Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

avira detected 64 hidden objects now it says i need a rescue cd


  • Please log in to reply
10 replies to this topic

#1 westsyde

westsyde

  • Members
  • 115 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:10:50 AM

Posted 16 April 2012 - 03:12 AM

hello, i have a windows 7 laptop. im running malware bites, superantispyware and avira. avira detected 64 hidden objects than i got a message saying "one or more hidden objects that indicate a hidden virus or unwanted program were found an analysis of your computer with the avira rescue cd is necessary for exact identification and repair do you want to cancel the scan?" so i havent ever made a avira rescue cd and i was reading i need to make one on a clean computer. this is my first virus (or whatever) i have had with avira so im new to this message. can you please help me with the next steps to removing these???
thank you very much
p.s. i have read other forums about it thru avira but dont feel confident enough to follow their instructions)
thanks again

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:50 AM

Posted 16 April 2012 - 09:15 AM

Hi

That looks like a false positive,look at this topic

http://forum.avira.com/wbb/index.php?page=Thread&threadID=143691

Press Windows+R key and type

appwiz.cpl and click ok

On left side,click on view installed updates

search for KB2679255 and uninstall it

Rescan it

good luck

Edited by narenxp, 16 April 2012 - 09:15 AM.


#3 westsyde

westsyde
  • Topic Starter

  • Members
  • 115 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:10:50 AM

Posted 17 April 2012 - 01:10 AM

hello, thank you so much for your reply. i was at work all day so had to wait till now to do all this lol :D i searched and uninstalled what you said to. and rescanned and got 19 hidden objects. but i didnt get the message about the rescue CD this time. every thing that was found all started with "HKEY_LOCAL_MACHINE\Software\Microsoft\Windows" so i assume its all windows downloads and software and network services(sorry for my poor computer grammer lol)
it really worried me when avira gave me that message because approx a week (or 2) i got a blue screen error and just before i scanned my computer (yesterday) my browser kept on freezing ( which may or may not have been from multitasking ;). all these detections must have just been all updates?
do i need to reinstall the program (or update) that i uninstalled?
and should i have a avira rescue disk just incase i do get infected?

thank you so much for your help and time

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:50 AM

Posted 17 April 2012 - 01:20 AM

Probably avira should fix this issue in its next update,till then you need not install the update.

Lets run some scans to make sure PC is clean

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)


Please download GMER from here(doesnot work on 64 bit OS)

http://www2.gmer.net/download.php

Temporarily disable any real-time active protection so your security programs will not conflict with gmer's driver.

GMER will open to the Rootkit/Malware tab and perform an automatic Full Scan when first run. (do not use the computer while the scan is in progress)

If you receive a WARNING!!! about rootkit activity and are asked to fully scan your system...click NO.
Now click the Scan button. If you see a rootkit warning window, click OK.
When the scan is finished, click the Save... button to save the scan results to your Desktop. Save the file as gmer.log.
Click the Copy button and paste the results into your next reply.


Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

#5 westsyde

westsyde
  • Topic Starter

  • Members
  • 115 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:10:50 AM

Posted 17 April 2012 - 01:44 AM

thank you for the very fast reply it looks clean to me with the tdsskiller scan, but ur the expert :) a quick question before i post the log. i looked in my computer specs and it says "system type x64-based PC" which is a 64 bit os. so i cnat download gmer than?
anyways here is my scan log:
23:30:38.0392 5708 TDSS rootkit removing tool 2.7.28.0 Apr 10 2012 16:54:05
23:30:40.0433 5708 ============================================================
23:30:40.0434 5708 Current date / time: 2012/04/16 23:30:40.0433
23:30:40.0434 5708 SystemInfo:
23:30:40.0434 5708
23:30:40.0434 5708 OS Version: 6.1.7601 ServicePack: 1.0
23:30:40.0434 5708 Product type: Workstation
23:30:40.0434 5708 ComputerName: MANDY-PC
23:30:40.0435 5708 UserName: mandy
23:30:40.0435 5708 Windows directory: C:\windows
23:30:40.0435 5708 System windows directory: C:\windows
23:30:40.0435 5708 Running under WOW64
23:30:40.0435 5708 Processor architecture: Intel x64
23:30:40.0435 5708 Number of processors: 2
23:30:40.0435 5708 Page size: 0x1000
23:30:40.0435 5708 Boot type: Normal boot
23:30:40.0435 5708 ============================================================
23:30:40.0964 5708 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:30:40.0967 5708 \Device\Harddisk0\DR0:
23:30:40.0968 5708 MBR used
23:30:40.0968 5708 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x36A3F000
23:30:41.0065 5708 Initialize success
23:30:41.0066 5708 ============================================================
23:31:31.0565 5700 ============================================================
23:31:31.0565 5700 Scan started
23:31:31.0566 5700 Mode: Manual; TDLFS;
23:31:31.0566 5700 ============================================================
23:31:33.0140 5700 !SASCORE (7d9d615201a483d6fa99491c2e655a5a) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
23:31:33.0156 5700 !SASCORE - ok
23:31:33.0317 5700 1394ohci (a87d604aea360176311474c87a63bb88) C:\windows\system32\drivers\1394ohci.sys
23:31:33.0332 5700 1394ohci - ok
23:31:33.0474 5700 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\windows\system32\drivers\ACPI.sys
23:31:33.0482 5700 ACPI - ok
23:31:33.0624 5700 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\windows\system32\drivers\acpipmi.sys
23:31:33.0651 5700 AcpiPmi - ok
23:31:33.0747 5700 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
23:31:33.0758 5700 AdobeARMservice - ok
23:31:33.0909 5700 AdobeFlashPlayerUpdateSvc (0d4c486a24a711a45fd83acdf4d18506) C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
23:31:33.0914 5700 AdobeFlashPlayerUpdateSvc - ok
23:31:34.0080 5700 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\windows\system32\drivers\adp94xx.sys
23:31:34.0101 5700 adp94xx - ok
23:31:34.0251 5700 adpahci (597f78224ee9224ea1a13d6350ced962) C:\windows\system32\drivers\adpahci.sys
23:31:34.0260 5700 adpahci - ok
23:31:34.0412 5700 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\windows\system32\drivers\adpu320.sys
23:31:34.0424 5700 adpu320 - ok
23:31:34.0552 5700 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\windows\System32\aelupsvc.dll
23:31:34.0561 5700 AeLookupSvc - ok
23:31:34.0687 5700 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\windows\system32\drivers\afd.sys
23:31:34.0697 5700 AFD - ok
23:31:34.0829 5700 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\windows\system32\drivers\agp440.sys
23:31:34.0839 5700 agp440 - ok
23:31:34.0948 5700 ALG (3290d6946b5e30e70414990574883ddb) C:\windows\System32\alg.exe
23:31:34.0957 5700 ALG - ok
23:31:35.0095 5700 aliide (5812713a477a3ad7363c7438ca2ee038) C:\windows\system32\drivers\aliide.sys
23:31:35.0101 5700 aliide - ok
23:31:35.0240 5700 amdide (1ff8b4431c353ce385c875f194924c0c) C:\windows\system32\drivers\amdide.sys
23:31:35.0248 5700 amdide - ok
23:31:35.0377 5700 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\windows\system32\drivers\amdk8.sys
23:31:35.0388 5700 AmdK8 - ok
23:31:35.0532 5700 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\windows\system32\drivers\amdppm.sys
23:31:35.0542 5700 AmdPPM - ok
23:31:35.0657 5700 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\windows\system32\drivers\amdsata.sys
23:31:35.0667 5700 amdsata - ok
23:31:35.0800 5700 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\windows\system32\drivers\amdsbs.sys
23:31:35.0813 5700 amdsbs - ok
23:31:35.0930 5700 amdxata (540daf1cea6094886d72126fd7c33048) C:\windows\system32\drivers\amdxata.sys
23:31:35.0935 5700 amdxata - ok
23:31:36.0048 5700 AntiVirFirewallService (6b4479e48bffbc52fc97a16ddb3f4526) C:\Program Files (x86)\Avira\AntiVir Desktop\avfwsvc.exe
23:31:36.0058 5700 AntiVirFirewallService - ok
23:31:36.0169 5700 AntiVirMailService (fb086757347d788366ebfb5f6f35be08) C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc.exe
23:31:36.0179 5700 AntiVirMailService - ok
23:31:36.0294 5700 AntiVirSchedulerService (a0cca65a17ff3d110c4c63ed1570daa7) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
23:31:36.0304 5700 AntiVirSchedulerService - ok
23:31:36.0409 5700 AntiVirService (04972a4491de1f7f098f3e48ad550d3b) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
23:31:36.0420 5700 AntiVirService - ok
23:31:36.0569 5700 AntiVirWebService (c3377384082bb2b278895e209b7dbd5a) C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE
23:31:36.0594 5700 AntiVirWebService - ok
23:31:36.0746 5700 AppID (89a69c3f2f319b43379399547526d952) C:\windows\system32\drivers\appid.sys
23:31:36.0755 5700 AppID - ok
23:31:36.0911 5700 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\windows\System32\appidsvc.dll
23:31:36.0917 5700 AppIDSvc - ok
23:31:37.0045 5700 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\windows\System32\appinfo.dll
23:31:37.0051 5700 Appinfo - ok
23:31:37.0204 5700 arc (c484f8ceb1717c540242531db7845c4e) C:\windows\system32\drivers\arc.sys
23:31:37.0211 5700 arc - ok
23:31:37.0351 5700 arcsas (019af6924aefe7839f61c830227fe79c) C:\windows\system32\drivers\arcsas.sys
23:31:37.0357 5700 arcsas - ok
23:31:37.0529 5700 AsyncMac (769765ce2cc62867468cea93969b2242) C:\windows\system32\DRIVERS\asyncmac.sys
23:31:37.0533 5700 AsyncMac - ok
23:31:37.0638 5700 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\windows\system32\drivers\atapi.sys
23:31:37.0643 5700 atapi - ok
23:31:37.0770 5700 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\windows\System32\Audiosrv.dll
23:31:37.0783 5700 AudioEndpointBuilder - ok
23:31:37.0797 5700 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\windows\System32\Audiosrv.dll
23:31:37.0802 5700 AudioSrv - ok
23:31:37.0933 5700 avfwim (886ceddeb9e347f7c37263ca234eae65) C:\windows\system32\DRIVERS\avfwim.sys
23:31:37.0941 5700 avfwim - ok
23:31:38.0090 5700 avfwot (10ce27cb8e47feb48f557e0cd8d1874d) C:\windows\system32\DRIVERS\avfwot.sys
23:31:38.0099 5700 avfwot - ok
23:31:38.0226 5700 avgntflt (aa8f79a1bdfc03b3bc70c44ab00589b4) C:\windows\system32\DRIVERS\avgntflt.sys
23:31:38.0233 5700 avgntflt - ok
23:31:38.0343 5700 avipbb (852e3c0a60d368c487949e55ad52a47f) C:\windows\system32\DRIVERS\avipbb.sys
23:31:38.0360 5700 avipbb - ok
23:31:38.0471 5700 avkmgr (248db59fc86de44d2779f4c7fb1a567d) C:\windows\system32\DRIVERS\avkmgr.sys
23:31:38.0480 5700 avkmgr - ok
23:31:38.0562 5700 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\windows\System32\AxInstSV.dll
23:31:38.0569 5700 AxInstSV - ok
23:31:38.0686 5700 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\windows\system32\drivers\bxvbda.sys
23:31:38.0703 5700 b06bdrv - ok
23:31:38.0813 5700 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\windows\system32\DRIVERS\b57nd60a.sys
23:31:38.0833 5700 b57nd60a - ok
23:31:38.0946 5700 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\windows\System32\bdesvc.dll
23:31:38.0958 5700 BDESVC - ok
23:31:39.0078 5700 Beep (16a47ce2decc9b099349a5f840654746) C:\windows\system32\drivers\Beep.sys
23:31:39.0081 5700 Beep - ok
23:31:39.0201 5700 BFE (82974d6a2fd19445cc5171fc378668a4) C:\windows\System32\bfe.dll
23:31:39.0213 5700 BFE - ok
23:31:39.0319 5700 BITS (1ea7969e3271cbc59e1730697dc74682) C:\windows\System32\qmgr.dll
23:31:39.0331 5700 BITS - ok
23:31:39.0442 5700 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\windows\system32\DRIVERS\blbdrive.sys
23:31:39.0451 5700 blbdrive - ok
23:31:39.0590 5700 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\windows\system32\DRIVERS\bowser.sys
23:31:39.0606 5700 bowser - ok
23:31:39.0738 5700 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\windows\system32\drivers\BrFiltLo.sys
23:31:39.0744 5700 BrFiltLo - ok
23:31:39.0850 5700 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\windows\system32\drivers\BrFiltUp.sys
23:31:39.0856 5700 BrFiltUp - ok
23:31:39.0953 5700 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\windows\System32\browser.dll
23:31:39.0956 5700 Browser - ok
23:31:40.0065 5700 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\windows\System32\Drivers\Brserid.sys
23:31:40.0084 5700 Brserid - ok
23:31:40.0197 5700 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\windows\System32\Drivers\BrSerWdm.sys
23:31:40.0205 5700 BrSerWdm - ok
23:31:40.0319 5700 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\windows\System32\Drivers\BrUsbMdm.sys
23:31:40.0321 5700 BrUsbMdm - ok
23:31:40.0430 5700 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\windows\System32\Drivers\BrUsbSer.sys
23:31:40.0433 5700 BrUsbSer - ok
23:31:40.0533 5700 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\windows\system32\drivers\bthmodem.sys
23:31:40.0538 5700 BTHMODEM - ok
23:31:40.0637 5700 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\windows\system32\bthserv.dll
23:31:40.0642 5700 bthserv - ok
23:31:40.0734 5700 cdfs (b8bd2bb284668c84865658c77574381a) C:\windows\system32\DRIVERS\cdfs.sys
23:31:40.0740 5700 cdfs - ok
23:31:40.0858 5700 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\windows\system32\DRIVERS\cdrom.sys
23:31:40.0865 5700 cdrom - ok
23:31:40.0970 5700 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\windows\System32\certprop.dll
23:31:40.0971 5700 CertPropSvc - ok
23:31:41.0105 5700 cfWiMAXService (41e7c4fa6491747402cfca77cc1c7aab) C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
23:31:41.0117 5700 cfWiMAXService - ok
23:31:41.0221 5700 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\windows\system32\drivers\circlass.sys
23:31:41.0231 5700 circlass - ok
23:31:41.0338 5700 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\windows\system32\CLFS.sys
23:31:41.0345 5700 CLFS - ok
23:31:41.0435 5700 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:31:41.0449 5700 clr_optimization_v2.0.50727_32 - ok
23:31:41.0536 5700 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
23:31:41.0547 5700 clr_optimization_v2.0.50727_64 - ok
23:31:41.0658 5700 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:31:41.0660 5700 clr_optimization_v4.0.30319_32 - ok
23:31:41.0777 5700 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
23:31:41.0780 5700 clr_optimization_v4.0.30319_64 - ok
23:31:41.0882 5700 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\windows\system32\DRIVERS\CmBatt.sys
23:31:41.0885 5700 CmBatt - ok
23:31:41.0981 5700 cmdide (e19d3f095812725d88f9001985b94edd) C:\windows\system32\drivers\cmdide.sys
23:31:41.0985 5700 cmdide - ok
23:31:42.0096 5700 CNG (c4943b6c962e4b82197542447ad599f4) C:\windows\system32\Drivers\cng.sys
23:31:42.0109 5700 CNG - ok
23:31:42.0257 5700 CnxtHdAudService (99b1b888b793de320c5479b3c953781f) C:\windows\system32\drivers\CHDRT64.sys
23:31:42.0292 5700 CnxtHdAudService - ok
23:31:42.0394 5700 Compbatt (102de219c3f61415f964c88e9085ad14) C:\windows\system32\drivers\compbatt.sys
23:31:42.0399 5700 Compbatt - ok
23:31:42.0506 5700 CompositeBus (03edb043586cceba243d689bdda370a8) C:\windows\system32\DRIVERS\CompositeBus.sys
23:31:42.0516 5700 CompositeBus - ok
23:31:42.0593 5700 COMSysApp - ok
23:31:42.0694 5700 ConfigFree Service (cab0eeaf5295fc96ddd3e19dce27e131) C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
23:31:42.0704 5700 ConfigFree Service - ok
23:31:42.0798 5700 crcdisk (1c827878a998c18847245fe1f34ee597) C:\windows\system32\drivers\crcdisk.sys
23:31:42.0805 5700 crcdisk - ok
23:31:42.0917 5700 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\windows\system32\cryptsvc.dll
23:31:42.0921 5700 CryptSvc - ok
23:31:43.0042 5700 cvhsvc (72794d112cbaff3bc0c29bf7350d4741) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
23:31:43.0053 5700 cvhsvc - ok
23:31:43.0176 5700 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\windows\system32\rpcss.dll
23:31:43.0188 5700 DcomLaunch - ok
23:31:43.0281 5700 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\windows\System32\defragsvc.dll
23:31:43.0296 5700 defragsvc - ok
23:31:43.0408 5700 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\windows\system32\Drivers\dfsc.sys
23:31:43.0419 5700 DfsC - ok
23:31:43.0530 5700 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\windows\system32\dhcpcore.dll
23:31:43.0536 5700 Dhcp - ok
23:31:43.0641 5700 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\windows\system32\drivers\discache.sys
23:31:43.0642 5700 discache - ok
23:31:43.0759 5700 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\windows\system32\drivers\disk.sys
23:31:43.0769 5700 Disk - ok
23:31:43.0870 5700 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\windows\System32\dnsrslvr.dll
23:31:43.0874 5700 Dnscache - ok
23:31:43.0964 5700 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\windows\System32\dot3svc.dll
23:31:43.0975 5700 dot3svc - ok
23:31:44.0060 5700 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\windows\system32\dps.dll
23:31:44.0063 5700 DPS - ok
23:31:44.0176 5700 drmkaud (9b19f34400d24df84c858a421c205754) C:\windows\system32\drivers\drmkaud.sys
23:31:44.0180 5700 drmkaud - ok
23:31:44.0309 5700 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\windows\System32\drivers\dxgkrnl.sys
23:31:44.0334 5700 DXGKrnl - ok
23:31:44.0434 5700 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\windows\System32\eapsvc.dll
23:31:44.0437 5700 EapHost - ok
23:31:44.0571 5700 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\windows\system32\drivers\evbda.sys
23:31:44.0664 5700 ebdrv - ok
23:31:44.0755 5700 EFS (c118a82cd78818c29ab228366ebf81c3) C:\windows\System32\lsass.exe
23:31:44.0759 5700 EFS - ok
23:31:44.0850 5700 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\windows\ehome\ehRecvr.exe
23:31:44.0864 5700 ehRecvr - ok
23:31:44.0883 5700 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\windows\ehome\ehsched.exe
23:31:44.0884 5700 ehSched - ok
23:31:45.0009 5700 elxstor (0e5da5369a0fcaea12456dd852545184) C:\windows\system32\drivers\elxstor.sys
23:31:45.0024 5700 elxstor - ok
23:31:45.0139 5700 ErrDev (34a3c54752046e79a126e15c51db409b) C:\windows\system32\drivers\errdev.sys
23:31:45.0146 5700 ErrDev - ok
23:31:45.0285 5700 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\windows\system32\es.dll
23:31:45.0297 5700 EventSystem - ok
23:31:45.0410 5700 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\windows\system32\drivers\exfat.sys
23:31:45.0424 5700 exfat - ok
23:31:45.0536 5700 fastfat (0adc83218b66a6db380c330836f3e36d) C:\windows\system32\drivers\fastfat.sys
23:31:45.0544 5700 fastfat - ok
23:31:45.0650 5700 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\windows\system32\fxssvc.exe
23:31:45.0660 5700 Fax - ok
23:31:45.0758 5700 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\windows\system32\drivers\fdc.sys
23:31:45.0766 5700 fdc - ok
23:31:45.0865 5700 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\windows\system32\fdPHost.dll
23:31:45.0871 5700 fdPHost - ok
23:31:45.0960 5700 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\windows\system32\fdrespub.dll
23:31:45.0968 5700 FDResPub - ok
23:31:46.0070 5700 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\windows\system32\drivers\fileinfo.sys
23:31:46.0082 5700 FileInfo - ok
23:31:46.0185 5700 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\windows\system32\drivers\filetrace.sys
23:31:46.0192 5700 Filetrace - ok
23:31:46.0296 5700 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\windows\system32\drivers\flpydisk.sys
23:31:46.0302 5700 flpydisk - ok
23:31:46.0407 5700 FltMgr (da6b67270fd9db3697b20fce94950741) C:\windows\system32\drivers\fltmgr.sys
23:31:46.0426 5700 FltMgr - ok
23:31:46.0552 5700 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\windows\system32\FntCache.dll
23:31:46.0571 5700 FontCache - ok
23:31:46.0647 5700 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
23:31:46.0656 5700 FontCache3.0.0.0 - ok
23:31:46.0730 5700 FsDepends (d43703496149971890703b4b1b723eac) C:\windows\system32\drivers\FsDepends.sys
23:31:46.0741 5700 FsDepends - ok
23:31:46.0848 5700 fssfltr (07da62c960ddccc2d35836aeab4fc578) C:\windows\system32\DRIVERS\fssfltr.sys
23:31:46.0856 5700 fssfltr - ok
23:31:46.0983 5700 fsssvc (28ddeeec44e988657b732cf404d504cb) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
23:31:47.0015 5700 fsssvc - ok
23:31:47.0116 5700 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\windows\system32\drivers\Fs_Rec.sys
23:31:47.0125 5700 Fs_Rec - ok
23:31:47.0243 5700 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\windows\system32\DRIVERS\fvevol.sys
23:31:47.0246 5700 fvevol - ok
23:31:47.0373 5700 FwLnk (60acb128e64c35c2b4e4aab1b0a5c293) C:\windows\system32\DRIVERS\FwLnk.sys
23:31:47.0378 5700 FwLnk - ok
23:31:47.0500 5700 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\windows\system32\drivers\gagp30kx.sys
23:31:47.0510 5700 gagp30kx - ok
23:31:47.0625 5700 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\windows\System32\gpsvc.dll
23:31:47.0638 5700 gpsvc - ok
23:31:47.0743 5700 gupdate (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:31:47.0745 5700 gupdate - ok
23:31:47.0773 5700 gupdatem (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:31:47.0775 5700 gupdatem - ok
23:31:47.0858 5700 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
23:31:47.0860 5700 gusvc - ok
23:31:47.0967 5700 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\windows\system32\drivers\hcw85cir.sys
23:31:47.0974 5700 hcw85cir - ok
23:31:48.0094 5700 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\windows\system32\drivers\HdAudio.sys
23:31:48.0105 5700 HdAudAddService - ok
23:31:48.0220 5700 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\windows\system32\DRIVERS\HDAudBus.sys
23:31:48.0223 5700 HDAudBus - ok
23:31:48.0337 5700 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\windows\system32\drivers\HidBatt.sys
23:31:48.0342 5700 HidBatt - ok
23:31:48.0441 5700 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\windows\system32\drivers\hidbth.sys
23:31:48.0448 5700 HidBth - ok
23:31:48.0557 5700 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\windows\system32\drivers\hidir.sys
23:31:48.0564 5700 HidIr - ok
23:31:48.0651 5700 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\windows\system32\hidserv.dll
23:31:48.0652 5700 hidserv - ok
23:31:48.0758 5700 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\windows\system32\drivers\hidusb.sys
23:31:48.0766 5700 HidUsb - ok
23:31:48.0858 5700 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\windows\system32\kmsvc.dll
23:31:48.0862 5700 hkmsvc - ok
23:31:48.0946 5700 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\windows\system32\ListSvc.dll
23:31:48.0967 5700 HomeGroupListener - ok
23:31:49.0003 5700 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\windows\system32\provsvc.dll
23:31:49.0006 5700 HomeGroupProvider - ok
23:31:49.0105 5700 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\windows\system32\drivers\HpSAMD.sys
23:31:49.0113 5700 HpSAMD - ok
23:31:49.0235 5700 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\windows\system32\drivers\HTTP.sys
23:31:49.0249 5700 HTTP - ok
23:31:49.0352 5700 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\windows\system32\drivers\hwpolicy.sys
23:31:49.0353 5700 hwpolicy - ok
23:31:49.0466 5700 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\windows\system32\DRIVERS\i8042prt.sys
23:31:49.0483 5700 i8042prt - ok
23:31:49.0600 5700 iaStor (d7921d5a870b11cc1adab198a519d50a) C:\windows\system32\DRIVERS\iaStor.sys
23:31:49.0608 5700 iaStor - ok
23:31:49.0722 5700 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\windows\system32\drivers\iaStorV.sys
23:31:49.0743 5700 iaStorV - ok
23:31:49.0800 5700 IDriverT (daf66902f08796f9c694901660e5a64a) C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
23:31:49.0818 5700 IDriverT - ok
23:31:49.0928 5700 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
23:31:49.0962 5700 idsvc - ok
23:31:50.0338 5700 igfx (370c2a8629b30f910f740387795ddc6f) C:\windows\system32\DRIVERS\igdkmd64.sys
23:31:50.0618 5700 igfx - ok
23:31:50.0733 5700 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\windows\system32\drivers\iirsp.sys
23:31:50.0738 5700 iirsp - ok
23:31:50.0858 5700 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\windows\System32\ikeext.dll
23:31:50.0871 5700 IKEEXT - ok
23:31:50.0978 5700 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\windows\system32\drivers\intelide.sys
23:31:50.0983 5700 intelide - ok
23:31:51.0107 5700 intelppm (ada036632c664caa754079041cf1f8c1) C:\windows\system32\DRIVERS\intelppm.sys
23:31:51.0109 5700 intelppm - ok
23:31:51.0193 5700 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\windows\system32\ipbusenum.dll
23:31:51.0203 5700 IPBusEnum - ok
23:31:51.0304 5700 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\windows\system32\DRIVERS\ipfltdrv.sys
23:31:51.0316 5700 IpFilterDriver - ok
23:31:51.0424 5700 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\windows\System32\iphlpsvc.dll
23:31:51.0436 5700 iphlpsvc - ok
23:31:51.0541 5700 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\windows\system32\drivers\IPMIDrv.sys
23:31:51.0554 5700 IPMIDRV - ok
23:31:51.0665 5700 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\windows\system32\drivers\ipnat.sys
23:31:51.0678 5700 IPNAT - ok
23:31:51.0789 5700 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\windows\system32\drivers\irenum.sys
23:31:51.0795 5700 IRENUM - ok
23:31:51.0911 5700 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\windows\system32\drivers\isapnp.sys
23:31:51.0920 5700 isapnp - ok
23:31:52.0026 5700 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\windows\system32\drivers\msiscsi.sys
23:31:52.0044 5700 iScsiPrt - ok
23:31:52.0161 5700 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\windows\system32\DRIVERS\kbdclass.sys
23:31:52.0170 5700 kbdclass - ok
23:31:52.0292 5700 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\windows\system32\drivers\kbdhid.sys
23:31:52.0297 5700 kbdhid - ok
23:31:52.0388 5700 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
23:31:52.0390 5700 KeyIso - ok
23:31:52.0427 5700 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\windows\system32\Drivers\ksecdd.sys
23:31:52.0436 5700 KSecDD - ok
23:31:52.0537 5700 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\windows\system32\Drivers\ksecpkg.sys
23:31:52.0553 5700 KSecPkg - ok
23:31:52.0664 5700 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\windows\system32\drivers\ksthunk.sys
23:31:52.0670 5700 ksthunk - ok
23:31:52.0773 5700 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\windows\system32\msdtckrm.dll
23:31:52.0792 5700 KtmRm - ok
23:31:52.0899 5700 L1C (045fb70bc993b691517ce309045ff02d) C:\windows\system32\DRIVERS\L1C62x64.sys
23:31:52.0910 5700 L1C - ok
23:31:53.0036 5700 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\windows\system32\srvsvc.dll
23:31:53.0043 5700 LanmanServer - ok
23:31:53.0167 5700 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\windows\System32\wkssvc.dll
23:31:53.0182 5700 LanmanWorkstation - ok
23:31:53.0309 5700 lltdio (1538831cf8ad2979a04c423779465827) C:\windows\system32\DRIVERS\lltdio.sys
23:31:53.0317 5700 lltdio - ok
23:31:53.0383 5700 lltdsvc (c1185803384ab3feed115f79f109427f) C:\windows\System32\lltdsvc.dll
23:31:53.0398 5700 lltdsvc - ok
23:31:53.0487 5700 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\windows\System32\lmhsvc.dll
23:31:53.0497 5700 lmhosts - ok
23:31:53.0591 5700 LMS (98b16e756243bea9410e32025b19c06f) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
23:31:53.0610 5700 LMS - ok
23:31:53.0724 5700 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\windows\system32\drivers\lsi_fc.sys
23:31:53.0736 5700 LSI_FC - ok
23:31:53.0850 5700 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\windows\system32\drivers\lsi_sas.sys
23:31:53.0863 5700 LSI_SAS - ok
23:31:53.0973 5700 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\windows\system32\drivers\lsi_sas2.sys
23:31:53.0985 5700 LSI_SAS2 - ok
23:31:54.0101 5700 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\windows\system32\drivers\lsi_scsi.sys
23:31:54.0114 5700 LSI_SCSI - ok
23:31:54.0238 5700 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\windows\system32\drivers\luafv.sys
23:31:54.0251 5700 luafv - ok
23:31:54.0344 5700 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\windows\system32\Mcx2Svc.dll
23:31:54.0354 5700 Mcx2Svc - ok
23:31:54.0460 5700 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\windows\system32\drivers\megasas.sys
23:31:54.0466 5700 megasas - ok
23:31:54.0605 5700 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\windows\system32\drivers\MegaSR.sys
23:31:54.0620 5700 MegaSR - ok
23:31:54.0716 5700 MEIx64 (a6518dcc42f7a6e999bb3bea8fd87567) C:\windows\system32\DRIVERS\HECIx64.sys
23:31:54.0724 5700 MEIx64 - ok
23:31:54.0819 5700 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\windows\system32\mmcss.dll
23:31:54.0830 5700 MMCSS - ok
23:31:54.0937 5700 Modem (800ba92f7010378b09f9ed9270f07137) C:\windows\system32\drivers\modem.sys
23:31:54.0945 5700 Modem - ok
23:31:55.0077 5700 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\windows\system32\DRIVERS\monitor.sys
23:31:55.0079 5700 monitor - ok
23:31:55.0190 5700 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\windows\system32\DRIVERS\mouclass.sys
23:31:55.0201 5700 mouclass - ok
23:31:55.0318 5700 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\windows\system32\drivers\mouhid.sys
23:31:55.0324 5700 mouhid - ok
23:31:55.0435 5700 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\windows\system32\drivers\mountmgr.sys
23:31:55.0437 5700 mountmgr - ok
23:31:55.0527 5700 MozillaMaintenance (b160ab483b3f3b313131caeda84904f7) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
23:31:55.0537 5700 MozillaMaintenance - ok
23:31:55.0650 5700 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\windows\system32\drivers\mpio.sys
23:31:55.0662 5700 mpio - ok
23:31:55.0758 5700 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\windows\system32\drivers\mpsdrv.sys
23:31:55.0764 5700 mpsdrv - ok
23:31:55.0869 5700 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\windows\system32\mpssvc.dll
23:31:55.0880 5700 MpsSvc - ok
23:31:55.0988 5700 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\windows\system32\drivers\mrxdav.sys
23:31:56.0001 5700 MRxDAV - ok
23:31:56.0108 5700 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\windows\system32\DRIVERS\mrxsmb.sys
23:31:56.0122 5700 mrxsmb - ok
23:31:56.0230 5700 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\windows\system32\DRIVERS\mrxsmb10.sys
23:31:56.0247 5700 mrxsmb10 - ok
23:31:56.0354 5700 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\windows\system32\DRIVERS\mrxsmb20.sys
23:31:56.0366 5700 mrxsmb20 - ok
23:31:56.0466 5700 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\windows\system32\DRIVERS\msahci.sys
23:31:56.0473 5700 msahci - ok
23:31:56.0581 5700 msdsm (db801a638d011b9633829eb6f663c900) C:\windows\system32\drivers\msdsm.sys
23:31:56.0589 5700 msdsm - ok
23:31:56.0687 5700 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\windows\System32\msdtc.exe
23:31:56.0701 5700 MSDTC - ok
23:31:56.0821 5700 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\windows\system32\drivers\Msfs.sys
23:31:56.0826 5700 Msfs - ok
23:31:56.0936 5700 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\windows\System32\drivers\mshidkmdf.sys
23:31:56.0940 5700 mshidkmdf - ok
23:31:57.0054 5700 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\windows\system32\drivers\msisadrv.sys
23:31:57.0059 5700 msisadrv - ok
23:31:57.0181 5700 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\windows\system32\iscsiexe.dll
23:31:57.0188 5700 MSiSCSI - ok
23:31:57.0194 5700 msiserver - ok
23:31:57.0302 5700 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\windows\system32\drivers\MSKSSRV.sys
23:31:57.0306 5700 MSKSSRV - ok
23:31:57.0417 5700 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\windows\system32\drivers\MSPCLOCK.sys
23:31:57.0421 5700 MSPCLOCK - ok
23:31:57.0519 5700 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\windows\system32\drivers\MSPQM.sys
23:31:57.0524 5700 MSPQM - ok
23:31:57.0553 5700 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\windows\system32\drivers\MsRPC.sys
23:31:57.0564 5700 MsRPC - ok
23:31:57.0659 5700 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\windows\system32\DRIVERS\mssmbios.sys
23:31:57.0660 5700 mssmbios - ok
23:31:57.0748 5700 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\windows\system32\drivers\MSTEE.sys
23:31:57.0753 5700 MSTEE - ok
23:31:57.0837 5700 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\windows\system32\drivers\MTConfig.sys
23:31:57.0844 5700 MTConfig - ok
23:31:57.0949 5700 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\windows\system32\Drivers\mup.sys
23:31:57.0961 5700 Mup - ok
23:31:58.0056 5700 napagent (582ac6d9873e31dfa28a4547270862dd) C:\windows\system32\qagentRT.dll
23:31:58.0062 5700 napagent - ok
23:31:58.0170 5700 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\windows\system32\DRIVERS\nwifi.sys
23:31:58.0190 5700 NativeWifiP - ok
23:31:58.0309 5700 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\windows\system32\drivers\ndis.sys
23:31:58.0325 5700 NDIS - ok
23:31:58.0436 5700 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\windows\system32\DRIVERS\ndiscap.sys
23:31:58.0445 5700 NdisCap - ok
23:31:58.0567 5700 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\windows\system32\DRIVERS\ndistapi.sys
23:31:58.0575 5700 NdisTapi - ok
23:31:58.0678 5700 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\windows\system32\DRIVERS\ndisuio.sys
23:31:58.0688 5700 Ndisuio - ok
23:31:58.0788 5700 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\windows\system32\DRIVERS\ndiswan.sys
23:31:58.0801 5700 NdisWan - ok
23:31:58.0897 5700 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\windows\system32\drivers\NDProxy.sys
23:31:58.0907 5700 NDProxy - ok
23:31:59.0019 5700 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\windows\system32\DRIVERS\netbios.sys
23:31:59.0027 5700 NetBIOS - ok
23:31:59.0129 5700 NetBT (09594d1089c523423b32a4229263f068) C:\windows\system32\DRIVERS\netbt.sys
23:31:59.0134 5700 NetBT - ok
23:31:59.0222 5700 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
23:31:59.0225 5700 Netlogon - ok
23:31:59.0336 5700 Netman (847d3ae376c0817161a14a82c8922a9e) C:\windows\System32\netman.dll
23:31:59.0345 5700 Netman - ok
23:31:59.0456 5700 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\windows\System32\netprofm.dll
23:31:59.0468 5700 netprofm - ok
23:31:59.0559 5700 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
23:31:59.0579 5700 NetTcpPortSharing - ok
23:31:59.0690 5700 nfrd960 (77889813be4d166cdab78ddba990da92) C:\windows\system32\drivers\nfrd960.sys
23:31:59.0700 5700 nfrd960 - ok
23:31:59.0811 5700 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\windows\System32\nlasvc.dll
23:31:59.0819 5700 NlaSvc - ok
23:31:59.0908 5700 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\windows\system32\drivers\Npfs.sys
23:31:59.0917 5700 Npfs - ok
23:31:59.0995 5700 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\windows\system32\nsisvc.dll
23:31:59.0998 5700 nsi - ok
23:32:00.0037 5700 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\windows\system32\drivers\nsiproxy.sys
23:32:00.0038 5700 nsiproxy - ok
23:32:00.0174 5700 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\windows\system32\drivers\Ntfs.sys
23:32:00.0201 5700 Ntfs - ok
23:32:00.0299 5700 Null (9899284589f75fa8724ff3d16aed75c1) C:\windows\system32\drivers\Null.sys
23:32:00.0301 5700 Null - ok
23:32:00.0407 5700 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\windows\system32\drivers\nvraid.sys
23:32:00.0417 5700 nvraid - ok
23:32:00.0524 5700 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\windows\system32\drivers\nvstor.sys
23:32:00.0533 5700 nvstor - ok
23:32:00.0634 5700 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\windows\system32\drivers\nv_agp.sys
23:32:00.0647 5700 nv_agp - ok
23:32:00.0740 5700 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\windows\system32\drivers\ohci1394.sys
23:32:00.0746 5700 ohci1394 - ok
23:32:00.0800 5700 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
23:32:00.0808 5700 ose - ok
23:32:00.0988 5700 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
23:32:01.0178 5700 osppsvc - ok
23:32:01.0277 5700 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\windows\system32\pnrpsvc.dll
23:32:01.0283 5700 p2pimsvc - ok
23:32:01.0380 5700 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\windows\system32\p2psvc.dll
23:32:01.0400 5700 p2psvc - ok
23:32:01.0502 5700 Parport (0086431c29c35be1dbc43f52cc273887) C:\windows\system32\drivers\parport.sys
23:32:01.0511 5700 Parport - ok
23:32:01.0610 5700 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\windows\system32\drivers\partmgr.sys
23:32:01.0623 5700 partmgr - ok
23:32:01.0742 5700 pavboot (8a0f8a9580d9f2fc512a35d5709088a9) C:\windows\system32\drivers\pavboot64.sys
23:32:01.0746 5700 pavboot - ok
23:32:01.0831 5700 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\windows\System32\pcasvc.dll
23:32:01.0838 5700 PcaSvc - ok
23:32:01.0930 5700 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\windows\system32\drivers\pci.sys
23:32:01.0939 5700 pci - ok
23:32:02.0034 5700 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\windows\system32\DRIVERS\pciide.sys
23:32:02.0038 5700 pciide - ok
23:32:02.0132 5700 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\windows\system32\drivers\pcmcia.sys
23:32:02.0140 5700 pcmcia - ok
23:32:02.0235 5700 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\windows\system32\drivers\pcw.sys
23:32:02.0239 5700 pcw - ok
23:32:02.0342 5700 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\windows\system32\drivers\peauth.sys
23:32:02.0360 5700 PEAUTH - ok
23:32:02.0434 5700 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\windows\SysWow64\perfhost.exe
23:32:02.0445 5700 PerfHost - ok
23:32:02.0530 5700 PGEffect (91111cebbde8015e822c46120ed9537c) C:\windows\system32\DRIVERS\pgeffect.sys
23:32:02.0534 5700 PGEffect - ok
23:32:02.0661 5700 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\windows\system32\pla.dll
23:32:02.0691 5700 pla - ok
23:32:02.0808 5700 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\windows\system32\umpnpmgr.dll
23:32:02.0818 5700 PlugPlay - ok
23:32:02.0901 5700 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\windows\system32\pnrpauto.dll
23:32:02.0907 5700 PNRPAutoReg - ok
23:32:02.0930 5700 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\windows\system32\pnrpsvc.dll
23:32:02.0935 5700 PNRPsvc - ok
23:32:03.0097 5700 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\windows\System32\ipsecsvc.dll
23:32:03.0109 5700 PolicyAgent - ok
23:32:03.0220 5700 Power (6ba9d927dded70bd1a9caded45f8b184) C:\windows\system32\umpo.dll
23:32:03.0227 5700 Power - ok
23:32:03.0331 5700 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\windows\system32\DRIVERS\raspptp.sys
23:32:03.0346 5700 PptpMiniport - ok
23:32:03.0440 5700 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\windows\system32\drivers\processr.sys
23:32:03.0453 5700 Processor - ok
23:32:03.0557 5700 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\windows\system32\profsvc.dll
23:32:03.0564 5700 ProfSvc - ok
23:32:03.0611 5700 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
23:32:03.0613 5700 ProtectedStorage - ok
23:32:03.0722 5700 Psched (0557cf5a2556bd58e26384169d72438d) C:\windows\system32\DRIVERS\pacer.sys
23:32:03.0725 5700 Psched - ok
23:32:03.0836 5700 PSI (fb46e9a827a8799ebd7bfa9128c91f37) C:\windows\system32\DRIVERS\psi_mf.sys
23:32:03.0843 5700 PSI - ok
23:32:03.0983 5700 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\windows\system32\drivers\ql2300.sys
23:32:04.0005 5700 ql2300 - ok
23:32:04.0111 5700 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\windows\system32\drivers\ql40xx.sys
23:32:04.0118 5700 ql40xx - ok
23:32:04.0203 5700 QWAVE (906191634e99aea92c4816150bda3732) C:\windows\system32\qwave.dll
23:32:04.0213 5700 QWAVE - ok
23:32:04.0312 5700 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\windows\system32\drivers\qwavedrv.sys
23:32:04.0316 5700 QWAVEdrv - ok
23:32:04.0413 5700 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\windows\system32\DRIVERS\rasacd.sys
23:32:04.0415 5700 RasAcd - ok
23:32:04.0527 5700 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\windows\system32\DRIVERS\AgileVpn.sys
23:32:04.0532 5700 RasAgileVpn - ok
23:32:04.0630 5700 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\windows\System32\rasauto.dll
23:32:04.0637 5700 RasAuto - ok
23:32:04.0747 5700 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\windows\system32\DRIVERS\rasl2tp.sys
23:32:04.0759 5700 Rasl2tp - ok
23:32:04.0854 5700 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\windows\System32\rasmans.dll
23:32:04.0872 5700 RasMan - ok
23:32:04.0991 5700 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\windows\system32\DRIVERS\raspppoe.sys
23:32:05.0004 5700 RasPppoe - ok
23:32:05.0120 5700 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\windows\system32\DRIVERS\rassstp.sys
23:32:05.0126 5700 RasSstp - ok
23:32:05.0159 5700 rdbss (77f665941019a1594d887a74f301fa2f) C:\windows\system32\DRIVERS\rdbss.sys
23:32:05.0169 5700 rdbss - ok
23:32:05.0260 5700 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\windows\system32\drivers\rdpbus.sys
23:32:05.0263 5700 rdpbus - ok
23:32:05.0354 5700 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\windows\system32\DRIVERS\RDPCDD.sys
23:32:05.0355 5700 RDPCDD - ok
23:32:05.0459 5700 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\windows\system32\drivers\rdpencdd.sys
23:32:05.0460 5700 RDPENCDD - ok
23:32:05.0553 5700 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\windows\system32\drivers\rdprefmp.sys
23:32:05.0553 5700 RDPREFMP - ok
23:32:05.0653 5700 RDPWD (6d76e6433574b058adcb0c50df834492) C:\windows\system32\drivers\RDPWD.sys
23:32:05.0662 5700 RDPWD - ok
23:32:05.0775 5700 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\windows\system32\drivers\rdyboost.sys
23:32:05.0783 5700 rdyboost - ok
23:32:05.0866 5700 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\windows\System32\mprdim.dll
23:32:05.0872 5700 RemoteAccess - ok
23:32:05.0956 5700 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\windows\system32\regsvc.dll
23:32:05.0970 5700 RemoteRegistry - ok
23:32:06.0061 5700 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\windows\System32\RpcEpMap.dll
23:32:06.0063 5700 RpcEptMapper - ok
23:32:06.0146 5700 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\windows\system32\locator.exe
23:32:06.0150 5700 RpcLocator - ok
23:32:06.0239 5700 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\windows\system32\rpcss.dll
23:32:06.0244 5700 RpcSs - ok
23:32:06.0343 5700 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\windows\system32\DRIVERS\rspndr.sys
23:32:06.0352 5700 rspndr - ok
23:32:06.0468 5700 RSUSBSTOR (0e3dcf76f11dc431b088a2dfd7265cda) C:\windows\system32\Drivers\RtsUStor.sys
23:32:06.0472 5700 RSUSBSTOR - ok
23:32:06.0587 5700 RTL8192Ce (64fdf4fe366ca42da2b7d9d424b6e39b) C:\windows\system32\DRIVERS\rtl8192Ce.sys
23:32:06.0615 5700 RTL8192Ce - ok
23:32:06.0699 5700 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
23:32:06.0702 5700 SamSs - ok
23:32:06.0790 5700 SASDIFSV (3289766038db2cb14d07dc84392138d5) C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
23:32:06.0797 5700 SASDIFSV - ok
23:32:06.0888 5700 SASKUTIL (58a38e75f3316a83c23df6173d41f2b5) C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
23:32:06.0894 5700 SASKUTIL - ok
23:32:07.0013 5700 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\windows\system32\drivers\sbp2port.sys
23:32:07.0025 5700 sbp2port - ok
23:32:07.0122 5700 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\windows\System32\SCardSvr.dll
23:32:07.0139 5700 SCardSvr - ok
23:32:07.0200 5700 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\windows\system32\DRIVERS\scfilter.sys
23:32:07.0207 5700 scfilter - ok
23:32:07.0323 5700 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\windows\system32\schedsvc.dll
23:32:07.0341 5700 Schedule - ok
23:32:07.0425 5700 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\windows\System32\certprop.dll
23:32:07.0428 5700 SCPolicySvc - ok
23:32:07.0521 5700 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\windows\System32\SDRSVC.dll
23:32:07.0525 5700 SDRSVC - ok
23:32:07.0630 5700 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\windows\system32\drivers\secdrv.sys
23:32:07.0637 5700 secdrv - ok
23:32:07.0725 5700 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\windows\system32\seclogon.dll
23:32:07.0738 5700 seclogon - ok
23:32:07.0847 5700 Secunia PSI Agent (2d0599dd0124764fc939c59985c860de) C:\Program Files (x86)\Secunia\PSI\PSIA.exe
23:32:07.0877 5700 Secunia PSI Agent - ok
23:32:07.0971 5700 Secunia Update Agent (20b9e1adbc58958b480933e4da005dfb) C:\Program Files (x86)\Secunia\PSI\sua.exe
23:32:07.0997 5700 Secunia Update Agent - ok
23:32:08.0098 5700 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\windows\System32\sens.dll
23:32:08.0103 5700 SENS - ok
23:32:08.0206 5700 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\windows\system32\sensrsvc.dll
23:32:08.0216 5700 SensrSvc - ok
23:32:08.0315 5700 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\windows\system32\drivers\serenum.sys
23:32:08.0322 5700 Serenum - ok
23:32:08.0429 5700 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\windows\system32\drivers\serial.sys
23:32:08.0439 5700 Serial - ok
23:32:08.0541 5700 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\windows\system32\drivers\sermouse.sys
23:32:08.0544 5700 sermouse - ok
23:32:08.0643 5700 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\windows\system32\sessenv.dll
23:32:08.0646 5700 SessionEnv - ok
23:32:08.0763 5700 sffdisk (a554811bcd09279536440c964ae35bbf) C:\windows\system32\drivers\sffdisk.sys
23:32:08.0768 5700 sffdisk - ok
23:32:08.0777 5700 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\windows\system32\drivers\sffp_mmc.sys
23:32:08.0783 5700 sffp_mmc - ok
23:32:08.0795 5700 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\windows\system32\drivers\sffp_sd.sys
23:32:08.0802 5700 sffp_sd - ok
23:32:08.0813 5700 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\windows\system32\drivers\sfloppy.sys
23:32:08.0817 5700 sfloppy - ok
23:32:08.0941 5700 Sftfs (c6cc9297bd53e5229653303e556aa539) C:\windows\system32\DRIVERS\Sftfslh.sys
23:32:08.0962 5700 Sftfs - ok
23:32:09.0044 5700 sftlist (13693b6354dd6e72dc5131da7d764b90) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
23:32:09.0065 5700 sftlist - ok
23:32:09.0177 5700 Sftplay (390aa7bc52cee43f6790cdea1e776703) C:\windows\system32\DRIVERS\Sftplaylh.sys
23:32:09.0186 5700 Sftplay - ok
23:32:09.0279 5700 Sftredir (617e29a0b0a2807466560d4c4e338d3e) C:\windows\system32\DRIVERS\Sftredirlh.sys
23:32:09.0284 5700 Sftredir - ok
23:32:09.0397 5700 Sftvol (8f571f016fa1976f445147e9e6c8ae9b) C:\windows\system32\DRIVERS\Sftvollh.sys
23:32:09.0405 5700 Sftvol - ok
23:32:09.0477 5700 sftvsa (c3cddd18f43d44ab713cf8c4916f7696) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
23:32:09.0496 5700 sftvsa - ok
23:32:09.0588 5700 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\windows\System32\ipnathlp.dll
23:32:09.0607 5700 SharedAccess - ok
23:32:09.0707 5700 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\windows\System32\shsvcs.dll
23:32:09.0715 5700 ShellHWDetection - ok
23:32:09.0823 5700 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\windows\system32\drivers\SiSRaid2.sys
23:32:09.0832 5700 SiSRaid2 - ok
23:32:09.0937 5700 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\windows\system32\drivers\sisraid4.sys
23:32:09.0949 5700 SiSRaid4 - ok
23:32:10.0052 5700 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\windows\system32\DRIVERS\smb.sys
23:32:10.0062 5700 Smb - ok
23:32:10.0184 5700 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\windows\System32\snmptrap.exe
23:32:10.0188 5700 SNMPTRAP - ok
23:32:10.0287 5700 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\windows\system32\drivers\spldr.sys
23:32:10.0295 5700 spldr - ok
23:32:10.0395 5700 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\windows\System32\spoolsv.exe
23:32:10.0410 5700 Spooler - ok
23:32:10.0589 5700 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\windows\system32\sppsvc.exe
23:32:10.0657 5700 sppsvc - ok
23:32:10.0747 5700 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\windows\system32\sppuinotify.dll
23:32:10.0761 5700 sppuinotify - ok
23:32:10.0871 5700 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\windows\system32\DRIVERS\srv.sys
23:32:10.0889 5700 srv - ok
23:32:10.0998 5700 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\windows\system32\DRIVERS\srv2.sys
23:32:11.0018 5700 srv2 - ok
23:32:11.0115 5700 srvnet (27e461f0be5bff5fc737328f749538c3) C:\windows\system32\DRIVERS\srvnet.sys
23:32:11.0129 5700 srvnet - ok
23:32:11.0239 5700 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\windows\System32\ssdpsrv.dll
23:32:11.0246 5700 SSDPSRV - ok
23:32:11.0334 5700 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\windows\system32\sstpsvc.dll
23:32:11.0339 5700 SstpSvc - ok
23:32:11.0436 5700 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\windows\system32\drivers\stexstor.sys
23:32:11.0443 5700 stexstor - ok
23:32:11.0547 5700 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\windows\System32\wiaservc.dll
23:32:11.0560 5700 stisvc - ok
23:32:11.0648 5700 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\windows\system32\DRIVERS\swenum.sys
23:32:11.0653 5700 swenum - ok
23:32:11.0747 5700 swprv (e08e46fdd841b7184194011ca1955a0b) C:\windows\System32\swprv.dll
23:32:11.0755 5700 swprv - ok
23:32:11.0857 5700 SynTP (470c47daba9ca3966f0ab3f835d7d135) C:\windows\system32\DRIVERS\SynTP.sys
23:32:11.0873 5700 SynTP - ok
23:32:11.0995 5700 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\windows\system32\sysmain.dll
23:32:12.0015 5700 SysMain - ok
23:32:12.0111 5700 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\windows\System32\TabSvc.dll
23:32:12.0118 5700 TabletInputService - ok
23:32:12.0212 5700 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\windows\System32\tapisrv.dll
23:32:12.0225 5700 TapiSrv - ok
23:32:12.0316 5700 TBS (1be03ac720f4d302ea01d40f588162f6) C:\windows\System32\tbssvc.dll
23:32:12.0318 5700 TBS - ok
23:32:12.0468 5700 Tcpip (fc62769e7bff2896035aeed399108162) C:\windows\system32\drivers\tcpip.sys
23:32:12.0510 5700 Tcpip - ok
23:32:12.0672 5700 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\windows\system32\DRIVERS\tcpip.sys
23:32:12.0687 5700 TCPIP6 - ok
23:32:12.0795 5700 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\windows\system32\drivers\tcpipreg.sys
23:32:12.0804 5700 tcpipreg - ok
23:32:12.0909 5700 tdcmdpst (fd542b661bd22fa69ca789ad0ac58c29) C:\windows\system32\DRIVERS\tdcmdpst.sys
23:32:12.0918 5700 tdcmdpst - ok
23:32:13.0037 5700 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\windows\system32\drivers\tdpipe.sys
23:32:13.0043 5700 TDPIPE - ok
23:32:13.0140 5700 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\windows\system32\drivers\tdtcp.sys
23:32:13.0147 5700 TDTCP - ok
23:32:13.0247 5700 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\windows\system32\DRIVERS\tdx.sys
23:32:13.0258 5700 tdx - ok
23:32:13.0361 5700 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\windows\system32\DRIVERS\termdd.sys
23:32:13.0372 5700 TermDD - ok
23:32:13.0485 5700 TermService (2e648163254233755035b46dd7b89123) C:\windows\System32\termsrv.dll
23:32:13.0500 5700 TermService - ok
23:32:13.0600 5700 Themes (f0344071948d1a1fa732231785a0664c) C:\windows\system32\themeservice.dll
23:32:13.0604 5700 Themes - ok
23:32:13.0698 5700 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\windows\system32\mmcss.dll
23:32:13.0701 5700 THREADORDER - ok
23:32:13.0794 5700 TMachInfo (83e91963c4452be6899503cf9ebfd3ed) C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
23:32:13.0796 5700 TMachInfo - ok
23:32:13.0899 5700 TODDSrv (8e2c799d3476eac32c3ba0df7ce6af19) C:\windows\system32\TODDSrv.exe
23:32:13.0917 5700 TODDSrv - ok
23:32:14.0017 5700 TosCoSrv (cdc97fa5c42b07fb0d4600e17c32f582) C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
23:32:14.0038 5700 TosCoSrv - ok
23:32:14.0083 5700 TOSHIBA HDD SSD Alert Service (edb4b432db13ea3d1eb2356310d33263) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
23:32:14.0085 5700 TOSHIBA HDD SSD Alert Service - ok
23:32:14.0197 5700 tos_sps64 (09ff7b0b1b5c3d225495cb6f5a9b39f8) C:\windows\system32\DRIVERS\tos_sps64.sys
23:32:14.0221 5700 tos_sps64 - ok
23:32:14.0325 5700 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\windows\System32\trkwks.dll
23:32:14.0337 5700 TrkWks - ok
23:32:14.0407 5700 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\windows\servicing\TrustedInstaller.exe
23:32:14.0415 5700 TrustedInstaller - ok
23:32:14.0481 5700 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\windows\system32\DRIVERS\tssecsrv.sys
23:32:14.0490 5700 tssecsrv - ok
23:32:14.0603 5700 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\windows\system32\drivers\tsusbflt.sys
23:32:14.0614 5700 TsUsbFlt - ok
23:32:14.0711 5700 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\windows\system32\drivers\TsUsbGD.sys
23:32:14.0722 5700 TsUsbGD - ok
23:32:14.0829 5700 tunnel (3566a8daafa27af944f5d705eaa64894) C:\windows\system32\DRIVERS\tunnel.sys
23:32:14.0841 5700 tunnel - ok
23:32:14.0950 5700 TVALZ (550b567f9364d8f7684c3fb3ea665a72) C:\windows\system32\DRIVERS\TVALZ_O.SYS
23:32:14.0959 5700 TVALZ - ok
23:32:15.0075 5700 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\windows\system32\drivers\uagp35.sys
23:32:15.0081 5700 uagp35 - ok
23:32:15.0188 5700 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\windows\system32\DRIVERS\udfs.sys
23:32:15.0202 5700 udfs - ok
23:32:15.0295 5700 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\windows\system32\UI0Detect.exe
23:32:15.0301 5700 UI0Detect - ok
23:32:15.0401 5700 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\windows\system32\drivers\uliagpkx.sys
23:32:15.0407 5700 uliagpkx - ok
23:32:15.0502 5700 umbus (dc54a574663a895c8763af0fa1ff7561) C:\windows\system32\DRIVERS\umbus.sys
23:32:15.0512 5700 umbus - ok
23:32:15.0609 5700 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\windows\system32\drivers\umpass.sys
23:32:15.0616 5700 UmPass - ok
23:32:15.0775 5700 UNS (7a78ed1088890114dfde2c4ab038d6b6) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
23:32:15.0832 5700 UNS - ok
23:32:15.0914 5700 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\windows\System32\upnphost.dll
23:32:15.0935 5700 upnphost - ok
23:32:16.0045 5700 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\windows\system32\DRIVERS\usbccgp.sys
23:32:16.0054 5700 usbccgp - ok
23:32:16.0161 5700 usbcir (af0892a803fdda7492f595368e3b68e7) C:\windows\system32\drivers\usbcir.sys
23:32:16.0178 5700 usbcir - ok
23:32:16.0278 5700 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\windows\system32\drivers\usbehci.sys
23:32:16.0286 5700 usbehci - ok
23:32:16.0400 5700 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\windows\system32\DRIVERS\usbhub.sys
23:32:16.0421 5700 usbhub - ok
23:32:16.0523 5700 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\windows\system32\drivers\usbohci.sys
23:32:16.0529 5700 usbohci - ok
23:32:16.0646 5700 usbprint (73188f58fb384e75c4063d29413cee3d) C:\windows\system32\DRIVERS\usbprint.sys
23:32:16.0653 5700 usbprint - ok
23:32:16.0764 5700 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\windows\system32\DRIVERS\usbscan.sys
23:32:16.0771 5700 usbscan - ok
23:32:16.0869 5700 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\windows\system32\DRIVERS\USBSTOR.SYS
23:32:16.0882 5700 USBSTOR - ok
23:32:16.0982 5700 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\windows\system32\drivers\usbuhci.sys
23:32:16.0988 5700 usbuhci - ok
23:32:17.0107 5700 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\windows\system32\Drivers\usbvideo.sys
23:32:17.0120 5700 usbvideo - ok
23:32:17.0201 5700 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\windows\System32\uxsms.dll
23:32:17.0215 5700 UxSms - ok
23:32:17.0299 5700 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
23:32:17.0303 5700 VaultSvc - ok
23:32:17.0417 5700 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\windows\system32\drivers\vdrvroot.sys
23:32:17.0426 5700 vdrvroot - ok
23:32:17.0527 5700 vds (8d6b481601d01a456e75c3210f1830be) C:\windows\System32\vds.exe
23:32:17.0557 5700 vds - ok
23:32:17.0668 5700 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\windows\system32\DRIVERS\vgapnp.sys
23:32:17.0675 5700 vga - ok
23:32:17.0767 5700 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\windows\System32\drivers\vga.sys
23:32:17.0774 5700 VgaSave - ok
23:32:17.0878 5700 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\windows\system32\drivers\vhdmp.sys
23:32:17.0900 5700 vhdmp - ok
23:32:17.0999 5700 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\windows\system32\drivers\viaide.sys
23:32:18.0005 5700 viaide - ok
23:32:18.0105 5700 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\windows\system32\drivers\volmgr.sys
23:32:18.0110 5700 volmgr - ok
23:32:18.0213 5700 volmgrx (a255814907c89be58b79ef2f189b843b) C:\windows\system32\drivers\volmgrx.sys
23:32:18.0218 5700 volmgrx - ok
23:32:18.0323 5700 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\windows\system32\drivers\volsnap.sys
23:32:18.0344 5700 volsnap - ok
23:32:18.0466 5700 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\windows\system32\drivers\vsmraid.sys
23:32:18.0477 5700 vsmraid - ok
23:32:18.0599 5700 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\windows\system32\vssvc.exe
23:32:18.0618 5700 VSS - ok
23:32:18.0746 5700 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\windows\system32\DRIVERS\vwifibus.sys
23:32:18.0755 5700 vwifibus - ok
23:32:18.0859 5700 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\windows\system32\DRIVERS\vwififlt.sys
23:32:18.0867 5700 vwififlt - ok
23:32:18.0968 5700 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\windows\system32\w32time.dll
23:32:18.0979 5700 W32Time - ok
23:32:19.0100 5700 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\windows\system32\drivers\wacompen.sys
23:32:19.0108 5700 WacomPen - ok
23:32:19.0228 5700 WANARP (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys
23:32:19.0241 5700 WANARP - ok
23:32:19.0253 5700 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys
23:32:19.0255 5700 Wanarpv6 - ok
23:32:19.0410 5700 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\windows\system32\Wat\WatAdminSvc.exe
23:32:19.0460 5700 WatAdminSvc - ok
23:32:19.0586 5700 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\windows\system32\wbengine.exe
23:32:19.0613 5700 wbengine - ok
23:32:19.0705 5700 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\windows\System32\wbiosrvc.dll
23:32:19.0717 5700 WbioSrvc - ok
23:32:19.0815 5700 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\windows\System32\wcncsvc.dll
23:32:19.0827 5700 wcncsvc - ok
23:32:19.0907 5700 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\windows\System32\WcsPlugInService.dll
23:32:19.0916 5700 WcsPlugInService - ok
23:32:19.0951 5700 Wd (72889e16ff12ba0f235467d6091b17dc) C:\windows\system32\drivers\wd.sys
23:32:19.0957 5700 Wd - ok
23:32:20.0066 5700 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\windows\system32\drivers\Wdf01000.sys
23:32:20.0085 5700 Wdf01000 - ok
23:32:20.0168 5700 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\windows\system32\wdi.dll
23:32:20.0181 5700 WdiServiceHost - ok
23:32:20.0186 5700 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\windows\system32\wdi.dll
23:32:20.0188 5700 WdiSystemHost - ok
23:32:20.0274 5700 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\windows\System32\webclnt.dll
23:32:20.0286 5700 WebClient - ok
23:32:20.0373 5700 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\windows\system32\wecsvc.dll
23:32:20.0385 5700 Wecsvc - ok
23:32:20.0471 5700 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\windows\System32\wercplsupport.dll
23:32:20.0484 5700 wercplsupport - ok
23:32:20.0579 5700 WerSvc (6d137963730144698cbd10f202e9f251) C:\windows\System32\WerSvc.dll
23:32:20.0584 5700 WerSvc - ok
23:32:20.0676 5700 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\windows\system32\DRIVERS\wfplwf.sys
23:32:20.0679 5700 WfpLwf - ok
23:32:20.0782 5700 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\windows\system32\drivers\wimmount.sys
23:32:20.0791 5700 WIMMount - ok
23:32:20.0826 5700 WinDefend - ok
23:32:20.0834 5700 WinHttpAutoProxySvc - ok
23:32:20.0957 5700 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\windows\system32\wbem\WMIsvc.dll
23:32:20.0960 5700 Winmgmt - ok
23:32:21.0105 5700 WinRM (bcb1310604aa415c4508708975b3931e) C:\windows\system32\WsmSvc.dll
23:32:21.0137 5700 WinRM - ok
23:32:21.0277 5700 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\windows\System32\wlansvc.dll
23:32:21.0292 5700 Wlansvc - ok
23:32:21.0340 5700 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
23:32:21.0346 5700 wlcrasvc - ok
23:32:21.0447 5700 wlidsvc (2bacd71123f42cea603f4e205e1ae337) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
23:32:21.0471 5700 wlidsvc - ok
23:32:21.0571 5700 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\windows\system32\drivers\wmiacpi.sys
23:32:21.0577 5700 WmiAcpi - ok
23:32:21.0697 5700 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\windows\system32\wbem\WmiApSrv.exe
23:32:21.0711 5700 wmiApSrv - ok
23:32:21.0738 5700 WMPNetworkSvc - ok
23:32:21.0818 5700 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\windows\System32\wpcsvc.dll
23:32:21.0825 5700 WPCSvc - ok
23:32:21.0841 5700 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\windows\system32\wpdbusenum.dll
23:32:21.0849 5700 WPDBusEnum - ok
23:32:21.0941 5700 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\windows\system32\drivers\ws2ifsl.sys
23:32:21.0948 5700 ws2ifsl - ok
23:32:22.0031 5700 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\windows\System32\wscsvc.dll
23:32:22.0039 5700 wscsvc - ok
23:32:22.0047 5700 WSearch - ok
23:32:22.0132 5700 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\windows\system32\wuaueng.dll
23:32:22.0159 5700 wuauserv - ok
23:32:22.0259 5700 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\windows\system32\drivers\WudfPf.sys
23:32:22.0271 5700 WudfPf - ok
23:32:22.0379 5700 WUDFRd (cf8d590be3373029d57af80914190682) C:\windows\system32\DRIVERS\WUDFRd.sys
23:32:22.0390 5700 WUDFRd - ok
23:32:22.0486 5700 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\windows\System32\WUDFSvc.dll
23:32:22.0491 5700 wudfsvc - ok
23:32:22.0586 5700 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\windows\System32\wwansvc.dll
23:32:22.0603 5700 WwanSvc - ok
23:32:22.0630 5700 MBR (0x1B8) (5b5e648d12fcadc244c1ec30318e1eb9) \Device\Harddisk0\DR0
23:32:22.0744 5700 \Device\Harddisk0\DR0 - ok
23:32:22.0773 5700 Boot (0x1200) (21e1cba98fb2739de19979065ac176a0) \Device\Harddisk0\DR0\Partition0
23:32:22.0776 5700 \Device\Harddisk0\DR0\Partition0 - ok
23:32:22.0777 5700 ============================================================
23:32:22.0777 5700 Scan finished
23:32:22.0777 5700 ============================================================
23:32:22.0799 5284 Detected object count: 0
23:32:22.0800 5284 Actual detected object count: 0

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:50 AM

Posted 17 April 2012 - 01:47 AM

You can ignore GMER :thumbup2:

#7 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:50 AM

Posted 17 April 2012 - 01:48 AM

Run these scans too.I will check your logs later

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log


Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply


Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

#8 westsyde

westsyde
  • Topic Starter

  • Members
  • 115 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:10:50 AM

Posted 17 April 2012 - 03:22 AM

hello thank you so much for all your help here is my clean :) malwarebytes scan:
Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.04.17.03

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
mandy :: MANDY-PC [administrator]

16/04/2012 11:51:23 PM
mbam-log-2012-04-16 (23-51-23).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 294822
Time elapsed: 34 minute(s), 44 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

eset scan is done with no detections. so their wasnt a log to post. but after the scan i did get a message from "program compatibility assistant" and it says "this program might not have installed correctly if this program didnt install correctly, try reinstalling using settings that are compatable with this version of windows.
Program: ESET Smart installer
Publisher:ESET
Location: C:\users.......
than it gives me the options of reinstalling using recommended settings,. or
This program installed correctly
( i just hit cancel for this, i dont know if it affected the scan)

here is the minitool box log:

MiniToolBox by Farbar Version: 18-01-2012
Ran by mandy (administrator) on 17-04-2012 at 01:18:45
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Realtek RTL8188CE Wireless LAN 802.11n PCI-E NIC = Wireless Network Connection (Connected)
Atheros AR8152/8158 PCI-E Fast Ethernet Controller (NDIS 6.20) = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : mandy-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : domain.invalid

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Atheros AR8152/8158 PCI-E Fast Ethernet Controller (NDIS 6.20)
Physical Address. . . . . . . . . : 00-26-6C-C3-0C-C7
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : domain.invalid
Description . . . . . . . . . . . : Realtek RTL8188CE Wireless LAN 802.11n PCI-E NIC
Physical Address. . . . . . . . . : D0-DF-9A-07-D9-1D
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::48e5:6bc6:7388:c031%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.64(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : April-16-12 7:33:04 PM
Lease Expires . . . . . . . . . . : April-17-12 7:33:04 PM
Default Gateway . . . . . . . . . : 192.168.1.254
DHCP Server . . . . . . . . . . . : 192.168.1.254
DHCPv6 IAID . . . . . . . . . . . : 248569754
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-7A-A1-EC-D0-DF-9A-07-D9-1D
DNS Servers . . . . . . . . . . . : 192.168.1.254
192.168.1.254
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.domain.invalid:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : domain.invalid
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{9A9778E4-EF6C-468E-858A-8AA6B9FE363D}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:28f5:1e0e:3f57:febf(Preferred)
Link-local IPv6 Address . . . . . : fe80::28f5:1e0e:3f57:febf%13(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: UnKnown
Address: 192.168.1.254

Name: google.com
Addresses: 74.125.225.69
74.125.225.72
74.125.225.65
74.125.225.66
74.125.225.73
74.125.225.64
74.125.225.78
74.125.225.67
74.125.225.70
74.125.225.71
74.125.225.68


Pinging google.com [74.125.225.68] with 32 bytes of data:
Reply from 74.125.225.68: bytes=32 time=84ms TTL=52
Reply from 74.125.225.68: bytes=32 time=84ms TTL=52

Ping statistics for 74.125.225.68:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 84ms, Maximum = 84ms, Average = 84ms
Server: UnKnown
Address: 192.168.1.254

Name: yahoo.com
Addresses: 98.139.183.24
209.191.122.70
72.30.38.140


Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=157ms TTL=55
Reply from 72.30.38.140: bytes=32 time=101ms TTL=55

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 101ms, Maximum = 157ms, Average = 129ms
Server: UnKnown
Address: 192.168.1.254

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
12...00 26 6c c3 0c c7 ......Atheros AR8152/8158 PCI-E Fast Ethernet Controller (NDIS 6.20)
11...d0 df 9a 07 d9 1d ......Realtek RTL8188CE Wireless LAN 802.11n PCI-E NIC
1...........................Software Loopback Interface 1
20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.254 192.168.1.64 30
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.64 286
192.168.1.64 255.255.255.255 On-link 192.168.1.64 286
192.168.1.255 255.255.255.255 On-link 192.168.1.64 286
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.64 286
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.64 286
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
13 58 ::/0 On-link
1 306 ::1/128 On-link
13 58 2001::/32 On-link
13 306 2001:0:4137:9e76:28f5:1e0e:3f57:febf/128
On-link
11 286 fe80::/64 On-link
13 306 fe80::/64 On-link
13 306 fe80::28f5:1e0e:3f57:febf/128
On-link
11 286 fe80::48e5:6bc6:7388:c031/128
On-link
1 306 ff00::/8 On-link
13 306 ff00::/8 On-link
11 286 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll [261840] (Avira Operations GmbH & Co. KG)
Catalog9 02 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll [261840] (Avira Operations GmbH & Co. KG)
Catalog9 03 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll [261840] (Avira Operations GmbH & Co. KG)
Catalog9 04 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll [261840] (Avira Operations GmbH & Co. KG)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 12 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 13 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 14 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 15 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll [261840] (Avira Operations GmbH & Co. KG)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll [234960] (Avira Operations GmbH & Co. KG)
x64-Catalog9 02 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll [234960] (Avira Operations GmbH & Co. KG)
x64-Catalog9 03 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll [234960] (Avira Operations GmbH & Co. KG)
x64-Catalog9 04 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll [234960] (Avira Operations GmbH & Co. KG)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 12 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 13 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 14 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 15 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll [234960] (Avira Operations GmbH & Co. KG)

========================= Event log errors: ===============================

Application errors:
==================
Error: (04/17/2012 00:27:28 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (04/17/2012 00:27:07 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (04/16/2012 07:31:24 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/16/2012 07:50:54 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/16/2012 07:39:53 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/16/2012 02:08:46 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/16/2012 00:02:57 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/15/2012 10:55:54 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/15/2012 09:15:41 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.VC80.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1".Error in manifest or policy file "Microsoft.VC80.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"2" on line Microsoft.VC80.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"3.
Component identity found in manifest does not match the identity of the component requested.
Reference is Microsoft.VC80.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0".
Definition is Microsoft.VC80.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.762".
Please use sxstrace.exe for detailed diagnosis.

Error: (04/15/2012 09:27:38 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (04/16/2012 02:12:03 AM) (Source: Service Control Manager) (User: )
Description: The Windows Update service hung on starting.

Error: (04/12/2012 03:19:13 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.

Error: (04/11/2012 04:57:06 PM) (Source: DCOM) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}

Error: (04/07/2012 11:06:04 AM) (Source: BugCheck) (User: )
Description: 0x0000009f (0x0000000000000003, 0xfffffa8004007bb0, 0xfffff800041e54d8, 0xfffffa8004ba75a0)C:\windows\MEMORY.DMP040712-16894-01

Error: (04/07/2012 11:05:52 AM) (Source: EventLog) (User: )
Description: The previous system shutdown at 9:36:33 AM on ?07/?04/?2012 was unexpected.

Error: (04/06/2012 06:01:34 PM) (Source: DCOM) (User: )
Description: {4EB61BAC-A3B6-4760-9581-655041EF4D69}

Error: (04/06/2012 06:01:04 PM) (Source: Service Control Manager) (User: )
Description: The Google Update Service (gupdate) service terminated unexpectedly. It has done this 1 time(s).

Error: (04/06/2012 06:00:57 PM) (Source: Service Control Manager) (User: )
Description: The Windows Presentation Foundation Font Cache 3.0.0.0 service failed to start due to the following error:
%%1053

Error: (04/06/2012 06:00:57 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Windows Presentation Foundation Font Cache 3.0.0.0 service to connect.

Error: (04/05/2012 06:09:14 PM) (Source: Tcpip) (User: )
Description: The system detected an address conflict for IP address 192.168.1.65 with the system
having network hardware address 00-25-11-83-F9-74. Network operations on this system may
be disrupted as a result.


Microsoft Office Sessions:
=========================
Error: (04/17/2012 00:27:28 AM) (Source: SideBySide)(User: )
Description: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\mandy\Downloads\esetsmartinstaller_enu.exe

Error: (04/17/2012 00:27:07 AM) (Source: SideBySide)(User: )
Description: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\mandy\Downloads\esetsmartinstaller_enu.exe

Error: (04/16/2012 07:31:24 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/16/2012 07:50:54 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/16/2012 07:39:53 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/16/2012 02:08:46 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/16/2012 00:02:57 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/15/2012 10:55:54 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/15/2012 09:15:41 PM) (Source: SideBySide)(User: )
Description: Microsoft.VC80.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"Microsoft.VC80.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.762"C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwHost.exeC:\Program Files (x86)\TOSHIBA\ConfigFree\Microsoft.VC80.MFC\Microsoft.VC80.MFC.MANIFEST4

Error: (04/15/2012 09:27:38 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


=========================== Installed Programs ============================

Adobe Flash Player 11 ActiveX (Version: 11.2.202.228)
Adobe Flash Player 11 ActiveX 64-bit (Version: 11.2.202.228)
Adobe Flash Player 11 Plugin (Version: 11.2.202.228)
Adobe Reader X (10.1.3) (Version: 10.1.3)
Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver (Version: 1.0.1.42)
Avira Internet Security 2012 (Version: 12.0.0.860)
Conexant HD Audio (Version: 8.54.1.0)
D3DX10 (Version: 15.4.2368.0902)
ESET Online Scanner v3
FileHippo.com Update Checker
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.3.2710.138)
Google Update Helper (Version: 1.3.21.111)
Intel® Management Engine Components (Version: 7.0.0.1144)
Intel® Processor Graphics (Version: 8.15.10.2353)
Intel® Rapid Storage Technology (Version: 10.1.0.1008)
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 31 (Version: 6.0.310)
Java™ 7 Update 3 (64-bit) (Version: 7.0.30)
Junk Mail filter update (Version: 15.4.3502.0922)
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
Mesh Runtime (Version: 15.4.5722.2)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office Starter 2010 - English (Version: 14.0.4763.1000)
Microsoft Primary Interoperability Assemblies 2005 (Version: 9.0.21022)
Microsoft Silverlight (Version: 5.0.61118.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Mozilla Firefox 12.0 (x86 en-US) (Version: 12.0)
Mozilla Maintenance Service (Version: 12.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
Panda ActiveScan 2.0 (Version: 01.04.01.0014)
PlayReady PC Runtime amd64 (Version: 1.3.0)
Realtek USB 2.0 Card Reader (Version: 6.1.7600.30124)
Realtek WLAN Driver (Version: 2.00.0016)
Secunia PSI (2.0.0.3003)
Speccy (Version: 1.16)
SUPERAntiSpyware (Version: 5.0.1146)
Synaptics Pointing Device Driver (Version: 15.0.8.1)
TOSHIBA Assist (Version: 4.02.02)
TOSHIBA Bulletin Board (Version: 2.0.17.64)
TOSHIBA ConfigFree (Version: 8.0.37)
TOSHIBA Disc Creator (Version: 2.1.0.6 for x64)
TOSHIBA Face Recognition (Version: 3.1.8.64)
TOSHIBA Hardware Setup (Version: 2.1.0.1)
TOSHIBA HDD/SSD Alert (Version: 3.1.64.7)
TOSHIBA Media Controller (Version: 1.0.86.2)
TOSHIBA Media Controller Plug-in (Version: 1.0.6.1)
TOSHIBA Recovery Media Creator (Version: 2.1.3.5109)
TOSHIBA ReelTime (Version: 1.7.17.64)
TOSHIBA Resolution+ Plug-in for Windows Media Player (Version: 1.1.0)
TOSHIBA Service Station (Version: 2.1.52)
TOSHIBA Speech System Applications (Version: 1.00.2518)
TOSHIBA Speech System SR Engine(U.S.) Version1.0
TOSHIBA Speech System TTS Engine(U.S.) Version1.0
TOSHIBA Supervisor Password (Version: 2.1.0.1)
TOSHIBA Value Added Package (Version: 1.5.4.64)
TOSHIBA Web Camera Application (Version: 2.0.0.19)
TOSHIBA Wireless LAN Indicator (Version: 1.0.3)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live Family Safety (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
WOT for Internet Explorer (Version: 11.11.7.0)
Yahoo! Detect

========================= Memory info: ===================================

Percentage of memory in use: 59%
Total physical RAM: 4043.86 MB
Available physical RAM: 1649.5 MB
Total Pagefile: 8085.91 MB
Available Pagefile: 5275.29 MB
Total Virtual: 4095.88 MB
Available Virtual: 3968.45 MB

========================= Partitions: =====================================

1 Drive c: (S3A8973D003) (Fixed) (Total:437.12 GB) (Free:399.95 GB) NTFS

========================= Users: ========================================

User accounts for \\MANDY-PC

Administrator Guest mandy


**** End of log ****






good night :) im tired. talk to you tomorrow and thank again

#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:50 AM

Posted 17 April 2012 - 10:29 AM

That looks good

Download

TFC


Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off


Update your antivirus frequently,do not click on suspicious links

Safe surfing :)

#10 westsyde

westsyde
  • Topic Starter

  • Members
  • 115 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:10:50 AM

Posted 17 April 2012 - 10:45 PM

done and done :D. i always try to be very careful online ( i had a nasty rootkit last year so i learned my lesson :) ) thanks again for all your time and help. :) i just have one quick question tho ( im only asking because i enjoy learning ) why did you ask me to Turn off system restore,restart the PC,create a new restore point ? sorry for all the questions and thanks again

#11 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:50 AM

Posted 17 April 2012 - 11:44 PM

If you have infections in your restore points (located in system volume information folder) ,then restoring to previous state would reinfect your PC.This is just a precaution.

Thanks




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users