Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

I recently had spyware change my homepage on google chrome and firefox.


  • Please log in to reply
8 replies to this topic

#1 Sometimes19

Sometimes19

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:26 PM

Posted 22 July 2013 - 02:26 AM

I got infected with spyware recently and i ran malwarebytes, spybot search & destroy, SUPERantispyware and adwcleaner, all these programs found infected files and removed them. I now get clean scans from each program but i was wondering if there is anything i can do to make sure the infection is all gone.

 

Your help is much appreciated.   



BC AdBot (Login to Remove)

 


#2 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:01:26 AM

Posted 22 July 2013 - 05:44 AM

Hello,

I will be helping you with your problems. Please be patient while I assist you.

Some points for you to keep in mind while I am helping you to make things go easier and faster for both of us

  • Please do NOT run, install or uninstall any programs,  unless instructed to do so.
        
    • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
          
  • Please do not attach logs or use code boxes, just copy and paste the text.
        
    • Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
          
  • Please read every post completely before doing anything.
           
    • Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.
          
  • Please provide feedback about your experience as we go.
           
    • A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.
          


NOTE: At the top of your post, click on the Watch Topic Button, select Immediate Notification, and click on Proceed. This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.

NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of heartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.
- Do NOT backup any unknown files ending in .exe, .com, .scr, .pif, and .bat since files of these types are more likely to be infected.

NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.

----------------------------------------------

Please do the following:

:step1:

Please download the TDSS Rootkit Removing Tool (TDSSKiller.exe) and save it to your Desktop. <-Important!!!
  • Double-click on TDSSKiller.exe on your desktop to run the tool for known TDSS variants.
    Vista/Windows 7 users right-click and select Run As Administrator.
  • If TDSSKiller does not run, try renaming it.
  • To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to How to change the file extension.
  • Click on change parameters
  • Under Objects to scan, check the boxes next to Verify file digital signatures, Detect TDLFS file system, then click OK.
  • Click the Start Scan button.
  • Do not use the computer during the scan
  • If the scan completes with nothing found, click Close to exit.
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Note: If Cure is not an option, Skip instead, do NOT choose Delete or Quarantine unless instructed.
  • A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.2.4.0.0_27.07.2010_09.o7.26_log.txt) will be created and saved to the root directory (usually Local Disk C:).
  • Copy and paste the full contents of that file in your next reply. - If the log is too long, then split it into multiple posts.



:step2:

Please download AdwCleaner by Xplode onto your desktop.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Search.
  • A logfile will automatically open after the scan has finished.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[R1].txt as well.



:step3:

Please download Farbar Service Scanner and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press Scan.
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the full contents of the log in your next reply.



:step4:

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices (Only Problems)
  • List Users, Partitions and Memory size.
  • List Minidump Files
  • List Restore points

NOTE: When using "Reset FF Proxy Settings" option Firefox should be closed.

Click Go and post the full contents of the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.


Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#3 Sometimes19

Sometimes19
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:26 PM

Posted 22 July 2013 - 06:34 AM

Thank you for helping me! 

Note: The computer seems to be acting normal, no signs of infection. I am just making sure the infection is gone.

 

04:04:50.0366 3108  TDSS rootkit removing tool 2.8.18.0 Jun 10 2013 21:44:19
04:04:51.0099 3108  ============================================================
04:04:51.0099 3108  Current date / time: 2013/07/22 04:04:51.0099
04:04:51.0099 3108  SystemInfo:
04:04:51.0099 3108  
04:04:51.0099 3108  OS Version: 6.1.7601 ServicePack: 1.0
04:04:51.0099 3108  Product type: Workstation
04:04:51.0099 3108  ComputerName: DIPSET-PC
04:04:51.0099 3108  UserName: DIPSET
04:04:51.0099 3108  Windows directory: C:\Windows
04:04:51.0099 3108  System windows directory: C:\Windows
04:04:51.0099 3108  Running under WOW64
04:04:51.0099 3108  Processor architecture: Intel x64
04:04:51.0099 3108  Number of processors: 8
04:04:51.0099 3108  Page size: 0x1000
04:04:51.0099 3108  Boot type: Normal boot
04:04:51.0099 3108  ============================================================
04:04:51.0676 3108  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
04:04:51.0692 3108  ============================================================
04:04:51.0692 3108  \Device\Harddisk0\DR0:
04:04:51.0692 3108  MBR partitions:
04:04:51.0692 3108  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
04:04:51.0692 3108  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x38B5C800
04:04:51.0692 3108  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x38BC0800, BlocksNum 0x1791800
04:04:51.0692 3108  \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x3A352000, BlocksNum 0x33830
04:04:51.0692 3108  ============================================================
04:04:51.0707 3108  C: <-> \Device\Harddisk0\DR0\Partition2
04:04:51.0754 3108  D: <-> \Device\Harddisk0\DR0\Partition3
04:04:51.0770 3108  E: <-> \Device\Harddisk0\DR0\Partition4
04:04:51.0770 3108  ============================================================
04:04:51.0770 3108  Initialize success
04:04:51.0770 3108  ============================================================
04:06:34.0667 1480  ============================================================
04:06:34.0667 1480  Scan started
04:06:34.0667 1480  Mode: Manual; SigCheck; TDLFS; 
04:06:34.0667 1480  ============================================================
04:06:34.0854 1480  ================ Scan system memory ========================
04:06:34.0854 1480  System memory - ok
04:06:34.0854 1480  ================ Scan services =============================
04:06:34.0932 1480  [ ABDCD326E1DD1C62509ED94C278A7453 ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
04:06:34.0995 1480  !SASCORE - ok
04:06:35.0151 1480  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
04:06:35.0244 1480  1394ohci - ok
04:06:35.0276 1480  [ 1CFFE9C06E66A57DAE1452E449A58240 ] Accelerometer   C:\Windows\system32\DRIVERS\Accelerometer.sys
04:06:35.0291 1480  Accelerometer - ok
04:06:35.0338 1480  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
04:06:35.0369 1480  ACPI - ok
04:06:35.0400 1480  [ 12C5274CD87449A2A37A607CDB321922 ] acpials         C:\Windows\system32\DRIVERS\acpials.sys
04:06:35.0432 1480  acpials - ok
04:06:35.0463 1480  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
04:06:35.0541 1480  AcpiPmi - ok
04:06:35.0681 1480  [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
04:06:35.0713 1480  AdobeARMservice - ok
04:06:35.0837 1480  [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
04:06:35.0869 1480  AdobeFlashPlayerUpdateSvc - ok
04:06:35.0900 1480  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
04:06:35.0931 1480  adp94xx - ok
04:06:35.0947 1480  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
04:06:35.0962 1480  adpahci - ok
04:06:35.0993 1480  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
04:06:36.0009 1480  adpu320 - ok
04:06:36.0056 1480  [ 985E43B02D2443F6C0F440771C77E5D1 ] ADVService      C:\Program Files (x86)\Amazon\Amazon Unbox Video\ADVWindowsClientService.exe
04:06:36.0087 1480  ADVService ( UnsignedFile.Multi.Generic ) - warning
04:06:36.0087 1480  ADVService - detected UnsignedFile.Multi.Generic (1)
04:06:36.0118 1480  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
04:06:36.0259 1480  AeLookupSvc - ok
04:06:36.0368 1480  [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters     C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_8382c07b9969cc97\AESTSr64.exe
04:06:36.0430 1480  AESTFilters - ok
04:06:36.0477 1480  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
04:06:36.0508 1480  AFD - ok
04:06:36.0539 1480  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
04:06:36.0555 1480  agp440 - ok
04:06:36.0571 1480  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
04:06:36.0633 1480  ALG - ok
04:06:36.0664 1480  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
04:06:36.0695 1480  aliide - ok
04:06:36.0727 1480  [ D0D8877969011D1B0ED9C3C55A9A9108 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
04:06:36.0805 1480  AMD External Events Utility - ok
04:06:36.0820 1480  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
04:06:36.0836 1480  amdide - ok
04:06:36.0867 1480  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
04:06:36.0914 1480  AmdK8 - ok
04:06:36.0929 1480  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
04:06:36.0961 1480  AmdPPM - ok
04:06:36.0992 1480  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
04:06:37.0023 1480  amdsata - ok
04:06:37.0054 1480  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
04:06:37.0070 1480  amdsbs - ok
04:06:37.0085 1480  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
04:06:37.0085 1480  amdxata - ok
04:06:37.0132 1480  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
04:06:37.0210 1480  AppID - ok
04:06:37.0226 1480  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
04:06:37.0273 1480  AppIDSvc - ok
04:06:37.0304 1480  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\Windows\System32\appinfo.dll
04:06:37.0351 1480  Appinfo - ok
04:06:37.0444 1480  [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
04:06:37.0475 1480  Apple Mobile Device - ok
04:06:37.0507 1480  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
04:06:37.0538 1480  arc - ok
04:06:37.0553 1480  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
04:06:37.0569 1480  arcsas - ok
04:06:37.0600 1480  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
04:06:37.0663 1480  AsyncMac - ok
04:06:37.0709 1480  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
04:06:37.0741 1480  atapi - ok
04:06:37.0803 1480  [ 38467FF83C2B4265D51F418812A91E3C ] AtiHdmiService  C:\Windows\system32\drivers\AtiHdmi.sys
04:06:37.0819 1480  AtiHdmiService - ok
04:06:37.0943 1480  [ C5758BF1DFD762A5B17041FF061B7750 ] atikmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
04:06:38.0084 1480  atikmdag - ok
04:06:38.0177 1480  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
04:06:38.0271 1480  AudioEndpointBuilder - ok
04:06:38.0302 1480  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
04:06:38.0333 1480  AudioSrv - ok
04:06:38.0458 1480  [ 080D4FE1435401A370F122614EA514CD ] AVG Security Toolbar Service C:\Program Files (x86)\AVG\AVG10\Toolbar\ToolbarBroker.exe
04:06:38.0521 1480  AVG Security Toolbar Service - ok
04:06:38.0661 1480  [ 50185186719134FA8F307D269106A51C ] AVGIDSAgent     C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
04:06:38.0723 1480  AVGIDSAgent - ok
04:06:38.0755 1480  [ 139BD30C32BEE830D0CF39C5324D79DE ] AVGIDSDriver    C:\Windows\system32\DRIVERS\avgidsdrivera.sys
04:06:38.0770 1480  AVGIDSDriver - ok
04:06:38.0801 1480  [ 2940FACB6EF92BD1936E4A1E2502468E ] AVGIDSHA        C:\Windows\system32\DRIVERS\avgidsha.sys
04:06:38.0817 1480  AVGIDSHA - ok
04:06:38.0848 1480  [ 54B66C4AEEC6C4F742F3569EBA03EBB8 ] Avgldx64        C:\Windows\system32\DRIVERS\avgldx64.sys
04:06:38.0864 1480  Avgldx64 - ok
04:06:38.0895 1480  [ 13667B5D6310228A9FEF2BA5FCD9081F ] Avgloga         C:\Windows\system32\DRIVERS\avgloga.sys
04:06:38.0911 1480  Avgloga - ok
04:06:38.0957 1480  [ BE82F9A1F2CCF4CE746D0C645D94079E ] Avgmfx64        C:\Windows\system32\DRIVERS\avgmfx64.sys
04:06:38.0989 1480  Avgmfx64 - ok
04:06:39.0004 1480  [ 5D11620DEF66F9DC9468FEE385A8429B ] Avgrkx64        C:\Windows\system32\DRIVERS\avgrkx64.sys
04:06:39.0020 1480  Avgrkx64 - ok
04:06:39.0051 1480  [ 69BD90E337625F96C718CACE7A9C9E29 ] Avgtdia         C:\Windows\system32\DRIVERS\avgtdia.sys
04:06:39.0082 1480  Avgtdia - ok
04:06:39.0098 1480  [ 3A0977CB68AF13E2579E47EB8984056B ] avgwd           C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
04:06:39.0113 1480  avgwd - ok
04:06:39.0145 1480  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
04:06:39.0238 1480  AxInstSV - ok
04:06:39.0285 1480  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
04:06:39.0347 1480  b06bdrv - ok
04:06:39.0394 1480  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
04:06:39.0441 1480  b57nd60a - ok
04:06:39.0519 1480  [ 2ED050291BC1D7F9E322E328DB3AAECF ] BBSvc           C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
04:06:39.0550 1480  BBSvc - ok
04:06:39.0566 1480  [ 785DE7ABDA13309D6065305542829E76 ] BBUpdate        C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
04:06:39.0581 1480  BBUpdate - ok
04:06:39.0628 1480  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
04:06:39.0691 1480  BDESVC - ok
04:06:39.0706 1480  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
04:06:39.0769 1480  Beep - ok
04:06:39.0831 1480  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
04:06:39.0909 1480  BFE - ok
04:06:39.0925 1480  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
04:06:39.0987 1480  BITS - ok
04:06:40.0003 1480  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
04:06:40.0034 1480  blbdrive - ok
04:06:40.0174 1480  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
04:06:40.0221 1480  Bonjour Service - ok
04:06:40.0283 1480  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
04:06:40.0315 1480  bowser - ok
04:06:40.0377 1480  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
04:06:40.0455 1480  BrFiltLo - ok
04:06:40.0486 1480  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
04:06:40.0517 1480  BrFiltUp - ok
04:06:40.0564 1480  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
04:06:40.0595 1480  Browser - ok
04:06:40.0611 1480  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
04:06:40.0658 1480  Brserid - ok
04:06:40.0673 1480  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
04:06:40.0705 1480  BrSerWdm - ok
04:06:40.0736 1480  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
04:06:40.0783 1480  BrUsbMdm - ok
04:06:40.0798 1480  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
04:06:40.0845 1480  BrUsbSer - ok
04:06:40.0876 1480  [ CF98190A94F62E405C8CB255018B2315 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
04:06:40.0939 1480  BthEnum - ok
04:06:40.0970 1480  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
04:06:41.0017 1480  BTHMODEM - ok
04:06:41.0032 1480  [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
04:06:41.0063 1480  BthPan - ok
04:06:41.0095 1480  [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT         C:\Windows\System32\Drivers\BTHport.sys
04:06:41.0157 1480  BTHPORT - ok
04:06:41.0188 1480  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
04:06:41.0266 1480  bthserv - ok
04:06:41.0297 1480  [ F188B7394D81010767B6DF3178519A37 ] BTHUSB          C:\Windows\System32\Drivers\BTHUSB.sys
04:06:41.0313 1480  BTHUSB - ok
04:06:41.0344 1480  [ 6BCFDC2B5B7F66D484486D4BD4B39A6B ] btwaudio        C:\Windows\system32\drivers\btwaudio.sys
04:06:41.0360 1480  btwaudio - ok
04:06:41.0391 1480  [ 82DC8B7C626E526681C1BEBED2BC3FF9 ] btwavdt         C:\Windows\system32\DRIVERS\btwavdt.sys
04:06:41.0422 1480  btwavdt - ok
04:06:41.0469 1480  [ D65AA164ACD0F6706DBCFBBCC9731584 ] btwdins         C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
04:06:41.0516 1480  btwdins - ok
04:06:41.0531 1480  [ 6149301DC3F81D6F9667A3FBAC410975 ] btwl2cap        C:\Windows\system32\DRIVERS\btwl2cap.sys
04:06:41.0547 1480  btwl2cap - ok
04:06:41.0547 1480  [ 28E105AD3B79F440BF94780F507BF66A ] btwrchid        C:\Windows\system32\DRIVERS\btwrchid.sys
04:06:41.0563 1480  btwrchid - ok
04:06:41.0594 1480  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
04:06:41.0641 1480  cdfs - ok
04:06:41.0672 1480  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\drivers\cdrom.sys
04:06:41.0719 1480  cdrom - ok
04:06:41.0765 1480  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
04:06:41.0843 1480  CertPropSvc - ok
04:06:41.0859 1480  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
04:06:41.0906 1480  circlass - ok
04:06:41.0937 1480  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
04:06:41.0953 1480  CLFS - ok
04:06:42.0031 1480  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
04:06:42.0046 1480  clr_optimization_v2.0.50727_32 - ok
04:06:42.0093 1480  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
04:06:42.0124 1480  clr_optimization_v2.0.50727_64 - ok
04:06:42.0187 1480  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
04:06:42.0202 1480  clr_optimization_v4.0.30319_32 - ok
04:06:42.0249 1480  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
04:06:42.0280 1480  clr_optimization_v4.0.30319_64 - ok
04:06:42.0311 1480  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
04:06:42.0343 1480  CmBatt - ok
04:06:42.0374 1480  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
04:06:42.0389 1480  cmdide - ok
04:06:42.0436 1480  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
04:06:42.0467 1480  CNG - ok
04:06:42.0545 1480  [ C7A0E61D5714AC20DE52D4F66EC773B8 ] Com4QLBEx       C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
04:06:42.0577 1480  Com4QLBEx - ok
04:06:42.0592 1480  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
04:06:42.0608 1480  Compbatt - ok
04:06:42.0655 1480  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
04:06:42.0701 1480  CompositeBus - ok
04:06:42.0717 1480  COMSysApp - ok
04:06:42.0733 1480  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
04:06:42.0748 1480  crcdisk - ok
04:06:42.0779 1480  [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc        C:\Windows\system32\cryptsvc.dll
04:06:42.0842 1480  CryptSvc - ok
04:06:42.0889 1480  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
04:06:42.0951 1480  DcomLaunch - ok
04:06:42.0998 1480  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
04:06:43.0045 1480  defragsvc - ok
04:06:43.0060 1480  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
04:06:43.0123 1480  DfsC - ok
04:06:43.0185 1480  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
04:06:43.0247 1480  Dhcp - ok
04:06:43.0263 1480  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
04:06:43.0310 1480  discache - ok
04:06:43.0357 1480  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
04:06:43.0372 1480  Disk - ok
04:06:43.0403 1480  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
04:06:43.0419 1480  Dnscache - ok
04:06:43.0450 1480  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
04:06:43.0513 1480  dot3svc - ok
04:06:43.0559 1480  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
04:06:43.0606 1480  DPS - ok
04:06:43.0637 1480  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
04:06:43.0669 1480  drmkaud - ok
04:06:43.0700 1480  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
04:06:43.0731 1480  DXGKrnl - ok
04:06:43.0762 1480  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
04:06:43.0825 1480  EapHost - ok
04:06:43.0903 1480  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
04:06:43.0996 1480  ebdrv - ok
04:06:44.0027 1480  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
04:06:44.0090 1480  EFS - ok
04:06:44.0152 1480  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
04:06:44.0230 1480  ehRecvr - ok
04:06:44.0246 1480  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
04:06:44.0308 1480  ehSched - ok
04:06:44.0339 1480  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
04:06:44.0386 1480  elxstor - ok
04:06:44.0417 1480  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
04:06:44.0433 1480  ErrDev - ok
04:06:44.0480 1480  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
04:06:44.0527 1480  EventSystem - ok
04:06:44.0558 1480  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
04:06:44.0589 1480  exfat - ok
04:06:44.0605 1480  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
04:06:44.0651 1480  fastfat - ok
04:06:44.0714 1480  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
04:06:44.0776 1480  Fax - ok
04:06:44.0792 1480  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
04:06:44.0807 1480  fdc - ok
04:06:44.0839 1480  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
04:06:44.0870 1480  fdPHost - ok
04:06:44.0870 1480  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
04:06:44.0901 1480  FDResPub - ok
04:06:44.0932 1480  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
04:06:44.0932 1480  FileInfo - ok
04:06:44.0948 1480  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
04:06:44.0995 1480  Filetrace - ok
04:06:45.0010 1480  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
04:06:45.0026 1480  flpydisk - ok
04:06:45.0057 1480  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
04:06:45.0057 1480  FltMgr - ok
04:06:45.0166 1480  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
04:06:45.0213 1480  FontCache - ok
04:06:45.0275 1480  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
04:06:45.0291 1480  FontCache3.0.0.0 - ok
04:06:45.0322 1480  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
04:06:45.0353 1480  FsDepends - ok
04:06:45.0431 1480  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
04:06:45.0447 1480  Fs_Rec - ok
04:06:45.0478 1480  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
04:06:45.0494 1480  fvevol - ok
04:06:45.0525 1480  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
04:06:45.0541 1480  gagp30kx - ok
04:06:45.0572 1480  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
04:06:45.0587 1480  GEARAspiWDM - ok
04:06:45.0650 1480  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
04:06:45.0712 1480  gpsvc - ok
04:06:45.0728 1480  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
04:06:45.0775 1480  hcw85cir - ok
04:06:45.0806 1480  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
04:06:45.0821 1480  HdAudAddService - ok
04:06:45.0853 1480  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
04:06:45.0884 1480  HDAudBus - ok
04:06:45.0899 1480  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
04:06:45.0915 1480  HidBatt - ok
04:06:45.0915 1480  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
04:06:45.0931 1480  HidBth - ok
04:06:45.0946 1480  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
04:06:45.0962 1480  HidIr - ok
04:06:45.0977 1480  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
04:06:46.0040 1480  hidserv - ok
04:06:46.0071 1480  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
04:06:46.0087 1480  HidUsb - ok
04:06:46.0118 1480  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
04:06:46.0180 1480  hkmsvc - ok
04:06:46.0227 1480  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
04:06:46.0274 1480  HomeGroupListener - ok
04:06:46.0305 1480  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
04:06:46.0336 1480  HomeGroupProvider - ok
04:06:46.0414 1480  [ BB1FC298BE53AAB1E110F6E786BD8AC5 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
04:06:46.0430 1480  HP Support Assistant Service ( UnsignedFile.Multi.Generic ) - warning
04:06:46.0430 1480  HP Support Assistant Service - detected UnsignedFile.Multi.Generic (1)
04:06:46.0477 1480  [ 56DDD9A5BF441722E88C9F7A517BE681 ] hpdoccardsvc    C:\Program Files (x86)\Hewlett-Packard\HP Envy Document Card Utilities\doccardsvc.exe
04:06:46.0492 1480  hpdoccardsvc - ok
04:06:46.0523 1480  [ 05712FDDBD45A5864EB326FAABC6A4E3 ] hpdskflt        C:\Windows\system32\DRIVERS\hpdskflt.sys
04:06:46.0539 1480  hpdskflt - ok
04:06:46.0570 1480  [ 9AF482D058BE59CC28BCE52E7C4B747C ] HpqKbFiltr      C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
04:06:46.0601 1480  HpqKbFiltr - ok
04:06:46.0695 1480  [ 9B7EDD3FE7C211C36E921D34D18A3A0A ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
04:06:46.0757 1480  hpqwmiex - ok
04:06:46.0789 1480  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
04:06:46.0804 1480  HpSAMD - ok
04:06:46.0820 1480  [ AA036CC5F5221D9B915F4D4DCE74BA9A ] hpsrv           C:\Windows\system32\Hpservice.exe
04:06:46.0820 1480  hpsrv - ok
04:06:46.0867 1480  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
04:06:46.0913 1480  HTTP - ok
04:06:46.0929 1480  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
04:06:46.0945 1480  hwpolicy - ok
04:06:46.0991 1480  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
04:06:47.0023 1480  i8042prt - ok
04:06:47.0054 1480  [ 073A606333B6F7BBF20AA856DF7F0997 ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
04:06:47.0085 1480  iaStor - ok
04:06:47.0116 1480  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
04:06:47.0147 1480  iaStorV - ok
04:06:47.0194 1480  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
04:06:47.0225 1480  idsvc - ok
04:06:47.0444 1480  [ A87261EF1546325B559374F5689CF5BC ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
04:06:47.0615 1480  igfx - ok
04:06:47.0631 1480  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
04:06:47.0647 1480  iirsp - ok
04:06:47.0678 1480  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
04:06:47.0740 1480  IKEEXT - ok
04:06:47.0803 1480  [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd           C:\Windows\system32\DRIVERS\Impcd.sys
04:06:47.0834 1480  Impcd - ok
04:06:47.0865 1480  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
04:06:47.0896 1480  intelide - ok
04:06:47.0927 1480  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
04:06:47.0959 1480  intelppm - ok
04:06:47.0990 1480  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
04:06:48.0052 1480  IPBusEnum - ok
04:06:48.0083 1480  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
04:06:48.0115 1480  IpFilterDriver - ok
04:06:48.0193 1480  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
04:06:48.0239 1480  iphlpsvc - ok
04:06:48.0271 1480  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
04:06:48.0317 1480  IPMIDRV - ok
04:06:48.0349 1480  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
04:06:48.0411 1480  IPNAT - ok
04:06:48.0489 1480  [ 0FF335D687C85097725A53458160E81E ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
04:06:48.0520 1480  iPod Service - ok
04:06:48.0536 1480  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
04:06:48.0567 1480  IRENUM - ok
04:06:48.0598 1480  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
04:06:48.0629 1480  isapnp - ok
04:06:48.0645 1480  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
04:06:48.0661 1480  iScsiPrt - ok
04:06:48.0676 1480  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
04:06:48.0692 1480  kbdclass - ok
04:06:48.0707 1480  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
04:06:48.0723 1480  kbdhid - ok
04:06:48.0754 1480  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
04:06:48.0754 1480  KeyIso - ok
04:06:48.0785 1480  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
04:06:48.0817 1480  KSecDD - ok
04:06:48.0848 1480  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
04:06:48.0879 1480  KSecPkg - ok
04:06:48.0895 1480  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
04:06:48.0973 1480  ksthunk - ok
04:06:49.0004 1480  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
04:06:49.0051 1480  KtmRm - ok
04:06:49.0082 1480  [ 01C711667ABEDF8148998F3AC91991DB ] L1C             C:\Windows\system32\DRIVERS\L1C62x64.sys
04:06:49.0129 1480  L1C - ok
04:06:49.0160 1480  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
04:06:49.0207 1480  LanmanServer - ok
04:06:49.0222 1480  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
04:06:49.0269 1480  LanmanWorkstation - ok
04:06:49.0316 1480  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
04:06:49.0394 1480  lltdio - ok
04:06:49.0409 1480  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
04:06:49.0456 1480  lltdsvc - ok
04:06:49.0487 1480  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
04:06:49.0519 1480  lmhosts - ok
04:06:49.0550 1480  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
04:06:49.0565 1480  LSI_FC - ok
04:06:49.0565 1480  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
04:06:49.0581 1480  LSI_SAS - ok
04:06:49.0597 1480  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
04:06:49.0612 1480  LSI_SAS2 - ok
04:06:49.0643 1480  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
04:06:49.0659 1480  LSI_SCSI - ok
04:06:49.0659 1480  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
04:06:49.0706 1480  luafv - ok
04:06:49.0753 1480  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
04:06:49.0784 1480  Mcx2Svc - ok
04:06:49.0815 1480  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
04:06:49.0831 1480  megasas - ok
04:06:49.0846 1480  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
04:06:49.0862 1480  MegaSR - ok
04:06:49.0909 1480  Microsoft SharePoint Workspace Audit Service - ok
04:06:49.0955 1480  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
04:06:50.0018 1480  MMCSS - ok
04:06:50.0049 1480  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
04:06:50.0096 1480  Modem - ok
04:06:50.0111 1480  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
04:06:50.0143 1480  monitor - ok
04:06:50.0174 1480  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
04:06:50.0205 1480  mouclass - ok
04:06:50.0236 1480  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
04:06:50.0267 1480  mouhid - ok
04:06:50.0314 1480  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
04:06:50.0330 1480  mountmgr - ok
04:06:50.0392 1480  [ 528A5C2570F468155A1B3CF0A2FF5EBD ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
04:06:50.0408 1480  MozillaMaintenance - ok
04:06:50.0439 1480  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
04:06:50.0470 1480  mpio - ok
04:06:50.0486 1480  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
04:06:50.0517 1480  mpsdrv - ok
04:06:50.0564 1480  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
04:06:50.0626 1480  MpsSvc - ok
04:06:50.0642 1480  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
04:06:50.0673 1480  MRxDAV - ok
04:06:50.0704 1480  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
04:06:50.0720 1480  mrxsmb - ok
04:06:50.0767 1480  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
04:06:50.0798 1480  mrxsmb10 - ok
04:06:50.0813 1480  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
04:06:50.0829 1480  mrxsmb20 - ok
04:06:50.0876 1480  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
04:06:50.0891 1480  msahci - ok
04:06:50.0923 1480  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
04:06:50.0954 1480  msdsm - ok
04:06:50.0969 1480  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
04:06:51.0016 1480  MSDTC - ok
04:06:51.0032 1480  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
04:06:51.0063 1480  Msfs - ok
04:06:51.0110 1480  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
04:06:51.0172 1480  mshidkmdf - ok
04:06:51.0219 1480  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
04:06:51.0235 1480  msisadrv - ok
04:06:51.0250 1480  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
04:06:51.0281 1480  MSiSCSI - ok
04:06:51.0281 1480  msiserver - ok
04:06:51.0297 1480  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
04:06:51.0344 1480  MSKSSRV - ok
04:06:51.0359 1480  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
04:06:51.0406 1480  MSPCLOCK - ok
04:06:51.0422 1480  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
04:06:51.0469 1480  MSPQM - ok
04:06:51.0500 1480  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
04:06:51.0515 1480  MsRPC - ok
04:06:51.0515 1480  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
04:06:51.0531 1480  mssmbios - ok
04:06:51.0547 1480  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
04:06:51.0593 1480  MSTEE - ok
04:06:51.0609 1480  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
04:06:51.0625 1480  MTConfig - ok
04:06:51.0640 1480  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
04:06:51.0656 1480  Mup - ok
04:06:51.0703 1480  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
04:06:51.0796 1480  napagent - ok
04:06:51.0827 1480  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
04:06:51.0859 1480  NativeWifiP - ok
04:06:51.0905 1480  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
04:06:51.0937 1480  NDIS - ok
04:06:51.0952 1480  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
04:06:51.0983 1480  NdisCap - ok
04:06:52.0015 1480  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
04:06:52.0046 1480  NdisTapi - ok
04:06:52.0061 1480  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
04:06:52.0108 1480  Ndisuio - ok
04:06:52.0139 1480  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
04:06:52.0217 1480  NdisWan - ok
04:06:52.0233 1480  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
04:06:52.0264 1480  NDProxy - ok
04:06:52.0280 1480  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
04:06:52.0327 1480  NetBIOS - ok
04:06:52.0358 1480  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
04:06:52.0389 1480  NetBT - ok
04:06:52.0405 1480  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
04:06:52.0436 1480  Netlogon - ok
04:06:52.0467 1480  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
04:06:52.0514 1480  Netman - ok
04:06:52.0545 1480  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
04:06:52.0592 1480  netprofm - ok
04:06:52.0607 1480  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
04:06:52.0623 1480  NetTcpPortSharing - ok
04:06:52.0763 1480  [ 24F64343F14A119308456E1CA7507B26 ] NETw5s64        C:\Windows\system32\DRIVERS\NETw5s64.sys
04:06:52.0951 1480  NETw5s64 - ok
04:06:53.0091 1480  [ D68DE412A3243F8D57DDB814AA509813 ] netw5v64        C:\Windows\system32\DRIVERS\netw5v64.sys
04:06:53.0231 1480  netw5v64 - ok
04:06:53.0263 1480  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
04:06:53.0278 1480  nfrd960 - ok
04:06:53.0294 1480  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
04:06:53.0325 1480  NlaSvc - ok
04:06:53.0356 1480  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
04:06:53.0387 1480  Npfs - ok
04:06:53.0403 1480  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
04:06:53.0450 1480  nsi - ok
04:06:53.0465 1480  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
04:06:53.0497 1480  nsiproxy - ok
04:06:53.0575 1480  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
04:06:53.0637 1480  Ntfs - ok
04:06:53.0637 1480  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
04:06:53.0668 1480  Null - ok
04:06:53.0715 1480  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
04:06:53.0746 1480  nvraid - ok
04:06:53.0762 1480  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
04:06:53.0777 1480  nvstor - ok
04:06:53.0793 1480  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
04:06:53.0809 1480  nv_agp - ok
04:06:53.0840 1480  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
04:06:53.0855 1480  ohci1394 - ok
04:06:53.0902 1480  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
04:06:53.0933 1480  ose - ok
04:06:54.0074 1480  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
04:06:54.0214 1480  osppsvc - ok
04:06:54.0245 1480  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
04:06:54.0277 1480  p2pimsvc - ok
04:06:54.0308 1480  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
04:06:54.0323 1480  p2psvc - ok
04:06:54.0339 1480  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
04:06:54.0355 1480  Parport - ok
04:06:54.0370 1480  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
04:06:54.0386 1480  partmgr - ok
04:06:54.0401 1480  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
04:06:54.0433 1480  PcaSvc - ok
04:06:54.0464 1480  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
04:06:54.0479 1480  pci - ok
04:06:54.0511 1480  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
04:06:54.0526 1480  pciide - ok
04:06:54.0542 1480  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
04:06:54.0557 1480  pcmcia - ok
04:06:54.0589 1480  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
04:06:54.0604 1480  pcw - ok
04:06:54.0620 1480  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
04:06:54.0682 1480  PEAUTH - ok
04:06:54.0760 1480  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
04:06:54.0807 1480  PerfHost - ok
04:06:54.0869 1480  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
04:06:54.0916 1480  pla - ok
04:06:54.0963 1480  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
04:06:54.0994 1480  PlugPlay - ok
04:06:55.0010 1480  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
04:06:55.0041 1480  PNRPAutoReg - ok
04:06:55.0057 1480  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
04:06:55.0072 1480  PNRPsvc - ok
04:06:55.0088 1480  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
04:06:55.0135 1480  PolicyAgent - ok
04:06:55.0166 1480  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
04:06:55.0213 1480  Power - ok
04:06:55.0244 1480  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
04:06:55.0275 1480  PptpMiniport - ok
04:06:55.0306 1480  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
04:06:55.0322 1480  Processor - ok
04:06:55.0353 1480  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
04:06:55.0369 1480  ProfSvc - ok
04:06:55.0369 1480  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
04:06:55.0384 1480  ProtectedStorage - ok
04:06:55.0415 1480  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
04:06:55.0447 1480  Psched - ok
04:06:55.0493 1480  [ A6A7AD767BF5141665F5C675F671B3E1 ] PSI_SVC_2       C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
04:06:55.0509 1480  PSI_SVC_2 - ok
04:06:55.0571 1480  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
04:06:55.0649 1480  ql2300 - ok
04:06:55.0649 1480  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
04:06:55.0665 1480  ql40xx - ok
04:06:55.0696 1480  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
04:06:55.0712 1480  QWAVE - ok
04:06:55.0727 1480  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
04:06:55.0743 1480  QWAVEdrv - ok
04:06:55.0759 1480  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
04:06:55.0790 1480  RasAcd - ok
04:06:55.0821 1480  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
04:06:55.0868 1480  RasAgileVpn - ok
04:06:55.0883 1480  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
04:06:55.0930 1480  RasAuto - ok
04:06:55.0946 1480  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
04:06:55.0993 1480  Rasl2tp - ok
04:06:56.0024 1480  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
04:06:56.0055 1480  RasMan - ok
04:06:56.0071 1480  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
04:06:56.0117 1480  RasPppoe - ok
04:06:56.0133 1480  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
04:06:56.0164 1480  RasSstp - ok
04:06:56.0195 1480  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
04:06:56.0242 1480  rdbss - ok
04:06:56.0273 1480  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
04:06:56.0289 1480  rdpbus - ok
04:06:56.0305 1480  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
04:06:56.0351 1480  RDPCDD - ok
04:06:56.0351 1480  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
04:06:56.0383 1480  RDPENCDD - ok
04:06:56.0398 1480  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
04:06:56.0429 1480  RDPREFMP - ok
04:06:56.0461 1480  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
04:06:56.0507 1480  RDPWD - ok
04:06:56.0539 1480  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
04:06:56.0585 1480  rdyboost - ok
04:06:56.0601 1480  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
04:06:56.0663 1480  RemoteAccess - ok
04:06:56.0695 1480  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
04:06:56.0741 1480  RemoteRegistry - ok
04:06:56.0773 1480  [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
04:06:56.0819 1480  RFCOMM - ok
04:06:56.0835 1480  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
04:06:56.0897 1480  RpcEptMapper - ok
04:06:56.0929 1480  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
04:06:56.0944 1480  RpcLocator - ok
04:06:56.0975 1480  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
04:06:57.0038 1480  RpcSs - ok
04:06:57.0053 1480  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
04:06:57.0100 1480  rspndr - ok
04:06:57.0147 1480  [ A5DF2F732A6C95554E548FCB6932BD31 ] RSUSBSTOR       C:\Windows\system32\Drivers\RtsUStor.sys
04:06:57.0178 1480  RSUSBSTOR - ok
04:06:57.0178 1480  RtsUIR - ok
04:06:57.0194 1480  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
04:06:57.0225 1480  SamSs - ok
04:06:57.0256 1480  [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
04:06:57.0272 1480  SASDIFSV - ok
04:06:57.0303 1480  [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
04:06:57.0319 1480  SASKUTIL - ok
04:06:57.0334 1480  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
04:06:57.0365 1480  sbp2port - ok
04:06:57.0381 1480  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
04:06:57.0428 1480  SCardSvr - ok
04:06:57.0443 1480  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
04:06:57.0490 1480  scfilter - ok
04:06:57.0521 1480  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
04:06:57.0584 1480  Schedule - ok
04:06:57.0599 1480  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
04:06:57.0631 1480  SCPolicySvc - ok
04:06:57.0662 1480  [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus           C:\Windows\system32\drivers\sdbus.sys
04:06:57.0693 1480  sdbus - ok
04:06:57.0724 1480  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
04:06:57.0755 1480  SDRSVC - ok
04:06:57.0802 1480  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
04:06:57.0865 1480  secdrv - ok
04:06:57.0896 1480  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
04:06:57.0927 1480  seclogon - ok
04:06:57.0958 1480  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
04:06:58.0005 1480  SENS - ok
04:06:58.0036 1480  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
04:06:58.0067 1480  SensrSvc - ok
04:06:58.0083 1480  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
04:06:58.0114 1480  Serenum - ok
04:06:58.0145 1480  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
04:06:58.0145 1480  Serial - ok
04:06:58.0192 1480  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
04:06:58.0208 1480  sermouse - ok
04:06:58.0239 1480  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
04:06:58.0270 1480  SessionEnv - ok
04:06:58.0301 1480  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
04:06:58.0317 1480  sffdisk - ok
04:06:58.0333 1480  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
04:06:58.0348 1480  sffp_mmc - ok
04:06:58.0364 1480  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
04:06:58.0395 1480  sffp_sd - ok
04:06:58.0426 1480  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
04:06:58.0457 1480  sfloppy - ok
04:06:58.0504 1480  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
04:06:58.0582 1480  SharedAccess - ok
04:06:58.0629 1480  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
04:06:58.0660 1480  ShellHWDetection - ok
04:06:58.0676 1480  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
04:06:58.0691 1480  SiSRaid2 - ok
04:06:58.0691 1480  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
04:06:58.0707 1480  SiSRaid4 - ok
04:06:58.0738 1480  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
04:06:58.0769 1480  Smb - ok
04:06:58.0816 1480  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
04:06:58.0863 1480  SNMPTRAP - ok
04:06:58.0879 1480  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
04:06:58.0894 1480  spldr - ok
04:06:58.0925 1480  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
04:06:58.0972 1480  Spooler - ok
04:06:59.0050 1480  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
04:06:59.0128 1480  sppsvc - ok
04:06:59.0144 1480  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
04:06:59.0191 1480  sppuinotify - ok
04:06:59.0222 1480  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
04:06:59.0253 1480  srv - ok
04:06:59.0269 1480  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
04:06:59.0300 1480  srv2 - ok
04:06:59.0347 1480  [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA       C:\Windows\system32\DRIVERS\VSTAZL6.SYS
04:06:59.0378 1480  SrvHsfHDA - ok
04:06:59.0409 1480  [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92       C:\Windows\system32\DRIVERS\VSTDPV6.SYS
04:06:59.0456 1480  SrvHsfV92 - ok
04:06:59.0471 1480  [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac     C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
04:06:59.0503 1480  SrvHsfWinac - ok
04:06:59.0534 1480  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
04:06:59.0565 1480  srvnet - ok
04:06:59.0612 1480  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
04:06:59.0643 1480  SSDPSRV - ok
04:06:59.0659 1480  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
04:06:59.0690 1480  SstpSvc - ok
04:06:59.0783 1480  [ 99858C44093760E1DEF3BC2D84F6A122 ] STacSV          C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_8382c07b9969cc97\STacSV64.exe
04:06:59.0846 1480  STacSV - ok
04:06:59.0861 1480  Steam Client Service - ok
04:06:59.0877 1480  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
04:06:59.0908 1480  stexstor - ok
04:06:59.0955 1480  [ 2527E991CE3B164677DED5FB25F8098E ] STHDA           C:\Windows\system32\DRIVERS\stwrt64.sys
04:07:00.0002 1480  STHDA - ok
04:07:00.0033 1480  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
04:07:00.0080 1480  stisvc - ok
04:07:00.0095 1480  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
04:07:00.0111 1480  swenum - ok
04:07:00.0142 1480  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
04:07:00.0205 1480  swprv - ok
04:07:00.0251 1480  [ 5BAC1DF7DBB5E3AADA8AB0AE3C2DCA40 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
04:07:00.0283 1480  SynTP - ok
04:07:00.0314 1480  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
04:07:00.0361 1480  SysMain - ok
04:07:00.0392 1480  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
04:07:00.0407 1480  TabletInputService - ok
04:07:00.0439 1480  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
04:07:00.0485 1480  TapiSrv - ok
04:07:00.0501 1480  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
04:07:00.0532 1480  TBS - ok
04:07:00.0610 1480  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
04:07:00.0688 1480  Tcpip - ok
04:07:00.0751 1480  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
04:07:00.0782 1480  TCPIP6 - ok
04:07:00.0813 1480  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
04:07:00.0829 1480  tcpipreg - ok
04:07:00.0860 1480  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
04:07:00.0953 1480  TDPIPE - ok
04:07:01.0000 1480  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
04:07:01.0031 1480  TDTCP - ok
04:07:01.0063 1480  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
04:07:01.0109 1480  tdx - ok
04:07:01.0156 1480  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
04:07:01.0187 1480  TermDD - ok
04:07:01.0234 1480  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
04:07:01.0281 1480  TermService - ok
04:07:01.0297 1480  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
04:07:01.0328 1480  Themes - ok
04:07:01.0343 1480  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
04:07:01.0375 1480  THREADORDER - ok
04:07:01.0375 1480  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
04:07:01.0421 1480  TrkWks - ok
04:07:01.0484 1480  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
04:07:01.0546 1480  TrustedInstaller - ok
04:07:01.0577 1480  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
04:07:01.0609 1480  tssecsrv - ok
04:07:01.0655 1480  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
04:07:01.0671 1480  TsUsbFlt - ok
04:07:01.0702 1480  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
04:07:01.0749 1480  tunnel - ok
04:07:01.0765 1480  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
04:07:01.0780 1480  uagp35 - ok
04:07:01.0780 1480  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
04:07:01.0827 1480  udfs - ok
04:07:01.0858 1480  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
04:07:01.0874 1480  UI0Detect - ok
04:07:01.0889 1480  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
04:07:01.0905 1480  uliagpkx - ok
04:07:01.0936 1480  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\drivers\umbus.sys
04:07:01.0952 1480  umbus - ok
04:07:01.0983 1480  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
04:07:02.0014 1480  UmPass - ok
04:07:02.0030 1480  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
04:07:02.0077 1480  upnphost - ok
04:07:02.0123 1480  [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
04:07:02.0186 1480  USBAAPL64 - ok
04:07:02.0201 1480  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
04:07:02.0233 1480  usbccgp - ok
04:07:02.0233 1480  USBCCID - ok
04:07:02.0264 1480  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
04:07:02.0279 1480  usbcir - ok
04:07:02.0311 1480  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\drivers\usbehci.sys
04:07:02.0326 1480  usbehci - ok
04:07:02.0342 1480  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
04:07:02.0373 1480  usbhub - ok
04:07:02.0389 1480  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
04:07:02.0404 1480  usbohci - ok
04:07:02.0435 1480  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
04:07:02.0482 1480  usbprint - ok
04:07:02.0498 1480  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
04:07:02.0545 1480  USBSTOR - ok
04:07:02.0576 1480  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
04:07:02.0623 1480  usbuhci - ok
04:07:02.0669 1480  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
04:07:02.0701 1480  usbvideo - ok
04:07:02.0716 1480  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
04:07:02.0763 1480  UxSms - ok
04:07:02.0779 1480  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
04:07:02.0794 1480  VaultSvc - ok
04:07:02.0841 1480  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
04:07:02.0857 1480  vdrvroot - ok
04:07:02.0903 1480  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
04:07:02.0950 1480  vds - ok
04:07:02.0981 1480  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
04:07:02.0997 1480  vga - ok
04:07:03.0013 1480  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
04:07:03.0044 1480  VgaSave - ok
04:07:03.0059 1480  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
04:07:03.0075 1480  vhdmp - ok
04:07:03.0106 1480  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
04:07:03.0122 1480  viaide - ok
04:07:03.0137 1480  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
04:07:03.0153 1480  volmgr - ok
04:07:03.0184 1480  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
04:07:03.0200 1480  volmgrx - ok
04:07:03.0215 1480  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
04:07:03.0231 1480  volsnap - ok
04:07:03.0262 1480  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
04:07:03.0278 1480  vsmraid - ok
04:07:03.0340 1480  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
04:07:03.0371 1480  VSS - ok
04:07:03.0387 1480  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
04:07:03.0418 1480  vwifibus - ok
04:07:03.0449 1480  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
04:07:03.0481 1480  vwififlt - ok
04:07:03.0512 1480  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
04:07:03.0559 1480  W32Time - ok
04:07:03.0590 1480  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
04:07:03.0605 1480  WacomPen - ok
04:07:03.0652 1480  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
04:07:03.0715 1480  WANARP - ok
04:07:03.0761 1480  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
04:07:03.0824 1480  Wanarpv6 - ok
04:07:03.0902 1480  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
04:07:03.0980 1480  WatAdminSvc - ok
04:07:04.0027 1480  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
04:07:04.0089 1480  wbengine - ok
04:07:04.0120 1480  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
04:07:04.0151 1480  WbioSrvc - ok
04:07:04.0183 1480  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
04:07:04.0214 1480  wcncsvc - ok
04:07:04.0229 1480  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
04:07:04.0276 1480  WcsPlugInService - ok
04:07:04.0292 1480  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
04:07:04.0307 1480  Wd - ok
04:07:04.0339 1480  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
04:07:04.0354 1480  Wdf01000 - ok
04:07:04.0370 1480  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
04:07:04.0510 1480  WdiServiceHost - ok
04:07:04.0510 1480  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
04:07:04.0526 1480  WdiSystemHost - ok
04:07:04.0557 1480  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
04:07:04.0588 1480  WebClient - ok
04:07:04.0604 1480  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
04:07:04.0651 1480  Wecsvc - ok
04:07:04.0666 1480  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
04:07:04.0729 1480  wercplsupport - ok
04:07:04.0760 1480  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
04:07:04.0822 1480  WerSvc - ok
04:07:04.0853 1480  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
04:07:04.0900 1480  WfpLwf - ok
04:07:04.0916 1480  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
04:07:04.0931 1480  WIMMount - ok
04:07:04.0947 1480  WinDefend - ok
04:07:04.0978 1480  [ 8258726D076C8FFF994F468712DDFBAB ] WindowBlinds    C:\Program Files (x86)\Stardock\MyColors\VistaSrv.exe
04:07:04.0994 1480  WindowBlinds - ok
04:07:05.0009 1480  WinHttpAutoProxySvc - ok
04:07:05.0056 1480  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
04:07:05.0087 1480  Winmgmt - ok
04:07:05.0150 1480  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
04:07:05.0212 1480  WinRM - ok
04:07:05.0275 1480  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
04:07:05.0306 1480  WinUsb - ok
04:07:05.0353 1480  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
04:07:05.0399 1480  Wlansvc - ok
04:07:05.0524 1480  [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
04:07:05.0618 1480  wlidsvc - ok
04:07:05.0633 1480  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
04:07:05.0649 1480  WmiAcpi - ok
04:07:05.0665 1480  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
04:07:05.0696 1480  wmiApSrv - ok
04:07:05.0711 1480  WMPNetworkSvc - ok
04:07:05.0743 1480  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
04:07:05.0774 1480  WPCSvc - ok
04:07:05.0805 1480  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
04:07:05.0821 1480  WPDBusEnum - ok
04:07:05.0836 1480  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
04:07:05.0867 1480  ws2ifsl - ok
04:07:05.0883 1480  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
04:07:05.0914 1480  wscsvc - ok
04:07:05.0914 1480  WSearch - ok
04:07:05.0992 1480  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
04:07:06.0023 1480  wuauserv - ok
04:07:06.0055 1480  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
04:07:06.0070 1480  WudfPf - ok
04:07:06.0086 1480  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
04:07:06.0101 1480  WUDFRd - ok
04:07:06.0133 1480  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
04:07:06.0164 1480  wudfsvc - ok
04:07:06.0195 1480  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\Windows\System32\wwansvc.dll
04:07:06.0242 1480  WwanSvc - ok
04:07:06.0273 1480  [ 2EE48CFCE7CA8E0DB4C44C7476C0943B ] xusb21          C:\Windows\system32\DRIVERS\xusb21.sys
04:07:06.0320 1480  xusb21 - ok
04:07:06.0367 1480  [ B3EEACF62445E24FBB2CD4B0FB4DB026 ] yukonw7         C:\Windows\system32\DRIVERS\yk62x64.sys
04:07:06.0398 1480  yukonw7 - ok
04:07:06.0429 1480  ================ Scan global ===============================
04:07:06.0445 1480  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
04:07:06.0476 1480  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
04:07:06.0491 1480  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
04:07:06.0507 1480  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
04:07:06.0538 1480  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
04:07:06.0538 1480  [Global] - ok
04:07:06.0538 1480  ================ Scan MBR ==================================
04:07:06.0554 1480  [ DEC51BDDBCDB56FA912C14F3A3445FFD ] \Device\Harddisk0\DR0
04:07:07.0037 1480  \Device\Harddisk0\DR0 - ok
04:07:07.0037 1480  ================ Scan VBR ==================================
04:07:07.0037 1480  [ 83ACB42A1931B7C22A0D3AA1DDBF38C0 ] \Device\Harddisk0\DR0\Partition1
04:07:07.0037 1480  \Device\Harddisk0\DR0\Partition1 - ok
04:07:07.0069 1480  [ 1AF1FA9921269926A1CA793F4A2AF3DC ] \Device\Harddisk0\DR0\Partition2
04:07:07.0069 1480  \Device\Harddisk0\DR0\Partition2 - ok
04:07:07.0100 1480  [ 65B1A89F6D942E55625A6BCF46A2DECF ] \Device\Harddisk0\DR0\Partition3
04:07:07.0100 1480  \Device\Harddisk0\DR0\Partition3 - ok
04:07:07.0115 1480  [ 8C09B847AF9789F1A495A06F0DC4E44F ] \Device\Harddisk0\DR0\Partition4
04:07:07.0115 1480  \Device\Harddisk0\DR0\Partition4 - ok
04:07:07.0115 1480  ============================================================
04:07:07.0115 1480  Scan finished
04:07:07.0115 1480  ============================================================
04:07:07.0131 3092  Detected object count: 2
04:07:07.0131 3092  Actual detected object count: 2
04:09:17.0469 3092  ADVService ( UnsignedFile.Multi.Generic ) - skipped by user
04:09:17.0469 3092  ADVService ( UnsignedFile.Multi.Generic ) - User select action: Skip 
04:09:17.0469 3092  HP Support Assistant Service ( UnsignedFile.Multi.Generic ) - skipped by user
04:09:17.0469 3092  HP Support Assistant Service ( UnsignedFile.Multi.Generic ) - User select action: Skip 
04:14:58.0297 4512  Deinitialize success
 
# AdwCleaner v2.306 - Logfile created 07/22/2013 at 04:19:20
# Updated 19/07/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : DIPSET - DIPSET-PC
# Boot Mode : Normal
# Running from : C:\Users\DIPSET\Desktop\AdwCleaner.exe
# Option [Search]
 
 
***** [Services] *****
 
 
***** [Files / Folders] *****
 
 
***** [Registry] *****
 
 
***** [Internet Browsers] *****
 
-\\ Internet Explorer v10.0.9200.16635
 
[OK] Registry is clean.
 
-\\ Google Chrome v28.0.1500.72
 
File : C:\Users\DIPSET\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
[OK] File is clean.
 
*************************
 
AdwCleaner[R1].txt - [4132 octets] - [21/07/2013 04:37:48]
AdwCleaner[R2].txt - [4192 octets] - [21/07/2013 04:40:00]
AdwCleaner[R3].txt - [970 octets] - [21/07/2013 04:55:09]
AdwCleaner[R4].txt - [840 octets] - [22/07/2013 04:19:20]
AdwCleaner[S1].txt - [4340 octets] - [21/07/2013 04:42:31]
AdwCleaner[S2].txt - [1029 octets] - [21/07/2013 04:55:32]
 
########## EOF - C:\AdwCleaner[R4].txt - [1019 octets] ##########
Farbar Service Scanner Version: 13-07-2013
Ran by DIPSET (administrator) on 22-07-2013 at 04:23:01
Running from "C:\Users\DIPSET\Desktop"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************
 
Internet Services:
============
 
Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.
 
 
Windows Firewall:
=============
 
Firewall Disabled Policy: 
==================
 
 
System Restore:
============
 
System Restore Disabled Policy: 
========================
 
 
Action Center:
============
 
 
Windows Update:
============
 
Windows Autoupdate Disabled Policy: 
============================
 
 
Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.
 
 
Windows Defender Disabled Policy: 
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1
 
 
Other Services:
==============
 
 
File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
 
 
**** End of log ****
MiniToolBox by Farbar  Version: 13-07-2013
Ran by DIPSET (administrator) on 22-07-2013 at 04:24:35
Running from "C:\Users\DIPSET\Desktop"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================
 
 
 
========================= IP Configuration: ================================
 
Intel® WiFi Link 5100 AGN = Wireless Network Connection (Connected)
Atheros AR8131 PCI-E Gigabit Ethernet Controller (NDIS 6.20) = Local Area Connection (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : DIPSET-PC
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Broadcast
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
 
Ethernet adapter Local Area Connection:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Atheros AR8131 PCI-E Gigabit Ethernet Controller (NDIS 6.20)
   Physical Address. . . . . . . . . : 00-26-9E-53-F2-56
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Wireless LAN adapter Wireless Network Connection:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Intel® WiFi Link 5100 AGN
   Physical Address. . . . . . . . . : 00-24-D6-0B-9C-9C
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::5923:a8f3:15bc:7a08%10(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.1.2(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Monday, July 22, 2013 2:57:01 AM
   Lease Expires . . . . . . . . . . : Tuesday, July 23, 2013 2:57:04 AM
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 234889979
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-12-4F-85-FB-00-26-9E-53-F2-56
   DNS Servers . . . . . . . . . . . : 8.8.8.8
                                       8.8.4.4
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Tunnel adapter isatap.{E4C87104-99D6-49B4-8A49-492ECDB91598}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 12:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft 6to4 Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Teredo Tunneling Pseudo-Interface:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:30a8:30e9:9d2f:b798(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::30a8:30e9:9d2f:b798%15(Preferred) 
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled
Server:  google-public-dns-a.google.com
Address:  8.8.8.8
 
Name:    google.com
Addresses:  2607:f8b0:4010:801::1007
 74.125.239.46
 74.125.239.39
 74.125.239.36
 74.125.239.41
 74.125.239.37
 74.125.239.33
 74.125.239.35
 74.125.239.40
 74.125.239.34
 74.125.239.38
 74.125.239.32
 
 
Pinging google.com [74.125.239.46] with 32 bytes of data:
Reply from 74.125.239.46: bytes=32 time=16ms TTL=54
Reply from 74.125.239.46: bytes=32 time=17ms TTL=54
 
Ping statistics for 74.125.239.46:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 16ms, Maximum = 17ms, Average = 16ms
Server:  google-public-dns-a.google.com
Address:  8.8.8.8
 
Name:    yahoo.com
Addresses:  98.139.183.24
 98.138.253.109
 206.190.36.45
 
 
Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=100ms TTL=48
Reply from 98.139.183.24: bytes=32 time=108ms TTL=46
 
Ping statistics for 98.139.183.24:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 100ms, Maximum = 108ms, Average = 104ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 11...00 26 9e 53 f2 56 ......Atheros AR8131 PCI-E Gigabit Ethernet Controller (NDIS 6.20)
 10...00 24 d6 0b 9c 9c ......Intel® WiFi Link 5100 AGN
  1...........................Software Loopback Interface 1
 19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 14...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
 15...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1      192.168.1.2     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link       192.168.1.2    281
      192.168.1.2  255.255.255.255         On-link       192.168.1.2    281
    192.168.1.255  255.255.255.255         On-link       192.168.1.2    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link       192.168.1.2    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link       192.168.1.2    281
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 15     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 15     58 2001::/32                On-link
 15    306 2001:0:4137:9e76:30a8:30e9:9d2f:b798/128
                                    On-link
 10    281 fe80::/64                On-link
 15    306 fe80::/64                On-link
 15    306 fe80::30a8:30e9:9d2f:b798/128
                                    On-link
 10    281 fe80::5923:a8f3:15bc:7a08/128
                                    On-link
  1    306 ff00::/8                 On-link
 15    306 ff00::/8                 On-link
 10    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 09 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 10 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 09 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 10 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (07/22/2013 01:24:13 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.
 
Error: (07/21/2013 04:59:44 PM) (Source: Application Error) (User: )
Description: Faulting application name: ALSMON.exe, version: 1.6.0.0, time stamp: 0x4a667452
Faulting module name: ALSMON.exe, version: 1.6.0.0, time stamp: 0x4a667452
Exception code: 0xc0000005
Fault offset: 0x00000000000014af
Faulting process id: 0xd24
Faulting application start time: 0xALSMON.exe0
Faulting application path: ALSMON.exe1
Faulting module path: ALSMON.exe2
Report Id: ALSMON.exe3
 
Error: (07/21/2013 05:42:49 AM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service is being stopped because there is a problem with the indexer: The catalog is corrupt.
 
 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
 
Error: (07/21/2013 05:42:49 AM) (Source: Windows Search Service) (User: )
Description: The index cannot be initialized.
 
 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
 
Error: (07/21/2013 05:42:49 AM) (Source: Windows Search Service) (User: )
Description: The application cannot be initialized.
 
Context: Windows Application
 
 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
 
Error: (07/21/2013 05:42:49 AM) (Source: Windows Search Service) (User: )
Description: The gatherer object cannot be initialized.
 
Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
 
Error: (07/21/2013 05:42:49 AM) (Source: Windows Search Service) (User: )
Description: The plug-in in <Search.TripoliIndexer> cannot be initialized.
 
Context: Windows Application, SystemIndex Catalog
 
 
Details:
Element not found.  (HRESULT : 0x80070490) (0x80070490)
 
Error: (07/21/2013 05:42:48 AM) (Source: Windows Search Service) (User: )
Description: The plug-in in <Search.JetPropStore> cannot be initialized.
 
Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
 
Error: (07/21/2013 05:42:48 AM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service cannot load the property store information.
 
Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index server cannot update or access information because of a database error.  Stop and restart the search service.  If the problem persists, reset and recrawl the content index.  In some cases it may be necessary to delete and recreate the content index.  (HRESULT : 0x8004117f) (0x8004117f)
 
Error: (07/21/2013 05:42:48 AM) (Source: Windows Search Service) (User: )
Description: The search service has detected corrupted data files in the index {id=1100}. The service will attempt to automatically correct this problem by rebuilding the index.
 
 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
 
 
System errors:
=============
Error: (07/22/2013 02:57:23 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load: 
cdrom
 
Error: (07/22/2013 02:51:27 AM) (Source: DCOM) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}
 
Error: (07/22/2013 02:51:25 AM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for FailureActions with the following error: 
%%5
 
Error: (07/21/2013 06:44:50 PM) (Source: Microsoft-Windows-HAL) (User: )
Description: The platform firmware has corrupted memory across the previous system power transition.  Please check for updated firmware for your system.
 
Error: (07/21/2013 04:59:47 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load: 
cdrom
 
Error: (07/21/2013 04:53:56 PM) (Source: Service Control Manager) (User: )
Description: The AVGIDSAgent service terminated with service-specific error %%-536753630.
 
Error: (07/21/2013 04:53:55 PM) (Source: Service Control Manager) (User: )
Description: The AVGIDSAgent service terminated with service-specific error %%-536753630.
 
Error: (07/21/2013 04:53:54 PM) (Source: Service Control Manager) (User: )
Description: The AVGIDSAgent service terminated with service-specific error %%-536753630.
 
Error: (07/21/2013 04:53:53 PM) (Source: Service Control Manager) (User: )
Description: The AVGIDSAgent service terminated with service-specific error %%-536753630.
 
Error: (07/21/2013 04:53:52 PM) (Source: Service Control Manager) (User: )
Description: The AVGIDSAgent service terminated with service-specific error %%-536753630.
 
 
Microsoft Office Sessions:
=========================
Error: (07/22/2013 01:24:13 AM) (Source: SideBySide)(User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3
 
Error: (07/21/2013 04:59:44 PM) (Source: Application Error)(User: )
Description: ALSMON.exe1.6.0.04a667452ALSMON.exe1.6.0.04a667452c000000500000000000014afd2401ce866e522d6190C:\Program Files (x86)\LightSensorApp\ALSMON.exeC:\Program Files (x86)\LightSensorApp\ALSMON.exe9cf8a213-f261-11e2-8e15-00269e53f256
 
Error: (07/21/2013 05:42:49 AM) (Source: Windows Search Service)(User: )
Description: 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
The catalog is corrupt
 
Error: (07/21/2013 05:42:49 AM) (Source: Windows Search Service)(User: )
Description: 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
 
Error: (07/21/2013 05:42:49 AM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application
 
 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
 
Error: (07/21/2013 05:42:49 AM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
 
Error: (07/21/2013 05:42:49 AM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog
 
 
Details:
Element not found.  (HRESULT : 0x80070490) (0x80070490)
Search.TripoliIndexer
 
Error: (07/21/2013 05:42:48 AM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
Search.JetPropStore
 
Error: (07/21/2013 05:42:48 AM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index server cannot update or access information because of a database error.  Stop and restart the search service.  If the problem persists, reset and recrawl the content index.  In some cases it may be necessary to delete and recreate the content index.  (HRESULT : 0x8004117f) (0x8004117f)
 
Error: (07/21/2013 05:42:48 AM) (Source: Windows Search Service)(User: )
Description: 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
1100
 
 
=========================== Installed Programs ============================
 
Acrobat.com (Version: 1.6.65)
Adobe AIR (Version: 1.5.0.7220)
Adobe Flash Player 11 ActiveX (Version: 11.7.700.224)
Adobe Flash Player 11 Plugin (Version: 11.7.700.224)
Adobe Reader X (10.1.7) (Version: 10.1.7)
Amazon MP3 Downloader 1.0.17 (Version: 1.0.17)
Amazon Unbox Video (Version: 2.1.0.124)
Apple Application Support (Version: 2.3.4)
Apple Mobile Device Support (Version: 6.1.0.13)
Apple Software Update (Version: 2.1.3.127)
Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver (Version: 1.0.0.7)
ATI Catalyst Install Manager (Version: 3.0.732.0)
AVG 2013 (Version: 13.0.3204)
AVG 2013 (Version: 13.0.3349)
AVG 2013 (Version: 2013.0.3349)
Bing Bar (Version: 7.0.822.0)
Bonjour (Version: 3.0.0.10)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Core Implementation (Version: 2009.0702.1239.20840)
Catalyst Control Center Graphics Full Existing (Version: 2009.0702.1239.20840)
Catalyst Control Center Graphics Full New (Version: 2009.0702.1239.20840)
Catalyst Control Center Graphics Light (Version: 2009.0702.1239.20840)
Catalyst Control Center Graphics Previews Common (Version: 2009.0702.1239.20840)
Catalyst Control Center Graphics Previews Vista (Version: 2009.0702.1239.20840)
Catalyst Control Center InstallProxy (Version: 2009.0702.1239.20840)
Catalyst Control Center Localization All (Version: 2009.0702.1239.20840)
CCC Help Chinese Standard (Version: 2009.0702.1238.20840)
CCC Help Chinese Traditional (Version: 2009.0702.1238.20840)
CCC Help Czech (Version: 2009.0702.1238.20840)
CCC Help Danish (Version: 2009.0702.1238.20840)
CCC Help Dutch (Version: 2009.0702.1238.20840)
CCC Help English (Version: 2009.0702.1238.20840)
CCC Help Finnish (Version: 2009.0702.1238.20840)
CCC Help French (Version: 2009.0702.1238.20840)
CCC Help German (Version: 2009.0702.1238.20840)
CCC Help Greek (Version: 2009.0702.1238.20840)
CCC Help Hungarian (Version: 2009.0702.1238.20840)
CCC Help Italian (Version: 2009.0702.1238.20840)
CCC Help Japanese (Version: 2009.0702.1238.20840)
CCC Help Korean (Version: 2009.0702.1238.20840)
CCC Help Norwegian (Version: 2009.0702.1238.20840)
CCC Help Polish (Version: 2009.0702.1238.20840)
CCC Help Portuguese (Version: 2009.0702.1238.20840)
CCC Help Russian (Version: 2009.0702.1238.20840)
CCC Help Spanish (Version: 2009.0702.1238.20840)
CCC Help Swedish (Version: 2009.0702.1238.20840)
CCC Help Thai (Version: 2009.0702.1238.20840)
CCC Help Turkish (Version: 2009.0702.1238.20840)
ccc-core-static (Version: 2009.0702.1239.20840)
ccc-utility64 (Version: 2009.0702.1239.20840)
CCleaner (Version: 4.03)
Corel Paint Shop Pro Photo X2 (Version: 12.50.0001)
Corel VideoStudio 12 (Version: 12.0.0.0000)
CyberLink DVD Suite (Version: 6.0.3101)
D3DX10 (Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
ENVY IOS Installer (Version: 1.1.27.0)
Google Chrome (Version: 28.0.1500.72)
gretl version 1.9.12 (Version: 1.9.12)
Hewlett-Packard ACLM.NET v1.2.1.1 (Version: 1.00.0000)
HP 3D DriveGuard (Version: 4.0.3.1)
HP Customer Experience Enhancements (Version: 6.0.1.7)
HP Envy Document Card Utilities (Version: 1.0.3)
HP Integrated Module with Bluetooth wireless technology (Version: 6.2.0.9600)
HP MediaSmart DVD (Version: 3.0.3123)
HP MediaSmart Internet TV (Version: 3.0.1916)
HP MediaSmart Live TV (Version: 3.0.1924)
HP MediaSmart Movie Themes (Version: 3.0.3102)
HP MediaSmart Music/Photo/Video (Version: 3.0.3123)
HP MediaSmart SlingPlayer (Version: 2.1.1.60)
HP MediaSmart SmartMenu (Version: 3.0.30.1)
HP MediaSmart Webcam (Version: 3.0.1913)
HP Quick Launch Buttons (Version: 6.50.17.1)
HP Setup (Version: 1.2.3220.3079)
HP Smart Web Printing 4.60 (Version: 4.60)
HP Support Assistant (Version: 7.0.39.15)
HP Update (Version: 5.001.000.014)
HP User Guides 0149 (Version: 1.01.0001)
HP Webcam ALSMON application Installer Package Ver.1.6.0.0 (Version: 1.6.0.0)
HP Wireless Assistant (Version: 3.50.11.2)
IDT Audio (Version: 1.0.6232.0)
Intel Digital Logo (Version: 1.0.5)
Intel® Rapid Storage Technology (Version: 9.5.4.1001)
Intel® Turbo Boost Technology Driver (Version: 01.02.00.1002)
iTunes (Version: 11.0.4.4)
Java 7 Update 25 (Version: 7.0.250)
Java Auto Updater (Version: 2.1.9.5)
Java™ 6 Update 13 (64-bit) (Version: 6.0.130)
Java™ 6 Update 39 (Version: 6.0.390)
JavaFX 2.1.1 (Version: 2.1.1)
Junk Mail filter update (Version: 15.4.3502.0922)
Left 4 Dead 2 Demo
LogonStudio (Version: 1.51.12)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Live Search Toolbar (Version: 3.0.560.0)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Mozilla Firefox 22.0 (x86 en-US) (Version: 22.0)
Mozilla Maintenance Service (Version: 22.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Power2Go (Version: 6.0.3101)
PowerRecover (Version: 5.5.1923)
QLBCASL (Version: 6.40.17.2)
QuickTime (Version: 7.74.80.86)
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
RealPlayer
Realtek USB 2.0 Card Reader (Version: 6.1.7100.30094)
RealUpgrade 1.1 (Version: 1.1.0)
Revo Uninstaller 1.95 (Version: 1.95)
SlingBoxWatchYourTVAnyWhere (Version: 2.1.1.58)
SmartWebPrinting (Version: 140.0.186.000)
Spybot - Search & Destroy (Version: 1.6.2)
Stardock MyColors (Version: 2.7)
Steam (Version: 1.0.0.0)
SUPERAntiSpyware (Version: 5.6.1020)
Synaptics Pointing Device Driver (Version: 14.0.9.5)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553092)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687503) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
Update for Microsoft Office 2010 (KB2767886) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2597090) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2598240) 32-Bit Edition
Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition
VideoStudio (Version: 12.0.0.0000)
Visual C++ 8.0 Runtime Setup Package (x64) (Version: 9.0.0.623)
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3502.0922)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3502.0922)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3502.0922)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Media Encoder 9 Series
Windows Media Encoder 9 Series (Version: 9.00.2980)
Yahoo! Detect
 
========================= Devices: ================================
 
Name: Intel® Turbo Boost Technology Driver
Description: Intel® Turbo Boost Technology Driver
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: Impcd
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
 
Name: HP Integrated Module with Bluetooth 2.1 Wireless Technology
Description: HP Integrated Module with Bluetooth 2.1 Wireless Technology
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: Broadcom
Service: BTHUSB
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
 
========================= Memory info: ===================================
 
Percentage of memory in use: 32%
Total physical RAM: 6134.87 MB
Available physical RAM: 4118.61 MB
Total Pagefile: 12267.93 MB
Available Pagefile: 9941.55 MB
Total Virtual: 4095.88 MB
Available Virtual: 3958.32 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:453.68 GB) (Free:364.36 GB) NTFS
2 Drive d: (RECOVERY) (Fixed) (Total:11.78 GB) (Free:1.99 GB) NTFS
3 Drive e: (HP_TOOLS) (Fixed) (Total:0.1 GB) (Free:0.09 GB) FAT32
 
========================= Users: ========================================
 
User accounts for \\DIPSET-PC
 
Administrator            DIPSET                   Guest                    
 
========================= Minidump Files ==================================
 
No minidump file found
 
========================= Restore Points ==================================
 
12-07-2013 21:02:43 Windows Update
20-07-2013 05:29:55 Scheduled Checkpoint
20-07-2013 06:39:17 HPSF Restore Point
20-07-2013 09:56:05 Restore Operation
20-07-2013 10:19:48 Removed Respondus LockDown Browser
21-07-2013 09:07:11 Revo Uninstaller's restore point - AVG Security Toolbar
21-07-2013 23:50:00 Installed AVG 2013
21-07-2013 23:50:41 Installed AVG 2013
22-07-2013 09:50:59 Windows Update
 
**** End of log ****


#4 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:01:26 AM

Posted 22 July 2013 - 07:20 AM

Hi

Please do the following next:

:step1:

  • Launch Malwarebytes' Anti-Malware (MBAM)
  • Click on the tab update, then click Check for Updates
  • If an update is found, it will download and install the latest version.
  • Then on the Scanner tab select Perform full scan, then click Scan.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Be sure that everything is checked, and click Remove Selected.
  • When completed, a log will open in Notepad.
  • Post the log in your next reply.


Note: Be sure to restart the computer.

The log can also be found here:
C:\Users\<Username>\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt


:step2:

I'd like us to scan your machine with ESET Online Scanner:

Note: You can use either Internet Explorer or Mozilla FireFox for this scan. You will however need to disable your current installed Anti-Virus, how to do so can be read here.

Note: Vista/Windows 7 users: You will need to to right-click on the either the IE or FF icon in the Start Menu or Quick Launch Bar on the Taskbar and select Run as Administrator from the context menu.

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png  button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the esetsmartinstaller_enu.png
       icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • On ESET: Click the Back button, then the Finish button.

Note: Do not forget to re-enable your Anti-Virus application after running the above scan!


:step3:

  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Delete.
  • Confirm each time with Ok.
  • You will be prompted to restart your computer. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.



:step4:

How is the computer running now?


Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#5 Sometimes19

Sometimes19
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:26 PM

Posted 22 July 2013 - 04:23 PM

Step 1: 

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
 
Database version: v2013.07.22.04
 
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16635
DIPSET :: DIPSET-PC [administrator]
 
7/22/2013 5:27:28 AM
mbam-log-2013-07-22 (05-27-28).txt
 
Scan type: Full scan (C:\|D:\|E:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 434036
Time elapsed: 1 hour(s), 2 minute(s), 42 second(s)
 
Memory Processes Detected: 0
(No malicious items detected)
 
Memory Modules Detected: 0
(No malicious items detected)
 
Registry Keys Detected: 0
(No malicious items detected)
 
Registry Values Detected: 0
(No malicious items detected)
 
Registry Data Items Detected: 0
(No malicious items detected)
 
Folders Detected: 0
(No malicious items detected)
 
Files Detected: 0
(No malicious items detected)
 
(end)

 

Step 2:

C:\Users\DIPSET\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.40\agent\stub_data\stubinst_pkg_en-us.cab Win32/OpenCandy application deleted - quarantined

 

Step 3:

# AdwCleaner v2.306 - Logfile created 07/22/2013 at 14:10:45

# Updated 19/07/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : DIPSET - DIPSET-PC
# Boot Mode : Normal
# Running from : C:\Users\DIPSET\Desktop\AdwCleaner.exe
# Option [Delete]
 
 
***** [Services] *****
 
 
***** [Files / Folders] *****
 
 
***** [Registry] *****
 
 
***** [Internet Browsers] *****
 
-\\ Internet Explorer v10.0.9200.16635
 
[OK] Registry is clean.
 
-\\ Google Chrome v28.0.1500.72
 
File : C:\Users\DIPSET\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
[OK] File is clean.
 
*************************
 
AdwCleaner[R1].txt - [4132 octets] - [21/07/2013 04:37:48]
AdwCleaner[R2].txt - [4192 octets] - [21/07/2013 04:40:00]
AdwCleaner[R3].txt - [970 octets] - [21/07/2013 04:55:09]
AdwCleaner[R4].txt - [1088 octets] - [22/07/2013 04:19:20]
AdwCleaner[S1].txt - [4340 octets] - [21/07/2013 04:42:31]
AdwCleaner[S2].txt - [1029 octets] - [21/07/2013 04:55:32]
AdwCleaner[S3].txt - [1020 octets] - [22/07/2013 14:10:45]
 
########## EOF - C:\AdwCleaner[S3].txt - [1080 octets] ##########
 

Step 4:  The computer is running good. I appreciate your help. 



#6 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:01:26 AM

Posted 22 July 2013 - 04:52 PM

Hi

Please do the following next:

:step1:

Important Note: Your version of Adobe Reader is outdated.

Older versions have vulnerabilities that malicious sites can use to exploit and infect your system.

Please follow these steps to remove older version Adobe components and update:

  • Download the latest version of Adobe Reader. and save it to your desktop.
  • Uncheck the "Free McAfee Security plan Plus" option or any other Toolbar you are offered.
  • Click the download button at the bottom.
  • If you use Internet Explorer and do not wish to install the ActiveX element, simply click on the click here to download link on the next page.
  • Remove all older version of Adobe Reader: Go to Add/remove and uninstall all versions of Adobe Reader, Acrobat Reader and Adobe Acrobat.
    If you are unsure of how to use Add or Remove Programs (or Programs and Features), the please see this tutorial:How To Remove An Installed Program From Your Computer
  • Then from your desktop double-click on Adobe Reader to install the newest version.
    If using Windows Vista and the installer refuses to launch due to insufficient user permissions, then Run As Administrator.
  • When the "Adobe Setup - Welcome" window opens, click the Install > button.
  • If offered to install a Toolbar, just uncheck the box before continuing unless you want it.


Your Adobe Reader is now up to date!


:step2:

Important Note: Your version of Adobe Flash is out of date.

Older versions have vulnerabilities that malicious sites can use to exploit and infect your system.



Uninstall Adobe Flash


  • Open Programs and Features or Add and Remove Programs by clicking the Start / Windows "Orb" button, clicking Control Panel, clicking Programs, and then clicking Programs and Features or Add and Remove Programs.                
  • Select any program with Adobe Flash in the name, and then click Uninstall.
  • Repeat step 2 until no more programs containing Adobe Flash are visible.

Note: Some programs include the option to change or repair the program in  addition to uninstalling it. but many simply offer the option to  uninstall. To change a program, click
Change or Repair. If you are prompted for an administrator password or confirmation, type the password or provide confirmation.

Please follow these steps to Install the latest Adobe flash player:




:step3:
Important Note: Your version of Java is out of date. Older versions have vulnerabilities that malicious sites can use to exploit and infect your system.




Please follow these steps to remove older version Java components and update:
 

  • Download the latest version of Java Runtime Environment (JRE) Version 25 and save it to your desktop.
  • Look for "Java Platform, Standard Edition".
  • Click the "Download JRE" button to the right.
  • Read the License Agreement, and then check the box that says: "Accept License Agreement".
  • From the list, select your OS and Platform (32-bit or 64-bit).
    64-bit OS users, should read: Which Java download should I choose for my 64-bit Windows operating system?
  • If a download for an Offline Installation is available, it is recommended to choose that and save the file to your desktop.
  • Close any programs you may have running - especially your web browser.

Go to StartBtn.gif > Control Panel, double-click on Add/Remove Programs or Programs and Features in Vista/Windows 7 and remove all older versions of Java.

  • Check (highlight) any item with Java Runtime Environment (JRE or J2SE) in the name.
  • Click the Remove or Change/Remove button and follow the onscreen instructions for the Java uninstaller.
  • Repeat as many times as necessary to remove each Java versions.
  • Reboot your computer once all Java components are removed.
  • Then from your desktop double-click on jre-7u25-windows-i586.exe (or jre-7u25-windows-x64.exe for 64-bit) to install the newest version.
  • If using Windows 7 or Vista and the installer refuses to launch due to insufficient user permissions, then Run As Administrator.
  • When the Java Setup - Welcome window opens, click the Install > button.
  • If offered any unwanted software or toolbars during installation, just uncheck the box before continuing unless you want it.
  • The McAfee Security Scan Plus tool is installed by default unless you uncheck the McAfee installation box when updating Java.

Note: The Java Quick Starter (JQS.exe) adds a service to improve the initial startup time of Java applets and applications but it's not necessary.
To disable the JQS service if you don't want to use it:


  • Go to Start > Control Panel > Java > Advanced > Miscellaneous and uncheck the box for Java Quick Starter.
  • Click Ok and reboot your computer.


:step4:

Let me know once you have done these.

 

 


Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#7 Sometimes19

Sometimes19
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:26 PM

Posted 22 July 2013 - 06:25 PM

Hi, 

 

I have completed all the steps you have given me. 



#8 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:01:26 AM

Posted 23 July 2013 - 12:52 AM

FINAL STEPS

If you are not experiencing any other malware related issues, it is time to do our final steps:

  • Any programs that we had you download and/or install can be removed at this time.
  • If you used DeFogger to disable your Disk Emulation Software, you can reopen DeFogger and use the "Enable" button.
  • You can download this tool to delete more traces of our tools. Delete the tool itself afterwards.
  • Toggle System Restore OFF and then back ON.
  • You should delete your our old, potentially infected System Restore points and create a new, clean restore point.
    • If you are using Windows XP, read and follow the steps on "How to turn off or turn on System Restore" from this link
    • If you are using Windows Vista, read and follow the steps on "How do I turn System Restore on and off?" proceeded by "How do I create a restore point manually?" from this link.
    • If you are using Windows 7, read and follow the steps on "To delete all restore points" from this link proceeded by "Create a restore point" from this link.
    • If you are using Windows 8, read and follow the steps on "Disabling System Restore" from this link proceeded by "Manually Creating Restore Points" from this link.
  • Recommended reading material to protect your computer from infection in the future:

    Be safe  :hello:


Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#9 Sometimes19

Sometimes19
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:26 PM

Posted 23 July 2013 - 01:54 AM

Thank you for everything you have done. 






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users