Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Google Chrome Search for Visiontek redirects me to Euro-Med-Online?


  • This topic is locked This topic is locked
5 replies to this topic

#1 BronzeKnee

BronzeKnee

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:03:09 PM

Posted 18 June 2013 - 01:25 AM

Hi there.

 

I was trying to reach Visiontek's main website today, so I did a Google Search for it in Chrome.  The results were as follows:

 

xzjh.png

 

 

Seeing as I wanted to get on their main website, I clicked the first link (for www.visiontek.com), but it brought me here after a brief delay:

 

sjrt.png

 

If I go ahead and type in the link directly into my address bar (www.visiontek.com) I can make it to the website just fine using Chrome.  I can also repeat this same process (Google Search for Visiontek followed by clicking on the link for the main website) in IE and it goes normally to the Visiontek website.

 

I am running Window 7 64 bit and have Chrome Version 27.0.1453.110 m.  I ran Malwarebytes Anti-Malware and it picked up nothing.  I paid for the active scanning version of this software, on the advice of someone on this forum.

 

What is the problem and how do I fix it?

 

Thanks for any and all information.


Edited by BronzeKnee, 18 June 2013 - 01:31 AM.


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,538 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:09 PM

Posted 18 June 2013 - 10:36 AM

Hello, first look in the Plug ins area and see if there is something similar to those to disable. Disabling Plugins in Google Chrome.
 
Then do these..


Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results.



Please download AdwCleaner by Xplode onto your desktop.
Close all open programs and internet browsers.
Double click on adwcleaner.exe to run the tool.
Click on Delete.
Confirm each time with Ok.
You will be prompted to restart your computer. A text file will open after the restart.
Please post the contents of that logfile with your next reply.
You can find the logfile at C:\AdwCleaner[S1].txt as well.



Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 BronzeKnee

BronzeKnee
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:03:09 PM

Posted 19 June 2013 - 09:23 AM

Alright there are the scan results:

 

***************************************************************************

***************************************************************************

MiniToolBox:

***************************************************************************

***************************************************************************

 

MiniToolBox by Farbar  Version: 16-06-2013

Ran by Alex (administrator) on 19-06-2013 at 01:44:34
Running from "C:\Users\Alex\Desktop"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================
 
127.0.0.1       localhost
 
========================= IP Configuration: ================================
 
Marvell Yukon 88E8053 PCI-E Gigabit Ethernet Controller = Local Area Connection (Connected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : Falcon
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
 
Ethernet adapter Local Area Connection:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Marvell Yukon 88E8053 PCI-E Gigabit Ethernet Controller
   Physical Address. . . . . . . . . : 00-01-29-A6-37-35
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::1c5b:964c:a768:e891%10(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.0.100(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Tuesday, June 18, 2013 11:45:05 PM
   Lease Expires . . . . . . . . . . : Tuesday, June 25, 2013 11:45:05 PM
   Default Gateway . . . . . . . . . : 192.168.0.1
   DHCP Server . . . . . . . . . . . : 192.168.0.1
   DHCPv6 IAID . . . . . . . . . . . : 234881321
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-1A-92-12-00-01-29-A6-37-35
   DNS Servers . . . . . . . . . . . : 75.75.75.75
                                       75.75.76.76
                                       0.0.0.0
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Tunnel adapter isatap.{9B739119-9AFD-420E-956A-4B772AB7A8A2}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Teredo Tunneling Pseudo-Interface:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6ab8:3412:1603:3f57:ff9b(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::3412:1603:3f57:ff9b%11(Preferred) 
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled
Server:  cdns01.comcast.net
Address:  75.75.75.75
 
Name:    google.com
Addresses:  2607:f8b0:4006:800::1003
 173.194.43.8
 173.194.43.9
 173.194.43.2
 173.194.43.14
 173.194.43.0
 173.194.43.3
 173.194.43.4
 173.194.43.1
 173.194.43.5
 173.194.43.6
 173.194.43.7
 
 
Pinging google.com [173.194.43.2] with 32 bytes of data:
Reply from 173.194.43.2: bytes=32 time=21ms TTL=55
Reply from 173.194.43.2: bytes=32 time=23ms TTL=55
 
Ping statistics for 173.194.43.2:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 21ms, Maximum = 23ms, Average = 22ms
Server:  cdns01.comcast.net
Address:  75.75.75.75
 
Name:    yahoo.com
Addresses:  98.139.183.24
 206.190.36.45
 98.138.253.109
 
 
Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
Reply from 206.190.36.45: bytes=32 time=93ms TTL=50
Reply from 206.190.36.45: bytes=32 time=95ms TTL=50
 
Ping statistics for 206.190.36.45:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 93ms, Maximum = 95ms, Average = 94ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=2ms TTL=128
Reply from 127.0.0.1: bytes=32 time=1ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 1ms, Maximum = 2ms, Average = 1ms
===========================================================================
Interface List
 10...00 01 29 a6 37 35 ......Marvell Yukon 88E8053 PCI-E Gigabit Ethernet Controller
  1...........................Software Loopback Interface 1
 13...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 11...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.0.1    192.168.0.100     20
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.0.0    255.255.255.0         On-link     192.168.0.100    276
    192.168.0.100  255.255.255.255         On-link     192.168.0.100    276
    192.168.0.255  255.255.255.255         On-link     192.168.0.100    276
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link     192.168.0.100    276
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link     192.168.0.100    276
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 11     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 11     58 2001::/32                On-link
 11    306 2001:0:9d38:6ab8:3412:1603:3f57:ff9b/128
                                    On-link
 10    276 fe80::/64                On-link
 11    306 fe80::/64                On-link
 10    276 fe80::1c5b:964c:a768:e891/128
                                    On-link
 11    306 fe80::3412:1603:3f57:ff9b/128
                                    On-link
  1    306 ff00::/8                 On-link
 11    306 ff00::/8                 On-link
 10    276 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (06/19/2013 01:44:05 AM) (Source: Application Hang) (User: )
Description: The program MiniToolBox.exe version 3.3.8.1 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: 814
 
Start Time: 01ce6cafe9594152
 
Termination Time: 0
 
Application Path: C:\Users\Alex\Desktop\MiniToolBox.exe
 
Report Id:
 
Error: (06/15/2013 08:15:00 PM) (Source: ESENT) (User: )
Description: taskhost (532) An attempt to open the file "C:\Users\Jen\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat" for read only access failed with system error 32 (0x00000020): "The process cannot access the file because it is being used by another process. ".  The open file operation will fail with error -1032 (0xfffffbf8).
 
Error: (05/31/2013 01:29:42 AM) (Source: Application Hang) (User: )
Description: The program chrome.exe version 27.0.1453.94 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: de4
 
Start Time: 01ce5db1bc6b65ec
 
Termination Time: 50
 
Application Path: C:\Users\Alex\AppData\Local\Google\Chrome\Application\chrome.exe
 
Report Id:
 
Error: (05/24/2013 01:53:11 AM) (Source: Application Error) (User: )
Description: Faulting application name: H2DEMOW.EXE, version: 1.0.0.1, time stamp: 0x329a282b
Faulting module name: H2DEMOW.EXE, version: 1.0.0.1, time stamp: 0x329a282b
Exception code: 0xc0000005
Fault offset: 0x0000106a
Faulting process id: 0x1254
Faulting application start time: 0xH2DEMOW.EXE0
Faulting application path: H2DEMOW.EXE1
Faulting module path: H2DEMOW.EXE2
Report Id: H2DEMOW.EXE3
 
Error: (05/03/2013 08:13:48 PM) (Source: Application Error) (User: )
Description: Faulting application name: RomeTW.exe, version: 1.0.0.0, time stamp: 0x438afb5a
Faulting module name: mss32.dll, version: 3.0.0.0, time stamp: 0x411aa3e4
Exception code: 0xc0000005
Fault offset: 0x0002d778
Faulting process id: 0x5b8
Faulting application start time: 0xRomeTW.exe0
Faulting application path: RomeTW.exe1
Faulting module path: RomeTW.exe2
Report Id: RomeTW.exe3
 
Error: (04/29/2013 04:23:22 PM) (Source: ESENT) (User: )
Description: taskhost (3240) An attempt to open the file "C:\Users\Jen\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat" for read only access failed with system error 32 (0x00000020): "The process cannot access the file because it is being used by another process. ".  The open file operation will fail with error -1032 (0xfffffbf8).
 
Error: (04/26/2013 01:22:12 AM) (Source: Application Hang) (User: )
Description: The program RomeTW.exe version 1.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: 4a0
 
Start Time: 01ce423de6199e8e
 
Termination Time: 7
 
Application Path: C:\Games\Rome - Total War\RomeTW.exe
 
Report Id:
 
Error: (04/25/2013 00:28:13 PM) (Source: Application Error) (User: )
Description: Faulting application name: RomeTW-ALX.exe, version: 1.9.0.0, time stamp: 0x4461eeda
Faulting module name: RomeTW-ALX.exe, version: 1.9.0.0, time stamp: 0x4461eeda
Exception code: 0xc0000005
Fault offset: 0x00a35a74
Faulting process id: 0x57c
Faulting application start time: 0xRomeTW-ALX.exe0
Faulting application path: RomeTW-ALX.exe1
Faulting module path: RomeTW-ALX.exe2
Report Id: RomeTW-ALX.exe3
 
Error: (04/25/2013 00:15:35 PM) (Source: Application Error) (User: )
Description: Faulting application name: RomeTW-ALX.exe, version: 1.9.0.0, time stamp: 0x4461eeda
Faulting module name: RomeTW-ALX.exe, version: 1.9.0.0, time stamp: 0x4461eeda
Exception code: 0xc0000005
Fault offset: 0x00a35a74
Faulting process id: 0xd3c
Faulting application start time: 0xRomeTW-ALX.exe0
Faulting application path: RomeTW-ALX.exe1
Faulting module path: RomeTW-ALX.exe2
Report Id: RomeTW-ALX.exe3
 
Error: (04/25/2013 00:13:46 PM) (Source: Application Error) (User: )
Description: Faulting application name: RomeTW-ALX.exe, version: 1.9.0.0, time stamp: 0x4461eeda
Faulting module name: RomeTW-ALX.exe, version: 1.9.0.0, time stamp: 0x4461eeda
Exception code: 0xc0000005
Fault offset: 0x00a35a74
Faulting process id: 0x418
Faulting application start time: 0xRomeTW-ALX.exe0
Faulting application path: RomeTW-ALX.exe1
Faulting module path: RomeTW-ALX.exe2
Report Id: RomeTW-ALX.exe3
 
 
System errors:
=============
Error: (06/18/2013 11:47:09 PM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Update Service Daemon service failed to start due to the following error: 
%%1069
 
Error: (06/18/2013 11:47:09 PM) (Source: Service Control Manager) (User: )
Description: The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured password due to the following error: 
%%1330
 
To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).
 
Error: (06/18/2013 09:00:07 PM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Update Service Daemon service failed to start due to the following error: 
%%1069
 
Error: (06/18/2013 09:00:07 PM) (Source: Service Control Manager) (User: )
Description: The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured password due to the following error: 
%%1330
 
To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).
 
Error: (06/18/2013 08:57:55 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 8:54:32 PM on ?6/?18/?2013 was unexpected.
 
Error: (06/18/2013 08:41:43 PM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Update Service Daemon service failed to start due to the following error: 
%%1069
 
Error: (06/18/2013 08:41:43 PM) (Source: Service Control Manager) (User: )
Description: The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured password due to the following error: 
%%1330
 
To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).
 
Error: (06/18/2013 02:11:56 PM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk3\DR3.
 
Error: (06/18/2013 02:11:55 PM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk3\DR3.
 
Error: (06/18/2013 02:11:54 PM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk3\DR3.
 
 
Microsoft Office Sessions:
=========================
Error: (06/19/2013 01:44:05 AM) (Source: Application Hang)(User: )
Description: MiniToolBox.exe3.3.8.181401ce6cafe95941520C:\Users\Alex\Desktop\MiniToolBox.exe
 
Error: (06/15/2013 08:15:00 PM) (Source: ESENT)(User: )
Description: taskhost532C:\Users\Jen\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat-1032 (0xfffffbf8)32 (0x00000020)The process cannot access the file because it is being used by another process.
 
Error: (05/31/2013 01:29:42 AM) (Source: Application Hang)(User: )
Description: chrome.exe27.0.1453.94de401ce5db1bc6b65ec50C:\Users\Alex\AppData\Local\Google\Chrome\Application\chrome.exe
 
Error: (05/24/2013 01:53:11 AM) (Source: Application Error)(User: )
Description: H2DEMOW.EXE1.0.0.1329a282bH2DEMOW.EXE1.0.0.1329a282bc00000050000106a125401ce5842d39b4e74C:\Games\H2\H2DEMOW.EXEC:\Games\H2\H2DEMOW.EXE36e55dfd-c436-11e2-b333-000129a63735
 
Error: (05/03/2013 08:13:48 PM) (Source: Application Error)(User: )
Description: RomeTW.exe1.0.0.0438afb5amss32.dll3.0.0.0411aa3e4c00000050002d7785b801ce485b579e0e51C:\Games\Rome - Total War\RomeTW.exeC:\Games\Rome - Total War\mss32.dll7d802d7e-b44f-11e2-b303-000129a63735
 
Error: (04/29/2013 04:23:22 PM) (Source: ESENT)(User: )
Description: taskhost3240C:\Users\Jen\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat-1032 (0xfffffbf8)32 (0x00000020)The process cannot access the file because it is being used by another process.
 
Error: (04/26/2013 01:22:12 AM) (Source: Application Hang)(User: )
Description: RomeTW.exe1.0.0.04a001ce423de6199e8e7C:\Games\Rome - Total War\RomeTW.exe
 
Error: (04/25/2013 00:28:13 PM) (Source: Application Error)(User: )
Description: RomeTW-ALX.exe1.9.0.04461eedaRomeTW-ALX.exe1.9.0.04461eedac000000500a35a7457c01ce41d1b7df38faC:\Games\Rome - Total War\RomeTW-ALX.exeC:\Games\Rome - Total War\RomeTW-ALX.exe1f7e5ee5-adc5-11e2-98d0-000129a63735
 
Error: (04/25/2013 00:15:35 PM) (Source: Application Error)(User: )
Description: RomeTW-ALX.exe1.9.0.04461eedaRomeTW-ALX.exe1.9.0.04461eedac000000500a35a74d3c01ce41cfec6721beC:\Games\Rome - Total War\RomeTW-ALX.exeC:\Games\Rome - Total War\RomeTW-ALX.exe5b8d8f5c-adc3-11e2-98d0-000129a63735
 
Error: (04/25/2013 00:13:46 PM) (Source: Application Error)(User: )
Description: RomeTW-ALX.exe1.9.0.04461eedaRomeTW-ALX.exe1.9.0.04461eedac000000500a35a7441801ce41cfae0a040aC:\Games\Rome - Total War\RomeTW-ALX.exeC:\Games\Rome - Total War\RomeTW-ALX.exe1b0461c4-adc3-11e2-98d0-000129a63735
 
 
CodeIntegrity Errors:
===================================
  Date: 2012-12-21 02:11:45.973
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2012-12-21 02:11:45.910
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
 
=========================== Installed Programs ============================
 
1400 (Version: 130.0.365.000)
1400_Help (Version: 82.0.242.000)
1400Trb (Version: 82.0.242.000)
64 Bit HP CIO Components Installer (Version: 6.2.1)
Adobe AIR (Version: 3.0.0.4080)
Adobe Flash Player 11 ActiveX (Version: 11.7.700.224)
Adobe Flash Player 11 Plugin (Version: 11.7.700.224)
Adobe Reader XI (11.0.03) (Version: 11.0.03)
AIO_CDB_ProductContext (Version: 130.0.365.000)
AIO_CDB_Software (Version: 130.0.365.000)
AIO_Scan (Version: 130.0.421.000)
AllMyNotes Organizer (Version: 2.58)
Apple Application Support (Version: 2.1.5)
Apple Software Update (Version: 2.1.3.127)
BufferChm (Version: 130.0.331.000)
CCleaner (Version: 4.00)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Copy (Version: 130.0.428.000)
CPUID CPU-Z 1.58
Destinations (Version: 130.0.0.0)
DeviceDiscovery (Version: 130.0.465.000)
Diablo III (Version: 1.0.6.13644)
DocProc (Version: 13.0.0.0)
Europa Barbarorum 1.1
Europa Barbarorum 1.2
EVGA Precision 2.0.4 (Version: 2.0.4)
EVGA Precision X 3.0.3 (Version: 3.0.3)
Explorer Suite III
Fax (Version: 130.0.418.000)
GameSpy Arcade
GOM Player (Version: 2.1.37.5085)
GOMTV Streamer (Version: 1.0.0.26)
Google Chrome (Version: 27.0.1453.110)
Google Earth (Version: 7.0.3.8542)
Google Update Helper (Version: 1.3.21.145)
GPBaseService2 (Version: 130.0.371.000)
HiJackThis (Version: 1.0.0)
HP Customer Participation Program 13.0 (Version: 13.0)
HP Imaging Device Functions 13.0 (Version: 13.0)
HP Photosmart Essential 3.5 (Version: 3.5)
HP Photosmart Officejet and Deskjet All-In-One Driver Software 13.0 Rel. B (Version: 13.0)
HP Smart Web Printing 4.51 (Version: 4.51)
HP Solution Center 13.0 (Version: 13.0)
HP Update (Version: 4.000.011.006)
HPPhotoGadget (Version: 130.0.282.000)
HPPhotoSmartDiscLabelContent1 (Version: 2.04.0000)
HPPhotosmartEssential (Version: 2.04.0000)
HPProductAssistant (Version: 130.0.371.000)
HPSSupply (Version: 130.0.371.000)
Java 7 Update 10 (64-bit) (Version: 7.0.100)
Java 7 Update 21 (Version: 7.0.210)
Java Auto Updater (Version: 2.1.9.5)
League of Legends (Version: 1.3)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
MarketResearch (Version: 130.0.374.000)
Marvell Miniport Driver (Version: 10.70.3.3)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Office XP Standard (Version: 10.0.6626.0)
Microsoft Security Client (Version: 4.2.0223.1)
Microsoft Security Essentials (Version: 4.2.223.1)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Network64 (Version: 130.0.572.000)
Notepad++ (Version: 6.1.2)
NVIDIA 3D Vision Controller Driver 285.62 (Version: 285.62)
NVIDIA 3D Vision Driver 311.06 (Version: 311.06)
NVIDIA Control Panel 311.06 (Version: 311.06)
NVIDIA Graphics Driver 311.06 (Version: 311.06)
NVIDIA HD Audio Driver 1.2.24.0 (Version: 1.2.24.0)
NVIDIA Install Application (Version: 2.1002.108.688)
NVIDIA PhysX (Version: 9.11.0621)
NVIDIA PhysX System Software 9.11.0621 (Version: 9.11.0621)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.1106)
NVIDIA Update 1.11.3 (Version: 1.11.3)
NVIDIA Update Components (Version: 1.11.3)
OCR Software by I.R.I.S. 13.0 (Version: 13.0)
osu! (Version: 0.0.0.0)
QuickTime (Version: 7.71.80.42)
Razer DeathAdder™ Mouse (Version: 3.03)
Realtek High Definition Audio Driver (Version: 6.0.1.6662)
Rome - Total War - Alexander (Version: 1.9)
Rome - Total War - Gold Edition (Version: 1.6)
Scan (Version: 13.0.0.0)
Shop for HP Supplies (Version: 13.0)
SmartWebPrinting (Version: 130.0.457.000)
SolutionCenter (Version: 130.0.373.000)
StarCraft II (Version: 2.0.8.25604)
Status (Version: 130.0.469.000)
Toolbox (Version: 130.0.648.000)
TrayApp (Version: 130.0.422.000)
UnloadSupport (Version: 11.0.0)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
WebReg (Version: 130.0.132.017)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
WinRAR 4.01 (64-bit) (Version: 4.01.0)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 17%
Total physical RAM: 8190.18 MB
Available physical RAM: 6735.43 MB
Total Pagefile: 16378.54 MB
Available Pagefile: 14738.72 MB
Total Virtual: 4095.88 MB
Available Virtual: 3960.15 MB
 
========================= Partitions: =====================================
 
2 Drive c: () (Fixed) (Total:558.81 GB) (Free:411.9 GB) NTFS
6 Drive g: () (Removable) (Total:14.92 GB) (Free:10.92 GB) FAT32
 
========================= Users: ========================================
 
User accounts for \\FALCON
 
Administrator            Alex                     Guest                    
Jen                      UpdatusUser              
 
 
**** End of log ****
 

 

 

 

 

 

***************************************************************************

***************************************************************************

TDSSkiller:

***************************************************************************

***************************************************************************

 

01:48:41.0919 4404  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42

01:48:42.0290 4404  ============================================================
01:48:42.0290 4404  Current date / time: 2013/06/19 01:48:42.0290
01:48:42.0290 4404  SystemInfo:
01:48:42.0290 4404  
01:48:42.0290 4404  OS Version: 6.1.7601 ServicePack: 1.0
01:48:42.0290 4404  Product type: Workstation
01:48:42.0290 4404  ComputerName: FALCON
01:48:42.0290 4404  UserName: Alex
01:48:42.0290 4404  Windows directory: C:\Windows
01:48:42.0290 4404  System windows directory: C:\Windows
01:48:42.0290 4404  Running under WOW64
01:48:42.0290 4404  Processor architecture: Intel x64
01:48:42.0290 4404  Number of processors: 4
01:48:42.0290 4404  Page size: 0x1000
01:48:42.0290 4404  Boot type: Normal boot
01:48:42.0290 4404  ============================================================
01:48:43.0080 4404  Drive \Device\Harddisk0\DR0 - Size: 0x8BBA5F6000 (558.91 Gb), SectorSize: 0x200, Cylinders: 0x12ED1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
01:48:43.0135 4404  Drive \Device\Harddisk1\DR1 - Size: 0x3BC000000 (14.94 Gb), SectorSize: 0x200, Cylinders: 0x79D, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
01:48:43.0145 4404  ============================================================
01:48:43.0145 4404  \Device\Harddisk0\DR0:
01:48:43.0146 4404  MBR partitions:
01:48:43.0146 4404  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
01:48:43.0146 4404  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x45D9F800
01:48:43.0146 4404  \Device\Harddisk1\DR1:
01:48:43.0146 4404  MBR partitions:
01:48:43.0146 4404  \Device\Harddisk1\DR1\Partition1: MBR, Type 0xC, StartLBA 0x8B0, BlocksNum 0x1DDF750
01:48:43.0146 4404  ============================================================
01:48:43.0156 4404  C: <-> \Device\Harddisk0\DR0\Partition2
01:48:43.0156 4404  ============================================================
01:48:43.0156 4404  Initialize success
01:48:43.0156 4404  ============================================================
01:48:46.0095 2036  ============================================================
01:48:46.0095 2036  Scan started
01:48:46.0095 2036  Mode: Manual; 
01:48:46.0095 2036  ============================================================
01:48:46.0563 2036  ================ Scan system memory ========================
01:48:46.0563 2036  System memory - ok
01:48:46.0563 2036  ================ Scan services =============================
01:48:46.0703 2036  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
01:48:46.0703 2036  1394ohci - ok
01:48:46.0719 2036  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
01:48:46.0719 2036  ACPI - ok
01:48:46.0734 2036  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
01:48:46.0734 2036  AcpiPmi - ok
01:48:46.0750 2036  [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
01:48:46.0750 2036  AdobeARMservice - ok
01:48:46.0797 2036  [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
01:48:46.0797 2036  AdobeFlashPlayerUpdateSvc - ok
01:48:46.0812 2036  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
01:48:46.0828 2036  adp94xx - ok
01:48:46.0828 2036  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
01:48:46.0828 2036  adpahci - ok
01:48:46.0843 2036  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
01:48:46.0843 2036  adpu320 - ok
01:48:46.0859 2036  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
01:48:46.0859 2036  AeLookupSvc - ok
01:48:46.0875 2036  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
01:48:46.0890 2036  AFD - ok
01:48:46.0890 2036  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
01:48:46.0906 2036  agp440 - ok
01:48:46.0906 2036  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
01:48:46.0906 2036  ALG - ok
01:48:46.0921 2036  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
01:48:46.0921 2036  aliide - ok
01:48:46.0921 2036  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
01:48:46.0921 2036  amdide - ok
01:48:46.0937 2036  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
01:48:46.0937 2036  AmdK8 - ok
01:48:46.0953 2036  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
01:48:46.0953 2036  AmdPPM - ok
01:48:46.0968 2036  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
01:48:46.0968 2036  amdsata - ok
01:48:46.0984 2036  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
01:48:46.0984 2036  amdsbs - ok
01:48:46.0984 2036  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
01:48:46.0984 2036  amdxata - ok
01:48:47.0015 2036  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
01:48:47.0015 2036  AppID - ok
01:48:47.0031 2036  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
01:48:47.0031 2036  AppIDSvc - ok
01:48:47.0046 2036  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\Windows\System32\appinfo.dll
01:48:47.0046 2036  Appinfo - ok
01:48:47.0046 2036  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
01:48:47.0046 2036  arc - ok
01:48:47.0062 2036  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
01:48:47.0062 2036  arcsas - ok
01:48:47.0077 2036  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
01:48:47.0077 2036  AsyncMac - ok
01:48:47.0077 2036  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
01:48:47.0077 2036  atapi - ok
01:48:47.0109 2036  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
01:48:47.0109 2036  AudioEndpointBuilder - ok
01:48:47.0124 2036  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
01:48:47.0140 2036  AudioSrv - ok
01:48:47.0155 2036  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
01:48:47.0171 2036  AxInstSV - ok
01:48:47.0187 2036  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
01:48:47.0187 2036  b06bdrv - ok
01:48:47.0202 2036  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
01:48:47.0202 2036  b57nd60a - ok
01:48:47.0218 2036  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
01:48:47.0218 2036  BDESVC - ok
01:48:47.0233 2036  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
01:48:47.0233 2036  Beep - ok
01:48:47.0249 2036  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
01:48:47.0265 2036  BFE - ok
01:48:47.0280 2036  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
01:48:47.0280 2036  BITS - ok
01:48:47.0296 2036  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
01:48:47.0296 2036  blbdrive - ok
01:48:47.0311 2036  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
01:48:47.0311 2036  bowser - ok
01:48:47.0327 2036  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
01:48:47.0327 2036  BrFiltLo - ok
01:48:47.0327 2036  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
01:48:47.0327 2036  BrFiltUp - ok
01:48:47.0343 2036  [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
01:48:47.0358 2036  BridgeMP - ok
01:48:47.0358 2036  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
01:48:47.0358 2036  Browser - ok
01:48:47.0374 2036  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
01:48:47.0374 2036  Brserid - ok
01:48:47.0389 2036  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
01:48:47.0389 2036  BrSerWdm - ok
01:48:47.0405 2036  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
01:48:47.0405 2036  BrUsbMdm - ok
01:48:47.0405 2036  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
01:48:47.0405 2036  BrUsbSer - ok
01:48:47.0421 2036  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
01:48:47.0421 2036  BTHMODEM - ok
01:48:47.0421 2036  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
01:48:47.0421 2036  bthserv - ok
01:48:47.0436 2036  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
01:48:47.0436 2036  cdfs - ok
01:48:47.0452 2036  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\drivers\cdrom.sys
01:48:47.0452 2036  cdrom - ok
01:48:47.0467 2036  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
01:48:47.0467 2036  CertPropSvc - ok
01:48:47.0483 2036  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
01:48:47.0483 2036  circlass - ok
01:48:47.0499 2036  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
01:48:47.0499 2036  CLFS - ok
01:48:47.0530 2036  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
01:48:47.0530 2036  clr_optimization_v2.0.50727_32 - ok
01:48:47.0561 2036  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
01:48:47.0561 2036  clr_optimization_v2.0.50727_64 - ok
01:48:47.0592 2036  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
01:48:47.0592 2036  clr_optimization_v4.0.30319_32 - ok
01:48:47.0623 2036  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
01:48:47.0623 2036  clr_optimization_v4.0.30319_64 - ok
01:48:47.0623 2036  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
01:48:47.0623 2036  CmBatt - ok
01:48:47.0639 2036  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
01:48:47.0639 2036  cmdide - ok
01:48:47.0655 2036  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
01:48:47.0670 2036  CNG - ok
01:48:47.0670 2036  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
01:48:47.0670 2036  Compbatt - ok
01:48:47.0686 2036  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
01:48:47.0686 2036  CompositeBus - ok
01:48:47.0686 2036  COMSysApp - ok
01:48:47.0701 2036  [ 262969A3FAB32B9E17E63E2D17A57744 ] cpuz135         C:\Windows\system32\drivers\cpuz135_x64.sys
01:48:47.0701 2036  cpuz135 - ok
01:48:47.0717 2036  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
01:48:47.0717 2036  crcdisk - ok
01:48:47.0733 2036  [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc        C:\Windows\system32\cryptsvc.dll
01:48:47.0733 2036  CryptSvc - ok
01:48:47.0748 2036  [ 003626F7CA17C204F16CD5047AF0703A ] danewFltr       C:\Windows\system32\drivers\danew.sys
01:48:47.0748 2036  danewFltr - ok
01:48:47.0764 2036  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
01:48:47.0779 2036  DcomLaunch - ok
01:48:47.0795 2036  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
01:48:47.0795 2036  defragsvc - ok
01:48:47.0811 2036  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
01:48:47.0811 2036  DfsC - ok
01:48:47.0826 2036  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
01:48:47.0826 2036  Dhcp - ok
01:48:47.0842 2036  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
01:48:47.0842 2036  discache - ok
01:48:47.0857 2036  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
01:48:47.0857 2036  Disk - ok
01:48:47.0873 2036  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
01:48:47.0873 2036  Dnscache - ok
01:48:47.0889 2036  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
01:48:47.0889 2036  dot3svc - ok
01:48:47.0904 2036  [ B42ED0320C6E41102FDE0005154849BB ] Dot4            C:\Windows\system32\DRIVERS\Dot4.sys
01:48:47.0920 2036  Dot4 - ok
01:48:47.0920 2036  [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print       C:\Windows\system32\DRIVERS\Dot4Prt.sys
01:48:47.0935 2036  Dot4Print - ok
01:48:47.0935 2036  [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb         C:\Windows\system32\DRIVERS\dot4usb.sys
01:48:47.0935 2036  dot4usb - ok
01:48:47.0951 2036  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
01:48:47.0951 2036  DPS - ok
01:48:47.0967 2036  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
01:48:47.0967 2036  drmkaud - ok
01:48:47.0998 2036  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
01:48:48.0013 2036  DXGKrnl - ok
01:48:48.0013 2036  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
01:48:48.0013 2036  EapHost - ok
01:48:48.0060 2036  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
01:48:48.0107 2036  ebdrv - ok
01:48:48.0123 2036  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
01:48:48.0123 2036  EFS - ok
01:48:48.0154 2036  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
01:48:48.0154 2036  ehRecvr - ok
01:48:48.0169 2036  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
01:48:48.0169 2036  ehSched - ok
01:48:48.0185 2036  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
01:48:48.0201 2036  elxstor - ok
01:48:48.0201 2036  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
01:48:48.0216 2036  ErrDev - ok
01:48:48.0232 2036  esgiguard - ok
01:48:48.0247 2036  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
01:48:48.0247 2036  EventSystem - ok
01:48:48.0263 2036  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
01:48:48.0263 2036  exfat - ok
01:48:48.0279 2036  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
01:48:48.0279 2036  fastfat - ok
01:48:48.0294 2036  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
01:48:48.0310 2036  Fax - ok
01:48:48.0310 2036  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
01:48:48.0310 2036  fdc - ok
01:48:48.0325 2036  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
01:48:48.0325 2036  fdPHost - ok
01:48:48.0325 2036  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
01:48:48.0341 2036  FDResPub - ok
01:48:48.0341 2036  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
01:48:48.0341 2036  FileInfo - ok
01:48:48.0357 2036  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
01:48:48.0357 2036  Filetrace - ok
01:48:48.0372 2036  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
01:48:48.0372 2036  flpydisk - ok
01:48:48.0372 2036  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
01:48:48.0388 2036  FltMgr - ok
01:48:48.0403 2036  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
01:48:48.0419 2036  FontCache - ok
01:48:48.0450 2036  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
01:48:48.0450 2036  FontCache3.0.0.0 - ok
01:48:48.0450 2036  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
01:48:48.0466 2036  FsDepends - ok
01:48:48.0466 2036  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
01:48:48.0466 2036  Fs_Rec - ok
01:48:48.0481 2036  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
01:48:48.0481 2036  fvevol - ok
01:48:48.0497 2036  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
01:48:48.0497 2036  gagp30kx - ok
01:48:48.0513 2036  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
01:48:48.0528 2036  gpsvc - ok
01:48:48.0559 2036  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
01:48:48.0559 2036  gupdate - ok
01:48:48.0559 2036  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
01:48:48.0559 2036  gupdatem - ok
01:48:48.0575 2036  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
01:48:48.0575 2036  hcw85cir - ok
01:48:48.0591 2036  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
01:48:48.0606 2036  HdAudAddService - ok
01:48:48.0606 2036  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
01:48:48.0606 2036  HDAudBus - ok
01:48:48.0622 2036  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
01:48:48.0622 2036  HidBatt - ok
01:48:48.0637 2036  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
01:48:48.0637 2036  HidBth - ok
01:48:48.0637 2036  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
01:48:48.0637 2036  HidIr - ok
01:48:48.0653 2036  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\System32\hidserv.dll
01:48:48.0653 2036  hidserv - ok
01:48:48.0669 2036  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
01:48:48.0669 2036  HidUsb - ok
01:48:48.0684 2036  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
01:48:48.0684 2036  hkmsvc - ok
01:48:48.0700 2036  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
01:48:48.0700 2036  HomeGroupListener - ok
01:48:48.0715 2036  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
01:48:48.0715 2036  HomeGroupProvider - ok
01:48:48.0762 2036  [ 1DAE5C46D42B02A6D5862E1482EFB390 ] hpqcxs08        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
01:48:48.0762 2036  hpqcxs08 - ok
01:48:48.0762 2036  [ 99E8EEF42FE2F4AF29B08C3355DD7685 ] hpqddsvc        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
01:48:48.0762 2036  hpqddsvc - ok
01:48:48.0778 2036  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
01:48:48.0778 2036  HpSAMD - ok
01:48:48.0809 2036  [ 7F57926169C1B8ABA9274EA7D4B70F18 ] HPSLPSVC        C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
01:48:48.0825 2036  HPSLPSVC - ok
01:48:48.0840 2036  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
01:48:48.0856 2036  HTTP - ok
01:48:48.0856 2036  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
01:48:48.0856 2036  hwpolicy - ok
01:48:48.0871 2036  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
01:48:48.0871 2036  i8042prt - ok
01:48:48.0887 2036  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
01:48:48.0903 2036  iaStorV - ok
01:48:48.0918 2036  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
01:48:48.0934 2036  idsvc - ok
01:48:48.0934 2036  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
01:48:48.0949 2036  iirsp - ok
01:48:48.0965 2036  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
01:48:48.0965 2036  IKEEXT - ok
01:48:49.0027 2036  [ C2F868881D48A568B525255F084EF063 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
01:48:49.0074 2036  IntcAzAudAddService - ok
01:48:49.0090 2036  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
01:48:49.0090 2036  intelide - ok
01:48:49.0105 2036  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
01:48:49.0105 2036  intelppm - ok
01:48:49.0121 2036  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
01:48:49.0121 2036  IPBusEnum - ok
01:48:49.0137 2036  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
01:48:49.0137 2036  IpFilterDriver - ok
01:48:49.0168 2036  [ 08C2957BB30058E663720C5606885653 ] IpHlpSvc        C:\Windows\System32\iphlpsvc.dll
01:48:49.0168 2036  IpHlpSvc - ok
01:48:49.0183 2036  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
01:48:49.0183 2036  IPMIDRV - ok
01:48:49.0199 2036  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
01:48:49.0199 2036  IPNAT - ok
01:48:49.0215 2036  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
01:48:49.0215 2036  IRENUM - ok
01:48:49.0215 2036  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
01:48:49.0215 2036  isapnp - ok
01:48:49.0230 2036  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
01:48:49.0230 2036  iScsiPrt - ok
01:48:49.0246 2036  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
01:48:49.0246 2036  kbdclass - ok
01:48:49.0261 2036  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
01:48:49.0261 2036  kbdhid - ok
01:48:49.0261 2036  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
01:48:49.0261 2036  KeyIso - ok
01:48:49.0277 2036  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
01:48:49.0277 2036  KSecDD - ok
01:48:49.0293 2036  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
01:48:49.0308 2036  KSecPkg - ok
01:48:49.0308 2036  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
01:48:49.0308 2036  ksthunk - ok
01:48:49.0324 2036  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
01:48:49.0339 2036  KtmRm - ok
01:48:49.0339 2036  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\System32\srvsvc.dll
01:48:49.0339 2036  LanmanServer - ok
01:48:49.0355 2036  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
01:48:49.0355 2036  LanmanWorkstation - ok
01:48:49.0386 2036  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
01:48:49.0386 2036  lltdio - ok
01:48:49.0386 2036  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
01:48:49.0402 2036  lltdsvc - ok
01:48:49.0402 2036  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
01:48:49.0402 2036  lmhosts - ok
01:48:49.0417 2036  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
01:48:49.0417 2036  LSI_FC - ok
01:48:49.0417 2036  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
01:48:49.0433 2036  LSI_SAS - ok
01:48:49.0433 2036  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
01:48:49.0433 2036  LSI_SAS2 - ok
01:48:49.0449 2036  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
01:48:49.0449 2036  LSI_SCSI - ok
01:48:49.0464 2036  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
01:48:49.0464 2036  luafv - ok
01:48:49.0495 2036  [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
01:48:49.0495 2036  MBAMProtector - ok
01:48:49.0511 2036  [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
01:48:49.0511 2036  MBAMScheduler - ok
01:48:49.0542 2036  [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
01:48:49.0542 2036  MBAMService - ok
01:48:49.0558 2036  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
01:48:49.0558 2036  Mcx2Svc - ok
01:48:49.0558 2036  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
01:48:49.0558 2036  megasas - ok
01:48:49.0573 2036  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
01:48:49.0573 2036  MegaSR - ok
01:48:49.0589 2036  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
01:48:49.0589 2036  MMCSS - ok
01:48:49.0589 2036  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
01:48:49.0589 2036  Modem - ok
01:48:49.0605 2036  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
01:48:49.0605 2036  monitor - ok
01:48:49.0605 2036  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\drivers\mouclass.sys
01:48:49.0605 2036  mouclass - ok
01:48:49.0620 2036  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
01:48:49.0620 2036  mouhid - ok
01:48:49.0636 2036  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
01:48:49.0636 2036  mountmgr - ok
01:48:49.0651 2036  [ F8A10560B35C66F9DE212F03DAD5BFA7 ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
01:48:49.0651 2036  MpFilter - ok
01:48:49.0667 2036  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
01:48:49.0667 2036  mpio - ok
01:48:49.0667 2036  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
01:48:49.0667 2036  mpsdrv - ok
01:48:49.0683 2036  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
01:48:49.0698 2036  MpsSvc - ok
01:48:49.0714 2036  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
01:48:49.0714 2036  MRxDAV - ok
01:48:49.0729 2036  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
01:48:49.0729 2036  mrxsmb - ok
01:48:49.0729 2036  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
01:48:49.0729 2036  mrxsmb10 - ok
01:48:49.0745 2036  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
01:48:49.0745 2036  mrxsmb20 - ok
01:48:49.0761 2036  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
01:48:49.0761 2036  msahci - ok
01:48:49.0776 2036  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
01:48:49.0776 2036  msdsm - ok
01:48:49.0792 2036  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
01:48:49.0792 2036  MSDTC - ok
01:48:49.0807 2036  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
01:48:49.0807 2036  Msfs - ok
01:48:49.0807 2036  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
01:48:49.0807 2036  mshidkmdf - ok
01:48:49.0823 2036  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
01:48:49.0823 2036  msisadrv - ok
01:48:49.0823 2036  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
01:48:49.0823 2036  MSiSCSI - ok
01:48:49.0839 2036  msiserver - ok
01:48:49.0839 2036  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
01:48:49.0839 2036  MSKSSRV - ok
01:48:49.0870 2036  [ E07DEC52FF801841BA9B6878A60304FB ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe
01:48:49.0870 2036  MsMpSvc - ok
01:48:49.0870 2036  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
01:48:49.0885 2036  MSPCLOCK - ok
01:48:49.0885 2036  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
01:48:49.0885 2036  MSPQM - ok
01:48:49.0901 2036  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
01:48:49.0917 2036  MsRPC - ok
01:48:49.0917 2036  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
01:48:49.0917 2036  mssmbios - ok
01:48:49.0917 2036  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
01:48:49.0917 2036  MSTEE - ok
01:48:49.0932 2036  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
01:48:49.0932 2036  MTConfig - ok
01:48:49.0932 2036  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
01:48:49.0932 2036  Mup - ok
01:48:49.0948 2036  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
01:48:49.0963 2036  napagent - ok
01:48:49.0963 2036  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
01:48:49.0963 2036  NativeWifiP - ok
01:48:49.0995 2036  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
01:48:50.0010 2036  NDIS - ok
01:48:50.0010 2036  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
01:48:50.0010 2036  NdisCap - ok
01:48:50.0026 2036  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
01:48:50.0026 2036  NdisTapi - ok
01:48:50.0041 2036  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
01:48:50.0041 2036  Ndisuio - ok
01:48:50.0057 2036  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
01:48:50.0057 2036  NdisWan - ok
01:48:50.0073 2036  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
01:48:50.0073 2036  NDProxy - ok
01:48:50.0088 2036  [ D5AC41AE382738483FAFFBD7E373D49A ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
01:48:50.0088 2036  Net Driver HPZ12 - ok
01:48:50.0088 2036  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
01:48:50.0088 2036  NetBIOS - ok
01:48:50.0104 2036  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
01:48:50.0104 2036  NetBT - ok
01:48:50.0104 2036  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
01:48:50.0104 2036  Netlogon - ok
01:48:50.0135 2036  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
01:48:50.0135 2036  Netman - ok
01:48:50.0135 2036  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
01:48:50.0151 2036  netprofm - ok
01:48:50.0166 2036  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
01:48:50.0166 2036  NetTcpPortSharing - ok
01:48:50.0166 2036  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
01:48:50.0166 2036  nfrd960 - ok
01:48:50.0182 2036  [ 162100E0BC8377710F9D170631921C03 ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
01:48:50.0182 2036  NisDrv - ok
01:48:50.0197 2036  [ C6E15F2F95F9C0A6098D43510B604E52 ] NisSrv          c:\Program Files\Microsoft Security Client\NisSrv.exe
01:48:50.0197 2036  NisSrv - ok
01:48:50.0213 2036  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
01:48:50.0213 2036  NlaSvc - ok
01:48:50.0229 2036  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
01:48:50.0229 2036  Npfs - ok
01:48:50.0229 2036  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
01:48:50.0229 2036  nsi - ok
01:48:50.0229 2036  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
01:48:50.0244 2036  nsiproxy - ok
01:48:50.0260 2036  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
01:48:50.0291 2036  Ntfs - ok
01:48:50.0307 2036  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
01:48:50.0307 2036  Null - ok
01:48:50.0322 2036  [ 10204955027011E08A9DC27737A48A54 ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
01:48:50.0322 2036  NVHDA - ok
01:48:50.0463 2036  [ FCBA1C22727939E7CFF9EB08FE9692AB ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
01:48:50.0587 2036  nvlddmkm - ok
01:48:50.0587 2036  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
01:48:50.0587 2036  nvraid - ok
01:48:50.0603 2036  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
01:48:50.0619 2036  nvstor - ok
01:48:50.0634 2036  [ 10C232F6CFFD51D2332898AE7AE0FF23 ] nvsvc           C:\Windows\system32\nvvsvc.exe
01:48:50.0650 2036  nvsvc - ok
01:48:50.0681 2036  [ 4789E020D2617046862D1790FC235FF6 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
01:48:50.0681 2036  nvUpdatusService - ok
01:48:50.0697 2036  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
01:48:50.0697 2036  nv_agp - ok
01:48:50.0712 2036  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
01:48:50.0712 2036  ohci1394 - ok
01:48:50.0728 2036  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
01:48:50.0743 2036  p2pimsvc - ok
01:48:50.0743 2036  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
01:48:50.0759 2036  p2psvc - ok
01:48:50.0759 2036  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
01:48:50.0759 2036  Parport - ok
01:48:50.0790 2036  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
01:48:50.0790 2036  partmgr - ok
01:48:50.0790 2036  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
01:48:50.0790 2036  PcaSvc - ok
01:48:50.0806 2036  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
01:48:50.0806 2036  pci - ok
01:48:50.0806 2036  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
01:48:50.0806 2036  pciide - ok
01:48:50.0821 2036  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
01:48:50.0821 2036  pcmcia - ok
01:48:50.0837 2036  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
01:48:50.0837 2036  pcw - ok
01:48:50.0837 2036  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
01:48:50.0853 2036  PEAUTH - ok
01:48:50.0884 2036  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
01:48:50.0884 2036  PerfHost - ok
01:48:50.0915 2036  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
01:48:50.0931 2036  pla - ok
01:48:50.0946 2036  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
01:48:50.0946 2036  PlugPlay - ok
01:48:50.0962 2036  [ 37F6046CDC630442D7DC087501FF6FC6 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
01:48:50.0962 2036  Pml Driver HPZ12 - ok
01:48:50.0977 2036  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
01:48:50.0977 2036  PNRPAutoReg - ok
01:48:50.0977 2036  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
01:48:50.0977 2036  PNRPsvc - ok
01:48:50.0993 2036  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
01:48:50.0993 2036  PolicyAgent - ok
01:48:51.0009 2036  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
01:48:51.0024 2036  Power - ok
01:48:51.0040 2036  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
01:48:51.0040 2036  PptpMiniport - ok
01:48:51.0055 2036  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
01:48:51.0055 2036  Processor - ok
01:48:51.0071 2036  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
01:48:51.0071 2036  ProfSvc - ok
01:48:51.0087 2036  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
01:48:51.0087 2036  ProtectedStorage - ok
01:48:51.0102 2036  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
01:48:51.0102 2036  Psched - ok
01:48:51.0133 2036  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
01:48:51.0149 2036  ql2300 - ok
01:48:51.0165 2036  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
01:48:51.0165 2036  ql40xx - ok
01:48:51.0180 2036  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
01:48:51.0180 2036  QWAVE - ok
01:48:51.0180 2036  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
01:48:51.0180 2036  QWAVEdrv - ok
01:48:51.0196 2036  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
01:48:51.0196 2036  RasAcd - ok
01:48:51.0211 2036  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
01:48:51.0211 2036  RasAgileVpn - ok
01:48:51.0227 2036  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
01:48:51.0227 2036  RasAuto - ok
01:48:51.0243 2036  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
01:48:51.0243 2036  Rasl2tp - ok
01:48:51.0258 2036  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
01:48:51.0258 2036  RasMan - ok
01:48:51.0274 2036  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
01:48:51.0274 2036  RasPppoe - ok
01:48:51.0274 2036  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
01:48:51.0274 2036  RasSstp - ok
01:48:51.0289 2036  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
01:48:51.0305 2036  rdbss - ok
01:48:51.0305 2036  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
01:48:51.0321 2036  rdpbus - ok
01:48:51.0321 2036  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
01:48:51.0321 2036  RDPCDD - ok
01:48:51.0336 2036  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
01:48:51.0336 2036  RDPENCDD - ok
01:48:51.0336 2036  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
01:48:51.0336 2036  RDPREFMP - ok
01:48:51.0352 2036  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
01:48:51.0352 2036  RDPWD - ok
01:48:51.0367 2036  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
01:48:51.0367 2036  rdyboost - ok
01:48:51.0383 2036  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
01:48:51.0399 2036  RemoteAccess - ok
01:48:51.0399 2036  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
01:48:51.0414 2036  RemoteRegistry - ok
01:48:51.0414 2036  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
01:48:51.0414 2036  RpcEptMapper - ok
01:48:51.0430 2036  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
01:48:51.0430 2036  RpcLocator - ok
01:48:51.0461 2036  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
01:48:51.0461 2036  RpcSs - ok
01:48:51.0461 2036  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
01:48:51.0477 2036  rspndr - ok
01:48:51.0477 2036  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
01:48:51.0477 2036  SamSs - ok
01:48:51.0492 2036  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
01:48:51.0492 2036  sbp2port - ok
01:48:51.0508 2036  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
01:48:51.0508 2036  SCardSvr - ok
01:48:51.0523 2036  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
01:48:51.0523 2036  scfilter - ok
01:48:51.0539 2036  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
01:48:51.0555 2036  Schedule - ok
01:48:51.0570 2036  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
01:48:51.0570 2036  SCPolicySvc - ok
01:48:51.0586 2036  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
01:48:51.0586 2036  SDRSVC - ok
01:48:51.0586 2036  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
01:48:51.0586 2036  secdrv - ok
01:48:51.0601 2036  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
01:48:51.0601 2036  seclogon - ok
01:48:51.0617 2036  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\system32\sens.dll
01:48:51.0617 2036  SENS - ok
01:48:51.0633 2036  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
01:48:51.0633 2036  SensrSvc - ok
01:48:51.0648 2036  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
01:48:51.0648 2036  Serenum - ok
01:48:51.0664 2036  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
01:48:51.0664 2036  Serial - ok
01:48:51.0664 2036  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
01:48:51.0664 2036  sermouse - ok
01:48:51.0695 2036  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
01:48:51.0695 2036  SessionEnv - ok
01:48:51.0711 2036  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
01:48:51.0711 2036  sffdisk - ok
01:48:51.0711 2036  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
01:48:51.0711 2036  sffp_mmc - ok
01:48:51.0726 2036  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
01:48:51.0726 2036  sffp_sd - ok
01:48:51.0726 2036  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
01:48:51.0726 2036  sfloppy - ok
01:48:51.0757 2036  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
01:48:51.0757 2036  SharedAccess - ok
01:48:51.0773 2036  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
01:48:51.0789 2036  ShellHWDetection - ok
01:48:51.0789 2036  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
01:48:51.0789 2036  SiSRaid2 - ok
01:48:51.0804 2036  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
01:48:51.0804 2036  SiSRaid4 - ok
01:48:51.0804 2036  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
01:48:51.0820 2036  Smb - ok
01:48:51.0820 2036  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
01:48:51.0820 2036  SNMPTRAP - ok
01:48:51.0835 2036  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
01:48:51.0835 2036  spldr - ok
01:48:51.0851 2036  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
01:48:51.0867 2036  Spooler - ok
01:48:51.0913 2036  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
01:48:51.0960 2036  sppsvc - ok
01:48:51.0960 2036  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
01:48:51.0960 2036  sppuinotify - ok
01:48:51.0991 2036  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
01:48:51.0991 2036  srv - ok
01:48:52.0007 2036  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
01:48:52.0007 2036  srv2 - ok
01:48:52.0023 2036  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
01:48:52.0023 2036  srvnet - ok
01:48:52.0023 2036  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
01:48:52.0023 2036  SSDPSRV - ok
01:48:52.0038 2036  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
01:48:52.0038 2036  SstpSvc - ok
01:48:52.0069 2036  [ 5A19667A580B1CE886EAF968B9743F45 ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
01:48:52.0069 2036  Stereo Service - ok
01:48:52.0069 2036  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
01:48:52.0085 2036  stexstor - ok
01:48:52.0101 2036  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
01:48:52.0101 2036  stisvc - ok
01:48:52.0116 2036  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
01:48:52.0116 2036  swenum - ok
01:48:52.0132 2036  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
01:48:52.0132 2036  swprv - ok
01:48:52.0163 2036  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
01:48:52.0194 2036  SysMain - ok
01:48:52.0210 2036  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
01:48:52.0210 2036  TabletInputService - ok
01:48:52.0225 2036  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
01:48:52.0225 2036  TapiSrv - ok
01:48:52.0241 2036  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
01:48:52.0241 2036  TBS - ok
01:48:52.0272 2036  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
01:48:52.0288 2036  Tcpip - ok
01:48:52.0319 2036  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
01:48:52.0319 2036  TCPIP6 - ok
01:48:52.0335 2036  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
01:48:52.0335 2036  tcpipreg - ok
01:48:52.0350 2036  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
01:48:52.0366 2036  TDPIPE - ok
01:48:52.0366 2036  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
01:48:52.0366 2036  TDTCP - ok
01:48:52.0381 2036  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
01:48:52.0381 2036  tdx - ok
01:48:52.0397 2036  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
01:48:52.0397 2036  TermDD - ok
01:48:52.0413 2036  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
01:48:52.0413 2036  TermService - ok
01:48:52.0428 2036  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
01:48:52.0428 2036  Themes - ok
01:48:52.0444 2036  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
01:48:52.0444 2036  THREADORDER - ok
01:48:52.0444 2036  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
01:48:52.0444 2036  TrkWks - ok
01:48:52.0459 2036  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
01:48:52.0459 2036  TrustedInstaller - ok
01:48:52.0475 2036  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
01:48:52.0491 2036  tssecsrv - ok
01:48:52.0491 2036  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
01:48:52.0491 2036  TsUsbFlt - ok
01:48:52.0522 2036  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
01:48:52.0522 2036  tunnel - ok
01:48:52.0522 2036  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
01:48:52.0522 2036  uagp35 - ok
01:48:52.0537 2036  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
01:48:52.0537 2036  udfs - ok
01:48:52.0553 2036  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
01:48:52.0553 2036  UI0Detect - ok
01:48:52.0569 2036  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
01:48:52.0569 2036  uliagpkx - ok
01:48:52.0584 2036  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\drivers\umbus.sys
01:48:52.0584 2036  umbus - ok
01:48:52.0600 2036  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
01:48:52.0600 2036  UmPass - ok
01:48:52.0615 2036  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
01:48:52.0615 2036  upnphost - ok
01:48:52.0631 2036  [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
01:48:52.0631 2036  usbaudio - ok
01:48:52.0631 2036  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
01:48:52.0631 2036  usbccgp - ok
01:48:52.0647 2036  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
01:48:52.0647 2036  usbcir - ok
01:48:52.0662 2036  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
01:48:52.0662 2036  usbehci - ok
01:48:52.0678 2036  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
01:48:52.0678 2036  usbhub - ok
01:48:52.0678 2036  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
01:48:52.0678 2036  usbohci - ok
01:48:52.0693 2036  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
01:48:52.0693 2036  usbprint - ok
01:48:52.0709 2036  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
01:48:52.0709 2036  usbscan - ok
01:48:52.0725 2036  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
01:48:52.0725 2036  USBSTOR - ok
01:48:52.0725 2036  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
01:48:52.0725 2036  usbuhci - ok
01:48:52.0740 2036  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
01:48:52.0740 2036  UxSms - ok
01:48:52.0756 2036  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
01:48:52.0756 2036  VaultSvc - ok
01:48:52.0756 2036  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
01:48:52.0756 2036  vdrvroot - ok
01:48:52.0787 2036  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
01:48:52.0787 2036  vds - ok
01:48:52.0787 2036  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
01:48:52.0803 2036  vga - ok
01:48:52.0803 2036  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
01:48:52.0803 2036  VgaSave - ok
01:48:52.0818 2036  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
01:48:52.0818 2036  vhdmp - ok
01:48:52.0834 2036  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
01:48:52.0834 2036  viaide - ok
01:48:52.0834 2036  [ 3B59BB6D10CF969DBE4DB93D9EAD7FB4 ] VKbms           C:\Windows\system32\DRIVERS\VKbms.sys
01:48:52.0834 2036  VKbms - ok
01:48:52.0849 2036  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
01:48:52.0849 2036  volmgr - ok
01:48:52.0849 2036  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
01:48:52.0865 2036  volmgrx - ok
01:48:52.0881 2036  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
01:48:52.0881 2036  volsnap - ok
01:48:52.0881 2036  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
01:48:52.0881 2036  vsmraid - ok
01:48:52.0912 2036  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
01:48:52.0943 2036  VSS - ok
01:48:52.0959 2036  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
01:48:52.0959 2036  vwifibus - ok
01:48:52.0974 2036  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
01:48:52.0974 2036  W32Time - ok
01:48:52.0974 2036  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
01:48:52.0990 2036  WacomPen - ok
01:48:52.0990 2036  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
01:48:52.0990 2036  WANARP - ok
01:48:53.0005 2036  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
01:48:53.0005 2036  Wanarpv6 - ok
01:48:53.0021 2036  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
01:48:53.0037 2036  WatAdminSvc - ok
01:48:53.0068 2036  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
01:48:53.0083 2036  wbengine - ok
01:48:53.0099 2036  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
01:48:53.0099 2036  WbioSrvc - ok
01:48:53.0115 2036  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
01:48:53.0130 2036  wcncsvc - ok
01:48:53.0130 2036  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
01:48:53.0130 2036  WcsPlugInService - ok
01:48:53.0146 2036  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
01:48:53.0146 2036  Wd - ok
01:48:53.0161 2036  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
01:48:53.0177 2036  Wdf01000 - ok
01:48:53.0193 2036  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
01:48:53.0193 2036  WdiServiceHost - ok
01:48:53.0193 2036  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
01:48:53.0193 2036  WdiSystemHost - ok
01:48:53.0208 2036  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
01:48:53.0208 2036  WebClient - ok
01:48:53.0224 2036  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
01:48:53.0224 2036  Wecsvc - ok
01:48:53.0239 2036  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
01:48:53.0239 2036  wercplsupport - ok
01:48:53.0255 2036  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
01:48:53.0255 2036  WerSvc - ok
01:48:53.0255 2036  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
01:48:53.0255 2036  WfpLwf - ok
01:48:53.0271 2036  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
01:48:53.0271 2036  WIMMount - ok
01:48:53.0271 2036  WinDefend - ok
01:48:53.0271 2036  WinHttpAutoProxySvc - ok
01:48:53.0302 2036  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
01:48:53.0302 2036  Winmgmt - ok
01:48:53.0349 2036  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
01:48:53.0364 2036  WinRM - ok
01:48:53.0395 2036  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
01:48:53.0395 2036  WinUsb - ok
01:48:53.0411 2036  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
01:48:53.0411 2036  Wlansvc - ok
01:48:53.0427 2036  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
01:48:53.0427 2036  WmiAcpi - ok
01:48:53.0442 2036  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
01:48:53.0442 2036  wmiApSrv - ok
01:48:53.0458 2036  WMPNetworkSvc - ok
01:48:53.0458 2036  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
01:48:53.0458 2036  WPCSvc - ok
01:48:53.0473 2036  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
01:48:53.0473 2036  WPDBusEnum - ok
01:48:53.0489 2036  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
01:48:53.0489 2036  ws2ifsl - ok
01:48:53.0489 2036  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
01:48:53.0505 2036  wscsvc - ok
01:48:53.0505 2036  WSearch - ok
01:48:53.0551 2036  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
01:48:53.0583 2036  wuauserv - ok
01:48:53.0598 2036  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
01:48:53.0598 2036  WudfPf - ok
01:48:53.0614 2036  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
01:48:53.0614 2036  WUDFRd - ok
01:48:53.0629 2036  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
01:48:53.0629 2036  wudfsvc - ok
01:48:53.0645 2036  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\Windows\System32\wwansvc.dll
01:48:53.0645 2036  WwanSvc - ok
01:48:53.0661 2036  [ 64F88AF327AA74E03658AE32B48CCB8B ] yukonw7         C:\Windows\system32\DRIVERS\yk62x64.sys
01:48:53.0661 2036  yukonw7 - ok
01:48:53.0661 2036  ================ Scan global ===============================
01:48:53.0676 2036  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
01:48:53.0707 2036  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
01:48:53.0707 2036  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
01:48:53.0723 2036  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
01:48:53.0754 2036  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
01:48:53.0754 2036  [Global] - ok
01:48:53.0754 2036  ================ Scan MBR ==================================
01:48:53.0770 2036  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
01:48:53.0879 2036  \Device\Harddisk0\DR0 - ok
01:48:53.0879 2036  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR1
01:48:55.0689 2036  \Device\Harddisk1\DR1 - ok
01:48:55.0689 2036  ================ Scan VBR ==================================
01:48:55.0689 2036  [ 463759561D1B89839995C51D8BA29B87 ] \Device\Harddisk0\DR0\Partition1
01:48:55.0689 2036  \Device\Harddisk0\DR0\Partition1 - ok
01:48:55.0689 2036  [ C744A1B724192E4E0346E583EEFE4282 ] \Device\Harddisk0\DR0\Partition2
01:48:55.0704 2036  \Device\Harddisk0\DR0\Partition2 - ok
01:48:55.0704 2036  [ 905D6C51D87BE8CD58F7F4FEAA5D4408 ] \Device\Harddisk1\DR1\Partition1
01:48:55.0704 2036  \Device\Harddisk1\DR1\Partition1 - ok
01:48:55.0704 2036  ============================================================
01:48:55.0704 2036  Scan finished
01:48:55.0704 2036  ============================================================
01:48:55.0704 3204  Detected object count: 0
01:48:55.0704 3204  Actual detected object count: 0
01:49:33.0696 2520  Deinitialize success
 

 

 

***************************************************************************

***************************************************************************

AdwCleaner:

***************************************************************************

***************************************************************************

 

# AdwCleaner v2.303 - Logfile created 06/19/2013 at 01:50:38

# Updated 08/06/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Alex - FALCON
# Boot Mode : Normal
# Running from : C:\Users\Alex\Desktop\AdwCleaner.exe
# Option [Delete]
 
 
***** [Services] *****
 
 
***** [Files / Folders] *****
 
 
***** [Registry] *****
 
 
***** [Internet Browsers] *****
 
-\\ Internet Explorer v10.0.9200.16611
 
[OK] Registry is clean.
 
-\\ Google Chrome v27.0.1453.110
 
File : C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
[OK] File is clean.
 
File : C:\Users\Jen\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
[OK] File is clean.
 
*************************
 
AdwCleaner[R3].txt - [884 octets] - [19/06/2013 01:50:13]
AdwCleaner[S4].txt - [816 octets] - [19/06/2013 01:50:38]
 
########## EOF - C:\AdwCleaner[S4].txt - [875 octets] ##########
 

 

 

 

***************************************************************************

***************************************************************************

ESET:

***************************************************************************

***************************************************************************

 

C:\$RECYCLE.BIN\S-1-5-21-2667523343-4225843394-2941948835-1000\$RKA8AS7.zip a variant of Win32/Bundled.Toolbar.Ask.C application deleted - quarantined

 

 

 

 

Thanks for your help boopme, you guys are amazing.  Unfortunately, the problem remains.


Edited by BronzeKnee, 19 June 2013 - 09:30 AM.


#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,538 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:09 PM

Posted 19 June 2013 - 08:04 PM

Ok, sorry for the delay.
Uninstall these they are outdated and exploitable.
HiJackThis (Version: 1.0.0)
Java 7 Update 10 (64-bit) (Version: 7.0.100)

Reboot
 
There was nothing in the Plugins??
 Then two things
 
See if you Reset the Hosts file and the redirects stop.
Click the FIX-IT button.
 
 
If no joy then we should get a deeper look. Please follow this Preparation Guide and post in a new topic.
Let me know if all went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 BronzeKnee

BronzeKnee
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:03:09 PM

Posted 19 June 2013 - 11:16 PM

Sadly, removing those programs and resetting the hosts file did not fix the issue.

 

As for my plugins, I tried disabling all of them and using Chrome, but the problem remained. I also didn't see anything suspicious (though I don't look at them often), but here is a screen of them. 

 

efy.png

 

 

My wife, who uses IE generally, reported clicking on something and getting bombarded with popups, so many that she was forced to reset the computer by button the case.  I assume this is related?

 

Finally, long ago I was infected with Sirefef, so maybe I never fully got rid of it? Here is the thread: http://www.bleepingcomputer.com/forums/t/478996/mse-picked-up-sirefef-does-it-mean-that-i-am-infected/#entry2925641

 

My new topic is here:  http://www.bleepingcomputer.com/forums/t/498639/follow-up-google-chrome-search-for-visiontek-redirects-me-to-euro-med-online/

 

Thanks again for all of your help.


Edited by BronzeKnee, 20 June 2013 - 11:15 AM.


#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,538 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:09 PM

Posted 20 June 2013 - 07:37 PM

We'll get it there.

Now that your log is properly posted, you should NOT make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by a Malware Removal Team member, nor should you continue to ask for help elsewhere. Doing so can result in system changes which may not show it the log you already posted. Further, any modifications you make on your own may cause confusion for the helper assisting you and could complicate the malware removal process which would extend the time it takes to clean your computer.
From this point on the Malware Removal Team should be the only members that you take advice from, until they have verified your log as clean.
Please be patient. It may take a while to get a response because the Malware Removal Team members are very busy working logs posted before yours. They are volunteers who will help you out as soon as possible. Once you have made your post and are waiting, please DO NOT make another reply until it has been responded to by a member of the Malware Removal Team. Generally the staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response there will be 1 reply. A team member, looking for a new log to work may assume another MRL Team member is already assisting you and not open the thread to respond.
The current wait time is 1 - 3 days and ALL logs are answered.
If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.
To avoid confusion, I am closing this topic.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users