Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Internet Explorer hijacked


  • Please log in to reply
9 replies to this topic

#1 gerncranium

gerncranium

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:08:25 AM

Posted 09 June 2013 - 06:12 PM

I just finished getting rid of a Trojan horse virus and thought this problem would be fixed with that fix.  But it wasn't.  I cannot search without IE taking me somewhere I didn't ask to go.  I scanned with Malware Bytes and Adaware, but they found nothing.  What can I do?

Edit: Moved topic from Windows 7 to the more appropriate forum, as suggested by membership. ~ Animal

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,565 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:25 AM

Posted 09 June 2013 - 07:39 PM

Hello gerncranium, Appears you are still infected so lets get a look at these logs and see how it is after.

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results.



Please download AdwCleaner by Xplode onto your desktop.
Close all open programs and internet browsers.
Double click on adwcleaner.exe to run the tool.
Click on Delete.
Confirm each time with Ok.
You will be prompted to restart your computer. A text file will open after the restart.
Please post the contents of that logfile with your next reply.
You can find the logfile at C:\AdwCleaner[S1].txt as well.



Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 gerncranium

gerncranium
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:08:25 AM

Posted 10 June 2013 - 01:17 AM

MiniToolBox by Farbar  Version:21-04-2013
Ran by Blake (administrator) on 10-06-2013 at 01:13:33
Running from "C:\Users\Blake\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KMFMH307"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

 

========================= IP Configuration: ================================

Atheros AR9285 Wireless Network Adapter = Wireless Network Connection (Connected)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)

# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled

popd
# End of IPv4 configuration

 

Windows IP Configuration

   Host Name . . . . . . . . . . . . : Blake-VAIO
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Broadcast
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : suddenlink.net

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : 54-42-49-28-7A-A3
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

   Connection-specific DNS Suffix  . : suddenlink.net
   Description . . . . . . . . . . . : Atheros AR9285 Wireless Network Adapter
   Physical Address. . . . . . . . . : 78-DD-08-DC-A2-B7
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::b0dd:e27d:2d2f:377c%10(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.0.10(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Sunday, June 09, 2013 5:55:53 PM
   Lease Expires . . . . . . . . . . : Tuesday, June 11, 2013 11:30:06 PM
   Default Gateway . . . . . . . . . : 192.168.0.1
   DHCP Server . . . . . . . . . . . : 192.168.0.1
   DHCPv6 IAID . . . . . . . . . . . : 192470280
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-13-8D-2A-DE-54-42-49-28-7A-A3
   DNS Servers . . . . . . . . . . . : 192.168.0.1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Reusable Microsoft 6To4 Adapter:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft 6to4 Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter 6TO4 Adapter:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft 6to4 Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{30625CBE-05E0-49E4-8016-F1FA70204A25}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:10a6:34e8:3f57:fff5(Preferred)
   Link-local IPv6 Address . . . . . : fe80::10a6:34e8:3f57:fff5%18(Preferred)
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter Local Area Connection* 13:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : suddenlink.net
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.suddenlink.net:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{C95AAEC7-CC43-41C3-BA80-5AA2B163F007}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  suddenlink.net
Address:  192.168.0.1

Name:    google.com
Addresses:  2607:f8b0:4000:800::1006
   74.125.227.98
   74.125.227.99
   74.125.227.100
   74.125.227.101
   74.125.227.102
   74.125.227.103
   74.125.227.104
   74.125.227.105
   74.125.227.110
   74.125.227.96
   74.125.227.97

Pinging google.com [74.125.227.97] with 32 bytes of data:
Reply from 74.125.227.97: bytes=32 time=62ms TTL=50
Reply from 74.125.227.97: bytes=32 time=71ms TTL=50

Ping statistics for 74.125.227.97:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 62ms, Maximum = 71ms, Average = 66ms
Server:  suddenlink.net
Address:  192.168.0.1

Name:    yahoo.com
Addresses:  98.139.183.24
   206.190.36.45
   98.138.253.109

Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=60ms TTL=51
Reply from 98.138.253.109: bytes=32 time=58ms TTL=51

Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 58ms, Maximum = 60ms, Average = 59ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=12ms TTL=128
Reply from 127.0.0.1: bytes=32 time=6ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 6ms, Maximum = 12ms, Average = 9ms
===========================================================================
Interface List
 11...54 42 49 28 7a a3 ......Realtek PCIe GBE Family Controller
 10...78 dd 08 dc a2 b7 ......Atheros AR9285 Wireless Network Adapter
  1...........................Software Loopback Interface 1
 17...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #2
 16...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
 15...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
 18...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
 22...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.0.1     192.168.0.10     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.0.0    255.255.255.0         On-link      192.168.0.10    281
     192.168.0.10  255.255.255.255         On-link      192.168.0.10    281
    192.168.0.255  255.255.255.255         On-link      192.168.0.10    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.0.10    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.0.10    281
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 18     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 18     58 2001::/32                On-link
 18    306 2001:0:4137:9e76:10a6:34e8:3f57:fff5/128
                                    On-link
 10    281 fe80::/64                On-link
 18    306 fe80::/64                On-link
 18    306 fe80::10a6:34e8:3f57:fff5/128
                                    On-link
 10    281 fe80::b0dd:e27d:2d2f:377c/128
                                    On-link
  1    306 ff00::/8                 On-link
 18    306 ff00::/8                 On-link
 10    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 10 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 10 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (06/09/2013 11:58:52 PM) (Source: Customer Experience Improvement Program) (User: )
Description: 90080108

Error: (06/09/2013 10:57:43 PM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005

Error: (06/09/2013 06:03:25 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"1".
Dependent Assembly rpshellextension.1.0,language="*",type="win32",version="1.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (06/09/2013 06:03:25 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"1".
Dependent Assembly rpshellextension.1.0,language="*",type="win32",version="1.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (06/09/2013 06:00:27 PM) (Source: Application Error) (User: )
Description: Faulting application name: VAIO Sat Survey.exe, version: 0.0.0.0, time stamp: 0x4ae60b3e
Faulting module name: mscorwks.dll, version: 2.0.50727.5466, time stamp: 0x503ef7aa
Exception code: 0xc0000005
Fault offset: 0x000000000027bd2e
Faulting process id: 0x%9
Faulting application start time: 0xVAIO Sat Survey.exe0
Faulting application path: VAIO Sat Survey.exe1
Faulting module path: VAIO Sat Survey.exe2
Report Id: VAIO Sat Survey.exe3

Error: (06/09/2013 06:00:09 PM) (Source: .NET Runtime) (User: )
Description: .NET Runtime version 2.0.50727.5466 - Fatal Execution Engine Error (000007FEF2C7658A) (80131506)

Error: (06/09/2013 05:58:08 PM) (Source: CVHSVC) (User: )
Description: Information only.
Error: Cannot connect to SoftGrid Service Type: 95::SoftGridConfigurationFailure.

Error: (06/09/2013 05:50:06 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"1".
Dependent Assembly rpshellextension.1.0,language="*",type="win32",version="1.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (06/09/2013 05:50:06 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"1".
Dependent Assembly rpshellextension.1.0,language="*",type="win32",version="1.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (06/09/2013 01:34:45 PM) (Source: Application Hang) (User: )
Description: The program IEXPLORE.EXE version 10.0.9200.16576 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 14e4

Start Time: 01ce653fe40b2a75

Termination Time: 170

Application Path: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

Report Id:

System errors:
=============
Error: (06/09/2013 05:59:31 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
Lbd

Error: (06/09/2013 05:59:29 PM) (Source: Service Control Manager) (User: )
Description: The Client Virtualization Handler service hung on starting.

Error: (06/09/2013 05:55:37 PM) (Source: atikmdag) (User: )
Description: Display is not active

Error: (06/09/2013 05:55:37 PM) (Source: atikmdag) (User: )
Description: CPLIB :: General - Invalid Parameter

Error: (06/09/2013 05:50:17 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (06/09/2013 05:50:17 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (06/09/2013 05:50:17 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (06/09/2013 05:50:17 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (06/09/2013 05:50:17 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (06/09/2013 05:50:17 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
  Date: 2012-09-13 23:28:14.399
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-09-13 23:28:14.243
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-06-17 16:01:54.313
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\cryptnet.dll because the set of per-page image hashes could not be found on the system.

  Date: 2012-06-17 16:01:54.193
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\cryptnet.dll because the set of per-page image hashes could not be found on the system.

  Date: 2012-06-17 16:01:54.051
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\gpapi.dll because the set of per-page image hashes could not be found on the system.

  Date: 2012-06-17 16:01:53.901
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\gpapi.dll because the set of per-page image hashes could not be found on the system.

  Date: 2012-05-21 15:26:02.746
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\cryptnet.dll because the set of per-page image hashes could not be found on the system.

  Date: 2012-05-21 15:26:02.646
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\cryptnet.dll because the set of per-page image hashes could not be found on the system.

  Date: 2012-05-21 15:26:02.556
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\cryptnet.dll because the set of per-page image hashes could not be found on the system.

  Date: 2012-05-21 15:26:02.456
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\cryptnet.dll because the set of per-page image hashes could not be found on the system.

=========================== Installed Programs ============================

 Update for Microsoft Office 2007 (KB2508958)
7-Zip 4.57
Ad-Aware Antivirus (Version: 10.5.2.4379)
Adobe AIR (Version: 2.7.0.19530)
Adobe Anchor Service CS3 (Version: 1.0)
Adobe Asset Services CS3 (Version: 3)
Adobe Bridge CS3 (Version: 2)
Adobe Bridge Start Meeting (Version: 1.0)
Adobe Camera Raw 4.0 (Version: 4.0)
Adobe CMaps (Version: 1.0)
Adobe Contribute CS3 (Version: 4.1)
Adobe Default Language CS3 (Version: 1.0)
Adobe Download Assistant (Version: 1.0.6)
Adobe ExtendScript Toolkit 2 (Version: 2.0)
Adobe Flash Player 11 ActiveX (Version: 11.7.700.202)
Adobe Flash Player 11 Plugin (Version: 11.7.700.202)
Adobe Help Viewer CS3 (Version: 1)
Adobe PDF Library Files (Version: 8.0)
Adobe Reader X (10.1.5) (Version: 10.1.5)
Adobe Setup (Version: 1.0)
Adobe Type Support (Version: 1.0)
Adobe Update Manager CS3 (Version: 5.1.0)
Adobe Version Cue CS3 Client (Version: 3)
Alps Pointing-device for VAIO
AMD USB Filter Driver (Version: 1.0.15.94)
Any Video Converter 3.3.0
AOL Toolbar
AOL Uninstaller (Choose which Products to Remove)
Apple Application Support (Version: 2.3.4)
Apple Mobile Device Support (Version: 6.1.0.13)
Apple Software Update (Version: 2.1.3.127)
Application Manager for VAIO
ArcSoft MediaImpression HD Edition (Version: 3.5.255.985)
ATI Catalyst Install Manager (Version: 3.0.765.0)
AVG 2013 (Version: 13.0.3199)
AVG 2013 (Version: 13.0.3343)
AVG 2013 (Version: 2013.0.3343)
AVS Update Manager 1.0
AVS Video Converter 8
AVS4YOU Software Navigator 1.4
Bing Bar (Version: 7.0.619.0)
Bonjour (Version: 3.0.0.10)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Core Implementation (Version: 2010.0302.2233.40412)
Catalyst Control Center Graphics Full Existing (Version: 2010.0302.2233.40412)
Catalyst Control Center Graphics Full New (Version: 2010.0302.2233.40412)
Catalyst Control Center Graphics Light (Version: 2010.0302.2233.40412)
Catalyst Control Center Graphics Previews Common (Version: 2010.0302.2233.40412)
Catalyst Control Center Graphics Previews Vista (Version: 2010.0302.2233.40412)
Catalyst Control Center InstallProxy (Version: 2010.0302.2233.40412)
Catalyst Control Center Localization All (Version: 2010.0302.2233.40412)
CCC Help Chinese Standard (Version: 2010.0302.2232.40412)
CCC Help Chinese Traditional (Version: 2010.0302.2232.40412)
CCC Help Dutch (Version: 2010.0302.2232.40412)
CCC Help Japanese (Version: 2010.0302.2232.40412)
CCC Help Korean (Version: 2010.0302.2232.40412)
CCC Help Norwegian (Version: 2010.0302.2232.40412)
CCC Help Polish (Version: 2010.0302.2232.40412)
CCC Help Portuguese (Version: 2010.0302.2232.40412)
CCC Help Russian (Version: 2010.0302.2232.40412)
CCC Help Swedish (Version: 2010.0302.2232.40412)
CCC Help Thai (Version: 2010.0302.2232.40412)
CCC Help Turkish (Version: 2010.0302.2232.40412)
ccc-utility64 (Version: 2010.0302.2233.40412)
Click to Disc MergeModules x64 (Version: 1.0.14230)
D3DX10 (Version: 15.4.2368.0902)
EPSON N10 N11 Series Printer Uninstall
Evernote (Version: 3.5.2.1525)
File Type Assistant
FinalTorrent 2011
Google Chrome (Version: 27.0.1453.110)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.4.3607.2246)
Google Update Helper (Version: 1.3.21.145)
Graboid Video 2.06 (Version: 2.06)
iCloud (Version: 2.1.2.8)
iTunes (Version: 11.0.3.42)
Java™ 6 Update 18 (64-bit) (Version: 6.0.180)
Java™ 6 Update 35 (Version: 6.0.350)
Junk Mail filter update (Version: 15.4.3502.0922)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Maxtor OneTouch III (Version: 3.02.0060)
Media Gallery (Version: 1.2.0.15040)
Media Gallery MergeModules x64 (Version: 1.0.14250)
Mesh Runtime (Version: 15.4.5722.2)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook Connector (Version: 14.0.5118.5000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.20125.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft SQL Server 2008 Browser (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Common Files (Version: 10.0.1600.22)
Microsoft SQL Server 2008 Common Files (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Database Engine Services (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Database Engine Shared (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Native Client (Version: 10.1.2531.0)
Microsoft SQL Server 2008 RsFx Driver (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Setup Support Files  (Version: 10.1.2531.0)
Microsoft SQL Server Compact 3.5 SP2 ENU (Version: 3.5.8080.0)
Microsoft SQL Server VSS Writer (Version: 10.1.2531.0)
Microsoft VC9 runtime libraries (Version: 1.0.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Works 6-9 Converter (Version: 14.0.6120.5002)
MobileMe Control Panel (Version: 3.1.8.0)
MSI_SPF_x64 (Version: 1.0.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Oasis2Service (Version: 1.0.1)
OOBE (Version: 3.00.0215)
OpenOffice.org 3.3 (Version: 3.3.9567)
PD+Rescue for iPod v2.3.1
Picasa 3 (Version: 3.9)
PlayReady PC Runtime amd64 (Version: 1.3.0)
PMB (Version: 5.1.02.03310)
PMB VAIO Edition Guide (Version: 1.1.00.14080)
PMB VAIO Edition plug-in (Click to Disc) (Version: 3.1.00.15080)
PMB VAIO Edition plug-in (VAIO Image Optimizer) (Version: 1.1.00.15040)
PMB VAIO Edition plug-in (VAIO Movie Story) (Version: 2.1.00.15080)
QuickTime (Version: 7.74.80.86)
RealDownloader (Version: 1.3.1)
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0)
RealPlayer (Version: 16.0.0)
Realtek HDMI Audio Driver for ATI (Version: 6.0.1.6034)
Realtek High Definition Audio Driver (Version: 6.0.1.6069)
Realtek USB 2.0 Card Reader (Version: 6.1.7600.30116)
RealUpgrade 1.1 (Version: 1.1.0)
Recuva (Version: 1.42)
Remote Keyboard (Version: 1.1.1.07060)
Safari (Version: 5.34.57.2)
Service Pack 1 for SQL Server 2008 (KB968369) (Version: 10.1.2531.0)
Setting Utility Series (Version: 5.2.0.15250)
Sibelius Scorch (ActiveX Only) (Version: 6.2.0)
Skype Click to Call (Version: 5.6.8442)
Skype™ 6.3 (Version: 6.3.105)
SmartWi Connection Utility (Version: 4.10.4.20100121.2442)
SMPlayer 0.6.9 (Version: 0.6.9)
Sony Home Network Library (Version: 2.1.0.14240)
SpyHunter (Version: 4.12.13.4202)
Sql Server Customer Experience Improvement Program (Version: 10.1.2531.0)
The Weather Channel Desktop 6
Uninstall AOL Emergency Connect Utility 1.0
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596802) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2817359) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Updater By SweetPacks 2.0.0.566 (Version: 2.0.0.566)
VAIO - Remote Keyboard (Version: 1.1.0.07060)
VAIO Content Monitoring Settings (Version: 2.5.0.13220)
VAIO Control Center (Version: 4.2.0.15020)
VAIO Data Restore Tool (Version: 1.3.0.13150)
VAIO DVD Menu Data (Version: 2.1.00.13210)
VAIO Entertainment Platform (Version: 3.7.0.16080)
VAIO Event Service (Version: 5.2.0.15020)
VAIO Gate (Version: 2.4.2.02200)
VAIO Gate Default (Version: 2.0.0.04160)
VAIO Hardware Diagnostics (Version: 3.9.1)
VAIO Help and Support (Version: 11.00.0225)
VAIO Help and Support Update (Version: 1.00.0309)
VAIO Manual (Version: 1.0.0.03290)
VAIO Media plus (Version: 2.1.0.15040)
VAIO Media plus Opening Movie (Version: 2.1.0.14080)
VAIO Movie Story MergeModules x64 (Version: 1.0.14240)
VAIO Movie Story Template Data (Version: 2.1.00.14040)
VAIO Original Function Settings (Version: 2.1.0.13120)
VAIO Power Management (Version: 5.1.0.15250)
VAIO Sample Contents (Version: 1.2.0.16080)
VAIO Survey (Version: 6.00.1028)
VAIO Transfer Support (Version: 1.1.2.06030)
VAIO Update (Version: 6.1.1.10250)
VAIO Wallpaper Contents (Version: 2.1.0.14090)
VGClientX64 (Version: 1.0.0)
VGClientX86 (Version: 1.0.0)
Visual C++ 2008 x86 Runtime - (v9.0.30729) (Version: 9.0.30729)
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (Version: 9.0.30729.01)
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1)
VLC media player 2.0.6 (Version: 2.0.6)
VMp MergeModule x64 (Version: 1.0.0)
VU5x64 (Version: 1.1.0)
VU5x86 (Version: 1.0.0)
VU5x86 (Version: 1.1.0)
WIDCOMM Bluetooth Software (Version: 6.2.1.500)
Windows Driver Package - Broadcom Bluetooth  (09/09/2009 6.2.0.9405) (Version: 09/09/2009 6.2.0.9405)
Windows Driver Package - Broadcom HIDClass  (07/28/2009 6.2.0.9800) (Version: 07/28/2009 6.2.0.9800)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live Family Safety (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
WinZip 15.5 (Version: 15.5.9510)
Yahoo! Messenger

========================= Memory info: ===================================

Percentage of memory in use: 45%
Total physical RAM: 3834.9 MB
Available physical RAM: 2098.77 MB
Total Pagefile: 7667.98 MB
Available Pagefile: 5613.38 MB
Total Virtual: 4095.88 MB
Available Virtual: 3967.32 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:288.41 GB) (Free:67.86 GB) NTFS

========================= Users: ========================================

User accounts for \\BLAKE-VAIO

Administrator            Blake                    Guest             



#4 gerncranium

gerncranium
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:08:25 AM

Posted 10 June 2013 - 01:20 AM

01:16:29.0521 5700  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
01:16:30.0262 5700  ============================================================
01:16:30.0262 5700  Current date / time: 2013/06/10 01:16:30.0262
01:16:30.0262 5700  SystemInfo:
01:16:30.0262 5700 
01:16:30.0263 5700  OS Version: 6.1.7601 ServicePack: 1.0
01:16:30.0263 5700  Product type: Workstation
01:16:30.0263 5700  ComputerName: BLAKE-VAIO
01:16:30.0263 5700  UserName: Blake
01:16:30.0263 5700  Windows directory: C:\Windows
01:16:30.0263 5700  System windows directory: C:\Windows
01:16:30.0263 5700  Running under WOW64
01:16:30.0263 5700  Processor architecture: Intel x64
01:16:30.0263 5700  Number of processors: 2
01:16:30.0263 5700  Page size: 0x1000
01:16:30.0263 5700  Boot type: Normal boot
01:16:30.0263 5700  ============================================================
01:16:34.0258 5700  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
01:16:34.0263 5700  ============================================================
01:16:34.0263 5700  \Device\Harddisk0\DR0:
01:16:34.0263 5700  MBR partitions:
01:16:34.0263 5700  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x132C800, BlocksNum 0x32000
01:16:34.0263 5700  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x135E800, BlocksNum 0x240CFAB0
01:16:34.0263 5700  ============================================================
01:16:34.0293 5700  C: <-> \Device\Harddisk0\DR0\Partition2
01:16:34.0293 5700  ============================================================
01:16:34.0293 5700  Initialize success
01:16:34.0293 5700  ============================================================
01:17:08.0503 5388  ============================================================
01:17:08.0503 5388  Scan started
01:17:08.0503 5388  Mode: Manual; TDLFS;
01:17:08.0503 5388  ============================================================
01:17:09.0806 5388  ================ Scan system memory ========================
01:17:09.0806 5388  System memory - ok
01:17:09.0807 5388  ================ Scan services =============================
01:17:09.0985 5388  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
01:17:09.0989 5388  1394ohci - ok
01:17:10.0067 5388  [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon        C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
01:17:10.0070 5388  ACDaemon - ok
01:17:10.0141 5388  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
01:17:10.0145 5388  ACPI - ok
01:17:10.0173 5388  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
01:17:10.0174 5388  AcpiPmi - ok
01:17:10.0278 5388  [ 9D90344179ED6A05959DE40FC934A022 ] Ad-Aware Service C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareService.exe
01:17:10.0302 5388  Ad-Aware Service - ok
01:17:10.0407 5388  [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
01:17:10.0410 5388  AdobeARMservice - ok
01:17:10.0553 5388  [ F040037B149FD0F5A5044AE563390FA7 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
01:17:10.0557 5388  AdobeFlashPlayerUpdateSvc - ok
01:17:10.0626 5388  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
01:17:10.0638 5388  adp94xx - ok
01:17:10.0674 5388  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
01:17:10.0684 5388  adpahci - ok
01:17:10.0710 5388  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
01:17:10.0713 5388  adpu320 - ok
01:17:10.0751 5388  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
01:17:10.0752 5388  AeLookupSvc - ok
01:17:10.0842 5388  [ 6CCD1135320109D6B219F1A6E04AD9F6 ] Afc             C:\Windows\syswow64\drivers\Afc.sys
01:17:10.0844 5388  Afc - ok
01:17:10.0935 5388  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
01:17:10.0945 5388  AFD - ok
01:17:11.0017 5388  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
01:17:11.0019 5388  agp440 - ok
01:17:11.0034 5388  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
01:17:11.0036 5388  ALG - ok
01:17:11.0097 5388  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
01:17:11.0098 5388  aliide - ok
01:17:11.0151 5388  [ D696F317BD465A602566F8E1DCCE15F7 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
01:17:11.0154 5388  AMD External Events Utility - ok
01:17:11.0171 5388  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
01:17:11.0173 5388  amdide - ok
01:17:11.0210 5388  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
01:17:11.0213 5388  AmdK8 - ok
01:17:11.0371 5388  [ D1D06810BF7E21F5763EB06CB7E7262B ] amdkmdag        C:\Windows\system32\DRIVERS\atipmdag.sys
01:17:11.0548 5388  amdkmdag - ok
01:17:11.0586 5388  [ 6BA71D6616B56816E57394D77DD1BB6F ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
01:17:11.0590 5388  amdkmdap - ok
01:17:11.0628 5388  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
01:17:11.0630 5388  AmdPPM - ok
01:17:11.0677 5388  [ 53D8D46D51D390ABDB54ECA623165CB7 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
01:17:11.0679 5388  amdsata - ok
01:17:11.0716 5388  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
01:17:11.0721 5388  amdsbs - ok
01:17:11.0735 5388  [ 75C51148154E34EB3D7BB84749A758D5 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
01:17:11.0736 5388  amdxata - ok
01:17:11.0764 5388  [ 08E8A4172C57ABD7693A6915CF1E7A99 ] amd_sata        C:\Windows\system32\DRIVERS\amd_sata.sys
01:17:11.0765 5388  amd_sata - ok
01:17:11.0799 5388  [ 9866AF4E4AD7F16E810B6C0B8473F9CD ] amd_xata        C:\Windows\system32\DRIVERS\amd_xata.sys
01:17:11.0800 5388  amd_xata - ok
01:17:11.0880 5388  [ 85180CF88C5EBAD73B452A43A004CA51 ] AOL ACS         C:\Program Files (x86)\Common Files\AOL\ACS\AOLAcsd.exe
01:17:11.0883 5388  AOL ACS - ok
01:17:11.0951 5388  [ 29D63D80F23DA504BAA2DB5D260DD4BD ] ApfiltrService  C:\Windows\system32\DRIVERS\Apfiltr.sys
01:17:11.0955 5388  ApfiltrService - ok
01:17:12.0024 5388  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
01:17:12.0026 5388  AppID - ok
01:17:12.0067 5388  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
01:17:12.0068 5388  AppIDSvc - ok
01:17:12.0121 5388  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\Windows\System32\appinfo.dll
01:17:12.0122 5388  Appinfo - ok
01:17:12.0197 5388  [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
01:17:12.0200 5388  Apple Mobile Device - ok
01:17:12.0244 5388  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\drivers\arc.sys
01:17:12.0246 5388  arc - ok
01:17:12.0278 5388  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\drivers\arcsas.sys
01:17:12.0281 5388  arcsas - ok
01:17:12.0449 5388  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
01:17:12.0453 5388  aspnet_state - ok
01:17:12.0480 5388  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
01:17:12.0482 5388  AsyncMac - ok
01:17:12.0544 5388  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
01:17:12.0547 5388  atapi - ok
01:17:12.0600 5388  [ D6CAD7E5B05055BB8226BDCB1644DA27 ] athr            C:\Windows\system32\DRIVERS\athrx.sys
01:17:12.0632 5388  athr - ok
01:17:12.0787 5388  [ 52BD95CAA9CAE8977FE043E9AD6D2D0E ] atikmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
01:17:12.0914 5388  atikmdag - ok
01:17:12.0957 5388  [ 7C5D273E29DCC5505469B299C6F29163 ] AtiPcie         C:\Windows\system32\drivers\AtiPcie.sys
01:17:12.0959 5388  AtiPcie - ok
01:17:13.0034 5388  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
01:17:13.0049 5388  AudioEndpointBuilder - ok
01:17:13.0061 5388  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
01:17:13.0066 5388  AudioSrv - ok
01:17:13.0291 5388  [ 50185186719134FA8F307D269106A51C ] AVGIDSAgent     C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
01:17:13.0325 5388  AVGIDSAgent - ok
01:17:13.0401 5388  [ 139BD30C32BEE830D0CF39C5324D79DE ] AVGIDSDriver    C:\Windows\system32\DRIVERS\avgidsdrivera.sys
01:17:13.0408 5388  AVGIDSDriver - ok
01:17:13.0474 5388  [ 2940FACB6EF92BD1936E4A1E2502468E ] AVGIDSHA        C:\Windows\system32\DRIVERS\avgidsha.sys
01:17:13.0476 5388  AVGIDSHA - ok
01:17:13.0528 5388  [ 54B66C4AEEC6C4F742F3569EBA03EBB8 ] Avgldx64        C:\Windows\system32\DRIVERS\avgldx64.sys
01:17:13.0532 5388  Avgldx64 - ok
01:17:13.0585 5388  [ 13667B5D6310228A9FEF2BA5FCD9081F ] Avgloga         C:\Windows\system32\DRIVERS\avgloga.sys
01:17:13.0589 5388  Avgloga - ok
01:17:13.0638 5388  [ BE82F9A1F2CCF4CE746D0C645D94079E ] Avgmfx64        C:\Windows\system32\DRIVERS\avgmfx64.sys
01:17:13.0642 5388  Avgmfx64 - ok
01:17:13.0704 5388  [ 5D11620DEF66F9DC9468FEE385A8429B ] Avgrkx64        C:\Windows\system32\DRIVERS\avgrkx64.sys
01:17:13.0706 5388  Avgrkx64 - ok
01:17:13.0768 5388  [ 69BD90E337625F96C718CACE7A9C9E29 ] Avgtdia         C:\Windows\system32\DRIVERS\avgtdia.sys
01:17:13.0775 5388  Avgtdia - ok
01:17:13.0811 5388  [ 3B5657B6C11CDA87F664DD6F7DD0702D ] avgtp           C:\Windows\system32\drivers\avgtpx64.sys
01:17:13.0832 5388  avgtp - ok
01:17:13.0910 5388  [ 3A0977CB68AF13E2579E47EB8984056B ] avgwd           C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
01:17:13.0915 5388  avgwd - ok
01:17:13.0979 5388  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
01:17:13.0982 5388  AxInstSV - ok
01:17:14.0035 5388  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
01:17:14.0042 5388  b06bdrv - ok
01:17:14.0076 5388  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
01:17:14.0081 5388  b57nd60a - ok
01:17:14.0196 5388  [ 0D1EA7509F394D8B705B239EE71F5118 ] BBSvc           C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
01:17:14.0201 5388  BBSvc - ok
01:17:14.0241 5388  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
01:17:14.0243 5388  BDESVC - ok
01:17:14.0276 5388  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
01:17:14.0278 5388  Beep - ok
01:17:14.0357 5388  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
01:17:14.0366 5388  BFE - ok
01:17:14.0433 5388  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
01:17:14.0456 5388  BITS - ok
01:17:14.0510 5388  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
01:17:14.0512 5388  blbdrive - ok
01:17:14.0621 5388  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
01:17:14.0625 5388  Bonjour Service - ok
01:17:14.0701 5388  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
01:17:14.0703 5388  bowser - ok
01:17:14.0735 5388  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
01:17:14.0736 5388  BrFiltLo - ok
01:17:14.0768 5388  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
01:17:14.0769 5388  BrFiltUp - ok
01:17:14.0832 5388  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
01:17:14.0836 5388  Browser - ok
01:17:14.0896 5388  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
01:17:14.0901 5388  Brserid - ok
01:17:14.0925 5388  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
01:17:14.0928 5388  BrSerWdm - ok
01:17:14.0940 5388  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
01:17:14.0942 5388  BrUsbMdm - ok
01:17:14.0964 5388  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
01:17:14.0966 5388  BrUsbSer - ok
01:17:15.0031 5388  [ CF98190A94F62E405C8CB255018B2315 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
01:17:15.0032 5388  BthEnum - ok
01:17:15.0078 5388  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
01:17:15.0081 5388  BTHMODEM - ok
01:17:15.0121 5388  [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
01:17:15.0123 5388  BthPan - ok
01:17:15.0173 5388  [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT         C:\Windows\System32\Drivers\BTHport.sys
01:17:15.0182 5388  BTHPORT - ok
01:17:15.0225 5388  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
01:17:15.0227 5388  bthserv - ok
01:17:15.0254 5388  [ F188B7394D81010767B6DF3178519A37 ] BTHUSB          C:\Windows\System32\Drivers\BTHUSB.sys
01:17:15.0257 5388  BTHUSB - ok
01:17:15.0299 5388  [ 5C849BD7C78791C5CEE9F4651D7FE38D ] btwavdt         C:\Windows\system32\drivers\btwavdt.sys
01:17:15.0302 5388  btwavdt - ok
01:17:15.0383 5388  [ 31DA517946FFE416442E864592548F8A ] btwdins         C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
01:17:15.0389 5388  btwdins - ok
01:17:15.0412 5388  [ 3E1991AFA851A36DC978B0A1B0535C8B ] btwrchid        C:\Windows\system32\drivers\btwrchid.sys
01:17:15.0415 5388  btwrchid - ok
01:17:15.0456 5388  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
01:17:15.0458 5388  cdfs - ok
01:17:15.0529 5388  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
01:17:15.0534 5388  cdrom - ok
01:17:15.0600 5388  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
01:17:15.0602 5388  CertPropSvc - ok
01:17:15.0632 5388  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\drivers\circlass.sys
01:17:15.0634 5388  circlass - ok
01:17:15.0666 5388  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
01:17:15.0671 5388  CLFS - ok
01:17:15.0736 5388  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
01:17:15.0740 5388  clr_optimization_v2.0.50727_32 - ok
01:17:15.0802 5388  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
01:17:15.0806 5388  clr_optimization_v2.0.50727_64 - ok
01:17:15.0938 5388  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
01:17:15.0940 5388  clr_optimization_v4.0.30319_32 - ok
01:17:15.0960 5388  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
01:17:15.0962 5388  clr_optimization_v4.0.30319_64 - ok
01:17:15.0986 5388  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
01:17:15.0988 5388  CmBatt - ok
01:17:16.0012 5388  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
01:17:16.0015 5388  cmdide - ok
01:17:16.0070 5388  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
01:17:16.0085 5388  CNG - ok
01:17:16.0140 5388  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
01:17:16.0141 5388  Compbatt - ok
01:17:16.0184 5388  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
01:17:16.0186 5388  CompositeBus - ok
01:17:16.0199 5388  COMSysApp - ok
01:17:16.0226 5388  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
01:17:16.0228 5388  crcdisk - ok
01:17:16.0285 5388  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc        C:\Windows\system32\cryptsvc.dll
01:17:16.0288 5388  CryptSvc - ok
01:17:16.0439 5388  [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc          C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
01:17:16.0450 5388  cvhsvc - ok
01:17:16.0528 5388  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
01:17:16.0542 5388  DcomLaunch - ok
01:17:16.0598 5388  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
01:17:16.0602 5388  defragsvc - ok
01:17:16.0617 5388  dfg - ok
01:17:16.0669 5388  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
01:17:16.0672 5388  DfsC - ok
01:17:16.0712 5388  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
01:17:16.0716 5388  Dhcp - ok
01:17:16.0744 5388  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
01:17:16.0745 5388  discache - ok
01:17:16.0789 5388  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\drivers\disk.sys
01:17:16.0791 5388  Disk - ok
01:17:16.0842 5388  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
01:17:16.0850 5388  Dnscache - ok
01:17:16.0906 5388  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
01:17:16.0914 5388  dot3svc - ok
01:17:16.0971 5388  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
01:17:16.0974 5388  DPS - ok
01:17:16.0996 5388  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
01:17:16.0997 5388  drmkaud - ok
01:17:17.0076 5388  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
01:17:17.0098 5388  DXGKrnl - ok
01:17:17.0218 5388  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
01:17:17.0223 5388  EapHost - ok
01:17:17.0324 5388  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\drivers\evbda.sys
01:17:17.0360 5388  ebdrv - ok
01:17:17.0399 5388  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
01:17:17.0401 5388  EFS - ok
01:17:17.0489 5388  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
01:17:17.0505 5388  ehRecvr - ok
01:17:17.0544 5388  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
01:17:17.0546 5388  ehSched - ok
01:17:17.0603 5388  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
01:17:17.0610 5388  elxstor - ok
01:17:17.0724 5388  [ 7DB097F4F6786307168C0DDDEC43A565 ] EPSON_EB_RPCV4_04 C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE
01:17:17.0728 5388  EPSON_EB_RPCV4_04 - ok
01:17:17.0770 5388  [ 258AA65A0862E19B7DE6981FDA3758AD ] EPSON_PM_RPCV4_04 C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
01:17:17.0775 5388  EPSON_PM_RPCV4_04 - ok
01:17:17.0826 5388  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
01:17:17.0828 5388  ErrDev - ok
01:17:17.0874 5388  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
01:17:17.0880 5388  EventSystem - ok
01:17:17.0913 5388  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
01:17:17.0917 5388  exfat - ok
01:17:17.0937 5388  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
01:17:17.0941 5388  fastfat - ok
01:17:18.0015 5388  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
01:17:18.0024 5388  Fax - ok
01:17:18.0058 5388  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\drivers\fdc.sys
01:17:18.0060 5388  fdc - ok
01:17:18.0096 5388  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
01:17:18.0098 5388  fdPHost - ok
01:17:18.0106 5388  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
01:17:18.0108 5388  FDResPub - ok
01:17:18.0116 5388  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
01:17:18.0118 5388  FileInfo - ok
01:17:18.0133 5388  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
01:17:18.0134 5388  Filetrace - ok
01:17:18.0221 5388  [ 227846995AFEEFA70D328BF5334A86A5 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
01:17:18.0230 5388  FLEXnet Licensing Service - ok
01:17:18.0255 5388  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
01:17:18.0257 5388  flpydisk - ok
01:17:18.0306 5388  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
01:17:18.0310 5388  FltMgr - ok
01:17:18.0393 5388  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
01:17:18.0413 5388  FontCache - ok
01:17:18.0490 5388  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
01:17:18.0494 5388  FontCache3.0.0.0 - ok
01:17:18.0534 5388  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
01:17:18.0537 5388  FsDepends - ok
01:17:18.0610 5388  [ 07DA62C960DDCCC2D35836AEAB4FC578 ] fssfltr         C:\Windows\system32\DRIVERS\fssfltr.sys
01:17:18.0613 5388  fssfltr - ok
01:17:18.0736 5388  [ 28DDEEEC44E988657B732CF404D504CB ] fsssvc          C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
01:17:18.0757 5388  fsssvc - ok
01:17:18.0803 5388  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
01:17:18.0805 5388  Fs_Rec - ok
01:17:18.0878 5388  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
01:17:18.0884 5388  fvevol - ok
01:17:18.0927 5388  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
01:17:18.0929 5388  gagp30kx - ok
01:17:18.0983 5388  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
01:17:18.0985 5388  GEARAspiWDM - ok
01:17:19.0069 5388  [ 14908F4F9005C29DE8F5587E271390EE ] gfibto          C:\Windows\system32\drivers\gfibto.sys
01:17:19.0070 5388  gfibto - ok
01:17:19.0137 5388  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
01:17:19.0148 5388  gpsvc - ok
01:17:19.0223 5388  [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
01:17:19.0225 5388  gupdate - ok
01:17:19.0261 5388  [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
01:17:19.0262 5388  gupdatem - ok
01:17:19.0290 5388  [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
01:17:19.0294 5388  gusvc - ok
01:17:19.0306 5388  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
01:17:19.0309 5388  hcw85cir - ok
01:17:19.0385 5388  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
01:17:19.0391 5388  HdAudAddService - ok
01:17:19.0468 5388  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
01:17:19.0471 5388  HDAudBus - ok
01:17:19.0509 5388  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
01:17:19.0512 5388  HidBatt - ok
01:17:19.0558 5388  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
01:17:19.0565 5388  HidBth - ok
01:17:19.0578 5388  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\drivers\hidir.sys
01:17:19.0580 5388  HidIr - ok
01:17:19.0602 5388  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
01:17:19.0604 5388  hidserv - ok
01:17:19.0641 5388  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
01:17:19.0643 5388  HidUsb - ok
01:17:19.0697 5388  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
01:17:19.0700 5388  hkmsvc - ok
01:17:19.0743 5388  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
01:17:19.0747 5388  HomeGroupListener - ok
01:17:19.0795 5388  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
01:17:19.0799 5388  HomeGroupProvider - ok
01:17:19.0878 5388  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
01:17:19.0881 5388  HpSAMD - ok
01:17:19.0970 5388  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
01:17:19.0987 5388  HTTP - ok
01:17:20.0040 5388  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
01:17:20.0068 5388  hwpolicy - ok
01:17:20.0133 5388  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
01:17:20.0136 5388  i8042prt - ok
01:17:20.0166 5388  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
01:17:20.0172 5388  iaStorV - ok
01:17:20.0214 5388  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
01:17:20.0226 5388  idsvc - ok
01:17:20.0249 5388  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
01:17:20.0251 5388  iirsp - ok
01:17:20.0314 5388  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
01:17:20.0324 5388  IKEEXT - ok
01:17:20.0441 5388  [ 490947A9AFF7CA31EF2E08F5776105EB ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
01:17:20.0522 5388  IntcAzAudAddService - ok
01:17:20.0563 5388  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
01:17:20.0564 5388  intelide - ok
01:17:20.0610 5388  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\drivers\intelppm.sys
01:17:20.0612 5388  intelppm - ok
01:17:20.0647 5388  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
01:17:20.0650 5388  IPBusEnum - ok
01:17:20.0702 5388  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
01:17:20.0704 5388  IpFilterDriver - ok
01:17:20.0788 5388  [ 08C2957BB30058E663720C5606885653 ] IpHlpSvc        C:\Windows\System32\iphlpsvc.dll
01:17:20.0795 5388  IpHlpSvc - ok
01:17:20.0851 5388  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
01:17:20.0853 5388  IPMIDRV - ok
01:17:20.0892 5388  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
01:17:20.0896 5388  IPNAT - ok
01:17:20.0976 5388  [ 2872B90D57C8310194A78A9787406467 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
01:17:20.0980 5388  iPod Service - ok
01:17:21.0013 5388  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
01:17:21.0015 5388  IRENUM - ok
01:17:21.0046 5388  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
01:17:21.0048 5388  isapnp - ok
01:17:21.0112 5388  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
01:17:21.0116 5388  iScsiPrt - ok
01:17:21.0135 5388  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
01:17:21.0137 5388  kbdclass - ok
01:17:21.0163 5388  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
01:17:21.0165 5388  kbdhid - ok
01:17:21.0187 5388  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
01:17:21.0189 5388  KeyIso - ok
01:17:21.0211 5388  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
01:17:21.0213 5388  KSecDD - ok
01:17:21.0261 5388  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
01:17:21.0263 5388  KSecPkg - ok
01:17:21.0295 5388  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
01:17:21.0297 5388  ksthunk - ok
01:17:21.0347 5388  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
01:17:21.0353 5388  KtmRm - ok
01:17:21.0411 5388  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
01:17:21.0416 5388  LanmanServer - ok
01:17:21.0476 5388  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
01:17:21.0480 5388  LanmanWorkstation - ok
01:17:21.0514 5388  Lbd - ok
01:17:21.0553 5388  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
01:17:21.0555 5388  lltdio - ok
01:17:21.0593 5388  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
01:17:21.0600 5388  lltdsvc - ok
01:17:21.0619 5388  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
01:17:21.0622 5388  lmhosts - ok
01:17:21.0655 5388  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
01:17:21.0658 5388  LSI_FC - ok
01:17:21.0686 5388  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
01:17:21.0688 5388  LSI_SAS - ok
01:17:21.0708 5388  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
01:17:21.0711 5388  LSI_SAS2 - ok
01:17:21.0753 5388  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
01:17:21.0756 5388  LSI_SCSI - ok
01:17:21.0784 5388  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
01:17:21.0787 5388  luafv - ok
01:17:21.0867 5388  [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
01:17:21.0868 5388  MBAMProtector - ok
01:17:22.0003 5388  [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
01:17:22.0013 5388  MBAMScheduler - ok
01:17:22.0077 5388  [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
01:17:22.0086 5388  MBAMService - ok
01:17:22.0165 5388  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
01:17:22.0168 5388  Mcx2Svc - ok
01:17:22.0203 5388  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\drivers\megasas.sys
01:17:22.0205 5388  megasas - ok
01:17:22.0242 5388  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
01:17:22.0247 5388  MegaSR - ok
01:17:22.0364 5388  [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
01:17:22.0368 5388  Microsoft Office Groove Audit Service - ok
01:17:22.0399 5388  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
01:17:22.0404 5388  MMCSS - ok
01:17:22.0440 5388  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
01:17:22.0446 5388  Modem - ok
01:17:22.0500 5388  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
01:17:22.0501 5388  monitor - ok
01:17:22.0533 5388  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
01:17:22.0535 5388  mouclass - ok
01:17:22.0557 5388  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
01:17:22.0559 5388  mouhid - ok
01:17:22.0614 5388  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
01:17:22.0616 5388  mountmgr - ok
01:17:22.0633 5388  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
01:17:22.0637 5388  mpio - ok
01:17:22.0648 5388  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
01:17:22.0651 5388  mpsdrv - ok
01:17:22.0738 5388  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
01:17:22.0749 5388  MpsSvc - ok
01:17:22.0798 5388  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
01:17:22.0801 5388  MRxDAV - ok
01:17:22.0852 5388  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
01:17:22.0857 5388  mrxsmb - ok
01:17:22.0911 5388  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
01:17:22.0919 5388  mrxsmb10 - ok
01:17:22.0942 5388  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
01:17:22.0945 5388  mrxsmb20 - ok
01:17:23.0008 5388  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
01:17:23.0010 5388  msahci - ok
01:17:23.0061 5388  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
01:17:23.0064 5388  msdsm - ok
01:17:23.0084 5388  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
01:17:23.0088 5388  MSDTC - ok
01:17:23.0123 5388  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
01:17:23.0125 5388  Msfs - ok
01:17:23.0134 5388  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
01:17:23.0136 5388  mshidkmdf - ok
01:17:23.0187 5388  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
01:17:23.0188 5388  msisadrv - ok
01:17:23.0234 5388  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
01:17:23.0237 5388  MSiSCSI - ok
01:17:23.0242 5388  msiserver - ok
01:17:23.0266 5388  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
01:17:23.0268 5388  MSKSSRV - ok
01:17:23.0283 5388  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
01:17:23.0284 5388  MSPCLOCK - ok
01:17:23.0298 5388  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
01:17:23.0300 5388  MSPQM - ok
01:17:23.0353 5388  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
01:17:23.0358 5388  MsRPC - ok
01:17:23.0372 5388  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
01:17:23.0373 5388  mssmbios - ok
01:17:23.0431 5388  MSSQL$DDNI - ok
01:17:23.0499 5388  [ F1761C8FB2B25A32C6D63E36BB88C3AE ] MSSQLServerADHelper100 C:\Program Files (x86)\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
01:17:23.0503 5388  MSSQLServerADHelper100 - ok
01:17:23.0509 5388  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
01:17:23.0512 5388  MSTEE - ok
01:17:23.0530 5388  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
01:17:23.0532 5388  MTConfig - ok
01:17:23.0559 5388  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
01:17:23.0561 5388  Mup - ok
01:17:23.0619 5388  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
01:17:23.0626 5388  napagent - ok
01:17:23.0657 5388  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
01:17:23.0661 5388  NativeWifiP - ok
01:17:23.0739 5388  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
01:17:23.0751 5388  NDIS - ok
01:17:23.0774 5388  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
01:17:23.0776 5388  NdisCap - ok
01:17:23.0801 5388  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
01:17:23.0803 5388  NdisTapi - ok
01:17:23.0853 5388  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
01:17:23.0855 5388  Ndisuio - ok
01:17:23.0917 5388  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
01:17:23.0920 5388  NdisWan - ok
01:17:23.0969 5388  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
01:17:23.0971 5388  NDProxy - ok
01:17:23.0985 5388  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
01:17:23.0987 5388  NetBIOS - ok
01:17:24.0045 5388  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
01:17:24.0049 5388  NetBT - ok
01:17:24.0069 5388  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
01:17:24.0071 5388  Netlogon - ok
01:17:24.0122 5388  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
01:17:24.0128 5388  Netman - ok
01:17:24.0196 5388  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
01:17:24.0200 5388  NetMsmqActivator - ok
01:17:24.0214 5388  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
01:17:24.0216 5388  NetPipeActivator - ok
01:17:24.0228 5388  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
01:17:24.0235 5388  netprofm - ok
01:17:24.0244 5388  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
01:17:24.0245 5388  NetTcpActivator - ok
01:17:24.0251 5388  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
01:17:24.0254 5388  NetTcpPortSharing - ok
01:17:24.0279 5388  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
01:17:24.0281 5388  nfrd960 - ok
01:17:24.0334 5388  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
01:17:24.0339 5388  NlaSvc - ok
01:17:24.0374 5388  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
01:17:24.0376 5388  Npfs - ok
01:17:24.0406 5388  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
01:17:24.0408 5388  nsi - ok
01:17:24.0426 5388  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
01:17:24.0428 5388  nsiproxy - ok
01:17:24.0522 5388  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
01:17:24.0541 5388  Ntfs - ok
01:17:24.0616 5388  [ C2C0FF5F58DC258B77A799E0F8B5925C ] NTService1      C:\Program Files (x86)\Maxtor\OneTouch\Utils\SyncServices.exe
01:17:24.0621 5388  NTService1 - ok
01:17:24.0646 5388  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
01:17:24.0648 5388  Null - ok
01:17:24.0720 5388  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
01:17:24.0723 5388  nvraid - ok
01:17:24.0740 5388  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
01:17:24.0743 5388  nvstor - ok
01:17:24.0794 5388  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
01:17:24.0799 5388  nv_agp - ok
01:17:24.0887 5388  [ 07571684567859DA796A566CC78FFA74 ] Oasis2Service   C:\Program Files (x86)\DDNi\Oasis2Service\Oasis2Service.exe
01:17:24.0890 5388  Oasis2Service - ok
01:17:24.0967 5388  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
01:17:24.0978 5388  odserv - ok
01:17:24.0994 5388  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
01:17:24.0998 5388  ohci1394 - ok
01:17:25.0078 5388  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
01:17:25.0081 5388  ose - ok
01:17:25.0246 5388  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
01:17:25.0436 5388  osppsvc - ok
01:17:25.0492 5388  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
01:17:25.0497 5388  p2pimsvc - ok
01:17:25.0533 5388  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
01:17:25.0540 5388  p2psvc - ok
01:17:25.0568 5388  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\drivers\parport.sys
01:17:25.0571 5388  Parport - ok
01:17:25.0631 5388  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
01:17:25.0635 5388  partmgr - ok
01:17:25.0657 5388  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
01:17:25.0661 5388  PcaSvc - ok
01:17:25.0712 5388  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
01:17:25.0715 5388  pci - ok
01:17:25.0731 5388  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
01:17:25.0733 5388  pciide - ok
01:17:25.0752 5388  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
01:17:25.0757 5388  pcmcia - ok
01:17:25.0788 5388  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
01:17:25.0790 5388  pcw - ok
01:17:25.0876 5388  [ 8BFD936C40699E684681A97D8213B3E1 ] PDHelper.exe    C:\Program Files (x86)\TastyBytes Software\PD+Rescue for iPod\PDHelper.exe
01:17:25.0886 5388  PDHelper.exe - ok
01:17:25.0907 5388  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
01:17:25.0915 5388  PEAUTH - ok
01:17:25.0987 5388  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
01:17:25.0991 5388  PerfHost - ok
01:17:26.0069 5388  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
01:17:26.0087 5388  pla - ok
01:17:26.0150 5388  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
01:17:26.0157 5388  PlugPlay - ok
01:17:26.0259 5388  [ 627FA58ADC043704F9D14CA44340956F ] PMBDeviceInfoProvider C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
01:17:26.0264 5388  PMBDeviceInfoProvider - ok
01:17:26.0282 5388  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
01:17:26.0286 5388  PNRPAutoReg - ok
01:17:26.0310 5388  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
01:17:26.0314 5388  PNRPsvc - ok
01:17:26.0375 5388  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
01:17:26.0382 5388  PolicyAgent - ok
01:17:26.0414 5388  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
01:17:26.0418 5388  Power - ok
01:17:26.0483 5388  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
01:17:26.0486 5388  PptpMiniport - ok
01:17:26.0532 5388  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\drivers\processr.sys
01:17:26.0534 5388  Processor - ok
01:17:26.0587 5388  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
01:17:26.0595 5388  ProfSvc - ok
01:17:26.0609 5388  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
01:17:26.0611 5388  ProtectedStorage - ok
01:17:26.0682 5388  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
01:17:26.0685 5388  Psched - ok
01:17:26.0710 5388  [ 4712CC14E720ECCCC0AA16949D18AAF1 ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
01:17:26.0712 5388  PxHlpa64 - ok
01:17:26.0767 5388  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
01:17:26.0786 5388  ql2300 - ok
01:17:26.0831 5388  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
01:17:26.0833 5388  ql40xx - ok
01:17:26.0866 5388  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
01:17:26.0871 5388  QWAVE - ok
01:17:26.0899 5388  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
01:17:26.0901 5388  QWAVEdrv - ok
01:17:26.0921 5388  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
01:17:26.0923 5388  RasAcd - ok
01:17:26.0957 5388  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
01:17:26.0960 5388  RasAgileVpn - ok
01:17:26.0983 5388  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
01:17:26.0987 5388  RasAuto - ok
01:17:27.0017 5388  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
01:17:27.0020 5388  Rasl2tp - ok
01:17:27.0063 5388  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
01:17:27.0070 5388  RasMan - ok
01:17:27.0081 5388  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
01:17:27.0083 5388  RasPppoe - ok
01:17:27.0097 5388  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
01:17:27.0099 5388  RasSstp - ok
01:17:27.0119 5388  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
01:17:27.0124 5388  rdbss - ok
01:17:27.0138 5388  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
01:17:27.0140 5388  rdpbus - ok
01:17:27.0160 5388  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
01:17:27.0161 5388  RDPCDD - ok
01:17:27.0189 5388  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
01:17:27.0191 5388  RDPENCDD - ok
01:17:27.0204 5388  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
01:17:27.0205 5388  RDPREFMP - ok
01:17:27.0259 5388  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
01:17:27.0264 5388  RDPWD - ok
01:17:27.0342 5388  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
01:17:27.0372 5388  rdyboost - ok
01:17:27.0491 5388  [ 89525CC2DBAD44F7199B9CC188B3F9C5 ] RealNetworks Downloader Resolver Service C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
01:17:27.0493 5388  RealNetworks Downloader Resolver Service - ok
01:17:27.0526 5388  [ 4D9AFDDDA0EFE97CDBFD3B5FA48B05F6 ] regi            C:\Windows\system32\drivers\regi.sys
01:17:27.0528 5388  regi - ok
01:17:27.0559 5388  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
01:17:27.0562 5388  RemoteAccess - ok
01:17:27.0599 5388  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
01:17:27.0603 5388  RemoteRegistry - ok
01:17:27.0639 5388  [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
01:17:27.0642 5388  RFCOMM - ok
01:17:27.0663 5388  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
01:17:27.0667 5388  RpcEptMapper - ok
01:17:27.0674 5388  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
01:17:27.0677 5388  RpcLocator - ok
01:17:27.0747 5388  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
01:17:27.0759 5388  RpcSs - ok
01:17:27.0786 5388  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
01:17:27.0789 5388  rspndr - ok
01:17:27.0849 5388  [ 5AAB4808E8CCAE8C2ECDA5B791260616 ] RSUSBSTOR       C:\Windows\system32\Drivers\RtsUStor.sys
01:17:27.0852 5388  RSUSBSTOR - ok
01:17:27.0890 5388  [ D6D381B76056C668679723938F06F16C ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIVX.sys
01:17:27.0907 5388  RTHDMIAzAudService - ok
01:17:27.0941 5388  [ 7EA8D2EB9BBFD2AB8A3117A1E96D3B3A ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
01:17:27.0958 5388  RTL8167 - ok
01:17:27.0968 5388  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
01:17:27.0969 5388  SamSs - ok
01:17:28.0097 5388  [ 99FC1599F89A80216E41175B8CA44D89 ] SBAMSvc         C:\Program Files (x86)\Ad-Aware Antivirus\SBAMSvc.exe
01:17:28.0124 5388  SBAMSvc - ok
01:17:28.0178 5388  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
01:17:28.0181 5388  sbp2port - ok
01:17:28.0214 5388  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
01:17:28.0218 5388  SCardSvr - ok
01:17:28.0265 5388  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
01:17:28.0267 5388  scfilter - ok
01:17:28.0342 5388  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
01:17:28.0356 5388  Schedule - ok
01:17:28.0411 5388  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
01:17:28.0412 5388  SCPolicySvc - ok
01:17:28.0470 5388  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
01:17:28.0475 5388  SDRSVC - ok
01:17:28.0598 5388  [ 78779EE07231C658B483B1F38B5088DF ] SeaPort         C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
01:17:28.0604 5388  SeaPort - ok
01:17:28.0655 5388  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
01:17:28.0658 5388  secdrv - ok
01:17:28.0713 5388  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
01:17:28.0717 5388  seclogon - ok
01:17:28.0745 5388  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
01:17:28.0750 5388  SENS - ok
01:17:28.0779 5388  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
01:17:28.0783 5388  SensrSvc - ok
01:17:28.0813 5388  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\drivers\serenum.sys
01:17:28.0815 5388  Serenum - ok
01:17:28.0846 5388  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\drivers\serial.sys
01:17:28.0849 5388  Serial - ok
01:17:28.0901 5388  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
01:17:28.0902 5388  sermouse - ok
01:17:28.0974 5388  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
01:17:28.0981 5388  SessionEnv - ok
01:17:29.0041 5388  [ 286D3889E6AB5589646FF8A63CB928AE ] SFEP            C:\Windows\system32\drivers\SFEP.sys
01:17:29.0059 5388  SFEP - ok
01:17:29.0111 5388  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
01:17:29.0114 5388  sffdisk - ok
01:17:29.0138 5388  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
01:17:29.0140 5388  sffp_mmc - ok
01:17:29.0161 5388  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
01:17:29.0163 5388  sffp_sd - ok
01:17:29.0192 5388  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
01:17:29.0194 5388  sfloppy - ok
01:17:29.0273 5388  [ C6CC9297BD53E5229653303E556AA539 ] Sftfs           C:\Windows\system32\DRIVERS\Sftfslh.sys
01:17:29.0289 5388  Sftfs - ok
01:17:29.0402 5388  [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist         C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
01:17:29.0413 5388  sftlist - ok
01:17:29.0438 5388  [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay         C:\Windows\system32\DRIVERS\Sftplaylh.sys
01:17:29.0462 5388  Sftplay - ok
01:17:29.0478 5388  [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir        C:\Windows\system32\DRIVERS\Sftredirlh.sys
01:17:29.0480 5388  Sftredir - ok
01:17:29.0494 5388  [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol          C:\Windows\system32\DRIVERS\Sftvollh.sys
01:17:29.0495 5388  Sftvol - ok
01:17:29.0511 5388  [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa          C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
01:17:29.0515 5388  sftvsa - ok
01:17:29.0554 5388  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
01:17:29.0559 5388  SharedAccess - ok
01:17:29.0625 5388  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
01:17:29.0631 5388  ShellHWDetection - ok
01:17:29.0677 5388  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
01:17:29.0680 5388  SiSRaid2 - ok
01:17:29.0725 5388  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
01:17:29.0727 5388  SiSRaid4 - ok
01:17:29.0849 5388  [ 7C15061CD0372487903B07B9BB03AFAD ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
01:17:29.0856 5388  SkypeUpdate - ok
01:17:29.0880 5388  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
01:17:29.0883 5388  Smb - ok
01:17:29.0920 5388  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
01:17:29.0923 5388  SNMPTRAP - ok
01:17:30.0001 5388  [ C3E69DB0A4E59564230E053232F39AC7 ] SOHCImp         C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
01:17:30.0006 5388  SOHCImp - ok
01:17:30.0038 5388  [ C1CD71C672EA281A424FBCF24AC99553 ] SOHDms          C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe
01:17:30.0045 5388  SOHDms - ok
01:17:30.0069 5388  [ F47D75CEE1844EEF4A9EA6EE768828FB ] SOHDs           C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
01:17:30.0071 5388  SOHDs - ok
01:17:30.0124 5388  [ E2E40C0D24456B6EB440BE01AF829829 ] SpfService      C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService.exe
01:17:30.0127 5388  SpfService - ok
01:17:30.0148 5388  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
01:17:30.0150 5388  spldr - ok
01:17:30.0211 5388  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
01:17:30.0220 5388  Spooler - ok
01:17:30.0341 5388  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
01:17:30.0388 5388  sppsvc - ok
01:17:30.0423 5388  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
01:17:30.0427 5388  sppuinotify - ok
01:17:30.0521 5388  [ A687B5B326AFCFCF182C4931D1FF9771 ] SQLAgent$DDNI   C:\Program Files (x86)\Microsoft SQL Server\MSSQL10.DDNI\MSSQL\Binn\SQLAGENT.EXE
01:17:30.0527 5388  SQLAgent$DDNI - ok
01:17:30.0613 5388  [ B54B48F6D92423440C264E91225C5FF1 ] SQLBrowser      C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
01:17:30.0623 5388  SQLBrowser - ok
01:17:30.0658 5388  [ 6D65985945B03CA59B67D0B73702FC7B ] SQLWriter       C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
01:17:30.0661 5388  SQLWriter - ok
01:17:30.0689 5388  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
01:17:30.0696 5388  srv - ok
01:17:30.0731 5388  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
01:17:30.0737 5388  srv2 - ok
01:17:30.0770 5388  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
01:17:30.0774 5388  srvnet - ok
01:17:30.0815 5388  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
01:17:30.0819 5388  SSDPSRV - ok
01:17:30.0832 5388  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
01:17:30.0835 5388  SstpSvc - ok
01:17:30.0857 5388  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\drivers\stexstor.sys
01:17:30.0859 5388  stexstor - ok
01:17:30.0932 5388  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
01:17:30.0941 5388  stisvc - ok
01:17:30.0992 5388  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
01:17:30.0993 5388  swenum - ok
01:17:31.0016 5388  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
01:17:31.0024 5388  swprv - ok
01:17:31.0105 5388  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
01:17:31.0129 5388  SysMain - ok
01:17:31.0181 5388  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
01:17:31.0188 5388  TabletInputService - ok
01:17:31.0211 5388  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
01:17:31.0217 5388  TapiSrv - ok
01:17:31.0238 5388  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
01:17:31.0241 5388  TBS - ok
01:17:31.0332 5388  [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
01:17:31.0359 5388  Tcpip - ok
01:17:31.0398 5388  [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
01:17:31.0413 5388  TCPIP6 - ok
01:17:31.0463 5388  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
01:17:31.0465 5388  tcpipreg - ok
01:17:31.0497 5388  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
01:17:31.0499 5388  TDPIPE - ok
01:17:31.0552 5388  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
01:17:31.0554 5388  TDTCP - ok
01:17:31.0614 5388  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
01:17:31.0617 5388  tdx - ok
01:17:31.0679 5388  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
01:17:31.0681 5388  TermDD - ok
01:17:31.0750 5388  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
01:17:31.0759 5388  TermService - ok
01:17:31.0790 5388  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
01:17:31.0793 5388  Themes - ok
01:17:31.0820 5388  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
01:17:31.0822 5388  THREADORDER - ok
01:17:31.0834 5388  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
01:17:31.0837 5388  TrkWks - ok
01:17:31.0911 5388  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
01:17:31.0916 5388  TrustedInstaller - ok
01:17:31.0973 5388  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
01:17:31.0975 5388  tssecsrv - ok
01:17:32.0041 5388  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
01:17:32.0043 5388  TsUsbFlt - ok
01:17:32.0107 5388  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
01:17:32.0113 5388  tunnel - ok
01:17:32.0143 5388  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
01:17:32.0145 5388  uagp35 - ok
01:17:32.0204 5388  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
01:17:32.0213 5388  udfs - ok
01:17:32.0247 5388  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
01:17:32.0250 5388  UI0Detect - ok
01:17:32.0264 5388  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
01:17:32.0266 5388  uliagpkx - ok
01:17:32.0343 5388  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
01:17:32.0345 5388  umbus - ok
01:17:32.0369 5388  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\drivers\umpass.sys
01:17:32.0370 5388  UmPass - ok
01:17:32.0482 5388  [ 1BA417F51BF6715F2A98014E4C093EB4 ] Updater By SweetPacks C:\Program Files\Updater By SweetPacks\ExtensionUpdaterService.exe
01:17:32.0488 5388  Updater By SweetPacks - ok
01:17:32.0545 5388  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
01:17:32.0573 5388  upnphost - ok
01:17:32.0646 5388  [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
01:17:32.0678 5388  USBAAPL64 - ok
01:17:32.0742 5388  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
01:17:32.0745 5388  usbccgp - ok
01:17:32.0776 5388  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
01:17:32.0779 5388  usbcir - ok
01:17:32.0795 5388  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
01:17:32.0797 5388  usbehci - ok
01:17:32.0826 5388  [ 2C780746DC44A28FE67004DC58173F05 ] usbfilter       C:\Windows\system32\DRIVERS\usbfilter.sys
01:17:32.0828 5388  usbfilter - ok
01:17:32.0864 5388  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
01:17:32.0871 5388  usbhub - ok
01:17:32.0883 5388  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
01:17:32.0885 5388  usbohci - ok
01:17:32.0926 5388  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
01:17:32.0928 5388  usbprint - ok
01:17:32.0982 5388  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
01:17:32.0985 5388  USBSTOR - ok
01:17:33.0010 5388  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
01:17:33.0012 5388  usbuhci - ok
01:17:33.0099 5388  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
01:17:33.0106 5388  usbvideo - ok
01:17:33.0143 5388  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
01:17:33.0146 5388  UxSms - ok
01:17:33.0201 5388  [ 4E7135D6D0127067E4CFEE12259F895D ] VAIO Entertainment TV Device Arbitration Service C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe
01:17:33.0205 5388  VAIO Entertainment TV Device Arbitration Service - ok
01:17:33.0282 5388  [ 218F78B39832A2A0761CE2422828A57C ] VAIO Event Service C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe
01:17:33.0284 5388  VAIO Event Service - ok
01:17:33.0375 5388  [ 1CF1A4DD7A58C966C9014B83C7229CF3 ] VAIO Power Management C:\Program Files\Sony\VAIO Power Management\SPMService.exe
01:17:33.0389 5388  VAIO Power Management - ok
01:17:33.0413 5388  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
01:17:33.0415 5388  VaultSvc - ok
01:17:33.0559 5388  [ 917FB366B6CF2834CDBF9256D18A8FF0 ] VCFw            C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
01:17:33.0574 5388  VCFw - ok
01:17:33.0632 5388  [ 10E212BFB7EAB152A64C1AAEC2F7F4E0 ] VcmIAlzMgr      C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
01:17:33.0639 5388  VcmIAlzMgr - ok
01:17:33.0670 5388  [ 7A88CFD3FE99F2C9B95A6E2A08B96E14 ] VcmINSMgr       C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe
01:17:33.0675 5388  VcmINSMgr - ok
01:17:33.0726 5388  [ 8EFAACCC7BFA1E9031EFDFB01A1B0D69 ] VcmXmlIfHelper  C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe
01:17:33.0729 5388  VcmXmlIfHelper - ok
01:17:33.0798 5388  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
01:17:33.0801 5388  vdrvroot - ok
01:17:33.0867 5388  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
01:17:33.0883 5388  vds - ok
01:17:33.0910 5388  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
01:17:33.0912 5388  vga - ok
01:17:33.0930 5388  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
01:17:33.0932 5388  VgaSave - ok
01:17:33.0956 5388  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
01:17:33.0960 5388  vhdmp - ok
01:17:34.0007 5388  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
01:17:34.0008 5388  viaide - ok
01:17:34.0023 5388  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
01:17:34.0025 5388  volmgr - ok
01:17:34.0082 5388  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
01:17:34.0088 5388  volmgrx - ok
01:17:34.0139 5388  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
01:17:34.0144 5388  volsnap - ok
01:17:34.0181 5388  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
01:17:34.0184 5388  vsmraid - ok
01:17:34.0263 5388  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
01:17:34.0284 5388  VSS - ok
01:17:34.0424 5388  [ 4B817450226F93C31ADD5BCC27FED27A ] vToolbarUpdater15.2.0 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.2.0\ToolbarUpdater.exe
01:17:34.0441 5388  vToolbarUpdater15.2.0 - ok
01:17:34.0582 5388  [ D2D646D4D686C6996BA1FF96E11BE570 ] VUAgent         C:\Program Files\Sony\VAIO Update\VUAgent.exe
01:17:34.0603 5388  VUAgent - ok
01:17:34.0631 5388  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
01:17:34.0636 5388  vwifibus - ok
01:17:34.0691 5388  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
01:17:34.0693 5388  vwififlt - ok
01:17:34.0758 5388  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
01:17:34.0770 5388  W32Time - ok
01:17:34.0806 5388  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
01:17:34.0807 5388  WacomPen - ok
01:17:34.0883 5388  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
01:17:34.0890 5388  WANARP - ok
01:17:34.0896 5388  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
01:17:34.0900 5388  Wanarpv6 - ok
01:17:34.0924 5388  [ ECEB715BECE47E101DDEC06B11126066 ] wanatw          C:\Windows\system32\DRIVERS\wanatw64.sys
01:17:34.0927 5388  wanatw - ok
01:17:35.0013 5388  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
01:17:35.0029 5388  WatAdminSvc - ok
01:17:35.0102 5388  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
01:17:35.0125 5388  wbengine - ok
01:17:35.0150 5388  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
01:17:35.0155 5388  WbioSrvc - ok
01:17:35.0215 5388  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
01:17:35.0228 5388  wcncsvc - ok
01:17:35.0244 5388  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
01:17:35.0250 5388  WcsPlugInService - ok
01:17:35.0284 5388  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\drivers\wd.sys
01:17:35.0286 5388  Wd - ok
01:17:35.0364 5388  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
01:17:35.0380 5388  Wdf01000 - ok
01:17:35.0396 5388  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
01:17:35.0400 5388  WdiServiceHost - ok
01:17:35.0404 5388  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
01:17:35.0407 5388  WdiSystemHost - ok
01:17:35.0467 5388  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
01:17:35.0477 5388  WebClient - ok
01:17:35.0500 5388  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
01:17:35.0505 5388  Wecsvc - ok
01:17:35.0522 5388  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
01:17:35.0525 5388  wercplsupport - ok
01:17:35.0562 5388  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
01:17:35.0565 5388  WerSvc - ok
01:17:35.0609 5388  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
01:17:35.0610 5388  WfpLwf - ok
01:17:35.0626 5388  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
01:17:35.0628 5388  WIMMount - ok
01:17:35.0657 5388  WinDefend - ok
01:17:35.0667 5388  WinHttpAutoProxySvc - ok
01:17:35.0737 5388  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
01:17:35.0740 5388  Winmgmt - ok
01:17:35.0839 5388  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
01:17:35.0870 5388  WinRM - ok
01:17:35.0951 5388  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
01:17:35.0954 5388  WinUsb - ok
01:17:35.0996 5388  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
01:17:36.0008 5388  Wlansvc - ok
01:17:36.0072 5388  [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
01:17:36.0074 5388  wlcrasvc - ok
01:17:36.0182 5388  [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
01:17:36.0212 5388  wlidsvc - ok
01:17:36.0268 5388  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
01:17:36.0269 5388  WmiAcpi - ok
01:17:36.0308 5388  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
01:17:36.0311 5388  wmiApSrv - ok
01:17:36.0331 5388  WMPNetworkSvc - ok
01:17:36.0368 5388  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
01:17:36.0371 5388  WPCSvc - ok
01:17:36.0430 5388  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
01:17:36.0433 5388  WPDBusEnum - ok
01:17:36.0475 5388  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
01:17:36.0477 5388  ws2ifsl - ok
01:17:36.0515 5388  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
01:17:36.0518 5388  wscsvc - ok
01:17:36.0523 5388  WSearch - ok
01:17:36.0623 5388  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
01:17:36.0653 5388  wuauserv - ok
01:17:36.0702 5388  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
01:17:36.0707 5388  WudfPf - ok
01:17:36.0733 5388  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
01:17:36.0762 5388  WUDFRd - ok
01:17:36.0811 5388  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
01:17:36.0815 5388  wudfsvc - ok
01:17:36.0876 5388  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\Windows\System32\wwansvc.dll
01:17:36.0885 5388  WwanSvc - ok
01:17:36.0962 5388  [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService  C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
01:17:36.0968 5388  YahooAUService - ok
01:17:36.0994 5388  ================ Scan global ===============================
01:17:37.0021 5388  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
01:17:37.0073 5388  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
01:17:37.0082 5388  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
01:17:37.0117 5388  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
01:17:37.0147 5388  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
01:17:37.0153 5388  [Global] - ok
01:17:37.0154 5388  ================ Scan MBR ==================================
01:17:37.0164 5388  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
01:17:37.0474 5388  \Device\Harddisk0\DR0 - ok
01:17:37.0474 5388  ================ Scan VBR ==================================
01:17:37.0478 5388  [ FA88555FD3CAA98A022E19D9911916BB ] \Device\Harddisk0\DR0\Partition1
01:17:37.0481 5388  \Device\Harddisk0\DR0\Partition1 - ok
01:17:37.0512 5388  [ AFFB0BA2C8C00173C700B923EF883273 ] \Device\Harddisk0\DR0\Partition2
01:17:37.0515 5388  \Device\Harddisk0\DR0\Partition2 - ok
01:17:37.0516 5388  ============================================================
01:17:37.0516 5388  Scan finished
01:17:37.0516 5388  ============================================================
01:17:37.0530 6248  Detected object count: 0
01:17:37.0530 6248  Actual detected object count: 0
 



#5 gerncranium

gerncranium
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:08:25 AM

Posted 10 June 2013 - 11:17 AM

ESET scan

 

C:\Program Files (x86)\Registry Kit\RegistryKit.exe Win32/Adware.RegGenie application cleaned by deleting - quarantined
C:\Users\Blake\.frostwire5\updates\frostwire-5.3.6.windows.exe multiple threats cleaned by deleting - quarantined
C:\Users\Blake\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000023 Win32/SpeedUpMyPC application cleaned by deleting - quarantined
C:\Users\Blake\AppData\Local\Google\Chrome\User Data\Default\Default\aadgdjgcdhgbdhgcdjdggbdcdjdcdfgf\background.js Win32/TrojanDownloader.Tracur.V trojan cleaned by deleting - quarantined
C:\Users\Blake\AppData\Local\Google\Chrome\User Data\Default\Default\aadgdjgcdhgbdhgcdjdggbdcdjdcdfgf\ContentScript.js Win32/TrojanDownloader.Tracur.AD trojan cleaned by deleting - quarantined
C:\Users\Blake\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\O26SZPM0\FreeVideoToMP3Converter.exe Win32/OpenCandy application cleaned by deleting - quarantined
C:\Users\Blake\AppData\Local\Temp\instloffer.exe Win32/Adware.Lollipop.H application cleaned by deleting - quarantined
C:\Users\Blake\AppData\Local\{088618F1-9E39-4B72-87B5-54B5A80AF9F8}\{E75CFC33-BF2A-44EC-BB3F-94FE979E4699}\vskjdv.dll Win32/TrojanDownloader.Tracur.V trojan cleaned by deleting (after the next restart) - quarantined
C:\Users\Blake\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\23\62404757-12965e70 multiple threats cleaned by deleting - quarantined
C:\Users\Blake\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\38\51d908e6-34fdcb03 multiple threats cleaned by deleting - quarantined
C:\Users\Blake\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.40\agent\stub_data\stubinst_pkg_en-us.cab Win32/OpenCandy application deleted - quarantined
C:\Users\Blake\Downloads\Registrykit_setup.exe Win32/Adware.RegGenie application cleaned by deleting - quarantined
C:\Users\Blake\Downloads\speedupmypc (1).exe Win32/SpeedUpMyPC application cleaned by deleting - quarantined
C:\Users\Blake\Downloads\speedupmypc.exe Win32/SpeedUpMyPC application cleaned by deleting - quarantined
 



ADW Cleaner would not do anything, just sat there after I clicked "run" and then "delete".



#6 gerncranium

gerncranium
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:08:25 AM

Posted 10 June 2013 - 11:33 AM

Never mind, I found it:

 

# AdwCleaner v2.301 - Logfile created 06/06/2013 at 14:16:31
# Updated 16/05/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Blake - BLAKE-VAIO
# Boot Mode : Normal
# Running from : C:\Users\Blake\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8SF447GJ\AdwCleaner.exe
# Option [Search]

***** [Services] *****

Found : SrvUpdater

***** [Files / Folders] *****

File Found : C:\END
File Found : C:\Users\Blake\AppData\Local\funmoods-speeddial.crx
File Found : C:\Users\Blake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iLivid.lnk
File Found : C:\Users\Public\Desktop\Get The Best Facebook Chat Messenger.lnk
File Found : C:\Windows\Tasks\Auto Lyrics Update.job
Folder Found : C:\Program Files (x86)\adawaretb
Folder Found : C:\Program Files (x86)\Ask.com
Folder Found : C:\Program Files (x86)\AutoLyrics
Folder Found : C:\Program Files (x86)\AVG Secure Search
Folder Found : C:\Program Files (x86)\Common Files\AVG Secure Search
Folder Found : C:\Program Files (x86)\Common Files\Software Update Utility
Folder Found : C:\Program Files (x86)\Conduit
Folder Found : C:\Program Files (x86)\Free Offers from Freeze.com
Folder Found : C:\Program Files (x86)\search results toolbar
Folder Found : C:\Program Files (x86)\Viewpoint
Folder Found : C:\ProgramData\adawaretb
Folder Found : C:\ProgramData\Ask
Folder Found : C:\ProgramData\AVG Secure Search
Folder Found : C:\ProgramData\Babylon
Folder Found : C:\ProgramData\blekko toolbars
Folder Found : C:\ProgramData\boost_interprocess
Folder Found : C:\ProgramData\Browser Manager
Folder Found : C:\ProgramData\Partner
Folder Found : C:\ProgramData\search protection
Folder Found : C:\ProgramData\Viewpoint
Folder Found : C:\ProgramData\WeCareReminder
Folder Found : C:\Users\Blake\AppData\Local\APN
Folder Found : C:\Users\Blake\AppData\Local\AVG Secure Search
Folder Found : C:\Users\Blake\AppData\Local\Conduit
Folder Found : C:\Users\Blake\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Folder Found : C:\Users\Blake\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
Folder Found : C:\Users\Blake\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla
Folder Found : C:\Users\Blake\AppData\Local\Ilivid
Folder Found : C:\Users\Blake\AppData\Local\OpenCandy
Folder Found : C:\Users\Blake\AppData\Local\Temp\Smartbar
Folder Found : C:\Users\Blake\AppData\LocalLow\adawaretb



#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,565 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:25 AM

Posted 10 June 2013 - 08:33 PM

Much better..

Looks like you have 2 antivirus' running.. Adaware AV and AVG, if correct one neds to be disabled as they will conflict ad slow the machine down and perhaps give false findings.

In Control Panel ..Uninstall
Uninstall these, as older versions are exploitable.

Adobe Reader X (10.1.5) (Version: 10.1.5)
Java™ 6 Update 18 (64-bit) (Version: 6.0.180)
Java™ 6 Update 35 (Version: 6.0.350)

 
REboot
 
Install..
Adobe Reader XI
Java Version 7 Update 21
 
 
Empty your temp folders using TFC (Temporary File Cleaner)
  • Please download TFC by Old Timer and save it to your desktop.
    alternate download link
  • Save any unsaved work. (TFC will close ALL open programs including your browser!)
  • Double-click on TFC.exe to run it. (If you are using Vista, right-click on the file and choose "Run As Administrator".)
  • Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
  • Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway allowing Windows to load normally (not into Safe Mode) to ensure a complete clean.
  • Install your game.
Finally run JRT and tell me how it is now...
thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 gerncranium

gerncranium
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:08:25 AM

Posted 11 June 2013 - 01:01 AM

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.9.4 (05.06.2013:1)
OS: Windows 7 Home Premium x64
Ran by Blake on Tue 06/11/2013 at  0:40:52.80
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

~~~ Services

Successfully stopped: [Service] updater by sweetpacks
Successfully deleted: [Service] updater by sweetpacks

 

~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\searchprotection

 

~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\aol toolbar
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\aol toolbar
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\installer\upgradecodes\f928123a039649549966d4c29d35b1c9
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3EF64538-8B54-4573-B48F-4D34B0238AB2}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C4CFC0DE-134F-4466-B2A2-FF7C59A8BFAD}

 

~~~ Files

Successfully deleted: [File] "C:\Users\Blake\desktop\1000 free songs!.lnk"

 

~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\aol toolbar"
Successfully deleted: [Folder] "C:\ProgramData\speedypc software"
Successfully deleted: [Folder] "C:\ProgramData\wincert"
Successfully deleted: [Folder] "C:\Users\Blake\AppData\Roaming\drivercure"
Successfully deleted: [Folder] "C:\Users\Blake\AppData\Roaming\speedypc software"
Successfully deleted: [Folder] "C:\Users\Blake\AppData\Roaming\strongvault"
Successfully deleted: [Folder] "C:\Users\Blake\appdata\local\adawarebp"
Successfully deleted: [Folder] "C:\Users\Blake\appdata\local\aol toolbar"
Successfully deleted: [Folder] "C:\Users\Blake\appdata\locallow\datamngr"
Successfully deleted: [Folder] "C:\Program Files (x86)\aol toolbar"
Successfully deleted: [Folder] "C:\ai_recyclebin"
Successfully deleted: [Folder] "C:\Windows\syswow64\ai_recyclebin"
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{02BE4A07-3992-41AB-B500-B2775603EFE8}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{083542B5-D0D6-42C1-B16B-13DA1CE4C123}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{0B803556-724C-4E9F-9744-43D702BB849A}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{0DCC88BF-A758-4737-8742-E943E625FF52}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{1459BF77-040D-49A6-B26A-1E53C65E53D2}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{1780DB72-F51E-4C87-8404-A17FDFA3B484}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{1A9DFC14-76C6-47AC-AC26-3FD3ED6D4552}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{1B16882F-BB12-41E4-848B-5A38A1339A39}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{21B6854B-4151-4C92-9A92-816BD8E4946F}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{224060DD-EFBF-4C1B-9841-3F44210EC5CA}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{2458EB6A-2476-4AF2-AAE4-B27AD7EFBB41}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{249273A3-17A3-4AE2-88D9-6BDD8400F41D}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{278D38A7-64BB-4B19-A201-C4568C863A94}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{2D44C04A-F664-4AEF-8A2B-7737CCBA667F}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{2E1B3B0D-BF83-4473-9A95-4F2B3814764A}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{33309528-6EC8-4ECA-B380-E16A0D379B74}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{3CFE6A64-D2AD-454B-843E-4D14D58680E7}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{3D7FE126-F4AF-47D0-BF9A-E7F7D173F06F}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{3F2EE158-65B8-4997-A80D-859A9062C536}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{44E08396-FCBD-4023-A5C5-7DD6125952B9}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{44F71DA0-5CE2-4217-90F3-1DF136AC3F6C}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{468991A3-DE9A-439A-910B-E340E644DDED}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{472C759B-DC73-4747-8420-BA1DBAB09D9D}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{47D06B7C-CF94-4322-A36B-EAC726FBD964}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{4DA0A066-6D7A-443E-AC73-7A841DBD7030}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{4F831C45-AFB2-4179-809F-36E9D31B266C}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{51D4AB61-D612-4FE6-A663-26C5CB2A6A90}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{53D229C2-5970-4111-BEFF-37E01382C5DC}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{54A75099-FAEF-4D45-BDE4-DA453F5ABFF4}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{551430D5-2C0C-4009-866B-340AE4617C07}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{567EAAB1-0A46-4BA8-85B9-7E23BDB2D149}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{572B7563-4B76-4396-922E-0D6D08392B91}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{58EDED5A-7D5A-46B0-AEEE-0CEAE3C28B3F}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{590F3959-98FC-48C1-9977-7CB1AE4C62BD}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{5942AFBB-CBB4-4D03-BDD9-D846DAA38CDB}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{5A355BCD-390D-407E-ABE6-89A2BCDFBCB9}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{5AAEA702-8653-4326-AEB3-78677B21EE4B}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{5B6A4BB6-2A57-465C-9F01-8E176964C45B}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{5B9AE052-8137-4ADF-B84C-DEA2DF7385AF}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{5E04124A-2306-45F3-8C15-43871966F369}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{65720948-5AA5-4AC4-B364-24D05DF8272D}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{65C1031C-13CB-4904-BBDD-28DFD2C970E4}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{6D4FE49D-B53E-42D2-93DE-4656676C2F5A}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{6DEEC985-145C-4B42-8F9D-AF26C438C3B1}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{6E1F337F-6C6B-420C-9536-80D7E7FE9F17}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{70D05ED8-09E0-4880-9B50-703C98ED4DD4}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{719D5AB7-C53A-4F8D-975E-B2EC2F22E1E8}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{72DBEE34-DF30-4EA3-AC74-77907AEBFA7B}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{736590D0-67AF-41CA-8AC4-4D7AE6953A36}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{78352CD4-9ECD-435C-9961-CD984EE44EE2}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{79658F24-C757-4046-890F-444491EF7A19}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{796C7C34-0841-47D2-BBC0-F04BF146B132}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{817CE83F-E82E-4856-B3FA-F7F06DF44349}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{82A94D4F-D0FB-46B1-BE5F-5794922A99CD}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{850729C0-5041-4C68-83DB-91007FC1DB07}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{8A579F45-1C3F-41FD-9A8E-515C85586474}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{8EA31A29-753F-4841-8829-1EAA1350898D}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{908C35C3-B4EB-4064-9802-3FFDE38DB7E8}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{93AA5E6D-A5F5-4D40-8388-39F4525BF550}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{9B0A8795-0029-471A-AC1E-21E8FE0B6BC2}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{9DEB653C-1353-4C9D-A12B-D8FBC700FFE7}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{9FD01077-4DDF-4155-BAF1-6E0311C76E7F}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{A2D2BEAD-3A0A-453C-A6B5-F067F6CDBBF5}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{A33BA5CB-0634-4C80-AEB8-A5E9997CD899}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{AB9449DD-40F1-4377-BF11-2F57A32F2AC7}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{AD2C4705-76AF-4FBC-994F-5A40196B65DC}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{B2874ACF-CF02-4B9B-8A75-9C3DE53570F3}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{B30744B2-EB6D-41F0-8D22-BE3352842EA9}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{B9D0DEDF-A743-4611-8737-924DD2BA3B93}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{BCB6EE49-1536-495B-B2E6-4E13ADB8126F}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{BEC68FE3-F834-495B-8ED7-AA3D628BBFFD}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{BF364AF2-A75A-45EC-9DDA-2549FC17AFE6}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{BFB12A31-F79D-446F-9BDE-CB892965D9DD}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{C1BBDA7B-0585-4DAF-A2EC-EB983C24F280}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{C2F77BD7-A1B3-479D-A333-A81EC5962CAF}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{C41E32E0-7489-4EFB-A756-7691C8006336}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{C5AA2567-DAFC-4B83-8719-C92B2B22AB39}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{C622098A-50DF-4442-913F-F23A82D95EB9}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{C636ED24-C9EA-49FD-84FD-CCED06CF5648}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{CA011283-F364-468E-BDF2-12DCE6C23CE4}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{CA050CB3-B86B-4FA9-A787-0B2D1B8B8299}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{CC67D58A-CECB-4016-9D93-0B5350872E68}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{CD537B02-BCA1-42F8-B24B-DA241B98A849}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{CDDD3387-604D-486F-8968-C4DA36A674C4}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{D26FCCDF-766B-4F1C-B39D-E7837F9514F5}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{D310A3DB-C8DD-4273-BEF8-809584D6DA1D}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{D3185486-5D0D-40ED-BCCC-E9C174E51446}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{D495563A-736F-4BDE-A669-364CEA399D6E}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{D552802E-7A4E-4A27-AA24-70F1A696AE0F}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{D67B7736-34AE-4562-ACA8-7FB5A8CE4E67}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{D6938745-256B-4199-BA7F-1DC05C669978}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{D7D1839E-FB3B-4608-AC3E-F5DDE721E79A}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{D8AF80D1-7643-42E6-B86B-105BCA4BE296}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{DEDA66B7-BC90-4489-89C3-1A7013C77977}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{DF3B5F6A-0D6F-4F8C-938F-85C8B5374061}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{DF3E0C2D-76E5-4CE6-9CD8-5517AC7915FF}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{E08CAD8C-6EA2-401E-8886-A277EB885E73}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{E413C17F-4142-4EB0-B1B0-4B31C7F6D329}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{E686A2F5-B127-48CE-9980-8FDB2FD03C7E}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{E75CFC33-BF2A-44EC-BB3F-94FE979E4699}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{E9B78672-F4E0-4A19-BF0E-BD2BB55765D8}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{EC330A29-7CC1-4ABC-B416-DC9AA0E49405}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{F0E9FE6A-4A62-412E-BE4A-9135F9546AB9}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{F417E8DC-6255-4B9A-B069-70B99509F43A}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{F5457A1E-F76F-46AA-B29D-30D424D2525E}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{F633FB88-AEBC-479A-949C-87AF1891F26B}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{F660ABE6-6FB6-46E7-B02B-292FD668645C}
Successfully deleted: [Empty Folder] C:\Users\Blake\appdata\local\{FE9217D8-3E34-4069-B407-EF2BAACAF333}

 

~~~ Chrome

Dumping contents of C:\Users\Blake\appdata\local\Google\Chrome\User Data\Default\Default
C:\Users\Blake\appdata\local\Google\Chrome\User Data\Default\Default\aadgdjgcdhgbdhgcdjdggbdcdjdcdfgf
C:\Users\Blake\appdata\local\Google\Chrome\User Data\Default\Default\aadgdjgcdhgbdhgcdjdggbdcdjdcdfgf\manifest.json

Successfully deleted: [Folder] C:\Users\Blake\appdata\local\Google\Chrome\User Data\Default\Default [Default Extension 1.0]
Successfully deleted: [Folder] C:\Users\Blake\appdata\local\Google\Chrome\User Data\Default\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Successfully deleted: [Folder] C:\Users\Blake\appdata\local\Google\Chrome\User Data\Default\Extensions\lkpmjnommfoljgjbckjmjhkmnhfmcmon

 

~~~ Event Viewer Logs were cleared

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Tue 06/11/2013 at  0:51:39.83
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

 



#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,565 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:25 AM

Posted 11 June 2013 - 12:21 PM

Looks good,how is it running by you?


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 gerncranium

gerncranium
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:08:25 AM

Posted 15 June 2013 - 11:43 AM

It's running better, not hijacked anymore.  But when streaming movies, I have to shut IE down and start it over repeatedly because the video gets out of sync with the sound and it gets all jittery. 






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users