Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Google Redirect virus


  • Please log in to reply
14 replies to this topic

#1 Marc Leclerc

Marc Leclerc

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:05:22 AM

Posted 09 July 2013 - 08:14 PM

My computer appears to be infected with the google redirect virus.  Any help?



BC AdBot (Login to Remove)

 


#2 Marc Leclerc

Marc Leclerc
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:05:22 AM

Posted 09 July 2013 - 08:20 PM

By the way I am running Norton 360 premier and I have also tried malwarebytes and crudcleaner to no avail.  I notice that if I can successfully link to search results (with no redirect) if I open the link in a new window. 



#3 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,058 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:22 AM

Posted 09 July 2013 - 09:29 PM

Hi Marc , let's do this next and see how it is after.

What browser do you use normally?


Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results.



Please download AdwCleaner by Xplode onto your desktop.
Close all open programs and internet browsers.
Double click on adwcleaner.exe to run the tool.
Click on Delete.
Confirm each time with Ok.
You will be prompted to restart your computer. A text file will open after the restart.
Please post the contents of that logfile with your next reply.
You can find the logfile at C:\AdwCleaner[S1].txt as well.



Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#4 Marc Leclerc

Marc Leclerc
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:05:22 AM

Posted 09 July 2013 - 09:50 PM

I use Internet Explorer.



#5 Marc Leclerc

Marc Leclerc
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:05:22 AM

Posted 09 July 2013 - 09:56 PM

While I was awaiting response I have actually done all of the things this moderator suggested (it looked like the user was having a similar problem):

 

http://www.bleepingcomputer.com/forums/t/500463/search-engine-re-directs-constant-pop-ups/

 

Do you want me to post this information or would you prefer I start from scratch and follow your directions above? 

 

Thanks!



#6 Marc Leclerc

Marc Leclerc
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:05:22 AM

Posted 09 July 2013 - 10:25 PM

Anyway per your instructions:

 

MiniToolBox by Farbar  Version: 16-06-2013
Ran by Marc (administrator) on 09-07-2013 at 22:23:14
Running from "C:\Users\Marc\Downloads"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

 

========================= IP Configuration: ================================

Broadcom 4313 802.11b/g/n = Wireless Network Connection (Connected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)

# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled

popd
# End of IPv4 configuration

 

Windows IP Configuration

   Host Name . . . . . . . . . . . . : Marc-HP
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : Belkin

Wireless LAN adapter Wireless Network Connection 2:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
   Physical Address. . . . . . . . . : AC-81-12-47-48-78
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

   Connection-specific DNS Suffix  . : Belkin
   Description . . . . . . . . . . . : Broadcom 4313 802.11b/g/n
   Physical Address. . . . . . . . . : AC-81-12-47-48-78
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::456b:ab5:61eb:9bb5%12(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.2.7(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Tuesday, July 09, 2013 9:17:42 PM
   Lease Expires . . . . . . . . . . : Saturday, August 16, 2149 4:51:34 AM
   Default Gateway . . . . . . . . . : 192.168.2.1
   DHCP Server . . . . . . . . . . . : 192.168.2.1
   DHCPv6 IAID . . . . . . . . . . . : 330072338
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-E2-B7-DE-98-4B-E1-B1-A2-A7
   DNS Servers . . . . . . . . . . . : 192.168.2.1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Local Area Connection* 9:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:5cf2:8c02:2067:375:3f57:fdf8(Preferred)
   Link-local IPv6 Address . . . . . : fe80::2067:375:3f57:fdf8%18(Preferred)
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.Belkin:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : Belkin
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  UnKnown
Address:  192.168.2.1

Name:    google.com
Addresses:  2607:f8b0:4007:801::1007
   74.125.239.0
   74.125.239.1
   74.125.239.2
   74.125.239.3
   74.125.239.4
   74.125.239.5
   74.125.239.6
   74.125.239.7
   74.125.239.8
   74.125.239.9
   74.125.239.14

Pinging google.com [74.125.239.0] with 32 bytes of data:
Reply from 74.125.239.0: bytes=32 time=62ms TTL=52
Reply from 74.125.239.0: bytes=32 time=64ms TTL=52

Ping statistics for 74.125.239.0:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 62ms, Maximum = 64ms, Average = 63ms
Server:  UnKnown
Address:  192.168.2.1

Name:    yahoo.com
Addresses:  98.139.183.24
   206.190.36.45
   98.138.253.109

Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=66ms TTL=52
Reply from 98.139.183.24: bytes=32 time=86ms TTL=52

Ping statistics for 98.139.183.24:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 66ms, Maximum = 86ms, Average = 76ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 15...ac 81 12 47 48 78 ......Microsoft Virtual WiFi Miniport Adapter
 12...ac 81 12 47 48 78 ......Broadcom 4313 802.11b/g/n
  1...........................Software Loopback Interface 1
 18...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.2.1      192.168.2.7     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.2.0    255.255.255.0         On-link       192.168.2.7    281
      192.168.2.7  255.255.255.255         On-link       192.168.2.7    281
    192.168.2.255  255.255.255.255         On-link       192.168.2.7    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link       192.168.2.7    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link       192.168.2.7    281
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 18     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 18     58 2001::/32                On-link
 18    306 2001:0:5cf2:8c02:2067:375:3f57:fdf8/128
                                    On-link
 12    281 fe80::/64                On-link
 18    306 fe80::/64                On-link
 18    306 fe80::2067:375:3f57:fdf8/128
                                    On-link
 12    281 fe80::456b:ab5:61eb:9bb5/128
                                    On-link
  1    306 ff00::/8                 On-link
 18    306 ff00::/8                 On-link
 12    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [94208] (Apple Computer, Inc.)
Catalog5 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (07/09/2013 08:44:46 PM) (Source: Windows Search Service) (User: )
Description: The index cannot be initialized.

Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/09/2013 08:44:46 PM) (Source: Windows Search Service) (User: )
Description: The application cannot be initialized.

Context: Windows Application

Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/09/2013 08:44:46 PM) (Source: Windows Search Service) (User: )
Description: The gatherer object cannot be initialized.

Context: Windows Application, SystemIndex Catalog

Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/09/2013 08:44:46 PM) (Source: Windows Search Service) (User: )
Description: The plug-in in <Search.TripoliIndexer> cannot be initialized.

Context: Windows Application, SystemIndex Catalog

Details:
 Element not found.  (HRESULT : 0x80070490) (0x80070490)

Error: (07/09/2013 08:44:34 PM) (Source: Windows Search Service) (User: )
Description: The plug-in in <Search.JetPropStore> cannot be initialized.

Context: Windows Application, SystemIndex Catalog

Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/09/2013 08:44:34 PM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service cannot load the property store information.

Context: Windows Application, SystemIndex Catalog

Details:
 The content index database is corrupt.  (HRESULT : 0xc0041800) (0xc0041800)

Error: (07/09/2013 08:44:34 PM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service is being stopped because there is a problem with the indexer: The catalog is corrupt.

Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/09/2013 08:44:34 PM) (Source: Windows Search Service) (User: )
Description: The search service has detected corrupted data files in the index {id=4700}. The service will attempt to automatically correct this problem by rebuilding the index.

Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/09/2013 08:44:34 PM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service cannot open the Jet property store.

Details:
 0x%08x (0xc0041800 - The content index database is corrupt.  (HRESULT : 0xc0041800))

Error: (07/09/2013 08:44:34 PM) (Source: ESENT) (User: )
Description: Windows (3320) Windows: Error -1811 occurred while opening logfile C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS0194C.log.

System errors:
=============
Error: (07/09/2013 09:19:06 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (07/09/2013 08:45:55 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (07/09/2013 08:45:16 PM) (Source: Service Control Manager) (User: )
Description: The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Windows Search service, but this action failed with the following error:
%%1056

Error: (07/09/2013 08:44:46 PM) (Source: Service Control Manager) (User: )
Description: The Windows Search service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.

Error: (07/09/2013 08:44:46 PM) (Source: Service Control Manager) (User: )
Description: The Windows Search service terminated with service-specific error %%-1073473535.

Error: (07/08/2013 10:47:34 PM) (Source: DCOM) (User: )
Description: {0002DF01-0000-0000-C000-000000000046}

Error: (07/08/2013 10:10:40 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (07/08/2013 10:09:01 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 8:58:35 PM on ?7/?8/?2013 was unexpected.

Error: (07/06/2013 11:08:41 PM) (Source: DCOM) (User: )
Description: {0002DF01-0000-0000-C000-000000000046}

Error: (07/06/2013 02:09:13 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Microsoft Office Sessions:
=========================
Error: (07/09/2013 08:44:46 PM) (Source: Windows Search Service)(User: )
Description:
Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/09/2013 08:44:46 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application

Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/09/2013 08:44:46 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog

Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/09/2013 08:44:46 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog

Details:
 Element not found.  (HRESULT : 0x80070490) (0x80070490)
Search.TripoliIndexer

Error: (07/09/2013 08:44:34 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog

Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
Search.JetPropStore

Error: (07/09/2013 08:44:34 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog

Details:
 The content index database is corrupt.  (HRESULT : 0xc0041800) (0xc0041800)

Error: (07/09/2013 08:44:34 PM) (Source: Windows Search Service)(User: )
Description:
Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
The catalog is corrupt

Error: (07/09/2013 08:44:34 PM) (Source: Windows Search Service)(User: )
Description:
Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
4700

Error: (07/09/2013 08:44:34 PM) (Source: Windows Search Service)(User: )
Description:
Details:
 0x%08x (0xc0041800 - The content index database is corrupt.  (HRESULT : 0xc0041800))

Error: (07/09/2013 08:44:34 PM) (Source: ESENT)(User: )
Description: Windows3320Windows: C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS0194C.log-1811

=========================== Installed Programs ============================

Adobe AIR (Version: 2.0.2.12610)
Adobe Anchor Service CS3 (Version: 1.0)
Adobe Asset Services CS3 (Version: 3)
Adobe Bridge CS3 (Version: 2)
Adobe Bridge Start Meeting (Version: 1.0)
Adobe Camera Raw 4.0 (Version: 4.0)
Adobe CMaps (Version: 1.0)
Adobe Color - Photoshop Specific (Version: 1.0)
Adobe Color Common Settings (Version: 1.0.1)
Adobe Color EU Extra Settings (Version: 1.0)
Adobe Color JA Extra Settings (Version: 1.0)
Adobe Color NA Recommended Settings (Version: 1.0)
Adobe Default Language CS3 (Version: 1.0)
Adobe Device Central CS3 (Version: 1.0)
Adobe ExtendScript Toolkit 2 (Version: 2.0.2)
Adobe Flash Player 11 ActiveX (Version: 11.5.502.110)
Adobe Fonts All (Version: 1.0)
Adobe Help Viewer CS3 (Version: 1)
Adobe Linguistics CS3 (Version: 3.0.0)
Adobe PDF Library Files (Version: 8.0)
Adobe Photoshop CS3 (Version: 10)
Adobe Photoshop CS3 (Version: 10.0)
Adobe Reader 9.5.5 MUI (Version: 9.5.5)
Adobe Setup (Version: 1.0)
Adobe Shockwave Player 11.5 (Version: 11.5.8.612)
Adobe Stock Photos CS3 (Version: 1.5)
Adobe Type Support (Version: 1.0)
Adobe Update Manager CS3 (Version: 5.1.0)
Adobe Version Cue CS3 Client (Version: 3)
Adobe WinSoft Linguistics Plugin (Version: 1.0)
Adobe XMP Panels CS3 (Version: 1.0)
Agatha Christie - Peril at End House (Version: 2.2.0.95)
ATI Catalyst Install Manager (Version: 3.0.790.0)
Bejeweled 2 Deluxe (Version: 2.2.0.95)
Bing Bar (Version: 7.0.609.0)
Bing Rewards Client Installer (Version: 16.0.345.0)
Blackhawk Striker 2 (Version: 2.2.0.95)
Blasterball 3 (Version: 2.2.0.95)
Blio (Version: 2.0.5350)
Bounce Symphony (Version: 2.2.0.95)
Broadcom 802.11 Wireless LAN Adapter (Version: 5.60.350.6)
Build-a-lot 2 (Version: 2.2.0.95)
Cake Mania (Version: 2.2.0.95)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (Version: 2010.0909.1412.23625)
Catalyst Control Center Graphics Previews Vista (Version: 2010.0909.1412.23625)
Catalyst Control Center InstallProxy (Version: 2010.0909.1412.23625)
Catalyst Control Center Localization All (Version: 2010.0909.1412.23625)
CCC Help Chinese Standard (Version: 2010.0909.1411.23625)
CCC Help Chinese Traditional (Version: 2010.0909.1411.23625)
CCC Help Czech (Version: 2010.0909.1411.23625)
CCC Help Danish (Version: 2010.0909.1411.23625)
CCC Help Dutch (Version: 2010.0909.1411.23625)
CCC Help English (Version: 2010.0909.1411.23625)
CCC Help Finnish (Version: 2010.0909.1411.23625)
CCC Help French (Version: 2010.0909.1411.23625)
CCC Help German (Version: 2010.0909.1411.23625)
CCC Help Greek (Version: 2010.0909.1411.23625)
CCC Help Hungarian (Version: 2010.0909.1411.23625)
CCC Help Italian (Version: 2010.0909.1411.23625)
CCC Help Japanese (Version: 2010.0909.1411.23625)
CCC Help Korean (Version: 2010.0909.1411.23625)
CCC Help Norwegian (Version: 2010.0909.1411.23625)
CCC Help Polish (Version: 2010.0909.1411.23625)
CCC Help Portuguese (Version: 2010.0909.1411.23625)
CCC Help Russian (Version: 2010.0909.1411.23625)
CCC Help Spanish (Version: 2010.0909.1411.23625)
CCC Help Swedish (Version: 2010.0909.1411.23625)
CCC Help Thai (Version: 2010.0909.1411.23625)
CCC Help Turkish (Version: 2010.0909.1411.23625)
ccc-core-static (Version: 2010.0909.1412.23625)
ccc-utility64 (Version: 2010.0909.1412.23625)
CCleaner (Version: 4.03)
Chuzzle Deluxe (Version: 2.2.0.95)
Contents (Version: 1.6.0.294)
Core FTP LE (x64)
Corel PaintShop Photo Pro X3 (Version: 1.00.0000)
Corel PaintShop Photo Pro X3 (Version: 1.6.1.252)
Corel VideoStudio Pro X3 (Version: 1.6.0.294)
Coupon Printer for Windows (Version: 5.0.0.0)
CyberLink DVD Suite (Version: 7.0.3320)
D3DX10 (Version: 15.4.2368.0902)
DeviceIO (Version: 1.6.0.294)
Diner Dash 2 Restaurant Rescue (Version: 2.2.0.95)
Dora's World Adventure (Version: 2.2.0.95)
Dropbox (Version: 2.0.22)
DVD Menu Pack for HP MediaSmart Video (Version: 4.2.4412)
Energy Star Digital Logo (Version: 1.0.1)
Escape Rosecliff Island (Version: 2.2.0.95)
ESU for Microsoft Windows 7 (Version: 1.0.0)
Farm Frenzy (Version: 2.2.0.95)
FATE (Version: 2.2.0.95)
Fences Pro (Version: 1.0.1.312)
Fences Pro (Version: 1.0.1.312.19219)
FileZilla Client 3.6.0.2 (Version: 3.6.0.2)
Final Drive Nitro (Version: 2.2.0.95)
Heroes of Hellas 2 - Olympia (Version: 2.2.0.95)
Hewlett-Packard ACLM.NET v1.2.1.1 (Version: 1.00.0000)
HP 3D DriveGuard (Version: 4.0.10.1)
HP Auto (Version: 1.0.12494.3472)
HP Client Services (Version: 1.0.12656.3472)
HP CloudDrive
HP Customer Experience Enhancements (Version: 6.0.1.7)
HP Documentation (Version: 1.1.3.1)
HP DVB-T TV Tuner 8.0.64.43 (Version: 8.0.64.43)
HP Game Console
HP Games (Version: 1.0.1.5)
HP MediaSmart DVD (Version: 4.2.4521)
HP MediaSmart Movies and TV (Version: 1.0.1.2)
HP MediaSmart Music (Version: 4.2.4604)
HP MediaSmart Photo (Version: 4.2.4513)
HP MediaSmart SmartMenu (Version: 3.1.2.2)
HP MediaSmart Video (Version: 4.2.4522)
HP MediaSmart Webcam (Version: 4.2.3303)
HP MediaSmart/TouchSmart Netflix (Version: 1.0.4.0)
HP MovieStore (Version: 1.0.023)
HP MovieStore (Version: 2.0.2)
HP Photo Creations (Version: 1.0.0.4042)
HP Photosmart Plus B210 series Basic Device Software (Version: 22.50.231.0)
HP Photosmart Plus B210 series Help (Version: 140.0.54.54)
HP Photosmart Plus B210 series Product Improvement Study (Version: 22.50.231.0)
HP Power Manager (Version: 1.2.3)
HP Quick Launch (Version: 2.4.4)
HP Setup (Version: 8.4.4400.3525)
HP Setup Manager (Version: 1.0.12844.3519)
HP SimplePass Identity Protection (Version: 5.20.205)
HP Software Framework (Version: 4.1.8.1)
HP Support Assistant (Version: 7.0.39.15)
HP Update (Version: 5.002.006.003)
HP Wireless Assistant (Version: 4.0.10.0)
Hulu Desktop (Version: 0.9.13)
ICA (Version: 1.6.0.294)
ICA (Version: 1.6.1.252)
IDT Audio (Version: 1.0.6292.0)
Intel® Management Engine Components (Version: 6.0.0.1179)
Intel® Rapid Storage Technology (Version: 9.6.2.1001)
Intel® Turbo Boost Technology Driver (Version: 01.00.01.1002)
IPM_PSP_Pro (Version: 1.00.0000)
IPM_VS_Pro (Version: 13.0)
ISCOM (Version: 1.6.0.294)
ISCOM (Version: 1.6.1.252)
Java 7 Update 25 (Version: 7.0.250)
Java Auto Updater (Version: 2.1.9.5)
Java™ 6 Update 21 (64-bit) (Version: 6.0.210)
Jewel Quest Solitaire 2 (Version: 2.2.0.95)
Junk Mail filter update (Version: 15.4.3502.0922)
LabelPrint (Version: 2.5.3220)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Default Manager (Version: 2.2.114.0)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office Starter 2010 - English (Version: 14.0.4763.1000)
Microsoft Silverlight (Version: 5.1.20125.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0)
Movie Theme Pack for HP MediaSmart Video (Version: 4.2.4412)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Mystery P.I. - The London Caper (Version: 2.2.0.95)
Norton 360 Premier Edition (Version: 20.4.0.40)
Norton Online Backup (Version: 2.1.17869)
PDF Settings (Version: 1.0)
Penguins! (Version: 2.2.0.95)
PhotoNow! (Version: 1.1.7717)
PictureMover (Version: 3.5.0.33)
Plants vs. Zombies (Version: 2.2.0.95)
PlayReady PC Runtime x86 (Version: 1.3.0)
Poker Superstars III (Version: 2.2.0.95)
Polar Bowler (Version: 2.2.0.95)
Polar Golfer (Version: 2.2.0.95)
Power2Go (Version: 6.1.4419)
PowerDirector (Version: 8.0.3320)
PSPPContent (Version: 1.00.0000)
PSPPRO_DCRAW (Version: 13.0.0)
PureHD (Version: 1.6.0.294)
PX Profile Update (Version: 1.00.1.)
Realtek Ethernet Controller Driver For Windows 7 (Version: 7.23.623.2010)
Realtek USB 2.0 Card Reader (Version: 6.1.7600.30111)
Recovery Manager (Version: 5.5.3223)
RoxioNow Player (Version: 1.9.5.101)
Setup (Version: 1.6.0.294)
Setup (Version: 1.6.1.252)
Share (Version: 1.6.0.294)
Share64 (Version: 1.6.0.294)
Synaptics Pointing Device Driver (Version: 15.1.6.64)
Times Reader (Version: 2.055)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Validity Sensors DDK (Version: 4.1.139.0)
VIO (Version: 1.6.0.294)
Virtual Families (Version: 2.2.0.95)
Virtual Villagers 4 - The Tree of Life (Version: 2.2.0.95)
VSClassic (Version: 1.6.0.294)
VSPro (Version: 1.6.0.294)
Wheel of Fortune 2 (Version: 2.2.0.95)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Media Encoder 9 Series
Windows Media Encoder 9 Series (Version: 9.00.2980)
Zuma Deluxe (Version: 2.2.0.95)

========================= Memory info: ===================================

Percentage of memory in use: 29%
Total physical RAM: 7989.86 MB
Available physical RAM: 5668.26 MB
Total Pagefile: 15977.9 MB
Available Pagefile: 13322.61 MB
Total Virtual: 4095.88 MB
Available Virtual: 3973.97 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:565.59 GB) (Free:451.47 GB) NTFS
2 Drive d: (RECOVERY) (Fixed) (Total:30.29 GB) (Free:4.45 GB) NTFS
4 Drive f: (HP_TOOLS) (Fixed) (Total:0.1 GB) (Free:0.08 GB) FAT32

========================= Users: ========================================

User accounts for \\MARC-HP

Administrator            Guest                    Marc                    

**** End of log ****



#7 Marc Leclerc

Marc Leclerc
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:05:22 AM

Posted 09 July 2013 - 10:28 PM

22:26:05.0090 5620 TDSS rootkit removing tool 2.8.18.0 Jun 10 2013 21:44:19
22:26:05.0604 5620 ============================================================
22:26:05.0604 5620 Current date / time: 2013/07/09 22:26:05.0604
22:26:05.0604 5620 SystemInfo:
22:26:05.0604 5620
22:26:05.0604 5620 OS Version: 6.1.7601 ServicePack: 1.0
22:26:05.0604 5620 Product type: Workstation
22:26:05.0604 5620 ComputerName: MARC-HP
22:26:05.0604 5620 UserName: Marc
22:26:05.0604 5620 Windows directory: C:\Windows
22:26:05.0604 5620 System windows directory: C:\Windows
22:26:05.0604 5620 Running under WOW64
22:26:05.0604 5620 Processor architecture: Intel x64
22:26:05.0604 5620 Number of processors: 4
22:26:05.0604 5620 Page size: 0x1000
22:26:05.0604 5620 Boot type: Normal boot
22:26:05.0604 5620 ============================================================
22:26:06.0026 5620 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:26:06.0041 5620 ============================================================
22:26:06.0041 5620 \Device\Harddisk0\DR0:
22:26:06.0041 5620 MBR partitions:
22:26:06.0041 5620 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
22:26:06.0041 5620 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x46B2D000
22:26:06.0041 5620 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x46B91000, BlocksNum 0x3C93000
22:26:06.0041 5620 \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x4A824000, BlocksNum 0x33AB0
22:26:06.0041 5620 ============================================================
22:26:06.0088 5620 C: <-> \Device\Harddisk0\DR0\Partition2
22:26:06.0150 5620 D: <-> \Device\Harddisk0\DR0\Partition3
22:26:06.0150 5620 F: <-> \Device\Harddisk0\DR0\Partition4
22:26:06.0150 5620 ============================================================
22:26:06.0150 5620 Initialize success
22:26:06.0150 5620 ============================================================
22:26:07.0664 5116 ============================================================
22:26:07.0664 5116 Scan started
22:26:07.0664 5116 Mode: Manual;
22:26:07.0664 5116 ============================================================
22:26:08.0132 5116 ================ Scan system memory ========================
22:26:08.0132 5116 System memory - ok
22:26:08.0147 5116 ================ Scan services =============================
22:26:08.0366 5116 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
22:26:08.0366 5116 1394ohci - ok
22:26:08.0412 5116 [ 5AA055FE5AE506E19E9A8F537756EE10 ] Accelerometer C:\Windows\system32\DRIVERS\Accelerometer.sys
22:26:08.0412 5116 Accelerometer - ok
22:26:08.0459 5116 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
22:26:08.0459 5116 ACPI - ok
22:26:08.0506 5116 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
22:26:08.0506 5116 AcpiPmi - ok
22:26:08.0553 5116 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
22:26:08.0553 5116 adp94xx - ok
22:26:08.0584 5116 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
22:26:08.0584 5116 adpahci - ok
22:26:08.0615 5116 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
22:26:08.0631 5116 adpu320 - ok
22:26:08.0662 5116 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
22:26:08.0662 5116 AeLookupSvc - ok
22:26:08.0740 5116 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Program Files\IDT\WDM\AESTSr64.exe
22:26:08.0740 5116 AESTFilters - ok
22:26:08.0818 5116 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
22:26:08.0818 5116 AFD - ok
22:26:08.0865 5116 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
22:26:08.0865 5116 agp440 - ok
22:26:08.0927 5116 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
22:26:08.0927 5116 ALG - ok
22:26:08.0974 5116 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
22:26:08.0974 5116 aliide - ok
22:26:09.0021 5116 [ 48619A29F9C9C3CFEB66718DD03D8057 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
22:26:09.0021 5116 AMD External Events Utility - ok
22:26:09.0068 5116 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
22:26:09.0068 5116 amdide - ok
22:26:09.0114 5116 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
22:26:09.0114 5116 AmdK8 - ok
22:26:09.0395 5116 [ 06BF0785DE714637EBA9BB1084B28626 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
22:26:09.0567 5116 amdkmdag - ok
22:26:09.0614 5116 [ 2DEC3274589FF6889AB05ADCEEB0F642 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
22:26:09.0614 5116 amdkmdap - ok
22:26:09.0645 5116 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
22:26:09.0645 5116 AmdPPM - ok
22:26:09.0692 5116 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
22:26:09.0692 5116 amdsata - ok
22:26:09.0738 5116 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
22:26:09.0738 5116 amdsbs - ok
22:26:09.0770 5116 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
22:26:09.0770 5116 amdxata - ok
22:26:09.0816 5116 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
22:26:09.0816 5116 AppID - ok
22:26:09.0832 5116 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
22:26:09.0832 5116 AppIDSvc - ok
22:26:09.0879 5116 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\Windows\System32\appinfo.dll
22:26:09.0879 5116 Appinfo - ok
22:26:09.0941 5116 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
22:26:09.0941 5116 arc - ok
22:26:09.0988 5116 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
22:26:09.0988 5116 arcsas - ok
22:26:10.0019 5116 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
22:26:10.0019 5116 AsyncMac - ok
22:26:10.0066 5116 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
22:26:10.0066 5116 atapi - ok
22:26:10.0128 5116 [ 2D648572BA9A610952FCAFBA1E119C2D ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
22:26:10.0144 5116 AtiHdmiService - ok
22:26:10.0222 5116 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:26:10.0222 5116 AudioEndpointBuilder - ok
22:26:10.0238 5116 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
22:26:10.0238 5116 AudioSrv - ok
22:26:10.0316 5116 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
22:26:10.0316 5116 AxInstSV - ok
22:26:10.0362 5116 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
22:26:10.0362 5116 b06bdrv - ok
22:26:10.0409 5116 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
22:26:10.0409 5116 b57nd60a - ok
22:26:10.0518 5116 [ 825F81A6F7DD073509DB101F0BA6DC59 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
22:26:10.0534 5116 BBSvc - ok
22:26:10.0628 5116 [ 810BE94A9E42309B3F74217AC28BC6AC ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
22:26:10.0690 5116 BCM43XX - ok
22:26:10.0721 5116 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
22:26:10.0721 5116 BDESVC - ok
22:26:10.0752 5116 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
22:26:10.0752 5116 Beep - ok
22:26:10.0815 5116 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
22:26:10.0830 5116 BFE - ok
22:26:11.0064 5116 [ 6E10DB69DB1AA96207F4B14B18FF12F8 ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.1.2\Definitions\BASHDefs\20130702.001\BHDrvx64.sys
22:26:11.0080 5116 BHDrvx64 - ok
22:26:11.0127 5116 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
22:26:11.0127 5116 BITS - ok
22:26:11.0174 5116 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
22:26:11.0174 5116 blbdrive - ok
22:26:11.0220 5116 [ 73686FE0B2E0469F89FD2075BE724704 ] Bonjour Service C:\Program Files (x86)\Bonjour\mDNSResponder.exe
22:26:11.0220 5116 Bonjour Service - ok
22:26:11.0252 5116 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
22:26:11.0267 5116 bowser - ok
22:26:11.0314 5116 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
22:26:11.0314 5116 BrFiltLo - ok
22:26:11.0345 5116 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
22:26:11.0345 5116 BrFiltUp - ok
22:26:11.0392 5116 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
22:26:11.0392 5116 Browser - ok
22:26:11.0439 5116 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
22:26:11.0439 5116 Brserid - ok
22:26:11.0454 5116 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
22:26:11.0454 5116 BrSerWdm - ok
22:26:11.0486 5116 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
22:26:11.0486 5116 BrUsbMdm - ok
22:26:11.0517 5116 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
22:26:11.0517 5116 BrUsbSer - ok
22:26:11.0532 5116 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
22:26:11.0532 5116 BTHMODEM - ok
22:26:11.0798 5116 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
22:26:11.0798 5116 bthserv - ok
22:26:11.0891 5116 [ 56685951208AC81CF923B9B08BEDF3B7 ] ccSet_N360 C:\Windows\system32\drivers\N360x64\1404000.028\ccSetx64.sys
22:26:11.0891 5116 ccSet_N360 - ok
22:26:11.0938 5116 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
22:26:11.0954 5116 cdfs - ok
22:26:12.0000 5116 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
22:26:12.0000 5116 cdrom - ok
22:26:12.0047 5116 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
22:26:12.0047 5116 CertPropSvc - ok
22:26:12.0094 5116 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
22:26:12.0094 5116 circlass - ok
22:26:12.0141 5116 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
22:26:12.0156 5116 CLFS - ok
22:26:12.0266 5116 [ DEDE5EC7DC09D840D5D74E06FF4DE127 ] CLKMSVC10_C6F09094 C:\Program Files (x86)\Hewlett-Packard\Media\DVD\Kernel\HDDVD\NavFilter\kmsvc.exe
22:26:12.0266 5116 CLKMSVC10_C6F09094 - ok
22:26:12.0406 5116 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:26:12.0406 5116 clr_optimization_v2.0.50727_32 - ok
22:26:12.0515 5116 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:26:12.0531 5116 clr_optimization_v2.0.50727_64 - ok
22:26:12.0749 5116 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:26:12.0749 5116 clr_optimization_v4.0.30319_32 - ok
22:26:12.0827 5116 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:26:12.0827 5116 clr_optimization_v4.0.30319_64 - ok
22:26:12.0874 5116 [ D68D9F4D53010B7E84D4E80A2E485554 ] clwvd C:\Windows\system32\DRIVERS\clwvd.sys
22:26:12.0874 5116 clwvd - ok
22:26:12.0936 5116 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
22:26:12.0936 5116 CmBatt - ok
22:26:12.0968 5116 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
22:26:12.0968 5116 cmdide - ok
22:26:13.0014 5116 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
22:26:13.0030 5116 CNG - ok
22:26:13.0108 5116 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
22:26:13.0108 5116 Compbatt - ok
22:26:13.0155 5116 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
22:26:13.0155 5116 CompositeBus - ok
22:26:13.0170 5116 COMSysApp - ok
22:26:13.0202 5116 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
22:26:13.0202 5116 crcdisk - ok
22:26:13.0248 5116 [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc C:\Windows\system32\cryptsvc.dll
22:26:13.0248 5116 CryptSvc - ok
22:26:13.0389 5116 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
22:26:13.0404 5116 cvhsvc - ok
22:26:13.0451 5116 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
22:26:13.0467 5116 DcomLaunch - ok
22:26:13.0498 5116 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
22:26:13.0498 5116 defragsvc - ok
22:26:13.0545 5116 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
22:26:13.0545 5116 DfsC - ok
22:26:13.0607 5116 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
22:26:13.0607 5116 Dhcp - ok
22:26:13.0638 5116 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
22:26:13.0638 5116 discache - ok
22:26:13.0670 5116 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
22:26:13.0670 5116 Disk - ok
22:26:13.0716 5116 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
22:26:13.0716 5116 Dnscache - ok
22:26:13.0794 5116 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
22:26:13.0794 5116 dot3svc - ok
22:26:13.0888 5116 [ EAC9D9868D37C8785D12475A9BB65A11 ] DpHost C:\Program Files\DigitalPersona\Bin\DpHostW.exe
22:26:13.0888 5116 DpHost - ok
22:26:13.0935 5116 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
22:26:13.0935 5116 DPS - ok
22:26:13.0966 5116 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
22:26:13.0966 5116 drmkaud - ok
22:26:14.0013 5116 [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
22:26:14.0028 5116 DXGKrnl - ok
22:26:14.0060 5116 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
22:26:14.0060 5116 EapHost - ok
22:26:14.0138 5116 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
22:26:14.0200 5116 ebdrv - ok
22:26:14.0278 5116 [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
22:26:14.0294 5116 eeCtrl - ok
22:26:14.0325 5116 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
22:26:14.0325 5116 EFS - ok
22:26:14.0387 5116 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
22:26:14.0403 5116 ehRecvr - ok
22:26:14.0450 5116 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
22:26:14.0450 5116 ehSched - ok
22:26:14.0496 5116 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
22:26:14.0496 5116 elxstor - ok
22:26:14.0543 5116 [ C5BCCB378D0A896304A3E71BE7215983 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
22:26:14.0559 5116 EraserUtilRebootDrv - ok
22:26:14.0574 5116 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
22:26:14.0574 5116 ErrDev - ok
22:26:14.0621 5116 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
22:26:14.0637 5116 EventSystem - ok
22:26:14.0684 5116 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
22:26:14.0684 5116 exfat - ok
22:26:14.0730 5116 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
22:26:14.0730 5116 fastfat - ok
22:26:14.0793 5116 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
22:26:14.0793 5116 Fax - ok
22:26:14.0840 5116 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
22:26:14.0840 5116 fdc - ok
22:26:14.0871 5116 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
22:26:14.0871 5116 fdPHost - ok
22:26:14.0886 5116 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
22:26:14.0886 5116 FDResPub - ok
22:26:14.0918 5116 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
22:26:14.0918 5116 FileInfo - ok
22:26:14.0918 5116 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
22:26:14.0918 5116 Filetrace - ok
22:26:15.0011 5116 [ 227846995AFEEFA70D328BF5334A86A5 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
22:26:15.0027 5116 FLEXnet Licensing Service - ok
22:26:15.0058 5116 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
22:26:15.0058 5116 flpydisk - ok
22:26:15.0089 5116 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
22:26:15.0089 5116 FltMgr - ok
22:26:15.0152 5116 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
22:26:15.0167 5116 FontCache - ok
22:26:15.0230 5116 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:26:15.0230 5116 FontCache3.0.0.0 - ok
22:26:15.0245 5116 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
22:26:15.0261 5116 FsDepends - ok
22:26:15.0308 5116 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
22:26:15.0308 5116 Fs_Rec - ok
22:26:15.0354 5116 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
22:26:15.0354 5116 fvevol - ok
22:26:15.0386 5116 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
22:26:15.0386 5116 gagp30kx - ok
22:26:15.0432 5116 [ D154305DE6090E6E84E525F84BB08A06 ] GameConsoleService C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
22:26:15.0432 5116 GameConsoleService - ok
22:26:15.0495 5116 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
22:26:15.0495 5116 gpsvc - ok
22:26:15.0526 5116 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
22:26:15.0526 5116 hcw85cir - ok
22:26:15.0588 5116 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
22:26:15.0588 5116 HdAudAddService - ok
22:26:15.0620 5116 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
22:26:15.0620 5116 HDAudBus - ok
22:26:15.0698 5116 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
22:26:15.0698 5116 HECIx64 - ok
22:26:15.0729 5116 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
22:26:15.0729 5116 HidBatt - ok
22:26:15.0760 5116 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
22:26:15.0760 5116 HidBth - ok
22:26:15.0791 5116 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
22:26:15.0807 5116 HidIr - ok
22:26:15.0822 5116 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
22:26:15.0838 5116 hidserv - ok
22:26:15.0885 5116 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
22:26:15.0885 5116 HidUsb - ok
22:26:15.0932 5116 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
22:26:15.0932 5116 hkmsvc - ok
22:26:15.0978 5116 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
22:26:15.0978 5116 HomeGroupListener - ok
22:26:16.0025 5116 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
22:26:16.0025 5116 HomeGroupProvider - ok
22:26:16.0134 5116 [ BB1FC298BE53AAB1E110F6E786BD8AC5 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
22:26:16.0150 5116 HP Support Assistant Service - ok
22:26:16.0197 5116 [ C930128C8F8FF03D8F8C42B570920D56 ] HP Wireless Assistant Service C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
22:26:16.0197 5116 HP Wireless Assistant Service - ok
22:26:16.0228 5116 [ 3DC11A802353401332D49C3CBFBBE5FC ] HPClientSvc C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
22:26:16.0228 5116 HPClientSvc - ok
22:26:16.0259 5116 [ 0AC88FBE4BF315F5F8FD862426C11540 ] hpdskflt C:\Windows\system32\DRIVERS\hpdskflt.sys
22:26:16.0259 5116 hpdskflt - ok
22:26:16.0353 5116 [ 9B7EDD3FE7C211C36E921D34D18A3A0A ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
22:26:16.0353 5116 hpqwmiex - ok
22:26:16.0431 5116 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
22:26:16.0431 5116 HpSAMD - ok
22:26:16.0493 5116 [ 778CE2C015DEC896C5C9323342BD71D4 ] hpsrv C:\Windows\system32\Hpservice.exe
22:26:16.0493 5116 hpsrv - ok
22:26:16.0602 5116 [ 171000873EB522E5EA3DD4C4E0B689B2 ] HPWMISVC C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
22:26:16.0602 5116 HPWMISVC - ok
22:26:16.0665 5116 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
22:26:16.0680 5116 HTTP - ok
22:26:16.0727 5116 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
22:26:16.0727 5116 hwpolicy - ok
22:26:16.0774 5116 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
22:26:16.0774 5116 i8042prt - ok
22:26:16.0805 5116 [ 1384872112E8E7FD5786ECEB8BDDF4C9 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
22:26:16.0805 5116 iaStor - ok
22:26:16.0836 5116 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
22:26:16.0852 5116 iaStorV - ok
22:26:16.0914 5116 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:26:16.0930 5116 idsvc - ok
22:26:17.0055 5116 [ A48928D4CCA6F8B731989DB08CF2C0AB ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.1.2\Definitions\IPSDefs\20130709.001\IDSvia64.sys
22:26:17.0055 5116 IDSVia64 - ok
22:26:17.0304 5116 [ 1BE8D9CA4F2363B8E8015621878E0043 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
22:26:17.0492 5116 igfx - ok
22:26:17.0538 5116 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
22:26:17.0538 5116 iirsp - ok
22:26:17.0601 5116 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
22:26:17.0601 5116 IKEEXT - ok
22:26:17.0679 5116 [ 36FDF367A1DABFF903E2214023D71368 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
22:26:17.0679 5116 Impcd - ok
22:26:17.0726 5116 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
22:26:17.0726 5116 intelide - ok
22:26:17.0975 5116 [ 1BE8D9CA4F2363B8E8015621878E0043 ] intelkmd C:\Windows\system32\DRIVERS\igdpmd64.sys
22:26:18.0178 5116 intelkmd - ok
22:26:18.0209 5116 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
22:26:18.0209 5116 intelppm - ok
22:26:18.0256 5116 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
22:26:18.0272 5116 IPBusEnum - ok
22:26:18.0287 5116 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:26:18.0303 5116 IpFilterDriver - ok
22:26:18.0350 5116 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
22:26:18.0350 5116 iphlpsvc - ok
22:26:18.0381 5116 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
22:26:18.0381 5116 IPMIDRV - ok
22:26:18.0428 5116 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
22:26:18.0443 5116 IPNAT - ok
22:26:18.0459 5116 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
22:26:18.0474 5116 IRENUM - ok
22:26:18.0490 5116 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
22:26:18.0490 5116 isapnp - ok
22:26:18.0537 5116 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
22:26:18.0537 5116 iScsiPrt - ok
22:26:18.0568 5116 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
22:26:18.0568 5116 kbdclass - ok
22:26:18.0599 5116 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
22:26:18.0599 5116 kbdhid - ok
22:26:18.0646 5116 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
22:26:18.0646 5116 KeyIso - ok
22:26:18.0693 5116 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
22:26:18.0693 5116 KSecDD - ok
22:26:18.0724 5116 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
22:26:18.0740 5116 KSecPkg - ok
22:26:18.0771 5116 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
22:26:18.0771 5116 ksthunk - ok
22:26:18.0786 5116 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
22:26:18.0802 5116 KtmRm - ok
22:26:18.0864 5116 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
22:26:18.0864 5116 LanmanServer - ok
22:26:18.0896 5116 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:26:18.0896 5116 LanmanWorkstation - ok
22:26:18.0927 5116 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
22:26:18.0942 5116 lltdio - ok
22:26:18.0974 5116 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
22:26:18.0974 5116 lltdsvc - ok
22:26:18.0989 5116 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
22:26:18.0989 5116 lmhosts - ok
22:26:19.0098 5116 [ 6D515466AB8BFE61184092B635AE6EB4 ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
22:26:19.0098 5116 LMS - ok
22:26:19.0130 5116 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
22:26:19.0130 5116 LSI_FC - ok
22:26:19.0161 5116 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
22:26:19.0161 5116 LSI_SAS - ok
22:26:19.0192 5116 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
22:26:19.0192 5116 LSI_SAS2 - ok
22:26:19.0208 5116 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
22:26:19.0223 5116 LSI_SCSI - ok
22:26:19.0239 5116 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
22:26:19.0239 5116 luafv - ok
22:26:19.0270 5116 mbamswissarmy - ok
22:26:19.0301 5116 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
22:26:19.0301 5116 Mcx2Svc - ok
22:26:19.0332 5116 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
22:26:19.0332 5116 megasas - ok
22:26:19.0364 5116 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
22:26:19.0379 5116 MegaSR - ok
22:26:19.0410 5116 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
22:26:19.0410 5116 MMCSS - ok
22:26:19.0426 5116 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
22:26:19.0426 5116 Modem - ok
22:26:19.0457 5116 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
22:26:19.0457 5116 monitor - ok
22:26:19.0504 5116 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
22:26:19.0504 5116 mouclass - ok
22:26:19.0551 5116 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
22:26:19.0551 5116 mouhid - ok
22:26:19.0613 5116 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
22:26:19.0613 5116 mountmgr - ok
22:26:19.0629 5116 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
22:26:19.0644 5116 mpio - ok
22:26:19.0676 5116 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
22:26:19.0676 5116 mpsdrv - ok
22:26:19.0722 5116 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
22:26:19.0722 5116 MpsSvc - ok
22:26:19.0769 5116 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
22:26:19.0769 5116 MRxDAV - ok
22:26:19.0785 5116 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
22:26:19.0785 5116 mrxsmb - ok
22:26:19.0832 5116 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:26:19.0832 5116 mrxsmb10 - ok
22:26:19.0847 5116 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:26:19.0847 5116 mrxsmb20 - ok
22:26:19.0863 5116 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
22:26:19.0863 5116 msahci - ok
22:26:19.0894 5116 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
22:26:19.0894 5116 msdsm - ok
22:26:19.0925 5116 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
22:26:19.0925 5116 MSDTC - ok
22:26:19.0972 5116 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
22:26:19.0972 5116 Msfs - ok
22:26:19.0988 5116 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
22:26:19.0988 5116 mshidkmdf - ok
22:26:20.0019 5116 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
22:26:20.0019 5116 msisadrv - ok
22:26:20.0050 5116 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
22:26:20.0066 5116 MSiSCSI - ok
22:26:20.0066 5116 msiserver - ok
22:26:20.0112 5116 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
22:26:20.0112 5116 MSKSSRV - ok
22:26:20.0128 5116 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
22:26:20.0144 5116 MSPCLOCK - ok
22:26:20.0144 5116 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
22:26:20.0144 5116 MSPQM - ok
22:26:20.0190 5116 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
22:26:20.0190 5116 MsRPC - ok
22:26:20.0237 5116 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
22:26:20.0237 5116 mssmbios - ok
22:26:20.0253 5116 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
22:26:20.0253 5116 MSTEE - ok
22:26:20.0268 5116 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
22:26:20.0268 5116 MTConfig - ok
22:26:20.0300 5116 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
22:26:20.0300 5116 Mup - ok
22:26:20.0565 5116 [ 1BF9D6476061B31CD7FC2BF848529A56 ] N360 C:\Program Files (x86)\Norton 360 Premier Edition\Engine\20.4.0.40\ccSvcHst.exe
22:26:20.0580 5116 N360 - ok
22:26:20.0612 5116 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
22:26:20.0627 5116 napagent - ok
22:26:20.0658 5116 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
22:26:20.0674 5116 NativeWifiP - ok
22:26:20.0752 5116 [ 56540E526B46E379A476FB5BC381B290 ] NAVENG C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.1.2\Definitions\VirusDefs\20130709.002\ENG64.SYS
22:26:20.0752 5116 NAVENG - ok
22:26:20.0861 5116 [ 8A19D3991F9F14B885CDE8BC640F6B68 ] NAVEX15 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.1.2\Definitions\VirusDefs\20130709.002\EX64.SYS
22:26:20.0892 5116 NAVEX15 - ok
22:26:20.0986 5116 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
22:26:20.0986 5116 NDIS - ok
22:26:21.0033 5116 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
22:26:21.0033 5116 NdisCap - ok
22:26:21.0048 5116 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
22:26:21.0048 5116 NdisTapi - ok
22:26:21.0095 5116 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
22:26:21.0095 5116 Ndisuio - ok
22:26:21.0126 5116 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
22:26:21.0126 5116 NdisWan - ok
22:26:21.0158 5116 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
22:26:21.0173 5116 NDProxy - ok
22:26:21.0189 5116 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
22:26:21.0189 5116 NetBIOS - ok
22:26:21.0236 5116 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
22:26:21.0236 5116 NetBT - ok
22:26:21.0251 5116 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
22:26:21.0267 5116 Netlogon - ok
22:26:21.0298 5116 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
22:26:21.0298 5116 Netman - ok
22:26:21.0329 5116 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
22:26:21.0329 5116 netprofm - ok
22:26:21.0360 5116 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
22:26:21.0360 5116 NetTcpPortSharing - ok
22:26:21.0610 5116 [ 64428DFDAF6E88366CB51F45A79C5F69 ] netw5v64 C:\Windows\system32\DRIVERS\netw5v64.sys
22:26:21.0735 5116 netw5v64 - ok
22:26:21.0766 5116 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
22:26:21.0766 5116 nfrd960 - ok
22:26:21.0797 5116 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
22:26:21.0797 5116 NlaSvc - ok
22:26:21.0953 5116 [ 5839A8027D6D324A7CD494051A96628C ] NOBU C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
22:26:21.0984 5116 NOBU - ok
22:26:22.0016 5116 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
22:26:22.0016 5116 Npfs - ok
22:26:22.0031 5116 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
22:26:22.0031 5116 nsi - ok
22:26:22.0047 5116 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
22:26:22.0047 5116 nsiproxy - ok
22:26:22.0109 5116 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
22:26:22.0125 5116 Ntfs - ok
22:26:22.0156 5116 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
22:26:22.0156 5116 Null - ok
22:26:22.0187 5116 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
22:26:22.0187 5116 nvraid - ok
22:26:22.0218 5116 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
22:26:22.0218 5116 nvstor - ok
22:26:22.0265 5116 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
22:26:22.0265 5116 nv_agp - ok
22:26:22.0281 5116 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
22:26:22.0281 5116 ohci1394 - ok
22:26:22.0343 5116 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:26:22.0343 5116 ose - ok
22:26:22.0515 5116 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
22:26:22.0546 5116 osppsvc - ok
22:26:22.0577 5116 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
22:26:22.0577 5116 p2pimsvc - ok
22:26:22.0608 5116 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
22:26:22.0608 5116 p2psvc - ok
22:26:22.0624 5116 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
22:26:22.0624 5116 Parport - ok
22:26:22.0655 5116 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
22:26:22.0655 5116 partmgr - ok
22:26:22.0671 5116 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
22:26:22.0671 5116 PcaSvc - ok
22:26:22.0733 5116 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
22:26:22.0733 5116 pci - ok
22:26:22.0749 5116 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
22:26:22.0749 5116 pciide - ok
22:26:22.0796 5116 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
22:26:22.0796 5116 pcmcia - ok
22:26:22.0827 5116 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
22:26:22.0827 5116 pcw - ok
22:26:22.0858 5116 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
22:26:22.0858 5116 PEAUTH - ok
22:26:22.0952 5116 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
22:26:22.0952 5116 PerfHost - ok
22:26:23.0014 5116 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
22:26:23.0045 5116 pla - ok
22:26:23.0076 5116 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
22:26:23.0092 5116 PlugPlay - ok
22:26:23.0108 5116 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
22:26:23.0108 5116 PNRPAutoReg - ok
22:26:23.0139 5116 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
22:26:23.0139 5116 PNRPsvc - ok
22:26:23.0170 5116 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
22:26:23.0170 5116 PolicyAgent - ok
22:26:23.0201 5116 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
22:26:23.0217 5116 Power - ok
22:26:23.0248 5116 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
22:26:23.0248 5116 PptpMiniport - ok
22:26:23.0279 5116 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
22:26:23.0279 5116 Processor - ok
22:26:23.0310 5116 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
22:26:23.0310 5116 ProfSvc - ok
22:26:23.0326 5116 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
22:26:23.0326 5116 ProtectedStorage - ok
22:26:23.0373 5116 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
22:26:23.0373 5116 Psched - ok
22:26:23.0404 5116 [ F036CFB275D0C55F4E45FBBF5F98B3C8 ] PSI_SVC_2 c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
22:26:23.0420 5116 PSI_SVC_2 - ok
22:26:23.0466 5116 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
22:26:23.0498 5116 ql2300 - ok
22:26:23.0498 5116 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
22:26:23.0498 5116 ql40xx - ok
22:26:23.0529 5116 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
22:26:23.0544 5116 QWAVE - ok
22:26:23.0560 5116 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
22:26:23.0576 5116 QWAVEdrv - ok
22:26:23.0591 5116 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
22:26:23.0591 5116 RasAcd - ok
22:26:23.0622 5116 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
22:26:23.0622 5116 RasAgileVpn - ok
22:26:23.0638 5116 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
22:26:23.0638 5116 RasAuto - ok
22:26:23.0685 5116 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
22:26:23.0685 5116 Rasl2tp - ok
22:26:23.0716 5116 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
22:26:23.0716 5116 RasMan - ok
22:26:23.0763 5116 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
22:26:23.0763 5116 RasPppoe - ok
22:26:23.0778 5116 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
22:26:23.0794 5116 RasSstp - ok
22:26:23.0841 5116 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
22:26:23.0841 5116 rdbss - ok
22:26:23.0856 5116 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
22:26:23.0872 5116 rdpbus - ok
22:26:23.0919 5116 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
22:26:23.0919 5116 RDPCDD - ok
22:26:23.0934 5116 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
22:26:23.0934 5116 RDPENCDD - ok
22:26:23.0966 5116 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
22:26:23.0966 5116 RDPREFMP - ok
22:26:24.0012 5116 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
22:26:24.0012 5116 RDPWD - ok
22:26:24.0075 5116 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
22:26:24.0075 5116 rdyboost - ok
22:26:24.0137 5116 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
22:26:24.0137 5116 RemoteAccess - ok
22:26:24.0168 5116 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
22:26:24.0168 5116 RemoteRegistry - ok
22:26:24.0246 5116 [ C1568E17039B2EC2B73A4F880DDD51E5 ] RoxioNow Service C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe
22:26:24.0246 5116 RoxioNow Service - ok
22:26:24.0293 5116 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
22:26:24.0293 5116 RpcEptMapper - ok
22:26:24.0324 5116 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
22:26:24.0324 5116 RpcLocator - ok
22:26:24.0356 5116 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
22:26:24.0371 5116 RpcSs - ok
22:26:24.0434 5116 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
22:26:24.0434 5116 rspndr - ok
22:26:24.0480 5116 [ 907C4464381B5EBDFDC60F6C7D0DEDFC ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
22:26:24.0480 5116 RSUSBSTOR - ok
22:26:24.0574 5116 [ 4B42BC58294E83A6A92EC8B88C14C4A3 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
22:26:24.0574 5116 RTL8167 - ok
22:26:24.0605 5116 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
22:26:24.0605 5116 SamSs - ok
22:26:24.0636 5116 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
22:26:24.0636 5116 sbp2port - ok
22:26:24.0668 5116 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
22:26:24.0683 5116 SCardSvr - ok
22:26:24.0699 5116 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
22:26:24.0699 5116 scfilter - ok
22:26:24.0761 5116 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
22:26:24.0777 5116 Schedule - ok
22:26:24.0824 5116 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
22:26:24.0824 5116 SCPolicySvc - ok
22:26:24.0870 5116 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\drivers\sdbus.sys
22:26:24.0870 5116 sdbus - ok
22:26:24.0902 5116 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
22:26:24.0902 5116 SDRSVC - ok
22:26:24.0995 5116 [ CC781378E7EDA615D2CDCA3B17829FA4 ] SeaPort C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
22:26:24.0995 5116 SeaPort - ok
22:26:25.0042 5116 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
22:26:25.0042 5116 secdrv - ok
22:26:25.0073 5116 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
22:26:25.0073 5116 seclogon - ok
22:26:25.0104 5116 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
22:26:25.0104 5116 SENS - ok
22:26:25.0120 5116 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
22:26:25.0136 5116 SensrSvc - ok
22:26:25.0151 5116 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
22:26:25.0151 5116 Serenum - ok
22:26:25.0167 5116 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
22:26:25.0167 5116 Serial - ok
22:26:25.0198 5116 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
22:26:25.0198 5116 sermouse - ok
22:26:25.0229 5116 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
22:26:25.0245 5116 SessionEnv - ok
22:26:25.0276 5116 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
22:26:25.0276 5116 sffdisk - ok
22:26:25.0292 5116 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
22:26:25.0292 5116 sffp_mmc - ok
22:26:25.0307 5116 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
22:26:25.0307 5116 sffp_sd - ok
22:26:25.0338 5116 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
22:26:25.0338 5116 sfloppy - ok
22:26:25.0385 5116 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
22:26:25.0385 5116 Sftfs - ok
22:26:25.0463 5116 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
22:26:25.0463 5116 sftlist - ok
22:26:25.0494 5116 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
22:26:25.0494 5116 Sftplay - ok
22:26:25.0526 5116 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
22:26:25.0526 5116 Sftredir - ok
22:26:25.0541 5116 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
22:26:25.0557 5116 Sftvol - ok
22:26:25.0604 5116 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
22:26:25.0604 5116 sftvsa - ok
22:26:25.0666 5116 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
22:26:25.0666 5116 SharedAccess - ok
22:26:25.0697 5116 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:26:25.0713 5116 ShellHWDetection - ok
22:26:25.0744 5116 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
22:26:25.0744 5116 SiSRaid2 - ok
22:26:25.0775 5116 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
22:26:25.0775 5116 SiSRaid4 - ok
22:26:25.0806 5116 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
22:26:25.0822 5116 Smb - ok
22:26:25.0853 5116 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
22:26:25.0853 5116 SNMPTRAP - ok
22:26:25.0869 5116 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
22:26:25.0869 5116 spldr - ok
22:26:25.0931 5116 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
22:26:25.0931 5116 Spooler - ok
22:26:26.0072 5116 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
22:26:26.0134 5116 sppsvc - ok
22:26:26.0150 5116 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
22:26:26.0150 5116 sppuinotify - ok
22:26:26.0259 5116 [ 2FD9346F9D76CB4192D37329CFA47A82 ] SRTSP C:\Windows\System32\Drivers\N360x64\1404000.028\SRTSP64.SYS
22:26:26.0274 5116 SRTSP - ok
22:26:26.0306 5116 [ 0E76CEF892C45734F7AED09FDDF35D4D ] SRTSPX C:\Windows\system32\drivers\N360x64\1404000.028\SRTSPX64.SYS
22:26:26.0306 5116 SRTSPX - ok
22:26:26.0352 5116 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
22:26:26.0352 5116 srv - ok
22:26:26.0384 5116 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
22:26:26.0384 5116 srv2 - ok
22:26:26.0430 5116 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
22:26:26.0446 5116 SrvHsfHDA - ok
22:26:26.0477 5116 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
22:26:26.0493 5116 SrvHsfV92 - ok
22:26:26.0508 5116 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
22:26:26.0524 5116 SrvHsfWinac - ok
22:26:26.0540 5116 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
22:26:26.0540 5116 srvnet - ok
22:26:26.0571 5116 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
22:26:26.0571 5116 SSDPSRV - ok
22:26:26.0602 5116 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
22:26:26.0602 5116 SstpSvc - ok
22:26:26.0680 5116 [ B00068BA94F5F306911B14B425AAEB56 ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe
22:26:26.0680 5116 STacSV - ok
22:26:26.0696 5116 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
22:26:26.0696 5116 stexstor - ok
22:26:26.0758 5116 [ DA40D9C9CCB9836D6ABD1706935A2277 ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
22:26:26.0758 5116 STHDA - ok
22:26:26.0805 5116 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
22:26:26.0805 5116 StillCam - ok
22:26:26.0867 5116 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
22:26:26.0867 5116 stisvc - ok
22:26:26.0914 5116 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
22:26:26.0914 5116 swenum - ok
22:26:26.0976 5116 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
22:26:26.0976 5116 swprv - ok
22:26:27.0039 5116 [ 52DC0048D667757A8A2E4C87182890AC ] SymDS C:\Windows\system32\drivers\N360x64\1404000.028\SYMDS64.SYS
22:26:27.0054 5116 SymDS - ok
22:26:27.0101 5116 [ 599872BAD7CFB45C7CE47CDED4B726D8 ] SymEFA C:\Windows\system32\drivers\N360x64\1404000.028\SYMEFA64.SYS
22:26:27.0117 5116 SymEFA - ok
22:26:27.0179 5116 [ F19E5E37ED8134B9E5F6287F2D3A75D7 ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
22:26:27.0179 5116 SymEvent - ok
22:26:27.0226 5116 [ ADF37F1A715D6C56C8E065FD8569A9A4 ] SymIRON C:\Windows\system32\drivers\N360x64\1404000.028\Ironx64.SYS
22:26:27.0226 5116 SymIRON - ok
22:26:27.0335 5116 [ 9CDCA70485BD6B9D230365F67C31F132 ] SymNetS C:\Windows\System32\Drivers\N360x64\1404000.028\SYMNETS.SYS
22:26:27.0335 5116 SymNetS - ok
22:26:27.0429 5116 [ 961CFAC2A5318E212F459D651F28E0A4 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
22:26:27.0444 5116 SynTP - ok
22:26:27.0507 5116 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
22:26:27.0538 5116 SysMain - ok
22:26:27.0569 5116 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:26:27.0585 5116 TabletInputService - ok
22:26:27.0600 5116 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
22:26:27.0600 5116 TapiSrv - ok
22:26:27.0632 5116 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
22:26:27.0647 5116 TBS - ok
22:26:27.0725 5116 [ 9849EA3843A2ADBDD1497E97A85D8CAE ] Tcpip C:\Windows\system32\drivers\tcpip.sys
22:26:27.0741 5116 Tcpip - ok
22:26:27.0819 5116 [ 9849EA3843A2ADBDD1497E97A85D8CAE ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
22:26:27.0834 5116 TCPIP6 - ok
22:26:27.0866 5116 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
22:26:27.0866 5116 tcpipreg - ok
22:26:27.0912 5116 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
22:26:27.0912 5116 TDPIPE - ok
22:26:27.0959 5116 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
22:26:27.0959 5116 TDTCP - ok
22:26:27.0990 5116 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
22:26:27.0990 5116 tdx - ok
22:26:28.0037 5116 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
22:26:28.0037 5116 TermDD - ok
22:26:28.0100 5116 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
22:26:28.0100 5116 TermService - ok
22:26:28.0131 5116 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
22:26:28.0131 5116 Themes - ok
22:26:28.0146 5116 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
22:26:28.0146 5116 THREADORDER - ok
22:26:28.0162 5116 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
22:26:28.0178 5116 TrkWks - ok
22:26:28.0224 5116 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:26:28.0224 5116 TrustedInstaller - ok
22:26:28.0271 5116 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
22:26:28.0271 5116 tssecsrv - ok
22:26:28.0302 5116 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
22:26:28.0302 5116 TsUsbFlt - ok
22:26:28.0349 5116 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
22:26:28.0349 5116 tunnel - ok
22:26:28.0380 5116 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
22:26:28.0380 5116 uagp35 - ok
22:26:28.0412 5116 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
22:26:28.0427 5116 udfs - ok
22:26:28.0458 5116 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
22:26:28.0458 5116 UI0Detect - ok
22:26:28.0490 5116 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
22:26:28.0490 5116 uliagpkx - ok
22:26:28.0521 5116 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
22:26:28.0521 5116 umbus - ok
22:26:28.0552 5116 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
22:26:28.0552 5116 UmPass - ok
22:26:28.0661 5116 [ 0FADD949576A164B4E51E716F46B6C33 ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
22:26:28.0677 5116 UNS - ok
22:26:28.0708 5116 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
22:26:28.0708 5116 upnphost - ok
22:26:28.0739 5116 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
22:26:28.0739 5116 usbccgp - ok
22:26:28.0786 5116 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
22:26:28.0786 5116 usbcir - ok
22:26:28.0817 5116 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
22:26:28.0817 5116 usbehci - ok
22:26:28.0864 5116 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
22:26:28.0864 5116 usbhub - ok
22:26:28.0911 5116 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
22:26:28.0911 5116 usbohci - ok
22:26:28.0958 5116 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
22:26:28.0958 5116 usbprint - ok
22:26:29.0004 5116 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
22:26:29.0004 5116 usbscan - ok
22:26:29.0020 5116 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:26:29.0020 5116 USBSTOR - ok
22:26:29.0051 5116 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
22:26:29.0051 5116 usbuhci - ok
22:26:29.0082 5116 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
22:26:29.0082 5116 usbvideo - ok
22:26:29.0098 5116 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
22:26:29.0114 5116 UxSms - ok
22:26:29.0129 5116 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
22:26:29.0129 5116 VaultSvc - ok
22:26:29.0176 5116 [ 2662F24C7AEE2A32CEBDEC907A5366F1 ] vcsFPService C:\Windows\system32\vcsFPService.exe
22:26:29.0192 5116 vcsFPService - ok
22:26:29.0223 5116 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
22:26:29.0223 5116 vdrvroot - ok
22:26:29.0270 5116 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
22:26:29.0270 5116 vds - ok
22:26:29.0301 5116 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
22:26:29.0301 5116 vga - ok
22:26:29.0316 5116 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
22:26:29.0316 5116 VgaSave - ok
22:26:29.0363 5116 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
22:26:29.0363 5116 vhdmp - ok
22:26:29.0379 5116 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
22:26:29.0379 5116 viaide - ok
22:26:29.0394 5116 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
22:26:29.0410 5116 volmgr - ok
22:26:29.0441 5116 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
22:26:29.0441 5116 volmgrx - ok
22:26:29.0488 5116 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
22:26:29.0488 5116 volsnap - ok
22:26:29.0519 5116 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
22:26:29.0519 5116 vsmraid - ok
22:26:29.0613 5116 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
22:26:29.0628 5116 VSS - ok
22:26:29.0675 5116 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
22:26:29.0675 5116 vwifibus - ok
22:26:29.0722 5116 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
22:26:29.0722 5116 vwififlt - ok
22:26:29.0738 5116 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
22:26:29.0738 5116 vwifimp - ok
22:26:29.0769 5116 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
22:26:29.0784 5116 W32Time - ok
22:26:29.0800 5116 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
22:26:29.0816 5116 WacomPen - ok
22:26:29.0847 5116 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
22:26:29.0862 5116 WANARP - ok
22:26:29.0862 5116 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
22:26:29.0862 5116 Wanarpv6 - ok
22:26:29.0972 5116 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
22:26:29.0987 5116 WatAdminSvc - ok
22:26:30.0050 5116 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
22:26:30.0065 5116 wbengine - ok
22:26:30.0096 5116 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
22:26:30.0096 5116 WbioSrvc - ok
22:26:30.0143 5116 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
22:26:30.0143 5116 wcncsvc - ok
22:26:30.0174 5116 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:26:30.0174 5116 WcsPlugInService - ok
22:26:30.0206 5116 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
22:26:30.0206 5116 Wd - ok
22:26:30.0252 5116 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
22:26:30.0268 5116 Wdf01000 - ok
22:26:30.0315 5116 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
22:26:30.0315 5116 WdiServiceHost - ok
22:26:30.0315 5116 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
22:26:30.0330 5116 WdiSystemHost - ok
22:26:30.0362 5116 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
22:26:30.0362 5116 WebClient - ok
22:26:30.0393 5116 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
22:26:30.0393 5116 Wecsvc - ok
22:26:30.0408 5116 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
22:26:30.0408 5116 wercplsupport - ok
22:26:30.0440 5116 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
22:26:30.0440 5116 WerSvc - ok
22:26:30.0471 5116 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
22:26:30.0471 5116 WfpLwf - ok
22:26:30.0471 5116 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
22:26:30.0486 5116 WIMMount - ok
22:26:30.0502 5116 WinDefend - ok
22:26:30.0518 5116 WinHttpAutoProxySvc - ok
22:26:30.0564 5116 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
22:26:30.0564 5116 Winmgmt - ok
22:26:30.0658 5116 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
22:26:30.0674 5116 WinRM - ok
22:26:30.0720 5116 [ FE88B288356E7B47B74B13372ADD906D ] WinUSB C:\Windows\system32\DRIVERS\WinUSB.sys
22:26:30.0720 5116 WinUSB - ok
22:26:30.0752 5116 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
22:26:30.0752 5116 Wlansvc - ok
22:26:30.0892 5116 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:26:30.0908 5116 wlidsvc - ok
22:26:30.0954 5116 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
22:26:30.0970 5116 WmiAcpi - ok
22:26:31.0001 5116 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
22:26:31.0017 5116 wmiApSrv - ok
22:26:31.0095 5116 WMPNetworkSvc - ok
22:26:31.0126 5116 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
22:26:31.0126 5116 WPCSvc - ok
22:26:31.0173 5116 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
22:26:31.0173 5116 WPDBusEnum - ok
22:26:31.0204 5116 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
22:26:31.0204 5116 ws2ifsl - ok
22:26:31.0251 5116 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
22:26:31.0251 5116 wscsvc - ok
22:26:31.0298 5116 [ 8D918B1DB190A4D9B1753A66FA8C96E8 ] WSDPrintDevice C:\Windows\system32\DRIVERS\WSDPrint.sys
22:26:31.0298 5116 WSDPrintDevice - ok
22:26:31.0298 5116 WSearch - ok
22:26:31.0407 5116 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
22:26:31.0422 5116 wuauserv - ok
22:26:31.0454 5116 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
22:26:31.0454 5116 WudfPf - ok
22:26:31.0485 5116 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
22:26:31.0485 5116 WUDFRd - ok
22:26:31.0516 5116 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
22:26:31.0532 5116 wudfsvc - ok
22:26:31.0563 5116 [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc C:\Windows\System32\wwansvc.dll
22:26:31.0563 5116 WwanSvc - ok
22:26:31.0625 5116 [ B3EEACF62445E24FBB2CD4B0FB4DB026 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
22:26:31.0625 5116 yukonw7 - ok
22:26:31.0656 5116 ================ Scan global ===============================
22:26:31.0672 5116 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
22:26:31.0703 5116 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
22:26:31.0719 5116 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
22:26:31.0734 5116 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
22:26:31.0766 5116 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
22:26:31.0766 5116 [Global] - ok
22:26:31.0766 5116 ================ Scan MBR ==================================
22:26:31.0781 5116 [ 02A8608F332E21E1615221753B7718AB ] \Device\Harddisk0\DR0
22:26:32.0046 5116 \Device\Harddisk0\DR0 - ok
22:26:32.0046 5116 ================ Scan VBR ==================================
22:26:32.0093 5116 [ 5CCEF3FA5BDBB280351AEDC837D8553E ] \Device\Harddisk0\DR0\Partition1
22:26:32.0093 5116 \Device\Harddisk0\DR0\Partition1 - ok
22:26:32.0093 5116 [ 85DD014A62C352F80FC64502F1F74505 ] \Device\Harddisk0\DR0\Partition2
22:26:32.0109 5116 \Device\Harddisk0\DR0\Partition2 - ok
22:26:32.0140 5116 [ CBF33ECFFBDF7B764DE3328E040DE678 ] \Device\Harddisk0\DR0\Partition3
22:26:32.0140 5116 \Device\Harddisk0\DR0\Partition3 - ok
22:26:32.0156 5116 [ A47AC8A28E271E7DDDC9084880376C8E ] \Device\Harddisk0\DR0\Partition4
22:26:32.0156 5116 \Device\Harddisk0\DR0\Partition4 - ok
22:26:32.0156 5116 ============================================================
22:26:32.0156 5116 Scan finished
22:26:32.0156 5116 ============================================================
22:26:32.0171 4572 Detected object count: 0
22:26:32.0171 4572 Actual detected object count: 0

#8 Marc Leclerc

Marc Leclerc
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:05:22 AM

Posted 09 July 2013 - 10:35 PM

# AdwCleaner v2.304 - Logfile created 07/09/2013 at 22:29:56
# Updated 03/07/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Marc - MARC-HP
# Boot Mode : Normal
# Running from : C:\Users\Marc\Downloads\AdwCleaner.exe
# Option [Delete]

***** [Services] *****

***** [Files / Folders] *****

File Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eBay.lnk

***** [Registry] *****

Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}

***** [Internet Browsers] *****

-\\ Internet Explorer v10.0.9200.16611

[OK] Registry is clean.

*************************

AdwCleaner[S1].txt - [1622 octets] - [09/07/2013 22:29:56]

########## EOF - C:\AdwCleaner[S1].txt - [1682 octets] ##########



#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,058 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:22 AM

Posted 10 July 2013 - 07:59 PM

No ESET log? How is it now?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 Marc Leclerc

Marc Leclerc
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:05:22 AM

Posted 10 July 2013 - 09:58 PM

The ESET scan took a long time.  It is saying scan in progress, 100%,  steps 3 of 4 completed.  But I am not finding a LIST THREATS button as of yet, so I'm not sure, it still may be doing its thing.  It is saying 2 files infected, 4 threats found.  



#11 Marc Leclerc

Marc Leclerc
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:05:22 AM

Posted 10 July 2013 - 10:03 PM

It is still redirecting by the way.



#12 Marc Leclerc

Marc Leclerc
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:05:22 AM

Posted 10 July 2013 - 10:28 PM

Do you think perhaps I should stop the scan and rerun it?  The total scan time count sits unchanged at 100% scanned.



#13 Marc Leclerc

Marc Leclerc
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:05:22 AM

Posted 10 July 2013 - 11:06 PM

ESET:

 

C:\Users\Marc\AppData\Local\FTPWare\fgiotcew.dll Win32/Kryptik.BFGO.Gen trojan cleaned by deleting (after the next restart) - quarantined
C:\Users\Marc\AppData\Local\{E9A62015-7904-40D0-8A8D-8BDB268114BC}\{1A49A0B9-AEBF-4DE6-856C-432850029C57}\dheh.dll Win32/TrojanDownloader.Tracur.V trojan cleaned by deleting (after the next restart) - quarantined
 



#14 Marc Leclerc

Marc Leclerc
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:05:22 AM

Posted 10 July 2013 - 11:29 PM

I restarted the computer and google seems to be back to normal now, but I did get the following message after start up that I have not seen before:

RegSvr32

 

The module

"C:\Users\Marc\AppData\Local\FTPWare\fgiotcew.dll"

failed to load.

 

Make sure the binary is stored at the specified path or debug it to check for prolems with the binary or dependent .DLL files.

 

The specified module could not be found.



#15 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,058 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:22 AM

Posted 11 July 2013 - 12:01 PM

Its not unusual to receive such an error after using specialized fix tools.

A "Cannot find...", "Could not run...", "Error loading... or "specific module could not be found" message is usually related to malware that was set to run at startup but has been deleted. Windows is trying to load this file but cannot locate it since the file was mostly likely removed during an anti-virus or anti-malware scan. However, an associated orphaned registry entry remains and is telling Windows to load the file when you boot up. Since the file no longer exists, Windows will display an error message. You need to remove this registry entry so Windows stops searching for the file when it loads.

To resolve this, download Autoruns, search for the related entry and then delete it.

Create a new folder on your hard drive called AutoRuns (C:\AutoRuns) and extract (unzip) the file there. (click here if you're not sure how to do this.)
Open the folder and double-click on autoruns.exe to launch it.
Please be patient as it scans and populates the entries.
When done scanning, it will say Ready at the bottom.
Scroll through the list and look for a startup entry related to the file(s) in the error message. -->>>ihibulam.dll
Right-click on the entry and choose delete.
Reboot your computer and see if the startup error returns.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users