Project v1.0
Fast Free Converter (Version: 4.1)
Flexible Survival (Version: 1.6.373)
Frozen Synapse (Version: 32)
FTL: Faster Than Light
Galactic Civilizations I - Ultimate Edition (Version: 2.0.0.4)
Gargoyle
Garry's Mod
Garry's Mod 13 Beta
Go Go Nippon!
God Mode
GOG.com Downloader version 3.4.8 (Version: 3.4.8)
Google Chrome (Version: 27.0.1453.94)
Google Update Helper (Version: 1.3.21.145)
Guns of Icarus Online
Half Minute Hero: Super Mega Neo Climax Ultimate Boy
Hi-Rez Studios Authenticate and Update Service (Version: 3.0.0.0)
HP Deskjet 3510 series Basic Device Software (Version: 28.0.989.0)
HP Deskjet 3510 series Help (Version: 28.0.0)
HP Deskjet 3510 series Product Improvement Study (Version: 28.0.989.0)
HP Photo Creations (Version: 1.0.0.10572)
HP Update (Version: 5.003.003.001)
HyperCam 2 (Version: 2.27.01)
Inform 7
Intel® Control Center (Version: 1.2.1.1007)
Intel® Management Engine Components (Version: 7.0.0.1118)
Intel® Rapid Storage Technology (Version: 10.1.0.1008)
iTunes (Version: 11.0.2.26)
Java 7 Update 17 (Version: 7.0.170)
Java Auto Updater (Version: 2.1.9.0)
Jisei 1 (Version: 1)
Kansei 1 (Version: 1)
Katawa Shoujo
Killing Floor
League of Legends (Version: 1.3)
Left 4 Dead 2
Little Inferno
Magicka
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Mark of the Ninja
MechWarrior Online (Version: 1.2.0.0)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft SQL Server Compact 3.5 SP2 ENU (Version: 3.5.8080.0)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (Version: 3.5.8080.0)
Microsoft Visual Basic PowerPacks 10.0 (Version: 10.0.20911)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 (Version: 9.0.30411)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft XNA Framework Redistributable 3.1 (Version: 3.1.10527.0)
Microsoft XNA Framework Redistributable 4.0 Refresh (Version: 4.0.30901.0)
Miner Wars 2081
MinerWars (Version: 01.080.014)
Mozilla Firefox 21.0 (x86 en-US) (Version: 21.0)
Mozilla Maintenance Service (Version: 21.0)
Natural Selection 2
NVIDIA 3D Vision Driver 311.06 (Version: 311.06)
NVIDIA Control Panel 311.06 (Version: 311.06)
NVIDIA Graphics Driver 311.06 (Version: 311.06)
NVIDIA Install Application (Version: 2.1002.108.688)
NVIDIA PhysX (Version: 9.12.0613)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.1106)
NVIDIA Update 1.11.3 (Version: 1.11.3)
NVIDIA Update Components (Version: 1.11.3)
OGPlanet Game Launcher (Version: 1.0.0)
ON_OFF Charge B11.0110.1 (Version: 1.00.0001)
OpenAL
Orcs Must Die! 2
Organ Trail: Director's Cut
Origin (Version: 9.1.15.109)
Pando Media Booster (Version: 2.6.0.8)
PAYDAY: The Heist
Penny Arcade's On the Rain-Slick Precipice of Darkness 3
PlanetSide 2 (Version: 1.0.3.183)
PlanetSide 2 Beta
Poker Night 2
Poker Night at the Inventory
Portal 2
PreReq (Version: 6.2.4.0)
Primal Carnage
Primal Carnage Beta
Project Zomboid (remove only)
PunkBuster Services (Version: 0.991)
Ragnarok Online 2
Rags Suite (Version: 2.4.0)
Realtek Ethernet Controller Driver (Version: 7.36.1224.2010)
Realtek Ethernet Diagnostic Utility (Version: 1.00.0000)
Realtek High Definition Audio Driver (Version: 6.0.1.6282)
Retrovirus
Reus
Runespell: Overture
Sacrifice (Version: 2.0.0.3)
Saints Row: The Third
Sanctum 2
SavIP (Version: 1.0.0.3)
SavIP Launch Build (Version: 1.0.0.5)
Scribblenauts Unlimited
SD Gundam Capsule Fighter (Version: 1.0.0)
Shin Megami Tensei Imagine (Version: 1.678)
Skype Click to Call (Version: 6.9.12585)
Skype? 6.3 (Version: 6.3.107)
SlimDX SDK (September 2011) (Version: 2.0.12.43)
Smart 6 B10.1221.1 (Version: 1.00.0000)
Source Filmmaker
Source SDK
StarForge Alpha
Steam (Version: 1.0.0.0)
Super Sanctum TD
Surgeon Simulator 2013
Syndicate (Version: 2.0.0.11)
System Requirements Lab CYRI (Version: 5.0.6.0)
System Requirements Lab Detection (Version: 1.0.5.0)
System Shock 2 (Version: 2.1.0.19)
Team Fortress 2
The Binding of Isaac
The Dead Linger Alpha (Version: "1.1.1")
The Elder Scrolls V: Skyrim
The Witcher 2: Assassins of Kings Enhanced Edition
Torchlight
Total War: SHOGUN 2
Total War: Shogun 2 - Assembly Kit
Total War: Shogun 2 - TEd
Tribes Ascend (Version: 1.0.1185.2)
Ubisoft Game Launcher (Version: 1.0.0.0)
Unity Web Player (Version: )
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Uplink
VH Toolkit 1.0.15.0
VTFEdit 1.2.5
War of the Human Tanks (Version: 1.0)
War of the Roses Beta
Warframe
Warframe (Version: 1.0.0)
WinRAR 4.20 (32-bit) (Version: 4.20.0)
Wizardry Online (Version: 1.0.3.183)
Worms Armageddon
XCOM: Enemy Unknown Demo
Xiph.Org Open Codecs 0.85.17777 (Version: 0.85.17777)
XSplit (Version: 1.2.1303.0101)
YUME MIRU KUSURI (Version: 1.00.0000)
Zeno Clash 2
バンダイナムコオンライン ランチャー (Version: 1.0.0)
機動戦士ガンダムオンライン (Version: 1.0.0.0)
英雄*戦姫 (Version: 1.00.0000)

========================= Memory info: ===================================

Percentage of memory in use: 45%
Total physical RAM: 4079.48 MB
Available physical RAM: 2219.02 MB
Total Pagefile: 8157.16 MB
Available Pagefile: 6151.52 MB
Total Virtual: 4095.88 MB
Available Virtual: 3955.6 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:931.41 GB) (Free:492.21 GB) NTFS

========================= Users: ========================================

User accounts for \\CODY-PC

Administrator            Cody                     Guest                    
UpdatusUser              


**** End of log ****





Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2013.05.27.01

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Cody :: CODY-PC [administrator]

5/27/2013 2:18:33 AM
mbam-log-2013-05-27 (02-18-33).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 241941
Time elapsed: 3 minute(s), 55 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)






ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=88982df1428de241b2303326c9628664
# engine=13921
# end=finished
# remove_checked=true
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2013-05-27 10:06:02
# local_time=2013-05-27 03:06:02 (-0800, Pacific Daylight Time)
# country="United States"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=774 16777213 85 91 5749880 145441034 0 0
# compatibility_mode=5893 16776573 100 94 0 121192612 0 0
# scanned=456452
# found=3
# cleaned=3
# scan_time=8528
sh=E894D6F9F5A33D186D7759BF61D463975A0C244E ft=1 fh=dafad1154282da69 vn="Win32/DealPly.B application (deleted - quarantined)" ac=C fn="C:\Users\Cody\AppData\Local\Temp\dp.exe"
sh=1F103692D20FB119B64F951B27CFE9E5AB2DE301 ft=1 fh=8edf59d8455c51dd vn="a variant of Win32/Somoto.A application (cleaned by deleting - quarantined)" ac=C fn="C:\Users\Cody\Downloads\HC2Setup.exe"
sh=64733A1C8CA046A7B8364F7BF6FCCBAB202098CC ft=1 fh=e37c88eea2123c4e vn="a variant of Win32

Edited by redrain, 27 May 2013 - 02:28 AM.


#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,528 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:04 PM

Posted 27 May 2013 - 08:49 PM

Hello, Which browser and antivirus  do you use?

 

Please uninstall these through Control Panel/Uninstall.

 

Java 7 Update 17 (Version: 7.0.170)

Adobe Reader X.....these are outdated.

 

Dust: An Elysian Tail, ...this  is causing a lot of errors. You can install again when we are done.

 

Reboot and install

 

Adobe Reader XI

Java Version 7 Update 21


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 redrain

redrain
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:04:04 PM

Posted 27 May 2013 - 09:58 PM

Well I use Avast free antivirus, and firefox as my web browser. And on another note I believe I managed to narrow down the issue to plugin that installed without my knowledge that went by the name Fast Free Converter 4.1. I was going through avast in safe mode today checking out the new browser clean up tool, and the name stuck out to me as I never recall downloading something by that name so I quickly disabled the plugin to see if that was in fact the issue. As I quickly discovered it was in fact the source of the redirects as I have yet to be redirected to hot search once I disabled it, and removed the folder for said plugin seeing how the uninstaller that showed up in control panel appeared to Malware Avast recognized, and blocked.

Although I'm not so sure I'm entirely clean as IE still lists it as a plugin when I look through my plugins with Avast Browser clean up.

 

As for Dust that is a rather new game I picked up on Steam , but I have no issue uninstalling it for the time being if it's going to be an issue as we attempt to make sure my pc is given a clean bill of health.


Edited by redrain, 27 May 2013 - 10:01 PM.


#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,528 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:04 PM

Posted 27 May 2013 - 10:12 PM

Good that was why I asked what browser as next we were going to disable one by one till we found the culprit.

Looks good now.

Uninstall game.

Empty your temp folders using TFC (Temporary File Cleaner)

  • Please download TFC by Old Timer and save it to your desktop.
    alternate download link
  • Save any unsaved work. (TFC will close ALL open programs including your browser!)
  • Double-click on TFC.exe to run it. (If you are using Vista, right-click on the file and choose "Run As Administrator".)
  • Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
  • Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway allowing Windows to load normally (not into Safe Mode) to ensure a complete clean.
  • Install your game.

Edited by boopme, 27 May 2013 - 10:27 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 redrain

redrain
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:04:04 PM

Posted 27 May 2013 - 10:35 PM

Alright just got finished up all the steps up to this point, and other than IE still showing that plugin everything seems to be back to normal now. I think I'll worry about getting Dust reinstalled at a later date however as I have already cleared the game, and I'd rather focus on keeping an eye out for anything that might rear it's head. I must hand it to you that you've pointed me to a few new tools I've never touched before, and I'll certainly keep them in mind if something like this happens in the future.  So I thank you for the wonderful  support in dealing with this issue, but I do hope I won't be making a topic like this anytime soon, no offense of course.


Edited by redrain, 27 May 2013 - 10:41 PM.


#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,528 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:04 PM

Posted 27 May 2013 - 10:43 PM

Disable that add on

http://windows.microsoft.com/en-us/windows-vista/internet-explorer-add-ons-frequently-asked-questions


I have to leave now, but I'll look back.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 redrain

redrain
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:04:04 PM

Posted 27 May 2013 - 11:33 PM

Oh I still have it disabled through the Avast browser cleanup, and a quick check in IE shows that setting appears to have stuck. Tend not to touch IE unless I'm working with a fresh install myself as I prefer to use Firefox or Google Chrome.



#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,528 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:04 PM

Posted 28 May 2013 - 12:44 PM

Ok, but even if you do not use it you still need to keep any critical updates installed.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#11 redrain

redrain
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:04:04 PM

Posted 28 May 2013 - 08:15 PM

Yeah true enough, and I'll admit with some things I rarely use I'd tend to push the updates under the rug.



#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,528 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:04 PM

Posted 29 May 2013 - 08:15 PM

Updates are important. Most are released to fix security holes.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users