Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Having problems connecting to internet pages/programs


  • Please log in to reply
37 replies to this topic

#1 reventi0n

reventi0n

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:07:04 AM

Posted 07 May 2012 - 01:28 PM

Hello, My computer is only 2-3 years old and has been running smoothly until recently where it has been having issues connecting to internet pages or even games such as the league of legends client. I have brought my computer over to my friends house (different ISP and faster connection) and I was still having the same issues. I ran both malwarebytes and Kaspersky and yielded nothing, and also cleaned my temporary files. yesterday when trying to rewrite a cd I had explorer.exe crash, I think my issue my be tied into explorer.exe but I'm not entirely sure.

Thanks for your time and help.

BC AdBot (Login to Remove)

 


#2 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:12:04 PM

Posted 10 May 2012 - 07:09 PM

Hello,

I will be helping you with your problems

Some points for you to keep in mind while I am helping you to make things go easier and faster for both of us

  • Please do NOT run any tools unless instructed to do so.
    • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
  • Please do not attach logs or use code boxes, just copy and paste the text.
    • Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
  • Please read every post completely before doing anything.
    • Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.
  • Please provide feedback about your experience as we go.
    • A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.

NOTE: At the top of your post, click on the Watch Topic Button, select Immediate Notification, and click on Proceed. This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.

NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of hartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.

NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.

----------------------------------------------

Please do the following:

Step 1

Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

Step 2

Please download Farbar Service Scanner to your Desktop and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.

Step 3

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices
  • List Users, Partitions and Memory size.
  • List Minidump Files
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

NOTE: When using "Reset FF Proxy Settings" option Firefox should be closed.

Step 4

  • Launch Malwarebytes' Anti-Malware (MBAM)
  • Click on the tab update, then click Check for Updates
  • If an update is found, it will download and install the latest version.
  • Then on the Scanner tab select Perform quick scan, then click Scan.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Be sure that everything is checked, and click Remove Selected.
  • When completed, a log will open in Notepad.
  • Post the log in your next reply.

NOTE: Be sure to restart the computer.

The log can also be found here:
C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
Or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#3 reventi0n

reventi0n
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:07:04 AM

Posted 15 May 2012 - 06:34 PM

sorry for my delayed response, I have been overly busy recently and have not had time to really check back. here are the logs.


Results of screen317's Security Check version 0.99.32
Windows 7 x64 (UAC is enabled)
Internet Explorer 8 Out of date!
``````````````````````````````
Antivirus/Firewall Check:

Windows Firewall Enabled!
WMI entry may not exist for antivirus; attempting automatic update.
```````````````````````````````
Anti-malware/Other Utilities Check:

MVPS Hosts File
Spybot - Search & Destroy
HostsMan 3.2.73
Java™ 6 Update 30
Java version out of date!
Adobe Reader 9 Adobe Reader out of date!
Mozilla Firefox (12.0.)
````````````````````````````````
Process Check:
objlist.exe by Laurent

Kaspersky Lab Kaspersky PURE avp.exe
``````````End of Log````````````





Farbar Service Scanner Version: 11-05-2012
Ran by Joey (administrator) on 15-05-2012 at 19:12:08
Running from "C:\Users\Joey\Desktop"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Yahoo IP is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Disabled. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****




MiniToolBox by Farbar Version: 18-01-2012
Ran by Joey (administrator) on 15-05-2012 at 19:13:34
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.backup.ftp", "149.255.102.12"
"network.proxy.backup.ftp_port", 8080
"network.proxy.backup.socks", "149.255.102.12"
"network.proxy.backup.socks_port", 8080
"network.proxy.backup.ssl", "149.255.102.12"
"network.proxy.backup.ssl_port", 8080
"network.proxy.ftp", "41.190.16.17"
"network.proxy.ftp_port", 8080
"network.proxy.gopher", "202.150.137.210"
"network.proxy.gopher_port", 80
"network.proxy.http", "41.190.16.17"
"network.proxy.http_port", 8080
"network.proxy.share_proxy_settings", true
"network.proxy.socks", "41.190.16.17"
"network.proxy.socks_port", 8080
"network.proxy.ssl", "41.190.16.17"
"network.proxy.ssl_port", 8080
"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================





127.0.0.1 localhost
127.0.0.1 fr.a2dfp.net
127.0.0.1 m.fr.a2dfp.net
127.0.0.1 ad.a8.net
127.0.0.1 asy.a8ww.net
127.0.0.1 abcstats.com
127.0.0.1 a.abv.bg
127.0.0.1 adserver.abv.bg
127.0.0.1 adv.abv.bg
127.0.0.1 bimg.abv.bg
127.0.0.1 ca.abv.bg
127.0.0.1 www2.a-counter.kiev.ua
127.0.0.1 track.acclaimnetwork.com
127.0.0.1 accuserveadsystem.com
127.0.0.1 www.accuserveadsystem.com
127.0.0.1 achmedia.com
127.0.0.1 aconti.net
127.0.0.1 secure.aconti.net
127.0.0.1 www.aconti.net 127.0.0.1 ads.active.com

There are 27293 more lines starting with "127.0.0.1"

========================= IP Configuration: ================================

NVIDIA nForce 10/100 Mbps Ethernet = Local Area Connection (Connected)
Hamachi Network Interface = Hamachi (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add route prefix=169.254.0.0/16 interface="iftype0_0" nexthop=5.246.35.216 metric=1 publish=Yes
add route prefix=169.254.0.0/16 interface="iftype0_0" nexthop=192.168.2.3 metric=1 publish=Yes
add route prefix=0.0.0.0/0 interface="Hamachi" nexthop=5.0.0.1 publish=Yes
set interface interface="Hamachi" forwarding=disabled advertise=disabled metric=9000 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled advertisedrouterlifetime=0 advertisedefaultroute=disabled currenthoplimit=0 forcearpndwolpattern=disabled enabledirectedmacwolpattern=disabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Joey-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : Belkin

Ethernet adapter Hamachi:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Hamachi Network Interface #2
Physical Address. . . . . . . . . : 7A-79-05-F6-23-D8
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IPv4 Address. . . . . . . . . . . : 5.246.35.216(Preferred)
Subnet Mask . . . . . . . . . . . : 255.0.0.0
Lease Obtained. . . . . . . . . . : Tuesday, May 15, 2012 2:59:55 PM
Lease Expires . . . . . . . . . . : Tuesday, May 15, 2012 7:24:39 PM
Default Gateway . . . . . . . . . : 5.0.0.1
DHCP Server . . . . . . . . . . . : 5.0.0.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : Belkin
Description . . . . . . . . . . . : NVIDIA nForce 10/100 Mbps Ethernet
Physical Address. . . . . . . . . : E0-CB-4E-1D-31-BE
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::ad93:da93:998d:7d55%10(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.2.5(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Tuesday, May 15, 2012 2:59:56 PM
Lease Expires . . . . . . . . . . : Saturday, June 22, 2148 1:48:51 AM
Default Gateway . . . . . . . . . : 192.168.2.1
DHCP Server . . . . . . . . . . . : 192.168.2.1
DHCPv6 IAID . . . . . . . . . . . : 244377274
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-12-CA-D5-90-E0-CB-4E-1D-31-BE
DNS Servers . . . . . . . . . . . : 1:4860:4860::8888
2001:4860:4860::8844
8.8.8.8
8.8.4.4
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter 6TO4 Adapter:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2002:5f6:23d8::5f6:23d8(Preferred)
Default Gateway . . . . . . . . . : 2002:c058:6301::c058:6301
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{C165EC35-C1BC-4DF5-A257-913D46CF16FA}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:305e:2482:e747:bf71(Preferred)
Link-local IPv6 Address . . . . . : fe80::305e:2482:e747:bf71%11(Preferred)
Default Gateway . . . . . . . . . :
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.Belkin:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : Belkin
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 1:4860:4860::8888

DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.

Pinging google.com [173.194.43.3] with 32 bytes of data:
Reply from 173.194.43.3: bytes=32 time=9ms TTL=55
Reply from 173.194.43.3: bytes=32 time=9ms TTL=55

Ping statistics for 173.194.43.3:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 9ms, Maximum = 9ms, Average = 9ms
DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 1:4860:4860::8888

DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.

Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=118ms TTL=50
Reply from 72.30.38.140: bytes=32 time=284ms TTL=48

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 118ms, Maximum = 284ms, Average = 201ms
DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 1:4860:4860::8888

DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.

Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Request timed out.
Request timed out.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 0, Lost = 2 (100% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
16...7a 79 05 f6 23 d8 ......Hamachi Network Interface #2
10...e0 cb 4e 1d 31 be ......NVIDIA nForce 10/100 Mbps Ethernet
1...........................Software Loopback Interface 1
18...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
11...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 5.0.0.1 5.246.35.216 9256
0.0.0.0 0.0.0.0 192.168.2.1 192.168.2.5 20
5.0.0.0 255.0.0.0 On-link 5.246.35.216 9256
5.246.35.216 255.255.255.255 On-link 5.246.35.216 9256
5.255.255.255 255.255.255.255 On-link 5.246.35.216 9256
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
169.254.0.0 255.255.0.0 On-link 5.246.35.216 9001
169.254.0.0 255.255.0.0 192.168.2.3 192.168.2.5 21
169.254.255.255 255.255.255.255 On-link 5.246.35.216 9256
192.168.2.0 255.255.255.0 On-link 192.168.2.5 276
192.168.2.5 255.255.255.255 On-link 192.168.2.5 276
192.168.2.255 255.255.255.255 On-link 192.168.2.5 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.2.5 276
224.0.0.0 240.0.0.0 On-link 5.246.35.216 9256
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.2.5 276
255.255.255.255 255.255.255.255 On-link 5.246.35.216 9256
===========================================================================
Persistent Routes:
Network Address Netmask Gateway Address Metric
169.254.0.0 255.255.0.0 5.246.35.216 1
169.254.0.0 255.255.0.0 192.168.2.3 1
0.0.0.0 0.0.0.0 5.0.0.1 Default
===========================================================================

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
18 1125 ::/0 2002:c058:6301::c058:6301
1 306 ::1/128 On-link
11 58 2001::/32 On-link
11 306 2001:0:4137:9e76:305e:2482:e747:bf71/128
On-link
18 1025 2002::/16 On-link
18 281 2002:5f6:23d8::5f6:23d8/128
On-link
10 276 fe80::/64 On-link
11 306 fe80::/64 On-link
11 306 fe80::305e:2482:e747:bf71/128
On-link
10 276 fe80::ad93:da93:998d:7d55/128
On-link
1 306 ff00::/8 On-link
11 306 ff00::/8 On-link
10 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 08 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 08 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (05/15/2012 03:31:14 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (05/15/2012 03:31:14 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (05/14/2012 08:06:46 PM) (Source: Application Hang) (User: )
Description: The program League of Legends.exe version 1.0.0.139 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1294

Start Time: 01cd322e853d7430

Termination Time: 40

Application Path: C:\Riot Games\League of Legends\RADS\solutions\lol_game_client_sln\releases\0.0.0.147\deploy\League of Legends.exe

Report Id: d2505171-9e21-11e1-a05c-e0cb4e1d31be

Error: (05/14/2012 04:28:17 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (05/14/2012 04:28:17 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (05/13/2012 09:58:30 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (05/13/2012 09:58:30 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (05/13/2012 09:58:30 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (05/13/2012 09:58:30 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (05/13/2012 09:58:30 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.


System errors:
=============
Error: (05/15/2012 07:08:08 PM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer DEB-PC
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{C24CADA4-9C69-41A7-9FD0-AB93644A81F7}.
The master browser is stopping or an election is being forced.

Error: (05/15/2012 06:56:09 PM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer DEB-PC
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{C24CADA4-9C69-41A7-9FD0-AB93644A81F7}.
The master browser is stopping or an election is being forced.

Error: (05/15/2012 06:49:10 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Dnscache service.

Error: (05/15/2012 06:47:33 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Dnscache service.

Error: (05/15/2012 06:47:03 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Dnscache service.

Error: (05/15/2012 06:20:05 PM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer DEB-PC
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{C24CADA4-9C69-41A7-9FD0-AB93644A81F7}.
The master browser is stopping or an election is being forced.

Error: (05/15/2012 05:58:50 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Dnscache service.

Error: (05/15/2012 05:58:20 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Dnscache service.

Error: (05/15/2012 05:56:06 PM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer DEB-PC
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{C24CADA4-9C69-41A7-9FD0-AB93644A81F7}.
The master browser is stopping or an election is being forced.

Error: (05/15/2012 05:20:06 PM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer DEB-PC
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{C24CADA4-9C69-41A7-9FD0-AB93644A81F7}.
The master browser is stopping or an election is being forced.


Microsoft Office Sessions:
=========================
Error: (02/17/2011 05:23:33 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 3 seconds with 0 seconds of active time. This session ended with a crash.

Error: (02/07/2011 09:24:36 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 10 seconds with 0 seconds of active time. This session ended with a crash.

Error: (12/12/2010 08:35:48 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 29 seconds with 0 seconds of active time. This session ended with a crash.

Error: (11/28/2010 06:14:29 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 5 seconds with 0 seconds of active time. This session ended with a crash.

Error: (08/27/2010 07:14:12 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6541.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 6 seconds with 0 seconds of active time. This session ended with a crash.


=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
7-Zip 9.20 (x64 edition) (Version: 9.20.00.0)
Acrobat.com (Version: 0.0.0)
Acrobat.com (Version: 1.2.443)
Activation Assistant for the 2007 Microsoft Office suites
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0.1)
ActiveCheck component for HP Active Support Library (Version: 3.0.0.2)
Adobe AIR (Version: 2.6.0.19120)
Adobe Community Help (Version: 3.0.0)
Adobe Community Help (Version: 3.0.0.400)
Adobe Flash Player 10 ActiveX (Version: 10.0.2.54)
Adobe Flash Player 10 ActiveX (Version: 10.0.32.18)
Adobe Flash Player 11 Plugin 64-bit (Version: 11.2.202.235)
Adobe Media Player (Version: 0.0.0)
Adobe Media Player (Version: 1.1)
Adobe Photoshop CS5 (Version: 12.0)
Adobe Reader 9.4.6 (Version: 9.4.6)
Adobe Shockwave Player 11.6 (Version: 11.6.0.626)
AIM 7
Apple Application Support (Version: 2.1.6)
Apple Mobile Device Support (Version: 4.0.0.97)
Apple Software Update (Version: 2.1.3.127)
Audacity 1.3.12 (Unicode)
Belkin Setup and Router Monitor
Bonjour (Version: 3.0.0.10)
Canon Easy-WebPrint EX
Canon IJ Network Scanner Selector EX
Canon IJ Network Tool
Canon MP Navigator EX 4.1
Canon MX410 series MP Drivers
Canon MX410 series User Registration
Canon My Printer
Canon Solution Menu EX
Canon Speed Dial Utility
CCleaner (Version: 3.15)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
CyberLink DVD Suite Deluxe (Version: 7.0.2115)
D3DX10 (Version: 15.4.2368.0902)
dBpoweramp Music Converter (Version: Release 14.2)
Dev-C++ 5 beta 9 release (4.9.9.2)
DirectX for Managed Code Update (Summer 2004) (Version: 9.02.2904)
Download Updater (AOL LLC)
Dropbox (Version: 1.2.52)
Dual-Core Optimizer (Version: 1.1.4.0169)
DVD Decrypter (Remove Only)
DVD Menu Pack for HP MediaSmart Video (Version: 3.1.3224)
foobar2000 v1.1.11 (Version: 1.1.11)
Fraps (remove only)
Free Audio CD Burner version 1.2
Free Video to MP3 Converter version 5.0.6.221 (Version: 5.0.6.221)
Free YouTube to MP3 Converter version 3.2
Futuremark SystemInfo (Version: 3.17.0.1)
Gimp Themes v1.0 (Version: 1.0.0)
Google Chrome (Version: 18.0.1025.168)
Hardware Diagnostic Tools (Version: 6.0.5247.34)
Hi-Rez Studios Authenticate and Update Service (Version: 3.0.0.0)
HiJackThis (Version: 1.0.0)
HostsMan 3.2.73 (Version: 3.2.73)
HP Advisor (Version: 3.3.9512.3162)
HP Customer Experience Enhancements (Version: 6.0.1.3)
HP Games (Version: 1.0.0.71)
HP MediaSmart Demo (Version: 1.00.0000)
HP MediaSmart DVD (Version: 3.1.3317)
HP MediaSmart Music/Photo/Video (Version: 3.1.3422)
HP MediaSmart SmartMenu (Version: 3.1.0.1)
HP MediaSmart/TouchSmart Netflix (Version: 1.0.2.0)
HP Odometer (Version: 2.10.0000)
HP Remote Solution (Version: 1.1.11.0)
HP Setup (Version: 1.2.3560.3170)
HP Support Assistant (Version: 4.2.5.3)
HP Support Information (Version: 10.1.0002)
HP Update (Version: 5.001.000.014)
HPAsset component for HP Active Support Library (Version: 3.0.0.3)
HTC BMP USB Driver (Version: 1.0.5375)
HTC Driver Installer (Version: 3.0.0.007)
HTC Sync (Version: 3.0.5551)
Hulu Desktop (Version: 0.9.14)
iTunes (Version: 10.5.2.11)
Java Auto Updater (Version: 2.0.6.1)
Java™ 6 Update 30 (Version: 6.0.300)
Java™ 6 Update 31 (64-bit) (Version: 6.0.310)
Junk Mail filter update (Version: 15.4.3502.0922)
Kaspersky PURE (Version: 9.1.0.124)
LabelPrint (Version: 2.5.2017)
League of Legends (Version: 1.0020)
LightScribe System Software (Version: 1.18.8.1)
Livestream Procaster (Version: 20.2.69)
LogMeIn Hamachi (Version: 2.1.0.166)
LOLReplay (Version: 0.7.6.7)
Magic ISO Maker v5.5 (build 0281)
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft IntelliPoint 8.2 (Version: 8.20.468.0)
Microsoft Live Search Toolbar (Version: 3.0.566.0)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Live Add-in 1.5 (Version: 2.0.4024.1)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Works (Version: 9.7.0621)
Microsoft XNA Framework Redistributable 4.0 (Version: 4.0.20823.0)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)
mIRC (Version: 7.22)
MobileMe Control Panel (Version: 3.1.6.0)
Moonbase Alpha
MorphVOX Junior (Version: 2.7.5)
Movie Theme Pack for HP MediaSmart Video (Version: 3.1.3310)
Mozilla Firefox 12.0 (x86 en-US) (Version: 12.0)
Mozilla Maintenance Service (Version: 12.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT Redists (Version: 1.0)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP3 Parser (KB973685) (Version: 4.30.2107.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
Mumble 1.2.3 (Version: 1.2.3)
Nexon Game Manager
Notepad++ (Version: 5.9)
NVIDIA 3D Vision Controller Driver (Version: 270.61)
NVIDIA 3D Vision Controller Driver 270.61 (Version: 270.61)
NVIDIA Control Panel 275.33 (Version: 275.33)
NVIDIA Drivers (Version: 1.10.58.36)
NVIDIA Graphics Driver 275.33 (Version: 275.33)
NVIDIA Install Application (Version: 2.275.78.0)
NVIDIA PhysX (Version: 9.10.0514)
NVIDIA PhysX System Software 9.10.0514 (Version: 9.10.0514)
Octoshape Streaming Services
Opera 11.01 (Version: 11.01)
PDF Settings CS5 (Version: 10.0)
PFPortChecker 1.0.39 (Version: 1.0.39)
PictureMover (Version: 3.3.1.19)
Pinnacle VideoSpin (Version: 1.1.2.542)
PlayReady PC Runtime amd64 (Version: 1.3.0)
Portal
Power2Go (Version: 6.0.3304)
PowerDirector (Version: 7.0.3405)
PunkBuster Services (Version: 0.990)
PVSonyDll (Version: 1.00.0001)
QuickTime (Version: 7.69.80.9)
Rainmeter
Raptr
Realtek High Definition Audio Driver (Version: 6.0.1.6387)
Recovery Manager (Version: 5.5.2216)
Rise of Immortals
RocketDock 1.3.5
Safari (Version: 5.33.21.1)
Sid Meier's Civilization 4 Gold (Version: 1.72)
Skype™ 5.5 (Version: 5.5.124)
SpeedFan (remove only)
Spybot - Search & Destroy (Version: 1.6.2)
StarCraft II (Version: 1.4.3.21029)
Steam (Version: 1.0.0.0)
System Requirements Lab CYRI (Version: 4.4.26.0)
Team Fortress 2
TeamSpeak 3 Client
TeamViewer 5 (Version: 5.0.8703 )
Terraria
Tribes Ascend (Version: 1.0.905.1)
Uninstall 1.0.0.1
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2598290) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
UxStyle Core Beta (Version: 0.2.1.1)
Vegas Pro 9.0 (64-bit) (Version: 9.0.1146)
Ventrilo Client for Windows x64 (Version: 3.0.8.0)
Virtual Audio Cable 4.10
VLC media player 1.1.5 (Version: 1.1.5)
Voxatron 0.1.3 (Version: 0.1.3)
Warcraft III
Waterfox 11.0 (x64 en-US) (Version: 11.0)
Winamp (Version: 5.623 )
Winamp Detector Plug-in (Version: 1.0.0.1)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3502.0922)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3502.0922)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8117.416)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3502.0922)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
Windows Mobile Device Center (Version: 6.1.6965.0)
WinPcap 4.1.1 (Version: 4.1.0.1753)
WinRAR archiver
WinSCP 4.3.3 (Version: 4.3.3)
WinX HD Video Converter Deluxe 3.10.2
Wireshark 1.2.6 (Version: 1.2.6)
Yahoo! BrowserPlus 2.9.8

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 42%
Total physical RAM: 4095.3 MB
Available physical RAM: 2372.39 MB
Total Pagefile: 8188.8 MB
Available Pagefile: 6151.25 MB
Total Virtual: 4095.88 MB
Available Virtual: 3968.67 MB

========================= Partitions: =====================================

1 Drive c: (HP) (Fixed) (Total:585.31 GB) (Free:403.29 GB) NTFS
2 Drive d: (FACTORY_IMAGE) (Fixed) (Total:10.77 GB) (Free:1.57 GB) NTFS

========================= Users: ========================================

User accounts for \\JOEY-PC

Administrator ASPNET Guest
Joey Mcx1-JOEY-PC

========================= Minidump Files ==================================

No minidump file found

**** End of log ****

#4 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:12:04 PM

Posted 17 May 2012 - 02:18 PM

Hi

Please do the following next:

Step 1


Follow step 4 of my previous post
Post the MBAM log in your next reply.

Step 2

How is your computer running now?

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#5 reventi0n

reventi0n
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:07:04 AM

Posted 17 May 2012 - 07:40 PM

Log:

Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.05.17.08

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 8.0.7601.17514
Joey :: JOEY-PC [administrator]

5/17/2012 8:22:54 PM
mbam-log-2012-05-17 (20-22-54).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 224411
Time elapsed: 15 minute(s), 3 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)


it has the same problems when it loads pages however it isnt 100% of the times more like 80%. connecting to games seems have decreased in time a bit.

#6 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:12:04 PM

Posted 18 May 2012 - 02:53 AM

Hi

Please do the following next:

Step 1

Please download the TDSS Rootkit Removing Tool (TDSSKiller.exe) and save it to your Desktop. <-Important!!!
  • Double-click on TDSSKiller.exe on your desktop to run the tool for known TDSS variants.
    Vista/Windows 7 users right-click and select Run As Administrator.
  • If TDSSKiller does not run, try renaming it.
  • To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to How to change the file extension.
  • Click on change parameters
  • Check the boxes next to Verify file digital signatures and Detect TDLFS file system, then click OK.
  • Click the Start Scan button.
  • Do not use the computer during the scan
  • If the scan completes with nothing found, click Close to exit.
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Note: If Cure is not an option, Skip instead, do not choose Delete unless instructed.
  • A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.2.4.0.0_27.07.2010_09.o7.26_log.txt) will be created and saved to the root directory (usually Local Disk C:).
  • Copy and paste the contents of that file in your next reply.

Step 2

I'd like us to scan your machine with ESET Online Scanner:

Note: You can use either Internet Explorer or Mozilla FireFox for this scan. You will however need to disable your current installed Anti-Virus, how to do so can be read here.

Note: Vista/Windows 7 users: You will need to to right-click on the either the IE or FF icon in the Start Menu or Quick Launch Bar on the Taskbar and select Run as Administrator from the context menu.

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image
      icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • On ESET: Click the Back button, then the Finish button.
Note: Do not forget to re-enable your Anti-Virus application after running the above scan!


Step 3

How is your computer running now?

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#7 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:12:04 PM

Posted 20 May 2012 - 06:22 AM

Hi

Are you still with me?

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#8 reventi0n

reventi0n
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:07:04 AM

Posted 20 May 2012 - 08:25 AM

im here, the scan just took a while.

14:38:35.0706 1436 TDSS rootkit removing tool 2.7.35.0 May 16 2012 07:37:57
14:38:35.0952 1436 ============================================================
14:38:35.0952 1436 Current date / time: 2012/05/18 14:38:35.0952
14:38:35.0952 1436 SystemInfo:
14:38:35.0952 1436
14:38:35.0952 1436 OS Version: 6.1.7601 ServicePack: 1.0
14:38:35.0952 1436 Product type: Workstation
14:38:35.0952 1436 ComputerName: JOEY-PC
14:38:35.0952 1436 UserName: Joey
14:38:35.0952 1436 Windows directory: C:\Windows
14:38:35.0952 1436 System windows directory: C:\Windows
14:38:35.0952 1436 Running under WOW64
14:38:35.0953 1436 Processor architecture: Intel x64
14:38:35.0953 1436 Number of processors: 2
14:38:35.0953 1436 Page size: 0x1000
14:38:35.0953 1436 Boot type: Normal boot
14:38:35.0953 1436 ============================================================
14:38:36.0862 1436 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:38:36.0867 1436 ============================================================
14:38:36.0867 1436 \Device\Harddisk0\DR0:
14:38:36.0867 1436 MBR partitions:
14:38:36.0867 1436 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
14:38:36.0867 1436 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x4929D000
14:38:36.0867 1436 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x492CF800, BlocksNum 0x1588000
14:38:36.0867 1436 ============================================================
14:38:36.0933 1436 C: <-> \Device\Harddisk0\DR0\Partition1
14:38:36.0971 1436 D: <-> \Device\Harddisk0\DR0\Partition2
14:38:36.0971 1436 ============================================================
14:38:36.0971 1436 Initialize success
14:38:36.0971 1436 ============================================================
14:39:01.0783 2928 ============================================================
14:39:01.0783 2928 Scan started
14:39:01.0783 2928 Mode: Manual; SigCheck; TDLFS;
14:39:01.0783 2928 ============================================================
14:39:03.0891 2928 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
14:39:04.0251 2928 1394ohci - ok
14:39:04.0303 2928 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
14:39:04.0340 2928 ACPI - ok
14:39:04.0364 2928 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
14:39:04.0555 2928 AcpiPmi - ok
14:39:04.0600 2928 adfs (2f0683fd2df1d92e891caca14b45a8c1) C:\Windows\system32\drivers\adfs.sys
14:39:04.0745 2928 adfs - ok
14:39:04.0855 2928 AdobeFlashPlayerUpdateSvc (76d5a3d2a50402a0b9b6ed13c4371e79) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
14:39:04.0885 2928 AdobeFlashPlayerUpdateSvc - ok
14:39:04.0933 2928 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
14:39:04.0997 2928 adp94xx - ok
14:39:05.0039 2928 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
14:39:05.0104 2928 adpahci - ok
14:39:05.0141 2928 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
14:39:05.0199 2928 adpu320 - ok
14:39:05.0220 2928 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
14:39:05.0362 2928 AeLookupSvc - ok
14:39:05.0434 2928 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
14:39:05.0510 2928 AFD - ok
14:39:05.0681 2928 AffinegyService (7e077309910ce334c3b2b7b8665a55c4) C:\Program Files (x86)\Belkin\Router Setup and Monitor\BelkinService.exe
14:39:05.0712 2928 AffinegyService - ok
14:39:05.0778 2928 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
14:39:05.0888 2928 agp440 - ok
14:39:05.0930 2928 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
14:39:06.0257 2928 ALG - ok
14:39:06.0272 2928 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
14:39:06.0330 2928 aliide - ok
14:39:06.0348 2928 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
14:39:06.0410 2928 amdide - ok
14:39:06.0447 2928 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
14:39:06.0591 2928 AmdK8 - ok
14:39:06.0613 2928 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
14:39:06.0682 2928 AmdPPM - ok
14:39:06.0716 2928 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
14:39:06.0778 2928 amdsata - ok
14:39:06.0821 2928 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
14:39:06.0878 2928 amdsbs - ok
14:39:06.0893 2928 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
14:39:06.0927 2928 amdxata - ok
14:39:06.0964 2928 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
14:39:07.0225 2928 AppID - ok
14:39:07.0241 2928 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
14:39:07.0368 2928 AppIDSvc - ok
14:39:07.0418 2928 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
14:39:07.0554 2928 Appinfo - ok
14:39:07.0667 2928 Apple Mobile Device (3debbecf665dcdde3a95d9b902010817) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:39:07.0696 2928 Apple Mobile Device - ok
14:39:07.0733 2928 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
14:39:07.0826 2928 arc - ok
14:39:07.0849 2928 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
14:39:07.0918 2928 arcsas - ok
14:39:08.0041 2928 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
14:39:08.0083 2928 aspnet_state - ok
14:39:08.0120 2928 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
14:39:08.0212 2928 AsyncMac - ok
14:39:08.0271 2928 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
14:39:08.0336 2928 atapi - ok
14:39:08.0419 2928 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
14:39:08.0553 2928 AudioEndpointBuilder - ok
14:39:08.0560 2928 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
14:39:08.0609 2928 AudioSrv - ok
14:39:08.0896 2928 AVP (a2b790f9a751f24f17967f9a5574186d) C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE\avp.exe
14:39:09.0116 2928 AVP - ok
14:39:09.0169 2928 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
14:39:09.0576 2928 AxInstSV - ok
14:39:09.0625 2928 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
14:39:09.0741 2928 b06bdrv - ok
14:39:09.0821 2928 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
14:39:09.0961 2928 b57nd60a - ok
14:39:10.0003 2928 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
14:39:10.0086 2928 BDESVC - ok
14:39:10.0095 2928 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
14:39:10.0174 2928 Beep - ok
14:39:10.0250 2928 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
14:39:10.0332 2928 BFE - ok
14:39:10.0420 2928 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
14:39:10.0524 2928 BITS - ok
14:39:10.0587 2928 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
14:39:10.0657 2928 blbdrive - ok
14:39:10.0756 2928 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
14:39:10.0819 2928 Bonjour Service - ok
14:39:10.0856 2928 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
14:39:10.0930 2928 bowser - ok
14:39:10.0962 2928 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
14:39:11.0100 2928 BrFiltLo - ok
14:39:11.0103 2928 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
14:39:11.0153 2928 BrFiltUp - ok
14:39:11.0194 2928 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
14:39:11.0351 2928 Browser - ok
14:39:11.0379 2928 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
14:39:11.0492 2928 Brserid - ok
14:39:11.0508 2928 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
14:39:11.0588 2928 BrSerWdm - ok
14:39:11.0617 2928 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
14:39:11.0726 2928 BrUsbMdm - ok
14:39:11.0730 2928 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
14:39:11.0817 2928 BrUsbSer - ok
14:39:11.0850 2928 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
14:39:11.0924 2928 BTHMODEM - ok
14:39:11.0977 2928 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
14:39:12.0067 2928 bthserv - ok
14:39:12.0087 2928 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
14:39:12.0174 2928 cdfs - ok
14:39:12.0225 2928 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
14:39:12.0312 2928 cdrom - ok
14:39:12.0358 2928 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
14:39:12.0822 2928 CertPropSvc - ok
14:39:12.0875 2928 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
14:39:12.0951 2928 circlass - ok
14:39:12.0993 2928 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
14:39:13.0027 2928 CLFS - ok
14:39:13.0083 2928 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:39:13.0158 2928 clr_optimization_v2.0.50727_32 - ok
14:39:13.0219 2928 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
14:39:13.0291 2928 clr_optimization_v2.0.50727_64 - ok
14:39:13.0412 2928 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:39:13.0498 2928 clr_optimization_v4.0.30319_32 - ok
14:39:13.0536 2928 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
14:39:13.0579 2928 clr_optimization_v4.0.30319_64 - ok
14:39:13.0623 2928 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
14:39:13.0740 2928 CmBatt - ok
14:39:13.0787 2928 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
14:39:13.0869 2928 cmdide - ok
14:39:14.0030 2928 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
14:39:14.0088 2928 CNG - ok
14:39:14.0101 2928 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
14:39:14.0157 2928 Compbatt - ok
14:39:14.0202 2928 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
14:39:14.0271 2928 CompositeBus - ok
14:39:14.0280 2928 COMSysApp - ok
14:39:14.0293 2928 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
14:39:14.0342 2928 crcdisk - ok
14:39:14.0379 2928 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll
14:39:14.0472 2928 CryptSvc - ok
14:39:14.0538 2928 CSCrySec (ab1201f8de199e764da9a32abf71049c) C:\Windows\system32\DRIVERS\CSCrySec.sys
14:39:14.0569 2928 CSCrySec - ok
14:39:14.0721 2928 CSObjectsSrv (6e5b42219f1fe4a3d087d9d501e343d5) C:\Program Files (x86)\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe
14:39:14.0759 2928 CSObjectsSrv - ok
14:39:14.0784 2928 CSVirtualDiskDrv (a6eed705bb510fa6b0f9f097165a3395) C:\Windows\system32\DRIVERS\CSVirtualDiskDrv.sys
14:39:14.0829 2928 CSVirtualDiskDrv - ok
14:39:14.0880 2928 dc3d (76e02db615a03801d698199a2bc4a06a) C:\Windows\system32\DRIVERS\dc3d.sys
14:39:14.0924 2928 dc3d - ok
14:39:14.0989 2928 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
14:39:15.0075 2928 DcomLaunch - ok
14:39:15.0123 2928 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
14:39:15.0208 2928 defragsvc - ok
14:39:15.0260 2928 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
14:39:15.0356 2928 DfsC - ok
14:39:15.0421 2928 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
14:39:15.0508 2928 Dhcp - ok
14:39:15.0544 2928 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
14:39:15.0614 2928 discache - ok
14:39:15.0653 2928 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
14:39:15.0677 2928 Disk - ok
14:39:15.0724 2928 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
14:39:16.0341 2928 Dnscache - ok
14:39:16.0401 2928 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
14:39:16.0518 2928 dot3svc - ok
14:39:16.0574 2928 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
14:39:16.0657 2928 DPS - ok
14:39:16.0699 2928 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
14:39:16.0788 2928 drmkaud - ok
14:39:16.0877 2928 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
14:39:17.0006 2928 DXGKrnl - ok
14:39:17.0031 2928 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
14:39:17.0102 2928 EapHost - ok
14:39:17.0323 2928 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
14:39:17.0459 2928 ebdrv - ok
14:39:17.0553 2928 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
14:39:17.0674 2928 EFS - ok
14:39:17.0748 2928 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
14:39:17.0954 2928 ehRecvr - ok
14:39:17.0976 2928 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
14:39:18.0054 2928 ehSched - ok
14:39:18.0115 2928 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
14:39:18.0192 2928 elxstor - ok
14:39:18.0217 2928 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
14:39:18.0308 2928 ErrDev - ok
14:39:18.0363 2928 EuMusDesignVirtualAudioCableWdm (932c05033053ada2404fd836c9ab2c70) C:\Windows\system32\DRIVERS\vrtaucbl.sys
14:39:18.0447 2928 EuMusDesignVirtualAudioCableWdm - ok
14:39:18.0482 2928 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
14:39:18.0572 2928 EventSystem - ok
14:39:18.0610 2928 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
14:39:18.0704 2928 exfat - ok
14:39:18.0738 2928 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
14:39:18.0800 2928 fastfat - ok
14:39:18.0872 2928 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
14:39:19.0032 2928 Fax - ok
14:39:19.0129 2928 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
14:39:19.0239 2928 fdc - ok
14:39:19.0272 2928 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
14:39:19.0482 2928 fdPHost - ok
14:39:19.0513 2928 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
14:39:19.0599 2928 FDResPub - ok
14:39:19.0624 2928 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
14:39:19.0681 2928 FileInfo - ok
14:39:19.0685 2928 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
14:39:19.0773 2928 Filetrace - ok
14:39:19.0811 2928 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
14:39:19.0870 2928 flpydisk - ok
14:39:19.0925 2928 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
14:39:19.0992 2928 FltMgr - ok
14:39:20.0078 2928 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
14:39:20.0178 2928 FontCache - ok
14:39:20.0269 2928 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
14:39:20.0337 2928 FontCache3.0.0.0 - ok
14:39:20.0355 2928 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
14:39:20.0401 2928 FsDepends - ok
14:39:20.0437 2928 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
14:39:20.0472 2928 Fs_Rec - ok
14:39:20.0523 2928 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
14:39:20.0591 2928 fvevol - ok
14:39:20.0625 2928 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
14:39:20.0678 2928 gagp30kx - ok
14:39:20.0776 2928 GameConsoleService (c1bbce4b30b45410178ee674c818d10c) C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
14:39:20.0819 2928 GameConsoleService - ok
14:39:20.0844 2928 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
14:39:20.0879 2928 GEARAspiWDM - ok
14:39:20.0953 2928 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
14:39:21.0065 2928 gpsvc - ok
14:39:21.0124 2928 hamachi (1e6438d4ea6e1174a3b3b1edc4de660b) C:\Windows\system32\DRIVERS\hamachi.sys
14:39:21.0198 2928 hamachi - ok
14:39:21.0397 2928 Hamachi2Svc (d483dbaef409e8ab7477c28615fcd853) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
14:39:21.0477 2928 Hamachi2Svc - ok
14:39:21.0598 2928 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
14:39:21.0749 2928 hcw85cir - ok
14:39:21.0804 2928 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
14:39:21.0871 2928 HDAudBus - ok
14:39:21.0916 2928 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
14:39:22.0045 2928 HidBatt - ok
14:39:22.0104 2928 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
14:39:22.0196 2928 HidBth - ok
14:39:22.0213 2928 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
14:39:22.0285 2928 HidIr - ok
14:39:22.0313 2928 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
14:39:22.0387 2928 hidserv - ok
14:39:22.0454 2928 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
14:39:23.0004 2928 HidUsb - ok
14:39:23.0108 2928 HiPatchService (5a457c3d00c1c701230a12aa1580114d) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
14:39:23.0158 2928 HiPatchService ( UnsignedFile.Multi.Generic ) - warning
14:39:23.0158 2928 HiPatchService - detected UnsignedFile.Multi.Generic (1)
14:39:23.0205 2928 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
14:39:23.0384 2928 hkmsvc - ok
14:39:23.0448 2928 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
14:39:23.0702 2928 HomeGroupListener - ok
14:39:23.0738 2928 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
14:39:23.0921 2928 HomeGroupProvider - ok
14:39:23.0979 2928 HP Health Check Service (00b239202f7756695c8ccdf8bafa7d3d) C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
14:39:24.0034 2928 HP Health Check Service ( UnsignedFile.Multi.Generic ) - warning
14:39:24.0034 2928 HP Health Check Service - detected UnsignedFile.Multi.Generic (1)
14:39:24.0086 2928 hpqwmiex (fdf273a845f1ffcceadf363aaf47582f) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
14:39:24.0131 2928 hpqwmiex - ok
14:39:24.0181 2928 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
14:39:24.0286 2928 HpSAMD - ok
14:39:24.0324 2928 HTCAND64 (f47cec45fb85791d4ab237563ad0fa8f) C:\Windows\system32\Drivers\ANDROIDUSB.sys
14:39:24.0473 2928 HTCAND64 - ok
14:39:24.0516 2928 htcnprot (b8b1b284362e1d8135112573395d5da5) C:\Windows\system32\DRIVERS\htcnprot.sys
14:39:24.0596 2928 htcnprot - ok
14:39:24.0673 2928 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
14:39:24.0780 2928 HTTP - ok
14:39:24.0812 2928 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
14:39:24.0867 2928 hwpolicy - ok
14:39:24.0928 2928 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
14:39:24.0999 2928 i8042prt - ok
14:39:25.0050 2928 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
14:39:25.0123 2928 iaStorV - ok
14:39:25.0263 2928 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
14:39:25.0363 2928 idsvc - ok
14:39:25.0396 2928 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
14:39:25.0445 2928 iirsp - ok
14:39:25.0512 2928 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
14:39:25.0635 2928 IKEEXT - ok
14:39:25.0869 2928 IntcAzAudAddService (392d5c87f282e8e36df5154418a7bb20) C:\Windows\system32\drivers\RTKVHD64.sys
14:39:26.0402 2928 IntcAzAudAddService - ok
14:39:26.0518 2928 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
14:39:26.0587 2928 intelide - ok
14:39:26.0625 2928 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
14:39:26.0697 2928 intelppm - ok
14:39:26.0740 2928 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
14:39:26.0821 2928 IPBusEnum - ok
14:39:26.0866 2928 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:39:26.0978 2928 IpFilterDriver - ok
14:39:27.0031 2928 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
14:39:27.0133 2928 iphlpsvc - ok
14:39:27.0171 2928 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
14:39:27.0244 2928 IPMIDRV - ok
14:39:27.0271 2928 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
14:39:27.0367 2928 IPNAT - ok
14:39:27.0517 2928 iPod Service (46d249f9db7844cc01050a9345f0f61b) C:\Program Files\iPod\bin\iPodService.exe
14:39:27.0554 2928 iPod Service - ok
14:39:27.0575 2928 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
14:39:27.0689 2928 IRENUM - ok
14:39:27.0715 2928 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
14:39:27.0824 2928 isapnp - ok
14:39:27.0882 2928 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
14:39:27.0955 2928 iScsiPrt - ok
14:39:27.0977 2928 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
14:39:28.0045 2928 kbdclass - ok
14:39:28.0081 2928 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
14:39:28.0172 2928 kbdhid - ok
14:39:28.0203 2928 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
14:39:28.0233 2928 KeyIso - ok
14:39:28.0276 2928 kl1 (db449f50e5141458eb58e64ffac4863f) C:\Windows\system32\DRIVERS\kl1.sys
14:39:28.0339 2928 kl1 - ok
14:39:28.0358 2928 KLBG (87200a8afe40532baa4d2b24a7ba0eea) C:\Windows\system32\DRIVERS\klbg.sys
14:39:28.0405 2928 KLBG - ok
14:39:28.0469 2928 KLIF (34d49307217b20e5a845b7db50cdd4fa) C:\Windows\system32\DRIVERS\klif.sys
14:39:28.0508 2928 KLIF - ok
14:39:28.0525 2928 KLIM6 (630f22545379437737cf4172f09fe449) C:\Windows\system32\DRIVERS\klim6.sys
14:39:28.0571 2928 KLIM6 - ok
14:39:28.0590 2928 klmouflt (786791291939abb11f6d0f040da23912) C:\Windows\system32\DRIVERS\klmouflt.sys
14:39:28.0639 2928 klmouflt - ok
14:39:28.0666 2928 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
14:39:28.0707 2928 KSecDD - ok
14:39:28.0738 2928 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
14:39:28.0779 2928 KSecPkg - ok
14:39:28.0816 2928 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
14:39:28.0910 2928 ksthunk - ok
14:39:28.0954 2928 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
14:39:29.0039 2928 KtmRm - ok
14:39:29.0091 2928 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
14:39:29.0192 2928 LanmanServer - ok
14:39:29.0429 2928 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
14:39:29.0525 2928 LanmanWorkstation - ok
14:39:29.0627 2928 LightScribeService (2238b91ac1a12cc6cc4c4fed41258b2a) c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
14:39:29.0640 2928 LightScribeService ( UnsignedFile.Multi.Generic ) - warning
14:39:29.0640 2928 LightScribeService - detected UnsignedFile.Multi.Generic (1)
14:39:29.0685 2928 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
14:39:29.0801 2928 lltdio - ok
14:39:29.0869 2928 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
14:39:29.0983 2928 lltdsvc - ok
14:39:30.0002 2928 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
14:39:30.0056 2928 lmhosts - ok
14:39:30.0100 2928 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
14:39:30.0146 2928 LSI_FC - ok
14:39:30.0177 2928 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
14:39:30.0225 2928 LSI_SAS - ok
14:39:30.0244 2928 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
14:39:30.0292 2928 LSI_SAS2 - ok
14:39:30.0312 2928 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
14:39:30.0369 2928 LSI_SCSI - ok
14:39:30.0398 2928 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
14:39:30.0475 2928 luafv - ok
14:39:30.0510 2928 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
14:39:30.0552 2928 Mcx2Svc - ok
14:39:30.0583 2928 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
14:39:30.0625 2928 megasas - ok
14:39:30.0650 2928 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
14:39:30.0703 2928 MegaSR - ok
14:39:30.0801 2928 Microsoft Office Groove Audit Service (123271bd5237ab991dc5c21fdf8835eb) C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
14:39:30.0830 2928 Microsoft Office Groove Audit Service - ok
14:39:30.0866 2928 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
14:39:30.0920 2928 MMCSS - ok
14:39:30.0932 2928 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
14:39:31.0013 2928 Modem - ok
14:39:31.0061 2928 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
14:39:31.0125 2928 monitor - ok
14:39:31.0166 2928 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
14:39:31.0277 2928 mouclass - ok
14:39:31.0312 2928 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
14:39:31.0377 2928 mouhid - ok
14:39:31.0410 2928 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
14:39:31.0465 2928 mountmgr - ok
14:39:31.0524 2928 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
14:39:31.0556 2928 MozillaMaintenance - ok
14:39:31.0590 2928 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
14:39:31.0653 2928 mpio - ok
14:39:31.0671 2928 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
14:39:31.0739 2928 mpsdrv - ok
14:39:31.0857 2928 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
14:39:31.0981 2928 MpsSvc - ok
14:39:32.0020 2928 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
14:39:32.0110 2928 MRxDAV - ok
14:39:32.0146 2928 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
14:39:32.0282 2928 mrxsmb - ok
14:39:32.0327 2928 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:39:32.0381 2928 mrxsmb10 - ok
14:39:32.0414 2928 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:39:32.0480 2928 mrxsmb20 - ok
14:39:32.0507 2928 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
14:39:32.0591 2928 msahci - ok
14:39:32.0625 2928 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
14:39:32.0754 2928 msdsm - ok
14:39:32.0785 2928 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
14:39:32.0890 2928 MSDTC - ok
14:39:32.0923 2928 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
14:39:32.0986 2928 Msfs - ok
14:39:33.0012 2928 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
14:39:33.0150 2928 mshidkmdf - ok
14:39:33.0178 2928 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
14:39:33.0260 2928 msisadrv - ok
14:39:33.0297 2928 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
14:39:33.0398 2928 MSiSCSI - ok
14:39:33.0401 2928 msiserver - ok
14:39:33.0434 2928 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
14:39:33.0513 2928 MSKSSRV - ok
14:39:33.0541 2928 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
14:39:33.0621 2928 MSPCLOCK - ok
14:39:33.0648 2928 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
14:39:33.0758 2928 MSPQM - ok
14:39:33.0825 2928 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
14:39:33.0924 2928 MsRPC - ok
14:39:33.0954 2928 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
14:39:33.0981 2928 mssmbios - ok
14:39:34.0017 2928 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
14:39:34.0164 2928 MSTEE - ok
14:39:34.0194 2928 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
14:39:34.0244 2928 MTConfig - ok
14:39:34.0260 2928 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
14:39:34.0293 2928 Mup - ok
14:39:34.0343 2928 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
14:39:34.0438 2928 napagent - ok
14:39:34.0483 2928 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
14:39:34.0558 2928 NativeWifiP - ok
14:39:34.0649 2928 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
14:39:34.0718 2928 NDIS - ok
14:39:34.0741 2928 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
14:39:34.0801 2928 NdisCap - ok
14:39:34.0824 2928 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
14:39:34.0885 2928 NdisTapi - ok
14:39:34.0918 2928 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
14:39:35.0022 2928 Ndisuio - ok
14:39:35.0062 2928 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
14:39:35.0165 2928 NdisWan - ok
14:39:35.0192 2928 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
14:39:35.0286 2928 NDProxy - ok
14:39:35.0303 2928 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
14:39:35.0372 2928 NetBIOS - ok
14:39:35.0420 2928 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
14:39:35.0506 2928 NetBT - ok
14:39:35.0545 2928 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
14:39:35.0565 2928 Netlogon - ok
14:39:35.0618 2928 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
14:39:35.0744 2928 Netman - ok
14:39:35.0870 2928 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:39:35.0930 2928 NetMsmqActivator - ok
14:39:35.0933 2928 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:39:35.0952 2928 NetPipeActivator - ok
14:39:35.0987 2928 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
14:39:36.0064 2928 netprofm - ok
14:39:36.0083 2928 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:39:36.0102 2928 NetTcpActivator - ok
14:39:36.0105 2928 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:39:36.0123 2928 NetTcpPortSharing - ok
14:39:36.0181 2928 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
14:39:36.0228 2928 nfrd960 - ok
14:39:36.0270 2928 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
14:39:36.0351 2928 NlaSvc - ok
14:39:36.0391 2928 NPF (c31fa031335eff434b2d94278e74bcce) C:\Windows\system32\drivers\npf.sys
14:39:36.0451 2928 NPF - ok
14:39:36.0477 2928 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
14:39:36.0558 2928 Npfs - ok
14:39:36.0565 2928 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
14:39:36.0648 2928 nsi - ok
14:39:36.0660 2928 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
14:39:36.0733 2928 nsiproxy - ok
14:39:36.0856 2928 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
14:39:36.0968 2928 Ntfs - ok
14:39:37.0088 2928 NuidFltr (4c08a14d04e62963e96e0bb57bbc953b) C:\Windows\system32\DRIVERS\NuidFltr.sys
14:39:37.0135 2928 NuidFltr - ok
14:39:37.0151 2928 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
14:39:37.0227 2928 Null - ok
14:39:38.0072 2928 nvlddmkm (b34e9bfbd9c61048ef6281c3e7ec210a) C:\Windows\system32\DRIVERS\nvlddmkm.sys
14:39:38.0436 2928 nvlddmkm - ok
14:39:38.0567 2928 NVNET (909eedcbd365bb81027d8e742e6b3416) C:\Windows\system32\DRIVERS\nvmf6264.sys
14:39:38.0643 2928 NVNET - ok
14:39:38.0686 2928 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
14:39:38.0764 2928 nvraid - ok
14:39:38.0798 2928 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
14:39:38.0872 2928 nvstor - ok
14:39:38.0916 2928 nvstor64 (1e45f96342429d63dc30e0d9117da3d8) C:\Windows\system32\DRIVERS\nvstor64.sys
14:39:38.0948 2928 nvstor64 - ok
14:39:39.0044 2928 nvsvc (dfda089bb2cd0ff7e789e2ef6ba1e4ba) C:\Windows\system32\nvvsvc.exe
14:39:39.0089 2928 nvsvc - ok
14:39:39.0106 2928 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
14:39:39.0180 2928 nv_agp - ok
14:39:39.0294 2928 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
14:39:39.0386 2928 odserv - ok
14:39:39.0415 2928 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
14:39:39.0511 2928 ohci1394 - ok
14:39:39.0612 2928 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:39:39.0702 2928 ose - ok
14:39:39.0763 2928 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
14:39:39.0846 2928 p2pimsvc - ok
14:39:39.0892 2928 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
14:39:39.0989 2928 p2psvc - ok
14:39:40.0025 2928 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
14:39:40.0121 2928 Parport - ok
14:39:40.0148 2928 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
14:39:40.0282 2928 partmgr - ok
14:39:40.0352 2928 PassThru Service (a1e779a0cf7a21b42e8fd3e8856d8481) C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
14:39:40.0393 2928 PassThru Service ( UnsignedFile.Multi.Generic ) - warning
14:39:40.0393 2928 PassThru Service - detected UnsignedFile.Multi.Generic (1)
14:39:40.0433 2928 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
14:39:40.0508 2928 PcaSvc - ok
14:39:40.0681 2928 PCDSRVC{F36B3A4C-F95654BD-06000000}_0 (51209fbdb13a46e05c1b0077a9310264) c:\program files\pc-doctor for windows\pcdsrvc_x64.pkms
14:39:40.0981 2928 PCDSRVC{F36B3A4C-F95654BD-06000000}_0 - ok
14:39:41.0032 2928 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
14:39:41.0084 2928 pci - ok
14:39:41.0099 2928 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
14:39:41.0174 2928 pciide - ok
14:39:41.0209 2928 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
14:39:41.0282 2928 pcmcia - ok
14:39:41.0308 2928 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
14:39:41.0353 2928 pcw - ok
14:39:41.0398 2928 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
14:39:41.0488 2928 PEAUTH - ok
14:39:41.0567 2928 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
14:39:41.0657 2928 PerfHost - ok
14:39:41.0774 2928 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
14:39:41.0955 2928 pla - ok
14:39:42.0024 2928 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
14:39:42.0128 2928 PlugPlay - ok
14:39:42.0140 2928 PnkBstrA - ok
14:39:42.0146 2928 PnkBstrB - ok
14:39:42.0168 2928 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
14:39:42.0242 2928 PNRPAutoReg - ok
14:39:42.0280 2928 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
14:39:42.0320 2928 PNRPsvc - ok
14:39:42.0367 2928 Point64 (4f0878fd62d5f7444c5f1c4c66d9d293) C:\Windows\system32\DRIVERS\point64.sys
14:39:42.0441 2928 Point64 - ok
14:39:42.0494 2928 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
14:39:42.0588 2928 PolicyAgent - ok
14:39:42.0630 2928 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
14:39:42.0717 2928 Power - ok
14:39:42.0768 2928 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
14:39:42.0875 2928 PptpMiniport - ok
14:39:42.0908 2928 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
14:39:42.0994 2928 Processor - ok
14:39:43.0058 2928 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
14:39:43.0178 2928 ProfSvc - ok
14:39:43.0219 2928 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
14:39:43.0255 2928 ProtectedStorage - ok
14:39:43.0305 2928 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
14:39:43.0389 2928 Psched - ok
14:39:43.0532 2928 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
14:39:43.0647 2928 ql2300 - ok
14:39:43.0751 2928 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
14:39:43.0847 2928 ql40xx - ok
14:39:43.0912 2928 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
14:39:43.0995 2928 QWAVE - ok
14:39:44.0017 2928 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
14:39:44.0076 2928 QWAVEdrv - ok
14:39:44.0150 2928 RapiMgr (a55e7d0d873b2c97585b3b5926ac6ade) C:\Windows\WindowsMobile\rapimgr.dll
14:39:44.0210 2928 RapiMgr - ok
14:39:44.0225 2928 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
14:39:44.0318 2928 RasAcd - ok
14:39:44.0362 2928 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
14:39:44.0437 2928 RasAgileVpn - ok
14:39:44.0457 2928 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
14:39:44.0554 2928 RasAuto - ok
14:39:44.0606 2928 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
14:39:44.0737 2928 Rasl2tp - ok
14:39:44.0794 2928 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
14:39:44.0911 2928 RasMan - ok
14:39:44.0931 2928 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
14:39:45.0037 2928 RasPppoe - ok
14:39:45.0066 2928 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
14:39:45.0175 2928 RasSstp - ok
14:39:45.0227 2928 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
14:39:45.0343 2928 rdbss - ok
14:39:45.0375 2928 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
14:39:45.0466 2928 rdpbus - ok
14:39:45.0486 2928 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
14:39:45.0566 2928 RDPCDD - ok
14:39:45.0591 2928 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
14:39:45.0672 2928 RDPENCDD - ok
14:39:45.0689 2928 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
14:39:45.0745 2928 RDPREFMP - ok
14:39:45.0781 2928 RDPWD (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys
14:39:45.0904 2928 RDPWD - ok
14:39:45.0944 2928 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
14:39:46.0022 2928 rdyboost - ok
14:39:46.0046 2928 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
14:39:46.0157 2928 RemoteAccess - ok
14:39:46.0252 2928 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
14:39:46.0351 2928 RemoteRegistry - ok
14:39:46.0421 2928 rpcapd (a780d3eaa74582ea1deb6bd9c7a3d9c9) C:\Program Files (x86)\WinPcap\rpcapd.exe
14:39:46.0470 2928 rpcapd - ok
14:39:46.0507 2928 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
14:39:46.0585 2928 RpcEptMapper - ok
14:39:46.0613 2928 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
14:39:46.0704 2928 RpcLocator - ok
14:39:46.0757 2928 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
14:39:46.0804 2928 RpcSs - ok
14:39:46.0840 2928 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
14:39:46.0957 2928 rspndr - ok
14:39:46.0986 2928 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
14:39:47.0014 2928 SamSs - ok
14:39:47.0044 2928 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
14:39:47.0228 2928 sbp2port - ok
14:39:47.0371 2928 SBSDWSCService (794d4b48dfb6e999537c7c3947863463) C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
14:39:47.0431 2928 SBSDWSCService - ok
14:39:47.0460 2928 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
14:39:47.0545 2928 SCardSvr - ok
14:39:47.0608 2928 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
14:39:47.0747 2928 scfilter - ok
14:39:47.0844 2928 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
14:39:47.0967 2928 Schedule - ok
14:39:48.0000 2928 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
14:39:48.0046 2928 SCPolicySvc - ok
14:39:48.0087 2928 ScreamBAudioSvc (490b0b68bb938d5c628ec4a67277be75) C:\Windows\system32\drivers\ScreamingBAudio64.sys
14:39:48.0127 2928 ScreamBAudioSvc - ok
14:39:48.0159 2928 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
14:39:48.0278 2928 SDRSVC - ok
14:39:48.0319 2928 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
14:39:48.0403 2928 secdrv - ok
14:39:48.0430 2928 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
14:39:48.0547 2928 seclogon - ok
14:39:48.0570 2928 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
14:39:48.0634 2928 SENS - ok
14:39:48.0653 2928 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
14:39:48.0764 2928 SensrSvc - ok
14:39:48.0790 2928 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
14:39:48.0883 2928 Serenum - ok
14:39:48.0908 2928 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
14:39:48.0980 2928 Serial - ok
14:39:49.0007 2928 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
14:39:49.0105 2928 sermouse - ok
14:39:49.0149 2928 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
14:39:49.0232 2928 SessionEnv - ok
14:39:49.0276 2928 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
14:39:49.0411 2928 sffdisk - ok
14:39:49.0420 2928 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
14:39:49.0508 2928 sffp_mmc - ok
14:39:49.0533 2928 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
14:39:49.0630 2928 sffp_sd - ok
14:39:49.0654 2928 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
14:39:49.0725 2928 sfloppy - ok
14:39:49.0766 2928 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
14:39:49.0944 2928 SharedAccess - ok
14:39:50.0166 2928 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
14:39:50.0284 2928 ShellHWDetection - ok
14:39:50.0320 2928 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
14:39:50.0413 2928 SiSRaid2 - ok
14:39:50.0446 2928 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
14:39:50.0531 2928 SiSRaid4 - ok
14:39:50.0571 2928 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
14:39:50.0699 2928 Smb - ok
14:39:50.0741 2928 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
14:39:50.0853 2928 SNMPTRAP - ok
14:39:50.0987 2928 speedfan (7455ed832a33fef453407f5411c3342d) C:\Windows\syswow64\speedfan.sys
14:39:51.0041 2928 speedfan - ok
14:39:51.0051 2928 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
14:39:51.0102 2928 spldr - ok
14:39:51.0155 2928 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
14:39:51.0229 2928 Spooler - ok
14:39:51.0458 2928 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
14:39:51.0593 2928 sppsvc - ok
14:39:51.0716 2928 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
14:39:51.0799 2928 sppuinotify - ok
14:39:51.0858 2928 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
14:39:51.0984 2928 srv - ok
14:39:52.0043 2928 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
14:39:52.0106 2928 srv2 - ok
14:39:52.0130 2928 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
14:39:52.0184 2928 srvnet - ok
14:39:52.0211 2928 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
14:39:52.0304 2928 SSDPSRV - ok
14:39:52.0332 2928 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
14:39:52.0415 2928 SstpSvc - ok
14:39:52.0487 2928 Steam Client Service - ok
14:39:52.0516 2928 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
14:39:52.0582 2928 stexstor - ok
14:39:52.0644 2928 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
14:39:52.0722 2928 stisvc - ok
14:39:52.0752 2928 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
14:39:52.0827 2928 swenum - ok
14:39:52.0938 2928 SwitchBoard (f577910a133a592234ebaad3f3afa258) C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
14:39:53.0014 2928 SwitchBoard ( UnsignedFile.Multi.Generic ) - warning
14:39:53.0014 2928 SwitchBoard - detected UnsignedFile.Multi.Generic (1)
14:39:53.0075 2928 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
14:39:53.0186 2928 swprv - ok
14:39:53.0329 2928 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
14:39:53.0440 2928 SysMain - ok
14:39:53.0552 2928 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
14:39:53.0670 2928 TabletInputService - ok
14:39:53.0729 2928 tap0901 (4ef44915e522f3ecd1a3ff540aa64126) C:\Windows\system32\DRIVERS\tap0901.sys
14:39:53.0915 2928 tap0901 - ok
14:39:53.0960 2928 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
14:39:54.0150 2928 TapiSrv - ok
14:39:54.0176 2928 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
14:39:54.0242 2928 TBS - ok
14:39:54.0382 2928 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
14:39:54.0511 2928 Tcpip - ok
14:39:54.0665 2928 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
14:39:54.0720 2928 TCPIP6 - ok
14:39:54.0790 2928 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
14:39:54.0904 2928 tcpipreg - ok
14:39:54.0933 2928 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
14:39:55.0011 2928 TDPIPE - ok
14:39:55.0056 2928 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
14:39:55.0124 2928 TDTCP - ok
14:39:55.0193 2928 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
14:39:55.0287 2928 tdx - ok
14:39:55.0401 2928 TeamViewer5 (213723e1a736910c644b457de6d095e2) C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe
14:39:55.0461 2928 TeamViewer5 - ok
14:39:55.0486 2928 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
14:39:55.0562 2928 TermDD - ok
14:39:55.0628 2928 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
14:39:55.0751 2928 TermService - ok
14:39:55.0787 2928 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
14:39:55.0860 2928 Themes - ok
14:39:55.0916 2928 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
14:39:55.0970 2928 THREADORDER - ok
14:39:56.0013 2928 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
14:39:56.0107 2928 TrkWks - ok
14:39:56.0154 2928 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
14:39:56.0260 2928 TrustedInstaller - ok
14:39:56.0300 2928 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
14:39:56.0395 2928 tssecsrv - ok
14:39:56.0477 2928 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
14:39:56.0622 2928 TsUsbFlt - ok
14:39:56.0675 2928 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
14:39:56.0796 2928 tunnel - ok
14:39:56.0833 2928 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
14:39:56.0897 2928 uagp35 - ok
14:39:56.0936 2928 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
14:39:57.0070 2928 udfs - ok
14:39:57.0087 2928 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
14:39:57.0182 2928 UI0Detect - ok
14:39:57.0215 2928 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
14:39:57.0391 2928 uliagpkx - ok
14:39:57.0438 2928 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
14:39:57.0565 2928 umbus - ok
14:39:57.0607 2928 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
14:39:57.0711 2928 UmPass - ok
14:39:57.0753 2928 UnsignedThemes (8f387a1cc015a3f5020700c657a0fc85) C:\Windows\UnsignedThemesSvc.exe
14:39:57.0790 2928 UnsignedThemes - ok
14:39:57.0817 2928 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
14:39:57.0894 2928 upnphost - ok
14:39:57.0945 2928 USBAAPL64 (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys
14:39:58.0058 2928 USBAAPL64 - ok
14:39:58.0101 2928 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys
14:39:58.0188 2928 usbaudio - ok
14:39:58.0227 2928 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
14:39:58.0373 2928 usbccgp - ok
14:39:58.0406 2928 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
14:39:58.0480 2928 usbcir - ok
14:39:58.0519 2928 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
14:39:58.0586 2928 usbehci - ok
14:39:58.0633 2928 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
14:39:58.0736 2928 usbhub - ok
14:39:58.0766 2928 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\DRIVERS\usbohci.sys
14:39:58.0838 2928 usbohci - ok
14:39:58.0884 2928 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
14:39:58.0971 2928 usbprint - ok
14:39:59.0012 2928 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
14:39:59.0114 2928 usbscan - ok
14:39:59.0152 2928 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:39:59.0268 2928 USBSTOR - ok
14:39:59.0295 2928 usbuhci (81fb2216d3a60d1284455d511797db3d) C:\Windows\system32\DRIVERS\usbuhci.sys
14:39:59.0387 2928 usbuhci - ok
14:39:59.0431 2928 usb_rndisx (70d05ee263568a742d14e1876df80532) C:\Windows\system32\DRIVERS\usb8023x.sys
14:39:59.0484 2928 usb_rndisx - ok
14:39:59.0532 2928 uxpatch (297ee9c666fc8bb96a232db0ddba1e49) C:\Windows\system32\drivers\uxpatch.sys
14:39:59.0568 2928 uxpatch - ok
14:39:59.0615 2928 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
14:39:59.0701 2928 UxSms - ok
14:39:59.0736 2928 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
14:39:59.0768 2928 VaultSvc - ok
14:39:59.0812 2928 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
14:39:59.0854 2928 vdrvroot - ok
14:39:59.0952 2928 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
14:40:00.0079 2928 vds - ok
14:40:00.0119 2928 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
14:40:00.0183 2928 vga - ok
14:40:00.0223 2928 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
14:40:00.0362 2928 VgaSave - ok
14:40:00.0456 2928 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
14:40:00.0534 2928 vhdmp - ok
14:40:00.0564 2928 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
14:40:00.0640 2928 viaide - ok
14:40:00.0657 2928 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
14:40:00.0728 2928 volmgr - ok
14:40:00.0774 2928 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
14:40:00.0871 2928 volmgrx - ok
14:40:00.0895 2928 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
14:40:00.0957 2928 volsnap - ok
14:40:00.0994 2928 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
14:40:01.0100 2928 vsmraid - ok
14:40:01.0207 2928 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
14:40:01.0357 2928 VSS - ok
14:40:01.0470 2928 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
14:40:01.0548 2928 vwifibus - ok
14:40:01.0609 2928 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
14:40:01.0677 2928 W32Time - ok
14:40:01.0702 2928 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
14:40:01.0769 2928 WacomPen - ok
14:40:01.0814 2928 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
14:40:01.0943 2928 WANARP - ok
14:40:01.0963 2928 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
14:40:02.0018 2928 Wanarpv6 - ok
14:40:02.0201 2928 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
14:40:02.0270 2928 WatAdminSvc - ok
14:40:02.0380 2928 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
14:40:02.0545 2928 wbengine - ok
14:40:02.0654 2928 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
14:40:02.0727 2928 WbioSrvc - ok
14:40:02.0820 2928 WcesComm (8bda6db43aa54e8bb5e0794541ddc209) C:\Windows\WindowsMobile\wcescomm.dll
14:40:02.0876 2928 WcesComm - ok
14:40:02.0923 2928 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
14:40:02.0998 2928 wcncsvc - ok
14:40:03.0015 2928 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
14:40:03.0114 2928 WcsPlugInService - ok
14:40:03.0156 2928 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
14:40:03.0225 2928 Wd - ok
14:40:03.0274 2928 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
14:40:03.0323 2928 Wdf01000 - ok
14:40:03.0336 2928 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
14:40:03.0463 2928 WdiServiceHost - ok
14:40:03.0466 2928 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
14:40:03.0494 2928 WdiSystemHost - ok
14:40:03.0544 2928 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
14:40:03.0650 2928 WebClient - ok
14:40:03.0693 2928 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
14:40:03.0790 2928 Wecsvc - ok
14:40:03.0820 2928 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
14:40:03.0895 2928 wercplsupport - ok
14:40:03.0925 2928 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
14:40:03.0987 2928 WerSvc - ok
14:40:04.0070 2928 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
14:40:04.0179 2928 WfpLwf - ok
14:40:04.0193 2928 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
14:40:04.0254 2928 WIMMount - ok
14:40:04.0282 2928 WinDefend - ok
14:40:04.0289 2928 WinHttpAutoProxySvc - ok
14:40:04.0344 2928 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
14:40:04.0457 2928 Winmgmt - ok
14:40:04.0606 2928 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
14:40:04.0860 2928 WinRM - ok
14:40:04.0997 2928 WINUSB (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\drivers\WinUSB.SYS
14:40:05.0071 2928 WINUSB - ok
14:40:05.0147 2928 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
14:40:05.0245 2928 Wlansvc - ok
14:40:05.0477 2928 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
14:40:05.0531 2928 wlidsvc - ok
14:40:05.0596 2928 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
14:40:05.0683 2928 WmiAcpi - ok
14:40:05.0761 2928 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
14:40:05.0849 2928 wmiApSrv - ok
14:40:05.0878 2928 WMPNetworkSvc - ok
14:40:05.0908 2928 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
14:40:05.0980 2928 WPCSvc - ok
14:40:06.0032 2928 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
14:40:06.0145 2928 WPDBusEnum - ok
14:40:06.0175 2928 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
14:40:06.0251 2928 ws2ifsl - ok
14:40:06.0267 2928 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
14:40:06.0336 2928 wscsvc - ok
14:40:06.0339 2928 WSearch - ok
14:40:06.0515 2928 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
14:40:06.0641 2928 wuauserv - ok
14:40:06.0753 2928 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
14:40:06.0874 2928 WudfPf - ok
14:40:06.0919 2928 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
14:40:07.0038 2928 WUDFRd - ok
14:40:07.0074 2928 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
14:40:07.0163 2928 wudfsvc - ok
14:40:07.0193 2928 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
14:40:07.0294 2928 WwanSvc - ok
14:40:07.0350 2928 xusb21 (2ee48cfce7ca8e0db4c44c7476c0943b) C:\Windows\system32\DRIVERS\xusb21.sys
14:40:07.0501 2928 xusb21 - ok
14:40:07.0529 2928 MBR (0x1B8) (e14785192d80f11eb497776b6895cc8b) \Device\Harddisk0\DR0
14:40:07.0827 2928 \Device\Harddisk0\DR0 - ok
14:40:07.0853 2928 Boot (0x1200) (3526723af675698c1e87393a0d052454) \Device\Harddisk0\DR0\Partition0
14:40:07.0854 2928 \Device\Harddisk0\DR0\Partition0 - ok
14:40:07.0865 2928 Boot (0x1200) (6bfb8ba590525656013481403afb8917) \Device\Harddisk0\DR0\Partition1
14:40:07.0866 2928 \Device\Harddisk0\DR0\Partition1 - ok
14:40:07.0906 2928 Boot (0x1200) (1980d25fc084d902835e58d7dc89c435) \Device\Harddisk0\DR0\Partition2
14:40:07.0907 2928 \Device\Harddisk0\DR0\Partition2 - ok
14:40:07.0908 2928 ============================================================
14:40:07.0908 2928 Scan finished
14:40:07.0908 2928 ============================================================
14:40:07.0919 1948 Detected object count: 5
14:40:07.0919 1948 Actual detected object count: 5
14:41:34.0315 1948 HiPatchService ( UnsignedFile.Multi.Generic ) - skipped by user
14:41:34.0315 1948 HiPatchService ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:41:34.0318 1948 HP Health Check Service ( UnsignedFile.Multi.Generic ) - skipped by user
14:41:34.0318 1948 HP Health Check Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:41:34.0320 1948 LightScribeService ( UnsignedFile.Multi.Generic ) - skipped by user
14:41:34.0320 1948 LightScribeService ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:41:34.0322 1948 PassThru Service ( UnsignedFile.Multi.Generic ) - skipped by user
14:41:34.0322 1948 PassThru Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:41:34.0323 1948 SwitchBoard ( UnsignedFile.Multi.Generic ) - skipped by user
14:41:34.0323 1948 SwitchBoard ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:41:47.0317 3952 Deinitialize success

______________

C:\Users\Joey\Desktop\How i like to oraganize\desktop\GAming\Keygen.exe a variant of Win32/Packed.VMProtect.AAD trojan cleaned by deleting - quarantined
C:\Users\Joey\Documents\Downloads\BestVideoDownloaderSetup-TurboUpgrade.exe probably a variant of Win32/Adware.DWTYODG application cleaned by deleting - quarantined
C:\Users\Joey\Documents\Downloads\winamp5623_full_emusic-7plus_en-us.exe Win32/OpenCandy application deleted - quarantined


game client is faster, but I still have the same problems with loading webpages.

#9 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:12:04 PM

Posted 20 May 2012 - 04:46 PM

Hi

There is no need to PM me to say you are away / reason for not replying for posts in "Am I Infected?". - For things like this, please reply to this topic rather than PM.
- I have edited my signature to clarify what I meant.

Good, that get rid of some malware. Let's see if there's any more:

Step 1


  • Launch Malwarebytes' Anti-Malware (MBAM)
  • Click on the tab update, then click Check for Updates
  • If an update is found, it will download and install the latest version.
  • Then on the Scanner tab select Perform full scan, then click Scan.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Be sure that everything is checked, and click Remove Selected.
  • When completed, a log will open in Notepad.
  • Post the log in your next reply.

Note: Be sure to restart the computer.

The log can also be found here:
C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
Or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt


Step 2

How is your computer running now?

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#10 reventi0n

reventi0n
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:07:04 AM

Posted 22 May 2012 - 07:41 PM

Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.05.17.08

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 8.0.7601.17514
Joey :: JOEY-PC [administrator]

5/21/2012 9:38:54 PM
mbam-log-2012-05-21 (21-38-54).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 499988
Time elapsed: 2 hour(s), 43 minute(s), 33 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)



we are still at the same place as last time, still problems with intiatl connection however they have become more sporadic.

#11 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:12:04 PM

Posted 24 May 2012 - 06:02 AM

Hi

Also I forgot to mention, since a trojan was found..

C:\Users\Joey\Desktop\How i like to oraganize\desktop\GAming\Keygen.exe a variant of Win32/Packed.VMProtect.AAD trojan cleaned by deleting - quarantined


IMPORTANT NOTE: One or more of the identified infections is a backdoor Trojan.

Backdoor Trojans, Botnets, and IRCBots are very dangerous because they compromise system integrity by making changes that allow it to be used by the attacker for malicious purposes.
They can disable your anti-virus and security tools to prevent detection and removal. Remote attackers use backdoors as a means of accessing and taking control of a computer that bypasses security mechanisms.
This type of exploit allows them to steal sensitive information like passwords, personal and financial data which is then sent back to the hacker.
Read Danger: Remote Access Trojans.

You should disconnect the computer from the Internet and from any networked computers until it is cleaned. If your computer was used for online banking, paying bills, has credit card information or other sensitive data on it, all passwords should be changed immediately to include those used for taxes, email, eBay, paypal and any other online activities.
You should consider them to be compromised and change passwords from a clean computer, not the infected one. If not, an attacker may get the new passwords and transaction information.
Banking and credit card institutions should be notified immediately of the possible security breach. Failure to notify your financial institution and local law enforcement can result in refusal to reimburse funds lost due to fraud or similar criminal activity.
If using a router, you need to reset it with a strong logon/password before connecting again.

Although the infection has been identified and may be removed, your machine has likely been compromised and there is no way to be sure the computer can ever be trusted again. It is dangerous and incorrect to assume the computer is secure even if the malware appears to have been removed.
In some instances an infection may have caused so much damage to your system that it cannot be successfully cleaned or repaired. The malware may leave so many remnants behind that security tools cannot find them.
Many experts in the security community believe that once infected with this type of malware, the best course of action is to wipe the drive clean, reformat and reinstall the OS. Please read:

Whenever a system has been compromised by a backdoor payload, it is impossible to know if or how much the backdoor has been used to affect your system...There are only a few ways to return a compromised system to a confident security configuration. These include:
• Reimaging the system
• Restoring the entire system using a full system backup from before the backdoor infection
• Reformatting and reinstalling the system

Backdoors and What They Mean to You

This is what Jesper M. Johansson, Security Program Manager at Microsoft TechNet has to say:

The only way to clean a compromised system is to flatten and rebuild. That's right. If you have a system that has been completely compromised, the only thing you can do is to flatten the system (reformat the system disk) and rebuild it from scratch (reinstall Windows and your applications).

Help: I Got Hacked. Now What Do I Do?.

We will do our best to clean the computer of any infections seen on the log.
However, because of the nature of this Trojan, I cannot offer a total
guarantee that there are no remnants left in the system, or that the
computer will be trustworthy.

Many security experts believe that once infected with this type of Trojan,
the best course of action is to reformat and reinstall the Operating System.
Making this decision is based on what the computer is used for, and what
information can be accessed from it.

Knowing the above, if you wish to proceed with cleaning the malware from the computer, please follow the instructions below:


Step 1

we are still at the same place as last time, still problems with intiatl connection however they have become more sporadic.

Does this happen with both Internet Explorer & Firefox, or just one of them?

Step 2

Please rerun Minitoobox:

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices
  • List Users, Partitions and Memory size.
  • List Minidump Files
Click Go and post the full contents of the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.


Step 3

How is your computer running now?

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#12 reventi0n

reventi0n
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:07:04 AM

Posted 24 May 2012 - 02:17 PM

it is the same across all browsers,

MiniToolBox by Farbar Version: 18-01-2012
Ran by Joey (administrator) on 24-05-2012 at 15:04:22
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================





127.0.0.1 localhost
127.0.0.1 fr.a2dfp.net
127.0.0.1 m.fr.a2dfp.net
127.0.0.1 ad.a8.net
127.0.0.1 asy.a8ww.net
127.0.0.1 abcstats.com
127.0.0.1 a.abv.bg
127.0.0.1 adserver.abv.bg
127.0.0.1 adv.abv.bg
127.0.0.1 bimg.abv.bg
127.0.0.1 ca.abv.bg
127.0.0.1 www2.a-counter.kiev.ua
127.0.0.1 track.acclaimnetwork.com
127.0.0.1 accuserveadsystem.com
127.0.0.1 www.accuserveadsystem.com
127.0.0.1 achmedia.com
127.0.0.1 aconti.net
127.0.0.1 secure.aconti.net
127.0.0.1 www.aconti.net 127.0.0.1 ads.active.com

There are 27293 more lines starting with "127.0.0.1"

========================= IP Configuration: ================================

NVIDIA nForce 10/100 Mbps Ethernet = Local Area Connection (Connected)
Hamachi Network Interface = Hamachi (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add route prefix=169.254.0.0/16 interface="iftype0_0" nexthop=5.246.35.216 metric=1 publish=Yes
add route prefix=169.254.0.0/16 interface="iftype0_0" nexthop=192.168.2.3 metric=1 publish=Yes
add route prefix=0.0.0.0/0 interface="Hamachi" nexthop=5.0.0.1 publish=Yes
set interface interface="Hamachi" forwarding=disabled advertise=disabled metric=9000 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled advertisedrouterlifetime=0 advertisedefaultroute=disabled currenthoplimit=0 forcearpndwolpattern=disabled enabledirectedmacwolpattern=disabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Joey-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : Belkin

Ethernet adapter Hamachi:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Hamachi Network Interface #2
Physical Address. . . . . . . . . : 7A-79-05-F6-23-D8
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IPv4 Address. . . . . . . . . . . : 5.246.35.216(Preferred)
Subnet Mask . . . . . . . . . . . : 255.0.0.0
Lease Obtained. . . . . . . . . . : Thursday, May 24, 2012 12:14:32 PM
Lease Expires . . . . . . . . . . : Thursday, May 24, 2012 3:14:28 PM
Default Gateway . . . . . . . . . : 5.0.0.1
DHCP Server . . . . . . . . . . . : 5.0.0.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : Belkin
Description . . . . . . . . . . . : NVIDIA nForce 10/100 Mbps Ethernet
Physical Address. . . . . . . . . : E0-CB-4E-1D-31-BE
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::ad93:da93:998d:7d55%10(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.2.5(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Thursday, May 24, 2012 12:14:32 PM
Lease Expires . . . . . . . . . . : Sunday, June 30, 2148 9:39:35 PM
Default Gateway . . . . . . . . . : 192.168.2.1
DHCP Server . . . . . . . . . . . : 192.168.2.1
DHCPv6 IAID . . . . . . . . . . . : 244377274
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-12-CA-D5-90-E0-CB-4E-1D-31-BE
DNS Servers . . . . . . . . . . . : 1:4860:4860::8888
2001:4860:4860::8844
8.8.8.8
8.8.4.4
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter 6TO4 Adapter:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2002:5f6:23d8::5f6:23d8(Preferred)
Default Gateway . . . . . . . . . : 2002:c058:6301::c058:6301
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{C165EC35-C1BC-4DF5-A257-913D46CF16FA}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:2c11:23ed:e747:bf71(Preferred)
Link-local IPv6 Address . . . . . : fe80::2c11:23ed:e747:bf71%11(Preferred)
Default Gateway . . . . . . . . . :
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.Belkin:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : Belkin
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 1:4860:4860::8888

DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.

Pinging google.com [74.125.226.224] with 32 bytes of data:
Reply from 74.125.226.224: bytes=32 time=10ms TTL=55
Reply from 74.125.226.224: bytes=32 time=9ms TTL=55

Ping statistics for 74.125.226.224:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 9ms, Maximum = 10ms, Average = 9ms
DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 1:4860:4860::8888

DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.

Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=116ms TTL=50
Reply from 72.30.38.140: bytes=32 time=143ms TTL=50

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 116ms, Maximum = 143ms, Average = 129ms
DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 1:4860:4860::8888

DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.

Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Request timed out.
Request timed out.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 0, Lost = 2 (100% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
16...7a 79 05 f6 23 d8 ......Hamachi Network Interface #2
10...e0 cb 4e 1d 31 be ......NVIDIA nForce 10/100 Mbps Ethernet
1...........................Software Loopback Interface 1
18...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
11...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 5.0.0.1 5.246.35.216 9256
0.0.0.0 0.0.0.0 192.168.2.1 192.168.2.5 20
5.0.0.0 255.0.0.0 On-link 5.246.35.216 9256
5.246.35.216 255.255.255.255 On-link 5.246.35.216 9256
5.255.255.255 255.255.255.255 On-link 5.246.35.216 9256
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
169.254.0.0 255.255.0.0 On-link 5.246.35.216 9001
169.254.0.0 255.255.0.0 192.168.2.3 192.168.2.5 21
169.254.255.255 255.255.255.255 On-link 5.246.35.216 9256
192.168.2.0 255.255.255.0 On-link 192.168.2.5 276
192.168.2.5 255.255.255.255 On-link 192.168.2.5 276
192.168.2.255 255.255.255.255 On-link 192.168.2.5 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.2.5 276
224.0.0.0 240.0.0.0 On-link 5.246.35.216 9256
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.2.5 276
255.255.255.255 255.255.255.255 On-link 5.246.35.216 9256
===========================================================================
Persistent Routes:
Network Address Netmask Gateway Address Metric
169.254.0.0 255.255.0.0 5.246.35.216 1
169.254.0.0 255.255.0.0 192.168.2.3 1
0.0.0.0 0.0.0.0 5.0.0.1 Default
===========================================================================

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
18 1125 ::/0 2002:c058:6301::c058:6301
1 306 ::1/128 On-link
11 58 2001::/32 On-link
11 306 2001:0:4137:9e76:2c11:23ed:e747:bf71/128
On-link
18 1025 2002::/16 On-link
18 281 2002:5f6:23d8::5f6:23d8/128
On-link
10 276 fe80::/64 On-link
11 306 fe80::/64 On-link
11 306 fe80::2c11:23ed:e747:bf71/128
On-link
10 276 fe80::ad93:da93:998d:7d55/128
On-link
1 306 ff00::/8 On-link
11 306 ff00::/8 On-link
10 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 08 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 08 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (05/24/2012 00:44:06 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (05/24/2012 00:44:06 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (05/23/2012 03:18:04 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (05/23/2012 03:18:04 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (05/23/2012 02:49:52 PM) (Source: Application Error) (User: )
Description: Faulting application name: BelkinRouterMonitor.exe, version: 4.0.3.19106, time stamp: 0x4c50a4d8
Faulting module name: QtCore4.dll, version: 4.5.3.0, time stamp: 0x4ba3e827
Exception code: 0xc0000005
Fault offset: 0x000e721f
Faulting process id: 0x914
Faulting application start time: 0xBelkinRouterMonitor.exe0
Faulting application path: BelkinRouterMonitor.exe1
Faulting module path: BelkinRouterMonitor.exe2
Report Id: BelkinRouterMonitor.exe3

Error: (05/22/2012 10:27:33 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (05/22/2012 10:27:33 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (05/22/2012 10:27:33 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (05/22/2012 10:27:33 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (05/22/2012 10:27:33 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.


System errors:
=============
Error: (05/24/2012 03:07:35 PM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer DEB-PC
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{C24CADA4-9C69-41A7-9FD0-AB93644A81F7}.
The master browser is stopping or an election is being forced.

Error: (05/24/2012 02:31:24 PM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer DEB-PC
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{C24CADA4-9C69-41A7-9FD0-AB93644A81F7}.
The master browser is stopping or an election is being forced.

Error: (05/24/2012 02:07:18 PM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer DEB-PC
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{C24CADA4-9C69-41A7-9FD0-AB93644A81F7}.
The master browser is stopping or an election is being forced.

Error: (05/24/2012 01:55:19 PM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer DEB-PC
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{C24CADA4-9C69-41A7-9FD0-AB93644A81F7}.
The master browser is stopping or an election is being forced.

Error: (05/24/2012 01:31:20 PM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer DEB-PC
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{C24CADA4-9C69-41A7-9FD0-AB93644A81F7}.
The master browser is stopping or an election is being forced.

Error: (05/24/2012 00:55:21 PM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer DEB-PC
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{C24CADA4-9C69-41A7-9FD0-AB93644A81F7}.
The master browser is stopping or an election is being forced.

Error: (05/24/2012 00:31:22 PM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer DEB-PC
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{C24CADA4-9C69-41A7-9FD0-AB93644A81F7}.
The master browser is stopping or an election is being forced.

Error: (05/24/2012 00:19:19 PM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer DEB-PC
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{C24CADA4-9C69-41A7-9FD0-AB93644A81F7}.
The master browser is stopping or an election is being forced.

Error: (05/23/2012 10:30:32 PM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer DEB-PC
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{C24CADA4-9C69-41A7-9FD0-AB93644A81F7}.
The master browser is stopping or an election is being forced.

Error: (05/23/2012 09:54:32 PM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer DEB-PC
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{C24CADA4-9C69-41A7-9FD0-AB93644A81F7}.
The master browser is stopping or an election is being forced.


Microsoft Office Sessions:
=========================
Error: (02/17/2011 05:23:33 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 3 seconds with 0 seconds of active time. This session ended with a crash.

Error: (02/07/2011 09:24:36 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 10 seconds with 0 seconds of active time. This session ended with a crash.

Error: (12/12/2010 08:35:48 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 29 seconds with 0 seconds of active time. This session ended with a crash.

Error: (11/28/2010 06:14:29 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 5 seconds with 0 seconds of active time. This session ended with a crash.

Error: (08/27/2010 07:14:12 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6541.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 6 seconds with 0 seconds of active time. This session ended with a crash.


=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
µTorrent (Version: 3.1.3)
7-Zip 9.20 (x64 edition) (Version: 9.20.00.0)
Acrobat.com (Version: 0.0.0)
Acrobat.com (Version: 1.2.443)
Activation Assistant for the 2007 Microsoft Office suites
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0.1)
ActiveCheck component for HP Active Support Library (Version: 3.0.0.2)
Adobe AIR (Version: 2.6.0.19120)
Adobe Community Help (Version: 3.0.0)
Adobe Community Help (Version: 3.0.0.400)
Adobe Flash Player 10 ActiveX (Version: 10.0.2.54)
Adobe Flash Player 10 ActiveX (Version: 10.0.32.18)
Adobe Flash Player 11 Plugin 64-bit (Version: 11.2.202.235)
Adobe Media Player (Version: 0.0.0)
Adobe Media Player (Version: 1.1)
Adobe Photoshop CS5 (Version: 12.0)
Adobe Reader 9.4.6 (Version: 9.4.6)
Adobe Shockwave Player 11.6 (Version: 11.6.0.626)
AIM 7
Apple Application Support (Version: 2.1.6)
Apple Mobile Device Support (Version: 4.0.0.97)
Apple Software Update (Version: 2.1.3.127)
Audacity 1.3.12 (Unicode)
Belkin Setup and Router Monitor
Bonjour (Version: 3.0.0.10)
Canon Easy-WebPrint EX
Canon IJ Network Scanner Selector EX
Canon IJ Network Tool
Canon MP Navigator EX 4.1
Canon MX410 series MP Drivers
Canon MX410 series User Registration
Canon My Printer
Canon Solution Menu EX
Canon Speed Dial Utility
CCleaner (Version: 3.15)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
CyberLink DVD Suite Deluxe (Version: 7.0.2115)
D3DX10 (Version: 15.4.2368.0902)
dBpoweramp Music Converter (Version: Release 14.2)
Dev-C++ 5 beta 9 release (4.9.9.2)
DirectX for Managed Code Update (Summer 2004) (Version: 9.02.2904)
Download Updater (AOL LLC)
Dropbox (Version: 1.2.52)
Dual-Core Optimizer (Version: 1.1.4.0169)
DVD Decrypter (Remove Only)
DVD Menu Pack for HP MediaSmart Video (Version: 3.1.3224)
ESET Online Scanner v3
foobar2000 v1.1.11 (Version: 1.1.11)
Fraps (remove only)
Free Audio CD Burner version 1.2
Free Video to MP3 Converter version 5.0.6.221 (Version: 5.0.6.221)
Free YouTube to MP3 Converter version 3.2
Futuremark SystemInfo (Version: 3.17.0.1)
Gimp Themes v1.0 (Version: 1.0.0)
Google Chrome (Version: 19.0.1084.52)
Hardware Diagnostic Tools (Version: 6.0.5247.34)
Hi-Rez Studios Authenticate and Update Service (Version: 3.0.0.0)
HiJackThis (Version: 1.0.0)
HostsMan 3.2.73 (Version: 3.2.73)
HP Advisor (Version: 3.3.9512.3162)
HP Customer Experience Enhancements (Version: 6.0.1.3)
HP Games (Version: 1.0.0.71)
HP MediaSmart Demo (Version: 1.00.0000)
HP MediaSmart DVD (Version: 3.1.3317)
HP MediaSmart Music/Photo/Video (Version: 3.1.3422)
HP MediaSmart SmartMenu (Version: 3.1.0.1)
HP MediaSmart/TouchSmart Netflix (Version: 1.0.2.0)
HP Odometer (Version: 2.10.0000)
HP Remote Solution (Version: 1.1.11.0)
HP Setup (Version: 1.2.3560.3170)
HP Support Assistant (Version: 4.2.5.3)
HP Support Information (Version: 10.1.0002)
HP Update (Version: 5.001.000.014)
HPAsset component for HP Active Support Library (Version: 3.0.0.3)
HTC BMP USB Driver (Version: 1.0.5375)
HTC Driver Installer (Version: 3.0.0.007)
HTC Sync (Version: 3.0.5551)
Hulu Desktop (Version: 0.9.14)
iTunes (Version: 10.5.2.11)
Java Auto Updater (Version: 2.0.6.1)
Java™ 6 Update 30 (Version: 6.0.300)
Java™ 6 Update 31 (64-bit) (Version: 6.0.310)
Junk Mail filter update (Version: 15.4.3502.0922)
Kaspersky PURE (Version: 9.1.0.124)
LabelPrint (Version: 2.5.2017)
League of Legends (Version: 1.0020)
LightScribe System Software (Version: 1.18.8.1)
Livestream Procaster (Version: 20.2.69)
LogMeIn Hamachi (Version: 2.1.0.166)
LOLReplay (Version: 0.7.6.7)
Magic ISO Maker v5.5 (build 0281)
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft IntelliPoint 8.2 (Version: 8.20.468.0)
Microsoft Live Search Toolbar (Version: 3.0.566.0)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Live Add-in 1.5 (Version: 2.0.4024.1)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Works (Version: 9.7.0621)
Microsoft XNA Framework Redistributable 4.0 (Version: 4.0.20823.0)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)
mIRC (Version: 7.22)
MobileMe Control Panel (Version: 3.1.6.0)
Moonbase Alpha
MorphVOX Junior (Version: 2.7.5)
Movie Theme Pack for HP MediaSmart Video (Version: 3.1.3310)
Mozilla Firefox 12.0 (x86 en-US) (Version: 12.0)
Mozilla Maintenance Service (Version: 12.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT Redists (Version: 1.0)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP3 Parser (KB973685) (Version: 4.30.2107.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
Mumble 1.2.3 (Version: 1.2.3)
Nexon Game Manager
Notepad++ (Version: 5.9)
NVIDIA 3D Vision Controller Driver (Version: 270.61)
NVIDIA 3D Vision Controller Driver 270.61 (Version: 270.61)
NVIDIA Control Panel 275.33 (Version: 275.33)
NVIDIA Drivers (Version: 1.10.58.36)
NVIDIA Graphics Driver 275.33 (Version: 275.33)
NVIDIA Install Application (Version: 2.275.78.0)
NVIDIA PhysX (Version: 9.10.0514)
NVIDIA PhysX System Software 9.10.0514 (Version: 9.10.0514)
Octoshape Streaming Services
Opera 11.01 (Version: 11.01)
PDF Settings CS5 (Version: 10.0)
PFPortChecker 1.0.39 (Version: 1.0.39)
PictureMover (Version: 3.3.1.19)
Pinnacle VideoSpin (Version: 1.1.2.542)
PlayReady PC Runtime amd64 (Version: 1.3.0)
Portal
Power2Go (Version: 6.0.3304)
PowerDirector (Version: 7.0.3405)
PunkBuster Services (Version: 0.990)
PVSonyDll (Version: 1.00.0001)
QuickTime (Version: 7.69.80.9)
Rainmeter
Raptr
Realtek High Definition Audio Driver (Version: 6.0.1.6387)
Recovery Manager (Version: 5.5.2216)
Rise of Immortals
RocketDock 1.3.5
Safari (Version: 5.33.21.1)
Sid Meier's Civilization 4 Gold (Version: 1.72)
Skype™ 5.5 (Version: 5.5.124)
SpeedFan (remove only)
Spybot - Search & Destroy (Version: 1.6.2)
StarCraft II (Version: 1.4.3.21029)
Steam (Version: 1.0.0.0)
System Requirements Lab CYRI (Version: 4.4.26.0)
Team Fortress 2
TeamSpeak 3 Client
TeamViewer 5 (Version: 5.0.8703 )
Terraria
Tribes Ascend (Version: 1.0.905.1)
Uninstall 1.0.0.1
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2598290) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
uTorrentControl2 Toolbar (Version: 6.8.9.0)
UxStyle Core Beta (Version: 0.2.1.1)
Vegas Pro 9.0 (64-bit) (Version: 9.0.1146)
Ventrilo Client for Windows x64 (Version: 3.0.8.0)
Virtual Audio Cable 4.10
VLC media player 1.1.5 (Version: 1.1.5)
Voxatron 0.1.3 (Version: 0.1.3)
Warcraft III
Waterfox 11.0 (x64 en-US) (Version: 11.0)
Winamp (Version: 5.623 )
Winamp Detector Plug-in (Version: 1.0.0.1)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3502.0922)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3502.0922)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8117.416)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3502.0922)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
Windows Mobile Device Center (Version: 6.1.6965.0)
WinPcap 4.1.1 (Version: 4.1.0.1753)
WinRAR archiver
WinSCP 4.3.3 (Version: 4.3.3)
WinX HD Video Converter Deluxe 3.10.2
Wireshark 1.2.6 (Version: 1.2.6)
Yahoo! BrowserPlus 2.9.8

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 51%
Total physical RAM: 4095.3 MB
Available physical RAM: 1998.52 MB
Total Pagefile: 8188.8 MB
Available Pagefile: 5715.61 MB
Total Virtual: 4095.88 MB
Available Virtual: 3964.43 MB

========================= Partitions: =====================================

1 Drive c: (HP) (Fixed) (Total:585.31 GB) (Free:404.52 GB) NTFS
2 Drive d: (FACTORY_IMAGE) (Fixed) (Total:10.77 GB) (Free:1.57 GB) NTFS
4 Drive f: () (Removable) (Total:14.9 GB) (Free:0.64 GB) FAT32

========================= Users: ========================================

User accounts for \\JOEY-PC

Administrator ASPNET Guest
Joey Mcx1-JOEY-PC

========================= Minidump Files ==================================

No minidump file found

**** End of log ****

it is running the same way, also I'm going to try to borrow a friends external hard drive in order to do a system restore, but I'm not sure if I can get one.

#13 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:12:04 PM

Posted 24 May 2012 - 03:20 PM

Hi

Please do not do a system restore at the moment.
- There may be malware residing on one or more of the System restore points. I will give you advice on removing these later in the "all clean" speech if applicable.

Belkin Setup and Router Monitor


Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : Belkin
Description . . . . . . . . . . . : NVIDIA nForce 10/100 Mbps Ethernet


Do you use the Belkin device for connecting to the internet?
- If so, the software for it may need to be reinstalled due to the below:

Error: (05/23/2012 02:49:52 PM) (Source: Application Error) (User: )
Description: Faulting application name: BelkinRouterMonitor.exe, version: 4.0.3.19106, time stamp: 0x4c50a4d8
Faulting module name: QtCore4.dll, version: 4.5.3.0, time stamp: 0x4ba3e827
Exception code: 0xc0000005
Fault offset: 0x000e721f
Faulting process id: 0x914
Faulting application start time: 0xBelkinRouterMonitor.exe0
Faulting application path: BelkinRouterMonitor.exe1
Faulting module path: BelkinRouterMonitor.exe2
Report Id: BelkinRouterMonitor.exe3


Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#14 reventi0n

reventi0n
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:07:04 AM

Posted 24 May 2012 - 03:42 PM

I wont and ill see if I can reinstall the software

okay, I have reinstalled the software. however it didnt seem to fix the issue.

Edited by reventi0n, 24 May 2012 - 03:47 PM.


#15 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:12:04 PM

Posted 24 May 2012 - 05:00 PM

Hi

Please run minitoolbox again:

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices
  • List Users, Partitions and Memory size.
  • List Minidump Files
Click Go and post the full contents of the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users