Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Do I have a keylogger?


  • Please log in to reply
4 replies to this topic

#1 kep1

kep1

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:10:39 AM

Posted 17 June 2012 - 10:47 AM

Hi,

My Hotmail account has been hijacked. Do you think I have a keylogger?

BC AdBot (Login to Remove)

 


#2 kep1

kep1
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:10:39 AM

Posted 17 June 2012 - 02:40 PM

I use Avira Free Antivirus and I scanned my system. It found some malware and moved it to quarentine. Do you think my computer is clean now?
Here is the Avira report:



Avira Free Antivirus
Report file date: domingo, 17 de Junho de 2012 16:49

Scanning for 3842267 virus strains and unwanted programs.

The program is running as an unrestricted full version.
Online services are available.

Licensee : Avira AntiVir Personal - Free Antivirus
Serial number : 0000149996-ADJIE-0000001
Platform : Windows 7 Home Premium
Windows version : (Service Pack 1) [6.1.7601]
Boot mode : Normally booted
Username : SYSTEM
Computer name : DINIS-TOSH

Version information:
BUILD.DAT : 12.0.0.1125 41829 Bytes 02-05-2012 17:40:00
AVSCAN.EXE : 12.3.0.15 466896 Bytes 08-05-2012 19:55:08
AVSCAN.DLL : 12.3.0.15 54736 Bytes 08-05-2012 19:55:08
LUKE.DLL : 12.3.0.15 68304 Bytes 08-05-2012 19:55:10
AVSCPLR.DLL : 12.3.0.14 97032 Bytes 08-05-2012 19:55:10
AVREG.DLL : 12.3.0.17 232200 Bytes 10-05-2012 19:55:25
VBASE000.VDF : 7.10.0.0 19875328 Bytes 06-11-2009 19:18:34
VBASE001.VDF : 7.11.0.0 13342208 Bytes 14-12-2010 00:33:08
VBASE002.VDF : 7.11.19.170 14374912 Bytes 20-12-2011 09:10:53
VBASE003.VDF : 7.11.21.238 4472832 Bytes 01-02-2012 09:11:02
VBASE004.VDF : 7.11.26.44 4329472 Bytes 28-03-2012 19:51:51
VBASE005.VDF : 7.11.29.136 2166272 Bytes 10-05-2012 19:55:12
VBASE006.VDF : 7.11.29.137 2048 Bytes 10-05-2012 19:55:12
VBASE007.VDF : 7.11.29.138 2048 Bytes 10-05-2012 19:55:13
VBASE008.VDF : 7.11.29.139 2048 Bytes 10-05-2012 19:55:13
VBASE009.VDF : 7.11.29.140 2048 Bytes 10-05-2012 19:55:13
VBASE010.VDF : 7.11.29.141 2048 Bytes 10-05-2012 19:55:13
VBASE011.VDF : 7.11.29.142 2048 Bytes 10-05-2012 19:55:13
VBASE012.VDF : 7.11.29.143 2048 Bytes 10-05-2012 19:55:13
VBASE013.VDF : 7.11.29.144 2048 Bytes 10-05-2012 19:55:13
VBASE014.VDF : 7.11.30.3 198144 Bytes 14-05-2012 19:56:47
VBASE015.VDF : 7.11.30.69 186368 Bytes 17-05-2012 19:57:50
VBASE016.VDF : 7.11.30.143 223744 Bytes 21-05-2012 19:59:57
VBASE017.VDF : 7.11.30.207 287744 Bytes 23-05-2012 20:00:33
VBASE018.VDF : 7.11.31.57 188416 Bytes 28-05-2012 20:00:04
VBASE019.VDF : 7.11.31.111 214528 Bytes 30-05-2012 20:00:27
VBASE020.VDF : 7.11.31.151 116736 Bytes 31-05-2012 20:00:07
VBASE021.VDF : 7.11.31.205 134144 Bytes 03-06-2012 20:00:25
VBASE022.VDF : 7.11.32.9 169472 Bytes 05-06-2012 20:01:25
VBASE023.VDF : 7.11.32.85 155648 Bytes 08-06-2012 16:42:17
VBASE024.VDF : 7.11.32.133 127488 Bytes 11-06-2012 18:43:30
VBASE025.VDF : 7.11.32.171 182784 Bytes 12-06-2012 18:43:31
VBASE026.VDF : 7.11.32.251 119296 Bytes 14-06-2012 19:47:12
VBASE027.VDF : 7.11.32.252 2048 Bytes 14-06-2012 19:47:12
VBASE028.VDF : 7.11.32.253 2048 Bytes 14-06-2012 19:47:12
VBASE029.VDF : 7.11.32.254 2048 Bytes 14-06-2012 19:47:12
VBASE030.VDF : 7.11.32.255 2048 Bytes 14-06-2012 19:47:12
VBASE031.VDF : 7.11.33.42 74240 Bytes 16-06-2012 19:47:12
Engine version : 8.2.10.92
AEVDF.DLL : 8.1.2.8 106867 Bytes 01-06-2012 20:00:05
AESCRIPT.DLL : 8.1.4.26 450939 Bytes 14-06-2012 19:50:07
AESCN.DLL : 8.1.8.2 131444 Bytes 09-02-2012 09:11:19
AESBX.DLL : 8.2.5.12 606578 Bytes 14-06-2012 19:50:15
AERDL.DLL : 8.1.9.15 639348 Bytes 15-12-2011 00:32:23
AEPACK.DLL : 8.2.16.18 807287 Bytes 14-06-2012 19:49:51
AEOFFICE.DLL : 8.1.2.36 201082 Bytes 14-06-2012 19:49:33
AEHEUR.DLL : 8.1.4.46 4923767 Bytes 14-06-2012 19:49:29
AEHELP.DLL : 8.1.21.0 254326 Bytes 10-05-2012 19:55:15
AEGEN.DLL : 8.1.5.30 422261 Bytes 14-06-2012 19:47:32
AEEXP.DLL : 8.1.0.52 82293 Bytes 14-06-2012 19:50:16
AEEMU.DLL : 8.1.3.0 393589 Bytes 15-12-2011 00:32:19
AECORE.DLL : 8.1.25.10 201080 Bytes 31-05-2012 20:00:13
AEBB.DLL : 8.1.1.0 53618 Bytes 15-12-2011 00:32:19
AVWINLL.DLL : 12.3.0.15 27344 Bytes 08-05-2012 19:55:08
AVPREF.DLL : 12.3.0.15 51920 Bytes 08-05-2012 19:55:08
AVREP.DLL : 12.3.0.15 179208 Bytes 08-05-2012 19:55:10
AVARKT.DLL : 12.3.0.15 211408 Bytes 08-05-2012 19:55:08
AVEVTLOG.DLL : 12.3.0.15 169168 Bytes 08-05-2012 19:55:08
SQLITE3.DLL : 3.7.0.1 398288 Bytes 08-05-2012 19:55:10
AVSMTP.DLL : 12.3.0.15 63440 Bytes 08-05-2012 19:55:08
NETNT.DLL : 12.3.0.15 17104 Bytes 08-05-2012 19:55:10
RCIMAGE.DLL : 12.3.0.15 4450000 Bytes 08-05-2012 19:55:08
RCTEXT.DLL : 12.3.0.15 96720 Bytes 08-05-2012 19:55:08

Configuration settings for the scan:
Jobname.............................: Complete system scan
Configuration file..................: C:\Program Files (x86)\Avira\AntiVir Desktop\sysscan.avp
Logging.............................: default
Primary action......................: Interactive
Secondary action....................: Ignore
Scan master boot sector.............: on
Scan boot sector....................: on
Boot sectors........................: C:, D:,
Process scan........................: on
Extended process scan...............: on
Scan registry.......................: on
Search for rootkits.................: on
Integrity checking of system files..: off
Scan all files......................: All files
Scan archives.......................: on
Recursion depth.....................: 20
Smart extensions....................: on
Macro heuristic.....................: on
File heuristic......................: extended

Start of the scan: domingo, 17 de Junho de 2012 16:49

Starting master boot sector scan:
Master boot sector HD0
[INFO] No virus was found!

Start scanning boot sectors:
Boot sector 'C:\'
[INFO] No virus was found!
Boot sector 'D:\'
[INFO] No virus was found!

Starting search for hidden objects.
Hidden driver
[NOTE] A memory modification has been detected, which could potentially be used to hide file access attempts.

The scan of running processes will be started
Scan process 'avscan.exe' - '85' Module(s) have been scanned
Scan process 'avcenter.exe' - '76' Module(s) have been scanned
Scan process 'dosbox.exe' - '65' Module(s) have been scanned
Scan process 'firefox.exe' - '103' Module(s) have been scanned
Scan process 'UNS.exe' - '56' Module(s) have been scanned
Scan process 'CFSvcs.exe' - '47' Module(s) have been scanned
Scan process 'TosAVRC.exe' - '35' Module(s) have been scanned
Scan process 'TosBtHsp.exe' - '38' Module(s) have been scanned
Scan process 'TosBtHid.exe' - '20' Module(s) have been scanned
Scan process 'TosA2dp.exe' - '39' Module(s) have been scanned
Scan process 'CFSwMgr.exe' - '55' Module(s) have been scanned
Scan process 'iTunesHelper.exe' - '69' Module(s) have been scanned
Scan process 'jusched.exe' - '25' Module(s) have been scanned
Scan process 'avgnt.exe' - '77' Module(s) have been scanned
Scan process 'KiesTrayAgent.exe' - '78' Module(s) have been scanned
Scan process 'TWebCamera.exe' - '59' Module(s) have been scanned
Scan process 'NBAgent.exe' - '75' Module(s) have been scanned
Scan process 'distnoted.exe' - '33' Module(s) have been scanned
Scan process 'NBService.exe' - '50' Module(s) have been scanned
Scan process 'NDSTray.exe' - '80' Module(s) have been scanned
Scan process 'TosBtMng.exe' - '56' Module(s) have been scanned
Scan process 'ubd.exe' - '77' Module(s) have been scanned
Scan process 'KiesPDLR.exe' - '54' Module(s) have been scanned
Scan process 'Badoo.Desktop.exe' - '76' Module(s) have been scanned
Scan process 'DTLite.exe' - '36' Module(s) have been scanned
Scan process 'TOPI.exe' - '26' Module(s) have been scanned
Scan process 'lxdiamon.exe' - '79' Module(s) have been scanned
Scan process 'lxdimon.exe' - '33' Module(s) have been scanned
Scan process 'LMS.exe' - '29' Module(s) have been scanned
Scan process 'AppleMobileDeviceService.exe' - '63' Module(s) have been scanned
Scan process 'avguard.exe' - '69' Module(s) have been scanned
Scan process 'armsvc.exe' - '24' Module(s) have been scanned
Scan process 'sched.exe' - '42' Module(s) have been scanned

Starting to scan executable files (registry).
C:\Windows\Sysnative\drivers\sptd.sys
[WARNING] The file could not be opened!
The registry was scanned ( '4454' files ).


Starting the file scan:

Begin scan in 'C:\' <WINDOWS>
C:\$RECYCLE.BIN\S-1-5-21-3559364391-3725626033-616138565-1001\$RVD51J3.dat
[WARNING] The archive header is damaged
C:\$RECYCLE.BIN\S-1-5-21-3559364391-3725626033-616138565-1001\$RWS35UA.dat
[WARNING] The archive header is damaged
C:\$RECYCLE.BIN\S-1-5-21-3559364391-3725626033-616138565-1001\$RYOOOUW.dat
[WARNING] The archive header is damaged
C:\Program Files\HaoZip\7zNew.data
[WARNING] The archive header is damaged
C:\Program Files\HaoZip\RarNew.data
[WARNING] Error no files to extract
C:\Users\Dinis\AppData\Local\Temp\AU1BSk+g.exe.part
[WARNING] Invalid end of file
C:\Users\Dinis\AppData\Local\Temp\jar_cache1180268557791801508.tmp
[WARNING] Invalid end of file
C:\Users\Dinis\AppData\Local\Temp\jar_cache1232380203157120833.tmp
[WARNING] Invalid end of file
C:\Users\Dinis\AppData\Local\Temp\jar_cache17299240587703923.tmp
[WARNING] Invalid end of file
C:\Users\Dinis\AppData\Local\Temp\jar_cache2262431084075209637.tmp
[WARNING] Invalid end of file
C:\Users\Dinis\AppData\Local\Temp\jar_cache2580527297793183483.tmp
[WARNING] Invalid end of file
C:\Users\Dinis\AppData\Local\Temp\jar_cache2787639083189840005.tmp
[WARNING] Invalid end of file
C:\Users\Dinis\AppData\Local\Temp\jar_cache3306586665008186698.tmp
[WARNING] Invalid end of file
C:\Users\Dinis\AppData\Local\Temp\jar_cache3742893880600077307.tmp
[WARNING] Invalid end of file
C:\Users\Dinis\AppData\Local\Temp\jar_cache3975839335749385785.tmp
[WARNING] Invalid end of file
C:\Users\Dinis\AppData\Local\Temp\jar_cache4016896027766320094.tmp
[WARNING] Invalid end of file
C:\Users\Dinis\AppData\Local\Temp\jar_cache4411657479394908629.tmp
[WARNING] Invalid end of file
C:\Users\Dinis\AppData\Local\Temp\jar_cache4756269038367633287.tmp
[WARNING] Invalid end of file
C:\Users\Dinis\AppData\Local\Temp\jar_cache4869295755757146283.tmp
[WARNING] Invalid end of file
C:\Users\Dinis\AppData\Local\Temp\jar_cache550357878127232093.tmp
[WARNING] Invalid end of file
C:\Users\Dinis\AppData\Local\Temp\jar_cache5555746775665677992.tmp
[WARNING] Invalid end of file
C:\Users\Dinis\AppData\Local\Temp\jar_cache5948202310481917979.tmp
[WARNING] Invalid end of file
C:\Users\Dinis\AppData\Local\Temp\jar_cache5992657061997340555.tmp
[WARNING] Invalid end of file
C:\Users\Dinis\AppData\Local\Temp\jar_cache6039472626584507812.tmp
[WARNING] Invalid end of file
C:\Users\Dinis\AppData\Local\Temp\jar_cache6813242699511620314.tmp
[WARNING] Invalid end of file
C:\Users\Dinis\AppData\Local\Temp\jar_cache7215160253911500937.tmp
[WARNING] Invalid end of file
C:\Users\Dinis\AppData\Local\Temp\jar_cache7294123155585935277.tmp
[WARNING] Invalid end of file
C:\Users\Dinis\AppData\Local\Temp\KmJLUzaa.zip.part
[WARNING] Invalid end of file
C:\Users\Dinis\AppData\Local\Temp\Temp1_ArcaniA_Gothic4_Demo_Setup.zip\ArcaniA_Gothic4_Demo_Setup.exe
[WARNING] Error multiple volume
C:\Users\Dinis\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\11\2442274b-56b0980f
[0] Archive type: ZIP
--> Sen.class
[DETECTION] Contains recognition pattern of the EXP/2010-0840.CM.2 exploit
--> Tesia.class
[DETECTION] Contains recognition pattern of the EXP/CVE-2010-0840.A.19 exploit
--> src.rar
[1] Archive type: RAR
--> Men.java
[DETECTION] Contains recognition pattern of the EXP/2010-0840.HA exploit
C:\Users\Dinis\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\26\21c27bda-3932bd51
[0] Archive type: ZIP
--> cltrcslhvbea/cnvdslfuyebpblfvulsvfadhk.class
[DETECTION] Contains recognition pattern of the EXP/CVE-2012-0507 exploit
--> cltrcslhvbea/gtaystuetcuu.class
[DETECTION] Contains recognition pattern of the EXP/JAVA.Jovab.Gen exploit
--> cltrcslhvbea/jtkjqshyqcu.class
[DETECTION] Contains recognition pattern of the EXP/JAVA.Jovab.Gen exploit
--> cltrcslhvbea/kutrutudtvegtfsegweech.class
[DETECTION] Contains recognition pattern of the EXP/JAVA.Jovab.Gen exploit
--> cltrcslhvbea/rdcnbdnndbys.class
[DETECTION] Contains recognition pattern of the EXP/JAVA.Jovab.Gen exploit
C:\Users\Dinis\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\47\3d7567ef-7f4a8f06
[0] Archive type: ZIP
--> a/a.class
[DETECTION] Contains recognition pattern of the EXP/11-3544.CM.1.A exploit
--> a/b.class
[DETECTION] Contains recognition pattern of the EXP/Java.Ternub.a.7 exploit
--> a/M.class
[DETECTION] Contains recognition pattern of the EXP/Java.Ternub.a.4 exploit
C:\Users\Dinis\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\8\3a2aef48-3fcf753a
[0] Archive type: ZIP
--> Goo.class
[DETECTION] Contains recognition pattern of the EXP/2010-0840.CN.1 exploit
--> Sopil.class
[DETECTION] Contains recognition pattern of the JAVA/Inject.D Java virus
C:\Users\Dinis\Desktop\eicar_com.zip
[0] Archive type: ZIP
--> eicar.com
[DETECTION] Contains code of the Eicar-Test-Signature virus
C:\Users\Dinis\Documents\ArcaniA_Gothic4_Demo_Setup\ArcaniA_Gothic4_Demo_Setup-1.bin
[WARNING] Error multiple volume
C:\Users\Dinis\Documents\ArcaniA_Gothic4_Demo_Setup\ArcaniA_Gothic4_Demo_Setup-2.bin
[WARNING] Error multiple volume
C:\Users\Dinis\Documents\ArcaniA_Gothic4_Demo_Setup\ArcaniA_Gothic4_Demo_Setup-3.bin
[WARNING] Error multiple volume
C:\Users\Dinis\Documents\ArcaniA_Gothic4_Demo_Setup\ArcaniA_Gothic4_Demo_Setup.exe
[WARNING] Error multiple volume
C:\Users\Dinis\Documents\Downloads\ROMs\megat3cb.zip
[WARNING] The archive header is damaged
C:\Users\Dinis\Documents\Downloads\ROMs\monsterz.zip
[WARNING] The archive header is damaged
C:\Users\Dinis\Documents\Downloads\ROMs\powj.zip
[WARNING] The archive header is damaged
C:\Users\Dinis\Documents\Downloads\ROMs\radikalb.zip
[WARNING] The archive header is damaged
C:\Users\Dinis\Documents\Downloads\ROMs\roadrioto.zip
[WARNING] Invalid end of file
C:\Users\Dinis\Documents\Downloads\ROMs\rungun2.zip
[WARNING] Invalid end of file
C:\Users\Dinis\Documents\Downloads\ROMs\sjcd2kx3.zip
[WARNING] Invalid end of file
C:\Users\Dinis\Documents\Downloads\ROMs\spacedx.zip
[WARNING] The archive header is damaged
C:\Users\Dinis\Documents\Downloads\ROMs\svcplusa.zip
[WARNING] The archive header is damaged
C:\Users\Dinis\Documents\Downloads\ROMs\toobing.zip
[WARNING] Invalid end of file
C:\Users\Dinis\Documents\Downloads\ROMs\topskatr.zip
[WARNING] Invalid end of file
C:\Users\Dinis\Documents\Downloads\ROMs\vindictr.zip
[WARNING] Invalid end of file
C:\Users\Dinis\Documents\Readon Player\setupTV.zip
[WARNING] Invalid end of file
C:\Users\Dinis\Downloads\Dirt2Demo.zip
[WARNING] Possible archive bomb: the maximum unpack size has been reached.
C:\Users\Dinis\Downloads\eMule\Incoming\ - Windows 7 Ultimate Activated Aio.zip
[0] Archive type: ZIP
--> setup.exe
[DETECTION] Is the TR/Hijacker.Gen Trojan
C:\Users\Dinis\Downloads\eMule\Incoming\ Microsoft.windows.7.final.22in1.x86.x64.activated.august.2010.is.zip
[0] Archive type: ZIP
--> setup.exe
[DETECTION] Is the TR/Hijacker.Gen Trojan
C:\Users\Dinis\Downloads\eMule\Incoming\( LOVE)Microsoft Office 2010 Windows Enterprise Activator [thethingy].zip
[0] Archive type: ZIP
--> setup.exe
[DETECTION] Is the TR/Hijacker.Gen Trojan
C:\Users\Dinis\Downloads\eMule\Incoming\( LOVE)Windows.xp.professional.sp3.july.2010.zip
[0] Archive type: ZIP
--> setup.exe
[DETECTION] Is the TR/Hijacker.Gen Trojan
C:\Users\Dinis\Downloads\eMule\Incoming\The_Undocumented_PC.rar
[WARNING] The file is password protected
C:\Users\Dinis\Downloads\eMule\Incoming\Windows 7 Ultimate(32 64 Bit) Self Activation - Jz.zip
[0] Archive type: ZIP
--> setup.exe
[DETECTION] Is the TR/Hijacker.Gen Trojan
C:\Users\Dinis\Downloads\eMule\Incoming\Windows.7.ultimate.x86.x64.fully.activated.august 2010-chr.zip
[0] Archive type: ZIP
--> setup.exe
[DETECTION] Is the TR/Hijacker.Gen Trojan
C:\Users\Dinis\Downloads\eMule\Incoming\Windows.xp.professional.sp3.july.2010.zip
[0] Archive type: ZIP
--> setup.exe
[DETECTION] Is the TR/Hijacker.Gen Trojan
C:\Users\Dinis\Downloads\eMule\Temp\002.part
[WARNING] Invalid end of file
C:\Users\Dinis\Downloads\eMule\Temp\004.part
[DETECTION] Contains recognition pattern of the EXP/ASF.GetCodec.Gen exploit
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib601.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib602.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib603.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib604.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib605.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib606.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib607.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib608.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib609.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib610.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib611.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib612.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib613.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib614.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib615.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib616.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib617.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib618.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib619.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib620.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib621.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib622.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib623.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib624.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib625.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib626.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib627.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib628.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib629.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib630.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib631.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib632.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib633.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib634.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib635.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib636.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib637.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib638.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib639.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib640.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib641.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib642.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib643.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib644.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib645.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib646.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib647.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib648.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib649.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib650.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib651.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib652.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib653.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib654.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib655.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib656.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib657.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib658.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib659.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib660.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib661.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib662.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib663.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib664.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib665.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib666.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib667.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib668.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib669.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib670.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib671.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib672.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib673.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib674.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib675.zip
[WARNING] Error multiple volume
C:\Users\Dinis\Downloads\Sibelius.v6.0.0.54-NoPE\Sibelius.v6.0.0.54-NoPE_nled\Sibelius.v6.0.0.54-NoPE_nled\n-sib676.zip
[WARNING] Error multiple volume
C:\Users\Public\mame\roms\1944.zip.part
[WARNING] Invalid end of file
C:\Users\Public\mame\roms\aerofgt.zip
[WARNING] Invalid end of file
C:\Users\Public\mame\roms\btoads.zip
[WARNING] Invalid end of file
C:\Users\Public\mame\roms\captavenua.zip
[WARNING] The archive header is damaged
C:\Users\Public\mame\roms\drifto94.zip
[WARNING] Invalid end of file
C:\Users\Public\mame\roms\tbyahhoo.zip
[WARNING] Invalid end of file
C:\Users\Public\mame\roms\terracre.zip
[WARNING] Invalid end of file
C:\Users\Public\mame\roms\twinbee.zip
[WARNING] Invalid end of file
C:\Users\Public\mame\roms\twineagl.zip
[WARNING] Invalid end of file
C:\Users\Public\mame\roms\willow.zip.part
[WARNING] Invalid end of file
C:\Windows\SoftwareDistribution\Download\bdc273e001893a43b099147b72dccf33353d1fb1
[0] Archive type: Portable Executable Resource
--> object
[1] Archive type: CAB (Microsoft)
--> WriterProdLang.7z
[2] Archive type: 7-Zip
--> WriterProdLang.cab
[3] Archive type: CAB (Microsoft)
--> writerprodlang.msi
[WARNING] The file could not be read!
--> object
[1] Archive type: CAB (Microsoft)
--> LanguageSelector64.7z
[2] Archive type: 7-Zip
--> LanguageSelector64.cab
[3] Archive type: CAB (Microsoft)
--> LanguageSelector64.msi
[WARNING] The file could not be read!
C:\Works\MSWorks\Redist\IE6\ient_s1.CAB
[WARNING] Error multiple volume
C:\Works\MSWorks\Redist\IE6\ient_s2.CAB
[WARNING] Error multiple volume
C:\Works\MSWorks\Redist\IE6\ient_s3.CAB
[WARNING] Error multiple volume
C:\Works\MSWorks\Redist\IE6\ient_s4.CAB
[WARNING] Error multiple volume
C:\Works\MSWorks\Redist\IE6\ient_s5.CAB
[WARNING] Error multiple volume
C:\Works\MSWorks\Redist\IE6\ie_s1.CAB
[WARNING] Error multiple volume
C:\Works\MSWorks\Redist\IE6\ie_s2.CAB
[WARNING] Error multiple volume
C:\Works\MSWorks\Redist\IE6\ie_s3.CAB
[WARNING] Error multiple volume
C:\Works\MSWorks\Redist\IE6\ie_s4.CAB
[WARNING] Error multiple volume
C:\Works\MSWorks\Redist\IE6\ie_s5.CAB
[WARNING] Error multiple volume
Begin scan in 'D:\' <Data>

Beginning disinfection:
C:\Users\Dinis\Downloads\eMule\Temp\004.part
[DETECTION] Contains recognition pattern of the EXP/ASF.GetCodec.Gen exploit
[NOTE] The file was moved to the quarantine directory under the name '566492ce.qua'.
C:\Users\Dinis\Downloads\eMule\Incoming\Windows.xp.professional.sp3.july.2010.zip
[DETECTION] Is the TR/Hijacker.Gen Trojan
[NOTE] The file was moved to the quarantine directory under the name '4eadbd28.qua'.
C:\Users\Dinis\Downloads\eMule\Incoming\Windows.7.ultimate.x86.x64.fully.activated.august 2010-chr.zip
[DETECTION] Is the TR/Hijacker.Gen Trojan
[NOTE] The file was moved to the quarantine directory under the name '1cf2e7c0.qua'.
C:\Users\Dinis\Downloads\eMule\Incoming\Windows 7 Ultimate(32 64 Bit) Self Activation - Jz.zip
[DETECTION] Is the TR/Hijacker.Gen Trojan
[NOTE] The file was moved to the quarantine directory under the name '7ac5a802.qua'.
C:\Users\Dinis\Downloads\eMule\Incoming\( LOVE)Windows.xp.professional.sp3.july.2010.zip
[DETECTION] Is the TR/Hijacker.Gen Trojan
[NOTE] The file was moved to the quarantine directory under the name '3f278543.qua'.
C:\Users\Dinis\Downloads\eMule\Incoming\( LOVE)Microsoft Office 2010 Windows Enterprise Activator [thethingy].zip
[DETECTION] Is the TR/Hijacker.Gen Trojan
[NOTE] The file was moved to the quarantine directory under the name '403cb725.qua'.
C:\Users\Dinis\Downloads\eMule\Incoming\ Microsoft.windows.7.final.22in1.x86.x64.activated.august.2010.is.zip
[DETECTION] Is the TR/Hijacker.Gen Trojan
[NOTE] The file was moved to the quarantine directory under the name '0ce99b39.qua'.
C:\Users\Dinis\Downloads\eMule\Incoming\ - Windows 7 Ultimate Activated Aio.zip
[DETECTION] Is the TR/Hijacker.Gen Trojan
[NOTE] The file was moved to the quarantine directory under the name '6f48db0c.qua'.
C:\Users\Dinis\Desktop\eicar_com.zip
[DETECTION] Contains code of the Eicar-Test-Signature virus
[NOTE] The file was moved to the quarantine directory under the name '5dadf405.qua'.
C:\Users\Dinis\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\8\3a2aef48-3fcf753a
[DETECTION] Contains recognition pattern of the EXP/2010-0840.CN.1 exploit
[NOTE] The file was moved to the quarantine directory under the name '4494cf97.qua'.
C:\Users\Dinis\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\47\3d7567ef-7f4a8f06
[DETECTION] Contains recognition pattern of the EXP/Java.Ternub.a.4 exploit
[NOTE] The file was moved to the quarantine directory under the name '28cde3a2.qua'.
C:\Users\Dinis\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\26\21c27bda-3932bd51
[DETECTION] Contains recognition pattern of the EXP/JAVA.Jovab.Gen exploit
[NOTE] The file was moved to the quarantine directory under the name '5920da62.qua'.
C:\Users\Dinis\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\11\2442274b-56b0980f
[DETECTION] Contains recognition pattern of the EXP/2010-0840.CM.2 exploit
[NOTE] The file was moved to the quarantine directory under the name '5769eaa0.qua'.


End of the scan: domingo, 17 de Junho de 2012 20:33
Used time: 2:56:01 Hour(s)

The scan has been done completely.

54056 Scanned directories
1299752 Files were scanned
24 Viruses and/or unwanted programs were found
0 Files were classified as suspicious
0 Files were deleted
0 Viruses and unwanted programs were repaired
13 Files were moved to quarantine
0 Files were renamed
1 Files cannot be scanned
1299727 Files not concerned
23525 Archives were scanned
148 Warnings
14 Notes
1035390 Objects were scanned with rootkit scan
1 Hidden objects were found

#3 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,323 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:39 AM

Posted 17 June 2012 - 09:15 PM

Hello and welcome. I would like you to do these also.

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Run TFC by OT (Temp File Cleaner)
Please download TFC by Old Timer and save it to your desktop.
alternate download link

Save any unsaved work. TFC will close ALL open programs including your browser!
Double-click on TFC.exe to run it. If you are using Vista, right-click on the file and choose Run As Administrator.
Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway to ensure a complete clean.


Next run MBAM (MalwareBytes):

Please download Malwarebytes Anti-Malware Posted Image and save it to your desktop.
  • Important!! When you save the mbam-setup file, rename it to something random (such as 123abc.exe) before beginning the download.
Malwarebytes may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.

  • Make sure you are connected to the Internet and double-click on the renamed file to install the application.
  • When the installation begins, follow the prompts and do not make any changes to default settings.
  • Malwarebytes will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button and continue.
  • If you cannot update Malwarebytes or use the Internet to download any files to the infected computer, manually update the database by following the instructions in FAQ Section A: 4. Issues.
  • Under the Scanner tab, make sure the "Perform Quick Scan" option is selected.
  • Click on the Scan button.
  • When finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box, then click the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked and then click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.
Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.



And>>
Please download TDSSKiller.zip and and extract it.
  • Run TDSSKiller.exe.
  • Click Start scan.
  • When it is finished the utility outputs a list of detected objects with description.
    The utility automatically selects an action (Cure or Delete) for malicious objects.
    The utility prompts the user to select an action to apply to suspicious objects (Skip, by default). Let the options as it is and click Continue
  • Let reboot if needed and tell me if the tool needed a reboot.
  • Click on Report and post the contents of the text file that will open.

    Note: By default, the utility outputs the log into system disk (it is usually the disk with installed operating system, C:\) root folder. The Log has a name like: TDSSKiller.Version_Date_Time_log.txt.



If TDSSKiller does not run, try renaming it. To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to these[/color] instructions. In some cases it may be necessary to redownload TDSSKiller and randomly rename it before downloading and saving to the computer.



When a browser runs an applet, the Java Runtime Environment (JRE) stores the downloaded files into its cache folder (C:\Documents and Settings\username\Application Data\Sun\Java\Deployment\cache) for quick execution later and better performance. Malicious applets are also stored in the Java cache directory and your anti-virus may detect them and provide alerts. For more specific information about Java exploits, please refer to Virus found in the Java cache directory.

Notification of these files as a threat does not always mean that a machine has been infected; it indicates that a program included the viral class file but this does not mean that it used the malicious functionality. As a precaution, I recommend clearing the entire cache to ensure everything is cleaned out:

Edited by boopme, 17 June 2012 - 09:16 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#4 kep1

kep1
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:10:39 AM

Posted 19 June 2012 - 11:58 AM

MiniToolBox by Farbar Version: 09-06-2012
Ran by Dinis (administrator) on 18-06-2012 at 21:06:08
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Configura‡Æo IP do Windows

Cache de resolu‡Æo DNS limpa com ˆxito.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================


127.0.0.1 localhost
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 adobe.activate.com
127.0.0.1 adobeereg.com
127.0.0.1 www.adobeereg.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 125.252.224.90

There are 2 more lines starting with "127.0.0.1"

========================= IP Configuration: ================================

Placa de Rede Broadcom 802.11n = Ligação de rede sem fios (Connected)
VirtualBox Host-Only Ethernet Adapter = VirtualBox Host-Only Network (Connected)
Atheros AR8152 PCI-E Fast Ethernet Controller = Ligação de Área Local (Media disconnected)


# ----------------------------------
# Configura‡Æo IPv4
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add address name="VirtualBox Host-Only Network" address=192.168.56.1 mask=255.255.255.0


popd
#Fim da configura‡Æo de IPv4



Configura‡Æo IP do Windows

Nome do AnfitriÆo. . . . . . . . .: Dinis-TOSH
Sufixo DNS principal. . . . . . . :
Tipo de n¢. . . . . . . . . . . . : H¡brido
Rota IP activada. . . . . . . . . : NÆo
WINS Proxy activado . . . . . . . : NÆo
Lista de Pesquisa de Sufixos DNS : home

Placa de rede local sem fios Liga‡Æo de rede sem fios:

Sufixo DNS espec¡fico da liga‡Æo. : home
Descri‡Æo . . . . . . . . . . . . : Placa de Rede Broadcom 802.11n
Endere‡o f¡sico . . . . . . . . . : E8-39-DF-3E-BE-FA
DHCP activado . . . . . . . . . . : Sim
Autoconfigura‡Æo activada . . . . : Sim
Endere‡o IPv6 de local de liga‡Æo : fe80::d481:a208:3215:3003%21(Preferido)
Endere‡o IPv4 . . . . . . . . . . . . . . : 192.168.1.117(Preferido)
M scara de sub-rede . . . . . . . : 255.255.255.0
ConcessÆo obtida. . . . . . . . . : segunda-feira, 18 de Junho de 2012 20:39:50
ConcessÆo obtida v lida at‚ . . . : segunda-feira, 18 de Junho de 2012 21:39:49
Gateway predefinido . . . . . . . : 192.168.1.1
Servidor DHCP . . . . . . . . . . : 192.168.1.1
IAID DHCPv6 . . . . . . . . . . . : 216545759
DUID Cliente DHCPv6 . . . . . . . : 00-01-00-01-13-C9-3B-28-00-26-6C-5E-75-4B
Servidores DNS. . . . . . . . . . : 192.168.1.1
NetBIOS por Tcpip . . . . . . . . . . . . : Activado

Adaptador ethernet Liga‡Æo de µrea Local:

Estado do suporte . . . . . . . . : Suporte desligado
Sufixo DNS espec¡fico da liga‡Æo. :
Descri‡Æo . . . . . . . . . . . . : Atheros AR8152 PCI-E Fast Ethernet Controller
Endere‡o f¡sico . . . . . . . . . : 00-26-6C-5E-75-4B
DHCP activado . . . . . . . . . . : Sim
Autoconfigura‡Æo activada . . . . : Sim

Adaptador ethernet VirtualBox Host-Only Network:

Sufixo DNS espec¡fico da liga‡Æo. :
Descri‡Æo . . . . . . . . . . . . : VirtualBox Host-Only Ethernet Adapter
Endere‡o f¡sico . . . . . . . . . : 08-00-27-00-74-B9
DHCP activado . . . . . . . . . . : NÆo
Autoconfigura‡Æo activada . . . . : Sim
Endere‡o IPv6 de local de liga‡Æo : fe80::d85f:6bf9:dafe:173d%15(Preferido)
Endere‡o IPv4 . . . . . . . . . . . . . . : 192.168.56.1(Preferido)
M scara de sub-rede . . . . . . . : 255.255.255.0
Gateway predefinido . . . . . . . :
IAID DHCPv6 . . . . . . . . . . . : 487063591
DUID Cliente DHCPv6 . . . . . . . : 00-01-00-01-13-C9-3B-28-00-26-6C-5E-75-4B
Servidores DNS. . . . . . . . . . : fec0:0:0:ffff::1%1
fec0:0:0:ffff::2%1
fec0:0:0:ffff::3%1
NetBIOS por Tcpip . . . . . . . . . . . . : Activado

Adaptador Tunnel isatap.home:

Estado do suporte . . . . . . . . : Suporte desligado
Sufixo DNS espec¡fico da liga‡Æo. : home
Descri‡Æo . . . . . . . . . . . . : Placa Microsoft ISATAP
Endere‡o f¡sico . . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP activado . . . . . . . . . . : NÆo
Autoconfigura‡Æo activada . . . . : Sim

Adaptador Tunnel Liga‡Æo de  rea local* 4:

Estado do suporte . . . . . . . . : Suporte desligado
Sufixo DNS espec¡fico da liga‡Æo. :
Descri‡Æo . . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Endere‡o f¡sico . . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP activado . . . . . . . . . . : NÆo
Autoconfigura‡Æo activada . . . . : Sim

Adaptador Tunnel isatap.{DEFBE8EE-119A-4933-8383-B9F2A3F0E589}:

Estado do suporte . . . . . . . . : Suporte desligado
Sufixo DNS espec¡fico da liga‡Æo. :
Descri‡Æo . . . . . . . . . . . . : Placa Microsoft ISATAP #2
Endere‡o f¡sico . . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP activado . . . . . . . . . . : NÆo
Autoconfigura‡Æo activada . . . . : Sim

Adaptador Tunnel isatap.{6D24D40E-0EBA-4861-92BC-3DAEB5EE218C}:

Estado do suporte . . . . . . . . : Suporte desligado
Sufixo DNS espec¡fico da liga‡Æo. :
Descri‡Æo . . . . . . . . . . . . : Placa Microsoft ISATAP #3
Endere‡o f¡sico . . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP activado . . . . . . . . . . : NÆo
Autoconfigura‡Æo activada . . . . : Sim
Servidor: discus.home
Address: 192.168.1.1

Nome: google.com
Addresses: 2a00:1450:4003:801::1006
173.194.34.194
173.194.34.198
173.194.34.200
173.194.34.197
173.194.34.206
173.194.34.195
173.194.34.193
173.194.34.201
173.194.34.192
173.194.34.199
173.194.34.196


A fazer ping para google.com [173.194.34.194] com 32 bytes de dados:
Resposta de 173.194.34.194: bytes=32 tempo=26ms TTL=54
Resposta de 173.194.34.194: bytes=32 tempo=26ms TTL=54

Estat¡sticas de ping para 173.194.34.194:
Pacotes: Enviados = 2, Recebidos = 2,
Perdidos = 0 (perda: 0%),
Tempo aproximado de ida e volta em milissegundos:
M¡nimo = 26ms, M ximo = 26ms, M‚dia = 26ms
Servidor: discus.home
Address: 192.168.1.1

Nome: yahoo.com
Addresses: 98.139.183.24
209.191.122.70
72.30.38.140


A fazer ping para yahoo.com [98.139.183.24] com 32 bytes de dados:
Resposta de 98.139.183.24: bytes=32 tempo=241ms TTL=50
Resposta de 98.139.183.24: bytes=32 tempo=233ms TTL=50

Estat¡sticas de ping para 98.139.183.24:
Pacotes: Enviados = 2, Recebidos = 2,
Perdidos = 0 (perda: 0%),
Tempo aproximado de ida e volta em milissegundos:
M¡nimo = 233ms, M ximo = 241ms, M‚dia = 237ms
Servidor: discus.home
Address: 192.168.1.1

Nome: bleepingcomputer.com
Address: 208.43.87.2


A fazer ping para bleepingcomputer.com [208.43.87.2] com 32 bytes de dados:
Resposta de 208.43.87.2: AnfitriÆo de destino inacess¡vel.
Resposta de 208.43.87.2: AnfitriÆo de destino inacess¡vel.

Estat¡sticas de ping para 208.43.87.2:
Pacotes: Enviados = 2, Recebidos = 2,
Perdidos = 0 (perda: 0%),

A fazer ping para 127.0.0.1 com 32 bytes de dados:
Resposta de 127.0.0.1: bytes=32 tempo<1 ms TTL=128
Resposta de 127.0.0.1: bytes=32 tempo<1 ms TTL=128

Estat¡sticas de ping para 127.0.0.1:
Pacotes: Enviados = 2, Recebidos = 2,
Perdidos = 0 (perda: 0%),
Tempo aproximado de ida e volta em milissegundos:
M¡nimo = 0ms, M ximo = 0ms, M‚dia = 0ms
===========================================================================
Lista de interface
21...e8 39 df 3e be fa ......Placa de Rede Broadcom 802.11n
11...00 26 6c 5e 75 4b ......Atheros AR8152 PCI-E Fast Ethernet Controller
15...08 00 27 00 74 b9 ......VirtualBox Host-Only Ethernet Adapter
1...........................Software Loopback Interface 1
24...00 00 00 00 00 00 00 e0 Placa Microsoft ISATAP
10...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
36...00 00 00 00 00 00 00 e0 Placa Microsoft ISATAP #2
20...00 00 00 00 00 00 00 e0 Placa Microsoft ISATAP #3
===========================================================================

IPv4 Tabela de rotas
===========================================================================
Rotas activas:
Destino de rede M scara de rede Gateway Interface M‚trica
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.117 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.117 281
192.168.1.117 255.255.255.255 On-link 192.168.1.117 281
192.168.1.255 255.255.255.255 On-link 192.168.1.117 281
192.168.56.0 255.255.255.0 On-link 192.168.56.1 276
192.168.56.1 255.255.255.255 On-link 192.168.56.1 276
192.168.56.255 255.255.255.255 On-link 192.168.56.1 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.56.1 276
224.0.0.0 240.0.0.0 On-link 192.168.1.117 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.56.1 276
255.255.255.255 255.255.255.255 On-link 192.168.1.117 281
===========================================================================
Rotas persistentes:
Nenhum

IPv6 Tabela de rotas
===========================================================================
Rotas activas:
Se destino de rede m‚trica Gateway
1 306 ::1/128 On-link
15 276 fe80::/64 On-link
21 281 fe80::/64 On-link
21 281 fe80::d481:a208:3215:3003/128
On-link
15 276 fe80::d85f:6bf9:dafe:173d/128
On-link
1 306 ff00::/8 On-link
15 276 ff00::/8 On-link
21 281 ff00::/8 On-link
===========================================================================
Rotas persistentes:
Nenhum
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 08 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 08 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (06/15/2012 09:42:28 PM) (Source: Application Error) (User: )
Description: Nome da aplicação com falha: dosbox.exe, versão: 0.74.0.0, carimbo de data/hora: 0x4fb9add1
Nome do módulo com falha: unknown, versão: 0.0.0.0, carimbo de data/hora: 0x00000000
Código de excepção: 0xc0000005
Desvio de falha: 0x00005441
ID do processo com falha: 0x1884
Data/hora de início da aplicação com falha: 0xdosbox.exe0
Caminho da aplicação com falha: dosbox.exe1
Caminho do módulo com falha: dosbox.exe2
ID do Relatório: dosbox.exe3

Error: (06/09/2012 04:18:45 PM) (Source: Application Error) (User: )
Description: Nome da aplicação com falha: dosbox.exe, versão: 0.74.0.0, carimbo de data/hora: 0x4fb9add1
Nome do módulo com falha: unknown, versão: 0.0.0.0, carimbo de data/hora: 0x00000000
Código de excepção: 0xc0000005
Desvio de falha: 0x01005441
ID do processo com falha: 0x1814
Data/hora de início da aplicação com falha: 0xdosbox.exe0
Caminho da aplicação com falha: dosbox.exe1
Caminho do módulo com falha: dosbox.exe2
ID do Relatório: dosbox.exe3

Error: (06/09/2012 08:09:04 AM) (Source: Application Error) (User: )
Description: Nome da aplicação com falha: dosbox.exe, versão: 0.74.0.0, carimbo de data/hora: 0x4fb9add1
Nome do módulo com falha: unknown, versão: 0.0.0.0, carimbo de data/hora: 0x00000000
Código de excepção: 0xc0000005
Desvio de falha: 0x70696873
ID do processo com falha: 0x524
Data/hora de início da aplicação com falha: 0xdosbox.exe0
Caminho da aplicação com falha: dosbox.exe1
Caminho do módulo com falha: dosbox.exe2
ID do Relatório: dosbox.exe3

Error: (06/09/2012 06:14:28 AM) (Source: Application Error) (User: )
Description: Nome da aplicação com falha: dosbox.exe, versão: 0.74.0.0, carimbo de data/hora: 0x4fb9add1
Nome do módulo com falha: unknown, versão: 0.0.0.0, carimbo de data/hora: 0x00000000
Código de excepção: 0xc0000005
Desvio de falha: 0x00005441
ID do processo com falha: 0x1910
Data/hora de início da aplicação com falha: 0xdosbox.exe0
Caminho da aplicação com falha: dosbox.exe1
Caminho do módulo com falha: dosbox.exe2
ID do Relatório: dosbox.exe3

Error: (04/28/2012 11:30:06 AM) (Source: MsiInstaller) (User: Dinis)Dinis
Description: Product: 7-Zip 9.20 (x64 edition) -- Error 1316. A network error occurred while attempting to read from the file: C:\Users\Dinis\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZPHP2HB9\7z920-x64[1].msi

Error: (04/27/2012 03:43:56 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5164

Error: (04/27/2012 03:43:56 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 5164

Error: (04/27/2012 03:43:56 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (04/27/2012 03:43:55 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 4165

Error: (04/27/2012 03:43:55 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 4165


System errors:
=============
Error: (06/18/2012 08:40:29 PM) (Source: Service Control Manager) (User: )
Description: O serviço SQL Server (MSSQLSERVER) falhou o arranque devido ao seguinte erro:
%%1053

Error: (06/18/2012 08:40:29 PM) (Source: Service Control Manager) (User: )
Description: Foi atingido o tempo limite (30000 milissegundos) ao aguardar pela ligação do serviço SQL Server (MSSQLSERVER).

Error: (06/17/2012 06:38:05 AM) (Source: Service Control Manager) (User: )
Description: O serviço SQL Server (MSSQLSERVER) falhou o arranque devido ao seguinte erro:
%%1053

Error: (06/17/2012 06:38:05 AM) (Source: Service Control Manager) (User: )
Description: Foi atingido o tempo limite (30000 milissegundos) ao aguardar pela ligação do serviço SQL Server (MSSQLSERVER).

Error: (06/16/2012 09:23:16 AM) (Source: Service Control Manager) (User: )
Description: O serviço SQL Server (MSSQLSERVER) falhou o arranque devido ao seguinte erro:
%%1053

Error: (06/16/2012 09:23:16 AM) (Source: Service Control Manager) (User: )
Description: Foi atingido o tempo limite (30000 milissegundos) ao aguardar pela ligação do serviço SQL Server (MSSQLSERVER).

Error: (06/15/2012 05:08:36 PM) (Source: Service Control Manager) (User: )
Description: O serviço Windows Search falhou o arranque devido ao seguinte erro:
%%1053

Error: (06/15/2012 05:08:36 PM) (Source: Service Control Manager) (User: )
Description: Foi atingido o tempo limite (30000 milissegundos) ao aguardar pela ligação do serviço Windows Search.

Error: (06/15/2012 05:08:36 PM) (Source: DCOM) (User: )
Description: 1053WSearch{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

Error: (06/12/2012 05:39:41 PM) (Source: Service Control Manager) (User: )
Description: O serviço Apple Mobile Device terminou inesperadamente. Já o fez 1 vez(es). Será efectuada a seguinte acção correctiva em 60000 milissegundos: Reiniciar o serviço.


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
7-Zip 9.20 (x64 edition) (Version: 9.20.00.0)
AbiWord 2.8.6 (Version: 2.8.6)
Actualização do Microsoft Office Excel 2007 Help (KB963678)
Actualização do Microsoft Office Powerpoint 2007 Help (KB963669)
Actualização do Microsoft Office Word 2007 Help (KB963665)
Adobe AIR (Version: 1.5.3.9130)
Adobe Anchor Service CS4 (Version: 2.0)
Adobe Community Help (Version: 3.0.0)
Adobe Community Help (Version: 3.0.0.400)
Adobe Director 11.5 (Version: 11.5)
Adobe Flash Player 11 ActiveX 64-bit (Version: 11.2.202.235)
Adobe Flash Player 11 Plugin (Version: 11.3.300.257)
Adobe Media Player (Version: 1.8)
Adobe Photoshop CS5 (Version: 12.0)
Adobe Reader X (10.1.3) - Português (Version: 10.1.3)
Adobe Setup (Version: 2.0)
Adobe Shockwave Player 11.6 (Version: 11.6.1.629)
Adobe Update Manager CS4 (Version: 6.0.0)
Advertising Center (Version: 0.0.0.2)
Age of Empires III - The Asian Dynasties (Version: 1.00.0000)
Age of Empires III - The WarChiefs (Version: 1.00.0000)
Age of Empires III (Version: 1.00.0000)
Alerta de HDD/SSD TOSHIBA (Version: 3.1.64.6)
Amazon.co.uk
AMD Demo - Froblins (Version: 1.2)
AMD Demo - Ladybug (Version: 1.1)
AMD Demo - Mecha (Version: 1.1)
AnyToISO (Version: 3.2)
Apple Application Support (Version: 2.1.9)
Apple Mobile Device Support (Version: 5.2.0.6)
Apple Software Update (Version: 2.1.3.127)
ArcaniA - Gothic 4 Demo
AstroFire Demo Version 3.06d
Astrogeddon Version 1.62
Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver (Version: 1.0.0.26)
ATI Catalyst Install Manager (Version: 3.0.765.0)
µTorrent (Version: 3.1.3)
Avira Free Antivirus (Version: 12.0.0.1125)
Badoo Desktop (Version: 1.6.48.1082)
Bandizip (Version: 2.0)
Battlefield 1942
Bluetooth Stack for Windows by Toshiba (Version: v7.10.10(T))
Bonjour (Version: 3.0.0.10)
Broadcom 802.11 Network Adapter (Version: 5.60.48.35)
Call of Duty
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Core Implementation (Version: 2010.0315.1050.17562)
Catalyst Control Center Graphics Full Existing (Version: 2010.0315.1050.17562)
Catalyst Control Center Graphics Full New (Version: 2010.0315.1050.17562)
Catalyst Control Center Graphics Light (Version: 2010.0315.1050.17562)
Catalyst Control Center Graphics Previews Common (Version: 2010.0315.1050.17562)
Catalyst Control Center Graphics Previews Vista (Version: 2010.0315.1050.17562)
Catalyst Control Center InstallProxy (Version: 2010.0315.1050.17562)
Catalyst Control Center Localization All (Version: 2010.0315.1050.17562)
ccc-core-static (Version: 2010.0315.1050.17562)
ccc-utility64 (Version: 2010.0315.1050.17562)
CCC Help Chinese Standard (Version: 2010.0315.1049.17562)
CCC Help Chinese Traditional (Version: 2010.0315.1049.17562)
CCC Help Czech (Version: 2010.0315.1049.17562)
CCC Help Danish (Version: 2010.0315.1049.17562)
CCC Help Dutch (Version: 2010.0315.1049.17562)
CCC Help English (Version: 2010.0315.1049.17562)
CCC Help Finnish (Version: 2010.0315.1049.17562)
CCC Help French (Version: 2010.0315.1049.17562)
CCC Help German (Version: 2010.0315.1049.17562)
CCC Help Greek (Version: 2010.0315.1049.17562)
CCC Help Hungarian (Version: 2010.0315.1049.17562)
CCC Help Italian (Version: 2010.0315.1049.17562)
CCC Help Japanese (Version: 2010.0315.1049.17562)
CCC Help Korean (Version: 2010.0315.1049.17562)
CCC Help Norwegian (Version: 2010.0315.1049.17562)
CCC Help Polish (Version: 2010.0315.1049.17562)
CCC Help Portuguese (Version: 2010.0315.1049.17562)
CCC Help Russian (Version: 2010.0315.1049.17562)
CCC Help Spanish (Version: 2010.0315.1049.17562)
CCC Help Swedish (Version: 2010.0315.1049.17562)
CCC Help Thai (Version: 2010.0315.1049.17562)
CCC Help Turkish (Version: 2010.0315.1049.17562)
Clementine (Version: 1.0.1)
CMN
Complemento Messenger (Version: 15.4.3502.0922)
Conexant Audio Driver For AMD HDMI Codec (Version: 4.98.26.0)
Conexant HD Audio (Version: 4.119.0.61)
Controlo ActiveX do Windows Live Mesh para Ligações Remotas (Version: 15.4.5722.2)
Crystal Reports for Visual Studio (Version: 12.51.0.240)
D3DX10 (Version: 15.4.2368.0902)
Daum PotPlayer 1.5.32007
Debut Video Capture Software
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Diablo II
DiRT2 Demo (Version: 1.00.0000)
DOSBox SVN-Daum
Dotfuscator Software Services - Community Edition (Version: 5.0.2300.0)
eBay (Version: 1.1.9)
eMule
Express Burn Disc Burning Software
FileZilla Client 3.3.5.1 (Version: 3.3.5.1)
Galeria de Fotografias do Windows Live (Version: 15.4.3502.0922)
GDR 1617 para o SQL Server 2008 R2 (KB2494088) (64-bit) (Version: 10.50.1617.0)
Google Earth Plug-in (Version: 6.1.0.5001)
Google Update Helper (Version: 1.3.21.111)
HaoZip (Version: v2.7)
iCloud (Version: 1.1.0.40)
ImagXpress (Version: 7.0.74.0)
Insane
Intel® Management Engine Components (Version: 6.0.0.1179)
Intel® Rapid Storage Technology (Version: 9.5.7.1002)
Intel® Turbo Boost Technology Driver (Version: 01.01.01.1007)
iTunes (Version: 10.6.3.25)
iWisoft Free Video Converter 1.2 (Version: 1.2)
IZArc 4.1.6 (Version: 4.1.6)
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 30 (64-bit) (Version: 6.0.300)
Java™ 6 Update 31 (Version: 6.0.310)
JEmu2 - Online Games System Emulator
Jing (Version: 2.4.10231)
Junk Mail filter update (Version: 15.4.3502.0922)
Kane and Lynch: Dead Men (Version: 1.00.0000)
Kantaris Media Player Lite versão 0.7.7 (Version: 0.7.7)
KVIrc
Lexmark 3500-4500 Series
LibreOffice 3.3 (Version: 3.3.301)
Live Media Plugin (Todae)
LizardTech DjVu Control (autoinstall)
Mesh Runtime (Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft .NET Framework 4 Multi-Targeting Pack (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft ASP.NET MVC 2 - Visual Studio 2010 Tools (Version: 2.0.50217.0)
Microsoft ASP.NET MVC 2 (Version: 2.0.50217.0)
Microsoft Games for Windows - LIVE Redistributable (Version: 3.5.88.0)
Microsoft Games for Windows Marketplace (Version: 3.5.50.0)
Microsoft Help Viewer 1.0 (Version: 1.0.30319)
Microsoft Office 2003 Web Components (Version: 12.0.6213.1000)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office 2010 Language Pack Service Pack 1 (SP1)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Excel MUI (Portuguese (Portugal)) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (Portuguese (Portugal)) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (Portuguese (Portugal)) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Portuguese (Portugal)) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (Portuguese (Portugal)) 2007 (Version: 12.0.4518.1029)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (Portuguese (Portugal)) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (Portuguese (Portugal)) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Suite Activation Assistant (Version: 2.9)
Microsoft Office Visio 2010 (Version: 14.0.6029.1000)
Microsoft Office Visio MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (Portuguese (Portugal)) 2007 (Version: 12.0.6612.1000)
Microsoft Report Viewer Redistributable 2008 (KB971119) (Version: 9.0.30731)
Microsoft Report Viewer Redistributable 2008 SP1
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft Silverlight 3 SDK (Version: 3.0.40818.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft SQL Server 2008 (64-bit)
Microsoft SQL Server 2008 Database Engine Services (Version: 10.2.4000.0)
Microsoft SQL Server 2008 R2 (64-bit)
Microsoft SQL Server 2008 R2 Data-Tier Application Framework (Version: 10.50.1447.4)
Microsoft SQL Server 2008 R2 Data-Tier Application Project (Version: 10.50.1447.4)
Microsoft SQL Server 2008 R2 Management Objects (Version: 10.50.1447.4)
Microsoft SQL Server 2008 R2 Management Objects (x64) (Version: 10.50.1447.4)
Microsoft SQL Server 2008 R2 Native Client (Version: 10.50.1617.0)
Microsoft SQL Server 2008 R2 Policies (Version: 10.50.1600.1)
Microsoft SQL Server 2008 R2 RsFx Driver (Version: 10.50.1600.1)
Microsoft SQL Server 2008 R2 Setup (English) (Version: 10.50.1617.0)
Microsoft SQL Server 2008 R2 Transact-SQL Language Service (Version: 10.50.1447.4)
Microsoft SQL Server 2008 RsFx Driver (Version: 10.2.4000.0)
Microsoft SQL Server 2008 Setup Support Files (Version: 10.2.4000.0)
Microsoft SQL Server Browser (Version: 10.50.1600.1)
Microsoft SQL Server Compact 3.5 SP2 ENU (Version: 3.5.8080.0)
Microsoft SQL Server Compact 3.5 SP2 Query Tools ENU (Version: 3.5.8080.0)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (Version: 3.5.8080.0)
Microsoft SQL Server Database Publishing Wizard 1.4 (Version: 10.1.2512.8)
Microsoft SQL Server System CLR Types (Version: 10.50.1447.4)
Microsoft SQL Server System CLR Types (x64) (Version: 10.50.1447.4)
Microsoft SQL Server VSS Writer (Version: 10.50.1600.1)
Microsoft Sync Framework Runtime v1.0 SP1 (x64) (Version: 1.0.3010.0)
Microsoft Sync Framework SDK v1.0 SP1 (Version: 1.0.3010.0)
Microsoft Sync Framework Services v1.0 SP1 (x64) (Version: 1.0.3010.0)
Microsoft Sync Services for ADO.NET v2.0 SP1 (x64) (Version: 2.0.3010.0)
Microsoft Team Foundation Server 2010 Object Model - ENU (Version: 10.0.30319)
Microsoft Virtual PC 2007 (Version: 6.0.156.0)
Microsoft Visio 2010 Service Pack 1 (SP1)
Microsoft Visio Professional 2010 (Version: 14.0.6029.1000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (Version: 9.0.30729.4974)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Designtime - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010 x64 Runtime - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Runtime - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual F# 2.0 Runtime (Version: 10.0.30319)
Microsoft Visual Studio 2008 Shell (integrated mode) - ENU (Version: 9.0.30729)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (Version: 10.0.30319)
Microsoft Visual Studio 2010 IntelliTrace Collection (x64) (Version: 10.0.30319)
Microsoft Visual Studio 2010 Office Developer Tools (x64) (Version: 10.0.30319)
Microsoft Visual Studio 2010 Performance Collection Tools - ENU (Version: 10.0.30319)
Microsoft Visual Studio 2010 SharePoint Developer Tools (Version: 10.0.30319)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.31119)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.31124)
Microsoft Visual Studio 2010 Ultimate - ENU (Version: 10.0.30319)
Microsoft Visual Studio Macro Tools (Version: 9.0.30729)
Microsoft Visual Studio Tools for Applications 2.0 - ENU (Version: 9.0.35191)
Microsoft Works (Version: 08.05.0822)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)
mIRC (Version: 7.19)
Miro (Version: 4.0.2.1)
MobileMe Control Panel (Version: 3.1.8.0)
Mozilla Firefox 13.0.1 (x86 pt-PT) (Version: 13.0.1)
Mozilla Maintenance Service (Version: 13.0.1)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MusicBee (Version: 1.3.4334)
MySQL Connector Net 6.3.6 (Version: 6.3.6)
MySQL Workbench 5.2 CE (Version: 5.2.31)
Need for Speed™ Most Wanted
Nero 9 Essentials
Nero BackItUp (Version: 5.2.21001)
Nero BackItUp and Burn (Version: 1.2.0030)
Nero BurnRights (Version: 3.4.13.100)
Nero BurnRights (Version: 3.6.26001)
Nero BurnRights Help (Version: 3.4.4.100)
Nero ControlCenter (Version: 9.0.0.1)
Nero DiscSpeed (Version: 5.4.13.100)
Nero DiscSpeed Help (Version: 5.4.4.100)
Nero DriveSpeed (Version: 4.4.12.100)
Nero DriveSpeed Help (Version: 4.4.4.100)
Nero Express (Version: 9.6.16000)
Nero Express Help (Version: 9.4.34.100)
Nero InfoTool (Version: 6.4.12.100)
Nero InfoTool Help (Version: 6.4.4.100)
Nero Installer (Version: 4.4.9.0)
Nero Online Upgrade (Version: 1.3.0.0)
Nero RescueAgent (Version: 2.6.25002)
Nero StartSmart (Version: 9.4.37.100)
Nero StartSmart Help (Version: 9.4.37.100)
NeroExpress (Version: 9.4.34.100)
neroxml (Version: 1.0.0)
Notepad++ (Version: 5.8.7)
NUnit 2.5.10 (Version: 2.5.10.11092)
NVIDIA PhysX (Version: 9.10.0513)
NWZ-B160 WALKMAN Guide (Version: 2.1.0.24141)
OpenAL
Operation Spacehog
Oracle VM VirtualBox 3.2.12 (Version: 3.2.12)
PakkISO 0.4 (Version: PakkISO 0.4 by zorted, installer by BitLooter)
PDF Settings CS5 (Version: 10.0)
PeaZip 4.5 (WIN64)
Photo Service - powered by myphotobook (Version: 1.0.7-279)
Photo Service - powered by myphotobook (Version: 1.0.7)
PlayReady PC Runtime amd64 (Version: 1.3.0)
Ports Of Call - deluxe 1.34 (Version: 1.34)
Project64 1.6 (Version: 1.6)
qBittorrent 2.9.7
QuickTime (Version: 7.72.80.56)
Rapture3D 2.3.26 Game
Readon TV Movie Radio Player 7.3.0.0 (Version: 7.3.0)
Realtek USB 2.0 Card Reader (Version: 6.1.7600.30111)
S10 RedEyes 3.2 (Version: 3.2)
Safari (Version: 5.34.57.2)
Samsung Kies (Version: 2.1.1.11124_17)
SAMSUNG USB Driver for Mobile Phones (Version: 1.4.103.0)
Scattergories
Service Pack 2 para SQL Server 2008 (KB2285068) (64-bit) (Version: 10.2.4000.0)
Serviços de Impressão do Bonjour (Version: 2.0.2.0)
Sid Meier's Civilization IV Colonization (Version: 1.00)
Skype Click to Call (Version: 5.9.9216)
Skype™ 5.8 (Version: 5.8.156)
Spider Player 2.5.3 (Version: 2.5.3.0)
SQL Server 2008 R2 BI Development Studio (Version: 10.50.1600.1)
SQL Server 2008 R2 Common Files (Version: 10.50.1600.1)
SQL Server 2008 R2 Database Engine Services (Version: 10.50.1600.1)
SQL Server 2008 R2 Database Engine Shared (Version: 10.50.1600.1)
SQL Server 2008 R2 Full text search (Version: 10.50.1600.1)
SQL Server 2008 R2 Management Studio (Version: 10.50.1600.1)
SQL Server 2008 R2 Reporting Services (Version: 10.50.1600.1)
Sql Server Customer Experience Improvement Program (Version: 10.50.1600.1)
streamWriter
swMSM (Version: 12.0.0.1)
Synaptics Pointing Device Driver (Version: 15.0.8.1)
Toshiba Assist (Version: 3.00.10)
TOSHIBA Bulletin Board (Version: 1.6.06.64)
TOSHIBA ConfigFree (Version: 8.0.29)
TOSHIBA Disc Creator (Version: 2.1.0.2 for x64)
TOSHIBA eco Utility (Version: 1.2.10.64)
TOSHIBA Face Recognition (Version: 3.1.3.64)
TOSHIBA Hardware Setup (Version: 2.00.06)
Toshiba Manuals (Version: 10.01)
TOSHIBA Media Controller (Version: 1.0.80.7.64)
TOSHIBA Media Controller Plug-in (Version: 1.0.5.10)
TOSHIBA Online Product Information (Version: 2.09.0001)
TOSHIBA PC Health Monitor (Version: 1.6.0.64)
TOSHIBA Recovery Media Creator (Version: 2.1.0.4 x64)
TOSHIBA Recovery Media Creator Reminder (Version: 1.00.0019)
TOSHIBA ReelTime (Version: 1.6.06.64)
TOSHIBA Service Station (Version: 2.1.40)
TOSHIBA Supervisor Password (Version: 2.00.03)
Toshiba TEMPRO (Version: 3.33)
TOSHIBA Value Added Package (Version: 1.3.3.64)
TOSHIBA Web Camera Application (Version: 1.1.1.15)
Trivial Pursuit
TRORMCLauncher (Version: )
TRORMCLauncher (Version: 1.0.0.9)
TVUPlayer 2.5.3.1 (Version: 2.5.3.1)
UFO Extraterrestrials Gold (Version: 1.0.0)
UMPlayer 0.98 [P4] (Version: 0.98)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553385) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2597091) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2589345) 32-Bit Edition
Veetle TV (Version: 0.9.18)
VideoPad Video Editor
Visual Studio 2010 Prerequisites - English (Version: 10.0.30319)
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU (Version: 4.0.8080.0)
WampServer 2.1
Web Deployment Tool (Version: 1.1.0618)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3502.0922)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3502.0922)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3502.0922)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
WinUAE 2.4.1 (Version: 2.4.1)
WRC FIA World Rally Championship Demo (Version: 1.00.0000)

========================= Memory info: ===================================

Percentage of memory in use: 44%
Total physical RAM: 3958.85 MB
Available physical RAM: 2199.13 MB
Total Pagefile: 7915.89 MB
Available Pagefile: 5614.74 MB
Total Virtual: 4095.88 MB
Available Virtual: 3964.21 MB

========================= Partitions: =====================================

1 Drive c: (WINDOWS) (Fixed) (Total:232.65 GB) (Free:86.21 GB) NTFS
2 Drive d: (Data) (Fixed) (Total:232.72 GB) (Free:219.66 GB) NTFS

========================= Users: ========================================

Contas de utilizador para \\DINIS-TOSH

Administrador Convidado Dinis
O comando foi conclu¡do com ˆxito.


**** End of log ****




Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.06.19.05

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Dinis :: DINIS-TOSH [administrator]

19-06-2012 17:37:32
mbam-log-2012-06-19 (17-37-32).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 214372
Time elapsed: 4 minute(s), 7 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)




17:46:49.0903 6500 TDSS rootkit removing tool 2.7.40.0 Jun 15 2012 15:13:31
17:46:50.0215 6500 ============================================================
17:46:50.0215 6500 Current date / time: 2012/06/19 17:46:50.0215
17:46:50.0215 6500 SystemInfo:
17:46:50.0215 6500
17:46:50.0215 6500 OS Version: 6.1.7601 ServicePack: 1.0
17:46:50.0215 6500 Product type: Workstation
17:46:50.0215 6500 ComputerName: DINIS-TOSH
17:46:50.0215 6500 UserName: Dinis
17:46:50.0215 6500 Windows directory: C:\Windows
17:46:50.0215 6500 System windows directory: C:\Windows
17:46:50.0215 6500 Running under WOW64
17:46:50.0215 6500 Processor architecture: Intel x64
17:46:50.0215 6500 Number of processors: 4
17:46:50.0215 6500 Page size: 0x1000
17:46:50.0215 6500 Boot type: Normal boot
17:46:50.0215 6500 ============================================================
17:46:50.0652 6500 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:46:50.0652 6500 ============================================================
17:46:50.0652 6500 \Device\Harddisk0\DR0:
17:46:50.0652 6500 MBR partitions:
17:46:50.0652 6500 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0xC8800, BlocksNum 0x1D14D000
17:46:50.0652 6500 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1D215800, BlocksNum 0x1D170030
17:46:50.0652 6500 ============================================================
17:46:50.0699 6500 C: <-> \Device\Harddisk0\DR0\Partition0
17:46:50.0730 6500 D: <-> \Device\Harddisk0\DR0\Partition1
17:46:50.0730 6500 ============================================================
17:46:50.0730 6500 Initialize success
17:46:50.0730 6500 ============================================================
17:47:01.0884 2344 ============================================================
17:47:01.0884 2344 Scan started
17:47:01.0884 2344 Mode: Manual;
17:47:01.0884 2344 ============================================================
17:47:02.0445 2344 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
17:47:02.0461 2344 1394ohci - ok
17:47:02.0523 2344 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
17:47:02.0523 2344 ACPI - ok
17:47:02.0555 2344 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
17:47:02.0555 2344 AcpiPmi - ok
17:47:02.0695 2344 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:47:02.0695 2344 AdobeARMservice - ok
17:47:02.0820 2344 AdobeFlashPlayerUpdateSvc (f3cd7b20b27d1772c946df993ff3635c) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:47:02.0820 2344 AdobeFlashPlayerUpdateSvc - ok
17:47:02.0913 2344 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
17:47:02.0945 2344 adp94xx - ok
17:47:02.0976 2344 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
17:47:02.0991 2344 adpahci - ok
17:47:03.0023 2344 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
17:47:03.0038 2344 adpu320 - ok
17:47:03.0069 2344 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
17:47:03.0069 2344 AeLookupSvc - ok
17:47:03.0147 2344 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
17:47:03.0163 2344 AFD - ok
17:47:03.0257 2344 AgereSoftModem (98022774d9930ecbb292e70db7601df6) C:\Windows\system32\DRIVERS\agrsm64.sys
17:47:03.0288 2344 AgereSoftModem - ok
17:47:03.0335 2344 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
17:47:03.0335 2344 agp440 - ok
17:47:03.0381 2344 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
17:47:03.0397 2344 ALG - ok
17:47:03.0413 2344 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
17:47:03.0413 2344 aliide - ok
17:47:03.0475 2344 AMD External Events Utility (57b773d82e8cc3c6d7e02cc8a6632043) C:\Windows\system32\atiesrxx.exe
17:47:03.0475 2344 AMD External Events Utility - ok
17:47:03.0553 2344 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
17:47:03.0553 2344 amdide - ok
17:47:03.0584 2344 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
17:47:03.0600 2344 AmdK8 - ok
17:47:04.0068 2344 amdkmdag (aefaf27f1b7e52c705df4fb6c96732f6) C:\Windows\system32\DRIVERS\atipmdag.sys
17:47:04.0208 2344 amdkmdag - ok
17:47:04.0349 2344 amdkmdap (8149db73be27950ec72767a1193153a6) C:\Windows\system32\DRIVERS\atikmpag.sys
17:47:04.0364 2344 amdkmdap - ok
17:47:04.0380 2344 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
17:47:04.0380 2344 AmdPPM - ok
17:47:04.0442 2344 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
17:47:04.0458 2344 amdsata - ok
17:47:04.0473 2344 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
17:47:04.0489 2344 amdsbs - ok
17:47:04.0505 2344 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
17:47:04.0505 2344 amdxata - ok
17:47:04.0614 2344 AntiVirSchedulerService (0a1cc583e8147004e4ad4625d7fbf88c) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
17:47:04.0614 2344 AntiVirSchedulerService - ok
17:47:04.0661 2344 AntiVirService (c9a36ef935aced86aedf93e97e606911) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
17:47:04.0661 2344 AntiVirService - ok
17:47:04.0739 2344 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
17:47:04.0739 2344 AppID - ok
17:47:04.0770 2344 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
17:47:04.0785 2344 AppIDSvc - ok
17:47:04.0832 2344 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
17:47:04.0832 2344 Appinfo - ok
17:47:04.0957 2344 Apple Mobile Device (f401929ee0cc92bfe7f15161ca535383) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
17:47:04.0957 2344 Apple Mobile Device - ok
17:47:05.0004 2344 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
17:47:05.0004 2344 arc - ok
17:47:05.0019 2344 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
17:47:05.0035 2344 arcsas - ok
17:47:05.0129 2344 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
17:47:05.0129 2344 aspnet_state - ok
17:47:05.0175 2344 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
17:47:05.0175 2344 AsyncMac - ok
17:47:05.0238 2344 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
17:47:05.0238 2344 atapi - ok
17:47:05.0331 2344 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
17:47:05.0331 2344 AudioEndpointBuilder - ok
17:47:05.0347 2344 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
17:47:05.0363 2344 AudioSrv - ok
17:47:05.0409 2344 avgntflt (26e38b5a58c6c55fafbc563eeddb0867) C:\Windows\system32\DRIVERS\avgntflt.sys
17:47:05.0425 2344 avgntflt - ok
17:47:05.0456 2344 avipbb (9d1f00beff84cbbf46d7f052bc7e0565) C:\Windows\system32\DRIVERS\avipbb.sys
17:47:05.0472 2344 avipbb - ok
17:47:05.0487 2344 avkmgr (248db59fc86de44d2779f4c7fb1a567d) C:\Windows\system32\DRIVERS\avkmgr.sys
17:47:05.0503 2344 avkmgr - ok
17:47:05.0565 2344 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
17:47:05.0565 2344 AxInstSV - ok
17:47:05.0628 2344 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
17:47:05.0643 2344 b06bdrv - ok
17:47:05.0675 2344 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
17:47:05.0690 2344 b57nd60a - ok
17:47:05.0877 2344 BCM43XX (5b5c36b2ec500462a715db6bcbaf5da7) C:\Windows\system32\DRIVERS\bcmwl664.sys
17:47:05.0909 2344 BCM43XX - ok
17:47:06.0033 2344 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
17:47:06.0033 2344 BDESVC - ok
17:47:06.0096 2344 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
17:47:06.0096 2344 Beep - ok
17:47:06.0189 2344 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
17:47:06.0205 2344 BFE - ok
17:47:06.0299 2344 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
17:47:06.0299 2344 BITS - ok
17:47:06.0361 2344 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
17:47:06.0361 2344 blbdrive - ok
17:47:06.0486 2344 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
17:47:06.0501 2344 Bonjour Service - ok
17:47:06.0533 2344 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
17:47:06.0548 2344 bowser - ok
17:47:06.0595 2344 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
17:47:06.0595 2344 BrFiltLo - ok
17:47:06.0611 2344 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
17:47:06.0611 2344 BrFiltUp - ok
17:47:06.0673 2344 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
17:47:06.0673 2344 Browser - ok
17:47:06.0720 2344 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
17:47:06.0720 2344 Brserid - ok
17:47:06.0735 2344 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
17:47:06.0735 2344 BrSerWdm - ok
17:47:06.0735 2344 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
17:47:06.0751 2344 BrUsbMdm - ok
17:47:06.0751 2344 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
17:47:06.0751 2344 BrUsbSer - ok
17:47:06.0767 2344 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
17:47:06.0767 2344 BTHMODEM - ok
17:47:06.0798 2344 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
17:47:06.0798 2344 bthserv - ok
17:47:06.0813 2344 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
17:47:06.0813 2344 cdfs - ok
17:47:06.0876 2344 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
17:47:06.0891 2344 cdrom - ok
17:47:06.0954 2344 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
17:47:06.0954 2344 CertPropSvc - ok
17:47:07.0047 2344 cfWiMAXService (41e7c4fa6491747402cfca77cc1c7aab) C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
17:47:07.0063 2344 cfWiMAXService - ok
17:47:07.0094 2344 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
17:47:07.0094 2344 circlass - ok
17:47:07.0157 2344 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
17:47:07.0172 2344 CLFS - ok
17:47:07.0219 2344 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:47:07.0219 2344 clr_optimization_v2.0.50727_32 - ok
17:47:07.0250 2344 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:47:07.0266 2344 clr_optimization_v2.0.50727_64 - ok
17:47:07.0328 2344 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:47:07.0344 2344 clr_optimization_v4.0.30319_32 - ok
17:47:07.0359 2344 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:47:07.0375 2344 clr_optimization_v4.0.30319_64 - ok
17:47:07.0406 2344 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
17:47:07.0406 2344 CmBatt - ok
17:47:07.0453 2344 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
17:47:07.0469 2344 cmdide - ok
17:47:07.0547 2344 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
17:47:07.0562 2344 CNG - ok
17:47:07.0625 2344 CnxtHdAudService (25c58ee97be0416a373e3e4f855206b5) C:\Windows\system32\drivers\CHDRT64.sys
17:47:07.0656 2344 CnxtHdAudService - ok
17:47:07.0718 2344 CnxtHdmiAudService (89c99ab4ae9535f727791592d84d4821) C:\Windows\system32\drivers\CHDMI64.sys
17:47:07.0734 2344 CnxtHdmiAudService - ok
17:47:07.0781 2344 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
17:47:07.0796 2344 Compbatt - ok
17:47:07.0843 2344 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
17:47:07.0843 2344 CompositeBus - ok
17:47:07.0859 2344 COMSysApp - ok
17:47:07.0937 2344 ConfigFree Service (cab0eeaf5295fc96ddd3e19dce27e131) C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
17:47:07.0937 2344 ConfigFree Service - ok
17:47:07.0952 2344 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
17:47:07.0968 2344 crcdisk - ok
17:47:08.0015 2344 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
17:47:08.0030 2344 CryptSvc - ok
17:47:08.0108 2344 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
17:47:08.0124 2344 DcomLaunch - ok
17:47:08.0171 2344 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
17:47:08.0186 2344 defragsvc - ok
17:47:08.0233 2344 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
17:47:08.0233 2344 DfsC - ok
17:47:08.0311 2344 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
17:47:08.0327 2344 Dhcp - ok
17:47:08.0358 2344 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
17:47:08.0373 2344 discache - ok
17:47:08.0405 2344 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
17:47:08.0420 2344 Disk - ok
17:47:08.0467 2344 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
17:47:08.0483 2344 Dnscache - ok
17:47:08.0529 2344 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
17:47:08.0545 2344 dot3svc - ok
17:47:08.0592 2344 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
17:47:08.0592 2344 DPS - ok
17:47:08.0607 2344 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
17:47:08.0623 2344 drmkaud - ok
17:47:08.0717 2344 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
17:47:08.0748 2344 DXGKrnl - ok
17:47:08.0795 2344 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
17:47:08.0795 2344 EapHost - ok
17:47:08.0997 2344 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
17:47:09.0029 2344 ebdrv - ok
17:47:09.0169 2344 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
17:47:09.0169 2344 EFS - ok
17:47:09.0294 2344 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
17:47:09.0309 2344 ehRecvr - ok
17:47:09.0325 2344 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
17:47:09.0341 2344 ehSched - ok
17:47:09.0403 2344 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
17:47:09.0419 2344 elxstor - ok
17:47:09.0450 2344 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
17:47:09.0465 2344 ErrDev - ok
17:47:09.0528 2344 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
17:47:09.0543 2344 EventSystem - ok
17:47:09.0559 2344 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
17:47:09.0559 2344 exfat - ok
17:47:09.0590 2344 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
17:47:09.0590 2344 fastfat - ok
17:47:09.0684 2344 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
17:47:09.0699 2344 Fax - ok
17:47:09.0731 2344 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
17:47:09.0731 2344 fdc - ok
17:47:09.0777 2344 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
17:47:09.0777 2344 fdPHost - ok
17:47:09.0793 2344 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
17:47:09.0809 2344 FDResPub - ok
17:47:09.0824 2344 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
17:47:09.0824 2344 FileInfo - ok
17:47:09.0840 2344 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
17:47:09.0840 2344 Filetrace - ok
17:47:09.0933 2344 FLEXnet Licensing Service (1f63900e2eb00101b9aca2b7a870704e) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
17:47:09.0949 2344 FLEXnet Licensing Service - ok
17:47:09.0980 2344 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
17:47:09.0980 2344 flpydisk - ok
17:47:10.0058 2344 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
17:47:10.0058 2344 FltMgr - ok
17:47:10.0183 2344 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
17:47:10.0199 2344 FontCache - ok
17:47:10.0277 2344 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:47:10.0277 2344 FontCache3.0.0.0 - ok
17:47:10.0323 2344 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
17:47:10.0323 2344 FsDepends - ok
17:47:10.0370 2344 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
17:47:10.0370 2344 Fs_Rec - ok
17:47:10.0433 2344 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
17:47:10.0433 2344 fvevol - ok
17:47:10.0479 2344 FwLnk (60acb128e64c35c2b4e4aab1b0a5c293) C:\Windows\system32\DRIVERS\FwLnk.sys
17:47:10.0479 2344 FwLnk - ok
17:47:10.0511 2344 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
17:47:10.0526 2344 gagp30kx - ok
17:47:10.0589 2344 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
17:47:10.0589 2344 GEARAspiWDM - ok
17:47:10.0698 2344 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
17:47:10.0713 2344 gpsvc - ok
17:47:10.0854 2344 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:47:10.0854 2344 gupdate - ok
17:47:10.0869 2344 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:47:10.0869 2344 gupdatem - ok
17:47:10.0885 2344 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
17:47:10.0901 2344 hcw85cir - ok
17:47:10.0994 2344 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
17:47:11.0010 2344 HdAudAddService - ok
17:47:11.0025 2344 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
17:47:11.0025 2344 HDAudBus - ok
17:47:11.0057 2344 HECIx64 (b6ac71aaa2b10848f57fc49d55a651af) C:\Windows\system32\DRIVERS\HECIx64.sys
17:47:11.0072 2344 HECIx64 - ok
17:47:11.0088 2344 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
17:47:11.0088 2344 HidBatt - ok
17:47:11.0103 2344 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
17:47:11.0119 2344 HidBth - ok
17:47:11.0119 2344 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
17:47:11.0135 2344 HidIr - ok
17:47:11.0150 2344 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
17:47:11.0150 2344 hidserv - ok
17:47:11.0197 2344 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\drivers\hidusb.sys
17:47:11.0213 2344 HidUsb - ok
17:47:11.0259 2344 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
17:47:11.0259 2344 hkmsvc - ok
17:47:11.0337 2344 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
17:47:11.0353 2344 HomeGroupListener - ok
17:47:11.0400 2344 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
17:47:11.0400 2344 HomeGroupProvider - ok
17:47:11.0462 2344 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
17:47:11.0478 2344 HpSAMD - ok
17:47:11.0556 2344 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
17:47:11.0571 2344 HTTP - ok
17:47:11.0618 2344 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
17:47:11.0618 2344 hwpolicy - ok
17:47:11.0665 2344 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
17:47:11.0681 2344 i8042prt - ok
17:47:11.0727 2344 iaStor (85977cd13fc16069ce0af7943a811775) C:\Windows\system32\DRIVERS\iaStor.sys
17:47:11.0727 2344 iaStor - ok
17:47:11.0774 2344 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
17:47:11.0790 2344 iaStorV - ok
17:47:11.0915 2344 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
17:47:11.0915 2344 IDriverT - ok
17:47:12.0055 2344 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:47:12.0055 2344 idsvc - ok
17:47:12.0164 2344 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
17:47:12.0180 2344 iirsp - ok
17:47:12.0273 2344 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
17:47:12.0305 2344 IKEEXT - ok
17:47:12.0367 2344 Impcd (4b6363cd4610bb848531bb260b15dfcc) C:\Windows\system32\DRIVERS\Impcd.sys
17:47:12.0367 2344 Impcd - ok
17:47:12.0429 2344 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
17:47:12.0429 2344 intelide - ok
17:47:12.0461 2344 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
17:47:12.0461 2344 intelppm - ok
17:47:12.0476 2344 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
17:47:12.0492 2344 IPBusEnum - ok
17:47:12.0539 2344 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:47:12.0554 2344 IpFilterDriver - ok
17:47:12.0617 2344 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
17:47:12.0632 2344 iphlpsvc - ok
17:47:12.0679 2344 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
17:47:12.0695 2344 IPMIDRV - ok
17:47:12.0726 2344 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
17:47:12.0726 2344 IPNAT - ok
17:47:12.0913 2344 iPod Service (a9ab99ee7d39725eafec82732d2b3271) C:\Program Files\iPod\bin\iPodService.exe
17:47:12.0929 2344 iPod Service - ok
17:47:12.0960 2344 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
17:47:12.0975 2344 IRENUM - ok
17:47:13.0022 2344 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
17:47:13.0022 2344 isapnp - ok
17:47:13.0053 2344 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
17:47:13.0069 2344 iScsiPrt - ok
17:47:13.0100 2344 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
17:47:13.0100 2344 kbdclass - ok
17:47:13.0163 2344 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
17:47:13.0163 2344 kbdhid - ok
17:47:13.0209 2344 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:47:13.0209 2344 KeyIso - ok
17:47:13.0225 2344 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
17:47:13.0241 2344 KSecDD - ok
17:47:13.0256 2344 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
17:47:13.0272 2344 KSecPkg - ok
17:47:13.0287 2344 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
17:47:13.0303 2344 ksthunk - ok
17:47:13.0350 2344 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
17:47:13.0365 2344 KtmRm - ok
17:47:13.0397 2344 L1C (55480b9c63f3f91a8ebbadcbf28fe581) C:\Windows\system32\DRIVERS\L1C62x64.sys
17:47:13.0397 2344 L1C - ok
17:47:13.0459 2344 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
17:47:13.0475 2344 LanmanServer - ok
17:47:13.0521 2344 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
17:47:13.0537 2344 LanmanWorkstation - ok
17:47:13.0568 2344 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
17:47:13.0584 2344 lltdio - ok
17:47:13.0615 2344 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
17:47:13.0631 2344 lltdsvc - ok
17:47:13.0646 2344 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
17:47:13.0646 2344 lmhosts - ok
17:47:13.0755 2344 LMS (23de5b62b0445a6f874be633c95b483e) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
17:47:13.0755 2344 LMS - ok
17:47:13.0802 2344 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
17:47:13.0802 2344 LSI_FC - ok
17:47:13.0833 2344 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
17:47:13.0833 2344 LSI_SAS - ok
17:47:13.0849 2344 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
17:47:13.0849 2344 LSI_SAS2 - ok
17:47:13.0880 2344 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
17:47:13.0880 2344 LSI_SCSI - ok
17:47:13.0911 2344 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
17:47:13.0911 2344 luafv - ok
17:47:13.0958 2344 lxdi_device - ok
17:47:14.0005 2344 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
17:47:14.0021 2344 Mcx2Svc - ok
17:47:14.0021 2344 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
17:47:14.0036 2344 megasas - ok
17:47:14.0083 2344 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
17:47:14.0099 2344 MegaSR - ok
17:47:14.0114 2344 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
17:47:14.0130 2344 MMCSS - ok
17:47:14.0130 2344 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
17:47:14.0145 2344 Modem - ok
17:47:14.0145 2344 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
17:47:14.0145 2344 monitor - ok
17:47:14.0208 2344 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\drivers\mouclass.sys
17:47:14.0208 2344 mouclass - ok
17:47:14.0255 2344 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
17:47:14.0255 2344 mouhid - ok
17:47:14.0317 2344 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
17:47:14.0317 2344 mountmgr - ok
17:47:14.0411 2344 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
17:47:14.0411 2344 MozillaMaintenance - ok
17:47:14.0457 2344 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
17:47:14.0473 2344 mpio - ok
17:47:14.0504 2344 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
17:47:14.0520 2344 mpsdrv - ok
17:47:14.0613 2344 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
17:47:14.0645 2344 MpsSvc - ok
17:47:14.0691 2344 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
17:47:14.0707 2344 MRxDAV - ok
17:47:14.0738 2344 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
17:47:14.0754 2344 mrxsmb - ok
17:47:14.0816 2344 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:47:14.0832 2344 mrxsmb10 - ok
17:47:14.0847 2344 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:47:14.0863 2344 mrxsmb20 - ok
17:47:14.0894 2344 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
17:47:14.0910 2344 msahci - ok
17:47:14.0957 2344 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
17:47:14.0957 2344 msdsm - ok
17:47:15.0003 2344 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
17:47:15.0003 2344 MSDTC - ok
17:47:15.0035 2344 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
17:47:15.0050 2344 Msfs - ok
17:47:15.0066 2344 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
17:47:15.0066 2344 mshidkmdf - ok
17:47:15.0081 2344 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
17:47:15.0081 2344 msisadrv - ok
17:47:15.0128 2344 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
17:47:15.0128 2344 MSiSCSI - ok
17:47:15.0144 2344 msiserver - ok
17:47:15.0175 2344 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
17:47:15.0175 2344 MSKSSRV - ok
17:47:15.0191 2344 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
17:47:15.0191 2344 MSPCLOCK - ok
17:47:15.0206 2344 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
17:47:15.0206 2344 MSPQM - ok
17:47:15.0269 2344 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
17:47:15.0284 2344 MsRPC - ok
17:47:15.0331 2344 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
17:47:15.0331 2344 mssmbios - ok
17:47:15.0409 2344 MSSQL$SQLEXPRESS - ok
17:47:15.0487 2344 MSSQLFDLauncher (aa511eb28672011a1d832f73e302f0a0) C:\Program Files\Microsoft SQL Server\MSSQL10_50.MSSQLSERVER\MSSQL\Binn\fdlauncher.exe
17:47:15.0487 2344 MSSQLFDLauncher - ok
17:47:15.0518 2344 MSSQLSERVER - ok
17:47:15.0627 2344 MSSQLServerADHelper100 (04ef36eaf5c4dbce424d81b76f1e9231) C:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
17:47:15.0627 2344 MSSQLServerADHelper100 - ok
17:47:15.0659 2344 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
17:47:15.0659 2344 MSTEE - ok
17:47:15.0659 2344 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
17:47:15.0674 2344 MTConfig - ok
17:47:15.0690 2344 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
17:47:15.0690 2344 Mup - ok
17:47:15.0768 2344 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
17:47:15.0768 2344 napagent - ok
17:47:15.0830 2344 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
17:47:15.0830 2344 NativeWifiP - ok
17:47:15.0908 2344 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
17:47:15.0908 2344 NDIS - ok
17:47:15.0939 2344 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
17:47:15.0939 2344 NdisCap - ok
17:47:15.0971 2344 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
17:47:15.0971 2344 NdisTapi - ok
17:47:16.0033 2344 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
17:47:16.0033 2344 Ndisuio - ok
17:47:16.0080 2344 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
17:47:16.0095 2344 NdisWan - ok
17:47:16.0158 2344 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
17:47:16.0158 2344 NDProxy - ok
17:47:16.0283 2344 Nero BackItUp Scheduler 4.0 (7d2633295eb6ff2b938185874884059d) c:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
17:47:16.0298 2344 Nero BackItUp Scheduler 4.0 - ok
17:47:16.0329 2344 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
17:47:16.0345 2344 NetBIOS - ok
17:47:16.0392 2344 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
17:47:16.0392 2344 NetBT - ok
17:47:16.0454 2344 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:47:16.0454 2344 Netlogon - ok
17:47:16.0517 2344 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
17:47:16.0517 2344 Netman - ok
17:47:16.0610 2344 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:47:16.0626 2344 NetMsmqActivator - ok
17:47:16.0626 2344 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:47:16.0626 2344 NetPipeActivator - ok
17:47:16.0688 2344 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
17:47:16.0704 2344 netprofm - ok
17:47:16.0719 2344 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:47:16.0719 2344 NetTcpActivator - ok
17:47:16.0719 2344 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:47:16.0719 2344 NetTcpPortSharing - ok
17:47:16.0782 2344 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
17:47:16.0782 2344 nfrd960 - ok
17:47:16.0844 2344 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
17:47:16.0860 2344 NlaSvc - ok
17:47:16.0875 2344 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
17:47:16.0875 2344 Npfs - ok
17:47:16.0907 2344 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
17:47:16.0922 2344 nsi - ok
17:47:16.0938 2344 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
17:47:16.0938 2344 nsiproxy - ok
17:47:17.0078 2344 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
17:47:17.0109 2344 Ntfs - ok
17:47:17.0219 2344 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
17:47:17.0219 2344 Null - ok
17:47:17.0281 2344 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
17:47:17.0297 2344 nvraid - ok
17:47:17.0328 2344 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
17:47:17.0343 2344 nvstor - ok
17:47:17.0359 2344 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
17:47:17.0375 2344 nv_agp - ok
17:47:17.0515 2344 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
17:47:17.0515 2344 odserv - ok
17:47:17.0562 2344 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
17:47:17.0562 2344 ohci1394 - ok
17:47:17.0640 2344 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:47:17.0640 2344 ose - ok
17:47:18.0061 2344 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
17:47:18.0170 2344 osppsvc - ok
17:47:18.0295 2344 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
17:47:18.0311 2344 p2pimsvc - ok
17:47:18.0342 2344 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
17:47:18.0357 2344 p2psvc - ok
17:47:18.0389 2344 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
17:47:18.0389 2344 Parport - ok
17:47:18.0435 2344 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
17:47:18.0451 2344 partmgr - ok
17:47:18.0467 2344 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
17:47:18.0467 2344 PcaSvc - ok
17:47:18.0513 2344 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
17:47:18.0513 2344 pci - ok
17:47:18.0529 2344 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
17:47:18.0529 2344 pciide - ok
17:47:18.0560 2344 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
17:47:18.0560 2344 pcmcia - ok
17:47:18.0576 2344 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
17:47:18.0591 2344 pcw - ok
17:47:18.0638 2344 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
17:47:18.0654 2344 PEAUTH - ok
17:47:18.0716 2344 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
17:47:18.0716 2344 PerfHost - ok
17:47:18.0763 2344 PGEffect (663962900e7fea522126ba287715bb4a) C:\Windows\system32\DRIVERS\pgeffect.sys
17:47:18.0763 2344 PGEffect - ok
17:47:18.0888 2344 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
17:47:18.0919 2344 pla - ok
17:47:18.0981 2344 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
17:47:18.0997 2344 PlugPlay - ok
17:47:19.0028 2344 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
17:47:19.0044 2344 PNRPAutoReg - ok
17:47:19.0059 2344 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
17:47:19.0075 2344 PNRPsvc - ok
17:47:19.0137 2344 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
17:47:19.0153 2344 PolicyAgent - ok
17:47:19.0169 2344 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
17:47:19.0184 2344 Power - ok
17:47:19.0262 2344 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
17:47:19.0262 2344 PptpMiniport - ok
17:47:19.0309 2344 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
17:47:19.0309 2344 Processor - ok
17:47:19.0371 2344 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
17:47:19.0387 2344 ProfSvc - ok
17:47:19.0434 2344 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:47:19.0434 2344 ProtectedStorage - ok
17:47:19.0496 2344 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
17:47:19.0496 2344 Psched - ok
17:47:19.0605 2344 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
17:47:19.0637 2344 ql2300 - ok
17:47:19.0746 2344 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
17:47:19.0761 2344 ql40xx - ok
17:47:19.0793 2344 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
17:47:19.0808 2344 QWAVE - ok
17:47:19.0824 2344 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
17:47:19.0839 2344 QWAVEdrv - ok
17:47:19.0839 2344 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
17:47:19.0839 2344 RasAcd - ok
17:47:19.0871 2344 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
17:47:19.0871 2344 RasAgileVpn - ok
17:47:19.0886 2344 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
17:47:19.0902 2344 RasAuto - ok
17:47:19.0949 2344 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
17:47:19.0949 2344 Rasl2tp - ok
17:47:20.0027 2344 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
17:47:20.0042 2344 RasMan - ok
17:47:20.0073 2344 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
17:47:20.0089 2344 RasPppoe - ok
17:47:20.0120 2344 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
17:47:20.0120 2344 RasSstp - ok
17:47:20.0151 2344 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
17:47:20.0167 2344 rdbss - ok
17:47:20.0183 2344 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
17:47:20.0198 2344 rdpbus - ok
17:47:20.0214 2344 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
17:47:20.0214 2344 RDPCDD - ok
17:47:20.0229 2344 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
17:47:20.0229 2344 RDPENCDD - ok
17:47:20.0245 2344 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
17:47:20.0245 2344 RDPREFMP - ok
17:47:20.0292 2344 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
17:47:20.0307 2344 RDPWD - ok
17:47:20.0385 2344 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
17:47:20.0401 2344 rdyboost - ok
17:47:20.0432 2344 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
17:47:20.0432 2344 RemoteAccess - ok
17:47:20.0479 2344 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
17:47:20.0479 2344 RemoteRegistry - ok
17:47:20.0760 2344 ReportServer (499556b74a1022906de888fab0389bfa) C:\Program Files\Microsoft SQL Server\MSRS10_50.MSSQLSERVER\Reporting Services\ReportServer\bin\ReportingServicesService.exe
17:47:20.0775 2344 ReportServer - ok
17:47:20.0885 2344 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
17:47:20.0885 2344 RpcEptMapper - ok
17:47:20.0900 2344 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
17:47:20.0916 2344 RpcLocator - ok
17:47:20.0994 2344 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
17:47:20.0994 2344 RpcSs - ok
17:47:21.0072 2344 RsFx0103 (cd553b8633466a6d1c115812f2619f1f) C:\Windows\system32\DRIVERS\RsFx0103.sys
17:47:21.0072 2344 RsFx0103 - ok
17:47:21.0134 2344 RsFx0150 (eb1c539e621a35a49f7692b0eb565ab9) C:\Windows\system32\DRIVERS\RsFx0150.sys
17:47:21.0134 2344 RsFx0150 - ok
17:47:21.0181 2344 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
17:47:21.0181 2344 rspndr - ok
17:47:21.0228 2344 RSUSBSTOR (907c4464381b5ebdfdc60f6c7d0dedfc) C:\Windows\System32\Drivers\RtsUStor.sys
17:47:21.0243 2344 RSUSBSTOR - ok
17:47:21.0290 2344 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:47:21.0290 2344 SamSs - ok
17:47:21.0353 2344 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
17:47:21.0353 2344 sbp2port - ok
17:47:21.0399 2344 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
17:47:21.0399 2344 SCardSvr - ok
17:47:21.0446 2344 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
17:47:21.0446 2344 scfilter - ok
17:47:21.0555 2344 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
17:47:21.0587 2344 Schedule - ok
17:47:21.0633 2344 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
17:47:21.0633 2344 SCPolicySvc - ok
17:47:21.0680 2344 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
17:47:21.0696 2344 SDRSVC - ok
17:47:21.0743 2344 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
17:47:21.0758 2344 secdrv - ok
17:47:21.0805 2344 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
17:47:21.0805 2344 seclogon - ok
17:47:21.0836 2344 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
17:47:21.0836 2344 SENS - ok
17:47:21.0852 2344 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
17:47:21.0852 2344 SensrSvc - ok
17:47:21.0883 2344 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
17:47:21.0883 2344 Serenum - ok
17:47:21.0899 2344 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
17:47:21.0914 2344 Serial - ok
17:47:21.0961 2344 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
17:47:21.0961 2344 sermouse - ok
17:47:22.0023 2344 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
17:47:22.0023 2344 SessionEnv - ok
17:47:22.0055 2344 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
17:47:22.0070 2344 sffdisk - ok
17:47:22.0070 2344 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
17:47:22.0086 2344 sffp_mmc - ok
17:47:22.0101 2344 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
17:47:22.0101 2344 sffp_sd - ok
17:47:22.0148 2344 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
17:47:22.0148 2344 sfloppy - ok
17:47:22.0195 2344 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
17:47:22.0211 2344 SharedAccess - ok
17:47:22.0273 2344 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
17:47:22.0289 2344 ShellHWDetection - ok
17:47:22.0304 2344 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
17:47:22.0304 2344 SiSRaid2 - ok
17:47:22.0320 2344 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
17:47:22.0320 2344 SiSRaid4 - ok
17:47:22.0413 2344 SkypeUpdate (db0405d9aad62f0762e0876ac142b7e1) C:\Program Files (x86)\Skype\Updater\Updater.exe
17:47:22.0413 2344 SkypeUpdate - ok
17:47:22.0445 2344 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
17:47:22.0445 2344 Smb - ok
17:47:22.0476 2344 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
17:47:22.0476 2344 SNMPTRAP - ok
17:47:22.0491 2344 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
17:47:22.0491 2344 spldr - ok
17:47:22.0585 2344 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
17:47:22.0601 2344 Spooler - ok
17:47:22.0881 2344 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
17:47:22.0928 2344 sppsvc - ok
17:47:23.0037 2344 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
17:47:23.0037 2344 sppuinotify - ok
17:47:23.0131 2344 sptd (602884696850c86434530790b110e8eb) C:\Windows\system32\Drivers\sptd.sys
17:47:23.0131 2344 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 602884696850c86434530790b110e8eb
17:47:23.0131 2344 sptd ( LockedFile.Multi.Generic ) - warning
17:47:23.0131 2344 sptd - detected LockedFile.Multi.Generic (1)
17:47:23.0256 2344 SQLAgent$SQLEXPRESS (a5609d0178b2fec118a7f4a24ecd1bfb) C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE
17:47:23.0271 2344 SQLAgent$SQLEXPRESS - ok
17:47:23.0365 2344 SQLBrowser (7d67c07c63796775cc5492bcfeaff125) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
17:47:23.0365 2344 SQLBrowser - ok
17:47:23.0474 2344 SQLSERVERAGENT (70f05e8ece922c20e785a46224e12183) C:\Program Files\Microsoft SQL Server\MSSQL10_50.MSSQLSERVER\MSSQL\Binn\SQLAGENT.EXE
17:47:23.0474 2344 SQLSERVERAGENT - ok
17:47:23.0552 2344 SQLWriter (f98ddfbfe0ee66d4c4b00693512b9527) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
17:47:23.0552 2344 SQLWriter - ok
17:47:23.0708 2344 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
17:47:23.0724 2344 srv - ok
17:47:23.0771 2344 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
17:47:23.0786 2344 srv2 - ok
17:47:23.0817 2344 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
17:47:23.0817 2344 srvnet - ok
17:47:23.0864 2344 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
17:47:23.0880 2344 SSDPSRV - ok
17:47:23.0880 2344 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
17:47:23.0895 2344 SstpSvc - ok
17:47:23.0911 2344 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
17:47:23.0911 2344 stexstor - ok
17:47:24.0005 2344 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
17:47:24.0020 2344 stisvc - ok
17:47:24.0051 2344 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
17:47:24.0051 2344 swenum - ok
17:47:24.0145 2344 SwitchBoard (f577910a133a592234ebaad3f3afa258) C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
17:47:24.0145 2344 SwitchBoard - ok
17:47:24.0192 2344 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
17:47:24.0207 2344 swprv - ok
17:47:24.0254 2344 SynTP (470c47daba9ca3966f0ab3f835d7d135) C:\Windows\system32\DRIVERS\SynTP.sys
17:47:24.0270 2344 SynTP - ok
17:47:24.0395 2344 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
17:47:24.0410 2344 SysMain - ok
17:47:24.0551 2344 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
17:47:24.0551 2344 TabletInputService - ok
17:47:24.0597 2344 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
17:47:24.0613 2344 TapiSrv - ok
17:47:24.0644 2344 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
17:47:24.0660 2344 TBS - ok
17:47:24.0831 2344 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
17:47:24.0878 2344 Tcpip - ok
17:47:25.0128 2344 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
17:47:25.0143 2344 TCPIP6 - ok
17:47:25.0284 2344 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
17:47:25.0299 2344 tcpipreg - ok
17:47:25.0331 2344 tdcmdpst (fd542b661bd22fa69ca789ad0ac58c29) C:\Windows\system32\DRIVERS\tdcmdpst.sys
17:47:25.0331 2344 tdcmdpst - ok
17:47:25.0346 2344 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
17:47:25.0362 2344 TDPIPE - ok
17:47:25.0393 2344 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
17:47:25.0393 2344 TDTCP - ok
17:47:25.0440 2344 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
17:47:25.0455 2344 tdx - ok
17:47:25.0533 2344 TemproMonitoringService (40e154b3125e17ce6f2afad57afcfeb2) C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
17:47:25.0533 2344 TemproMonitoringService - ok
17:47:25.0580 2344 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
17:47:25.0580 2344 TermDD - ok
17:47:25.0674 2344 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
17:47:25.0689 2344 TermService - ok
17:47:25.0721 2344 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
17:47:25.0721 2344 Themes - ok
17:47:25.0736 2344 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
17:47:25.0752 2344 THREADORDER - ok
17:47:25.0799 2344 TMachInfo (28644b0523d64eff2fc7312a2ee74b0a) C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
17:47:25.0799 2344 TMachInfo - ok
17:47:25.0861 2344 TODDSrv (ed32035bdfeced1ad66d459fd9cc1140) C:\Windows\system32\TODDSrv.exe
17:47:25.0861 2344 TODDSrv - ok
17:47:25.0970 2344 TosCoSrv (98c864481d62f86ec8af65be3419a95b) C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
17:47:25.0970 2344 TosCoSrv - ok
17:47:26.0048 2344 TOSHIBA Bluetooth Service (895f6972480306cb2a2a246991e34c68) C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
17:47:26.0048 2344 TOSHIBA Bluetooth Service - ok
17:47:26.0111 2344 TOSHIBA eco Utility Service (3e6756677e16532d235c6cb20614f369) C:\Program Files\TOSHIBA\TECO\TecoService.exe
17:47:26.0111 2344 TOSHIBA eco Utility Service - ok
17:47:26.0173 2344 TOSHIBA HDD SSD Alert Service (74c2fa8c3765ee71a9c22182ec108457) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
17:47:26.0173 2344 TOSHIBA HDD SSD Alert Service - ok
17:47:26.0235 2344 tosporte (8021f63311797085949fa387f7c83583) C:\Windows\system32\DRIVERS\tosporte.sys
17:47:26.0251 2344 tosporte - ok
17:47:26.0298 2344 tosrfbd (1b09357180034639e62cf745e77ac66e) C:\Windows\system32\DRIVERS\tosrfbd.sys
17:47:26.0298 2344 tosrfbd - ok
17:47:26.0313 2344 tosrfbnp (62512b5277d88600f8bd4b7aec43569d) C:\Windows\system32\Drivers\tosrfbnp.sys
17:47:26.0313 2344 tosrfbnp - ok
17:47:26.0345 2344 Tosrfcom (c523a9186c39d65cc9adebb2e1b93ccd) C:\Windows\system32\Drivers\tosrfcom.sys
17:47:26.0360 2344 Tosrfcom - ok
17:47:26.0391 2344 tosrfec (11699d47b3491d86249c168496d55c92) C:\Windows\system32\DRIVERS\tosrfec.sys
17:47:26.0407 2344 tosrfec - ok
17:47:26.0423 2344 Tosrfhid (451b8c1815c6cc39650af916c2a382cd) C:\Windows\system32\DRIVERS\Tosrfhid.sys
17:47:26.0438 2344 Tosrfhid - ok
17:47:26.0469 2344 tosrfnds (b6fdc3c76ffe9c5171eea9c37ea367c2) C:\Windows\system32\DRIVERS\tosrfnds.sys
17:47:26.0469 2344 tosrfnds - ok
17:47:26.0485 2344 TosRfSnd (e1e045240c1184fa6628f3c7e7ff85d8) C:\Windows\system32\drivers\tosrfsnd.sys
17:47:26.0485 2344 TosRfSnd - ok
17:47:26.0532 2344 Tosrfusb (de44a2a2459d0504f146e599f4bd2074) C:\Windows\system32\DRIVERS\tosrfusb.sys
17:47:26.0532 2344 Tosrfusb - ok
17:47:26.0625 2344 TPCHSrv (97687d094aa597da366e1194b218cc6c) C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
17:47:26.0641 2344 TPCHSrv - ok
17:47:26.0672 2344 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
17:47:26.0688 2344 TrkWks - ok
17:47:26.0750 2344 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
17:47:26.0750 2344 TrustedInstaller - ok
17:47:26.0797 2344 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
17:47:26.0797 2344 tssecsrv - ok
17:47:26.0875 2344 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
17:47:26.0891 2344 TsUsbFlt - ok
17:47:26.0953 2344 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
17:47:26.0953 2344 tunnel - ok
17:47:26.0984 2344 TVALZ (550b567f9364d8f7684c3fb3ea665a72) C:\Windows\system32\DRIVERS\TVALZ_O.SYS
17:47:26.0984 2344 TVALZ - ok
17:47:27.0015 2344 TVALZFL (9c7191f4b2e49bff47a6c1144b5923fa) C:\Windows\system32\DRIVERS\TVALZFL.sys
17:47:27.0015 2344 TVALZFL - ok
17:47:27.0047 2344 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
17:47:27.0062 2344 uagp35 - ok
17:47:27.0109 2344 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
17:47:27.0125 2344 udfs - ok
17:47:27.0171 2344 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
17:47:27.0171 2344 UI0Detect - ok
17:47:27.0218 2344 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
17:47:27.0218 2344 uliagpkx - ok
17:47:27.0281 2344 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
17:47:27.0296 2344 umbus - ok
17:47:27.0327 2344 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
17:47:27.0327 2344 UmPass - ok
17:47:27.0561 2344 UNS (cc3775100aba633984f73dfae1f55cae) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
17:47:27.0577 2344 UNS - ok
17:47:27.0702 2344 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
17:47:27.0717 2344 upnphost - ok
17:47:27.0780 2344 USBAAPL64 (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys
17:47:27.0780 2344 USBAAPL64 - ok
17:47:27.0827 2344 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
17:47:27.0842 2344 usbccgp - ok
17:47:27.0873 2344 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
17:47:27.0889 2344 usbcir - ok
17:47:27.0905 2344 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
17:47:27.0920 2344 usbehci - ok
17:47:27.0967 2344 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
17:47:27.0983 2344 usbhub - ok
17:47:27.0998 2344 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
17:47:27.0998 2344 usbohci - ok
17:47:28.0029 2344 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
17:47:28.0045 2344 usbprint - ok
17:47:28.0092 2344 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
17:47:28.0092 2344 usbscan - ok
17:47:28.0154 2344 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:47:28.0154 2344 USBSTOR - ok
17:47:28.0170 2344 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
17:47:28.0170 2344 usbuhci - ok
17:47:28.0217 2344 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys
17:47:28.0232 2344 usbvideo - ok
17:47:28.0263 2344 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
17:47:28.0263 2344 UxSms - ok
17:47:28.0326 2344 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:47:28.0326 2344 VaultSvc - ok
17:47:28.0388 2344 VBoxDrv (781f08d3bd8fc0d052bbf5b0ac25da40) C:\Windows\system32\DRIVERS\VBoxDrv.sys
17:47:28.0404 2344 VBoxDrv - ok
17:47:28.0435 2344 VBoxNetAdp (48b196c4f368d0c1aec103ed6425d959) C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
17:47:28.0451 2344 VBoxNetAdp - ok
17:47:28.0466 2344 VBoxNetFlt (d9713bc7825e499532805f7dd80797ec) C:\Windows\system32\DRIVERS\VBoxNetFlt.sys
17:47:28.0482 2344 VBoxNetFlt - ok
17:47:28.0513 2344 VBoxUSBMon (44385ae4255f7bd14cee41b7cd627dfc) C:\Windows\system32\DRIVERS\VBoxUSBMon.sys
17:47:28.0513 2344 VBoxUSBMon - ok
17:47:28.0575 2344 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
17:47:28.0575 2344 vdrvroot - ok
17:47:28.0669 2344 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
17:47:28.0685 2344 vds - ok
17:47:28.0716 2344 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
17:47:28.0716 2344 vga - ok
17:47:28.0731 2344 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
17:47:28.0747 2344 VgaSave - ok
17:47:28.0794 2344 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
17:47:28.0809 2344 vhdmp - ok
17:47:28.0825 2344 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
17:47:28.0841 2344 viaide - ok
17:47:28.0934 2344 vmm (091e009ef749c9d65cf9adfad316d251) C:\Windows\system32\Drivers\vmm.sys
17:47:28.0950 2344 vmm - ok
17:47:28.0950 2344 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
17:47:28.0965 2344 volmgr - ok
17:47:29.0028 2344 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
17:47:29.0043 2344 volmgrx - ok
17:47:29.0090 2344 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
17:47:29.0106 2344 volsnap - ok
17:47:29.0168 2344 VPCNetS2 (bc2ea40b98b5e866d9a4f98afb66b682) C:\Windows\system32\DRIVERS\VMNetSrv.sys
17:47:29.0168 2344 VPCNetS2 - ok
17:47:29.0215 2344 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
17:47:29.0215 2344 vsmraid - ok
17:47:29.0340 2344 VSPerfDrv100 (1928b9ca20f51bfbbad54d2c2c447b13) C:\Program Files (x86)\Microsoft Visual Studio 10.0\Team Tools\Performance Tools\x64\VSPerfDrv100.sys
17:47:29.0340 2344 VSPerfDrv100 - ok
17:47:29.0465 2344 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
17:47:29.0480 2344 VSS - ok
17:47:29.0589 2344 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
17:47:29.0589 2344 vwifibus - ok
17:47:29.0621 2344 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
17:47:29.0621 2344 vwififlt - ok
17:47:29.0667 2344 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
17:47:29.0683 2344 W32Time - ok
17:47:29.0714 2344 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
17:47:29.0714 2344 WacomPen - ok
17:47:29.0855 2344 wampapache (d70a492306861004a0db1024ce634837) c:\wamp\bin\apache\apache2.2.17\bin\httpd.exe
17:47:29.0855 2344 wampapache - ok
17:47:29.0901 2344 wampmysqld - ok
17:47:29.0964 2344 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
17:47:29.0979 2344 WANARP - ok
17:47:29.0979 2344 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
17:47:29.0979 2344 Wanarpv6 - ok
17:47:30.0120 2344 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
17:47:30.0151 2344 WatAdminSvc - ok
17:47:30.0291 2344 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
17:47:30.0323 2344 wbengine - ok
17:47:30.0432 2344 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
17:47:30.0447 2344 WbioSrvc - ok
17:47:30.0510 2344 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
17:47:30.0525 2344 wcncsvc - ok
17:47:30.0557 2344 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
17:47:30.0572 2344 WcsPlugInService - ok
17:47:30.0588 2344 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
17:47:30.0603 2344 Wd - ok
17:47:30.0635 2344 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
17:47:30.0650 2344 Wdf01000 - ok
17:47:30.0681 2344 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
17:47:30.0697 2344 WdiServiceHost - ok
17:47:30.0697 2344 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
17:47:30.0697 2344 WdiSystemHost - ok
17:47:30.0744 2344 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
17:47:30.0759 2344 WebClient - ok
17:47:30.0791 2344 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
17:47:30.0806 2344 Wecsvc - ok
17:47:30.0822 2344 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
17:47:30.0822 2344 wercplsupport - ok
17:47:30.0853 2344 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
17:47:30.0853 2344 WerSvc - ok
17:47:30.0915 2344 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
17:47:30.0915 2344 WfpLwf - ok
17:47:30.0931 2344 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
17:47:30.0947 2344 WIMMount - ok
17:47:30.0978 2344 WinDefend - ok
17:47:30.0993 2344 WinHttpAutoProxySvc - ok
17:47:31.0056 2344 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
17:47:31.0056 2344 Winmgmt - ok
17:47:31.0227 2344 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
17:47:31.0259 2344 WinRM - ok
17:47:31.0415 2344 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
17:47:31.0415 2344 WinUsb - ok
17:47:31.0508 2344 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
17:47:31.0524 2344 Wlansvc - ok
17:47:31.0586 2344 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
17:47:31.0586 2344 wlcrasvc - ok
17:47:31.0773 2344 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:47:31.0789 2344 wlidsvc - ok
17:47:31.0914 2344 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
17:47:31.0929 2344 WmiAcpi - ok
17:47:31.0992 2344 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
17:47:31.0992 2344 wmiApSrv - ok
17:47:32.0054 2344 WMPNetworkSvc - ok
17:47:32.0085 2344 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
17:47:32.0101 2344 WPCSvc - ok
17:47:32.0148 2344 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
17:47:32.0148 2344 WPDBusEnum - ok
17:47:32.0179 2344 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
17:47:32.0179 2344 ws2ifsl - ok
17:47:32.0210 2344 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
17:47:32.0210 2344 wscsvc - ok
17:47:32.0210 2344 WSearch - ok
17:47:32.0397 2344 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
17:47:32.0429 2344 wuauserv - ok
17:47:32.0585 2344 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
17:47:32.0600 2344 WudfPf - ok
17:47:32.0709 2344 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
17:47:32.0709 2344 WUDFRd - ok
17:47:32.0772 2344 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
17:47:32.0772 2344 wudfsvc - ok
17:47:32.0819 2344 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
17:47:32.0834 2344 WwanSvc - ok
17:47:32.0865 2344 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
17:47:33.0131 2344 \Device\Harddisk0\DR0 - ok
17:47:33.0131 2344 Boot (0x1200) (e5c32794691314d187c622edce582f3b) \Device\Harddisk0\DR0\Partition0
17:47:33.0131 2344 \Device\Harddisk0\DR0\Partition0 - ok
17:47:33.0162 2344 Boot (0x1200) (8f872648cc04ea721b12af6d5943de17) \Device\Harddisk0\DR0\Partition1
17:47:33.0162 2344 \Device\Harddisk0\DR0\Partition1 - ok
17:47:33.0162 2344 ============================================================
17:47:33.0162 2344 Scan finished
17:47:33.0162 2344 ============================================================
17:47:33.0177 4512 Detected object count: 1
17:47:33.0177 4512 Actual detected object count: 1
17:48:16.0998 4512 sptd ( LockedFile.Multi.Generic ) - skipped by user
17:48:16.0998 4512 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
17:50:27.0738 7100 Deinitialize success

#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,323 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:39 AM

Posted 19 June 2012 - 02:24 PM

Hello, I saw no keylogger,which was fortunate as I would suspect all the infections came thru torrent downloads. They give you free stuff loaded with malware ,usually to steal personal info.

To finish up ...

Run TFC by OT (Temp File Cleaner)
Please download TFC by Old Timer and save it to your desktop.
alternate download link

Save any unsaved work. TFC will close ALL open programs including your browser!
Double-click on TFC.exe to run it. If you are using Vista, right-click on the file and choose Run As Administrator.
Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway to ensure a complete clean.



Important Note: Your version of Java is out of date. Older versions have vulnerabilities that malicious sites can use to exploit and infect your system.Please follow these steps to remove older version Java components and update:
  • Download the latest version of Java Runtime Environment (JRE) Version 7 and save it to your desktop.
  • Look for "Java Platform, Standard Edition".
  • Click the "Download JRE" button to the right.
  • Read the License Agreement, and then check the box that says: "Accept License Agreement".
  • From the list, select your OS and Platform (32-bit or 64-bit).
    64-bit OS users, should read: Which Java download should I choose for my 64-bit Windows operating system?
  • If a download for an Offline Installation is available, it is recommended to choose that and save the file to your desktop.
  • Close any programs you may have running - especially your web browser.
Go to Posted Image > Control Panel, double-click on Add/Remove Programs or Programs and Features in Vista/Windows 7 and remove all older versions of Java.
  • Check (highlight) any item with Java Runtime Environment (JRE or J2SE) in the name.
  • Click the Remove or Change/Remove button and follow the onscreen instructions for the Java uninstaller.
  • Repeat as many times as necessary to remove each Java versions.
  • Reboot your computer once all Java components are removed.
  • Then from your desktop double-click on jre-7u5-windows-i586.exe (or jre-7u5-windows-x64.exe for 64-bit) to install the newest version.
  • If using Windows 7 or Vista and the installer refuses to launch due to insufficient user permissions, then Run As Administrator.
  • When the Java Setup - Welcome window opens, click the Install > button.
  • If offered any unwanted software or toolbars during installation, just uncheck the box before continuing unless you want it.
  • The McAfee Security Scan Plus tool is installed by default unless you uncheck the McAfee installation box when updating Java.
Note: The Java Quick Starter (JQS.exe) adds a service to improve the initial startup time of Java applets and applications but it's not necessary.
To disable the JQS service if you don't want to use it:
  • Go to Start > Control Panel > Java > Advanced > Miscellaneous and uncheck the box for Java Quick Starter.
  • Click Ok and reboot your computer.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users