31 replies to this topic

[Burningtreefarm]

Hi I downloaded malwarebytes and after several attempts in regular windows and in safe mode it finally ran a full scan, before that it would get stopped in mid scan and BSD. After it has ran it is saying Im not infected all though I am pretty sure I have something I have no idea what. I get BSD everyday multiple times a day the report windows want's to send to microsoft as far as I can figure out is malware. Thanks all help is greatly appreciated. I am not real computer technical and jargon oriented but I am willing to follow directions. Tim

Attached Files

•  Attach.txt   18.95K   9 downloads
•  DDS.txt   21.51K   9 downloads

[screen317]

Hi and welcome to Malwarebytes.


In the future, please post all logs directly into your reply instead of attaching them unless otherwise indicated. With that said, please update MBAM, run a Quick Scan, and post its log.

Next, run DDS again and post DDS.txt directly in your reply.

[Burningtreefarm]

Thank you, here is the MBAM,
Malwarebytes Anti-Malware (Trial) 1.62.0.1300
www.malwarebytes.org
Database version: v2012.08.16.10
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 8.0.7601.17514
Tim :: BURNINGTREEFARM [administrator]
Protection: Enabled
8/16/2012 2:55:16 PM
mbam-log-2012-08-16 (14-55-16).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 197907
Time elapsed: 1 minute(s), 38 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
(end)
.
DDS (Ver_2011-08-26.01) - NTFSAMD64
Internet Explorer: 8.0.7601.17514
Run by Tim at 15:01:44 on 2012-08-16
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.12287.9874 [GMT -4:00]
.
AV: Norton 360 *Enabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Norton 360 *Enabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
FW: Norton 360 *Enabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Norton 360\Engine\5.2.2.3\ccSvcHst.exe
C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\WUDFHost.exe
C:\Windows\system32\atieclxx.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\Norton 360\Engine\5.2.2.3\ccSvcHst.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskhost.exe
C:\Program Files (x86)\ASUS\GPU Boost Driver\GpuBoostServer.exe
C:\Program Files (x86)\ASUS\TurboV EVO\TurboVHELP.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files (x86)\ASUS\EPU\EPU.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\ASUS\AI Suite\QFan4\FanHelp.exe
C:\Program Files (x86)\ASUS\TurboV EVO\TurboV_EVO.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files (x86)\Microsoft Office\OFFICE11\OUTLOOK.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\Macromed\Flash\FlashUtil64_11_3_300_257_ActiveX.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\notepad.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\conhost.exe
C:\Windows\SysWOW64\cscript.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://search.splashtop.com/asusexpressgate/mb/searchAPI.php?SE=yahoo&QS=http%3A%2F%2Fsearch.yahoo.com%2Fsearch%3Ffr%3Dfp-devicevm%26type%3DWEB01
uInternet Settings,ProxyOverride = *.local
uURLSearchHooks: SearchHook Class: {bc86e1ab-eda5-4059-938f-ce307b0c6f0a} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll
mWinlogon: Userinit=userinit.exe
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Canon Easy-WebPrint EX BHO: {3785d0ad-bfff-47f6-bf5b-a587c162fed9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
BHO: Symantec NCO BHO: {602adb0e-4aff-4217-8aa1-95dac4dfa408} - C:\Program Files (x86)\Norton 360\Engine\5.2.2.3\coIEPlg.dll
BHO: Symantec Intrusion Prevention: {6d53ec84-6aae-4787-aeee-f4628f01010c} - C:\Program Files (x86)\Norton 360\Engine\5.2.2.3\IPS\IPSBHO.DLL
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
TB: Norton Toolbar: {7febefe3-6b19-4349-98d2-ffb09d4b49ca} - C:\Program Files (x86)\Norton 360\Engine\5.2.2.3\coIEPlg.dll
TB: Canon Easy-WebPrint EX: {759d9886-0c6f-4498-bab6-4a5f47c6c72f} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
TB: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
EB: Canon Easy-WebPrint EX: {21347690-ec41-4f9a-8887-1f4aee672439} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
uRun: [EPSON Stylus Photo R220 Series] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIAIA.EXE /FU "C:\Windows\TEMP\E_SD540.tmp" /EF "HKCU"
mRun: [PMBVolumeWatcher] C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [Six Engine] "C:\Program Files (x86)\ASUS\EPU\EPU.exe" -b
mRun: [QFan Help] "C:\Program Files (x86)\ASUS\AI Suite\QFan4\FanHelp.exe"
mRun: [TurboV EVO] "C:\Program Files (x86)\ASUS\TurboV EVO\TurboV_EVO.exe" -b
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
StartupFolder: C:\Users\Tim\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\ONENOT~1.LNK - C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - C:\PROGRA~2\MICROS~2\OFFICE11\REFIEBAR.DLL
TCP: DhcpNameServer = 192.168.0.1
TCP: Interfaces\{5EA2ABC6-B14D-4C1E-8CAD-BADE176D5BAF} : DhcpNameServer = 192.168.0.1
Handler: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - C:\Program Files (x86)\Common Files\microsoft shared\Web Folders\PKMCDO.DLL
BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO-X64: AcroIEHelperStub - No File
BHO-X64: Canon Easy-WebPrint EX BHO: {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
BHO-X64: Canon Easy-WebPrint EX BHO - No File
BHO-X64: Symantec NCO BHO: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine\5.2.2.3\coIEPlg.dll
BHO-X64: Symantec NCO BHO - No File
BHO-X64: Symantec Intrusion Prevention: {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton 360\Engine\5.2.2.3\IPS\IPSBHO.DLL
BHO-X64: Symantec Intrusion Prevention - No File
BHO-X64: Windows Live Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
TB-X64: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\5.2.2.3\coIEPlg.dll
TB-X64: Canon Easy-WebPrint EX: {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
TB-X64: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
EB-X64: {21347690-EC41-4F9A-8887-1F4AEE672439} - No File
mRun-x64: [PMBVolumeWatcher] C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
mRun-x64: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun-x64: [Six Engine] "C:\Program Files (x86)\ASUS\EPU\EPU.exe" -b
mRun-x64: [QFan Help] "C:\Program Files (x86)\ASUS\AI Suite\QFan4\FanHelp.exe"
mRun-x64: [TurboV EVO] "C:\Program Files (x86)\ASUS\TurboV EVO\TurboV_EVO.exe" -b
mRun-x64: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun-x64: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun-x64: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Tim\AppData\Roaming\Mozilla\Firefox\Profiles\72a0v3oi.default\
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll
.
============= SERVICES / DRIVERS ===============
.
R0 SymDS;Symantec Data Store;C:\Windows\system32\drivers\N360x64\0502020.003\SYMDS64.SYS --> C:\Windows\system32\drivers\N360x64\0502020.003\SYMDS64.SYS [?]
R0 SymEFA;Symantec Extended File Attributes;C:\Windows\system32\drivers\N360x64\0502020.003\SYMEFA64.SYS --> C:\Windows\system32\drivers\N360x64\0502020.003\SYMEFA64.SYS [?]
R1 BHDrvx64;BHDrvx64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.2.1\Definitions\BASHDefs\20120811.003\BHDrvx64.sys [2012-8-10 1385120]
R1 IDSVia64;IDSVia64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.2.1\Definitions\IPSDefs\20120815.002\IDSviA64.sys [2012-8-15 509088]
R1 SymIRON;Symantec Iron Driver;C:\Windows\system32\drivers\N360x64\0502020.003\Ironx64.SYS --> C:\Windows\system32\drivers\N360x64\0502020.003\Ironx64.SYS [?]
R1 SymNetS;Symantec Network Security WFP Driver;C:\Windows\system32\Drivers\N360x64\0502020.003\SYMNETS.SYS --> C:\Windows\system32\Drivers\N360x64\0502020.003\SYMNETS.SYS [?]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\system32\atiesrxx.exe --> C:\Windows\system32\atiesrxx.exe [?]
R2 AMD FUEL Service;AMD FUEL Service;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-6-11 361984]
R2 AODDriver4.01;AODDriver4.01;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys [2012-3-5 53888]
R2 cpuz135;cpuz135;\??\C:\Windows\system32\drivers\cpuz135_x64.sys --> C:\Windows\system32\drivers\cpuz135_x64.sys [?]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-8-14 655944]
R2 N360;Norton 360;C:\Program Files (x86)\Norton 360\Engine\5.2.2.3\ccsvchst.exe [2012-6-11 130008]
R2 PMBDeviceInfoProvider;PMBDeviceInfoProvider;C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe [2011-8-24 430136]
R2 RtNdPt60;Realtek NDIS Protocol Driver;C:\Windows\system32\DRIVERS\RtNdPt60.sys --> C:\Windows\system32\DRIVERS\RtNdPt60.sys [?]
R3 amdiox64;AMD IO Driver;C:\Windows\system32\DRIVERS\amdiox64.sys --> C:\Windows\system32\DRIVERS\amdiox64.sys [?]
R3 amdkmdag;amdkmdag;C:\Windows\system32\DRIVERS\atikmdag.sys --> C:\Windows\system32\DRIVERS\atikmdag.sys [?]
R3 amdkmdap;amdkmdap;C:\Windows\system32\DRIVERS\atikmpag.sys --> C:\Windows\system32\DRIVERS\atikmpag.sys [?]
R3 asmthub3;ASMedia USB3 Hub Service;C:\Windows\system32\DRIVERS\asmthub3.sys --> C:\Windows\system32\DRIVERS\asmthub3.sys [?]
R3 asmtxhci;ASMEDIA XHCI Service;C:\Windows\system32\DRIVERS\asmtxhci.sys --> C:\Windows\system32\DRIVERS\asmtxhci.sys [?]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\system32\drivers\AtihdW76.sys --> C:\Windows\system32\drivers\AtihdW76.sys [?]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2012-8-15 138912]
R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\system32\DRIVERS\Rt64win7.sys --> C:\Windows\system32\DRIVERS\Rt64win7.sys [?]
R3 stdriver;Sound tap driver Upper Class Filter Driver v2.0.0.0;C:\Windows\system32\DRIVERS\stdriver64.sys --> C:\Windows\system32\DRIVERS\stdriver64.sys [?]
R3 VST64_DPV;VST64_DPV;C:\Windows\system32\DRIVERS\VSTDPV6.SYS --> C:\Windows\system32\DRIVERS\VSTDPV6.SYS [?]
R3 VST64HWBS2;VST64HWBS2;C:\Windows\system32\DRIVERS\VSTBS26.SYS --> C:\Windows\system32\DRIVERS\VSTBS26.SYS [?]
S2 AODDriver4.1;AODDriver4.1;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys [2012-3-5 53888]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S3 RTTEAMPT;Realtek Teaming Protocol Driver (NDIS 6.2);C:\Windows\system32\DRIVERS\RtTeam60.sys --> C:\Windows\system32\DRIVERS\RtTeam60.sys [?]
S3 RTVLANPT;Realtek Vlan Protocol Driver (NDIS 6.2);C:\Windows\system32\DRIVERS\RtVlan60.sys --> C:\Windows\system32\DRIVERS\RtVlan60.sys [?]
S3 TEAM;Realtek Virtual Miniport Driver for Teaming (NDIS 6.2);C:\Windows\system32\DRIVERS\RtTeam60.sys --> C:\Windows\system32\DRIVERS\RtTeam60.sys [?]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\system32\drivers\TsUsbGD.sys --> C:\Windows\system32\drivers\TsUsbGD.sys [?]
S3 VRSService;VRS Recording System;C:\Program Files (x86)\NCH Software\VRS\vrs.exe [2012-1-28 1248772]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]
S4 AsSysCtrlService;ASUS System Control Service;C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe [2012-1-25 109056]
S4 BCUService;Browser Configuration Utility Service;C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe [2010-3-5 235752]
.
=============== Created Last 30 ================
.
2012-08-16 00:56:17 503808 ----a-w- C:\Windows\System32\srcore.dll
2012-08-16 00:56:17 43008 ----a-w- C:\Windows\SysWow64\srclient.dll
2012-08-16 00:56:06 751104 ----a-w- C:\Windows\System32\win32spl.dll
2012-08-16 00:56:06 67072 ----a-w- C:\Windows\splwow64.exe
2012-08-16 00:56:06 559104 ----a-w- C:\Windows\System32\spoolsv.exe
2012-08-16 00:56:06 492032 ----a-w- C:\Windows\SysWow64\win32spl.dll
2012-08-16 00:56:04 609792 ----a-w- C:\Windows\System32\vbscript.dll
2012-08-16 00:56:04 428032 ----a-w- C:\Windows\SysWow64\vbscript.dll
2012-08-15 02:33:55 -------- d-----w- C:\Users\Tim\AppData\Roaming\Malwarebytes
2012-08-15 02:33:46 24904 ----a-w- C:\Windows\System32\drivers\mbam.sys
2012-08-15 02:33:46 -------- d-----w- C:\ProgramData\Malwarebytes
2012-08-15 02:33:46 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2012-08-15 01:35:55 -------- d-----w- C:\Users\Tim\AppData\Roaming\Tific
2012-08-13 23:47:23 -------- d-----w- C:\Users\Tim\AppData\Local\AMD
2012-08-13 23:46:41 -------- d-----w- C:\Program Files (x86)\AMD AVT
2012-08-13 23:46:36 -------- d-----w- C:\Program Files (x86)\AMD APP
2012-07-24 11:39:22 9133488 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D7AE628D-F920-4402-AC57-433472C0D228}\mpengine.dll
2012-07-23 11:57:16 9133488 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2012-07-17 23:14:47 -------- d-----w- C:\Users\Tim\AppData\Local\Apple Computer
2012-07-17 23:14:31 34152 ----a-w- C:\Windows\System32\drivers\GEARAspiWDM.sys
2012-07-17 23:14:31 126312 ----a-w- C:\Windows\System32\GEARAspi64.dll
2012-07-17 23:14:31 107368 ----a-w- C:\Windows\SysWow64\GEARAspi.dll
2012-07-17 23:14:21 -------- d-----w- C:\Program Files\iPod
2012-07-17 23:14:20 -------- d-----w- C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
2012-07-17 23:14:20 -------- d-----w- C:\Program Files\iTunes
2012-07-17 23:14:20 -------- d-----w- C:\Program Files (x86)\iTunes
2012-07-17 23:13:45 -------- d-----w- C:\Users\Tim\AppData\Local\Apple
2012-07-17 23:13:08 -------- d-----w- C:\Program Files\Bonjour
2012-07-17 23:13:08 -------- d-----w- C:\Program Files (x86)\Bonjour
.
==================== Find3M ====================
.
2012-07-18 18:15:06 3148800 ----a-w- C:\Windows\System32\win32k.sys
2012-07-04 22:13:27 59392 ----a-w- C:\Windows\System32\browcli.dll
2012-07-04 22:13:27 136704 ----a-w- C:\Windows\System32\browser.dll
2012-07-04 21:14:34 41984 ----a-w- C:\Windows\SysWow64\browcli.dll
2012-06-27 07:06:53 1188864 ----a-w- C:\Windows\System32\wininet.dll
2012-06-27 05:53:07 981504 ----a-w- C:\Windows\SysWow64\wininet.dll
2012-06-27 04:53:10 1638912 ----a-w- C:\Windows\System32\mshtml.tlb
2012-06-27 04:10:55 1638912 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2012-06-25 20:04:24 1394248 ----a-w- C:\Windows\SysWow64\msxml4.dll
2012-06-11 18:59:38 10248192 ----a-w- C:\Windows\System32\drivers\atikmdag.sys
2012-06-11 18:35:48 70144 ----a-w- C:\Windows\System32\coinst_8.98.dll
2012-06-11 18:29:34 24826368 ----a-w- C:\Windows\System32\atio6axx.dll
2012-06-11 18:00:32 20467712 ----a-w- C:\Windows\SysWow64\atioglxx.dll
2012-06-11 17:50:46 187392 ----a-w- C:\Windows\System32\clinfo.exe
2012-06-11 17:50:30 75264 ----a-w- C:\Windows\System32\OpenVideo64.dll
2012-06-11 17:50:24 65024 ----a-w- C:\Windows\SysWow64\OpenVideo.dll
2012-06-11 17:50:18 63488 ----a-w- C:\Windows\System32\OVDecode64.dll
2012-06-11 17:50:14 56320 ----a-w- C:\Windows\SysWow64\OVDecode.dll
2012-06-11 17:50:06 16457728 ----a-w- C:\Windows\System32\amdocl64.dll
2012-06-11 17:49:22 13008896 ----a-w- C:\Windows\SysWow64\amdocl.dll
2012-06-11 17:48:34 54784 ----a-w- C:\Windows\System32\OpenCL.dll
2012-06-11 17:48:30 50176 ----a-w- C:\Windows\SysWow64\OpenCL.dll
2012-06-11 17:25:06 163840 ----a-w- C:\Windows\System32\atiapfxx.exe
2012-06-11 17:24:58 924160 ----a-w- C:\Windows\SysWow64\aticfx32.dll
2012-06-11 17:23:12 1090560 ----a-w- C:\Windows\System32\aticfx64.dll
2012-06-11 17:20:02 442368 ----a-w- C:\Windows\System32\ATIDEMGX.dll
2012-06-11 17:19:58 532992 ----a-w- C:\Windows\System32\atieclxx.exe
2012-06-11 17:19:14 239616 ----a-w- C:\Windows\System32\atiesrxx.exe
2012-06-11 17:17:56 120320 ----a-w- C:\Windows\System32\atitmm64.dll
2012-06-11 17:17:42 21504 ----a-w- C:\Windows\System32\atimuixx.dll
2012-06-11 17:17:38 59392 ----a-w- C:\Windows\System32\atiedu64.dll
2012-06-11 17:17:32 43520 ----a-w- C:\Windows\SysWow64\ati2edxx.dll
2012-06-11 17:16:48 6301696 ----a-w- C:\Windows\SysWow64\atidxx32.dll
2012-06-11 17:01:56 6914560 ----a-w- C:\Windows\System32\atidxx64.dll
2012-06-11 16:51:54 4246528 ----a-w- C:\Windows\System32\atiumd6a.dll
2012-06-11 16:45:48 51200 ----a-w- C:\Windows\System32\aticalrt64.dll
2012-06-11 16:45:46 46080 ----a-w- C:\Windows\SysWow64\aticalrt.dll
2012-06-11 16:45:44 5480448 ----a-w- C:\Windows\SysWow64\atiumdag.dll
2012-06-11 16:45:40 44544 ----a-w- C:\Windows\System32\aticalcl64.dll
2012-06-11 16:45:38 44032 ----a-w- C:\Windows\SysWow64\aticalcl.dll
2012-06-11 16:45:26 15703040 ----a-w- C:\Windows\System32\aticaldd64.dll
2012-06-11 16:43:18 4729344 ----a-w- C:\Windows\SysWow64\atiumdva.dll
2012-06-11 16:40:58 13277696 ----a-w- C:\Windows\SysWow64\aticaldd.dll
2012-06-11 16:36:56 6605824 ----a-w- C:\Windows\System32\atiumd64.dll
2012-06-11 16:27:02 539136 ----a-w- C:\Windows\System32\atiadlxx.dll
2012-06-11 16:26:52 368640 ----a-w- C:\Windows\SysWow64\atiadlxy.dll
2012-06-11 16:26:40 17920 ----a-w- C:\Windows\System32\atig6pxx.dll
2012-06-11 16:26:36 14848 ----a-w- C:\Windows\SysWow64\atiglpxx.dll
2012-06-11 16:26:36 14848 ----a-w- C:\Windows\System32\atiglpxx.dll
2012-06-11 16:26:30 41984 ----a-w- C:\Windows\System32\atig6txx.dll
2012-06-11 16:26:22 33280 ----a-w- C:\Windows\SysWow64\atigktxx.dll
2012-06-11 16:26:14 367616 ----a-w- C:\Windows\System32\drivers\atikmpag.sys
2012-06-11 16:25:20 54784 ----a-w- C:\Windows\System32\atiuxp64.dll
2012-06-11 16:25:12 42496 ----a-w- C:\Windows\SysWow64\atiuxpag.dll
2012-06-11 16:25:06 45056 ----a-w- C:\Windows\System32\atiu9p64.dll
2012-06-11 16:24:58 32768 ----a-w- C:\Windows\SysWow64\atiu9pag.dll
2012-06-11 16:24:24 53248 ----a-w- C:\Windows\System32\drivers\ati2erec.dll
2012-06-11 16:23:18 56320 ----a-w- C:\Windows\System32\atimpc64.dll
2012-06-11 16:23:18 56320 ----a-w- C:\Windows\System32\amdpcom64.dll
2012-06-11 16:23:10 56832 ----a-w- C:\Windows\SysWow64\atimpc32.dll
2012-06-11 16:23:10 56832 ----a-w- C:\Windows\SysWow64\amdpcom32.dll
2012-06-10 14:26:16 70344 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2012-06-10 14:26:16 426184 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2012-06-07 00:59:42 1070152 ----a-w- C:\Windows\SysWow64\MSCOMCTL.OCX
2012-06-06 06:06:16 2004480 ----a-w- C:\Windows\System32\msxml6.dll
2012-06-06 06:06:16 1881600 ----a-w- C:\Windows\System32\msxml3.dll
2012-06-06 06:02:54 1133568 ----a-w- C:\Windows\System32\cdosys.dll
2012-06-06 05:05:52 1390080 ----a-w- C:\Windows\SysWow64\msxml6.dll
2012-06-06 05:05:52 1236992 ----a-w- C:\Windows\SysWow64\msxml3.dll
2012-06-06 05:03:06 805376 ----a-w- C:\Windows\SysWow64\cdosys.dll
2012-06-02 22:15:31 2622464 ----a-w- C:\Windows\System32\wucltux.dll
2012-06-02 22:15:08 99840 ----a-w- C:\Windows\System32\wudriver.dll
2012-06-02 19:19:42 186752 ----a-w- C:\Windows\System32\wuwebv.dll
2012-06-02 19:15:12 36864 ----a-w- C:\Windows\System32\wuapp.exe
2012-06-02 05:50:10 458704 ----a-w- C:\Windows\System32\drivers\cng.sys
2012-06-02 05:48:16 95600 ----a-w- C:\Windows\System32\drivers\ksecdd.sys
2012-06-02 05:48:16 151920 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys
2012-06-02 05:45:31 340992 ----a-w- C:\Windows\System32\schannel.dll
2012-06-02 05:44:21 307200 ----a-w- C:\Windows\System32\ncrypt.dll
2012-06-02 04:40:42 22016 ----a-w- C:\Windows\SysWow64\secur32.dll
2012-06-02 04:40:39 225280 ----a-w- C:\Windows\SysWow64\schannel.dll
2012-06-02 04:39:10 219136 ----a-w- C:\Windows\SysWow64\ncrypt.dll
2012-06-02 04:34:09 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll
2012-05-31 16:25:12 279656 ------w- C:\Windows\System32\MpSigStub.exe
.
============= FINISH: 15:02:05.95 ===============

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume1
Install Date: 1/30/2012 6:37:18 PM
System Uptime: 8/16/2012 11:49:23 AM (4 hours ago)
.
Motherboard: ASUSTeK Computer INC. | | M5A88-V EVO
Processor: AMD Phenom™ II X6 1100T Processor | AM3R2 | 3300/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 466 GiB total, 386.452 GiB free.
D: is CDROM ()
E: is CDROM ()
G: is Removable
H: is Removable
I: is Removable
J: is Removable
K: is Removable
.
==== Disabled Device Manager Items =============
.
Class GUID: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Description: AODDriver4.1
Device ID: ROOT\LEGACY_AODDRIVER4.1\0000
Manufacturer:
Name: AODDriver4.1
PNP Device ID: ROOT\LEGACY_AODDRIVER4.1\0000
Service: AODDriver4.1
.
==== System Restore Points ===================
.
RP67: 8/7/2012 7:22:25 AM - Scheduled Checkpoint
RP68: 8/13/2012 4:14:55 PM - Installed Application Profiles
RP69: 8/14/2012 9:49:34 PM - ARO 2012 - Before Installation
RP70: 8/14/2012 9:50:15 PM - ARO 2012 - FIRST RUN
RP71: 8/14/2012 10:01:36 PM - ARO 2012 Tue, Aug 14, 12 22:01
RP72: 8/16/2012 11:28:30 AM - Windows Update
.
==== Installed Programs ======================
.
Update for Microsoft Office 2007 (KB2508958)
Acrobat.com
Adobe AIR
Adobe Flash Player 11 ActiveX
Adobe Reader 9.1
AI Suite
AMD VISION Engine Control Center
Apple Application Support
Apple Software Update
Application Profiles
Asmedia ASM104x USB 3.0 Host Controller Driver
Browser Configuration Utility
Canon Easy-PhotoPrint EX
Canon Easy-WebPrint EX
Canon My Printer
Catalyst Control Center - Branding
Catalyst Control Center Core Implementation
Catalyst Control Center Graphics Full Existing
Catalyst Control Center Graphics Full New
Catalyst Control Center Graphics Light
Catalyst Control Center Graphics Previews Common
Catalyst Control Center Graphics Previews Vista
Catalyst Control Center InstallProxy
Catalyst Control Center Localization All
ccc-core-static
CCC Help Chinese Standard
CCC Help Chinese Traditional
CCC Help Czech
CCC Help Danish
CCC Help Dutch
CCC Help English
CCC Help Finnish
CCC Help French
CCC Help German
CCC Help Greek
CCC Help Hungarian
CCC Help Italian
CCC Help Japanese
CCC Help Korean
CCC Help Norwegian
CCC Help Polish
CCC Help Portuguese
CCC Help Russian
CCC Help Spanish
CCC Help Swedish
CCC Help Thai
CCC Help Turkish
Common
Compatibility Pack for the 2007 Office system
Contents
D3DX10
DeviceIO
Epson Print CD
EPU
Express Burn Disc Burning Software
Express Rip
GPU Boost Driver
HydraVision
ICA
IPM_VS_Pro
IrfanView (remove only)
ISCOM
Malwarebytes Anti-Malware version 1.62.0.1300
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007
Microsoft Office Home and Student 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Standard Edition 2003
Microsoft Office Word MUI (English) 2007
Microsoft Office XP Professional
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
MixPad Audio Mixer
Mozilla Firefox 10.0 (x86 en-US)
MSVCRT
MSXML 4.0 SP3 Parser
MSXML 4.0 SP3 Parser (KB2721691)
MSXML 4.0 SP3 Parser (KB973685)
Norton 360
PC Probe II
PMB
Prism Video File Converter
PureHD
QuickTime
Realtek Ethernet Controller Driver
Realtek Ethernet Diagnostic Utility
Realtek High Definition Audio Driver
RecordPad Sound Recorder
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
Security Update for Microsoft Office 2007 suites (KB2596615) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596672) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596856) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596880) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597162) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687441) 32-Bit Edition
Security Update for Microsoft Office Excel 2007 (KB2597161) 32-Bit Edition
Security Update for Microsoft Office InfoPath 2007 (KB2596786) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
Security Update for Microsoft Office Word 2007 (KB2596917) 32-Bit Edition
Setup
Share
SmartSound Common Data
SmartSound Quicktracks 5
SoundTap Streaming Audio Recorder
Switch Sound File Converter
TurboV EVO
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
VIO
VRS Recording System
VSClassic
VSPro
WavePad Sound Editor
Windows Live Installer
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Media Encoder 9 Series
.
==== Event Viewer Messages From Past Week ========
.
8/9/2012 3:42:46 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000124 (0x0000000000000000, 0xfffffa800ad5d028, 0x00000000b44ca000, 0x0000000000000135). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 080912-19999-01.
8/16/2012 11:50:05 AM, Error: Service Control Manager [7000] - The AODDriver4.1 service failed to start due to the following error: The system cannot find the file specified.
8/16/2012 11:48:46 AM, Error: Service Control Manager [7038] - The WinHttpAutoProxySvc service was unable to log on as NT AUTHORITY\LocalService with the currently configured password due to the following error: The security account manager (SAM) or local security authority (LSA) server was in the wrong state to perform the security operation. To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).
8/16/2012 11:48:46 AM, Error: Service Control Manager [7034] - The AMD FUEL Service service terminated unexpectedly. It has done this 1 time(s).
8/16/2012 11:48:46 AM, Error: Service Control Manager [7000] - The WinHTTP Web Proxy Auto-Discovery Service service failed to start due to the following error: The service did not start due to a logon failure.
8/15/2012 8:46:36 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000000a (0x0000000000000008, 0x0000000000000002, 0x0000000000000000, 0xfffff800032d76de). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081512-19780-01.
8/15/2012 5:38:50 PM, Error: Microsoft-Windows-WHEA-Logger [18] - A fatal hardware error has occurred. Reported by component: Processor Core Error Source: Machine Check Exception Error Type: Cache Hierarchy Error Processor ID: 5 The details view of this entry contains further information.
8/15/2012 5:38:37 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000124 (0x0000000000000000, 0xfffffa800ac45028, 0x00000000b65ea000, 0x0000000000000135). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081512-19484-01.
8/15/2012 4:29:01 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000024 (0x00000000001904fb, 0xfffff8800438f848, 0xfffff8800438f0a0, 0xfffff880014bc60d). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081512-20545-01.
8/15/2012 4:17:03 PM, Error: Service Control Manager [7001] - The Computer Browser service depends on the Server service which failed to start because of the following error: The dependency service or group failed to start.
8/15/2012 4:07:59 PM, Error: Service Control Manager [7001] - The HomeGroup Provider service depends on the Function Discovery Provider Host service which failed to start because of the following error: The dependency service or group failed to start.
8/15/2012 4:07:44 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AsIO BHDrvx64 discache eeCtrl IDSVia64 spldr SRTSPX SymIRON SymNetS Wanarpv6
8/15/2012 4:07:43 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000124 (0x0000000000000000, 0xfffffa800ac47028, 0x00000000b42d2000, 0x0000000000000135). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081512-22042-01.
8/15/2012 10:39:20 PM, Error: Service Control Manager [7001] - The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error: The dependency service or group failed to start.
8/15/2012 10:39:19 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
8/15/2012 10:39:19 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netprofm with arguments "" in order to run the server: {A47979D2-C419-11D9-A5B4-001185AD2B89}
8/15/2012 10:39:19 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netman with arguments "" in order to run the server: {BA126AD1-2166-11D1-B1D0-00805FC1270E}
8/15/2012 10:39:18 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030}
8/15/2012 10:39:18 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
8/15/2012 10:39:12 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "" in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC}
8/15/2012 10:39:07 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000050 (0xfffff880322beb0f, 0x0000000000000001, 0xfffff88000c02910, 0x0000000000000002). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081512-22167-01.
8/15/2012 10:39:05 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD AsIO BHDrvx64 DfsC discache eeCtrl IDSVia64 NetBIOS NetBT nsiproxy Psched rdbss spldr SRTSPX SymIRON SymNetS tdx Wanarpv6 WfpLwf
8/15/2012 10:39:05 PM, Error: Service Control Manager [7001] - The Workstation service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.
8/15/2012 10:39:05 PM, Error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.
8/15/2012 10:39:05 PM, Error: Service Control Manager [7001] - The SMB MiniRedirector Wrapper and Engine service depends on the Redirected Buffering Sub Sysytem service which failed to start because of the following error: A device attached to the system is not functioning.
8/15/2012 10:39:05 PM, Error: Service Control Manager [7001] - The SMB 2.0 MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.
8/15/2012 10:39:05 PM, Error: Service Control Manager [7001] - The SMB 1.x MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.
8/15/2012 10:39:05 PM, Error: Service Control Manager [7001] - The Network Store Interface Service service depends on the NSI proxy service driver. service which failed to start because of the following error: A device attached to the system is not functioning.
8/15/2012 10:39:05 PM, Error: Service Control Manager [7001] - The Network Location Awareness service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.
8/15/2012 10:39:05 PM, Error: Service Control Manager [7001] - The IP Helper service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.
8/15/2012 10:39:05 PM, Error: Service Control Manager [7001] - The DNS Client service depends on the NetIO Legacy TDI Support Driver service which failed to start because of the following error: A device attached to the system is not functioning.
8/15/2012 10:39:05 PM, Error: Service Control Manager [7001] - The DHCP Client service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.
8/15/2012 10:36:19 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000124 (0x0000000000000000, 0xfffffa800abdc028, 0x00000000f60e4000, 0x000000001c000135). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081512-21106-01.
8/14/2012 8:23:07 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000019 (0x0000000000000020, 0xfffffa800a704000, 0xfffffa800a704460, 0x0000000004460000). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081412-21138-01.
8/14/2012 7:38:23 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000024 (0x00000000001904fb, 0xfffff8800a04a398, 0xfffff8800a049bf0, 0xfffff880012d0863). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081412-21543-01.
8/14/2012 4:42:15 PM, Error: Microsoft-Windows-WHEA-Logger [18] - A fatal hardware error has occurred. Reported by component: Processor Core Error Source: Machine Check Exception Error Type: Cache Hierarchy Error Processor ID: 4 The details view of this entry contains further information.
8/14/2012 4:42:07 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000124 (0x0000000000000000, 0xfffffa800ac55028, 0x00000000b4002000, 0x0000000069000145). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081412-21668-01.
8/14/2012 3:00:03 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000124 (0x0000000000000000, 0xfffffa800ac41028, 0x00000000b658a000, 0x0000000000000135). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081412-21231-01.
8/14/2012 10:50:57 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x000000d1 (0xfffff800132d716f, 0x0000000000000002, 0x0000000000000008, 0xfffff800132d716f). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081412-19812-01.
8/14/2012 10:36:59 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x000000d1 (0xfffff7ffe7928200, 0x0000000000000002, 0x0000000000000008, 0xfffff7ffe7928200). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081412-20654-01.
8/13/2012 8:05:29 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000124 (0x0000000000000000, 0xfffffa800ac17028, 0x00000000b6004000, 0x0000000092000135). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081312-36114-01.
8/13/2012 7:59:35 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000124 (0x0000000000000000, 0xfffffa800b65a788, 0x0000000000000000, 0x0000000000000000). A dump was saved in: C:\Windows\Minidump\081312-32978-01.dmp. Report Id: 081312-32978-01.
8/13/2012 7:44:56 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the AMD External Events Utility service to connect.
8/13/2012 7:44:56 PM, Error: Service Control Manager [7000] - The AMD External Events Utility service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
8/13/2012 4:16:32 PM, Error: Service Control Manager [7000] - The AODDriver4.01 service failed to start due to the following error: The system cannot find the path specified.
8/13/2012 4:16:32 PM, Error: Service Control Manager [7000] - The AMD FUEL Service service failed to start due to the following error: The system cannot find the file specified.
8/13/2012 10:53:23 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000124 (0x0000000000000000, 0xfffffa800ac4f028, 0x00000000b620a000, 0x0000000000000135). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081312-24538-01.
8/13/2012 10:17:40 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000124 (0x0000000000000000, 0xfffffa800ac5c028, 0x00000000b66b4000, 0x0000000000000135). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081312-25849-01.
8/10/2012 11:39:30 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000124 (0x0000000000000000, 0xfffffa800aba3028, 0x00000000b61d2000, 0x0000000096000135). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081012-21543-01.
.
==== End Of File ===========================

[screen317]

Hi,

Please visit this webpage for instructions for running ComboFix:
http://www.bleepingc...to-use-combofix

• When the tool is finished, it will produce a report for you.
  
• Please post the C:\ComboFix.txt along with a new DDS log so we may continue cleaning the system.

If after ComboFix reboots you get a message about an "Invalid Option Registry Key Marked for Deletion," please reboot again and the error will go away.


-screen317

[Burningtreefarm]

Chris I was told the post was to long ? here is half the combofix TXT
ComboFix 12-08-20.02 - Tim 08/20/2012 15:23:43.1.6 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.12287.10378 [GMT -4:00]
Running from: c:\users\Tim\Desktop\ComboFix.exe
AV: Norton 360 *Disabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
FW: Norton 360 *Disabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
SP: Norton 360 *Enabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Tim\GoToAssistDownloadHelper.exe
c:\windows\SysWow64\FlashPlayerInstaller.exe
.
.
((((((((((((((((((((((((( Files Created from 2012-07-20 to 2012-08-20 )))))))))))))))))))))))))))))))
.
.
2012-08-20 19:30 . 2012-08-20 19:30 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-08-18 14:39 . 2012-08-18 14:39 -------- d--h--w- c:\programdata\CanonIJScan
2012-08-18 14:20 . 2012-08-18 14:39 -------- d-----w- c:\users\Tim\AppData\Roaming\Canon
2012-08-18 14:05 . 2012-08-18 14:05 -------- d--h--w- c:\programdata\CanonIJEGV
2012-08-16 00:56 . 2012-05-05 08:36 503808 ----a-w- c:\windows\system32\srcore.dll
2012-08-16 00:56 . 2012-05-05 07:46 43008 ----a-w- c:\windows\SysWow64\srclient.dll
2012-08-16 00:56 . 2012-02-11 06:43 751104 ----a-w- c:\windows\system32\win32spl.dll
2012-08-16 00:56 . 2012-02-11 06:36 559104 ----a-w- c:\windows\system32\spoolsv.exe
2012-08-16 00:56 . 2012-02-11 06:36 67072 ----a-w- c:\windows\splwow64.exe
2012-08-16 00:56 . 2012-02-11 05:43 492032 ----a-w- c:\windows\SysWow64\win32spl.dll
2012-08-16 00:56 . 2012-06-16 05:16 609792 ----a-w- c:\windows\system32\vbscript.dll
2012-08-16 00:56 . 2012-06-16 05:15 911360 ----a-w- c:\windows\system32\jscript.dll
2012-08-16 00:56 . 2012-06-16 04:26 428032 ----a-w- c:\windows\SysWow64\vbscript.dll
2012-08-15 02:33 . 2012-08-15 02:33 -------- d-----w- c:\users\Tim\AppData\Roaming\Malwarebytes
2012-08-15 02:33 . 2012-08-15 02:33 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2012-08-15 02:33 . 2012-08-15 02:33 -------- d-----w- c:\programdata\Malwarebytes
2012-08-15 02:33 . 2012-07-03 17:46 24904 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-08-15 01:35 . 2012-08-15 01:35 -------- d-----w- c:\users\Tim\AppData\Roaming\Tific
2012-08-13 23:47 . 2012-08-13 23:47 -------- d-----w- c:\users\Tim\AppData\Local\AMD
2012-08-13 23:46 . 2012-08-13 23:46 -------- d-----w- c:\program files (x86)\AMD AVT
2012-08-13 23:46 . 2012-08-13 23:46 -------- d-----w- c:\program files (x86)\AMD APP
2012-07-24 11:39 . 2012-07-16 06:40 9133488 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{D7AE628D-F920-4402-AC57-433472C0D228}\mpengine.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-08-16 15:29 . 2012-01-31 00:10 62134624 ----a-w- c:\windows\system32\MRT.exe
2012-06-25 20:04 . 2012-06-25 20:04 1394248 ----a-w- c:\windows\SysWow64\msxml4.dll
2012-06-11 18:59 . 2012-06-11 18:59 10248192 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2012-06-11 18:35 . 2012-06-11 18:35 70144 ----a-w- c:\windows\system32\coinst_8.98.dll
2012-06-11 18:29 . 2012-06-11 18:29 24826368 ----a-w- c:\windows\system32\atio6axx.dll
2012-06-11 18:00 . 2012-06-11 18:00 20467712 ----a-w- c:\windows\SysWow64\atioglxx.dll
2012-06-11 17:50 . 2012-06-11 17:50 187392 ----a-w- c:\windows\system32\clinfo.exe
2012-06-11 17:50 . 2012-06-11 17:50 75264 ----a-w- c:\windows\system32\OpenVideo64.dll
2012-06-11 17:50 . 2012-06-11 17:50 65024 ----a-w- c:\windows\SysWow64\OpenVideo.dll
2012-06-11 17:50 . 2012-06-11 17:50 63488 ----a-w- c:\windows\system32\OVDecode64.dll
2012-06-11 17:50 . 2012-06-11 17:50 56320 ----a-w- c:\windows\SysWow64\OVDecode.dll
2012-06-11 17:50 . 2012-06-11 17:50 16457728 ----a-w- c:\windows\system32\amdocl64.dll
2012-06-11 17:49 . 2012-06-11 17:49 13008896 ----a-w- c:\windows\SysWow64\amdocl.dll
2012-06-11 17:48 . 2012-06-11 17:48 54784 ----a-w- c:\windows\system32\OpenCL.dll
2012-06-11 17:48 . 2012-06-11 17:48 50176 ----a-w- c:\windows\SysWow64\OpenCL.dll
2012-06-11 17:25 . 2012-06-11 17:25 163840 ----a-w- c:\windows\system32\atiapfxx.exe
2012-06-11 17:24 . 2012-06-11 17:24 924160 ----a-w- c:\windows\SysWow64\aticfx32.dll
2012-06-11 17:23 . 2011-12-06 03:16 1090560 ----a-w- c:\windows\system32\aticfx64.dll
2012-06-11 17:20 . 2012-06-11 17:20 442368 ----a-w- c:\windows\system32\ATIDEMGX.dll
2012-06-11 17:19 . 2012-06-11 17:19 532992 ----a-w- c:\windows\system32\atieclxx.exe
2012-06-11 17:19 . 2012-06-11 17:19 239616 ----a-w- c:\windows\system32\atiesrxx.exe
2012-06-11 17:17 . 2012-06-11 17:17 120320 ----a-w- c:\windows\system32\atitmm64.dll
2012-06-11 17:17 . 2012-06-11 17:17 21504 ----a-w- c:\windows\system32\atimuixx.dll
2012-06-11 17:17 . 2012-06-11 17:17 59392 ----a-w- c:\windows\system32\atiedu64.dll
2012-06-11 17:17 . 2012-06-11 17:17 43520 ----a-w- c:\windows\SysWow64\ati2edxx.dll
2012-06-11 17:16 . 2012-06-11 17:16 6301696 ----a-w- c:\windows\SysWow64\atidxx32.dll
2012-06-11 17:01 . 2012-06-11 17:01 6914560 ----a-w- c:\windows\system32\atidxx64.dll
2012-06-11 16:51 . 2011-12-06 02:39 4246528 ----a-w- c:\windows\system32\atiumd6a.dll
2012-06-11 16:45 . 2012-06-11 16:45 51200 ----a-w- c:\windows\system32\aticalrt64.dll
2012-06-11 16:45 . 2012-06-11 16:45 46080 ----a-w- c:\windows\SysWow64\aticalrt.dll
2012-06-11 16:45 . 2012-06-11 16:45 5480448 ----a-w- c:\windows\SysWow64\atiumdag.dll
2012-06-11 16:45 . 2012-06-11 16:45 44544 ----a-w- c:\windows\system32\aticalcl64.dll
2012-06-11 16:45 . 2012-06-11 16:45 44032 ----a-w- c:\windows\SysWow64\aticalcl.dll
2012-06-11 16:45 . 2012-06-11 16:45 15703040 ----a-w- c:\windows\system32\aticaldd64.dll
2012-06-11 16:43 . 2012-06-11 16:43 4729344 ----a-w- c:\windows\SysWow64\atiumdva.dll
2012-06-11 16:40 . 2012-06-11 16:40 13277696 ----a-w- c:\windows\SysWow64\aticaldd.dll
2012-06-11 16:36 . 2011-12-06 02:24 6605824 ----a-w- c:\windows\system32\atiumd64.dll
2012-06-11 16:27 . 2012-06-11 16:27 539136 ----a-w- c:\windows\system32\atiadlxx.dll
2012-06-11 16:26 . 2012-06-11 16:26 368640 ----a-w- c:\windows\SysWow64\atiadlxy.dll
2012-06-11 16:26 . 2012-06-11 16:26 17920 ----a-w- c:\windows\system32\atig6pxx.dll
2012-06-11 16:26 . 2012-06-11 16:26 14848 ----a-w- c:\windows\SysWow64\atiglpxx.dll
2012-06-11 16:26 . 2012-06-11 16:26 14848 ----a-w- c:\windows\system32\atiglpxx.dll
2012-06-11 16:26 . 2012-06-11 16:26 41984 ----a-w- c:\windows\system32\atig6txx.dll
2012-06-11 16:26 . 2012-06-11 16:26 33280 ----a-w- c:\windows\SysWow64\atigktxx.dll
2012-06-11 16:26 . 2012-06-11 16:26 367616 ----a-w- c:\windows\system32\drivers\atikmpag.sys
2012-06-11 16:25 . 2010-11-26 02:16 54784 ----a-w- c:\windows\system32\atiuxp64.dll
2012-06-11 16:25 . 2012-06-11 16:25 42496 ----a-w- c:\windows\SysWow64\atiuxpag.dll
2012-06-11 16:25 . 2011-12-06 02:11 45056 ----a-w- c:\windows\system32\atiu9p64.dll
2012-06-11 16:24 . 2012-06-11 16:24 32768 ----a-w- c:\windows\SysWow64\atiu9pag.dll
2012-06-11 16:24 . 2012-06-11 16:24 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2012-06-11 16:23 . 2012-06-11 16:23 56320 ----a-w- c:\windows\system32\atimpc64.dll
2012-06-11 16:23 . 2012-06-11 16:23 56320 ----a-w- c:\windows\system32\amdpcom64.dll
2012-06-11 16:23 . 2012-06-11 16:23 56832 ----a-w- c:\windows\SysWow64\atimpc32.dll
2012-06-11 16:23 . 2012-06-11 16:23 56832 ----a-w- c:\windows\SysWow64\amdpcom32.dll
2012-06-10 14:26 . 2012-03-31 03:50 426184 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-06-10 14:26 . 2012-01-29 00:27 70344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-06-09 05:43 . 2012-07-11 12:08 14172672 ----a-w- c:\windows\system32\shell32.dll
2012-06-07 00:59 . 2012-06-07 00:59 1070152 ----a-w- c:\windows\SysWow64\MSCOMCTL.OCX
2012-06-06 06:06 . 2012-07-11 12:08 2004480 ----a-w- c:\windows\system32\msxml6.dll
2012-06-06 06:06 . 2012-07-11 12:08 1881600 ----a-w- c:\windows\system32\msxml3.dll
2012-06-06 06:02 . 2012-07-11 12:08 1133568 ----a-w- c:\windows\system32\cdosys.dll
2012-06-06 05:05 . 2012-07-11 12:08 1390080 ----a-w- c:\windows\SysWow64\msxml6.dll
2012-06-06 05:05 . 2012-07-11 12:08 1236992 ----a-w- c:\windows\SysWow64\msxml3.dll
2012-06-06 05:03 . 2012-07-11 12:08 805376 ----a-w- c:\windows\SysWow64\cdosys.dll
2012-06-02 22:19 . 2012-06-21 14:13 38424 ----a-w- c:\windows\system32\wups.dll
2012-06-02 22:19 . 2012-06-21 14:13 2428952 ----a-w- c:\windows\system32\wuaueng.dll
2012-06-02 22:19 . 2012-06-21 14:13 57880 ----a-w- c:\windows\system32\wuauclt.exe
2012-06-02 22:19 . 2012-06-21 14:13 44056 ----a-w- c:\windows\system32\wups2.dll
2012-06-02 22:19 . 2012-06-21 14:13 701976 ----a-w- c:\windows\system32\wuapi.dll
2012-06-02 22:15 . 2012-06-21 14:13 2622464 ----a-w- c:\windows\system32\wucltux.dll
2012-06-02 22:15 . 2012-06-21 14:13 99840 ----a-w- c:\windows\system32\wudriver.dll
2012-06-02 19:19 . 2012-06-21 14:13 186752 ----a-w- c:\windows\system32\wuwebv.dll
2012-06-02 19:15 . 2012-06-21 14:13 36864 ----a-w- c:\windows\system32\wuapp.exe
2012-06-02 05:50 . 2012-07-11 12:08 458704 ----a-w- c:\windows\system32\drivers\cng.sys
2012-06-02 05:48 . 2012-07-11 12:08 95600 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2012-06-02 05:48 . 2012-07-11 12:08 151920 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2012-06-02 05:45 . 2012-07-11 12:08 340992 ----a-w- c:\windows\system32\schannel.dll
2012-06-02 05:44 . 2012-07-11 12:08 307200 ----a-w- c:\windows\system32\ncrypt.dll
2012-06-02 04:40 . 2012-07-11 12:08 22016 ----a-w- c:\windows\SysWow64\secur32.dll
2012-06-02 04:40 . 2012-07-11 12:08 225280 ----a-w- c:\windows\SysWow64\schannel.dll
2012-06-02 04:39 . 2012-07-11 12:08 219136 ----a-w- c:\windows\SysWow64\ncrypt.dll
2012-06-02 04:34 . 2012-07-11 12:08 96768 ----a-w- c:\windows\SysWow64\sspicli.dll
2012-05-31 16:25 . 2010-11-21 03:27 279656 ------w- c:\windows\system32\MpSigStub.exe
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"AMD AVT"="start AMD Accelerated Video Transcoding device initialization" [X]
"PMBVolumeWatcher"="c:\program files (x86)\Sony\PMB\PMBVolumeWatcher.exe" [2011-08-24 651832]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-06-11 641704]
"Six Engine"="c:\program files (x86)\ASUS\EPU\EPU.exe" [2011-04-11 5402752]
"QFan Help"="c:\program files (x86)\ASUS\AI Suite\QFan4\FanHelp.exe" [2010-03-25 888960]
"TurboV EVO"="c:\program files (x86)\ASUS\TurboV EVO\TurboV_EVO.exe" [2010-11-12 10007168]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-05-31 59280]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2012-06-07 421776]
"Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-07-03 462920]
.
c:\users\Tim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OneNote 2007 Screen Clipper and Launcher.lnk - c:\program files (x86)\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
R2 AODDriver4.1;AODDriver4.1;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-03-05 53888]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 RTTEAMPT;Realtek Teaming Protocol Driver (NDIS 6.2);c:\windows\system32\DRIVERS\RtTeam60.sys [2010-01-14 48416]
R3 RTVLANPT;Realtek Vlan Protocol Driver (NDIS 6.2);c:\windows\system32\DRIVERS\RtVlan60.sys [2010-01-14 29472]
R3 TEAM;Realtek Virtual Miniport Driver for Teaming (NDIS 6.2);c:\windows\system32\DRIVERS\RtTeam60.sys [2010-01-14 48416]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
R3 VRSService;VRS Recording System;c:\program files (x86)\NCH Software\VRS\vrs.exe [2012-01-28 1248772]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2012-01-31 1255736]
R4 AsSysCtrlService;ASUS System Control Service;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe [2010-06-24 109056]
R4 BCUService;Browser Configuration Utility Service;c:\program files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe [2010-03-05 235752]
S0 SymDS;Symantec Data Store;c:\windows\system32\drivers\N360x64\0502020.003\SYMDS64.SYS [2011-01-27 450680]
S0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\N360x64\0502020.003\SYMEFA64.SYS [2011-03-15 912504]
S1 BHDrvx64;BHDrvx64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.2.1\Definitions\BASHDefs\20120811.003\BHDrvx64.sys [2012-08-11 1385120]
S1 IDSVia64;IDSVia64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.2.1\Definitions\IPSDefs\20120817.001\IDSvia64.sys [2012-06-14 509088]
S1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\N360x64\0502020.003\Ironx64.SYS [2010-11-16 171128]
S1 SymNetS;Symantec Network Security WFP Driver;c:\windows\System32\Drivers\N360x64\0502020.003\SYMNETS.SYS [2011-04-21 386168]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2012-06-11 239616]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-06-11 361984]
S2 AODDriver4.01;AODDriver4.01;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-03-05 53888]
S2 cpuz135;cpuz135;c:\windows\system32\drivers\cpuz135_x64.sys [2011-09-21 21992]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-07-03 655944]
S2 N360;Norton 360;c:\program files (x86)\Norton 360\Engine\5.2.2.3\ccSvcHst.exe [2011-04-17 130008]
S2 PMBDeviceInfoProvider;PMBDeviceInfoProvider;c:\program files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe [2011-08-24 430136]
S2 RtNdPt60;Realtek NDIS Protocol Driver;c:\windows\system32\DRIVERS\RtNdPt60.sys [2010-01-14 32544]
S3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [2012-06-11 10248192]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2012-06-11 367616]
S3 asmthub3;ASMedia USB3 Hub Service;c:\windows\system32\DRIVERS\asmthub3.sys [2011-06-02 128488]
S3 asmtxhci;ASMEDIA XHCI Service;c:\windows\system32\DRIVERS\asmtxhci.sys [2011-06-02 401896]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [2012-02-23 95760]
S3 dc3d;MS Hardware Device Detection Driver;c:\windows\system32\DRIVERS\dc3d.sys [2011-05-18 47616]
S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2012-08-09 138912]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-07-03 24904]
S3 Point64;Microsoft IntelliPoint Filter Driver;c:\windows\system32\DRIVERS\point64.sys [2010-07-21 45456]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2012-02-16 539240]
S3 stdriver;Sound tap driver Upper Class Filter Driver v2.0.0.0;c:\windows\system32\DRIVERS\stdriver64.sys [2012-01-28 56408]
S3 VST64_DPV;VST64_DPV;c:\windows\system32\DRIVERS\VSTDPV6.SYS [2009-06-10 1485312]
S3 VST64HWBS2;VST64HWBS2;c:\windows\system32\DRIVERS\VSTBS26.SYS [2009-06-10 411136]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - WS2IFSL
.
Contents of the 'Scheduled Tasks' folder
.
2012-01-31 c:\windows\Tasks\Microsoft_Hardware_Launch_IPoint_exe.job
- c:\program files\Microsoft IntelliPoint\ipoint.exe [2010-07-21 21:59]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2010-07-21 2327952]
"CanonMyPrinter"="c:\program files\Canon\MyPrinter\BJMyPrt.exe" [2011-07-19 2780776]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-06-29 11905128]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://search.splashtop.com/asusexpressgate/mb/searchAPI.php?SE=yahoo&QS=http%3A%2F%2Fsearch.yahoo.com%2Fsearch%3Ffr%3Dfp-devicevm%26type%3DWEB01
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~2\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.0.1
FF - ProfilePath - c:\users\Tim\AppData\Roaming\Mozilla\Firefox\Profiles\72a0v3oi.default\
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\N360]
"ImagePath"="\"c:\program files (x86)\Norton 360\Engine\5.2.2.3\ccSvcHst.exe\" /s \"N360\" /m \"c:\program files (x86)\Norton 360\Engine\5.2.2.3\diMaster.dll\" /prefetch:1"
.

[Burningtreefarm]

heres some more
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-1972123821-3146398215-3406303675-1000\Software\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Common Client\ccIPC]
@Denied: (C D) (Everyone)
.
[HKEY_USERS\S-1-5-21-1972123821-3146398215-3406303675-1000\Software\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Common Client\ccIPC\Endpoints]
@Denied: (C D) (Everyone)
"{DB66C9DF-0CC4-4C6F-A663-1D4CE944E951}"=""
"{7BCF069C-5679-4E37-B3E1-56C2D8E3448E}"=""
"{14ADF74A-95D0-4988-8F1E-F4282175AD91}"=""
"{151F6C52-E4CA-4166-9A27-1DB640F7BB22}"=""
"{E79135FF-1FF2-4735-8A38-B20AEE98938D}"=""
"{3B35C98F-5E5A-4D00-B7DF-B8BECBB27B43}"=""
"{ED6C4767-2987-4F64-B260-AB283A0C8056}"=""
"{BDEF5221-F8CC-4512-8EA9-7EDDD8560EA9}"=""
"{680F808E-F75E-4F24-AEBA-CC7D65B96E4E}"=""
"{0C962C74-479E-4A17-8AE6-B4B7BE8F7677}"=""
"{C0D5163A-7C89-4EFD-A387-464ADABCB507}"=""
"{1AEDDD59-11CE-473E-BBA8-89065ABFC136}"=""
"{3D96D355-9E75-4632-B3BD-592B480FA3E5}"=""
"{30C9659A-B01B-4FB5-A1A8-FFB574970548}"=""
"{5823A1A7-AE59-4B4D-96D8-FB9DB461C81E}"=""
"{E3681478-1016-4DA3-B257-D1FFFA1DC37B}"=""
"{F09D6BCF-A594-4E91-B9D2-E8335D8ABCDD}"=""
"{8AEB97DF-342C-4AD3-8ED5-D4872CE4C403}"=""
"{EB6BD9B0-EF9A-44BD-A2E7-CF4E45035AC7}"=""
"{34C0B8E3-7513-40F6-A6D2-FD7FB0EAFB49}"=""
"{00438DAB-EC0F-4D8B-AF53-3CCC7E36883A}"=""
"{59982AC3-6B11-4913-B68F-B6B6C5486A76}"=""
"{AA8D1242-2F7C-4F27-BB0F-A9D0800CB6DF}"=""
"{BED9C57E-35A1-488C-8DFA-F29D6811CB16}"=""
"{8FE9648D-EE09-4F95-A5BE-E0410E52ADF9}"=""
"{D7CE1062-3484-497C-9ADA-1C968EA5FB8E}"=""
"{5A802FFA-8DE6-42DB-834A-C78015EA3407}"=""
"{C5EA2638-A51E-45B9-A0EB-69C15F8713D4}"=""
"{49DF1542-BFC6-4248-8B7A-E22C265B5BB1}"=""
"{8F2A041F-BAE8-4E22-B474-AF6B6C352B7C}"=""
"{3439590E-DADE-40D9-AC7B-D9ED4A85D770}"=""
"{6508993C-A638-4D05-86A7-1AD1D968EFFD}"=""
"{DDCCA318-D70A-47FD-9525-8A1325A53F34}"=""
"{6A262E52-463E-4E05-9760-3528FCA6D480}"=""
"{CFC78B51-72D3-4DDB-A4CD-301480B9FEA2}"=""
"{01895F09-5CDF-4236-AEE6-9D810BF04FE8}"=""
"{AEA9E3A8-88C3-4669-A0E7-CB4FE09D07AB}"=""
"{64738BEF-4BC4-479D-89DA-3F94AC86BA2E}"=""
"{0FA6F125-4AAE-4940-AA61-1DF465D7269C}"=""
"{AA3CA7D8-3F7F-49BE-AEB3-1ACADEC5F5DB}"=""
"{D9C25F8C-1915-45E6-9C95-5028CBF3DB7A}"=""
"{AA58C420-CE24-4635-9BDD-427E81FE11B7}"=""
"{0C27A23A-C98A-44B9-B8F7-313A36967B13}"=""
"{C8299D04-BC56-445C-8FF9-B085404BC19B}"=""
"{D2C3BA31-A2D8-4F4F-A9FC-781EC4389D5C}"=""
"{19F32344-189E-4A74-8BCC-C8AD940E9157}"=""
"{0FCE7BD0-3D12-45B7-97AA-C797EC25CE42}"=""
"{D3A595C0-EEE0-426E-8F7A-3F63861FFD1F}"=""
"{01DF35AB-F348-464A-8D74-5E57BF7C8C51}"=""
"{CD074952-4EFE-4652-8AF7-35DF01E571AA}"=""
"{820631AB-08C7-435C-AB54-ECB831451BBE}"=""
"{79A9B7CB-80C6-4B61-88A2-8D8EA2570A7B}"=""
"{9DC80076-7DCF-476D-8B3E-DE4F79E7CA0B}"=""
"{F92894BF-9B53-4054-87A9-EC5AD224CC3D}"=""
"{BB56E3E9-3F75-47F2-9F10-D2468D789A94}"=""
"{690A7CFF-9213-468B-9CC8-E226F156F84F}"=""
"{0AD4A3A7-4F69-420B-9713-1384BFAA2AEF}"=""
"{902BB72D-6D35-4D0B-8147-EE009EF92D2E}"=""
"{109BE101-BEDB-46F3-925B-43AFA0142F83}"=""
"{51E2B6A6-4035-49AF-BECD-0E2E0FD8FEE4}"=""
"{17385AC5-D88B-4262-8E61-D0982AE4B669}"=""
"{FFE820D4-744E-4206-8A49-D4F6C1B95629}"=""
"{81E8159E-FC19-4097-B421-61D10114C00B}"=""
"{22D04F78-5AE0-4AB7-98DA-E8E423A8708A}"=""
"{E37CE5E3-4B1A-4209-B08B-B8EF6C0DE0E7}"=""
"{64036DC9-2B04-45EF-97AF-27B5124213CE}"=""
"{187E4CA6-619C-44A8-AB57-FFC499379403}"=""
"{2135776A-BA0C-4B6F-9731-6DDB664328FC}"=""
"{C1F2C438-80B1-4322-B78A-7E10C60F4AD7}"=""
"{17DC5E66-F25C-44A1-B83F-0F874DC963FD}"=""
"{7753ECD5-AEB1-4345-B19B-F947D31659F4}"=""
"{7979985B-CAD4-4400-AD19-2087321E758B}"=""
"{BF4524B2-82C2-46C6-A17A-3C984F3AF186}"=""
"{A1BB97D7-1D17-46EB-A5AA-6A6F9AF273EA}"=""
"{F6886554-216B-44FB-8546-D5961E590D21}"=""
"{0DFBF832-E48A-476B-B111-38C650E38679}"=""
"{68AFE06C-FC44-4639-89BC-47793C19B5E3}"=""
"{446FB857-ED81-4A91-B7FC-AF368F4B0906}"=""
"{1A37B117-02FA-48FC-9C34-1232BA2DB127}"=""
"{0F7C2EDE-5A36-4A72-8889-5B744C47F6CE}"=""
"{96B71226-7A18-4F80-98E4-F75CA4C69C22}"=""
"{22BBC261-1334-4507-968B-E6C09C66126B}"=""
"{6161B72C-A590-4A2F-9C0E-DFE452A2878F}"=""
"{57088967-1F81-41BA-AE6F-FE28555FED89}"=""
"{F2715D07-E899-4004-B46F-9809F0139EFB}"=""
"{87424462-D0E8-4548-8F91-8F871BA9C64C}"=""
"{9F53678D-769E-4439-BD7C-4D9B65422312}"=""
"{A174D759-7461-4C89-A5BA-2F1A3AB1F27F}"=""
"{7F1C8AD4-B22A-4B2A-9655-71994666791F}"=""
"{E7240C1E-2206-42CD-89AD-C37AC9EB7C45}"=""
"{4F117FF2-1153-4866-884C-F9D0974F1DF6}"=""
"{D83B9AB8-7DC3-4320-8C54-5E63EF697D83}"=""
"{EF8FBD73-26E1-428A-AA3C-0A18FE7548FF}"=""
"{10CC93FE-8737-4E9E-AFE1-73D5F332C139}"=""
"{F75D226A-A92D-49A7-808B-D62BD3554A9C}"=""
"{25EC46C8-9D9D-408E-AC49-EB913C1B6132}"=""
"{17ADA38D-3B7D-4D7B-86B6-F7BE3AF36057}"=""
"{50B73408-EEF7-4197-A9EF-B2F95F250012}"=""
"{C0E51580-4D2C-4F33-9D9A-BF0F971521FD}"=""
"{E3A8933B-EBE2-4C5D-854D-4ED6902EDAD5}"=""
"{8D1823BC-0450-4E5E-B993-EF409969F65F}"=""
"{86336263-6B9F-4A55-918F-61D7634152B3}"=""
"{7594F0AA-AF76-4450-97E7-1CC0FE3168BA}"=""
"{AAFD373C-B431-4151-B320-25085107EBA3}"=""
"{FD5E5109-481C-40CB-8A6C-A3C4709FB6CE}"=""
"{C91345E1-928E-41E6-A6CE-81955538044F}"=""
"{8F8C43F7-424C-4B88-BC73-A7E0AC401DF7}"=""
"{032DC8A5-A978-40BD-B79A-81BCEA6EA8CB}"=""
"{338BB748-28B3-4BFC-9511-5A1724CF2CF3}"=""
"{3D583E67-AACB-4552-9D37-9074E6DBF611}"=""
"{F4AD3C34-4FD3-4BE2-8386-C347C103A344}"=""
"{6E6B44DA-53E9-4919-997B-16107FE27E60}"=""
"{04A0E34F-1480-43FC-8535-EC118C641E4B}"=""
"{4554D60F-92FC-4480-BB1F-4D113389206D}"=""
"{462747C2-95D5-4EF8-9801-19E529B0D11C}"=""
"{27379A8B-509C-46A2-AA1C-91CCD173735B}"=""
"{5FF4FB2B-4621-4235-8138-0B1F47F84B3F}"=""
"{706C40A7-C6F7-42DB-ABF5-145F7DC853B0}"=""
"{C3D898FD-7563-4F02-BEEC-EE06B0E10996}"=""
"{53D65205-6480-4F9B-8F2F-59FAE066C06F}"=""
"{DCCE078D-39E8-4038-89C5-67854D0A9FDA}"=""
"{0084C84D-A958-4AB9-973B-F138F95780CB}"=""
"{A0C75022-A49D-4F3B-9625-8DF2CA534009}"=""
"{98A79178-31E8-4E95-A0FF-E05EF6714759}"=""
"{2909617C-AD24-4F14-A790-ABD4D83FB3CD}"=""
"{824A1DB1-762A-4DEA-A41A-D1965DA80D46}"=""
"{65FCD403-AC6C-47E9-B70A-AB6473448912}"=""
"{8ECD8F1A-A309-4BED-BEA2-207E53C635B7}"=""
"{ACA032C1-7218-4E28-8211-07E7FA4779FD}"=""
"{027ADD9A-0917-48C3-8476-0359E3F917F4}"=""
"{E4F2F9FD-7B34-46DC-A7DB-86B8F92296D4}"=""
"{16DA7334-6A16-4826-84F9-BE2CD3550678}"=""
"{6B82D0D9-3910-48A3-91ED-2589FC744E16}"=""
"{1A1B8C8E-9C7A-45EB-AB74-0D8E93DCE803}"=""
"{DFF1C1CC-0ED9-4295-83A6-FF1D449ACD78}"=""
"{F4583580-640F-4F97-918E-00800EDD34DB}"=""
"{9F031BB7-9139-4416-9B7D-04550A5D2583}"=""
"{ED3700A3-F329-485E-8066-765ACA3A3300}"=""
"{22FB230A-9547-4332-B126-AEE3E93C736D}"=""
"{03CD9B2C-7C6F-48BE-9FDA-D456B9921843}"=""
"{4D7A4F3D-160F-4C59-ADE5-9C0896B376C9}"=""
"{63E6925F-B7E1-4D54-9BD9-746F0936194F}"=""
"{96728D59-F0AC-476B-98C9-8C45350EED18}"=""
"{FB5211DD-4C06-46EE-8AFC-C187DD096FC9}"=""
"{31960BC3-72D4-4D8C-82D1-4701735AFE2F}"=""
"{AB538FF0-1138-4A49-937C-DD761B55D865}"=""
"{F87D5AB0-3DAE-4DD3-BA51-D3C77402E44F}"=""
"{E267A961-E01B-446D-9735-C8C6C74B8912}"=""
"{70EFEE8A-5D9C-4D4B-B231-D159D96A704A}"=""
"{1FDDD888-0625-44A5-8996-F5BB4FD0556D}"=""
"{3FF1EF42-5816-45AA-8207-E0B3D3389CF1}"=""
"{DD1D8EB3-5BE8-4C65-8543-43A52B21B11B}"=""
"{7EC9AD4A-3FBD-4F5A-950C-D6BED9A16165}"=""
"{BC82340E-474D-4975-A2C1-30F0EE4EEF23}"=""
"{61DD8FFA-2CAB-4657-8714-628C8D2F995A}"=""
"{7DAC6522-D195-4AC3-9314-1E34940EE813}"=""
"{5758F8F6-355B-4093-9ED8-502F7F3A34BD}"=""
"{50FB9B93-6B88-43EA-95A2-2D39F5FAFAC4}"=""
"{1D764A27-DA69-459A-B76D-FD4EAA2C853D}"=""
"{0E538B4F-A54B-438C-8FA3-B1467D4819D7}"=""
"{FF7056F2-88B3-4286-8A1B-4D25A1CD8DE0}"=""
"{1ABDEEAE-A8D7-42CE-B733-1FE8BFC8EFB0}"=""
"{2443332D-421E-492A-BD4E-73BDB94D31A4}"=""
"{2851C7A7-2C2D-4E85-B998-4FB1894B3B59}"=""
"{47126244-C94D-46AB-9762-BD930DC5C9C1}"=""
"{7943CB0A-CB46-446D-A5F5-FC272E5F8A91}"=""
"{738517B1-59CA-4AD5-8AEF-A7710531953D}"=""
"{5089669E-971B-493C-A6C6-0260F6D7E961}"=""
"{36F29C2D-2F04-41C2-B354-D7137EA72232}"=""
"{BB51F5CA-24E1-4BC2-8FD5-3A65335E6B47}"=""
"{F69BAB10-7FBA-4659-AD7B-A603BF3304E1}"=""
"{04CF0950-6247-424A-AC52-8274E221697A}"=""
"{407537E4-A655-42DB-A647-10224F30A749}"=""
"{9CE24450-8639-4E79-A1E8-42F51A09CED9}"=""
"{4FE8E48F-3E83-410D-A02E-D153D6FE0F12}"=""
"{FBFB2F18-4CAC-4A0E-AEEE-193016425EDA}"=""
"{B567F68D-8159-462F-896E-7DA5BEC6EC44}"=""
"{20A47A72-654E-4627-9A50-0485C8A82B9E}"=""
"{24F0C355-85AB-4F08-A94D-293A0BA727F6}"=""
"{A02FADD6-56EF-407A-B664-E734B668D49D}"=""
"{A5E26BAD-628A-4E66-8F6D-29008FB55A26}"=""
"{623C98CB-E367-4765-AD19-C7372AFF8980}"=""
"{3125C089-0E07-407C-B93E-448FFE083B77}"=""
"{03BE7C58-CEBE-41D3-AF35-1CD978021655}"=""
"{41D448B5-FD9F-40B8-8082-113CBCD45244}"=""
"{89FBEB5B-54B1-4D22-8EB7-0E564AE6D0FB}"=""
"{C9D5220E-0FE3-48B2-A6E6-3996FC87F839}"=""
"{00D6F648-4680-4597-A13D-7CDE732C31EF}"=""
"{98D0196A-6BFC-4A03-BACE-BA57A3A5F837}"=""
"{8E23811F-8FF2-4D0B-B078-76BFC9B058D5}"=""
"{777068D9-FFE1-4636-A4A8-DB15999F4A33}"=""
"{D424C99D-22E5-441C-A478-40A4DC442E2B}"=""
"{22D3DEA9-A75E-473A-B78E-63AD6F7FA486}"=""
"{E83DEDCB-9869-4B56-833A-A430D223972F}"=""
"{B26E1772-7DE8-42FC-9DE4-709A60345FAB}"=""
"{ACDDE2D4-3C48-48AC-AB78-03D7019D764E}"=""
"{C4566268-739C-455C-A8BE-5B17726391EA}"=""
"{DD20E368-833A-433B-AB7F-B8534B8ADF7B}"=""
"{52228B2A-F5EA-4ECE-BAE3-26E4683E637D}"=""
"{F5F6BAA6-70C4-4463-A7FD-C3B78EE83C6C}"=""
"{927E0A85-39F1-43A9-94A4-D66A5D9AA361}"=""
"{6BA25BFB-4814-4114-B534-7E66038E7DF7}"=""
"{E8BBA320-A6B1-427D-A919-70F7FAE3F5D4}"=""
"{97406B33-93BD-42C7-877A-CB468FD4A0E9}"=""
"{FD487CAA-A34A-4BB8-BCF6-91EC60EBCD06}"=""
"{75B054DA-1769-4FBC-A8DE-6C9C6E7B1EB3}"=""
"{5DCEE847-F3A6-42BB-8B12-13995A5CD1DD}"=""
"{57C8456D-4FA8-4300-8C17-B5409A94784D}"=""
"{727EABA8-3700-48C9-8F2E-9D4C48E6A53B}"=""
"{5D481E1D-1BF3-4C1B-8D22-7E14B60BC0DA}"=""
"{E2A55625-BB3C-4B49-9AD7-EE969C680364}"=""
"{01B9CF12-EE74-42DC-B85B-2F5CAD7ACA36}"=""
"{2B893A6A-CEED-406E-8578-AD496AF225E1}"=""
"{98F20425-12E6-479A-85A3-903317A3F559}"=""
"{79A6D78C-DBD0-4F29-B3C8-1048A073C63F}"=""
"{F0976C21-DFFB-4D6C-8C39-E531618D70BE}"=""
"{34CB15A0-36C0-42EA-AE07-126F2F2FCE3E}"=""
"{F69A6BBC-68E0-4174-AEB6-627369832805}"=""
"{B22ABE2D-8AB0-49B9-92C5-C61E290403D0}"=""
"{3AD4A4AD-DA75-4692-8AA2-6237C5F61E30}"=""
"{34A4CB6B-E292-454A-AD7A-9211C5004604}"=""
"{ABF497E0-F63C-4850-8A15-A8A5BDB3D711}"=""
"{31EBD216-AC1E-4869-BD82-A84B28B12844}"=""
"{A964A3D5-E05B-42D3-82E0-88B1E282C034}"=""
"{7CBACCF4-3575-465D-BBFE-EFAAC3C40C50}"=""
"{4D061277-22E7-4FE8-B224-993232054FAC}"=""
"{BD31675E-C649-48F7-B81E-CF559B0697C2}"=""
"{1D00479C-C932-4397-9C2A-D2A6D3B89D38}"=""
"{A0D50B93-8FA5-45A9-BAB4-BFEDAB2AE1B6}"=""
"{0C79A501-CE77-47B1-A159-3E3BD17D3093}"=""
"{6E810945-8733-42C2-A1E6-B77B6DB8079F}"=""
"{BB15AC24-4862-467B-9FFC-DE59CA732E54}"=""
"{52A0C88F-1714-40C7-9493-E145C58D615F}"=""
"{351229FC-B901-4F10-A622-09A95B42FCBE}"=""
"{5BB4133B-776F-4A24-A153-33FCA420C61D}"=""
"{71A3111F-A019-4771-AAD3-9A77D44DC7A6}"=""
"{EEED211C-CBAE-4E62-8851-284EE82B9223}"=""
"{C27E2D52-6B1B-4123-8568-1F238D889FEE}"=""
"{E7B0E822-E4E7-4118-A134-3835B8EF6430}"=""
"{660F0F8F-0F6D-4AB8-8571-E9E1B94E974D}"=""
"{CF143568-3631-4BB2-876D-FCD72E7C8483}"=""
"{94EC674F-A395-489A-B71C-D58F20202B63}"=""
"{35B7A828-8C58-4C93-A60B-168C9A6EEE41}"=""
"{F0BF3E25-CD26-43B1-A370-9D3E48763C49}"=""
"{6AC86175-06C0-4A98-AC4F-122C4194C11C}"=""
"{0945A79B-CA25-4AB1-8739-77DFB9BC6377}"=""
"{316AA37C-9EF8-4BDF-95CA-091F767515BA}"=""
"{792D85F4-6BAB-4D8C-9CCD-15EB40E64163}"=""
"{080EC30D-F39C-4B53-9DE3-974DFABF4EC1}"=""
"{492D3EE2-1144-41BE-B1D8-8120C37A1B0D}"=""
"{B4EBBBF5-4B56-43CA-8160-AB81CB78DEB3}"=""
"{9C1B840A-188C-4A11-AD7F-8C3764174F0D}"=""
"{88FDAE1C-454D-46B6-BF17-0C28BEF6CF86}"=""
"{4BD50691-7EB8-46AF-808E-4E8AB8D49A76}"=""
"{6A923022-64CE-4A55-ADCB-6A3328BD4FE1}"=""
"{354DCAED-6894-4D02-81B6-34DEAC203101}"=""
"{645B517F-E7BF-4E3E-A875-4A0E6954902B}"=""
"{280714C4-FB64-4D9A-96FC-EEFE0763164A}"=""
"{8697BC95-743F-478F-AEA1-1C1078CD296A}"=""
"{433B20F7-7686-4521-8BEF-130A8675890E}"=""
"{B99CA74C-F247-446A-8A87-38F5D5AE6A7C}"=""
"{CEA10BE8-EC0F-488B-BB35-4B6B84DE850F}"=""
"{4C08DC4E-7FDA-4E67-9938-71A60CB95219}"=""
"{9002E0AA-6E0C-4602-A1B1-FEE181C30DEE}"=""
"{D4265B56-0679-4DD7-91A0-7EBD0DAAD7A9}"=""
"{5F6F1647-0D83-4164-BFF4-074B920A13BB}"=""
"{4CEEC3F4-E7A1-4E89-A0AF-FD93A2009FFD}"=""
"{35387A81-87AC-4600-A2F3-BE3FA2D7CE1D}"=""
"{B7AF9B57-8ABD-43B1-9714-3000951AAFBF}"=""
"{6E399245-E3DB-4259-B3B6-A03112DCE6CD}"=""
"{B63306E1-3CD3-4124-BE69-29110A42C21B}"=""
"{6E94D1F9-DABC-447F-AE8E-7605C48CB171}"=""
"{FEBFCDE9-58D9-41F0-9B5D-780C2216610E}"=""
"{0205B500-079B-4D01-9973-5223CCF02C82}"=""
"{8BB1736A-DCBC-4E6D-BAE8-892D46B7796F}"=""
"{EEE1785A-7243-4320-B278-AB4794DB3AE0}"=""
"{1137DDC7-12D3-4ADE-BAA4-0DD01B3B27FD}"=""
"{E4325B28-765E-44AE-9297-65EC47814375}"=""
"{868B142B-60D1-4486-A983-9F3703025B8D}"=""
"{0E56D477-3603-45DE-8183-901D590AA032}"=""
"{8BBDFD83-4096-481B-B696-65515FEEE27D}"=""
"{E4A5EAA3-C526-41BB-967E-A9D0B8D89B9F}"=""
"{C36CC650-1DE4-4861-9A36-1A770A89ACA0}"=""
"{4FEE2D40-2421-47BC-B79E-B2C436F82952}"=""
"{5B6ED0A4-157E-46E4-8379-444AD74BEE7C}"=""
"{E6590990-BFAE-4476-87BA-062683605190}"=""
"{D1F81D9C-D176-4352-95F4-DFC555634622}"=""
"{35336F3B-B641-415B-86AB-C5218A6FC786}"=""
"{F49FF0D8-F29C-46BA-B397-551BA11770B6}"=""
"{420723B8-4197-4917-B341-5ACD6CCF9DEA}"=""
"{1AF525BA-7350-477D-ADC5-653E6832DF21}"=""
"{F466E151-F9E9-4F29-B86F-C2DDA98326F6}"=""
"{93C9F243-8610-435F-8351-1200C8A5EBB0}"=""
"{385E19E9-F9A6-4574-B02E-D0829669881B}"=""
"{F89F4FE3-8442-403F-BD29-3CEC0FE112D1}"=""
"{5DFC6725-59BE-46D7-8E95-173DCC9A3936}"=""
"{24B49FC7-C550-482E-9500-B1A16046FE65}"=""
"{E954C7D7-496D-4479-9750-CE10C6DB9182}"=""
"{F80AA24D-FE9E-488E-884C-2E682C38BD92}"=""
"{CBE8BB87-C853-4E3B-B0C0-CE885D52D616}"=""
"{ACB2257C-C89D-49B9-8604-6A3E9AB4A8AE}"=""
"{A99E07AE-B3C1-440E-8690-C16468F0AEF7}"=""
"{67A94489-FCE7-4032-8935-01B54BB67B74}"=""
"{075E3873-9E9C-48E2-8A57-A1838DF59081}"=""
"{5F971D88-5266-497B-9F94-7D88DED7D278}"=""
"{1DF47B00-7146-4ECA-821A-C2B02699B6CC}"=""
"{E30C2FBA-A91C-464D-B221-643256FC40FA}"=""
"{5ED6B829-85C5-49CE-9A38-5EF6910818E3}"=""
"{2D99BC3D-E449-4D1B-854A-E121F71CE44B}"=""
"{FDF5981F-BA35-4343-8C05-D241DB481D85}"=""
"{E3EC4C59-C3D1-4265-AE10-25A96A3A2479}"=""
"{B5EC43D5-A635-4A72-91F2-27F5A54D0AF5}"=""
"{7B3F3951-5CE1-4F45-B3BD-B9A381624CC7}"=""
"{F9819C73-97ED-4D00-8100-2CAC2278477A}"=""
"{5FD6CA5A-731B-40EF-9C44-937234E0BB8A}"=""
"{F3EB3A5A-C0C3-45EF-BD9F-A24EA0D7B895}"=""
"{CF683867-B908-4B7C-BA88-200FE97281C2}"=""
"{F3D27FE1-F956-48DB-8093-8AF3CDE85338}"=""
"{453488CD-C469-4D26-AD2B-1C13CE6404F6}"=""
"{A7A0E175-620E-4D19-9412-38B2473B9540}"=""
"{D9F2BC0F-27F3-4C72-ADE7-436748866E7D}"=""
"{180196C0-DFF6-4873-82AE-FDA43215AFCA}"=""
"{795E6EF2-D5D6-4DFA-9DB2-EAE27D2AD683}"=""
"{37C8A364-8466-4A89-93C8-B76120B6CE86}"=""
"{BA4EEBAB-4248-43B6-8CA2-FA7633069F38}"=""
"{47D0C3F6-12E6-4CBD-BFAA-33F0A9A90B73}"=""
"{D98763F8-B58A-4E8D-9203-B881DB4B3C1A}"=""
"{D943BA22-D654-456E-93C5-E9F76B9180DE}"=""
"{FAB5F003-DA58-4827-A88B-3C998CF41716}"=""
"{36E20AE4-7268-4850-8AB3-5C6E27785DCC}"=""
"{3B135FCC-5584-4859-A8D0-254DA823E8BF}"=""
"{0D82AB01-8131-4E3F-A6CF-AA72845A5A09}"=""
"{DD40535B-C1E2-403B-A58B-1C92CAE8EFEB}"=""
"{1C5F4B5D-2973-457E-8F08-2F4AA1DE2663}"=""
"{FE46DBB7-04D2-474B-A76E-4DDF87710092}"=""
"{07EF4159-1CA3-45DB-8512-0588C544AE09}"=""
"{D9F6899A-DEBC-4AD6-8594-D9C8D2EF7944}"=""
"{29F3039D-14C0-4B84-AE8C-F987CF999F26}"=""
"{BEA04758-7C33-42F3-81C4-82B3A0439CB7}"=""
"{5B39DF7E-D61B-412E-ADB4-C33544F20FDA}"=""
"{1F242AEF-3D36-485C-BC32-100ABA345382}"=""
"{607D3290-2F6E-4411-B713-ED4B5C17D8BA}"=""
"{F78B283A-7C7F-49BD-BD53-71012122448A}"=""
"{CAD4D662-1B4A-454F-A85C-C602CBEA8865}"=""
"{B447E0AA-693E-4DD5-A453-04FAF68935FD}"=""
"{1522DE4B-2AC2-451C-AF03-59B604E35A62}"=""
"{334478DB-0CB1-45A4-A9BC-85D7F2E732F4}"=""
"{08477ADC-BBE3-4A6D-B662-31B6870FE702}"=""
"{E019A01A-F519-49E0-9FD2-CAE6E6F46643}"=""
"{B782D395-B646-4DA7-88B3-C41072FBB90F}"=""
"{CA8A101E-38B6-4271-98AB-1234CED15B37}"=""
"{4883B3BC-4EC3-4675-9FCF-2A6D5BDE9FD4}"=""
"{F49B5995-247B-4B8C-8C26-0FBDE8BC833A}"=""
"{8A8B3C60-5061-4EC5-9D75-BCA88EDCE917}"=""
"{AD84C34A-9709-43BD-824F-C4E18052892D}"=""
"{A98D95CE-1C92-4CE7-B644-32A4966C04DE}"=""
"{22898558-96D6-4001-B5F2-5BC596B9D79B}"=""
"{B044C2B5-FDFE-4E06-AA2B-ECC522BA42F9}"=""
"{D297E564-B11C-492F-8E69-10CBBA820BE5}"=""
"{D268F8DD-7BD7-4D4E-8D07-0073738FAFA4}"=""
"{2A3C79E4-1097-41E3-87A9-0919C9D37B33}"=""
"{FCD90BAD-DE08-41EB-BDA9-6F058DD3278E}"=""
"{E1C43DFA-E925-44BB-B520-CC3BD3C9BC14}"=""
"{D56F1E7A-C07B-4CBE-86EA-25E83B2851C9}"=""
"{8D34956C-576E-4D49-A25B-24F63C454B52}"=""
"{93280687-3494-4DB9-8AB9-FEB8B512C69A}"=""
"{49FDD93F-FC15-440F-B24D-26D4B5F65D92}"=""
"{978FE6DE-76CB-4812-B58B-EFF577C64308}"=""
"{677271C5-3C07-4C98-8375-9397B2A4F742}"=""
"{7231E20E-A1E5-4CA4-8193-3C4A37284D2C}"=""
"{38885450-A0A2-43D5-ADB3-15DF16412511}"=""
"{B3D6E311-B308-4AD3-BCF7-13B9C85D012F}"=""
"{D2B66B63-351B-4293-AB45-3BAE6DC600FA}"=""
"{90491DBD-1ADE-40E8-A060-8CB7CF0E3387}"=""
"{597537EF-B593-4E5D-B09F-C6AFF72C6C96}"=""
"{98A473D6-F553-4CC8-AC12-8C4AFE381983}"=""
"{31101A99-33A6-4C35-9718-088F91927BEB}"=""
"{F30F7CFB-9BB8-4454-9811-91DEC7719225}"=""
"{ACD83587-3F56-4640-BF10-EEA330B540F1}"=""
"{D27D8744-F3D8-4EFE-BCF2-42DE0EA30BD1}"=""
"{3379285D-735F-410E-99C4-918B9C074D5C}"=""
"{D133426E-CB4B-4A52-B9A0-5E5F59F58E25}"=""
"{307A63D3-6069-40C3-B36C-4D6F10E1224A}"=""
"{A54128A3-4E7E-4FAF-BCBD-A495A987FDB0}"=""
"{3BCCFB94-D2DD-41CF-B2EF-C651FF6A47F6}"=""
"{266AF600-FEAE-4D6C-B0AB-1D73E20739B1}"=""
"{BDD7094C-2A43-4292-A071-B4A40D6FB0AA}"=""
"{438C5C1C-42C1-4CC4-94F0-2CCA4816E39D}"=""
"{9DDB3093-2BEA-4422-A4DC-91C83ECD00C8}"=""
"{7369F720-383C-4E7F-B027-400D3788A0F1}"=""
"{07327B95-1A18-422F-AB0C-FFBF16960EAF}"=""
"{EFE5E73F-9F9A-4745-A334-E7DDA31A8B84}"=""
"{CDBBE6BE-59D8-4174-BE34-D3E36AC08CC1}"=""
"{8FB707FB-A90A-405C-84C0-D72C61201F7C}"=""
"{6BDB07F6-D673-45D8-988D-A8A15E5A1AA0}"=""
"{31C5076D-1807-4FE6-BCF0-740CE7A6B1B7}"=""
"{DFEFC90B-F5A7-488E-916F-E31AD2B89E5F}"=""
"{73287F57-7031-4239-A4AC-5709EEDD78D9}"=""
"{F1295274-54FA-4527-B05C-FCFC15E8CE5C}"=""
"{88F04F4B-14B9-481D-9E3C-ACA10D2559E4}"=""
"{720F989F-A437-4CC2-889B-F99E02EBB6CF}"=""
"{F624D5B0-80C0-4D6E-9300-90BC17B49011}"=""
"{C1A53D7B-6FD4-4690-AD92-87A746075160}"=""
"{7AAD9A1A-9A49-4397-A52D-1F95255B1F3F}"=""
"{AE75FE10-1098-45EF-B167-BE09AF33E1A8}"=""
"{6EB229BC-AE77-4470-9152-F5CCAF48EB21}"=""
"{8DE471E9-870E-4F51-9A4D-137BF98382FC}"=""
"{9A46A319-AE68-44CB-B5E4-7A0BC6097D7C}"=""
"{E779DABD-B519-40E4-8B95-7FE424E0B9AA}"=""
"{399B10BD-DDDA-4EF5-B592-871EB52E92DA}"=""
"{62F1D1CB-AB0E-4060-BD80-EC7B9DBAF9DE}"=""
"{18CEFBB2-6B8C-4690-B543-D5AF7D3CF7AD}"=""
"{5D11D7E3-88AA-4281-8234-4E1C4387D1CE}"=""
"{D54C0EF2-D8B3-4853-93C4-A9D3114316CA}"=""
"{98BD5EB0-270C-4B9E-8BCE-EDE828BE8F2D}"=""
"{0CDC1FCA-A9D1-4E69-9BCE-BCE58CCC70CA}"=""
"{DFC455BB-DACC-47C2-8439-9437ACB33FC4}"=""
"{5FD00AF0-A6B0-429F-93C6-20270926DDFF}"=""
"{68248084-22F8-4057-8849-26B32B45FE42}"=""
"{49491C08-FDDF-4D43-85D9-9A68D4D29016}"=""
"{37CC43BF-3A9D-4CB1-BBC0-56474F0C3B37}"=""
"{2010AB70-3EB7-4E8D-B244-2F9AA599836A}"=""
"{BA24A487-ED59-482D-9C0C-12E219B60EFC}"=""
"{43F0D54E-B41D-4979-B953-E58714D41B1F}"=""
"{AB4053E5-7A54-4262-9C94-2E8086C77515}"=""
"{376E0B94-CC92-454B-BA71-7169859D910D}"=""
"{539A3B0E-5074-47E2-A232-FB121BDAC9B7}"=""
"{0C060A26-59C6-4718-892E-63B7BB5E5CC5}"=""
"{975E250B-9488-4902-AE75-ADCBD5AEBD2F}"=""
"{288A4632-2CAA-4ECB-8DC1-AC5713B058C3}"=""
"{4FEE4936-1A2F-450E-9065-C24E76901BE3}"=""
"{F15CFD56-B4F4-4F56-B36F-8BE00964C638}"=""
"{DF1297C5-03F3-48AC-AF0B-3FD538D030DA}"=""
"{26F02B72-088B-40CE-86A9-1969BD0C3AA1}"=""
"{5A5D1B9E-CFC3-4F84-A0B2-872F91018F20}"=""
"{30F0E0AF-0EC8-40AF-A2A3-1EC2A8194119}"=""
"{DF6076CF-EFA6-4C8A-A4CC-70B092FA5B35}"=""
"{F1B4968D-BB69-4B81-B20A-1CEC433092C6}"=""
"{8D11A484-0E34-403F-B889-74DC5ECBA61B}"=""
"{BC5108D1-8678-4A93-947E-793EED0DB5C0}"=""
"{9A9627D1-F545-4E6A-9911-10817489340D}"=""
"{F37F95F1-256F-4261-BB16-3C84C8CB3856}"=""
"{B61F8E29-906A-475B-A694-C40D812D2A56}"=""
"{50D94CEA-2680-4C78-A44E-A958625BE6A4}"=""
"{5096CEC3-A068-43B6-A57C-872EE2E52062}"=""
"{7667970E-852E-4E26-A8A8-A952D8D98052}"=""
"{E3CA55E3-C96C-4C57-8FF1-8473240BBE88}"=""
"{3864AAAE-1C5A-4EDE-AAC0-9CAFC53DE263}"=""
"{E3DB6DA1-C97D-4FA7-92E6-787ABACB4F46}"=""
"{F506CCCA-3E2F-4F51-B6A2-6EF6687C4381}"=""
"{B705892A-42BF-4A00-AA9A-152DAFDFE27F}"=""
"{6C69CE0A-13AE-45B6-A414-67F399F89722}"=""
"{80312C7B-022D-4C98-B971-C3B45707478B}"=""
"{261B8B9C-D593-4CDF-8D54-F22E1A9B9D88}"=""
"{E2846E16-ADCA-4F29-A57E-311319D2827C}"=""
"{710ED62D-1554-4B4E-8D76-4FF5A545CD41}"=""
"{BD86DF2D-199E-4F99-83D1-91198D4F3751}"=""
"{7E79C058-7001-42E9-9811-57F1F8C71C77}"=""
"{21FA7EEF-2170-43EC-8719-21EDB9C9172F}"=""
"{AD5E270E-86E9-4174-A8E9-C330388CBEC5}"=""
"{B8B17380-5E5F-4987-8C1C-17B42054719D}"=""
"{A7DBFA66-AE9B-46BC-8B2D-CCC1EB1BF9E0}"=""
"{FDB29F26-917D-4B50-9B64-E3499BBBEE0D}"=""
"{0F554A89-E2D8-4981-A3BC-CB4ADF98D46A}"=""
"{BF4F9C26-9EF5-4A13-821E-B2A8D8D1B8DA}"=""
"{77B1D6ED-2933-4942-A359-77389BB460BC}"=""
"{F262BFFB-3B3B-4E5A-9C5A-B3E2A1A02CF6}"=""
"{9254201D-20C6-4FA5-BE62-ECF3EC02520B}"=""
"{439B6D42-3C64-4DE0-92FC-2F1E508B1008}"=""
"{39522423-D9C2-4DB5-B46E-E2CF989A0317}"=""
"{B340FB51-98EC-4DF4-AE05-11033D543AAD}"=""
"{493868E7-5B73-4D3D-9169-B72CB6C6F2B5}"=""
"{1F4FBE25-CAFD-4C4D-B180-EC7AE53F670E}"=""
"{04A6766D-795F-40D9-9DF9-F35455CB41C5}"=""
"{8147E73A-C209-4253-95B1-651AF0FFF7BB}"=""
"{54B38A61-D8B2-46B1-8E74-A7CE4D3E1E98}"=""
"{9FBB92CB-AE97-4FAA-9A50-409AA5791D16}"=""
"{8B5AE7D3-0407-43BF-B7E1-66FFF3AB5603}"=""
"{8EFE7512-A6AE-4524-B04A-DB4F5D386FAD}"=""
"{33B65423-9FC9-491B-B80A-377601486B02}"=""
"{3FD53BE5-68F8-43D6-AED0-C7B6692BDB42}"=""
"{08C3B493-65B7-4751-A226-D543B2032309}"=""
"{F85462F6-A1B2-4478-B12D-8286FB09DD73}"=""
"{102B66BD-4E9B-42F4-BB62-77E3F7099696}"=""
"{DE616627-7576-4B92-9144-02C3EC8060EA}"=""
"{162EDC24-A200-40F7-B389-DF4659E88EA4}"=""
"{F47A93C9-F5A4-4DC7-9853-E91EDF9EB14C}"=""
"{581F2CD2-B864-4D82-8F1C-FD972EC0A8B9}"=""
"{B5FFE7E8-0274-4062-BB37-F2FF39CB08BA}"=""
"{3AEBF430-FA17-4365-9887-BD7C1C594E13}"=""
"{F5AAC3A1-30CC-4723-9459-518091F01077}"=""
"{553C7CC1-1A50-4469-AB06-43E48CC58BE7}"=""
"{072CAEDF-E580-477E-BB09-DF33287D2854}"=""
"{FD62BDA2-E177-4AD3-BAE2-CCABB50E315A}"=""
"{95FD6366-B21F-4B11-A504-73A27D0A1A86}"=""
"{264DD072-7D05-4697-BA82-C7485C41B6A7}"=""
"{260E48B0-CDDD-417C-BF1A-8BF3E6F57D35}"=""
"{AA1880CE-7DAE-4037-9FCB-1BC1A7D608E2}"=""

[Burningtreefarm]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_257_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_257_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_257.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_257.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_257.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_257.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Common Client\ccIPC\Channels]
@Denied: (C D) (Everyone)
"g_coUserCommandChannel"="{D4CA002C-F519-4E93-9E04-74EABECDDF12}"
"ccSvcHst_UserSession_2764"="{EA7E2BFF-646E-4E3B-8B3C-95CC4A11ADF7}"
"ccSvcHst_UserSession_2020"="{9A447167-C822-43B5-B81E-E8D83C9DED22}"
"ccSvcHst_UserSession_2184"="{4391DF5C-758F-4D86-9987-C91E306D9451}"
"ccSvcHst_UserSession_1720"="{62354FC2-C959-4A51-8593-34D57A0AB23B}"
"ccSvcHst_UserSession_2576"="{4561BEEA-24B8-449D-B584-12F262D6095F}"
"ccSvcHst_UserSession_2680"="{83F674D7-4763-476A-BDBB-2C134E37E6AB}"
"ccSvcHst_UserSession_2604"="{79D36D54-02A3-48D5-B174-C6ED5BDBCD09}"
"ccSvcHst_UserSession_2836"="{42A7F4AD-75ED-4C1F-993A-CCB822333133}"
"ccSvcHst_UserSession_2856"="{70BE9612-DED9-4903-8306-F46DED4D1D13}"
"ccSvcHst_UserSession_2740"="{95CBD86D-779E-4670-B736-D560A55528AA}"
"ccSvcHst_UserSession_2620"="{B153B158-7DCC-4E8B-A828-30B4B148A77E}"
"ccSvcHst_UserSession_2416"="{730E92CF-1092-4A0E-8238-556D83F82119}"
"ccSvcHst_UserSession_2420"="{0B3056A9-BA93-4A89-A532-E6CF68890FF4}"
"ccSvcHst_UserSession_1568"="{735F2BCC-52C6-4C08-8B2C-E48269AA7496}"
"ccSvcHst_UserSession_2412"="{52ED0E7E-2695-401E-9372-F7221EEDC3C9}"
"ccSvcHst_UserSession_2596"="{C7ECB00A-543E-4E16-BF37-E374A3DB2E0F}"
"ccSvcHst_UserSession_2660"="{EE7CBE80-38E5-4FB3-B8C2-AF3275505F9C}"
"ccSvcHst_UserSession_2912"="{E13832B0-BC7C-4E53-A566-8959CB436D79}"
"ccSvcHst_UserSession_2592"="{4F8EE4EC-9888-48BC-8E0C-AF02E96D198E}"
"ccSvcHst_UserSession_2780"="{A4D25E9F-D3A4-43DE-8928-8AA48168B212}"
"ccSvcHst_UserSession_2720"="{FB18DE81-94AD-43FA-8148-DBF8841C4362}"
"ccSvcHst_UserSession_2392"="{A54801C9-67D8-4720-B709-5B3FC443C3C3}"
"ccSvcHst_UserSession_2868"="{D904B88B-6948-41BD-B3E8-B2EB4CF4231E}"
"ccSvcHst_UserSession_2716"="{A9BF9B69-C803-4620-96FF-608E8FBD9975}"
"ccSvcHst_UserSession_2788"="{A8C73872-41BE-42D8-8CBF-608901EBBE34}"
"ccSvcHst_UserSession_2744"="{01BADED4-F154-4D44-B0D7-395AB93C5DC5}"
"ccSvcHst_UserSession_2748"="{E608BD4D-C37E-4581-A242-4504A531E363}"
"ccSvcHst_UserSession_2556"="{BD411888-B440-4445-8294-AD7886C445AF}"
"ccSvcHst_UserSession_2372"="{30AA8704-D101-4A75-A108-D9ACFEAD4DF4}"
"ccSvcHst_UserSession_2564"="{5D2D87E3-C543-4612-B27E-E7D411401648}"
"ccSvcHst_UserSession_2896"="{194BAF3C-EF43-4190-BEEF-BABED45F3B11}"
"ccSvcHst_UserSession_2608"="{0037E1F6-8360-417F-9118-594096EA8B34}"
"ccSvcHst_UserSession_2656"="{67A89DD4-D0BF-420A-BCCC-4A09A3F1CA8A}"
"ccSvcHst_UserSession_2532"="{5870DF52-EF54-42BD-94B3-463BD7F88CAD}"
"ccSvcHst_UserSession_2848"="{DDBC8181-99AD-4F6E-9A70-C5FBB6A812A7}"
"ccSvcHst_UserSession_132"="{435188FF-7D4B-4987-8BA2-478DEDA0C783}"
"ccSvcHst_UserSession_2244"="{4AF409AD-1019-4DC4-996F-654F6D609117}"
"ccSvcHst_UserSession_2032"="{ECF66370-24F8-4D1C-A2E6-036429AC5394}"
"ccSvcHst_UserSession_3232"="{296D6E79-4C4D-4A07-A0AE-5F2B926CC0F4}"
"ccSvcHst_UserSession_1788"="{FAB010BE-D711-4D90-99D9-FF3D37C3F303}"
"ccSvcHst_UserSession_3092"="{4835E795-1325-4FC9-B766-1CF3B1EFBB21}"
"ccSvcHst_UserSession_2880"="{EE0A8780-EE1E-43D6-B48A-33BBDAFD39FC}"
"ccSvcHst_UserSession_2396"="{9F1A52CC-A074-416B-BCA6-A254E303EFEF}"
"ccSvcHst_UserSession_2964"="{ABE5AEB6-0A70-434D-A9BA-1004BA63CB5A}"
"ccSvcHst_UserSession_2980"="{1160EF19-49E7-40B5-B77D-AAB4622DB8E7}"
"ccSvcHst_UserSession_1948"="{295686DC-56C1-4DD7-9994-D59D4DE35FC6}"
"ccSvcHst_UserSession_2872"="{BBF56C2B-F30E-4FD2-8E8B-B0B7F88B7E15}"
"ccSvcHst_UserSession_2120"="{1F9F7826-7B60-4EBC-AE8F-AAF93846426A}"
"ccSvcHst_UserSession_1724"="{73ADE2CE-3E58-42FB-9916-840966E0C070}"
"ccSvcHst_UserSession_2504"="{3E689D83-96F5-4656-86CD-728911B4CE92}"
"ccSvcHst_UserSession_2732"="{D2563DAC-563A-4484-B1DE-9794BD014084}"
"ccSvcHst_UserSession_3028"="{0259914F-D996-4F8F-B160-331E7B1C57C3}"
"ccSvcHst_UserSession_2864"="{76B63363-2EC5-44D9-B219-E8858B0C0EE8}"
"ccSvcHst_UserSession_2804"="{638CAC26-EA31-4962-A760-F608F2EE9BFA}"
"ccSvcHst_UserSession_1452"="{C84A5CE0-8D55-453A-9AD4-60AA278C4DE1}"
"ccSvcHst_UserSession_2176"="{0CF9A185-D5A0-4571-B334-8F0067009879}"
"ccSvcHst_UserSession_2768"="{E4BF8F86-F86E-43BA-BCBC-F6E28B4A3AB1}"
"ccSvcHst_UserSession_2072"="{A8B9BCD6-FB02-4785-A773-5A72FFFF37AF}"
"ccSvcHst_UserSession_2844"="{B78E188F-B121-406E-90C7-0890932E3AAD}"
"ccSvcHst_UserSession_2448"="{8CA58ABD-EC59-430C-910C-DC706D89E23E}"
"ccSvcHst_UserSession_3252"="{6F11C730-8A9A-4C28-AC82-BA8E7A4067A4}"
"ccSvcHst_UserSession_2500"="{043658A8-9CAD-4B2D-BDFF-48F725A4A19C}"
"ccSvcHst_UserSession_2544"="{822B01AE-9046-48A7-9E62-91DB77054680}"
"ccSvcHst_UserSession_2772"="{F869C6DE-E382-4D7A-A484-BA1FCCE30A6F}"
"ccSvcHst_UserSession_2948"="{9DE2D630-0DCB-477A-AD98-9B869DFAE86C}"
"ccSvcHst_UserSession_380"="{029A6286-116D-45F4-BB0F-3240F22EA9AD}"
"ccSvcHst_UserSession_2144"="{1636EEE6-9FEF-432C-8D79-6747D0C50BB9}"
"ccSvcHst_UserSession_3244"="{F9D995EC-E247-461A-893E-5DCE6EA2FBBA}"
"ccSvcHst_UserSession_2724"="{E4A7E7E1-6CD4-45E5-B581-4D4DE447CBB3}"
"ccSvcHst_UserSession_3124"="{714BCFE7-A029-4926-B260-668FE74CB506}"
"ccSvcHst_UserSession_2352"="{610ED25C-31F7-4CD5-BB9D-50AAB96AE241}"
"ccSvcHst_UserSession_3680"="{FFF2B4F7-F3CD-4827-89DF-07EE94046EA3}"
"ccSvcHst_UserSession_2840"="{4ACB5421-86D9-4C29-BFC4-77C61FE265CE}"
"ccSvcHst_UserSession_2640"="{EE927D34-C1C5-4695-80DC-AA3117EB65B5}"
"ccSvcHst_UserSession_2224"="{02E06B4F-330F-4325-A260-09C1C11DCD83}"
"ccSvcHst_UserSession_2612"="{E13E5545-5D38-4A57-AC3D-FA84ACABBD46}"
"ccSvcHst_UserSession_2688"="{F04C826B-F55C-45AE-B31E-60AEB6003FE9}"
"ccSvcHst_UserSession_848"="{232948B2-BB78-4848-8328-A6EA1CCB4DB6}"
"ccSvcHst_UserSession_1676"="{B5AFE316-E8A3-48C8-B8FD-2A1B817E9D74}"
"ccSvcHst_UserSession_1548"="{23B56F52-97D4-415D-88C0-4D86235DDA58}"
"ccSvcHst_UserSession_3812"="{BEC50DA4-DDA4-4E04-9825-6E8D01077D4E}"
"ccSvcHst_UserSession_2968"="{A298946E-DE8F-4E52-88DB-D2837386F047}"
"ccSvcHst_UserSession_2428"="{C198C5A6-5370-4777-B585-E88E813C4DC0}"
"ccSvcHst_UserSession_3356"="{B5D3B862-FFA4-4615-B90F-C2EBC94A25C9}"
"ccSvcHst_UserSession_3044"="{F8A38127-CCC4-4F02-BC62-87029B084FF7}"
"ccSvcHst_UserSession_2348"="{86E51E4B-92D6-4FBC-8935-C63D303CB549}"
"ccSvcHst_UserSession_1016"="{980AB470-4972-4E85-84C3-497BA909A370}"
"ccSvcHst_UserSession_2728"="{7D4904F0-9D91-4AD6-B3CA-F173C1A0E249}"
"ccSvcHst_UserSession_2360"="{2FED339E-030F-4616-9802-AE58965E3A94}"
"ccSvcHst_UserSession_2936"="{B3D891BC-CCD1-4342-9730-A4EAE2C359F5}"
"ccSvcHst_UserSession_2616"="{178DF9A5-986A-411E-A758-097BF5F97673}"
"ccSvcHst_UserSession_2736"="{3527620E-B736-4DD5-973A-88C2772194D9}"
"ccSvcHst_UserSession_3420"="{E7791E0D-FFEC-4FE8-B63D-F14B6AB7FC00}"
"ccSvcHst_UserSession_2752"="{B9447026-AA3D-48F4-B2B0-BD137DD76995}"
"ccSvcHst_UserSession_2524"="{2F715E3C-9923-475E-8991-1D16316E2A40}"
"ccSvcHst_UserSession_3792"="{0318CB3A-EF93-4F48-8B44-83F2838BD5FA}"
"ccSvcHst_UserSession_3004"="{2AA3BDE6-4800-47AC-A8D9-D67F73E5DCEC}"
"ccSvcHst_UserSession_2312"="{79D3B488-FC33-4D6E-84A9-0564302F943B}"
"ccSvcHst_UserSession_3736"="{D544D1CE-541F-4713-8BB4-2966F3B72FF3}"
"ccSvcHst_UserSession_2552"="{231CC8FE-56E6-41CA-BE91-3574A76368A3}"
"ccSvcHst_UserSession_2084"="{3648E421-5A77-4561-A985-ED2DC6779D47}"
"ccSvcHst_UserSession_3444"="{CB7B6195-C2F5-44D8-8F71-B01B7A5EC5C1}"
"ccSvcHst_N360"="{77E8AD43-E58D-4155-B24E-E3AC30470E84}"
"DING_{4467AB8F-68C8-4ab5-9B48-B3E6EB65F6A1}"="{77E8AD43-E58D-4155-B24E-E3AC30470E84}"
"ccSettingsService"="{77E8AD43-E58D-4155-B24E-E3AC30470E84}"
"_HSPlayerCommand_"="{77E8AD43-E58D-4155-B24E-E3AC30470E84}"
"{C4A09495-F6BC-4166-B717-F3F3250462BB}"="{77E8AD43-E58D-4155-B24E-E3AC30470E84}"
"ccSvcHst_UserSession2_2124"="{2560A169-ABC3-43BF-BA87-686E743E81EE}"
"{B44E7D73-F081-414B-ADD2-CD66675A190D}1"="{2560A169-ABC3-43BF-BA87-686E743E81EE}"
.

[Burningtreefarm]

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Common Client\ccIPC\Endpoints]
@Denied: (C D) (Everyone)
"{223110BC-724E-45C6-8A91-852EE5A4EABD}"=""
"{5B60E98D-980B-440F-9F4A-0B807CD1B478}"=""
"{49D53D37-D2B0-452E-98E4-396AC5EC0341}"=""
"{198C5711-41DA-409C-9DFC-D15BD2AB0F16}"=""
"{74133467-A614-4CAA-ACF0-21234B49DC7E}"=""
"{7B6724A0-2F28-4BFC-A942-5B1DA1D5A5F1}"=""
"{397FED21-14D2-4D9C-83F0-CB5FFB98D19B}"=""
"{445F23EB-3F97-4370-B607-17A5ABE17B78}"=""
"{50BF0A70-E2B5-4FC6-8185-C553CE7A5D22}"=""
"{EC81F6A9-D807-44FA-B7C1-BE039E110D2D}"=""
"{517B7363-FFB7-425F-90C1-4C59D6941EC9}"=""
"{E00C40BE-F0A4-4CDA-876E-70BA981DBA21}"=""
"{D38272FE-0561-4305-8C26-FAB31E89BED1}"=""
"{D1584B39-6B0C-45FB-85DA-C88582976930}"=""
"{5ABC412A-8D7C-4A65-9113-A45914D4B20D}"=""
"{F99CF27B-EF4A-4E88-AA6B-24690F4E7894}"=""
"{0E442FF3-3804-40EF-B550-8C94F95430BB}"=""
"{10A96F84-07CC-4E4D-B86F-80EB45D864FA}"=""
"{73C78450-E585-4FF1-8190-8431DFA14FEF}"=""
"{643DF353-DFBF-4559-A5DC-DFF9BF3AD054}"=""
"{2B8EA79A-1B6D-407C-AD19-2BB7729F3922}"=""
"{5CB6614D-128B-4E1B-9D58-D4FC5230BBD8}"=""
"{3FA9710F-27D5-4C9D-8EA8-7A5E3B10C1BE}"=""
"{99EAD068-4CC7-48C0-9F5A-110E847B9015}"=""
"{34AED769-A3E0-4974-87DF-BE3991B8C3A3}"=""
"{7EA7D5B8-C322-4FFD-8C65-C40B8E65719D}"=""
"{384D683B-E6A2-4402-A0ED-E43ECF4B762C}"=""
"{AB345CA5-81E4-40FE-9922-F0C4BA72F7B3}"=""
"{282F8FDB-C231-4351-9EC8-2673A67E71CF}"=""
"{435A5566-C00C-4EC8-AE21-6F1FB3119D0C}"=""
"{E375EF23-7084-48FF-8E33-2CB43AF39658}"=""
"{855AFED5-39FD-40C2-9C70-9F1AB45D0878}"=""
"{FB33C249-492E-416A-8C43-FA44E477A54C}"=""
"{946C3F8A-D4BD-4112-850C-8849119152B8}"=""
"{89A77403-5EDD-44C4-9521-F1AAA7BC17A8}"=""
"{5AA5A8A4-E525-4439-9374-6453627CA8F8}"=""
"{9EEB6303-331A-4F3A-B71A-C22593836DAB}"=""
"{34B5B6A7-AC4D-4642-ABC3-86D99DCB5AA5}"=""
"{55A087D1-92EF-4502-8E71-191217792E98}"=""
"{34933476-8AD9-4CD5-9267-6AE7BD84D7C8}"=""
"{EE83911B-32F5-489A-92A1-6BD4DB1D01DA}"=""
"{0AED32B0-3C57-41DC-B4D2-CBA22C617E8B}"=""
"{FB762915-52E2-4ED7-8A47-BA2929C2CFEF}"=""
"{22BF31CA-798C-4D66-8DB1-D52ECA7CAFC1}"=""
"{61350BF9-A087-4881-9178-109CA5D9FAF7}"=""
"{47CD2142-22E6-48B9-88C7-3E13BA7E860A}"=""
"{5052E847-1CDB-482E-AFE7-C9E8C7226E52}"=""
"{C134ECC2-88CF-4B73-814F-C0A65FB20B2E}"=""
"{54598F33-E859-4026-BC46-BA3BCE998B4D}"=""
"{291FA63C-4A26-47CF-AD78-20C1001A83FF}"=""
"{EDD1F4D2-150E-4468-A4D0-4BCE496943DB}"=""
"{3A788C3C-A019-4369-9EE3-0C262C9EB026}"=""
"{D813E4DA-A919-42B7-A5A7-9B681A986440}"=""
"{C8414868-20CF-47D0-9131-7F24939CD9F4}"=""
"{D8FC0793-644B-4B59-8867-30E99010A242}"=""
"{4C83C18E-5618-4423-AD4A-9A80D3DA4EED}"=""
"{D802BBF8-FB80-4B12-8D00-B792E972A9C4}"=""
"{684BC7E1-F0A7-4D66-B509-381E05686753}"=""
"{0F24F620-EF06-4A11-AAB1-4DFD7CFE8A9A}"=""
"{58A82B1F-8BD5-47C4-B8EB-52EFFC034E71}"=""
"{B4A45A3D-FFAC-41F1-A559-D9A6829B199A}"=""
"{BCFFD585-6CE8-4681-8E25-0972D70953EE}"=""
"{C36491C0-8722-400A-91DB-DC2E30B03674}"=""
"{A0930F61-F214-4F84-9322-8A80AFC53731}"=""
"{C25EF411-F7D5-466B-A29A-AE43DF49C46F}"=""
"{33E0F19F-4F78-4E8C-9CF8-D59E5E3CC418}"=""
"{B39B76E1-EB7A-4E58-BBAD-0165EB6E45E9}"=""
"{D2F70AC5-E0C4-4B45-BAD9-86CAAD15F4C2}"=""
"{7F2FCE07-0114-43D5-8C46-6B9E19864D96}"=""
"{3843E526-1B46-4515-A041-C666F0ACF34B}"=""
"{8CFCAA3B-007C-412D-BAB1-F17AAE59AEE5}"=""
"{6A4EDB78-BB31-41A6-A361-C7A5B3595DAD}"=""
"{75799C8F-E614-4AEC-B550-F3A4C154B4CA}"=""
"{9D1D0C52-13EC-41C9-9577-4C7535270983}"=""
"{04980A12-3C82-4F97-86CD-536F85D0CCB3}"=""
"{63557192-B76C-4149-89B6-C7C932086727}"=""
"{803DF078-3B5F-4F18-B23A-F6D602583B36}"=""
"{F2F72DF2-5A73-4D33-8B5B-E86ADFC75C2E}"=""
"{46BD126B-A0B7-4B20-ABA0-41B85B524CD5}"=""
"{60E2E48B-B964-4454-BE16-E23C2F5CC18E}"=""
"{A4F26EE1-EFDA-4EB8-965E-73E845CDF925}"=""
"{86E93C0B-01DE-41D2-B0E9-8CFE6E4163FB}"=""
"{4EE5A737-051E-4FAB-8C8D-2E514B9832CF}"=""
"{F0A390ED-AFEC-4E39-80DB-419FBFA63AA8}"=""
"{51E44BF9-6C28-4C57-B2B7-EC04E8CC351B}"=""
"{BEB8A2CD-DA23-4802-A382-9E1ACE8BC501}"=""
"{6587A2FA-65D9-4828-9D6C-4F534DD884BD}"=""
"{3E063BF6-E0F8-4F04-96F1-7EF130B3253B}"=""
"{07EB462C-A04F-490A-A407-25A183F6D86D}"=""
"{358AF64A-AD8E-4D15-A713-ABABE19BDDBD}"=""
"{62B4DC33-70A9-4215-99C7-2EADA7ED2D8C}"=""
"{ADA75C77-6708-4A1A-9046-680FE57447C5}"=""
"{7EF43A51-C8D9-484A-A1D1-C4FF74345AE1}"=""
"{A99FEA04-14B8-4850-A8CF-84372B8B428C}"=""
"{C4A775AB-C762-4C2D-9C3B-6F2A8EB18E51}"=""
"{C4D3DE21-455C-41A4-AC67-6423366FAB00}"=""
"{33AFE4C9-7364-4889-B539-4A153114F778}"=""
"{93C3DCF6-2546-4AF7-9D5F-BF3EC45BCA4B}"=""
"{2A0D8DBF-559C-4EA2-BCEB-85478AFC77EC}"=""
"{1D02A0D9-2D0A-488B-8C65-4C6907673277}"=""
"{DA83A798-6C55-433A-9AA4-95C6EA1CF171}"=""
"{CB0EA890-6FF3-415B-8D07-6C6E82F25E2C}"=""
"{49E677CB-F0BA-4FEA-B4CF-C314E45752A8}"=""
"{8F9E974A-025D-4042-95B0-13764B630637}"=""
"{CF8E66BF-8A82-47F2-A6BA-D2C258CE4FA6}"=""
"{9C5B505F-CCFB-4606-B974-5FBB528C04B1}"=""
"{100ED424-F16D-4E86-86DE-262919688016}"=""
"{7910FA80-DF94-4C6E-9F0B-15341A813177}"=""
"{958D8954-3870-43EA-8060-34122392F282}"=""
"{3A4C0C1E-8CF7-4C74-97B7-97C1E4891B51}"=""
"{EB327E66-35F8-47A5-AF48-7C3F47F754CE}"=""
"{3B2A98E1-DA50-4B8E-ACED-A043721DE5D6}"=""
"{4FBF9BAD-72B4-446B-9E1B-42D18B20DE9C}"=""
"{118E073B-A72B-4EBE-B459-89E06A47C330}"=""
"{D994F3B5-471F-4F33-953B-9E61DE09BEC6}"=""
"{41D4C119-3EE7-43E6-BFE5-01726AD45788}"=""
"{B01E5EE0-6015-4C8D-82F2-24CC0A3683EC}"=""
"{028E6285-9DAE-4EEC-A866-70A9B23C3722}"=""
"{C1F5AA31-7DA7-4D65-B813-F8FE851CCBB0}"=""
"{AD8CB395-DFCF-4B87-AFD5-21C377203CEF}"=""
"{2EBB4210-AE17-4DD7-9106-0A22B5212271}"=""
"{7A0F54DC-9A28-422B-9CA8-EB19F2A260CF}"=""
"{CED34FD6-CB76-45EF-9A86-7DBFE6C88568}"=""
"{0CF694DE-A9DF-481E-8844-64CA68FB7110}"=""
"{3E380B6D-EE0B-4477-8ECB-3318266FE94D}"=""
"{A2A44DC8-0773-450B-AAA6-9B7D22EF4243}"=""
"{FA0E9B9D-3093-40BE-8924-5F951F9583DE}"=""
"{9FCF381E-BCC4-4FA4-B5AE-B7F77F29917C}"=""
"{0A5A4F4D-8F06-43A6-B998-E0A36B604FBE}"=""
"{DEA31184-A83A-4DC7-AC5F-D9121CDC6871}"=""
"{8E9463B9-A247-482C-BF04-555A25780D1E}"=""
"{F7385130-104B-4F93-8681-F8FA9CC7CC6B}"=""
"{FD8A5BB2-2554-448F-88D5-E0F8B434145E}"=""
"{30D11E6B-536C-4C64-9B85-DD1294BB2028}"=""
"{F185560A-D7F9-452C-A276-69E3304E9E47}"=""
"{B946EEFC-17DB-48B9-BC0E-2484EC4EE30F}"=""
"{AA99928C-4DB7-40AD-95C2-04E3AA0309F3}"=""
"{A38FC6DF-E0CB-4A12-ACBE-905DFA9E8DB2}"=""
"{BBBCB95B-F5BD-4C27-A923-8D79D876D3B1}"=""
"{0C5AED3E-E6B6-45F6-9762-E3BEA61FAFB3}"=""
"{3D92112F-1C03-4FB9-81F9-4AD58B57844A}"=""
"{39D651EC-2957-4C1C-85DC-319B071E5470}"=""
"{6A9C5519-6A9C-4281-AAAF-5792F9C70941}"=""
"{8776D59C-02BD-4D22-8841-39A4D996905C}"=""
"{81265426-65CB-4BF5-BE31-7E63D069232A}"=""
"{3B6AA51B-2C6B-470E-AD38-B6DE017ACC98}"=""
"{64B45194-230D-43D3-B457-EA7BC8D6E9E4}"=""
"{17CDC62C-E3F8-46FD-BF42-1F772312D9F1}"=""
"{225C87AB-0BFE-4FBB-BB9C-BA6D5EA3C4E7}"=""
"{DDA30B84-6287-4C15-BDA6-8ECB7738FC57}"=""
"{2F94496A-E140-4794-8A51-6B599FA8E103}"=""
"{63570364-8A9E-40AA-8644-0BF7D4840172}"=""
"{44B03882-C24D-4A5D-837D-91CA4DA40578}"=""
"{53BD1486-929D-4365-9234-6F37423B401D}"=""
"{9AA53D51-E1C5-4CDB-A72E-88E0ACFA12F1}"=""
"{9EA3EE89-B941-4F2A-B0D4-506472EF2590}"=""
"{27D68889-D368-47F4-BDF5-872990674E5C}"=""
"{E89536E6-3D25-41A3-93AD-3718996CA963}"=""
"{4DAB2A4B-13E5-42FB-80C2-0B91A1FA2BE4}"=""
"{40082F77-A92D-48F6-8525-C312C113845B}"=""
"{29442FBB-576A-4BF4-BF50-9F58FE1C09F6}"=""
"{64CDCA5A-18D9-46DE-A7F8-E836B4C52A45}"=""
"{F8EE3D6E-3F7D-4B43-A398-FE097051F5B6}"=""
"{0853DB92-F2F9-49A6-984C-56728263E30E}"=""
"{9A447167-C822-43B5-B81E-E8D83C9DED22}"=""
"{233D4E9C-9BD9-4518-8826-D89BF08672CA}"=""
"{5543282B-11B2-4CFC-AE5F-0A5E3D99A4EE}"=""
"{ADAAE410-C4CC-4A8B-AC29-6BF27A819672}"=""
"{C4055864-41DD-4D31-878F-DBFC4D28A26A}"=""
"{E5C9059C-E776-4F3A-8236-5279A1515CAC}"=""
"{171631EB-6F80-464B-BC4E-09889A46396A}"=""
"{6572A908-3B75-44ED-BCA6-F998011D1D63}"=""
"{666B83AE-2EE7-4842-A45D-668B701CEC1B}"=""
"{97F8D4B4-4AF2-4C72-B35F-571840FD98F6}"=""
"{3B884613-8DE5-49C4-B7FB-465009FF4B25}"=""
"{3C8963AF-E907-411C-AD4F-08E19D1B74E3}"=""
"{CBE2EB59-0AC9-4885-B2A0-749897186E8C}"=""
"{D044C0FA-22CF-40B9-AF64-F7DB3BE94500}"=""
"{D3916E0C-19D4-4847-8E2F-C137E0B4146F}"=""
"{885A2E98-7C6F-48C9-85D9-941EA098B21E}"=""
"{E8F27210-DF9E-4D42-B34B-A5B09E96D04A}"=""
"{97E4DF9A-481F-4433-A0D8-9B7A2B704C8F}"=""
"{4391DF5C-758F-4D86-9987-C91E306D9451}"=""
"{183578C9-AEBA-4C96-BC4F-72A6F8A9C046}"=""
"{32226503-226B-4E9C-A346-94C4CF9489A7}"=""
"{BC3825AD-C7FF-46DA-A040-20C366BB41FA}"=""
"{0E2C5658-40B4-458D-8625-A0DF380AC448}"=""
"{57EF4A17-0CC0-47D4-A67D-895AA45FE7BC}"=""
"{542C24CD-BC0B-4907-BCA9-704B31F35E79}"=""
"{0D182564-FA13-4DED-89C8-AC0AB7920ADA}"=""
"{62354FC2-C959-4A51-8593-34D57A0AB23B}"=""
"{B38A9B85-EB72-4006-8E60-04BDBF78E4BB}"=""
"{8B33A551-55E8-4969-AE6E-CF86568E5711}"=""
"{A570AA2A-A1FA-4F36-BAE2-63E47DFB1F70}"=""
"{25949374-43BE-47A4-BB12-6174C6AFA267}"=""
"{48A0B028-EFFC-4C46-8AC0-4BA998381086}"=""
"{585C8ABD-41B3-47B5-938C-E79E1CA3DF70}"=""
"{1176A4DD-B362-4D34-93E9-D591EA85DCDD}"=""
"{84819106-57E3-4CFC-997E-4AF477B7A029}"=""
"{6813D176-F8A9-4249-B9B8-4CBA98C50109}"=""
"{9B28EE7B-5A2E-4342-BD0B-400201D8986C}"=""
"{C5ED4799-0EBE-47AE-9EE2-8840447FAC93}"=""
"{8EC86D74-6299-4925-9950-E9B697D13E1B}"=""
"{5A45490E-AEBD-49E5-962C-526AA3888728}"=""
"{967293E3-7EB2-4FB7-9F97-961E35BE5342}"=""
"{196C7165-34C1-4D52-BE1D-A481A91C7F2A}"=""
"{DD8C240C-39E8-460D-874A-1A7A4B7C71B6}"=""
"{6C482E32-7954-43F0-98CF-195F0E020698}"=""
"{AA06DD30-0A52-4F6A-97F5-84DCA709FBBD}"=""
"{05809467-D445-4561-BE87-70A841510900}"=""
"{0C630460-9598-4200-A447-B9A66734C7C4}"=""
"{EC3F2B83-0B44-4778-95BF-D1B390E06998}"=""
"{E532982B-76AF-411E-AF28-A932A0E0E87F}"=""
"{80ACB527-5D62-456E-8441-2C8CD7971B52}"=""
"{D2737D50-190F-4C7D-86BB-6D1FAA901F5F}"=""
"{85E571E0-8EC8-4ACD-A187-A64CC5E2B75C}"=""
"{7B45A875-E1FD-4071-A966-1FD0786279A5}"=""
"{F668F695-009B-4AE1-8496-3B2A16B26149}"=""
"{4BD02608-CC63-4B77-A279-3BA64975B863}"=""
"{9531B9A2-038A-423E-BEB5-29D41AA67F31}"=""
"{CA4D3168-1483-4B2D-9B4E-EEFE3081E21F}"=""
"{45D62723-577F-46D9-89ED-B92746A38328}"=""
"{E82921C8-3320-4D23-9D99-2E2158D6DEF5}"=""
"{6E25745A-4A04-4F1C-901B-B836E9BF8DD2}"=""
"{2B12F77D-D1A1-4E6A-9669-6414803B4DF2}"=""
"{E020B193-FD9D-4F8A-8BFA-696CBBD3B231}"=""
"{D63B04ED-45AA-4618-98DA-17483A060C79}"=""
"{DDF19C94-91D0-4FEA-8B83-7F4187EECADB}"=""
"{E77DD39C-72B1-4890-8838-06D767A21903}"=""
"{C5CDDC7C-80DE-45C5-B5D8-9569165B0802}"=""
"{B3F491E2-B0E6-423E-B0A8-1F5C186F20E0}"=""
"{9532E872-87D4-486B-B79A-09666143825D}"=""
"{7D53F3A7-01ED-4EA4-8BD9-32F7D08BB4AB}"=""
"{E10C5F9E-0B11-4398-BE4A-D61501A4FDD3}"=""
"{4561BEEA-24B8-449D-B584-12F262D6095F}"=""
"{9BBB2CAD-5DAF-47D3-9657-5A9D94BCE7EB}"=""
"{136EE48F-CF14-451D-84F9-A794C437E5DE}"=""
"{745C2BC8-153E-4D9D-AEC2-1D2D33633534}"=""
"{FA3E6EAC-DEBC-441E-BB10-7D22A8670260}"=""
"{190BBA46-D461-48B9-BA4C-3A7A0CB87EA2}"=""
"{4461C411-B2CB-4F1F-A83A-F8DD0ED9D733}"=""
"{C0DE357D-6DA9-477F-8057-2CA40B96FF65}"=""
"{8958717F-491E-43FA-BD52-D5E8704BDC2C}"=""
"{A350C53C-EFD4-490A-8590-18231915154E}"=""
"{3957854C-847A-441B-9C81-13DC9780122D}"=""
"{F7F28759-220E-4C8F-8C9A-3765B17DBBC7}"=""
"{0F173DCA-4DF0-40D9-A759-1A9790842063}"=""
"{446A6DC1-3F7A-4371-9189-4A9FAE5789B6}"=""
"{55E08749-9E34-4D3A-B946-2741DF9DD565}"=""
"{FE0D18DF-6148-4885-82B3-EF2A0DE81928}"=""
"{90BCFFFF-81CE-4F89-87B8-6C331099CB4E}"=""
"{B7C61CD2-EE97-4AB5-A8A3-14DBC0167821}"=""
"{2B86097D-F010-46C8-9D96-401E17E5A93E}"=""
"{8B552C22-EC19-4915-99F9-AA7219A54E3B}"=""
"{61D0B781-2D46-44C9-BBE2-E6B04D482CDF}"=""
"{7ADADA82-402D-4778-B836-E5AD4082B0CB}"=""
"{0B9C2978-60CA-4196-9AAC-3BFA8DB8BCE3}"=""
"{8842D68B-FE02-4BE3-97F9-C3B0A69E2F88}"=""
"{DF408926-A5A3-4C1D-8D8A-E1C54D87AA73}"=""
"{C2C564A7-4835-4A48-AFDB-06DEAAFB9DCA}"=""
"{F6DD4F19-1791-4884-B6FE-DDD93798CD3D}"=""
"{71A97495-4C89-4421-B6F4-5FFCD5A372E0}"=""
"{7512AC29-D508-4A08-AE81-3C62882CC25F}"=""
"{216DE464-0A9A-4464-9FDE-712608B386A9}"=""
"{79D36D54-02A3-48D5-B174-C6ED5BDBCD09}"=""
"{EC9FD452-CF8F-4CD5-96C1-ABC683D0A311}"=""
"{9FC718A1-AA18-4FC3-AA83-E3730D7421BB}"=""
"{DDC506DF-86D6-4A04-AF5A-AAD6786B6BD2}"=""
"{1E608F9E-54CC-4BB1-9C3A-2F9AA4119FAB}"=""
"{C6CBB116-57C2-4E93-8C64-A05619DABBF0}"=""
"{42A7F4AD-75ED-4C1F-993A-CCB822333133}"=""
"{E2FE0FDC-FCF9-4D18-A4B8-16ED217A2953}"=""
"{38AD270A-8D9D-44E9-91E0-57C28C093EFA}"=""
"{74031AF1-FBB6-48F5-94F3-1F05FB4CA388}"=""
"{117FCE0B-E23C-4A03-8936-B122A9169FCF}"=""
"{F4B9BC02-0065-4FBA-A415-D14BE8851D96}"=""
"{6400CB54-A027-404A-A14D-314FBB5C7226}"=""
"{A5252AD5-06AE-4FF2-8EE3-7479A800009C}"=""
"{70BE9612-DED9-4903-8306-F46DED4D1D13}"=""
"{5F8C4651-0A8E-40B1-800D-C67C30342DB4}"=""
"{556BE4DF-6789-48B8-A79F-0FFF9B4E1F50}"=""
"{DF8B7D72-2EDC-4DE7-B678-D61409101A34}"=""
"{D056F2E4-82C4-40D7-81C9-6B990A3457F4}"=""
"{87CE122E-2F07-47FD-B060-53299CF2A945}"=""
"{9FDE5D8F-26BB-4ED6-85B2-72031C02115D}"=""
"{D1EE7B5D-6593-485B-A3C4-AE2FE2548FD6}"=""
"{838DB59E-E252-4A14-BE64-DA283D1CFF2F}"=""
"{8AC5CB96-3EE5-412D-901D-D4AD8C490DDF}"=""
"{AF17217F-8EE0-4183-A314-EFF14D731F0F}"=""
"{C45C58F5-6930-4BA1-81FA-8336CDAA147B}"=""
"{ACDB7762-8EC9-4C3D-9675-F2BF1817E033}"=""
"{B56A2236-52A4-438D-B269-D0A403CC6375}"=""
"{53BA529B-DDB3-466C-BB23-96A8AB5368FD}"=""
"{7D9B1BCE-D25D-40B4-A709-88050A396C9E}"=""
"{DE1FE6FC-34AE-4838-8988-37E4FBBE6CAF}"=""
"{B6082126-E08A-41D6-96E3-346AB230D739}"=""
"{25EE78E8-FA22-417D-AF71-C86D89958AF1}"=""
"{3A56ED0F-4F45-419D-8A89-D625CFDD1C8B}"=""
"{B5F5CDB1-C981-4320-A3D2-030F57A7F2F7}"=""
"{32C4675D-377E-45C8-A90F-C007662A9B21}"=""
"{09DA7874-D81C-4101-BEF0-C1510D62B52A}"=""
"{9B1C6E1F-C7B8-438B-B9CB-911B5F3D4D17}"=""
"{48773E98-2DDE-452B-A2F0-7E0A2CE6365A}"=""
"{BD4D8909-8985-44FD-B4A7-2F55EC0901C3}"=""
"{730E92CF-1092-4A0E-8238-556D83F82119}"=""
"{07F84422-F605-42A7-AAB2-4B7D8BD8CF9C}"=""
"{5FD01199-D3D6-4C18-9AB1-BF5DA92DD1FB}"=""
"{75C8A776-23D9-4C45-89A9-F8B21D710B64}"=""
"{0B3056A9-BA93-4A89-A532-E6CF68890FF4}"=""
"{77879B31-D020-4BFC-93E0-EBCA89B89F6B}"=""
"{CB290109-217A-493F-8F08-FEEB23B7884A}"=""
"{B55EB439-8FF8-440B-B5B8-83F33748E2CD}"=""
"{515025C6-3A72-4998-8E6C-B288E3CBB323}"=""
"{810FC23C-93F8-4698-B7F6-3786133D38CD}"=""
"{735F2BCC-52C6-4C08-8B2C-E48269AA7496}"=""
"{F89E668C-4998-47CA-AB76-A848537D004D}"=""
"{13339FB4-9048-44BD-96F5-6002D8018B59}"=""
"{43C29888-F61F-4AD9-B77E-B4E2A19671FC}"=""
"{52ED0E7E-2695-401E-9372-F7221EEDC3C9}"=""
"{C545B5ED-580C-4C29-A786-9D5A53D0A825}"=""
"{5892E5C1-2666-4C59-8DBE-EF1083664E5B}"=""
"{6EA104F0-7ADD-48D0-B832-D23C0DB674EA}"=""
"{C7ECB00A-543E-4E16-BF37-E374A3DB2E0F}"=""
"{2BEF71FE-E55B-4394-B95D-DEB56984F8B8}"=""
"{74B5C224-EAA2-4EB2-897D-6491E1D22838}"=""
"{DFB0CCB6-30D7-4CA7-A945-F7BBDF67244E}"=""
"{057F11FD-879A-4D3E-B70C-8FA75C031251}"=""
"{875B109E-19EE-4291-95F3-095AB210E12D}"=""
"{B12B1184-3DC0-482D-876F-8C4CF6B6A755}"=""
"{D7854F38-7E59-42CC-9AE4-D941E61D2EC4}"=""
"{AEA2CEEF-E45F-42E1-A31C-E98412122A5C}"=""
"{B234D23F-BF3C-41ED-99E4-2B411D4211A7}"=""
"{7E4C7A8D-DA6A-45D1-BEC6-C6F5CFD2B426}"=""
"{268074FC-60F7-4DC7-BD69-E0A62693019D}"=""
"{D17E1753-67FB-42B1-B792-227B16961F0E}"=""
"{130C3335-D3CA-40EB-9EA6-F29E1B03CD6B}"=""
"{FB2387A0-D093-486B-A2F7-DE482A8E809F}"=""
"{3203AE17-539E-41D2-8436-668B61390BD9}"=""
"{82539D75-C48D-473D-9BC4-E759D2ECB6CB}"=""
"{15F4E7F0-4F27-43B2-9C87-A337F67D1669}"=""
"{DB6399D4-9A0C-482B-91E0-FC04A666E74C}"=""
"{CBECC3EA-C96B-4363-BEBC-F97971C2E838}"=""
"{EE7CBE80-38E5-4FB3-B8C2-AF3275505F9C}"=""
"{AE9087C4-7D09-4B75-AFDC-34B7756135EA}"=""
"{6B5B3B25-3524-40BE-B2A6-313D8007D7A2}"=""
"{638C5680-F59F-455E-A685-48379F3E1A98}"=""
"{084E3AB3-3FE5-4A48-A203-C0739F885343}"=""
"{921B0043-9D00-4FC6-99D1-9E4BDBCF862D}"=""
"{CA48E60C-C709-46EE-A06C-3D5FC65681DB}"=""
"{5BE74A0A-9618-4FAD-A97D-FC8919B9228B}"=""
"{9525381C-47A6-4D86-9432-04B70C40F85F}"=""
"{D85E6C58-E88E-44F4-BF36-9F3B7ABEB710}"=""
"{63CBC35D-4FD6-4B46-A876-9CD40CFA540D}"=""
"{87772CEF-ACF7-40A3-9780-0567D71B1455}"=""
"{7340AF87-7A95-43D1-8C43-63C618B6850F}"=""
"{B7A8375E-C18F-4DFC-AF76-07F8259612A1}"=""
"{1E630A66-59D0-47A3-BC40-D20ABEA33FF1}"=""
"{DC4FBB5C-C538-4517-BE4A-7ADA82BF4EDA}"=""
"{55FBD893-1A74-47BA-9E35-77391C95D2F9}"=""
"{D77FC812-B084-42B2-A62E-61F4BD4B88F3}"=""
"{C1064E27-C50C-43CA-90C3-5254E115AB83}"=""
"{4A6E874B-BE54-449E-8924-761E941B915F}"=""
"{06096867-7A2D-4CD5-A956-9BEEBABF3321}"=""
"{83BFAF8E-B330-4973-ABD1-B1DECE926403}"=""
"{39FCE328-AF1F-420A-B576-F59C753E29B2}"=""
"{6FB0AFC0-5B9F-4D44-A690-30BDFDE5A9F3}"=""
"{A4D25E9F-D3A4-43DE-8928-8AA48168B212}"=""
"{87B51713-1CD0-48AA-B79B-C627135D77DE}"=""
"{DD2D68FB-9A96-4F31-A7C7-822F871467B2}"=""
"{5CFA4250-BBE2-4AD7-AA20-BD0AEC251A24}"=""
"{70E2DE95-A827-4C10-8978-E43AD7183C61}"=""
"{82742027-0B57-4E12-9706-4BE92EEAFACE}"=""
"{4CB3E4D8-EBC4-4BA5-A530-0785B75AC469}"=""
"{370D31BD-743A-4A39-A78F-E6592211D1F4}"=""
"{3D239429-829D-43CD-B07B-D78B6E5B5F75}"=""
"{2D2BE0EC-12A1-4427-908F-6D154915A6B8}"=""
"{16903129-CA0C-4693-8C9D-7AADABE3BACE}"=""
"{AF8A2681-71D9-4378-AF56-BB1D427D46C6}"=""
"{60DB5AFC-DBC4-4521-8ED6-CC7893C3E508}"=""
"{91105200-6DE8-414A-B10D-8CA0D743DBDB}"=""
"{F5F23FFB-B0C4-4543-BAD8-6EFC640300D3}"=""
"{5D483D88-35E8-48D2-B3AF-CA3D4F354C75}"=""
"{1AFD93EF-4743-4F31-8506-FF3036AD9C2C}"=""
"{9D830DD4-8A64-4365-B3FA-00246F81E536}"=""
"{A54801C9-67D8-4720-B709-5B3FC443C3C3}"=""
"{8F94BEB0-2CF8-4230-BE11-DEFCAA98632F}"=""
"{D904B88B-6948-41BD-B3E8-B2EB4CF4231E}"=""
"{7E93B5CA-B656-4CE4-A663-16569482FE07}"=""
"{2D5054C2-C0AE-482E-8449-DA30DA359F07}"=""
"{CD933082-5BA8-40D8-B272-2526B5E1E719}"=""
"{F31170DD-2305-4259-8E16-A3CF4BB67926}"=""
"{63168042-5F13-46F7-A5A0-C69DD06F0E2A}"=""
"{CA79634D-4FEB-4CB2-BED9-38AB8C75D1B9}"=""
"{ACF1E34A-8AA8-480F-BF4A-AA506F429C6B}"=""
"{A9BF9B69-C803-4620-96FF-608E8FBD9975}"=""
"{83E7E898-82A3-4422-9FE6-AE9C422732E7}"=""
"{8A0F11C5-92C8-4E7E-A083-A7460C341178}"=""
"{221D295B-2FE2-4770-9E37-FCC68F7C27DF}"=""
"{50436DCB-D73C-45F9-BBAB-DC00DA2CDAD9}"=""
"{164ED027-E263-42C5-BC0B-1AEC88FE507A}"=""
"{A8C73872-41BE-42D8-8CBF-608901EBBE34}"=""
"{C6623080-44DA-4775-ADB1-3251ADC3729D}"=""
"{0705BE4A-3392-47D8-A6DF-4527F854E558}"=""
"{F95F6F83-76D6-46B5-BDB3-F0388757429D}"=""
"{1667AA7A-7548-43C5-9BD9-C39BE79B98F5}"=""
"{D28C527C-53E1-40FA-97C9-E9106D68997A}"=""
"{0542E7FB-CFF0-4F6E-9A05-7EF0301F2CD1}"=""
"{87DFEA18-E5F7-4108-97E2-206C1897172D}"=""
"{6AD87C0F-35A1-4BC7-AACC-393B7645203E}"=""
"{C00C6B55-979A-47B3-A20E-EA80AE55FB27}"=""
"{3E6CF1D3-CD57-4956-8B81-95BE602A3452}"=""
"{2C738CE1-BB22-423A-8E97-C8F39A8B65BF}"=""
"{95E1DA27-684A-496B-9A56-EC716FA9BD72}"=""
"{C19678D0-0D80-4673-9C01-D80CF6F407A0}"=""
"{EF468E87-AA49-4CEB-864D-F733788F17B0}"=""
"{3CDF954F-3466-4F7E-950B-10F884AABC24}"=""
"{B7E3E6CF-BCD5-450A-A819-5803A5A76AE4}"=""
"{B17E0E8A-EABC-41C1-97EE-F6C7BD234015}"=""
"{98827E03-02B1-4756-B311-44C7A67EAFB6}"=""
"{4D37D100-C91E-45B7-B39E-935667A5483C}"=""
"{01BADED4-F154-4D44-B0D7-395AB93C5DC5}"=""
"{5078A089-01AC-47F7-ABEE-B3759F71CD74}"=""
"{E608BD4D-C37E-4581-A242-4504A531E363}"=""
"{25DB1B20-8F6E-4C9C-85E4-0127CC3C83A3}"=""
"{79883EC9-5677-4CDF-8EFF-AE7372DBB104}"=""
"{402F6FE6-3890-4728-AEA7-5C80E836CF83}"=""
"{85126BAA-5B41-450F-B0D9-229D63A36158}"=""
"{ABB48B7F-37A9-4640-816A-F220E613FA08}"=""
"{5C1A8669-8511-46CE-8C32-F396A7272985}"=""
"{636C44AD-248F-4C49-8826-30035C984C44}"=""
"{C8306632-8A35-4330-98D6-F047AAE13D8D}"=""
"{1B72B3EB-ABB8-45F7-86E5-7810EE4FE78F}"=""
"{4FA2F528-C406-4EF9-A223-C9947D6BD35F}"=""
"{911CC770-64C8-4638-A402-E27827B1A849}"=""
"{89945702-8699-435F-8B7E-01D3B8C970A2}"=""
"{FF804856-0D14-4A70-AFC8-4C6F80EA87A2}"=""
"{DA29AB3E-9231-4D31-ADAF-C6078C855BEF}"=""
"{76FDBEF3-08AA-4B89-A538-191232FEAFB9}"=""
"{30AA8704-D101-4A75-A108-D9ACFEAD4DF4}"=""
"{914D0872-4E43-46CF-BC13-475D72774C71}"=""
"{04EA5D61-7D21-475A-87CE-01A470CCF157}"=""
"{34FE78D4-CC7E-4E14-B7FA-1FF17283C381}"=""
"{D49C2831-1747-48BC-9725-DCF1B0095E79}"=""
"{E1DCB41C-FBFC-44EA-A025-43C1E906E865}"=""
"{5D2D87E3-C543-4612-B27E-E7D411401648}"=""
"{29913A99-1733-4277-AD91-95A421487E42}"=""
"{DA2903A0-CC3A-48CA-A7D8-6E7E87ABAED6}"=""
"{F1137B35-10DC-4A54-9982-2EE63339BAD1}"=""
"{69294D09-72CC-4D80-8750-55B1FF1A3ECC}"=""
"{53915540-AD20-4CBA-A812-D90B2D0D785D}"=""
"{5AE7F9BD-8F37-4D80-B861-3CAEB3FCCBC1}"=""
"{64A19587-DD18-4327-B1AF-99A37EDF7FF2}"=""
"{194BAF3C-EF43-4190-BEEF-BABED45F3B11}"=""
"{75F491DC-1BC3-41F6-AAD5-730D736B0059}"=""
"{DFD22C29-659A-488F-BFF9-EBAA5C837ED9}"=""
"{53DE906F-2C8A-4ED3-92F8-D93D114F0BD4}"=""
"{67A89DD4-D0BF-420A-BCCC-4A09A3F1CA8A}"=""
"{CA924E55-E899-4CB6-8E8A-CF33941281C2}"=""
"{88E24100-3365-441A-9CC9-A42209363551}"=""
"{2D4771B1-251B-4680-B161-B78193F71CC6}"=""
"{523E60B5-8F3B-4056-A117-88273045857E}"=""
"{8B0DCE8F-2CF4-409B-A254-BC3F85590A3E}"=""
"{6788C0DA-DD08-49BA-9F1D-CFF2BE550273}"=""
"{F9C73CF3-0250-42EA-BC3B-916160937D71}"=""
"{60B44639-B3D0-447D-9945-B73066BAB2C9}"=""
"{03AF730C-A8B9-41AE-9512-1D45B206A61E}"=""
"{4A9E49C8-A5BA-48F1-9FE9-CB00F16CCB1B}"=""
"{71452384-B5AB-4B21-B134-22D52CB5BC43}"=""
"{51279A29-6C30-49F1-B96F-8593E334848B}"=""
"{B2747604-B3CE-48BC-A241-E94C875B96FD}"=""
"{C7882D99-36C6-4297-871D-31276E135C00}"=""
"{0ABB98C8-3FE6-4BED-962A-BE3B583BA6F7}"=""
"{E25F8B33-DDE8-4F42-A633-8248A51D50C0}"=""
"{F4FCC9D5-9A94-4FC0-A75E-B6096453EE3C}"=""
"{C12DB14B-3743-4F96-91A2-DD75B0B01790}"=""
"{378B6C1D-EAB7-4F52-A4BA-19641D394C3B}"=""
"{5870DF52-EF54-42BD-94B3-463BD7F88CAD}"=""
"{9CC0C8B3-5671-4F16-A14A-8D9B24DC5418}"=""
"{32ABFE49-7308-4B4A-841F-FF50727EB502}"=""
"{88AD43C8-2E39-4B46-89A2-301FEE43AD9E}"=""
"{B153B158-7DCC-4E8B-A828-30B4B148A77E}"=""
"{C00DBE70-0E8A-429D-8DA5-576BD2BEED90}"=""
"{F93CBCA9-F4F7-457F-B123-BC9516AC7B63}"=""
"{2BA18A6A-8168-4427-A8FA-200E9B962A3A}"=""
"{8A5AE0B1-AEF0-4CF3-8875-2C95674C34FB}"=""
"{A360C104-713E-4EFA-8A94-291ABAC37FA0}"=""
"{9023DB01-8F87-42E4-8075-0047037613FA}"=""
"{850187BF-B28A-4023-8AB2-4DCC01A3AF69}"=""
"{B68B529F-6CD1-446F-962B-0510017B1DC3}"=""
"{94558B81-A079-457A-8E5C-9DD3D8A4573E}"=""
"{435188FF-7D4B-4987-8BA2-478DEDA0C783}"=""
"{AD9FE694-7663-45E8-87A2-679099C4A95C}"=""
"{4AF409AD-1019-4DC4-996F-654F6D609117}"=""
"{6B85D4C9-D436-4DC8-96DC-9C365F5811AB}"=""
"{ECF66370-24F8-4D1C-A2E6-036429AC5394}"=""
"{FD0D1461-158D-4F4F-9F9D-A3ECDE49A466}"=""
"{BBB0CCCC-31E4-465E-874C-B3EB83891B5F}"=""
"{9EFBAA7B-379B-42BE-AFAD-B785EA8DD7FE}"=""
"{86000EFA-FFDE-47F6-BFBB-992C419F4B03}"=""
"{EE581294-73F6-4E6A-A2B4-B737C7D6D58F}"=""
"{296D6E79-4C4D-4A07-A0AE-5F2B926CC0F4}"=""
"{CF3D4809-B031-4C33-9D0C-03CAC29AC021}"=""
"{F1AEBE00-D894-4C89-9EDA-406F560DA6E8}"=""
"{F286F839-D291-4913-8EBA-C7DE95DFA767}"=""
"{0F381B6A-0C85-49E7-B9B4-59E1A1556E83}"=""
"{609F8808-072C-4C2B-80EE-C16242A79574}"=""
"{FAB010BE-D711-4D90-99D9-FF3D37C3F303}"=""
"{014438B5-9142-4814-AB92-ECFBC949BAFA}"=""
"{A863312C-E78B-485B-A9A9-95107E176068}"=""
"{08B1A19D-5D0F-473B-AC52-67623CA7E1FD}"=""
"{4F8EE4EC-9888-48BC-8E0C-AF02E96D198E}"=""
"{A5C28D57-F3E4-46CC-8A5E-DC26B373F7E7}"=""
"{4835E795-1325-4FC9-B766-1CF3B1EFBB21}"=""
"{A3BF3B34-1634-4EA6-9A14-7760B485F165}"=""
"{DD241931-8D2B-4827-886C-C1E6D60EF5AF}"=""
"{C742C5C0-C4AB-4E64-80EA-451BAB0AC5FC}"=""
"{EE0A8780-EE1E-43D6-B48A-33BBDAFD39FC}"=""
"{2CF5B917-63AD-456D-82BB-0B87C5C4E562}"=""
"{9F1A52CC-A074-416B-BCA6-A254E303EFEF}"=""
"{4E3E382F-AE2D-482E-B16B-C2A6E8FA1089}"=""
"{BD411888-B440-4445-8294-AD7886C445AF}"=""
"{A9E4C930-ABEC-477A-9029-76197856D3EE}"=""
"{2FCBDFB1-987C-4A64-92A6-C5BE1F15CEF6}"=""
"{60164E99-7BB7-436C-8B5B-60BC3C8124A7}"=""
"{2F1C9C18-8AE3-47CC-BB6D-7EC4217786BE}"=""
"{A2D3569B-170A-4BD9-B373-86028B8605CB}"=""
"{27DD7D85-9858-4F6D-B9A5-42B394ADF3C2}"=""
"{7C95B528-76C1-4D9E-8E20-9D30C4B8BC25}"=""
"{D00AF076-46B6-4065-895F-704264684676}"=""
"{A51F7DAA-FA66-4705-872D-85C3D3E56540}"=""
"{222B5B20-158E-45E4-9EDD-0250FE6A99BB}"=""
"{402A39D7-366E-46CC-BBA4-530603C0F1D9}"=""
"{9C502E82-089A-4A08-B495-7B2D5EDF5086}"=""
"{1EEA40D7-5AC3-44FA-AB2F-08A4907D7DF7}"=""
"{B781E364-0DCA-42AC-806C-5F96BC97D7D4}"=""
"{ABE5AEB6-0A70-434D-A9BA-1004BA63CB5A}"=""
"{75E5BECE-899E-4CE0-B257-5F52CB0CD691}"=""
"{458D9C88-D132-4BF2-9EAB-E6B9A8F8E983}"=""
"{8E9FFCDA-63B4-4945-AD3E-9116A8450399}"=""
"{D1585C14-2ABA-4E49-8612-D25C6638B8BD}"=""
"{6015F127-5E0E-4529-9458-76B9D5608720}"=""
"{6D96682A-6ADA-4AB0-A5FA-3EBDEC81E0BE}"=""
"{D4F37CAD-FF02-42E4-A20D-FBC976BC6963}"=""
"{EA7E2BFF-646E-4E3B-8B3C-95CC4A11ADF7}"=""
"{CEFC6558-D036-4AC1-861D-485349076310}"=""
"{65BFE58D-344E-4407-8EC6-BE261A689D30}"=""
"{8FB844E2-D66F-4808-85F1-EE4D57897165}"=""
"{69DC5BEA-E85A-47FC-996B-89CDE3A86A87}"=""
"{06BAE206-26FF-48B7-9581-F96B52AFEF45}"=""
"{4DD5AFB4-BE7F-44D4-8237-83C886C31FC9}"=""
"{3B1C8213-B7F7-4D94-BC9A-4DE47107F33D}"=""
"{295686DC-56C1-4DD7-9994-D59D4DE35FC6}"=""
"{DDAB8E26-5BE9-420A-B226-52FFA5920995}"=""
"{CC49B87B-1078-4C86-B835-B7FEB7BEDC52}"=""
"{E625A532-909B-4D04-BE69-82198A672385}"=""
"{E3BDB919-B2F3-404C-A48B-FC15F6FDEC4F}"=""
"{15918537-1655-404C-87DB-6BFB79A14175}"=""
"{E1E9490E-6A24-4975-BD7C-ECB558B1AF5D}"=""
"{FCA680EF-D6B1-4D16-A553-C2EE381CF9C3}"=""
"{7E678A95-F72A-470B-AEF9-7D40330B0E1E}"=""
"{D34DC5F4-74B0-489E-8524-B4F0BBB3EAC9}"=""
"{1F9F7826-7B60-4EBC-AE8F-AAF93846426A}"=""
"{E94F7AA1-A746-4425-88F5-1ADB1A189A7B}"=""
"{73ADE2CE-3E58-42FB-9916-840966E0C070}"=""
"{A3C03872-029F-416D-AD30-83D6E43C662A}"=""
"{8EC3D462-1A3D-41C0-82F7-580E92416AA4}"=""
"{30D3D7FA-8497-4207-8817-B627B01E1C76}"=""
"{3E689D83-96F5-4656-86CD-728911B4CE92}"=""
"{3D123D84-0BEB-4724-A6A7-083E46355967}"=""
"{C7A1DC22-9E30-47A2-96AF-D06A38617D8A}"=""
"{FD382ADD-4818-4196-9F7D-CEF2C788361C}"=""
"{3D080766-0393-4BE9-A185-BA8DCA511A01}"=""
"{63B058C8-5E01-43F7-8F84-8D348A5D8545}"=""
"{F11682DD-9DDF-4735-9C2D-E9E37BBA7D0E}"=""
"{D6D577B7-CA27-412B-B1C3-0B83D8C8901B}"=""
"{D2563DAC-563A-4484-B1DE-9794BD014084}"=""
"{17BF5956-0B1C-4883-9F6A-4A949C3B7220}"=""
"{7486BC45-0A2F-4524-B98B-137C1206C382}"=""
"{BFA2ED00-12FA-4B6F-85A8-118F82FFD8C1}"=""
"{518638FC-1A18-4331-9EF2-D25D963FE5AD}"=""
"{0CB9ED8A-5C46-4566-A5BF-E8E3AC68470D}"=""
"{98F1E659-4ED7-4D35-8990-FA7DB209115E}"=""
"{82942194-8BDF-42C2-9D42-5BDC39E3E844}"=""
"{CBC2E9EB-9C66-4CB9-9837-1EA1DD8B50F7}"=""
"{F25BA511-1A4F-4D8F-ABCC-48BE2CF3600B}"=""
"{0259914F-D996-4F8F-B160-331E7B1C57C3}"=""
"{EC24CA95-FC2E-42AE-8398-EE25DA865237}"=""
"{3EDDE910-4912-4BEE-BADC-823D9D81D61B}"=""
"{0FD5B13F-B360-4C6E-A827-7380EEC4EFC8}"=""
"{3114D3DF-6328-467C-972B-F70CD680DA31}"=""
"{5C1D5FD1-91AE-4FC1-A9CC-2171EFD49E6A}"=""
"{C22D3A57-C9CA-4E94-94FC-915DE8E4B193}"=""
"{1D12F88D-7A70-4324-8B1D-D9A6AF6A3759}"=""
"{D7F0A766-B3F0-4273-B475-30759D80ABFB}"=""
"{B6C4AD45-4F40-44F6-A0C8-75276A011E10}"=""
"{705F8F9A-17A5-439C-BC04-17C5D3E87028}"=""
"{FB26B4E9-3FB6-4AF4-B8B7-63D242E37305}"=""
"{C7E8E49E-6747-4509-A570-8D87CC2FFB94}"=""
"{77A2FF27-E687-4217-8E8E-DA7DFD4BE6C7}"=""
"{170B6794-60BD-4DCA-BA47-E91581578806}"=""
"{D632CFC5-98A3-48CC-B9A0-0CF98CA403DB}"=""
"{76B63363-2EC5-44D9-B219-E8858B0C0EE8}"=""
"{72891A6D-5FB4-4624-BF03-008D13232D95}"=""
"{638CAC26-EA31-4962-A760-F608F2EE9BFA}"=""
"{29CB29A4-3A76-4835-B9CC-AFE17A135009}"=""
"{0CF2C3D5-5442-4AAB-B05B-163DD034C816}"=""
"{993B6731-88B9-4443-A9F0-B124172E68FB}"=""
"{83F674D7-4763-476A-BDBB-2C134E37E6AB}"=""
"{B455DEB3-5D1E-4E72-8678-776AC7580DB8}"=""
"{C84A5CE0-8D55-453A-9AD4-60AA278C4DE1}"=""
"{509B2A66-E315-4CF6-BAEB-637C0D71E06D}"=""
"{0CF9A185-D5A0-4571-B334-8F0067009879}"=""
"{C300C6C3-F30F-4A28-B581-812A6FE3516D}"=""
"{709673C0-BB28-4620-9AB5-28F86DED9554}"=""
"{6FCC0240-3671-494B-A67D-D0D584C736D5}"=""
"{A8B9BCD6-FB02-4785-A773-5A72FFFF37AF}"=""
"{32203E88-D345-4F23-9173-08DC73070025}"=""
"{B78E188F-B121-406E-90C7-0890932E3AAD}"=""
"{C40225FB-0D59-4003-9C06-D64F94DC3990}"=""
"{8CA58ABD-EC59-430C-910C-DC706D89E23E}"=""
"{7551E234-0E4F-41D9-967A-EA405F300832}"=""
"{6F11C730-8A9A-4C28-AC82-BA8E7A4067A4}"=""
"{995EAF0B-F8C2-4D0A-80AA-F39851AB9F0B}"=""
"{043658A8-9CAD-4B2D-BDFF-48F725A4A19C}"=""
"{5C835DE7-CDAB-4FFE-BF9E-91BDEFA015AC}"=""
"{1160EF19-49E7-40B5-B77D-AAB4622DB8E7}"=""
"{542F6DD5-46B5-4F33-8119-4D31D0D1F218}"=""
"{2E270CFA-485B-4044-8BC2-D277A6656AD3}"=""
"{7BAB0431-52EA-4EA5-968A-018B9E0FEEF1}"=""
"{822B01AE-9046-48A7-9E62-91DB77054680}"=""
"{36DDD261-A3ED-4578-B5B8-FF880A4BE659}"=""
"{F869C6DE-E382-4D7A-A484-BA1FCCE30A6F}"=""
"{24954EEF-10CB-4B84-8DD9-2D1175127696}"=""
"{E4BF8F86-F86E-43BA-BCBC-F6E28B4A3AB1}"=""
"{264A30E1-2C96-4F6A-9B50-5F65ADDF82C1}"=""
"{0037E1F6-8360-417F-9118-594096EA8B34}"=""
"{C95323BC-9420-4D0E-9410-FC2BB888A904}"=""
"{9DE2D630-0DCB-477A-AD98-9B869DFAE86C}"=""
"{C4DBC251-33F8-4962-96A2-318CA1229ECB}"=""
"{42FC4791-A5DA-4B71-8FF2-378FF82E7DB4}"=""
"{EF608DCC-163D-4540-93A0-819B667829F6}"=""
"{D654EFC8-BFA9-43C4-8B90-8588DE41B2DE}"=""
"{1BD61679-9E25-496C-BC2F-D1F82ECA96DC}"=""
"{A71DC2EE-33D2-4446-BB9B-E38D3826B1BD}"=""
"{31A5974A-6B32-47FB-9C05-9CEF7385CD71}"=""
"{029A6286-116D-45F4-BB0F-3240F22EA9AD}"=""
"{01481730-1CFD-4ECD-8087-AED69B6A13B4}"=""
"{387AC99A-B120-4B42-8207-9C936EE3D96F}"=""
"{89286088-D542-4828-929D-691BD0F990E2}"=""
"{FB18DE81-94AD-43FA-8148-DBF8841C4362}"=""
"{D9D11012-3BD7-4C6A-87F5-2653F462AA57}"=""
"{1636EEE6-9FEF-432C-8D79-6747D0C50BB9}"=""
"{017EDE95-675F-4136-944B-92DA0F712A48}"=""
"{07A39DA4-90A0-42CD-A5C8-A6E5B448B947}"=""
"{014F28B2-458F-4B09-AFC6-5944A999D189}"=""
"{F9D995EC-E247-461A-893E-5DCE6EA2FBBA}"=""
"{2BB500F4-71B0-4EC3-9417-163A2A595647}"=""
"{1DB46AAF-A108-4255-8ACA-1D39EDF1FFA0}"=""
"{6D326C14-6CFC-4786-AB82-BB9BCD8614E6}"=""
"{95CBD86D-779E-4670-B736-D560A55528AA}"=""
"{932E6A0B-8745-43EA-B2E3-93208F66F0E2}"=""
"{F185F105-3870-45EA-A8A7-B79361B533E5}"=""
"{F336EDBC-D8CA-4AB6-8F1F-DEBBBE1E016F}"=""
"{E4A7E7E1-6CD4-45E5-B581-4D4DE447CBB3}"=""
"{A8C486C4-F524-4169-9C03-74DA7EB48A3B}"=""
"{CBD629B9-5475-4221-B836-286FC96817CF}"=""
"{F20863E2-7FCC-4F54-91D0-DF0181107C85}"=""
"{39D7B8D8-1549-482C-B3B2-3E3F277F45D7}"=""
"{F316B5E7-042A-43BC-A7B8-61E0BB81CE79}"=""
"{714BCFE7-A029-4926-B260-668FE74CB506}"=""
"{B8602342-EB2E-48FA-ADB3-90258B6B5C91}"=""
"{16DDBFFE-CCF5-4BE5-B53A-4A309EC89F35}"=""
"{CBFB1108-9B58-422B-A875-61A97B8D7E55}"=""
"{610ED25C-31F7-4CD5-BB9D-50AAB96AE241}"=""
"{078AC8D2-DA34-4E59-B150-E3F4B27A67D9}"=""
"{FFF2B4F7-F3CD-4827-89DF-07EE94046EA3}"=""
"{D69FC689-5E5A-4ADD-96E9-CF753CC3D247}"=""
"{4ACB5421-86D9-4C29-BFC4-77C61FE265CE}"=""
"{3103B5CB-2AE2-401A-A901-163C1006B8FA}"=""
"{FB36D7D8-5D41-4778-A8D5-DC62358EB0CE}"=""
"{282C81C8-D1B2-48E7-9D2E-B9205E143BCE}"=""
"{9AE5ABFE-E3D0-43EE-8FBF-7B5F7584F3C3}"=""
"{34C431F5-5C49-4A0D-ABBB-015D5E4F6EC4}"=""
"{75F81B0E-E6FC-4E53-95FC-1DBF6A91792A}"=""
"{D0407D16-C654-4BF2-BC6D-5BB9CCAF1E8A}"=""
"{EE927D34-C1C5-4695-80DC-AA3117EB65B5}"=""
"{EEAD2316-3A07-4342-91F8-CBE12B840D86}"=""
"{BB8172C1-4C95-4258-8DD4-388F1539E3FD}"=""
"{A7C8BDDE-1CA4-4D53-B817-F4AA25CC181E}"=""
"{E13832B0-BC7C-4E53-A566-8959CB436D79}"=""
"{9B712324-EEBE-46C0-ADA9-1B1ED8A65DD9}"=""
"{8F8FAAD3-D058-464D-8301-A47A1CF18DF3}"=""
"{0D49A560-ABB3-4F54-A3EB-949907A657F5}"=""
"{E0DECB3A-752F-49E5-8A2A-CA910CE9F897}"=""
"{EB780CF3-A3F9-4CD2-AD47-90F10E550ACA}"=""
"{297334A9-AF36-442E-B2B3-B57B2E127AB6}"=""
"{F65F0A15-AE2E-4195-9029-C319D1613E5D}"=""
"{BF8C76CA-3A9F-459A-9038-D70FC2B7C64C}"=""
"{65FA35E0-488C-4023-8FDE-1C6B09575F4D}"=""
"{5655026C-CC10-4163-A886-CF8A8110273D}"=""
"{3215573B-4F89-419B-A332-729E775D5DBE}"=""
"{DDBC8181-99AD-4F6E-9A70-C5FBB6A812A7}"=""
"{B81DCAE1-AC05-47E9-8C28-6F95B61B4A12}"=""
"{02E06B4F-330F-4325-A260-09C1C11DCD83}"=""
"{D0924C1E-DA00-4BF4-8572-19EB6C6E5607}"=""
"{44F43B37-01B8-4C58-BC29-4AB31B540F4E}"=""
"{0583670F-7DB4-49FB-AA3D-9D69ACFDEDCA}"=""
"{E13E5545-5D38-4A57-AC3D-FA84ACABBD46}"=""
"{7ACAF516-DF9F-4EB9-B549-48C9C6DFECD9}"=""
"{F04C826B-F55C-45AE-B31E-60AEB6003FE9}"=""
"{EEF0BBA3-032B-4745-BC40-968D071AA113}"=""
"{BF7FC9B9-5621-4BCA-B4D1-BE5D89C701C5}"=""
"{BDDD7EA4-FDA5-484A-B020-4BC1FE7A9468}"=""
"{232948B2-BB78-4848-8328-A6EA1CCB4DB6}"=""
"{A2331963-6A8F-406E-9BAC-6CFBCC0B7CC5}"=""
"{84815D72-8390-4A27-A4DA-36335821DF6A}"=""
"{767A3322-A7C7-4C4E-8846-585597927825}"=""
"{C849FCC7-36CA-420F-B32A-77278B922FCC}"=""
"{5D5F4E85-8D16-471F-A641-8CAC5414E31E}"=""
"{B22037B4-372E-4084-BECE-C0849B7405C6}"=""
"{38D94292-A86B-4A8E-B5B5-77FD0B805D91}"=""
"{B5AFE316-E8A3-48C8-B8FD-2A1B817E9D74}"=""
"{6A4EE1F3-385D-4999-B45F-9FE5F0A7EA10}"=""
"{B51CCD1E-FEA3-4C4F-95E4-74B4C8F38F18}"=""
"{5622F635-5903-441A-9287-EDC554DFF9FF}"=""
"{23B56F52-97D4-415D-88C0-4D86235DDA58}"=""
"{2ED324BF-0303-47B0-9D6F-DAB5A4A066CA}"=""
"{BEC50DA4-DDA4-4E04-9825-6E8D01077D4E}"=""
"{319E8733-39CC-4D37-BCCE-9AE7D1CF2332}"=""
"{123D4663-8DAF-449A-9021-52A368C4CA82}"=""
"{DA016435-FB6C-4B25-B537-D5901BC2FB9B}"=""
"{C198C5A6-5370-4777-B585-E88E813C4DC0}"=""
"{972EF1F2-99D7-48B6-9E3E-C82DF4326144}"=""
"{B0B2C765-9804-429B-8179-7D80C832BF12}"=""
"{DABFEF9B-0969-4DA4-BD0C-584CCA281908}"=""
"{55881665-74A7-47D4-9752-F413F6E826CA}"=""
"{FFC94356-8019-4900-8915-709A9A5B196D}"=""
"{B5D3B862-FFA4-4615-B90F-C2EBC94A25C9}"=""
"{AB7F0E69-7F98-4A47-96DA-393D600A7B06}"=""
"{F8A38127-CCC4-4F02-BC62-87029B084FF7}"=""
"{A245C69A-0884-4FF0-9C1F-D5536ABF3B1B}"=""
"{86E51E4B-92D6-4FBC-8935-C63D303CB549}"=""
"{3B0842D5-1886-4A3D-AC06-2D82DC17A084}"=""
"{980AB470-4972-4E85-84C3-497BA909A370}"=""
"{3F780B71-815A-4AC3-BB28-05B5F28943D9}"=""
"{731EE7B0-D2E4-4995-AD18-6C2246C29E8C}"=""
"{76B4EA6A-E9F2-4A55-9189-9C57D212C264}"=""
"{7D4904F0-9D91-4AD6-B3CA-F173C1A0E249}"=""
"{DB257BA8-6553-4FDD-B94C-CCE199208E9F}"=""
"{2FED339E-030F-4616-9802-AE58965E3A94}"=""
"{18CA2D95-1F3D-45CD-BE1A-27DD1E307E31}"=""
"{B3D891BC-CCD1-4342-9730-A4EAE2C359F5}"=""
"{0642EFD5-0011-42F9-BC45-9BAFACAD6074}"=""
"{CBBF36C5-E199-4D0D-87CB-DB54ADCF6C74}"=""
"{ABF9E7F6-FA40-4FE4-ADFC-42B5C76C65C2}"=""
"{178DF9A5-986A-411E-A758-097BF5F97673}"=""
"{CF2873E7-3616-4BF8-86EB-16F4FEFEAE0E}"=""
"{3527620E-B736-4DD5-973A-88C2772194D9}"=""
"{041A6F11-53B0-438F-9C8E-0F0602550B47}"=""
"{E7791E0D-FFEC-4FE8-B63D-F14B6AB7FC00}"=""
"{132CD568-8018-4B1D-8344-53C555A2C6B0}"=""
"{B9447026-AA3D-48F4-B2B0-BD137DD76995}"=""
"{ADC01810-E4DD-4485-B7D7-843E0376A78B}"=""
"{2F715E3C-9923-475E-8991-1D16316E2A40}"=""
"{7FB7CEA6-6667-406B-A814-CACCB54A9CBF}"=""
"{353DC48A-0919-4EFD-8A77-84F2784643A3}"=""
"{E8EAD259-50B1-484E-B802-F6088E725F27}"=""
"{0318CB3A-EF93-4F48-8B44-83F2838BD5FA}"=""
"{36E0525E-5F52-40FA-A0A0-A94B7EB3C642}"=""
"{2AA3BDE6-4800-47AC-A8D9-D67F73E5DCEC}"=""
"{CCA0E7A8-3A21-4014-850E-93570535B10F}"=""
"{79D3B488-FC33-4D6E-84A9-0564302F943B}"=""
"{84EAD7F4-A0DB-4258-9CBA-CC373C49E558}"=""
"{BBF56C2B-F30E-4FD2-8E8B-B0B7F88B7E15}"=""
"{FE61FA7C-8D13-4420-8CBF-8290473B8650}"=""
"{64A108C6-B84D-4C50-B422-00D0D4B86166}"=""
"{B48D5D0D-D2FE-40F4-B311-0A53D5E92106}"=""
"{D544D1CE-541F-4713-8BB4-2966F3B72FF3}"=""
"{6FC15944-1B3C-492C-89D7-1FDA1C2816D7}"=""
"{231CC8FE-56E6-41CA-BE91-3574A76368A3}"=""
"{559CBD6C-8DD2-4F5D-80F4-C1AE6D89468C}"=""
"{A298946E-DE8F-4E52-88DB-D2837386F047}"=""
"{022857EE-A480-4769-8C87-DA4BA5B34398}"=""
"{904C1FF2-9B89-45AC-A44E-D4E92CDC9BD5}"=""
"{F4E0CE9B-6379-46B9-A45F-7E1450CF9D4C}"=""
"{3648E421-5A77-4561-A985-ED2DC6779D47}"=""
"{2A722251-9384-4D92-8F52-D6D0F8699604}"=""
"{CB7B6195-C2F5-44D8-8F71-B01B7A5EC5C1}"=""
"{6432F0D0-16F3-49BA-9FBB-16398A28B5B6}"=""
"{D4CA002C-F519-4E93-9E04-74EABECDDF12}"=""
"{77E8AD43-E58D-4155-B24E-E3AC30470E84}"=""
"{2560A169-ABC3-43BF-BA87-686E743E81EE}"=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Other Running Processes ------------------------
.
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files (x86)\ASUS\GPU Boost Driver\GpuBoostServer.exe
c:\program files (x86)\ASUS\TurboV EVO\TurboVHELP.exe
.
**************************************************************************
.
Completion time: 2012-08-20 15:35:57 - machine was rebooted
ComboFix-quarantined-files.txt 2012-08-20 19:35
.
Pre-Run: 416,024,539,136 bytes free
Post-Run: 415,890,526,208 bytes free
.
- - End Of File - - D3266248BC5D678BCDA0C73133D59F64

[screen317]

Hi,

Run TFC by OldTimer to clear temporary files:

• Please download TFC from here and save it to your desktop.
  
• Close any open programs and Internet browsers.
  
• Double click TFC.exe to run it and once it opens click on the Start button on the lower left of the program to allow it to begin cleaning.
  
• Please be patient as clearing out temp files may take a while.
  
• Once it completes you may be prompted to restart your computer, please do so.
  
• Once it's finished you may delete TFC.exe from your Desktop or save it for later use for the cleaning of temporary files.

• Download the file TDSSKiller.zip and extract it into a folder on the infected PC.
  
• Execute the file TDSSKiller.exe by double-clicking on it.
  
• Wait for the scan and disinfection process to be over.
  
• When its work is over, the utility prompts for a reboot to complete the disinfection.

By default, the utility outputs runtime log into the system disk root directory (the disk where the operating system is installed, C:\ as a rule).
The log is like UtilityName.Version_Date_Time_log.txt.
for example, C:\TDSSKiller.2.2.0_20.12.2009_15.31.43_log.txt.

Please post that log here.



Next, please run a free online scan with the ESET Online Scanner
Note: You will need to use Internet Explorer for this scan.

• Tick the box next to YES, I accept the Terms of Use.
  
• Click Start
  
• When asked, allow the ActiveX control to install
  
• Click Start
  
• Make sure that the options Remove found threats and the option Scan unwanted applications is checked
  
• Click Scan
  Wait for the scan to finish
  
• Export the threats found (if any), and post them here.

Next, please download AdwCleaner by Xplode onto your Desktop.

• Double click on AdwCleaner.exe to run the tool.
  
• Click on Search.
  
• A logfile will automatically open after the scan has finished.
  
• Please post the content of that logfile in your reply.
  
• You can find the logfile at C:\AdwCleaner[Rn].txt as well - n is the order number.

Next, download my Security Check from here or here.

• Save it to your Desktop.
  
• Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  
• A Notepad document should open automatically called checkup.txt; please post the contents of that document.

Let me know how things are running now and what issues remain.

-screen317

[Burningtreefarm]

The TDSSKILLER log

16:20:17.0730 4552 TDSS rootkit removing tool 2.8.7.0 Aug 20 2012 17:30:03
16:20:18.0235 4552 ============================================================
16:20:18.0235 4552 Current date / time: 2012/08/20 16:20:18.0235
16:20:18.0235 4552 SystemInfo:
16:20:18.0235 4552
16:20:18.0235 4552 OS Version: 6.1.7601 ServicePack: 1.0
16:20:18.0235 4552 Product type: Workstation
16:20:18.0235 4552 ComputerName: BURNINGTREEFARM
16:20:18.0235 4552 UserName: Tim
16:20:18.0235 4552 Windows directory: C:\Windows
16:20:18.0235 4552 System windows directory: C:\Windows
16:20:18.0235 4552 Running under WOW64
16:20:18.0235 4552 Processor architecture: Intel x64
16:20:18.0235 4552 Number of processors: 6
16:20:18.0235 4552 Page size: 0x1000
16:20:18.0235 4552 Boot type: Normal boot
16:20:18.0235 4552 ============================================================
16:20:19.0283 4552 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:20:19.0318 4552 ============================================================
16:20:19.0318 4552 \Device\Harddisk0\DR0:
16:20:19.0318 4552 MBR partitions:
16:20:19.0318 4552 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
16:20:19.0318 4552 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x3A353000
16:20:19.0318 4552 ============================================================
16:20:19.0345 4552 C: <-> \Device\Harddisk0\DR0\Partition2
16:20:19.0345 4552 ============================================================
16:20:19.0345 4552 Initialize success
16:20:19.0345 4552 ============================================================
16:20:23.0810 4356 ============================================================
16:20:23.0810 4356 Scan started
16:20:23.0810 4356 Mode: Manual;
16:20:23.0810 4356 ============================================================
16:20:24.0955 4356 ================ Scan system memory ========================
16:20:24.0955 4356 System memory - ok
16:20:24.0955 4356 ================ Scan services =============================
16:20:25.0088 4356 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
16:20:25.0090 4356 1394ohci - ok
16:20:25.0118 4356 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
16:20:25.0120 4356 ACPI - ok
16:20:25.0133 4356 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
16:20:25.0135 4356 AcpiPmi - ok
16:20:25.0155 4356 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
16:20:25.0160 4356 adp94xx - ok
16:20:25.0170 4356 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
16:20:25.0173 4356 adpahci - ok
16:20:25.0185 4356 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
16:20:25.0188 4356 adpu320 - ok
16:20:25.0208 4356 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
16:20:25.0208 4356 AeLookupSvc - ok
16:20:25.0248 4356 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
16:20:25.0250 4356 AFD - ok
16:20:25.0265 4356 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
16:20:25.0265 4356 agp440 - ok
16:20:25.0275 4356 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
16:20:25.0278 4356 ALG - ok
16:20:25.0293 4356 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
16:20:25.0293 4356 aliide - ok
16:20:25.0320 4356 [ 9C616BA191B80F5CD1A1B9553E107100 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
16:20:25.0323 4356 AMD External Events Utility - ok
16:20:25.0368 4356 AMD FUEL Service - ok
16:20:25.0370 4356 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
16:20:25.0373 4356 amdide - ok
16:20:25.0388 4356 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
16:20:25.0388 4356 amdiox64 - ok
16:20:25.0413 4356 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
16:20:25.0413 4356 AmdK8 - ok
16:20:25.0548 4356 [ 5165E83751B8FF40E5E4925996FCC506 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
16:20:25.0668 4356 amdkmdag - ok
16:20:25.0683 4356 [ 86AB3CF484260C4318F3A6E8B035F422 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
16:20:25.0683 4356 amdkmdap - ok
16:20:25.0703 4356 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
16:20:25.0703 4356 AmdPPM - ok
16:20:25.0738 4356 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
16:20:25.0740 4356 amdsata - ok
16:20:25.0763 4356 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
16:20:25.0763 4356 amdsbs - ok
16:20:25.0773 4356 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
16:20:25.0773 4356 amdxata - ok
16:20:25.0805 4356 [ 5B25D1A753CC3A3EDB909BB759AC1098 ] AODDriver4.01 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
16:20:25.0805 4356 AODDriver4.01 - ok
16:20:25.0823 4356 [ 5B25D1A753CC3A3EDB909BB759AC1098 ] AODDriver4.1 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
16:20:25.0823 4356 AODDriver4.1 - ok
16:20:25.0840 4356 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
16:20:25.0840 4356 AppID - ok
16:20:25.0858 4356 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
16:20:25.0870 4356 AppIDSvc - ok
16:20:25.0885 4356 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
16:20:25.0885 4356 Appinfo - ok
16:20:25.0985 4356 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:20:25.0985 4356 Apple Mobile Device - ok
16:20:26.0010 4356 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
16:20:26.0013 4356 arc - ok
16:20:26.0023 4356 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
16:20:26.0023 4356 arcsas - ok
16:20:26.0103 4356 [ FEF9DD9EA587F8886ADE43C1BEFBDAFE ] AsIO C:\Windows\syswow64\drivers\AsIO.sys
16:20:26.0108 4356 AsIO - ok
16:20:26.0145 4356 [ 0AA7A996792FB0287B33A57A8093AE44 ] asmthub3 C:\Windows\system32\DRIVERS\asmthub3.sys
16:20:26.0145 4356 asmthub3 - ok
16:20:26.0178 4356 [ 125DC3ABF5BFCCFE82AD17D078E0B9EC ] asmtxhci C:\Windows\system32\DRIVERS\asmtxhci.sys
16:20:26.0178 4356 asmtxhci - ok
16:20:26.0250 4356 [ 8C1FD73CC27EDD8D3344C632571C224C ] AsSysCtrlService C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe
16:20:26.0263 4356 AsSysCtrlService - ok
16:20:26.0295 4356 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
16:20:26.0295 4356 AsyncMac - ok
16:20:26.0303 4356 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
16:20:26.0303 4356 atapi - ok
16:20:26.0343 4356 [ 24464B908E143D2561E9E452FEE97309 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
16:20:26.0345 4356 AtiHDAudioService - ok
16:20:26.0358 4356 [ C07A040D6B5A42DD41EE386CF90974C8 ] AtiPcie C:\Windows\system32\DRIVERS\AtiPcie.sys
16:20:26.0360 4356 AtiPcie - ok
16:20:26.0403 4356 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:20:26.0408 4356 AudioEndpointBuilder - ok
16:20:26.0420 4356 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
16:20:26.0423 4356 AudioSrv - ok
16:20:26.0438 4356 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
16:20:26.0440 4356 AxInstSV - ok
16:20:26.0468 4356 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
16:20:26.0473 4356 b06bdrv - ok
16:20:26.0500 4356 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
16:20:26.0503 4356 b57nd60a - ok
16:20:26.0558 4356 [ 328E794278CC30CA7C06E346A18B1ABC ] BCUService C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe
16:20:26.0573 4356 BCUService - ok
16:20:26.0590 4356 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
16:20:26.0590 4356 BDESVC - ok
16:20:26.0605 4356 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
16:20:26.0608 4356 Beep - ok
16:20:26.0635 4356 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
16:20:26.0640 4356 BFE - ok
16:20:26.0823 4356 [ E99F59342171101EE2446D0CD1A60A8D ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.2.1\Definitions\BASHDefs\20120811.003\BHDrvx64.sys
16:20:26.0830 4356 BHDrvx64 - ok
16:20:26.0863 4356 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
16:20:26.0870 4356 BITS - ok
16:20:26.0883 4356 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
16:20:26.0883 4356 blbdrive - ok
16:20:26.0925 4356 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:20:26.0933 4356 Bonjour Service - ok
16:20:26.0955 4356 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
16:20:26.0958 4356 bowser - ok
16:20:26.0963 4356 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
16:20:26.0965 4356 BrFiltLo - ok
16:20:26.0968 4356 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
16:20:26.0968 4356 BrFiltUp - ok
16:20:26.0978 4356 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
16:20:26.0980 4356 BridgeMP - ok
16:20:27.0005 4356 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
16:20:27.0008 4356 Browser - ok
16:20:27.0030 4356 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
16:20:27.0033 4356 Brserid - ok
16:20:27.0045 4356 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
16:20:27.0045 4356 BrSerWdm - ok
16:20:27.0063 4356 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
16:20:27.0063 4356 BrUsbMdm - ok
16:20:27.0068 4356 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
16:20:27.0068 4356 BrUsbSer - ok
16:20:27.0083 4356 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
16:20:27.0085 4356 BTHMODEM - ok
16:20:27.0113 4356 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
16:20:27.0115 4356 bthserv - ok
16:20:27.0130 4356 catchme - ok
16:20:27.0150 4356 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
16:20:27.0153 4356 cdfs - ok
16:20:27.0168 4356 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
16:20:27.0170 4356 cdrom - ok
16:20:27.0183 4356 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
16:20:27.0185 4356 CertPropSvc - ok
16:20:27.0195 4356 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
16:20:27.0195 4356 circlass - ok
16:20:27.0210 4356 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
16:20:27.0215 4356 CLFS - ok
16:20:27.0283 4356 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:20:27.0285 4356 clr_optimization_v2.0.50727_32 - ok
16:20:27.0323 4356 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:20:27.0325 4356 clr_optimization_v2.0.50727_64 - ok
16:20:27.0370 4356 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:20:27.0373 4356 clr_optimization_v4.0.30319_32 - ok
16:20:27.0393 4356 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:20:27.0395 4356 clr_optimization_v4.0.30319_64 - ok
16:20:27.0420 4356 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
16:20:27.0420 4356 CmBatt - ok
16:20:27.0423 4356 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
16:20:27.0423 4356 cmdide - ok
16:20:27.0448 4356 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
16:20:27.0453 4356 CNG - ok
16:20:27.0460 4356 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
16:20:27.0460 4356 Compbatt - ok
16:20:27.0475 4356 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
16:20:27.0478 4356 CompositeBus - ok
16:20:27.0495 4356 COMSysApp - ok
16:20:27.0518 4356 [ C08063F052308B6F5882482615387F30 ] cpuz135 C:\Windows\system32\drivers\cpuz135_x64.sys
16:20:27.0518 4356 cpuz135 - ok
16:20:27.0528 4356 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
16:20:27.0528 4356 crcdisk - ok
16:20:27.0560 4356 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
16:20:27.0563 4356 CryptSvc - ok
16:20:27.0590 4356 [ 7AF9DAC504FBD047CBC3E64AE52C92BF ] dc3d C:\Windows\system32\DRIVERS\dc3d.sys
16:20:27.0593 4356 dc3d - ok
16:20:27.0625 4356 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
16:20:27.0628 4356 DcomLaunch - ok
16:20:27.0658 4356 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
16:20:27.0660 4356 defragsvc - ok
16:20:27.0685 4356 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
16:20:27.0685 4356 DfsC - ok
16:20:27.0710 4356 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
16:20:27.0713 4356 Dhcp - ok
16:20:27.0720 4356 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
16:20:27.0720 4356 discache - ok
16:20:27.0750 4356 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
16:20:27.0750 4356 Disk - ok
16:20:27.0768 4356 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
16:20:27.0768 4356 Dnscache - ok
16:20:27.0793 4356 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
16:20:27.0805 4356 dot3svc - ok
16:20:27.0818 4356 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
16:20:27.0820 4356 DPS - ok
16:20:27.0850 4356 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
16:20:27.0850 4356 drmkaud - ok
16:20:27.0880 4356 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
16:20:27.0883 4356 DXGKrnl - ok
16:20:27.0890 4356 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
16:20:27.0893 4356 EapHost - ok
16:20:27.0938 4356 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
16:20:27.0980 4356 ebdrv - ok
16:20:28.0033 4356 [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
16:20:28.0033 4356 eeCtrl - ok
16:20:28.0055 4356 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
16:20:28.0055 4356 EFS - ok
16:20:28.0108 4356 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
16:20:28.0115 4356 ehRecvr - ok
16:20:28.0135 4356 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
16:20:28.0135 4356 ehSched - ok
16:20:28.0175 4356 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
16:20:28.0178 4356 elxstor - ok
16:20:28.0228 4356 [ C5BCCB378D0A896304A3E71BE7215983 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
16:20:28.0230 4356 EraserUtilRebootDrv - ok
16:20:28.0233 4356 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
16:20:28.0233 4356 ErrDev - ok
16:20:28.0258 4356 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
16:20:28.0263 4356 EventSystem - ok
16:20:28.0288 4356 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
16:20:28.0290 4356 exfat - ok
16:20:28.0298 4356 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
16:20:28.0300 4356 fastfat - ok
16:20:28.0338 4356 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
16:20:28.0343 4356 Fax - ok
16:20:28.0355 4356 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
16:20:28.0355 4356 fdc - ok
16:20:28.0378 4356 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
16:20:28.0378 4356 fdPHost - ok
16:20:28.0388 4356 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
16:20:28.0388 4356 FDResPub - ok
16:20:28.0398 4356 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
16:20:28.0398 4356 FileInfo - ok
16:20:28.0410 4356 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
16:20:28.0410 4356 Filetrace - ok
16:20:28.0415 4356 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
16:20:28.0418 4356 flpydisk - ok
16:20:28.0428 4356 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
16:20:28.0430 4356 FltMgr - ok
16:20:28.0465 4356 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
16:20:28.0480 4356 FontCache - ok
16:20:28.0530 4356 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:20:28.0530 4356 FontCache3.0.0.0 - ok
16:20:28.0540 4356 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
16:20:28.0540 4356 FsDepends - ok
16:20:28.0570 4356 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
16:20:28.0573 4356 Fs_Rec - ok
16:20:28.0593 4356 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
16:20:28.0595 4356 fvevol - ok
16:20:28.0615 4356 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
16:20:28.0618 4356 gagp30kx - ok
16:20:28.0648 4356 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
16:20:28.0648 4356 GEARAspiWDM - ok
16:20:28.0678 4356 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
16:20:28.0683 4356 gpsvc - ok
16:20:28.0698 4356 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
16:20:28.0700 4356 hcw85cir - ok
16:20:28.0720 4356 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:20:28.0723 4356 HdAudAddService - ok
16:20:28.0748 4356 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
16:20:28.0750 4356 HDAudBus - ok
16:20:28.0758 4356 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
16:20:28.0758 4356 HidBatt - ok
16:20:28.0768 4356 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
16:20:28.0770 4356 HidBth - ok
16:20:28.0780 4356 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
16:20:28.0780 4356 HidIr - ok
16:20:28.0790 4356 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
16:20:28.0790 4356 hidserv - ok
16:20:28.0820 4356 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
16:20:28.0820 4356 HidUsb - ok
16:20:28.0848 4356 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
16:20:28.0850 4356 hkmsvc - ok
16:20:28.0860 4356 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:20:28.0863 4356 HomeGroupListener - ok
16:20:28.0888 4356 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:20:28.0888 4356 HomeGroupProvider - ok
16:20:28.0893 4356 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
16:20:28.0893 4356 HpSAMD - ok
16:20:28.0905 4356 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
16:20:28.0910 4356 HTTP - ok
16:20:28.0925 4356 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
16:20:28.0925 4356 hwpolicy - ok
16:20:28.0940 4356 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
16:20:28.0943 4356 i8042prt - ok
16:20:28.0970 4356 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
16:20:28.0973 4356 iaStorV - ok
16:20:29.0008 4356 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:20:29.0023 4356 idsvc - ok
16:20:29.0078 4356 [ CE0BF35C79E03BB89DA6B14FAC838605 ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.2.1\Definitions\IPSDefs\20120817.001\IDSvia64.sys
16:20:29.0080 4356 IDSVia64 - ok
16:20:29.0093 4356 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
16:20:29.0093 4356 iirsp - ok
16:20:29.0130 4356 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
16:20:29.0135 4356 IKEEXT - ok
16:20:29.0200 4356 [ EB5FA493A4B6EA290200AE39EBA2FBC6 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
16:20:29.0210 4356 IntcAzAudAddService - ok
16:20:29.0220 4356 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
16:20:29.0220 4356 intelide - ok
16:20:29.0235 4356 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\drivers\intelppm.sys
16:20:29.0235 4356 intelppm - ok
16:20:29.0250 4356 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
16:20:29.0263 4356 IPBusEnum - ok
16:20:29.0270 4356 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:20:29.0270 4356 IpFilterDriver - ok
16:20:29.0285 4356 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
16:20:29.0290 4356 iphlpsvc - ok
16:20:29.0303 4356 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
16:20:29.0305 4356 IPMIDRV - ok
16:20:29.0325 4356 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
16:20:29.0325 4356 IPNAT - ok
16:20:29.0363 4356 [ A9AB99EE7D39725EAFEC82732D2B3271 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
16:20:29.0370 4356 iPod Service - ok
16:20:29.0390 4356 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
16:20:29.0393 4356 IRENUM - ok
16:20:29.0395 4356 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
16:20:29.0395 4356 isapnp - ok
16:20:29.0425 4356 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
16:20:29.0428 4356 iScsiPrt - ok
16:20:29.0443 4356 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
16:20:29.0443 4356 kbdclass - ok
16:20:29.0460 4356 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
16:20:29.0460 4356 kbdhid - ok
16:20:29.0470 4356 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
16:20:29.0470 4356 KeyIso - ok
16:20:29.0490 4356 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
16:20:29.0493 4356 KSecDD - ok
16:20:29.0503 4356 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
16:20:29.0503 4356 KSecPkg - ok
16:20:29.0515 4356 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
16:20:29.0515 4356 ksthunk - ok
16:20:29.0543 4356 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
16:20:29.0548 4356 KtmRm - ok
16:20:29.0585 4356 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
16:20:29.0588 4356 LanmanServer - ok
16:20:29.0620 4356 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:20:29.0620 4356 LanmanWorkstation - ok
16:20:29.0648 4356 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
16:20:29.0650 4356 lltdio - ok
16:20:29.0678 4356 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
16:20:29.0680 4356 lltdsvc - ok
16:20:29.0690 4356 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
16:20:29.0693 4356 lmhosts - ok
16:20:29.0725 4356 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
16:20:29.0725 4356 LSI_FC - ok
16:20:29.0733 4356 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
16:20:29.0733 4356 LSI_SAS - ok
16:20:29.0745 4356 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
16:20:29.0745 4356 LSI_SAS2 - ok
16:20:29.0755 4356 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
16:20:29.0758 4356 LSI_SCSI - ok
16:20:29.0760 4356 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
16:20:29.0760 4356 luafv - ok
16:20:29.0800 4356 [ DC8490812A3B72811AE534F423B4C206 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
16:20:29.0803 4356 MBAMProtector - ok
16:20:29.0833 4356 [ 43683E970F008C93C9429EF428147A54 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
16:20:29.0838 4356 MBAMService - ok
16:20:29.0858 4356 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
16:20:29.0858 4356 Mcx2Svc - ok
16:20:29.0875 4356 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
16:20:29.0875 4356 megasas - ok
16:20:29.0895 4356 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
16:20:29.0898 4356 MegaSR - ok
16:20:29.0925 4356 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
16:20:29.0928 4356 MMCSS - ok
16:20:29.0933 4356 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
16:20:29.0933 4356 Modem - ok
16:20:29.0940 4356 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
16:20:29.0943 4356 monitor - ok
16:20:29.0948 4356 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
16:20:29.0950 4356 mouclass - ok
16:20:29.0960 4356 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
16:20:29.0963 4356 mouhid - ok
16:20:29.0968 4356 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
16:20:29.0968 4356 mountmgr - ok
16:20:29.0978 4356 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
16:20:29.0978 4356 mpio - ok
16:20:29.0993 4356 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
16:20:29.0993 4356 mpsdrv - ok
16:20:30.0013 4356 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
16:20:30.0020 4356 MpsSvc - ok
16:20:30.0030 4356 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
16:20:30.0033 4356 MRxDAV - ok
16:20:30.0058 4356 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
16:20:30.0060 4356 mrxsmb - ok
16:20:30.0073 4356 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:20:30.0075 4356 mrxsmb10 - ok
16:20:30.0095 4356 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:20:30.0095 4356 mrxsmb20 - ok
16:20:30.0108 4356 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
16:20:30.0110 4356 msahci - ok
16:20:30.0115 4356 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
16:20:30.0118 4356 msdsm - ok
16:20:30.0130 4356 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
16:20:30.0133 4356 MSDTC - ok
16:20:30.0150 4356 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
16:20:30.0150 4356 Msfs - ok
16:20:30.0163 4356 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
16:20:30.0163 4356 mshidkmdf - ok
16:20:30.0173 4356 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
16:20:30.0175 4356 msisadrv - ok
16:20:30.0203 4356 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
16:20:30.0213 4356 MSiSCSI - ok
16:20:30.0215 4356 msiserver - ok
16:20:30.0233 4356 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
16:20:30.0233 4356 MSKSSRV - ok
16:20:30.0235 4356 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
16:20:30.0235 4356 MSPCLOCK - ok
16:20:30.0245 4356 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
16:20:30.0245 4356 MSPQM - ok
16:20:30.0258 4356 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
16:20:30.0260 4356 MsRPC - ok
16:20:30.0273 4356 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
16:20:30.0275 4356 mssmbios - ok
16:20:30.0293 4356 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
16:20:30.0293 4356 MSTEE - ok
16:20:30.0298 4356 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
16:20:30.0298 4356 MTConfig - ok
16:20:30.0330 4356 [ 19B006B181E3875FD254F7B67ACF1E7C ] MTsensor C:\Windows\system32\DRIVERS\ASACPI.sys
16:20:30.0330 4356 MTsensor - ok
16:20:30.0340 4356 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
16:20:30.0340 4356 Mup - ok
16:20:30.0403 4356 [ E78A365CC3E0FBFC018A33DCE01909F8 ] N360 C:\Program Files (x86)\Norton 360\Engine\5.2.2.3\ccSvcHst.exe
16:20:30.0405 4356 N360 - ok
16:20:30.0433 4356 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
16:20:30.0438 4356 napagent - ok
16:20:30.0475 4356 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
16:20:30.0480 4356 NativeWifiP - ok
16:20:30.0535 4356 [ 8043D41F881D6ACE40B854AD6E32217F ] NAVENG C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.2.1\Definitions\VirusDefs\20120820.002\ENG64.SYS
16:20:30.0535 4356 NAVENG - ok
16:20:30.0573 4356 [ 9A9AB2FC45D701DAED465D14980F1305 ] NAVEX15 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.2.1\Definitions\VirusDefs\20120820.002\EX64.SYS
16:20:30.0580 4356 NAVEX15 - ok
16:20:30.0615 4356 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys
16:20:30.0620 4356 NDIS - ok
16:20:30.0633 4356 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
16:20:30.0635 4356 NdisCap - ok
16:20:30.0660 4356 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
16:20:30.0660 4356 NdisTapi - ok
16:20:30.0675 4356 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
16:20:30.0675 4356 Ndisuio - ok
16:20:30.0690 4356 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
16:20:30.0693 4356 NdisWan - ok
16:20:30.0700 4356 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
16:20:30.0703 4356 NDProxy - ok
16:20:30.0710 4356 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
16:20:30.0710 4356 NetBIOS - ok
16:20:30.0725 4356 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
16:20:30.0728 4356 NetBT - ok
16:20:30.0738 4356 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
16:20:30.0738 4356 Netlogon - ok
16:20:30.0768 4356 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
16:20:30.0770 4356 Netman - ok
16:20:30.0788 4356 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
16:20:30.0793 4356 netprofm - ok
16:20:30.0820 4356 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:20:30.0823 4356 NetTcpPortSharing - ok
16:20:30.0840 4356 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
16:20:30.0840 4356 nfrd960 - ok
16:20:30.0878 4356 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
16:20:30.0880 4356 NlaSvc - ok
16:20:30.0890 4356 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
16:20:30.0890 4356 Npfs - ok
16:20:30.0913 4356 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
16:20:30.0915 4356 nsi - ok
16:20:30.0923 4356 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
16:20:30.0923 4356 nsiproxy - ok
16:20:30.0960 4356 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
16:20:30.0985 4356 Ntfs - ok
16:20:31.0018 4356 [ 77EB11DA191D12D12E28D7BD8905C42C ] NuidFltr C:\Windows\system32\DRIVERS\NuidFltr.sys
16:20:31.0018 4356 NuidFltr - ok
16:20:31.0033 4356 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
16:20:31.0033 4356 Null - ok
16:20:31.0060 4356 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
16:20:31.0063 4356 nvraid - ok
16:20:31.0068 4356 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
16:20:31.0070 4356 nvstor - ok
16:20:31.0078 4356 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
16:20:31.0080 4356 nv_agp - ok
16:20:31.0158 4356 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
16:20:31.0173 4356 odserv - ok
16:20:31.0183 4356 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
16:20:31.0185 4356 ohci1394 - ok
16:20:31.0213 4356 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:20:31.0215 4356 ose - ok
16:20:31.0243 4356 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
16:20:31.0245 4356 p2pimsvc - ok
16:20:31.0270 4356 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
16:20:31.0273 4356 p2psvc - ok
16:20:31.0298 4356 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
16:20:31.0298 4356 Parport - ok
16:20:31.0320 4356 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
16:20:31.0320 4356 partmgr - ok
16:20:31.0333 4356 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
16:20:31.0335 4356 PcaSvc - ok
16:20:31.0343 4356 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
16:20:31.0343 4356 pci - ok
16:20:31.0353 4356 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
16:20:31.0353 4356 pciide - ok
16:20:31.0365 4356 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
16:20:31.0368 4356 pcmcia - ok
16:20:31.0378 4356 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
16:20:31.0378 4356 pcw - ok
16:20:31.0390 4356 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
16:20:31.0395 4356 PEAUTH - ok
16:20:31.0463 4356 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
16:20:31.0465 4356 PerfHost - ok
16:20:31.0503 4356 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
16:20:31.0543 4356 pla - ok
16:20:31.0580 4356 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
16:20:31.0585 4356 PlugPlay - ok
16:20:31.0643 4356 [ AE6C778717DE2F6B0C0B5335036D3363 ] PMBDeviceInfoProvider C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
16:20:31.0703 4356 PMBDeviceInfoProvider - ok
16:20:31.0715 4356 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
16:20:31.0715 4356 PNRPAutoReg - ok
16:20:31.0735 4356 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
16:20:31.0738 4356 PNRPsvc - ok
16:20:31.0768 4356 [ B8D8EC78B0F9ED8E220506181274F3D3 ] Point64 C:\Windows\system32\DRIVERS\point64.sys
16:20:31.0770 4356 Point64 - ok
16:20:31.0800 4356 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
16:20:31.0805 4356 PolicyAgent - ok
16:20:31.0830 4356 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
16:20:31.0831 4356 Power - ok
16:20:31.0861 4356 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
16:20:31.0864 4356 PptpMiniport - ok
16:20:31.0869 4356 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
16:20:31.0869 4356 Processor - ok
16:20:31.0884 4356 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
16:20:31.0886 4356 ProfSvc - ok
16:20:31.0896 4356 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
16:20:31.0896 4356 ProtectedStorage - ok
16:20:31.0914 4356 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
16:20:31.0914 4356 Psched - ok
16:20:31.0944 4356 [ 543A4EF0923BF70D126625B034EF25AF ] PSI_SVC_2 C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
16:20:31.0946 4356 PSI_SVC_2 - ok
16:20:31.0999 4356 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
16:20:32.0021 4356 ql2300 - ok
16:20:32.0036 4356 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
16:20:32.0039 4356 ql40xx - ok
16:20:32.0056 4356 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
16:20:32.0059 4356 QWAVE - ok
16:20:32.0076 4356 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
16:20:32.0076 4356 QWAVEdrv - ok
16:20:32.0089 4356 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
16:20:32.0089 4356 RasAcd - ok
16:20:32.0121 4356 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
16:20:32.0124 4356 RasAgileVpn - ok
16:20:32.0139 4356 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
16:20:32.0141 4356 RasAuto - ok
16:20:32.0151 4356 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
16:20:32.0151 4356 Rasl2tp - ok
16:20:32.0166 4356 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
16:20:32.0169 4356 RasMan - ok
16:20:32.0184 4356 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
16:20:32.0186 4356 RasPppoe - ok
16:20:32.0201 4356 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
16:20:32.0204 4356 RasSstp - ok
16:20:32.0224 4356 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
16:20:32.0226 4356 rdbss - ok
16:20:32.0241 4356 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
16:20:32.0241 4356 rdpbus - ok
16:20:32.0256 4356 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
16:20:32.0259 4356 RDPCDD - ok
16:20:32.0276 4356 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
16:20:32.0279 4356 RDPENCDD - ok
16:20:32.0289 4356 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
16:20:32.0289 4356 RDPREFMP - ok
16:20:32.0311 4356 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
16:20:32.0314 4356 RDPWD - ok
16:20:32.0321 4356 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
16:20:32.0324 4356 rdyboost - ok
16:20:32.0346 4356 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
16:20:32.0346 4356 RemoteAccess - ok
16:20:32.0371 4356 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
16:20:32.0374 4356 RemoteRegistry - ok
16:20:32.0384 4356 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
16:20:32.0384 4356 RpcEptMapper - ok
16:20:32.0404 4356 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
16:20:32.0404 4356 RpcLocator - ok
16:20:32.0424 4356 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
16:20:32.0426 4356 RpcSs - ok
16:20:32.0436 4356 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
16:20:32.0436 4356 rspndr - ok
16:20:32.0471 4356 [ EE082E06A82FF630351D1E0EBBD3D8D0 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
16:20:32.0474 4356 RTL8167 - ok
16:20:32.0491 4356 [ E16B7C030A05EF649B18FAB0A93D871F ] RtNdPt60 C:\Windows\system32\DRIVERS\RtNdPt60.sys
16:20:32.0494 4356 RtNdPt60 - ok
16:20:32.0499 4356 [ 1DE78F5008120CD79B34C12394DCD493 ] RTTEAMPT C:\Windows\system32\DRIVERS\RtTeam60.sys
16:20:32.0499 4356 RTTEAMPT - ok
16:20:32.0509 4356 [ B1018AA1B5735F5FA89FD4DADF4BEA7A ] RTVLANPT C:\Windows\system32\DRIVERS\RtVlan60.sys
16:20:32.0511 4356 RTVLANPT - ok
16:20:32.0621 4356 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
16:20:32.0621 4356 SamSs - ok
16:20:32.0646 4356 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
16:20:32.0649 4356 sbp2port - ok
16:20:32.0669 4356 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
16:20:32.0671 4356 SCardSvr - ok
16:20:32.0684 4356 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
16:20:32.0686 4356 scfilter - ok
16:20:32.0714 4356 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
16:20:32.0726 4356 Schedule - ok
16:20:32.0759 4356 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
16:20:32.0759 4356 SCPolicySvc - ok
16:20:32.0764 4356 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
16:20:32.0766 4356 SDRSVC - ok
16:20:32.0786 4356 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
16:20:32.0786 4356 secdrv - ok
16:20:32.0794 4356 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
16:20:32.0796 4356 seclogon - ok
16:20:32.0809 4356 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
16:20:32.0811 4356 SENS - ok
16:20:32.0834 4356 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
16:20:32.0836 4356 SensrSvc - ok
16:20:32.0846 4356 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
16:20:32.0846 4356 Serenum - ok
16:20:32.0861 4356 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
16:20:32.0864 4356 Serial - ok
16:20:32.0869 4356 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
16:20:32.0869 4356 sermouse - ok
16:20:32.0886 4356 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
16:20:32.0889 4356 SessionEnv - ok
16:20:32.0896 4356 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
16:20:32.0896 4356 sffdisk - ok
16:20:32.0909 4356 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
16:20:32.0909 4356 sffp_mmc - ok
16:20:32.0916 4356 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
16:20:32.0916 4356 sffp_sd - ok
16:20:32.0919 4356 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
16:20:32.0919 4356 sfloppy - ok
16:20:32.0946 4356 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
16:20:32.0949 4356 SharedAccess - ok
16:20:32.0971 4356 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:20:32.0974 4356 ShellHWDetection - ok
16:20:33.0004 4356 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
16:20:33.0004 4356 SiSRaid2 - ok
16:20:33.0016 4356 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
16:20:33.0016 4356 SiSRaid4 - ok
16:20:33.0034 4356 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
16:20:33.0034 4356 Smb - ok
16:20:33.0049 4356 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
16:20:33.0051 4356 SNMPTRAP - ok
16:20:33.0056 4356 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
16:20:33.0056 4356 spldr - ok
16:20:33.0081 4356 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
16:20:33.0089 4356 Spooler - ok
16:20:33.0141 4356 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
16:20:33.0184 4356 sppsvc - ok
16:20:33.0206 4356 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
16:20:33.0209 4356 sppuinotify - ok
16:20:33.0256 4356 [ 90EF30C3867BCDE4579C01A6D6E75A7A ] SRTSP C:\Windows\System32\Drivers\N360x64\0502020.003\SRTSP64.SYS
16:20:33.0259 4356 SRTSP - ok
16:20:33.0271 4356 [ C513E8A5E7978DA49077F5484344EE1B ] SRTSPX C:\Windows\system32\drivers\N360x64\0502020.003\SRTSPX64.SYS
16:20:33.0271 4356 SRTSPX - ok
16:20:33.0299 4356 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
16:20:33.0304 4356 srv - ok
16:20:33.0314 4356 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
16:20:33.0319 4356 srv2 - ok
16:20:33.0331 4356 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
16:20:33.0334 4356 srvnet - ok
16:20:33.0361 4356 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
16:20:33.0364 4356 SSDPSRV - ok
16:20:33.0376 4356 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
16:20:33.0376 4356 SstpSvc - ok
16:20:33.0411 4356 [ 50AADC94BA90DC3DE1AE0020C877BAAE ] stdriver C:\Windows\system32\DRIVERS\stdriver64.sys
16:20:33.0411 4356 stdriver - ok
16:20:33.0436 4356 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
16:20:33.0436 4356 stexstor - ok
16:20:33.0466 4356 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
16:20:33.0471 4356 stisvc - ok
16:20:33.0476 4356 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
16:20:33.0476 4356 swenum - ok
16:20:33.0491 4356 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
16:20:33.0496 4356 swprv - ok
16:20:33.0521 4356 [ 6160145C7A87FC7672E8E3B886888176 ] SymDS C:\Windows\system32\drivers\N360x64\0502020.003\SYMDS64.SYS
16:20:33.0524 4356 SymDS - ok
16:20:33.0541 4356 [ 96AEED40D4D3521568B42027687E69E0 ] SymEFA C:\Windows\system32\drivers\N360x64\0502020.003\SYMEFA64.SYS
16:20:33.0546 4356 SymEFA - ok
16:20:33.0571 4356 [ 21A1C2D694C3CF962D31F5E873AB3D6F ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
16:20:33.0571 4356 SymEvent - ok
16:20:33.0584 4356 [ BD0D711D8CBFCAA19CA123306EAF53A5 ] SymIRON C:\Windows\system32\drivers\N360x64\0502020.003\Ironx64.SYS
16:20:33.0586 4356 SymIRON - ok
16:20:33.0594 4356 [ A6ADB3D83023F8DAA0F7B6FDA785D83B ] SymNetS C:\Windows\System32\Drivers\N360x64\0502020.003\SYMNETS.SYS
16:20:33.0596 4356 SymNetS - ok
16:20:33.0644 4356 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
16:20:33.0669 4356 SysMain - ok
16:20:33.0679 4356 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:20:33.0681 4356 TabletInputService - ok
16:20:33.0694 4356 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
16:20:33.0696 4356 TapiSrv - ok
16:20:33.0709 4356 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
16:20:33.0711 4356 TBS - ok
16:20:33.0751 4356 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
16:20:33.0779 4356 Tcpip - ok
16:20:33.0814 4356 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
16:20:33.0821 4356 TCPIP6 - ok
16:20:33.0849 4356 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
16:20:33.0849 4356 tcpipreg - ok
16:20:33.0859 4356 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
16:20:33.0859 4356 TDPIPE - ok
16:20:33.0881 4356 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
16:20:33.0881 4356 TDTCP - ok
16:20:33.0894 4356 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
16:20:33.0896 4356 tdx - ok
16:20:33.0906 4356 [ 1DE78F5008120CD79B34C12394DCD493 ] TEAM C:\Windows\system32\DRIVERS\RtTeam60.sys
16:20:33.0906 4356 TEAM - ok
16:20:33.0919 4356 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
16:20:33.0919 4356 TermDD - ok
16:20:33.0954 4356 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
16:20:33.0976 4356 TermService - ok
16:20:33.0986 4356 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
16:20:33.0986 4356 Themes - ok
16:20:34.0016 4356 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
16:20:34.0019 4356 THREADORDER - ok
16:20:34.0029 4356 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
16:20:34.0031 4356 TrkWks - ok
16:20:34.0079 4356 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:20:34.0079 4356 TrustedInstaller - ok
16:20:34.0089 4356 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
16:20:34.0089 4356 tssecsrv - ok
16:20:34.0111 4356 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
16:20:34.0114 4356 TsUsbFlt - ok
16:20:34.0116 4356 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
16:20:34.0119 4356 TsUsbGD - ok
16:20:34.0136 4356 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
16:20:34.0139 4356 tunnel - ok
16:20:34.0151 4356 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
16:20:34.0151 4356 uagp35 - ok
16:20:34.0161 4356 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
16:20:34.0166 4356 udfs - ok
16:20:34.0174 4356 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
16:20:34.0176 4356 UI0Detect - ok
16:20:34.0186 4356 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
16:20:34.0189 4356 uliagpkx - ok
16:20:34.0201 4356 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
16:20:34.0201 4356 umbus - ok
16:20:34.0209 4356 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
16:20:34.0211 4356 UmPass - ok
16:20:34.0221 4356 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
16:20:34.0224 4356 upnphost - ok
16:20:34.0246 4356 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
16:20:34.0249 4356 usbccgp - ok
16:20:34.0259 4356 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
16:20:34.0261 4356 usbcir - ok
16:20:34.0279 4356 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
16:20:34.0281 4356 usbehci - ok
16:20:34.0299 4356 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
16:20:34.0301 4356 usbhub - ok
16:20:34.0311 4356 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
16:20:34.0314 4356 usbohci - ok
16:20:34.0331 4356 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
16:20:34.0331 4356 usbprint - ok
16:20:34.0336 4356 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
16:20:34.0336 4356 usbscan - ok
16:20:34.0344 4356 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:20:34.0344 4356 USBSTOR - ok
16:20:34.0354 4356 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
16:20:34.0354 4356 usbuhci - ok
16:20:34.0384 4356 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
16:20:34.0384 4356 UxSms - ok
16:20:34.0396 4356 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
16:20:34.0396 4356 VaultSvc - ok
16:20:34.0419 4356 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
16:20:34.0421 4356 vdrvroot - ok
16:20:34.0436 4356 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
16:20:34.0444 4356 vds - ok
16:20:34.0456 4356 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
16:20:34.0459 4356 vga - ok
16:20:34.0466 4356 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
16:20:34.0466 4356 VgaSave - ok
16:20:34.0474 4356 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
16:20:34.0476 4356 vhdmp - ok
16:20:34.0481 4356 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
16:20:34.0481 4356 viaide - ok
16:20:34.0494 4356 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
16:20:34.0494 4356 volmgr - ok
16:20:34.0504 4356 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
16:20:34.0506 4356 volmgrx - ok
16:20:34.0516 4356 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
16:20:34.0519 4356 volsnap - ok
16:20:34.0579 4356 [ B92AA6E1D10299A98FD9B8FCB2EAB8E6 ] VRSService C:\Program Files (x86)\NCH Software\VRS\vrs.exe
16:20:34.0641 4356 VRSService - ok
16:20:34.0661 4356 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
16:20:34.0664 4356 vsmraid - ok
16:20:34.0706 4356 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
16:20:34.0731 4356 VSS - ok
16:20:34.0764 4356 [ 93132C69394A99D992095D8CFE464801 ] VST64HWBS2 C:\Windows\system32\DRIVERS\VSTBS26.SYS
16:20:34.0766 4356 VST64HWBS2 - ok
16:20:34.0789 4356 [ 02071D207A9858FBE3A48CBFD59C4A04 ] VST64_DPV C:\Windows\system32\DRIVERS\VSTDPV6.SYS
16:20:34.0814 4356 VST64_DPV - ok
16:20:34.0834 4356 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
16:20:34.0834 4356 vwifibus - ok
16:20:34.0851 4356 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
16:20:34.0854 4356 W32Time - ok
16:20:34.0879 4356 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
16:20:34.0879 4356 WacomPen - ok
16:20:34.0894 4356 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
16:20:34.0894 4356 WANARP - ok
16:20:34.0896 4356 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
16:20:34.0896 4356 Wanarpv6 - ok
16:20:34.0941 4356 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
16:20:34.0956 4356 WatAdminSvc - ok
16:20:34.0984 4356 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
16:20:35.0009 4356 wbengine - ok
16:20:35.0024 4356 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
16:20:35.0026 4356 WbioSrvc - ok
16:20:35.0044 4356 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
16:20:35.0049 4356 wcncsvc - ok
16:20:35.0056 4356 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:20:35.0056 4356 WcsPlugInService - ok
16:20:35.0066 4356 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
16:20:35.0066 4356 Wd - ok
16:20:35.0081 4356 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
16:20:35.0086 4356 Wdf01000 - ok
16:20:35.0096 4356 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
16:20:35.0099 4356 WdiServiceHost - ok
16:20:35.0101 4356 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
16:20:35.0101 4356 WdiSystemHost - ok
16:20:35.0116 4356 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
16:20:35.0121 4356 WebClient - ok
16:20:35.0129 4356 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
16:20:35.0134 4356 Wecsvc - ok
16:20:35.0141 4356 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
16:20:35.0144 4356 wercplsupport - ok
16:20:35.0164 4356 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
16:20:35.0166 4356 WerSvc - ok
16:20:35.0181 4356 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
16:20:35.0184 4356 WfpLwf - ok
16:20:35.0191 4356 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
16:20:35.0191 4356 WIMMount - ok
16:20:35.0214 4356 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] winachsf C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
16:20:35.0221 4356 winachsf - ok
16:20:35.0236 4356 WinDefend - ok
16:20:35.0239 4356 WinHttpAutoProxySvc - ok
16:20:35.0294 4356 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
16:20:35.0296 4356 Winmgmt - ok
16:20:35.0346 4356 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
16:20:35.0371 4356 WinRM - ok
16:20:35.0414 4356 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
16:20:35.0421 4356 Wlansvc - ok
16:20:35.0434 4356 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
16:20:35.0434 4356 WmiAcpi - ok
16:20:35.0456 4356 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
16:20:35.0459 4356 wmiApSrv - ok
16:20:35.0471 4356 WMPNetworkSvc - ok
16:20:35.0479 4356 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
16:20:35.0481 4356 WPCSvc - ok
16:20:35.0489 4356 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
16:20:35.0491 4356 WPDBusEnum - ok
16:20:35.0511 4356 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
16:20:35.0511 4356 ws2ifsl - ok
16:20:35.0519 4356 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
16:20:35.0519 4356 wscsvc - ok
16:20:35.0521 4356 WSearch - ok
16:20:35.0571 4356 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
16:20:35.0606 4356 wuauserv - ok
16:20:35.0621 4356 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
16:20:35.0621 4356 WudfPf - ok
16:20:35.0636 4356 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
16:20:35.0636 4356 WUDFRd - ok
16:20:35.0659 4356 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
16:20:35.0659 4356 wudfsvc - ok
16:20:35.0671 4356 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
16:20:35.0676 4356 WwanSvc - ok
16:20:35.0679 4356 ================ Scan global ===============================
16:20:35.0706 4356 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
16:20:35.0729 4356 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
16:20:35.0736 4356 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
16:20:35.0759 4356 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
16:20:35.0789 4356 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
16:20:35.0791 4356 [Global] - ok
16:20:35.0791 4356 ================ Scan MBR ==================================
16:20:35.0801 4356 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
16:20:35.0961 4356 \Device\Harddisk0\DR0 - ok
16:20:35.0961 4356 ================ Scan VBR ==================================
16:20:35.0966 4356 [ D6B4BFF83612985BB3D390242B52F5C6 ] \Device\Harddisk0\DR0\Partition1
16:20:35.0966 4356 \Device\Harddisk0\DR0\Partition1 - ok
16:20:35.0981 4356 [ 7A486D654ED4D5AE541AFCB464265D9F ] \Device\Harddisk0\DR0\Partition2
16:20:35.0984 4356 \Device\Harddisk0\DR0\Partition2 - ok
16:20:35.0984 4356 ============================================================
16:20:35.0984 4356 Scan finished
16:20:35.0984 4356 ============================================================
16:20:35.0989 3652 Detected object count: 0
16:20:35.0989 3652 Actual detected object count: 0

[Burningtreefarm]

C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\TfsStore\Tfs_DAV\SADDLELIST0.xls

[Burningtreefarm]

# AdwCleaner v1.801 - Logfile created 08/20/2012 at 18:00:00
# Updated 14/08/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Tim - BURNINGTREEFARM
# Boot Mode : Normal
# Running from : C:\Users\Tim\Desktop\adwcleaner.exe
# Option [Search]

***** [Services] *****

***** [Files / Folders] *****

***** [Registry] *****
Key Found : HKCU\Software\Conduit
Key Found : HKLM\SOFTWARE\Conduit
[x64] Key Found : HKCU\Software\Conduit
***** [Registre - GUID] *****

***** [Internet Browsers] *****
-\\ Internet Explorer v8.0.7601.17514
[OK] Registry is clean.
-\\ Mozilla Firefox v10.0 (en-US)
Profile name : default
File : C:\Users\Tim\AppData\Roaming\Mozilla\Firefox\Profiles\72a0v3oi.default\prefs.js
[OK] File is clean.
*************************
AdwCleaner[R1].txt - [841 octets] - [20/08/2012 18:00:00]
########## EOF - C:\AdwCleaner[R1].txt - [968 octets] ##########

[Burningtreefarm]

Results of screen317's Security Check version 0.99.46
Windows 7 Service Pack 1 x64 (UAC is enabled)
Internet Explorer 8 Out of date!
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
Norton 360
WMI entry may not exist for antivirus; attempting automatic update.
`````````Anti-malware/Other Utilities Check:`````````
Malwarebytes Anti-Malware version 1.62.0.1300
Adobe Reader 9 Adobe Reader out of Date!
Mozilla Firefox 10.0 Firefox out of Date!
````````Process Check: objlist.exe by Laurent````````
Norton ccSvcHst.exe
Malwarebytes Anti-Malware mbamservice.exe
Malwarebytes Anti-Malware mbamgui.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: 0%
````````````````````End of Log``````````````````````
Screen317 here is your security check. Your HELP is immensly appreciated!! Thanks Tim

[Burningtreefarm]

Screen317 having trouble with some programs running tried to reinstall MP navigator 2.0 cannon software for my scanner and am being told it is not compatable it was running before all this, have uninstalled it and tried reinstalling several times.

[Burningtreefarm]

Problem signature:
Problem Event Name: BlueScreen
OS Version: 6.1.7601.2.1.0.768.3
Locale ID: 1033
Additional information about the problem:
BCCode: 34
BCP1: 0000000000050853
BCP2: FFFFF8800337D508
BCP3: FFFFF8800337CD60
BCP4: FFFFF800032EB3FC
OS Version: 6_1_7601
Service Pack: 1_0
Product: 768_1
Files that help describe the problem:
C:\Windows\Minidump\082012-20935-01.dmp
C:\Users\Tim\AppData\Local\Temp\WER-39249-0.sysdata.xml
Read our privacy statement online:
http://go.microsoft....88&clcid=0x0409
If the online privacy statement is not available, please read our privacy statement offline:
C:\Windows\system32\en-US\erofflps.txt
Screen317 it's back, was running your instructions again and it crashed at 99% scan of ESET thanks Tim

[Burningtreefarm]

.
DDS (Ver_2011-08-26.01) - NTFSAMD64
Internet Explorer: 8.0.7601.17514
Run by Tim at 14:47:02 on 2012-08-21
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.12287.10071 [GMT -4:00]
.
AV: Norton 360 *Enabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Norton 360 *Enabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
FW: Norton 360 *Enabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\atieclxx.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\taskhost.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\ASUS\TurboV EVO\TurboVHELP.exe
C:\Program Files (x86)\ASUS\GPU Boost Driver\GpuBoostServer.exe
C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Norton 360\Engine\5.2.2.3\ccSvcHst.exe
C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\Norton 360\Engine\5.2.2.3\ccSvcHst.exe
C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
C:\Program Files (x86)\ASUS\EPU\EPU.exe
C:\Program Files (x86)\ASUS\AI Suite\QFan4\FanHelp.exe
C:\Program Files (x86)\ASUS\TurboV EVO\TurboV_EVO.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Windows\system32\WUDFHost.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\notepad.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\conhost.exe
C:\Windows\SysWOW64\cscript.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://search.splashtop.com/asusexpressgate/mb/searchAPI.php?SE=yahoo&QS=http%3A%2F%2Fsearch.yahoo.com%2Fsearch%3Ffr%3Dfp-devicevm%26type%3DWEB01
uInternet Settings,ProxyOverride = *.local
uURLSearchHooks: SearchHook Class: {bc86e1ab-eda5-4059-938f-ce307b0c6f0a} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Canon Easy-WebPrint EX BHO: {3785d0ad-bfff-47f6-bf5b-a587c162fed9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
BHO: Symantec NCO BHO: {602adb0e-4aff-4217-8aa1-95dac4dfa408} - C:\Program Files (x86)\Norton 360\Engine\5.2.2.3\coIEPlg.dll
BHO: Symantec Intrusion Prevention: {6d53ec84-6aae-4787-aeee-f4628f01010c} - C:\Program Files (x86)\Norton 360\Engine\5.2.2.3\IPS\IPSBHO.DLL
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
TB: Norton Toolbar: {7febefe3-6b19-4349-98d2-ffb09d4b49ca} - C:\Program Files (x86)\Norton 360\Engine\5.2.2.3\coIEPlg.dll
TB: Canon Easy-WebPrint EX: {759d9886-0c6f-4498-bab6-4a5f47c6c72f} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
TB: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
EB: Canon Easy-WebPrint EX: {21347690-ec41-4f9a-8887-1f4aee672439} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
mRun: [PMBVolumeWatcher] C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [Six Engine] "C:\Program Files (x86)\ASUS\EPU\EPU.exe" -b
mRun: [QFan Help] "C:\Program Files (x86)\ASUS\AI Suite\QFan4\FanHelp.exe"
mRun: [TurboV EVO] "C:\Program Files (x86)\ASUS\TurboV EVO\TurboV_EVO.exe" -b
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
StartupFolder: C:\Users\Tim\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\ONENOT~1.LNK - C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - C:\PROGRA~2\MICROS~2\OFFICE11\REFIEBAR.DLL
TCP: DhcpNameServer = 192.168.0.1
TCP: Interfaces\{5EA2ABC6-B14D-4C1E-8CAD-BADE176D5BAF} : DhcpNameServer = 192.168.0.1
Handler: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - C:\Program Files (x86)\Common Files\microsoft shared\Web Folders\PKMCDO.DLL
BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO-X64: AcroIEHelperStub - No File
BHO-X64: Canon Easy-WebPrint EX BHO: {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
BHO-X64: Canon Easy-WebPrint EX BHO - No File
BHO-X64: Symantec NCO BHO: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine\5.2.2.3\coIEPlg.dll
BHO-X64: Symantec NCO BHO - No File
BHO-X64: Symantec Intrusion Prevention: {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton 360\Engine\5.2.2.3\IPS\IPSBHO.DLL
BHO-X64: Symantec Intrusion Prevention - No File
BHO-X64: Windows Live Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
TB-X64: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\5.2.2.3\coIEPlg.dll
TB-X64: Canon Easy-WebPrint EX: {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
TB-X64: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
EB-X64: {21347690-EC41-4F9A-8887-1F4AEE672439} - No File
mRun-x64: [PMBVolumeWatcher] C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
mRun-x64: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun-x64: [Six Engine] "C:\Program Files (x86)\ASUS\EPU\EPU.exe" -b
mRun-x64: [QFan Help] "C:\Program Files (x86)\ASUS\AI Suite\QFan4\FanHelp.exe"
mRun-x64: [TurboV EVO] "C:\Program Files (x86)\ASUS\TurboV EVO\TurboV_EVO.exe" -b
mRun-x64: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun-x64: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun-x64: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun-x64: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Tim\AppData\Roaming\Mozilla\Firefox\Profiles\72a0v3oi.default\
.
============= SERVICES / DRIVERS ===============
.
R0 SymDS;Symantec Data Store;C:\Windows\system32\drivers\N360x64\0502020.003\SYMDS64.SYS --> C:\Windows\system32\drivers\N360x64\0502020.003\SYMDS64.SYS [?]
R0 SymEFA;Symantec Extended File Attributes;C:\Windows\system32\drivers\N360x64\0502020.003\SYMEFA64.SYS --> C:\Windows\system32\drivers\N360x64\0502020.003\SYMEFA64.SYS [?]
R1 BHDrvx64;BHDrvx64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.2.1\Definitions\BASHDefs\20120811.003\BHDrvx64.sys [2012-8-10 1385120]
R1 IDSVia64;IDSVia64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.2.1\Definitions\IPSDefs\20120818.001\IDSviA64.sys [2012-8-21 509088]
R1 SymIRON;Symantec Iron Driver;C:\Windows\system32\drivers\N360x64\0502020.003\Ironx64.SYS --> C:\Windows\system32\drivers\N360x64\0502020.003\Ironx64.SYS [?]
R1 SymNetS;Symantec Network Security WFP Driver;C:\Windows\system32\Drivers\N360x64\0502020.003\SYMNETS.SYS --> C:\Windows\system32\Drivers\N360x64\0502020.003\SYMNETS.SYS [?]
R2 AdobeARMservice;Adobe Acrobat Update Service;C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-7-27 63960]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\system32\atiesrxx.exe --> C:\Windows\system32\atiesrxx.exe [?]
R2 AMD FUEL Service;AMD FUEL Service;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-6-11 361984]
R2 AODDriver4.01;AODDriver4.01;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys [2012-3-5 53888]
R2 cpuz135;cpuz135;\??\C:\Windows\system32\drivers\cpuz135_x64.sys --> C:\Windows\system32\drivers\cpuz135_x64.sys [?]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-8-14 655944]
R2 N360;Norton 360;C:\Program Files (x86)\Norton 360\Engine\5.2.2.3\ccsvchst.exe [2012-6-11 130008]
R2 PMBDeviceInfoProvider;PMBDeviceInfoProvider;C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe [2011-8-24 430136]
R2 RtNdPt60;Realtek NDIS Protocol Driver;C:\Windows\system32\DRIVERS\RtNdPt60.sys --> C:\Windows\system32\DRIVERS\RtNdPt60.sys [?]
R3 amdiox64;AMD IO Driver;C:\Windows\system32\DRIVERS\amdiox64.sys --> C:\Windows\system32\DRIVERS\amdiox64.sys [?]
R3 amdkmdag;amdkmdag;C:\Windows\system32\DRIVERS\atikmdag.sys --> C:\Windows\system32\DRIVERS\atikmdag.sys [?]
R3 amdkmdap;amdkmdap;C:\Windows\system32\DRIVERS\atikmpag.sys --> C:\Windows\system32\DRIVERS\atikmpag.sys [?]
R3 asmthub3;ASMedia USB3 Hub Service;C:\Windows\system32\DRIVERS\asmthub3.sys --> C:\Windows\system32\DRIVERS\asmthub3.sys [?]
R3 asmtxhci;ASMEDIA XHCI Service;C:\Windows\system32\DRIVERS\asmtxhci.sys --> C:\Windows\system32\DRIVERS\asmtxhci.sys [?]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\system32\drivers\AtihdW76.sys --> C:\Windows\system32\drivers\AtihdW76.sys [?]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2012-8-15 138912]
R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\system32\DRIVERS\Rt64win7.sys --> C:\Windows\system32\DRIVERS\Rt64win7.sys [?]
R3 stdriver;Sound tap driver Upper Class Filter Driver v2.0.0.0;C:\Windows\system32\DRIVERS\stdriver64.sys --> C:\Windows\system32\DRIVERS\stdriver64.sys [?]
R3 VST64_DPV;VST64_DPV;C:\Windows\system32\DRIVERS\VSTDPV6.SYS --> C:\Windows\system32\DRIVERS\VSTDPV6.SYS [?]
R3 VST64HWBS2;VST64HWBS2;C:\Windows\system32\DRIVERS\VSTBS26.SYS --> C:\Windows\system32\DRIVERS\VSTBS26.SYS [?]
S2 AODDriver4.1;AODDriver4.1;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys [2012-3-5 53888]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S3 MozillaMaintenance;Mozilla Maintenance Service;C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-8-20 113120]
S3 RTTEAMPT;Realtek Teaming Protocol Driver (NDIS 6.2);C:\Windows\system32\DRIVERS\RtTeam60.sys --> C:\Windows\system32\DRIVERS\RtTeam60.sys [?]
S3 RTVLANPT;Realtek Vlan Protocol Driver (NDIS 6.2);C:\Windows\system32\DRIVERS\RtVlan60.sys --> C:\Windows\system32\DRIVERS\RtVlan60.sys [?]
S3 TEAM;Realtek Virtual Miniport Driver for Teaming (NDIS 6.2);C:\Windows\system32\DRIVERS\RtTeam60.sys --> C:\Windows\system32\DRIVERS\RtTeam60.sys [?]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\system32\drivers\TsUsbGD.sys --> C:\Windows\system32\drivers\TsUsbGD.sys [?]
S3 VRSService;VRS Recording System;C:\Program Files (x86)\NCH Software\VRS\vrs.exe [2012-1-28 1248772]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]
S4 AsSysCtrlService;ASUS System Control Service;C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe [2012-1-25 109056]
S4 BCUService;Browser Configuration Utility Service;C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe [2010-3-5 235752]
.
=============== Created Last 30 ================
.
2012-08-21 03:26:29 -------- d-sh--w- C:\$RECYCLE.BIN
2012-08-21 00:29:59 -------- d-----w- C:\ProgramData\Corel
2012-08-20 22:13:09 136672 ----a-w- C:\Program Files (x86)\Mozilla Firefox\components\browsercomps.dll
2012-08-20 22:13:09 -------- d-----w- C:\Program Files (x86)\Mozilla Maintenance Service
2012-08-20 22:13:08 770384 ----a-w- C:\Program Files (x86)\Mozilla Firefox\msvcr100.dll
2012-08-20 22:13:08 68576 ----a-w- C:\Program Files (x86)\Mozilla Firefox\mozglue.dll
2012-08-20 22:13:08 573920 ----a-w- C:\Program Files (x86)\Mozilla Firefox\gkmedias.dll
2012-08-20 22:13:08 421200 ----a-w- C:\Program Files (x86)\Mozilla Firefox\msvcp100.dll
2012-08-20 22:13:08 157608 ----a-w- C:\Program Files (x86)\Mozilla Firefox\maintenanceservice_installer.exe
2012-08-20 22:13:08 113120 ----a-w- C:\Program Files (x86)\Mozilla Firefox\maintenanceservice.exe
2012-08-20 20:25:53 -------- d-----w- C:\Program Files (x86)\ESET
2012-08-20 19:21:56 98816 ----a-w- C:\Windows\sed.exe
2012-08-20 19:21:56 518144 ----a-w- C:\Windows\SWREG.exe
2012-08-20 19:21:56 256000 ----a-w- C:\Windows\PEV.exe
2012-08-20 19:21:56 208896 ----a-w- C:\Windows\MBR.exe
2012-08-18 14:39:19 -------- d--h--w- C:\ProgramData\CanonIJScan
2012-08-18 14:05:54 -------- d--h--w- C:\ProgramData\CanonIJEGV
2012-08-16 00:56:17 503808 ----a-w- C:\Windows\System32\srcore.dll
2012-08-16 00:56:17 43008 ----a-w- C:\Windows\SysWow64\srclient.dll
2012-08-16 00:56:06 751104 ----a-w- C:\Windows\System32\win32spl.dll
2012-08-16 00:56:06 67072 ----a-w- C:\Windows\splwow64.exe
2012-08-16 00:56:06 559104 ----a-w- C:\Windows\System32\spoolsv.exe
2012-08-16 00:56:06 492032 ----a-w- C:\Windows\SysWow64\win32spl.dll
2012-08-16 00:56:04 609792 ----a-w- C:\Windows\System32\vbscript.dll
2012-08-16 00:56:04 428032 ----a-w- C:\Windows\SysWow64\vbscript.dll
2012-08-15 02:33:55 -------- d-----w- C:\Users\Tim\AppData\Roaming\Malwarebytes
2012-08-15 02:33:46 24904 ----a-w- C:\Windows\System32\drivers\mbam.sys
2012-08-15 02:33:46 -------- d-----w- C:\ProgramData\Malwarebytes
2012-08-15 02:33:46 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2012-08-15 01:35:55 -------- d-----w- C:\Users\Tim\AppData\Roaming\Tific
2012-08-13 23:47:23 -------- d-----w- C:\Users\Tim\AppData\Local\AMD
2012-08-13 23:46:41 -------- d-----w- C:\Program Files (x86)\AMD AVT
2012-08-13 23:46:36 -------- d-----w- C:\Program Files (x86)\AMD APP
2012-07-27 20:51:30 184248 ----a-w- C:\Program Files (x86)\Internet Explorer\Plugins\nppdf32.dll
2012-07-24 11:39:22 9133488 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D7AE628D-F920-4402-AC57-433472C0D228}\mpengine.dll
2012-07-23 11:57:16 9133488 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
.
==================== Find3M ====================
.
2012-08-21 00:39:30 70344 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2012-08-21 00:39:30 426184 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2012-07-18 18:15:06 3148800 ----a-w- C:\Windows\System32\win32k.sys
2012-07-04 22:13:27 59392 ----a-w- C:\Windows\System32\browcli.dll
2012-07-04 22:13:27 136704 ----a-w- C:\Windows\System32\browser.dll
2012-07-04 21:14:34 41984 ----a-w- C:\Windows\SysWow64\browcli.dll
2012-06-27 07:06:53 1188864 ----a-w- C:\Windows\System32\wininet.dll
2012-06-27 05:53:07 981504 ----a-w- C:\Windows\SysWow64\wininet.dll
2012-06-27 04:53:10 1638912 ----a-w- C:\Windows\System32\mshtml.tlb
2012-06-27 04:10:55 1638912 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2012-06-25 20:04:24 1394248 ----a-w- C:\Windows\SysWow64\msxml4.dll
2012-06-11 18:59:38 10248192 ----a-w- C:\Windows\System32\drivers\atikmdag.sys
2012-06-11 18:35:48 70144 ----a-w- C:\Windows\System32\coinst_8.98.dll
2012-06-11 18:29:34 24826368 ----a-w- C:\Windows\System32\atio6axx.dll
2012-06-11 18:00:32 20467712 ----a-w- C:\Windows\SysWow64\atioglxx.dll
2012-06-11 17:50:46 187392 ----a-w- C:\Windows\System32\clinfo.exe
2012-06-11 17:50:30 75264 ----a-w- C:\Windows\System32\OpenVideo64.dll
2012-06-11 17:50:24 65024 ----a-w- C:\Windows\SysWow64\OpenVideo.dll
2012-06-11 17:50:18 63488 ----a-w- C:\Windows\System32\OVDecode64.dll
2012-06-11 17:50:14 56320 ----a-w- C:\Windows\SysWow64\OVDecode.dll
2012-06-11 17:50:06 16457728 ----a-w- C:\Windows\System32\amdocl64.dll
2012-06-11 17:49:22 13008896 ----a-w- C:\Windows\SysWow64\amdocl.dll
2012-06-11 17:48:34 54784 ----a-w- C:\Windows\System32\OpenCL.dll
2012-06-11 17:48:30 50176 ----a-w- C:\Windows\SysWow64\OpenCL.dll
2012-06-11 17:25:06 163840 ----a-w- C:\Windows\System32\atiapfxx.exe
2012-06-11 17:24:58 924160 ----a-w- C:\Windows\SysWow64\aticfx32.dll
2012-06-11 17:23:12 1090560 ----a-w- C:\Windows\System32\aticfx64.dll
2012-06-11 17:20:02 442368 ----a-w- C:\Windows\System32\ATIDEMGX.dll
2012-06-11 17:19:58 532992 ----a-w- C:\Windows\System32\atieclxx.exe
2012-06-11 17:19:14 239616 ----a-w- C:\Windows\System32\atiesrxx.exe
2012-06-11 17:17:56 120320 ----a-w- C:\Windows\System32\atitmm64.dll
2012-06-11 17:17:42 21504 ----a-w- C:\Windows\System32\atimuixx.dll
2012-06-11 17:17:38 59392 ----a-w- C:\Windows\System32\atiedu64.dll
2012-06-11 17:17:32 43520 ----a-w- C:\Windows\SysWow64\ati2edxx.dll
2012-06-11 17:16:48 6301696 ----a-w- C:\Windows\SysWow64\atidxx32.dll
2012-06-11 17:01:56 6914560 ----a-w- C:\Windows\System32\atidxx64.dll
2012-06-11 16:51:54 4246528 ----a-w- C:\Windows\System32\atiumd6a.dll
2012-06-11 16:45:48 51200 ----a-w- C:\Windows\System32\aticalrt64.dll
2012-06-11 16:45:46 46080 ----a-w- C:\Windows\SysWow64\aticalrt.dll
2012-06-11 16:45:44 5480448 ----a-w- C:\Windows\SysWow64\atiumdag.dll
2012-06-11 16:45:40 44544 ----a-w- C:\Windows\System32\aticalcl64.dll
2012-06-11 16:45:38 44032 ----a-w- C:\Windows\SysWow64\aticalcl.dll
2012-06-11 16:45:26 15703040 ----a-w- C:\Windows\System32\aticaldd64.dll
2012-06-11 16:43:18 4729344 ----a-w- C:\Windows\SysWow64\atiumdva.dll
2012-06-11 16:40:58 13277696 ----a-w- C:\Windows\SysWow64\aticaldd.dll
2012-06-11 16:36:56 6605824 ----a-w- C:\Windows\System32\atiumd64.dll
2012-06-11 16:27:02 539136 ----a-w- C:\Windows\System32\atiadlxx.dll
2012-06-11 16:26:52 368640 ----a-w- C:\Windows\SysWow64\atiadlxy.dll
2012-06-11 16:26:40 17920 ----a-w- C:\Windows\System32\atig6pxx.dll
2012-06-11 16:26:36 14848 ----a-w- C:\Windows\SysWow64\atiglpxx.dll
2012-06-11 16:26:36 14848 ----a-w- C:\Windows\System32\atiglpxx.dll
2012-06-11 16:26:30 41984 ----a-w- C:\Windows\System32\atig6txx.dll
2012-06-11 16:26:22 33280 ----a-w- C:\Windows\SysWow64\atigktxx.dll
2012-06-11 16:26:14 367616 ----a-w- C:\Windows\System32\drivers\atikmpag.sys
2012-06-11 16:25:20 54784 ----a-w- C:\Windows\System32\atiuxp64.dll
2012-06-11 16:25:12 42496 ----a-w- C:\Windows\SysWow64\atiuxpag.dll
2012-06-11 16:25:06 45056 ----a-w- C:\Windows\System32\atiu9p64.dll
2012-06-11 16:24:58 32768 ----a-w- C:\Windows\SysWow64\atiu9pag.dll
2012-06-11 16:24:24 53248 ----a-w- C:\Windows\System32\drivers\ati2erec.dll
2012-06-11 16:23:18 56320 ----a-w- C:\Windows\System32\atimpc64.dll
2012-06-11 16:23:18 56320 ----a-w- C:\Windows\System32\amdpcom64.dll
2012-06-11 16:23:10 56832 ----a-w- C:\Windows\SysWow64\atimpc32.dll
2012-06-11 16:23:10 56832 ----a-w- C:\Windows\SysWow64\amdpcom32.dll
2012-06-07 00:59:42 1070152 ----a-w- C:\Windows\SysWow64\MSCOMCTL.OCX
2012-06-06 06:06:16 2004480 ----a-w- C:\Windows\System32\msxml6.dll
2012-06-06 06:06:16 1881600 ----a-w- C:\Windows\System32\msxml3.dll
2012-06-06 06:02:54 1133568 ----a-w- C:\Windows\System32\cdosys.dll
2012-06-06 05:05:52 1390080 ----a-w- C:\Windows\SysWow64\msxml6.dll
2012-06-06 05:05:52 1236992 ----a-w- C:\Windows\SysWow64\msxml3.dll
2012-06-06 05:03:06 805376 ----a-w- C:\Windows\SysWow64\cdosys.dll
2012-06-02 22:15:31 2622464 ----a-w- C:\Windows\System32\wucltux.dll
2012-06-02 22:15:08 99840 ----a-w- C:\Windows\System32\wudriver.dll
2012-06-02 19:19:42 186752 ----a-w- C:\Windows\System32\wuwebv.dll
2012-06-02 19:15:12 36864 ----a-w- C:\Windows\System32\wuapp.exe
2012-06-02 05:50:10 458704 ----a-w- C:\Windows\System32\drivers\cng.sys
2012-06-02 05:48:16 95600 ----a-w- C:\Windows\System32\drivers\ksecdd.sys
2012-06-02 05:48:16 151920 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys
2012-06-02 05:45:31 340992 ----a-w- C:\Windows\System32\schannel.dll
2012-06-02 05:44:21 307200 ----a-w- C:\Windows\System32\ncrypt.dll
2012-06-02 04:40:42 22016 ----a-w- C:\Windows\SysWow64\secur32.dll
2012-06-02 04:40:39 225280 ----a-w- C:\Windows\SysWow64\schannel.dll
2012-06-02 04:39:10 219136 ----a-w- C:\Windows\SysWow64\ncrypt.dll
2012-06-02 04:34:09 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll
2012-05-31 16:25:12 279656 ------w- C:\Windows\System32\MpSigStub.exe
.
============= FINISH: 14:47:29.13 ===============
Screen317 new malware and dds logs. Thanks Tim
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume1
Install Date: 1/30/2012 6:37:18 PM
System Uptime: 8/21/2012 8:00:41 AM (6 hours ago)
.
Motherboard: ASUSTeK Computer INC. | | M5A88-V EVO
Processor: AMD Phenom™ II X6 1100T Processor | AM3R2 | 3300/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 466 GiB total, 386.59 GiB free.
D: is CDROM ()
E: is CDROM ()
G: is Removable
H: is Removable
I: is Removable
J: is Removable
K: is Removable
.
==== Disabled Device Manager Items =============
.
Class GUID: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Description: AODDriver4.1
Device ID: ROOT\LEGACY_AODDRIVER4.1\0000
Manufacturer:
Name: AODDriver4.1
PNP Device ID: ROOT\LEGACY_AODDRIVER4.1\0000
Service: AODDriver4.1
.
==== System Restore Points ===================
.
RP69: 8/14/2012 9:49:34 PM - ARO 2012 - Before Installation
RP70: 8/14/2012 9:50:15 PM - ARO 2012 - FIRST RUN
RP71: 8/14/2012 10:01:36 PM - ARO 2012 Tue, Aug 14, 12 22:01
RP72: 8/16/2012 11:28:30 AM - Windows Update
RP73: 8/20/2012 3:22:09 PM - ComboFix created restore point
RP74: 8/20/2012 8:25:33 PM - Installed DirectX
RP75: 8/20/2012 8:32:34 PM - Configured SmartSound Quicktracks 5
.
==== Installed Programs ======================
.
Update for Microsoft Office 2007 (KB2508958)
Acrobat.com
Adobe AIR
Adobe Flash Player 11 ActiveX
Adobe Reader 9.1
Adobe Reader X (10.1.4)
AI Suite
AMD VISION Engine Control Center
Apple Application Support
Apple Software Update
Application Profiles
Asmedia ASM104x USB 3.0 Host Controller Driver
Browser Configuration Utility
Canon Easy-PhotoPrint EX
Canon Easy-WebPrint EX
Canon MP Navigator EX 2.0
Canon My Printer
Catalyst Control Center - Branding
Catalyst Control Center Core Implementation
Catalyst Control Center Graphics Full Existing
Catalyst Control Center Graphics Full New
Catalyst Control Center Graphics Light
Catalyst Control Center Graphics Previews Common
Catalyst Control Center Graphics Previews Vista
Catalyst Control Center InstallProxy
Catalyst Control Center Localization All
ccc-core-static
CCC Help Chinese Standard
CCC Help Chinese Traditional
CCC Help Czech
CCC Help Danish
CCC Help Dutch
CCC Help English
CCC Help Finnish
CCC Help French
CCC Help German
CCC Help Greek
CCC Help Hungarian
CCC Help Italian
CCC Help Japanese
CCC Help Korean
CCC Help Norwegian
CCC Help Polish
CCC Help Portuguese
CCC Help Russian
CCC Help Spanish
CCC Help Swedish
CCC Help Thai
CCC Help Turkish
Common
Compatibility Pack for the 2007 Office system
Contents
Corel VideoStudio Pro X4
D3DX10
DeviceIO
Epson Print CD
EPU
ESET Online Scanner v3
Express Burn Disc Burning Software
Express Rip
GPU Boost Driver
HydraVision
ICA
IPM_VS_Pro
IrfanView (remove only)
ISCOM
Malwarebytes Anti-Malware version 1.62.0.1300
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007
Microsoft Office Home and Student 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Standard Edition 2003
Microsoft Office Word MUI (English) 2007
Microsoft Office XP Professional
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
MixPad Audio Mixer
Mozilla Firefox 14.0.1 (x86 en-US)
Mozilla Maintenance Service
MSVCRT
MSXML 4.0 SP3 Parser
MSXML 4.0 SP3 Parser (KB2721691)
MSXML 4.0 SP3 Parser (KB973685)
Norton 360
PC Probe II
PMB
Prism Video File Converter
PureHD
QuickTime
Realtek Ethernet Controller Driver
Realtek Ethernet Diagnostic Utility
Realtek High Definition Audio Driver
RecordPad Sound Recorder
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
Security Update for Microsoft Office 2007 suites (KB2596615) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596672) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596856) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596880) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597162) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687441) 32-Bit Edition
Security Update for Microsoft Office Excel 2007 (KB2597161) 32-Bit Edition
Security Update for Microsoft Office InfoPath 2007 (KB2596786) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
Security Update for Microsoft Office Word 2007 (KB2596917) 32-Bit Edition
Setup
Share
SmartSound Common Data
SmartSound Quicktracks 5
SoundTap Streaming Audio Recorder
Spelling Dictionaries Support For Adobe Reader 9
Switch Sound File Converter
TurboV EVO
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
VIO
VRS Recording System
VSClassic
VSPro
WavePad Sound Editor
Windows Live Installer
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Media Encoder 9 Series
.
==== Event Viewer Messages From Past Week ========
.
8/21/2012 8:01:06 AM, Error: Service Control Manager [7000] - The AODDriver4.1 service failed to start due to the following error: The system cannot find the file specified.
8/21/2012 12:21:19 AM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000034 (0x0000000000050853, 0xfffff88008f17508, 0xfffff88008f16d60, 0xfffff800032a93c1). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 082112-21699-01.
8/20/2012 8:27:30 AM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000124 (0x0000000000000000, 0xfffffa800ac72028, 0x00000000b62d2000, 0x0000000023000135). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 082012-23821-01.
8/20/2012 8:19:32 PM, Error: Service Control Manager [7034] - The AMD FUEL Service service terminated unexpectedly. It has done this 1 time(s).
8/20/2012 4:15:45 PM, Error: Service Control Manager [7038] - The WinHttpAutoProxySvc service was unable to log on as NT AUTHORITY\LocalService with the currently configured password due to the following error: The request is not supported. To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).
8/20/2012 4:15:45 PM, Error: Service Control Manager [7000] - The WinHTTP Web Proxy Auto-Discovery Service service failed to start due to the following error: The service did not start due to a logon failure.
8/20/2012 4:15:03 PM, Error: Service Control Manager [7031] - The Apple Mobile Device service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
8/20/2012 3:29:52 PM, Error: Application Popup [1060] - \??\C:\ComboFix\catchme.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.
8/20/2012 3:12:27 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000124 (0x0000000000000000, 0xfffffa800ac54028, 0x00000000b642a000, 0x0000000033000135). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 082012-24679-01.
8/20/2012 3:06:34 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000124 (0x0000000000000000, 0xfffffa800ac56028, 0x00000000b61d2000, 0x0000000061000135). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 082012-20404-01.
8/20/2012 3:03:47 PM, Error: Microsoft-Windows-WHEA-Logger [18] - A fatal hardware error has occurred. Reported by component: Processor Core Error Source: Machine Check Exception Error Type: Cache Hierarchy Error Processor ID: 4 The details view of this entry contains further information.
8/20/2012 3:03:38 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000124 (0x0000000000000000, 0xfffffa800abc4028, 0x00000000b65ea000, 0x0000000097000135). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 082012-23634-01.
8/20/2012 11:57:50 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000034 (0x0000000000050853, 0xfffff8800337d508, 0xfffff8800337cd60, 0xfffff800032eb3fc). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 082012-20935-01.
8/20/2012 11:27:01 PM, Error: Service Control Manager [7034] - The Adobe Acrobat Update Service service terminated unexpectedly. It has done this 1 time(s).
8/20/2012 11:27:01 PM, Error: Service Control Manager [7031] - The Norton 360 service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 120000 milliseconds: Restart the service.
8/20/2012 11:21:12 PM, Error: Service Control Manager [7023] - The Windows Defender service terminated with the following error: The specified module could not be found.
8/20/2012 11:19:58 PM, Error: Service Control Manager [7030] - The PEVSystemStart service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.
8/20/2012 11:11:19 PM, Error: Service Control Manager [7000] - The Windows Presentation Foundation Font Cache 3.0.0.0 service failed to start due to the following error: A device attached to the system is not functioning.
8/20/2012 11:10:10 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x000000d1 (0x000000000001fdd8, 0x0000000000000002, 0x0000000000000001, 0xfffff8800162123c). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 082012-25147-01.
8/20/2012 11:08:37 PM, Error: Microsoft-Windows-WHEA-Logger [18] - A fatal hardware error has occurred. Reported by component: Processor Core Error Source: Machine Check Exception Error Type: Cache Hierarchy Error Processor ID: 5 The details view of this entry contains further information.
8/20/2012 11:08:15 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000124 (0x0000000000000000, 0xfffffa800ac59028, 0x00000000b60e4000, 0x0000000098000135). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 082012-23337-01.
8/19/2012 8:42:27 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000124 (0x0000000000000000, 0xfffffa800ac02028, 0x00000000b41e2000, 0x0000000000000135). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081912-19999-02.
8/19/2012 8:16:43 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000124 (0x0000000000000000, 0xfffffa800ac66028, 0x00000000b6002000, 0x0000000081000135). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081912-19999-01.
8/19/2012 10:54:55 PM, Error: Service Control Manager [7038] - The WinHttpAutoProxySvc service was unable to log on as NT AUTHORITY\LocalService with the currently configured password due to the following error: The security account manager (SAM) or local security authority (LSA) server was in the wrong state to perform the security operation. To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).
8/19/2012 10:15:32 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000018 (0x0000000000000000, 0xfffff880075e5aa8, 0x0000000000000002, 0xfffff880075e5ae7). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081912-20826-01.
8/18/2012 8:10:17 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000003b (0x00000000c000001d, 0xfffff80003270d8a, 0xfffff88003adfeb0, 0x0000000000000000). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081812-21028-01.
8/18/2012 7:30:01 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000124 (0x0000000000000000, 0xfffffa800ad68028, 0x00000000b6002000, 0x0000000081000135). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081812-22651-01.
8/18/2012 3:04:01 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000001e (0xffffffffc0000005, 0xfffff800032f360e, 0x0000000000000000, 0xffffffffffffffff). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081812-20061-01.
8/18/2012 2:32:09 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000124 (0x0000000000000000, 0xfffffa800ac49028, 0x00000000b66ac000, 0x0000000000000135). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081812-22838-01.
8/18/2012 2:26:38 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000124 (0x0000000000000000, 0xfffffa800ad67028, 0x00000000b43ea000, 0x0000000080000135). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081812-23431-01.
8/18/2012 2:17:49 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000124 (0x0000000000000000, 0xfffffa800ad87028, 0x00000000b67b2000, 0x0000000000000135). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081812-22776-01.
8/17/2012 4:04:11 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000124 (0x0000000000000000, 0xfffffa800ac45028, 0x00000000b4002000, 0x00000000e8000135). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081712-18454-01.
8/17/2012 3:20:07 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000124 (0x0000000000000000, 0xfffffa800b028028, 0x00000000b6002000, 0x000000006c000135). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081712-19110-01.
8/17/2012 3:03:23 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000135 (0xffffffffc0000005, 0xfffff880096a4e80, 0xfffff880045241a0, 0xfffff8a000b619e0). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081712-20264-01.
8/17/2012 3:01:32 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000000a (0x0000000000000000, 0x0000000000000002, 0x0000000000000000, 0xfffff800032c3472). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081712-19266-01.
8/17/2012 11:39:11 AM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000124 (0x0000000000000000, 0xfffffa800ad69028, 0x00000000b4602000, 0x0000000000000135). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081712-20841-01.
8/17/2012 11:09:49 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000050 (0xfffff88048aca948, 0x0000000000000000, 0xfffff800032b03fb, 0x0000000000000005). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081712-18704-01.
8/17/2012 10:54:46 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x000000d1 (0x000000008020c2d6, 0x0000000000000002, 0x0000000000000001, 0xfffff880014ef1af). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081712-18361-01.
8/16/2012 9:15:23 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000124 (0x0000000000000000, 0xfffffa800b3a6028, 0x00000000b6182000, 0x0000000062000135). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081612-26847-01.
8/16/2012 4:22:54 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000124 (0x0000000000000000, 0xfffffa800b3a7028, 0x00000000b6674000, 0x0000000000000135). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081612-20311-01.
8/16/2012 3:58:31 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000124 (0x0000000000000000, 0xfffffa800abba028, 0x00000000f47e2000, 0x000000006b000135). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081612-21278-01.
8/15/2012 8:46:36 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000000a (0x0000000000000008, 0x0000000000000002, 0x0000000000000000, 0xfffff800032d76de). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081512-19780-01.
8/15/2012 5:38:37 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000124 (0x0000000000000000, 0xfffffa800ac45028, 0x00000000b65ea000, 0x0000000000000135). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081512-19484-01.
8/15/2012 4:29:01 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000024 (0x00000000001904fb, 0xfffff8800438f848, 0xfffff8800438f0a0, 0xfffff880014bc60d). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081512-20545-01.
8/15/2012 4:17:03 PM, Error: Service Control Manager [7001] - The Computer Browser service depends on the Server service which failed to start because of the following error: The dependency service or group failed to start.
8/15/2012 4:07:59 PM, Error: Service Control Manager [7001] - The HomeGroup Provider service depends on the Function Discovery Provider Host service which failed to start because of the following error: The dependency service or group failed to start.
8/15/2012 4:07:44 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AsIO BHDrvx64 discache eeCtrl IDSVia64 spldr SRTSPX SymIRON SymNetS Wanarpv6
8/15/2012 4:07:43 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000124 (0x0000000000000000, 0xfffffa800ac47028, 0x00000000b42d2000, 0x0000000000000135). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081512-22042-01.
8/15/2012 10:39:20 PM, Error: Service Control Manager [7001] - The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error: The dependency service or group failed to start.
8/15/2012 10:39:19 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
8/15/2012 10:39:19 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netprofm with arguments "" in order to run the server: {A47979D2-C419-11D9-A5B4-001185AD2B89}
8/15/2012 10:39:19 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netman with arguments "" in order to run the server: {BA126AD1-2166-11D1-B1D0-00805FC1270E}
8/15/2012 10:39:18 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030}
8/15/2012 10:39:18 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
8/15/2012 10:39:12 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "" in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC}
8/15/2012 10:39:07 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000050 (0xfffff880322beb0f, 0x0000000000000001, 0xfffff88000c02910, 0x0000000000000002). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081512-22167-01.
8/15/2012 10:39:05 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD AsIO BHDrvx64 DfsC discache eeCtrl IDSVia64 NetBIOS NetBT nsiproxy Psched rdbss spldr SRTSPX SymIRON SymNetS tdx Wanarpv6 WfpLwf
8/15/2012 10:39:05 PM, Error: Service Control Manager [7001] - The Workstation service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.
8/15/2012 10:39:05 PM, Error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.
8/15/2012 10:39:05 PM, Error: Service Control Manager [7001] - The SMB MiniRedirector Wrapper and Engine service depends on the Redirected Buffering Sub Sysytem service which failed to start because of the following error: A device attached to the system is not functioning.
8/15/2012 10:39:05 PM, Error: Service Control Manager [7001] - The SMB 2.0 MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.
8/15/2012 10:39:05 PM, Error: Service Control Manager [7001] - The SMB 1.x MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.
8/15/2012 10:39:05 PM, Error: Service Control Manager [7001] - The Network Store Interface Service service depends on the NSI proxy service driver. service which failed to start because of the following error: A device attached to the system is not functioning.
8/15/2012 10:39:05 PM, Error: Service Control Manager [7001] - The Network Location Awareness service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.
8/15/2012 10:39:05 PM, Error: Service Control Manager [7001] - The IP Helper service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.
8/15/2012 10:39:05 PM, Error: Service Control Manager [7001] - The DNS Client service depends on the NetIO Legacy TDI Support Driver service which failed to start because of the following error: A device attached to the system is not functioning.
8/15/2012 10:39:05 PM, Error: Service Control Manager [7001] - The DHCP Client service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.
8/15/2012 10:36:19 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000124 (0x0000000000000000, 0xfffffa800abdc028, 0x00000000f60e4000, 0x000000001c000135). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081512-21106-01.
8/14/2012 8:23:07 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000019 (0x0000000000000020, 0xfffffa800a704000, 0xfffffa800a704460, 0x0000000004460000). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081412-21138-01.
8/14/2012 7:38:23 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000024 (0x00000000001904fb, 0xfffff8800a04a398, 0xfffff8800a049bf0, 0xfffff880012d0863). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081412-21543-01.
8/14/2012 4:42:07 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000124 (0x0000000000000000, 0xfffffa800ac55028, 0x00000000b4002000, 0x0000000069000145). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081412-21668-01.
8/14/2012 3:00:03 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000124 (0x0000000000000000, 0xfffffa800ac41028, 0x00000000b658a000, 0x0000000000000135). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081412-21231-01.
8/14/2012 10:50:57 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x000000d1 (0xfffff800132d716f, 0x0000000000000002, 0x0000000000000008, 0xfffff800132d716f). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081412-19812-01.
8/14/2012 10:36:59 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x000000d1 (0xfffff7ffe7928200, 0x0000000000000002, 0x0000000000000008, 0xfffff7ffe7928200). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 081412-20654-01.
.
==== End Of File ===========================
Malwarebytes Anti-Malware (Trial) 1.62.0.1300
www.malwarebytes.org
Database version: v2012.08.21.11
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 8.0.7601.17514
Tim :: BURNINGTREEFARM [administrator]
Protection: Enabled
8/21/2012 2:43:38 PM
mbam-log-2012-08-21 (14-43-38).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 202684
Time elapsed: 1 minute(s), 54 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
(end)

[screen317]

Hi,

Let's see what's causing the blue screens.


Download BlueScreenView and save it to your Desktop.

• Double click on BlueScreenView.exe file to run the program.
• When it finishes scanning, click Edit --> Select All.
• Click File --> Save Selected Items
• Save the report as BSOD.txt to your Desktop.
• Post the contents of BSOD.txtin your next reply.

[Burningtreefarm]

082212-19297-01.dmp 8/22/2012 12:05:14 PM 0x00000124 00000000`00000000 fffffa80`0ac5f028 00000000`b6004000 00000000`9d000135 hal.dll hal.dll+12a3b x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\082212-19297-01.dmp 6 15 7601 275,864
082112-21450-01.dmp 8/21/2012 9:49:36 PM 0x00000124 00000000`00000000 fffffa80`0ac64028 00000000`b616a000 00000000`c5000135 hal.dll hal.dll+12a3b x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\082112-21450-01.dmp 6 15 7601 275,864
082112-19858-01.dmp 8/21/2012 6:00:19 PM 0x00000124 00000000`00000000 fffffa80`0ac23028 00000000`b6004000 00000000`9d000135 hal.dll hal.dll+12a3b x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\082112-19858-01.dmp 6 15 7601 275,864
082112-22308-01.dmp 8/21/2012 5:01:39 PM 0x00000124 00000000`00000000 fffffa80`0ac4d028 00000000`b614c000 00000000`15000135 hal.dll hal.dll+12a3b x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\082112-22308-01.dmp 6 15 7601 275,864
082112-27861-01.dmp 8/21/2012 2:59:56 PM SYSTEM_SERVICE_EXCEPTION 0x0000003b 00000000`c0000005 fffff800`035f879f fffff880`07d1bb10 00000000`00000000 Ntfs.sys Ntfs.sys+46a00 x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\082112-27861-01.dmp 6 15 7601 275,864
082112-23384-01.dmp 8/21/2012 2:57:40 PM 0x00000124 00000000`00000000 fffffa80`0ac33028 00000000`b6004000 00000000`34000135 hal.dll hal.dll+12a3b x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\082112-23384-01.dmp 6 15 7601 275,864
082112-21699-01.dmp 8/21/2012 12:21:19 AM CACHE_MANAGER 0x00000034 00000000`00050853 fffff880`08f17508 fffff880`08f16d60 fffff800`032a93c1 Ntfs.sys Ntfs.sys+4ff78 x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\082112-21699-01.dmp 6 15 7601 275,864
082012-20935-01.dmp 8/20/2012 11:57:50 PM CACHE_MANAGER 0x00000034 00000000`00050853 fffff880`0337d508 fffff880`0337cd60 fffff800`032eb3fc ntoskrnl.exe ntoskrnl.exe+7f1c0 NT Kernel & System Microsoft® Windows® Operating System Microsoft Corporation 6.1.7601.17835 (win7sp1_gdr.120503-2030) x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\082012-20935-01.dmp 6 15 7601 275,864
082012-25147-01.dmp 8/20/2012 11:10:10 PM DRIVER_IRQL_NOT_LESS_OR_EQUAL 0x000000d1 00000000`0001fdd8 00000000`00000002 00000000`00000001 fffff880`0162123c ndis.sys ndis.sys+623c x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\082012-25147-01.dmp 6 15 7601 275,864
082012-23337-01.dmp 8/20/2012 11:08:15 PM 0x00000124 00000000`00000000 fffffa80`0ac59028 00000000`b60e4000 00000000`98000135 hal.dll hal.dll+12a3b x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\082012-23337-01.dmp 6 15 7601 275,864
082012-24679-01.dmp 8/20/2012 3:12:26 PM 0x00000124 00000000`00000000 fffffa80`0ac54028 00000000`b642a000 00000000`33000135 hal.dll hal.dll+12a3b x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\082012-24679-01.dmp 6 15 7601 275,864
082012-20404-01.dmp 8/20/2012 3:06:32 PM 0x00000124 00000000`00000000 fffffa80`0ac56028 00000000`b61d2000 00000000`61000135 hal.dll hal.dll+12a3b x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\082012-20404-01.dmp 6 15 7601 275,864
082012-23634-01.dmp 8/20/2012 3:03:37 PM 0x00000124 00000000`00000000 fffffa80`0abc4028 00000000`b65ea000 00000000`97000135 hal.dll hal.dll+12a3b x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\082012-23634-01.dmp 6 15 7601 275,864
082012-23821-01.dmp 8/20/2012 8:27:29 AM 0x00000124 00000000`00000000 fffffa80`0ac72028 00000000`b62d2000 00000000`23000135 hal.dll hal.dll+12a3b x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\082012-23821-01.dmp 6 15 7601 275,864
081912-20826-01.dmp 8/19/2012 10:15:32 PM REFERENCE_BY_POINTER 0x00000018 00000000`00000000 fffff880`075e5aa8 00000000`00000002 fffff880`075e5ae7 ntoskrnl.exe ntoskrnl.exe+7f1c0 NT Kernel & System Microsoft® Windows® Operating System Microsoft Corporation 6.1.7601.17835 (win7sp1_gdr.120503-2030) x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\081912-20826-01.dmp 6 15 7601 275,864
081912-21106-01.dmp 8/19/2012 10:13:53 PM SYSTEM_SERVICE_EXCEPTION 0x0000003b 00000000`c000001d fffff800`0329b27f fffff880`09223cc0 00000000`00000000 Ntfs.sys Ntfs.sys+98ddc x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\081912-21106-01.dmp 6 15 7601 275,864
081912-19125-01.dmp 8/19/2012 10:12:15 PM 0x00000124 00000000`00000000 fffffa80`0ac4d028 00000000`f6512000 00000000`fa000135 hal.dll hal.dll+12a3b x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\081912-19125-01.dmp 6 15 7601 275,864
081912-19999-02.dmp 8/19/2012 8:42:27 PM 0x00000124 00000000`00000000 fffffa80`0ac02028 00000000`b41e2000 00000000`00000135 hal.dll hal.dll+12a3b x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\081912-19999-02.dmp 6 15 7601 275,864
081912-19999-01.dmp 8/19/2012 8:16:43 PM 0x00000124 00000000`00000000 fffffa80`0ac66028 00000000`b6002000 00000000`81000135 hal.dll hal.dll+12a3b x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\081912-19999-01.dmp 6 15 7601 275,864
081812-21028-01.dmp 8/18/2012 8:10:17 PM SYSTEM_SERVICE_EXCEPTION 0x0000003b 00000000`c000001d fffff800`03270d8a fffff880`03adfeb0 00000000`00000000 ntoskrnl.exe ntoskrnl.exe+7f1c0 NT Kernel & System Microsoft® Windows® Operating System Microsoft Corporation 6.1.7601.17835 (win7sp1_gdr.120503-2030) x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\081812-21028-01.dmp 6 15 7601 275,864
081812-22651-01.dmp 8/18/2012 7:30:01 PM 0x00000124 00000000`00000000 fffffa80`0ad68028 00000000`b6002000 00000000`81000135 hal.dll hal.dll+12a3b x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\081812-22651-01.dmp 6 15 7601 275,864
081812-20061-01.dmp 8/18/2012 3:04:01 PM KMODE_EXCEPTION_NOT_HANDLED 0x0000001e ffffffff`c0000005 fffff800`032f360e 00000000`00000000 ffffffff`ffffffff ntoskrnl.exe ntoskrnl.exe+7f1c0 NT Kernel & System Microsoft® Windows® Operating System Microsoft Corporation 6.1.7601.17835 (win7sp1_gdr.120503-2030) x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\081812-20061-01.dmp 6 15 7601 275,864
081812-22838-01.dmp 8/18/2012 2:32:09 PM 0x00000124 00000000`00000000 fffffa80`0ac49028 00000000`b66ac000 00000000`00000135 hal.dll hal.dll+12a3b x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\081812-22838-01.dmp 6 15 7601 275,864
081812-23431-01.dmp 8/18/2012 2:26:38 PM 0x00000124 00000000`00000000 fffffa80`0ad67028 00000000`b43ea000 00000000`80000135 hal.dll hal.dll+12a3b x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\081812-23431-01.dmp 6 15 7601 275,864
081812-22776-01.dmp 8/18/2012 2:17:49 PM 0x00000124 00000000`00000000 fffffa80`0ad87028 00000000`b67b2000 00000000`00000135 hal.dll hal.dll+12a3b x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\081812-22776-01.dmp 6 15 7601 275,864
081712-18704-01.dmp 8/17/2012 11:09:47 PM PAGE_FAULT_IN_NONPAGED_AREA 0x00000050 fffff880`48aca948 00000000`00000000 fffff800`032b03fb 00000000`00000005 ntoskrnl.exe ntoskrnl.exe+7f1c0 NT Kernel & System Microsoft® Windows® Operating System Microsoft Corporation 6.1.7601.17835 (win7sp1_gdr.120503-2030) x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\081712-18704-01.dmp 6 15 7601 275,808
081712-18361-01.dmp 8/17/2012 10:54:45 PM DRIVER_IRQL_NOT_LESS_OR_EQUAL 0x000000d1 00000000`8020c2d6 00000000`00000002 00000000`00000001 fffff880`014ef1af ndis.sys ndis.sys+61af x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\081712-18361-01.dmp 6 15 7601 275,864
081712-18454-01.dmp 8/17/2012 4:04:11 PM 0x00000124 00000000`00000000 fffffa80`0ac45028 00000000`b4002000 00000000`e8000135 hal.dll hal.dll+12a3b x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\081712-18454-01.dmp 6 15 7601 275,864
081712-19110-01.dmp 8/17/2012 3:20:05 PM 0x00000124 00000000`00000000 fffffa80`0b028028 00000000`b6002000 00000000`6c000135 hal.dll hal.dll+12a3b x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\081712-19110-01.dmp 6 15 7601 275,864
081712-20264-01.dmp 8/17/2012 3:03:21 PM 0x00000135 ffffffff`c0000005 fffff880`096a4e80 fffff880`045241a0 fffff8a0`00b619e0 BHDrvx64.sys BHDrvx64.sys+901a0 x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\081712-20264-01.dmp 6 15 7601 275,864
081712-19266-01.dmp 8/17/2012 3:01:30 PM IRQL_NOT_LESS_OR_EQUAL 0x0000000a 00000000`00000000 00000000`00000002 00000000`00000000 fffff800`032c3472 ntoskrnl.exe ntoskrnl.exe+7f1c0 NT Kernel & System Microsoft® Windows® Operating System Microsoft Corporation 6.1.7601.17835 (win7sp1_gdr.120503-2030) x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\081712-19266-01.dmp 6 15 7601 275,864
081712-20841-01.dmp 8/17/2012 11:39:11 AM 0x00000124 00000000`00000000 fffffa80`0ad69028 00000000`b4602000 00000000`00000135 hal.dll hal.dll+12a3b x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\081712-20841-01.dmp 6 15 7601 275,864
081612-26847-01.dmp 8/16/2012 9:15:23 PM 0x00000124 00000000`00000000 fffffa80`0b3a6028 00000000`b6182000 00000000`62000135 hal.dll hal.dll+12a3b x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\081612-26847-01.dmp 6 15 7601 275,864
081612-20311-01.dmp 8/16/2012 4:22:54 PM 0x00000124 00000000`00000000 fffffa80`0b3a7028 00000000`b6674000 00000000`00000135 hal.dll hal.dll+12a3b x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\081612-20311-01.dmp 6 15 7601 275,864
081612-21278-01.dmp 8/16/2012 3:58:29 PM 0x00000124 00000000`00000000 fffffa80`0abba028 00000000`f47e2000 00000000`6b000135 hal.dll hal.dll+12a3b x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\081612-21278-01.dmp 6 15 7601 275,864
081512-22167-01.dmp 8/15/2012 10:39:05 PM PAGE_FAULT_IN_NONPAGED_AREA 0x00000050 fffff880`322beb0f 00000000`00000001 fffff880`00c02910 00000000`00000002 ntoskrnl.exe ntoskrnl.exe+7f1c0 NT Kernel & System Microsoft® Windows® Operating System Microsoft Corporation 6.1.7601.17835 (win7sp1_gdr.120503-2030) x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\081512-22167-01.dmp 6 15 7601 275,864
081512-20716-01.dmp 8/15/2012 10:37:36 PM KMODE_EXCEPTION_NOT_HANDLED 0x0000001e 00000000`00000000 fffff800`032c9ec8 fffffa80`0d7dfcb0 fffffa80`0d83fc58 SYMNETS.SYS SYMNETS.SYS+7f0d x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\081512-20716-01.dmp 6 15 7601 275,864
081512-21106-01.dmp 8/15/2012 10:36:17 PM 0x00000124 00000000`00000000 fffffa80`0abdc028 00000000`f60e4000 00000000`1c000135 hal.dll hal.dll+12a3b x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\081512-21106-01.dmp 6 15 7601 275,864
081512-19780-01.dmp 8/15/2012 8:46:36 PM IRQL_NOT_LESS_OR_EQUAL 0x0000000a 00000000`00000008 00000000`00000002 00000000`00000000 fffff800`032d76de ntoskrnl.exe ntoskrnl.exe+7f1c0 NT Kernel & System Microsoft® Windows® Operating System Microsoft Corporation 6.1.7601.17835 (win7sp1_gdr.120503-2030) x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\081512-19780-01.dmp 6 15 7601 275,864
081512-19484-01.dmp 8/15/2012 5:38:37 PM 0x00000124 00000000`00000000 fffffa80`0ac45028 00000000`b65ea000 00000000`00000135 hal.dll hal.dll+12a3b x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\081512-19484-01.dmp 6 15 7601 275,864
081512-20545-01.dmp 8/15/2012 4:29:01 PM NTFS_FILE_SYSTEM 0x00000024 00000000`001904fb fffff880`0438f848 fffff880`0438f0a0 fffff880`014bc60d Ntfs.sys Ntfs.sys+b060d x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\081512-20545-01.dmp 6 15 7601 269,728
081512-22042-01.dmp 8/15/2012 4:07:43 PM 0x00000124 00000000`00000000 fffffa80`0ac47028 00000000`b42d2000 00000000`00000135 hal.dll hal.dll+12a3b x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\081512-22042-01.dmp 6 15 7601 275,864
081412-19812-01.dmp 8/14/2012 10:50:56 PM DRIVER_IRQL_NOT_LESS_OR_EQUAL 0x000000d1 fffff800`132d716f 00000000`00000002 00000000`00000008 fffff800`132d716f ntoskrnl.exe ntoskrnl.exe+7f1c0 NT Kernel & System Microsoft® Windows® Operating System Microsoft Corporation 6.1.7601.17835 (win7sp1_gdr.120503-2030) x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\081412-19812-01.dmp 6 15 7601 275,864
081412-20654-01.dmp 8/14/2012 10:36:59 PM DRIVER_IRQL_NOT_LESS_OR_EQUAL 0x000000d1 fffff7ff`e7928200 00000000`00000002 00000000`00000008 fffff7ff`e7928200 ntoskrnl.exe ntoskrnl.exe+7f1c0 NT Kernel & System Microsoft® Windows® Operating System Microsoft Corporation 6.1.7601.17835 (win7sp1_gdr.120503-2030) x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\081412-20654-01.dmp 6 15 7601 275,864
081412-21138-01.dmp 8/14/2012 8:23:07 PM BAD_POOL_HEADER 0x00000019 00000000`00000020 fffffa80`0a704000 fffffa80`0a704460 00000000`04460000 fltmgr.sys fltmgr.sys+47d4 x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\081412-21138-01.dmp 6 15 7601 275,864
081412-21543-01.dmp 8/14/2012 7:38:23 PM NTFS_FILE_SYSTEM 0x00000024 00000000`001904fb fffff880`0a04a398 fffff880`0a049bf0 fffff880`012d0863 Ntfs.sys Ntfs.sys+a5863 x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\081412-21543-01.dmp 6 15 7601 275,864
081412-21668-01.dmp 8/14/2012 4:42:07 PM 0x00000124 00000000`00000000 fffffa80`0ac55028 00000000`b4002000 00000000`69000145 hal.dll hal.dll+12a3b x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\081412-21668-01.dmp 6 15 7601 275,864
081412-21231-01.dmp 8/14/2012 3:00:03 PM 0x00000124 00000000`00000000 fffffa80`0ac41028 00000000`b658a000 00000000`00000135 hal.dll hal.dll+12a3b x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\081412-21231-01.dmp 6 15 7601 275,864
081312-24538-01.dmp 8/13/2012 10:53:23 PM 0x00000124 00000000`00000000 fffffa80`0ac4f028 00000000`b620a000 00000000`00000135 hal.dll hal.dll+12a3b x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\081312-24538-01.dmp 6 15 7601 275,864
081312-25849-01.dmp 8/13/2012 10:17:40 PM 0x00000124 00000000`00000000 fffffa80`0ac5c028 00000000`b66b4000 00000000`00000135 hal.dll hal.dll+12a3b x64 ntoskrnl.exe+7f1c0 C:\Windows\Minidump\081312-25849-01.dmp 6 15 7601 275,864

[Burningtreefarm]

Ntfs.sys Ntfs.sys+a5863 fffff880`0122b000 fffff880`013ce000 0x001a3000 0x4d79997b 3/10/2011 11:39:39 PM
ntoskrnl.exe ntoskrnl.exe+aa3ac fffff800`03213000 fffff800`037fb000 0x005e8000 0x4fa390f3 5/4/2012 4:18:59 AM Microsoft® Windows® Operating System NT Kernel & System 6.1.7601.17835 (win7sp1_gdr.120503-2030) Microsoft Corporation C:\Windows\system32\ntoskrnl.exe
hal.dll fffff800`037fb000 fffff800`03844000 0x00049000 0x4ce7c669 11/20/2010 9:00:25 AM
kdcom.dll fffff800`00bbd000 fffff800`00bc7000 0x0000a000 0x4d4d8061 2/5/2011 12:52:49 PM
mcupdate_AuthenticAMD.dll fffff880`00c13000 fffff880`00c20000 0x0000d000 0x4a5bdf65 7/13/2009 9:29:09 PM
PSHED.dll fffff880`00c20000 fffff880`00c34000 0x00014000 0x4a5be027 7/13/2009 9:32:23 PM Microsoft® Windows® Operating System Platform Specific Hardware Error Driver 6.1.7600.16385 (win7_rtm.090713-1255) Microsoft Corporation C:\Windows\system32\PSHED.dll
CLFS.SYS fffff880`00c34000 fffff880`00c92000 0x0005e000 0x4a5bc11d 7/13/2009 7:19:57 PM
CI.dll fffff880`00c92000 fffff880`00d52000 0x000c0000 0x4ce7c944 11/20/2010 9:12:36 AM
Wdf01000.sys fffff880`00d52000 fffff880`00df6000 0x000a4000 0x4a5bc19f 7/13/2009 7:22:07 PM
WDFLDR.SYS fffff880`00c00000 fffff880`00c0f000 0x0000f000 0x4a5bc11a 7/13/2009 7:19:54 PM
ACPI.sys fffff880`00e43000 fffff880`00e9a000 0x00057000 0x4ce79294 11/20/2010 5:19:16 AM
WMILIB.SYS fffff880`00e9a000 fffff880`00ea3000 0x00009000 0x4a5bc117 7/13/2009 7:19:51 PM
msisadrv.sys fffff880`00ea3000 fffff880`00ead000 0x0000a000 0x4a5bc0fe 7/13/2009 7:19:26 PM
pci.sys fffff880`00ead000 fffff880`00ee0000 0x00033000 0x4ce7928f 11/20/2010 5:19:11 AM
vdrvroot.sys fffff880`00ee0000 fffff880`00eed000 0x0000d000 0x4a5bcadb 7/13/2009 8:01:31 PM
partmgr.sys fffff880`00eed000 fffff880`00f02000 0x00015000 0x4f641bc1 3/17/2012 1:06:09 AM
volmgr.sys fffff880`00f02000 fffff880`00f17000 0x00015000 0x4ce792a0 11/20/2010 5:19:28 AM
volmgrx.sys fffff880`00f17000 fffff880`00f73000 0x0005c000 0x4ce792eb 11/20/2010 5:20:43 AM
pciide.sys fffff880`00f73000 fffff880`00f7a000 0x00007000 0x4a5bc115 7/13/2009 7:19:49 PM
PCIIDEX.SYS fffff880`00f7a000 fffff880`00f8a000 0x00010000 0x4a5bc114 7/13/2009 7:19:48 PM
mountmgr.sys fffff880`00f8a000 fffff880`00fa4000 0x0001a000 0x4ce79299 11/20/2010 5:19:21 AM
atapi.sys fffff880`00fa4000 fffff880`00fad000 0x00009000 0x4a5bc113 7/13/2009 7:19:47 PM
ataport.SYS fffff880`00fad000 fffff880`00fd7000 0x0002a000 0x4ce79293 11/20/2010 5:19:15 AM
amdxata.sys fffff880`00fd7000 fffff880`00fe2000 0x0000b000 0x4ba3a3ca 3/19/2010 12:18:18 PM
fltmgr.sys fffff880`0100c000 fffff880`01058000 0x0004c000 0x4ce7929c 11/20/2010 5:19:24 AM
fileinfo.sys fffff880`01058000 fffff880`0106c000 0x00014000 0x4a5bc481 7/13/2009 7:34:25 PM
SYMDS64.SYS fffff880`0106c000 fffff880`010dd000 0x00071000 0x4cfece7a 12/7/2010 8:16:58 PM
SYMEFA64.SYS fffff880`010dd000 fffff880`011c1000 0x000e4000 0x4d7d899a 3/13/2011 11:20:58 PM
msrpc.sys fffff880`0142e000 fffff880`0148c000 0x0005e000 0x4ce79334 11/20/2010 5:21:56 AM
ksecdd.sys fffff880`0148c000 fffff880`014a7000 0x0001b000 0x4fc97f6f 6/1/2012 10:50:23 PM
cng.sys fffff880`014a7000 fffff880`01519000 0x00072000 0x4fc987bf 6/1/2012 11:25:51 PM
pcw.sys fffff880`01519000 fffff880`0152a000 0x00011000 0x4a5bc0ff 7/13/2009 7:19:27 PM
Fs_Rec.sys fffff880`0152a000 fffff880`01534000 0x0000a000 0x4f4eefd2 2/29/2012 11:41:06 PM
ndis.sys fffff880`0167c000 fffff880`0176f000 0x000f3000 0x4ce79392 11/20/2010 5:23:30 AM
NETIO.SYS fffff880`0176f000 fffff880`017cf000 0x00060000 0x4ce79381 11/20/2010 5:23:13 AM
ksecpkg.sys fffff880`017cf000 fffff880`017f9000 0x0002a000 0x4fc9880f 6/1/2012 11:27:11 PM
tcpip.sys fffff880`01871000 fffff880`01a74000 0x00203000 0x4f757012 3/30/2012 4:34:26 AM
fwpkclnt.sys fffff880`01a74000 fffff880`01abe000 0x0004a000 0x4ce79321 11/20/2010 5:21:37 AM
volsnap.sys fffff880`01abe000 fffff880`01b0a000 0x0004c000 0x4ce792c8 11/20/2010 5:20:08 AM
spldr.sys fffff880`01b0a000 fffff880`01b12000 0x00008000 0x4a0858bb 5/11/2009 12:56:27 PM
rdyboost.sys fffff880`01b12000 fffff880`01b4c000 0x0003a000 0x4ce7982e 11/20/2010 5:43:10 AM
mup.sys fffff880`01b4c000 fffff880`01b5e000 0x00012000 0x4a5bc201 7/13/2009 7:23:45 PM
hwpolicy.sys fffff880`01b5e000 fffff880`01b67000 0x00009000 0x4ce7927e 11/20/2010 5:18:54 AM
fvevol.sys fffff880`01b67000 fffff880`01ba1000 0x0003a000 0x4ce793b6 11/20/2010 5:24:06 AM
disk.sys fffff880`01ba1000 fffff880`01bb7000 0x00016000 0x4a5bc11d 7/13/2009 7:19:57 PM
CLASSPNP.SYS fffff880`01bb7000 fffff880`01be7000 0x00030000 0x4ce7929b 11/20/2010 5:19:23 AM
AtiPcie.sys fffff880`01be7000 fffff880`01bef000 0x00008000 0x4a924e76 8/24/2009 4:25:26 AM
cdrom.sys fffff880`01828000 fffff880`01852000 0x0002a000 0x4ce79298 11/20/2010 5:19:20 AM
Null.SYS fffff880`01852000 fffff880`0185b000 0x00009000 0x4a5bc109 7/13/2009 7:19:37 PM
Beep.SYS fffff880`0185b000 fffff880`01862000 0x00007000 0x4a5bca8d 7/13/2009 8:00:13 PM
vga.sys fffff880`01862000 fffff880`01870000 0x0000e000 0x4a5bc587 7/13/2009 7:38:47 PM
VIDEOPRT.SYS fffff880`01600000 fffff880`01625000 0x00025000 0x4a5bc58b 7/13/2009 7:38:51 PM
watchdog.sys fffff880`01625000 fffff880`01635000 0x00010000 0x4a5bc53f 7/13/2009 7:37:35 PM
RDPCDD.sys fffff880`01635000 fffff880`0163e000 0x00009000 0x4a5bce62 7/13/2009 8:16:34 PM
rdpencdd.sys fffff880`0163e000 fffff880`01647000 0x00009000 0x4a5bce62 7/13/2009 8:16:34 PM
rdprefmp.sys fffff880`01647000 fffff880`01650000 0x00009000 0x4a5bce63 7/13/2009 8:16:35 PM
Msfs.SYS fffff880`01650000 fffff880`0165b000 0x0000b000 0x4a5bc113 7/13/2009 7:19:47 PM
Npfs.SYS fffff880`0165b000 fffff880`0166c000 0x00011000 0x4a5bc114 7/13/2009 7:19:48 PM
tdx.sys fffff880`01534000 fffff880`01556000 0x00022000 0x4ce79332 11/20/2010 5:21:54 AM
TDI.SYS fffff880`0166c000 fffff880`01679000 0x0000d000 0x4ce7933e 11/20/2010 5:22:06 AM
afd.sys fffff880`01556000 fffff880`015df000 0x00089000 0x4efa9418 12/27/2011 11:59:20 PM
netbt.sys fffff880`04218000 fffff880`0425d000 0x00045000 0x4ce79386 11/20/2010 5:23:18 AM
wfplwf.sys fffff880`0425d000 fffff880`04266000 0x00009000 0x4a5bccb6 7/13/2009 8:09:26 PM
pacer.sys fffff880`04266000 fffff880`0428c000 0x00026000 0x4ce7a862 11/20/2010 6:52:18 AM
netbios.sys fffff880`0428c000 fffff880`0429b000 0x0000f000 0x4a5bccb6 7/13/2009 8:09:26 PM
serial.sys fffff880`0429b000 fffff880`042b8000 0x0001d000 0x4a5bcaa8 7/13/2009 8:00:40 PM
wanarp.sys fffff880`042b8000 fffff880`042d3000 0x0001b000 0x4ce7a874 11/20/2010 6:52:36 AM
termdd.sys fffff880`042d3000 fffff880`042e7000 0x00014000 0x4ce7ab0c 11/20/2010 7:03:40 AM
SYMNETS.SYS fffff880`042e7000 fffff880`0434e000 0x00067000 0x4dae0dbb 4/19/2011 6:33:31 PM
SYMEVENT64x86.SYS fffff880`0434e000 fffff880`04384000 0x00036000 0x4d8bcd8c 3/24/2011 7:02:36 PM
Ironx64.SYS fffff880`04384000 fffff880`043b1000 0x0002d000 0x4cddc88a 11/12/2010 7:06:50 PM
SRTSPX64.SYS fffff880`043b1000 fffff880`043c7000 0x00016000 0x4d92997a 3/29/2011 10:46:18 PM
rdbss.sys fffff880`046c3000 fffff880`04714000 0x00051000 0x4ce79497 11/20/2010 5:27:51 AM
nsiproxy.sys fffff880`04714000 fffff880`04720000 0x0000c000 0x4a5bc15e 7/13/2009 7:21:02 PM
mssmbios.sys fffff880`04720000 fffff880`0472b000 0x0000b000 0x4a5bc3be 7/13/2009 7:31:10 PM
IDSvia64.sys fffff880`0472b000 fffff880`047ac000 0x00081000 0x4fbecd81 5/24/2012 8:08:33 PM
eeCtrl64.sys fffff880`04600000 fffff880`0467a000 0x0007a000 0x50186c13 7/31/2012 7:36:51 PM
EraserUtilRebootDrv.sys fffff880`0467a000 fffff880`046a0000 0x00026000 0x50186c12 7/31/2012 7:36:50 PM
discache.sys fffff880`046a0000 fffff880`046af000 0x0000f000 0x4a5bc52e 7/13/2009 7:37:18 PM
dfsc.sys fffff880`047ac000 fffff880`047ca000 0x0001e000 0x4ce79447 11/20/2010 5:26:31 AM
blbdrive.sys fffff880`047ca000 fffff880`047db000 0x00011000 0x4a5bc4df 7/13/2009 7:35:59 PM
BHDrvx64.sys fffff880`04425000 fffff880`0457c000 0x00157000 0x50236349 8/9/2012 3:14:17 AM
AsIO.sys fffff880`0457c000 fffff880`04582000 0x00006000 0x4c7325fe 8/23/2010 9:53:02 PM C:\Windows\system32\drivers\AsIO.sys
tunnel.sys fffff880`04582000 fffff880`045a8000 0x00026000 0x4ce7a846 11/20/2010 6:51:50 AM
amdppm.sys fffff880`045a8000 fffff880`045bd000 0x00015000 0x4a5bc0fd 7/13/2009 7:19:25 PM
atikmpag.sys fffff880`04cb6000 fffff880`04d17000 0x00061000 0x4fd61c26 6/11/2012 12:26:14 PM
atikmdag.sys fffff880`05846000 fffff880`06261000 0x00a1b000 0x4fd623f3 6/11/2012 12:59:31 PM
dxgkrnl.sys fffff880`06261000 fffff880`06355000 0x000f4000 0x4ce799fa 11/20/2010 5:50:50 AM
dxgmms1.sys fffff880`06355000 fffff880`0639b000 0x00046000 0x4ce799c1 11/20/2010 5:49:53 AM
HDAudBus.sys fffff880`0639b000 fffff880`063bf000 0x00024000 0x4ce7a65e 11/20/2010 6:43:42 AM
1394ohci.sys fffff880`063bf000 fffff880`063fd000 0x0003e000 0x4ce7a6a8 11/20/2010 6:44:56 AM
asmtxhci.sys fffff880`04d17000 fffff880`04d7c000 0x00065000 0x4de6f522 6/1/2011 10:27:46 PM
GEARAspiWDM.sys fffff880`05800000 fffff880`0580d000 0x0000d000 0x4a1151c0 5/18/2009 8:17:04 AM
usbohci.sys fffff880`0580d000 fffff880`05818000 0x0000b000 0x4d8c0bff 3/24/2011 11:29:03 PM
USBPORT.SYS fffff880`04d7c000 fffff880`04dd2000 0x00056000 0x4d8c0c08 3/24/2011 11:29:12 PM
usbehci.sys fffff880`05818000 fffff880`05829000 0x00011000 0x4d8c0c00 3/24/2011 11:29:04 PM
ASACPI.sys fffff880`05829000 fffff880`05831000 0x00008000 0x4a5e9f11 7/15/2009 11:31:29 PM
i8042prt.sys fffff880`04dd2000 fffff880`04df0000 0x0001e000 0x4a5bc11d 7/13/2009 7:19:57 PM
kbdclass.sys fffff880`05831000 fffff880`05840000 0x0000f000 0x4a5bc116 7/13/2009 7:19:50 PM
serenum.sys fffff880`04df0000 fffff880`04dfc000 0x0000c000 0x4a5bcaa1 7/13/2009 8:00:33 PM
VSTBS26.SYS fffff880`04c00000 fffff880`04c70000 0x00070000 0x48f690ae 10/15/2008 8:54:06 PM
ks.sys fffff880`04c70000 fffff880`04cb3000 0x00043000 0x4ce7a3f3 11/20/2010 6:33:23 AM
VSTDPV6.SYS fffff880`0504e000 fffff880`051c2000 0x00174000 0x48f69189 10/15/2008 8:57:45 PM
VSTCNXT6.SYS fffff880`05205000 fffff880`052d0000 0x000cb000 0x48f69046 10/15/2008 8:52:22 PM
modem.sys fffff880`052d0000 fffff880`052df000 0x0000f000 0x4a5bcd08 7/13/2009 8:10:48 PM
Rt64win7.sys fffff880`052df000 fffff880`05364000 0x00085000 0x4df1baab 6/10/2011 2:33:15 AM
wmiacpi.sys fffff880`05364000 fffff880`0536d000 0x00009000 0x4a5bc3b6 7/13/2009 7:31:02 PM
CompositeBus.sys fffff880`0536d000 fffff880`0537d000 0x00010000 0x4ce7a3ed 11/20/2010 6:33:17 AM
AgileVpn.sys fffff880`0537d000 fffff880`05393000 0x00016000 0x4a5bccf0 7/13/2009 8:10:24 PM
rasl2tp.sys fffff880`05393000 fffff880`053b7000 0x00024000 0x4ce7a872 11/20/2010 6:52:34 AM
ndistapi.sys fffff880`053b7000 fffff880`053c3000 0x0000c000 0x4a5bccd8 7/13/2009 8:10:00 PM
ndiswan.sys fffff880`053c3000 fffff880`053f2000 0x0002f000 0x4ce7a870 11/20/2010 6:52:32 AM
raspppoe.sys fffff880`051c2000 fffff880`051dd000 0x0001b000 0x4a5bcce9 7/13/2009 8:10:17 PM
raspptp.sys fffff880`051dd000 fffff880`051fe000 0x00021000 0x4ce7a86f 11/20/2010 6:52:31 AM
rassstp.sys fffff880`05000000 fffff880`0501a000 0x0001a000 0x4a5bccf1 7/13/2009 8:10:25 PM
mouclass.sys fffff880`0501a000 fffff880`05029000 0x0000f000 0x4a5bc116 7/13/2009 7:19:50 PM
swenum.sys fffff880`053f2000 fffff880`053f3480 0x00001480 0x4a5bca92 7/13/2009 8:00:18 PM
amdiox64.sys fffff880`05029000 fffff880`0503d000 0x00014000 0x4b7d5a21 2/18/2010 11:17:53 AM
umbus.sys fffff880`045bd000 fffff880`045cf000 0x00012000 0x4ce7a695 11/20/2010 6:44:37 AM
usbhub.sys fffff880`066cc000 fffff880`06726000 0x0005a000 0x4d8c0c15 3/24/2011 11:29:25 PM
NDProxy.SYS fffff880`06726000 fffff880`0673b000 0x00015000 0x4ce7a864 11/20/2010 6:52:20 AM
AtihdW76.sys fffff880`0673b000 fffff880`06756000 0x0001b000 0x4f463154 2/23/2012 8:30:12 AM
portcls.sys fffff880`06756000 fffff880`06793000 0x0003d000 0x4a5bcc03 7/13/2009 8:06:27 PM
drmk.sys fffff880`06793000 fffff880`067b5000 0x00022000 0x4a5bd8e5 7/13/2009 9:01:25 PM
ksthunk.sys fffff880`067b5000 fffff880`067ba200 0x00005200 0x4a5bca93 7/13/2009 8:00:19 PM
stdriver64.sys fffff880`067bb000 fffff880`067cc000 0x00011000 0x4d059373 12/12/2010 11:30:59 PM
asmthub3.sys fffff880`067cc000 fffff880`067f0000 0x00024000 0x4de6f52e 6/1/2011 10:27:58 PM
RTKVHD64.sys fffff880`07824000 fffff880`07ae7c80 0x002c3c80 0x4e09b650 6/28/2011 7:09:04 AM
win32k.sys fffff960`000a0000 fffff960`003b5000 0x00315000 0x4fd6b298 6/11/2012 11:08:08 PM
Dxapi.sys fffff880`07ae8000 fffff880`07af4000 0x0000c000 0x4a5bc574 7/13/2009 7:38:28 PM
crashdmp.sys fffff880`07af4000 fffff880`07b02000 0x0000e000 0x4a5bcabd 7/13/2009 8:01:01 PM
dump_dumpata.sys fffff880`07b02000 fffff880`07b0e000 0x0000c000 0x4a5bc113 7/13/2009 7:19:47 PM
dump_atapi.sys fffff880`07b0e000 fffff880`07b17000 0x00009000 0x4a5bc113 7/13/2009 7:19:47 PM
dump_dumpfve.sys fffff880`07b17000 fffff880`07b2a000 0x00013000 0x4a5bc18f 7/13/2009 7:21:51 PM
dc3d.sys fffff880`07b2a000 fffff880`07b3c000 0x00012000 0x4dd37e3c 5/18/2011 4:07:24 AM
HIDPARSE.SYS fffff880`07b3c000 fffff880`07b44080 0x00008080 0x4a5bcbf9 7/13/2009 8:06:17 PM
hidusb.sys fffff880`07b45000 fffff880`07b53000 0x0000e000 0x4ce7a665 11/20/2010 6:43:49 AM
HIDCLASS.SYS fffff880`07b53000 fffff880`07b6c000 0x00019000 0x4ce7a665 11/20/2010 6:43:49 AM
USBD.SYS fffff880`07b6c000 fffff880`07b6df00 0x00001f00 0x4d8c0bfb 3/24/2011 11:28:59 PM
NuidFltr.sys fffff880`07b6e000 fffff880`07b7a000 0x0000c000 0x4d9f9308 4/8/2011 6:58:16 PM
mouhid.sys fffff880`07b7a000 fffff880`07b87000 0x0000d000 0x4a5bca94 7/13/2009 8:00:20 PM
point64.sys fffff880`07b87000 fffff880`07b97000 0x00010000 0x4c29b4c7 6/29/2010 4:54:31 AM
usbprint.sys fffff880`07b97000 fffff880`07ba3000 0x0000c000 0x4a5bd37a 7/13/2009 8:38:18 PM
monitor.sys fffff880`07ba3000 fffff880`07bb1000 0x0000e000 0x4a5bc58c 7/13/2009 7:38:52 PM
TSDDD.dll fffff960`00450000 fffff960`0045a000 0x0000a000 0x4a5bce62 7/13/2009 8:16:34 PM
cdd.dll fffff960`007a0000 fffff960`007c7000 0x00027000 0x00000000
ATMFD.DLL fffff960`00950000 fffff960`009b1000 0x00061000 0x4d5f86b0 2/19/2011 5:00:32 AM Adobe Type Manager Windows NT OpenType/Type 1 Font Driver 5.1 Build 234 Adobe Systems Incorporated C:\Windows\system32\ATMFD.DLL
USBSTOR.SYS fffff880`07bb1000 fffff880`07bcc000 0x0001b000 0x4d79a6fc 3/11/2011 12:37:16 AM
luafv.sys fffff880`07bcc000 fffff880`07bef000 0x00023000 0x4a5bc295 7/13/2009 7:26:13 PM
WudfPf.sys fffff880`07800000 fffff880`07821000 0x00021000 0x4ce7a624 11/20/2010 6:42:44 AM
lltdio.sys fffff880`06600000 fffff880`06615000 0x00015000 0x4a5bcc92 7/13/2009 8:08:50 PM
rspndr.sys fffff880`06615000 fffff880`0662d000 0x00018000 0x4a5bcc92 7/13/2009 8:08:50 PM
RtNdPt60.sys fffff880`07bef000 fffff880`07bfb000 0x0000c000 0x4a63d614 7/19/2009 10:27:32 PM
HTTP.sys fffff880`03e4b000 fffff880`03f14000 0x000c9000 0x4ce793ce 11/20/2010 5:24:30 AM
bowser.sys fffff880`03f14000 fffff880`03f32000 0x0001e000 0x4d649328 2/23/2011 12:55:04 AM
mpsdrv.sys fffff880`03f32000 fffff880`03f4a000 0x00018000 0x4a5bcc79 7/13/2009 8:08:25 PM
mrxsmb.sys fffff880`03f4a000 fffff880`03f77000 0x0002d000 0x4db78226 4/26/2011 10:40:38 PM
mrxsmb10.sys fffff880`03f77000 fffff880`03fc5000 0x0004e000 0x4e17c104 7/8/2011 10:46:28 PM
mrxsmb20.sys fffff880`03fc5000 fffff880`03fe9000 0x00024000 0x4db781e9 4/26/2011 10:39:37 PM
AODDriver2.sys fffff880`03e00000 fffff880`03e31000 0x00031000 0x4f55def4 3/6/2012 5:55:00 AM
cpuz135_x64.sys fffff880`03e31000 fffff880`03e3a000 0x00009000 0x4e799f0d 9/21/2011 4:23:41 AM
peauth.sys fffff880`07e6e000 fffff880`07f14000 0x000a6000 0x4a5bd8df 7/13/2009 9:01:19 PM
secdrv.SYS fffff880`07f14000 fffff880`07f1f000 0x0000b000 0x4508052e 9/13/2006 9:18:38 AM
srvnet.sys fffff880`07f1f000 fffff880`07f50000 0x00031000 0x4dba2aff 4/28/2011 11:05:35 PM
tcpipreg.sys fffff880`07f50000 fffff880`07f62000 0x00012000 0x4ce7a844 11/20/2010 6:51:48 AM
srv2.sys fffff880`07f62000 fffff880`07fcb000 0x00069000 0x4dba2b0a 4/28/2011 11:05:46 PM
srv.sys fffff880`0662d000 fffff880`066c5000 0x00098000 0x4dba2b1e 4/28/2011 11:06:06 PM
WUDFRd.sys fffff880`07fcb000 fffff880`07ffc000 0x00031000 0x4ce7a654 11/20/2010 6:43:32 AM
SRTSP64.SYS fffff880`0a417000 fffff880`0a4d7000 0x000c0000 0x4d929974 3/29/2011 10:46:12 PM
EX64.SYS fffff880`0a600000 fffff880`0a7fe000 0x001fe000 0x4f97c380 4/25/2012 5:27:28 AM
ENG64.SYS fffff880`0a4d7000 fffff880`0a4f8000 0x00021000 0x4f97c3f5 4/25/2012 5:29:25 AM
asyncmac.sys fffff880`0a569000 fffff880`0a574000 0x0000b000 0x4a5bcce5 7/13/2009 8:10:13 PM

[screen317]

Hi,

Click Start --> Run, enter cmd.exe, and press Enter


In the black box that appears, enter this command exactly as shown:

chkdsk>"%userprofile%\desktop\chkdsk.txt"

Press Enter.


When it finishes, open chkdsk.txt on your Desktop and post its contents here.

-screen317