Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Joining the long line of people who have a pop up in the lower right hand corner of the screen as well as occasional redirect.


  • Please log in to reply
15 replies to this topic

#1 MurseMan

MurseMan

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:01:39 AM

Posted 02 June 2012 - 08:09 AM

I've been getting a popup in the lower right hand corner of my screen as well as occasional redirect to random sites. I am not very computer savy (probably how I got the virus) but should be able to follow instructions if someone is willing to help.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:39 AM

Posted 02 June 2012 - 10:29 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)


Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

Edited by narenxp, 02 June 2012 - 10:29 AM.


#3 MurseMan

MurseMan
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:01:39 AM

Posted 02 June 2012 - 11:29 AM

Log from TDSS killer


12:24:37.0841 4052 TDSS rootkit removing tool 2.7.36.0 May 21 2012 16:40:16
12:24:38.0146 4052 ============================================================
12:24:38.0151 4052 Current date / time: 2012/06/02 12:24:38.0146
12:24:38.0151 4052 SystemInfo:
12:24:38.0151 4052
12:24:38.0151 4052 OS Version: 6.1.7600 ServicePack: 0.0
12:24:38.0151 4052 Product type: Workstation
12:24:38.0151 4052 ComputerName: THESEQUEL
12:24:38.0151 4052 UserName: Lachlan
12:24:38.0151 4052 Windows directory: C:\Windows
12:24:38.0151 4052 System windows directory: C:\Windows
12:24:38.0151 4052 Running under WOW64
12:24:38.0151 4052 Processor architecture: Intel x64
12:24:38.0151 4052 Number of processors: 2
12:24:38.0151 4052 Page size: 0x1000
12:24:38.0151 4052 Boot type: Normal boot
12:24:38.0151 4052 ============================================================
12:24:39.0083 4052 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:24:39.0093 4052 ============================================================
12:24:39.0093 4052 \Device\Harddisk0\DR0:
12:24:39.0098 4052 MBR partitions:
12:24:39.0098 4052 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
12:24:39.0098 4052 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x2346A800
12:24:39.0098 4052 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x234CE800, BlocksNum 0x1F2C000
12:24:39.0098 4052 \Device\Harddisk0\DR0\Partition3: MBR, Type 0xC, StartLBA 0x253FA800, BlocksNum 0x33AB0
12:24:39.0098 4052 ============================================================
12:24:39.0118 4052 C: <-> \Device\Harddisk0\DR0\Partition1
12:24:39.0163 4052 D: <-> \Device\Harddisk0\DR0\Partition2
12:24:39.0163 4052 ============================================================
12:24:39.0163 4052 Initialize success
12:24:39.0163 4052 ============================================================
12:25:07.0868 6924 ============================================================
12:25:07.0868 6924 Scan started
12:25:07.0868 6924 Mode: Manual; TDLFS;
12:25:07.0868 6924 ============================================================
12:25:08.0590 6924 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
12:25:08.0605 6924 1394ohci - ok
12:25:08.0695 6924 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
12:25:08.0710 6924 ACPI - ok
12:25:08.0755 6924 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
12:25:08.0765 6924 AcpiPmi - ok
12:25:08.0955 6924 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
12:25:08.0960 6924 AdobeARMservice - ok
12:25:09.0145 6924 AdobeFlashPlayerUpdateSvc (76d5a3d2a50402a0b9b6ed13c4371e79) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
12:25:09.0155 6924 AdobeFlashPlayerUpdateSvc - ok
12:25:09.0289 6924 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
12:25:09.0304 6924 adp94xx - ok
12:25:09.0366 6924 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
12:25:09.0376 6924 adpahci - ok
12:25:09.0426 6924 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
12:25:09.0436 6924 adpu320 - ok
12:25:09.0501 6924 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
12:25:09.0501 6924 AeLookupSvc - ok
12:25:09.0586 6924 AERTFilters (d1e343bc00136ce03c4d403194d06a80) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
12:25:09.0591 6924 AERTFilters - ok
12:25:09.0711 6924 AFD (db9d6c6b2cd95a9ca414d045b627422e) C:\Windows\system32\drivers\afd.sys
12:25:09.0726 6924 AFD - ok
12:25:09.0771 6924 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
12:25:09.0781 6924 agp440 - ok
12:25:09.0841 6924 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
12:25:09.0846 6924 ALG - ok
12:25:09.0916 6924 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
12:25:09.0926 6924 aliide - ok
12:25:09.0976 6924 AMD External Events Utility (f4f8d818f8bb7eafb7b9a259d6cbfe68) C:\Windows\system32\atiesrxx.exe
12:25:09.0986 6924 AMD External Events Utility - ok
12:25:10.0016 6924 AMD FUEL Service - ok
12:25:10.0076 6924 AMD Reservation Manager (dd27f6c3de9bfe50635c721e09edc5dd) C:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe
12:25:10.0086 6924 AMD Reservation Manager - ok
12:25:10.0126 6924 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
12:25:10.0136 6924 amdide - ok
12:25:10.0186 6924 amdiox64 (6a2eeb0c4133b20773bb3dd0b7b377b4) C:\Windows\system32\DRIVERS\amdiox64.sys
12:25:10.0191 6924 amdiox64 - ok
12:25:10.0261 6924 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
12:25:10.0271 6924 AmdK8 - ok
12:25:10.0948 6924 amdkmdag (e93230b4214a90854be7f27e61c1e8fd) C:\Windows\system32\DRIVERS\atikmdag.sys
12:25:11.0287 6924 amdkmdag - ok
12:25:11.0495 6924 amdkmdap (2b614a1cb27f36c5b2d96e554472a809) C:\Windows\system32\DRIVERS\atikmpag.sys
12:25:11.0505 6924 amdkmdap - ok
12:25:11.0600 6924 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
12:25:11.0610 6924 AmdPPM - ok
12:25:11.0680 6924 amdsata (ec7ebab00a4d8448bab68d1e49b4beb9) C:\Windows\system32\drivers\amdsata.sys
12:25:11.0690 6924 amdsata - ok
12:25:11.0745 6924 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
12:25:11.0755 6924 amdsbs - ok
12:25:11.0850 6924 amdxata (db27766102c7bf7e95140a2aa81d042e) C:\Windows\system32\drivers\amdxata.sys
12:25:11.0855 6924 amdxata - ok
12:25:11.0895 6924 amd_sata (80a508d0c7a21bc13c01d4c671541203) C:\Windows\system32\DRIVERS\amd_sata.sys
12:25:11.0900 6924 amd_sata - ok
12:25:11.0920 6924 amd_xata (2be940f3a632a1a301b22b096bf221f1) C:\Windows\system32\DRIVERS\amd_xata.sys
12:25:11.0930 6924 amd_xata - ok
12:25:12.0000 6924 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
12:25:12.0010 6924 AppID - ok
12:25:12.0075 6924 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
12:25:12.0080 6924 AppIDSvc - ok
12:25:12.0135 6924 Appinfo (d065be66822847b7f127d1f90158376e) C:\Windows\System32\appinfo.dll
12:25:12.0140 6924 Appinfo - ok
12:25:12.0220 6924 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
12:25:12.0225 6924 arc - ok
12:25:12.0275 6924 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
12:25:12.0285 6924 arcsas - ok
12:25:12.0340 6924 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
12:25:12.0345 6924 AsyncMac - ok
12:25:12.0385 6924 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
12:25:12.0390 6924 atapi - ok
12:25:12.0510 6924 AudioEndpointBuilder (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
12:25:12.0530 6924 AudioEndpointBuilder - ok
12:25:12.0555 6924 AudioSrv (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
12:25:12.0575 6924 AudioSrv - ok
12:25:13.0332 6924 AVGIDSAgent (7a0f6a3e0e41425b9ba54616b482668a) C:\Program Files (x86)\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
12:25:13.0474 6924 AVGIDSAgent - ok
12:25:13.0686 6924 AVGIDSDriver (e6671e90d38c88764412e07c9d9b3d63) C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys
12:25:13.0696 6924 AVGIDSDriver - ok
12:25:13.0721 6924 AVGIDSEH (1553b388e0f0462c25ad8f30c3c29e83) C:\Windows\system32\DRIVERS\AVGIDSEH.Sys
12:25:13.0731 6924 AVGIDSEH - ok
12:25:13.0756 6924 AVGIDSFilter (dca426a66739e75f51a72160dfb945ad) C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys
12:25:13.0766 6924 AVGIDSFilter - ok
12:25:13.0841 6924 Avgldx64 (ff7383388a7d2283dae5831abc2b0720) C:\Windows\system32\DRIVERS\avgldx64.sys
12:25:13.0851 6924 Avgldx64 - ok
12:25:13.0881 6924 Avgmfx64 (997d002827d3e3dcbbb25bf46db161ab) C:\Windows\system32\DRIVERS\avgmfx64.sys
12:25:13.0891 6924 Avgmfx64 - ok
12:25:13.0946 6924 Avgrkx64 (bccfe3374c887075cde2ac8fdb1cb2f8) C:\Windows\system32\DRIVERS\avgrkx64.sys
12:25:13.0956 6924 Avgrkx64 - ok
12:25:14.0006 6924 Avgtdia (0d49adcebe243b79366ea523b647519a) C:\Windows\system32\DRIVERS\avgtdia.sys
12:25:14.0026 6924 Avgtdia - ok
12:25:14.0181 6924 avgwd (fc2bc51120a945f7c70376495e4e7737) C:\Program Files (x86)\AVG\AVG10\avgwdsvc.exe
12:25:14.0186 6924 avgwd - ok
12:25:14.0236 6924 AxInstSV (b20b5fa5ca050e9926e4d1db81501b32) C:\Windows\System32\AxInstSV.dll
12:25:14.0246 6924 AxInstSV - ok
12:25:14.0321 6924 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
12:25:14.0336 6924 b06bdrv - ok
12:25:14.0406 6924 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
12:25:14.0421 6924 b57nd60a - ok
12:25:14.0526 6924 BBSvc (a2494901e7226b356b8c1005c45f1c5f) C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BBSvc.exe
12:25:14.0531 6924 BBSvc - ok
12:25:14.0601 6924 BBUpdate (63b1cbbae4790b5bac98f01bf9449722) C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\SeaPort.exe
12:25:14.0616 6924 BBUpdate - ok
12:25:14.0676 6924 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
12:25:14.0681 6924 BDESVC - ok
12:25:14.0766 6924 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
12:25:14.0776 6924 Beep - ok
12:25:14.0921 6924 BFE (4992c609a6315671463e30f6512bc022) C:\Windows\System32\bfe.dll
12:25:14.0941 6924 BFE - ok
12:25:15.0046 6924 BITS (7f0c323fe3da28aa4aa1bda3f575707f) C:\Windows\System32\qmgr.dll
12:25:15.0071 6924 BITS - ok
12:25:15.0156 6924 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
12:25:15.0161 6924 blbdrive - ok
12:25:15.0216 6924 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
12:25:15.0221 6924 bowser - ok
12:25:15.0311 6924 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
12:25:15.0321 6924 BrFiltLo - ok
12:25:15.0346 6924 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
12:25:15.0351 6924 BrFiltUp - ok
12:25:15.0396 6924 Browser (94fbc06f294d58d02361918418f996e3) C:\Windows\System32\browser.dll
12:25:15.0416 6924 Browser - ok
12:25:15.0476 6924 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
12:25:15.0486 6924 Brserid - ok
12:25:15.0561 6924 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
12:25:15.0571 6924 BrSerWdm - ok
12:25:15.0601 6924 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
12:25:15.0611 6924 BrUsbMdm - ok
12:25:15.0646 6924 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
12:25:15.0656 6924 BrUsbSer - ok
12:25:15.0691 6924 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
12:25:15.0701 6924 BTHMODEM - ok
12:25:15.0771 6924 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
12:25:15.0781 6924 bthserv - ok
12:25:15.0831 6924 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
12:25:15.0841 6924 cdfs - ok
12:25:15.0911 6924 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
12:25:15.0926 6924 cdrom - ok
12:25:15.0961 6924 CertPropSvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
12:25:15.0971 6924 CertPropSvc - ok
12:25:16.0006 6924 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
12:25:16.0016 6924 circlass - ok
12:25:16.0086 6924 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
12:25:16.0101 6924 CLFS - ok
12:25:16.0181 6924 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:25:16.0186 6924 clr_optimization_v2.0.50727_32 - ok
12:25:16.0241 6924 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
12:25:16.0251 6924 clr_optimization_v2.0.50727_64 - ok
12:25:16.0336 6924 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:25:16.0351 6924 clr_optimization_v4.0.30319_32 - ok
12:25:16.0401 6924 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
12:25:16.0416 6924 clr_optimization_v4.0.30319_64 - ok
12:25:16.0478 6924 clwvd (50f92c943f18b070f166d019dfab3d9a) C:\Windows\system32\DRIVERS\clwvd.sys
12:25:16.0488 6924 clwvd - ok
12:25:16.0583 6924 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
12:25:16.0593 6924 CmBatt - ok
12:25:16.0633 6924 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
12:25:16.0638 6924 cmdide - ok
12:25:16.0763 6924 CNG (937beb186a735aca91d717044a49d17e) C:\Windows\system32\Drivers\cng.sys
12:25:16.0778 6924 CNG - ok
12:25:16.0823 6924 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
12:25:16.0833 6924 Compbatt - ok
12:25:16.0883 6924 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
12:25:16.0893 6924 CompositeBus - ok
12:25:16.0923 6924 COMSysApp - ok
12:25:16.0968 6924 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
12:25:16.0973 6924 crcdisk - ok
12:25:17.0058 6924 CryptSvc (8c57411b66282c01533cb776f98ad384) C:\Windows\system32\cryptsvc.dll
12:25:17.0068 6924 CryptSvc - ok
12:25:17.0163 6924 DcomLaunch (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
12:25:17.0178 6924 DcomLaunch - ok
12:25:17.0253 6924 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
12:25:17.0268 6924 defragsvc - ok
12:25:17.0323 6924 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
12:25:17.0333 6924 DfsC - ok
12:25:17.0413 6924 Dhcp (ce3b9562d997f69b330d181a8875960f) C:\Windows\system32\dhcpcore.dll
12:25:17.0428 6924 Dhcp - ok
12:25:17.0478 6924 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
12:25:17.0483 6924 discache - ok
12:25:17.0543 6924 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
12:25:17.0553 6924 Disk - ok
12:25:17.0608 6924 Dnscache (85cf424c74a1d5ec33533e1dbff9920a) C:\Windows\System32\dnsrslvr.dll
12:25:17.0623 6924 Dnscache - ok
12:25:17.0703 6924 dot3svc (14452acdb09b70964c8c21bf80a13acb) C:\Windows\System32\dot3svc.dll
12:25:17.0718 6924 dot3svc - ok
12:25:17.0783 6924 Dot4 (b42ed0320c6e41102fde0005154849bb) C:\Windows\system32\DRIVERS\Dot4.sys
12:25:17.0793 6924 Dot4 - ok
12:25:17.0833 6924 Dot4Print (85135ad27e79b689335c08167d917cde) C:\Windows\system32\DRIVERS\Dot4Prt.sys
12:25:17.0838 6924 Dot4Print - ok
12:25:17.0883 6924 dot4usb (fd05a02b0370bc3000f402e543ca5814) C:\Windows\system32\DRIVERS\dot4usb.sys
12:25:17.0893 6924 dot4usb - ok
12:25:17.0943 6924 DPS (8c2ba6bea949ee6e68385f5692bafb94) C:\Windows\system32\dps.dll
12:25:17.0948 6924 DPS - ok
12:25:17.0993 6924 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
12:25:18.0003 6924 drmkaud - ok
12:25:18.0113 6924 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
12:25:18.0143 6924 DXGKrnl - ok
12:25:18.0193 6924 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
12:25:18.0203 6924 EapHost - ok
12:25:18.0493 6924 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
12:25:18.0618 6924 ebdrv - ok
12:25:18.0773 6924 EFS (156f6159457d0aa7e59b62681b56eb90) C:\Windows\System32\lsass.exe
12:25:18.0783 6924 EFS - ok
12:25:18.0898 6924 ehRecvr (47c071994c3f649f23d9cd075ac9304a) C:\Windows\ehome\ehRecvr.exe
12:25:18.0918 6924 ehRecvr - ok
12:25:18.0978 6924 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
12:25:18.0988 6924 ehSched - ok
12:25:19.0088 6924 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
12:25:19.0108 6924 elxstor - ok
12:25:19.0133 6924 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
12:25:19.0143 6924 ErrDev - ok
12:25:19.0243 6924 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
12:25:19.0258 6924 EventSystem - ok
12:25:19.0313 6924 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
12:25:19.0323 6924 exfat - ok
12:25:19.0368 6924 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
12:25:19.0378 6924 fastfat - ok
12:25:19.0483 6924 Fax (d607b2f1bee3992aa6c2c92c0a2f0855) C:\Windows\system32\fxssvc.exe
12:25:19.0508 6924 Fax - ok
12:25:19.0558 6924 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
12:25:19.0563 6924 fdc - ok
12:25:19.0603 6924 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
12:25:19.0608 6924 fdPHost - ok
12:25:19.0643 6924 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
12:25:19.0653 6924 FDResPub - ok
12:25:19.0688 6924 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
12:25:19.0703 6924 FileInfo - ok
12:25:19.0733 6924 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
12:25:19.0738 6924 Filetrace - ok
12:25:19.0768 6924 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
12:25:19.0778 6924 flpydisk - ok
12:25:19.0853 6924 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
12:25:19.0868 6924 FltMgr - ok
12:25:20.0003 6924 FontCache (cb5e4b9c319e3c6bb363eb7e58a4a051) C:\Windows\system32\FntCache.dll
12:25:20.0038 6924 FontCache - ok
12:25:20.0133 6924 FontCache3.0.0.0 (8d89e3131c27fdd6932189cb785e1b7a) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
12:25:20.0143 6924 FontCache3.0.0.0 - ok
12:25:20.0218 6924 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
12:25:20.0228 6924 FsDepends - ok
12:25:20.0273 6924 Fs_Rec (d3e3f93d67821a2db2b3d9fac2dc2064) C:\Windows\system32\drivers\Fs_Rec.sys
12:25:20.0283 6924 Fs_Rec - ok
12:25:20.0358 6924 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
12:25:20.0363 6924 fvevol - ok
12:25:20.0423 6924 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
12:25:20.0428 6924 gagp30kx - ok
12:25:20.0568 6924 GamesAppService (c403c5db49a0f9aaf4f2128edc0106d8) C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
12:25:20.0578 6924 GamesAppService - ok
12:25:20.0683 6924 gpsvc (fe5ab4525bc2ec68b9119a6e5d40128b) C:\Windows\System32\gpsvc.dll
12:25:20.0708 6924 gpsvc - ok
12:25:20.0793 6924 gupdate (506708142bc63daba64f2d3ad1dcd5bf) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:25:20.0798 6924 gupdate - ok
12:25:20.0828 6924 gupdatem (506708142bc63daba64f2d3ad1dcd5bf) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:25:20.0833 6924 gupdatem - ok
12:25:20.0888 6924 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
12:25:20.0903 6924 hcw85cir - ok
12:25:20.0988 6924 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
12:25:21.0003 6924 HdAudAddService - ok
12:25:21.0058 6924 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
12:25:21.0068 6924 HDAudBus - ok
12:25:21.0098 6924 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
12:25:21.0108 6924 HidBatt - ok
12:25:21.0143 6924 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
12:25:21.0153 6924 HidBth - ok
12:25:21.0183 6924 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
12:25:21.0193 6924 HidIr - ok
12:25:21.0228 6924 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
12:25:21.0238 6924 hidserv - ok
12:25:21.0278 6924 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
12:25:21.0288 6924 HidUsb - ok
12:25:21.0343 6924 hkmsvc (efa58ede58dd74388ffd04cb32681518) C:\Windows\system32\kmsvc.dll
12:25:21.0353 6924 hkmsvc - ok
12:25:21.0398 6924 HomeGroupListener (046b2673767ca626e2cfb7fdf735e9e8) C:\Windows\system32\ListSvc.dll
12:25:21.0413 6924 HomeGroupListener - ok
12:25:21.0468 6924 HomeGroupProvider (06a7422224d9865a5613710a089987df) C:\Windows\system32\provsvc.dll
12:25:21.0483 6924 HomeGroupProvider - ok
12:25:21.0645 6924 HP Support Assistant Service (13bb1114451c63bfb41ba7daa4d70a29) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
12:25:21.0655 6924 HP Support Assistant Service - ok
12:25:21.0760 6924 HP Wireless Assistant Service (c930128c8f8ff03d8f8c42b570920d56) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
12:25:21.0770 6924 HP Wireless Assistant Service - ok
12:25:21.0830 6924 HPClientSvc (3dc11a802353401332d49c3cbfbbe5fc) C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
12:25:21.0840 6924 HPClientSvc - ok
12:25:21.0905 6924 HPDrvMntSvc.exe (b19ff523b533a3f198b9239e1749c940) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
12:25:21.0915 6924 HPDrvMntSvc.exe - ok
12:25:22.0035 6924 hpqwmiex (01091b900e15878b4434f9c726c4541d) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
12:25:22.0065 6924 hpqwmiex - ok
12:25:22.0230 6924 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
12:25:22.0235 6924 HpSAMD - ok
12:25:22.0320 6924 HPWMISVC (2bec76bdcd1bc080210325e7b5094834) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
12:25:22.0325 6924 HPWMISVC - ok
12:25:22.0420 6924 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
12:25:22.0440 6924 HTTP - ok
12:25:22.0470 6924 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
12:25:22.0475 6924 hwpolicy - ok
12:25:22.0520 6924 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
12:25:22.0530 6924 i8042prt - ok
12:25:22.0620 6924 iaStorV (b75e45c564e944a2657167d197ab29da) C:\Windows\system32\drivers\iaStorV.sys
12:25:22.0635 6924 iaStorV - ok
12:25:22.0800 6924 idsvc (2f2be70d3e02b6fa877921ab9516d43c) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
12:25:22.0825 6924 idsvc - ok
12:25:23.0375 6924 igfx (a87261ef1546325b559374f5689cf5bc) C:\Windows\system32\DRIVERS\igdkmd64.sys
12:25:23.0570 6924 igfx - ok
12:25:23.0720 6924 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
12:25:23.0730 6924 iirsp - ok
12:25:23.0835 6924 IKEEXT (c5b4683680df085b57bc53e5ef34861f) C:\Windows\System32\ikeext.dll
12:25:23.0865 6924 IKEEXT - ok
12:25:24.0125 6924 IntcAzAudAddService (336c3a6bf14d5a9af35af07c6b6b29cd) C:\Windows\system32\drivers\RTKVHD64.sys
12:25:24.0190 6924 IntcAzAudAddService - ok
12:25:24.0340 6924 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
12:25:24.0350 6924 intelide - ok
12:25:24.0400 6924 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
12:25:24.0405 6924 intelppm - ok
12:25:24.0460 6924 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
12:25:24.0470 6924 IPBusEnum - ok
12:25:24.0510 6924 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:25:24.0515 6924 IpFilterDriver - ok
12:25:24.0600 6924 iphlpsvc (f8e058d17363ec580e4b7232778b6cb5) C:\Windows\System32\iphlpsvc.dll
12:25:24.0620 6924 iphlpsvc - ok
12:25:24.0660 6924 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
12:25:24.0670 6924 IPMIDRV - ok
12:25:24.0720 6924 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
12:25:24.0730 6924 IPNAT - ok
12:25:24.0790 6924 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
12:25:24.0800 6924 IRENUM - ok
12:25:24.0835 6924 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
12:25:24.0840 6924 isapnp - ok
12:25:24.0895 6924 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
12:25:24.0905 6924 iScsiPrt - ok
12:25:24.0945 6924 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
12:25:24.0955 6924 kbdclass - ok
12:25:24.0995 6924 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
12:25:25.0005 6924 kbdhid - ok
12:25:25.0050 6924 KeyIso (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
12:25:25.0055 6924 KeyIso - ok
12:25:25.0090 6924 KSecDD (16c1b906fc5ead84769f90b736b6bf0e) C:\Windows\system32\Drivers\ksecdd.sys
12:25:25.0100 6924 KSecDD - ok
12:25:25.0140 6924 KSecPkg (0b711550c56444879d71c7daabda6c83) C:\Windows\system32\Drivers\ksecpkg.sys
12:25:25.0150 6924 KSecPkg - ok
12:25:25.0190 6924 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
12:25:25.0195 6924 ksthunk - ok
12:25:25.0270 6924 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
12:25:25.0290 6924 KtmRm - ok
12:25:25.0355 6924 LanmanServer (81f1d04d4d0e433099365127375fd501) C:\Windows\system32\srvsvc.dll
12:25:25.0370 6924 LanmanServer - ok
12:25:25.0420 6924 LanmanWorkstation (27026eac8818e8a6c00a1cad2f11d29a) C:\Windows\System32\wkssvc.dll
12:25:25.0435 6924 LanmanWorkstation - ok
12:25:25.0550 6924 LightScribeService (fa4a45c179ab0e0f1a31b9751d4b18d7) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
12:25:25.0560 6924 LightScribeService - ok
12:25:25.0610 6924 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
12:25:25.0620 6924 lltdio - ok
12:25:25.0675 6924 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
12:25:25.0690 6924 lltdsvc - ok
12:25:25.0715 6924 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
12:25:25.0725 6924 lmhosts - ok
12:25:25.0785 6924 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
12:25:25.0795 6924 LSI_FC - ok
12:25:25.0845 6924 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
12:25:25.0855 6924 LSI_SAS - ok
12:25:25.0900 6924 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
12:25:25.0905 6924 LSI_SAS2 - ok
12:25:25.0940 6924 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
12:25:25.0950 6924 LSI_SCSI - ok
12:25:26.0010 6924 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
12:25:26.0015 6924 luafv - ok
12:25:26.0090 6924 Mcx2Svc (f84c8f1000bc11e3b7b23cbd3baff111) C:\Windows\system32\Mcx2Svc.dll
12:25:26.0100 6924 Mcx2Svc - ok
12:25:26.0140 6924 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
12:25:26.0150 6924 megasas - ok
12:25:26.0215 6924 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
12:25:26.0225 6924 MegaSR - ok
12:25:26.0280 6924 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
12:25:26.0290 6924 MMCSS - ok
12:25:26.0345 6924 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
12:25:26.0350 6924 Modem - ok
12:25:26.0390 6924 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
12:25:26.0395 6924 monitor - ok
12:25:26.0435 6924 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
12:25:26.0451 6924 mouclass - ok
12:25:26.0507 6924 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
12:25:26.0517 6924 mouhid - ok
12:25:26.0562 6924 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
12:25:26.0567 6924 mountmgr - ok
12:25:26.0644 6924 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
12:25:26.0649 6924 MozillaMaintenance - ok
12:25:26.0709 6924 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
12:25:26.0719 6924 mpio - ok
12:25:26.0770 6924 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
12:25:26.0781 6924 mpsdrv - ok
12:25:26.0881 6924 MpsSvc (aecab449567d1846dad63ece49e893e3) C:\Windows\system32\mpssvc.dll
12:25:26.0906 6924 MpsSvc - ok
12:25:26.0951 6924 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
12:25:26.0966 6924 MRxDAV - ok
12:25:27.0011 6924 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
12:25:27.0026 6924 mrxsmb - ok
12:25:27.0071 6924 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:25:27.0086 6924 mrxsmb10 - ok
12:25:27.0131 6924 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:25:27.0141 6924 mrxsmb20 - ok
12:25:27.0176 6924 msahci (2ba4ff3d5eb68587dd662a896f649c7d) C:\Windows\system32\DRIVERS\msahci.sys
12:25:27.0186 6924 msahci - ok
12:25:27.0241 6924 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
12:25:27.0251 6924 msdsm - ok
12:25:27.0306 6924 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
12:25:27.0316 6924 MSDTC - ok
12:25:27.0376 6924 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
12:25:27.0381 6924 Msfs - ok
12:25:27.0406 6924 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
12:25:27.0416 6924 mshidkmdf - ok
12:25:27.0451 6924 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
12:25:27.0456 6924 msisadrv - ok
12:25:27.0511 6924 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
12:25:27.0526 6924 MSiSCSI - ok
12:25:27.0547 6924 msiserver - ok
12:25:27.0613 6924 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
12:25:27.0623 6924 MSKSSRV - ok
12:25:27.0663 6924 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
12:25:27.0668 6924 MSPCLOCK - ok
12:25:27.0718 6924 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
12:25:27.0723 6924 MSPQM - ok
12:25:27.0793 6924 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
12:25:27.0808 6924 MsRPC - ok
12:25:27.0848 6924 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
12:25:27.0853 6924 mssmbios - ok
12:25:27.0903 6924 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
12:25:27.0908 6924 MSTEE - ok
12:25:27.0938 6924 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
12:25:27.0948 6924 MTConfig - ok
12:25:27.0988 6924 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
12:25:27.0998 6924 Mup - ok
12:25:28.0083 6924 napagent (4987e079a4530fa737a128be54b63b12) C:\Windows\system32\qagentRT.dll
12:25:28.0098 6924 napagent - ok
12:25:28.0188 6924 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
12:25:28.0203 6924 NativeWifiP - ok
12:25:28.0328 6924 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
12:25:28.0353 6924 NDIS - ok
12:25:28.0393 6924 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
12:25:28.0398 6924 NdisCap - ok
12:25:28.0443 6924 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
12:25:28.0453 6924 NdisTapi - ok
12:25:28.0503 6924 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
12:25:28.0508 6924 Ndisuio - ok
12:25:28.0558 6924 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
12:25:28.0568 6924 NdisWan - ok
12:25:28.0608 6924 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
12:25:28.0618 6924 NDProxy - ok
12:25:28.0678 6924 Net Driver HPZ12 (dc6530a291d4bdf6df399f1f128e7f8f) C:\Windows\system32\HPZinw12.dll
12:25:28.0688 6924 Net Driver HPZ12 - ok
12:25:28.0718 6924 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
12:25:28.0733 6924 NetBIOS - ok
12:25:28.0808 6924 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
12:25:28.0818 6924 NetBT - ok
12:25:28.0888 6924 Netlogon (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
12:25:28.0893 6924 Netlogon - ok
12:25:28.0988 6924 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
12:25:29.0008 6924 Netman - ok
12:25:29.0083 6924 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
12:25:29.0103 6924 netprofm - ok
12:25:29.0198 6924 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
12:25:29.0208 6924 NetTcpPortSharing - ok
12:25:29.0713 6924 netw5v64 (64428dfdaf6e88366cb51f45a79c5f69) C:\Windows\system32\DRIVERS\netw5v64.sys
12:25:29.0878 6924 netw5v64 - ok
12:25:30.0043 6924 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
12:25:30.0048 6924 nfrd960 - ok
12:25:30.0123 6924 NlaSvc (d9a0ce66046d6efa0c61baa885cba0a8) C:\Windows\System32\nlasvc.dll
12:25:30.0138 6924 NlaSvc - ok
12:25:30.0168 6924 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
12:25:30.0173 6924 Npfs - ok
12:25:30.0203 6924 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
12:25:30.0213 6924 nsi - ok
12:25:30.0238 6924 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
12:25:30.0238 6924 nsiproxy - ok
12:25:30.0468 6924 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
12:25:30.0508 6924 Ntfs - ok
12:25:30.0653 6924 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
12:25:30.0663 6924 Null - ok
12:25:30.0733 6924 nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\Windows\system32\drivers\nvraid.sys
12:25:30.0743 6924 nvraid - ok
12:25:30.0788 6924 nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\Windows\system32\drivers\nvstor.sys
12:25:30.0803 6924 nvstor - ok
12:25:30.0848 6924 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
12:25:30.0858 6924 nv_agp - ok
12:25:30.0898 6924 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
12:25:30.0908 6924 ohci1394 - ok
12:25:30.0968 6924 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
12:25:30.0983 6924 p2pimsvc - ok
12:25:31.0078 6924 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
12:25:31.0093 6924 p2psvc - ok
12:25:31.0143 6924 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
12:25:31.0153 6924 Parport - ok
12:25:31.0193 6924 partmgr (90061b1acfe8ccaa5345750ffe08d8b8) C:\Windows\system32\drivers\partmgr.sys
12:25:31.0203 6924 partmgr - ok
12:25:31.0253 6924 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
12:25:31.0263 6924 PcaSvc - ok
12:25:31.0328 6924 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
12:25:31.0333 6924 pci - ok
12:25:31.0358 6924 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
12:25:31.0368 6924 pciide - ok
12:25:31.0418 6924 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
12:25:31.0433 6924 pcmcia - ok
12:25:31.0468 6924 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
12:25:31.0478 6924 pcw - ok
12:25:31.0563 6924 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
12:25:31.0598 6924 PEAUTH - ok
12:25:31.0705 6924 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
12:25:31.0715 6924 PerfHost - ok
12:25:31.0905 6924 pla (557e9a86f65f0de18c9b6751dfe9d3f1) C:\Windows\system32\pla.dll
12:25:31.0945 6924 pla - ok
12:25:32.0050 6924 PlugPlay (98b1721b8718164293b9701b98c52d77) C:\Windows\system32\umpnpmgr.dll
12:25:32.0070 6924 PlugPlay - ok
12:25:32.0120 6924 Pml Driver HPZ12 (71f62c51dfdfbc04c83c5c64b2b8058e) C:\Windows\system32\HPZipm12.dll
12:25:32.0130 6924 Pml Driver HPZ12 - ok
12:25:32.0165 6924 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
12:25:32.0175 6924 PNRPAutoReg - ok
12:25:32.0230 6924 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
12:25:32.0240 6924 PNRPsvc - ok
12:25:32.0335 6924 PolicyAgent (166eb40d1f5b47e615de3d0fffe5f243) C:\Windows\System32\ipsecsvc.dll
12:25:32.0355 6924 PolicyAgent - ok
12:25:32.0420 6924 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
12:25:32.0435 6924 Power - ok
12:25:32.0515 6924 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
12:25:32.0525 6924 PptpMiniport - ok
12:25:32.0565 6924 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
12:25:32.0575 6924 Processor - ok
12:25:32.0655 6924 ProfSvc (f381975e1f4346de875cb07339ce8d3a) C:\Windows\system32\profsvc.dll
12:25:32.0670 6924 ProfSvc - ok
12:25:32.0730 6924 ProtectedStorage (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
12:25:32.0735 6924 ProtectedStorage - ok
12:25:32.0845 6924 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
12:25:32.0850 6924 Psched - ok
12:25:33.0000 6924 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
12:25:33.0045 6924 ql2300 - ok
12:25:33.0185 6924 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
12:25:33.0195 6924 ql40xx - ok
12:25:33.0250 6924 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
12:25:33.0265 6924 QWAVE - ok
12:25:33.0305 6924 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
12:25:33.0315 6924 QWAVEdrv - ok
12:25:33.0355 6924 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
12:25:33.0365 6924 RasAcd - ok
12:25:33.0420 6924 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
12:25:33.0430 6924 RasAgileVpn - ok
12:25:33.0475 6924 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
12:25:33.0490 6924 RasAuto - ok
12:25:33.0545 6924 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
12:25:33.0555 6924 Rasl2tp - ok
12:25:33.0620 6924 RasMan (47394ed3d16d053f5906efe5ab51cc83) C:\Windows\System32\rasmans.dll
12:25:33.0640 6924 RasMan - ok
12:25:33.0675 6924 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
12:25:33.0685 6924 RasPppoe - ok
12:25:33.0720 6924 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
12:25:33.0730 6924 RasSstp - ok
12:25:33.0785 6924 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
12:25:33.0800 6924 rdbss - ok
12:25:33.0840 6924 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
12:25:33.0845 6924 rdpbus - ok
12:25:33.0875 6924 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
12:25:33.0880 6924 RDPCDD - ok
12:25:33.0935 6924 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
12:25:33.0940 6924 RDPENCDD - ok
12:25:33.0975 6924 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
12:25:33.0975 6924 RDPREFMP - ok
12:25:34.0035 6924 RDPWD (074ac702d8b8b660b0e1371555995386) C:\Windows\system32\drivers\RDPWD.sys
12:25:34.0045 6924 RDPWD - ok
12:25:34.0115 6924 rdyboost (e5dc9ba9e439d6dbdd79f8caacb5bf01) C:\Windows\system32\drivers\rdyboost.sys
12:25:34.0130 6924 rdyboost - ok
12:25:34.0170 6924 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
12:25:34.0180 6924 RemoteAccess - ok
12:25:34.0250 6924 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
12:25:34.0265 6924 RemoteRegistry - ok
12:25:34.0295 6924 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
12:25:34.0310 6924 RpcEptMapper - ok
12:25:34.0350 6924 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
12:25:34.0360 6924 RpcLocator - ok
12:25:34.0445 6924 RpcSs (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
12:25:34.0460 6924 RpcSs - ok
12:25:34.0545 6924 RSPCIESTOR (739583523c1b359d90dfc286d4eded89) C:\Windows\system32\DRIVERS\RtsPStor.sys
12:25:34.0560 6924 RSPCIESTOR - ok
12:25:34.0625 6924 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
12:25:34.0635 6924 rspndr - ok
12:25:34.0710 6924 RTL8167 (a73ed14670220307874ad6bc2f279349) C:\Windows\system32\DRIVERS\Rt64win7.sys
12:25:34.0725 6924 RTL8167 - ok
12:25:34.0890 6924 RTL8192Ce (f33e70e48a54a7a1bfbeeb4f3b273e4a) C:\Windows\system32\DRIVERS\rtl8192Ce.sys
12:25:34.0925 6924 RTL8192Ce - ok
12:25:34.0980 6924 SamSs (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
12:25:34.0985 6924 SamSs - ok
12:25:35.0035 6924 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
12:25:35.0045 6924 sbp2port - ok
12:25:35.0110 6924 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
12:25:35.0125 6924 SCardSvr - ok
12:25:35.0160 6924 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
12:25:35.0165 6924 scfilter - ok
12:25:35.0295 6924 Schedule (624d0f5ff99428bb90a5b8a4123e918e) C:\Windows\system32\schedsvc.dll
12:25:35.0330 6924 Schedule - ok
12:25:35.0360 6924 SCPolicySvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
12:25:35.0365 6924 SCPolicySvc - ok
12:25:35.0420 6924 sdbus (54e47ad086782d3ae9417c155cdceb9b) C:\Windows\system32\DRIVERS\sdbus.sys
12:25:35.0430 6924 sdbus - ok
12:25:35.0480 6924 SDRSVC (765a27c3279ce11d14cb9e4f5869fca5) C:\Windows\System32\SDRSVC.dll
12:25:35.0495 6924 SDRSVC - ok
12:25:35.0530 6924 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
12:25:35.0540 6924 secdrv - ok
12:25:35.0570 6924 seclogon (463b386ebc70f98da5dff85f7e654346) C:\Windows\system32\seclogon.dll
12:25:35.0585 6924 seclogon - ok
12:25:35.0605 6924 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
12:25:35.0615 6924 SENS - ok
12:25:35.0667 6924 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
12:25:35.0682 6924 SensrSvc - ok
12:25:35.0727 6924 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
12:25:35.0742 6924 Serenum - ok
12:25:35.0782 6924 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
12:25:35.0800 6924 Serial - ok
12:25:35.0839 6924 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
12:25:35.0850 6924 sermouse - ok
12:25:35.0941 6924 SessionEnv (c3bc61ce47ff6f4e88ab8a3b429a36af) C:\Windows\system32\sessenv.dll
12:25:35.0956 6924 SessionEnv - ok
12:25:35.0981 6924 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
12:25:35.0986 6924 sffdisk - ok
12:25:36.0016 6924 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys
12:25:36.0021 6924 sffp_mmc - ok
12:25:36.0046 6924 sffp_sd (178298f767fe638c9fedcbdef58bb5e4) C:\Windows\system32\DRIVERS\sffp_sd.sys
12:25:36.0056 6924 sffp_sd - ok
12:25:36.0076 6924 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
12:25:36.0081 6924 sfloppy - ok
12:25:36.0156 6924 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
12:25:36.0166 6924 SharedAccess - ok
12:25:36.0221 6924 ShellHWDetection (0298ac45d0efffb2db4baa7dd186e7bf) C:\Windows\System32\shsvcs.dll
12:25:36.0236 6924 ShellHWDetection - ok
12:25:36.0291 6924 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
12:25:36.0296 6924 SiSRaid2 - ok
12:25:36.0336 6924 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
12:25:36.0341 6924 SiSRaid4 - ok
12:25:36.0396 6924 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
12:25:36.0406 6924 Smb - ok
12:25:36.0466 6924 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
12:25:36.0476 6924 SNMPTRAP - ok
12:25:36.0496 6924 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
12:25:36.0507 6924 spldr - ok
12:25:36.0568 6924 Spooler (f8e1fa03cb70d54a9892ac88b91d1e7b) C:\Windows\System32\spoolsv.exe
12:25:36.0588 6924 Spooler - ok
12:25:36.0858 6924 sppsvc (913d843498553a1bc8f8dbad6358e49f) C:\Windows\system32\sppsvc.exe
12:25:36.0923 6924 sppsvc - ok
12:25:37.0043 6924 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
12:25:37.0053 6924 sppuinotify - ok
12:25:37.0148 6924 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
12:25:37.0168 6924 srv - ok
12:25:37.0228 6924 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
12:25:37.0243 6924 srv2 - ok
12:25:37.0323 6924 SrvHsfHDA (0c4540311e11664b245a263e1154cef8) C:\Windows\system32\DRIVERS\VSTAZL6.SYS
12:25:37.0343 6924 SrvHsfHDA - ok
12:25:37.0503 6924 SrvHsfV92 (02071d207a9858fbe3a48cbfd59c4a04) C:\Windows\system32\DRIVERS\VSTDPV6.SYS
12:25:37.0543 6924 SrvHsfV92 - ok
12:25:37.0758 6924 SrvHsfWinac (18e40c245dbfaf36fd0134a7ef2df396) C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
12:25:37.0783 6924 SrvHsfWinac - ok
12:25:37.0843 6924 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
12:25:37.0858 6924 srvnet - ok
12:25:37.0933 6924 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
12:25:37.0948 6924 SSDPSRV - ok
12:25:37.0983 6924 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
12:25:37.0993 6924 SstpSvc - ok
12:25:38.0028 6924 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
12:25:38.0038 6924 stexstor - ok
12:25:38.0133 6924 stisvc (52d0e33b681bd0f33fdc08812fee4f7d) C:\Windows\System32\wiaservc.dll
12:25:38.0158 6924 stisvc - ok
12:25:38.0193 6924 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
12:25:38.0198 6924 swenum - ok
12:25:38.0273 6924 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
12:25:38.0293 6924 swprv - ok
12:25:38.0453 6924 SynTP (ec4dca6539eb97376f1a1743d209d842) C:\Windows\system32\DRIVERS\SynTP.sys
12:25:38.0493 6924 SynTP - ok
12:25:38.0768 6924 SysMain (3c1284516a62078fb68f768de4f1a7be) C:\Windows\system32\sysmain.dll
12:25:38.0818 6924 SysMain - ok
12:25:38.0968 6924 TabletInputService (238935c3cf2854886dc7cbb2a0e2cc66) C:\Windows\System32\TabSvc.dll
12:25:38.0983 6924 TabletInputService - ok
12:25:39.0028 6924 TapiSrv (884264ac597b690c5707c89723bb8e7b) C:\Windows\System32\tapisrv.dll
12:25:39.0048 6924 TapiSrv - ok
12:25:39.0088 6924 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
12:25:39.0103 6924 TBS - ok
12:25:39.0348 6924 Tcpip (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\drivers\tcpip.sys
12:25:39.0398 6924 Tcpip - ok
12:25:39.0733 6924 TCPIP6 (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\DRIVERS\tcpip.sys
12:25:39.0768 6924 TCPIP6 - ok
12:25:39.0918 6924 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
12:25:39.0928 6924 tcpipreg - ok
12:25:39.0983 6924 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
12:25:39.0993 6924 TDPIPE - ok
12:25:40.0033 6924 TDTCP (7518f7bcfd4b308abc9192bacaf6c970) C:\Windows\system32\drivers\tdtcp.sys
12:25:40.0043 6924 TDTCP - ok
12:25:40.0088 6924 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
12:25:40.0098 6924 tdx - ok
12:25:40.0143 6924 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
12:25:40.0148 6924 TermDD - ok
12:25:40.0238 6924 TermService (0f05ec2887bfe197ad82a13287d2f404) C:\Windows\System32\termsrv.dll
12:25:40.0268 6924 TermService - ok
12:25:40.0288 6924 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
12:25:40.0303 6924 Themes - ok
12:25:40.0358 6924 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
12:25:40.0363 6924 THREADORDER - ok
12:25:40.0413 6924 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
12:25:40.0423 6924 TrkWks - ok
12:25:40.0493 6924 TrustedInstaller (840f7fb849f5887a49ba18c13b2da920) C:\Windows\servicing\TrustedInstaller.exe
12:25:40.0498 6924 TrustedInstaller - ok
12:25:40.0553 6924 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
12:25:40.0558 6924 tssecsrv - ok
12:25:40.0613 6924 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
12:25:40.0623 6924 tunnel - ok
12:25:40.0663 6924 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
12:25:40.0673 6924 uagp35 - ok
12:25:40.0743 6924 udfs (0e5e962b5649d544be54e8c90761ea2b) C:\Windows\system32\DRIVERS\udfs.sys
12:25:40.0763 6924 udfs - ok
12:25:40.0813 6924 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
12:25:40.0823 6924 UI0Detect - ok
12:25:40.0858 6924 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
12:25:40.0873 6924 uliagpkx - ok
12:25:40.0933 6924 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
12:25:40.0943 6924 umbus - ok
12:25:40.0973 6924 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
12:25:40.0983 6924 UmPass - ok
12:25:41.0058 6924 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
12:25:41.0078 6924 upnphost - ok
12:25:41.0148 6924 usbccgp (537a4e03d7103c12d42dfd8ffdb5bdc9) C:\Windows\system32\DRIVERS\usbccgp.sys
12:25:41.0158 6924 usbccgp - ok
12:25:41.0203 6924 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
12:25:41.0213 6924 usbcir - ok
12:25:41.0263 6924 usbehci (fbb21ebe49f6d560db37ac25fbc68e66) C:\Windows\system32\DRIVERS\usbehci.sys
12:25:41.0273 6924 usbehci - ok
12:25:41.0303 6924 usbfilter (76e2ffad301490ba27b947c6507752fb) C:\Windows\system32\DRIVERS\usbfilter.sys
12:25:41.0313 6924 usbfilter - ok
12:25:41.0378 6924 usbhub (6b7a8a99c4a459e73c286a6763ea24cc) C:\Windows\system32\DRIVERS\usbhub.sys
12:25:41.0398 6924 usbhub - ok
12:25:41.0423 6924 usbohci (8c88aa7617b4cbc2e4bed61d26b33a27) C:\Windows\system32\DRIVERS\usbohci.sys
12:25:41.0428 6924 usbohci - ok
12:25:41.0463 6924 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
12:25:41.0473 6924 usbprint - ok
12:25:41.0518 6924 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
12:25:41.0528 6924 usbscan - ok
12:25:41.0588 6924 USBSTOR (f39983647bc1f3e6100778ddfe9dce29) C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:25:41.0603 6924 USBSTOR - ok
12:25:41.0638 6924 usbuhci (0b5b3b2df3fd1709618acfa50b8392b0) C:\Windows\system32\drivers\usbuhci.sys
12:25:41.0643 6924 usbuhci - ok
12:25:41.0708 6924 usbvideo (7cb8c573c6e4a2714402cc0a36eab4fe) C:\Windows\system32\Drivers\usbvideo.sys
12:25:41.0723 6924 usbvideo - ok
12:25:41.0763 6924 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
12:25:41.0773 6924 UxSms - ok
12:25:41.0823 6924 VaultSvc (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
12:25:41.0828 6924 VaultSvc - ok
12:25:41.0863 6924 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
12:25:41.0868 6924 vdrvroot - ok
12:25:41.0953 6924 vds (44d73e0bbc1d3c8981304ba15135c2f2) C:\Windows\System32\vds.exe
12:25:41.0978 6924 vds - ok
12:25:42.0033 6924 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
12:25:42.0043 6924 vga - ok
12:25:42.0078 6924 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
12:25:42.0083 6924 VgaSave - ok
12:25:42.0143 6924 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
12:25:42.0158 6924 vhdmp - ok
12:25:42.0183 6924 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
12:25:42.0188 6924 viaide - ok
12:25:42.0228 6924 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
12:25:42.0238 6924 volmgr - ok
12:25:42.0303 6924 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
12:25:42.0313 6924 volmgrx - ok
12:25:42.0383 6924 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
12:25:42.0393 6924 volsnap - ok
12:25:42.0453 6924 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
12:25:42.0463 6924 vsmraid - ok
12:25:42.0643 6924 VSS (787898bf9fb6d7bd87a36e2d95c899ba) C:\Windows\system32\vssvc.exe
12:25:42.0688 6924 VSS - ok
12:25:42.0843 6924 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
12:25:42.0853 6924 vwifibus - ok
12:25:42.0928 6924 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
12:25:42.0938 6924 vwififlt - ok
12:25:43.0023 6924 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
12:25:43.0048 6924 W32Time - ok
12:25:43.0088 6924 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
12:25:43.0098 6924 WacomPen - ok
12:25:43.0183 6924 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
12:25:43.0193 6924 WANARP - ok
12:25:43.0208 6924 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
12:25:43.0213 6924 Wanarpv6 - ok
12:25:43.0373 6924 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
12:25:43.0408 6924 WatAdminSvc - ok
12:25:43.0578 6924 wbengine (5ab1bb85bd8b5089cc5d64200dedae68) C:\Windows\system32\wbengine.exe
12:25:43.0623 6924 wbengine - ok
12:25:43.0755 6924 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
12:25:43.0775 6924 WbioSrvc - ok
12:25:43.0840 6924 wcncsvc (dd1bae8ebfc653824d29ccf8c9054d68) C:\Windows\System32\wcncsvc.dll
12:25:43.0860 6924 wcncsvc - ok
12:25:43.0900 6924 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
12:25:43.0915 6924 WcsPlugInService - ok
12:25:43.0975 6924 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
12:25:43.0985 6924 Wd - ok
12:25:44.0090 6924 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
12:25:44.0110 6924 Wdf01000 - ok
12:25:44.0165 6924 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
12:25:44.0180 6924 WdiServiceHost - ok
12:25:44.0195 6924 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
12:25:44.0205 6924 WdiSystemHost - ok
12:25:44.0270 6924 WebClient (733006127f235be7c35354ebee7b9a7b) C:\Windows\System32\webclnt.dll
12:25:44.0285 6924 WebClient - ok
12:25:44.0335 6924 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
12:25:44.0355 6924 Wecsvc - ok
12:25:44.0393 6924 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
12:25:44.0412 6924 wercplsupport - ok
12:25:44.0452 6924 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
12:25:44.0467 6924 WerSvc - ok
12:25:44.0547 6924 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
12:25:44.0552 6924 WfpLwf - ok
12:25:44.0596 6924 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
12:25:44.0607 6924 WIMMount - ok
12:25:44.0654 6924 WinDefend - ok
12:25:44.0689 6924 WinHttpAutoProxySvc - ok
12:25:44.0764 6924 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
12:25:44.0774 6924 Winmgmt - ok
12:25:45.0004 6924 WinRM (41fbb751936b387f9179e7f03a74fe29) C:\Windows\system32\WsmSvc.dll
12:25:45.0064 6924 WinRM - ok
12:25:45.0249 6924 WinUsb (4d52c872018af7e18d078978dcc3f6f2) C:\Windows\system32\DRIVERS\WinUsb.sys
12:25:45.0259 6924 WinUsb - ok
12:25:45.0374 6924 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
12:25:45.0404 6924 Wlansvc - ok
12:25:45.0489 6924 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
12:25:45.0494 6924 wlcrasvc - ok
12:25:45.0768 6924 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
12:25:45.0816 6924 wlidsvc - ok
12:25:45.0996 6924 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
12:25:46.0006 6924 WmiAcpi - ok
12:25:46.0091 6924 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
12:25:46.0106 6924 wmiApSrv - ok
12:25:46.0196 6924 WMPNetworkSvc - ok
12:25:46.0236 6924 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
12:25:46.0251 6924 WPCSvc - ok
12:25:46.0301 6924 WPDBusEnum (2e57ddf2880a7e52e76f41c7e96d327b) C:\Windows\system32\wpdbusenum.dll
12:25:46.0311 6924 WPDBusEnum - ok
12:25:46.0356 6924 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
12:25:46.0366 6924 ws2ifsl - ok
12:25:46.0426 6924 wscsvc (8f9f3969933c02da96eb0f84576db43e) C:\Windows\System32\wscsvc.dll
12:25:46.0441 6924 wscsvc - ok
12:25:46.0456 6924 WSearch - ok
12:25:46.0763 6924 wuauserv (38340204a2d0228f1e87740fc5e554a7) C:\Windows\system32\wuaueng.dll
12:25:46.0828 6924 wuauserv - ok
12:25:47.0003 6924 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
12:25:47.0013 6924 WudfPf - ok
12:25:47.0063 6924 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
12:25:47.0078 6924 WUDFRd - ok
12:25:47.0118 6924 wudfsvc (b551d6637aa0e132c18ac6e504f7b79b) C:\Windows\System32\WUDFSvc.dll
12:25:47.0128 6924 wudfsvc - ok
12:25:47.0168 6924 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
12:25:47.0188 6924 WwanSvc - ok
12:25:47.0343 6924 YahooAUService (dd0042f0c3b606a6a8b92d49afb18ad6) C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
12:25:47.0358 6924 YahooAUService - ok
12:25:47.0443 6924 yukonw7 (b3eeacf62445e24fbb2cd4b0fb4db026) C:\Windows\system32\DRIVERS\yk62x64.sys
12:25:47.0458 6924 yukonw7 - ok
12:25:47.0533 6924 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
12:25:47.0958 6924 \Device\Harddisk0\DR0 - ok
12:25:47.0973 6924 Boot (0x1200) (0af08666943fdba453a99ac6ecbc56d4) \Device\Harddisk0\DR0\Partition0
12:25:47.0978 6924 \Device\Harddisk0\DR0\Partition0 - ok
12:25:48.0008 6924 Boot (0x1200) (9800bb4dc545e50916b4701223a485e3) \Device\Harddisk0\DR0\Partition1
12:25:48.0013 6924 \Device\Harddisk0\DR0\Partition1 - ok
12:25:48.0053 6924 Boot (0x1200) (ff66c89724e4d35233fb27e0fa9a3e59) \Device\Harddisk0\DR0\Partition2
12:25:48.0058 6924 \Device\Harddisk0\DR0\Partition2 - ok
12:25:48.0083 6924 Boot (0x1200) (6c91953412c9d4dc0c4162be0e919f1d) \Device\Harddisk0\DR0\Partition3
12:25:48.0083 6924 \Device\Harddisk0\DR0\Partition3 - ok
12:25:48.0088 6924 ============================================================
12:25:48.0088 6924 Scan finished
12:25:48.0088 6924 ============================================================
12:25:48.0138 2916 Detected object count: 0
12:25:48.0138 2916 Actual detected object count: 0

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:39 AM

Posted 02 June 2012 - 12:36 PM

waiting for other logs :thumbup2:

#5 MurseMan

MurseMan
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:01:39 AM

Posted 02 June 2012 - 01:06 PM

aswMBR Log

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-06-02 12:32:04
-----------------------------
12:32:04.433 OS Version: Windows x64 6.1.7600
12:32:04.433 Number of processors: 2 586 0x100
12:32:04.438 ComputerName: THESEQUEL UserName: Lachlan
12:32:06.315 Initialize success
12:34:30.907 AVAST engine defs: 12060200
12:34:35.732 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000064
12:34:35.742 Disk 0 Vendor: SAMSUNG_ 2AJ1 Size: 305245MB BusType: 11
12:34:35.772 Disk 0 MBR read successfully
12:34:35.782 Disk 0 MBR scan
12:34:35.797 Disk 0 Windows 7 default MBR code
12:34:35.812 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 199 MB offset 2048
12:34:35.842 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 288981 MB offset 409600
12:34:35.892 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 15960 MB offset 592242688
12:34:35.917 Disk 0 Partition 4 00 0C FAT32 LBA MSDOS5.0 103 MB offset 624928768
12:34:35.982 Disk 0 scanning C:\Windows\system32\drivers
12:34:53.327 Service scanning
12:35:30.682 Modules scanning
12:35:30.712 Disk 0 trace - called modules:
12:35:30.777 ntoskrnl.exe CLASSPNP.SYS disk.sys amd_xata.sys storport.sys hal.dll amd_sata.sys
12:35:30.797 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800411f060]
12:35:30.817 3 CLASSPNP.SYS[fffff8800198b43f] -> nt!IofCallDriver -> [0xfffffa8003fe99e0]
12:35:30.837 5 amd_xata.sys[fffff8800110c900] -> nt!IofCallDriver -> \Device\00000064[0xfffffa8003fe5380]
12:35:32.542 AVAST engine scan C:\Windows
12:35:37.482 AVAST engine scan C:\Windows\system32
12:43:07.746 AVAST engine scan C:\Windows\system32\drivers
12:43:43.009 AVAST engine scan C:\Users\Lachlan
12:45:19.014 Disk 0 MBR has been saved successfully to "C:\Users\Lachlan\Desktop\MBR.dat"
12:45:19.019 The log file has been saved successfully to "C:\Users\Lachlan\Desktop\aswMBR.txt"


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-06-02 12:32:04
-----------------------------
12:32:04.433 OS Version: Windows x64 6.1.7600
12:32:04.433 Number of processors: 2 586 0x100
12:32:04.438 ComputerName: THESEQUEL UserName: Lachlan
12:32:06.315 Initialize success
12:34:30.907 AVAST engine defs: 12060200
12:34:35.732 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000064
12:34:35.742 Disk 0 Vendor: SAMSUNG_ 2AJ1 Size: 305245MB BusType: 11
12:34:35.772 Disk 0 MBR read successfully
12:34:35.782 Disk 0 MBR scan
12:34:35.797 Disk 0 Windows 7 default MBR code
12:34:35.812 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 199 MB offset 2048
12:34:35.842 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 288981 MB offset 409600
12:34:35.892 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 15960 MB offset 592242688
12:34:35.917 Disk 0 Partition 4 00 0C FAT32 LBA MSDOS5.0 103 MB offset 624928768
12:34:35.982 Disk 0 scanning C:\Windows\system32\drivers
12:34:53.327 Service scanning
12:35:30.682 Modules scanning
12:35:30.712 Disk 0 trace - called modules:
12:35:30.777 ntoskrnl.exe CLASSPNP.SYS disk.sys amd_xata.sys storport.sys hal.dll amd_sata.sys
12:35:30.797 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800411f060]
12:35:30.817 3 CLASSPNP.SYS[fffff8800198b43f] -> nt!IofCallDriver -> [0xfffffa8003fe99e0]
12:35:30.837 5 amd_xata.sys[fffff8800110c900] -> nt!IofCallDriver -> \Device\00000064[0xfffffa8003fe5380]
12:35:32.542 AVAST engine scan C:\Windows
12:35:37.482 AVAST engine scan C:\Windows\system32
12:43:07.746 AVAST engine scan C:\Windows\system32\drivers
12:43:43.009 AVAST engine scan C:\Users\Lachlan
12:45:19.014 Disk 0 MBR has been saved successfully to "C:\Users\Lachlan\Desktop\MBR.dat"
12:45:19.019 The log file has been saved successfully to "C:\Users\Lachlan\Desktop\aswMBR.txt"
12:54:06.853 Disk 0 MBR has been saved successfully to "C:\Users\Lachlan\Desktop\MBR.dat"
12:54:06.858 The log file has been saved successfully to "C:\Users\Lachlan\Desktop\aswMBR.txt"


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-06-02 12:55:14
-----------------------------
12:55:14.770 OS Version: Windows x64 6.1.7600
12:55:14.770 Number of processors: 2 586 0x100
12:55:14.770 ComputerName: THESEQUEL UserName: Lachlan
12:55:16.960 Initialize success
12:55:26.885 AVAST engine defs: 12060200
12:55:28.415 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000064
12:55:28.425 Disk 0 Vendor: SAMSUNG_ 2AJ1 Size: 305245MB BusType: 11
12:55:28.455 Disk 0 MBR read successfully
12:55:28.460 Disk 0 MBR scan
12:55:28.480 Disk 0 Windows 7 default MBR code
12:55:28.505 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 199 MB offset 2048
12:55:28.550 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 288981 MB offset 409600
12:55:28.605 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 15960 MB offset 592242688
12:55:28.645 Disk 0 Partition 4 00 0C FAT32 LBA MSDOS5.0 103 MB offset 624928768
12:55:28.690 Disk 0 scanning C:\Windows\system32\drivers
12:56:02.938 Service scanning
12:56:41.321 Modules scanning
12:56:41.351 Disk 0 trace - called modules:
12:56:41.418 ntoskrnl.exe CLASSPNP.SYS disk.sys amd_xata.sys storport.sys hal.dll amd_sata.sys
12:56:41.438 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800411f060]
12:56:41.456 3 CLASSPNP.SYS[fffff8800198b43f] -> nt!IofCallDriver -> [0xfffffa8003fe99e0]
12:56:41.475 5 amd_xata.sys[fffff8800110c900] -> nt!IofCallDriver -> \Device\00000064[0xfffffa8003fe5380]
12:56:43.747 AVAST engine scan C:\Windows
12:57:08.651 AVAST engine scan C:\Windows\system32
13:06:28.234 AVAST engine scan C:\Windows\system32\drivers
13:07:39.459 AVAST engine scan C:\Users\Lachlan
13:41:30.838 File: C:\Users\Lachlan\AppData\Local\Temp\1324.tmp **INFECTED** Win32:Rootkit-gen [Rtk]
13:41:31.133 File: C:\Users\Lachlan\AppData\Local\Temp\2359.tmp **INFECTED** Win32:Rootkit-gen [Rtk]
13:42:36.861 File: C:\Users\Lachlan\AppData\Local\Temp\jar_cache2051454410895686355.tmp **INFECTED** Win32:Rootkit-gen [Rtk]
13:42:37.546 File: C:\Users\Lachlan\AppData\Local\Temp\jar_cache4444865438739375976.tmp **INFECTED** Win32:Rootkit-gen [Rtk]
13:42:38.131 File: C:\Users\Lachlan\AppData\Local\Temp\jar_cache8428364091372807723.tmp **INFECTED** Win32:Rootkit-gen [Rtk]
13:43:39.606 File: C:\Users\Lachlan\AppData\Local\Temp\pHlv52SH9KIaXJ.exe.tmp **INFECTED** Win32:FakeSysdefs-A [Trj]
13:44:20.816 File: C:\Users\Lachlan\AppData\Local\Temp\WX8ESofQQF2OM3.exe.tmp **INFECTED** Win32:FakeSysdefs-A [Trj]
13:55:40.758 AVAST engine scan C:\ProgramData
14:03:21.809 Scan finished successfully
14:05:41.106 Disk 0 MBR has been saved successfully to "C:\Users\Lachlan\Desktop\MBR.dat"
14:05:41.331 The log file has been saved successfully to "C:\Users\Lachlan\Desktop\aswMBR.txt"

#6 MurseMan

MurseMan
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:01:39 AM

Posted 02 June 2012 - 03:20 PM

ESET online scanner


C:\Users\Lachlan\AppData\Local\Temp\1324.tmp a variant of Win32/Injector.LUP trojan cleaned by deleting - quarantined
C:\Users\Lachlan\AppData\Local\Temp\2359.tmp a variant of Win32/Injector.LUP trojan cleaned by deleting - quarantined
C:\Users\Lachlan\AppData\Local\Temp\pHlv52SH9KIaXJ.exe.tmp a variant of Win32/Kryptik.WQS trojan cleaned by deleting - quarantined
C:\Users\Lachlan\AppData\Local\Temp\WX8ESofQQF2OM3.exe.tmp a variant of Win32/Kryptik.WQS trojan cleaned by deleting - quarantined
C:\Users\Lachlan\Downloads\LMFAO_-_Sorry_For_Party_Rocking_-_Deluxe_Edition_AVG_320_KBPS_MP3_BLOWA_TLS_downloader.exe a variant of Win32/ExpressFiles application cleaned by deleting - quarantined
C:\Users\Lachlan\Downloads\VLC_32(1).exe a variant of Win32/InstallIQ application cleaned by deleting - quarantined
C:\Users\Lachlan\Downloads\VLC_32.exe a variant of Win32/InstallIQ application cleaned by deleting - quarantined

#7 MurseMan

MurseMan
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:01:39 AM

Posted 02 June 2012 - 03:20 PM

I hope I did that correctly, let me know what to do next or if I did anything wrong

Edited by MurseMan, 02 June 2012 - 03:22 PM.


#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:39 AM

Posted 02 June 2012 - 03:24 PM

Re run aswmbr and post the new log

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log


Download

Rogue killer

right click on it and select run as administrator

Now,click on HOSTS FIX option on right side

A log should get generated after the fix ,post the log here


Download

MiniToolBox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

#9 MurseMan

MurseMan
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:01:39 AM

Posted 02 June 2012 - 06:06 PM

aswMBR log


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-06-02 17:25:36
-----------------------------
17:25:36.696 OS Version: Windows x64 6.1.7600
17:25:36.696 Number of processors: 2 586 0x100
17:25:36.696 ComputerName: THESEQUEL UserName: Lachlan
17:25:39.363 Initialize success
17:25:53.902 AVAST engine defs: 12060200
17:25:58.348 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000064
17:25:58.348 Disk 0 Vendor: SAMSUNG_ 2AJ1 Size: 305245MB BusType: 11
17:25:58.426 Disk 0 MBR read successfully
17:25:58.426 Disk 0 MBR scan
17:25:58.442 Disk 0 Windows 7 default MBR code
17:25:58.458 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 199 MB offset 2048
17:25:58.504 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 288981 MB offset 409600
17:25:58.582 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 15960 MB offset 592242688
17:25:58.660 Disk 0 Partition 4 00 0C FAT32 LBA MSDOS5.0 103 MB offset 624928768
17:25:58.879 Disk 0 scanning C:\Windows\system32\drivers
17:26:58.658 Service scanning
17:27:33.680 Modules scanning
17:27:33.711 Disk 0 trace - called modules:
17:27:34.304 ntoskrnl.exe CLASSPNP.SYS disk.sys amd_xata.sys storport.sys hal.dll amd_sata.sys
17:27:34.335 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800411f060]
17:27:34.351 3 CLASSPNP.SYS[fffff8800198b43f] -> nt!IofCallDriver -> [0xfffffa8003fe99e0]
17:27:34.367 5 amd_xata.sys[fffff8800110c900] -> nt!IofCallDriver -> \Device\00000064[0xfffffa8003fe5380]
17:27:35.911 AVAST engine scan C:\Windows
17:28:32.180 AVAST engine scan C:\Windows\system32
17:48:52.617 AVAST engine scan C:\Windows\system32\drivers
17:51:20.193 AVAST engine scan C:\Users\Lachlan
18:35:44.472 File: C:\Users\Lachlan\AppData\Local\Temp\jar_cache2051454410895686355.tmp **INFECTED** Win32:Rootkit-gen [Rtk]
18:35:45.283 File: C:\Users\Lachlan\AppData\Local\Temp\jar_cache4444865438739375976.tmp **INFECTED** Win32:Rootkit-gen [Rtk]
18:35:46.250 File: C:\Users\Lachlan\AppData\Local\Temp\jar_cache8428364091372807723.tmp **INFECTED** Win32:Rootkit-gen [Rtk]
18:52:44.120 AVAST engine scan C:\ProgramData
19:02:04.275 Scan finished successfully
19:05:43.781 Disk 0 MBR has been saved successfully to "C:\Users\Lachlan\Desktop\MBR.dat"
19:05:43.812 The log file has been saved successfully to "C:\Users\Lachlan\Desktop\aswMBRnewest.txt"

#10 MurseMan

MurseMan
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:01:39 AM

Posted 02 June 2012 - 11:31 PM

Rogue killer report


RogueKiller V7.5.2 [05/30/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.geekstogo.com/forum/files/file/413-roguekiller/
Blog: http://tigzyrk.blogspot.com

Operating System: Windows 7 (6.1.7600 ) 64 bits version
Started in : Normal mode
User: Lachlan [Admin rights]
Mode: HOSTSFix -- Date: 06/03/2012 00:20:53

¤¤¤ Bad processes: 0 ¤¤¤

¤¤¤ Driver: [NOT LOADED] ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
127.0.0.1 localhost


¤¤¤ Resetted HOSTS: ¤¤¤
127.0.0.1 localhost

Finished : << RKreport[2].txt >>
RKreport[1].txt ; RKreport[2].txt

#11 MurseMan

MurseMan
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:01:39 AM

Posted 02 June 2012 - 11:40 PM

Log from mini toolbox


MiniToolBox by Farbar Version: 14-01-2012
Ran by Lachlan (administrator) on 03-06-2012 at 00:32:49
Microsoft Windows 7 Home Premium (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1 localhost
127.0.0.1 localhost

========================= IP Configuration: ================================

Realtek RTL8188CE 802.11b/g/n WiFi Adapter = Wireless Network Connection (Connected)
Realtek PCIe FE Family Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : TheSequel
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : lan
Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
Physical Address. . . . . . . . . : 98-4B-E1-EC-0D-67
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek RTL8188CE 802.11b/g/n WiFi Adapter
Physical Address. . . . . . . . . : 68-A3-C4-6B-EE-7F
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::d08a:ce31:3215:f741%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.0.102(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : June-02-12 9:39:13 PM
Lease Expires . . . . . . . . . . : June-09-12 9:39:13 PM
Default Gateway . . . . . . . . . : fe80::226:5aff:fef8:4ab0%11
192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DNS Servers . . . . . . . . . . . : 192.168.0.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{471E0D86-F639-4D7A-BA12-0CCB25E869F2}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 12:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:3004:197d:bc61:bad8(Preferred)
Link-local IPv6 Address . . . . . : fe80::3004:197d:bc61:bad8%18(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: UnKnown
Address: 192.168.0.1

Name: google.com
Addresses: 74.125.226.32
74.125.226.33
74.125.226.34
74.125.226.35
74.125.226.36
74.125.226.37
74.125.226.38
74.125.226.39
74.125.226.40
74.125.226.41
74.125.226.46


Pinging google.com [74.125.226.46] with 32 bytes of data:
Reply from 74.125.226.46: bytes=32 time=15ms TTL=58
Reply from 74.125.226.46: bytes=32 time=16ms TTL=58

Ping statistics for 74.125.226.46:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 15ms, Maximum = 16ms, Average = 15ms
Server: UnKnown
Address: 192.168.0.1

Name: yahoo.com
Addresses: 98.139.183.24
209.191.122.70
72.30.38.140


Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=159ms TTL=49
Reply from 72.30.38.140: bytes=32 time=88ms TTL=49

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 88ms, Maximum = 159ms, Average = 123ms
Server: UnKnown
Address: 192.168.0.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
12...98 4b e1 ec 0d 67 ......Realtek PCIe FE Family Controller
11...68 a3 c4 6b ee 7f ......Realtek RTL8188CE 802.11b/g/n WiFi Adapter
1...........................Software Loopback Interface 1
19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
18...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.102 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.0.0 255.255.255.0 On-link 192.168.0.102 281
192.168.0.102 255.255.255.255 On-link 192.168.0.102 281
192.168.0.255 255.255.255.255 On-link 192.168.0.102 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.0.102 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.0.102 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
11 281 ::/0 fe80::226:5aff:fef8:4ab0
18 58 ::/0 On-link
1 306 ::1/128 On-link
18 58 2001::/32 On-link
18 306 2001:0:4137:9e76:3004:197d:bc61:bad8/128
On-link
11 281 fe80::/64 On-link
18 306 fe80::/64 On-link
18 306 fe80::3004:197d:bc61:bad8/128
On-link
11 281 fe80::d08a:ce31:3215:f741/128
On-link
1 306 ff00::/8 On-link
18 306 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [51712] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70144] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (06/02/2012 02:08:50 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (05/22/2012 00:41:55 PM) (Source: Microsoft-Windows-RestartManager) (User: Lachlan)Lachlan
Description: Application or service 'Windows Search' could not be shut down.

Error: (05/22/2012 00:37:31 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest2" on line C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.

Error: (05/22/2012 00:35:25 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest2" on line C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.

Error: (05/22/2012 00:35:20 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest2" on line C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.

Error: (05/17/2012 05:01:18 AM) (Source: Microsoft-Windows-RestartManager) (User: Lachlan)Lachlan
Description: Application or service 'HPWMISVC' could not be restarted.

Error: (04/19/2012 09:49:46 PM) (Source: Application Error) (User: )
Description: Faulting application name: chrome.exe, version: 18.0.1025.162, time stamp: 0x4f86748b
Faulting module name: chrome.dll, version: 18.0.1025.162, time stamp: 0x4f867421
Exception code: 0xc0000005
Fault offset: 0x01a2f0ec
Faulting process id: 0x1b94
Faulting application start time: 0xchrome.exe0
Faulting application path: chrome.exe1
Faulting module path: chrome.exe2
Report Id: chrome.exe3

Error: (03/15/2012 03:20:42 AM) (Source: Application Error) (User: )
Description: Faulting application name: HPWMISVC.exe, version: 2.5.3.0, time stamp: 0x4ed4a2e7
Faulting module name: HPWMISVC.exe, version: 2.5.3.0, time stamp: 0x4ed4a2e7
Exception code: 0xc0000005
Fault offset: 0x000018ae
Faulting process id: 0x6a8
Faulting application start time: 0xHPWMISVC.exe0
Faulting application path: HPWMISVC.exe1
Faulting module path: HPWMISVC.exe2
Report Id: HPWMISVC.exe3

Error: (03/14/2012 09:07:18 PM) (Source: Microsoft-Windows-RestartManager) (User: Lachlan)Lachlan
Description: Application or service 'HPWMISVC' could not be restarted.

Error: (02/06/2012 01:41:03 AM) (Source: Application Error) (User: )
Description: Faulting application name: chrome.exe, version: 16.0.912.77, time stamp: 0x4f18cd7b
Faulting module name: chrome.dll, version: 16.0.912.77, time stamp: 0x4f18cd27
Exception code: 0x80000003
Fault offset: 0x0013028e
Faulting process id: 0x122c
Faulting application start time: 0xchrome.exe0
Faulting application path: chrome.exe1
Faulting module path: chrome.exe2
Report Id: chrome.exe3


System errors:
=============
Error: (05/30/2012 02:16:46 AM) (Source: Service Control Manager) (User: )
Description: The Google Update Service (gupdate) service failed to start due to the following error:
%%109

Error: (05/30/2012 02:16:46 AM) (Source: DCOM) (User: )
Description: 109gupdate/comsvc{4EB61BAC-A3B6-4760-9581-655041EF4D69}

Error: (05/23/2012 00:50:40 PM) (Source: Schannel) (User: SYSTEM)
Description: The following fatal alert was generated: 40. The internal error state is 107.

Error: (05/23/2012 00:50:40 PM) (Source: Schannel) (User: SYSTEM)
Description: The following fatal alert was generated: 40. The internal error state is 107.

Error: (05/23/2012 00:50:40 PM) (Source: Schannel) (User: SYSTEM)
Description: An SSL 3.0 connection request was received from a remote client application, but none of the cipher suites supported by the client application are supported by the server. The SSL connection request has failed.

Error: (05/23/2012 00:50:40 PM) (Source: Schannel) (User: SYSTEM)
Description: An SSL 3.0 connection request was received from a remote client application, but none of the cipher suites supported by the client application are supported by the server. The SSL connection request has failed.

Error: (05/23/2012 00:50:40 PM) (Source: Schannel) (User: SYSTEM)
Description: The following fatal alert was generated: 40. The internal error state is 107.

Error: (05/23/2012 00:50:40 PM) (Source: Schannel) (User: SYSTEM)
Description: An SSL 3.0 connection request was received from a remote client application, but none of the cipher suites supported by the client application are supported by the server. The SSL connection request has failed.

Error: (05/23/2012 00:50:39 PM) (Source: Schannel) (User: SYSTEM)
Description: The following fatal alert was generated: 40. The internal error state is 107.

Error: (05/23/2012 00:50:39 PM) (Source: Schannel) (User: SYSTEM)
Description: An SSL 3.0 connection request was received from a remote client application, but none of the cipher suites supported by the client application are supported by the server. The SSL connection request has failed.


Microsoft Office Sessions:
=========================
Error: (06/02/2012 02:08:50 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestC:\Users\Lachlan\Downloads\esetsmartinstaller_enu.exe

Error: (05/22/2012 00:41:55 PM) (Source: Microsoft-Windows-RestartManager)(User: Lachlan)Lachlan
Description: 1SearchIndexer.exeWindows Search03026216132160

Error: (05/22/2012 00:37:31 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestC:\Users\Lachlan\Downloads\SoftonicDownloader_for_windows-live-messenger.exe

Error: (05/22/2012 00:35:25 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestC:\Users\Lachlan\Downloads\SoftonicDownloader_for_windows-live-messenger.exe

Error: (05/22/2012 00:35:20 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestC:\Users\Lachlan\Downloads\SoftonicDownloader_for_windows-live-messenger.exe

Error: (05/17/2012 05:01:18 AM) (Source: Microsoft-Windows-RestartManager)(User: Lachlan)Lachlan
Description: 0C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exeHPWMISVC03026217818000

Error: (04/19/2012 09:49:46 PM) (Source: Application Error)(User: )
Description: chrome.exe18.0.1025.1624f86748bchrome.dll18.0.1025.1624f867421c000000501a2f0ec1b9401cd1e339c2c7644C:\Users\Lachlan\AppData\Local\Google\Chrome\Application\chrome.exeC:\Users\Lachlan\AppData\Local\Google\Chrome\Application\18.0.1025.162\chrome.dll1af67578-8a8b-11e1-96a0-984be1ec0d67

Error: (03/15/2012 03:20:42 AM) (Source: Application Error)(User: )
Description: HPWMISVC.exe2.5.3.04ed4a2e7HPWMISVC.exe2.5.3.04ed4a2e7c0000005000018ae6a801cd027c0bb256f4C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exeC:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe5f073c93-6e6f-11e1-b924-984be1ec0d67

Error: (03/14/2012 09:07:18 PM) (Source: Microsoft-Windows-RestartManager)(User: Lachlan)Lachlan
Description: 0C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exeHPWMISVC03026217819160

Error: (02/06/2012 01:41:03 AM) (Source: Application Error)(User: )
Description: chrome.exe16.0.912.774f18cd7bchrome.dll16.0.912.774f18cd27800000030013028e122c01cce48750b08f9dC:\Users\Lachlan\AppData\Local\Google\Chrome\Application\chrome.exeC:\Users\Lachlan\AppData\Local\Google\Chrome\Application\16.0.912.77\chrome.dll27a6c29f-5085-11e1-b596-984be1ec0d67


=========================== Installed Programs ============================

64 Bit HP CIO Components Installer (Version: 6.2.2)
Adobe Flash Player 11 ActiveX 64-bit (Version: 11.2.202.235)
Adobe Flash Player 11 Plugin 64-bit (Version: 11.2.202.235)
Adobe Reader X (10.1.3) MUI (Version: 10.1.3)
Adobe Shockwave Player 11.5 (Version: 11.5.8.612)
Agatha Christie - Peril at End House (Version: 2.2.0.95)
AMD Fuel (Version: 2011.0304.1135.20703)
ATI Catalyst Install Manager (Version: 3.0.808.0)
AVG 2011 (Version: 10.0.1390)
AVG 2011 (Version: 10.0.1391)
AVG 2011 (Version: 10.0.1392)
AVG 2011 (Version: 10.0.1416)
AVG 2011 (Version: 10.0.1424)
AVG 2011 (Version: 10.0.2425)
Bejeweled 2 Deluxe (Version: 2.2.0.95)
Bing Bar (Version: 7.1.361.0)
BitTorrent (Version: 7.5.0)
Blackhawk Striker 2 (Version: 2.2.0.95)
Blasterball 3 (Version: 2.2.0.95)
Blio (Version: 2.0.5350)
Bounce Symphony (Version: 2.2.0.95)
Cake Mania (Version: 2.2.0.95)
CamfrogWEB Advanced ActiveX Plugin (remove only)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (Version: 2011.0304.1135.20703)
Catalyst Control Center InstallProxy (Version: 2011.0304.1135.20703)
Catalyst Control Center Localization All (Version: 2011.0304.1135.20703)
ccc-core-static (Version: 2011.0304.1135.20703)
ccc-utility64 (Version: 2011.0304.1135.20703)
CCC Help Chinese Standard (Version: 2011.0304.1134.20703)
CCC Help Chinese Traditional (Version: 2011.0304.1134.20703)
CCC Help Czech (Version: 2011.0304.1134.20703)
CCC Help Danish (Version: 2011.0304.1134.20703)
CCC Help Dutch (Version: 2011.0304.1134.20703)
CCC Help English (Version: 2011.0304.1134.20703)
CCC Help Finnish (Version: 2011.0304.1134.20703)
CCC Help French (Version: 2011.0304.1134.20703)
CCC Help German (Version: 2011.0304.1134.20703)
CCC Help Greek (Version: 2011.0304.1134.20703)
CCC Help Hungarian (Version: 2011.0304.1134.20703)
CCC Help Italian (Version: 2011.0304.1134.20703)
CCC Help Japanese (Version: 2011.0304.1134.20703)
CCC Help Korean (Version: 2011.0304.1134.20703)
CCC Help Norwegian (Version: 2011.0304.1134.20703)
CCC Help Polish (Version: 2011.0304.1134.20703)
CCC Help Portuguese (Version: 2011.0304.1134.20703)
CCC Help Russian (Version: 2011.0304.1134.20703)
CCC Help Spanish (Version: 2011.0304.1134.20703)
CCC Help Swedish (Version: 2011.0304.1134.20703)
CCC Help Thai (Version: 2011.0304.1134.20703)
CCC Help Turkish (Version: 2011.0304.1134.20703)
Chuzzle Deluxe (Version: 2.2.0.95)
Cisco EAP-FAST Module (Version: 2.2.14)
Cisco LEAP Module (Version: 1.0.19)
Cisco PEAP Module (Version: 1.1.6)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Contrôle ActiveX Windows Live Mesh pour connexions ŕ distance (Version: 15.4.5722.2)
Coupon Printer for Windows (Version: 5.0.0.0)
CyberLink DVD Suite (Version: 7.0.3525)
CyberLink YouCam (Version: 3.2.1.3726)
D3DX10 (Version: 15.4.2368.0902)
DJ_SF_06_D1600_SW_Min (Version: 140.0.690.000)
Dora's World Adventure (Version: 2.2.0.95)
Energy Star Digital Logo (Version: 1.0.1)
ESET Online Scanner v3
ESU for Microsoft Windows 7 (Version: 1.0.0)
Farm Frenzy (Version: 2.2.0.95)
FATE (Version: 2.2.0.95)
Final Drive Nitro (Version: 2.2.0.95)
Galerie de photos Windows Live (Version: 15.4.3502.0922)
Google Chrome (Version: 19.0.1084.52)
Google Earth (Version: 6.2.2.6613)
Google Update Helper (Version: 1.3.21.111)
Hewlett-Packard ACLM.NET v1.1.2.0 (Version: 1.00.0000)
HP Auto (Version: 1.0.12494.3472)
HP Client Services (Version: 1.0.12656.3472)
HP CloudDrive
HP Customer Experience Enhancements (Version: 6.0.1.7)
HP Deskjet 1050 J410 series Basic Device Software (Version: 22.50.231.0)
HP Deskjet 1050 J410 series Help (Version: 140.0.66.66)
HP Deskjet 1050 J410 series Product Improvement Study (Version: 22.50.231.0)
HP Deskjet D1600 Printer Driver 14.0 Rel. 6 (Version: 14.0)
HP Documentation (Version: 1.1.0.0)
HP Games (Version: 1.0.1.5)
HP On Screen Display (Version: 1.3.5)
HP Photo Creations (Version: 1.0.0.3781)
HP Power Manager (Version: 1.4.4)
HP Quick Launch (Version: 2.7.2)
HP Setup (Version: 8.6.4516.3597)
HP Setup Manager (Version: 1.1.13155.3599)
HP Software Framework (Version: 4.1.13.1)
HP Support Assistant (Version: 6.1.12.1)
HP Update (Version: 5.002.006.003)
HP Wireless Assistant (Version: 4.0.10.0)
IHMC CmapTools v5.04.02 (Version: 5.0.4.2)
Java Auto Updater (Version: 2.0.5.1)
Java™ 6 Update 22 (64-bit) (Version: 6.0.220)
Java™ 6 Update 26 (Version: 6.0.260)
Junk Mail filter update (Version: 15.4.3502.0922)
LabelPrint (Version: 2.5.3429)
LightScribe System Software (Version: 1.18.20.1)
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
Mesh Runtime (Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office XP Standard for Students and Teachers (Version: 10.0.2627.0)
Microsoft PowerPoint Viewer (Version: 14.0.6029.1000)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Mozilla Firefox 12.0 (x86 en-US) (Version: 12.0)
Mozilla Maintenance Service (Version: 12.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
Mystery P.I. - The London Caper (Version: 2.2.0.95)
Penguins! (Version: 2.2.0.95)
PictureMover (Version: 3.5.0.35)
Plants vs. Zombies (Version: 2.2.0.95)
PlayReady PC Runtime x86 (Version: 1.3.0)
Poker Superstars III (Version: 2.2.0.95)
Polar Bowler (Version: 2.2.0.95)
Polar Golfer (Version: 2.2.0.95)
Power2Go (Version: 6.1.4725)
Realtek Ethernet Controller Driver (Version: 7.34.1130.2010)
Realtek High Definition Audio Driver (Version: 6.0.1.6287)
Realtek PCIE Card Reader (Version: 6.1.7600.72)
REALTEK Wireless LAN Driver (Version: 1.00.11.0706)
Recovery Manager (Version: 1.0.22)
Synaptics Pointing Device Driver (Version: 15.2.4.3)
Toolbox (Version: 140.0.428.000)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update Installer for WildTangent Games App
Virtual Villagers 4 - The Tree of Life (Version: 2.2.0.95)
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
VLC media player 1.1.7 (Version: 1.1.7)
WildTangent Games App (HP Games) (Version: 4.0.5.31)
Windows Live (Version: 15.4.3502.0922)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3508.1109)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3508.1109)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
WMV9/VC-1 Video Playback (Version: 1.00.0000)
World Cup Cricket 20-20 (Version: 2.2.0.95)
Yahoo! Messenger
Yahoo! Software Update
Yahoo! Toolbar
Zuma Deluxe (Version: 2.2.0.95)

========================= Memory info: ===================================

Percentage of memory in use: 59%
Total physical RAM: 3690.9 MB
Available physical RAM: 1500.41 MB
Total Pagefile: 7379.95 MB
Available Pagefile: 4958.06 MB
Total Virtual: 4095.88 MB
Available Virtual: 3975.31 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:282.21 GB) (Free:219.19 GB) NTFS
2 Drive d: (RECOVERY) (Fixed) (Total:15.59 GB) (Free:1.93 GB) NTFS

========================= Users: ========================================

User accounts for \\THESEQUEL

Administrator Guest Lachlan


**** End of log ****

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:39 AM

Posted 02 June 2012 - 11:51 PM

Press Windows+R key and type

notepad and click ok

Now copy this script
@echo off
del /f /s /q "C:\Users\Lachlan\AppData\Local\Temp\jar_cache2051454410895686355.tmp"
del /f /s /q "C:\Users\Lachlan\AppData\Local\Temp\jar_cache4444865438739375976.tmp"
del /f /s /q "C:\Users\Lachlan\AppData\Local\Temp\jar_cache8428364091372807723.tmp"
del %0


Save it as

filename:remove.bat
Save as type:All types

Run the bat file

Post the new aswmbr log

Edited by narenxp, 02 June 2012 - 11:52 PM.


#13 MurseMan

MurseMan
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:01:39 AM

Posted 03 June 2012 - 01:15 PM

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-06-03 08:16:45
-----------------------------
08:16:45.324 OS Version: Windows x64 6.1.7600
08:16:45.324 Number of processors: 2 586 0x100
08:16:45.330 ComputerName: THESEQUEL UserName: Lachlan
08:16:47.115 Initialize success
08:16:58.208 AVAST engine defs: 12060200
08:17:17.973 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000064
08:17:17.983 Disk 0 Vendor: SAMSUNG_ 2AJ1 Size: 305245MB BusType: 11
08:17:18.007 Disk 0 MBR read successfully
08:17:18.018 Disk 0 MBR scan
08:17:18.036 Disk 0 Windows 7 default MBR code
08:17:18.049 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 199 MB offset 2048
08:17:18.081 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 288981 MB offset 409600
08:17:18.129 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 15960 MB offset 592242688
08:17:18.167 Disk 0 Partition 4 00 0C FAT32 LBA MSDOS5.0 103 MB offset 624928768
08:17:18.221 Disk 0 scanning C:\Windows\system32\drivers
08:17:33.338 Service scanning
08:18:08.819 Modules scanning
08:18:08.852 Disk 0 trace - called modules:
08:18:09.286 ntoskrnl.exe CLASSPNP.SYS disk.sys amd_xata.sys storport.sys hal.dll amd_sata.sys
08:18:09.311 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80040f8060]
08:18:09.341 3 CLASSPNP.SYS[fffff8800194943f] -> nt!IofCallDriver -> [0xfffffa8003c62ac0]
08:18:09.364 5 amd_xata.sys[fffff880010f2900] -> nt!IofCallDriver -> \Device\00000064[0xfffffa8003be3420]
08:18:10.533 AVAST engine scan C:\Windows
08:18:14.581 AVAST engine scan C:\Windows\system32
08:24:15.865 AVAST engine scan C:\Windows\system32\drivers
08:24:53.341 AVAST engine scan C:\Users\Lachlan
08:58:27.894 AVAST engine scan C:\ProgramData
09:02:53.215 Scan finished successfully
13:51:54.549 Disk 0 MBR has been saved successfully to "C:\Users\Lachlan\Desktop\MBR.dat"
13:51:54.569 The log file has been saved successfully to "C:\Users\Lachlan\Desktop\aswMBR2.txt"

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:39 AM

Posted 03 June 2012 - 02:33 PM

That looks good

Download

TFC


Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp


Update your antivirus frequently,do not click on suspicious links

Safe surfing :)

#15 MurseMan

MurseMan
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:01:39 AM

Posted 04 June 2012 - 10:46 AM

Thanks so much for your help, you made this very easy for someone who doesn't know too much about computers.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users