Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

DCOM Service Process Error Message - Computer Shutsdown


  • Please log in to reply
12 replies to this topic

#1 mcgraphics

mcgraphics

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:01:33 AM

Posted 24 December 2013 - 10:25 AM

Hello and Happy Holidays!!

 

I have a problem with my computer that started yesterday afternoon. I have random commercials and music playing through my speakers and there is no windows up that could be playing these commercials or music. Also I'm constantly getting an error message pop up that the DCOM service process launcher service terminated and the computer will shutdown in 1 minute, I'm also getting another pop up occasionally that says that plug and play service terminated and the computer must shut down. Please if anyone can help that would be greatly appreciated. We are a graphics shop and this computer is our main computer for designing. Thank you for any responses.

 

 

Mario

 

Mod Edit: Moved from Windows 7 forum to a more appropriate forum.

Roger


Edited by rotor123, 24 December 2013 - 11:04 AM.


BC AdBot (Login to Remove)

 


#2 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:33 AM

Posted 24 December 2013 - 07:49 PM

Please download MINITOOLBOX and run it.

Checkmark following boxes:



Flush DNS
Reset FF proxy Settings
Reset Ie Proxy Settings
Report IE Proxy Settings
Report FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List Devices (problems only)



Click Go and post the result.

 

__________________________________________________-


Please Download the Norton Power Eraser.

https://security.symantec.com/nbrt/npe.aspx

Right Click NPE and run as Admin.

Go to advanced Options and perform a system scan.

Remove all it finds post the log here.

 

____________________________________________________________________-

 

Run a Full scan with MBAM.

 

Open malwarebytes update and do a Full scan!

http://www.malwarebytes.org/mbam/program/mbam-setup.exe

  • When the scan is complete, click OK, then Show Results to view the results.
  • Be sure that everything is Checked (ticked) and click on Remove Selected Post the log here,

 

______________________________________________________________________-

Download tdss killer

http://support.kaspersky.com/downloads/utils/tdsskiller.exe


Right Click it Run As Admin xp users double click . Click on Change parameters Select TDLFS file system

Hit the Scan button Post the LOG In your next reply

Do not change the default options on scan results

_________________________________________________--

 

  • Please download Adware cleaner from the link below.
  • http://general-changelog-team.fr/fr/downloads/finish/20-outils-de-xplode/2-adwcleaner
  • Save it to your desktop.
  • Right click run as admin.
  • Hit the scan button.
  • Allow completion.
  • Make sure all items are ticked.
  • Hit the clean button.
  • Even if no items are displayed to be ticked hit the clean button anyway.
  • The machine will reboot this is normal.
  • Post the log in your next reply.

_____________________________________________________________-

 

Please download JRT from here & double click to start the program.

  1. Hit any key when prompted and allow it to run through it's process.

    H2HaYv4.png
  2. Post the log when it's finished.


#3 mcgraphics

mcgraphics
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:01:33 AM

Posted 30 December 2013 - 12:12 PM

Hello,

 

Back at work and thank you for the response. Hope you had Merry Christmas. Below is the results of the Minitoolbox results: I will download the other program and post the results of that also in my next post. Thank you for your help

 

MiniToolBox by Farbar  Version: 18-12-2013
Ran by Matt Clower (administrator) on 30-12-2013 at 09:10:01
Running from "C:\Users\Matt Clower\Desktop\Movies"
Microsoft Windows 7 Professional  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.no_proxies_on", "localhost,127.0.0.1"
"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1       localhost

========================= IP Configuration: ================================

Realtek PCIe GBE Family Controller = Local Area Connection 2 (Connected)
Intel® 82579V Gigabit Network Connection = Local Area Connection (Media disconnected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)

# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled

popd
# End of IPv4 configuration

 

Windows IP Configuration

   Host Name . . . . . . . . . . . . : Mclow108234
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Bluetooth Network Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
   Physical Address. . . . . . . . . : 00-26-83-2D-59-D9
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection 2:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : C8-60-00-6A-02-70
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::6114:4ecc:f65c:8912%12(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.1.68(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Monday, December 30, 2013 8:49:36 AM
   Lease Expires . . . . . . . . . . : Monday, December 30, 2013 9:18:13 AM
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 315121664
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-17-0C-F5-11-C8-60-00-69-FC-86
   DNS Servers . . . . . . . . . . . : 192.168.1.1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Intel® 82579V Gigabit Network Connection
   Physical Address. . . . . . . . . : C8-60-00-69-FC-86
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{F658E271-DC63-4FDE-BCA8-71C4ED64CBD1}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{9F88F3CD-3ABF-4337-9F6C-2B2FC475A95F}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6abd:c56:11f5:3f57:febb(Preferred)
   Link-local IPv6 Address . . . . . : fe80::c56:11f5:3f57:febb%18(Preferred)
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{0172800A-402A-4DDC-B08C-4D9AA786DF1E}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  UnKnown
Address:  192.168.1.1

Name:    google.com
Addresses:  2607:f8b0:4010:801::1008
   74.125.239.32
   74.125.239.33
   74.125.239.34
   74.125.239.35
   74.125.239.36
   74.125.239.37
   74.125.239.38
   74.125.239.39
   74.125.239.40
   74.125.239.41
   74.125.239.46

Pinging google.com [74.125.239.46] with 32 bytes of data:
Reply from 74.125.239.46: bytes=32 time=11ms TTL=54
Reply from 74.125.239.46: bytes=32 time=14ms TTL=54

Ping statistics for 74.125.239.46:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 11ms, Maximum = 14ms, Average = 12ms
Server:  UnKnown
Address:  192.168.1.1

Name:    yahoo.com
Addresses:  206.190.36.45
   98.138.253.109
   98.139.183.24

Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=98ms TTL=49
Reply from 98.139.183.24: bytes=32 time=109ms TTL=49

Ping statistics for 98.139.183.24:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 98ms, Maximum = 109ms, Average = 103ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 13...00 26 83 2d 59 d9 ......Bluetooth Device (Personal Area Network)
 12...c8 60 00 6a 02 70 ......Realtek PCIe GBE Family Controller
 11...c8 60 00 69 fc 86 ......Intel® 82579V Gigabit Network Connection
  1...........................Software Loopback Interface 1
 16...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
 18...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1     192.168.1.68     20
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link      192.168.1.68    276
     192.168.1.68  255.255.255.255         On-link      192.168.1.68    276
    192.168.1.255  255.255.255.255         On-link      192.168.1.68    276
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.1.68    276
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.1.68    276
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 18     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 18     58 2001::/32                On-link
 18    306 2001:0:9d38:6abd:c56:11f5:3f57:febb/128
                                    On-link
 12    276 fe80::/64                On-link
 18    306 fe80::/64                On-link
 18    306 fe80::c56:11f5:3f57:febb/128
                                    On-link
 12    276 fe80::6114:4ecc:f65c:8912/128
                                    On-link
  1    306 ff00::/8                 On-link
 18    306 ff00::/8                 On-link
 12    276 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 10 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 10 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (12/30/2013 08:51:17 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/30/2013 08:49:33 AM) (Source: Windows Search Service) (User: )
Description: The index cannot be initialized.

Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (12/30/2013 08:49:32 AM) (Source: Windows Search Service) (User: )
Description: The application cannot be initialized.

Context: Windows Application

Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (12/30/2013 08:49:32 AM) (Source: Windows Search Service) (User: )
Description: The gatherer object cannot be initialized.

Context: Windows Application, SystemIndex Catalog

Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (12/30/2013 08:49:32 AM) (Source: Windows Search Service) (User: )
Description: The plug-in in <Search.TripoliIndexer> cannot be initialized.

Context: Windows Application, SystemIndex Catalog

Details:
 Element not found.  (HRESULT : 0x80070490) (0x80070490)

Error: (12/30/2013 08:49:32 AM) (Source: Windows Search Service) (User: )
Description: The plug-in in <Search.JetPropStore> cannot be initialized.

Context: Windows Application, SystemIndex Catalog

Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (12/30/2013 08:49:32 AM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service cannot load the property store information.

Context: Windows Application, SystemIndex Catalog

Details:
 The content index database is corrupt.  (HRESULT : 0xc0041800) (0xc0041800)

Error: (12/30/2013 08:49:32 AM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service is being stopped because there is a problem with the indexer: The catalog is corrupt.

Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (12/30/2013 08:49:32 AM) (Source: Windows Search Service) (User: )
Description: The search service has detected corrupted data files in the index {id=4700}. The service will attempt to automatically correct this problem by rebuilding the index.

Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (12/30/2013 08:49:32 AM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service cannot open the Jet property store.

Details:
 0x%08x (0xc0041800 - The content index database is corrupt.  (HRESULT : 0xc0041800))

System errors:
=============
Error: (12/30/2013 08:50:06 AM) (Source: Service Control Manager) (User: )
Description: The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Windows Search service, but this action failed with the following error:
%%1056

Error: (12/30/2013 08:49:36 AM) (Source: Service Control Manager) (User: )
Description: The Windows Search service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.

Error: (12/30/2013 08:49:33 AM) (Source: Service Control Manager) (User: )
Description: The Windows Search service terminated with service-specific error %%-1073473535.

Error: (12/30/2013 08:49:32 AM) (Source: Service Control Manager) (User: )
Description: The Power service terminated with the following error:
%%4203

Error: (12/30/2013 08:49:32 AM) (Source: Service Control Manager) (User: )
Description: The vToolbarUpdater17.2.0 service failed to start due to the following error:
%%2

Error: (12/24/2013 00:18:28 PM) (Source: Service Control Manager) (User: )
Description: The Plug and Play service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (12/24/2013 00:18:28 PM) (Source: Service Control Manager) (User: )
Description: The DCOM Server Process Launcher service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Reboot the machine.

Error: (12/24/2013 11:19:21 AM) (Source: Service Control Manager) (User: )
Description: The Power service terminated with the following error:
%%4203

Error: (12/24/2013 11:19:21 AM) (Source: Service Control Manager) (User: )
Description: The vToolbarUpdater17.2.0 service failed to start due to the following error:
%%2

Error: (12/24/2013 11:16:59 AM) (Source: Service Control Manager) (User: )
Description: The Plug and Play service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.

Microsoft Office Sessions:
=========================
Error: (12/30/2013 08:51:17 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/30/2013 08:49:33 AM) (Source: Windows Search Service)(User: )
Description:
Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (12/30/2013 08:49:32 AM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application

Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (12/30/2013 08:49:32 AM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog

Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (12/30/2013 08:49:32 AM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog

Details:
 Element not found.  (HRESULT : 0x80070490) (0x80070490)
Search.TripoliIndexer

Error: (12/30/2013 08:49:32 AM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog

Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
Search.JetPropStore

Error: (12/30/2013 08:49:32 AM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog

Details:
 The content index database is corrupt.  (HRESULT : 0xc0041800) (0xc0041800)

Error: (12/30/2013 08:49:32 AM) (Source: Windows Search Service)(User: )
Description:
Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
The catalog is corrupt

Error: (12/30/2013 08:49:32 AM) (Source: Windows Search Service)(User: )
Description:
Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
4700

Error: (12/30/2013 08:49:32 AM) (Source: Windows Search Service)(User: )
Description:
Details:
 0x%08x (0xc0041800 - The content index database is corrupt.  (HRESULT : 0xc0041800))

CodeIntegrity Errors:
===================================
  Date: 2013-12-23 13:47:17.357
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-12-23 13:47:17.341
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

=========================== Installed Programs ============================

A2MCSetup (Version: 8.1.6)
abrMate version 1.1 (Version: 1.1)
Adobe Acrobat XI Pro (Version: 11.0.00)
Adobe AIR (Version: 3.7.0.1860)
Adobe Creative Suite 5 Master Collection (Version: 5.0)
Adobe Creative Suite 6 Master Collection (Version: 6)
Adobe Dreamweaver CS5.5 (Version: 11.5)
Adobe Flash Player 11 ActiveX (Version: 11.9.900.170)
Adobe Flash Player 11 Plugin (Version: 11.9.900.170)
Adobe Help Manager (Version: 4.0.244)
Adobe Media Player (Version: 1.8)
Adobe Photoshop CS5 (Version: 12.0)
Adobe Photoshop Lightroom 3.5 64-bit (Version: 3.5.1)
Adobe Reader X (10.1.3) (Version: 10.1.3)
Adobe Widget Browser (Version: 2.0 Build 230)
Adobe Widget Browser (Version: 2.0.230)
Akamai NetSession Interface
AKVIS ArtWork (Version: 5.0.1296.7573)
AKVIS Sketch (Version: 14.0.2545.8893)
AKVIS Sketch (Version: 15.0.2663.10076)
Alien Skin Blow Up 2
Alien Skin Blow Up 3
Alien Skin Eye Candy 7
Apple Application Support (Version: 2.3.4)
Apple Mobile Device Support (Version: 6.1.0.13)
Apple Software Update (Version: 2.1.3.127)
ArtCAM Pro 9.021 (Version: 9)
Aspire 3.0 (Version: 3.0)
AVG 2013 (Version: 13.0.2617)
BitTorrent (Version: 7.8.0.29626)
BitTorrent (Version: 7.8.1.30016)
bl (Version: 1.0.0)
Bluetooth Win7 Suite (64) (Version: 7.2.0.40)
Bonjour (Version: 3.0.0.10)
BrowseToSave (Version: 1.0)
Canon CanoScan LiDE 210 User Registration
Canon Inkjet Printer/Scanner/Fax Extended Survey Program
Canon MP Navigator EX 4.0
Canon Solution Menu EX
CanoScan LiDE 210 Scanner Driver
CardRecoveryPro 2.1.5 (Version: 2.1.5)
CCleaner (Version: 3.23)
Corel Graphics - Windows Shell Extension (Version: 16.1.0.843)
Corel Graphics - Windows Shell Extension (Version: 16.1.843)
Corel Graphics - Windows Shell Extension 64 Bit (Version: 16.1.843)
CorelDRAW Graphics Suite X5 - Capture (Version: 15.3)
CorelDRAW Graphics Suite X5 - Common (Version: 15.3)
CorelDRAW Graphics Suite X5 - Connect (Version: 15.3)
CorelDRAW Graphics Suite X5 - Custom Data (Version: 15.3)
CorelDRAW Graphics Suite X5 - Draw (Version: 15.3)
CorelDRAW Graphics Suite X5 - EN (Version: 15.3)
CorelDRAW Graphics Suite X5 - Filters (Version: 15.3)
CorelDRAW Graphics Suite X5 - FontNav (Version: 15.3)
CorelDRAW Graphics Suite X5 - IPM (Version: 15.3)
CorelDRAW Graphics Suite X5 - PHOTO-PAINT (Version: 15.3)
CorelDRAW Graphics Suite X5 - Photozoom Plugin (Version: 15.3)
CorelDRAW Graphics Suite X5 - Redist (Version: 15.3)
CorelDRAW Graphics Suite X5 - Setup Files (Version: 15.3)
CorelDRAW Graphics Suite X5 - VBA (Version: 15.3)
CorelDRAW Graphics Suite X5 - VideoBrowser (Version: 15.3)
CorelDRAW Graphics Suite X5 - VSTA (Version: 15.3)
CorelDRAW Graphics Suite X5 - WT (Version: 15.3)
CorelDRAW Graphics Suite X5 (Version: 15.3)
CorelDRAW Graphics Suite X6 - Capture (Version: 16.1)
CorelDRAW Graphics Suite X6 - Common (Version: 16.1)
CorelDRAW Graphics Suite X6 - Connect (Version: 16.1)
CorelDRAW Graphics Suite X6 - Custom Data (Version: 16.1)
CorelDRAW Graphics Suite X6 - Draw (Version: 16.1)
CorelDRAW Graphics Suite X6 - EN (Version: 16.1)
CorelDRAW Graphics Suite X6 - Filters (Version: 16.1)
CorelDRAW Graphics Suite X6 - FontNav (Version: 16.1)
CorelDRAW Graphics Suite X6 - IPM (Version: 16.1)
CorelDRAW Graphics Suite X6 - IPM Content (Version: 16.1)
CorelDRAW Graphics Suite X6 - PHOTO-PAINT (Version: 16.1)
CorelDRAW Graphics Suite X6 - Photozoom Plugin (Version: 16.1)
CorelDRAW Graphics Suite X6 - Redist (Version: 16.0)
CorelDRAW Graphics Suite X6 - Setup Files (Version: 16.1)
CorelDRAW Graphics Suite X6 - VBA (Version: 16.1)
CorelDRAW Graphics Suite X6 - VideoBrowser (Version: 16.1)
CorelDRAW Graphics Suite X6 - VSTA (Version: 16.1)
CorelDRAW Graphics Suite X6 - Writing Tools (Version: 16.1)
CorelDRAW Graphics Suite X6 (Version: 16.1)
CorelDRAW Graphics Suite X6 (Version: 16.1.0.843)
CorelDRAW® Graphics Suite X5 (Version: 15.2.0.686)
CuteFTP 8 Professional (Version: 8.3.4)
D3DX10 (Version: 15.4.2368.0902)
DCETools - ReDynaMix HDR
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Dropbox (Version: 2.0.22)
Express Zip File Compression Software
FileZilla Client 3.7.3 (Version: 3.7.3)
FullShot 9 (Remove Only)
GIMP 2.8.4 (Version: 2.8.4)
Google Update Helper (Version: 1.3.22.3)
GoToMeeting 5.1.0.880 (Version: 5.1.0.880)
GPL Ghostscript (Version: 9.05)
HijackThis 1.99.1 (Version: 1.99.1)
HitmanPro 3.7 (Version: 3.7.8.208)
HourGuard Time Sheet
HP Officejet Pro 8100 Basic Device Software (Version: 25.0.617.0)
HP Officejet Pro 8100 Help (Version: 140.0.2.2)
HP Update (Version: 5.003.000.004)
iCloud (Version: 2.1.2.8)
ImTOO iTransfer Platinum (Version: 5.4.10.20130417)
Intel® Network Connections Drivers (Version: 16.1)
Intel® Rapid Storage Technology (Version: 10.6.0.1002)
IrfanView (remove only) (Version: 4.30)
iTunes (Version: 11.0.4.4)
Java 2 Runtime Environment, SE v1.4.2_19 (Version: 1.4.2_19)
Java 7 Update 45 (Version: 7.0.450)
Java Auto Updater (Version: 2.1.9.5)
JDownloader 0.9 (Version: 0.9)
Knoll Light Factory Photo 32 bit (Version: 3.2)
LEDTool5 (X5)
LEDTool5 (X6)
LG CyberLink LabelPrint (Version: 2.5.2111)
LG CyberLink Power2Go (Version: 6.2.4009)
LG CyberLink PowerBackup (Version: 2.5.5529)
LG Power Tools (Version: 6.0.3316)
MagicDisc 2.7.106
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Manga Studio (Version: 5.0.0)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Security Client (Version: 4.4.0304.0)
Microsoft Security Essentials (Version: 4.4.304.0)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft Visual Basic for Applications 7.1 (x86) (Version: 7.1.00.00)
Microsoft Visual Basic for Applications 7.1 (x86) English (Version: 7.1.0.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual Studio Tools for Applications 2.0 - ENU (Version: 9.0.30729)
Microsoft Visual Studio Tools for Applications 2.0 Runtime (Version: 9.0.30729)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86 (Version: 1.00.0000)
Moyea FLV Editor Pro Version: 3.1.13.0
Mozilla Firefox 24.0 (x86 en-US) (Version: 24.0)
Mozilla Maintenance Service (Version: 24.0)
MSVCRT (Version: 15.4.2862.0708)
NVIDIA 3D Vision Controller Driver 296.10 (Version: 296.10)
NVIDIA 3D Vision Driver 296.10 (Version: 296.10)
NVIDIA Control Panel 296.10 (Version: 296.10)
NVIDIA Graphics Driver 296.10 (Version: 296.10)
NVIDIA HD Audio Driver 1.3.12.0 (Version: 1.3.12.0)
NVIDIA Install Application (Version: 2.1002.62.312)
NVIDIA PhysX (Version: 9.12.0213)
NVIDIA PhysX System Software 9.12.0213 (Version: 9.12.0213)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.12.9610)
OfficeTime (Version: 1.63)
PDF Settings CS5 (Version: 10.0)
PDF Settings CS6 (Version: 11.0)
Perfect Resize 7 (Version: 7.0.6)
ph (Version: 1.0.0)
photoFXlab (Version: 1.2.7)
PL-2303 USB-to-Serial (Version: 1.5.0)
PowerISO (Version: 5.6)
QuickTime (Version: 7.74.80.86)
RealDownloader (Version: 1.3.2)
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0)
RealPlayer (Version: 16.0.2)
Realtek High Definition Audio Driver (Version: 6.0.1.6235)
RealUpgrade 1.1 (Version: 1.1.0)
Renesas Electronics USB 3.0 Host Controller Driver (Version: 2.0.4.0)
Safari (Version: 5.34.57.2)
SignLab 9.1 Online Trial (C:\CADlink\SignLab 9.1 Trial) (Version: 9.1 Demo)
Signlab71 (Version: 71build4)
Silver Efex Pro 2 (Version: 2.0.0.0)
SUPERAntiSpyware (Version: 5.6.1014)
Topaz  InFocus (Version: 1.0.0)
Topaz Adjust 4 (64-bit) (Version: 4.1.0)
Topaz Adjust 4 (Version: 4.1.0)
Topaz Adjust 5 (Version: 5.0.1)
Topaz B&W Effects (64-bit) (Version: 1.0.0)
Topaz B&W Effects (Version: 1.0.0)
Topaz B&W Effects (Version: 2.1.0)
Topaz Clarity (Version: 1.0.0)
Topaz Clean 3 (64-bit) (Version: 3.0.2)
Topaz Clean 3 (Version: 3.0.2)
Topaz DeJpeg 4 (64-bit) (Version: 4.0.2)
Topaz DeJpeg 4 (Version: 4.0.2)
Topaz DeNoise 5 (64-bit) (Version: 5.0.1)
Topaz DeNoise 5 (Version: 5.0.1)
Topaz Detail 2 (64-bit) (Version: 2.0.5)
Topaz Detail 2 (Version: 2.0.5)
Topaz Detail 3 (Version: 3.1.0)
Topaz Fusion Express 2 (64-bit) (Version: 2.0.2)
Topaz Fusion Express 2 (Version: 2.0.2)
Topaz Fusion Express 2 (Version: 2.1.3)
Topaz InFocus (64-bit) (Version: 1.0.0)
Topaz InFocus (Version: 1.0.0)
Topaz Lens Effects (64-bit) (Version: 1.0.0)
Topaz Lens Effects (Version: 1.0.0)
Topaz Lens Effects (Version: 1.2.0)
Topaz ReMask 3 (64-bit) (Version: 3.1.0)
Topaz ReMask 3 (Version: 3.1.0)
Topaz ReMask 3 (Version: 3.2.1)
Topaz ReStyle (Version: 1.0.0)
Topaz Simplify 3 (64-bit) (Version: 3.0.2)
Topaz Simplify 3 (Version: 3.0.2)
Topaz Simplify 4 (Version: 4.0.0)
Topaz Star Effects (Version: 1.1.0)
Ultra Video Joiner 6.2.0411
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553092)
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition
Update for Microsoft Office 2010 (KB2598289) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
Update for Microsoft Office 2010 (KB2767886) 32-Bit Edition
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2589345) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Update for Microsoft Word 2010 (KB2837593) 32-Bit Edition
USB SoftV92 Data Fax Modem
VCarve Pro 6.0 (Version: 6.0)
Vectric Shell Extensions 1.0
Vertus Fluid Mask 3 3.2.3 (Version: 3.2.3)
VIP Task Manager Professional 4.2.5.641 (Version: 4.2.5.641)
Visual Basic for Applications ® Core - English (Version: 6.4.99.69)
Visual Basic for Applications ® Core (Version: 6.4.99.69)
Visual Production Manager OnlineTrial (C:\CADlink\VPM Trial) (Version: 5.01.00)
Visual Slideshow
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1)
Visual Studio 2012 x64 Redistributables (Version: 14.0.0.1)
Visual Studio 2012 x86 Redistributables (Version: 14.0.0.1)
Wacom Tablet (Version: 6.2.0w5)
WebTablet FB Plugin (Version: 2.0.0.4)
WebTablet IE Plugin (Version: 1.1.0.12)
WebTablet Netscape Plugin (Version: 1.1.0.10)
Winamp (Version: 5.63 )
Winamp Detector Plug-in (Version: 1.0.0.1)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
WinHTTrack Website Copier 3.47-14 (Version: 3.47.14)
WinRAR 4.11 (64-bit) (Version: 4.11.0)
WinZip 16.0 (Version: 16.0.9661)
Workspace Desktop
Wunderlist (Version: 2.0.6.12)
YouSendIt Desktop App (Version: 2.2.0.535)

========================= Devices: ================================

Name: WD SES Device USB Device
Description: WD SES Device USB Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Marvell 91xx Config ATA Device
Description: Marvell 91xx Config ATA Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

========================= Memory info: ===================================

Percentage of memory in use: 55%
Total physical RAM: 16360.75 MB
Available physical RAM: 7258.46 MB
Total Pagefile: 32719.68 MB
Available Pagefile: 19344.33 MB
Total Virtual: 4095.88 MB
Available Virtual: 3956.95 MB

========================= Partitions: =====================================

1 Drive c: (Windows 7) (Fixed) (Total:474.97 GB) (Free:343.77 GB) NTFS
2 Drive d: (Drive) (Fixed) (Total:1863.01 GB) (Free:783.6 GB) NTFS
3 Drive e: (Drive) (Fixed) (Total:931.51 GB) (Free:931.36 GB) NTFS
5 Drive g: (My Book) (Fixed) (Total:3725.99 GB) (Free:2232.03 GB) NTFS

========================= Users: ========================================

User accounts for \\MCLOW108234

Administrator            Guest                    Mario                   
Matt Clower             

**** End of log ****



#4 mcgraphics

mcgraphics
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:01:33 AM

Posted 30 December 2013 - 01:25 PM

This is the MBAM log, the Norton program didn't give me a log.txt file to post on here only the option to delete some files that were viruses:

 

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2013.12.30.06

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Matt Clower :: MCLOW108234 [administrator]

12/30/2013 10:05:23 AM
MBAM-log-2013-12-30 (10-24-25).txt

Scan type: Full scan (C:\|D:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 202811
Time elapsed: 18 minute(s), 39 second(s) [aborted]

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 17
C:\Program Files\Adobe\Adobe After Effects CS6\Support Files\amtlib.dll (PUP.RiskwareTool.CK) -> No action taken.
C:\Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\AMTLib.dll (PUP.RiskwareTool.CK) -> No action taken.
C:\Program Files\Adobe\Adobe Illustrator CS6 (64 Bit)\Support Files\Contents\Windows\amtlib.dll (PUP.RiskwareTool.CK) -> No action taken.
C:\Program Files\Adobe\Adobe Media Encoder CS6\amtlib.dll (PUP.RiskwareTool.CK) -> No action taken.
C:\Program Files\Adobe\Adobe Photoshop CS6 (64 Bit)\amtlib.dll (PUP.RiskwareTool.CK) -> No action taken.
C:\Program Files\Adobe\Adobe Premiere Pro CS6\amtlib.dll (PUP.RiskwareTool.CK) -> No action taken.
C:\Program Files\Adobe\Adobe SpeedGrade CS6\bin\amtlib.dll (PUP.RiskwareTool.CK) -> No action taken.
C:\Program Files (x86)\Adobe\Adobe Audition CS6\amtlib.dll (PUP.RiskwareTool.CK) -> No action taken.
C:\Program Files (x86)\Adobe\Adobe Bridge CS6\AMTLib.dll (PUP.RiskwareTool.CK) -> No action taken.
C:\Program Files (x86)\Adobe\Adobe Dreamweaver CS6\amtlib.dll (PUP.RiskwareTool.CK) -> No action taken.
C:\Program Files (x86)\Adobe\Adobe Fireworks CS6\amtlib.dll (PUP.RiskwareTool.CK) -> No action taken.
C:\Program Files (x86)\Adobe\Adobe Flash Builder 4.6\eclipse\plugins\com.adobe.flexide.amt_4.6.1.335153\os\win32\x86\amtlib.dll (PUP.RiskwareTool.CK) -> No action taken.
C:\Program Files (x86)\Adobe\Adobe Flash CS6\amtlib.dll (PUP.RiskwareTool.CK) -> No action taken.
C:\Program Files (x86)\Adobe\Adobe Illustrator CS6\Support Files\Contents\Windows\amtlib.dll (PUP.RiskwareTool.CK) -> No action taken.
C:\Program Files (x86)\Adobe\Adobe InDesign CS6\amtlib.dll (PUP.RiskwareTool.CK) -> No action taken.
C:\Program Files (x86)\Adobe\Adobe Photoshop CS6\amtlib.dll (PUP.RiskwareTool.CK) -> No action taken.
C:\Program Files (x86)\Adobe\Adobe Prelude CS6\amtlib.dll (PUP.RiskwareTool.CK) -> No action taken.

(end)



#5 mcgraphics

mcgraphics
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:01:33 AM

Posted 30 December 2013 - 01:28 PM

Below is the TDSkiller Log:

 

 

 

10:27:23.0237 6752 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42

10:27:25.0317 6752 ============================================================

10:27:25.0317 6752 Current date / time: 2013/12/30 10:27:25.0317

10:27:25.0317 6752 SystemInfo:

10:27:25.0317 6752

10:27:25.0317 6752 OS Version: 6.1.7601 ServicePack: 1.0

10:27:25.0317 6752 Product type: Workstation

10:27:25.0317 6752 ComputerName: MCLOW108234

10:27:25.0317 6752 UserName: Matt Clower

10:27:25.0317 6752 Windows directory: C:\Windows

10:27:25.0317 6752 System windows directory: C:\Windows

10:27:25.0317 6752 Running under WOW64

10:27:25.0317 6752 Processor architecture: Intel x64

10:27:25.0317 6752 Number of processors: 8

10:27:25.0317 6752 Page size: 0x1000

10:27:25.0317 6752 Boot type: Normal boot

10:27:25.0317 6752 ============================================================

10:27:25.0629 6752 Drive \Device\Harddisk2\DR2 - Size: 0x76BE400000 (474.97 Gb), SectorSize: 0x200, Cylinders: 0xF233, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

10:27:25.0629 6752 Drive \Device\Harddisk0\DR0 - Size: 0x1D1C1116000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

10:27:25.0629 6752 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

10:27:25.0675 6752 Drive \Device\Harddisk8\DR8 - Size: 0x3A37F700000 (3725.99 Gb), SectorSize: 0x1000, Cylinders: 0xED7F, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'

10:27:25.0675 6752 ============================================================

10:27:25.0675 6752 \Device\Harddisk2\DR2:

10:27:25.0675 6752 MBR partitions:

10:27:25.0675 6752 \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3B5F1000

10:27:25.0675 6752 \Device\Harddisk0\DR0:

10:27:25.0675 6752 MBR partitions:

10:27:25.0675 6752 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xE8E07800

10:27:25.0675 6752 \Device\Harddisk1\DR1:

10:27:25.0675 6752 MBR partitions:

10:27:25.0675 6752 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705800

10:27:25.0675 6752 \Device\Harddisk8\DR8:

10:27:25.0675 6752 MBR partitions:

10:27:25.0675 6752 \Device\Harddisk8\DR8\Partition1: MBR, Type 0x7, StartLBA 0x100, BlocksNum 0x3A37F600

10:27:25.0675 6752 ============================================================

10:27:25.0675 6752 C: <-> \Device\Harddisk2\DR2\Partition1

10:27:25.0691 6752 D: <-> \Device\Harddisk0\DR0\Partition1

10:27:25.0691 6752 E: <-> \Device\Harddisk1\DR1\Partition1

10:27:25.0691 6752 G: <-> \Device\Harddisk8\DR8\Partition1

10:27:25.0691 6752 ============================================================

10:27:25.0691 6752 Initialize success

10:27:25.0691 6752 ============================================================

10:27:32.0631 7896 ============================================================

10:27:32.0631 7896 Scan started

10:27:32.0631 7896 Mode: Manual; TDLFS;

10:27:32.0631 7896 ============================================================

10:27:32.0990 7896 ================ Scan system memory ========================

10:27:32.0990 7896 System memory - ok

10:27:32.0990 7896 ================ Scan services =============================

10:27:33.0006 7896 [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE

10:27:33.0006 7896 !SASCORE - ok

10:27:33.0099 7896 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys

10:27:33.0115 7896 1394ohci - ok

10:27:33.0115 7896 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys

10:27:33.0115 7896 ACPI - ok

10:27:33.0115 7896 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys

10:27:33.0115 7896 AcpiPmi - ok

10:27:33.0130 7896 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

10:27:33.0130 7896 AdobeARMservice - ok

10:27:33.0213 7896 [ 1BA1AB4141A92EB34DA99F1249CA2D4D ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

10:27:33.0213 7896 AdobeFlashPlayerUpdateSvc - ok

10:27:33.0213 7896 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys

10:27:33.0213 7896 adp94xx - ok

10:27:33.0213 7896 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys

10:27:33.0229 7896 adpahci - ok

10:27:33.0229 7896 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys

10:27:33.0229 7896 adpu320 - ok

10:27:33.0229 7896 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll

10:27:33.0229 7896 AeLookupSvc - ok

10:27:33.0229 7896 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys

10:27:33.0245 7896 AFD - ok

10:27:33.0245 7896 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys

10:27:33.0245 7896 agp440 - ok

10:27:33.0245 7896 [ 95BC4330FA44240CA00C641A73C7E62D ] aksdf C:\Windows\system32\drivers\aksdf.sys

10:27:33.0245 7896 aksdf - ok

10:27:33.0245 7896 [ E2E5CF34D6C56ACE5E986969A3D9B0B5 ] aksfridge C:\Windows\system32\drivers\aksfridge.sys

10:27:33.0245 7896 aksfridge - ok

10:27:33.0245 7896 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe

10:27:33.0245 7896 ALG - ok

10:27:33.0260 7896 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys

10:27:33.0260 7896 aliide - ok

10:27:33.0260 7896 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys

10:27:33.0260 7896 amdide - ok

10:27:33.0260 7896 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys

10:27:33.0260 7896 AmdK8 - ok

10:27:33.0276 7896 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys

10:27:33.0276 7896 AmdPPM - ok

10:27:33.0276 7896 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys

10:27:33.0276 7896 amdsata - ok

10:27:33.0276 7896 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys

10:27:33.0276 7896 amdsbs - ok

10:27:33.0276 7896 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys

10:27:33.0276 7896 amdxata - ok

10:27:33.0291 7896 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys

10:27:33.0291 7896 AppID - ok

10:27:33.0291 7896 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll

10:27:33.0291 7896 AppIDSvc - ok

10:27:33.0291 7896 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll

10:27:33.0291 7896 Appinfo - ok

10:27:33.0307 7896 [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

10:27:33.0307 7896 Apple Mobile Device - ok

10:27:33.0307 7896 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll

10:27:33.0307 7896 AppMgmt - ok

10:27:33.0307 7896 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys

10:27:33.0307 7896 arc - ok

10:27:33.0307 7896 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys

10:27:33.0307 7896 arcsas - ok

10:27:33.0307 7896 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys

10:27:33.0307 7896 AsyncMac - ok

10:27:33.0323 7896 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys

10:27:33.0323 7896 atapi - ok

10:27:33.0323 7896 [ AAAE03F8EDA817EC28C5445193EA8BF3 ] AthBTPort C:\Windows\system32\DRIVERS\btath_flt.sys

10:27:33.0323 7896 AthBTPort - ok

10:27:33.0323 7896 [ 4ECC791539F23982411864037D1AC8FC ] ATHDFU C:\Windows\system32\Drivers\AthDfu.sys

10:27:33.0323 7896 ATHDFU - ok

10:27:33.0323 7896 [ C34B28D6285EAD94B3A2FABA84E90DA5 ] AtherosSvc C:\Program Files (x86)\Bluetooth Suite\adminservice.exe

10:27:33.0323 7896 AtherosSvc - ok

10:27:33.0338 7896 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll

10:27:33.0338 7896 AudioEndpointBuilder - ok

10:27:33.0338 7896 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll

10:27:33.0354 7896 AudioSrv - ok

10:27:33.0354 7896 [ A1F53D2A00E64679A1D81B61D2333D06 ] avgtp C:\Windows\system32\drivers\avgtpx64.sys

10:27:33.0354 7896 avgtp - ok

10:27:33.0354 7896 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll

10:27:33.0354 7896 AxInstSV - ok

10:27:33.0354 7896 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys

10:27:33.0369 7896 b06bdrv - ok

10:27:33.0369 7896 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys

10:27:33.0369 7896 b57nd60a - ok

10:27:33.0369 7896 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll

10:27:33.0369 7896 BDESVC - ok

10:27:33.0369 7896 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys

10:27:33.0369 7896 Beep - ok

10:27:33.0385 7896 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll

10:27:33.0385 7896 BFE - ok

10:27:33.0401 7896 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll

10:27:33.0401 7896 BITS - ok

10:27:33.0401 7896 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys

10:27:33.0401 7896 blbdrive - ok

10:27:33.0416 7896 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe

10:27:33.0416 7896 Bonjour Service - ok

10:27:33.0416 7896 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys

10:27:33.0416 7896 bowser - ok

10:27:33.0416 7896 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys

10:27:33.0416 7896 BrFiltLo - ok

10:27:33.0416 7896 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys

10:27:33.0416 7896 BrFiltUp - ok

10:27:33.0432 7896 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys

10:27:33.0432 7896 BridgeMP - ok

10:27:33.0432 7896 [ 8EF0D5C41EC907751B8429162B1239ED ] Browser C:\Windows\System32\browser.dll

10:27:33.0432 7896 Browser - ok

10:27:33.0432 7896 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys

10:27:33.0432 7896 Brserid - ok

10:27:33.0432 7896 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys

10:27:33.0432 7896 BrSerWdm - ok

10:27:33.0432 7896 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys

10:27:33.0432 7896 BrUsbMdm - ok

10:27:33.0447 7896 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys

10:27:33.0447 7896 BrUsbSer - ok

10:27:33.0447 7896 [ 3B1B573371B206D1D5F25E0EF5FCD6D6 ] BTATH_A2DP C:\Windows\system32\drivers\btath_a2dp.sys

10:27:33.0447 7896 BTATH_A2DP - ok

10:27:33.0447 7896 [ 2D0446336D9DB55A742B999EC16ADF15 ] BTATH_BUS C:\Windows\system32\DRIVERS\btath_bus.sys

10:27:33.0447 7896 BTATH_BUS - ok

10:27:33.0447 7896 [ 9A9694BBEB2849EAF95DFFCAE5DF02AD ] BTATH_HCRP C:\Windows\system32\DRIVERS\btath_hcrp.sys

10:27:33.0447 7896 BTATH_HCRP - ok

10:27:33.0463 7896 [ FC0A8075DDF2E9C66267AEC91E0676F9 ] BTATH_LWFLT C:\Windows\system32\DRIVERS\btath_lwflt.sys

10:27:33.0463 7896 BTATH_LWFLT - ok

10:27:33.0463 7896 [ 5EB4815CBDDBA4541F2380DAE6E269AB ] BTATH_RCP C:\Windows\system32\DRIVERS\btath_rcp.sys

10:27:33.0463 7896 BTATH_RCP - ok

10:27:33.0463 7896 [ 0ECEDE7B33CFD9A52A61220ABBD09A50 ] BtFilter C:\Windows\system32\DRIVERS\btfilter.sys

10:27:33.0463 7896 BtFilter - ok

10:27:33.0463 7896 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys

10:27:33.0463 7896 BthEnum - ok

10:27:33.0479 7896 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys

10:27:33.0479 7896 BTHMODEM - ok

10:27:33.0479 7896 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys

10:27:33.0479 7896 BthPan - ok

10:27:33.0479 7896 [ 64C198198501F7560EE41D8D1EFA7952 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys

10:27:33.0479 7896 BTHPORT - ok

10:27:33.0494 7896 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll

10:27:33.0494 7896 bthserv - ok

10:27:33.0494 7896 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys

10:27:33.0494 7896 BTHUSB - ok

10:27:33.0494 7896 catchme - ok

10:27:33.0494 7896 [ B4C2D59EC667C969BB0F7024A5C710A8 ] CAXHWCD2 C:\Windows\system32\DRIVERS\CAXHWCD2.sys

10:27:33.0494 7896 CAXHWCD2 - ok

10:27:33.0510 7896 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys

10:27:33.0510 7896 cdfs - ok

10:27:33.0510 7896 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys

10:27:33.0510 7896 cdrom - ok

10:27:33.0510 7896 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll

10:27:33.0510 7896 CertPropSvc - ok

10:27:33.0510 7896 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys

10:27:33.0510 7896 circlass - ok

10:27:33.0525 7896 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys

10:27:33.0525 7896 CLFS - ok

10:27:33.0525 7896 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

10:27:33.0525 7896 clr_optimization_v2.0.50727_32 - ok

10:27:33.0541 7896 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe

10:27:33.0541 7896 clr_optimization_v2.0.50727_64 - ok

10:27:33.0557 7896 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe

10:27:33.0557 7896 clr_optimization_v4.0.30319_32 - ok

10:27:33.0572 7896 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe

10:27:33.0572 7896 clr_optimization_v4.0.30319_64 - ok

10:27:33.0572 7896 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys

10:27:33.0572 7896 CmBatt - ok

10:27:33.0572 7896 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys

10:27:33.0572 7896 cmdide - ok

10:27:33.0572 7896 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys

10:27:33.0572 7896 CNG - ok

10:27:33.0588 7896 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys

10:27:33.0588 7896 Compbatt - ok

10:27:33.0588 7896 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys

10:27:33.0588 7896 CompositeBus - ok

10:27:33.0588 7896 COMSysApp - ok

10:27:33.0588 7896 cpuz135 - ok

10:27:33.0588 7896 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys

10:27:33.0588 7896 crcdisk - ok

10:27:33.0603 7896 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll

10:27:33.0603 7896 CryptSvc - ok

10:27:33.0603 7896 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys

10:27:33.0603 7896 CSC - ok

10:27:33.0619 7896 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll

10:27:33.0619 7896 CscService - ok

10:27:33.0619 7896 [ E57C3E5430CA4248C88C5EB2A5571ADE ] DcomLaunch C:\Windows\system32\rpcss.dll

10:27:33.0619 7896 DcomLaunch - ok

10:27:33.0635 7896 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll

10:27:33.0635 7896 defragsvc - ok

10:27:33.0635 7896 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys

10:27:33.0635 7896 DfsC - ok

10:27:33.0635 7896 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll

10:27:33.0635 7896 Dhcp - ok

10:27:33.0650 7896 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys

10:27:33.0650 7896 discache - ok

10:27:33.0650 7896 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys

10:27:33.0650 7896 Disk - ok

10:27:33.0650 7896 [ 5DB085A8A6600BE6401F2B24EECB5415 ] dmvsc C:\Windows\system32\drivers\dmvsc.sys

10:27:33.0650 7896 dmvsc - ok

10:27:33.0650 7896 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll

10:27:33.0650 7896 Dnscache - ok

10:27:33.0650 7896 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll

10:27:33.0666 7896 dot3svc - ok

10:27:33.0666 7896 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll

10:27:33.0666 7896 DPS - ok

10:27:33.0666 7896 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys

10:27:33.0666 7896 drmkaud - ok

10:27:33.0681 7896 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys

10:27:33.0681 7896 DXGKrnl - ok

10:27:33.0681 7896 [ 471612D324D8682B98B267BD091D2219 ] e1cexpress C:\Windows\system32\DRIVERS\e1c62x64.sys

10:27:33.0681 7896 e1cexpress - ok

10:27:33.0697 7896 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll

10:27:33.0697 7896 EapHost - ok

10:27:33.0713 7896 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys

10:27:33.0728 7896 ebdrv - ok

10:27:33.0728 7896 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe

10:27:33.0728 7896 EFS - ok

10:27:33.0744 7896 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe

10:27:33.0744 7896 ehRecvr - ok

10:27:33.0744 7896 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe

10:27:33.0744 7896 ehSched - ok

10:27:33.0759 7896 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys

10:27:33.0759 7896 elxstor - ok

10:27:33.0759 7896 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys

10:27:33.0759 7896 ErrDev - ok

10:27:33.0775 7896 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll

10:27:33.0775 7896 EventSystem - ok

10:27:33.0775 7896 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys

10:27:33.0775 7896 exfat - ok

10:27:33.0775 7896 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys

10:27:33.0775 7896 fastfat - ok

10:27:33.0791 7896 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe

10:27:33.0791 7896 Fax - ok

10:27:33.0791 7896 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys

10:27:33.0791 7896 fdc - ok

10:27:33.0791 7896 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll

10:27:33.0791 7896 fdPHost - ok

10:27:33.0791 7896 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll

10:27:33.0806 7896 FDResPub - ok

10:27:33.0806 7896 [ 49E2E2C62D1A8FDEA2DDFF1778190FE3 ] File Backup C:\Program Files (x86)\Workspace\offSyncService.exe

10:27:33.0822 7896 File Backup - ok

10:27:33.0822 7896 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys

10:27:33.0822 7896 FileInfo - ok

10:27:33.0822 7896 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys

10:27:33.0822 7896 Filetrace - ok

10:27:33.0822 7896 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys

10:27:33.0822 7896 flpydisk - ok

10:27:33.0822 7896 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys

10:27:33.0822 7896 FltMgr - ok

10:27:33.0853 7896 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll

10:27:33.0853 7896 FontCache - ok

10:27:33.0853 7896 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

10:27:33.0853 7896 FontCache3.0.0.0 - ok

10:27:33.0853 7896 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys

10:27:33.0853 7896 FsDepends - ok

10:27:33.0853 7896 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys

10:27:33.0853 7896 Fs_Rec - ok

10:27:33.0853 7896 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys

10:27:33.0869 7896 fvevol - ok

10:27:33.0869 7896 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys

10:27:33.0869 7896 gagp30kx - ok

10:27:33.0869 7896 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys

10:27:33.0869 7896 GEARAspiWDM - ok

10:27:33.0869 7896 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll

10:27:33.0884 7896 gpsvc - ok

10:27:33.0884 7896 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

10:27:33.0884 7896 gupdate - ok

10:27:33.0884 7896 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

10:27:33.0884 7896 gupdatem - ok

10:27:33.0900 7896 [ 78FAD9117E4527F2CA82259DA10F40BD ] hardlock C:\Windows\system32\drivers\hardlock.sys

10:27:33.0900 7896 hardlock - ok

10:27:33.0900 7896 hasplms - ok

10:27:33.0900 7896 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys

10:27:33.0900 7896 hcw85cir - ok

10:27:33.0915 7896 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys

10:27:33.0915 7896 HdAudAddService - ok

10:27:33.0915 7896 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys

10:27:33.0915 7896 HDAudBus - ok

10:27:33.0915 7896 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys

10:27:33.0915 7896 HidBatt - ok

10:27:33.0915 7896 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys

10:27:33.0915 7896 HidBth - ok

10:27:33.0915 7896 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys

10:27:33.0915 7896 HidIr - ok

10:27:33.0931 7896 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll

10:27:33.0931 7896 hidserv - ok

10:27:33.0931 7896 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys

10:27:33.0931 7896 HidUsb - ok

10:27:33.0931 7896 [ AACD31D9B4129F05ECDE27DE98E6D96A ] HitmanProScheduler C:\Program Files\HitmanPro\hmpsched.exe

10:27:33.0931 7896 HitmanProScheduler - ok

10:27:33.0931 7896 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll

10:27:33.0931 7896 hkmsvc - ok

10:27:33.0947 7896 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll

10:27:33.0947 7896 HomeGroupListener - ok

10:27:33.0947 7896 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll

10:27:33.0947 7896 HomeGroupProvider - ok

10:27:33.0947 7896 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys

10:27:33.0947 7896 HpSAMD - ok

10:27:33.0962 7896 [ F49D808145A330434A79A15E1E63D866 ] HSF_DPV C:\Windows\system32\DRIVERS\CAX_DPV.sys

10:27:33.0962 7896 HSF_DPV - ok

10:27:33.0978 7896 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys

10:27:33.0978 7896 HTTP - ok

10:27:33.0978 7896 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys

10:27:33.0978 7896 hwpolicy - ok

10:27:33.0978 7896 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys

10:27:33.0978 7896 i8042prt - ok

10:27:33.0993 7896 [ 2FDAEC4B02729C48C0FD1B0B4695995B ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys

10:27:33.0993 7896 iaStor - ok

10:27:33.0993 7896 [ D41861E56E7552C13674D7F147A02464 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

10:27:33.0993 7896 IAStorDataMgrSvc - ok

10:27:34.0009 7896 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys

10:27:34.0009 7896 iaStorV - ok

10:27:34.0009 7896 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe

10:27:34.0025 7896 idsvc - ok

10:27:34.0025 7896 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys

10:27:34.0025 7896 iirsp - ok

10:27:34.0025 7896 [ AD5DF6F4FBBC798636EDC66BFEC7D0DE ] IJPLMSVC C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE

10:27:34.0025 7896 IJPLMSVC - ok

10:27:34.0040 7896 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll

10:27:34.0040 7896 IKEEXT - ok

10:27:34.0056 7896 [ DAB7318CCFA8081200D5B7B486793F74 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys

10:27:34.0071 7896 IntcAzAudAddService - ok

10:27:34.0071 7896 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys

10:27:34.0071 7896 intelide - ok

10:27:34.0071 7896 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys

10:27:34.0071 7896 intelppm - ok

10:27:34.0071 7896 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll

10:27:34.0071 7896 IPBusEnum - ok

10:27:34.0071 7896 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys

10:27:34.0071 7896 IpFilterDriver - ok

10:27:34.0087 7896 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll

10:27:34.0087 7896 iphlpsvc - ok

10:27:34.0087 7896 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys

10:27:34.0087 7896 IPMIDRV - ok

10:27:34.0087 7896 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys

10:27:34.0087 7896 IPNAT - ok

10:27:34.0103 7896 [ 0FF335D687C85097725A53458160E81E ] iPod Service C:\Program Files\iPod\bin\iPodService.exe

10:27:34.0103 7896 iPod Service - ok

10:27:34.0103 7896 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys

10:27:34.0103 7896 IRENUM - ok

10:27:34.0103 7896 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys

10:27:34.0103 7896 isapnp - ok

10:27:34.0118 7896 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys

10:27:34.0118 7896 iScsiPrt - ok

10:27:34.0118 7896 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys

10:27:34.0118 7896 kbdclass - ok

10:27:34.0118 7896 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys

10:27:34.0118 7896 kbdhid - ok

10:27:34.0118 7896 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe

10:27:34.0118 7896 KeyIso - ok

10:27:34.0118 7896 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys

10:27:34.0118 7896 KSecDD - ok

10:27:34.0134 7896 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys

10:27:34.0134 7896 KSecPkg - ok

10:27:34.0134 7896 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys

10:27:34.0134 7896 ksthunk - ok

10:27:34.0134 7896 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll

10:27:34.0134 7896 KtmRm - ok

10:27:34.0134 7896 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll

10:27:34.0149 7896 LanmanServer - ok

10:27:34.0149 7896 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll

10:27:34.0149 7896 LanmanWorkstation - ok

10:27:34.0149 7896 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys

10:27:34.0149 7896 lltdio - ok

10:27:34.0149 7896 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll

10:27:34.0149 7896 lltdsvc - ok

10:27:34.0165 7896 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll

10:27:34.0165 7896 lmhosts - ok

10:27:34.0165 7896 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys

10:27:34.0165 7896 LSI_FC - ok

10:27:34.0165 7896 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys

10:27:34.0165 7896 LSI_SAS - ok

10:27:34.0165 7896 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys

10:27:34.0165 7896 LSI_SAS2 - ok

10:27:34.0181 7896 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys

10:27:34.0181 7896 LSI_SCSI - ok

10:27:34.0181 7896 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys

10:27:34.0181 7896 luafv - ok

10:27:34.0181 7896 [ 79D51E7F5926E8CE1B3EBECEBAE28CFF ] mcdbus C:\Windows\system32\DRIVERS\mcdbus.sys

10:27:34.0181 7896 mcdbus - ok

10:27:34.0181 7896 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll

10:27:34.0181 7896 Mcx2Svc - ok

10:27:34.0196 7896 [ E4F44EC214B3E381E1FC844A02926666 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys

10:27:34.0196 7896 mdmxsdk - ok

10:27:34.0196 7896 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys

10:27:34.0196 7896 megasas - ok

10:27:34.0196 7896 [ 5E886BE4014CF9082054ACB2C02AEFFD ] megasas2 C:\Windows\system32\DRIVERS\megasas2.sys

10:27:34.0196 7896 megasas2 - ok

10:27:34.0196 7896 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys

10:27:34.0196 7896 MegaSR - ok

10:27:34.0212 7896 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys

10:27:34.0212 7896 MEIx64 - ok

10:27:34.0212 7896 Microsoft SharePoint Workspace Audit Service - ok

10:27:34.0227 7896 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll

10:27:34.0227 7896 MMCSS - ok

10:27:34.0227 7896 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys

10:27:34.0227 7896 Modem - ok

10:27:34.0227 7896 [ E38AEF079CD3BCFA19F2072A214F829D ] MODEMCSA C:\Windows\system32\drivers\MODEMCSA.sys

10:27:34.0227 7896 MODEMCSA - ok

10:27:34.0227 7896 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys

10:27:34.0227 7896 monitor - ok

10:27:34.0227 7896 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys

10:27:34.0227 7896 mouclass - ok

10:27:34.0227 7896 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys

10:27:34.0243 7896 mouhid - ok

10:27:34.0243 7896 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys

10:27:34.0243 7896 mountmgr - ok

10:27:34.0243 7896 [ 0329A45C849C9D77901094B8FFE8BBB9 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

10:27:34.0243 7896 MozillaMaintenance - ok

10:27:34.0243 7896 [ C6B88D62F20AC646C6BD5C032EC2FAF9 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys

10:27:34.0243 7896 MpFilter - ok

10:27:34.0259 7896 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys

10:27:34.0259 7896 mpio - ok

10:27:34.0259 7896 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys

10:27:34.0259 7896 mpsdrv - ok

10:27:34.0274 7896 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll

10:27:34.0274 7896 MpsSvc - ok

10:27:34.0274 7896 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys

10:27:34.0274 7896 MRxDAV - ok

10:27:34.0274 7896 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys

10:27:34.0274 7896 mrxsmb - ok

10:27:34.0290 7896 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys

10:27:34.0290 7896 mrxsmb10 - ok

10:27:34.0290 7896 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys

10:27:34.0290 7896 mrxsmb20 - ok

10:27:34.0290 7896 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys

10:27:34.0290 7896 msahci - ok

10:27:34.0290 7896 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys

10:27:34.0290 7896 msdsm - ok

10:27:34.0290 7896 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe

10:27:34.0290 7896 MSDTC - ok

10:27:34.0305 7896 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys

10:27:34.0305 7896 Msfs - ok

10:27:34.0305 7896 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys

10:27:34.0305 7896 mshidkmdf - ok

10:27:34.0305 7896 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys

10:27:34.0305 7896 msisadrv - ok

10:27:34.0305 7896 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll

10:27:34.0305 7896 MSiSCSI - ok

10:27:34.0305 7896 msiserver - ok

10:27:34.0321 7896 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys

10:27:34.0321 7896 MSKSSRV - ok

10:27:34.0321 7896 [ 7675E15D1B2180745E4DA4D26AAD7385 ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe

10:27:34.0321 7896 MsMpSvc - ok

10:27:34.0321 7896 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys

10:27:34.0321 7896 MSPCLOCK - ok

10:27:34.0321 7896 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys

10:27:34.0321 7896 MSPQM - ok

10:27:34.0321 7896 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys

10:27:34.0321 7896 MsRPC - ok

10:27:34.0337 7896 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys

10:27:34.0337 7896 mssmbios - ok

10:27:34.0337 7896 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys

10:27:34.0337 7896 MSTEE - ok

10:27:34.0337 7896 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys

10:27:34.0337 7896 MTConfig - ok

10:27:34.0337 7896 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys

10:27:34.0337 7896 Mup - ok

10:27:34.0352 7896 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll

10:27:34.0352 7896 napagent - ok

10:27:34.0352 7896 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys

10:27:34.0352 7896 NativeWifiP - ok

10:27:34.0368 7896 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys

10:27:34.0368 7896 NDIS - ok

10:27:34.0368 7896 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys

10:27:34.0368 7896 NdisCap - ok

10:27:34.0368 7896 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys

10:27:34.0368 7896 NdisTapi - ok

10:27:34.0368 7896 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys

10:27:34.0368 7896 Ndisuio - ok

10:27:34.0383 7896 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys

10:27:34.0383 7896 NdisWan - ok

10:27:34.0383 7896 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys

10:27:34.0383 7896 NDProxy - ok

10:27:34.0383 7896 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys

10:27:34.0383 7896 NetBIOS - ok

10:27:34.0383 7896 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys

10:27:34.0383 7896 NetBT - ok

10:27:34.0383 7896 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe

10:27:34.0383 7896 Netlogon - ok

10:27:34.0399 7896 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll

10:27:34.0399 7896 Netman - ok

10:27:34.0399 7896 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll

10:27:34.0399 7896 netprofm - ok

10:27:34.0399 7896 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe

10:27:34.0399 7896 NetTcpPortSharing - ok

10:27:34.0415 7896 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys

10:27:34.0415 7896 nfrd960 - ok

10:27:34.0415 7896 [ ACE8C64C57E4A711473C8BC10ADF692B ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys

10:27:34.0415 7896 NisDrv - ok

10:27:34.0415 7896 [ 6247E8B31ED0A9D6BC5A26276E49BEB3 ] NisSrv C:\Program Files\Microsoft Security Client\NisSrv.exe

10:27:34.0415 7896 NisSrv - ok

10:27:34.0430 7896 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll

10:27:34.0430 7896 NlaSvc - ok

10:27:34.0446 7896 [ B1EF4686961986DFFB7FE8F18E6FCB5B ] nlsX86cc C:\Windows\SysWOW64\nlssrv32.exe

10:27:34.0446 7896 nlsX86cc - ok

10:27:34.0446 7896 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys

10:27:34.0446 7896 Npfs - ok

10:27:34.0446 7896 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll

10:27:34.0446 7896 nsi - ok

10:27:34.0446 7896 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys

10:27:34.0446 7896 nsiproxy - ok

10:27:34.0477 7896 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys

10:27:34.0477 7896 Ntfs - ok

10:27:34.0477 7896 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys

10:27:34.0477 7896 Null - ok

10:27:34.0477 7896 [ 285ACEC1B13A15BA520AAE06BACB9CFF ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys

10:27:34.0477 7896 nusb3hub - ok

10:27:34.0493 7896 [ F6D625FF7B56BB6EA063F0D3A5BBC996 ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys

10:27:34.0493 7896 nusb3xhc - ok

10:27:34.0493 7896 [ 8D4AAC74B571FC356560E5B308955E93 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys

10:27:34.0493 7896 NVHDA - ok

10:27:34.0571 7896 [ 0EB204639119370F5F8F2871FBF4E14B ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys

10:27:34.0617 7896 nvlddmkm - ok

10:27:34.0633 7896 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys

10:27:34.0633 7896 nvraid - ok

10:27:34.0633 7896 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys

10:27:34.0633 7896 nvstor - ok

10:27:34.0649 7896 [ 32FF8EE6DCEE5C0CB91FF892FB1CA364 ] nvsvc C:\Windows\system32\nvvsvc.exe

10:27:34.0649 7896 nvsvc - ok

10:27:34.0649 7896 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys

10:27:34.0649 7896 nv_agp - ok

10:27:34.0649 7896 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys

10:27:34.0649 7896 ohci1394 - ok

10:27:34.0664 7896 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE

10:27:34.0664 7896 ose - ok

10:27:34.0695 7896 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE

10:27:34.0711 7896 osppsvc - ok

10:27:34.0727 7896 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll

10:27:34.0727 7896 p2pimsvc - ok

10:27:34.0727 7896 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll

10:27:34.0727 7896 p2psvc - ok

10:27:34.0727 7896 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys

10:27:34.0727 7896 Parport - ok

10:27:34.0742 7896 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys

10:27:34.0742 7896 partmgr - ok

10:27:34.0742 7896 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll

10:27:34.0742 7896 PcaSvc - ok

10:27:34.0742 7896 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys

10:27:34.0742 7896 pci - ok

10:27:34.0742 7896 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\DRIVERS\pciide.sys

10:27:34.0742 7896 pciide - ok

10:27:34.0758 7896 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys

10:27:34.0758 7896 pcmcia - ok

10:27:34.0758 7896 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys

10:27:34.0758 7896 pcw - ok

10:27:34.0773 7896 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys

10:27:34.0773 7896 PEAUTH - ok

10:27:34.0789 7896 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll

10:27:34.0789 7896 PeerDistSvc - ok

10:27:34.0805 7896 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe

10:27:34.0805 7896 PerfHost - ok

10:27:34.0820 7896 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll

10:27:34.0820 7896 pla - ok

10:27:34.0820 7896 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll

10:27:34.0820 7896 PlugPlay - ok

10:27:34.0836 7896 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll

10:27:34.0836 7896 PNRPAutoReg - ok

10:27:34.0836 7896 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll

10:27:34.0836 7896 PNRPsvc - ok

10:27:34.0836 7896 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll

10:27:34.0851 7896 PolicyAgent - ok

10:27:34.0851 7896 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll

10:27:34.0851 7896 Power - ok

10:27:34.0851 7896 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys

10:27:34.0851 7896 PptpMiniport - ok

10:27:34.0851 7896 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys

10:27:34.0851 7896 Processor - ok

10:27:34.0851 7896 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll

10:27:34.0867 7896 ProfSvc - ok

10:27:34.0867 7896 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe

10:27:34.0867 7896 ProtectedStorage - ok

10:27:34.0867 7896 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys

10:27:34.0867 7896 Psched - ok

10:27:34.0867 7896 [ 543A4EF0923BF70D126625B034EF25AF ] PSI_SVC_2 c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe

10:27:34.0867 7896 PSI_SVC_2 - ok

10:27:34.0883 7896 [ BC08F7F3C53CBEE68670ED1314E290FD ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys

10:27:34.0883 7896 PxHlpa64 - ok

10:27:34.0883 7896 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys

10:27:34.0898 7896 ql2300 - ok

10:27:34.0898 7896 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys

10:27:34.0898 7896 ql40xx - ok

10:27:34.0898 7896 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll

10:27:34.0898 7896 QWAVE - ok

10:27:34.0898 7896 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys

10:27:34.0898 7896 QWAVEdrv - ok

10:27:34.0898 7896 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys

10:27:34.0898 7896 RasAcd - ok

10:27:34.0914 7896 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys

10:27:34.0914 7896 RasAgileVpn - ok

10:27:34.0914 7896 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll

10:27:34.0914 7896 RasAuto - ok

10:27:34.0914 7896 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys

10:27:34.0914 7896 Rasl2tp - ok

10:27:34.0914 7896 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll

10:27:34.0929 7896 RasMan - ok

10:27:34.0929 7896 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys

10:27:34.0929 7896 RasPppoe - ok

10:27:34.0929 7896 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys

10:27:34.0929 7896 RasSstp - ok

10:27:34.0929 7896 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys

10:27:34.0929 7896 rdbss - ok

10:27:34.0929 7896 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys

10:27:34.0929 7896 rdpbus - ok

10:27:34.0929 7896 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys

10:27:34.0929 7896 RDPCDD - ok

10:27:34.0945 7896 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys

10:27:34.0945 7896 RDPDR - ok

10:27:34.0945 7896 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys

10:27:34.0945 7896 RDPENCDD - ok

10:27:34.0945 7896 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys

10:27:34.0945 7896 RDPREFMP - ok

10:27:34.0945 7896 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys

10:27:34.0945 7896 RDPWD - ok

10:27:34.0961 7896 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys

10:27:34.0961 7896 rdyboost - ok

10:27:34.0961 7896 [ B2D01290C0E0465ACA54C2088E947823 ] RealNetworks Downloader Resolver Service C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe

10:27:34.0961 7896 RealNetworks Downloader Resolver Service - ok

10:27:34.0961 7896 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll

10:27:34.0961 7896 RemoteAccess - ok

10:27:34.0961 7896 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll

10:27:34.0976 7896 RemoteRegistry - ok

10:27:34.0976 7896 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys

10:27:34.0976 7896 RFCOMM - ok

10:27:34.0976 7896 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll

10:27:34.0976 7896 RpcEptMapper - ok

10:27:34.0976 7896 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe

10:27:34.0976 7896 RpcLocator - ok

10:27:34.0992 7896 [ E57C3E5430CA4248C88C5EB2A5571ADE ] RpcSs C:\Windows\system32\rpcss.dll

10:27:34.0992 7896 RpcSs - ok

10:27:34.0992 7896 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys

10:27:34.0992 7896 rspndr - ok

10:27:34.0992 7896 [ 6CF9DB101A75360E98659F823852E540 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys

10:27:35.0007 7896 RTL8167 - ok

10:27:35.0007 7896 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys

10:27:35.0007 7896 s3cap - ok

10:27:35.0007 7896 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe

10:27:35.0007 7896 SamSs - ok

10:27:35.0007 7896 [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS

10:27:35.0007 7896 SASDIFSV - ok

10:27:35.0007 7896 [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS

10:27:35.0007 7896 SASKUTIL - ok

10:27:35.0007 7896 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys

10:27:35.0007 7896 sbp2port - ok

10:27:35.0023 7896 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll

10:27:35.0023 7896 SCardSvr - ok

10:27:35.0023 7896 [ DD8C29C96307FDBD2DFA6F1730FBCE9A ] SCDEmu C:\Windows\system32\drivers\SCDEmu.sys

10:27:35.0023 7896 SCDEmu - ok

10:27:35.0023 7896 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys

10:27:35.0023 7896 scfilter - ok

10:27:35.0039 7896 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll

10:27:35.0039 7896 Schedule - ok

10:27:35.0039 7896 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll

10:27:35.0039 7896 SCPolicySvc - ok

10:27:35.0054 7896 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll

10:27:35.0054 7896 SDRSVC - ok

10:27:35.0054 7896 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys

10:27:35.0054 7896 secdrv - ok

10:27:35.0054 7896 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll

10:27:35.0054 7896 seclogon - ok

10:27:35.0054 7896 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll

10:27:35.0054 7896 SENS - ok

10:27:35.0070 7896 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll

10:27:35.0070 7896 SensrSvc - ok

10:27:35.0070 7896 [ 3DC3EC72952BD60C438E397781FF0572 ] Ser2pl C:\Windows\system32\DRIVERS\ser2pl64.sys

10:27:35.0070 7896 Ser2pl - ok

10:27:35.0070 7896 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys

10:27:35.0070 7896 Serenum - ok

10:27:35.0070 7896 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys

10:27:35.0070 7896 Serial - ok

10:27:35.0085 7896 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys

10:27:35.0085 7896 sermouse - ok

10:27:35.0085 7896 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll

10:27:35.0085 7896 SessionEnv - ok

10:27:35.0085 7896 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys

10:27:35.0085 7896 sffdisk - ok

10:27:35.0085 7896 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys

10:27:35.0085 7896 sffp_mmc - ok

10:27:35.0085 7896 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys

10:27:35.0085 7896 sffp_sd - ok

10:27:35.0101 7896 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys

10:27:35.0101 7896 sfloppy - ok

10:27:35.0101 7896 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll

10:27:35.0101 7896 SharedAccess - ok

10:27:35.0101 7896 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll

10:27:35.0117 7896 ShellHWDetection - ok

10:27:35.0117 7896 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys

10:27:35.0117 7896 SiSRaid2 - ok

10:27:35.0117 7896 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys

10:27:35.0117 7896 SiSRaid4 - ok

10:27:35.0117 7896 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys

10:27:35.0117 7896 Smb - ok

10:27:35.0117 7896 [ 35AE23A825E89110DFC1BDA69F26F263 ] SMR410 C:\Windows\system32\drivers\SMR410.SYS

10:27:35.0117 7896 SMR410 - ok

10:27:35.0135 7896 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe

10:27:35.0135 7896 SNMPTRAP - ok

10:27:35.0137 7896 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys

10:27:35.0137 7896 spldr - ok

10:27:35.0137 7896 [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler C:\Windows\System32\spoolsv.exe

10:27:35.0137 7896 Spooler - ok

10:27:35.0168 7896 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe

10:27:35.0168 7896 sppsvc - ok

10:27:35.0184 7896 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll

10:27:35.0184 7896 sppuinotify - ok

10:27:35.0184 7896 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys

10:27:35.0184 7896 srv - ok

10:27:35.0200 7896 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys

10:27:35.0200 7896 srv2 - ok

10:27:35.0200 7896 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys

10:27:35.0200 7896 srvnet - ok

10:27:35.0200 7896 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll

10:27:35.0200 7896 SSDPSRV - ok

10:27:35.0200 7896 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll

10:27:35.0215 7896 SstpSvc - ok

10:27:35.0215 7896 [ FC0A58529A02B1EED55DDC58696B7908 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

10:27:35.0215 7896 Stereo Service - ok

10:27:35.0215 7896 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys

10:27:35.0215 7896 stexstor - ok

10:27:35.0231 7896 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll

10:27:35.0231 7896 stisvc - ok

10:27:35.0231 7896 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys

10:27:35.0231 7896 storflt - ok

10:27:35.0231 7896 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\Windows\system32\storsvc.dll

10:27:35.0231 7896 StorSvc - ok

10:27:35.0231 7896 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys

10:27:35.0231 7896 storvsc - ok

10:27:35.0231 7896 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys

10:27:35.0231 7896 swenum - ok

10:27:35.0246 7896 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

10:27:35.0246 7896 SwitchBoard - ok

10:27:35.0246 7896 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll

10:27:35.0262 7896 swprv - ok

10:27:35.0278 7896 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll

10:27:35.0278 7896 SysMain - ok

10:27:35.0278 7896 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll

10:27:35.0293 7896 TabletInputService - ok

10:27:35.0340 7896 [ B9E475AB1AABB21F278EA74965F918B9 ] TabletServiceWacom C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe

10:27:35.0356 7896 TabletServiceWacom - ok

10:27:35.0371 7896 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll

10:27:35.0371 7896 TapiSrv - ok

10:27:35.0371 7896 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll

10:27:35.0371 7896 TBS - ok

10:27:35.0387 7896 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys

10:27:35.0387 7896 Tcpip - ok

10:27:35.0402 7896 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys

10:27:35.0418 7896 TCPIP6 - ok

10:27:35.0418 7896 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys

10:27:35.0418 7896 tcpipreg - ok

10:27:35.0418 7896 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys

10:27:35.0418 7896 TDPIPE - ok

10:27:35.0418 7896 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys

10:27:35.0418 7896 TDTCP - ok

10:27:35.0434 7896 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys

10:27:35.0434 7896 tdx - ok

10:27:35.0434 7896 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys

10:27:35.0434 7896 TermDD - ok

10:27:35.0434 7896 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll

10:27:35.0449 7896 TermService - ok

10:27:35.0449 7896 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll

10:27:35.0449 7896 Themes - ok

10:27:35.0449 7896 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll

10:27:35.0449 7896 THREADORDER - ok

10:27:35.0449 7896 [ B8F4A8AFFAAE521A20E8D2AF3F487124 ] TouchServiceWacom C:\Program Files\Tablet\Wacom\Wacom_TouchService.exe

10:27:35.0465 7896 TouchServiceWacom - ok

10:27:35.0465 7896 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll

10:27:35.0465 7896 TrkWks - ok

10:27:35.0465 7896 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe

10:27:35.0465 7896 TrustedInstaller - ok

10:27:35.0465 7896 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys

10:27:35.0465 7896 tssecsrv - ok

10:27:35.0465 7896 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys

10:27:35.0465 7896 TsUsbFlt - ok

10:27:35.0480 7896 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys

10:27:35.0480 7896 TsUsbGD - ok

10:27:35.0480 7896 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys

10:27:35.0480 7896 tunnel - ok

10:27:35.0480 7896 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys

10:27:35.0480 7896 uagp35 - ok

10:27:35.0480 7896 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys

10:27:35.0480 7896 udfs - ok

10:27:35.0496 7896 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe

10:27:35.0496 7896 UI0Detect - ok

10:27:35.0496 7896 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys

10:27:35.0496 7896 uliagpkx - ok

10:27:35.0496 7896 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys

10:27:35.0496 7896 umbus - ok

10:27:35.0496 7896 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys

10:27:35.0496 7896 UmPass - ok

10:27:35.0512 7896 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll

10:27:35.0512 7896 UmRdpService - ok

10:27:35.0512 7896 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll

10:27:35.0527 7896 upnphost - ok

10:27:35.0527 7896 [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys

10:27:35.0527 7896 USBAAPL64 - ok

10:27:35.0527 7896 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys

10:27:35.0527 7896 usbccgp - ok

10:27:35.0527 7896 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys

10:27:35.0527 7896 usbcir - ok

10:27:35.0527 7896 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys

10:27:35.0527 7896 usbehci - ok

10:27:35.0543 7896 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys

10:27:35.0543 7896 usbhub - ok

10:27:35.0543 7896 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys

10:27:35.0543 7896 usbohci - ok

10:27:35.0543 7896 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys

10:27:35.0543 7896 usbprint - ok

10:27:35.0543 7896 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys

10:27:35.0543 7896 usbscan - ok

10:27:35.0543 7896 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS

10:27:35.0543 7896 USBSTOR - ok

10:27:35.0558 7896 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys

10:27:35.0558 7896 usbuhci - ok

10:27:35.0558 7896 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll

10:27:35.0558 7896 UxSms - ok

10:27:35.0558 7896 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe

10:27:35.0558 7896 VaultSvc - ok

10:27:35.0558 7896 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys

10:27:35.0558 7896 vdrvroot - ok

10:27:35.0558 7896 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe

10:27:35.0574 7896 vds - ok

10:27:35.0574 7896 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys

10:27:35.0574 7896 vga - ok

10:27:35.0574 7896 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys

10:27:35.0574 7896 VgaSave - ok

10:27:35.0574 7896 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys

10:27:35.0574 7896 vhdmp - ok

10:27:35.0574 7896 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys

10:27:35.0574 7896 viaide - ok

10:27:35.0590 7896 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys

10:27:35.0590 7896 vmbus - ok

10:27:35.0590 7896 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys

10:27:35.0590 7896 VMBusHID - ok

10:27:35.0590 7896 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys

10:27:35.0590 7896 volmgr - ok

10:27:35.0590 7896 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys

10:27:35.0590 7896 volmgrx - ok

10:27:35.0605 7896 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys

10:27:35.0605 7896 volsnap - ok

10:27:35.0605 7896 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys

10:27:35.0605 7896 vsmraid - ok

10:27:35.0621 7896 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe

10:27:35.0621 7896 VSS - ok

10:27:35.0636 7896 vToolbarUpdater17.2.0 - ok

10:27:35.0636 7896 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys

10:27:35.0636 7896 vwifibus - ok

10:27:35.0636 7896 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll

10:27:35.0636 7896 W32Time - ok

10:27:35.0636 7896 [ FE75777289278A4941FE6139E82B3BD9 ] wacmoumonitor C:\Windows\system32\DRIVERS\wacmoumonitor.sys

10:27:35.0636 7896 wacmoumonitor - ok

10:27:35.0652 7896 [ E04D43C7D1641E95D35CAE6086C7E350 ] wacommousefilter C:\Windows\system32\DRIVERS\wacommousefilter.sys

10:27:35.0652 7896 wacommousefilter - ok

10:27:35.0652 7896 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys

10:27:35.0652 7896 WacomPen - ok

10:27:35.0652 7896 [ EC1CEB237E365330C1FCFC4876AA0AC0 ] wacomvhid C:\Windows\system32\DRIVERS\wacomvhid.sys

10:27:35.0652 7896 wacomvhid - ok

10:27:35.0652 7896 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys

10:27:35.0652 7896 WANARP - ok

10:27:35.0652 7896 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys

10:27:35.0652 7896 Wanarpv6 - ok

10:27:35.0683 7896 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe

10:27:35.0683 7896 WatAdminSvc - ok

10:27:35.0699 7896 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe

10:27:35.0699 7896 wbengine - ok

10:27:35.0714 7896 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll

10:27:35.0714 7896 WbioSrvc - ok

10:27:35.0714 7896 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll

10:27:35.0714 7896 wcncsvc - ok

10:27:35.0714 7896 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll

10:27:35.0714 7896 WcsPlugInService - ok

10:27:35.0730 7896 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys

10:27:35.0730 7896 Wd - ok

10:27:35.0730 7896 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys

10:27:35.0730 7896 Wdf01000 - ok

10:27:35.0730 7896 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll

10:27:35.0730 7896 WdiServiceHost - ok

10:27:35.0746 7896 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll

10:27:35.0746 7896 WdiSystemHost - ok

10:27:35.0746 7896 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll

10:27:35.0746 7896 WebClient - ok

10:27:35.0746 7896 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll

10:27:35.0746 7896 Wecsvc - ok

10:27:35.0761 7896 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll

10:27:35.0761 7896 wercplsupport - ok

10:27:35.0761 7896 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll

10:27:35.0761 7896 WerSvc - ok

10:27:35.0761 7896 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys

10:27:35.0761 7896 WfpLwf - ok

10:27:35.0761 7896 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys

10:27:35.0761 7896 WIMMount - ok

10:27:35.0777 7896 [ D85DB1DEAF3AAE5E8B3263254378F4ED ] winachsf C:\Windows\system32\DRIVERS\CAX_CNXT.sys

10:27:35.0777 7896 winachsf - ok

10:27:35.0777 7896 WinDefend - ok

10:27:35.0777 7896 WinHttpAutoProxySvc - ok

10:27:35.0792 7896 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll

10:27:35.0792 7896 Winmgmt - ok

10:27:35.0808 7896 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll

10:27:35.0824 7896 WinRM - ok

10:27:35.0824 7896 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys

10:27:35.0824 7896 WinUsb - ok

10:27:35.0839 7896 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll

10:27:35.0839 7896 Wlansvc - ok

10:27:35.0855 7896 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

10:27:35.0870 7896 wlidsvc - ok

10:27:35.0870 7896 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys

10:27:35.0870 7896 WmiAcpi - ok

10:27:35.0870 7896 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe

10:27:35.0870 7896 wmiApSrv - ok

10:27:35.0886 7896 WMPNetworkSvc - ok

10:27:35.0886 7896 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll

10:27:35.0886 7896 WPCSvc - ok

10:27:35.0886 7896 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll

10:27:35.0886 7896 WPDBusEnum - ok

10:27:35.0886 7896 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys

10:27:35.0886 7896 ws2ifsl - ok

10:27:35.0902 7896 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll

10:27:35.0902 7896 wscsvc - ok

10:27:35.0902 7896 WSearch - ok

10:27:35.0933 7896 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll

10:27:35.0933 7896 wuauserv - ok

10:27:35.0933 7896 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys

10:27:35.0933 7896 WudfPf - ok

10:27:35.0948 7896 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys

10:27:35.0948 7896 WUDFRd - ok

10:27:35.0948 7896 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll

10:27:35.0948 7896 wudfsvc - ok

10:27:35.0948 7896 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll

10:27:35.0948 7896 WwanSvc - ok

10:27:35.0948 7896 [ 283BD3E0DFFB8F6B4C62A5649959F9EF ] XAudio C:\Windows\system32\DRIVERS\xaudio64.sys

10:27:35.0948 7896 XAudio - ok

10:27:35.0964 7896 [ 340D7E19DF14A65F73BCE33B8ECD5FB6 ] XAudioService C:\Windows\system32\DRIVERS\xaudio64.exe

10:27:35.0964 7896 XAudioService - ok

10:27:35.0964 7896 ================ Scan global ===============================

10:27:35.0964 7896 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll

10:27:35.0980 7896 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll

10:27:35.0980 7896 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll

10:27:35.0980 7896 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll

10:27:35.0980 7896 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe

10:27:35.0995 7896 [Global] - ok

10:27:35.0995 7896 ================ Scan MBR ==================================

10:27:35.0995 7896 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk2\DR2

10:27:36.0073 7896 \Device\Harddisk2\DR2 - ok

10:27:36.0089 7896 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0

10:27:36.0104 7896 \Device\Harddisk0\DR0 - ok

10:27:36.0104 7896 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1

10:27:36.0120 7896 \Device\Harddisk1\DR1 - ok

10:27:36.0136 7896 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk8\DR8

10:27:36.0229 7896 \Device\Harddisk8\DR8 - ok

10:27:36.0229 7896 ================ Scan VBR ==================================

10:27:36.0229 7896 [ 1A0776DA7B97FDB8DF788B5294654772 ] \Device\Harddisk2\DR2\Partition1

10:27:36.0229 7896 \Device\Harddisk2\DR2\Partition1 - ok

10:27:36.0245 7896 [ 61B59BBDC6F52363C02790DF89CC53FA ] \Device\Harddisk0\DR0\Partition1

10:27:36.0245 7896 \Device\Harddisk0\DR0\Partition1 - ok

10:27:36.0245 7896 [ 0C6179CF3949615279EDE66A81891D69 ] \Device\Harddisk1\DR1\Partition1

10:27:36.0245 7896 \Device\Harddisk1\DR1\Partition1 - ok

10:27:36.0245 7896 [ 775092D264CAF1D0F47CB4867E1746DD ] \Device\Harddisk8\DR8\Partition1

10:27:36.0245 7896 \Device\Harddisk8\DR8\Partition1 - ok

10:27:36.0245 7896 ============================================================

10:27:36.0245 7896 Scan finished

10:27:36.0245 7896 ============================================================

10:27:36.0245 6240 Detected object count: 0

10:27:36.0245 6240 Actual detected object count: 0



#6 mcgraphics

mcgraphics
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:01:33 AM

Posted 30 December 2013 - 02:53 PM

# AdwCleaner v3.016 - Report created 30/12/2013 at 10:28:57
# Updated 23/12/2013 by Xplode
# Operating System : Windows 7 Professional Service Pack 1 (64 bits)
# Username : Matt Clower - MCLOW108234
# Running from : C:\Users\Matt Clower\Desktop\Movies\adwcleaner.exe
# Option : Scan

***** [ Services ] *****

***** [ Files / Folders ] *****

File Found : C:\Windows\System32\Tasks\NCH Software
Folder Found C:\ProgramData\boost_interprocess

***** [ Shortcuts ] *****

***** [ Registry ] *****

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16447

-\\ Mozilla Firefox v24.0 (en-US)

[ File : C:\Users\Matt Clower\AppData\Roaming\Mozilla\Firefox\Profiles\c5ybwimx.default\prefs.js ]

*************************

AdwCleaner[R0].txt - [14325 octets] - [23/12/2013 13:14:14]
AdwCleaner[R1].txt - [951 octets] - [23/12/2013 14:41:24]
AdwCleaner[R2].txt - [6357 octets] - [24/12/2013 08:42:33]
AdwCleaner[R3].txt - [941 octets] - [30/12/2013 10:28:57]
AdwCleaner[S0].txt - [13050 octets] - [23/12/2013 13:15:02]
AdwCleaner[S1].txt - [1013 octets] - [23/12/2013 14:42:21]
AdwCleaner[S2].txt - [6339 octets] - [24/12/2013 08:43:00]

########## EOF - C:\AdwCleaner\AdwCleaner[R3].txt - [1181 octets] ##########



#7 mcgraphics

mcgraphics
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:01:33 AM

Posted 30 December 2013 - 03:24 PM

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 7 Professional x64
Ran by Matt Clower on Mon 12/30/2013 at 12:04:23.63
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

~~~ Services

 

~~~ Registry Values

 

~~~ Registry Keys

 

~~~ Files

 

~~~ Folders

 

~~~ FireFox

Emptied folder: C:\Users\Matt Clower\AppData\Roaming\mozilla\firefox\profiles\c5ybwimx.default\minidumps [3 files]

 

~~~ Event Viewer Logs were cleared

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Mon 12/30/2013 at 12:09:06.93
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~



#8 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:33 AM

Posted 30 December 2013 - 04:12 PM

Did you remove what the NPE tool suggested?

 

 

 

Go ahead and run a  full scan with Norman Malware Cleaner.

A log will be created on your desktop please post it here in your next reply.

http://normanasa.vo.llnwd.net/o29/public/Norman_Malware_Cleaner.exe



#9 mcgraphics

mcgraphics
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:01:33 AM

Posted 30 December 2013 - 04:34 PM

Yes except for the exe files that said were viruses but the exe files are for some of the programs I use. If I delete the exe file then I won't be able to use the program, correct?, The computer just shut down again. It seems to stay stable for a few hours but then I get that DCOM pop window. I will rnn the Norman Malware Cleaner now and post the log in a few minutes.

 Thanks for all your help, I greatly appreciate it!!

 

Mario



#10 mcgraphics

mcgraphics
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:01:33 AM

Posted 30 December 2013 - 05:14 PM

Norman Malware Cleaner v2.08.08
Copyright © 1990 - 2013, Norman Shark AS.

Norman Scanner Engine Version: 7.02.06
nvcbin.def: Version: 7.02.6739, Date: 2013/12/29 20:26:21, Variants: 25969928

Operating System: Windows 7 Service Pack 1 x64

Switches: /iagree

Scan started: 2013/12/30 13:47:32

Running pre-scan cleanup routine...

Number of malicious objects found: 0
Number of malicious objects cleaned: 0
Scanning time: 0s

Scanning running processes and process memory...

Number of files found: 622
Number of objects found: 2358
Number of objects scanned: 2358
Number of objects not scanned: 0
Number of malicious memory objects found: 0
Number of malicious objects cleaned: 0
Number of malicious files found: 0
Number of malicious files cleaned: 0
Scanning time: 8s

Scanning system for FakeAV...

Number of malicious objects found: 0
Number of malicious objects cleaned: 0
Number of malicious files found: 0
Number of malicious files cleaned: 0
Scanning time: 0s

Running full scan...
C:\AdwCleaner\Quarantine\C\Users\Matt Clower\AppData\Roaming\Mozilla\Firefox\Profiles\c5ybwimx.default\Extensions\5htgxptwh@yiigenly.com\bootstrap.js.vir: Potentially unwanted program (text/Multplug.KVZX)
Delete file: C:\AdwCleaner\Quarantine\C\Users\Matt Clower\AppData\Roaming\Mozilla\Firefox\Profiles\c5ybwimx.default\Extensions\5htgxptwh@yiigenly.com\bootstrap.js.vir
C:\AdwCleaner\Quarantine\C\Users\Matt Clower\AppData\Roaming\Mozilla\Firefox\Profiles\c5ybwimx.default\Extensions\5htgxptwh@yiigenly.com\content\bg.js.vir: Potentially unwanted program (text/Megasearch.DJ)
Cleaning successful
C:\AdwCleaner\Quarantine\C\Users\Matt Clower\AppData\Roaming\Mozilla\Firefox\Profiles\c5ybwimx.default\Extensions\l-ioyeoj@i-ryoaqhj.net\bootstrap.js.vir: Potentially unwanted program (text/Multplug.KVZX)
Delete file: C:\AdwCleaner\Quarantine\C\Users\Matt Clower\AppData\Roaming\Mozilla\Firefox\Profiles\c5ybwimx.default\Extensions\5htgxptwh@yiigenly.com\content\bg.js.vir
Delete file: C:\AdwCleaner\Quarantine\C\Users\Matt Clower\AppData\Roaming\Mozilla\Firefox\Profiles\c5ybwimx.default\Extensions\l-ioyeoj@i-ryoaqhj.net\bootstrap.js.vir
Cleaning operation failed (Error code: 0x00000005)
Delete file on reboot: C:\AdwCleaner\Quarantine\C\Users\Matt Clower\AppData\Roaming\Mozilla\Firefox\Profiles\c5ybwimx.default\Extensions\5htgxptwh@yiigenly.com\content\bg.js.vir
C:\AdwCleaner\Quarantine\C\Users\Matt Clower\AppData\Roaming\Mozilla\Firefox\Profiles\c5ybwimx.default\Extensions\l-ioyeoj@i-ryoaqhj.net\content\bg.js.vir: Potentially unwanted program (text/Megasearch.DJ)
Cleaning successful
Cleaning successful
C:\AdwCleaner\Quarantine\C\Users\Matt Clower\AppData\Roaming\Mozilla\Firefox\Profiles\c5ybwimx.default\Extensions\5htgxptwh@yiigenly.com\content\bg.js.vir: Potentially unwanted program (text/Megasearch.DJ)
Delete file: C:\AdwCleaner\Quarantine\C\Users\Matt Clower\AppData\Roaming\Mozilla\Firefox\Profiles\c5ybwimx.default\Extensions\l-ioyeoj@i-ryoaqhj.net\content\bg.js.vir
C:\AdwCleaner\Quarantine\C\Users\Matt Clower\AppData\Roaming\Mozilla\Firefox\Profiles\c5ybwimx.default\Extensions\orc@rgopvq.com\bootstrap.js.vir: Potentially unwanted program (text/Multplug.KVZX)
Delete file: C:\AdwCleaner\Quarantine\C\Users\Matt Clower\AppData\Roaming\Mozilla\Firefox\Profiles\c5ybwimx.default\Extensions\5htgxptwh@yiigenly.com\content\bg.js.vir
Cleaning successful
Cleaning operation failed (Error code: 0x00000005)
Delete file: C:\AdwCleaner\Quarantine\C\Users\Matt Clower\AppData\Roaming\Mozilla\Firefox\Profiles\c5ybwimx.default\Extensions\orc@rgopvq.com\bootstrap.js.vir
Delete file on reboot: C:\AdwCleaner\Quarantine\C\Users\Matt Clower\AppData\Roaming\Mozilla\Firefox\Profiles\c5ybwimx.default\Extensions\5htgxptwh@yiigenly.com\content\bg.js.vir
C:\AdwCleaner\Quarantine\C\Users\Matt Clower\AppData\Roaming\Mozilla\Firefox\Profiles\c5ybwimx.default\Extensions\orc@rgopvq.com\content\bg.js.vir: Potentially unwanted program (text/Megasearch.DJ)
Cleaning successful
Cleaning successful
C:\AdwCleaner\Quarantine\C\Users\Matt Clower\AppData\Roaming\Mozilla\Firefox\Profiles\c5ybwimx.default\Extensions\5htgxptwh@yiigenly.com\content\bg.js.vir: Potentially unwanted program (text/Megasearch.DJ)
Delete file: C:\AdwCleaner\Quarantine\C\Users\Matt Clower\AppData\Roaming\Mozilla\Firefox\Profiles\c5ybwimx.default\Extensions\orc@rgopvq.com\content\bg.js.vir
Delete file: C:\AdwCleaner\Quarantine\C\Users\Matt Clower\AppData\Roaming\Mozilla\Firefox\Profiles\c5ybwimx.default\Extensions\5htgxptwh@yiigenly.com\content\bg.js.vir
Cleaning operation failed (Error code: 0x00000005)
Cleaning successful
Delete file on reboot: C:\AdwCleaner\Quarantine\C\Users\Matt Clower\AppData\Roaming\Mozilla\Firefox\Profiles\c5ybwimx.default\Extensions\5htgxptwh@yiigenly.com\content\bg.js.vir
Cleaning successful
C:\AdwCleaner\Quarantine\C\Users\Matt Clower\AppData\Roaming\Mozilla\Firefox\Profiles\c5ybwimx.default\Extensions\5htgxptwh@yiigenly.com\content\bg.js.vir: Potentially unwanted program (text/Megasearch.DJ)
Delete file: C:\AdwCleaner\Quarantine\C\Users\Matt Clower\AppData\Roaming\Mozilla\Firefox\Profiles\c5ybwimx.default\Extensions\5htgxptwh@yiigenly.com\content\bg.js.vir
Cleaning operation failed (Error code: 0x00000005)
Delete file on reboot: C:\AdwCleaner\Quarantine\C\Users\Matt Clower\AppData\Roaming\Mozilla\Firefox\Profiles\c5ybwimx.default\Extensions\5htgxptwh@yiigenly.com\content\bg.js.vir
Cleaning successful
C:\AdwCleaner\Quarantine\C\Users\Matt Clower\AppData\Roaming\Mozilla\Firefox\Profiles\c5ybwimx.default\Extensions\5htgxptwh@yiigenly.com\content\bg.js.vir: Potentially unwanted program (text/Megasearch.DJ)
Delete file: C:\AdwCleaner\Quarantine\C\Users\Matt Clower\AppData\Roaming\Mozilla\Firefox\Profiles\c5ybwimx.default\Extensions\5htgxptwh@yiigenly.com\content\bg.js.vir
Cleaning operation failed (Error code: 0x00000005)
Delete file on reboot: C:\AdwCleaner\Quarantine\C\Users\Matt Clower\AppData\Roaming\Mozilla\Firefox\Profiles\c5ybwimx.default\Extensions\5htgxptwh@yiigenly.com\content\bg.js.vir
Cleaning successful
C:\AdwCleaner\Quarantine\C\Users\Matt Clower\AppData\Roaming\Mozilla\Firefox\Profiles\c5ybwimx.default\Extensions\5htgxptwh@yiigenly.com\content\bg.js.vir: Potentially unwanted program (text/Megasearch.DJ)
C:\Boot\BCD: Error opening file for read: 0x00000020
C:\Boot\BCD.LOG: Error opening file for read: 0x00000020
C:\Program Files\Adobe\Adobe\AdobePatchFiles\{0CBD7851-838F-4AB4-97ED-BDEDE0A6730D}.zip: Archive infected
C:\Program Files\Adobe\Adobe\AdobePatchFiles\{0CBD7851-838F-4AB4-97ED-BDEDE0A6730D}.zip/{0CBD7851-838F-4AB4-97ED-BDEDE0A6730D}\b99274ecba33f1648d3acb2b5097460c: Potentially unwanted program (winpe/Hacktool.AAHC)
Delete archive object: C:\Program Files\Adobe\Adobe\AdobePatchFiles\{0CBD7851-838F-4AB4-97ED-BDEDE0A6730D}.zip/{0CBD7851-838F-4AB4-97ED-BDEDE0A6730D}\b99274ecba33f1648d3acb2b5097460c
Cleaning successful
C:\Program Files\Adobe\Adobe After Effects CS6\Support Files\amtlib.dll: Potentially unwanted program (winpe/Hacktool.AAHC)
Delete file: C:\Program Files\Adobe\Adobe After Effects CS6\Support Files\amtlib.dll
Cleaning successful
C:\Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\AMTLib.dll: Potentially unwanted program (winpe/Hacktool.AAHC)
Delete file: C:\Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\AMTLib.dll
Cleaning successful
C:\Program Files\Adobe\Adobe Illustrator CS6 (64 Bit)\Support Files\Contents\Windows\amtlib.dll: Potentially unwanted program (winpe/Hacktool.AAHC)
Delete file: C:\Program Files\Adobe\Adobe Illustrator CS6 (64 Bit)\Support Files\Contents\Windows\amtlib.dll
Cleaning successful
C:\Program Files\Adobe\Adobe Media Encoder CS6\amtlib.dll: Potentially unwanted program (winpe/Hacktool.AAHC)
Delete file: C:\Program Files\Adobe\Adobe Media Encoder CS6\amtlib.dll
Cleaning successful
C:\Program Files\Adobe\Adobe Photoshop CS6 (64 Bit)\amtlib.dll: Potentially unwanted program (winpe/Hacktool.AAHC)
C:\Program Files\Adobe\Adobe Premiere Pro CS6\amtlib.dll: Potentially unwanted program (winpe/Hacktool.AAHC)
Delete file: C:\Program Files\Adobe\Adobe Premiere Pro CS6\amtlib.dll
Cleaning successful
Delete file: C:\Program Files\Adobe\Adobe Photoshop CS6 (64 Bit)\amtlib.dll
Cleaning operation failed (Error code: 0x00000005)
Delete file on reboot: C:\Program Files\Adobe\Adobe Photoshop CS6 (64 Bit)\amtlib.dll
Cleaning successful
C:\Program Files\Adobe\Adobe SpeedGrade CS6\bin\amtlib.dll: Potentially unwanted program (winpe/Hacktool.AAHC)
Delete file: C:\Program Files\Adobe\Adobe SpeedGrade CS6\bin\amtlib.dll
Cleaning successful
C:\Program Files (x86)\Adobe\Adobe Audition CS6\amtlib.dll: Potentially unwanted program (winpe/App_Generic.BZTFL)
Delete file: C:\Program Files (x86)\Adobe\Adobe Audition CS6\amtlib.dll
Cleaning successful
C:\Program Files (x86)\Adobe\Adobe Bridge CS6\AMTLib.dll: Potentially unwanted program (winpe/App_Generic.BZTFL)
Delete file: C:\Program Files (x86)\Adobe\Adobe Bridge CS6\AMTLib.dll
Cleaning successful
C:\Program Files (x86)\Adobe\Adobe Dreamweaver CS6\amtlib.dll: Potentially unwanted program (winpe/App_Generic.BZTFL)
Delete file: C:\Program Files (x86)\Adobe\Adobe Dreamweaver CS6\amtlib.dll
Cleaning successful
C:\Program Files (x86)\Adobe\Adobe Fireworks CS6\amtlib.dll: Potentially unwanted program (winpe/App_Generic.BZTFL)
Delete file: C:\Program Files (x86)\Adobe\Adobe Fireworks CS6\amtlib.dll
Cleaning successful
C:\Program Files (x86)\Adobe\Adobe Flash Builder 4.6\eclipse\plugins\com.adobe.flexide.amt_4.6.1.335153\os\win32\x86\amtlib.dll: Potentially unwanted program (winpe/App_Generic.BZTFL)
Delete file: C:\Program Files (x86)\Adobe\Adobe Flash Builder 4.6\eclipse\plugins\com.adobe.flexide.amt_4.6.1.335153\os\win32\x86\amtlib.dll
Cleaning successful
C:\Program Files (x86)\Adobe\Adobe Flash CS6\amtlib.dll: Potentially unwanted program (winpe/App_Generic.BZTFL)
Delete file: C:\Program Files (x86)\Adobe\Adobe Flash CS6\amtlib.dll
Cleaning successful
C:\Program Files (x86)\Adobe\Adobe Illustrator CS6\Support Files\Contents\Windows\amtlib.dll: Potentially unwanted program (winpe/App_Generic.BZTFL)
Delete file: C:\Program Files (x86)\Adobe\Adobe Illustrator CS6\Support Files\Contents\Windows\amtlib.dll
Cleaning successful
C:\Program Files (x86)\Adobe\Adobe InDesign CS6\amtlib.dll: Potentially unwanted program (winpe/App_Generic.BZTFL)
Delete file: C:\Program Files (x86)\Adobe\Adobe InDesign CS6\amtlib.dll
Cleaning successful
C:\Program Files (x86)\Adobe\Adobe Photoshop CS6\amtlib.dll: Potentially unwanted program (winpe/App_Generic.BZTFL)
Delete file: C:\Program Files (x86)\Adobe\Adobe Photoshop CS6\amtlib.dll
Cleaning successful
C:\Program Files (x86)\Adobe\Adobe Prelude CS6\amtlib.dll: Potentially unwanted program (winpe/App_Generic.BZTFL)
Delete file: C:\Program Files (x86)\Adobe\Adobe Prelude CS6\amtlib.dll
Cleaning successful
C:\Program Files (x86)\GlobalSCAPE\CuteFTP 8 Professional\Patch.exe: File infected with winpe/Suspicious_Gen2.NOMNB
Delete file: C:\Program Files (x86)\GlobalSCAPE\CuteFTP 8 Professional\Patch.exe
Cleaning successful



#11 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:33 AM

Posted 30 December 2013 - 05:19 PM

Ok a few more steps left here.

 

 

Download Rkill save it to your desktop run as admin post the log here.

http://www.bleepingcomputer.com/download/rkill/

 

Please download FarbarServiceScanner and run it on the computer with the issue.


Make sure the following options are checked:
Internet Services
Windows Firewall
System Restore
Security Center/Action Center
Windows Update

Press "Scan".
It will create a log (FSS.txt) in the same directory the tool is run.
Please copy and paste the log to your reply.

 

Download, & save & then run the MS Safety scanner
Run a Full Scan
http://www.microsoft.com/security/scanner/en-us/default.aspx
Post. the result.

The safety scanner log should be called msert.txt
It should be located in the same folder as where you had msert.exe
If not there, then look for it under c:\windows

 

 

 

____________________________________________-

 

Run a scan with Eset. You will need to disable your antivirus during this scan.
http://www.eset.com/us/online-scanner/
Make sure remove found threats and scan archives is checked.
When the scan finish list found threats save to clipboard copy to notepad Post the log here.


Tell me how the machine is running now.



#12 mcgraphics

mcgraphics
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:01:33 AM

Posted 31 December 2013 - 11:00 AM

Rkill 2.6.4 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
 http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 12/31/2013 07:58:47 AM in x64 mode.
Windows Version: Windows 7 Professional Service Pack 1

Checking for Windows services to stop:

 * No malware services found to stop.

Checking for processes to terminate:

 * C:\Windows\SysWOW64\nlssrv32.exe (PID: 2504) [WD-HEUR]

1 proccess terminated!

Checking Registry for malware related settings:

 * No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

 * No issues found.

Checking Windows Service Integrity:

 * No issues found.

Searching for Missing Digital Signatures:

 * C:\Windows\System32\rpcss.dll : 512,512 : 11/20/2010 07:24 PM : e57c3e5430ca4248c88c5eb2a5571ade [NoSig]
 +-> C:\Windows\winsxs\amd64_microsoft-windows-com-base-qfe-rpcss_31bf3856ad364e35_6.1.7601.17514_none_c7f0e16b547f887d\rpcss.dll : 512,000 : 11/20/2010 07:24 PM : 5c627d1b1138676c0a7ab2c2c190d123 [Pos Repl]

Checking HOSTS File:

 * HOSTS file entries found:

  127.0.0.1       localhost

Program finished at: 12/31/2013 07:59:01 AM
Execution time: 0 hours(s), 0 minute(s), and 13 seconds(s)


Farbar Service Scanner Version: 05-12-2013
Ran by Matt Clower (administrator) on 31-12-2013 at 08:00:04
Running from "C:\Users\Matt Clower\Desktop\Movies"
Microsoft Windows 7 Professional  Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.

Windows Firewall:
=============

Firewall Disabled Policy:
==================

System Restore:
============

System Restore Disabled Policy:
========================

Action Center:
============

Action Center Notification Icon =====> Unable to open HKLM\...\ShellServiceObjects\{F56F6FDD-AA9D-4618-A949-C1B91AF43B1A} key. The key does not exist.

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================

Other Services:
==============

File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll
[2010-11-20 19:24] - [2010-11-20 19:24] - 0512512 ____A (Microsoft Corporation) E57C3E5430CA4248C88C5EB2A5571ADE

 

**** End of log ****



#13 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:33 AM

Posted 01 January 2014 - 06:10 PM

The other two logs please.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users