Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

\system64 folder mirroring \System32 possible rootkit


  • Please log in to reply
14 replies to this topic

#1 Mike J P

Mike J P

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Australia
  • Local time:10:13 AM

Posted 18 June 2012 - 11:21 AM

Hi
A few days ago I noticed two processes on my Windows 7 x64 system called ping.exe. I immediatley terminated them by end process tree then began a full scan with Kaspersky Internet Security 2012 which did not find anything. I then started a full scan with malwarebytes-free which found and quarantined Trojan.FakeMS.PGen which was located at C:\Windows\System32\Microsoft\SYS\User32.dll. I then noticed stumbled across the windows\system64 folder I have which by clicking properties says it was created a month ago. This \system64 folder is like a clone copy of \system32 and both contain the same number of files and folders and total size are both insactly the same. in \windows looking at the \system64 folder it has a little padlock symbol on it.

I've researched and all I can find is info stating that it's likely a rootkit or zeroaccess and the google redirection virus. A friend suggested using spybot, MS essentials and netpeeker. I've installed netpeeker monitoring every in and out going byte to the net and Spybot detected and removed some adware. I havn't yet tried MS essentials but have done multiple full scans now with Kaspersky, Malwarebytes and Spybot and nothing else is being detected. Ping.exe hasn't returned yet and netpeeker is really quiet except for Kaspersky AVP.exe which pings my router with 33 bytes every 5 seconds which is a knowen bug according to them.

I have read the forums of zero access etc but I can't find any of the suspicious files like consrv.dll. But the \system64 folder and contents still remains plus for the past week internet explorer keeps taking along time and regularly need to refresh or close it and restart. I'm sure a rootkit is still in there somewhere completely invisible and I don't like this system64 folder still haunting me.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:13 PM

Posted 18 June 2012 - 11:25 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)


Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 Mike J P

Mike J P
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Australia
  • Local time:10:13 AM

Posted 18 June 2012 - 11:44 AM

Thanx for the fast response. I'l post the TDSSkiller log here shortly .. cheers

#4 Mike J P

Mike J P
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Australia
  • Local time:10:13 AM

Posted 18 June 2012 - 11:49 AM

Gee it's faster than I was expecting .. It has halted on a detected threat saying - locked file, service sptd, suspicious object medium. must I leave the option on 'skip' then continue ?

#5 Mike J P

Mike J P
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Australia
  • Local time:10:13 AM

Posted 18 June 2012 - 11:57 AM

00:45:03.0469 1800 TDSS rootkit removing tool 2.7.40.0 Jun 15 2012 15:13:31
00:45:04.0549 1800 ============================================================
00:45:04.0549 1800 Current date / time: 2012/06/19 00:45:04.0549
00:45:04.0549 1800 SystemInfo:
00:45:04.0549 1800
00:45:04.0549 1800 OS Version: 6.1.7601 ServicePack: 1.0
00:45:04.0549 1800 Product type: Workstation
00:45:04.0549 1800 ComputerName: MIKE-PC
00:45:04.0549 1800 UserName: Mike
00:45:04.0549 1800 Windows directory: C:\Windows
00:45:04.0549 1800 System windows directory: C:\Windows
00:45:04.0549 1800 Running under WOW64
00:45:04.0549 1800 Processor architecture: Intel x64
00:45:04.0549 1800 Number of processors: 4
00:45:04.0549 1800 Page size: 0x1000
00:45:04.0549 1800 Boot type: Normal boot
00:45:04.0549 1800 ============================================================
00:45:05.0669 1800 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
00:45:05.0679 1800 Drive \Device\Harddisk1\DR1 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
00:45:05.0689 1800 Drive \Device\Harddisk2\DR2 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
00:45:05.0699 1800 ============================================================
00:45:05.0699 1800 \Device\Harddisk0\DR0:
00:45:05.0699 1800 MBR partitions:
00:45:05.0699 1800 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3EC1, BlocksNum 0x2F10C
00:45:05.0699 1800 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32FCD, BlocksNum 0x746D3800
00:45:05.0699 1800 \Device\Harddisk1\DR1:
00:45:05.0699 1800 MBR partitions:
00:45:05.0709 1800 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x3F00, BlocksNum 0x12A14BC1
00:45:05.0709 1800 \Device\Harddisk2\DR2:
00:45:05.0709 1800 MBR partitions:
00:45:05.0709 1800 \Device\Harddisk2\DR2\Partition0: MBR, Type 0x7, StartLBA 0x3F00, BlocksNum 0x3A402422
00:45:05.0729 1800 \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x3A406361, BlocksNum 0x3A2FF660
00:45:05.0729 1800 ============================================================
00:45:05.0809 1800 C: <-> \Device\Harddisk0\DR0\Partition1
00:45:05.0819 1800 D: <-> \Device\Harddisk1\DR1\Partition0
00:45:05.0849 1800 G: <-> \Device\Harddisk2\DR2\Partition0
00:45:05.0869 1800 X: <-> \Device\Harddisk2\DR2\Partition1
00:45:05.0869 1800 ============================================================
00:45:05.0869 1800 Initialize success
00:45:05.0869 1800 ============================================================
00:45:34.0709 6108 ============================================================
00:45:34.0709 6108 Scan started
00:45:34.0709 6108 Mode: Manual; TDLFS;
00:45:34.0709 6108 ============================================================
00:45:37.0249 6108 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
00:45:37.0269 6108 1394ohci - ok
00:45:37.0309 6108 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
00:45:37.0319 6108 ACPI - ok
00:45:37.0329 6108 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
00:45:37.0339 6108 AcpiPmi - ok
00:45:37.0479 6108 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
00:45:37.0499 6108 AdobeARMservice - ok
00:45:37.0539 6108 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
00:45:37.0559 6108 adp94xx - ok
00:45:37.0579 6108 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
00:45:37.0589 6108 adpahci - ok
00:45:37.0599 6108 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
00:45:37.0609 6108 adpu320 - ok
00:45:37.0639 6108 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
00:45:37.0639 6108 AeLookupSvc - ok
00:45:37.0659 6108 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
00:45:37.0679 6108 AFD - ok
00:45:37.0689 6108 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
00:45:37.0699 6108 agp440 - ok
00:45:37.0719 6108 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
00:45:37.0729 6108 ALG - ok
00:45:37.0739 6108 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
00:45:37.0749 6108 aliide - ok
00:45:37.0869 6108 ALSysIO - ok
00:45:37.0879 6108 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
00:45:37.0889 6108 amdide - ok
00:45:37.0909 6108 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
00:45:37.0909 6108 AmdK8 - ok
00:45:37.0919 6108 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
00:45:37.0929 6108 AmdPPM - ok
00:45:37.0949 6108 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
00:45:37.0959 6108 amdsata - ok
00:45:37.0969 6108 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
00:45:37.0979 6108 amdsbs - ok
00:45:37.0989 6108 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
00:45:37.0999 6108 amdxata - ok
00:45:38.0079 6108 AppHostSvc (59d01fa91962c9c1e9b4022b2d3b46db) C:\Windows\system32\inetsrv\apphostsvc.dll
00:45:38.0089 6108 AppHostSvc - ok
00:45:38.0129 6108 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
00:45:38.0139 6108 AppID - ok
00:45:38.0149 6108 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
00:45:38.0159 6108 AppIDSvc - ok
00:45:38.0199 6108 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
00:45:38.0199 6108 Appinfo - ok
00:45:38.0209 6108 AppMgmt (4aba3e75a76195a3e38ed2766c962899) C:\Windows\System32\appmgmts.dll
00:45:38.0219 6108 AppMgmt - ok
00:45:38.0239 6108 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
00:45:38.0249 6108 arc - ok
00:45:38.0249 6108 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
00:45:38.0259 6108 arcsas - ok
00:45:38.0339 6108 AsIO (a82c01606dc27d05d9d3bfb6bb807e32) C:\Windows\syswow64\drivers\AsIO.sys
00:45:38.0349 6108 AsIO - ok
00:45:38.0419 6108 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
00:45:38.0419 6108 aspnet_state - ok
00:45:38.0459 6108 AsUpIO (26d66e32e78d3059715b3a17bc679cd9) C:\Windows\syswow64\drivers\AsUpIO.sys
00:45:38.0469 6108 AsUpIO - ok
00:45:38.0489 6108 asusgsb (a4398a8914c32f18ec2ab562cba3caaf) C:\Windows\system32\drivers\asusgsb.sys
00:45:38.0489 6108 asusgsb - ok
00:45:38.0499 6108 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
00:45:38.0509 6108 AsyncMac - ok
00:45:38.0549 6108 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
00:45:38.0549 6108 atapi - ok
00:45:38.0579 6108 AtcL001 (940e5b876251e04fffe058ad71fe0f1c) C:\Windows\system32\DRIVERS\l160x64.sys
00:45:38.0579 6108 AtcL001 - ok
00:45:38.0619 6108 atksgt (fc0e8778c000291caf60eb88c011e931) C:\Windows\system32\DRIVERS\atksgt.sys
00:45:38.0629 6108 atksgt - ok
00:45:38.0679 6108 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
00:45:38.0699 6108 AudioEndpointBuilder - ok
00:45:38.0699 6108 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
00:45:38.0699 6108 AudioSrv - ok
00:45:39.0079 6108 Autodesk Licensing Service (ead65493edba0ebea2192d46b938298e) C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe
00:45:39.0099 6108 Autodesk Licensing Service - ok
00:45:39.0249 6108 AVP - ok
00:45:39.0289 6108 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
00:45:39.0299 6108 AxInstSV - ok
00:45:39.0359 6108 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
00:45:39.0369 6108 b06bdrv - ok
00:45:39.0379 6108 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
00:45:39.0389 6108 b57nd60a - ok
00:45:39.0419 6108 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
00:45:39.0419 6108 BDESVC - ok
00:45:39.0439 6108 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
00:45:39.0449 6108 Beep - ok
00:45:39.0499 6108 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
00:45:39.0509 6108 BFE - ok
00:45:39.0569 6108 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\system32\qmgr.dll
00:45:39.0579 6108 BITS - ok
00:45:39.0599 6108 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
00:45:39.0609 6108 blbdrive - ok
00:45:39.0619 6108 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
00:45:39.0629 6108 bowser - ok
00:45:39.0639 6108 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
00:45:39.0649 6108 BrFiltLo - ok
00:45:39.0649 6108 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
00:45:39.0659 6108 BrFiltUp - ok
00:45:39.0719 6108 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
00:45:39.0749 6108 BridgeMP - ok
00:45:39.0819 6108 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
00:45:39.0829 6108 Browser - ok
00:45:39.0849 6108 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
00:45:39.0859 6108 Brserid - ok
00:45:39.0859 6108 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
00:45:39.0869 6108 BrSerWdm - ok
00:45:39.0869 6108 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
00:45:39.0879 6108 BrUsbMdm - ok
00:45:39.0879 6108 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
00:45:39.0889 6108 BrUsbSer - ok
00:45:39.0939 6108 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\drivers\BthEnum.sys
00:45:39.0949 6108 BthEnum - ok
00:45:39.0959 6108 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
00:45:39.0969 6108 BTHMODEM - ok
00:45:40.0049 6108 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys
00:45:40.0059 6108 BthPan - ok
00:45:40.0119 6108 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\Windows\system32\Drivers\BTHport.sys
00:45:40.0129 6108 BTHPORT - ok
00:45:40.0179 6108 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
00:45:40.0179 6108 bthserv - ok
00:45:40.0219 6108 BTHUSB (f188b7394d81010767b6df3178519a37) C:\Windows\system32\Drivers\BTHUSB.sys
00:45:40.0229 6108 BTHUSB - ok
00:45:40.0359 6108 catchme - ok
00:45:40.0379 6108 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
00:45:40.0389 6108 cdfs - ok
00:45:40.0399 6108 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
00:45:40.0409 6108 cdrom - ok
00:45:40.0429 6108 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
00:45:40.0439 6108 CertPropSvc - ok
00:45:40.0479 6108 chdrvr01 (8504f0aa0b81789da9a5cab08cbacd51) C:\Windows\system32\DRIVERS\chdrvr01.sys
00:45:40.0489 6108 chdrvr01 - ok
00:45:40.0519 6108 chdrvr02 (38b5c53eb02e8df28923d5917fbd9f1f) C:\Windows\system32\DRIVERS\chdrvr02.sys
00:45:40.0529 6108 chdrvr02 - ok
00:45:40.0569 6108 chdrvr03 (7b42079e66bfdf958fbd9fe67797d6d3) C:\Windows\system32\DRIVERS\chdrvr03.sys
00:45:40.0569 6108 chdrvr03 - ok
00:45:40.0589 6108 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
00:45:40.0589 6108 circlass - ok
00:45:40.0639 6108 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
00:45:40.0649 6108 CLFS - ok
00:45:40.0709 6108 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
00:45:40.0729 6108 clr_optimization_v2.0.50727_32 - ok
00:45:40.0769 6108 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
00:45:40.0779 6108 clr_optimization_v2.0.50727_64 - ok
00:45:40.0829 6108 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
00:45:40.0839 6108 clr_optimization_v4.0.30319_32 - ok
00:45:40.0859 6108 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
00:45:40.0869 6108 clr_optimization_v4.0.30319_64 - ok
00:45:40.0869 6108 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
00:45:40.0879 6108 CmBatt - ok
00:45:40.0939 6108 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
00:45:40.0949 6108 cmdide - ok
00:45:40.0989 6108 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
00:45:40.0999 6108 CNG - ok
00:45:41.0049 6108 COMMONFX.DLL (7d48c1a9532a1da3b7ccbdb4727e4472) C:\Windows\System32\COMMONFX.DLL
00:45:41.0059 6108 COMMONFX.DLL - ok
00:45:41.0069 6108 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
00:45:41.0079 6108 Compbatt - ok
00:45:41.0119 6108 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
00:45:41.0119 6108 CompositeBus - ok
00:45:41.0119 6108 COMSysApp - ok
00:45:41.0229 6108 cpudrv64 (3ca734ce373e5675fbc15ca2c45228e5) C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys
00:45:41.0229 6108 cpudrv64 - ok
00:45:41.0239 6108 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
00:45:41.0249 6108 crcdisk - ok
00:45:41.0359 6108 Creative ALchemy AL6 Licensing Service (c8bd651e13895b93ed9ec5b4f1df42bc) C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
00:45:41.0369 6108 Creative ALchemy AL6 Licensing Service - ok
00:45:41.0409 6108 Creative Audio Engine Licensing Service (c0ead9f8ab83d41ff07303c75589c2b8) C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
00:45:41.0429 6108 Creative Audio Engine Licensing Service - ok
00:45:41.0459 6108 Creative Media Toolbox 6 Licensing Service (d03466c36ef0e5c7694ff38b45271d9d) C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\MT6Licensing.exe
00:45:41.0469 6108 Creative Media Toolbox 6 Licensing Service - ok
00:45:41.0509 6108 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
00:45:41.0519 6108 CryptSvc - ok
00:45:41.0559 6108 CSC (54da3dfd29ed9f1619b6f53f3ce55e49) C:\Windows\system32\drivers\csc.sys
00:45:41.0569 6108 CSC - ok
00:45:41.0629 6108 CscService (3ab183ab4d2c79dcf459cd2c1266b043) C:\Windows\System32\cscsvc.dll
00:45:41.0639 6108 CscService - ok
00:45:41.0679 6108 CTAUDFX.DLL (10befaa3a8d69fd8d8c3572776984784) C:\Windows\System32\CTAUDFX.DLL
00:45:41.0699 6108 CTAUDFX.DLL - ok
00:45:41.0829 6108 CTAudSvcService (07ba6d17e66879018b30b6c3f976ebed) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
00:45:41.0859 6108 CTAudSvcService - ok
00:45:41.0879 6108 CTEAPSFX.DLL (e07d540e71954fff11ff2a0c23525693) C:\Windows\System32\CTEAPSFX.DLL
00:45:41.0889 6108 CTEAPSFX.DLL - ok
00:45:41.0909 6108 CTEDSPFX.DLL (95ec8e61ea004244d5b717500acf2ca5) C:\Windows\System32\CTEDSPFX.DLL
00:45:41.0919 6108 CTEDSPFX.DLL - ok
00:45:41.0929 6108 CTEDSPIO.DLL (b6400f4bf7118eabaffd3532708d0ea3) C:\Windows\System32\CTEDSPIO.DLL
00:45:41.0939 6108 CTEDSPIO.DLL - ok
00:45:41.0959 6108 CTEDSPSY.DLL (72fe0686c2e8590a557dda0c5f019ad9) C:\Windows\System32\CTEDSPSY.DLL
00:45:41.0969 6108 CTEDSPSY.DLL - ok
00:45:42.0009 6108 ctgame (371b1a6635dd0b4478b8061987870554) C:\Windows\system32\DRIVERS\ctgame.sys
00:45:42.0019 6108 ctgame - ok
00:45:42.0049 6108 CTSBLFX.DLL (8db75899ff3d3720f6f29d8f0d6d5923) C:\Windows\System32\CTSBLFX.DLL
00:45:42.0069 6108 CTSBLFX.DLL - ok
00:45:42.0089 6108 dc3d (7af9dac504fbd047cbc3e64ae52c92bf) C:\Windows\system32\DRIVERS\dc3d.sys
00:45:42.0089 6108 dc3d - ok
00:45:42.0139 6108 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
00:45:42.0149 6108 DcomLaunch - ok
00:45:42.0169 6108 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
00:45:42.0179 6108 defragsvc - ok
00:45:42.0219 6108 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
00:45:42.0229 6108 DfsC - ok
00:45:42.0249 6108 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
00:45:42.0259 6108 Dhcp - ok
00:45:42.0279 6108 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
00:45:42.0289 6108 discache - ok
00:45:42.0299 6108 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
00:45:42.0309 6108 Disk - ok
00:45:42.0349 6108 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
00:45:42.0359 6108 Dnscache - ok
00:45:42.0409 6108 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
00:45:42.0419 6108 dot3svc - ok
00:45:42.0449 6108 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
00:45:42.0459 6108 DPS - ok
00:45:42.0479 6108 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
00:45:42.0489 6108 drmkaud - ok
00:45:42.0549 6108 DroidCam (ac374b599d7771abf9e4be9f034aefd0) C:\Windows\system32\drivers\droidcam.sys
00:45:42.0559 6108 DroidCam - ok
00:45:42.0599 6108 dtsoftbus01 (821bf177a24172f5f0ee9b322f58516c) C:\Windows\system32\DRIVERS\dtsoftbus01.sys
00:45:42.0609 6108 dtsoftbus01 - ok
00:45:42.0649 6108 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
00:45:42.0669 6108 DXGKrnl - ok
00:45:42.0699 6108 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
00:45:42.0709 6108 EapHost - ok
00:45:42.0899 6108 EasyRedirect (167725f44c8d2c1f9a86e16ffa60f311) C:\Program Files (x86)\Easy-Hide-IP\rdr\EasyRedirect.exe
00:45:42.0929 6108 EasyRedirect - ok
00:45:43.0099 6108 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
00:45:43.0149 6108 ebdrv - ok
00:45:43.0219 6108 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
00:45:43.0229 6108 EFS - ok
00:45:43.0289 6108 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
00:45:43.0309 6108 ehRecvr - ok
00:45:43.0329 6108 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
00:45:43.0339 6108 ehSched - ok
00:45:43.0349 6108 EIO64 - ok
00:45:43.0369 6108 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
00:45:43.0389 6108 elxstor - ok
00:45:43.0429 6108 epmntdrv (9eafb3b3b60b8ad958985152a9309aca) C:\Windows\system32\epmntdrv.sys
00:45:43.0439 6108 epmntdrv - ok
00:45:43.0469 6108 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
00:45:43.0479 6108 ErrDev - ok
00:45:43.0489 6108 EuGdiDrv (fb949ed2c93c878a189039f3d7730942) C:\Windows\system32\EuGdiDrv.sys
00:45:43.0499 6108 EuGdiDrv - ok
00:45:43.0539 6108 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
00:45:43.0549 6108 EventSystem - ok
00:45:43.0569 6108 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
00:45:43.0579 6108 exfat - ok
00:45:43.0589 6108 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
00:45:43.0599 6108 fastfat - ok
00:45:43.0619 6108 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
00:45:43.0639 6108 Fax - ok
00:45:43.0669 6108 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
00:45:43.0669 6108 fdc - ok
00:45:43.0689 6108 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
00:45:43.0699 6108 fdPHost - ok
00:45:43.0699 6108 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
00:45:43.0709 6108 FDResPub - ok
00:45:43.0719 6108 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
00:45:43.0729 6108 FileInfo - ok
00:45:43.0749 6108 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
00:45:43.0759 6108 Filetrace - ok
00:45:43.0859 6108 FLEXnet Licensing Service (73081cf28f0ae20a52ca4f67cee6e6b0) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
00:45:43.0899 6108 FLEXnet Licensing Service - ok
00:45:43.0909 6108 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
00:45:43.0919 6108 flpydisk - ok
00:45:43.0929 6108 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
00:45:43.0939 6108 FltMgr - ok
00:45:43.0989 6108 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
00:45:43.0999 6108 FontCache - ok
00:45:44.0109 6108 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
00:45:44.0119 6108 FontCache3.0.0.0 - ok
00:45:44.0149 6108 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
00:45:44.0159 6108 FsDepends - ok
00:45:44.0179 6108 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
00:45:44.0189 6108 Fs_Rec - ok
00:45:44.0219 6108 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
00:45:44.0229 6108 fvevol - ok
00:45:44.0269 6108 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
00:45:44.0279 6108 gagp30kx - ok
00:45:44.0279 6108 GMFilter - ok
00:45:44.0299 6108 GMSIPCI - ok
00:45:44.0339 6108 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
00:45:44.0339 6108 gpsvc - ok
00:45:44.0409 6108 gusvc (c1b577b2169900f4cf7190c39f085794) C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
00:45:44.0699 6108 gusvc - ok
00:45:44.0699 6108 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
00:45:44.0709 6108 hcw85cir - ok
00:45:44.0739 6108 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
00:45:44.0749 6108 HdAudAddService - ok
00:45:44.0769 6108 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\DRIVERS\HDAudBus.sys
00:45:44.0779 6108 HDAudBus - ok
00:45:44.0779 6108 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
00:45:44.0789 6108 HidBatt - ok
00:45:44.0829 6108 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
00:45:44.0839 6108 HidBth - ok
00:45:44.0849 6108 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
00:45:44.0859 6108 HidIr - ok
00:45:44.0879 6108 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
00:45:44.0879 6108 hidserv - ok
00:45:44.0919 6108 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
00:45:44.0929 6108 HidUsb - ok
00:45:44.0969 6108 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
00:45:44.0979 6108 hkmsvc - ok
00:45:45.0019 6108 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
00:45:45.0029 6108 HomeGroupListener - ok
00:45:45.0069 6108 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
00:45:45.0079 6108 HomeGroupProvider - ok
00:45:45.0089 6108 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
00:45:45.0099 6108 HpSAMD - ok
00:45:45.0129 6108 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
00:45:45.0149 6108 HTTP - ok
00:45:45.0189 6108 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
00:45:45.0199 6108 hwpolicy - ok
00:45:45.0239 6108 i8042HDR (45e0f744b0887e2701b1c59dc86147ec) C:\Windows\system32\DRIVERS\i8042HDR.sys
00:45:45.0249 6108 i8042HDR - ok
00:45:45.0289 6108 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
00:45:45.0299 6108 i8042prt - ok
00:45:45.0319 6108 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
00:45:45.0329 6108 iaStorV - ok
00:45:45.0409 6108 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
00:45:45.0429 6108 IDriverT - ok
00:45:45.0499 6108 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
00:45:45.0519 6108 idsvc - ok
00:45:45.0589 6108 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
00:45:45.0589 6108 iirsp - ok
00:45:45.0679 6108 IISADMIN (ab55b8a9b13130f638546881ce4425f8) C:\Windows\system32\inetsrv\inetinfo.exe
00:45:45.0679 6108 IISADMIN - ok
00:45:45.0739 6108 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
00:45:45.0759 6108 IKEEXT - ok
00:45:45.0769 6108 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
00:45:45.0769 6108 intelide - ok
00:45:45.0809 6108 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
00:45:45.0809 6108 intelppm - ok
00:45:45.0839 6108 IOMap - ok
00:45:45.0859 6108 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
00:45:45.0869 6108 IPBusEnum - ok
00:45:45.0909 6108 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
00:45:45.0919 6108 IpFilterDriver - ok
00:45:45.0989 6108 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
00:45:45.0999 6108 iphlpsvc - ok
00:45:46.0019 6108 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
00:45:46.0029 6108 IPMIDRV - ok
00:45:46.0039 6108 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
00:45:46.0049 6108 IPNAT - ok
00:45:46.0069 6108 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
00:45:46.0079 6108 IRENUM - ok
00:45:46.0089 6108 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
00:45:46.0099 6108 isapnp - ok
00:45:46.0109 6108 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
00:45:46.0129 6108 iScsiPrt - ok
00:45:46.0169 6108 JRAID (50de7dd7edb1b512b13666588aefbf6f) C:\Windows\system32\DRIVERS\jraid.sys
00:45:46.0179 6108 JRAID - ok
00:45:46.0309 6108 Just Flight Limited License Service (57577dd36612313469f70486089de0dd) C:\Program Files (x86)\Common Files\Just Flight Limited Shared\Service\JustFlightLimitedLicSvc.exe
00:45:46.0319 6108 Just Flight Limited License Service - ok
00:45:46.0349 6108 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
00:45:46.0359 6108 kbdclass - ok
00:45:46.0379 6108 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
00:45:46.0389 6108 kbdhid - ok
00:45:46.0419 6108 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
00:45:46.0429 6108 KeyIso - ok
00:45:46.0459 6108 KL1 (e656fe10d6d27794afa08136685a69e8) C:\Windows\system32\DRIVERS\kl1.sys
00:45:46.0469 6108 KL1 - ok
00:45:46.0499 6108 kl2 (d865dd8b0448e3f963d68c04c532858f) C:\Windows\system32\DRIVERS\kl2.sys
00:45:46.0509 6108 kl2 - ok
00:45:46.0569 6108 KLIF (c7d4f357c482dd37e2b05f34093b7b0c) C:\Windows\system32\DRIVERS\klif.sys
00:45:46.0579 6108 KLIF - ok
00:45:46.0639 6108 KLIM6 (89fb5a33d7171b6d84f5eb721d5055e1) C:\Windows\system32\DRIVERS\klim6.sys
00:45:46.0639 6108 KLIM6 - ok
00:45:46.0659 6108 klmouflt (9468d07e91ba136d82415f5dfc1fe168) C:\Windows\system32\DRIVERS\klmouflt.sys
00:45:46.0659 6108 klmouflt - ok
00:45:46.0689 6108 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
00:45:46.0719 6108 KSecDD - ok
00:45:46.0739 6108 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
00:45:46.0749 6108 KSecPkg - ok
00:45:46.0779 6108 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
00:45:46.0789 6108 ksthunk - ok
00:45:46.0809 6108 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
00:45:46.0829 6108 KtmRm - ok
00:45:46.0879 6108 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\System32\srvsvc.dll
00:45:46.0889 6108 LanmanServer - ok
00:45:46.0929 6108 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
00:45:46.0939 6108 LanmanWorkstation - ok
00:45:47.0009 6108 LBTServ (4adc135f525d38a498f83b089228cc2d) C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
00:45:47.0029 6108 LBTServ - ok
00:45:47.0039 6108 LHidFilt (24e09882ba51b9830ae029888a3aaf18) C:\Windows\system32\DRIVERS\LHidFilt.Sys
00:45:47.0049 6108 LHidFilt - ok
00:45:47.0099 6108 lirsgt (156ab2e56dc3ca0b582e3362e07cded7) C:\Windows\system32\DRIVERS\lirsgt.sys
00:45:47.0099 6108 lirsgt - ok
00:45:47.0119 6108 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
00:45:47.0129 6108 lltdio - ok
00:45:47.0149 6108 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
00:45:47.0159 6108 lltdsvc - ok
00:45:47.0169 6108 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
00:45:47.0179 6108 lmhosts - ok
00:45:47.0189 6108 LMouFilt (2f94325d8c10e2b715f3d753c2422aac) C:\Windows\system32\DRIVERS\LMouFilt.Sys
00:45:47.0189 6108 LMouFilt - ok
00:45:47.0209 6108 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
00:45:47.0219 6108 LSI_FC - ok
00:45:47.0229 6108 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
00:45:47.0239 6108 LSI_SAS - ok
00:45:47.0259 6108 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
00:45:47.0269 6108 LSI_SAS2 - ok
00:45:47.0279 6108 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
00:45:47.0289 6108 LSI_SCSI - ok
00:45:47.0299 6108 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
00:45:47.0309 6108 luafv - ok
00:45:47.0329 6108 LUsbFilt (b8be35421b9e8dc1ab4b0cb7b9b0328b) C:\Windows\system32\Drivers\LUsbFilt.Sys
00:45:47.0329 6108 LUsbFilt - ok
00:45:47.0359 6108 LVPr2M64 - ok
00:45:47.0399 6108 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
00:45:47.0409 6108 Mcx2Svc - ok
00:45:47.0419 6108 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
00:45:47.0429 6108 megasas - ok
00:45:47.0439 6108 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
00:45:47.0459 6108 MegaSR - ok
00:45:47.0719 6108 mi-raysat_3dsMax2009_32 (0af89452a8ce3928168f4e5b2208c68b) C:\Program Files (x86)\Autodesk\3ds Max 2009\mentalray\satellite\raysat_3dsMax2009_32server.exe
00:45:47.0739 6108 mi-raysat_3dsMax2009_32 - ok
00:45:47.0989 6108 mi-raysat_3dsmax2012_32 (0af89452a8ce3928168f4e5b2208c68b) C:\Program Files (x86)\Autodesk\3ds Max 2012\mentalimages\satellite\raysat_3dsmax2012_32server.exe
00:45:48.0009 6108 mi-raysat_3dsmax2012_32 - ok
00:45:48.0189 6108 mi-raysat_3dsmax8 (aa0c4a2c33ce075df2c272d678734991) C:\Program Files (x86)\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe
00:45:48.0209 6108 mi-raysat_3dsmax8 - ok
00:45:48.0289 6108 Microsoft SharePoint Workspace Audit Service - ok
00:45:48.0319 6108 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
00:45:48.0329 6108 MMCSS - ok
00:45:48.0349 6108 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
00:45:48.0349 6108 Modem - ok
00:45:48.0369 6108 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
00:45:48.0379 6108 monitor - ok
00:45:48.0399 6108 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
00:45:48.0409 6108 mouclass - ok
00:45:48.0429 6108 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
00:45:48.0439 6108 mouhid - ok
00:45:48.0479 6108 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
00:45:48.0489 6108 mountmgr - ok
00:45:48.0549 6108 MozillaMaintenance (6380ff81dd4d78b23398752d2f46ea43) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
00:45:48.0559 6108 MozillaMaintenance - ok
00:45:48.0589 6108 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
00:45:48.0599 6108 mpio - ok
00:45:48.0619 6108 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
00:45:48.0629 6108 mpsdrv - ok
00:45:48.0679 6108 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
00:45:48.0699 6108 MpsSvc - ok
00:45:48.0719 6108 MQAC (cd22d2563039dda6793f7624719363a7) C:\Windows\system32\drivers\mqac.sys
00:45:48.0729 6108 MQAC - ok
00:45:48.0779 6108 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
00:45:48.0789 6108 MRxDAV - ok
00:45:48.0819 6108 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
00:45:48.0829 6108 mrxsmb - ok
00:45:48.0879 6108 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
00:45:48.0889 6108 mrxsmb10 - ok
00:45:48.0899 6108 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
00:45:48.0909 6108 mrxsmb20 - ok
00:45:48.0939 6108 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
00:45:48.0949 6108 msahci - ok
00:45:48.0969 6108 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
00:45:48.0979 6108 msdsm - ok
00:45:49.0009 6108 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
00:45:49.0019 6108 MSDTC - ok
00:45:49.0029 6108 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
00:45:49.0029 6108 Msfs - ok
00:45:49.0049 6108 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
00:45:49.0059 6108 mshidkmdf - ok
00:45:49.0079 6108 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
00:45:49.0089 6108 msisadrv - ok
00:45:49.0339 6108 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
00:45:49.0349 6108 MSiSCSI - ok
00:45:49.0359 6108 msiserver - ok
00:45:49.0379 6108 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
00:45:49.0389 6108 MSKSSRV - ok
00:45:49.0389 6108 MSMQ (faaeaef99e53561beee58f946ca56f0d) C:\Windows\system32\mqsvc.exe
00:45:49.0399 6108 MSMQ - ok
00:45:49.0449 6108 MSMQTriggers (59ed174fd4314b0218dc91f9bfa6cd3d) C:\Windows\system32\mqtgsvc.exe
00:45:49.0459 6108 MSMQTriggers - ok
00:45:49.0479 6108 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
00:45:49.0479 6108 MSPCLOCK - ok
00:45:49.0489 6108 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
00:45:49.0499 6108 MSPQM - ok
00:45:49.0509 6108 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
00:45:49.0529 6108 MsRPC - ok
00:45:49.0539 6108 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
00:45:49.0549 6108 mssmbios - ok
00:45:49.0679 6108 MSSQL$SQLEXPRESS - ok
00:45:49.0749 6108 MSSQLServerADHelper100 (7a2a8c975356858eb38466a6b1592e8d) c:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
00:45:49.0759 6108 MSSQLServerADHelper100 - ok
00:45:49.0779 6108 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
00:45:49.0779 6108 MSTEE - ok
00:45:49.0799 6108 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
00:45:49.0799 6108 MTConfig - ok
00:45:49.0839 6108 MTsensor (2219a3d695405e7ba2186ba6b9ede14a) C:\Windows\system32\DRIVERS\ASACPI.sys
00:45:49.0849 6108 MTsensor - ok
00:45:49.0869 6108 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
00:45:49.0869 6108 Mup - ok
00:45:49.0929 6108 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
00:45:49.0939 6108 napagent - ok
00:45:49.0969 6108 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
00:45:49.0979 6108 NativeWifiP - ok
00:45:50.0009 6108 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
00:45:50.0029 6108 NDIS - ok
00:45:50.0059 6108 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
00:45:50.0059 6108 NdisCap - ok
00:45:50.0069 6108 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
00:45:50.0079 6108 NdisTapi - ok
00:45:50.0129 6108 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
00:45:50.0129 6108 Ndisuio - ok
00:45:50.0169 6108 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
00:45:50.0179 6108 NdisWan - ok
00:45:50.0219 6108 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
00:45:50.0229 6108 NDProxy - ok
00:45:50.0239 6108 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
00:45:50.0249 6108 NetBIOS - ok
00:45:50.0299 6108 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
00:45:50.0309 6108 NetBT - ok
00:45:50.0349 6108 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
00:45:50.0359 6108 Netlogon - ok
00:45:50.0389 6108 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
00:45:50.0399 6108 Netman - ok
00:45:50.0469 6108 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
00:45:50.0479 6108 NetMsmqActivator - ok
00:45:50.0579 6108 NetPeeker (5da8e4fac079e52320f74301c5a70ef1) C:\Windows\system32\DRIVERS\netpeeker.sys
00:45:50.0599 6108 NetPeeker - ok
00:45:50.0649 6108 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
00:45:50.0649 6108 NetPipeActivator - ok
00:45:50.0699 6108 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
00:45:50.0709 6108 netprofm - ok
00:45:50.0719 6108 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
00:45:50.0719 6108 NetTcpActivator - ok
00:45:50.0719 6108 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
00:45:50.0719 6108 NetTcpPortSharing - ok
00:45:50.0749 6108 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
00:45:50.0759 6108 nfrd960 - ok
00:45:50.0819 6108 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
00:45:50.0829 6108 NlaSvc - ok
00:45:50.0839 6108 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
00:45:50.0849 6108 Npfs - ok
00:45:50.0859 6108 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
00:45:50.0869 6108 nsi - ok
00:45:50.0879 6108 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
00:45:50.0889 6108 nsiproxy - ok
00:45:50.0969 6108 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
00:45:50.0999 6108 Ntfs - ok
00:45:51.0049 6108 NuidFltr (9924bdc1882f8c92335e26483bd1fb24) C:\Windows\system32\DRIVERS\NuidFltr.sys
00:45:51.0059 6108 NuidFltr - ok
00:45:51.0059 6108 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
00:45:51.0069 6108 Null - ok
00:45:51.0099 6108 NVHDA (102806b360d0e6bc6e55bf47ef655d43) C:\Windows\system32\drivers\nvhda64v.sys
00:45:51.0109 6108 NVHDA - ok
00:45:51.0419 6108 nvlddmkm (ba0b4889c40380a01ecdf84c227a89c9) C:\Windows\system32\DRIVERS\nvlddmkm.sys
00:45:51.0649 6108 nvlddmkm - ok
00:45:51.0739 6108 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
00:45:51.0749 6108 nvraid - ok
00:45:51.0759 6108 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
00:45:51.0769 6108 nvstor - ok
00:45:51.0829 6108 nvsvc (06633cf95bea62164c3bfca24bce6b11) C:\Windows\system32\nvvsvc.exe
00:45:51.0849 6108 nvsvc - ok
00:45:51.0959 6108 nvUpdatusService (53b629ce436b110c5689c2f6439e567b) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
00:45:51.0989 6108 nvUpdatusService - ok
00:45:52.0039 6108 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
00:45:52.0049 6108 nv_agp - ok
00:45:52.0079 6108 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
00:45:52.0089 6108 ohci1394 - ok
00:45:52.0219 6108 OODefragAgent (2e71117ce9f783a7f3eb763e23dade61) C:\Program Files\OO Software\Defrag\oodag.exe
00:45:52.0339 6108 OODefragAgent - ok
00:45:52.0389 6108 ose64 (4965b005492cba7719e82b71e3245495) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
00:45:52.0399 6108 ose64 - ok
00:45:52.0529 6108 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
00:45:52.0549 6108 osppsvc - ok
00:45:52.0659 6108 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
00:45:52.0669 6108 p2pimsvc - ok
00:45:52.0689 6108 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
00:45:52.0699 6108 p2psvc - ok
00:45:52.0749 6108 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
00:45:52.0759 6108 Parport - ok
00:45:52.0789 6108 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
00:45:52.0799 6108 partmgr - ok
00:45:52.0809 6108 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
00:45:52.0819 6108 PcaSvc - ok
00:45:52.0869 6108 pccsmcfd (bc0018c2d29f655188a0ed3fa94fdb24) C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
00:45:52.0879 6108 pccsmcfd - ok
00:45:52.0919 6108 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
00:45:52.0929 6108 pci - ok
00:45:52.0929 6108 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
00:45:52.0939 6108 pciide - ok
00:45:52.0959 6108 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
00:45:52.0969 6108 pcmcia - ok
00:45:53.0019 6108 Pcouffin64 (abf3d0b7fb9a726f6cbad6a3184ca8dd) C:\Windows\system32\Drivers\pcouffin64a.sys
00:45:53.0029 6108 Pcouffin64 - ok
00:45:53.0029 6108 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
00:45:53.0039 6108 pcw - ok
00:45:53.0079 6108 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
00:45:53.0099 6108 PEAUTH - ok
00:45:53.0159 6108 PeerDistSvc (b9b0a4299dd2d76a4243f75fd54dc680) C:\Windows\system32\peerdistsvc.dll
00:45:53.0179 6108 PeerDistSvc - ok
00:45:53.0229 6108 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
00:45:53.0239 6108 PerfHost - ok
00:45:53.0299 6108 PID_PEPI - ok
00:45:53.0369 6108 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
00:45:53.0399 6108 pla - ok
00:45:53.0519 6108 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
00:45:53.0539 6108 PlugPlay - ok
00:45:53.0579 6108 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
00:45:53.0589 6108 PNRPAutoReg - ok
00:45:53.0609 6108 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
00:45:53.0619 6108 PNRPsvc - ok
00:45:53.0639 6108 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
00:45:53.0649 6108 PolicyAgent - ok
00:45:53.0679 6108 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
00:45:53.0689 6108 Power - ok
00:45:53.0739 6108 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
00:45:53.0749 6108 PptpMiniport - ok
00:45:53.0759 6108 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
00:45:53.0769 6108 Processor - ok
00:45:53.0809 6108 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
00:45:53.0819 6108 ProfSvc - ok
00:45:53.0849 6108 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
00:45:53.0849 6108 ProtectedStorage - ok
00:45:53.0879 6108 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
00:45:53.0889 6108 Psched - ok
00:45:53.0989 6108 PSI_SVC_2 (543a4ef0923bf70d126625b034ef25af) c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
00:45:54.0009 6108 PSI_SVC_2 - ok
00:45:54.0089 6108 PSI_SVC_2_x64 (788cb65d49d1162c5ee6814afe5b0a70) c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
00:45:54.0099 6108 PSI_SVC_2_x64 - ok
00:45:54.0159 6108 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
00:45:54.0209 6108 ql2300 - ok
00:45:54.0299 6108 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
00:45:54.0309 6108 ql40xx - ok
00:45:54.0329 6108 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
00:45:54.0339 6108 QWAVE - ok
00:45:54.0359 6108 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
00:45:54.0369 6108 QWAVEdrv - ok
00:45:54.0379 6108 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
00:45:54.0389 6108 RasAcd - ok
00:45:54.0409 6108 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
00:45:54.0419 6108 RasAgileVpn - ok
00:45:54.0439 6108 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
00:45:54.0449 6108 RasAuto - ok
00:45:54.0489 6108 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
00:45:54.0499 6108 Rasl2tp - ok
00:45:54.0519 6108 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
00:45:54.0529 6108 RasMan - ok
00:45:54.0539 6108 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
00:45:54.0549 6108 RasPppoe - ok
00:45:54.0559 6108 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
00:45:54.0569 6108 RasSstp - ok
00:45:54.0619 6108 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
00:45:54.0629 6108 rdbss - ok
00:45:54.0639 6108 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
00:45:54.0649 6108 rdpbus - ok
00:45:54.0659 6108 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
00:45:54.0659 6108 RDPCDD - ok
00:45:54.0709 6108 RDPDR (1b6163c503398b23ff8b939c67747683) C:\Windows\system32\drivers\rdpdr.sys
00:45:54.0719 6108 RDPDR - ok
00:45:54.0729 6108 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
00:45:54.0739 6108 RDPENCDD - ok
00:45:54.0749 6108 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
00:45:54.0759 6108 RDPREFMP - ok
00:45:54.0799 6108 RdpVideoMiniport (70cba1a0c98600a2aa1863479b35cb90) C:\Windows\system32\drivers\rdpvideominiport.sys
00:45:54.0809 6108 RdpVideoMiniport - ok
00:45:54.0849 6108 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
00:45:54.0859 6108 RDPWD - ok
00:45:54.0899 6108 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
00:45:54.0909 6108 rdyboost - ok
00:45:54.0959 6108 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
00:45:54.0969 6108 RemoteAccess - ok
00:45:54.0989 6108 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
00:45:54.0999 6108 RemoteRegistry - ok
00:45:55.0049 6108 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys
00:45:55.0059 6108 RFCOMM - ok
00:45:55.0099 6108 RMCAST (caf88d6573d21cd2aa27001ddbfdc74d) C:\Windows\system32\DRIVERS\RMCAST.sys
00:45:55.0109 6108 RMCAST - ok
00:45:55.0139 6108 ROOTMODEM (388d3dd1a6457280f3badba9f3acd6b1) C:\Windows\system32\Drivers\RootMdm.sys
00:45:55.0149 6108 ROOTMODEM - ok
00:45:55.0159 6108 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
00:45:55.0159 6108 RpcEptMapper - ok
00:45:55.0179 6108 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
00:45:55.0179 6108 RpcLocator - ok
00:45:55.0239 6108 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
00:45:55.0239 6108 RpcSs - ok
00:45:55.0309 6108 RsFx0105 (c9fe05a63c500abe3afa5786504c4d36) C:\Windows\system32\DRIVERS\RsFx0105.sys
00:45:55.0319 6108 RsFx0105 - ok
00:45:55.0329 6108 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
00:45:55.0339 6108 rspndr - ok
00:45:55.0459 6108 RTCore64 (4b60ef388071e0baf299496e3d6590ae) C:\Program Files (x86)\MSI Afterburner\RTCore64.sys
00:45:55.0459 6108 RTCore64 - ok
00:45:55.0489 6108 s3cap (e60c0a09f997826c7627b244195ab581) C:\Windows\system32\drivers\vms3cap.sys
00:45:55.0499 6108 s3cap - ok
00:45:55.0529 6108 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
00:45:55.0529 6108 SamSs - ok
00:45:55.0559 6108 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
00:45:55.0569 6108 sbp2port - ok
00:45:55.0639 6108 SBSDWSCService (794d4b48dfb6e999537c7c3947863463) C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
00:45:55.0879 6108 SBSDWSCService - ok
00:45:55.0979 6108 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
00:45:55.0989 6108 SCardSvr - ok
00:45:56.0049 6108 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
00:45:56.0059 6108 scfilter - ok
00:45:56.0119 6108 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
00:45:56.0129 6108 Schedule - ok
00:45:56.0179 6108 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
00:45:56.0179 6108 SCPolicySvc - ok
00:45:56.0219 6108 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
00:45:56.0229 6108 SDRSVC - ok
00:45:56.0249 6108 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
00:45:56.0259 6108 secdrv - ok
00:45:56.0279 6108 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
00:45:56.0279 6108 seclogon - ok
00:45:56.0299 6108 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
00:45:56.0309 6108 SENS - ok
00:45:56.0319 6108 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
00:45:56.0329 6108 SensrSvc - ok
00:45:56.0349 6108 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
00:45:56.0349 6108 Serenum - ok
00:45:56.0369 6108 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
00:45:56.0379 6108 Serial - ok
00:45:56.0409 6108 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
00:45:56.0419 6108 sermouse - ok
00:45:56.0559 6108 ServiceLayer (8c1f87f5fdd92229d1754b98f073913f) C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
00:45:56.0589 6108 ServiceLayer - ok
00:45:56.0639 6108 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
00:45:56.0649 6108 SessionEnv - ok
00:45:56.0679 6108 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
00:45:56.0679 6108 sffdisk - ok
00:45:56.0699 6108 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
00:45:56.0699 6108 sffp_mmc - ok
00:45:56.0709 6108 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
00:45:56.0719 6108 sffp_sd - ok
00:45:56.0729 6108 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
00:45:56.0739 6108 sfloppy - ok
00:45:56.0759 6108 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
00:45:56.0779 6108 SharedAccess - ok
00:45:56.0819 6108 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
00:45:56.0829 6108 ShellHWDetection - ok
00:45:56.0849 6108 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
00:45:56.0859 6108 SiSRaid2 - ok
00:45:56.0879 6108 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
00:45:56.0879 6108 SiSRaid4 - ok
00:45:56.0949 6108 SkypeUpdate (17eab7852ff9f15fbaab4e95efc0b812) C:\Program Files (x86)\Skype\Updater\Updater.exe
00:45:57.0009 6108 SkypeUpdate - ok
00:45:57.0019 6108 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
00:45:57.0029 6108 Smb - ok
00:45:57.0179 6108 SmoothPingProxy (e1b01a2150cf5e2cd5bed9a6478bf158) C:\Program Files (x86)\Smoothping Elite\SmoothPingProxy.exe
00:45:57.0189 6108 SmoothPingProxy - ok
00:45:57.0289 6108 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
00:45:57.0299 6108 SNMPTRAP - ok
00:45:57.0339 6108 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
00:45:57.0339 6108 spldr - ok
00:45:57.0389 6108 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
00:45:57.0409 6108 Spooler - ok
00:45:57.0519 6108 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
00:45:57.0559 6108 sppsvc - ok
00:45:57.0629 6108 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
00:45:57.0639 6108 sppuinotify - ok
00:45:57.0689 6108 sptd (d519ad2de7968cd2b47fea807c5b29b2) C:\Windows\System32\Drivers\sptd.sys
00:45:57.0689 6108 Suspicious file (NoAccess): C:\Windows\System32\Drivers\sptd.sys. md5: d519ad2de7968cd2b47fea807c5b29b2
00:45:57.0699 6108 sptd ( LockedFile.Multi.Generic ) - warning
00:45:57.0699 6108 sptd - detected LockedFile.Multi.Generic (1)
00:45:57.0879 6108 SQLAgent$SQLEXPRESS (45e65fb17a4cd5facbd3ca16c8334c82) c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE
00:45:57.0889 6108 SQLAgent$SQLEXPRESS - ok
00:45:57.0919 6108 SQLBrowser (10d936dced9eacd1a1b3fcdda6d7a4eb) c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
00:45:57.0939 6108 SQLBrowser - ok
00:45:58.0009 6108 SQLWriter (f92e5f93be572b512da3c016b675ede0) c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
00:45:58.0019 6108 SQLWriter - ok
00:45:58.0099 6108 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
00:45:58.0109 6108 srv - ok
00:45:58.0149 6108 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
00:45:58.0159 6108 srv2 - ok
00:45:58.0229 6108 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
00:45:58.0239 6108 srvnet - ok
00:45:58.0279 6108 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
00:45:58.0289 6108 SSDPSRV - ok
00:45:58.0299 6108 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
00:45:58.0309 6108 SstpSvc - ok
00:45:58.0389 6108 Steam Client Service - ok
00:45:58.0419 6108 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
00:45:58.0429 6108 stexstor - ok
00:45:58.0499 6108 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
00:45:58.0509 6108 stisvc - ok
00:45:58.0529 6108 storflt (7785dc213270d2fc066538daf94087e7) C:\Windows\system32\drivers\vmstorfl.sys
00:45:58.0529 6108 storflt - ok
00:45:58.0589 6108 storvsc (d34e4943d5ac096c8edeebfd80d76e23) C:\Windows\system32\drivers\storvsc.sys
00:45:58.0599 6108 storvsc - ok
00:45:58.0619 6108 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
00:45:58.0619 6108 swenum - ok
00:45:58.0759 6108 SwitchBoard (f577910a133a592234ebaad3f3afa258) C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
00:45:58.0779 6108 SwitchBoard - ok
00:45:58.0829 6108 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
00:45:58.0839 6108 swprv - ok
00:45:58.0839 6108 Synth3dVsc - ok
00:45:58.0919 6108 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
00:45:58.0949 6108 SysMain - ok
00:45:59.0159 6108 t3 (6b153e518dbe6ef59191152e1ecf7ed4) C:\Windows\system32\drivers\t3.sys
00:45:59.0169 6108 t3 - ok
00:45:59.0219 6108 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
00:45:59.0219 6108 TabletInputService - ok
00:45:59.0249 6108 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
00:45:59.0259 6108 TapiSrv - ok
00:45:59.0269 6108 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
00:45:59.0279 6108 TBS - ok
00:45:59.0349 6108 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
00:45:59.0409 6108 Tcpip - ok
00:45:59.0709 6108 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
00:45:59.0719 6108 TCPIP6 - ok
00:45:59.0799 6108 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
00:45:59.0809 6108 tcpipreg - ok
00:45:59.0859 6108 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
00:45:59.0869 6108 TDPIPE - ok
00:45:59.0899 6108 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
00:45:59.0909 6108 TDTCP - ok
00:45:59.0979 6108 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
00:45:59.0989 6108 tdx - ok
00:46:00.0029 6108 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
00:46:00.0039 6108 TermDD - ok
00:46:00.0069 6108 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
00:46:00.0079 6108 TermService - ok
00:46:00.0109 6108 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
00:46:00.0109 6108 Themes - ok
00:46:00.0139 6108 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
00:46:00.0139 6108 THREADORDER - ok
00:46:00.0229 6108 TOSHIBA Bluetooth Service (8f099be5db17d025e19652851399b9f1) C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
00:46:00.0229 6108 TOSHIBA Bluetooth Service - ok
00:46:00.0289 6108 toshidpt (755e5ca34d6186fc0e1430cd47e6e97c) C:\Windows\system32\drivers\Toshidpt.sys
00:46:00.0289 6108 toshidpt - ok
00:46:00.0339 6108 tosporte (8021f63311797085949fa387f7c83583) C:\Windows\system32\DRIVERS\tosporte.sys
00:46:00.0339 6108 tosporte - ok
00:46:00.0379 6108 tosrfbd (9d33204858e26cf6858bb3602be399d2) C:\Windows\system32\DRIVERS\tosrfbd.sys
00:46:00.0389 6108 tosrfbd - ok
00:46:00.0409 6108 tosrfbnp (90f0b1745abf13f44c2a6ed79f7ce9fb) C:\Windows\system32\Drivers\tosrfbnp.sys
00:46:00.0409 6108 tosrfbnp - ok
00:46:00.0459 6108 Tosrfcom (9e4e65ea51e34647340bd6007467ac54) C:\Windows\system32\Drivers\tosrfcom.sys
00:46:00.0469 6108 Tosrfcom - ok
00:46:00.0479 6108 Tosrfhid (7d2467d3eb9baa4b69ae4a28c83de57a) C:\Windows\system32\DRIVERS\Tosrfhid.sys
00:46:00.0489 6108 Tosrfhid - ok
00:46:00.0509 6108 tosrfnds (b6fdc3c76ffe9c5171eea9c37ea367c2) C:\Windows\system32\DRIVERS\tosrfnds.sys
00:46:00.0519 6108 tosrfnds - ok
00:46:00.0539 6108 TosRfSnd (7052b10e54b48af12bd5606596a8e039) C:\Windows\system32\drivers\tosrfsnd.sys
00:46:00.0549 6108 TosRfSnd - ok
00:46:00.0589 6108 Tosrfusb (c0837acd637a55cd789179e123212b94) C:\Windows\system32\DRIVERS\tosrfusb.sys
00:46:00.0589 6108 Tosrfusb - ok
00:46:00.0609 6108 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
00:46:00.0619 6108 TrkWks - ok
00:46:00.0679 6108 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
00:46:00.0689 6108 TrustedInstaller - ok
00:46:00.0729 6108 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
00:46:00.0739 6108 tssecsrv - ok
00:46:00.0779 6108 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
00:46:00.0789 6108 TsUsbFlt - ok
00:46:00.0789 6108 tsusbhub - ok
00:46:00.0829 6108 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
00:46:00.0839 6108 tunnel - ok
00:46:00.0869 6108 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
00:46:00.0879 6108 uagp35 - ok
00:46:00.0899 6108 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
00:46:00.0909 6108 udfs - ok
00:46:00.0939 6108 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
00:46:00.0949 6108 UI0Detect - ok
00:46:00.0999 6108 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
00:46:01.0009 6108 uliagpkx - ok
00:46:01.0029 6108 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
00:46:01.0039 6108 umbus - ok
00:46:01.0039 6108 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
00:46:01.0049 6108 UmPass - ok
00:46:01.0119 6108 UmRdpService (a293dcd756d04d8492a750d03b9a297c) C:\Windows\System32\umrdp.dll
00:46:01.0129 6108 UmRdpService - ok
00:46:01.0149 6108 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
00:46:01.0159 6108 upnphost - ok
00:46:01.0209 6108 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys
00:46:01.0219 6108 usbaudio - ok
00:46:01.0259 6108 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
00:46:01.0269 6108 usbccgp - ok
00:46:01.0279 6108 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
00:46:01.0289 6108 usbcir - ok
00:46:01.0309 6108 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
00:46:01.0319 6108 usbehci - ok
00:46:01.0359 6108 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
00:46:01.0369 6108 usbhub - ok
00:46:01.0389 6108 usbohci (58e546bbaf87664fc57e0f6081e4f609) C:\Windows\system32\DRIVERS\usbohci.sys
00:46:01.0389 6108 usbohci - ok
00:46:01.0409 6108 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
00:46:01.0419 6108 usbprint - ok
00:46:01.0449 6108 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
00:46:01.0459 6108 usbscan - ok
00:46:01.0479 6108 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
00:46:01.0489 6108 USBSTOR - ok
00:46:01.0529 6108 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\DRIVERS\usbuhci.sys
00:46:01.0529 6108 usbuhci - ok
00:46:01.0629 6108 usb_rndisx (70d05ee263568a742d14e1876df80532) C:\Windows\system32\DRIVERS\usb8023x.sys
00:46:01.0629 6108 usb_rndisx - ok
00:46:01.0649 6108 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
00:46:01.0659 6108 UxSms - ok
00:46:01.0699 6108 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
00:46:01.0699 6108 VaultSvc - ok
00:46:01.0719 6108 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
00:46:01.0729 6108 vdrvroot - ok
00:46:01.0769 6108 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
00:46:01.0789 6108 vds - ok
00:46:01.0799 6108 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
00:46:01.0799 6108 vga - ok
00:46:01.0839 6108 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
00:46:01.0849 6108 VgaSave - ok
00:46:01.0849 6108 VGPU - ok
00:46:01.0879 6108 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
00:46:01.0889 6108 vhdmp - ok
00:46:01.0939 6108 vhidmini (b5188735fab3dee87b119483d96c6d61) C:\Windows\system32\DRIVERS\vjoy.sys
00:46:01.0949 6108 vhidmini - ok
00:46:01.0959 6108 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
00:46:01.0969 6108 viaide - ok
00:46:01.0989 6108 vmbus (86ea3e79ae350fea5331a1303054005f) C:\Windows\system32\drivers\vmbus.sys
00:46:01.0989 6108 vmbus - ok
00:46:02.0009 6108 VMBusHID (7de90b48f210d29649380545db45a187) C:\Windows\system32\drivers\VMBusHID.sys
00:46:02.0019 6108 VMBusHID - ok
00:46:02.0029 6108 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
00:46:02.0039 6108 volmgr - ok
00:46:02.0089 6108 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
00:46:02.0099 6108 volmgrx - ok
00:46:02.0119 6108 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
00:46:02.0129 6108 volsnap - ok
00:46:02.0159 6108 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
00:46:02.0169 6108 vsmraid - ok
00:46:02.0329 6108 VSPerfDrv100 (ca64a8838b4674d14bdf88aba2f253ea) C:\Program Files (x86)\Microsoft Visual Studio 10.0\Team Tools\Performance Tools\x64\VSPerfDrv100.sys
00:46:02.0339 6108 VSPerfDrv100 - ok
00:46:02.0409 6108 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
00:46:02.0419 6108 VSS - ok
00:46:02.0519 6108 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
00:46:02.0529 6108 vwifibus - ok
00:46:02.0559 6108 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
00:46:02.0569 6108 W32Time - ok
00:46:02.0669 6108 W3SVC (b32009db1972e7f2c227499289c4384a) C:\Windows\system32\inetsrv\iisw3adm.dll
00:46:02.0679 6108 W3SVC - ok
00:46:02.0699 6108 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
00:46:02.0709 6108 WacomPen - ok
00:46:02.0749 6108 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
00:46:02.0759 6108 WANARP - ok
00:46:02.0769 6108 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
00:46:02.0769 6108 Wanarpv6 - ok
00:46:02.0789 6108 WAS (b32009db1972e7f2c227499289c4384a) C:\Windows\system32\inetsrv\iisw3adm.dll
00:46:02.0789 6108 WAS - ok
00:46:02.0849 6108 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
00:46:02.0879 6108 wbengine - ok
00:46:02.0929 6108 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
00:46:02.0939 6108 WbioSrvc - ok
00:46:02.0969 6108 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
00:46:02.0979 6108 wcncsvc - ok
00:46:02.0999 6108 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
00:46:03.0009 6108 WcsPlugInService - ok
00:46:03.0029 6108 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
00:46:03.0029 6108 Wd - ok
00:46:03.0059 6108 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
00:46:03.0079 6108 Wdf01000 - ok
00:46:03.0099 6108 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
00:46:03.0099 6108 WdiServiceHost - ok
00:46:03.0129 6108 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
00:46:03.0129 6108 WdiSystemHost - ok
00:46:03.0169 6108 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
00:46:03.0179 6108 WebClient - ok
00:46:03.0189 6108 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
00:46:03.0209 6108 Wecsvc - ok
00:46:03.0219 6108 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
00:46:03.0229 6108 wercplsupport - ok
00:46:03.0249 6108 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
00:46:03.0259 6108 WerSvc - ok
00:46:03.0289 6108 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
00:46:03.0299 6108 WfpLwf - ok
00:46:03.0309 6108 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
00:46:03.0319 6108 WIMMount - ok
00:46:03.0349 6108 WinDefend - ok
00:46:03.0359 6108 WinHttpAutoProxySvc - ok
00:46:03.0439 6108 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
00:46:03.0449 6108 Winmgmt - ok
00:46:03.0529 6108 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
00:46:03.0569 6108 WinRM - ok
00:46:03.0669 6108 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
00:46:03.0679 6108 Wlansvc - ok
00:46:03.0779 6108 wlidsvc (98f138897ef4246381d197cb81846d62) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
00:46:03.0819 6108 wlidsvc - ok
00:46:03.0899 6108 WmBEnum (680a7846370000d20d7e74917d5b7936) C:\Windows\system32\drivers\WmBEnum.sys
00:46:03.0909 6108 WmBEnum - ok
00:46:03.0939 6108 WmFilter (14c35ba8189c6f65d839163aa285e954) C:\Windows\system32\drivers\WmFilter.sys
00:46:03.0949 6108 WmFilter - ok
00:46:03.0989 6108 WmHidLo (ac4331af118a720f13c9c5cabbfe27bd) C:\Windows\system32\drivers\WmHidLo.sys
00:46:03.0999 6108 WmHidLo - ok
00:46:04.0039 6108 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
00:46:04.0049 6108 WmiAcpi - ok
00:46:04.0079 6108 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
00:46:04.0089 6108 wmiApSrv - ok
00:46:04.0119 6108 WMPNetworkSvc - ok
00:46:04.0149 6108 WmVirHid (8488dd91a3ee54a8e29f02ad7bb8201e) C:\Windows\system32\drivers\WmVirHid.sys
00:46:04.0159 6108 WmVirHid - ok
00:46:04.0199 6108 WmXlCore (14802b3a30aa849c97cb968ccc813bf3) C:\Windows\system32\drivers\WmXlCore.sys
00:46:04.0199 6108 WmXlCore - ok
00:46:04.0229 6108 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
00:46:04.0239 6108 WPCSvc - ok
00:46:04.0279 6108 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
00:46:04.0289 6108 WPDBusEnum - ok
00:46:04.0319 6108 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
00:46:04.0329 6108 ws2ifsl - ok
00:46:04.0369 6108 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\system32\wscsvc.dll
00:46:04.0379 6108 wscsvc - ok
00:46:04.0379 6108 WSearch - ok
00:46:04.0469 6108 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
00:46:04.0509 6108 wuauserv - ok
00:46:04.0619 6108 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
00:46:04.0629 6108 WudfPf - ok
00:46:04.0679 6108 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
00:46:04.0689 6108 WUDFRd - ok
00:46:04.0729 6108 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
00:46:04.0739 6108 wudfsvc - ok
00:46:04.0759 6108 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
00:46:04.0769 6108 WwanSvc - ok
00:46:04.0829 6108 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
00:46:04.0989 6108 \Device\Harddisk0\DR0 - ok
00:46:04.0999 6108 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR1
00:46:05.0139 6108 \Device\Harddisk1\DR1 - ok
00:46:05.0139 6108 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk2\DR2
00:46:05.0239 6108 \Device\Harddisk2\DR2 - ok
00:46:05.0269 6108 Boot (0x1200) (94188866504f59b7647049032d6f8737) \Device\Harddisk0\DR0\Partition0
00:46:05.0269 6108 \Device\Harddisk0\DR0\Partition0 - ok
00:46:05.0279 6108 Boot (0x1200) (770f7ca8c1a28ab3571063c3f7f3c991) \Device\Harddisk0\DR0\Partition1
00:46:05.0279 6108 \Device\Harddisk0\DR0\Partition1 - ok
00:46:05.0279 6108 Boot (0x1200) (abcb22e9cee40535f111e93aed6966cd) \Device\Harddisk1\DR1\Partition0
00:46:05.0279 6108 \Device\Harddisk1\DR1\Partition0 - ok
00:46:05.0279 6108 Boot (0x1200) (f32ee0eefec714178c8cb32aa1280ac4) \Device\Harddisk2\DR2\Partition0
00:46:05.0279 6108 \Device\Harddisk2\DR2\Partition0 - ok
00:46:05.0279 6108 Boot (0x1200) (bc32613f2df2a10d1a8c391b1d3f63eb) \Device\Harddisk2\DR2\Partition1
00:46:05.0289 6108 \Device\Harddisk2\DR2\Partition1 - ok
00:46:05.0289 6108 ============================================================
00:46:05.0289 6108 Scan finished
00:46:05.0289 6108 ============================================================
00:46:05.0359 7108 Detected object count: 1
00:46:05.0359 7108 Actual detected object count: 1
00:55:34.0074 7108 sptd ( LockedFile.Multi.Generic ) - skipped by user
00:55:34.0074 7108 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
00:55:58.0034 7664 Deinitialize success

#6 Mike J P

Mike J P
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Australia
  • Local time:10:13 AM

Posted 18 June 2012 - 01:24 PM

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-06-19 01:01:00
-----------------------------
01:01:00.837 OS Version: Windows x64 6.1.7601 Service Pack 1
01:01:00.837 Number of processors: 4 586 0xF0B
01:01:00.837 ComputerName: MIKE-PC UserName: Mike
01:01:03.378 Initialize success
01:02:36.895 AVAST engine defs: 12061801
01:02:51.985 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-4
01:02:51.985 Disk 0 Vendor: ST31000524AS JC45 Size: 953869MB BusType: 3
01:02:51.985 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP2T0L0-7
01:02:51.985 Disk 1 Vendor: WDC_WD1600AAJS-00L7A0 01.03E01 Size: 152627MB BusType: 3
01:02:51.985 Disk 2 \Device\Harddisk2\DR2 -> \Device\Ide\IdeDeviceP3T0L0-a
01:02:51.995 Disk 2 Vendor: ST31000524AS JC45 Size: 953869MB BusType: 3
01:02:52.005 Disk 0 MBR read successfully
01:02:52.005 Disk 0 MBR scan
01:02:52.005 Disk 0 Windows 7 default MBR code
01:02:52.015 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 94 MB offset 16065
01:02:52.025 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 953767 MB offset 208845
01:02:52.075 Disk 0 scanning C:\Windows\system32\drivers
01:03:05.545 Service scanning
01:03:17.145 Service IOMap \\??\\C:\\Windows\\system32\\drivers\\IOMap64.sys **LOCKED** 53
01:03:36.905 Modules scanning
01:03:36.905 Disk 0 trace - called modules:
01:03:36.925 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys >>UNKNOWN [0xfffffa80051d22c0]<<sptd.sys ataport.SYS intelide.sys PCIIDEX.SYS hal.dll atapi.sys
01:03:36.925 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8005fd7060]
01:03:36.935 3 CLASSPNP.SYS[fffff8800235843f] -> nt!IofCallDriver -> [0xfffffa8005da5580]
01:03:36.935 5 ACPI.sys[fffff880011a37a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-4[0xfffffa8005d39060]
01:03:36.935 \Driver\atapi[0xfffffa8005220720] -> IRP_MJ_CREATE -> 0xfffffa80051d22c0
01:03:39.405 AVAST engine scan C:\Windows
01:03:46.365 AVAST engine scan C:\Windows\system32
01:11:46.935 AVAST engine scan C:\Windows\system32\drivers
01:12:06.615 AVAST engine scan C:\Users\Mike
01:25:46.147 AVAST engine scan C:\ProgramData
02:01:43.025 File: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games\Microsoft Flight Simulator X\FSX 3rd Party Addons\CLS\MD82\MD80troubleshooter.exe **INFECTED** Win32:Malware-gen
02:02:50.186 Scan finished successfully
02:20:20.159 Disk 0 MBR has been saved successfully to "C:\Users\Mike\Desktop\MBR.dat"
02:20:20.269 The log file has been saved successfully to "C:\Users\Mike\Desktop\aswMBR.txt"

#7 Mike J P

Mike J P
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Australia
  • Local time:10:13 AM

Posted 18 June 2012 - 11:11 PM

C:\Program Files\Bohemia Interactive\Take On Helicopters\rld.dll a variant of Win32/Packed.VMProtect.AAH trojan cleaned by deleting - quarantined
C:\Program Files (x86)\Codemasters\DiRT 3\paul.dll a variant of Win32/Packed.VMProtect.AAA trojan cleaned by deleting - quarantined
C:\Program Files (x86)\CureROM\789B508E.exe probably a variant of Win32/Agent.LTYFKIZ trojan cleaned by deleting - quarantined
C:\Program Files (x86)\Uniblue\RegistryBooster\Launcher.exe a variant of Win32/RegistryBooster application cleaned by deleting - quarantined
C:\Program Files (x86)\Uniblue\RegistryBooster\rbmonitor.exe Win32/RegistryBooster application cleaned by deleting - quarantined
C:\Program Files (x86)\Uniblue\RegistryBooster\rbnotifier.exe Win32/RegistryBooster application cleaned by deleting - quarantined
C:\Program Files (x86)\Uniblue\RegistryBooster\rb_move_serial.exe Win32/RegistryBooster application cleaned by deleting - quarantined
C:\Program Files (x86)\Uniblue\RegistryBooster\rb_ubm.exe Win32/RegistryBooster application cleaned by deleting - quarantined
C:\Program Files (x86)\Uniblue\RegistryBooster\registrybooster.exe Win32/RegistryBooster application cleaned by deleting - quarantined
C:\Program Files (x86)\Uniblue\SpeedUpMyPC\spmonitor.exe Win32/SpeedUpMyPC application cleaned by deleting - quarantined
C:\Program Files (x86)\Uniblue\SpeedUpMyPC\spnotifier.exe Win32/SpeedUpMyPC application cleaned by deleting - quarantined
C:\Program Files (x86)\Uniblue\SpeedUpMyPC\sp_move_serial.exe Win32/SpeedUpMyPC application cleaned by deleting - quarantined
C:\Program Files (x86)\Uniblue\SpeedUpMyPC\sp_ubm.exe Win32/SpeedUpMyPC application cleaned by deleting - quarantined
C:\Program Files (x86)\Uniblue\SpeedUpMyPC\sump.exe Win32/SpeedUpMyPC application cleaned by deleting - quarantined
D:\Downloads\Game Images & patches\Take On Helicopters\1.1 crack\rld.dll a variant of Win32/Packed.VMProtect.AAH trojan cleaned by deleting - quarantined
D:\Downloads\Progs & Utilities\Advanced PC Tweaker 4.2\AdvancedPCTweaker.exe probably a variant of Win32/Agent.BRVIMOV trojan cleaned by deleting - quarantined
D:\Downloads\Progs & Utilities\Uniblue\powersuite.exe multiple threats cleaned by deleting - quarantined
D:\Downloads\Progs & Utilities\Uniblue\registrybooster.exe Win32/RegistryBooster application deleted - quarantined
D:\Downloads\Progs & Utilities\Uniblue\speedupmypc.exe Win32/SpeedUpMyPC application cleaned by deleting - quarantined

#8 Mike J P

Mike J P
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Australia
  • Local time:10:13 AM

Posted 18 June 2012 - 11:19 PM

Here are the three scan reports. Cleaned multiple objects and the windows\system64\* still present.

#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:13 PM

Posted 19 June 2012 - 12:29 AM

I was looking for consrv.dll and not system64 folder.You can manually delete it now

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log


Download

MiniToolBox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

#10 Mike J P

Mike J P
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Australia
  • Local time:10:13 AM

Posted 19 June 2012 - 11:07 AM

So far mbam has detected one infection but keeps not responding. Mbam's using 66% of my 6gb ram and the all 4 cpu threads are fluctuating considerably and using more cpu than a new release 3d game. It's 6 hours into the scan and the UI shows it's been scanning the same pdf file for over an hour. Im assuming it's actually still scanning but the UI hasn't caught up with itself. I'm reluctant to close it and start again.

Could the one infection it's detected be trying to kill mbams process or crash it to escape ? :unsure:

#11 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:13 PM

Posted 19 June 2012 - 12:55 PM

Try to run it in safemode

#12 Mike J P

Mike J P
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Australia
  • Local time:10:13 AM

Posted 20 June 2012 - 08:57 AM

I noticed by using Process Manager it appeared to be Kaspersky Internet Security 2012 conflicting with Mbam. I paused Kaspersky momentarily and Mbam immediatly resumed scanning properly and completed within 10 seconds. I then unpaused kaspersky, let Mbam clean the threats it detected then began another full scan with Mbam. Aftwards I rebooted and scanned again with Mbam and kaspersky which don't detect anymore infections and my system seems to be clean again. I was also able to delete the folder windows\system64.

Here's the log from running MiniToolBox

MiniToolBox by Farbar Version: 09-06-2012
Ran by Mike (administrator) on 20-06-2012 at 20:15:16
Microsoft Windows 7 Ultimate Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1 localhost

========================= IP Configuration: ================================

Atheros L1 Gigabit Ethernet 10/100/1000Base-T Controller = Local Area Connection 4 (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled taskoffload=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Mike-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : home

Ethernet adapter Local Area Connection 4:

Connection-specific DNS Suffix . : home
Description . . . . . . . . . . . : Atheros L1 Gigabit Ethernet 10/100/1000Base-T Controller
Physical Address. . . . . . . . . : 00-1B-FC-96-FD-80
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IPv4 Address. . . . . . . . . . . : 192.168.1.2(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Wednesday, 20 June 2012 12:35:06 AM
Lease Expires . . . . . . . . . . : Thursday, 21 June 2012 12:35:07 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DNS Servers . . . . . . . . . . . : 192.231.203.132
192.231.203.3
NetBIOS over Tcpip. . . . . . . . : Enabled
Server: resolv.internode.on.net
Address: 192.231.203.132

Name: google.com
Addresses: 2404:6800:4006:801::1002
74.125.237.34
74.125.237.35
74.125.237.36
74.125.237.37
74.125.237.38
74.125.237.39
74.125.237.40
74.125.237.41
74.125.237.46
74.125.237.32
74.125.237.33


Pinging google.com [74.125.237.105] with 32 bytes of data:
Reply from 74.125.237.105: bytes=32 time=81ms TTL=54
Reply from 74.125.237.105: bytes=32 time=78ms TTL=54

Ping statistics for 74.125.237.105:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 78ms, Maximum = 81ms, Average = 79ms
Server: resolv.internode.on.net
Address: 192.231.203.132

Name: yahoo.com
Addresses: 209.191.122.70
72.30.38.140
98.139.183.24


Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=299ms TTL=52
Reply from 72.30.38.140: bytes=32 time=322ms TTL=52

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 299ms, Maximum = 322ms, Average = 310ms
Server: resolv.internode.on.net
Address: 192.231.203.132

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
14...00 1b fc 96 fd 80 ......Atheros L1 Gigabit Ethernet 10/100/1000Base-T Controller
1...........................Software Loopback Interface 1
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.2 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.2 276
192.168.1.2 255.255.255.255 On-link 192.168.1.2 276
192.168.1.255 255.255.255.255 On-link 192.168.1.2 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.2 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.2 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
1 306 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
ATTENTION: The LibraryPath should be %SystemRoot%\system32\NLAapi.dll

Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528] (Microsoft Corporation)
Catalog5 09 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\EasyRedirect.dll [360264] (EasyTech)
Catalog9 02 C:\Windows\SysWOW64\EasyRedirect.dll [360264] (EasyTech)
Catalog9 03 C:\Windows\SysWOW64\EasyRedirect.dll [360264] (EasyTech)
Catalog9 04 C:\Windows\SysWOW64\EasyRedirect.dll [360264] (EasyTech)
Catalog9 05 C:\Windows\SysWOW64\SmoothPingProxy.dll [311296] (SmoothPing)
Catalog9 06 C:\Windows\SysWOW64\SmoothPingProxy.dll [311296] (SmoothPing)
Catalog9 07 C:\Windows\SysWOW64\SmoothPingProxy.dll [311296] (SmoothPing)
Catalog9 08 C:\Windows\SysWOW64\SmoothPingProxy.dll [311296] (SmoothPing)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 12 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 13 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 14 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 15 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 16 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 17 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 18 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 19 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 20 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 21 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 22 C:\Windows\SysWOW64\SmoothPingProxy.dll [311296] (SmoothPing)
Catalog9 23 C:\Windows\SysWOW64\EasyRedirect.dll [360264] (EasyTech)
x64-Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304] (Microsoft Corporation)
x64-Catalog5 09 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\EasyRedirect64.dll [500552] (EasyTech)
x64-Catalog9 02 C:\Windows\System32\EasyRedirect64.dll [500552] (EasyTech)
x64-Catalog9 03 C:\Windows\System32\EasyRedirect64.dll [500552] (EasyTech)
x64-Catalog9 04 C:\Windows\System32\EasyRedirect64.dll [500552] (EasyTech)
x64-Catalog9 05 C:\Windows\System32\SmoothPingProxy64.dll [426496] (SmoothPing)
x64-Catalog9 06 C:\Windows\System32\SmoothPingProxy64.dll [426496] (SmoothPing)
x64-Catalog9 07 C:\Windows\System32\SmoothPingProxy64.dll [426496] (SmoothPing)
x64-Catalog9 08 C:\Windows\System32\SmoothPingProxy64.dll [426496] (SmoothPing)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 12 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 13 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 14 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 15 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 16 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 17 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 18 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 19 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 20 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 21 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 22 C:\Windows\System32\SmoothPingProxy64.dll [426496] (SmoothPing)
x64-Catalog9 23 C:\Windows\System32\EasyRedirect64.dll [500552] (EasyTech)

========================= Event log errors: ===============================

Application errors:
==================
Error: (06/20/2012 03:20:30 AM) (Source: Application Hang) (User: )
Description: The program WinRAR.exe version 4.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 36bc

Start Time: 01cd4e507fa9b4bd

Termination Time: 6180

Application Path: C:\Program Files\WinRAR\WinRAR.exe

Report Id: cfdee251-ba43-11e1-b5cd-001bfc96fd80

Error: (06/20/2012 03:20:16 AM) (Source: Application Hang) (User: )
Description: The program WinRAR.exe version 4.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 2dec

Start Time: 01cd4e506830c955

Termination Time: 32370

Application Path: C:\Program Files\WinRAR\WinRAR.exe

Report Id: b7565b91-ba43-11e1-b5cd-001bfc96fd80

Error: (06/20/2012 00:56:39 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1".
Dependent Assembly Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (06/20/2012 00:53:50 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1".
Dependent Assembly Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (06/19/2012 07:16:07 PM) (Source: Application Error) (User: )
Description: Faulting application name: iexplore.exe, version: 9.0.8112.16446, time stamp: 0x4fb57c8f
Faulting module name: Flash32_11_3_300_257.ocx, version: 11.3.300.257, time stamp: 0x4fc82006
Exception code: 0xc0000005
Fault offset: 0x001a5dfb
Faulting process id: 0x16f8
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (06/19/2012 02:55:48 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/19/2012 02:55:46 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/19/2012 02:55:43 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/19/2012 02:50:11 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1".
Dependent Assembly Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (06/19/2012 02:46:49 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1".
Dependent Assembly Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.


System errors:
=============
Error: (06/20/2012 00:37:32 AM) (Source: Service Control Manager) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error:
%%-2140993535

Error: (06/20/2012 00:37:32 AM) (Source: Service Control Manager) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:
%%-2140993535

Error: (06/20/2012 00:37:31 AM) (Source: Service Control Manager) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error:
%%-2140993535

Error: (06/20/2012 00:37:31 AM) (Source: Service Control Manager) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:
%%-2140993535

Error: (06/20/2012 00:37:31 AM) (Source: PNRPSvc) (User: )
Description: 0x80630801

Error: (06/20/2012 00:37:31 AM) (Source: PNRPSvc) (User: )
Description: 0x80630801

Error: (06/20/2012 00:37:21 AM) (Source: Service Control Manager) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error:
%%-2140993535

Error: (06/20/2012 00:37:21 AM) (Source: Service Control Manager) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:
%%-2140993535

Error: (06/20/2012 00:37:21 AM) (Source: PNRPSvc) (User: )
Description: 0x80630801

Error: (06/20/2012 00:36:34 AM) (Source: Service Control Manager) (User: )
Description: The EasyRedirect service terminated unexpectedly. It has done this 1 time(s).


Microsoft Office Sessions:
=========================
Error: (06/20/2012 03:20:30 AM) (Source: Application Hang)(User: )
Description: WinRAR.exe4.0.0.036bc01cd4e507fa9b4bd6180C:\Program Files\WinRAR\WinRAR.execfdee251-ba43-11e1-b5cd-001bfc96fd80

Error: (06/20/2012 03:20:16 AM) (Source: Application Hang)(User: )
Description: WinRAR.exe4.0.0.02dec01cd4e506830c95532370C:\Program Files\WinRAR\WinRAR.exeb7565b91-ba43-11e1-b5cd-001bfc96fd80

Error: (06/20/2012 00:56:39 AM) (Source: SideBySide)(User: )
Description: Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"C:\Program Files (x86)\Autodesk\Composite 2012\python\lib\distutils\command\wininst-8_d.exe

Error: (06/20/2012 00:53:50 AM) (Source: SideBySide)(User: )
Description: Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"C:\Program Files\Autodesk\Composite 2012\python\lib\distutils\command\wininst-8_d.exe

Error: (06/19/2012 07:16:07 PM) (Source: Application Error)(User: )
Description: iexplore.exe9.0.8112.164464fb57c8fFlash32_11_3_300_257.ocx11.3.300.2574fc82006c0000005001a5dfb16f801cd4e056f1e7669C:\Program Files (x86)\Internet Explorer\iexplore.exeC:\Windows\SysWOW64\Macromed\Flash\Flash32_11_3_300_257.ocx29f76ee8-ba00-11e1-bf15-001bfc96fd80

Error: (06/19/2012 02:55:48 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\Users\Mike\Desktop\esetsmartinstaller_enu.exe

Error: (06/19/2012 02:55:46 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe

Error: (06/19/2012 02:55:43 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe

Error: (06/19/2012 02:50:11 PM) (Source: SideBySide)(User: )
Description: Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"C:\Program Files (x86)\Autodesk\Composite 2012\python\lib\distutils\command\wininst-8_d.exe

Error: (06/19/2012 02:46:49 PM) (Source: SideBySide)(User: )
Description: Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"C:\Program Files\Autodesk\Composite 2012\python\lib\distutils\command\wininst-8_d.exe


=========================== Installed Programs ============================

3D Ripper DX v1.8.1
3dsmax ancillary install (Version: 1)
7-Zip 9.21beta
777 'The Modern Airliner Collection'
A380v2 (FSX)
Accu-Feel
Active Sky Evolution (Version: 12.00.0566)
Addictive Pitts (Version: 1.00)
Addit! Pro For Flight Simulator X (Version: 7.3.0004)
Adobe AIR (Version: 2.6.0.19140)
Adobe Community Help (Version: 3.4.980)
Adobe Flash Player 10 ActiveX 64-bit (Version: 10.3.162.28)
Adobe Flash Player 11 ActiveX (Version: 11.3.300.257)
Adobe Photoshop CS5.1 (Version: 12.1)
Adobe Reader X (10.1.3) (Version: 10.1.3)
Aerosoft's - DHC-6 Twin Otter X (Version: 1.10)
Aerosoft's - Discus Glider X (Version: 1.00)
aerosoft's - FlightSim Commander 9 (Version: 9.00)
Aerosoft's - Piper Cheyenne FSX (Version: 4.00)
aerosoft's - USCitiesX - San Francisco (Version: 1.00)
Aerospatiale AS350 for FSX
AI Carriers
Airbus Series 2 - Evolution Full (FSX)
Aircraft Factory F4u Corsair
Airline Pack
Allegorithmic Substance Designer 1.x (Version: 1.1.0 build 5599 (2011-01-13))
Allegorithmic Substance Player 1.x (Version: 1.1.0 build 5599 (2011-01-13))
AlphaSim H-60 Black Hawk for FSX
AlphaSim SH-2 Seasprite for FSX v1.00
Ant.com IE add-on (Version: 2.2.0.73)
Apple Application Support (Version: 2.1.7)
Apple Software Update (Version: 2.1.3.127)
ArchVision Dashboard (Version: 1.0.2.1)
ASIO4ALL (Version: 2.10)
Assassin's Creed Revelations (Version: 1.01)
ASUS nVidia Driver (Version: 1.00.0000)
ASUSUpdate (Version: 7.18.03)
µTorrent (Version: 3.2.0)
Attansic L1 Gigabit Ethernet Driver
Autodesk 3ds Max 2009 32-bit (Version: 11.5.3.330)
Autodesk 3ds Max 2012 32-bit - English (Version: 14.2.0.375)
Autodesk 3ds Max 2012 32-bit - English HF2 (Version: 14.2.0.375)
Autodesk 3ds Max 2012 32-bit - English SP2 (Version: 14.2.0.375)
Autodesk Backburner 2012.0.0 (Version: 2012.0.0)
Autodesk DWF Viewer 7 (Version: 7.0.0)
Autodesk FBX Plug-in 2012.0 - 3ds Max 2012
Autodesk Material Library 2012 (Version: 2.5.0.8)
Autodesk Material Library Base Resolution Image Library 2012 (Version: 2.5.0.8)
Autodesk Material Library Medium Resolution Image Library 2012 (Version: 2.5.0.8)
AVS Audio Editor version 6.1
AVS DVD Copy version 4.1.2
AVS Update Manager 1.0
AVS Video Converter 7
AVS Video Editor 5
AVS Video Recorder 2.4
AVS4YOU Software Navigator 1.4
Bell 222 B FSX SP2 (Version: 1.5)
Blender (remove only)
Bluetooth Stack for Windows by Toshiba (Version: v8.00.03(T) Premium Edition)
BOB Version 1.1
Bulk Image Downloader v4.42.0.0
C337H SKYMASTER HD SERIES FSX (Version: 1.00.00.00)
C90B King Air HD SERIES FSX (Version: 1.00.00.00)
Canon Easy-PhotoPrint EX
Canon Easy-WebPrint EX
Canon MP Navigator EX 3.0
Canon MP270 series MP Drivers
Canon My Printer
Canon Utilities Solution Menu
Carenado's C SKYLANE II RG R182
Carenado Baron 58 FSX (Version: 1.00.00.00)
Carenado C 152 II (Version: 1.00.00.00)
Carenado C U206G Stationair 6 II Full FSX
Carenado C172N FSX (Version: 1.00.00.00)
Carenado C208B Grand Caravan (Version: 1.00.00.00)
Carenado Commander 114 FSX (Version: 1.00.00.00)
Carenado F33A Bonanza (Version: 1.00.00.00)
Carenado Piper Cherokee FSX
CCleaner (Version: 3.19)
Celestia 1.6.1
CH Control Manager Software
Citation X for FSX
Cities XL 2012 (Version: 1.0.0)
CLS A330/A340 FSX (SP2 compatible)
Composite 2012 (Version: 7.0.0)
Composite 2012 64-bit (Version: 7.0.0)
ConcordeX for FSX (Version: 1.0.0.0)
Core Temp 1.0 RC3 (Version: 1.0)
Corel Graphics - Windows Shell Extension (Version: 16.0.0.707)
Corel Graphics - Windows Shell Extension (Version: 16.0.707)
Corel Graphics - Windows Shell Extension 32 Bit (Version: 16.0.707)
CorelDRAW Graphics Suite X6 - Capture (x64) (Version: 16.0)
CorelDRAW Graphics Suite X6 - Common (x64) (Version: 16.0)
CorelDRAW Graphics Suite X6 - Connect (x64) (Version: 16.0)
CorelDRAW Graphics Suite X6 - Custom Data (x64) (Version: 16.0)
CorelDRAW Graphics Suite X6 - Draw (x64) (Version: 16.0)
CorelDRAW Graphics Suite X6 - EN (x64) (Version: 16.0)
CorelDRAW Graphics Suite X6 - Filters (x64) (Version: 16.0)
CorelDRAW Graphics Suite X6 - FontNav (x64) (Version: 16.0)
CorelDRAW Graphics Suite X6 - IPM (Version: 16.0)
CorelDRAW Graphics Suite X6 - PHOTO-PAINT (x64) (Version: 16.0)
CorelDRAW Graphics Suite X6 - Photozoom Plugin (x64) (Version: 16.0)
CorelDRAW Graphics Suite X6 - Redist (x64) (Version: 16.0)
CorelDRAW Graphics Suite X6 - Setup Files (x64) (Version: 16.0)
CorelDRAW Graphics Suite X6 - VBA (x64) (Version: 16.0)
CorelDRAW Graphics Suite X6 - VideoBrowser (x64) (Version: 16.0)
CorelDRAW Graphics Suite X6 - VSTA (x64) (Version: 16.0)
CorelDRAW Graphics Suite X6 - Writing Tools (x64) (Version: 16.0)
CorelDRAW Graphics Suite X6 (64-Bit) (Version: 16.0.0.707)
CorelDRAW Graphics Suite X6 (x64) (Version: 16.0)
Craft Director Studio
Creative ALchemy (Version: 1.41)
Creative Audio Control Panel (Version: 3.00)
Creative Diagnostics (Version: 5.11)
Creative Media Toolbox 6 (Shared Components) (Version: 2.80.12)
Creative Media Toolbox 6 (Version: 6.02)
Creative MediaSource 5 (Version: 5.26)
Creative Software AutoUpdate (Version: 1.40)
Creative Sound Blaster Properties x64 Edition
Creative WaveStudio 7 (Version: 7.12)
Crystal Reports for Visual Studio (Version: 12.51.0.240)
CureROM Pro 2.0.3.3 (Version: Pro 2.0.3.3)
DAEMON Tools Pro (Version: 4.41.0315.0262)
Debugging Tools for Windows (x64) (Version: 6.12.2.633)
Definition Update for Microsoft Office 2010 (KB982726) 64-Bit Edition
DelinvFile - 4.04 (Version: 4.04)
DiRT 3 (Version: 1.0.0000.130)
DiRT 3 (Version: 1.0.0001.130)
DodoSim 206 FSX (Version: 1.0.0)
Dotfuscator Software Services - Community Edition (Version: 5.0.2500.0)
DVD Shrink 2011
E-Jets Series (FSX)
EASEUS Partition Master 8.0.1 Home Edition
Easy-Hide-IP 4.1.1.0
Easy-Hide-IP 4.1.4.1
EASYnat for 3ds Max 2012 64-bit
eReg (Version: 1.20.138.34)
ESET Online Scanner v3
F1 2011 (Version: 1.0.0000.129)
F1 2011 (Version: 1.0.0001.129)
F1 2011 (Version: 1.0.0002.129)
Farming Simulator 2011 (Version: 1.0)
FBX Plugin 2006.08 for Max 9.0
FBX Plugin 2009.0 for Max 2009 64
FL Studio 10
Flight 1 Software Cessna 441fsx - Conquest II 2.3
Flight Simulator X Service Pack 1
Flightbeam - San Francisco International FSX 1.0.1 +SP1
FreeTrack v2.2.0.279
FS Design Studio V3 (Version: 3.00.0000)
FS Design Studio V3.5.1 (Version: 3.50.1000)
FS Recorder 2.1 beta 3 for FSX (Version: 2.1.0.0)
FSFDT FSCopilot
FSFDT FSInn
FSX_Screensaver
FXhome PhotoKey 4 Pro (remove only)
GetDiz (Version: 4.6)
gmax (Version: 4.4.0.125)
GrabIt 1.7.2 Beta 6 (build 1008)
Grand Theft Auto IV (Version: 1.0.0013.131)
Grand Theft Auto IV (Version: 1.00.0000)
Grand Theft Auto: Episodes from Liberty City (Version: 1.0.0003.135)
Grand Theft Auto: Episodes From Liberty City (Version: 1.1.0.0)
Ground Environment X North America
Host OpenAL (Version: 1.00)
ICA (Version: 14.0.0.332)
ICARUSGOLD PITTS S-2B
IL-2 Sturmovik 1946 (Version: 1.00.0000)
IL Download Manager
ImgBurn (Version: 2.5.7.0)
IPM_PSP_COM (Version: 14.0.0.332)
IRIS Platinum Series F-15E Mudhen Driver Version 1.0 (Version: 1.0)
Java Auto Updater (Version: 2.1.6.0)
Java™ 7 Update 5 (Version: 7.0.50)
JavaFX 2.1.1 (Version: 2.1.1)
Just Flight - Air Hauler (Version: 1.00.0000)
Just Flight Constellation Professional (Version: 1.00.000)
JustFlight F-117 Nighthawk for FS9 and FSX
Kaspersky Internet Security 2012 (Version: 12.0.0.374)
KLAX v1.1.2 for FSX (Version: 1.1.2)
Lancaster
Logitech Gaming Software 5.10 (Version: 5.10.127)
Logitech SetPoint 6.22 (Version: 6.22.24)
Lotus Simulations L-39
Mafia II
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
MDLView (Version: 1.0.11)
MediaInfo 0.7.57 (Version: 0.7.57)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft .NET Framework 4 Multi-Targeting Pack (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft ASP.NET MVC 2 - Visual Studio 2010 Tools (Version: 2.0.50217.0)
Microsoft ASP.NET MVC 2 (Version: 2.0.50217.0)
Microsoft Flight (Version: 1.0.0000.129)
Microsoft Flight Simulator X (Version: 10.0.60905)
Microsoft Flight Simulator X: Acceleration (Version: 10.0.61637.0)
Microsoft Flight Simulator X: Acceleration SDK (Version: 10.0.61637.0)
Microsoft Games for Windows - LIVE Redistributable (Version: 3.5.92.0)
Microsoft Games for Windows Marketplace (Version: 3.5.50.0)
Microsoft Help Viewer 1.1 (Version: 1.1.40219)
Microsoft IntelliType Pro 8.1 (Version: 8.15.406.0)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 32-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 32-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Outlook Hotmail Connector 64-bit (Version: 14.0.6106.5001)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft Silverlight 3 SDK (Version: 3.0.40818.0)
Microsoft Silverlight 4 SDK (Version: 4.0.50826.0)
Microsoft SQL Server 2008 (64-bit)
Microsoft SQL Server 2008 Browser (Version: 10.3.5500.0)
Microsoft SQL Server 2008 Common Files (Version: 10.3.5500.0)
Microsoft SQL Server 2008 Database Engine Services (Version: 10.3.5500.0)
Microsoft SQL Server 2008 Database Engine Shared (Version: 10.3.5500.0)
Microsoft SQL Server 2008 Native Client (Version: 10.3.5500.0)
Microsoft SQL Server 2008 R2 Data-Tier Application Framework (Version: 10.50.1750.9)
Microsoft SQL Server 2008 R2 Data-Tier Application Project (Version: 10.50.1750.9)
Microsoft SQL Server 2008 R2 Management Objects (Version: 10.50.1750.9)
Microsoft SQL Server 2008 R2 Management Objects (x64) (Version: 10.50.1750.9)
Microsoft SQL Server 2008 R2 Transact-SQL Language Service (Version: 10.50.1750.9)
Microsoft SQL Server 2008 RsFx Driver (Version: 10.3.5500.0)
Microsoft SQL Server 2008 Setup Support Files (Version: 10.3.5500.0)
Microsoft SQL Server Compact 3.5 SP2 ENU (Version: 3.5.8080.0)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (Version: 3.5.8080.0)
Microsoft SQL Server Database Publishing Wizard 1.4 (Version: 10.1.2512.8)
Microsoft SQL Server System CLR Types (Version: 10.50.1750.9)
Microsoft SQL Server System CLR Types (x64) (Version: 10.50.1750.9)
Microsoft SQL Server VSS Writer (Version: 10.3.5500.0)
Microsoft Sync Framework Runtime v1.0 SP1 (x64) (Version: 1.0.3010.0)
Microsoft Sync Framework SDK v1.0 SP1 (Version: 1.0.3010.0)
Microsoft Sync Framework Services v1.0 SP1 (x64) (Version: 1.0.3010.0)
Microsoft Sync Services for ADO.NET v2.0 SP1 (x64) (Version: 2.0.3010.0)
Microsoft Team Foundation Server 2010 Object Model - ENU (Version: 10.0.40219)
Microsoft Visual Basic for Applications 7.1 (x64) (Version: 7.1.00.00)
Microsoft Visual Basic for Applications 7.1 (x64) English (Version: 7.1.0.0)
Microsoft Visual C++ Compilers 2010 Standard - enu - x64 (Version: 10.0.40219)
Microsoft Visual C++ Compilers 2010 Standard - enu - x86 (Version: 10.0.40219)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.58298)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Designtime - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010 x64 Runtime - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Runtime - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual F# 2.0 Runtime (Version: 10.0.40219)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (Version: 10.0.40219)
Microsoft Visual Studio 2010 IntelliTrace Collection (x64) (Version: 10.0.40219)
Microsoft Visual Studio 2010 Office Developer Tools (x64) (Version: 10.0.40219)
Microsoft Visual Studio 2010 Performance Collection Tools SP1 - ENU (Version: 10.0.40219)
Microsoft Visual Studio 2010 Service Pack 1 (Version: 10.0.40219)
Microsoft Visual Studio 2010 SharePoint Developer Tools (Version: 10.0.40219)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.31007)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.31010)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.31124)
Microsoft Visual Studio 2010 Ultimate - ENU (Version: 10.0.30319)
Microsoft Visual Studio 2010 Ultimate - ENU (Version: 10.0.40219)
Microsoft Visual Studio Macro Tools (Version: 9.0.30729)
Microsoft Visual Studio Tools for Applications 2.0 - ENU (Version: 9.0.30729)
Microsoft Visual Studio Tools for Applications 2.0 Runtime (Version: 9.0.30729)
Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86_x64 (Version: 1.00.0000)
MilkShape 3D 1.8.5 (Version: 1.8.5)
MilViz - Northrop T-38 Talon (Version: 1.1 Full)
Mooney 20J HD-4096 Exterior VH-SOM
Mooney 20J High Definition Virtual Cockpit
Mozilla Firefox 13.0 (x86 en-US) (Version: 13.0)
Mozilla Maintenance Service (Version: 13.0)
Mp3tag v2.50 (Version: v2.50)
MSI Afterburner 2.2.1 (Version: 2.2.1)
MSI Kombustor 2.3.0
MSVC80_x64_v2 (Version: 1.0.3.0)
MSVC80_x86_v2 (Version: 1.0.3.0)
MSVC90_x64 (Version: 1.0.1.2)
MSVC90_x86 (Version: 1.0.1.2)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP2 Parser and SDK (Version: 4.20.9818.0)
MSXML 4.0 SP3 Parser (KB973685) (Version: 4.30.2107.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
Nemeth Designs & Milviz AgustaWestland AW109 for FSX
Nemeth Designs Bell UH-1 Huey for Microsoft Flight Simulator X
Net-Peeker 3.40 (Version: 3.40)
NVIDIA Control Panel 301.42 (Version: 301.42)
NVIDIA Graphics Driver 301.42 (Version: 301.42)
NVIDIA HD Audio Driver 1.3.16.0 (Version: 1.3.16.0)
NVIDIA Install Application (Version: 2.1002.75.420)
NVIDIA Photoshop Plug-ins 64 bit (Version: 8.50)
NVIDIA PhysX (Version: 9.12.0213)
NVIDIA PhysX System Software 9.12.0213 (Version: 9.12.0213)
NVIDIA Update 1.8.15 (Version: 1.8.15)
NVIDIA Update Components (Version: 1.8.15)
O&O Defrag Professional (Version: 15.0.107)
OMSI - Der Omnibussimulator (Version: 1.01)
Origin (Version: 8.5.0.4554)
P46T Malibu JetProp DL HD SERIES FSX (Version: 1.00.00.00)
PA-28-181 ARCHER II FSX
PA28RT ARROW IV FSX
PA32R SARATOGA SP FSX (Version: 1.00.00.00)
PA34 200T SENECA II FSX (Version: 1.00.00.00)
Papua New Guinea
Par-N-Rar 1.24 (Version: 1.24)
PC Connectivity Solution (Version: 11.4.19.0)
PDF Settings CS5 (Version: 10.0)
Picasa 3 (Version: 3.8)
PMDG 737 6700 NGX RTM (Version: 1.00.3219)
PMDG 737 8900 NGX (Version: 1.00.3219)
PMDG 747-400/400F for FSX (Version: 2.10.0040)
PMDG BAe JS4100 (Version: 1.00.0970)
PMDG_MD11_FSX (Version: 1.20.0055)
PMDGMD11X_GE_US (Version: 1.00.0000)
Prepar3D SDK 1.3.3708.0 (Version: 1.3.3708.0)
PSPPContent (Version: 14.0.0.332)
PSPPHelp (Version: 14.0.0.332)
PSPPro64 (Version: 14.0.0.332)
PunkBuster Services (Version: 0.991)
PVSonyDll (Version: 1.00.0001)
QuickTime (Version: 7.72.80.56)
Rapture3D 2.4.9 Game
RAZBAM Grumman A-6 Intruder
Real Environment Xtreme - Overdrive (Version: 2.5.2010.0820)
Real Environment Xtreme (Version: 1.0.2008.1128)
RealFlight G4 R/C Simulator
Regional Jet Vol.1 - CRJ (FSX)
Revo Uninstaller 1.93 (Version: 1.93)
Rise of Flight
Rockstar Games Social Club (Version: 1.0.0.0)
Rockstar Games Social Club (Version: 1.00.0000)
RollerCoaster Tycoon 3 Platinum (Version: 1.00.000)
RPC Plug-in for Autodesk 3ds Max 2012 64-bit (Version: 3.16.0.0)
RW_Tools V3
Saints Row The Third
SBD Dauntless FSX
SBK®2011 FIM Superbike World Championship (Version: 1.00.0000)
Service Pack 3 for SQL Server 2008 (KB2546951) (64-bit) (Version: 10.3.5500.0)
Setup (Version: 14.0.0.332)
Silent Hunter 5 (Version: 1.2.0)
Simple Adblock (Version: 1.1.0)
Skype Click to Call (Version: 5.10.9560)
Skype™ 5.8 (Version: 5.8.158)
SlimDX Redistributable (August 2009) (Version: 2.0.8.42)
SmoothPING Elite (Version: 1.1.0.116)
Smoothping Elite (Version: 2.0.0.10)
Sniper Elite V2
Spybot - Search & Destroy (Version: 1.6.2)
Sql Server Customer Experience Improvement Program (Version: 10.3.5500.0)
Steam (Version: 1.0.0.0)
System Requirements Lab
System Requirements Lab CYRI (Version: 4.5.1.0)
System Requirements Lab for Intel (Version: 4.4.24.0)
Take On Helicopters
TeamSpeak 2 RC2 (Version: 2.0.32.60)
TeamSpeak 3 Client
TechPowerUp GPU-Z
The Sims Medieval (Version: 1.3.13)
The Sims™ 3 (Version: 1.33.2)
The Sims™ 3 Ambitions (Version: 4.0.87)
The Sims™ 3 Fast Lane Stuff (Version: 5.0.44)
The Sims™ 3 Generations (Version: 8.0.152)
The Sims™ 3 High-End Loft Stuff (Version: 3.0.38)
The Sims™ 3 Late Night (Version: 6.0.81)
The Sims™ 3 Master Suite Stuff (Version: 11.0.84)
The Sims™ 3 Outdoor Living Stuff (Version: 7.0.55)
The Sims™ 3 Pets (Version: 10.0.96)
The Sims™ 3 Showtime (Version: 12.0.273)
The Sims™ 3 Town Life Stuff (Version: 9.0.73)
The Sims™ 3 World Adventures (Version: 2.0.86)
TrackIR5
Train Simulator 2012
Ubisoft Game Launcher (Version: 1.0.0.0)
UK Truck Simulator 1.02 (Version: 1.02)
UK2000 Gatwick Xtreme FSX (Version: 3.00)
UK2000 Heathrow Xtreme FSX (Version: 2.01)
UK2000 London City Xtreme FSX (Version: 1.00)
Ultimate Terrain X - USA
Uniblue DriverScanner (Version: 4.0.7.1)
Uniblue PowerSuite
Uniblue RegistryBooster (Version: 6.0.19.3)
Uniblue SpeedUpMyPC (Version: 5.2.1.7)
Universal Extractor 1.6.1 (Version: 1.6.1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553092)
Update for Microsoft Office 2010 (KB2553181) 64-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 64-Bit Edition
Update for Microsoft Office 2010 (KB2553270) 64-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 64-Bit Edition
Update for Microsoft Office 2010 (KB2553385) 64-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2597091) 64-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 64-Bit Edition
Update for Microsoft OneNote 2010 (KB2589345) 64-Bit Edition
Update for Microsoft Outlook 2010 (KB2553248) 64-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 64-Bit Edition
USB all-in-one game controller
Utility (Version: 2.00.000)
VEH Clemenceau V2-10
Ventrilo Client for Windows x64 (Version: 3.0.8.0)
Ventrilo Server (Version: 3.0.3)
Visual Studio 2010 Prerequisites - English (Version: 10.0.40219)
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU (Version: 4.0.8080.0)
Voyager (Shared Components) (Version: 2.65.10)
VRS F/A-18E Superbug X (Version: 1.2.0.7)
Vsk5 - patch1
WCF RIA Services V1.0 SP1 (Version: 4.1.60114.0)
Web Deployment Tool (Version: 1.1.0618)
Windows Live ID Sign-in Assistant (Version: 6.500.3165.0)
Windows Media Encoder 9 Series x64 Edition
Windows Media Encoder 9 Series x64 Edition (Version: 10.0.0.3809)
WinRAR 4.00 (64-bit) (Version: 4.00.0)
Worms Reloaded
Xtreme Prototypes X-15-2-3 VC for Flight Simulator (Version: 1.1)
Xvid Video Codec (Version: 1.3.2)
YTD YouTube Downloader & Converter 3.7
Zoo Tycoon 2 - Extinct Animals (Version: 1.00.0000)

========================= Memory info: ===================================

Percentage of memory in use: 37%
Total physical RAM: 6143.12 MB
Available physical RAM: 3868.5 MB
Total Pagefile: 24567.31 MB
Available Pagefile: 22070 MB
Total Virtual: 4095.88 MB
Available Virtual: 3964.47 MB

========================= Partitions: =====================================

2 Drive c: () (Fixed) (Total:931.41 GB) (Free:496.58 GB) NTFS
3 Drive d: (Storage) (Fixed) (Total:149.04 GB) (Free:16.62 GB) NTFS
4 Drive e: (Downloads) (CDROM) (Total:0.55 GB) (Free:0 GB) UDF
6 Drive g: (FSX) (Fixed) (Total:466 GB) (Free:274.88 GB) NTFS
8 Drive x: () (Fixed) (Total:465.5 GB) (Free:77.31 GB) NTFS

========================= Users: ========================================

User accounts for \\MIKE-PC

Administrator Guest Mike
UpdatusUser


**** End of log ****

#13 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:13 PM

Posted 20 June 2012 - 10:46 AM

That looks good

Download

TFC


Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Update your antivirus frequently,do not click on suspicious links

Safe surfing :)

#14 Mike J P

Mike J P
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Australia
  • Local time:10:13 AM

Posted 20 June 2012 - 01:02 PM

Thanx a million for the superb assistance

Much appreciated :thumbup2:

#15 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:13 PM

Posted 20 June 2012 - 01:05 PM

You're most welcome :thumbup2:




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users