Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Google search links to blank pages


  • Please log in to reply
19 replies to this topic

#1 Romaray

Romaray

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:41 PM

Posted 28 August 2013 - 06:23 PM

Windows Vista SP2 running on a Dell Inspiron 1545.

Google searches in browsers (FF, IE, Chrome) return links that direct to blank pages. I pinged www.google.com and got 167.206.252.172, which is registered to Cablevision Systems Corp., my ISP. I ping google.com and got a legit google ip, 173.194.43.1. The problem seems to have started after I downloaded a java app that claims, "With Fling, one can stream locally-stored video from a computer to your Chromecast" at this link: http://phandroid.com/2013/08/21/cast-any-video-from-your-computer-to-your-chromecast-with-fling/

 

Don't know if there's a causal relationship there, but there is a relation in time. Anyway, I ran Malwarebytes, got 8 PUPs, removed them, ran it again, had two remaining, ran it third time, zero problems found. Ran Supantispyware, cleaned everything, reported no problems. Checked my HOST file, only one entry, 127.0.0.1, local host. Also, flushed DNS, tested META Refresh successfully, restored Winsock, all to no avail. Any help much appreciated. I also ran tdsskiller, no luck there.

 

Ray


Edited by hamluis, 29 August 2013 - 10:52 AM.
Moved from Malware Removal Logs to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:04:41 PM

Posted 31 August 2013 - 03:45 PM

Hello,

I will be helping you with your problems. Please be patient while I assist you.

Some points for you to keep in mind while I am helping you to make things go easier and faster for both of us
 

  • Please do NOT run, install or uninstall any programs,  unless instructed to do so.
    We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
  • Please do not attach logs or use code boxes, just copy and paste the text.
    Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
  • Please read every post completely before doing anything.
    Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.
  • Please provide feedback about your experience as we go.
    A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.


NOTE: At the top of your post, click on the Watch Topic Button, select Immediate Notification, and click on Proceed. This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.

NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of heartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.
- Do NOT backup any unknown files ending in .exe, .com, .scr, .pif, and .bat since files of these types are more likely to be infected.

NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.

----------------------------------------------

Please do the following:

step1.gif

Please download the TDSS Rootkit Removing Tool (TDSSKiller.exe) and save it to your Desktop. <-Important!!!


  • Double-click on TDSSKiller.exe on your desktop to run the tool for known TDSS variants.
    Vista/Windows 7 users right-click and select Run As Administrator.
  • If TDSSKiller does not run, try renaming it.
  • To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to How to change the file extension.
  • Click on change parameters
  • Under Objects to scan, check the boxes next to Verify file digital signatures, Detect TDLFS file system, then click OK.
  • Click the Start Scan button.
  • Do not use the computer during the scan
  • If the scan completes with nothing found, click Close to exit.
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Note: If Cure is not an option, Skip instead, do NOT choose Delete or Quarantine unless instructed.
  • A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.2.4.0.0_27.07.2010_09.o7.26_log.txt) will be created and saved to the root directory (usually Local Disk C:).
  • Copy and paste the full contents of that file in your next reply. - If the log is too long, then split it into multiple posts.



step2.gif

Please download AdwCleaner by Xplode onto your desktop.


  • Double click on AdwCleaner.exe to run the tool.
  • Click on Search.
  • A logfile will automatically open after the scan has finished.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[R1].txt as well.



step3.gif

Please download Farbar Service Scanner and run it on the computer with the issue.


  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press Scan.
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the full contents of the log in your next reply.



step4.gif

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:


  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices (Only Problems)
  • List Users, Partitions and Memory size.
  • List Minidump Files
  • List Restore points

NOTE: When using "Reset FF Proxy Settings" option Firefox should be closed.

Click Go and post the full contents of the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.


Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#3 Romaray

Romaray
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:41 PM

Posted 02 September 2013 - 03:39 PM

Thanks for the reply and instructions. The Google searches still result in links to blank pages. Here are the requested files:
16:14:55.0106 0x1244 TDSS rootkit removing tool 2.9.2.0 Aug 15 2013 16:44:29
16:14:55.0434 0x1244 ============================================================
16:14:55.0434 0x1244 Current date / time: 2013/09/02 16:14:55.0434
16:14:55.0434 0x1244 SystemInfo:
16:14:55.0434 0x1244
16:14:55.0435 0x1244 OS Version: 6.0.6002 ServicePack: 2.0
16:14:55.0435 0x1244 Product type: Workstation
16:14:55.0435 0x1244 ComputerName: PROTON
16:14:55.0435 0x1244 UserName: Ray
16:14:55.0435 0x1244 Windows directory: C:\Windows
16:14:55.0435 0x1244 System windows directory: C:\Windows
16:14:55.0435 0x1244 Running under WOW64
16:14:55.0435 0x1244 Processor architecture: Intel x64
16:14:55.0435 0x1244 Number of processors: 2
16:14:55.0435 0x1244 Page size: 0x1000
16:14:55.0435 0x1244 Boot type: Normal boot
16:14:55.0435 0x1244 ============================================================
16:14:56.0078 0x1244 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:14:56.0085 0x1244 ============================================================
16:14:56.0085 0x1244 \Device\Harddisk0\DR0:
16:14:56.0085 0x1244 MBR partitions:
16:14:56.0085 0x1244 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1D4C000
16:14:56.0086 0x1244 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D60000, BlocksNum 0x236CE2B0
16:14:56.0086 0x1244 ============================================================
16:14:56.0129 0x1244 C: \Device\Harddisk0\DR0\Partition2
16:14:56.0168 0x1244 E: \Device\Harddisk0\DR0\Partition1
16:14:56.0169 0x1244 ============================================================
16:14:56.0169 0x1244 Initialize success
16:14:56.0169 0x1244 ============================================================
16:15:09.0429 0x1244 ============================================================
16:15:09.0429 0x1244 Scan started
16:15:09.0429 0x1244 Mode: Manual; SigCheck; TDLFS;
16:15:09.0429 0x1244 ============================================================
16:15:09.0687 0x1244 ================ Scan system memory ========================
16:15:09.0687 0x1244 System memory - ok
16:15:09.0688 0x1244 ================ Scan services =============================
16:15:09.0787 0x1244 [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
16:15:09.0896 0x1244 !SASCORE ( UnsignedFile.Multi.Generic ) - warning
16:15:09.0897 0x1244 !SASCORE - detected UnsignedFile.Multi.Generic (1)
16:15:10.0049 0x1244 [ 1965AAFFAB07E3FB03C77F81BEBA3547 ] ACPI C:\Windows\system32\drivers\acpi.sys
16:15:10.0071 0x1244 ACPI - ok
16:15:10.0215 0x1244 [ 476BB014F3F68C0C15EDDD5B444DA8FF ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:15:10.0236 0x1244 AdobeFlashPlayerUpdateSvc - ok
16:15:10.0302 0x1244 [ F14215E37CF124104575073F782111D2 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
16:15:10.0331 0x1244 adp94xx - ok
16:15:10.0370 0x1244 [ 7D05A75E3066861A6610F7EE04FF085C ] adpahci C:\Windows\system32\drivers\adpahci.sys
16:15:10.0395 0x1244 adpahci - ok
16:15:10.0413 0x1244 [ 820A201FE08A0C345B3BEDBC30E1A77C ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
16:15:10.0434 0x1244 adpu160m - ok
16:15:10.0457 0x1244 [ 9B4AB6854559DC168FBB4C24FC52E794 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
16:15:10.0479 0x1244 adpu320 - ok
16:15:10.0522 0x1244 [ 0F421175574BFE0BF2F4D8E910A253BB ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
16:15:10.0572 0x1244 AeLookupSvc - ok
16:15:10.0682 0x1244 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_15f4e438\AESTSr64.exe
16:15:10.0711 0x1244 AESTFilters - ok
16:15:10.0769 0x1244 [ C4F6CE6087760AD70960C9EB130E7943 ] AFD C:\Windows\system32\drivers\afd.sys
16:15:10.0810 0x1244 AFD - ok
16:15:10.0852 0x1244 [ F6F6793B7F17B550ECFDBD3B229173F7 ] agp440 C:\Windows\system32\drivers\agp440.sys
16:15:10.0877 0x1244 agp440 - ok
16:15:10.0901 0x1244 [ 222CB641B4B8A1D1126F8033F9FD6A00 ] aic78xx C:\Windows\system32\drivers\djsvs.sys
16:15:10.0927 0x1244 aic78xx - ok
16:15:10.0945 0x1244 [ 5922F4F59B7868F3D74BBBBEB7B825A3 ] ALG C:\Windows\System32\alg.exe
16:15:10.0995 0x1244 ALG - ok
16:15:11.0021 0x1244 [ 9544C2C55541C0C6BFD7B489D0E7D430 ] aliide C:\Windows\system32\drivers\aliide.sys
16:15:11.0035 0x1244 aliide - ok
16:15:11.0046 0x1244 [ 970FA5059E61E30D25307B99903E991E ] amdide C:\Windows\system32\drivers\amdide.sys
16:15:11.0060 0x1244 amdide - ok
16:15:11.0097 0x1244 [ CDC3632A3A5EA4DBB83E46076A3165A1 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
16:15:11.0137 0x1244 AmdK8 - ok
16:15:11.0164 0x1244 [ 1412E9A88FE1F7E35CE6058A2EF03664 ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
16:15:11.0188 0x1244 ApfiltrService - ok
16:15:11.0238 0x1244 [ 9C37B3FD5615477CB9A0CD116CF43F5C ] Appinfo C:\Windows\System32\appinfo.dll
16:15:11.0257 0x1244 Appinfo - ok
16:15:11.0347 0x1244 [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:15:11.0363 0x1244 Apple Mobile Device - ok
16:15:11.0417 0x1244 [ BA8417D4765F3988FF921F30F630E303 ] arc C:\Windows\system32\drivers\arc.sys
16:15:11.0436 0x1244 arc - ok
16:15:11.0475 0x1244 [ 9D41C435619733B34CC16A511E644B11 ] arcsas C:\Windows\system32\drivers\arcsas.sys
16:15:11.0494 0x1244 arcsas - ok
16:15:11.0520 0x1244 [ 22D13FF3DAFEC2A80634752B1EAA2DE6 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
16:15:11.0567 0x1244 AsyncMac - ok
16:15:11.0584 0x1244 [ F988BB0690CD660318037908E9B8DBF7 ] atapi C:\Windows\system32\drivers\atapi.sys
16:15:11.0599 0x1244 atapi - ok
16:15:11.0659 0x1244 [ 79318C744693EC983D20E9337A2F8196 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:15:11.0701 0x1244 AudioEndpointBuilder - ok
16:15:11.0711 0x1244 [ 79318C744693EC983D20E9337A2F8196 ] AudioSrv C:\Windows\System32\Audiosrv.dll
16:15:11.0832 0x1244 AudioSrv - ok
16:15:11.0906 0x1244 [ A7C9995BA861FCE78B2CEAAE61D39FD7 ] BCM42RLY C:\Windows\system32\drivers\BCM42RLY.sys
16:15:11.0918 0x1244 BCM42RLY - ok
16:15:12.0002 0x1244 [ D32F962B71FEE6BDAAEE630BB2C17280 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
16:15:12.0048 0x1244 BCM43XX - ok
16:15:12.0122 0x1244 Beep - ok
16:15:12.0176 0x1244 [ FFB96C2589FFA60473EAD78B39FBDE29 ] BFE C:\Windows\System32\bfe.dll
16:15:12.0223 0x1244 BFE - ok
16:15:12.0298 0x1244 [ 6D316F4859634071CC25C4FD4589AD2C ] BITS C:\Windows\system32\qmgr.dll
16:15:12.0423 0x1244 BITS - ok
16:15:12.0462 0x1244 [ 79FEEB40056683F8F61398D81DDA65D2 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
16:15:12.0501 0x1244 blbdrive - ok
16:15:12.0591 0x1244 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:15:12.0610 0x1244 Bonjour Service - ok
16:15:12.0647 0x1244 [ 2348447A80920B2493A9B582A23E81E1 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
16:15:12.0666 0x1244 bowser - ok
16:15:12.0700 0x1244 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
16:15:12.0736 0x1244 BrFiltLo - ok
16:15:12.0750 0x1244 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
16:15:12.0786 0x1244 BrFiltUp - ok
16:15:12.0810 0x1244 [ A1B39DE453433B115B4EA69EE0343816 ] Browser C:\Windows\System32\browser.dll
16:15:12.0858 0x1244 Browser - ok
16:15:12.0875 0x1244 [ F0F0BA4D815BE446AA6A4583CA3BCA9B ] Brserid C:\Windows\system32\drivers\brserid.sys
16:15:12.0934 0x1244 Brserid - ok
16:15:12.0954 0x1244 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
16:15:13.0012 0x1244 BrSerWdm - ok
16:15:13.0035 0x1244 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
16:15:13.0110 0x1244 BrUsbMdm - ok
16:15:13.0128 0x1244 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
16:15:13.0187 0x1244 BrUsbSer - ok
16:15:13.0244 0x1244 [ E0777B34E05F8A82A21856EFC900C29F ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
16:15:13.0304 0x1244 BTHMODEM - ok
16:15:13.0433 0x1244 [ F972074401A1111BD3362D755F71DD6C ] CAAMSvc C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus Plus\caamsvc.exe
16:15:13.0453 0x1244 CAAMSvc - ok
16:15:13.0504 0x1244 [ E4333E47A1205787F65ACF4F7309F0DC ] CaCCProvSP C:\Program Files\CA\CA Internet Security Suite\ccprovsp.exe
16:15:13.0528 0x1244 CaCCProvSP - ok
16:15:13.0575 0x1244 [ E0F7E8B3EC79DB2A191B42FCC06F17E6 ] CAISafe C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus Plus\isafe.exe
16:15:13.0592 0x1244 CAISafe - ok
16:15:13.0609 0x1244 catchme - ok
16:15:13.0631 0x1244 [ 34998631AF25EDB1BB58F6215F729F89 ] ccSchedulerSVC C:\Program Files\CA\CA Internet Security Suite\ccschedulersvc.exe
16:15:13.0650 0x1244 ccSchedulerSVC - ok
16:15:13.0671 0x1244 [ B4D787DB8D30793A4D4DF9FEED18F136 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
16:15:13.0726 0x1244 cdfs - ok
16:15:13.0770 0x1244 [ C025AA69BE3D0D25C7A2E746EF6F94FC ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
16:15:13.0801 0x1244 cdrom - ok
16:15:13.0843 0x1244 [ 5A268127633C7EE2A7FB87F39D748D56 ] CertPropSvc C:\Windows\System32\certprop.dll
16:15:13.0873 0x1244 CertPropSvc - ok
16:15:13.0911 0x1244 [ 02EA568D498BBDD4BA55BF3FCE34D456 ] circlass C:\Windows\system32\drivers\circlass.sys
16:15:13.0950 0x1244 circlass - ok
16:15:14.0023 0x1244 [ 3DCA9A18B204939CFB24BEA53E31EB48 ] CLFS C:\Windows\system32\CLFS.sys
16:15:14.0046 0x1244 CLFS - ok
16:15:14.0158 0x1244 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:15:14.0172 0x1244 clr_optimization_v2.0.50727_32 - ok
16:15:14.0274 0x1244 [ CE07A466201096F021CD09D631B21540 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:15:14.0290 0x1244 clr_optimization_v2.0.50727_64 - ok
16:15:14.0362 0x1244 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:15:14.0381 0x1244 clr_optimization_v4.0.30319_32 - ok
16:15:14.0479 0x1244 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:15:14.0502 0x1244 clr_optimization_v4.0.30319_64 - ok
16:15:14.0581 0x1244 [ B52D9A14CE4101577900A364BA86F3DF ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
16:15:14.0643 0x1244 CmBatt - ok
16:15:14.0679 0x1244 [ E5D5499A1C50A54B5161296B6AFE6192 ] cmdide C:\Windows\system32\drivers\cmdide.sys
16:15:14.0703 0x1244 cmdide - ok
16:15:14.0738 0x1244 [ 7FB8AD01DB0EABE60C8A861531A8F431 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
16:15:14.0762 0x1244 Compbatt - ok
16:15:14.0769 0x1244 COMSysApp - ok
16:15:14.0787 0x1244 [ A8585B6412253803CE8EFCBD6D6DC15C ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
16:15:14.0802 0x1244 crcdisk - ok
16:15:14.0871 0x1244 [ C8BD651E13895B93ED9EC5B4F1DF42BC ] Creative ALchemy AL6 Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
16:15:14.0879 0x1244 Creative ALchemy AL6 Licensing Service ( UnsignedFile.Multi.Generic ) - warning
16:15:14.0879 0x1244 Creative ALchemy AL6 Licensing Service - detected UnsignedFile.Multi.Generic (1)
16:15:14.0919 0x1244 [ C0EAD9F8AB83D41FF07303C75589C2B8 ] Creative Audio Engine Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
16:15:14.0927 0x1244 Creative Audio Engine Licensing Service ( UnsignedFile.Multi.Generic ) - warning
16:15:14.0927 0x1244 Creative Audio Engine Licensing Service - detected UnsignedFile.Multi.Generic (1)
16:15:15.0035 0x1244 [ 5AAC48EAF8EACF247DB44FB61B900D89 ] CryptSvc C:\Windows\system32\cryptsvc.dll
16:15:15.0056 0x1244 CryptSvc - ok
16:15:15.0145 0x1244 [ 24B0B8D3CBB46ED5F16551974AE8D222 ] CTAudSvcService C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
16:15:15.0157 0x1244 CTAudSvcService ( UnsignedFile.Multi.Generic ) - warning
16:15:15.0157 0x1244 CTAudSvcService - detected UnsignedFile.Multi.Generic (1)
16:15:15.0209 0x1244 [ FC1F55BA03832FBB0DAF965F746C47BB ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
16:15:15.0231 0x1244 CtClsFlt - ok
16:15:15.0391 0x1244 [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF ] DcomLaunch C:\Windows\system32\rpcss.dll
16:15:15.0445 0x1244 DcomLaunch - ok
16:15:15.0498 0x1244 [ 8B722BA35205C71E7951CDC4CDBADE19 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
16:15:15.0518 0x1244 DfsC - ok
16:15:16.0099 0x1244 [ C647F468F7DE343DF8C143655C5557D4 ] DFSR C:\Windows\system32\DFSR.exe
16:15:16.0262 0x1244 DFSR - ok
16:15:16.0339 0x1244 [ 3ED0321127CE70ACDAABBF77E157C2A7 ] Dhcp C:\Windows\System32\dhcpcsvc.dll
16:15:16.0374 0x1244 Dhcp - ok
16:15:16.0456 0x1244 [ B0107E40ECDB5FA692EBF832F295D905 ] disk C:\Windows\system32\drivers\disk.sys
16:15:16.0473 0x1244 disk - ok
16:15:16.0502 0x1244 [ 06230F1B721494A6DF8D47FD395BB1B0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
16:15:16.0521 0x1244 Dnscache - ok
16:15:16.0612 0x1244 [ 0840ABBBDF438691EE65A20040635CBE ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
16:15:16.0626 0x1244 DockLoginService ( UnsignedFile.Multi.Generic ) - warning
16:15:16.0627 0x1244 DockLoginService - detected UnsignedFile.Multi.Generic (1)
16:15:16.0679 0x1244 [ 1A7156DD1E850E9914E5E991E3225B94 ] dot3svc C:\Windows\System32\dot3svc.dll
16:15:16.0724 0x1244 dot3svc - ok
16:15:16.0784 0x1244 [ 74C02B1717740C3B8039539E23E4B53F ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
16:15:16.0834 0x1244 Dot4 - ok
16:15:16.0865 0x1244 [ 08321D1860235BF42CF2854234337AEA ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
16:15:16.0905 0x1244 Dot4Print - ok
16:15:16.0963 0x1244 [ 4ADCCF0124F2B6911D3786A5D0E779E5 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
16:15:17.0006 0x1244 dot4usb - ok
16:15:17.0049 0x1244 [ 1583B39790DB3EAEC7EDB0CB0140C708 ] DPS C:\Windows\system32\dps.dll
16:15:17.0091 0x1244 DPS - ok
16:15:17.0149 0x1244 [ F1A78A98CFC2EE02144C6BEC945447E6 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
16:15:17.0180 0x1244 drmkaud - ok
16:15:17.0346 0x1244 [ F3932288EEECD776FF1F9F653AD878F3 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
16:15:17.0392 0x1244 DXGKrnl - ok
16:15:17.0437 0x1244 [ 17D40652EF3E55EEAE187A89DF40965A ] e1express C:\Windows\system32\DRIVERS\e1e6032e.sys
16:15:17.0491 0x1244 e1express - ok
16:15:17.0518 0x1244 [ 264CEE7B031A9D6C827F3D0CB031F2FE ] E1G60 C:\Windows\system32\DRIVERS\E1G6032E.sys
16:15:17.0568 0x1244 E1G60 - ok
16:15:17.0617 0x1244 [ C2303883FD9BE49DC36A6400643002EA ] EapHost C:\Windows\System32\eapsvc.dll
16:15:17.0651 0x1244 EapHost - ok
16:15:17.0706 0x1244 [ 5F94962BE5A62DB6E447FF6470C4F48A ] Ecache C:\Windows\system32\drivers\ecache.sys
16:15:17.0725 0x1244 Ecache - ok
16:15:17.0824 0x1244 [ 14CE384D2E27B64C256BDA4DC39C312D ] ehRecvr C:\Windows\ehome\ehRecvr.exe
16:15:17.0847 0x1244 ehRecvr - ok
16:15:17.0857 0x1244 [ B93159C1313D66FDFBBE876F5189CD52 ] ehSched C:\Windows\ehome\ehsched.exe
16:15:17.0876 0x1244 ehSched - ok
16:15:17.0913 0x1244 [ F5EE2527D74449868E3C3227A59BCD28 ] ehstart C:\Windows\ehome\ehstart.dll
16:15:17.0928 0x1244 ehstart - ok
16:15:18.0007 0x1244 [ C4636D6E10469404AB5308D9FD45ED07 ] elxstor C:\Windows\system32\drivers\elxstor.sys
16:15:18.0034 0x1244 elxstor - ok
16:15:18.0081 0x1244 [ A9B18B63A4FD6BAAB83326706D857FAB ] EMDMgmt C:\Windows\system32\emdmgmt.dll
16:15:18.0113 0x1244 EMDMgmt - ok
16:15:18.0132 0x1244 [ 991FAB6AA066E1214EFB5B496FB7959A ] ErrDev C:\Windows\system32\drivers\errdev.sys
16:15:18.0153 0x1244 ErrDev - ok
16:15:18.0178 0x1244 [ E12F22B73F153DECE721CD45EC05B4AF ] EventSystem C:\Windows\system32\es.dll
16:15:18.0225 0x1244 EventSystem - ok
16:15:18.0297 0x1244 [ 486844F47B6636044A42454614ED4523 ] exfat C:\Windows\system32\drivers\exfat.sys
16:15:18.0323 0x1244 exfat - ok
16:15:18.0386 0x1244 [ 1A4BEE34277784619DDAF0422C0C6E23 ] fastfat C:\Windows\system32\drivers\fastfat.sys
16:15:18.0426 0x1244 fastfat - ok
16:15:18.0454 0x1244 [ 81B79B6DF71FA1D2C6D688D830616E39 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
16:15:18.0512 0x1244 fdc - ok
16:15:18.0580 0x1244 [ BB9267ACACD8B7533DD936C34A0CBA5E ] fdPHost C:\Windows\system32\fdPHost.dll
16:15:18.0642 0x1244 fdPHost - ok
16:15:18.0673 0x1244 [ 300C80931EABBE1DB7591C516EFE8D0F ] FDResPub C:\Windows\system32\fdrespub.dll
16:15:18.0771 0x1244 FDResPub - ok
16:15:18.0852 0x1244 [ 457B7D1D533E4BD62A99AED9C7BB4C59 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
16:15:18.0867 0x1244 FileInfo - ok
16:15:18.0899 0x1244 [ D421327FD6EFCCAF884A54C58E1B0D7F ] Filetrace C:\Windows\system32\drivers\filetrace.sys
16:15:18.0938 0x1244 Filetrace - ok
16:15:18.0969 0x1244 [ 230923EA2B80F79B0F88D90F87B87EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
16:15:19.0011 0x1244 flpydisk - ok
16:15:19.0056 0x1244 [ E3041BC26D6930D61F42AEDB79C91720 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
16:15:19.0075 0x1244 FltMgr - ok
16:15:19.0308 0x1244 [ F20A97F51C104DD0A163251325460747 ] FontCache C:\Windows\system32\FntCache.dll
16:15:19.0364 0x1244 FontCache - ok
16:15:19.0423 0x1244 [ BC5B0BE5AF3510B0FD8C140EE42C6D3E ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:15:19.0439 0x1244 FontCache3.0.0.0 - ok
16:15:19.0511 0x1244 [ 5779B86CD8B32519FBECB136394D946A ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
16:15:19.0532 0x1244 Fs_Rec - ok
16:15:19.0574 0x1244 [ C8E416668D3DC2BE3D4FE4C79224997F ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
16:15:19.0598 0x1244 gagp30kx - ok
16:15:19.0648 0x1244 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
16:15:19.0667 0x1244 GEARAspiWDM - ok
16:15:19.0730 0x1244 [ D3316F6E3C011435F36E3D6E49B3196C ] GoToAssist C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
16:15:19.0750 0x1244 GoToAssist - ok
16:15:19.0937 0x1244 [ A0E1B575BA8F504968CD40C0FAEB2384 ] gpsvc C:\Windows\System32\gpsvc.dll
16:15:19.0995 0x1244 gpsvc - ok
16:15:20.0105 0x1244 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:15:20.0118 0x1244 gupdate - ok
16:15:20.0132 0x1244 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:15:20.0146 0x1244 gupdatem - ok
16:15:20.0208 0x1244 [ F942C5820205F2FB453243EDFEC82A3D ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
16:15:20.0268 0x1244 HDAudBus - ok
16:15:20.0336 0x1244 [ B4881C84A180E75B8C25DC1D726C375F ] HidBth C:\Windows\system32\drivers\hidbth.sys
16:15:20.0408 0x1244 HidBth - ok
16:15:20.0443 0x1244 [ 4E77A77E2C986E8F88F996BB3E1AD829 ] HidIr C:\Windows\system32\drivers\hidir.sys
16:15:20.0506 0x1244 HidIr - ok
16:15:20.0548 0x1244 [ 59361D38A297755D46A540E450202B2A ] hidserv C:\Windows\System32\hidserv.dll
16:15:20.0579 0x1244 hidserv - ok
16:15:20.0626 0x1244 [ 443BDD2D30BB4F00795C797E2CF99EDF ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
16:15:20.0656 0x1244 HidUsb - ok
16:15:20.0707 0x1244 [ B12F367EA39C0795FD57E31242CE1A5A ] hkmsvc C:\Windows\system32\kmsvc.dll
16:15:20.0749 0x1244 hkmsvc - ok
16:15:20.0798 0x1244 [ D7109A1E6BD2DFDBCBA72A6BC626A13B ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
16:15:20.0817 0x1244 HpCISSs - ok
16:15:20.0855 0x1244 [ 894A75A3D6BFD97D73BF60D3022B567A ] HTCAND64 C:\Windows\system32\Drivers\ANDROIDUSB.sys
16:15:20.0882 0x1244 HTCAND64 - ok
16:15:20.0978 0x1244 [ 5C8BC8A28798FD010E7ABC4E0D588CAA ] HTCMonitorService C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
16:15:20.0993 0x1244 HTCMonitorService - ok
16:15:21.0050 0x1244 [ 4F6C3122817049997CD696D4A38BFACB ] htcnprot C:\Windows\system32\DRIVERS\htcnprot.sys
16:15:21.0065 0x1244 htcnprot - ok
16:15:21.0234 0x1244 [ 098F1E4E5C9CB5B0063A959063631610 ] HTTP C:\Windows\system32\drivers\HTTP.sys
16:15:21.0293 0x1244 HTTP - ok
16:15:21.0341 0x1244 [ DA94C854CEA5FAC549D4E1F6E88349E8 ] i2omp C:\Windows\system32\drivers\i2omp.sys
16:15:21.0370 0x1244 i2omp - ok
16:15:21.0402 0x1244 [ CBB597659A2713CE0C9CC20C88C7591F ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
16:15:21.0451 0x1244 i8042prt - ok
16:15:21.0606 0x1244 [ F148C2E931BFC20397EDC0A7B4F8E22B ] IAANTMON C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
16:15:21.0638 0x1244 IAANTMON - ok
16:15:21.0723 0x1244 [ 4F6FB2CDBDEEFC47E7D2066E78254580 ] iaStor C:\Windows\system32\drivers\iastor.sys
16:15:21.0757 0x1244 iaStor - ok
16:15:21.0782 0x1244 [ 3E3BF3627D886736D0B4E90054F929F6 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
16:15:21.0802 0x1244 iaStorV - ok
16:15:21.0888 0x1244 [ 749F5F8CEDCA70F2A512945325FC489D ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:15:21.0919 0x1244 idsvc - ok
16:15:23.0673 0x1244 [ F7AB8285BBECFAA5ED4050CCB89E073D ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
16:15:24.0245 0x1244 igfx - ok
16:15:24.0312 0x1244 [ 8C3951AD2FE886EF76C7B5027C3125D3 ] iirsp C:\Windows\system32\drivers\iirsp.sys
16:15:24.0326 0x1244 iirsp - ok
16:15:24.0505 0x1244 [ 0C9EA6E654E7B0471741E343A6C671AF ] IKEEXT C:\Windows\System32\ikeext.dll
16:15:24.0558 0x1244 IKEEXT - ok
16:15:24.0612 0x1244 [ DF797A12176F11B2D301C5B234BB200E ] intelide C:\Windows\system32\drivers\intelide.sys
16:15:24.0627 0x1244 intelide - ok
16:15:24.0664 0x1244 [ BFD84AF32FA1BAD6231C4585CB469630 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
16:15:24.0712 0x1244 intelppm - ok
16:15:24.0761 0x1244 [ 5624BC1BC5EEB49C0AB76A8114F05EA3 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
16:15:24.0812 0x1244 IPBusEnum - ok
16:15:24.0853 0x1244 [ D8AABC341311E4780D6FCE8C73C0AD81 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:15:24.0891 0x1244 IpFilterDriver - ok
16:15:24.0956 0x1244 [ BF0DBFA9792C5C14FA00F61C75116C1B ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
16:15:24.0983 0x1244 iphlpsvc - ok
16:15:24.0989 0x1244 IpInIp - ok
16:15:25.0033 0x1244 [ 9C2EE2E6E5A7203BFAE15C299475EC67 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
16:15:25.0083 0x1244 IPMIDRV - ok
16:15:25.0111 0x1244 [ B7E6212F581EA5F6AB0C3A6CEEEB89BE ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
16:15:25.0160 0x1244 IPNAT - ok
16:15:25.0216 0x1244 [ 0FF335D687C85097725A53458160E81E ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
16:15:25.0241 0x1244 iPod Service - ok
16:15:25.0276 0x1244 [ 8C42CA155343A2F11D29FECA67FAA88D ] IRENUM C:\Windows\system32\drivers\irenum.sys
16:15:25.0316 0x1244 IRENUM - ok
16:15:25.0347 0x1244 [ 0672BFCEDC6FC468A2B0500D81437F4F ] isapnp C:\Windows\system32\drivers\isapnp.sys
16:15:25.0367 0x1244 isapnp - ok
16:15:25.0414 0x1244 [ E4FDF99599F27EC25D2CF6D754243520 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
16:15:25.0432 0x1244 iScsiPrt - ok
16:15:25.0457 0x1244 [ 63C766CDC609FF8206CB447A65ABBA4A ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
16:15:25.0471 0x1244 iteatapi - ok
16:15:25.0509 0x1244 [ 1281FE73B17664631D12F643CBEA3F59 ] iteraid C:\Windows\system32\drivers\iteraid.sys
16:15:25.0523 0x1244 iteraid - ok
16:15:25.0543 0x1244 [ 423696F3BA6472DD17699209B933BC26 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
16:15:25.0558 0x1244 kbdclass - ok
16:15:25.0607 0x1244 [ DBDF75D51464FBC47D0104EC3D572C05 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
16:15:25.0636 0x1244 kbdhid - ok
16:15:25.0650 0x1244 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] KeyIso C:\Windows\system32\lsass.exe
16:15:25.0674 0x1244 KeyIso - ok
16:15:25.0725 0x1244 [ 77481D3753F6DCB0A499C3A01460DC00 ] KmxAgent C:\Windows\system32\DRIVERS\kmxagent.sys
16:15:25.0738 0x1244 KmxAgent - ok
16:15:25.0819 0x1244 [ C30A499E4A05FA7C1B2B1325953F12D4 ] KmxAMRT C:\Windows\system32\DRIVERS\KmxAMRT.sys
16:15:25.0833 0x1244 KmxAMRT - ok
16:15:25.0879 0x1244 [ 2896919A9E5A4DC267A2D916F75D2346 ] KmxCF C:\Windows\system32\DRIVERS\KmxCF.sys
16:15:25.0895 0x1244 KmxCF - ok
16:15:25.0933 0x1244 [ 2FA4CB9DCA3ED83583659670F3B40916 ] KmxCfg C:\Windows\system32\DRIVERS\kmxcfg.sys
16:15:25.0954 0x1244 KmxCfg - ok
16:15:25.0981 0x1244 [ EB0576050B2A618563CAA3ECBF19F2EF ] KmxFile C:\Windows\system32\DRIVERS\KmxFile.sys
16:15:25.0996 0x1244 KmxFile - ok
16:15:26.0038 0x1244 [ 87DA5AFC8950EC34D0CDDF3438370727 ] KmxFilter C:\Windows\system32\DRIVERS\KmxFilter.sys
16:15:26.0052 0x1244 KmxFilter - ok
16:15:26.0060 0x1244 [ 15260D1B5BB6BA8E5079E758FCE88207 ] KmxFw C:\Windows\system32\DRIVERS\kmxfw.sys
16:15:26.0076 0x1244 KmxFw - ok
16:15:26.0104 0x1244 [ EEF33889A80990C70595457A5C97EE09 ] KmxSbx C:\Windows\system32\DRIVERS\KmxSbx.sys
16:15:26.0118 0x1244 KmxSbx - ok
16:15:26.0191 0x1244 [ 88956AD9FA510848AD176777A6C6C1F5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
16:15:26.0219 0x1244 KSecDD - ok
16:15:26.0262 0x1244 [ 1D419CF43DB29396ECD7113D129D94EB ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
16:15:26.0323 0x1244 ksthunk - ok
16:15:26.0403 0x1244 [ 1FAF6926F3416D3DA05C5B265491BDAE ] KtmRm C:\Windows\system32\msdtckrm.dll
16:15:26.0478 0x1244 KtmRm - ok
16:15:26.0553 0x1244 [ 50C7A3CB427E9BB5ED0708A669956AB5 ] LanmanServer C:\Windows\System32\srvsvc.dll
16:15:26.0586 0x1244 LanmanServer - ok
16:15:26.0622 0x1244 [ CAF86FC1388BE1E470F1A7B43E348ADB ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:15:26.0656 0x1244 LanmanWorkstation - ok
16:15:26.0691 0x1244 [ 96ECE2659B6654C10A0C310AE3A6D02C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
16:15:26.0754 0x1244 lltdio - ok
16:15:26.0863 0x1244 [ 961CCBD0B1CCB5675D64976FAE37D092 ] lltdsvc C:\Windows\System32\lltdsvc.dll
16:15:26.0908 0x1244 lltdsvc - ok
16:15:26.0930 0x1244 [ A47F8080CACC23C91FE823AD19AA5612 ] lmhosts C:\Windows\System32\lmhsvc.dll
16:15:26.0970 0x1244 lmhosts - ok
16:15:27.0023 0x1244 [ ACBE1AF32D3123E330A07BFBC5EC4A9B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
16:15:27.0040 0x1244 LSI_FC - ok
16:15:27.0056 0x1244 [ 799FFB2FC4729FA46D2157C0065B3525 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
16:15:27.0072 0x1244 LSI_SAS - ok
16:15:27.0090 0x1244 [ F445FF1DAAD8A226366BFAF42551226B ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
16:15:27.0107 0x1244 LSI_SCSI - ok
16:15:27.0138 0x1244 [ 52F87B9CC8932C2A7375C3B2A9BE5E3E ] luafv C:\Windows\system32\drivers\luafv.sys
16:15:27.0179 0x1244 luafv - ok
16:15:27.0234 0x1244 [ A401CFF74982D8DF851F20307C806073 ] LVRS64 C:\Windows\system32\DRIVERS\lvrs64.sys
16:15:27.0253 0x1244 LVRS64 - ok
16:15:27.0489 0x1244 [ 13384CB5F5813E65F31078D6ABFAAF38 ] LVUVC64 C:\Windows\system32\DRIVERS\lvuvc64.sys
16:15:27.0697 0x1244 LVUVC64 - ok
16:15:27.0762 0x1244 [ F453D1E6D881E8F8717E20CCD4199E85 ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe
16:15:27.0785 0x1244 McComponentHostService - ok
16:15:27.0828 0x1244 [ 76A58DF02BD4EA29F189B82D0BEF17F8 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
16:15:27.0849 0x1244 Mcx2Svc - ok
16:15:27.0900 0x1244 [ 5C5CD6AACED32FB26C3FB34B3DCF972F ] megasas C:\Windows\system32\drivers\megasas.sys
16:15:27.0915 0x1244 megasas - ok
16:15:27.0979 0x1244 [ 859BC2436B076C77C159ED694ACFE8F8 ] MegaSR C:\Windows\system32\drivers\megasr.sys
16:15:28.0016 0x1244 MegaSR - ok
16:15:28.0032 0x1244 [ 3CBE4995E80E13CCFBC42E5DCF3AC81A ] MMCSS C:\Windows\system32\mmcss.dll
16:15:28.0073 0x1244 MMCSS - ok
16:15:28.0093 0x1244 [ 59848D5CC74606F0EE7557983BB73C2E ] Modem C:\Windows\system32\drivers\modem.sys
16:15:28.0135 0x1244 Modem - ok
16:15:28.0173 0x1244 [ C247CC2A57E0A0C8C6DCCF7807B3E9E5 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
16:15:28.0213 0x1244 monitor - ok
16:15:28.0234 0x1244 [ 9367304E5E412B120CF5F4EA14E4E4F1 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
16:15:28.0254 0x1244 mouclass - ok
16:15:28.0291 0x1244 [ C2C2BD5C5CE5AAF786DDD74B75D2AC69 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
16:15:28.0330 0x1244 mouhid - ok
16:15:28.0349 0x1244 [ 11BC9B1E8801B01F7F6ADB9EAD30019B ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
16:15:28.0369 0x1244 MountMgr - ok
16:15:28.0420 0x1244 [ A35576A433F4AEB0D48976A004657CB6 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
16:15:28.0437 0x1244 MozillaMaintenance - ok
16:15:28.0471 0x1244 [ FC1D590039EF06A381768710E6C07E75 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
16:15:28.0495 0x1244 MpFilter - ok
16:15:28.0544 0x1244 [ F8276EB8698142884498A528DFEA8478 ] mpio C:\Windows\system32\drivers\mpio.sys
16:15:28.0562 0x1244 mpio - ok
16:15:28.0590 0x1244 [ C92B9ABDB65A5991E00C28F13491DBA2 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
16:15:28.0624 0x1244 mpsdrv - ok
16:15:28.0676 0x1244 [ 897E3BAF68BA406A61682AE39C83900C ] MpsSvc C:\Windows\system32\mpssvc.dll
16:15:28.0723 0x1244 MpsSvc - ok
16:15:28.0757 0x1244 [ 3C200630A89EF2C0864D515B7A75802E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
16:15:28.0773 0x1244 Mraid35x - ok
16:15:28.0812 0x1244 [ 7C1DE4AA96DC0C071611F9E7DE02A68D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
16:15:28.0835 0x1244 MRxDAV - ok
16:15:28.0888 0x1244 [ 1485811B320FF8C7EDAD1CAEBB1C6C2B ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
16:15:28.0910 0x1244 mrxsmb - ok
16:15:28.0967 0x1244 [ 3B929A60C833FC615FD97FBA82BC7632 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:15:28.0992 0x1244 mrxsmb10 - ok
16:15:29.0007 0x1244 [ C64AB3E1F53B4F5B5BB6D796B2D7BEC3 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:15:29.0029 0x1244 mrxsmb20 - ok
16:15:29.0061 0x1244 [ 730B784962D22D2C6481EAE2370E7C8C ] msahci C:\Windows\system32\drivers\msahci.sys
16:15:29.0078 0x1244 msahci - ok
16:15:29.0102 0x1244 [ 264BBB4AAF312A485F0E44B65A6B7202 ] msdsm C:\Windows\system32\drivers\msdsm.sys
16:15:29.0120 0x1244 msdsm - ok
16:15:29.0140 0x1244 [ 7EC02CE772F068ED0BEAFA3DA341A9BC ] MSDTC C:\Windows\System32\msdtc.exe
16:15:29.0185 0x1244 MSDTC - ok
16:15:29.0215 0x1244 [ 704F59BFC4512D2BB0146AEC31B10A7C ] Msfs C:\Windows\system32\drivers\Msfs.sys
16:15:29.0258 0x1244 Msfs - ok
16:15:29.0288 0x1244 [ 00EBC952961664780D43DCA157E79B27 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
16:15:29.0309 0x1244 msisadrv - ok
16:15:29.0328 0x1244 [ 366B0C1F4478B519C181E37D43DCDA32 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
16:15:29.0374 0x1244 MSiSCSI - ok
16:15:29.0379 0x1244 msiserver - ok
16:15:29.0404 0x1244 [ 0EA73E498F53B96D83DBFCA074AD4CF8 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
16:15:29.0444 0x1244 MSKSSRV - ok
16:15:29.0508 0x1244 [ FD909D744ACFCF61CAC3A77854F8B301 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
16:15:29.0526 0x1244 MsMpSvc - ok
16:15:29.0549 0x1244 [ 52E59B7E992A58E740AA63F57EDBAE8B ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
16:15:29.0593 0x1244 MSPCLOCK - ok
16:15:29.0614 0x1244 [ 49084A75BAE043AE02D5B44D02991BB2 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
16:15:29.0663 0x1244 MSPQM - ok
16:15:29.0707 0x1244 [ DC6CCF440CDEDE4293DB41C37A5060A5 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
16:15:29.0727 0x1244 MsRPC - ok
16:15:29.0751 0x1244 [ 855796E59DF77EA93AF46F20155BF55B ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
16:15:29.0771 0x1244 mssmbios - ok
16:15:29.0777 0x1244 [ 86D632D75D05D5B7C7C043FA3564AE86 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
16:15:29.0826 0x1244 MSTEE - ok
16:15:29.0850 0x1244 [ 0CC49F78D8ACA0877D885F149084E543 ] Mup C:\Windows\system32\Drivers\mup.sys
16:15:29.0868 0x1244 Mup - ok
16:15:29.0904 0x1244 [ A5B10C845E7538C60C0F5D87A57CB3F5 ] napagent C:\Windows\system32\qagentRT.dll
16:15:29.0947 0x1244 napagent - ok
16:15:29.0983 0x1244 [ 2007B826C4ACD94AE32232B41F0842B9 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
16:15:30.0008 0x1244 NativeWifiP - ok
16:15:30.0060 0x1244 [ 65950E07329FCEE8E6516B17C8D0ABB6 ] NDIS C:\Windows\system32\drivers\ndis.sys
16:15:30.0091 0x1244 NDIS - ok
16:15:30.0116 0x1244 [ 64DF698A425478E321981431AC171334 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
16:15:30.0149 0x1244 NdisTapi - ok
16:15:30.0157 0x1244 [ 8BAA43196D7B5BB972C9A6B2BBF61A19 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
16:15:30.0203 0x1244 Ndisuio - ok
16:15:30.0238 0x1244 [ F8158771905260982CE724076419EF19 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
16:15:30.0273 0x1244 NdisWan - ok
16:15:30.0309 0x1244 [ 9CB77ED7CB72850253E973A2D6AFDF49 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
16:15:30.0357 0x1244 NDProxy - ok
16:15:30.0414 0x1244 [ A499294F5029A7862ADC115BDA7371CE ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
16:15:30.0456 0x1244 NetBIOS - ok
16:15:30.0490 0x1244 [ FC2C792EBDDC8E28DF939D6A92C83D61 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
16:15:30.0528 0x1244 netbt - ok
16:15:30.0549 0x1244 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] Netlogon C:\Windows\system32\lsass.exe
16:15:30.0578 0x1244 Netlogon - ok
16:15:30.0615 0x1244 [ 9B63B29DEFC0F3115A559D2597BF5D75 ] Netman C:\Windows\System32\netman.dll
16:15:30.0666 0x1244 Netman - ok
16:15:30.0684 0x1244 [ 7846D0136CC2B264926A73047BA7688A ] netprofm C:\Windows\System32\netprofm.dll
16:15:30.0736 0x1244 netprofm - ok
16:15:30.0768 0x1244 [ 74751DDA198165947FD7454D83F49825 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:15:30.0784 0x1244 NetTcpPortSharing - ok
16:15:30.0826 0x1244 [ 4AC08BD6AF2DF42E0C3196D826C8AEA7 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
16:15:30.0840 0x1244 nfrd960 - ok
16:15:30.0874 0x1244 [ 8FB3C853E886E1E4D57271672486111C ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
16:15:30.0895 0x1244 NisDrv - ok
16:15:30.0933 0x1244 [ EC445A9F0FB52E5F467C156FFF6F6D93 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
16:15:30.0961 0x1244 NisSrv - ok
16:15:30.0990 0x1244 [ F145BF4C4668E7E312069F81EF847CFC ] NlaSvc C:\Windows\System32\nlasvc.dll
16:15:31.0037 0x1244 NlaSvc - ok
16:15:31.0059 0x1244 [ B298874F8E0EA93F06EC40AA8D146478 ] Npfs C:\Windows\system32\drivers\Npfs.sys
16:15:31.0094 0x1244 Npfs - ok
16:15:31.0127 0x1244 [ ACB62BAA1C319B17752553DF3026EEEB ] nsi C:\Windows\system32\nsisvc.dll
16:15:31.0171 0x1244 nsi - ok
16:15:31.0198 0x1244 [ 1523AF19EE8B030BA682F7A53537EAEB ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
16:15:31.0243 0x1244 nsiproxy - ok
16:15:31.0332 0x1244 [ 2ACCAA3C3C55370A32F17B3595E1A217 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
16:15:31.0379 0x1244 Ntfs - ok
16:15:31.0441 0x1244 [ DD5D684975352B85B52E3FD5347C20CB ] Null C:\Windows\system32\drivers\Null.sys
16:15:31.0483 0x1244 Null - ok
16:15:31.0510 0x1244 [ 2C040B7ADA5B06F6FACADAC8514AA034 ] nvraid C:\Windows\system32\drivers\nvraid.sys
16:15:31.0528 0x1244 nvraid - ok
16:15:31.0554 0x1244 [ F7EA0FE82842D05EDA3EFDD376DBFDBA ] nvstor C:\Windows\system32\drivers\nvstor.sys
16:15:31.0575 0x1244 nvstor - ok
16:15:31.0603 0x1244 [ 19067CA93075EF4823E3938A686F532F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
16:15:31.0621 0x1244 nv_agp - ok
16:15:31.0627 0x1244 NwlnkFlt - ok
16:15:31.0634 0x1244 NwlnkFwd - ok
16:15:31.0670 0x1244 [ 404B0121AE1A75D9A63B6934EB07C258 ] OA009Ufd C:\Windows\system32\DRIVERS\OA009Ufd.sys
16:15:31.0689 0x1244 OA009Ufd - ok
16:15:31.0728 0x1244 [ D460884EB05B90D06B35A1DBC31928DF ] OA009Vid C:\Windows\system32\DRIVERS\OA009Vid.sys
16:15:31.0749 0x1244 OA009Vid - ok
16:15:31.0841 0x1244 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
16:15:31.0864 0x1244 odserv - ok
16:15:31.0916 0x1244 [ 7B58953E2F263421FDBB09A192712A85 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
16:15:31.0979 0x1244 ohci1394 - ok
16:15:32.0013 0x1244 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:15:32.0029 0x1244 ose - ok
16:15:32.0072 0x1244 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] p2pimsvc C:\Windows\system32\p2psvc.dll
16:15:32.0112 0x1244 p2pimsvc - ok
16:15:32.0130 0x1244 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] p2psvc C:\Windows\system32\p2psvc.dll
16:15:32.0172 0x1244 p2psvc - ok
16:15:32.0215 0x1244 [ AECD57F94C887F58919F307C35498EA0 ] Parport C:\Windows\system32\drivers\parport.sys
16:15:32.0277 0x1244 Parport - ok
16:15:32.0304 0x1244 [ B43751085E2ABE389DA466BC62A4B987 ] partmgr C:\Windows\system32\drivers\partmgr.sys
16:15:32.0325 0x1244 partmgr - ok
16:15:32.0360 0x1244 [ 3CAE2BBC86FCF7F94C9696994AF30386 ] PassThru Service C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
16:15:32.0371 0x1244 PassThru Service ( UnsignedFile.Multi.Generic ) - warning
16:15:32.0371 0x1244 PassThru Service - detected UnsignedFile.Multi.Generic (1)
16:15:32.0415 0x1244 [ 9AB157B374192FF276C1628FBDBA2B0E ] PcaSvc C:\Windows\System32\pcasvc.dll
16:15:32.0438 0x1244 PcaSvc - ok
16:15:32.0467 0x1244 [ 47AB1E0FC9D0E12BB53BA246E3A0906D ] pci C:\Windows\system32\drivers\pci.sys
16:15:32.0486 0x1244 pci - ok
16:15:32.0516 0x1244 [ 8D618C829034479985A9ED56106CC732 ] pciide C:\Windows\system32\drivers\pciide.sys
16:15:32.0532 0x1244 pciide - ok
16:15:32.0549 0x1244 [ 037661F3D7C507C9993B7010CEEE6288 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
16:15:32.0574 0x1244 pcmcia - ok
16:15:32.0663 0x1244 [ 8CB97AB9EDC3DB4E6723577E1D790353 ] PCToolsSSDMonitorSvc C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe
16:15:32.0689 0x1244 PCToolsSSDMonitorSvc - ok
16:15:32.0723 0x1244 [ 58865916F53592A61549B04941BFD80D ] PEAUTH C:\Windows\system32\drivers\peauth.sys
16:15:32.0801 0x1244 PEAUTH - ok
16:15:32.0922 0x1244 [ 0ED8727EA0172860F47258456C06CAEA ] PerfHost C:\Windows\SysWow64\perfhost.exe
16:15:32.0965 0x1244 PerfHost - ok
16:15:33.0031 0x1244 [ E9E68C1A0F25CF4A7AC966EEA74EE89E ] pla C:\Windows\system32\pla.dll
16:15:33.0100 0x1244 pla - ok
16:15:33.0137 0x1244 [ FE6B0F59215C9FD9F9D26539C58C8B82 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
16:15:33.0176 0x1244 PlugPlay - ok
16:15:33.0205 0x1244 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
16:15:33.0244 0x1244 PNRPAutoReg - ok
16:15:33.0263 0x1244 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] PNRPsvc C:\Windows\system32\p2psvc.dll
16:15:33.0301 0x1244 PNRPsvc - ok
16:15:33.0338 0x1244 [ 89A5560671C2D8B4A4B51F3E1AA069D8 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
16:15:33.0384 0x1244 PolicyAgent - ok
16:15:33.0422 0x1244 [ 23386E9952025F5F21C368971E2E7301 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
16:15:33.0456 0x1244 PptpMiniport - ok
16:15:33.0483 0x1244 [ 5080E59ECEE0BC923F14018803AA7A01 ] Processor C:\Windows\system32\drivers\processr.sys
16:15:33.0528 0x1244 Processor - ok
16:15:33.0564 0x1244 [ E058CE4FC2449D8BFA14739C83B7FF2A ] ProfSvc C:\Windows\system32\profsvc.dll
16:15:33.0605 0x1244 ProfSvc - ok
16:15:33.0615 0x1244 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] ProtectedStorage C:\Windows\system32\lsass.exe
16:15:33.0636 0x1244 ProtectedStorage - ok
16:15:33.0663 0x1244 [ C5AB7F0809392D0DA027F4A2A81BFA31 ] PSched C:\Windows\system32\DRIVERS\pacer.sys
16:15:33.0697 0x1244 PSched - ok
16:15:33.0740 0x1244 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
16:15:33.0754 0x1244 PxHlpa64 - ok
16:15:33.0814 0x1244 [ 0B83F4E681062F3839BE2EC1D98FD94A ] ql2300 C:\Windows\system32\drivers\ql2300.sys
16:15:33.0857 0x1244 ql2300 - ok
16:15:33.0922 0x1244 [ E1C80F8D4D1E39EF9595809C1369BF2A ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
16:15:33.0939 0x1244 ql40xx - ok
16:15:33.0983 0x1244 [ 90574842C3DA781E279061A3EFF91F07 ] QWAVE C:\Windows\system32\qwave.dll
16:15:34.0011 0x1244 QWAVE - ok
16:15:34.0035 0x1244 [ E8D76EDAB77EC9C634C27B8EAC33ADC5 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
16:15:34.0057 0x1244 QWAVEdrv - ok
16:15:34.0168 0x1244 [ 2A09A6B271D1F50ADF5E33B37D460DE6 ] R300 C:\Windows\system32\DRIVERS\atikmdag.sys
16:15:34.0382 0x1244 R300 - ok
16:15:34.0410 0x1244 [ 1013B3B663A56D3DDD784F581C1BD005 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
16:15:34.0452 0x1244 RasAcd - ok
16:15:34.0491 0x1244 [ B2AE18F847D07F0044404DDF7CB04497 ] RasAuto C:\Windows\System32\rasauto.dll
16:15:34.0534 0x1244 RasAuto - ok
16:15:34.0564 0x1244 [ AC7BC4D42A7E558718DFDEC599BBFC2C ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
16:15:34.0596 0x1244 Rasl2tp - ok
16:15:34.0690 0x1244 [ 3AD83E4046C43BE510DE681588ACB8AF ] RasMan C:\Windows\System32\rasmans.dll
16:15:34.0726 0x1244 RasMan - ok
16:15:34.0771 0x1244 [ 4517FBF8B42524AFE4EDE1DE102AAE3E ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
16:15:34.0808 0x1244 RasPppoe - ok
16:15:34.0854 0x1244 [ C6A593B51F34C33E5474539544072527 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
16:15:34.0877 0x1244 RasSstp - ok
16:15:34.0908 0x1244 [ 322DB5C6B55E8D8EE8D6F358B2AAABB1 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
16:15:34.0946 0x1244 rdbss - ok
16:15:34.0975 0x1244 [ 603900CC05F6BE65CCBF373800AF3716 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
16:15:35.0018 0x1244 RDPCDD - ok
16:15:35.0054 0x1244 [ C045D1FB111C28DF0D1BE8D4BDA22C06 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
16:15:35.0105 0x1244 rdpdr - ok
16:15:35.0111 0x1244 [ CAB9421DAF3D97B33D0D055858E2C3AB ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
16:15:35.0157 0x1244 RDPENCDD - ok
16:15:35.0194 0x1244 [ AE4BD9E1C33D351D8E607FC81F15160C ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
16:15:35.0217 0x1244 RDPWD - ok
16:15:35.0258 0x1244 [ C612B9557DA73F70D41F8A6FBC8E5344 ] RemoteAccess C:\Windows\System32\mprdim.dll
16:15:35.0305 0x1244 RemoteAccess - ok
16:15:35.0355 0x1244 [ BFA4873CD96D7144DC0059A70E1E358F ] RemoteControl-USBLAN C:\Windows\system32\DRIVERS\rcblan.sys
16:15:35.0367 0x1244 RemoteControl-USBLAN - ok
16:15:35.0391 0x1244 [ 44B9D8EC2F3EF3A0EFB00857AF70D861 ] RemoteRegistry C:\Windows\system32\regsvc.dll
16:15:35.0427 0x1244 RemoteRegistry - ok
16:15:35.0443 0x1244 [ F46C457840D4B7A4DAAFEE739CE04102 ] RpcLocator C:\Windows\system32\locator.exe
16:15:35.0463 0x1244 RpcLocator - ok
16:15:35.0510 0x1244 [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF ] RpcSs C:\Windows\system32\rpcss.dll
16:15:35.0562 0x1244 RpcSs - ok
16:15:35.0615 0x1244 [ 22A9CB08B1A6707C1550C6BF099AAE73 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
16:15:35.0659 0x1244 rspndr - ok
16:15:35.0712 0x1244 [ 4AD8464FECE8EBE276D4A7D75E418452 ] RTSTOR C:\Windows\system32\drivers\RTSTOR64.SYS
16:15:35.0731 0x1244 RTSTOR - ok
16:15:35.0748 0x1244 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] SamSs C:\Windows\system32\lsass.exe
16:15:35.0769 0x1244 SamSs - ok
16:15:35.0849 0x1244 [ 328100AF2EFD951EAB657384EC361B6F ] SamsungAllShareV2.0 C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMS.exe
16:15:35.0862 0x1244 SamsungAllShareV2.0 - ok
16:15:35.0936 0x1244 [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
16:15:35.0952 0x1244 SASDIFSV - ok
16:15:35.0986 0x1244 [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
16:15:36.0000 0x1244 SASKUTIL - ok
16:15:36.0035 0x1244 [ CD9C693589C60AD59BBBCFB0E524E01B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
16:15:36.0052 0x1244 sbp2port - ok
16:15:36.0085 0x1244 [ FD1CDCF108D5EF3366F00D18B70FB89B ] SCardSvr C:\Windows\System32\SCardSvr.dll
16:15:36.0122 0x1244 SCardSvr - ok
16:15:36.0167 0x1244 [ 0F838C811AD295D2A4489B9993096C63 ] Schedule C:\Windows\system32\schedsvc.dll
16:15:36.0209 0x1244 Schedule - ok
16:15:36.0239 0x1244 [ 5A268127633C7EE2A7FB87F39D748D56 ] SCPolicySvc C:\Windows\System32\certprop.dll
16:15:36.0272 0x1244 SCPolicySvc - ok
16:15:36.0296 0x1244 [ 4FF71B076A7760FE75EA5AE2D0EE0018 ] SDRSVC C:\Windows\System32\SDRSVC.dll
16:15:36.0321 0x1244 SDRSVC - ok
16:15:36.0378 0x1244 [ 4A5809A1D796E2675AC0332BF7B0CB11 ] SeaPort C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
16:15:36.0399 0x1244 SeaPort - ok
16:15:36.0440 0x1244 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
16:15:36.0502 0x1244 secdrv - ok
16:15:36.0533 0x1244 [ 5ACDCBC67FCF894A1815B9F96D704490 ] seclogon C:\Windows\system32\seclogon.dll
16:15:36.0578 0x1244 seclogon - ok
16:15:36.0594 0x1244 [ 90973A64B96CD647FF81C79443618EED ] SENS C:\Windows\system32\sens.dll
16:15:36.0642 0x1244 SENS - ok
16:15:36.0664 0x1244 [ F71BFE7AC6C52273B7C82CBF1BB2A222 ] Serenum C:\Windows\system32\drivers\serenum.sys
16:15:36.0728 0x1244 Serenum - ok
16:15:36.0754 0x1244 [ E62FAC91EE288DB29A9696A9D279929C ] Serial C:\Windows\system32\drivers\serial.sys
16:15:36.0818 0x1244 Serial - ok
16:15:36.0838 0x1244 [ A842F04833684BCEEA7336211BE478DF ] sermouse C:\Windows\system32\drivers\sermouse.sys
16:15:36.0884 0x1244 sermouse - ok
16:15:36.0921 0x1244 [ A8E4A4407A09F35DCCC3771AF590B0C4 ] SessionEnv C:\Windows\system32\sessenv.dll
16:15:36.0967 0x1244 SessionEnv - ok
16:15:36.0999 0x1244 [ 14D4B4465193A87C127933978E8C4106 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
16:15:37.0041 0x1244 sffdisk - ok
16:15:37.0062 0x1244 [ 7073AEE3F82F3D598E3825962AA98AB2 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
16:15:37.0109 0x1244 sffp_mmc - ok
16:15:37.0127 0x1244 [ 35E59EBE4A01A0532ED67975161C7B82 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
16:15:37.0170 0x1244 sffp_sd - ok
16:15:37.0183 0x1244 [ 6B7838C94135768BD455CBDC23E39E5F ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
16:15:37.0245 0x1244 sfloppy - ok
16:15:37.0283 0x1244 [ 4C5AEE179DA7E1EE9A9CCB9DA289AF34 ] SharedAccess C:\Windows\System32\ipnathlp.dll
16:15:37.0335 0x1244 SharedAccess - ok
16:15:37.0377 0x1244 [ 56793271ECDEDD350C5ADD305603E963 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:15:37.0403 0x1244 ShellHWDetection - ok
16:15:37.0448 0x1244 [ 1980FE1F5A32067DAD1D8776B63C2669 ] SimpleSlideShowServer C:\Program Files (x86)\Samsung\AllShare\AllShareSlideShowService.exe
16:15:37.0462 0x1244 SimpleSlideShowServer - ok
16:15:37.0491 0x1244 [ 7A5DE502AEB719D4594C6471060A78B3 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
16:15:37.0508 0x1244 SiSRaid2 - ok
16:15:37.0547 0x1244 [ 3A2F769FAB9582BC720E11EA1DFB184D ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
16:15:37.0565 0x1244 SiSRaid4 - ok
16:15:37.0745 0x1244 [ D0776778A9FC5E37F2E9EB21FC8A9709 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
16:15:37.0861 0x1244 Skype C2C Service - ok
16:15:37.0925 0x1244 [ 7C15061CD0372487903B07B9BB03AFAD ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
16:15:37.0940 0x1244 SkypeUpdate - ok
16:15:38.0044 0x1244 [ A9A27A8E257B45A604FDAD4F26FE7241 ] slsvc C:\Windows\system32\SLsvc.exe
16:15:38.0175 0x1244 slsvc - ok
16:15:38.0214 0x1244 [ FD74B4B7C2088E390A30C85A896FC3AF ] SLUINotify C:\Windows\system32\SLUINotify.dll
16:15:38.0249 0x1244 SLUINotify - ok
16:15:38.0279 0x1244 [ 290B6F6A0EC4FCDFC90F5CB6D7020473 ] Smb C:\Windows\system32\DRIVERS\smb.sys
16:15:38.0313 0x1244 Smb - ok
16:15:38.0354 0x1244 [ F8F47F38909823B1AF28D60B96340CFF ] SNMPTRAP C:\Windows\System32\snmptrap.exe
16:15:38.0379 0x1244 SNMPTRAP - ok
16:15:38.0420 0x1244 [ 9B24DCA429F819DB314F30EE4C6C80FD ] Sound Blaster X-Fi MB Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\XMBLicensing.exe
16:15:38.0429 0x1244 Sound Blaster X-Fi MB Licensing Service ( UnsignedFile.Multi.Generic ) - warning
16:15:38.0429 0x1244 Sound Blaster X-Fi MB Licensing Service - detected UnsignedFile.Multi.Generic (1)
16:15:38.0465 0x1244 [ 386C3C63F00A7040C7EC5E384217E89D ] spldr C:\Windows\system32\drivers\spldr.sys
16:15:38.0482 0x1244 spldr - ok
16:15:38.0511 0x1244 [ F66FF751E7EFC816D266977939EF5DC3 ] Spooler C:\Windows\System32\spoolsv.exe
16:15:38.0537 0x1244 Spooler - ok
16:15:38.0564 0x1244 [ 880A57FCCB571EBD063D4DD50E93E46D ] srv C:\Windows\system32\DRIVERS\srv.sys
16:15:38.0594 0x1244 srv - ok
16:15:38.0626 0x1244 [ A1AD14A6D7A37891FFFECA35EBBB0730 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
16:15:38.0649 0x1244 srv2 - ok
16:15:38.0661 0x1244 [ 4BED62F4FA4D8300973F1151F4C4D8A7 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
16:15:38.0687 0x1244 srvnet - ok
16:15:38.0716 0x1244 [ 192C74646EC5725AEF3F80D19FF75F6A ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
16:15:38.0764 0x1244 SSDPSRV - ok
16:15:38.0796 0x1244 [ 2EE3FA0308E6185BA64A9A7F2E74332B ] SstpSvc C:\Windows\system32\sstpsvc.dll
16:15:38.0826 0x1244 SstpSvc - ok
16:15:38.0904 0x1244 [ C5DF63AE2693C9B6B01B4A2E6C1C64AC ] STacSV C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_15f4e438\STacSV64.exe
16:15:38.0923 0x1244 STacSV - ok
16:15:38.0967 0x1244 [ BA16447226ABFD342E130D2F24F73D32 ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
16:15:38.0996 0x1244 STHDA - ok
16:15:39.0046 0x1244 [ 15825C1FBFB8779992CB65087F316AF5 ] stisvc C:\Windows\System32\wiaservc.dll
16:15:39.0081 0x1244 stisvc - ok
16:15:39.0134 0x1244 [ 1D0063597C3666404FCF97698ABEB019 ] stllssvr C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
16:15:39.0148 0x1244 stllssvr - ok
16:15:39.0185 0x1244 [ 8A851CA908B8B974F89C50D2E18D4F0C ] swenum C:\Windows\system32\DRIVERS\swenum.sys
16:15:39.0200 0x1244 swenum - ok
16:15:39.0250 0x1244 [ 6DE37F4DE19D4EFD9C48C43ADDBC949A ] swprv C:\Windows\System32\swprv.dll
16:15:39.0293 0x1244 swprv - ok
16:15:39.0312 0x1244 [ 2F26A2C6FC96B29BEFF5D8ED74E6625B ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
16:15:39.0328 0x1244 Symc8xx - ok
16:15:39.0346 0x1244 [ A909667976D3BCCD1DF813FED517D837 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
16:15:39.0366 0x1244 Sym_hi - ok
16:15:39.0394 0x1244 [ 36887B56EC2D98B9C362F6AE4DE5B7B0 ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
16:15:39.0410 0x1244 Sym_u3 - ok
16:15:39.0480 0x1244 [ 92D7A8B0F87B036F17D25885937897A6 ] SysMain C:\Windows\system32\sysmain.dll
16:15:39.0628 0x1244 SysMain - ok
16:15:39.0662 0x1244 [ 005CE42567F9113A3BCCB3B20073B029 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:15:39.0686 0x1244 TabletInputService - ok
16:15:39.0719 0x1244 [ CC2562B4D55E0B6A4758C65407F63B79 ] TapiSrv C:\Windows\System32\tapisrv.dll
16:15:39.0757 0x1244 TapiSrv - ok
16:15:39.0792 0x1244 [ CDBE8D7C1E201B911CDC346D06617FB5 ] TBS C:\Windows\System32\tbssvc.dll
16:15:39.0836 0x1244 TBS - ok
16:15:39.0907 0x1244 [ EA8623BDD511A1ACD18DA4883860ADDE ] Tcpip C:\Windows\system32\drivers\tcpip.sys
16:15:39.0952 0x1244 Tcpip - ok
16:15:39.0979 0x1244 [ EA8623BDD511A1ACD18DA4883860ADDE ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
16:15:40.0023 0x1244 Tcpip6 - ok
16:15:40.0073 0x1244 [ 24D7686A4A0323FB987654BD228C1F39 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
16:15:40.0094 0x1244 tcpipreg - ok
16:15:40.0122 0x1244 [ 1D8BF4AAA5FB7A2761475781DC1195BC ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
16:15:40.0168 0x1244 TDPIPE - ok
16:15:40.0182 0x1244 [ 7F7E00CDF609DF657F4CDA02DD1C9BB1 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
16:15:40.0226 0x1244 TDTCP - ok
16:15:40.0262 0x1244 [ 458919C8C42E398DC4802178D5FFEE27 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
16:15:40.0297 0x1244 tdx - ok
16:15:40.0338 0x1244 [ 8C19678D22649EC002EF2282EAE92F98 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
16:15:40.0358 0x1244 TermDD - ok
16:15:40.0397 0x1244 [ 5CDD30BC217082DAC71A9878D9BFD566 ] TermService C:\Windows\System32\termsrv.dll
16:15:40.0442 0x1244 TermService - ok
16:15:40.0477 0x1244 [ 56793271ECDEDD350C5ADD305603E963 ] Themes C:\Windows\system32\shsvcs.dll
16:15:40.0503 0x1244 Themes - ok
16:15:40.0540 0x1244 [ 3CBE4995E80E13CCFBC42E5DCF3AC81A ] THREADORDER C:\Windows\system32\mmcss.dll
16:15:40.0585 0x1244 THREADORDER - ok
16:15:40.0612 0x1244 [ F4689F05AF472A651A7B1B7B02D200E7 ] TrkWks C:\Windows\System32\trkwks.dll
16:15:40.0662 0x1244 TrkWks - ok
16:15:40.0709 0x1244 [ 66328B08EF5A9305D8EDE36B93930369 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:15:40.0743 0x1244 TrustedInstaller - ok
16:15:40.0780 0x1244 [ B2388462329ACD17AF50D8701E0C1B18 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
16:15:40.0800 0x1244 tssecsrv - ok
16:15:40.0833 0x1244 [ 89EC74A9E602D16A75A4170511029B3C ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
16:15:40.0854 0x1244 tunmp - ok
16:15:40.0876 0x1244 [ 30A9B3F45AD081BFFC3BCAA9C812B609 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
16:15:40.0900 0x1244 tunnel - ok
16:15:41.0038 0x1244 [ CAB2922AC4D409490E8402281166863C ] TVersityMediaServer C:\Users\Ray\AppData\Local\TVersity\Media Server\MediaServer.exe
16:15:41.0069 0x1244 TVersityMediaServer ( UnsignedFile.Multi.Generic ) - warning
16:15:41.0069 0x1244 TVersityMediaServer - detected UnsignedFile.Multi.Generic (1)
16:15:41.0114 0x1244 [ FEC266EF401966311744BD0F359F7F56 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
16:15:41.0131 0x1244 uagp35 - ok
16:15:41.0180 0x1244 [ FAF2640A2A76ED03D449E443194C4C34 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
16:15:41.0218 0x1244 udfs - ok
16:15:41.0258 0x1244 [ 060507C4113391394478F6953A79EEDC ] UI0Detect C:\Windows\system32\UI0Detect.exe
16:15:41.0304 0x1244 UI0Detect - ok
16:15:41.0327 0x1244 [ 4EC9447AC3AB462647F60E547208CA00 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
16:15:41.0345 0x1244 uliagpkx - ok
16:15:41.0377 0x1244 [ 697F0446134CDC8F99E69306184FBBB4 ] uliahci C:\Windows\system32\drivers\uliahci.sys
16:15:41.0397 0x1244 uliahci - ok
16:15:41.0417 0x1244 [ 31707F09846056651EA2C37858F5DDB0 ] UlSata C:\Windows\system32\drivers\ulsata.sys
16:15:41.0435 0x1244 UlSata - ok
16:15:41.0472 0x1244 [ 85E5E43ED5B48C8376281BAB519271B7 ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
16:15:41.0490 0x1244 ulsata2 - ok
16:15:41.0506 0x1244 [ 46E9A994C4FED537DD951F60B86AD3F4 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
16:15:41.0549 0x1244 umbus - ok
16:15:41.0644 0x1244 [ AF950F62E5FC72FFDB7363F72600B21C ] UmxEngine C:\Program Files\CA\SharedComponents\TMEngine\UmxEngine.exe
16:15:41.0677 0x1244 UmxEngine - ok
16:15:41.0710 0x1244 [ 7093799FF80E9DECA0680D2E3535BE60 ] upnphost C:\Windows\System32\upnphost.dll
16:15:41.0761 0x1244 upnphost - ok
16:15:41.0804 0x1244 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
16:15:41.0813 0x1244 USBAAPL64 ( UnsignedFile.Multi.Generic ) - warning
16:15:41.0813 0x1244 USBAAPL64 - detected UnsignedFile.Multi.Generic (1)
16:15:41.0879 0x1244 [ C6BA890DE6E41857FBE84175519CAE7D ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
16:15:41.0914 0x1244 usbaudio - ok
16:15:41.0953 0x1244 [ 07E3498FC60834219D2356293DA0FECC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
16:15:41.0984 0x1244 usbccgp - ok
16:15:42.0030 0x1244 [ 9247F7E0B65852C1F6631480984D6ED2 ] usbcir C:\Windows\system32\drivers\usbcir.sys
16:15:42.0096 0x1244 usbcir - ok
16:15:42.0131 0x1244 [ 827E44DE934A736EA31E91D353EB126F ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
16:15:42.0174 0x1244 usbehci - ok
16:15:42.0193 0x1244 [ BB35CD80A2ECECFADC73569B3D70C7D1 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
16:15:42.0230 0x1244 usbhub - ok
16:15:42.0252 0x1244 [ EBA14EF0C07CEC233F1529C698D0D154 ] usbohci C:\Windows\system32\drivers\usbohci.sys
16:15:42.0314 0x1244 usbohci - ok
16:15:42.0352 0x1244 [ 28B693B6D31E7B9332C1BDCEFEF228C1 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
16:15:42.0398 0x1244 usbprint - ok
16:15:42.0449 0x1244 [ B854C1558FCA0C269A38663E8B59B581 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:15:42.0487 0x1244 USBSTOR - ok
16:15:42.0529 0x1244 [ B2872CBF9F47316ABD0E0C74A1ABA507 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
16:15:42.0563 0x1244 usbuhci - ok
16:15:42.0615 0x1244 [ FC33099877790D51B0927B7039059855 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
16:15:42.0664 0x1244 usbvideo - ok
16:15:42.0712 0x1244 [ C690C8B45DB67DBA284B72D1FD649D2C ] usb_rndisx C:\Windows\system32\DRIVERS\usb8023x.sys
16:15:42.0732 0x1244 usb_rndisx - ok
16:15:42.0756 0x1244 [ D76E231E4850BB3F88A3D9A78DF191E3 ] UxSms C:\Windows\System32\uxsms.dll
16:15:42.0791 0x1244 UxSms - ok
16:15:42.0839 0x1244 [ 294945381DFA7CE58CECF0A9896AF327 ] vds C:\Windows\System32\vds.exe
16:15:42.0883 0x1244 vds - ok
16:15:42.0913 0x1244 [ 916B94BCF1E09873FFF2D5FB11767BBC ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
16:15:42.0958 0x1244 vga - ok
16:15:42.0979 0x1244 [ B83AB16B51FEDA65DD81B8C59D114D63 ] VgaSave C:\Windows\System32\drivers\vga.sys
16:15:43.0021 0x1244 VgaSave - ok
16:15:43.0043 0x1244 [ 8294B6C3FDB6C33F24E150DE647ECDAA ] viaide C:\Windows\system32\drivers\viaide.sys
16:15:43.0059 0x1244 viaide - ok
16:15:43.0084 0x1244 [ 2B7E885ED951519A12C450D24535DFCA ] volmgr C:\Windows\system32\drivers\volmgr.sys
16:15:43.0103 0x1244 volmgr - ok
16:15:43.0145 0x1244 [ CEC5AC15277D75D9E5DEC2E1C6EAF877 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
16:15:43.0172 0x1244 volmgrx - ok
16:15:43.0211 0x1244 [ 582F710097B46140F5A89A19A6573D4B ] volsnap C:\Windows\system32\drivers\volsnap.sys
16:15:43.0231 0x1244 volsnap - ok
16:15:43.0276 0x1244 [ A68F455ED2673835209318DD61BFBB0E ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
16:15:43.0294 0x1244 vsmraid - ok
16:15:43.0355 0x1244 [ B75232DAD33BFD95BF6F0A3E6BFF51E1 ] VSS C:\Windows\system32\vssvc.exe
16:15:43.0428 0x1244 VSS - ok
16:15:43.0505 0x1244 [ F14A7DE2EA41883E250892E1E5230A9A ] W32Time C:\Windows\system32\w32time.dll
16:15:43.0549 0x1244 W32Time - ok
16:15:43.0572 0x1244 [ FEF8FE5923FEAD2CEE4DFABFCE3393A7 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
16:15:43.0635 0x1244 WacomPen - ok
16:15:43.0663 0x1244 [ B8E7049622300D20BA6D8BE0C47C0CFD ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
16:15:43.0697 0x1244 Wanarp - ok
16:15:43.0706 0x1244 [ B8E7049622300D20BA6D8BE0C47C0CFD ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
16:15:43.0741 0x1244 Wanarpv6 - ok
16:15:43.0777 0x1244 [ B4E4C37D0AA6100090A53213EE2BF1C1 ] wcncsvc C:\Windows\System32\wcncsvc.dll
16:15:43.0814 0x1244 wcncsvc - ok
16:15:43.0850 0x1244 [ EA4B369560E986F19D93F45A881484AC ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:15:43.0885 0x1244 WcsPlugInService - ok
16:15:43.0907 0x1244 [ 0C17A0816F65B89E362E682AD5E7266E ] Wd C:\Windows\system32\drivers\wd.sys
16:15:43.0923 0x1244 Wd - ok
16:15:43.0972 0x1244 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
16:15:44.0006 0x1244 Wdf01000 - ok
16:15:44.0039 0x1244 [ C5EFDA73EBFCA8B02A094898DE0A9276 ] WdiServiceHost C:\Windows\system32\wdi.dll
16:15:44.0084 0x1244 WdiServiceHost - ok
16:15:44.0089 0x1244 [ C5EFDA73EBFCA8B02A094898DE0A9276 ] WdiSystemHost C:\Windows\system32\wdi.dll
16:15:44.0137 0x1244 WdiSystemHost - ok
16:15:44.0187 0x1244 [ 3E6D05381CF35F75EBB055544A8ED9AC ] WebClient C:\Windows\System32\webclnt.dll
16:15:44.0214 0x1244 WebClient - ok
16:15:44.0250 0x1244 [ 8D40BC587993F876658BF9FB0F7D3462 ] Wecsvc C:\Windows\system32\wecsvc.dll
16:15:44.0276 0x1244 Wecsvc - ok
16:15:44.0304 0x1244 [ 9C980351D7E96288EA0C23AE232BD065 ] wercplsupport C:\Windows\System32\wercplsupport.dll
16:15:44.0340 0x1244 wercplsupport - ok
16:15:44.0360 0x1244 [ 66B9ECEBC46683F47EDC06333C075FEF ] WerSvc C:\Windows\System32\WerSvc.dll
16:15:44.0397 0x1244 WerSvc - ok
16:15:44.0406 0x1244 WinDefend - ok
16:15:44.0569 0x1244 [ 2A58BD824D13AA6471894E75A5BAC141 ] WinExtManager C:\Windows\SysWOW64\mdmcls32.exe
16:15:44.0705 0x1244 WinExtManager ( UnsignedFile.Multi.Generic ) - warning
16:15:44.0705 0x1244 WinExtManager - detected UnsignedFile.Multi.Generic (1)
16:15:44.0710 0x1244 WinHttpAutoProxySvc - ok
16:15:44.0787 0x1244 [ D2E7296ED1BD26D8DB2799770C077A02 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
16:15:44.0823 0x1244 Winmgmt - ok
16:15:44.0905 0x1244 [ 6CBB0C68F13B9C2EC1B16F5FA5E7C869 ] WinRM C:\Windows\system32\WsmSvc.dll
16:15:44.0979 0x1244 WinRM - ok
16:15:45.0025 0x1244 [ DD6E468A1FE2E7BACF50C3839A925A42 ] WinSvchostManagerSrv C:\Windows\SysWOW64\cfgmig32.exe
16:15:45.0041 0x1244 WinSvchostManagerSrv - ok
16:15:45.0081 0x1244 [ EC339C8115E91BAED835957E9A677F16 ] Wlansvc C:\Windows\System32\wlansvc.dll
16:15:45.0115 0x1244 Wlansvc - ok
16:15:45.0123 0x1244 wltrysvc - ok
16:15:45.0153 0x1244 [ E18AEBAAA5A773FE11AA2C70F65320F5 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
16:15:45.0172 0x1244 WmiAcpi - ok
16:15:45.0207 0x1244 [ 21FA389E65A852698B6A1341F36EE02D ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
16:15:45.0243 0x1244 wmiApSrv - ok
16:15:45.0276 0x1244 WMPNetworkSvc - ok
16:15:45.0305 0x1244 [ CBC156C913F099E6680D1DF9307DB7A8 ] WPCSvc C:\Windows\System32\wpcsvc.dll
16:15:45.0331 0x1244 WPCSvc - ok
16:15:45.0380 0x1244 [ 490A18B4E4D53DC10879DEAA8E8B70D9 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
16:15:45.0409 0x1244 WPDBusEnum - ok
16:15:45.0442 0x1244 [ 5E2401B3FC1089C90E081291357371A9 ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
16:15:45.0463 0x1244 WpdUsb - ok
16:15:45.0621 0x1244 [ 2BB372F43C705D85680ADE4933C8EE3E ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe
16:15:45.0657 0x1244 WPFFontCache_v0400 - ok
16:15:45.0683 0x1244 [ 8A900348370E359B6BFF6A550E4649E1 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
16:15:45.0730 0x1244 ws2ifsl - ok
16:15:45.0761 0x1244 [ 9EA3E6D0EF7A5C2B9181961052A4B01A ] wscsvc C:\Windows\system32\wscsvc.dll
16:15:45.0786 0x1244 wscsvc - ok
16:15:45.0791 0x1244 WSearch - ok
16:15:45.0894 0x1244 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
16:15:46.0094 0x1244 wuauserv - ok
16:15:46.0142 0x1244 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
16:15:46.0164 0x1244 WudfPf - ok
16:15:46.0191 0x1244 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
16:15:46.0218 0x1244 WUDFRd - ok
16:15:46.0250 0x1244 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
16:15:46.0274 0x1244 wudfsvc - ok
16:15:46.0289 0x1244 yksvc - ok
16:15:46.0348 0x1244 [ B681CADB266B151061E7BAA82B0D77B7 ] yukonx64 C:\Windows\system32\DRIVERS\yk60x64.sys
16:15:46.0381 0x1244 yukonx64 - ok
16:15:46.0429 0x1244 ================ Scan global ===============================
16:15:46.0461 0x1244 [ 060DC3A7A9A2626031EB23D90151428D ] C:\Windows\system32\basesrv.dll
16:15:46.0495 0x1244 [ D665D594B7E11133D29D726BDDC7A5B0 ] C:\Windows\system32\winsrv.dll
16:15:46.0512 0x1244 [ D665D594B7E11133D29D726BDDC7A5B0 ] C:\Windows\system32\winsrv.dll
16:15:46.0558 0x1244 [ 934E0B7D77FF78C18D9F8891221B6DE3 ] C:\Windows\system32\services.exe
16:15:46.0563 0x1244 [Global] - ok
16:15:46.0564 0x1244 ================ Scan MBR ==================================
16:15:46.0585 0x1244 [ CDB4DE4BBD714F152979DA2DCBEF57EB ] \Device\Harddisk0\DR0
16:15:47.0107 0x1244 \Device\Harddisk0\DR0 - ok
16:15:47.0107 0x1244 ================ Scan VBR ==================================
16:15:47.0139 0x1244 [ D07218B894A0A3AC4B7418F868DB922D ] \Device\Harddisk0\DR0\Partition1
16:15:47.0141 0x1244 \Device\Harddisk0\DR0\Partition1 - ok
16:15:47.0149 0x1244 [ C867750BC09BD8E16BB7CD93DA6464E6 ] \Device\Harddisk0\DR0\Partition2
16:15:47.0151 0x1244 \Device\Harddisk0\DR0\Partition2 - ok
16:15:47.0151 0x1244 ============================================================
16:15:47.0152 0x1244 Scan finished
16:15:47.0152 0x1244 ============================================================
16:15:47.0166 0x1138 Detected object count: 10
16:15:47.0166 0x1138 Actual detected object count: 10
16:16:00.0093 0x1138 !SASCORE ( UnsignedFile.Multi.Generic ) - skipped by user
16:16:00.0094 0x1138 !SASCORE ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:16:00.0096 0x1138 Creative ALchemy AL6 Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
16:16:00.0096 0x1138 Creative ALchemy AL6 Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:16:00.0099 0x1138 Creative Audio Engine Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
16:16:00.0099 0x1138 Creative Audio Engine Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:16:00.0102 0x1138 CTAudSvcService ( UnsignedFile.Multi.Generic ) - skipped by user
16:16:00.0102 0x1138 CTAudSvcService ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:16:00.0108 0x1138 DockLoginService ( UnsignedFile.Multi.Generic ) - skipped by user
16:16:00.0108 0x1138 DockLoginService ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:16:00.0109 0x1138 PassThru Service ( UnsignedFile.Multi.Generic ) - skipped by user
16:16:00.0109 0x1138 PassThru Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:16:00.0113 0x1138 Sound Blaster X-Fi MB Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
16:16:00.0113 0x1138 Sound Blaster X-Fi MB Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:16:00.0115 0x1138 TVersityMediaServer ( UnsignedFile.Multi.Generic ) - skipped by user
16:16:00.0115 0x1138 TVersityMediaServer ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:16:00.0118 0x1138 USBAAPL64 ( UnsignedFile.Multi.Generic ) - skipped by user
16:16:00.0118 0x1138 USBAAPL64 ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:16:00.0121 0x1138 WinExtManager ( UnsignedFile.Multi.Generic ) - skipped by user
16:16:00.0121 0x1138 WinExtManager ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:16:05.0999 0x142c Deinitialize success

# AdwCleaner v3.002 - Report created 02/09/2013 at 16:19:53
# Updated 01/09/2013 by Xplode
# Operating System : Windows ™ Vista Home Premium Service Pack 2 (64 bits)
# Username : Ray - PROTON
# Running from : C:\Users\Ray\Downloads\AdwCleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKLM\SOFTWARE\Classes\CLSID\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}
Key Found : HKLM\SOFTWARE\Classes\Interface\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}
Key Found : HKLM\SOFTWARE\Classes\Toolbar.CT2790392
Key Found : HKLM\SOFTWARE\Classes\Toolbar.CT3288691

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16502


-\\ Mozilla Firefox v23.0.1 (en-US)

[ File : C:\Users\Ray\AppData\Roaming\Mozilla\Firefox\Profiles\vjw75e7v.default\prefs.js ]


-\\ Google Chrome v29.0.1547.62

[ File : C:\Users\Ray\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [6811 octets] - [28/08/2013 19:33:07]
AdwCleaner[R1].txt - [1089 octets] - [02/09/2013 16:19:53]
AdwCleaner[S0].txt - [6761 octets] - [28/08/2013 19:34:39]

########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [1209 octets] ##########

Farbar Service Scanner Version: 28-08-2013
Ran by Ray (administrator) on 02-09-2013 at 16:22:44
Running from "C:\Users\Ray\Downloads"
Microsoft® Windows Vista Home Premium Service Pack 2 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcsvc.dll
[2009-12-04 09:23] - [2009-04-11 03:11] - 0268288 ____A (Microsoft Corporation) 3ED0321127CE70ACDAABBF77E157C2A7

C:\Windows\System32\drivers\afd.sys
[2012-02-16 07:45] - [2012-01-03 10:25] - 0404992 ____A (Microsoft Corporation) C4F6CE6087760AD70960C9EB130E7943

C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys
[2013-08-15 01:48] - [2013-07-04 23:58] - 1417664 ____A (Microsoft Corporation) EA8623BDD511A1ACD18DA4883860ADDE

C:\Windows\System32\dnsrslvr.dll
[2011-04-16 07:40] - [2011-03-02 12:12] - 0117760 ____A (Microsoft Corporation) 06230F1B721494A6DF8D47FD395BB1B0

C:\Windows\System32\mpssvc.dll
[2009-12-04 09:23] - [2009-04-11 03:11] - 0603136 ____A (Microsoft Corporation) 897E3BAF68BA406A61682AE39C83900C

C:\Windows\System32\bfe.dll
[2009-12-04 09:22] - [2009-04-11 03:11] - 0458240 ____A (Microsoft Corporation) FFB96C2589FFA60473EAD78B39FBDE29

C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe
[2009-12-04 09:24] - [2009-04-11 03:11] - 1433600 ____A (Microsoft Corporation) B75232DAD33BFD95BF6F0A3E6BFF51E1

C:\Windows\System32\wscsvc.dll
[2009-12-04 09:21] - [2009-04-11 03:11] - 0074752 ____A (Microsoft Corporation) 9EA3E6D0EF7A5C2B9181961052A4B01A

C:\Windows\System32\wbem\WMIsvc.dll
[2009-12-04 09:23] - [2009-04-11 03:11] - 0221696 ____A (Microsoft Corporation) D2E7296ED1BD26D8DB2799770C077A02

C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll
[2009-12-04 09:24] - [2009-04-11 03:11] - 1081856 ____A (Microsoft Corporation) 6D316F4859634071CC25C4FD4589AD2C

C:\Windows\System32\es.dll
[2009-12-04 09:24] - [2009-04-11 03:11] - 0361984 ____A (Microsoft Corporation) E12F22B73F153DECE721CD45EC05B4AF

C:\Windows\System32\cryptsvc.dll
[2013-08-14 07:41] - [2013-07-08 00:12] - 0174592 ____A (Microsoft Corporation) 5AAC48EAF8EACF247DB44FB61B900D89

C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll
[2009-12-04 09:24] - [2009-04-11 03:11] - 0719872 ____A (Microsoft Corporation) CF8B9A3A5E7DC57724A89D0C3E8CF9EF



**** End of log ****

MiniToolBox by Farbar Version: 13-07-2013
Ran by Ray (administrator) on 02-09-2013 at 16:28:35
Running from "C:\Users\Ray\Desktop"
Microsoft® Windows Vista Home Premium Service Pack 2 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1 localhost

========================= IP Configuration: ================================

Dell Wireless 1397 WLAN Mini-Card = Wireless Network Connection (Connected)
Marvell Yukon 88E8040 PCI-E Fast Ethernet Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Proton
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Dell Wireless 1397 WLAN Mini-Card
Physical Address. . . . . . . . . : 00-22-5F-E4-93-F0
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::d811:5db7:f7c3:a6c5%12(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.108(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Monday, September 02, 2013 1:26:46 PM
Lease Expires . . . . . . . . . . : Tuesday, September 03, 2013 1:26:45 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 285221471
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-12-1E-13-CD-00-25-64-50-1E-61
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Marvell Yukon 88E8040 PCI-E Fast Ethernet Controller
Physical Address. . . . . . . . . : 00-25-64-50-1E-61
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 6:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{133C24C8-9D63-4CD3-A73A-7E880859DF65}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 7:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6abd:2023:18fd:3f57:fe93(Preferred)
Link-local IPv6 Address . . . . . : fe80::2023:18fd:3f57:fe93%10(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter Local Area Connection* 12:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{7D105962-E6C4-43A7-B1FF-1EF14CAEAAB0}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: WheelersFarmsRo
Address: 192.168.1.1

Name: google.com
Addresses: 2607:f8b0:4006:803::1003
74.125.226.206
74.125.226.193
74.125.226.201
74.125.226.192
74.125.226.195
74.125.226.199
74.125.226.197
74.125.226.200
74.125.226.196
74.125.226.198
74.125.226.194



Pinging google.com [74.125.226.194] with 32 bytes of data:

Reply from 74.125.226.194: bytes=32 time=13ms TTL=53

Reply from 74.125.226.194: bytes=32 time=16ms TTL=53



Ping statistics for 74.125.226.194:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 13ms, Maximum = 16ms, Average = 14ms

Server: WheelersFarmsRo
Address: 192.168.1.1

Name: yahoo.com
Addresses: 98.139.183.24
98.138.253.109
206.190.36.45



Pinging yahoo.com [206.190.36.45] with 32 bytes of data:

Reply from 206.190.36.45: bytes=32 time=235ms TTL=47

Reply from 206.190.36.45: bytes=32 time=160ms TTL=48



Ping statistics for 206.190.36.45:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 160ms, Maximum = 235ms, Average = 197ms



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time 990x80041003

Error: (09/01/2013 08:37:34 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/31/2013 07:55:28 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/30/2013 07:08:14 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/29/2013 06:54:24 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/28/2013 07:38:39 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/28/2013 07:02:42 PM) (Source: Perflib) (User: )
Description: EmdCacheC:\Windows\system32\emdmgmt.dll8

Error: (08/28/2013 06:39:58 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/28/2013 06:52:52 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (09/02/2013 01:28:08 PM) (Source: Service Control Manager) (User: )
Description: Beep

Error: (09/02/2013 01:28:08 PM) (Source: Service Control Manager) (User: )
Description: Windows Image Acquisition (WIA)Shell Hardware Detection%%1058

Error: (09/02/2013 01:28:08 PM) (Source: Service Control Manager) (User: )
Description: USB RNDIS Adapter%%1058

Error: (09/02/2013 01:28:08 PM) (Source: Service Control Manager) (User: )
Description: RemoteControl-USBLAN%%1058

Error: (09/02/2013 01:28:08 PM) (Source: Service Control Manager) (User: )
Description: Intel® PRO/1000 NDIS 6 Adapter Driver%%1058

Error: (09/02/2013 01:28:08 PM) (Source: Service Control Manager) (User: )
Description: Intel® PRO/1000 PCI Express Network Connection Driver%%1058

Error: (09/02/2013 10:53:21 AM) (Source: Service Control Manager) (User: )
Description: WinSock Extention Manager1

Error: (09/02/2013 10:53:19 AM) (Source: Service Control Manager) (User: )
Description: Dell Wireless WLAN Tray Service1

Error: (09/01/2013 01:24:59 PM) (Source: Service Control Manager) (User: )
Description: Beep

Error: (09/01/2013 01:24:59 PM) (Source: Service Control Manager) (User: )
Description: Windows Image Acquisition (WIA)Shell Hardware Detection%%1058


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
Date: 2013-09-02 13:07:38.710
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\Backup\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18000_none_0f3cadd61ec3b22c_tcpip.sys_3339bd51 because the set of per-page image hashes could not be found on the system.

Date: 2013-09-02 13:07:37.753
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\Backup\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18000_none_0f3cadd61ec3b22c_tcpip.sys_3339bd51 because the set of per-page image hashes could not be found on the system.

Date: 2013-09-02 13:07:36.560
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\Backup\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18000_none_0f3cadd61ec3b22c_tcpip.sys_3339bd51 because the set of per-page image hashes could not be found on the system.

Date: 2013-09-02 13:07:35.727
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\Backup\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18000_none_0f3cadd61ec3b22c_tcpip.sys_3339bd51 because the set of per-page image hashes could not be found on the system.

Date: 2013-09-02 13:07:34.841
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\Backup\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18000_none_0f3cadd61ec3b22c_tcpip.sys_3339bd51 because the set of per-page image hashes could not be found on the system.

Date: 2013-09-02 13:07:34.014
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\Backup\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18000_none_0f3cadd61ec3b22c_tcpip.sys_3339bd51 because the set of per-page image hashes could not be found on the system.

Date: 2013-09-02 13:06:27.148
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18000_none_0f3cadd61ec3b22c\tcpip.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-09-02 13:06:26.316
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18000_none_0f3cadd61ec3b22c\tcpip.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-09-02 13:06:25.444
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18000_none_0f3cadd61ec3b22c\tcpip.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-09-02 13:06:24.620
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18000_none_0f3cadd61ec3b22c\tcpip.sys because the set of per-page image hashes could not be found on the system.


=========================== Installed Programs ============================

Amazon Cloud Player (Version: 1.1.0.337)
APH placeholder
Apple Mobile Device Support (Version: 6.1.0.13)
Bonjour (Version: 3.0.0.10)
CA Anti-Virus Plus (Version: 3.0.0.548)
CCleaner (Version: 3.26)
Dell Dock (Version: 1.0.0)
Dell Edoc Viewer (Version: 1.0.0)
Dell Support Center (Version: 3.2.6032.102)
Dell Touchpad (Version: 7.104.115.101)
Dell Wireless WLAN Card Utility (Version: 5.10.38.30)
doPDF 7.0 printer
Integrated Webcam Driver (1.02.01.0320) (Version: 1.02.01.0320)
Intel® Graphics Media Accelerator Driver
Intel® Matrix Storage Manager
iTunes (Version: 11.0.4.4)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30320)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Security Client (Version: 4.3.0216.0)
Microsoft Security Essentials (Version: 4.3.216.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Move Media Player
Optimum App for Laptop 1.62 (Version: 1.62)
Quickset (Version: 9.2.18)
SAMSUNG USB Driver for Mobile Phones (Version: 1.3.650.0)
Speccy (Version: 1.22)
SUPERAntiSpyware (Version: 5.0.1150)
Total Defense Internet Security Suite (Version: 8.0.0.215)

========================= Devices: ================================

Name: Creative Live! Camera
Description:
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: Creative Technology Ltd.
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


========================= Memory info: ===================================

Percentage of memory in use: 55%
Total physical RAM: 4055.45 MB
Available physical RAM: 1808.71 MB
Total Pagefile: 8286.12 MB
Available Pagefile: 5298.99 MB
Total Virtual: 4095.88 MB
Available Virtual: 3996.67 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:283.4 GB) (Free:188.97 GB) NTFS
2 Drive e: (RECOVERY) (Fixed) (Total:14.65 GB) (Free:5.97 GB) NTFS

========================= Users: ========================================

User accounts for \\PROTON

Administrator Guest Ray

========================= Minidump Files ==================================

========================= Restore Points ==================================

28-08-2013 10:58:47 Removed Java 7 Update 25
29-08-2013 13:24:26 Scheduled Checkpoint
31-08-2013 12:01:56 Windows Update
01-09-2013 13:28:38 Installed Java 7 Update 25
02-09-2013 04:00:01 Scheduled Checkpoint
02-09-2013 18:30:51 Scheduled Checkpoint

**** End of log ****

#4 Romaray

Romaray
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:41 PM

Posted 02 September 2013 - 06:52 PM

I always noticed that Java scripts do not run in either Firefox or Chrome. They are clearly enabled in Chrome, but I cannot even see where to enable them in FF. YouTube videos do not load/run either. Thanks again for your help and guidance.

#5 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:04:41 PM

Posted 03 September 2013 - 12:37 PM

Hi

 

I always noticed that Java scripts do not run in either Firefox or Chrome. They are clearly enabled in Chrome, but I cannot even see where to enable them in FF. YouTube videos do not load/run either.

- Ok. We'll look at this a bit later.

 

Please do the following next:

 

:step1:

 

Run Windows / Microsoft Update to check for updates
 

  • Click the Start button, click Control Panel, and then click Windows Update.       
  • Click Check for Updates
  • If there are any Important / High priority updates to install, please install them.
  • Do not install any of the Optional updates.
  • Restart your computer

 

 

:step2:

Download Malwarebytes' Anti-Malware (aka MBAM): http://www.malwarebytes.org/mbam-download.php to your desktop.
 

  • Double-click mbam-setup.exe and follow the prompts to install the program.
  • At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select Perform full scan, then click Scan.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Be sure that everything is checked, and click Remove Selected.
  • When completed, a log will open in Notepad.
  • Post the log in your next reply.

If requested by MBAM, restart the computer.

The log can also be found here:
C:\Users\<Username>\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt


:step3:

I'd like us to scan your machine with ESET Online Scanner:

Note: You can use either Internet Explorer or Mozilla FireFox for this scan. You will however need to disable your current installed Anti-Virus, how to do so can be read here.

Note: Vista/Windows 7 users: You will need to to right-click on the either the IE or FF icon in the Start Menu or Quick Launch Bar on the Taskbar and select Run as Administrator from the context menu.



  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png  button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the esetsmartinstaller_enu.png
       icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • On ESET: Click the Back button, then the Finish button.

Note: Do not forget to re-enable your Anti-Virus application after running the above scan!


:step4:

  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Clean.
  • Confirm each time with Ok.
  • You will be prompted to restart your computer. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.


:step5:

How is the computer running now?

 

 


Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#6 Romaray

Romaray
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:41 PM

Posted 05 September 2013 - 08:29 PM

Thanks for the continued help. OK here are the reports. 1. Ran MS update. No critical updates deeded. 2. Malwarebytes Malwarebytes Anti-Malware 1.75.0.1300 www.malwarebytes.org Database version: v2013.09.03.08 Windows Vista Service Pack 2 x64 NTFS Internet Explorer 9.0.8112.16421 Ray :: PROTON [administrator] 9/3/2013 6:45:08 PM mbam-log-2013-09-03 (18-45-08).txt Scan type: Full scan (C:\|E:\|) Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM Scan options disabled: P2P Objects scanned: 470802 Time elapsed: 2 hour(s), 44 minute(s), 20 second(s) Memory Processes Detected: 0 (No malicious items detected) Memory Modules Detected: 0 (No malicious items detected) Registry Keys Detected: 0 (No malicious items detected) Registry Values Detected: 0 (No malicious items detected) Registry Data Items Detected: 0 (No malicious items detected) Folders Detected: 0 (No malicious items detected) Files Detected: 0 (No malicious items detected) (end) 3.ESET C:\Program Files (x86)\Mozilla Firefox\nsprotector.js Win32/Conduit.SearchProtect.A application cleaned by deleting - quarantined C:\Program Files (x86)\Mozilla Firefox\browser\nsprotector.js Win32/Conduit.SearchProtect.A application cleaned by deleting - quarantined C:\Users\Ray\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\10\4ae2f8a-20b91ee1 a variant of Java/JShrink.A application cleaned by deleting - quarantined C:\Users\Ray\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\19\7b779d13-32b6e609 a variant of Java/JShrink.A application cleaned by deleting - quarantined C:\Users\Ray\Downloads\ARO2011_tbt.exe a variant of Win32/Bundled.Toolbar.Ask application cleaned by deleting - quarantined C:\Users\Ray\Downloads\cbsidlm-tr1_8-Combofix-SEO2-75221073 (1).exe Win32/DownloadAdmin.E application cleaned by deleting - quarantined C:\Users\Ray\Downloads\cbsidlm-tr1_8-Combofix-SEO2-75221073.exe Win32/DownloadAdmin.E application cleaned by deleting - quarantined C:\Users\Ray\Downloads\disk-defrag-setup.exe a variant of Win32/Bundled.Toolbar.Ask application cleaned by deleting - quarantined 4.ADWCleaner # AdwCleaner v3.002 - Report created 05/09/2013 at 06:44:54 # Updated 01/09/2013 by Xplode # Operating System : Windows ™ Vista Home Premium Service Pack 2 (64 bits) # Username : Ray - PROTON # Running from : C:\Users\Ray\Desktop\AdwCleaner(1).exe # Option : Scan ***** [ Services ] ***** ***** [ Files / Folders ] ***** ***** [ Shortcuts ] ***** ***** [ Registry ] ***** Key Found : HKLM\SOFTWARE\Classes\CLSID\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339} Key Found : HKLM\SOFTWARE\Classes\Interface\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339} Key Found : HKLM\SOFTWARE\Classes\Toolbar.CT2790392 Key Found : HKLM\SOFTWARE\Classes\Toolbar.CT3288691 ***** [ Browsers ] ***** -\\ Internet Explorer v9.0.8112.16502 -\\ Mozilla Firefox v23.0.1 (en-US) [ File : C:\Users\Ray\AppData\Roaming\Mozilla\Firefox\Profiles\vjw75e7v.default\prefs.js ] -\\ Google Chrome v29.0.1547.66 [ File : C:\Users\Ray\AppData\Local\Google\Chrome\User Data\Default\preferences ] ************************* AdwCleaner[R0].txt - [6811 octets] - [28/08/2013 19:33:07] AdwCleaner[R1].txt - [1289 octets] - [02/09/2013 16:19:53] AdwCleaner[R2].txt - [1150 octets] - [05/09/2013 06:44:54] AdwCleaner[S0].txt - [6761 octets] - [28/08/2013 19:34:39] ########## EOF - C:\AdwCleaner\AdwCleaner[R2].txt - [1270 octets] ########## 5. Google search results still link to blank pages. No change there.

#7 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:04:41 PM

Posted 06 September 2013 - 05:02 AM

Hi. I'm away until tuesday GMT. I will not have access to a computer in this time, but will occasionally use mobile where I can.


Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#8 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:04:41 PM

Posted 09 September 2013 - 01:36 PM

5. Google search results still link to blank pages. No change there.

Can you provide screenshot(s) showing this?


Edited by dev00790, 09 September 2013 - 01:36 PM.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#9 Romaray

Romaray
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:41 PM

Posted 09 September 2013 - 06:47 PM

Welcome back. How do I return the screen captures to you? Attach a .png file?

#10 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:04:41 PM

Posted 10 September 2013 - 06:54 PM

Yes that's one way. Another is to upload them to a site like Mediafire and provide the links to the pictures you uploaded.

- The latter option is preferable since it wouldn't take up your storage space on BC.


Edited by dev00790, 10 September 2013 - 06:54 PM.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#11 Romaray

Romaray
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:41 PM

Posted 11 September 2013 - 06:01 AM

OK, using Mediafire, here are links to two screenshots. One shows the results from a Google search for "Toast" and the other shows the screen that I was directed to when I clicked on the result labeled as Wikipedia's page for Toast. http://www.mediafire.com/?7daey0a8wcob8vn http://www.mediafire.com/?2rgzh5hwxwac0ww

#12 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:04:41 PM

Posted 12 September 2013 - 06:49 AM

Does this happen in any other browsers or just firefox? If it happens in other browsers - which ones?


Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#13 Romaray

Romaray
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:41 PM

Posted 12 September 2013 - 03:49 PM

The problem manifests in Firefox, Chrome, and IE.



#14 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:04:41 PM

Posted 13 September 2013 - 04:00 AM

Please try the following:

 

Put: en.wikipedia.org/wiki/toast into the address bar in Firefox and press enter.

 

Do you get a blank page now?


Edited by dev00790, 13 September 2013 - 04:01 AM.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#15 Romaray

Romaray
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:41 PM

Posted 13 September 2013 - 04:31 PM

No, sir. I get the beautiful Wikipedia page on toast. The direct URL works just fine in Firefox and Chrome and IE.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users