Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

windows 7 SEARCHNU VIRUS


  • Please log in to reply
9 replies to this topic

#1 jhong

jhong

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:07:50 PM

Posted 08 May 2012 - 02:18 AM

hi bleeping computers forums,

it seems i am infected with searchnu virus for some time and i have done some online looking of this problem.

i look around and some people say you can just erase it from the firefox and it is gone, so i thought okay it is gone :) watched a youtube video

but..!!! i open google chrome today and its on google chrome so the virus is still remain! and then i look around the internet and people saying it is rootkit and cannot delete so easily (downloaded malewarebytes and come out clean) and now i am freak out

please help!!!

Edited by Orange Blossom, 08 May 2012 - 02:29 AM.
Moved from Windows 7 to AII. ~ OB


BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:50 PM

Posted 08 May 2012 - 02:33 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Note:Do not change the default options on scan results unless instructed

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here


Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

#3 jhong

jhong
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:07:50 PM

Posted 08 May 2012 - 12:13 PM

sorry for the late reply!! i fell asleep ^_^ hope you can help me! i follow your instruction

do i do it in safe mode? (f8 i think??) or do i do in normal mode its okay too? i heard rootkit invisible or something .______.
i tried the normal mode and this is what happen

tdsskiller said no threat detected

10:54:13.0790 5992 TDSS rootkit removing tool 2.7.34.0 May 2 2012 09:59:18
10:54:14.0099 5992 ============================================================
10:54:14.0099 5992 Current date / time: 2012/05/08 10:54:14.0099
10:54:14.0099 5992 SystemInfo:
10:54:14.0099 5992
10:54:14.0099 5992 OS Version: 6.1.7601 ServicePack: 1.0
10:54:14.0099 5992 Product type: Workstation
10:54:14.0099 5992 ComputerName: JIN-PC
10:54:14.0099 5992 UserName: Jin
10:54:14.0099 5992 Windows directory: C:\Windows
10:54:14.0099 5992 System windows directory: C:\Windows
10:54:14.0099 5992 Running under WOW64
10:54:14.0099 5992 Processor architecture: Intel x64
10:54:14.0099 5992 Number of processors: 4
10:54:14.0099 5992 Page size: 0x1000
10:54:14.0099 5992 Boot type: Normal boot
10:54:14.0099 5992 ============================================================
10:54:15.0063 5992 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:54:15.0066 5992 ============================================================
10:54:15.0066 5992 \Device\Harddisk0\DR0:
10:54:15.0066 5992 MBR partitions:
10:54:15.0066 5992 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
10:54:15.0066 5992 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x3A353000
10:54:15.0066 5992 ============================================================
10:54:15.0080 5992 C: <-> \Device\Harddisk0\DR0\Partition1
10:54:15.0080 5992 ============================================================
10:54:15.0080 5992 Initialize success
10:54:15.0080 5992 ============================================================
10:54:38.0212 1108 ============================================================
10:54:38.0212 1108 Scan started
10:54:38.0212 1108 Mode: Manual; TDLFS;
10:54:38.0212 1108 ============================================================
10:54:38.0907 1108 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\DRIVERS\1394ohci.sys
10:54:38.0910 1108 1394ohci - ok
10:54:38.0932 1108 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
10:54:38.0936 1108 ACPI - ok
10:54:38.0948 1108 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
10:54:38.0949 1108 AcpiPmi - ok
10:54:38.0982 1108 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys
10:54:38.0992 1108 adp94xx - ok
10:54:39.0014 1108 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys
10:54:39.0027 1108 adpahci - ok
10:54:39.0050 1108 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys
10:54:39.0053 1108 adpu320 - ok
10:54:39.0080 1108 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
10:54:39.0081 1108 AeLookupSvc - ok
10:54:39.0134 1108 AFD (d5b031c308a409a0a576bff4cf083d30) C:\Windows\system32\drivers\afd.sys
10:54:39.0139 1108 AFD - ok
10:54:39.0153 1108 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
10:54:39.0154 1108 agp440 - ok
10:54:39.0179 1108 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
10:54:39.0185 1108 ALG - ok
10:54:39.0194 1108 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
10:54:39.0195 1108 aliide - ok
10:54:39.0242 1108 AMD External Events Utility (b5e2434fc851698c1f119cf1c3935a50) C:\Windows\system32\atiesrxx.exe
10:54:39.0244 1108 AMD External Events Utility - ok
10:54:39.0247 1108 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
10:54:39.0249 1108 amdide - ok
10:54:39.0261 1108 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys
10:54:39.0262 1108 AmdK8 - ok
10:54:39.0601 1108 amdkmdag (9e3b4946f7e1bca0b763e19d81edbf2c) C:\Windows\system32\DRIVERS\atikmdag.sys
10:54:39.0778 1108 amdkmdag - ok
10:54:39.0904 1108 amdkmdap (b9e1c7b7f1865f99b16ff2e1bb94edb6) C:\Windows\system32\DRIVERS\atikmpag.sys
10:54:39.0910 1108 amdkmdap - ok
10:54:39.0937 1108 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys
10:54:39.0938 1108 AmdPPM - ok
10:54:39.0970 1108 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
10:54:39.0972 1108 amdsata - ok
10:54:39.0999 1108 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys
10:54:40.0002 1108 amdsbs - ok
10:54:40.0013 1108 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
10:54:40.0014 1108 amdxata - ok
10:54:40.0119 1108 AntiVirSchedulerService (72709089a54bdc1c5b16bc4a4b926567) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
10:54:40.0120 1108 AntiVirSchedulerService - ok
10:54:40.0157 1108 AntiVirService (42f88bfbb76f7a63e381829479b18518) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
10:54:40.0158 1108 AntiVirService - ok
10:54:40.0201 1108 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
10:54:40.0206 1108 AppID - ok
10:54:40.0231 1108 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
10:54:40.0235 1108 AppIDSvc - ok
10:54:40.0245 1108 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
10:54:40.0246 1108 Appinfo - ok
10:54:40.0315 1108 Apple Mobile Device (d8e18021f91ad79ca8491cb5a5da22d4) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
10:54:40.0317 1108 Apple Mobile Device - ok
10:54:40.0360 1108 AppMgmt (4aba3e75a76195a3e38ed2766c962899) C:\Windows\System32\appmgmts.dll
10:54:40.0369 1108 AppMgmt - ok
10:54:40.0396 1108 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys
10:54:40.0397 1108 arc - ok
10:54:40.0420 1108 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys
10:54:40.0422 1108 arcsas - ok
10:54:40.0446 1108 AsrAppCharger (912a215ce180a6e7c923c662d7ec777d) C:\Windows\system32\DRIVERS\AsrAppCharger.sys
10:54:40.0447 1108 AsrAppCharger - ok
10:54:40.0472 1108 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
10:54:40.0476 1108 AsyncMac - ok
10:54:40.0483 1108 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
10:54:40.0483 1108 atapi - ok
10:54:40.0545 1108 AtiHDAudioService (230cf51113cd4b830b3bfd09b0d4c066) C:\Windows\system32\drivers\AtihdW76.sys
10:54:40.0547 1108 AtiHDAudioService - ok
10:54:40.0611 1108 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
10:54:40.0618 1108 AudioEndpointBuilder - ok
10:54:40.0626 1108 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
10:54:40.0631 1108 AudioSrv - ok
10:54:40.0702 1108 avgntflt (aa8f79a1bdfc03b3bc70c44ab00589b4) C:\Windows\system32\DRIVERS\avgntflt.sys
10:54:40.0703 1108 avgntflt - ok
10:54:40.0722 1108 avipbb (852e3c0a60d368c487949e55ad52a47f) C:\Windows\system32\DRIVERS\avipbb.sys
10:54:40.0725 1108 avipbb - ok
10:54:40.0759 1108 avkmgr (248db59fc86de44d2779f4c7fb1a567d) C:\Windows\system32\DRIVERS\avkmgr.sys
10:54:40.0760 1108 avkmgr - ok
10:54:40.0789 1108 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
10:54:40.0796 1108 AxInstSV - ok
10:54:40.0842 1108 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys
10:54:40.0877 1108 b06bdrv - ok
10:54:40.0927 1108 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
10:54:40.0935 1108 b57nd60a - ok
10:54:41.0040 1108 BCMH43XX (44e6e51aedbf3e0b38a6cd5432649e57) C:\Windows\system32\DRIVERS\bcmwlhigh664.sys
10:54:41.0049 1108 BCMH43XX - ok
10:54:41.0073 1108 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
10:54:41.0079 1108 BDESVC - ok
10:54:41.0114 1108 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
10:54:41.0117 1108 Beep - ok
10:54:41.0173 1108 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
10:54:41.0180 1108 BFE - ok
10:54:41.0237 1108 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\system32\qmgr.dll
10:54:41.0247 1108 BITS - ok
10:54:41.0271 1108 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
10:54:41.0272 1108 blbdrive - ok
10:54:41.0365 1108 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
10:54:41.0369 1108 Bonjour Service - ok
10:54:41.0402 1108 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
10:54:41.0404 1108 bowser - ok
10:54:41.0410 1108 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys
10:54:41.0411 1108 BrFiltLo - ok
10:54:41.0421 1108 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys
10:54:41.0422 1108 BrFiltUp - ok
10:54:41.0447 1108 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
10:54:41.0453 1108 BridgeMP - ok
10:54:41.0474 1108 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
10:54:41.0476 1108 Browser - ok
10:54:41.0498 1108 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
10:54:41.0505 1108 Brserid - ok
10:54:41.0518 1108 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
10:54:41.0519 1108 BrSerWdm - ok
10:54:41.0530 1108 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
10:54:41.0531 1108 BrUsbMdm - ok
10:54:41.0536 1108 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
10:54:41.0537 1108 BrUsbSer - ok
10:54:41.0545 1108 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\drivers\bthmodem.sys
10:54:41.0546 1108 BTHMODEM - ok
10:54:41.0573 1108 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
10:54:41.0579 1108 bthserv - ok
10:54:41.0608 1108 catchme - ok
10:54:41.0626 1108 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
10:54:41.0627 1108 cdfs - ok
10:54:41.0656 1108 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
10:54:41.0664 1108 cdrom - ok
10:54:41.0687 1108 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
10:54:41.0689 1108 CertPropSvc - ok
10:54:41.0699 1108 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys
10:54:41.0700 1108 circlass - ok
10:54:41.0724 1108 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
10:54:41.0729 1108 CLFS - ok
10:54:41.0789 1108 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:54:41.0791 1108 clr_optimization_v2.0.50727_32 - ok
10:54:41.0830 1108 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
10:54:41.0832 1108 clr_optimization_v2.0.50727_64 - ok
10:54:41.0870 1108 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:54:41.0872 1108 clr_optimization_v4.0.30319_32 - ok
10:54:41.0896 1108 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
10:54:41.0897 1108 clr_optimization_v4.0.30319_64 - ok
10:54:41.0920 1108 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\drivers\CmBatt.sys
10:54:41.0921 1108 CmBatt - ok
10:54:41.0925 1108 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
10:54:41.0926 1108 cmdide - ok
10:54:41.0975 1108 CNG (d5fea92400f12412b3922087c09da6a5) C:\Windows\system32\Drivers\cng.sys
10:54:41.0980 1108 CNG - ok
10:54:41.0996 1108 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys
10:54:41.0998 1108 Compbatt - ok
10:54:42.0025 1108 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\DRIVERS\CompositeBus.sys
10:54:42.0030 1108 CompositeBus - ok
10:54:42.0045 1108 COMSysApp - ok
10:54:42.0055 1108 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys
10:54:42.0058 1108 crcdisk - ok
10:54:42.0102 1108 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll
10:54:42.0109 1108 CryptSvc - ok
10:54:42.0157 1108 CSC (54da3dfd29ed9f1619b6f53f3ce55e49) C:\Windows\system32\drivers\csc.sys
10:54:42.0172 1108 CSC - ok
10:54:42.0210 1108 CscService (3ab183ab4d2c79dcf459cd2c1266b043) C:\Windows\System32\cscsvc.dll
10:54:42.0217 1108 CscService - ok
10:54:42.0252 1108 danewFltr (003626f7ca17c204f16cd5047af0703a) C:\Windows\system32\drivers\danew.sys
10:54:42.0253 1108 danewFltr - ok
10:54:42.0292 1108 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
10:54:42.0300 1108 DcomLaunch - ok
10:54:42.0326 1108 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
10:54:42.0333 1108 defragsvc - ok
10:54:42.0363 1108 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
10:54:42.0365 1108 DfsC - ok
10:54:42.0406 1108 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
10:54:42.0416 1108 Dhcp - ok
10:54:42.0424 1108 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
10:54:42.0425 1108 discache - ok
10:54:42.0457 1108 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys
10:54:42.0458 1108 Disk - ok
10:54:42.0487 1108 dmvsc (5db085a8a6600be6401f2b24eecb5415) C:\Windows\system32\drivers\dmvsc.sys
10:54:42.0488 1108 dmvsc - ok
10:54:42.0524 1108 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
10:54:42.0527 1108 Dnscache - ok
10:54:42.0564 1108 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
10:54:42.0573 1108 dot3svc - ok
10:54:42.0592 1108 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
10:54:42.0594 1108 DPS - ok
10:54:42.0624 1108 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
10:54:42.0627 1108 drmkaud - ok
10:54:42.0689 1108 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
10:54:42.0708 1108 DXGKrnl - ok
10:54:42.0722 1108 EagleX64 - ok
10:54:42.0745 1108 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
10:54:42.0747 1108 EapHost - ok
10:54:42.0870 1108 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys
10:54:42.0929 1108 ebdrv - ok
10:54:43.0020 1108 EFS (0793f40b9b8a1bdd266296409dbd91ea) C:\Windows\System32\lsass.exe
10:54:43.0022 1108 EFS - ok
10:54:43.0096 1108 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
10:54:43.0108 1108 ehRecvr - ok
10:54:43.0127 1108 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
10:54:43.0129 1108 ehSched - ok
10:54:43.0208 1108 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys
10:54:43.0216 1108 elxstor - ok
10:54:43.0226 1108 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
10:54:43.0227 1108 ErrDev - ok
10:54:43.0260 1108 EtronHub3 (df2f6c1e55f6e81cfc7f688380d85816) C:\Windows\system32\Drivers\EtronHub3.sys
10:54:43.0261 1108 EtronHub3 - ok
10:54:43.0286 1108 EtronXHCI (e093abfb67a4b9d94f80611a7d0a8bb9) C:\Windows\system32\Drivers\EtronXHCI.sys
10:54:43.0287 1108 EtronXHCI - ok
10:54:43.0325 1108 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
10:54:43.0338 1108 EventSystem - ok
10:54:43.0362 1108 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
10:54:43.0369 1108 exfat - ok
10:54:43.0385 1108 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
10:54:43.0392 1108 fastfat - ok
10:54:43.0446 1108 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
10:54:43.0454 1108 Fax - ok
10:54:43.0465 1108 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
10:54:43.0469 1108 fdc - ok
10:54:43.0491 1108 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
10:54:43.0492 1108 fdPHost - ok
10:54:43.0501 1108 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
10:54:43.0502 1108 FDResPub - ok
10:54:43.0531 1108 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
10:54:43.0532 1108 FileInfo - ok
10:54:43.0545 1108 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
10:54:43.0550 1108 Filetrace - ok
10:54:43.0560 1108 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys
10:54:43.0561 1108 flpydisk - ok
10:54:43.0583 1108 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
10:54:43.0587 1108 FltMgr - ok
10:54:43.0611 1108 FNETTBOH_305 (fe95ae537b41a7e2f4cfe353064dc4af) C:\Windows\system32\drivers\FNETTBOH_305.SYS
10:54:43.0612 1108 FNETTBOH_305 - ok
10:54:43.0630 1108 FNETURPX (7c3c4b4c951ec1bdfd4f769d05e2cc68) C:\Windows\system32\drivers\FNETURPX.SYS
10:54:43.0631 1108 FNETURPX - ok
10:54:43.0708 1108 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
10:54:43.0721 1108 FontCache - ok
10:54:43.0762 1108 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:54:43.0763 1108 FontCache3.0.0.0 - ok
10:54:43.0779 1108 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
10:54:43.0785 1108 FsDepends - ok
10:54:43.0804 1108 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
10:54:43.0809 1108 Fs_Rec - ok
10:54:43.0847 1108 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
10:54:43.0850 1108 fvevol - ok
10:54:43.0877 1108 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys
10:54:43.0878 1108 gagp30kx - ok
10:54:43.0908 1108 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
10:54:43.0909 1108 GEARAspiWDM - ok
10:54:43.0999 1108 GGSAFERDriver - ok
10:54:44.0061 1108 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
10:54:44.0069 1108 gpsvc - ok
10:54:44.0146 1108 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:54:44.0148 1108 gupdate - ok
10:54:44.0169 1108 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:54:44.0170 1108 gupdatem - ok
10:54:44.0189 1108 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
10:54:44.0190 1108 hcw85cir - ok
10:54:44.0232 1108 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
10:54:44.0260 1108 HdAudAddService - ok
10:54:44.0287 1108 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\DRIVERS\HDAudBus.sys
10:54:44.0289 1108 HDAudBus - ok
10:54:44.0304 1108 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys
10:54:44.0306 1108 HidBatt - ok
10:54:44.0318 1108 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys
10:54:44.0320 1108 HidBth - ok
10:54:44.0342 1108 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys
10:54:44.0343 1108 HidIr - ok
10:54:44.0365 1108 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
10:54:44.0371 1108 hidserv - ok
10:54:44.0396 1108 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
10:54:44.0398 1108 HidUsb - ok
10:54:44.0427 1108 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
10:54:44.0429 1108 hkmsvc - ok
10:54:44.0467 1108 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
10:54:44.0483 1108 HomeGroupListener - ok
10:54:44.0499 1108 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
10:54:44.0514 1108 HomeGroupProvider - ok
10:54:44.0539 1108 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
10:54:44.0541 1108 HpSAMD - ok
10:54:44.0581 1108 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
10:54:44.0589 1108 HTTP - ok
10:54:44.0601 1108 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
10:54:44.0602 1108 hwpolicy - ok
10:54:44.0630 1108 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
10:54:44.0638 1108 i8042prt - ok
10:54:44.0675 1108 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
10:54:44.0687 1108 iaStorV - ok
10:54:44.0773 1108 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
10:54:44.0789 1108 idsvc - ok
10:54:44.0809 1108 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys
10:54:44.0811 1108 iirsp - ok
10:54:44.0860 1108 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
10:54:44.0870 1108 IKEEXT - ok
10:54:44.0996 1108 IntcAzAudAddService (e8017f1662d9142f45ceab694d013c00) C:\Windows\system32\drivers\RTKVHD64.sys
10:54:45.0032 1108 IntcAzAudAddService - ok
10:54:45.0147 1108 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
10:54:45.0148 1108 intelide - ok
10:54:45.0172 1108 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
10:54:45.0173 1108 intelppm - ok
10:54:45.0218 1108 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
10:54:45.0225 1108 IPBusEnum - ok
10:54:45.0242 1108 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:54:45.0248 1108 IpFilterDriver - ok
10:54:45.0299 1108 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
10:54:45.0306 1108 iphlpsvc - ok
10:54:45.0320 1108 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
10:54:45.0322 1108 IPMIDRV - ok
10:54:45.0333 1108 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
10:54:45.0340 1108 IPNAT - ok
10:54:45.0433 1108 iPod Service (3c0d4b3e80fc4854ca325dd123cc4ded) C:\Program Files\iPod\bin\iPodService.exe
10:54:45.0440 1108 iPod Service - ok
10:54:45.0455 1108 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
10:54:45.0459 1108 IRENUM - ok
10:54:45.0473 1108 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
10:54:45.0474 1108 isapnp - ok
10:54:45.0493 1108 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
10:54:45.0500 1108 iScsiPrt - ok
10:54:45.0520 1108 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
10:54:45.0525 1108 kbdclass - ok
10:54:45.0548 1108 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
10:54:45.0552 1108 kbdhid - ok
10:54:45.0595 1108 KeyIso (0793f40b9b8a1bdd266296409dbd91ea) C:\Windows\system32\lsass.exe
10:54:45.0597 1108 KeyIso - ok
10:54:45.0608 1108 KSecDD (ccd53b5bd33ce0c889e830d839c8b66e) C:\Windows\system32\Drivers\ksecdd.sys
10:54:45.0610 1108 KSecDD - ok
10:54:45.0623 1108 KSecPkg (9ff918a261752c12639e8ad4208d2c2f) C:\Windows\system32\Drivers\ksecpkg.sys
10:54:45.0625 1108 KSecPkg - ok
10:54:45.0635 1108 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
10:54:45.0638 1108 ksthunk - ok
10:54:45.0671 1108 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
10:54:45.0696 1108 KtmRm - ok
10:54:45.0766 1108 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\System32\srvsvc.dll
10:54:45.0770 1108 LanmanServer - ok
10:54:45.0795 1108 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
10:54:45.0798 1108 LanmanWorkstation - ok
10:54:45.0831 1108 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
10:54:45.0836 1108 lltdio - ok
10:54:45.0861 1108 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
10:54:45.0873 1108 lltdsvc - ok
10:54:45.0896 1108 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
10:54:45.0901 1108 lmhosts - ok
10:54:45.0942 1108 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys
10:54:45.0944 1108 LSI_FC - ok
10:54:45.0951 1108 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys
10:54:45.0953 1108 LSI_SAS - ok
10:54:45.0964 1108 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys
10:54:45.0965 1108 LSI_SAS2 - ok
10:54:45.0983 1108 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys
10:54:45.0985 1108 LSI_SCSI - ok
10:54:46.0002 1108 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
10:54:46.0003 1108 luafv - ok
10:54:46.0060 1108 MBAMProtector (dbc08862a71459e74f7538b432c114cc) C:\Windows\system32\drivers\mbam.sys
10:54:46.0061 1108 MBAMProtector - ok
10:54:46.0150 1108 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
10:54:46.0156 1108 MBAMService - ok
10:54:46.0182 1108 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
10:54:46.0189 1108 Mcx2Svc - ok
10:54:46.0201 1108 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys
10:54:46.0202 1108 megasas - ok
10:54:46.0242 1108 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys
10:54:46.0249 1108 MegaSR - ok
10:54:46.0280 1108 MEIx64 (a6518dcc42f7a6e999bb3bea8fd87567) C:\Windows\system32\DRIVERS\HECIx64.sys
10:54:46.0281 1108 MEIx64 - ok
10:54:46.0342 1108 Microsoft Office Groove Audit Service (7c4c76b39d5525c4a465e0be32528e19) C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
10:54:46.0344 1108 Microsoft Office Groove Audit Service - ok
10:54:46.0379 1108 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
10:54:46.0381 1108 MMCSS - ok
10:54:46.0411 1108 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
10:54:46.0416 1108 Modem - ok
10:54:46.0440 1108 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
10:54:46.0441 1108 monitor - ok
10:54:46.0470 1108 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
10:54:46.0472 1108 mouclass - ok
10:54:46.0499 1108 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
10:54:46.0500 1108 mouhid - ok
10:54:46.0524 1108 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
10:54:46.0526 1108 mountmgr - ok
10:54:46.0537 1108 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
10:54:46.0540 1108 mpio - ok
10:54:46.0551 1108 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
10:54:46.0557 1108 mpsdrv - ok
10:54:46.0608 1108 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
10:54:46.0617 1108 MpsSvc - ok
10:54:46.0637 1108 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
10:54:46.0644 1108 MRxDAV - ok
10:54:46.0677 1108 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
10:54:46.0679 1108 mrxsmb - ok
10:54:46.0706 1108 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:54:46.0710 1108 mrxsmb10 - ok
10:54:46.0724 1108 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:54:46.0726 1108 mrxsmb20 - ok
10:54:46.0736 1108 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
10:54:46.0738 1108 msahci - ok
10:54:46.0753 1108 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
10:54:46.0755 1108 msdsm - ok
10:54:46.0772 1108 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
10:54:46.0782 1108 MSDTC - ok
10:54:46.0800 1108 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
10:54:46.0801 1108 Msfs - ok
10:54:46.0829 1108 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
10:54:46.0832 1108 mshidkmdf - ok
10:54:46.0843 1108 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
10:54:46.0844 1108 msisadrv - ok
10:54:46.0885 1108 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
10:54:46.0892 1108 MSiSCSI - ok
10:54:46.0896 1108 msiserver - ok
10:54:46.0918 1108 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
10:54:46.0921 1108 MSKSSRV - ok
10:54:46.0926 1108 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
10:54:46.0929 1108 MSPCLOCK - ok
10:54:46.0932 1108 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
10:54:46.0935 1108 MSPQM - ok
10:54:46.0959 1108 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
10:54:46.0964 1108 MsRPC - ok
10:54:46.0979 1108 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
10:54:46.0980 1108 mssmbios - ok
10:54:46.0984 1108 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
10:54:46.0986 1108 MSTEE - ok
10:54:46.0998 1108 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys
10:54:46.0999 1108 MTConfig - ok
10:54:47.0012 1108 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
10:54:47.0013 1108 Mup - ok
10:54:47.0059 1108 mv91xx (4fad606c7aeb336e5aa4a005de09ca80) C:\Windows\system32\DRIVERS\mv91xx.sys
10:54:47.0063 1108 mv91xx - ok
10:54:47.0110 1108 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
10:54:47.0116 1108 napagent - ok
10:54:47.0157 1108 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
10:54:47.0177 1108 NativeWifiP - ok
10:54:47.0236 1108 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
10:54:47.0245 1108 NDIS - ok
10:54:47.0262 1108 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
10:54:47.0267 1108 NdisCap - ok
10:54:47.0289 1108 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
10:54:47.0293 1108 NdisTapi - ok
10:54:47.0302 1108 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
10:54:47.0307 1108 Ndisuio - ok
10:54:47.0322 1108 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
10:54:47.0330 1108 NdisWan - ok
10:54:47.0338 1108 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
10:54:47.0341 1108 NDProxy - ok
10:54:47.0354 1108 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
10:54:47.0354 1108 NetBIOS - ok
10:54:47.0364 1108 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
10:54:47.0365 1108 NetBT - ok
10:54:47.0378 1108 Netlogon (0793f40b9b8a1bdd266296409dbd91ea) C:\Windows\system32\lsass.exe
10:54:47.0379 1108 Netlogon - ok
10:54:47.0421 1108 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
10:54:47.0425 1108 Netman - ok
10:54:47.0455 1108 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
10:54:47.0460 1108 netprofm - ok
10:54:47.0519 1108 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
10:54:47.0521 1108 NetTcpPortSharing - ok
10:54:47.0554 1108 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys
10:54:47.0555 1108 nfrd960 - ok
10:54:47.0579 1108 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
10:54:47.0583 1108 NlaSvc - ok
10:54:47.0595 1108 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
10:54:47.0596 1108 Npfs - ok
10:54:47.0603 1108 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
10:54:47.0605 1108 nsi - ok
10:54:47.0616 1108 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
10:54:47.0617 1108 nsiproxy - ok
10:54:47.0716 1108 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
10:54:47.0747 1108 Ntfs - ok
10:54:47.0850 1108 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
10:54:47.0852 1108 Null - ok
10:54:47.0887 1108 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
10:54:47.0890 1108 nvraid - ok
10:54:47.0905 1108 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
10:54:47.0908 1108 nvstor - ok
10:54:47.0939 1108 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
10:54:47.0941 1108 nv_agp - ok
10:54:48.0041 1108 odserv (1f0e05dff4f5a833168e49be1256f002) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
10:54:48.0076 1108 odserv - ok
10:54:48.0098 1108 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
10:54:48.0100 1108 ohci1394 - ok
10:54:48.0130 1108 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:54:48.0132 1108 ose - ok
10:54:48.0165 1108 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
10:54:48.0183 1108 p2pimsvc - ok
10:54:48.0224 1108 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
10:54:48.0240 1108 p2psvc - ok
10:54:48.0258 1108 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys
10:54:48.0260 1108 Parport - ok
10:54:48.0270 1108 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
10:54:48.0271 1108 partmgr - ok
10:54:48.0288 1108 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
10:54:48.0290 1108 PcaSvc - ok
10:54:48.0306 1108 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
10:54:48.0309 1108 pci - ok
10:54:48.0323 1108 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
10:54:48.0324 1108 pciide - ok
10:54:48.0341 1108 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys
10:54:48.0344 1108 pcmcia - ok
10:54:48.0360 1108 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
10:54:48.0361 1108 pcw - ok
10:54:48.0396 1108 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
10:54:48.0420 1108 PEAUTH - ok
10:54:48.0496 1108 PeerDistSvc (b9b0a4299dd2d76a4243f75fd54dc680) C:\Windows\system32\peerdistsvc.dll
10:54:48.0511 1108 PeerDistSvc - ok
10:54:48.0580 1108 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
10:54:48.0585 1108 PerfHost - ok
10:54:48.0715 1108 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
10:54:48.0742 1108 pla - ok
10:54:48.0793 1108 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
10:54:48.0798 1108 PlugPlay - ok
10:54:48.0816 1108 PnkBstrA - ok
10:54:48.0832 1108 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
10:54:48.0838 1108 PNRPAutoReg - ok
10:54:48.0866 1108 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
10:54:48.0870 1108 PNRPsvc - ok
10:54:48.0911 1108 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
10:54:48.0926 1108 PolicyAgent - ok
10:54:48.0959 1108 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
10:54:48.0962 1108 Power - ok
10:54:49.0020 1108 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
10:54:49.0027 1108 PptpMiniport - ok
10:54:49.0052 1108 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys
10:54:49.0054 1108 Processor - ok
10:54:49.0091 1108 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
10:54:49.0094 1108 ProfSvc - ok
10:54:49.0104 1108 ProtectedStorage (0793f40b9b8a1bdd266296409dbd91ea) C:\Windows\system32\lsass.exe
10:54:49.0106 1108 ProtectedStorage - ok
10:54:49.0156 1108 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
10:54:49.0158 1108 Psched - ok
10:54:49.0245 1108 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys
10:54:49.0278 1108 ql2300 - ok
10:54:49.0421 1108 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys
10:54:49.0423 1108 ql40xx - ok
10:54:49.0461 1108 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
10:54:49.0475 1108 QWAVE - ok
10:54:49.0480 1108 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
10:54:49.0485 1108 QWAVEdrv - ok
10:54:49.0497 1108 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
10:54:49.0500 1108 RasAcd - ok
10:54:49.0528 1108 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
10:54:49.0533 1108 RasAgileVpn - ok
10:54:49.0548 1108 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
10:54:49.0555 1108 RasAuto - ok
10:54:49.0571 1108 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
10:54:49.0578 1108 Rasl2tp - ok
10:54:49.0608 1108 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
10:54:49.0620 1108 RasMan - ok
10:54:49.0640 1108 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
10:54:49.0647 1108 RasPppoe - ok
10:54:49.0680 1108 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
10:54:49.0686 1108 RasSstp - ok
10:54:49.0711 1108 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
10:54:49.0714 1108 rdbss - ok
10:54:49.0729 1108 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
10:54:49.0733 1108 rdpbus - ok
10:54:49.0737 1108 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
10:54:49.0738 1108 RDPCDD - ok
10:54:49.0776 1108 RDPDR (1b6163c503398b23ff8b939c67747683) C:\Windows\system32\drivers\rdpdr.sys
10:54:49.0783 1108 RDPDR - ok
10:54:49.0790 1108 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
10:54:49.0791 1108 RDPENCDD - ok
10:54:49.0803 1108 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
10:54:49.0804 1108 RDPREFMP - ok
10:54:49.0834 1108 RdpVideoMiniport (70cba1a0c98600a2aa1863479b35cb90) C:\Windows\system32\drivers\rdpvideominiport.sys
10:54:49.0838 1108 RdpVideoMiniport - ok
10:54:49.0861 1108 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\Windows\system32\drivers\RDPWD.sys
10:54:49.0868 1108 RDPWD - ok
10:54:49.0901 1108 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
10:54:49.0904 1108 rdyboost - ok
10:54:49.0937 1108 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
10:54:49.0944 1108 RemoteAccess - ok
10:54:49.0979 1108 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
10:54:49.0988 1108 RemoteRegistry - ok
10:54:50.0017 1108 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
10:54:50.0019 1108 RpcEptMapper - ok
10:54:50.0039 1108 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
10:54:50.0043 1108 RpcLocator - ok
10:54:50.0075 1108 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\System32\rpcss.dll
10:54:50.0081 1108 RpcSs - ok
10:54:50.0108 1108 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
10:54:50.0114 1108 rspndr - ok
10:54:50.0165 1108 RTL8167 (4b42bc58294e83a6a92ec8b88c14c4a3) C:\Windows\system32\DRIVERS\Rt64win7.sys
10:54:50.0178 1108 RTL8167 - ok
10:54:50.0211 1108 s3cap (e60c0a09f997826c7627b244195ab581) C:\Windows\system32\drivers\vms3cap.sys
10:54:50.0213 1108 s3cap - ok
10:54:50.0221 1108 SamSs (0793f40b9b8a1bdd266296409dbd91ea) C:\Windows\system32\lsass.exe
10:54:50.0222 1108 SamSs - ok
10:54:50.0233 1108 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
10:54:50.0235 1108 sbp2port - ok
10:54:50.0252 1108 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
10:54:50.0266 1108 SCardSvr - ok
10:54:50.0312 1108 SCDEmu (c81eb41e9ffc35560e5025891dc01a6e) C:\Windows\system32\drivers\SCDEmu.sys
10:54:50.0314 1108 SCDEmu - ok
10:54:50.0336 1108 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
10:54:50.0341 1108 scfilter - ok
10:54:50.0392 1108 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
10:54:50.0422 1108 Schedule - ok
10:54:50.0454 1108 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
10:54:50.0456 1108 SCPolicySvc - ok
10:54:50.0465 1108 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
10:54:50.0476 1108 SDRSVC - ok
10:54:50.0518 1108 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
10:54:50.0520 1108 secdrv - ok
10:54:50.0526 1108 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
10:54:50.0532 1108 seclogon - ok
10:54:50.0556 1108 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
10:54:50.0559 1108 SENS - ok
10:54:50.0571 1108 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
10:54:50.0577 1108 SensrSvc - ok
10:54:50.0595 1108 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
10:54:50.0600 1108 Serenum - ok
10:54:50.0624 1108 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
10:54:50.0630 1108 Serial - ok
10:54:50.0652 1108 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys
10:54:50.0656 1108 sermouse - ok
10:54:50.0678 1108 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
10:54:50.0685 1108 SessionEnv - ok
10:54:50.0695 1108 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
10:54:50.0696 1108 sffdisk - ok
10:54:50.0699 1108 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
10:54:50.0700 1108 sffp_mmc - ok
10:54:50.0704 1108 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
10:54:50.0705 1108 sffp_sd - ok
10:54:50.0709 1108 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys
10:54:50.0710 1108 sfloppy - ok
10:54:50.0756 1108 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
10:54:50.0776 1108 SharedAccess - ok
10:54:50.0800 1108 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
10:54:50.0811 1108 ShellHWDetection - ok
10:54:50.0823 1108 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys
10:54:50.0825 1108 SiSRaid2 - ok
10:54:50.0834 1108 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys
10:54:50.0836 1108 SiSRaid4 - ok
10:54:50.0878 1108 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
10:54:50.0884 1108 Smb - ok
10:54:50.0916 1108 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
10:54:50.0921 1108 SNMPTRAP - ok
10:54:50.0927 1108 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
10:54:50.0928 1108 spldr - ok
10:54:50.0964 1108 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
10:54:50.0971 1108 Spooler - ok
10:54:51.0099 1108 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
10:54:51.0153 1108 sppsvc - ok
10:54:51.0242 1108 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
10:54:51.0250 1108 sppuinotify - ok
10:54:51.0296 1108 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
10:54:51.0301 1108 srv - ok
10:54:51.0329 1108 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
10:54:51.0334 1108 srv2 - ok
10:54:51.0354 1108 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
10:54:51.0357 1108 srvnet - ok
10:54:51.0392 1108 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
10:54:51.0395 1108 SSDPSRV - ok
10:54:51.0408 1108 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
10:54:51.0410 1108 SstpSvc - ok
10:54:51.0466 1108 Steam Client Service - ok
10:54:51.0494 1108 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys
10:54:51.0495 1108 stexstor - ok
10:54:51.0553 1108 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
10:54:51.0573 1108 stisvc - ok
10:54:51.0602 1108 storflt (7785dc213270d2fc066538daf94087e7) C:\Windows\system32\drivers\vmstorfl.sys
10:54:51.0603 1108 storflt - ok
10:54:51.0635 1108 storvsc (d34e4943d5ac096c8edeebfd80d76e23) C:\Windows\system32\drivers\storvsc.sys
10:54:51.0636 1108 storvsc - ok
10:54:51.0643 1108 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
10:54:51.0644 1108 swenum - ok
10:54:51.0688 1108 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
10:54:51.0693 1108 swprv - ok
10:54:51.0709 1108 Synth3dVsc (c3a39c4079305480972d29c44b868c78) C:\Windows\system32\drivers\synth3dvsc.sys
10:54:51.0711 1108 Synth3dVsc - ok
10:54:51.0798 1108 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
10:54:51.0821 1108 SysMain - ok
10:54:51.0917 1108 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
10:54:51.0924 1108 TabletInputService - ok
10:54:51.0949 1108 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
10:54:51.0970 1108 TapiSrv - ok
10:54:51.0981 1108 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
10:54:51.0988 1108 TBS - ok
10:54:52.0113 1108 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
10:54:52.0150 1108 Tcpip - ok
10:54:52.0301 1108 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
10:54:52.0313 1108 TCPIP6 - ok
10:54:52.0374 1108 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
10:54:52.0379 1108 tcpipreg - ok
10:54:52.0387 1108 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
10:54:52.0391 1108 TDPIPE - ok
10:54:52.0399 1108 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
10:54:52.0403 1108 TDTCP - ok
10:54:52.0431 1108 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
10:54:52.0437 1108 tdx - ok
10:54:52.0603 1108 TeamViewer7 (74fc70ae64a7b7dabec9697ce0a1f4fa) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
10:54:52.0619 1108 TeamViewer7 - ok
10:54:52.0739 1108 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\DRIVERS\termdd.sys
10:54:52.0745 1108 TermDD - ok
10:54:52.0767 1108 terminpt (2b5bdff688ec9871d7ec5837833374e9) C:\Windows\system32\drivers\terminpt.sys
10:54:52.0768 1108 terminpt - ok
10:54:52.0819 1108 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
10:54:52.0826 1108 TermService - ok
10:54:52.0837 1108 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
10:54:52.0840 1108 Themes - ok
10:54:52.0872 1108 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
10:54:52.0874 1108 THREADORDER - ok
10:54:52.0892 1108 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
10:54:52.0895 1108 TrkWks - ok
10:54:52.0948 1108 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
10:54:52.0951 1108 TrustedInstaller - ok
10:54:52.0977 1108 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
10:54:52.0981 1108 tssecsrv - ok
10:54:53.0009 1108 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
10:54:53.0015 1108 TsUsbFlt - ok
10:54:53.0028 1108 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\Windows\system32\drivers\TsUsbGD.sys
10:54:53.0029 1108 TsUsbGD - ok
10:54:53.0060 1108 tsusbhub (e1748d04ae40118b62bc18ac86032192) C:\Windows\system32\drivers\tsusbhub.sys
10:54:53.0062 1108 tsusbhub - ok
10:54:53.0096 1108 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
10:54:53.0103 1108 tunnel - ok
10:54:53.0113 1108 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys
10:54:53.0115 1108 uagp35 - ok
10:54:53.0139 1108 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
10:54:53.0142 1108 udfs - ok
10:54:53.0169 1108 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
10:54:53.0177 1108 UI0Detect - ok
10:54:53.0199 1108 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
10:54:53.0201 1108 uliagpkx - ok
10:54:53.0221 1108 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
10:54:53.0233 1108 umbus - ok
10:54:53.0257 1108 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys
10:54:53.0258 1108 UmPass - ok
10:54:53.0297 1108 UmRdpService (a293dcd756d04d8492a750d03b9a297c) C:\Windows\System32\umrdp.dll
10:54:53.0301 1108 UmRdpService - ok
10:54:53.0324 1108 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
10:54:53.0333 1108 upnphost - ok
10:54:53.0361 1108 USBAAPL64 (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys
10:54:53.0363 1108 USBAAPL64 - ok
10:54:53.0397 1108 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
10:54:53.0403 1108 usbccgp - ok
10:54:53.0428 1108 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
10:54:53.0430 1108 usbcir - ok
10:54:53.0439 1108 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
10:54:53.0444 1108 usbehci - ok
10:54:53.0490 1108 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
10:54:53.0512 1108 usbhub - ok
10:54:53.0522 1108 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
10:54:53.0526 1108 usbohci - ok
10:54:53.0538 1108 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\drivers\usbprint.sys
10:54:53.0540 1108 usbprint - ok
10:54:53.0551 1108 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:54:53.0552 1108 USBSTOR - ok
10:54:53.0557 1108 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
10:54:53.0561 1108 usbuhci - ok
10:54:53.0585 1108 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
10:54:53.0587 1108 UxSms - ok
10:54:53.0608 1108 VaultSvc (0793f40b9b8a1bdd266296409dbd91ea) C:\Windows\system32\lsass.exe
10:54:53.0609 1108 VaultSvc - ok
10:54:53.0633 1108 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
10:54:53.0634 1108 vdrvroot - ok
10:54:53.0665 1108 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
10:54:53.0687 1108 vds - ok
10:54:53.0701 1108 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
10:54:53.0705 1108 vga - ok
10:54:53.0710 1108 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
10:54:53.0714 1108 VgaSave - ok
10:54:53.0717 1108 VGPU - ok
10:54:53.0778 1108 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
10:54:53.0781 1108 vhdmp - ok
10:54:53.0797 1108 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
10:54:53.0798 1108 viaide - ok
10:54:53.0846 1108 VKbms (3b59bb6d10cf969dbe4db93d9ead7fb4) C:\Windows\system32\DRIVERS\VKbms.sys
10:54:53.0848 1108 VKbms - ok
10:54:53.0877 1108 vmbus (86ea3e79ae350fea5331a1303054005f) C:\Windows\system32\drivers\vmbus.sys
10:54:53.0881 1108 vmbus - ok
10:54:53.0899 1108 VMBusHID (7de90b48f210d29649380545db45a187) C:\Windows\system32\drivers\VMBusHID.sys
10:54:53.0900 1108 VMBusHID - ok
10:54:53.0915 1108 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
10:54:53.0916 1108 volmgr - ok
10:54:53.0938 1108 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
10:54:53.0943 1108 volmgrx - ok
10:54:53.0964 1108 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
10:54:53.0967 1108 volsnap - ok
10:54:53.0999 1108 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys
10:54:54.0002 1108 vsmraid - ok
10:54:54.0092 1108 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
10:54:54.0120 1108 VSS - ok
10:54:54.0238 1108 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
10:54:54.0239 1108 vwifibus - ok
10:54:54.0262 1108 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
10:54:54.0267 1108 vwififlt - ok
10:54:54.0306 1108 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
10:54:54.0311 1108 W32Time - ok
10:54:54.0329 1108 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys
10:54:54.0330 1108 WacomPen - ok
10:54:54.0369 1108 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
10:54:54.0375 1108 WANARP - ok
10:54:54.0379 1108 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
10:54:54.0380 1108 Wanarpv6 - ok
10:54:54.0458 1108 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
10:54:54.0480 1108 WatAdminSvc - ok
10:54:54.0557 1108 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
10:54:54.0606 1108 wbengine - ok
10:54:54.0694 1108 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
10:54:54.0707 1108 WbioSrvc - ok
10:54:54.0733 1108 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
10:54:54.0743 1108 wcncsvc - ok
10:54:54.0753 1108 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
10:54:54.0760 1108 WcsPlugInService - ok
10:54:54.0809 1108 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys
10:54:54.0810 1108 Wd - ok
10:54:54.0846 1108 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
10:54:54.0854 1108 Wdf01000 - ok
10:54:54.0866 1108 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
10:54:54.0871 1108 WdiServiceHost - ok
10:54:54.0873 1108 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
10:54:54.0875 1108 WdiSystemHost - ok
10:54:54.0887 1108 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
10:54:54.0895 1108 WebClient - ok
10:54:54.0915 1108 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
10:54:54.0926 1108 Wecsvc - ok
10:54:54.0943 1108 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
10:54:54.0945 1108 wercplsupport - ok
10:54:54.0967 1108 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
10:54:54.0969 1108 WerSvc - ok
10:54:55.0021 1108 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
10:54:55.0024 1108 WfpLwf - ok
10:54:55.0035 1108 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
10:54:55.0040 1108 WIMMount - ok
10:54:55.0072 1108 WinDefend - ok
10:54:55.0077 1108 WinHttpAutoProxySvc - ok
10:54:55.0130 1108 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
10:54:55.0132 1108 Winmgmt - ok
10:54:55.0231 1108 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
10:54:55.0290 1108 WinRM - ok
10:54:55.0426 1108 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
10:54:55.0436 1108 Wlansvc - ok
10:54:55.0602 1108 wlidsvc (98f138897ef4246381d197cb81846d62) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
10:54:55.0638 1108 wlidsvc - ok
10:54:55.0747 1108 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
10:54:55.0749 1108 WmiAcpi - ok
10:54:55.0806 1108 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
10:54:55.0814 1108 wmiApSrv - ok
10:54:55.0837 1108 WMPNetworkSvc - ok
10:54:55.0862 1108 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
10:54:55.0867 1108 WPCSvc - ok
10:54:55.0886 1108 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
10:54:55.0889 1108 WPDBusEnum - ok
10:54:55.0898 1108 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
10:54:55.0899 1108 ws2ifsl - ok
10:54:55.0916 1108 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\system32\wscsvc.dll
10:54:55.0919 1108 wscsvc - ok
10:54:55.0922 1108 WSearch - ok
10:54:56.0041 1108 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
10:54:56.0079 1108 wuauserv - ok
10:54:56.0184 1108 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
10:54:56.0190 1108 WudfPf - ok
10:54:56.0218 1108 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
10:54:56.0220 1108 WUDFRd - ok
10:54:56.0251 1108 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
10:54:56.0258 1108 wudfsvc - ok
10:54:56.0277 1108 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
10:54:56.0291 1108 WwanSvc - ok
10:54:56.0320 1108 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
10:54:56.0440 1108 \Device\Harddisk0\DR0 - ok
10:54:56.0444 1108 Boot (0x1200) (e44a1aa44832421287880ceb73bdab8c) \Device\Harddisk0\DR0\Partition0
10:54:56.0445 1108 \Device\Harddisk0\DR0\Partition0 - ok
10:54:56.0476 1108 Boot (0x1200) (430e9dc65fe335716aa903cfa3529d46) \Device\Harddisk0\DR0\Partition1
10:54:56.0478 1108 \Device\Harddisk0\DR0\Partition1 - ok
10:54:56.0478 1108 ============================================================
10:54:56.0478 1108 Scan finished
10:54:56.0478 1108 ============================================================
10:54:56.0489 3552 Detected object count: 0
10:54:56.0489 3552 Actual detected object count: 0

O.O this time aswmbr catch something!!! keygen!!! do i click fixmbr or find the file and delete?? but will not do anything until someone tell me because i might mess up .______.

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-05-08 10:56:19
-----------------------------
10:56:19.642 OS Version: Windows x64 6.1.7601 Service Pack 1
10:56:19.642 Number of processors: 4 586 0x2A07
10:56:19.643 ComputerName: JIN-PC UserName: Jin
10:56:20.442 Initialize success
10:56:39.678 AVAST engine defs: 12050800
10:58:04.266 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-1
10:58:04.269 Disk 0 Vendor: WDC_WD5000AAKX-001CA0 15.01H15 Size: 476940MB BusType: 3
10:58:04.281 Disk 0 MBR read successfully
10:58:04.284 Disk 0 MBR scan
10:58:04.290 Disk 0 Windows 7 default MBR code
10:58:04.294 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
10:58:04.304 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 476838 MB offset 206848
10:58:04.326 Disk 0 scanning C:\Windows\system32\drivers
10:58:11.728 Service scanning
10:58:27.568 Modules scanning
10:58:27.576 Disk 0 trace - called modules:
10:58:27.588 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
10:58:27.594 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800828b060]
10:58:27.599 3 CLASSPNP.SYS[fffff88001b8a43f] -> nt!IofCallDriver -> [0xfffffa8007af1520]
10:58:27.604 5 ACPI.sys[fffff88000f0a7a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP1T0L0-1[0xfffffa8007af3060]
10:58:29.004 AVAST engine scan C:\Windows
10:58:33.012 AVAST engine scan C:\Windows\system32
11:01:15.566 AVAST engine scan C:\Windows\system32\drivers
11:01:24.540 AVAST engine scan C:\Users\Luke
11:03:24.935 File: C:\Users\Luke\AppData\Local\Temp\wz0477\Keygen.exe **INFECTED** Win32:Malware-gen
11:03:25.001 File: C:\Users\Luke\AppData\Local\Temp\wz205b\Keygen.exe **INFECTED** Win32:Malware-gen
11:04:00.029 Disk 0 MBR has been saved successfully to "C:\Users\Luke\Desktop\MBR.dat"
11:04:00.029 The log file has been saved successfully to "C:\Users\Luke\Desktop\aswMBR.txt"

MiniToolBox by Farbar Version: 18-01-2012
Ran by Luke (administrator) on 08-05-2012 at 11:07:33
Microsoft Windows 7 Ultimate Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1 localhost

========================= IP Configuration: ================================

NETGEAR WNA3100 N300 Wireless USB Adapter = Wireless Network Connection (Connected)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Jin-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : Belkin

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : Belkin
Description . . . . . . . . . . . : NETGEAR WNA3100 N300 Wireless USB Adapter
Physical Address. . . . . . . . . : 2C-B0-5D-66-09-C0
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::a878:89b1:f713:410b%14(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.2.87(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Monday, May 07, 2012 9:54:24 PM
Lease Expires . . . . . . . . . . : Friday, June 14, 2148 5:35:54 PM
Default Gateway . . . . . . . . . : 192.168.2.1
DHCP Server . . . . . . . . . . . : 192.168.2.1
DHCPv6 IAID . . . . . . . . . . . : 321695837
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-3A-7C-B9-00-25-22-C1-2F-57
DNS Servers . . . . . . . . . . . : 192.168.2.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : resnet.uwyo.edu
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : 00-25-22-C1-2F-57
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.resnet.uwyo.edu:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:5ef5:79fd:841:1866:3f57:fda8(Preferred)
Link-local IPv6 Address . . . . . : fe80::841:1866:3f57:fda8%13(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.Belkin:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : Belkin
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server:
Address: 192.168.2.1

Name: google.com
Addresses: 173.194.64.102
173.194.64.113
173.194.64.138
173.194.64.139
173.194.64.100
173.194.64.101


Pinging google.com [173.194.77.113] with 32 bytes of data:
Reply from 173.194.77.113: bytes=32 time=44ms TTL=47
Reply from 173.194.77.113: bytes=32 time=45ms TTL=47

Ping statistics for 173.194.77.113:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 44ms, Maximum = 45ms, Average = 44ms
Server:
Address: 192.168.2.1

Name: yahoo.com
Addresses: 72.30.38.140
98.139.183.24
209.191.122.70


Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=50ms TTL=54
Reply from 72.30.38.140: bytes=32 time=52ms TTL=54

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 50ms, Maximum = 52ms, Average = 51ms
Server:
Address: 192.168.2.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=2ms TTL=128
Reply from 127.0.0.1: bytes=32 time=1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 1ms, Maximum = 2ms, Average = 1ms
===========================================================================
Interface List
14...2c b0 5d 66 09 c0 ......NETGEAR WNA3100 N300 Wireless USB Adapter
11...00 25 22 c1 2f 57 ......Realtek PCIe GBE Family Controller
1...........................Software Loopback Interface 1
12...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
15...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.2.1 192.168.2.87 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.2.0 255.255.255.0 On-link 192.168.2.87 281
192.168.2.87 255.255.255.255 On-link 192.168.2.87 281
192.168.2.255 255.255.255.255 On-link 192.168.2.87 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.2.87 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.2.87 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
13 58 ::/0 On-link
1 306 ::1/128 On-link
13 58 2001::/32 On-link
13 306 2001:0:5ef5:79fd:841:1866:3f57:fda8/128
On-link
14 281 fe80::/64 On-link
13 306 fe80::/64 On-link
13 306 fe80::841:1866:3f57:fda8/128
On-link
14 281 fe80::a878:89b1:f713:410b/128
On-link
1 306 ff00::/8 On-link
13 306 ff00::/8 On-link
14 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528] (Microsoft Corporation)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304] (Microsoft Corporation)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (05/07/2012 03:01:38 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.

Error: (05/07/2012 03:00:50 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3.
Multiple requestedPrivileges elements are not allowed in manifest.

Error: (05/07/2012 00:53:51 PM) (Source: Application Error) (User: )
Description: Faulting application name: prototypef.exe, version: 1.0.0.1, time stamp: 0x49ef07ae
Faulting module name: prototypeenginef.dll, version: 1.0.0.1, time stamp: 0x49ef9366
Exception code: 0xc0000005
Fault offset: 0x00a9b392
Faulting process id: 0xdb8
Faulting application start time: 0xprototypef.exe0
Faulting application path: prototypef.exe1
Faulting module path: prototypef.exe2
Report Id: prototypef.exe3

Error: (05/07/2012 00:52:54 PM) (Source: Application Error) (User: )
Description: Faulting application name: prototypef.exe, version: 1.0.0.1, time stamp: 0x49ef07ae
Faulting module name: prototypeenginef.dll, version: 1.0.0.1, time stamp: 0x49ef9366
Exception code: 0xc0000005
Fault offset: 0x00a9b392
Faulting process id: 0x718
Faulting application start time: 0xprototypef.exe0
Faulting application path: prototypef.exe1
Faulting module path: prototypef.exe2
Report Id: prototypef.exe3

Error: (05/07/2012 00:50:42 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/06/2012 03:34:00 PM) (Source: Application Error) (User: )
Description: Faulting application name: prototypef.exe, version: 1.0.0.1, time stamp: 0x49ef07ae
Faulting module name: prototypeenginef.dll, version: 1.0.0.1, time stamp: 0x49ef9366
Exception code: 0xc0000005
Fault offset: 0x00a9b392
Faulting process id: 0x9b0
Faulting application start time: 0xprototypef.exe0
Faulting application path: prototypef.exe1
Faulting module path: prototypef.exe2
Report Id: prototypef.exe3

Error: (05/06/2012 03:32:49 PM) (Source: Application Error) (User: )
Description: Faulting application name: prototypef.exe, version: 1.0.0.1, time stamp: 0x49ef07ae
Faulting module name: prototypeenginef.dll, version: 1.0.0.1, time stamp: 0x49ef9366
Exception code: 0xc0000005
Fault offset: 0x00a9b392
Faulting process id: 0xd5c
Faulting application start time: 0xprototypef.exe0
Faulting application path: prototypef.exe1
Faulting module path: prototypef.exe2
Report Id: prototypef.exe3

Error: (05/06/2012 03:31:55 PM) (Source: Application Error) (User: )
Description: Faulting application name: prototypef.exe, version: 1.0.0.1, time stamp: 0x49ef07ae
Faulting module name: prototypeenginef.dll, version: 1.0.0.1, time stamp: 0x49ef9366
Exception code: 0xc0000005
Fault offset: 0x00a9b392
Faulting process id: 0xfc8
Faulting application start time: 0xprototypef.exe0
Faulting application path: prototypef.exe1
Faulting module path: prototypef.exe2
Report Id: prototypef.exe3

Error: (05/06/2012 03:30:59 PM) (Source: Application Error) (User: )
Description: Faulting application name: prototypef.exe, version: 1.0.0.1, time stamp: 0x49ef07ae
Faulting module name: prototypeenginef.dll, version: 1.0.0.1, time stamp: 0x49ef9366
Exception code: 0xc0000005
Fault offset: 0x00a9b392
Faulting process id: 0x5fc
Faulting application start time: 0xprototypef.exe0
Faulting application path: prototypef.exe1
Faulting module path: prototypef.exe2
Report Id: prototypef.exe3

Error: (05/06/2012 03:30:04 PM) (Source: Application Error) (User: )
Description: Faulting application name: prototypef.exe, version: 1.0.0.1, time stamp: 0x49ef07ae
Faulting module name: prototypeenginef.dll, version: 1.0.0.1, time stamp: 0x49ef9366
Exception code: 0xc0000005
Fault offset: 0x00a9b392
Faulting process id: 0x102c
Faulting application start time: 0xprototypef.exe0
Faulting application path: prototypef.exe1
Faulting module path: prototypef.exe2
Report Id: prototypef.exe3


System errors:
=============
Error: (05/05/2012 06:15:45 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at ?? 4:48:09 on ?2012-?05-?04 was unexpected.

Error: (05/04/2012 00:17:35 PM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR7.

Error: (05/04/2012 00:17:34 PM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR7.

Error: (05/04/2012 00:17:33 PM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR7.

Error: (05/04/2012 00:17:06 PM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR6.

Error: (05/04/2012 00:17:05 PM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR6.

Error: (05/04/2012 00:17:05 PM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR6.

Error: (05/04/2012 00:17:01 PM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR6.

Error: (05/04/2012 11:55:50 AM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR5.

Error: (05/04/2012 11:55:49 AM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR5.


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
?? 8.51 (Version: v8.51)
??? ???? (Version: v11.4.28.1)
µTorrent (Version: 3.1.3)
Acrobat.com (Version: 0.0.0)
Acrobat.com (Version: 1.1.377)
Adobe AIR (Version: 1.0.4990)
Adobe AIR (Version: 1.0.8.4990)
Adobe Flash Player 11 ActiveX 64-bit (Version: 11.0.1.152)
Adobe Flash Player 11 Plugin 64-bit (Version: 11.1.102.55)
Adobe Reader 9.5.0 (Version: 9.5.0)
AMD APP SDK Runtime (Version: 10.0.851.4)
AMD Catalyst Install Manager (Version: 3.0.859.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Media Foundation Decoders (Version: 1.0.61205.2219)
AMX Mod X Installer 1.8.1 (Version: 1.8.1)
Anki
Anti CSDoS by Shocker v3.2
Apple Application Support (Version: 2.1.5)
Apple Mobile Device Support (Version: 4.0.0.96)
Apple Software Update (Version: 2.1.3.127)
ASRock App Charger v1.0.4
ASRock eXtreme Tuner v0.1.54
ASRock InstantBoot v1.26
ATI AVIVO64 Codecs (Version: 11.6.0.10524)
Avira Free Antivirus (Version: 12.0.0.898)
Bonjour (Version: 3.0.0.10)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center (Version: 2011.1205.2215.39827)
Catalyst Control Center Graphics Previews Common (Version: 2011.1205.2215.39827)
Catalyst Control Center InstallProxy (Version: 2011.1205.2215.39827)
Catalyst Control Center Localization All (Version: 2011.1205.2215.39827)
ccc-utility64 (Version: 2011.1205.2215.39827)
CCC Help Chinese Standard (Version: 2011.1205.2214.39827)
CCC Help Chinese Traditional (Version: 2011.0524.2351.41027)
CCC Help Chinese Traditional (Version: 2011.1205.2214.39827)
CCC Help Czech (Version: 2011.1205.2214.39827)
CCC Help Danish (Version: 2011.1205.2214.39827)
CCC Help Dutch (Version: 2011.1205.2214.39827)
CCC Help English (Version: 2011.1205.2214.39827)
CCC Help Finnish (Version: 2011.1205.2214.39827)
CCC Help French (Version: 2011.1205.2214.39827)
CCC Help German (Version: 2011.1205.2214.39827)
CCC Help Greek (Version: 2011.1205.2214.39827)
CCC Help Hungarian (Version: 2011.1205.2214.39827)
CCC Help Italian (Version: 2011.1205.2214.39827)
CCC Help Japanese (Version: 2011.1205.2214.39827)
CCC Help Korean (Version: 2011.1205.2214.39827)
CCC Help Norwegian (Version: 2011.1205.2214.39827)
CCC Help Polish (Version: 2011.1205.2214.39827)
CCC Help Portuguese (Version: 2011.1205.2214.39827)
CCC Help Russian (Version: 2011.1205.2214.39827)
CCC Help Spanish (Version: 2011.1205.2214.39827)
CCC Help Swedish (Version: 2011.1205.2214.39827)
CCC Help Thai (Version: 2011.1205.2214.39827)
CCC Help Turkish (Version: 2011.1205.2214.39827)
ConvertHelper 2.2
Counter-Strike
Counter-Strike: Condition Zero
Deus Ex - Human Revolution version 1.0 (Version: 1.0)
DiRT 3
DivX Setup (Version: 2.6.1.8)
Dragon Age II (Version: 1.00)
Etron USB3.0 Host Controller (Version: 0.96)
Fraps (remove only)
Free FLV Converter V 7.4.0 (Version: 7.4.0.0)
Free YouTube to MP3 Converter version 3.10.11.923
Garena Plus (Version: 2011)
GoldWave v5.58
Google ?? (Version: 6.2.2.6613)
Google Chrome (Version: 18.0.1025.168)
Google Update Helper (Version: 1.3.21.111)
HydraVision (Version: 4.2.206.0)
Intel® Management Engine Components (Version: 7.0.0.1144)
iTunes (Version: 10.5.0.142)
League of Legends (Version: 1.3)
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
MapleStory
marvell 91xx driver (Version: 1.0.0.1047)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Games for Windows - LIVE Redistributable (Version: 3.5.92.0)
Microsoft Games for Windows Marketplace (Version: 3.5.50.0)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6425.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6425.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Mozilla Firefox 11.0 (x86 en-US) (Version: 11.0)
Nexon Game Manager
NVIDIA PhysX (Version: 9.10.0129)
OpenAL
Orcs Must Die!
Pando Media Booster (Version: 2.6.0.1)
PowerISO (Version: 5.0)
Prototype™ (Version: 1.0)
PunkBuster Services (Version: 0.993)
Rapture3D 2.4.8 Game
Razer DeathAdder™ Mouse (Version: 3.05)
Realtek Ethernet Controller Driver For Windows 7 (Version: 7.23.623.2010)
Realtek High Definition Audio Driver (Version: 6.0.1.6167)
Skype Click to Call (Version: 5.7.8524)
Skype™ 5.5 (Version: 5.5.124)
Spelling Dictionaries Support For Adobe Reader 9 (Version: 9.0.0)
StarCraft II (Version: 1.4.3.21029)
Steam (Version: 1.0.0.0)
Team Fortress 2
TeamSpeak 3 Client (Version: 3.0.6)
TeamViewer 7 (Version: 7.0.12799)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Update for Outlook 2007 Junk Email Filter (KB2596560)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
Ventrilo Client (Version: 3.0.8)
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
Warcraft III
Windows Live ID Sign-in Assistant (Version: 6.500.3165.0)
WinZip 16.0 (Version: 16.0.9715)
XFastUsb
Your Freedom 20111029-01

MiniTool Box Log
========================= Memory info: ===================================

Percentage of memory in use: 41%
Total physical RAM: 8174.7 MB
Available physical RAM: 4788.09 MB
Total Pagefile: 16347.59 MB
Available Pagefile: 12357.72 MB
Total Virtual: 4095.88 MB
Available Virtual: 3960.11 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:465.66 GB) (Free:294.52 GB) NTFS
2 Drive d: (Pursuit Of Happyness, The) (CDROM) (Total:7.59 GB) (Free:0 GB) UDF

========================= Users: ========================================

User accounts for \\JIN-PC

Administrator Guest Jin


**** End of log ****


#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:50 PM

Posted 08 May 2012 - 12:30 PM

O.O this time aswmbr catch something!!! keygen!!! do i click fixmbr or find the file and delete?? but will not do anything until someone tell me because i might mess up .______.

Manually browse to the location and delete the file


Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

Download

http://download.sysinternals.com/files/Autoruns.zip

Extract and launch Autoruns.exe

Allow it to scan

Click on File-save & save it as

Filename:autoruns.txt
save as type:text

Upload the file to www.filedropper.com

and post the link here

good luck

#5 jhong

jhong
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:07:50 PM

Posted 08 May 2012 - 03:50 PM

ESET found something and it deleted it (quarantined?) and manually look for file and deleted

forgot to save log! should i redo it? it took a long time, but i do again if have to :o

for autoruns
<a href=http://www.filedropper.com/autoruns><img src=http://www.filedropper.com/download_button.png width=127 height=145 border=0/></a><br /><div style=font-size:9px;font-family:Arial, Helvetica, sans-serif;width:127px;font-color:#44a854;> <a href=http://www.filedropper.com >File Hosting Online Storage Backup</a></div>

and link

http://www.filedropper.com/autoruns

Edited by jhong, 08 May 2012 - 03:50 PM.


#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:50 PM

Posted 08 May 2012 - 09:01 PM

Please save it autoruns results as TEXT file and upload it

#7 jhong

jhong
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:07:50 PM

Posted 10 May 2012 - 08:04 PM

sorry for the late response, something weird with the internet o-o i dont know how to use this program (?) i open and i can save but where the use button?

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:50 PM

Posted 10 May 2012 - 08:11 PM

Extract and launch Autoruns.exe

Allow it to scan

Click on File-save & save it as

Filename:autoruns.txt
save as type:text

Upload the file to www.filedropper.com

and post the link here

If you have searchnu redirect on a specific browser,then try to reinstall it

good luck

Edited by narenxp, 10 May 2012 - 08:11 PM.


#9 jhong

jhong
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:07:50 PM

Posted 11 May 2012 - 01:18 AM

http://www.filedropper.com/autoruns_3

<a href=http://www.filedropper.com/autoruns_3><img src=http://www.filedropper.com/download_button.png width=127 height=145 border=0/></a><br /><div style=font-size:9px;font-family:Arial, Helvetica, sans-serif;width:127px;font-color:#44a854;> <a href=http://www.filedropper.com >upload files free</a></div>

^___^ thanks idk if done but look like it got rid of some virus

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:50 PM

Posted 11 May 2012 - 08:17 AM

Do you still have searchnu redirects?

Re run aswmbr and post the log

good luck

Edited by narenxp, 11 May 2012 - 08:17 AM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users