Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Browser hijacked? What else is wrong?


  • Please log in to reply
5 replies to this topic

#1 cathyb10

cathyb10

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:12:25 AM

Posted 06 June 2012 - 05:13 AM

<_< My laptop browser was redirected to a page reading 'Welcome to Nginx'. Also, this forum and other security forums (bleepingcomputer) are blocked. This is a work machine - it doesn't seem to be running any anti-spyware or anything but the standard Windows firewall.

Details are as follows:

Windows 7
Toshiba Portege R830
Kaspersky AV 6.0
No firewall or anti-spyware that I can find.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:25 AM

Posted 06 June 2012 - 05:19 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)



Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

Download

Rogue killer

right click on it and select run as administrator

Now,click on HOSTS FIX option on right side

A log should get generated after the fix ,post the log here

Edited by narenxp, 06 June 2012 - 05:20 AM.


#3 cathyb10

cathyb10
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:12:25 AM

Posted 06 June 2012 - 09:11 AM

Thank you! I think this one was my own fault for downloading a daft card game. :whistle: Reports follow:

TDSS Killer Log (Nothing there I think)

21:44:49.0240 6504 TDSS rootkit removing tool 2.7.36.0 May 21 2012 16:40:16
21:44:51.0245 6504 ============================================================
21:44:51.0245 6504 Current date / time: 2012/06/06 21:44:51.0245
21:44:51.0245 6504 SystemInfo:
21:44:51.0245 6504
21:44:51.0245 6504 OS Version: 6.1.7601 ServicePack: 1.0
21:44:51.0245 6504 Product type: Workstation
21:44:51.0246 6504 ComputerName: WK-HAIBOC
21:44:51.0246 6504 UserName: Cathy
21:44:51.0246 6504 Windows directory: C:\Windows
21:44:51.0246 6504 System windows directory: C:\Windows
21:44:51.0246 6504 Running under WOW64
21:44:51.0246 6504 Processor architecture: Intel x64
21:44:51.0246 6504 Number of processors: 4
21:44:51.0246 6504 Page size: 0x1000
21:44:51.0246 6504 Boot type: Normal boot
21:44:51.0246 6504 ============================================================
21:44:52.0349 6504 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:44:52.0363 6504 ============================================================
21:44:52.0363 6504 \Device\Harddisk0\DR0:
21:44:52.0363 6504 MBR partitions:
21:44:52.0363 6504 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
21:44:52.0363 6504 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x38CB3000
21:44:52.0363 6504 ============================================================
21:44:52.0379 6504 C: <-> \Device\Harddisk0\DR0\Partition1
21:44:52.0380 6504 ============================================================
21:44:52.0380 6504 Initialize success
21:44:52.0380 6504 ============================================================
21:45:10.0073 6520 ============================================================
21:45:10.0073 6520 Scan started
21:45:10.0073 6520 Mode: Manual; TDLFS;
21:45:10.0073 6520 ============================================================
21:45:11.0018 6520 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
21:45:11.0025 6520 1394ohci - ok
21:45:11.0064 6520 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
21:45:11.0078 6520 ACPI - ok
21:45:11.0092 6520 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
21:45:11.0095 6520 AcpiPmi - ok
21:45:11.0235 6520 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
21:45:11.0238 6520 AdobeARMservice - ok
21:45:11.0417 6520 AdobeFlashPlayerUpdateSvc (76d5a3d2a50402a0b9b6ed13c4371e79) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:45:11.0424 6520 AdobeFlashPlayerUpdateSvc - ok
21:45:11.0502 6520 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys
21:45:11.0522 6520 adp94xx - ok
21:45:11.0584 6520 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys
21:45:11.0599 6520 adpahci - ok
21:45:11.0628 6520 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys
21:45:11.0650 6520 adpu320 - ok
21:45:11.0682 6520 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
21:45:11.0686 6520 AeLookupSvc - ok
21:45:11.0763 6520 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
21:45:11.0797 6520 AFD - ok
21:45:11.0831 6520 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
21:45:11.0836 6520 agp440 - ok
21:45:11.0858 6520 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
21:45:11.0863 6520 ALG - ok
21:45:11.0895 6520 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
21:45:11.0898 6520 aliide - ok
21:45:11.0913 6520 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
21:45:11.0916 6520 amdide - ok
21:45:11.0945 6520 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys
21:45:11.0950 6520 AmdK8 - ok
21:45:11.0966 6520 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys
21:45:11.0970 6520 AmdPPM - ok
21:45:12.0003 6520 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
21:45:12.0009 6520 amdsata - ok
21:45:12.0033 6520 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys
21:45:12.0042 6520 amdsbs - ok
21:45:12.0056 6520 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
21:45:12.0060 6520 amdxata - ok
21:45:12.0103 6520 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
21:45:12.0108 6520 AppID - ok
21:45:12.0131 6520 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
21:45:12.0146 6520 AppIDSvc - ok
21:45:12.0167 6520 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
21:45:12.0170 6520 Appinfo - ok
21:45:12.0219 6520 AppMgmt (4aba3e75a76195a3e38ed2766c962899) C:\Windows\System32\appmgmts.dll
21:45:12.0224 6520 AppMgmt - ok
21:45:12.0264 6520 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys
21:45:12.0270 6520 arc - ok
21:45:12.0289 6520 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys
21:45:12.0295 6520 arcsas - ok
21:45:12.0317 6520 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
21:45:12.0323 6520 AsyncMac - ok
21:45:12.0358 6520 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
21:45:12.0360 6520 atapi - ok
21:45:12.0565 6520 ATService (a9ddca3e344d3018d067ae089a0ccaf0) C:\Program Files\Fingerprint Sensor\ATService.exe
21:45:12.0607 6520 ATService - ok
21:45:12.0774 6520 ATSwpWDF (474ee95924d3fda71d834a3847136f11) C:\Windows\system32\Drivers\ATSwpWDF.sys
21:45:12.0787 6520 ATSwpWDF - ok
21:45:12.0875 6520 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
21:45:12.0906 6520 AudioEndpointBuilder - ok
21:45:12.0922 6520 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
21:45:12.0933 6520 AudioSrv - ok
21:45:13.0071 6520 AVP (5e3f0aaea4642bf184deea311c7201de) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations MP4\avp.exe
21:45:13.0077 6520 AVP - ok
21:45:13.0104 6520 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
21:45:13.0110 6520 AxInstSV - ok
21:45:13.0193 6520 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys
21:45:13.0205 6520 b06bdrv - ok
21:45:13.0268 6520 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
21:45:13.0279 6520 b57nd60a - ok
21:45:13.0319 6520 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
21:45:13.0335 6520 BDESVC - ok
21:45:13.0352 6520 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
21:45:13.0370 6520 Beep - ok
21:45:13.0453 6520 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
21:45:13.0469 6520 BFE - ok
21:45:13.0558 6520 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
21:45:13.0591 6520 BITS - ok
21:45:13.0646 6520 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
21:45:13.0649 6520 blbdrive - ok
21:45:13.0693 6520 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
21:45:13.0698 6520 bowser - ok
21:45:13.0720 6520 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys
21:45:13.0735 6520 BrFiltLo - ok
21:45:13.0747 6520 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys
21:45:13.0750 6520 BrFiltUp - ok
21:45:13.0953 6520 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
21:45:13.0958 6520 Browser - ok
21:45:14.0007 6520 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
21:45:14.0020 6520 Brserid - ok
21:45:14.0048 6520 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
21:45:14.0064 6520 BrSerWdm - ok
21:45:14.0079 6520 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
21:45:14.0082 6520 BrUsbMdm - ok
21:45:14.0093 6520 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
21:45:14.0096 6520 BrUsbSer - ok
21:45:14.0129 6520 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\drivers\bthmodem.sys
21:45:14.0134 6520 BTHMODEM - ok
21:45:14.0163 6520 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
21:45:14.0168 6520 bthserv - ok
21:45:14.0192 6520 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
21:45:14.0197 6520 cdfs - ok
21:45:14.0233 6520 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
21:45:14.0237 6520 cdrom - ok
21:45:14.0276 6520 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
21:45:14.0280 6520 CertPropSvc - ok
21:45:14.0309 6520 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys
21:45:14.0313 6520 circlass - ok
21:45:14.0360 6520 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
21:45:14.0376 6520 CLFS - ok
21:45:14.0433 6520 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:45:14.0437 6520 clr_optimization_v2.0.50727_32 - ok
21:45:14.0494 6520 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:45:14.0510 6520 clr_optimization_v2.0.50727_64 - ok
21:45:14.0574 6520 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:45:14.0579 6520 clr_optimization_v4.0.30319_32 - ok
21:45:14.0624 6520 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:45:14.0630 6520 clr_optimization_v4.0.30319_64 - ok
21:45:14.0658 6520 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
21:45:14.0662 6520 CmBatt - ok
21:45:14.0680 6520 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
21:45:14.0684 6520 cmdide - ok
21:45:14.0766 6520 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
21:45:14.0784 6520 CNG - ok
21:45:14.0807 6520 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys
21:45:14.0811 6520 Compbatt - ok
21:45:14.0842 6520 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\DRIVERS\CompositeBus.sys
21:45:14.0846 6520 CompositeBus - ok
21:45:14.0852 6520 COMSysApp - ok
21:45:14.0874 6520 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys
21:45:14.0878 6520 crcdisk - ok
21:45:14.0919 6520 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll
21:45:14.0925 6520 CryptSvc - ok
21:45:14.0991 6520 CSC (54da3dfd29ed9f1619b6f53f3ce55e49) C:\Windows\system32\drivers\csc.sys
21:45:15.0024 6520 CSC - ok
21:45:15.0089 6520 CscService (3ab183ab4d2c79dcf459cd2c1266b043) C:\Windows\System32\cscsvc.dll
21:45:15.0122 6520 CscService - ok
21:45:15.0200 6520 dc3d (7f61fbe259c18666d8ddf862f13a5eb0) C:\Windows\system32\DRIVERS\dc3d.sys
21:45:15.0203 6520 dc3d - ok
21:45:15.0312 6520 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
21:45:15.0326 6520 DcomLaunch - ok
21:45:15.0439 6520 DCService.exe (3b604417ebae4e1e66e6abd8cc55fd76) C:\ProgramData\DatacardService\DCService.exe
21:45:15.0445 6520 DCService.exe - ok
21:45:15.0490 6520 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
21:45:15.0509 6520 defragsvc - ok
21:45:15.0536 6520 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
21:45:15.0542 6520 DfsC - ok
21:45:15.0587 6520 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
21:45:15.0608 6520 Dhcp - ok
21:45:15.0623 6520 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
21:45:15.0643 6520 discache - ok
21:45:15.0694 6520 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys
21:45:15.0699 6520 Disk - ok
21:45:15.0732 6520 dmvsc (5db085a8a6600be6401f2b24eecb5415) C:\Windows\system32\drivers\dmvsc.sys
21:45:15.0736 6520 dmvsc - ok
21:45:15.0786 6520 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
21:45:15.0805 6520 Dnscache - ok
21:45:15.0841 6520 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
21:45:15.0850 6520 dot3svc - ok
21:45:15.0876 6520 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
21:45:15.0882 6520 DPS - ok
21:45:15.0906 6520 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
21:45:15.0910 6520 drmkaud - ok
21:45:16.0004 6520 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
21:45:16.0036 6520 DXGKrnl - ok
21:45:16.0107 6520 e1cexpress (03f4c5c12fc1c69f838da723475ef650) C:\Windows\system32\DRIVERS\e1c62x64.sys
21:45:16.0114 6520 e1cexpress - ok
21:45:16.0145 6520 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
21:45:16.0150 6520 EapHost - ok
21:45:16.0347 6520 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys
21:45:16.0414 6520 ebdrv - ok
21:45:16.0528 6520 ecnssndis (f88f2e5806fc405b0fa94b7947a5875e) C:\Windows\system32\Drivers\wwuss64.sys
21:45:16.0531 6520 ecnssndis - ok
21:45:16.0546 6520 ecnssndisfltr (c8cd88218efc28f7e44a9892b3e97f4d) C:\Windows\system32\Drivers\wwussf64.sys
21:45:16.0550 6520 ecnssndisfltr - ok
21:45:16.0585 6520 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
21:45:16.0590 6520 EFS - ok
21:45:16.0677 6520 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
21:45:16.0694 6520 ehRecvr - ok
21:45:16.0720 6520 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
21:45:16.0725 6520 ehSched - ok
21:45:16.0795 6520 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys
21:45:16.0814 6520 elxstor - ok
21:45:16.0833 6520 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
21:45:16.0838 6520 ErrDev - ok
21:45:16.0893 6520 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
21:45:16.0902 6520 EventSystem - ok
21:45:16.0917 6520 ewusbnet - ok
21:45:16.0960 6520 ew_hwusbdev (86f7951bbcee4a86e79a97306bd14318) C:\Windows\system32\DRIVERS\ew_hwusbdev.sys
21:45:16.0966 6520 ew_hwusbdev - ok
21:45:17.0020 6520 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
21:45:17.0045 6520 exfat - ok
21:45:17.0078 6520 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
21:45:17.0088 6520 fastfat - ok
21:45:17.0163 6520 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
21:45:17.0180 6520 Fax - ok
21:45:17.0211 6520 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys
21:45:17.0215 6520 fdc - ok
21:45:17.0240 6520 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
21:45:17.0244 6520 fdPHost - ok
21:45:17.0255 6520 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
21:45:17.0259 6520 FDResPub - ok
21:45:17.0279 6520 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
21:45:17.0285 6520 FileInfo - ok
21:45:17.0302 6520 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
21:45:17.0306 6520 Filetrace - ok
21:45:17.0325 6520 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys
21:45:17.0329 6520 flpydisk - ok
21:45:17.0373 6520 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
21:45:17.0385 6520 FltMgr - ok
21:45:17.0495 6520 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
21:45:17.0521 6520 FontCache - ok
21:45:17.0566 6520 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:45:17.0589 6520 FontCache3.0.0.0 - ok
21:45:17.0623 6520 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
21:45:17.0628 6520 FsDepends - ok
21:45:17.0659 6520 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
21:45:17.0663 6520 Fs_Rec - ok
21:45:17.0700 6520 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
21:45:17.0710 6520 fvevol - ok
21:45:17.0738 6520 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys
21:45:17.0760 6520 gagp30kx - ok
21:45:17.0842 6520 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
21:45:17.0879 6520 gpsvc - ok
21:45:17.0987 6520 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:45:17.0992 6520 gupdate - ok
21:45:17.0999 6520 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:45:18.0002 6520 gupdatem - ok
21:45:18.0025 6520 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
21:45:18.0039 6520 hcw85cir - ok
21:45:18.0100 6520 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
21:45:18.0115 6520 HdAudAddService - ok
21:45:18.0170 6520 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\DRIVERS\HDAudBus.sys
21:45:18.0174 6520 HDAudBus - ok
21:45:18.0189 6520 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys
21:45:18.0209 6520 HidBatt - ok
21:45:18.0227 6520 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys
21:45:18.0233 6520 HidBth - ok
21:45:18.0249 6520 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys
21:45:18.0269 6520 HidIr - ok
21:45:18.0295 6520 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
21:45:18.0310 6520 hidserv - ok
21:45:18.0325 6520 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
21:45:18.0329 6520 HidUsb - ok
21:45:18.0357 6520 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
21:45:18.0363 6520 hkmsvc - ok
21:45:18.0392 6520 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
21:45:18.0401 6520 HomeGroupListener - ok
21:45:18.0443 6520 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
21:45:18.0450 6520 HomeGroupProvider - ok
21:45:18.0489 6520 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
21:45:18.0510 6520 HpSAMD - ok
21:45:18.0573 6520 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
21:45:18.0598 6520 HTTP - ok
21:45:18.0655 6520 huawei_enumerator (09af4d7563efc283bedddafe60faf168) C:\Windows\system32\DRIVERS\ew_jubusenum.sys
21:45:18.0659 6520 huawei_enumerator - ok
21:45:18.0669 6520 hwdatacard - ok
21:45:18.0689 6520 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
21:45:18.0693 6520 hwpolicy - ok
21:45:18.0735 6520 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
21:45:18.0740 6520 i8042prt - ok
21:45:18.0799 6520 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
21:45:18.0817 6520 iaStorV - ok
21:45:18.0940 6520 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:45:19.0011 6520 idsvc - ok
21:45:19.0852 6520 igfx (370c2a8629b30f910f740387795ddc6f) C:\Windows\system32\DRIVERS\igdkmd64.sys
21:45:20.0222 6520 igfx - ok
21:45:20.0374 6520 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys
21:45:20.0389 6520 iirsp - ok
21:45:20.0472 6520 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
21:45:20.0491 6520 IKEEXT - ok
21:45:20.0676 6520 IntcAzAudAddService (75687fa02233621851567bcec6291238) C:\Windows\system32\drivers\RTKVHD64.sys
21:45:20.0736 6520 IntcAzAudAddService - ok
21:45:20.0909 6520 IntcDAud (fc727061c0f47c8059e88e05d5c8e381) C:\Windows\system32\DRIVERS\IntcDAud.sys
21:45:20.0916 6520 IntcDAud - ok
21:45:20.0932 6520 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
21:45:20.0935 6520 intelide - ok
21:45:20.0980 6520 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
21:45:20.0983 6520 intelppm - ok
21:45:21.0026 6520 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
21:45:21.0031 6520 IPBusEnum - ok
21:45:21.0066 6520 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:45:21.0072 6520 IpFilterDriver - ok
21:45:21.0124 6520 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
21:45:21.0139 6520 iphlpsvc - ok
21:45:21.0165 6520 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
21:45:21.0170 6520 IPMIDRV - ok
21:45:21.0188 6520 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
21:45:21.0210 6520 IPNAT - ok
21:45:21.0281 6520 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
21:45:21.0285 6520 IRENUM - ok
21:45:21.0326 6520 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
21:45:21.0330 6520 isapnp - ok
21:45:21.0368 6520 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
21:45:21.0397 6520 iScsiPrt - ok
21:45:21.0413 6520 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
21:45:21.0435 6520 kbdclass - ok
21:45:21.0454 6520 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
21:45:21.0458 6520 kbdhid - ok
21:45:21.0493 6520 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:45:21.0497 6520 KeyIso - ok
21:45:21.0559 6520 kl1 (5d470398aa182e502c520e48e7a09fa5) C:\Windows\system32\DRIVERS\kl1.sys
21:45:21.0563 6520 kl1 - ok
21:45:21.0574 6520 KLFLTDEV (ff6a56785d12940feaa685eeeb6f4e45) C:\Windows\system32\DRIVERS\klfltdev.sys
21:45:21.0577 6520 KLFLTDEV - ok
21:45:21.0631 6520 KLIF (e03c26d496aa103856b3439f43085a35) C:\Windows\system32\DRIVERS\klif.sys
21:45:21.0641 6520 KLIF - ok
21:45:21.0655 6520 KLIM6 (191f63279468995019d71d4b779a25ec) C:\Windows\system32\DRIVERS\klim6.sys
21:45:21.0659 6520 KLIM6 - ok
21:45:21.0675 6520 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
21:45:21.0681 6520 KSecDD - ok
21:45:21.0708 6520 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
21:45:21.0716 6520 KSecPkg - ok
21:45:21.0749 6520 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
21:45:21.0752 6520 ksthunk - ok
21:45:21.0811 6520 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
21:45:21.0823 6520 KtmRm - ok
21:45:21.0880 6520 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
21:45:21.0889 6520 LanmanServer - ok
21:45:21.0927 6520 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
21:45:21.0935 6520 LanmanWorkstation - ok
21:45:21.0975 6520 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
21:45:21.0979 6520 lltdio - ok
21:45:22.0026 6520 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
21:45:22.0037 6520 lltdsvc - ok
21:45:22.0055 6520 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
21:45:22.0060 6520 lmhosts - ok
21:45:22.0202 6520 LMS (43e361692c9a196abfcd090e925b954e) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
21:45:22.0210 6520 LMS - ok
21:45:22.0247 6520 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys
21:45:22.0253 6520 LSI_FC - ok
21:45:22.0281 6520 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys
21:45:22.0304 6520 LSI_SAS - ok
21:45:22.0324 6520 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys
21:45:22.0329 6520 LSI_SAS2 - ok
21:45:22.0362 6520 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys
21:45:22.0368 6520 LSI_SCSI - ok
21:45:22.0407 6520 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
21:45:22.0413 6520 luafv - ok
21:45:22.0471 6520 massfilter (f093ef8279734393b0a134fb55c5657d) C:\Windows\system32\drivers\massfilter.sys
21:45:22.0474 6520 massfilter - ok
21:45:22.0498 6520 massfilter_lte (22d01516948417c8a224a25694c99ecd) C:\Windows\system32\drivers\massfilter_lte.sys
21:45:22.0500 6520 massfilter_lte - ok
21:45:22.0569 6520 Mbm3CBus (0845da0bff1af5c57de4dd97acaf2fcd) C:\Windows\system32\DRIVERS\Mbm3CBus.sys
21:45:22.0584 6520 Mbm3CBus - ok
21:45:22.0636 6520 Mbm3DevMt (db6fa599aa79324e287c4eaf6020da37) C:\Windows\system32\DRIVERS\Mbm3DevMt.sys
21:45:22.0651 6520 Mbm3DevMt - ok
21:45:22.0693 6520 Mbm3mdfl (2f71edb697752d409b9983f0e1d88f70) C:\Windows\system32\DRIVERS\Mbm3mdfl.sys
21:45:22.0696 6520 Mbm3mdfl - ok
21:45:22.0750 6520 Mbm3Mdm (21b412a36de3ccfe4e13383b88cfc90c) C:\Windows\system32\DRIVERS\Mbm3Mdm.sys
21:45:22.0766 6520 Mbm3Mdm - ok
21:45:22.0794 6520 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
21:45:22.0801 6520 Mcx2Svc - ok
21:45:22.0829 6520 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys
21:45:22.0833 6520 megasas - ok
21:45:22.0880 6520 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys
21:45:22.0892 6520 MegaSR - ok
21:45:22.0927 6520 MEIx64 (a6518dcc42f7a6e999bb3bea8fd87567) C:\Windows\system32\DRIVERS\HECIx64.sys
21:45:22.0929 6520 MEIx64 - ok
21:45:22.0959 6520 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
21:45:22.0965 6520 MMCSS - ok
21:45:22.0989 6520 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
21:45:22.0993 6520 Modem - ok
21:45:23.0018 6520 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
21:45:23.0021 6520 monitor - ok
21:45:23.0044 6520 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
21:45:23.0065 6520 mouclass - ok
21:45:23.0089 6520 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
21:45:23.0093 6520 mouhid - ok
21:45:23.0132 6520 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
21:45:23.0137 6520 mountmgr - ok
21:45:23.0207 6520 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
21:45:23.0211 6520 MozillaMaintenance - ok
21:45:23.0284 6520 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
21:45:23.0292 6520 mpio - ok
21:45:23.0321 6520 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
21:45:23.0327 6520 mpsdrv - ok
21:45:23.0420 6520 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
21:45:23.0440 6520 MpsSvc - ok
21:45:23.0462 6520 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
21:45:23.0485 6520 MRxDAV - ok
21:45:23.0537 6520 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
21:45:23.0549 6520 mrxsmb - ok
21:45:23.0608 6520 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:45:23.0619 6520 mrxsmb10 - ok
21:45:23.0643 6520 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:45:23.0650 6520 mrxsmb20 - ok
21:45:23.0678 6520 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
21:45:23.0681 6520 msahci - ok
21:45:23.0709 6520 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
21:45:23.0716 6520 msdsm - ok
21:45:23.0745 6520 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
21:45:23.0753 6520 MSDTC - ok
21:45:23.0794 6520 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
21:45:23.0798 6520 Msfs - ok
21:45:23.0826 6520 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
21:45:23.0845 6520 mshidkmdf - ok
21:45:23.0864 6520 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
21:45:23.0868 6520 msisadrv - ok
21:45:23.0899 6520 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
21:45:23.0906 6520 MSiSCSI - ok
21:45:23.0913 6520 msiserver - ok
21:45:23.0939 6520 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
21:45:23.0943 6520 MSKSSRV - ok
21:45:23.0957 6520 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
21:45:23.0960 6520 MSPCLOCK - ok
21:45:23.0966 6520 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
21:45:23.0969 6520 MSPQM - ok
21:45:24.0015 6520 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
21:45:24.0031 6520 MsRPC - ok
21:45:24.0079 6520 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
21:45:24.0100 6520 mssmbios - ok
21:45:24.0128 6520 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
21:45:24.0146 6520 MSTEE - ok
21:45:24.0175 6520 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys
21:45:24.0178 6520 MTConfig - ok
21:45:24.0206 6520 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
21:45:24.0211 6520 Mup - ok
21:45:24.0267 6520 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
21:45:24.0280 6520 napagent - ok
21:45:24.0333 6520 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
21:45:24.0361 6520 NativeWifiP - ok
21:45:24.0454 6520 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
21:45:24.0486 6520 NDIS - ok
21:45:24.0514 6520 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
21:45:24.0519 6520 NdisCap - ok
21:45:24.0545 6520 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
21:45:24.0563 6520 NdisTapi - ok
21:45:24.0579 6520 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
21:45:24.0583 6520 Ndisuio - ok
21:45:24.0612 6520 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
21:45:24.0619 6520 NdisWan - ok
21:45:24.0650 6520 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
21:45:24.0654 6520 NDProxy - ok
21:45:24.0688 6520 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
21:45:24.0692 6520 NetBIOS - ok
21:45:24.0724 6520 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
21:45:24.0734 6520 NetBT - ok
21:45:24.0775 6520 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:45:24.0779 6520 Netlogon - ok
21:45:24.0827 6520 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
21:45:24.0838 6520 Netman - ok
21:45:24.0894 6520 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
21:45:24.0905 6520 netprofm - ok
21:45:24.0972 6520 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:45:24.0978 6520 NetTcpPortSharing - ok
21:45:25.0539 6520 NETwNs64 (b9c587bdaa61a689883439d5ae6fe7f3) C:\Windows\system32\DRIVERS\NETwNs64.sys
21:45:25.0741 6520 NETwNs64 - ok
21:45:25.0972 6520 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys
21:45:25.0977 6520 nfrd960 - ok
21:45:26.0025 6520 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
21:45:26.0048 6520 NlaSvc - ok
21:45:26.0073 6520 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
21:45:26.0078 6520 Npfs - ok
21:45:26.0106 6520 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
21:45:26.0111 6520 nsi - ok
21:45:26.0124 6520 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
21:45:26.0127 6520 nsiproxy - ok
21:45:26.0308 6520 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
21:45:26.0383 6520 Ntfs - ok
21:45:26.0584 6520 NuidFltr (317020d31f1696334679b9d0416eb62e) C:\Windows\system32\DRIVERS\NuidFltr.sys
21:45:26.0587 6520 NuidFltr - ok
21:45:26.0618 6520 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
21:45:26.0621 6520 Null - ok
21:45:26.0669 6520 nusb3hub (158ad24745bd85ba9be3c51c38f48c32) C:\Windows\system32\DRIVERS\nusb3hub.sys
21:45:26.0673 6520 nusb3hub - ok
21:45:26.0703 6520 nusb3xhc (d40a13b2c0891e218f9523b376955db6) C:\Windows\system32\DRIVERS\nusb3xhc.sys
21:45:26.0709 6520 nusb3xhc - ok
21:45:26.0745 6520 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
21:45:26.0752 6520 nvraid - ok
21:45:26.0781 6520 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
21:45:26.0790 6520 nvstor - ok
21:45:26.0821 6520 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
21:45:26.0828 6520 nv_agp - ok
21:45:26.0845 6520 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
21:45:26.0851 6520 ohci1394 - ok
21:45:26.0932 6520 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:45:26.0937 6520 ose - ok
21:45:27.0377 6520 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
21:45:27.0475 6520 osppsvc - ok
21:45:27.0592 6520 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
21:45:27.0609 6520 p2pimsvc - ok
21:45:27.0659 6520 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
21:45:27.0675 6520 p2psvc - ok
21:45:27.0727 6520 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys
21:45:27.0733 6520 Parport - ok
21:45:27.0785 6520 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
21:45:27.0793 6520 partmgr - ok
21:45:27.0821 6520 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
21:45:27.0830 6520 PcaSvc - ok
21:45:27.0868 6520 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
21:45:27.0877 6520 pci - ok
21:45:27.0890 6520 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
21:45:27.0893 6520 pciide - ok
21:45:27.0921 6520 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys
21:45:27.0932 6520 pcmcia - ok
21:45:27.0954 6520 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
21:45:27.0975 6520 pcw - ok
21:45:28.0033 6520 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
21:45:28.0068 6520 PEAUTH - ok
21:45:28.0177 6520 PeerDistSvc (b9b0a4299dd2d76a4243f75fd54dc680) C:\Windows\system32\peerdistsvc.dll
21:45:28.0210 6520 PeerDistSvc - ok
21:45:28.0311 6520 PenCommService (edffbc067c9321d2076b3d6f33e0d4c6) C:\Program Files (x86)\Common Files\Livescribe\PenComm\PenCommService.exe
21:45:28.0319 6520 PenCommService - ok
21:45:28.0417 6520 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
21:45:28.0422 6520 PerfHost - ok
21:45:28.0599 6520 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
21:45:28.0633 6520 pla - ok
21:45:28.0725 6520 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
21:45:28.0737 6520 PlugPlay - ok
21:45:28.0746 6520 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
21:45:28.0764 6520 PNRPAutoReg - ok
21:45:28.0798 6520 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
21:45:28.0807 6520 PNRPsvc - ok
21:45:28.0876 6520 Point64 (4f0878fd62d5f7444c5f1c4c66d9d293) C:\Windows\system32\DRIVERS\point64.sys
21:45:28.0879 6520 Point64 - ok
21:45:28.0938 6520 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
21:45:28.0963 6520 PolicyAgent - ok
21:45:29.0017 6520 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
21:45:29.0025 6520 Power - ok
21:45:29.0071 6520 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
21:45:29.0077 6520 PptpMiniport - ok
21:45:29.0229 6520 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys
21:45:29.0280 6520 Processor - ok
21:45:29.0328 6520 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
21:45:29.0337 6520 ProfSvc - ok
21:45:29.0375 6520 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:45:29.0379 6520 ProtectedStorage - ok
21:45:29.0414 6520 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
21:45:29.0420 6520 Psched - ok
21:45:29.0471 6520 PulseUsb (edc3cc1d029601c8da3ff8bcfb08881f) C:\Windows\system32\DRIVERS\PulseUsb.sys
21:45:29.0474 6520 PulseUsb - ok
21:45:29.0587 6520 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys
21:45:29.0635 6520 ql2300 - ok
21:45:29.0748 6520 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys
21:45:29.0771 6520 ql40xx - ok
21:45:29.0807 6520 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
21:45:29.0817 6520 QWAVE - ok
21:45:29.0839 6520 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
21:45:29.0859 6520 QWAVEdrv - ok
21:45:29.0876 6520 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
21:45:29.0879 6520 RasAcd - ok
21:45:29.0919 6520 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
21:45:29.0923 6520 RasAgileVpn - ok
21:45:29.0955 6520 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
21:45:29.0974 6520 RasAuto - ok
21:45:29.0996 6520 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
21:45:30.0002 6520 Rasl2tp - ok
21:45:30.0050 6520 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
21:45:30.0061 6520 RasMan - ok
21:45:30.0081 6520 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
21:45:30.0086 6520 RasPppoe - ok
21:45:30.0104 6520 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
21:45:30.0110 6520 RasSstp - ok
21:45:30.0145 6520 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
21:45:30.0168 6520 rdbss - ok
21:45:30.0194 6520 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
21:45:30.0198 6520 rdpbus - ok
21:45:30.0215 6520 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
21:45:30.0218 6520 RDPCDD - ok
21:45:30.0256 6520 RDPDR (1b6163c503398b23ff8b939c67747683) C:\Windows\system32\drivers\rdpdr.sys
21:45:30.0280 6520 RDPDR - ok
21:45:30.0301 6520 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
21:45:30.0304 6520 RDPENCDD - ok
21:45:30.0336 6520 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
21:45:30.0340 6520 RDPREFMP - ok
21:45:30.0390 6520 RDPWD (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys
21:45:30.0416 6520 RDPWD - ok
21:45:30.0461 6520 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
21:45:30.0470 6520 rdyboost - ok
21:45:30.0500 6520 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
21:45:30.0518 6520 RemoteAccess - ok
21:45:30.0556 6520 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
21:45:30.0565 6520 RemoteRegistry - ok
21:45:30.0606 6520 risdxc (a14df7c3bc519328accb8fa741bad78a) C:\Windows\system32\DRIVERS\risdxc64.sys
21:45:30.0610 6520 risdxc - ok
21:45:30.0629 6520 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
21:45:30.0635 6520 RpcEptMapper - ok
21:45:30.0650 6520 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
21:45:30.0655 6520 RpcLocator - ok
21:45:30.0710 6520 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
21:45:30.0721 6520 RpcSs - ok
21:45:30.0750 6520 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
21:45:30.0772 6520 rspndr - ok
21:45:30.0799 6520 s3cap (e60c0a09f997826c7627b244195ab581) C:\Windows\system32\drivers\vms3cap.sys
21:45:30.0802 6520 s3cap - ok
21:45:30.0842 6520 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:45:30.0845 6520 SamSs - ok
21:45:30.0879 6520 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
21:45:30.0885 6520 sbp2port - ok
21:45:30.0920 6520 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
21:45:30.0928 6520 SCardSvr - ok
21:45:30.0946 6520 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
21:45:30.0950 6520 scfilter - ok
21:45:31.0034 6520 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
21:45:31.0080 6520 Schedule - ok
21:45:31.0116 6520 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
21:45:31.0119 6520 SCPolicySvc - ok
21:45:31.0144 6520 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
21:45:31.0152 6520 SDRSVC - ok
21:45:31.0237 6520 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
21:45:31.0240 6520 secdrv - ok
21:45:31.0262 6520 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
21:45:31.0269 6520 seclogon - ok
21:45:31.0292 6520 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
21:45:31.0298 6520 SENS - ok
21:45:31.0316 6520 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
21:45:31.0323 6520 SensrSvc - ok
21:45:31.0352 6520 Ser2pl (9f6490423ac3271e84a90a0dd9d30a3b) C:\Windows\system32\drivers\ser2pl64.sys
21:45:31.0368 6520 Ser2pl - ok
21:45:31.0401 6520 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
21:45:31.0404 6520 Serenum - ok
21:45:31.0436 6520 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
21:45:31.0441 6520 Serial - ok
21:45:31.0472 6520 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys
21:45:31.0476 6520 sermouse - ok
21:45:31.0525 6520 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
21:45:31.0532 6520 SessionEnv - ok
21:45:31.0558 6520 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
21:45:31.0562 6520 sffdisk - ok
21:45:31.0576 6520 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
21:45:31.0579 6520 sffp_mmc - ok
21:45:31.0594 6520 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
21:45:31.0597 6520 sffp_sd - ok
21:45:31.0607 6520 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys
21:45:31.0610 6520 sfloppy - ok
21:45:31.0659 6520 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
21:45:31.0671 6520 SharedAccess - ok
21:45:31.0715 6520 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
21:45:31.0727 6520 ShellHWDetection - ok
21:45:31.0746 6520 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys
21:45:31.0762 6520 SiSRaid2 - ok
21:45:31.0781 6520 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys
21:45:31.0787 6520 SiSRaid4 - ok
21:45:31.0875 6520 SkypeUpdate (579ba0a911ff5ea70cb604cd3b744b0a) C:\Program Files (x86)\Skype\Updater\Updater.exe
21:45:31.0879 6520 SkypeUpdate - ok
21:45:31.0923 6520 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
21:45:31.0929 6520 Smb - ok
21:45:31.0981 6520 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
21:45:32.0001 6520 SNMPTRAP - ok
21:45:32.0016 6520 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
21:45:32.0020 6520 spldr - ok
21:45:32.0078 6520 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
21:45:32.0092 6520 Spooler - ok
21:45:32.0341 6520 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
21:45:32.0419 6520 sppsvc - ok
21:45:32.0521 6520 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
21:45:32.0539 6520 sppuinotify - ok
21:45:32.0626 6520 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
21:45:32.0659 6520 srv - ok
21:45:32.0700 6520 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
21:45:32.0726 6520 srv2 - ok
21:45:32.0774 6520 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
21:45:32.0782 6520 srvnet - ok
21:45:32.0807 6520 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
21:45:32.0826 6520 SSDPSRV - ok
21:45:32.0842 6520 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
21:45:32.0849 6520 SstpSvc - ok
21:45:32.0870 6520 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys
21:45:32.0885 6520 stexstor - ok
21:45:32.0950 6520 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
21:45:32.0966 6520 stisvc - ok
21:45:32.0997 6520 storflt (7785dc213270d2fc066538daf94087e7) C:\Windows\system32\drivers\vmstorfl.sys
21:45:33.0001 6520 storflt - ok
21:45:33.0025 6520 StorSvc (c40841817ef57d491f22eb103da587cc) C:\Windows\system32\storsvc.dll
21:45:33.0032 6520 StorSvc - ok
21:45:33.0060 6520 storvsc (d34e4943d5ac096c8edeebfd80d76e23) C:\Windows\system32\drivers\storvsc.sys
21:45:33.0064 6520 storvsc - ok
21:45:33.0101 6520 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
21:45:33.0104 6520 swenum - ok
21:45:33.0176 6520 swg3kser00 (9f0a0c3ee91fd7cb709f7d0d97207f7e) C:\Windows\system32\DRIVERS\swg3kser00.sys
21:45:33.0186 6520 swg3kser00 - ok
21:45:33.0314 6520 SwiCardDetectSvc (78ed7e7d9720bb425645cac0bd8ef8f6) C:\Program Files (x86)\Sierra Wireless Inc\Common\SwiCardDetect64.exe
21:45:33.0320 6520 SwiCardDetectSvc - ok
21:45:33.0398 6520 swiwdmbx (c6a7e54a31803e6f95e23d1b5d967d57) C:\Windows\system32\DRIVERS\swiwdmbx64.sys
21:45:33.0420 6520 swiwdmbx - ok
21:45:33.0438 6520 swmsflt (c03779ec476f8f30a9cfcde046ba6b28) C:\Windows\system32\DRIVERS\swmsflt.sys
21:45:33.0442 6520 swmsflt - ok
21:45:33.0482 6520 SWNC8UA3 (8db7ef3fbe3eca6d90938e77aec1a440) C:\Windows\system32\DRIVERS\swnc8ua3.sys
21:45:33.0492 6520 SWNC8UA3 - ok
21:45:33.0553 6520 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
21:45:33.0566 6520 swprv - ok
21:45:33.0614 6520 SWUMXA3 (2b75556d1b5ff95c80af120754a04613) C:\Windows\system32\DRIVERS\swumxa3.sys
21:45:33.0621 6520 SWUMXA3 - ok
21:45:33.0736 6520 SynTP (33e6a285daa5134d8ea2247914c86c09) C:\Windows\system32\DRIVERS\SynTP.sys
21:45:33.0759 6520 SynTP - ok
21:45:33.0947 6520 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
21:45:33.0987 6520 SysMain - ok
21:45:34.0074 6520 t36wgps (0fef994d890c92d8f23442bc52d4fea9) C:\Windows\system32\DRIVERS\t36wgps64.sys
21:45:34.0080 6520 t36wgps - ok
21:45:34.0112 6520 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
21:45:34.0119 6520 TabletInputService - ok
21:45:34.0163 6520 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
21:45:34.0174 6520 TapiSrv - ok
21:45:34.0197 6520 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
21:45:34.0204 6520 TBS - ok
21:45:34.0383 6520 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
21:45:34.0449 6520 Tcpip - ok
21:45:34.0657 6520 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
21:45:34.0687 6520 TCPIP6 - ok
21:45:34.0760 6520 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
21:45:34.0764 6520 tcpipreg - ok
21:45:34.0785 6520 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
21:45:34.0804 6520 TDPIPE - ok
21:45:34.0838 6520 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
21:45:34.0858 6520 TDTCP - ok
21:45:34.0885 6520 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
21:45:34.0893 6520 tdx - ok
21:45:34.0910 6520 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\DRIVERS\termdd.sys
21:45:34.0932 6520 TermDD - ok
21:45:35.0013 6520 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
21:45:35.0029 6520 TermService - ok
21:45:35.0046 6520 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
21:45:35.0064 6520 Themes - ok
21:45:35.0089 6520 Thpevm (b4e609047434ed948af7bdef2fa66e38) C:\Windows\system32\drivers\Thpevm.SYS
21:45:35.0092 6520 Thpevm - ok
21:45:35.0125 6520 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
21:45:35.0129 6520 THREADORDER - ok
21:45:35.0248 6520 TOSHIBA Bluetooth Service (8f099be5db17d025e19652851399b9f1) C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
21:45:35.0254 6520 TOSHIBA Bluetooth Service - ok
21:45:35.0277 6520 toshidpt (755e5ca34d6186fc0e1430cd47e6e97c) C:\Windows\system32\drivers\Toshidpt.sys
21:45:35.0279 6520 toshidpt - ok
21:45:35.0303 6520 tosporte (8021f63311797085949fa387f7c83583) C:\Windows\system32\DRIVERS\tosporte.sys
21:45:35.0306 6520 tosporte - ok
21:45:35.0376 6520 tosrfbd (d15cfd7de375b33042cf1f6e34dee198) C:\Windows\system32\DRIVERS\tosrfbd.sys
21:45:35.0382 6520 tosrfbd - ok
21:45:35.0399 6520 tosrfbnp (90f0b1745abf13f44c2a6ed79f7ce9fb) C:\Windows\system32\Drivers\tosrfbnp.sys
21:45:35.0403 6520 tosrfbnp - ok
21:45:35.0426 6520 Tosrfcom (9e4e65ea51e34647340bd6007467ac54) C:\Windows\system32\Drivers\tosrfcom.sys
21:45:35.0429 6520 Tosrfcom - ok
21:45:35.0460 6520 tosrfec (f5e3ac4cbcd154ee80849b21887fd0b0) C:\Windows\system32\DRIVERS\tosrfec.sys
21:45:35.0463 6520 tosrfec - ok
21:45:35.0489 6520 Tosrfhid (7d2467d3eb9baa4b69ae4a28c83de57a) C:\Windows\system32\DRIVERS\Tosrfhid.sys
21:45:35.0493 6520 Tosrfhid - ok
21:45:35.0509 6520 tosrfnds (b6fdc3c76ffe9c5171eea9c37ea367c2) C:\Windows\system32\DRIVERS\tosrfnds.sys
21:45:35.0512 6520 tosrfnds - ok
21:45:35.0539 6520 TosRfSnd (7052b10e54b48af12bd5606596a8e039) C:\Windows\system32\drivers\tosrfsnd.sys
21:45:35.0542 6520 TosRfSnd - ok
21:45:35.0569 6520 Tosrfusb (7a0048693f98460ff537be31c741b927) C:\Windows\system32\DRIVERS\tosrfusb.sys
21:45:35.0572 6520 Tosrfusb - ok
21:45:35.0600 6520 TPM (dbcc20c02e8a3e43b03c304a4e40a84f) C:\Windows\system32\drivers\tpm.sys
21:45:35.0604 6520 TPM - ok
21:45:35.0635 6520 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
21:45:35.0644 6520 TrkWks - ok
21:45:35.0694 6520 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
21:45:35.0699 6520 TrustedInstaller - ok
21:45:35.0737 6520 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
21:45:35.0742 6520 tssecsrv - ok
21:45:35.0770 6520 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
21:45:35.0775 6520 TsUsbFlt - ok
21:45:35.0789 6520 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\Windows\system32\drivers\TsUsbGD.sys
21:45:35.0793 6520 TsUsbGD - ok
21:45:35.0841 6520 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
21:45:35.0863 6520 tunnel - ok
21:45:35.0882 6520 TVALZ (effce6e033ebdd0f3c0f14a413558f65) C:\Windows\system32\drivers\TVALZ.SYS
21:45:35.0885 6520 TVALZ - ok
21:45:35.0916 6520 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys
21:45:35.0922 6520 uagp35 - ok
21:45:35.0966 6520 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
21:45:35.0996 6520 udfs - ok
21:45:36.0025 6520 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
21:45:36.0049 6520 UI0Detect - ok
21:45:36.0082 6520 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
21:45:36.0087 6520 uliagpkx - ok
21:45:36.0117 6520 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
21:45:36.0120 6520 umbus - ok
21:45:36.0138 6520 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys
21:45:36.0142 6520 UmPass - ok
21:45:36.0187 6520 UmRdpService (a293dcd756d04d8492a750d03b9a297c) C:\Windows\System32\umrdp.dll
21:45:36.0196 6520 UmRdpService - ok
21:45:36.0470 6520 UNS (c76535b6e3963121f3d563d83b0c8f68) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
21:45:36.0514 6520 UNS - ok
21:45:36.0647 6520 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
21:45:36.0671 6520 upnphost - ok
21:45:36.0737 6520 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys
21:45:36.0743 6520 usbaudio - ok
21:45:36.0774 6520 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
21:45:36.0779 6520 usbccgp - ok
21:45:36.0812 6520 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
21:45:36.0817 6520 usbcir - ok
21:45:36.0833 6520 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
21:45:36.0837 6520 usbehci - ok
21:45:36.0896 6520 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
21:45:36.0908 6520 usbhub - ok
21:45:36.0923 6520 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
21:45:36.0927 6520 usbohci - ok
21:45:36.0957 6520 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
21:45:36.0961 6520 usbprint - ok
21:45:37.0018 6520 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
21:45:37.0023 6520 usbscan - ok
21:45:37.0041 6520 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:45:37.0046 6520 USBSTOR - ok
21:45:37.0070 6520 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
21:45:37.0075 6520 usbuhci - ok
21:45:37.0125 6520 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\system32\Drivers\usbvideo.sys
21:45:37.0133 6520 usbvideo - ok
21:45:38.0083 6520 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
21:45:38.0089 6520 UxSms - ok
21:45:38.0125 6520 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:45:38.0128 6520 VaultSvc - ok
21:45:38.0212 6520 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
21:45:38.0216 6520 vdrvroot - ok
21:45:38.0295 6520 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
21:45:38.0311 6520 vds - ok
21:45:38.0344 6520 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
21:45:38.0348 6520 vga - ok
21:45:38.0366 6520 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
21:45:38.0385 6520 VgaSave - ok
21:45:38.0432 6520 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
21:45:38.0442 6520 vhdmp - ok
21:45:38.0467 6520 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
21:45:38.0489 6520 viaide - ok
21:45:38.0530 6520 vmbus (86ea3e79ae350fea5331a1303054005f) C:\Windows\system32\drivers\vmbus.sys
21:45:38.0538 6520 vmbus - ok
21:45:38.0547 6520 VMBusHID (7de90b48f210d29649380545db45a187) C:\Windows\system32\drivers\VMBusHID.sys
21:45:38.0551 6520 VMBusHID - ok
21:45:38.0582 6520 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
21:45:38.0588 6520 volmgr - ok
21:45:38.0628 6520 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
21:45:38.0643 6520 volmgrx - ok
21:45:38.0686 6520 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
21:45:38.0699 6520 volsnap - ok
21:45:38.0731 6520 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys
21:45:38.0751 6520 vsmraid - ok
21:45:38.0886 6520 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
21:45:38.0942 6520 VSS - ok
21:45:39.0044 6520 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
21:45:39.0048 6520 vwifibus - ok
21:45:39.0076 6520 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
21:45:39.0081 6520 vwififlt - ok
21:45:39.0102 6520 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
21:45:39.0121 6520 vwifimp - ok
21:45:41.0627 6520 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
21:45:41.0639 6520 W32Time - ok
21:45:41.0685 6520 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys
21:45:41.0689 6520 WacomPen - ok
21:45:41.0726 6520 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:45:41.0747 6520 WANARP - ok
21:45:41.0758 6520 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:45:41.0761 6520 Wanarpv6 - ok
21:45:41.0896 6520 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
21:45:41.0925 6520 WatAdminSvc - ok
21:45:42.0050 6520 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
21:45:42.0087 6520 wbengine - ok
21:45:42.0207 6520 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
21:45:42.0217 6520 WbioSrvc - ok
21:45:42.0259 6520 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
21:45:42.0272 6520 wcncsvc - ok
21:45:42.0305 6520 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
21:45:42.0312 6520 WcsPlugInService - ok
21:45:42.0348 6520 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys
21:45:42.0353 6520 Wd - ok
21:45:42.0428 6520 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
21:45:42.0452 6520 Wdf01000 - ok
21:45:42.0478 6520 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
21:45:42.0485 6520 WdiServiceHost - ok
21:45:42.0493 6520 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
21:45:42.0499 6520 WdiSystemHost - ok
21:45:42.0537 6520 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
21:45:42.0548 6520 WebClient - ok
21:45:42.0584 6520 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
21:45:42.0595 6520 Wecsvc - ok
21:45:42.0638 6520 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
21:45:42.0645 6520 wercplsupport - ok
21:45:42.0670 6520 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
21:45:42.0677 6520 WerSvc - ok
21:45:42.0715 6520 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
21:45:42.0718 6520 WfpLwf - ok
21:45:42.0734 6520 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
21:45:42.0739 6520 WIMMount - ok
21:45:42.0762 6520 WinDefend - ok
21:45:42.0777 6520 WinHttpAutoProxySvc - ok
21:45:42.0841 6520 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
21:45:42.0848 6520 Winmgmt - ok
21:45:43.0004 6520 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
21:45:43.0053 6520 WinRM - ok
21:45:43.0230 6520 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
21:45:43.0234 6520 WinUsb - ok
21:45:43.0321 6520 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
21:45:43.0345 6520 Wlansvc - ok
21:45:43.0412 6520 WMCoreService - ok
21:45:43.0442 6520 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
21:45:43.0445 6520 WmiAcpi - ok
21:45:43.0515 6520 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
21:45:43.0522 6520 wmiApSrv - ok
21:45:43.0541 6520 WMPNetworkSvc - ok
21:45:43.0560 6520 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
21:45:43.0566 6520 WPCSvc - ok
21:45:43.0592 6520 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
21:45:43.0600 6520 WPDBusEnum - ok
21:45:43.0637 6520 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
21:45:43.0641 6520 ws2ifsl - ok
21:45:43.0667 6520 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
21:45:43.0687 6520 wscsvc - ok
21:45:43.0734 6520 WSDPrintDevice (8d918b1db190a4d9b1753a66fa8c96e8) C:\Windows\system32\DRIVERS\WSDPrint.sys
21:45:43.0738 6520 WSDPrintDevice - ok
21:45:43.0769 6520 WSDScan (4a2a5c50dd1a63577d3aca94269fbc7f) C:\Windows\system32\DRIVERS\WSDScan.sys
21:45:43.0772 6520 WSDScan - ok
21:45:43.0780 6520 WSearch - ok
21:45:43.0946 6520 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
21:45:44.0001 6520 wuauserv - ok
21:45:44.0109 6520 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
21:45:44.0133 6520 WudfPf - ok
21:45:44.0171 6520 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
21:45:44.0178 6520 WUDFRd - ok
21:45:44.0212 6520 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
21:45:44.0220 6520 wudfsvc - ok
21:45:44.0248 6520 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
21:45:44.0270 6520 WwanSvc - ok
21:45:44.0352 6520 WwanUsbServ (a100bd898b40de890dbe53eae4896d20) C:\Windows\system32\DRIVERS\WwanUsbMp64.sys
21:45:44.0359 6520 WwanUsbServ - ok
21:45:44.0412 6520 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
21:45:44.0840 6520 \Device\Harddisk0\DR0 - ok
21:45:44.0846 6520 Boot (0x1200) (3be2ad74187ab965dac5676ad4025de9) \Device\Harddisk0\DR0\Partition0
21:45:44.0848 6520 \Device\Harddisk0\DR0\Partition0 - ok
21:45:44.0931 6520 Boot (0x1200) (9de10cbfdee16e00f48e1aae651f272c) \Device\Harddisk0\DR0\Partition1
21:45:44.0934 6520 \Device\Harddisk0\DR0\Partition1 - ok
21:45:44.0935 6520 ============================================================
21:45:44.0935 6520 Scan finished
21:45:44.0935 6520 ============================================================
21:45:44.0957 5484 Detected object count: 0
21:45:44.0957 5484 Actual detected object count: 0


aswMBR Log:

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-06-06 20:34:43
-----------------------------
20:34:43.799 OS Version: Windows x64 6.1.7601 Service Pack 1
20:34:43.799 Number of processors: 4 586 0x2A07
20:34:43.799 ComputerName: WK-HAIBOC UserName: Cathy
20:34:45.879 Initialize success
21:03:24.066 AVAST engine defs: 12060601
21:47:58.062 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
21:47:58.067 Disk 0 Vendor: Hitachi_HTS725050A9A360 PC4OC71E Size: 476940MB BusType: 11
21:47:58.099 Disk 0 MBR read successfully
21:47:58.105 Disk 0 MBR scan
21:47:58.125 Disk 0 Windows 7 default MBR code
21:47:58.140 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
21:47:58.175 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 465254 MB offset 206848
21:47:58.231 Disk 0 Partition 3 00 17 Hidd HPFS/NTFS 11585 MB offset 953047040
21:47:58.265 Disk 0 scanning C:\Windows\system32\drivers
21:48:18.775 Service scanning
21:48:58.697 Modules scanning
21:48:58.717 Disk 0 trace - called modules:
21:48:58.729
21:49:01.688 AVAST engine scan C:\Windows
21:49:04.755 AVAST engine scan C:\Windows\system32
21:54:39.768 AVAST engine scan C:\Windows\system32\drivers
21:55:04.953 AVAST engine scan C:\Users\Cathy
21:57:34.787 Disk 0 MBR has been saved successfully to "C:\Users\Cathy\Desktop\MBR.dat"
21:57:34.814 The log file has been saved successfully to "C:\Users\Cathy\Desktop\aswMBR log.txt"


ESET log: (not so clean)

C:\$Recycle.Bin\S-1-5-21-3124573131-1797938602-442671634-1004\$RJSOPHV.exe a variant of Win32/InstallCore.D application cleaned by deleting - quarantined
C:\$Recycle.Bin\S-1-5-21-3124573131-1797938602-442671634-1004\$RKKQXOR.exe a variant of Win32/InstallCore.D application cleaned by deleting - quarantined
C:\Users\Cathy\AppData\Local\Temp\ICReinstall\cnet2_Install-Hearts-Free_exe.exe a variant of Win32/InstallCore.D application cleaned by deleting - quarantined
C:\Users\Cathy\AppData\Local\Temp\is1598539481\3965421_Setup.DAT a variant of Win32/Somoto.A application deleted - quarantined
C:\Users\Cathy\AppData\Local\TempDIR\BetterInstaller.exe a variant of Win32/Somoto.A application cleaned by deleting - quarantined
C:\Users\Cathy\Downloads\Install-Hearts-Free.exe a variant of Win32/Somoto.A application deleted - quarantined


Ran RK report twice, first time accidentally ran it not as an admin. There are three reports. Not quite sure why.

RK report 1

RogueKiller V7.5.3 [06/05/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.geekstogo.com/forum/files/file/413-roguekiller/
Blog: http://tigzyrk.blogspot.com

Operating System: Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User: Cathy [Admin rights]
Mode: HOSTSFix -- Date: 06/07/2012 00:01:47

¤¤¤ Bad processes: 3 ¤¤¤
[SUSP PATH] DCService.exe -- C:\ProgramData\DatacardService\DCService.exe -> KILLED [TermProc]
[SUSP PATH] DCSHelper.exe -- C:\ProgramData\DatacardService\DCSHelper.exe -> KILLED [TermProc]
[SUSP PATH] visicom_antiphishing.exe -- C:\ProgramData\Anti-phishing Domain Advisor\visicom_antiphishing.exe -> KILLED [TermProc]

¤¤¤ Driver: [NOT LOADED] ¤¤¤

¤¤¤ HOSTS File: ¤¤¤


¤¤¤ Resetted HOSTS: ¤¤¤
127.0.0.1 localhost

Finished : << RKreport[1].txt >>
RKreport[1].txt



rk report 2:

RogueKiller V7.5.3 [06/05/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.geekstogo.com/forum/files/file/413-roguekiller/
Blog: http://tigzyrk.blogspot.com

Operating System: Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User: Cathy [Admin rights]
Mode: Scan -- Date: 06/07/2012 00:03:07

¤¤¤ Bad processes: 0 ¤¤¤

¤¤¤ Registry Entries: 4 ¤¤¤
[SUSP PATH] HKLM\[...]\Wow6432Node\Run : Anti-phishing Domain Advisor ("C:\ProgramData\Anti-phishing Domain Advisor\visicom_antiphishing.exe") -> FOUND
[HJ] HKCU\[...]\Advanced : Start_ShowMyGames (0) -> FOUND
[HJ] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
[HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver: [NOT LOADED] ¤¤¤

¤¤¤ Infection : ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
127.0.0.1 localhost


¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: Hitachi HTS725050A9A360 ATA Device +++++
--- User ---
[MBR] 41ecf9fa75315c27575cad42e678945a
[BSP] aea36840ced3824c7dd801d7bad3bed9 : Windows 7 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 465254 Mo
2 - [XXXXXX] NTFS (0x17) [HIDDEN!] Offset (sectors): 953047040 | Size: 11585 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[2].txt >>
RKreport[1].txt ; RKreport[2].txt



rk report 3:

RogueKiller V7.5.3 [06/05/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.geekstogo.com/forum/files/file/413-roguekiller/
Blog: http://tigzyrk.blogspot.com

Operating System: Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User: Cathy [Admin rights]
Mode: HOSTSFix -- Date: 06/07/2012 00:03:24

¤¤¤ Bad processes: 0 ¤¤¤

¤¤¤ Driver: [NOT LOADED] ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
127.0.0.1 localhost


¤¤¤ Resetted HOSTS: ¤¤¤
127.0.0.1 localhost

Finished : << RKreport[3].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:25 AM

Posted 06 June 2012 - 09:14 AM

DO you still have nginx issue?

Re run aswmbr and post the log

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log


Download

MiniToolBox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

#5 cathyb10

cathyb10
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:12:25 AM

Posted 06 June 2012 - 09:36 PM

Thanks again for your help. The nginx problem seems to be gone now. aswMBR crashed several times, had to run in safe mode, second run worked. Malwarebytes file looks clean on one run.

Here are the logs as requested:

This crashed several times. had to run in safe mode twice before the scan completed. Completed scan below.

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-06-07 08:16:01
-----------------------------
08:16:01.529 OS Version: Windows x64 6.1.7601 Service Pack 1
08:16:01.529 Number of processors: 4 586 0x2A07
08:16:01.529 ComputerName: WK-HAIBOC UserName: Cathy
08:16:02.324 Initialize success
08:16:05.959 AVAST engine defs: 12060601
08:16:08.861 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
08:16:08.861 Disk 0 Vendor: Hitachi_HTS725050A9A360 PC4OC71E Size: 476940MB BusType: 11
08:16:08.892 Disk 0 MBR read successfully
08:16:08.892 Disk 0 MBR scan
08:16:08.892 Disk 0 Windows 7 default MBR code
08:16:08.908 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
08:16:08.939 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 465254 MB offset 206848
08:16:09.001 Disk 0 Partition 3 00 17 Hidd HPFS/NTFS 11585 MB offset 953047040
08:16:09.064 Disk 0 scanning C:\Windows\system32\drivers
08:16:17.223 Service scanning
08:16:34.632 Modules scanning
08:16:34.632 Disk 0 trace - called modules:
08:16:34.648 ntoskrnl.exe CLASSPNP.SYS disk.sys ataport.SYS PCIIDEX.SYS hal.dll msahci.sys
08:16:34.663 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8008047060]
08:16:34.663 3 CLASSPNP.SYS[fffff8800197943f] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa8007d7f680]
08:16:35.599 AVAST engine scan C:\Windows
08:16:38.735 AVAST engine scan C:\Windows\system32
08:18:14.301 AVAST engine scan C:\Windows\system32\drivers
08:18:23.240 AVAST engine scan C:\Users\Cathy
08:31:56.968 AVAST engine scan C:\ProgramData
08:33:17.074 Scan finished successfully
09:59:15.130 Disk 0 MBR has been saved successfully to "C:\Users\Cathy\Desktop\MBR.dat"
09:59:15.130 The log file has been saved successfully to "C:\Users\Cathy\Desktop\aswMBR=3.txt"


Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.06.06.05

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Cathy :: WK-HAIBOC [administrator]

7/06/2012 10:17:14 AM
mbam-log-2012-06-07 (10-17-14).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 491683
Time elapsed: 47 minute(s), 4 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

MiniToolBox by Farbar Version: 04-06-2012
Ran by Cathy (administrator) on 07-06-2012 at 12:31:30
Microsoft Windows 7 Professional Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1 localhost
127.0.0.1 localhost

========================= IP Configuration: ================================

Sierra Wireless WWAN Network Adapter = Local Area Connection 2 (Connected)
Intel® 82579LM Gigabit Network Connection = Local Area Connection (Media disconnected)
Intel® Centrino® Advanced-N 6230 = Wireless Network Connection (Media disconnected)
Ericsson F5521gw for TOSHIBA Mobile Broadband Network Adapter = Mobile Broadband Connection (Media disconnected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : WK-HAIBOC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Mixed
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Bluetooth Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
Physical Address. . . . . . . . . : 88-53-2E-14-7B-F1
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection 2:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Sierra Wireless WWAN Network Adapter
Physical Address. . . . . . . . . : 00-A0-D5-FF-FF-AE
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::7079:5c9f:eb7f:5e3d%21(Preferred)
IPv4 Address. . . . . . . . . . . : 124.185.83.98(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.255
Lease Obtained. . . . . . . . . . : Thursday, 7 June 2012 12:17:31 PM
Lease Expires . . . . . . . . . . : Sunday, 10 June 2012 12:17:31 PM
Default Gateway . . . . . . . . . : 61.9.211.33
DHCP Server . . . . . . . . . . . : 124.185.83.253
DHCPv6 IAID . . . . . . . . . . . : 285253845
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-CB-A0-7A-E8-9D-87-5B-B8-24
DNS Servers . . . . . . . . . . . : 61.9.211.33
61.9.207.1
NetBIOS over Tcpip. . . . . . . . : Disabled

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 88-53-2E-14-7B-EE
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Mobile Broadband adapter Mobile Broadband Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Ericsson F5521gw for TOSHIBA Mobile Broadband Network Adapter
Physical Address. . . . . . . . . : 02-80-37-EC-02-00
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : library.internet
Description . . . . . . . . . . . : Intel® Centrino® Advanced-N 6230
Physical Address. . . . . . . . . : 88-53-2E-14-7B-ED
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel® 82579LM Gigabit Network Connection
Physical Address. . . . . . . . . : E8-9D-87-5B-B8-24
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.library.internet:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{D6EFC67B-1581-44B3-9DB5-E4D02E721AA1}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 9:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Teredo Tunneling Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:3067:2fe9:8346:fd51(Preferred)
Link-local IPv6 Address . . . . . : fe80::3067:2fe9:8346:fd51%11(Preferred)
Default Gateway . . . . . . . . . :
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{1A480A21-43E6-467B-A8FC-329909D069D2}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter 6TO4 Adapter:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2002:7cb9:5362::7cb9:5362(Preferred)
Default Gateway . . . . . . . . . : 2002:c058:6301::c058:6301
DNS Servers . . . . . . . . . . . : 61.9.211.33
61.9.207.1
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{0850F2E1-8953-4B68-9DC5-B26CB57595D2}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #5
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{ADFBB73D-3219-4B7E-BBF8-783D4E1E48DE}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #6
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{C4F60286-11CC-4004-8B0F-888C9327819E}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #7
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 61.9.211.33

DNS request timed out.
timeout was 2 seconds.
Name: google.com
Address: 2404:6800:4006:803::1007


Pinging google.com [74.125.237.102] with 32 bytes of data:
Reply from 74.125.237.102: bytes=32 time=123ms TTL=50
Reply from 74.125.237.102: bytes=32 time=113ms TTL=52

Ping statistics for 74.125.237.102:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 113ms, Maximum = 123ms, Average = 118ms
Server: dns-cust.cha.bigpond.net.au
Address: 61.9.211.33

Name: yahoo.com
Addresses: 98.139.183.24
209.191.122.70
72.30.38.140


Pinging yahoo.com [209.191.122.70] with 32 bytes of data:
Reply from 209.191.122.70: bytes=32 time=342ms TTL=46
Reply from 209.191.122.70: bytes=32 time=337ms TTL=46

Ping statistics for 209.191.122.70:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 337ms, Maximum = 342ms, Average = 339ms
Server: dns-cust.cha.bigpond.net.au
Address: 61.9.211.33

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
24...88 53 2e 14 7b f1 ......Bluetooth Device (Personal Area Network)
21...00 a0 d5 ff ff ae ......Sierra Wireless WWAN Network Adapter
16...88 53 2e 14 7b ee ......Microsoft Virtual WiFi Miniport Adapter
14...02 80 37 ec 02 00 ......Ericsson F5521gw for TOSHIBA Mobile Broadband Network Adapter
13...88 53 2e 14 7b ed ......Intel® Centrino® Advanced-N 6230
12...e8 9d 87 5b b8 24 ......Intel® 82579LM Gigabit Network Connection
1...........................Software Loopback Interface 1
22...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
46...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
11...00 00 00 00 00 00 00 e0 Microsoft Teredo Tunneling Adapter
23...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
15...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #5
18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #6
20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #7
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 61.9.211.33 124.185.83.98 25
124.185.83.98 255.255.255.255 On-link 124.185.83.98 281
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 124.185.83.98 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 124.185.83.98 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
15 1130 ::/0 2002:c058:6301::c058:6301
1 306 ::1/128 On-link
11 58 2001::/32 On-link
11 306 2001:0:4137:9e76:3067:2fe9:8346:fd51/128
On-link
15 1030 2002::/16 On-link
15 286 2002:7cb9:5362::7cb9:5362/128
On-link
11 306 fe80::/64 On-link
21 281 fe80::/64 On-link
11 306 fe80::3067:2fe9:8346:fd51/128
On-link
21 281 fe80::7079:5c9f:eb7f:5e3d/128
On-link
1 306 ff00::/8 On-link
11 306 ff00::/8 On-link
21 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (06/07/2012 10:03:34 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/07/2012 10:01:44 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/07/2012 08:10:46 AM) (Source: Application Error) (User: )
Description: Faulting application name: aswMBR.exe, version: 0.9.9.1665, time stamp: 0x4f5f9c86
Faulting module name: ntdll.dll, version: 6.1.7601.17725, time stamp: 0x4ec49b8f
Exception code: 0xc0000005
Fault offset: 0x0002e3be
Faulting process id: 0x724
Faulting application start time: 0xaswMBR.exe0
Faulting application path: aswMBR.exe1
Faulting module path: aswMBR.exe2
Report Id: aswMBR.exe3

Error: (06/07/2012 07:53:25 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/07/2012 07:52:12 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/07/2012 01:30:39 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/07/2012 01:29:44 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/07/2012 01:00:35 AM) (Source: Application Error) (User: )
Description: Faulting application name: aswMBR.exe, version: 0.9.9.1665, time stamp: 0x4f5f9c86
Faulting module name: ntdll.dll, version: 6.1.7601.17725, time stamp: 0x4ec49b8f
Exception code: 0xc0000005
Fault offset: 0x0002e41b
Faulting process id: 0x10e0
Faulting application start time: 0xaswMBR.exe0
Faulting application path: aswMBR.exe1
Faulting module path: aswMBR.exe2
Report Id: aswMBR.exe3

Error: (06/06/2012 10:07:29 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/06/2012 10:07:23 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.


System errors:
=============
Error: (06/07/2012 00:16:21 PM) (Source: SWNC8UA3) (User: )
Description: \Device\NDMP23Sierra Wireless WWAN Network Adapter

Error: (06/07/2012 10:01:13 AM) (Source: DCOM) (User: SYSTEM)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (06/07/2012 07:53:54 AM) (Source: Service Control Manager) (User: )
Description: The PnP-X IP Bus Enumerator service depends on the Function Discovery Provider Host service which failed to start because of the following error:
%%1068

Error: (06/07/2012 07:52:17 AM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (06/07/2012 07:52:17 AM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (06/07/2012 07:52:17 AM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (06/07/2012 07:52:17 AM) (Source: DCOM) (User: )
Description: 1084WSearch{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

Error: (06/07/2012 07:52:17 AM) (Source: DCOM) (User: )
Description: 1084WSearch{9E175B6D-F52A-11D8-B9A5-505054503030}

Error: (06/07/2012 07:52:16 AM) (Source: DCOM) (User: )
Description: 1084EventSystem{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error: (06/07/2012 07:52:10 AM) (Source: DCOM) (User: )
Description: 1084ShellHWDetection{DD522ACC-F821-461A-A407-50B198B896DC}


Microsoft Office Sessions:
=========================
Error: (06/07/2012 10:03:34 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Cathy\Desktop\esetsmartinstaller_enu.exe

Error: (06/07/2012 10:01:44 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/07/2012 08:10:46 AM) (Source: Application Error)(User: )
Description: aswMBR.exe0.9.9.16654f5f9c86ntdll.dll6.1.7601.177254ec49b8fc00000050002e3be72401cd442eaff8c620C:\Users\Cathy\Desktop\aswMBR.exeC:\Windows\SysWOW64\ntdll.dll76bc2c57-b024-11e1-b2c5-028037ec0200

Error: (06/07/2012 07:53:25 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/07/2012 07:52:12 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Cathy\Desktop\esetsmartinstaller_enu.exe

Error: (06/07/2012 01:30:39 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\Users\Cathy\Desktop\esetsmartinstaller_enu.exe

Error: (06/07/2012 01:29:44 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe

Error: (06/07/2012 01:00:35 AM) (Source: Application Error)(User: )
Description: aswMBR.exe0.9.9.16654f5f9c86ntdll.dll6.1.7601.177254ec49b8fc00000050002e41b10e001cd43ef15edf440C:\Users\Cathy\Desktop\aswMBR.exeC:\Windows\SysWOW64\ntdll.dll5e561000-afe8-11e1-bce7-88532e147bf1

Error: (06/06/2012 10:07:29 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Cathy\Desktop\esetsmartinstaller_enu.exe

Error: (06/06/2012 10:07:23 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Cathy\Desktop\esetsmartinstaller_enu.exe


=========================== Installed Programs ============================

100% Free Hearts 7.42 (Version: 7.42)
Adobe Acrobat X Standard - English, Français, Deutsch (Version: 10.1.3)
Adobe AIR (Version: 3.2.0.2070)
Adobe Flash Player 11 ActiveX 64-bit (Version: 11.2.202.235)
Adobe Flash Player 11 Plugin 64-bit (Version: 11.2.202.235)
Adobe Reader X (10.1.3) (Version: 10.1.3)
Anti-phishing Domain Advisor (Version: 1.0.0.0)
AUSkey software 1.4.0.6 (Version: 1.4.0.6)
AuthenTec Fingerprint Software (Version: 9.0.8.36)
Bluetooth Stack for Windows by Toshiba (Version: v8.00.04(T))
Canon MP550 series MP Drivers
Chatter Desktop (Version: 2.1.1)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
ESET Online Scanner v3
GIMP 2.6.11 (Version: 2.6.11)
Google Earth (Version: 6.1.0.5001)
Google SketchUp 8 (Version: 3.0.4811)
Google Update Helper (Version: 1.3.21.111)
HP Deskjet 1050 J410 series Basic Device Software (Version: 22.50.231.0)
HP Deskjet 1050 J410 series Help (Version: 140.0.66.66)
Incredibar Toolbar on IE
Intel® Management Engine Components (Version: 7.0.0.1144)
Intel® Network Connections Drivers (Version: 15.4)
Intel® Processor Graphics (Version: 8.15.10.2291)
Java Auto Updater (Version: 2.0.5.1)
Java™ 6 Update 26 (Version: 6.0.260)
join.me (Version: 1.3.1.426)
Kaspersky Anti-Virus 6.0 for Windows Workstations (Version: 6.0.4.1424)
Livescribe Connect (Version: 1.2.1)
Livescribe Connect (Version: 1.2.1.58498)
Livescribe Desktop (Version: 2.8.3)
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft IntelliPoint 8.2 (Version: 8.20.468.0)
Microsoft IntelliType Pro 8.2 (Version: 8.20.469.0)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Professional 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Single Image 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Silverlight (Version: 5.1.10411.0)
Mozilla Firefox 12.0 (x86 en-GB) (Version: 12.0)
Mozilla Maintenance Service (Version: 12.0)
Mozilla Thunderbird 12.0.1 (x86 en-GB) (Version: 12.0.1)
Optus Mobile Broadband (Version: 11.300.05.18.74)
PL-2303 USB-to-Serial (Version: 1.3.0)
Realtek High Definition Audio Driver (Version: 6.0.1.6271)
Renesas Electronics USB 3.0 Host Controller Driver (Version: 2.0.32.0)
Skype Click to Call (Version: 5.10.9560)
Skype™ 5.9 (Version: 5.9.115)
Spam Free Search Bar (Version: 1.0.0.12)
Synaptics Pointing Device Driver (Version: 15.2.4.4)
Telstra Mobile Broadband Manager (Version: 3.6.10912)
TFPU (Version: 1.0.0)
TOSHIBA Face Recognition (Version: 3.1.8.64)
TOSHIBA Fingerprint Utility (Version: 1.0.2.38)
TOSHIBA Mobile Broadband Device (Version: 6.3.2.2)
TOSHIBA Value Added Package (Version: 1.2.27.64)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553385) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2597091) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2589345) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2553248) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition

========================= Memory info: ===================================

Percentage of memory in use: 34%
Total physical RAM: 8071.43 MB
Available physical RAM: 5322.72 MB
Total Pagefile: 16141.04 MB
Available Pagefile: 13291.19 MB
Total Virtual: 4095.88 MB
Available Virtual: 3971.52 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:454.35 GB) (Free:381.1 GB) NTFS

========================= Users: ========================================

User accounts for \\WK-HAIBOC

Administrator Cathy Guest
Haibo Melissa Rosemary


**** End of log ****

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:25 AM

Posted 07 June 2012 - 12:42 AM

That looks good

Download

TFC


Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp

Update your antivirus frequently,do not click on suspicious links

Safe surfing :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users