Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Computer Infected with Windows Antivirus 2012


  • Please log in to reply
18 replies to this topic

#1 Yankees1

Yankees1

  • Members
  • 107 posts
  • OFFLINE
  •  
  • Local time:03:34 PM

Posted 14 May 2012 - 07:27 AM

I believe my computer is infected with Windows Antivirus 2012. Can someone please tell me how to proceed.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:34 PM

Posted 14 May 2012 - 08:56 AM

Boot the PC into safemode with networking

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply



Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

#3 Yankees1

Yankees1
  • Topic Starter

  • Members
  • 107 posts
  • OFFLINE
  •  
  • Local time:03:34 PM

Posted 14 May 2012 - 12:19 PM

Thank you for your assistance...


1)Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

10:15:29.0269 5468 TDSS rootkit removing tool 2.7.34.0 May 2 2012 09:59:18
10:15:29.0467 5468 ============================================================
10:15:29.0467 5468 Current date / time: 2012/05/14 10:15:29.0467
10:15:29.0467 5468 SystemInfo:
10:15:29.0467 5468
10:15:29.0467 5468 OS Version: 6.1.7601 ServicePack: 1.0
10:15:29.0467 5468 Product type: Workstation
10:15:29.0467 5468 ComputerName:
10:15:29.0468 5468 UserName:
10:15:29.0468 5468 Windows directory: C:\Windows
10:15:29.0468 5468 System windows directory: C:\Windows
10:15:29.0468 5468 Running under WOW64
10:15:29.0468 5468 Processor architecture: Intel x64
10:15:29.0468 5468 Number of processors: 12
10:15:29.0468 5468 Page size: 0x1000
10:15:29.0468 5468 Boot type: Normal boot
10:15:29.0468 5468
============================================================
10:15:29.0779 5468 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:15:29.0796 5468 Drive \Device\Harddisk1\DR1 - Size: 0x1D1C1600000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:15:29.0800 5468
============================================================
10:15:29.0800 5468 \Device\Harddisk0\DR0:
10:15:29.0801 5468 MBR partitions:
10:15:29.0801 5468 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705800
10:15:29.0801 5468 \Device\Harddisk1\DR1:
10:15:29.0801 5468 MBR partitions:
10:15:29.0801 5468 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xE8E09800
10:15:29.0801 5468
============================================================
10:15:29.0813 5468 C: <-> \Device\Harddisk0\DR0\Partition0
10:15:29.0836 5468 E: <-> \Device\Harddisk1\DR1\Partition0
10:15:29.0836 5468
============================================================
10:15:29.0836 5468 Initialize success
10:15:29.0836 5468
============================================================
10:16:08.0735 1404 Deinitialize success



1)Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)


10:25:04.0778 2004 TDSS rootkit removing tool 2.7.34.0 May 2 2012 09:59:18
10:25:04.0993 2004
============================================================
10:25:04.0993 2004 Current date / time: 2012/05/14 10:25:04.0993
10:25:04.0993 2004 SystemInfo:
10:25:04.0993 2004
10:25:04.0993 2004 OS Version: 6.1.7601 ServicePack: 1.0
10:25:04.0993 2004 Product type: Workstation
10:25:04.0993 2004 ComputerName:
10:25:04.0993 2004 UserName:
10:25:04.0993 2004 Windows directory: C:\Windows
10:25:04.0993 2004 System windows directory: C:\Windows
10:25:04.0993 2004 Running under WOW64
10:25:04.0993 2004 Processor architecture: Intel x64
10:25:04.0993 2004 Number of processors: 12
10:25:04.0993 2004 Page size: 0x1000
10:25:04.0993 2004 Boot type: Safe boot with network
10:25:04.0993 2004
============================================================
10:25:05.0559 2004 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:25:05.0567 2004 Drive \Device\Harddisk1\DR1 - Size: 0x1D1C1600000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:25:05.0570 2004
============================================================
10:25:05.0570 2004 \Device\Harddisk0\DR0:
10:25:05.0570 2004 MBR partitions:
10:25:05.0570 2004 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705800
10:25:05.0570 2004 \Device\Harddisk1\DR1:
10:25:05.0570 2004 MBR partitions:
10:25:05.0570 2004 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xE8E09800
10:25:05.0570 2004
============================================================
10:25:05.0596 2004 C: <-> \Device\Harddisk0\DR0\Partition0
10:25:05.0615 2004 E: <-> \Device\Harddisk1\DR1\Partition0
10:25:05.0615 2004
============================================================
10:25:05.0615 2004 Initialize success
10:25:05.0615 2004
============================================================
10:25:35.0409 1328
============================================================
10:25:35.0409 1328 Scan started
10:25:35.0409 1328 Mode: Manual; TDLFS;
10:25:35.0409 1328
============================================================
10:25:35.0796 1328 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
10:25:35.0798 1328 1394ohci - ok
10:25:35.0859 1328 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
10:25:35.0862 1328 ACPI - ok
10:25:35.0888 1328 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
10:25:35.0890 1328 AcpiPmi - ok
10:25:35.0977 1328 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
10:25:35.0982 1328 adp94xx - ok
10:25:36.0040 1328 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
10:25:36.0042 1328 adpahci - ok
10:25:36.0075 1328 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
10:25:36.0076 1328 adpu320 - ok
10:25:36.0127 1328 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
10:25:36.0128 1328 AeLookupSvc - ok
10:25:36.0197 1328 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
10:25:36.0199 1328 AFD - ok
10:25:36.0251 1328 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
10:25:36.0252 1328 agp440 - ok
10:25:36.0272 1328 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
10:25:36.0273 1328 ALG - ok
10:25:36.0311 1328 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
10:25:36.0311 1328 aliide - ok
10:25:36.0338 1328 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
10:25:36.0342 1328 amdide - ok
10:25:36.0378 1328 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
10:25:36.0379 1328 AmdK8 - ok
10:25:36.0384 1328 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
10:25:36.0385 1328 AmdPPM - ok
10:25:36.0455 1328 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
10:25:36.0456 1328 amdsata - ok
10:25:36.0489 1328 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
10:25:36.0491 1328 amdsbs - ok
10:25:36.0507 1328 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
10:25:36.0507 1328 amdxata - ok
10:25:36.0561 1328 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
10:25:36.0562 1328 AppID - ok
10:25:36.0583 1328 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
10:25:36.0583 1328 AppIDSvc - ok
10:25:36.0618 1328 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
10:25:36.0619 1328 Appinfo - ok
10:25:36.0648 1328 AppMgmt (4aba3e75a76195a3e38ed2766c962899) C:\Windows\System32\appmgmts.dll
10:25:36.0650 1328 AppMgmt - ok
10:25:36.0687 1328 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
10:25:36.0688 1328 arc - ok
10:25:36.0700 1328 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
10:25:36.0702 1328 arcsas - ok
10:25:36.0703 1328 Ast Service - ok
10:25:36.0735 1328 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
10:25:36.0735 1328 AsyncMac - ok
10:25:36.0779 1328 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
10:25:36.0779 1328 atapi - ok
10:25:36.0847 1328 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
10:25:36.0853 1328 AudioEndpointBuilder - ok
10:25:36.0856 1328 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
10:25:36.0859 1328 AudioSrv - ok
10:25:36.0920 1328 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
10:25:36.0921 1328 AxInstSV - ok
10:25:36.0965 1328 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
10:25:36.0969 1328 b06bdrv - ok
10:25:37.0001 1328 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
10:25:37.0003 1328 b57nd60a - ok
10:25:37.0051 1328 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
10:25:37.0052 1328 BDESVC - ok
10:25:37.0065 1328 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
10:25:37.0065 1328 Beep - ok
10:25:37.0136 1328 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
10:25:37.0142 1328 BFE - ok
10:25:37.0198 1328 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
10:25:37.0205 1328 BITS - ok
10:25:37.0257 1328 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
10:25:37.0257 1328 blbdrive - ok
10:25:37.0297 1328 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
10:25:37.0298 1328 bowser - ok
10:25:37.0311 1328 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
10:25:37.0312 1328 BrFiltLo - ok
10:25:37.0313 1328 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
10:25:37.0314 1328 BrFiltUp - ok
10:25:37.0361 1328 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
10:25:37.0362 1328 Browser - ok
10:25:37.0386 1328 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
10:25:37.0392 1328 Brserid - ok
10:25:37.0410 1328 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
10:25:37.0411 1328 BrSerWdm - ok
10:25:37.0419 1328 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
10:25:37.0420 1328 BrUsbMdm - ok
10:25:37.0422 1328 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
10:25:37.0422 1328 BrUsbSer - ok
10:25:37.0428 1328 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
10:25:37.0429 1328 BTHMODEM - ok
10:25:37.0462 1328 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
10:25:37.0463 1328 bthserv - ok
10:25:37.0508 1328 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
10:25:37.0509 1328 cdfs - ok
10:25:37.0555 1328 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
10:25:37.0556 1328 cdrom - ok
10:25:37.0590 1328 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
10:25:37.0591 1328 CertPropSvc - ok
10:25:37.0607 1328 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
10:25:37.0608 1328 circlass - ok
10:25:37.0629 1328 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
10:25:37.0632 1328 CLFS - ok
10:25:37.0701 1328 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:25:37.0703 1328 clr_optimization_v2.0.50727_32 - ok
10:25:37.0748 1328 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
10:25:37.0750 1328 clr_optimization_v2.0.50727_64 - ok
10:25:37.0816 1328 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:25:37.0835 1328 clr_optimization_v4.0.30319_32 - ok
10:25:37.0866 1328 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
10:25:37.0868 1328 clr_optimization_v4.0.30319_64 - ok
10:25:37.0890 1328 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
10:25:37.0891 1328 CmBatt - ok
10:25:37.0935 1328 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
10:25:37.0936 1328 cmdide - ok
10:25:37.0986 1328 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
10:25:37.0990 1328 CNG - ok
10:25:38.0004 1328 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
10:25:38.0004 1328 Compbatt - ok
10:25:38.0052 1328 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
10:25:38.0052 1328 CompositeBus - ok
10:25:38.0064 1328 COMSysApp - ok
10:25:38.0135 1328 cpuz134 - ok
10:25:38.0150 1328 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
10:25:38.0150 1328 crcdisk - ok
10:25:38.0204 1328 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll
10:25:38.0206 1328 CryptSvc - ok
10:25:38.0277 1328 CSC (54da3dfd29ed9f1619b6f53f3ce55e49) C:\Windows\system32\drivers\csc.sys
10:25:38.0280 1328 CSC - ok
10:25:38.0334 1328 CscService (3ab183ab4d2c79dcf459cd2c1266b043) C:\Windows\System32\cscsvc.dll
10:25:38.0340 1328 CscService - ok
10:25:38.0409 1328 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
10:25:38.0414 1328 DcomLaunch - ok
10:25:38.0446 1328 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
10:25:38.0449 1328 defragsvc - ok
10:25:38.0515 1328 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
10:25:38.0516 1328 DfsC - ok
10:25:38.0561 1328 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
10:25:38.0563 1328 Dhcp - ok
10:25:38.0585 1328 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
10:25:38.0586 1328 discache - ok
10:25:38.0623 1328 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
10:25:38.0624 1328 Disk - ok
10:25:38.0648 1328 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
10:25:38.0649 1328 Dnscache - ok
10:25:38.0684 1328 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
10:25:38.0687 1328 dot3svc - ok
10:25:38.0724 1328 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
10:25:38.0726 1328 DPS - ok
10:25:38.0747 1328 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
10:25:38.0747 1328 drmkaud - ok
10:25:38.0811 1328 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
10:25:38.0815 1328 DXGKrnl - ok
10:25:38.0859 1328 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
10:25:38.0860 1328 EapHost - ok
10:25:39.0004 1328 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
10:25:39.0031 1328 ebdrv - ok
10:25:39.0117 1328 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
10:25:39.0118 1328 EFS - ok
10:25:39.0194 1328 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
10:25:39.0200 1328 ehRecvr - ok
10:25:39.0236 1328 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
10:25:39.0238 1328 ehSched - ok
10:25:39.0313 1328 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
10:25:39.0317 1328 elxstor - ok
10:25:39.0355 1328 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
10:25:39.0356 1328 ErrDev - ok
10:25:39.0392 1328 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
10:25:39.0396 1328 EventSystem - ok
10:25:39.0419 1328 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
10:25:39.0421 1328 exfat - ok
10:25:39.0443 1328 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
10:25:39.0445 1328 fastfat - ok
10:25:39.0538 1328 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
10:25:39.0543 1328 Fax - ok
10:25:39.0567 1328 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
10:25:39.0568 1328 fdc - ok
10:25:39.0577 1328 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
10:25:39.0577 1328 fdPHost - ok
10:25:39.0599 1328 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
10:25:39.0600 1328 FDResPub - ok
10:25:39.0610 1328 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
10:25:39.0611 1328 FileInfo - ok
10:25:39.0618 1328 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
10:25:39.0618 1328 Filetrace - ok
10:25:39.0628 1328 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
10:25:39.0629 1328 flpydisk - ok
10:25:39.0681 1328 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
10:25:39.0684 1328 FltMgr - ok
10:25:39.0750 1328 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
10:25:39.0758 1328 FontCache - ok
10:25:39.0819 1328 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:25:39.0821 1328 FontCache3.0.0.0 - ok
10:25:39.0872 1328 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
10:25:39.0872 1328 FsDepends - ok
10:25:39.0917 1328 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
10:25:39.0918 1328 Fs_Rec - ok
10:25:39.0966 1328 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
10:25:39.0968 1328 fvevol - ok
10:25:39.0983 1328 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
10:25:39.0984 1328 gagp30kx - ok
10:25:40.0041 1328 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
10:25:40.0047 1328 gpsvc - ok
10:25:40.0053 1328 guardian - ok
10:25:40.0054 1328 guardianctrl - ok
10:25:40.0062 1328 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
10:25:40.0066 1328 hcw85cir - ok
10:25:40.0122 1328 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
10:25:40.0125 1328 HdAudAddService - ok
10:25:40.0139 1328 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
10:25:40.0140 1328 HDAudBus - ok
10:25:40.0162 1328 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
10:25:40.0163 1328 HidBatt - ok
10:25:40.0167 1328 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
10:25:40.0168 1328 HidBth - ok
10:25:40.0171 1328 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
10:25:40.0172 1328 HidIr - ok
10:25:40.0190 1328 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
10:25:40.0191 1328 hidserv - ok
10:25:40.0210 1328 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
10:25:40.0210 1328 HidUsb - ok
10:25:40.0251 1328 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
10:25:40.0252 1328 hkmsvc - ok
10:25:40.0302 1328 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
10:25:40.0304 1328 HomeGroupListener - ok
10:25:40.0334 1328 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
10:25:40.0337 1328 HomeGroupProvider - ok
10:25:40.0386 1328 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
10:25:40.0387 1328 HpSAMD - ok
10:25:40.0424 1328 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
10:25:40.0427 1328 HTTP - ok
10:25:40.0453 1328 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
10:25:40.0454 1328 hwpolicy - ok
10:25:40.0489 1328 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
10:25:40.0491 1328 i8042prt - ok
10:25:40.0537 1328 iaStor (d7921d5a870b11cc1adab198a519d50a) C:\Windows\system32\DRIVERS\iaStor.sys
10:25:40.0538 1328 iaStor - ok
10:25:40.0581 1328 IAStorDataMgrSvc (8fff9083252c16fe3960173722605e9e) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
10:25:40.0582 1328 IAStorDataMgrSvc - ok
10:25:40.0644 1328 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
10:25:40.0648 1328 iaStorV - ok
10:25:40.0736 1328 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
10:25:40.0743 1328 idsvc - ok
10:25:40.0758 1328 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
10:25:40.0759 1328 iirsp - ok
10:25:40.0834 1328 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
10:25:40.0841 1328 IKEEXT - ok
10:25:40.0995 1328 IntcAzAudAddService (0b21b66574e5478fa10cca2d36694c2d) C:\Windows\system32\drivers\RTKVHD64.sys
10:25:41.0013 1328 IntcAzAudAddService - ok
10:25:41.0098 1328 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
10:25:41.0099 1328 intelide - ok
10:25:41.0125 1328 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
10:25:41.0125 1328 intelppm - ok
10:25:41.0143 1328 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
10:25:41.0144 1328 IPBusEnum - ok
10:25:41.0192 1328 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:25:41.0193 1328 IpFilterDriver - ok
10:25:41.0226 1328 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
10:25:41.0231 1328 iphlpsvc - ok
10:25:41.0265 1328 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
10:25:41.0265 1328 IPMIDRV - ok
10:25:41.0296 1328 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
10:25:41.0297 1328 IPNAT - ok
10:25:41.0314 1328 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
10:25:41.0315 1328 IRENUM - ok
10:25:41.0331 1328 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
10:25:41.0332 1328 isapnp - ok
10:25:41.0367 1328 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
10:25:41.0369 1328 iScsiPrt - ok
10:25:41.0389 1328 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
10:25:41.0389 1328 kbdclass - ok
10:25:41.0417 1328 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
10:25:41.0417 1328 kbdhid - ok
10:25:41.0450 1328 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
10:25:41.0451 1328 KeyIso - ok
10:25:41.0464 1328 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
10:25:41.0465 1328 KSecDD - ok
10:25:41.0489 1328 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
10:25:41.0490 1328 KSecPkg - ok
10:25:41.0511 1328 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
10:25:41.0511 1328 ksthunk - ok
10:25:41.0555 1328 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
10:25:41.0558 1328 KtmRm - ok
10:25:41.0595 1328 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
10:25:41.0597 1328 LanmanServer - ok
10:25:41.0633 1328 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
10:25:41.0635 1328 LanmanWorkstation - ok
10:25:41.0672 1328 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
10:25:41.0673 1328 lltdio - ok
10:25:41.0709 1328 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
10:25:41.0712 1328 lltdsvc - ok
10:25:41.0734 1328 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
10:25:41.0735 1328 lmhosts - ok
10:25:41.0758 1328 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
10:25:41.0760 1328 LSI_FC - ok
10:25:41.0790 1328 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
10:25:41.0791 1328 LSI_SAS - ok
10:25:41.0799 1328 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
10:25:41.0800 1328 LSI_SAS2 - ok
10:25:41.0816 1328 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
10:25:41.0817 1328 LSI_SCSI - ok
10:25:41.0836 1328 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
10:25:41.0837 1328 luafv - ok
10:25:41.0878 1328 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
10:25:41.0880 1328 Mcx2Svc - ok
10:25:41.0893 1328 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
10:25:41.0894 1328 megasas - ok
10:25:41.0927 1328 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
10:25:41.0930 1328 MegaSR - ok
10:25:41.0931 1328 Microsoft Office Groove Audit Service - ok
10:25:41.0947 1328 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
10:25:41.0948 1328 MMCSS - ok
10:25:41.0956 1328 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
10:25:41.0956 1328 Modem - ok
10:25:42.0007 1328 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
10:25:42.0008 1328 monitor - ok
10:25:42.0045 1328 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\drivers\mouclass.sys
10:25:42.0046 1328 mouclass - ok
10:25:42.0059 1328 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
10:25:42.0059 1328 mouhid - ok
10:25:42.0094 1328 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
10:25:42.0095 1328 mountmgr - ok
10:25:42.0151 1328 MpFilter (94c66ededcdb6a126880472f9a704d8e) C:\Windows\system32\DRIVERS\MpFilter.sys
10:25:42.0153 1328 MpFilter - ok
10:25:42.0169 1328 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
10:25:42.0170 1328 mpio - ok
10:25:42.0183 1328 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
10:25:42.0183 1328 mpsdrv - ok
10:25:42.0241 1328 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
10:25:42.0248 1328 MpsSvc - ok
10:25:42.0282 1328 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
10:25:42.0284 1328 MRxDAV - ok
10:25:42.0323 1328 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
10:25:42.0324 1328 mrxsmb - ok
10:25:42.0366 1328 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:25:42.0367 1328 mrxsmb10 - ok
10:25:42.0376 1328 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:25:42.0376 1328 mrxsmb20 - ok
10:25:42.0421 1328 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
10:25:42.0421 1328 msahci - ok
10:25:42.0437 1328 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
10:25:42.0438 1328 msdsm - ok
10:25:42.0461 1328 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
10:25:42.0463 1328 MSDTC - ok
10:25:42.0493 1328 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
10:25:42.0493 1328 Msfs - ok
10:25:42.0503 1328 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
10:25:42.0503 1328 mshidkmdf - ok
10:25:42.0511 1328 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
10:25:42.0511 1328 msisadrv - ok
10:25:42.0541 1328 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
10:25:42.0543 1328 MSiSCSI - ok
10:25:42.0544 1328 msiserver - ok
10:25:42.0559 1328 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
10:25:42.0560 1328 MSKSSRV - ok
10:25:42.0636 1328 MsMpSvc (59faaf2c83c8169ea20f9e335e418907) C:\Program Files\Microsoft Security Client\MsMpEng.exe
10:25:42.0636 1328 MsMpSvc - ok
10:25:42.0647 1328 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
10:25:42.0648 1328 MSPCLOCK - ok
10:25:42.0660 1328 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
10:25:42.0661 1328 MSPQM - ok
10:25:42.0701 1328 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
10:25:42.0704 1328 MsRPC - ok
10:25:42.0752 1328 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
10:25:42.0752 1328 mssmbios - ok
10:25:42.0758 1328 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
10:25:42.0759 1328 MSTEE - ok
10:25:42.0770 1328 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
10:25:42.0771 1328 MTConfig - ok
10:25:42.0798 1328 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
10:25:42.0798 1328 Mup - ok
10:25:42.0844 1328 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
10:25:42.0848 1328 napagent - ok
10:25:42.0883 1328 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
10:25:42.0886 1328 NativeWifiP - ok
10:25:42.0928 1328 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
10:25:42.0936 1328 NDIS - ok
10:25:42.0947 1328 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
10:25:42.0948 1328 NdisCap - ok
10:25:42.0974 1328 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
10:25:42.0974 1328 NdisTapi - ok
10:25:43.0014 1328 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
10:25:43.0015 1328 Ndisuio - ok
10:25:43.0070 1328 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
10:25:43.0071 1328 NdisWan - ok
10:25:43.0106 1328 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
10:25:43.0106 1328 NDProxy - ok
10:25:43.0127 1328 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
10:25:43.0128 1328 NetBIOS - ok
10:25:43.0183 1328 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
10:25:43.0184 1328 NetBT - ok
10:25:43.0216 1328 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
10:25:43.0217 1328 Netlogon - ok
10:25:43.0252 1328 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
10:25:43.0256 1328 Netman - ok
10:25:43.0280 1328 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
10:25:43.0284 1328 netprofm - ok
10:25:43.0334 1328 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
10:25:43.0335 1328 NetTcpPortSharing - ok
10:25:43.0371 1328 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
10:25:43.0372 1328 nfrd960 - ok
10:25:43.0428 1328 NisDrv (91b4e0273d2f6c24ef845f2b41311289) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
10:25:43.0429 1328 NisDrv - ok
10:25:43.0497 1328 NisSrv (10a43829a9e606af3eef25a1c1665923) C:\Program Files\Microsoft Security Client\NisSrv.exe
10:25:43.0500 1328 NisSrv - ok
10:25:43.0557 1328 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
10:25:43.0560 1328 NlaSvc - ok
10:25:43.0566 1328 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
10:25:43.0567 1328 Npfs - ok
10:25:43.0583 1328 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
10:25:43.0583 1328 nsi - ok
10:25:43.0609 1328 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
10:25:43.0610 1328 nsiproxy - ok
10:25:43.0704 1328 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
10:25:43.0717 1328 Ntfs - ok
10:25:43.0785 1328 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
10:25:43.0786 1328 Null - ok
10:25:44.0356 1328 nvlddmkm (9c1996dd3c0469bc8933321f15709f5a) C:\Windows\system32\DRIVERS\nvlddmkm.sys
10:25:44.0464 1328 nvlddmkm - ok
10:25:44.0587 1328 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
10:25:44.0588 1328 nvraid - ok
10:25:44.0612 1328 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
10:25:44.0614 1328 nvstor - ok
10:25:44.0708 1328 NVSvc (dfda089bb2cd0ff7e789e2ef6ba1e4ba) C:\Windows\system32\nvvsvc.exe
10:25:44.0716 1328 NVSvc - ok
10:25:44.0846 1328 nvUpdatusService (e7818cd4fb51284c948d68a7a85a69b8) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
10:25:44.0864 1328 nvUpdatusService - ok
10:25:44.0955 1328 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
10:25:44.0956 1328 nv_agp - ok
10:25:45.0038 1328 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
10:25:45.0041 1328 odserv - ok
10:25:45.0053 1328 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
10:25:45.0054 1328 ohci1394 - ok
10:25:45.0086 1328 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:25:45.0088 1328 ose - ok
10:25:45.0125 1328 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
10:25:45.0126 1328 p2pimsvc - ok
10:25:45.0151 1328 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
10:25:45.0155 1328 p2psvc - ok
10:25:45.0175 1328 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
10:25:45.0176 1328 Parport - ok
10:25:45.0211 1328 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
10:25:45.0212 1328 partmgr - ok
10:25:45.0234 1328 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
10:25:45.0236 1328 PcaSvc - ok
10:25:45.0277 1328 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
10:25:45.0279 1328 pci - ok
10:25:45.0296 1328 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
10:25:45.0297 1328 pciide - ok
10:25:45.0313 1328 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
10:25:45.0315 1328 pcmcia - ok
10:25:45.0323 1328 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
10:25:45.0323 1328 pcw - ok
10:25:45.0360 1328 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
10:25:45.0363 1328 PEAUTH - ok
10:25:45.0435 1328 PeerDistSvc (b9b0a4299dd2d76a4243f75fd54dc680) C:\Windows\system32\peerdistsvc.dll
10:25:45.0447 1328 PeerDistSvc - ok
10:25:45.0506 1328 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
10:25:45.0508 1328 PerfHost - ok
10:25:45.0646 1328 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
10:25:45.0658 1328 pla - ok
10:25:45.0720 1328 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
10:25:45.0724 1328 PlugPlay - ok
10:25:45.0745 1328 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
10:25:45.0746 1328 PNRPAutoReg - ok
10:25:45.0766 1328 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
10:25:45.0767 1328 PNRPsvc - ok
10:25:45.0870 1328 Point64 (b23f79e41e30ed500586151a9ef27d8f) C:\Windows\system32\DRIVERS\point64.sys
10:25:45.0870 1328 Point64 - ok
10:25:45.0918 1328 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
10:25:45.0922 1328 PolicyAgent - ok
10:25:45.0945 1328 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
10:25:45.0947 1328 Power - ok
10:25:45.0985 1328 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
10:25:45.0986 1328 PptpMiniport - ok
10:25:45.0998 1328 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
10:25:45.0999 1328 Processor - ok
10:25:46.0023 1328 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
10:25:46.0025 1328 ProfSvc - ok
10:25:46.0058 1328 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
10:25:46.0059 1328 ProtectedStorage - ok
10:25:46.0116 1328 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
10:25:46.0117 1328 Psched - ok
10:25:46.0201 1328 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
10:25:46.0213 1328 ql2300 - ok
10:25:46.0300 1328 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
10:25:46.0301 1328 ql40xx - ok
10:25:46.0332 1328 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
10:25:46.0333 1328 QWAVE - ok
10:25:46.0353 1328 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
10:25:46.0353 1328 QWAVEdrv - ok
10:25:46.0391 1328 RAMDriv (a6c20301f2c0424f5d21166ff44bf61b) C:\Windows\system32\DRIVERS\ramdriv.sys
10:25:46.0392 1328 RAMDriv - ok
10:25:46.0440 1328 RAMDrivService - ok
10:25:46.0446 1328 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
10:25:46.0447 1328 RasAcd - ok
10:25:46.0482 1328 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
10:25:46.0482 1328 RasAgileVpn - ok
10:25:46.0507 1328 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
10:25:46.0509 1328 RasAuto - ok
10:25:46.0559 1328 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
10:25:46.0560 1328 Rasl2tp - ok
10:25:46.0589 1328 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
10:25:46.0593 1328 RasMan - ok
10:25:46.0607 1328 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
10:25:46.0608 1328 RasPppoe - ok
10:25:46.0618 1328 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
10:25:46.0618 1328 RasSstp - ok
10:25:46.0659 1328 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
10:25:46.0660 1328 rdbss - ok
10:25:46.0671 1328 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
10:25:46.0671 1328 rdpbus - ok
10:25:46.0685 1328 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
10:25:46.0685 1328 RDPCDD - ok
10:25:46.0739 1328 RDPDR (1b6163c503398b23ff8b939c67747683) C:\Windows\system32\drivers\rdpdr.sys
10:25:46.0740 1328 RDPDR - ok
10:25:46.0769 1328 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
10:25:46.0769 1328 RDPENCDD - ok
10:25:46.0791 1328 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
10:25:46.0791 1328 RDPREFMP - ok
10:25:46.0836 1328 RDPWD (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys
10:25:46.0838 1328 RDPWD - ok
10:25:46.0871 1328 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
10:25:46.0872 1328 rdyboost - ok
10:25:46.0899 1328 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
10:25:46.0900 1328 RemoteAccess - ok
10:25:46.0924 1328 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
10:25:46.0926 1328 RemoteRegistry - ok
10:25:46.0967 1328 RimUsb (71b48ddaf5e9c2b40e64de5c405f5aac) C:\Windows\system32\Drivers\RimUsb_AMD64.sys
10:25:46.0968 1328 RimUsb - ok
10:25:47.0011 1328 RimVSerPort (c903d49655b4aae46673f0aaa6be0f58) C:\Windows\system32\DRIVERS\RimSerial_AMD64.sys
10:25:47.0011 1328 RimVSerPort - ok
10:25:47.0038 1328 ROOTMODEM (388d3dd1a6457280f3badba9f3acd6b1) C:\Windows\system32\Drivers\RootMdm.sys
10:25:47.0038 1328 ROOTMODEM - ok
10:25:47.0061 1328 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
10:25:47.0061 1328 RpcEptMapper - ok
10:25:47.0068 1328 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
10:25:47.0068 1328 RpcLocator - ok
10:25:47.0125 1328 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
10:25:47.0127 1328 RpcSs - ok
10:25:47.0159 1328 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
10:25:47.0160 1328 rspndr - ok
10:25:47.0208 1328 RTL8167 (ee082e06a82ff630351d1e0ebbd3d8d0) C:\Windows\system32\DRIVERS\Rt64win7.sys
10:25:47.0208 1328 RTL8167 - ok
10:25:47.0251 1328 s3cap (e60c0a09f997826c7627b244195ab581) C:\Windows\system32\drivers\vms3cap.sys
10:25:47.0252 1328 s3cap - ok
10:25:47.0299 1328 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
10:25:47.0300 1328 SamSs - ok
10:25:47.0313 1328 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
10:25:47.0314 1328 sbp2port - ok
10:25:47.0341 1328 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
10:25:47.0343 1328 SCardSvr - ok
10:25:47.0370 1328 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
10:25:47.0370 1328 scfilter - ok
10:25:47.0444 1328 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
10:25:47.0453 1328 Schedule - ok
10:25:47.0490 1328 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
10:25:47.0491 1328 SCPolicySvc - ok
10:25:47.0527 1328 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
10:25:47.0529 1328 SDRSVC - ok
10:25:47.0575 1328 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
10:25:47.0575 1328 secdrv - ok
10:25:47.0581 1328 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
10:25:47.0582 1328 seclogon - ok
10:25:47.0607 1328 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
10:25:47.0608 1328 SENS - ok
10:25:47.0624 1328 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
10:25:47.0625 1328 SensrSvc - ok
10:25:47.0637 1328 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
10:25:47.0638 1328 Serenum - ok
10:25:47.0650 1328 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
10:25:47.0650 1328 Serial - ok
10:25:47.0701 1328 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
10:25:47.0701 1328 sermouse - ok
10:25:47.0737 1328 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
10:25:47.0739 1328 SessionEnv - ok
10:25:47.0749 1328 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
10:25:47.0750 1328 sffdisk - ok
10:25:47.0759 1328 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
10:25:47.0760 1328 sffp_mmc - ok
10:25:47.0768 1328 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
10:25:47.0768 1328 sffp_sd - ok
10:25:47.0789 1328 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
10:25:47.0790 1328 sfloppy - ok
10:25:47.0816 1328 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
10:25:47.0819 1328 SharedAccess - ok
10:25:47.0873 1328 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
10:25:47.0876 1328 ShellHWDetection - ok
10:25:47.0912 1328 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
10:25:47.0913 1328 SiSRaid2 - ok
10:25:47.0920 1328 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
10:25:47.0921 1328 SiSRaid4 - ok
10:25:47.0985 1328 SkypeUpdate (db0405d9aad62f0762e0876ac142b7e1) C:\Program Files (x86)\Skype\Updater\Updater.exe
10:25:47.0987 1328 SkypeUpdate - ok
10:25:48.0012 1328 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
10:25:48.0014 1328 Smb - ok
10:25:48.0049 1328 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
10:25:48.0050 1328 SNMPTRAP - ok
10:25:48.0063 1328 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
10:25:48.0063 1328 spldr - ok
10:25:48.0109 1328 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
10:25:48.0114 1328 Spooler - ok
10:25:48.0290 1328 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
10:25:48.0318 1328 sppsvc - ok
10:25:48.0374 1328 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
10:25:48.0375 1328 sppuinotify - ok
10:25:48.0439 1328 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
10:25:48.0441 1328 srv - ok
10:25:48.0467 1328 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
10:25:48.0469 1328 srv2 - ok
10:25:48.0503 1328 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
10:25:48.0504 1328 srvnet - ok
10:25:48.0549 1328 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
10:25:48.0551 1328 SSDPSRV - ok
10:25:48.0569 1328 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
10:25:48.0570 1328 SstpSvc - ok
10:25:48.0608 1328 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
10:25:48.0609 1328 stexstor - ok
10:25:48.0679 1328 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
10:25:48.0684 1328 stisvc - ok
10:25:48.0739 1328 storflt (7785dc213270d2fc066538daf94087e7) C:\Windows\system32\drivers\vmstorfl.sys
10:25:48.0739 1328 storflt - ok
10:25:48.0755 1328 StorSvc (c40841817ef57d491f22eb103da587cc) C:\Windows\system32\storsvc.dll
10:25:48.0756 1328 StorSvc - ok
10:25:48.0761 1328 storvsc (d34e4943d5ac096c8edeebfd80d76e23) C:\Windows\system32\drivers\storvsc.sys
10:25:48.0762 1328 storvsc - ok
10:25:48.0769 1328 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
10:25:48.0769 1328 swenum - ok
10:25:48.0818 1328 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
10:25:48.0823 1328 swprv - ok
10:25:48.0925 1328 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
10:25:48.0940 1328 SysMain - ok
10:25:49.0024 1328 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
10:25:49.0025 1328 TabletInputService - ok
10:25:49.0074 1328 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
10:25:49.0078 1328 TapiSrv - ok
10:25:49.0103 1328 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
10:25:49.0104 1328 TBS - ok
10:25:49.0209 1328 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
10:25:49.0225 1328 Tcpip - ok
10:25:49.0373 1328 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
10:25:49.0378 1328 TCPIP6 - ok
10:25:49.0439 1328 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
10:25:49.0440 1328 tcpipreg - ok
10:25:49.0456 1328 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
10:25:49.0457 1328 TDPIPE - ok
10:25:49.0499 1328 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
10:25:49.0500 1328 TDTCP - ok
10:25:49.0554 1328 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
10:25:49.0554 1328 tdx - ok
10:25:49.0583 1328 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
10:25:49.0584 1328 TermDD - ok
10:25:49.0628 1328 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
10:25:49.0634 1328 TermService - ok
10:25:49.0658 1328 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
10:25:49.0659 1328 Themes - ok
10:25:49.0671 1328 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
10:25:49.0672 1328 THREADORDER - ok
10:25:49.0691 1328 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
10:25:49.0692 1328 TrkWks - ok
10:25:49.0748 1328 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
10:25:49.0749 1328 TrustedInstaller - ok
10:25:49.0782 1328 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
10:25:49.0782 1328 tssecsrv - ok
10:25:49.0831 1328 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
10:25:49.0832 1328 TsUsbFlt - ok
10:25:49.0844 1328 ttmd - ok
10:25:49.0886 1328 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
10:25:49.0887 1328 tunnel - ok
10:25:49.0969 1328 tvnserver (aaf458cc200326bef602b5339400bf86) C:\Program Files (x86)\TightVNC\tvnserver.exe
10:25:49.0976 1328 tvnserver - ok
10:25:49.0997 1328 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
10:25:49.0998 1328 uagp35 - ok
10:25:50.0057 1328 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
10:25:50.0060 1328 udfs - ok
10:25:50.0084 1328 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
10:25:50.0085 1328 UI0Detect - ok
10:25:50.0125 1328 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
10:25:50.0126 1328 uliagpkx - ok
10:25:50.0201 1328 UltraMonUtility (694bcf23662f97d987cf4c6739c35f8b) C:\Program Files (x86)\Common Files\Realtime Soft\UltraMonMirrorDrv\x64\UltraMonUtility.sys
10:25:50.0201 1328 UltraMonUtility - ok
10:25:50.0224 1328 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
10:25:50.0224 1328 umbus - ok
10:25:50.0243 1328 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
10:25:50.0244 1328 UmPass - ok
10:25:50.0288 1328 UmRdpService (a293dcd756d04d8492a750d03b9a297c) C:\Windows\System32\umrdp.dll
10:25:50.0290 1328 UmRdpService - ok
10:25:50.0315 1328 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
10:25:50.0319 1328 upnphost - ok
10:25:50.0356 1328 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys
10:25:50.0358 1328 usbaudio - ok
10:25:50.0395 1328 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
10:25:50.0395 1328 usbccgp - ok
10:25:50.0440 1328 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
10:25:50.0441 1328 usbcir - ok
10:25:50.0452 1328 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
10:25:50.0453 1328 usbehci - ok
10:25:50.0492 1328 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
10:25:50.0493 1328 usbhub - ok
10:25:50.0512 1328 usbohci (58e546bbaf87664fc57e0f6081e4f609) C:\Windows\system32\DRIVERS\usbohci.sys
10:25:50.0513 1328 usbohci - ok
10:25:50.0539 1328 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
10:25:50.0539 1328 usbprint - ok
10:25:50.0578 1328 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
10:25:50.0579 1328 usbscan - ok
10:25:50.0617 1328 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\drivers\USBSTOR.SYS
10:25:50.0617 1328 USBSTOR - ok
10:25:50.0652 1328 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\DRIVERS\usbuhci.sys
10:25:50.0652 1328 usbuhci - ok
10:25:50.0672 1328 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
10:25:50.0673 1328 UxSms - ok
10:25:50.0708 1328 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
10:25:50.0708 1328 VaultSvc - ok
10:25:50.0750 1328 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
10:25:50.0751 1328 vdrvroot - ok
10:25:50.0800 1328 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
10:25:50.0805 1328 vds - ok
10:25:50.0837 1328 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
10:25:50.0838 1328 vga - ok
10:25:50.0853 1328 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
10:25:50.0854 1328 VgaSave - ok
10:25:50.0876 1328 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
10:25:50.0878 1328 vhdmp - ok
10:25:50.0887 1328 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
10:25:50.0901 1328 viaide - ok
10:25:50.0934 1328 vmbus (86ea3e79ae350fea5331a1303054005f) C:\Windows\system32\drivers\vmbus.sys
10:25:50.0936 1328 vmbus - ok
10:25:50.0967 1328 VMBusHID (7de90b48f210d29649380545db45a187) C:\Windows\system32\drivers\VMBusHID.sys
10:25:50.0967 1328 VMBusHID - ok
10:25:50.0983 1328 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
10:25:50.0984 1328 volmgr - ok
10:25:51.0026 1328 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
10:25:51.0030 1328 volmgrx - ok
10:25:51.0049 1328 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
10:25:51.0052 1328 volsnap - ok
10:25:51.0080 1328 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
10:25:51.0081 1328 vsmraid - ok
10:25:51.0175 1328 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
10:25:51.0189 1328 VSS - ok
10:25:51.0253 1328 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
10:25:51.0254 1328 vwifibus - ok
10:25:51.0302 1328 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
10:25:51.0306 1328 W32Time - ok
10:25:51.0317 1328 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
10:25:51.0317 1328 WacomPen - ok
10:25:51.0358 1328 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
10:25:51.0358 1328 WANARP - ok
10:25:51.0360 1328 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
10:25:51.0360 1328 Wanarpv6 - ok
10:25:51.0464 1328 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
10:25:51.0475 1328 WatAdminSvc - ok
10:25:51.0603 1328 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
10:25:51.0616 1328 wbengine - ok
10:25:51.0692 1328 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
10:25:51.0694 1328 WbioSrvc - ok
10:25:51.0753 1328 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
10:25:51.0757 1328 wcncsvc - ok
10:25:51.0772 1328 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
10:25:51.0773 1328 WcsPlugInService - ok
10:25:51.0805 1328 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
10:25:51.0805 1328 Wd - ok
10:25:51.0837 1328 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
10:25:51.0842 1328 Wdf01000 - ok
10:25:51.0859 1328 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
10:25:51.0860 1328 WdiServiceHost - ok
10:25:51.0862 1328 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
10:25:51.0863 1328 WdiSystemHost - ok
10:25:51.0883 1328 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
10:25:51.0886 1328 WebClient - ok
10:25:51.0911 1328 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
10:25:51.0913 1328 Wecsvc - ok
10:25:51.0926 1328 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
10:25:51.0927 1328 wercplsupport - ok
10:25:51.0944 1328 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
10:25:51.0945 1328 WerSvc - ok
10:25:51.0976 1328 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
10:25:51.0976 1328 WfpLwf - ok
10:25:51.0990 1328 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
10:25:51.0991 1328 WIMMount - ok
10:25:52.0008 1328 WinDefend - ok
10:25:52.0011 1328 WinHttpAutoProxySvc - ok
10:25:52.0044 1328 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
10:25:52.0047 1328 Winmgmt - ok
10:25:52.0155 1328 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
10:25:52.0172 1328 WinRM - ok
10:25:52.0274 1328 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
10:25:52.0281 1328 Wlansvc - ok
10:25:52.0332 1328 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
10:25:52.0332 1328 WmiAcpi - ok
10:25:52.0394 1328 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
10:25:52.0395 1328 wmiApSrv - ok
10:25:52.0436 1328 WMPNetworkSvc - ok
10:25:52.0450 1328 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
10:25:52.0451 1328 WPCSvc - ok
10:25:52.0495 1328 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
10:25:52.0497 1328 WPDBusEnum - ok
10:25:52.0519 1328 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
10:25:52.0519 1328 ws2ifsl - ok
10:25:52.0554 1328 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
10:25:52.0556 1328 wscsvc - ok
10:25:52.0557 1328 WSearch - ok
10:25:52.0673 1328 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
10:25:52.0694 1328 wuauserv - ok
10:25:52.0781 1328 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
10:25:52.0781 1328 WudfPf - ok
10:25:52.0807 1328 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
10:25:52.0809 1328 WUDFRd - ok
10:25:52.0848 1328 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
10:25:52.0849 1328 wudfsvc - ok
10:25:52.0875 1328 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
10:25:52.0878 1328 WwanSvc - ok
10:25:53.0010 1328 YahooAUService (dd0042f0c3b606a6a8b92d49afb18ad6) C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
10:25:53.0015 1328 YahooAUService - ok
10:25:53.0048 1328 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
10:25:53.0145 1328 \Device\Harddisk0\DR0 - ok
10:25:53.0147 1328 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk1\DR1
10:25:53.0276 1328 \Device\Harddisk1\DR1 - ok
10:25:53.0277 1328 Boot (0x1200) (0fe6b2d8a6dbe77162773c6e296d1dfb) \Device\Harddisk0\DR0\Partition0
10:25:53.0278 1328 \Device\Harddisk0\DR0\Partition0 - ok
10:25:53.0280 1328 Boot (0x1200) (adeb0307f32404c5c0de738c5ff610c8) \Device\Harddisk1\DR1\Partition0
10:25:53.0280 1328 \Device\Harddisk1\DR1\Partition0 - ok
10:25:53.0281 1328
============================================================
10:25:53.0281 1328 Scan finished
10:25:53.0281 1328
============================================================
10:25:53.0285 1344 Detected object count: 0
10:25:53.0285 1344 Actual detected object count: 0


2)Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

NO THREATS FOUND


3)Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-05-14 11:26:08
-----------------------------
11:26:08.051 OS Version: Windows x64 6.1.7601 Service Pack 1
11:26:08.051 Number of processors: 12 586 0x2C02
11:26:08.052 ComputerName:
UserName:
11:26:11.431 Initialize success
11:26:51.966 AVAST engine defs: 12051400
11:26:56.653 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
11:26:56.655 Disk 0 Vendor: Hitachi_ JP4O Size: 953869MB BusType: 8
11:26:56.656 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IAAStorageDevice-2
11:26:56.658 Disk 1 Vendor: Intel___ 1.0. Size: 1907734MB BusType: 8
11:26:56.682 Disk 0 MBR read successfully
11:26:56.692 Disk 0 MBR scan
11:26:56.695 Disk 0 Windows 7 default MBR code
11:26:56.713 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 953867 MB offset 2048
11:26:56.725 Disk 0 scanning C:\Windows\system32\drivers
11:27:03.841 Service scanning
11:27:18.829 Modules scanning
11:27:18.833 Disk 0 trace - called modules:
11:27:18.839 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
11:27:18.842 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8014ac0790]
11:27:18.845 3 CLASSPNP.SYS[fffff8800185143f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa801485d050]
11:27:23.085 AVAST engine scan C:\Windows
11:27:25.806 AVAST engine scan C:\Windows\system32
11:29:25.760 AVAST engine scan C:\Windows\system32\drivers
11:29:40.415 AVAST engine scan C:\Users\nricher
11:35:46.757 AVAST engine scan C:\ProgramData
11:36:15.797 Scan finished successfully
11:42:40.503 Disk 0 MBR has been saved successfully to "C:\MBR.dat"
11:42:40.506 The log file has been saved successfully to "C:\aswMBR.txt"

Edited by Yankees1, 14 May 2012 - 12:41 PM.


#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:34 PM

Posted 14 May 2012 - 01:29 PM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

#5 Yankees1

Yankees1
  • Topic Starter

  • Members
  • 107 posts
  • OFFLINE
  •  
  • Local time:03:34 PM

Posted 14 May 2012 - 02:46 PM

1) Posted Today, 01:29 PM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Malwarebytes Anti-Malware (Trial) 1.61.0.1400
www.malwarebytes.org

Database version: v2012.05.14.05

Windows 7 Service Pack 1 x64 NTFS (Safe Mode/Networking)
Internet Explorer 9.0.8112.16421
:: TRADE1 [administrator]

Protection: Disabled

5/14/2012 2:55:30 PM
mbam-log-2012-05-14 (14-55-30).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Shuriken | PUP | PUM
Scan options disabled: Heuristics/Extra | P2P
Objects scanned: 154781
Time elapsed: 35 minute(s), 34 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)


Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

2) Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.


MiniToolBox by Farbar Version: 18-01-2012
Ran by nricher (administrator) on 14-05-2012 at 15:35:15
Microsoft Windows 7 Professional Service Pack 1 (X64)
Boot Mode: Nerwork
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================



========================= IP Configuration: ================================

Realtek PCIe GBE Family Controller = Local Area Connection (Connected)
Realtek PCIe GBE Family Controller = Local Area Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled taskoffload=disabled dhcpmediasense=disabled mldversion=version1


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Trade1
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller #2
Physical Address. . . . . . . . . : 00-1F-BC-00-C5-34
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : 00-1F-BC-00-C5-35
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::ed9b:2ecd:28a6:aa17%10(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.11.23(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Monday, May 14, 2012 2:52:19 PM
Lease Expires . . . . . . . . . . : Tuesday, May 15, 2012 2:52:18 PM
Default Gateway . . . . . . . . . : 192.168.11.1
DHCP Server . . . . . . . . . . . : 192.168.11.1
DHCPv6 IAID . . . . . . . . . . . : 234889148
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-D2-ED-47-00-1F-BC-00-C5-35
DNS Servers . . . . . . . . . . . : 192.168.11.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{692F7D0F-334E-4FC8-9C51-7F2372882DA6}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{E48F228E-38F2-4215-9985-79B0F6ED6AFE}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: DD-WRT
Address: 192.168.11.1

Name: google.com
Addresses: 74.125.226.192
74.125.226.199
74.125.226.197
74.125.226.193
74.125.226.196
74.125.226.195
74.125.226.200
74.125.226.201
74.125.226.194
74.125.226.198
74.125.226.206


Pinging google.com [74.125.226.206] with 32 bytes of data:
Reply from 74.125.226.206: bytes=32 time=11ms TTL=55
Reply from 74.125.226.206: bytes=32 time=15ms TTL=55

Ping statistics for 74.125.226.206:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 11ms, Maximum = 15ms, Average = 13ms
Server: DD-WRT
Address: 192.168.11.1

Name: yahoo.com
Addresses: 209.191.122.70
72.30.38.140
98.139.183.24


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=205ms TTL=52
Reply from 98.139.183.24: bytes=32 time=163ms TTL=52

Ping statistics for 98.139.183.24:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 163ms, Maximum = 205ms, Average = 184ms
Server: DD-WRT
Address: 192.168.11.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
12...00 1f bc 00 c5 34 ......Realtek PCIe GBE Family Controller #2
10...00 1f bc 00 c5 35 ......Realtek PCIe GBE Family Controller
1...........................Software Loopback Interface 1
11...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
15...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.11.1 192.168.11.23 10
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.11.0 255.255.255.0 On-link 192.168.11.23 266
192.168.11.23 255.255.255.255 On-link 192.168.11.23 266
192.168.11.255 255.255.255.255 On-link 192.168.11.23 266
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.11.23 266
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.11.23 266
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
10 266 fe80::/64 On-link
10 266 fe80::ed9b:2ecd:28a6:aa17/128
On-link
1 306 ff00::/8 On-link
10 266 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (05/14/2012 02:52:50 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (05/14/2012 02:50:21 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (05/14/2012 01:24:19 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (05/14/2012 11:49:38 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (05/14/2012 10:26:33 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (05/14/2012 10:24:44 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (05/14/2012 10:16:39 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (05/14/2012 10:16:39 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (05/14/2012 09:58:58 AM) (Source: MsiInstaller) (User: )
Description: Product: Guardian -- Error 2771.Upgrade of feature Server has a missing component.

Error: (05/14/2012 09:52:12 AM) (Source: MsiInstaller) (User: nricher)nricher
Description: Product: Sophos Virus Removal Tool -- Error 1606.Could not access network location data.


System errors:
=============
Error: (05/14/2012 03:35:08 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (05/14/2012 03:35:08 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (05/14/2012 03:35:08 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (05/14/2012 03:34:00 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (05/14/2012 03:34:00 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (05/14/2012 03:34:00 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (05/14/2012 03:30:08 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (05/14/2012 03:30:08 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (05/14/2012 03:30:08 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (05/14/2012 03:28:56 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
Adobe Flash Player 11 ActiveX 64-bit (Version: 11.1.102.62)
Adobe Reader 9.4.4 (Version: 9.4.4)
BlackBerry Desktop Software 6.1 (Version: 6.1.0.35)
Convert (Version: 4.10)
ESET Online Scanner v3
Guardian (Version: 7.9.0.16)
Intel® Rapid Storage Technology (Version: 10.1.0.1008)
Just Great Software EditPad Lite 6.6.4 (Version: 6.6.4)
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
MetaStock Professional 11.0
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft IntelliPoint 8.0 (Version: 8.01.249.0)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Security Client (Version: 4.0.1526.0)
Microsoft Security Essentials (Version: 4.0.1526.0)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
NVIDIA Control Panel 275.33 (Version: 275.33)
NVIDIA Graphics Driver 275.33 (Version: 275.33)
NVIDIA Install Application (Version: 2.275.78.0)
NVIDIA PhysX (Version: 9.10.0514)
NVIDIA PhysX System Software 9.10.0514 (Version: 9.10.0514)
NVIDIA Update 1.3.5 (Version: 1.3.5)
NVIDIA Update Components (Version: 1.3.5)
QuoteCenter (Version: 8.5.1)
Realtek Ethernet Controller Driver (Version: 7.37.1229.2010)
Realtek High Definition Audio Driver (Version: 6.0.1.6278)
SIW version 2010.07.14 (Version: 2010.07.14)
Skype Click to Call (Version: 5.9.9216)
Skype™ 5.8 (Version: 5.8.158)
Sophos Virus Removal Tool (Version: 2.0)
thinkorswim from TD AMERITRADE
TightVNC 2.0.4 (Version: 2.0.4)
TT Messaging (Version: 4.2.6.5)
UltraMon (Version: 3.1.0)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2598290) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
X_STUDY (Version: 7.7.1.0)
X_TRADER / TT_TRADER (Version: 7.11.2.105)
XTAPI (Version: 7.7.5.2)
Yahoo! BrowserPlus 2.9.8
Yahoo! Messenger
Yahoo! Software Update
Yahoo! Toolbar

========================= Memory info: ===================================

Percentage of memory in use: 11%
Total physical RAM: 24567.14 MB
Available physical RAM: 21806.32 MB
Total Pagefile: 49132.48 MB
Available Pagefile: 46464.11 MB
Total Virtual: 4095.88 MB
Available Virtual: 3970.61 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:931.51 GB) (Free:631.81 GB) NTFS
3 Drive e: (Raid) (Fixed) (Total:1863.02 GB) (Free:1826.4 GB) NTFS

========================= Users: ========================================

User accounts for \\TRADE1

Administrator Guest

UpdatusUser


**** End of log ****

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:34 PM

Posted 14 May 2012 - 05:27 PM

Please re run malwarebytes in normal mode and post the log

good luck

#7 Yankees1

Yankees1
  • Topic Starter

  • Members
  • 107 posts
  • OFFLINE
  •  
  • Local time:03:34 PM

Posted 14 May 2012 - 05:58 PM

1) Please re run malwarebytes in normal mode and post the log

good luck

I already ran in norman mode but I did not have a chance to post until now...Thanks

Malwarebytes Anti-Malware (Trial) 1.61.0.1400
www.malwarebytes.org

Database version: v2012.05.14.05

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
:: TRADE1 [administrator]

Protection: Enabled

5/14/2012 4:23:31 PM
mbam-log-2012-05-14 (16-23-31).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Shuriken | PUP | PUM
Scan options disabled: Heuristics/Extra | P2P
Objects scanned: 163014
Time elapsed: 36 minute(s), 49 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:34 PM

Posted 14 May 2012 - 06:00 PM

Do you still have issues?

#9 Yankees1

Yankees1
  • Topic Starter

  • Members
  • 107 posts
  • OFFLINE
  •  
  • Local time:03:34 PM

Posted 15 May 2012 - 06:39 AM

Looks good so far. I am still testing. Will update you again soon. Thank you for all the help.

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:34 PM

Posted 15 May 2012 - 09:03 AM

Download

TFC


Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Update your antivirus frequently,do not click on suspicious links

Safe surfing :)

#11 Yankees1

Yankees1
  • Topic Starter

  • Members
  • 107 posts
  • OFFLINE
  •  
  • Local time:03:34 PM

Posted 15 May 2012 - 10:49 AM

1) Download

TFC


Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Update your antivirus frequently,do not click on suspicious links

Safe surfing



I downloaded and ran TFC and also created new restore points. Everything seems to be running fine for the moment however two desktop.ini icons where created.

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:34 PM

Posted 15 May 2012 - 11:05 AM

Open your C drive

On top click on Organize-Folder & search options

Click on view tab

In advanced settings

Make sure to check mark DON'T show hidden files

check mark HIDE protected operating system files

click ok

Desktop.ini are legitimate system files

good luck

Edited by narenxp, 15 May 2012 - 11:05 AM.


#13 Yankees1

Yankees1
  • Topic Starter

  • Members
  • 107 posts
  • OFFLINE
  •  
  • Local time:03:34 PM

Posted 15 May 2012 - 11:05 AM

I hide the files by going to Folder Options > Views > Hide protected operating system files (Recommended)and checking this option.

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:34 PM

Posted 15 May 2012 - 11:07 AM

We posted that at sametime :thumbup2:

safe surfing :thumbsup:

#15 Yankees1

Yankees1
  • Topic Starter

  • Members
  • 107 posts
  • OFFLINE
  •  
  • Local time:03:34 PM

Posted 15 May 2012 - 11:13 AM

Thanks again. I will let you know if I have any further issues.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users