Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Smart HDD/Data recovery viruus


  • Please log in to reply
13 replies to this topic

#1 wfwalsh

wfwalsh

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:09:47 PM

Posted 19 June 2012 - 09:07 AM

Hello, I'm new to the forum. My computer appears to have been infected by the SMART HDD/Data Recovery Virus. It appears to only affect one of the two user accounts (at least in terms of the pop ups). I went through the entire Bleeping Computer SMART HDD removal guide step by step (I tried it more than once), but have not been able to get rid of the virus. Malwarebytes finds 3 threats and I have clicked to remove them. However, upon rebooting the computer in normal mode (as opposed to the safe mode in which I followed the various steps of the procedure), the SMART virus pop ups reoccur.

It would be fantastic if anyone could find the time to assist me.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:47 PM

Posted 19 June 2012 - 10:03 AM

Boot the PC into safemode with networking


Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)


Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 wfwalsh

wfwalsh
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:09:47 PM

Posted 19 June 2012 - 08:13 PM

Attached are the results/logs from the scans you instructed me to run:

TDSS results:

18:52:50.0164 1284 TDSS rootkit removing tool 2.7.40.0 Jun 15 2012 15:13:31
18:52:50.0476 1284 ============================================================
18:52:50.0476 1284 Current date / time: 2012/06/19 18:52:50.0476
18:52:50.0476 1284 SystemInfo:
18:52:50.0476 1284
18:52:50.0476 1284 OS Version: 6.1.7601 ServicePack: 1.0
18:52:50.0476 1284 Product type: Workstation
18:52:50.0476 1284 ComputerName: WASH_LAPTOP
18:52:50.0476 1284 UserName: Mary
18:52:50.0476 1284 Windows directory: C:\Windows
18:52:50.0476 1284 System windows directory: C:\Windows
18:52:50.0476 1284 Running under WOW64
18:52:50.0476 1284 Processor architecture: Intel x64
18:52:50.0476 1284 Number of processors: 2
18:52:50.0476 1284 Page size: 0x1000
18:52:50.0476 1284 Boot type: Safe boot with network
18:52:50.0476 1284 ============================================================
18:52:50.0819 1284 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:52:50.0819 1284 ============================================================
18:52:50.0819 1284 \Device\Harddisk0\DR0:
18:52:50.0819 1284 MBR partitions:
18:52:50.0819 1284 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x21333B7, BlocksNum 0x232FAEF9
18:52:50.0819 1284 ============================================================
18:52:50.0851 1284 C: <-> \Device\Harddisk0\DR0\Partition0
18:52:50.0851 1284 ============================================================
18:52:50.0851 1284 Initialize success
18:52:50.0851 1284 ============================================================
18:52:59.0384 2504 ============================================================
18:52:59.0384 2504 Scan started
18:52:59.0384 2504 Mode: Manual; TDLFS;
18:52:59.0384 2504 ============================================================
18:52:59.0727 2504 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
18:52:59.0727 2504 1394ohci - ok
18:52:59.0804 2504 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
18:52:59.0804 2504 ACPI - ok
18:52:59.0864 2504 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
18:52:59.0864 2504 AcpiPmi - ok
18:53:00.0024 2504 AdobeFlashPlayerUpdateSvc (76d5a3d2a50402a0b9b6ed13c4371e79) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:53:00.0024 2504 AdobeFlashPlayerUpdateSvc - ok
18:53:00.0104 2504 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
18:53:00.0104 2504 adp94xx - ok
18:53:00.0164 2504 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
18:53:00.0164 2504 adpahci - ok
18:53:00.0224 2504 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
18:53:00.0224 2504 adpu320 - ok
18:53:00.0264 2504 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
18:53:00.0264 2504 AeLookupSvc - ok
18:53:00.0334 2504 AFBAgent (2d00d3dadc1d3326ba788eb071f2726e) C:\Windows\system32\FBAgent.exe
18:53:00.0334 2504 AFBAgent - ok
18:53:00.0434 2504 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
18:53:00.0444 2504 AFD - ok
18:53:00.0494 2504 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
18:53:00.0504 2504 agp440 - ok
18:53:00.0544 2504 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
18:53:00.0544 2504 ALG - ok
18:53:00.0594 2504 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
18:53:00.0594 2504 aliide - ok
18:53:00.0624 2504 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
18:53:00.0624 2504 amdide - ok
18:53:00.0664 2504 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
18:53:00.0664 2504 AmdK8 - ok
18:53:00.0684 2504 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
18:53:00.0684 2504 AmdPPM - ok
18:53:00.0724 2504 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
18:53:00.0734 2504 amdsata - ok
18:53:00.0764 2504 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
18:53:00.0764 2504 amdsbs - ok
18:53:00.0784 2504 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
18:53:00.0784 2504 amdxata - ok
18:53:00.0854 2504 AmUStor (9c7f164b49cadc658d1b3c575782f346) C:\Windows\system32\drivers\AmUStor.SYS
18:53:00.0854 2504 AmUStor - ok
18:53:00.0914 2504 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
18:53:00.0914 2504 AppID - ok
18:53:00.0934 2504 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
18:53:00.0934 2504 AppIDSvc - ok
18:53:00.0984 2504 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
18:53:00.0984 2504 Appinfo - ok
18:53:01.0214 2504 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
18:53:01.0214 2504 Apple Mobile Device - ok
18:53:01.0254 2504 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
18:53:01.0254 2504 arc - ok
18:53:01.0274 2504 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
18:53:01.0284 2504 arcsas - ok
18:53:01.0354 2504 ASLDRService (18e5c2f937f9deb8c282df66a3761925) C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe
18:53:01.0354 2504 ASLDRService - ok
18:53:01.0424 2504 ASMMAP64 (2db34edd17d3a8da7105a19c95a3dd68) C:\Program Files\ATKGFNEX\ASMMAP64.sys
18:53:01.0424 2504 ASMMAP64 - ok
18:53:01.0454 2504 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
18:53:01.0454 2504 AsyncMac - ok
18:53:01.0504 2504 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
18:53:01.0504 2504 atapi - ok
18:53:01.0614 2504 athr (0acc06fcf46f64ed4f11e57ee461c1f4) C:\Windows\system32\DRIVERS\athrx.sys
18:53:01.0624 2504 athr - ok
18:53:01.0684 2504 ATKGFNEXSrv (7c157574a181b19b9dcf5f339e25337e) C:\Program Files\ATKGFNEX\GFNEXSrv.exe
18:53:01.0684 2504 ATKGFNEXSrv - ok
18:53:01.0844 2504 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
18:53:01.0854 2504 AudioEndpointBuilder - ok
18:53:01.0864 2504 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
18:53:01.0864 2504 AudioSrv - ok
18:53:01.0924 2504 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
18:53:01.0924 2504 AxInstSV - ok
18:53:02.0004 2504 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
18:53:02.0004 2504 b06bdrv - ok
18:53:02.0064 2504 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
18:53:02.0064 2504 b57nd60a - ok
18:53:02.0224 2504 BBSvc (47480f4260dae9aa589bcaf924b3767a) C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.exe
18:53:02.0234 2504 BBSvc - ok
18:53:02.0274 2504 BBUpdate (6bf743cbf3bcd09dab79245e60e1ae62) C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe
18:53:02.0274 2504 BBUpdate - ok
18:53:02.0304 2504 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
18:53:02.0304 2504 BDESVC - ok
18:53:02.0334 2504 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
18:53:02.0334 2504 Beep - ok
18:53:02.0444 2504 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
18:53:02.0444 2504 BFE - ok
18:53:02.0524 2504 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
18:53:02.0534 2504 BITS - ok
18:53:02.0584 2504 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
18:53:02.0594 2504 blbdrive - ok
18:53:02.0694 2504 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
18:53:02.0704 2504 Bonjour Service - ok
18:53:02.0744 2504 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
18:53:02.0744 2504 bowser - ok
18:53:02.0784 2504 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:53:02.0784 2504 BrFiltLo - ok
18:53:02.0794 2504 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:53:02.0794 2504 BrFiltUp - ok
18:53:02.0834 2504 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
18:53:02.0834 2504 Browser - ok
18:53:02.0874 2504 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
18:53:02.0874 2504 Brserid - ok
18:53:02.0894 2504 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
18:53:02.0894 2504 BrSerWdm - ok
18:53:02.0914 2504 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
18:53:02.0914 2504 BrUsbMdm - ok
18:53:02.0934 2504 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
18:53:02.0934 2504 BrUsbSer - ok
18:53:03.0104 2504 BrYNSvc (ea7e57f87d6fee5fd6c5f813c04e8cd2) C:\Program Files (x86)\Browny02\BrYNSvc.exe
18:53:03.0104 2504 BrYNSvc - ok
18:53:03.0124 2504 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
18:53:03.0124 2504 BTHMODEM - ok
18:53:03.0164 2504 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
18:53:03.0174 2504 bthserv - ok
18:53:03.0204 2504 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
18:53:03.0204 2504 cdfs - ok
18:53:03.0264 2504 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
18:53:03.0264 2504 cdrom - ok
18:53:03.0324 2504 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
18:53:03.0324 2504 CertPropSvc - ok
18:53:03.0354 2504 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
18:53:03.0354 2504 circlass - ok
18:53:03.0414 2504 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
18:53:03.0414 2504 CLFS - ok
18:53:03.0474 2504 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:53:03.0474 2504 clr_optimization_v2.0.50727_32 - ok
18:53:03.0514 2504 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:53:03.0514 2504 clr_optimization_v2.0.50727_64 - ok
18:53:03.0624 2504 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:53:03.0624 2504 clr_optimization_v4.0.30319_32 - ok
18:53:03.0654 2504 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:53:03.0654 2504 clr_optimization_v4.0.30319_64 - ok
18:53:03.0674 2504 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
18:53:03.0674 2504 CmBatt - ok
18:53:03.0704 2504 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
18:53:03.0704 2504 cmdide - ok
18:53:03.0774 2504 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
18:53:03.0774 2504 CNG - ok
18:53:03.0814 2504 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
18:53:03.0814 2504 Compbatt - ok
18:53:03.0864 2504 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
18:53:03.0864 2504 CompositeBus - ok
18:53:03.0874 2504 COMSysApp - ok
18:53:03.0894 2504 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
18:53:03.0894 2504 crcdisk - ok
18:53:03.0944 2504 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
18:53:03.0944 2504 CryptSvc - ok
18:53:04.0014 2504 ctxusbm (bf62ff663ae55e4ed99de76881c2c0f1) C:\Windows\system32\DRIVERS\ctxusbm.sys
18:53:04.0024 2504 ctxusbm - ok
18:53:04.0084 2504 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
18:53:04.0094 2504 DcomLaunch - ok
18:53:04.0184 2504 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
18:53:04.0184 2504 defragsvc - ok
18:53:04.0234 2504 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
18:53:04.0234 2504 DfsC - ok
18:53:04.0294 2504 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
18:53:04.0294 2504 Dhcp - ok
18:53:04.0314 2504 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
18:53:04.0314 2504 discache - ok
18:53:04.0344 2504 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
18:53:04.0344 2504 Disk - ok
18:53:04.0394 2504 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
18:53:04.0394 2504 Dnscache - ok
18:53:04.0454 2504 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
18:53:04.0464 2504 dot3svc - ok
18:53:04.0514 2504 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
18:53:04.0514 2504 DPS - ok
18:53:04.0544 2504 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
18:53:04.0544 2504 drmkaud - ok
18:53:04.0634 2504 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
18:53:04.0634 2504 DXGKrnl - ok
18:53:04.0694 2504 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
18:53:04.0694 2504 EapHost - ok
18:53:04.0864 2504 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
18:53:04.0884 2504 ebdrv - ok
18:53:05.0024 2504 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
18:53:05.0024 2504 EFS - ok
18:53:05.0124 2504 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
18:53:05.0124 2504 ehRecvr - ok
18:53:05.0154 2504 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
18:53:05.0154 2504 ehSched - ok
18:53:05.0254 2504 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
18:53:05.0254 2504 elxstor - ok
18:53:05.0294 2504 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
18:53:05.0304 2504 ErrDev - ok
18:53:05.0354 2504 ETD (3c38648375b7f3988691f53a7aae10a9) C:\Windows\system32\DRIVERS\ETD.sys
18:53:05.0354 2504 ETD - ok
18:53:05.0414 2504 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
18:53:05.0414 2504 EventSystem - ok
18:53:05.0474 2504 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
18:53:05.0474 2504 exfat - ok
18:53:05.0534 2504 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
18:53:05.0534 2504 fastfat - ok
18:53:05.0624 2504 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
18:53:05.0634 2504 Fax - ok
18:53:05.0684 2504 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
18:53:05.0684 2504 fdc - ok
18:53:05.0724 2504 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
18:53:05.0724 2504 fdPHost - ok
18:53:05.0734 2504 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
18:53:05.0734 2504 FDResPub - ok
18:53:05.0754 2504 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
18:53:05.0754 2504 FileInfo - ok
18:53:05.0774 2504 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
18:53:05.0774 2504 Filetrace - ok
18:53:05.0804 2504 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
18:53:05.0804 2504 flpydisk - ok
18:53:05.0874 2504 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
18:53:05.0884 2504 FltMgr - ok
18:53:05.0994 2504 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
18:53:06.0004 2504 FontCache - ok
18:53:06.0084 2504 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:53:06.0084 2504 FontCache3.0.0.0 - ok
18:53:06.0134 2504 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
18:53:06.0134 2504 FsDepends - ok
18:53:06.0184 2504 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
18:53:06.0184 2504 Fs_Rec - ok
18:53:06.0254 2504 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
18:53:06.0254 2504 fvevol - ok
18:53:06.0274 2504 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
18:53:06.0274 2504 gagp30kx - ok
18:53:06.0324 2504 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
18:53:06.0324 2504 GEARAspiWDM - ok
18:53:06.0414 2504 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
18:53:06.0414 2504 gpsvc - ok
18:53:06.0444 2504 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
18:53:06.0444 2504 hcw85cir - ok
18:53:06.0524 2504 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
18:53:06.0534 2504 HdAudAddService - ok
18:53:06.0624 2504 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
18:53:06.0624 2504 HDAudBus - ok
18:53:06.0634 2504 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
18:53:06.0634 2504 HidBatt - ok
18:53:06.0654 2504 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
18:53:06.0654 2504 HidBth - ok
18:53:06.0674 2504 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
18:53:06.0674 2504 HidIr - ok
18:53:06.0694 2504 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
18:53:06.0694 2504 hidserv - ok
18:53:06.0744 2504 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
18:53:06.0744 2504 HidUsb - ok
18:53:06.0784 2504 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
18:53:06.0784 2504 hkmsvc - ok
18:53:06.0840 2504 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
18:53:06.0840 2504 HomeGroupListener - ok
18:53:06.0886 2504 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
18:53:06.0886 2504 HomeGroupProvider - ok
18:53:06.0933 2504 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
18:53:06.0933 2504 HpSAMD - ok
18:53:07.0042 2504 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
18:53:07.0042 2504 HTTP - ok
18:53:07.0074 2504 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
18:53:07.0074 2504 hwpolicy - ok
18:53:07.0152 2504 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
18:53:07.0152 2504 i8042prt - ok
18:53:07.0214 2504 iaStor (bbb3b6df1abb0fe35802ede85cc1c011) C:\Windows\system32\DRIVERS\iaStor.sys
18:53:07.0214 2504 iaStor - ok
18:53:07.0292 2504 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
18:53:07.0292 2504 iaStorV - ok
18:53:07.0401 2504 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:53:07.0401 2504 idsvc - ok
18:53:07.0916 2504 igfx (677aa5991026a65ada128c4b59cf2bad) C:\Windows\system32\DRIVERS\igdkmd64.sys
18:53:07.0978 2504 igfx - ok
18:53:08.0119 2504 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
18:53:08.0119 2504 iirsp - ok
18:53:08.0197 2504 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
18:53:08.0197 2504 IKEEXT - ok
18:53:08.0259 2504 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
18:53:08.0259 2504 intelide - ok
18:53:08.0290 2504 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
18:53:08.0290 2504 intelppm - ok
18:53:08.0322 2504 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
18:53:08.0322 2504 IPBusEnum - ok
18:53:08.0353 2504 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:53:08.0353 2504 IpFilterDriver - ok
18:53:08.0431 2504 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
18:53:08.0431 2504 iphlpsvc - ok
18:53:08.0478 2504 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
18:53:08.0478 2504 IPMIDRV - ok
18:53:08.0509 2504 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
18:53:08.0509 2504 IPNAT - ok
18:53:08.0649 2504 iPod Service (50d6ccc6ff5561f9f56946b3e6164fb8) C:\Program Files\iPod\bin\iPodService.exe
18:53:08.0649 2504 iPod Service - ok
18:53:08.0680 2504 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
18:53:08.0680 2504 IRENUM - ok
18:53:08.0712 2504 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
18:53:08.0712 2504 isapnp - ok
18:53:08.0758 2504 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
18:53:08.0758 2504 iScsiPrt - ok
18:53:08.0821 2504 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
18:53:08.0821 2504 kbdclass - ok
18:53:08.0868 2504 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
18:53:08.0868 2504 kbdhid - ok
18:53:08.0899 2504 kbfiltr (e63ef8c3271d014f14e2469ce75fecb4) C:\Windows\system32\DRIVERS\kbfiltr.sys
18:53:08.0899 2504 kbfiltr - ok
18:53:08.0946 2504 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:53:08.0946 2504 KeyIso - ok
18:53:08.0961 2504 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
18:53:08.0961 2504 KSecDD - ok
18:53:08.0992 2504 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
18:53:08.0992 2504 KSecPkg - ok
18:53:09.0024 2504 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
18:53:09.0024 2504 ksthunk - ok
18:53:09.0070 2504 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
18:53:09.0086 2504 KtmRm - ok
18:53:09.0102 2504 L1E (b8e670d7ef61615fa03104552854fac9) C:\Windows\system32\DRIVERS\L1E62x64.sys
18:53:09.0102 2504 L1E - ok
18:53:09.0164 2504 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
18:53:09.0164 2504 LanmanServer - ok
18:53:09.0211 2504 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
18:53:09.0211 2504 LanmanWorkstation - ok
18:53:09.0648 2504 LeapFrog Connect Device Service (3c879d04bb6466e2853c3155b635cc45) C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
18:53:09.0679 2504 LeapFrog Connect Device Service - ok
18:53:09.0850 2504 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
18:53:09.0850 2504 lltdio - ok
18:53:09.0897 2504 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
18:53:09.0913 2504 lltdsvc - ok
18:53:09.0928 2504 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
18:53:09.0928 2504 lmhosts - ok
18:53:09.0960 2504 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
18:53:09.0960 2504 LSI_FC - ok
18:53:09.0975 2504 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
18:53:09.0991 2504 LSI_SAS - ok
18:53:10.0006 2504 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:53:10.0006 2504 LSI_SAS2 - ok
18:53:10.0022 2504 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:53:10.0022 2504 LSI_SCSI - ok
18:53:10.0053 2504 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
18:53:10.0053 2504 luafv - ok
18:53:10.0084 2504 lullaby (085435ae1a124361304044029b5cc644) C:\Windows\system32\DRIVERS\lullaby.sys
18:53:10.0084 2504 lullaby - ok
18:53:10.0131 2504 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
18:53:10.0131 2504 Mcx2Svc - ok
18:53:10.0147 2504 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
18:53:10.0147 2504 megasas - ok
18:53:10.0178 2504 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
18:53:10.0178 2504 MegaSR - ok
18:53:10.0350 2504 Microsoft SharePoint Workspace Audit Service - ok
18:53:10.0412 2504 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
18:53:10.0412 2504 MMCSS - ok
18:53:10.0428 2504 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
18:53:10.0428 2504 Modem - ok
18:53:10.0474 2504 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
18:53:10.0474 2504 monitor - ok
18:53:10.0521 2504 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\drivers\mouclass.sys
18:53:10.0521 2504 mouclass - ok
18:53:10.0584 2504 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
18:53:10.0584 2504 mouhid - ok
18:53:10.0615 2504 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
18:53:10.0630 2504 mountmgr - ok
18:53:10.0708 2504 MozillaMaintenance (6380ff81dd4d78b23398752d2f46ea43) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
18:53:10.0708 2504 MozillaMaintenance - ok
18:53:10.0755 2504 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
18:53:10.0755 2504 mpio - ok
18:53:10.0786 2504 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
18:53:10.0786 2504 mpsdrv - ok
18:53:10.0864 2504 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
18:53:10.0864 2504 MpsSvc - ok
18:53:10.0927 2504 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
18:53:10.0927 2504 MRxDAV - ok
18:53:10.0982 2504 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
18:53:10.0982 2504 mrxsmb - ok
18:53:11.0042 2504 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:53:11.0042 2504 mrxsmb10 - ok
18:53:11.0062 2504 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:53:11.0062 2504 mrxsmb20 - ok
18:53:11.0102 2504 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
18:53:11.0112 2504 msahci - ok
18:53:11.0162 2504 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
18:53:11.0162 2504 msdsm - ok
18:53:11.0202 2504 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
18:53:11.0202 2504 MSDTC - ok
18:53:11.0242 2504 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
18:53:11.0242 2504 Msfs - ok
18:53:11.0262 2504 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
18:53:11.0262 2504 mshidkmdf - ok
18:53:11.0302 2504 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
18:53:11.0302 2504 msisadrv - ok
18:53:11.0332 2504 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
18:53:11.0332 2504 MSiSCSI - ok
18:53:11.0342 2504 msiserver - ok
18:53:11.0372 2504 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
18:53:11.0372 2504 MSKSSRV - ok
18:53:11.0402 2504 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
18:53:11.0402 2504 MSPCLOCK - ok
18:53:11.0412 2504 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
18:53:11.0412 2504 MSPQM - ok
18:53:11.0472 2504 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
18:53:11.0472 2504 MsRPC - ok
18:53:11.0512 2504 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
18:53:11.0512 2504 mssmbios - ok
18:53:11.0522 2504 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
18:53:11.0532 2504 MSTEE - ok
18:53:11.0542 2504 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
18:53:11.0542 2504 MTConfig - ok
18:53:11.0582 2504 MTsensor (032d35c996f21d19a205a7c8f0b76f3c) C:\Windows\system32\DRIVERS\ATK64AMD.sys
18:53:11.0582 2504 MTsensor - ok
18:53:11.0612 2504 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
18:53:11.0612 2504 Mup - ok
18:53:11.0672 2504 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
18:53:11.0672 2504 napagent - ok
18:53:11.0722 2504 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
18:53:11.0722 2504 NativeWifiP - ok
18:53:11.0812 2504 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
18:53:11.0822 2504 NDIS - ok
18:53:11.0832 2504 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
18:53:11.0832 2504 NdisCap - ok
18:53:11.0862 2504 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
18:53:11.0862 2504 NdisTapi - ok
18:53:11.0912 2504 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
18:53:11.0912 2504 Ndisuio - ok
18:53:11.0962 2504 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
18:53:11.0962 2504 NdisWan - ok
18:53:12.0002 2504 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
18:53:12.0002 2504 NDProxy - ok
18:53:12.0022 2504 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
18:53:12.0022 2504 NetBIOS - ok
18:53:12.0082 2504 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
18:53:12.0082 2504 NetBT - ok
18:53:12.0112 2504 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:53:12.0112 2504 Netlogon - ok
18:53:12.0172 2504 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
18:53:12.0172 2504 Netman - ok
18:53:12.0222 2504 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
18:53:12.0222 2504 netprofm - ok
18:53:12.0282 2504 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:53:12.0292 2504 NetTcpPortSharing - ok
18:53:12.0312 2504 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
18:53:12.0312 2504 nfrd960 - ok
18:53:12.0382 2504 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
18:53:12.0382 2504 NlaSvc - ok
18:53:12.0392 2504 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
18:53:12.0402 2504 Npfs - ok
18:53:12.0412 2504 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
18:53:12.0412 2504 nsi - ok
18:53:12.0432 2504 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
18:53:12.0432 2504 nsiproxy - ok
18:53:12.0562 2504 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
18:53:12.0572 2504 Ntfs - ok
18:53:12.0682 2504 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
18:53:12.0682 2504 Null - ok
18:53:12.0732 2504 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
18:53:12.0732 2504 nvraid - ok
18:53:12.0782 2504 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
18:53:12.0782 2504 nvstor - ok
18:53:12.0802 2504 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
18:53:12.0802 2504 nv_agp - ok
18:53:12.0822 2504 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
18:53:12.0822 2504 ohci1394 - ok
18:53:13.0029 2504 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:53:13.0029 2504 ose - ok
18:53:13.0307 2504 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
18:53:13.0337 2504 osppsvc - ok
18:53:13.0447 2504 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
18:53:13.0457 2504 p2pimsvc - ok
18:53:13.0517 2504 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
18:53:13.0517 2504 p2psvc - ok
18:53:13.0587 2504 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
18:53:13.0587 2504 Parport - ok
18:53:13.0627 2504 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
18:53:13.0627 2504 partmgr - ok
18:53:13.0657 2504 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
18:53:13.0657 2504 PcaSvc - ok
18:53:13.0707 2504 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
18:53:13.0707 2504 pci - ok
18:53:13.0747 2504 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
18:53:13.0747 2504 pciide - ok
18:53:13.0787 2504 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
18:53:13.0787 2504 pcmcia - ok
18:53:13.0807 2504 PCTCore - ok
18:53:13.0817 2504 pctDS - ok
18:53:13.0827 2504 pctgntdi - ok
18:53:13.0847 2504 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
18:53:13.0847 2504 pcw - ok
18:53:13.0897 2504 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
18:53:13.0897 2504 PEAUTH - ok
18:53:13.0987 2504 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
18:53:13.0987 2504 PerfHost - ok
18:53:14.0107 2504 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
18:53:14.0107 2504 pla - ok
18:53:14.0187 2504 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
18:53:14.0197 2504 PlugPlay - ok
18:53:14.0217 2504 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
18:53:14.0227 2504 PNRPAutoReg - ok
18:53:14.0267 2504 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
18:53:14.0267 2504 PNRPsvc - ok
18:53:14.0317 2504 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
18:53:14.0327 2504 PolicyAgent - ok
18:53:14.0367 2504 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
18:53:14.0377 2504 Power - ok
18:53:14.0447 2504 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
18:53:14.0447 2504 PptpMiniport - ok
18:53:14.0477 2504 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
18:53:14.0477 2504 Processor - ok
18:53:14.0537 2504 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
18:53:14.0537 2504 ProfSvc - ok
18:53:14.0577 2504 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:53:14.0577 2504 ProtectedStorage - ok
18:53:14.0647 2504 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
18:53:14.0647 2504 Psched - ok
18:53:14.0687 2504 PxHlpa64 (4712cc14e720ecccc0aa16949d18aaf1) C:\Windows\system32\Drivers\PxHlpa64.sys
18:53:14.0687 2504 PxHlpa64 - ok
18:53:14.0797 2504 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
18:53:14.0807 2504 ql2300 - ok
18:53:14.0937 2504 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
18:53:14.0937 2504 ql40xx - ok
18:53:14.0987 2504 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
18:53:14.0997 2504 QWAVE - ok
18:53:15.0007 2504 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
18:53:15.0017 2504 QWAVEdrv - ok
18:53:15.0027 2504 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
18:53:15.0027 2504 RasAcd - ok
18:53:15.0057 2504 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
18:53:15.0067 2504 RasAgileVpn - ok
18:53:15.0077 2504 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
18:53:15.0087 2504 RasAuto - ok
18:53:15.0117 2504 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
18:53:15.0117 2504 Rasl2tp - ok
18:53:15.0173 2504 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
18:53:15.0173 2504 RasMan - ok
18:53:15.0220 2504 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
18:53:15.0220 2504 RasPppoe - ok
18:53:15.0220 2504 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
18:53:15.0235 2504 RasSstp - ok
18:53:15.0298 2504 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
18:53:15.0298 2504 rdbss - ok
18:53:15.0313 2504 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
18:53:15.0313 2504 rdpbus - ok
18:53:15.0329 2504 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
18:53:15.0329 2504 RDPCDD - ok
18:53:15.0360 2504 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
18:53:15.0360 2504 RDPENCDD - ok
18:53:15.0376 2504 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
18:53:15.0391 2504 RDPREFMP - ok
18:53:15.0438 2504 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
18:53:15.0438 2504 RDPWD - ok
18:53:15.0500 2504 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
18:53:15.0500 2504 rdyboost - ok
18:53:15.0532 2504 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
18:53:15.0532 2504 RemoteAccess - ok
18:53:15.0563 2504 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
18:53:15.0563 2504 RemoteRegistry - ok
18:53:15.0594 2504 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
18:53:15.0594 2504 RpcEptMapper - ok
18:53:15.0625 2504 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
18:53:15.0625 2504 RpcLocator - ok
18:53:15.0688 2504 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
18:53:15.0688 2504 RpcSs - ok
18:53:15.0750 2504 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
18:53:15.0750 2504 rspndr - ok
18:53:15.0781 2504 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:53:15.0781 2504 SamSs - ok
18:53:15.0828 2504 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
18:53:15.0828 2504 sbp2port - ok
18:53:15.0875 2504 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
18:53:15.0875 2504 SCardSvr - ok
18:53:15.0906 2504 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
18:53:15.0906 2504 scfilter - ok
18:53:16.0031 2504 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
18:53:16.0046 2504 Schedule - ok
18:53:16.0078 2504 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
18:53:16.0078 2504 SCPolicySvc - ok
18:53:16.0140 2504 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
18:53:16.0140 2504 SDRSVC - ok
18:53:16.0202 2504 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
18:53:16.0202 2504 secdrv - ok
18:53:16.0249 2504 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
18:53:16.0249 2504 seclogon - ok
18:53:16.0280 2504 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
18:53:16.0280 2504 SENS - ok
18:53:16.0312 2504 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
18:53:16.0312 2504 SensrSvc - ok
18:53:16.0343 2504 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
18:53:16.0343 2504 Serenum - ok
18:53:16.0374 2504 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
18:53:16.0390 2504 Serial - ok
18:53:16.0421 2504 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
18:53:16.0421 2504 sermouse - ok
18:53:16.0483 2504 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
18:53:16.0483 2504 SessionEnv - ok
18:53:16.0514 2504 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
18:53:16.0514 2504 sffdisk - ok
18:53:16.0546 2504 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
18:53:16.0546 2504 sffp_mmc - ok
18:53:16.0577 2504 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
18:53:16.0577 2504 sffp_sd - ok
18:53:16.0608 2504 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
18:53:16.0608 2504 sfloppy - ok
18:53:16.0670 2504 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
18:53:16.0670 2504 SharedAccess - ok
18:53:16.0717 2504 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
18:53:16.0733 2504 ShellHWDetection - ok
18:53:16.0764 2504 SiSGbeLH (1bc348cf6baa90ec8e533ef6e6a69933) C:\Windows\system32\DRIVERS\SiSG664.sys
18:53:16.0764 2504 SiSGbeLH - ok
18:53:16.0780 2504 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:53:16.0780 2504 SiSRaid2 - ok
18:53:16.0795 2504 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
18:53:16.0795 2504 SiSRaid4 - ok
18:53:16.0936 2504 SkypeUpdate (6128e98eaaed364ed1a32708d2fd22cb) C:\Program Files (x86)\Skype\Updater\Updater.exe
18:53:16.0936 2504 SkypeUpdate - ok
18:53:16.0998 2504 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
18:53:16.0998 2504 Smb - ok
18:53:17.0045 2504 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
18:53:17.0045 2504 SNMPTRAP - ok
18:53:17.0185 2504 SNP2UVC (f06a6de8438f7446bff9e61f31356521) C:\Windows\system32\DRIVERS\snp2uvc.sys
18:53:17.0201 2504 SNP2UVC - ok
18:53:17.0310 2504 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
18:53:17.0310 2504 spldr - ok
18:53:17.0388 2504 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
18:53:17.0388 2504 Spooler - ok
18:53:17.0616 2504 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
18:53:17.0636 2504 sppsvc - ok
18:53:17.0746 2504 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
18:53:17.0756 2504 sppuinotify - ok
18:53:17.0826 2504 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
18:53:17.0826 2504 srv - ok
18:53:17.0886 2504 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
18:53:17.0886 2504 srv2 - ok
18:53:17.0936 2504 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
18:53:17.0936 2504 srvnet - ok
18:53:17.0986 2504 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
18:53:17.0986 2504 SSDPSRV - ok
18:53:18.0006 2504 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
18:53:18.0006 2504 SstpSvc - ok
18:53:18.0036 2504 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
18:53:18.0036 2504 stexstor - ok
18:53:18.0096 2504 StillCam (decacb6921ded1a38642642685d77dac) C:\Windows\system32\DRIVERS\serscan.sys
18:53:18.0096 2504 StillCam - ok
18:53:18.0176 2504 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
18:53:18.0186 2504 stisvc - ok
18:53:18.0206 2504 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
18:53:18.0206 2504 swenum - ok
18:53:18.0276 2504 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
18:53:18.0286 2504 swprv - ok
18:53:18.0426 2504 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
18:53:18.0436 2504 SysMain - ok
18:53:18.0556 2504 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
18:53:18.0556 2504 TabletInputService - ok
18:53:18.0616 2504 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
18:53:18.0616 2504 TapiSrv - ok
18:53:18.0646 2504 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
18:53:18.0646 2504 TBS - ok
18:53:18.0806 2504 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
18:53:18.0816 2504 Tcpip - ok
18:53:19.0016 2504 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
18:53:19.0026 2504 TCPIP6 - ok
18:53:19.0116 2504 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
18:53:19.0116 2504 tcpipreg - ok
18:53:19.0156 2504 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
18:53:19.0156 2504 TDPIPE - ok
18:53:19.0196 2504 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
18:53:19.0196 2504 TDTCP - ok
18:53:19.0256 2504 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
18:53:19.0256 2504 tdx - ok
18:53:19.0306 2504 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
18:53:19.0306 2504 TermDD - ok
18:53:19.0376 2504 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
18:53:19.0376 2504 TermService - ok
18:53:19.0396 2504 TfFsMon - ok
18:53:19.0406 2504 TfNetMon - ok
18:53:19.0416 2504 TFSysMon - ok
18:53:19.0446 2504 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
18:53:19.0446 2504 Themes - ok
18:53:19.0476 2504 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
18:53:19.0476 2504 THREADORDER - ok
18:53:19.0506 2504 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
18:53:19.0506 2504 TrkWks - ok
18:53:19.0576 2504 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
18:53:19.0586 2504 TrustedInstaller - ok
18:53:19.0616 2504 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
18:53:19.0616 2504 tssecsrv - ok
18:53:19.0676 2504 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
18:53:19.0676 2504 TsUsbFlt - ok
18:53:19.0756 2504 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
18:53:19.0756 2504 tunnel - ok
18:53:19.0786 2504 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
18:53:19.0786 2504 uagp35 - ok
18:53:19.0846 2504 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
18:53:19.0856 2504 udfs - ok
18:53:19.0896 2504 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
18:53:19.0896 2504 UI0Detect - ok
18:53:19.0936 2504 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
18:53:19.0936 2504 uliagpkx - ok
18:53:19.0996 2504 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
18:53:19.0996 2504 umbus - ok
18:53:20.0016 2504 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
18:53:20.0016 2504 UmPass - ok
18:53:20.0056 2504 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
18:53:20.0056 2504 upnphost - ok
18:53:20.0086 2504 USBAAPL64 (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys
18:53:20.0086 2504 USBAAPL64 - ok
18:53:20.0126 2504 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
18:53:20.0126 2504 usbccgp - ok
18:53:20.0166 2504 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
18:53:20.0166 2504 usbcir - ok
18:53:20.0216 2504 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
18:53:20.0216 2504 usbehci - ok
18:53:20.0286 2504 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
18:53:20.0286 2504 usbhub - ok
18:53:20.0336 2504 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
18:53:20.0336 2504 usbohci - ok
18:53:20.0366 2504 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
18:53:20.0366 2504 usbprint - ok
18:53:20.0386 2504 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:53:20.0386 2504 USBSTOR - ok
18:53:20.0406 2504 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\DRIVERS\usbuhci.sys
18:53:20.0406 2504 usbuhci - ok
18:53:20.0476 2504 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys
18:53:20.0476 2504 usbvideo - ok
18:53:20.0496 2504 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
18:53:20.0506 2504 UxSms - ok
18:53:20.0546 2504 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:53:20.0546 2504 VaultSvc - ok
18:53:20.0596 2504 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
18:53:20.0596 2504 vdrvroot - ok
18:53:20.0666 2504 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
18:53:20.0676 2504 vds - ok
18:53:20.0716 2504 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
18:53:20.0716 2504 vga - ok
18:53:20.0726 2504 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
18:53:20.0736 2504 VgaSave - ok
18:53:20.0786 2504 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
18:53:20.0786 2504 vhdmp - ok
18:53:20.0906 2504 VIAHdAudAddService (fe595d1a1b781190bb483444b62cc607) C:\Windows\system32\drivers\viahduaa.sys
18:53:20.0906 2504 VIAHdAudAddService - ok
18:53:20.0946 2504 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
18:53:20.0946 2504 viaide - ok
18:53:20.0996 2504 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
18:53:20.0996 2504 volmgr - ok
18:53:21.0046 2504 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
18:53:21.0046 2504 volmgrx - ok
18:53:21.0106 2504 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
18:53:21.0106 2504 volsnap - ok
18:53:21.0136 2504 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
18:53:21.0136 2504 vsmraid - ok
18:53:21.0266 2504 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
18:53:21.0276 2504 VSS - ok
18:53:21.0386 2504 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
18:53:21.0396 2504 vwifibus - ok
18:53:21.0406 2504 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
18:53:21.0406 2504 vwififlt - ok
18:53:21.0456 2504 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
18:53:21.0466 2504 W32Time - ok
18:53:21.0486 2504 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
18:53:21.0486 2504 WacomPen - ok
18:53:21.0546 2504 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
18:53:21.0546 2504 WANARP - ok
18:53:21.0556 2504 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
18:53:21.0556 2504 Wanarpv6 - ok
18:53:21.0676 2504 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
18:53:21.0676 2504 WatAdminSvc - ok
18:53:21.0796 2504 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
18:53:21.0806 2504 wbengine - ok
18:53:21.0926 2504 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
18:53:21.0926 2504 WbioSrvc - ok
18:53:21.0986 2504 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
18:53:21.0996 2504 wcncsvc - ok
18:53:22.0006 2504 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
18:53:22.0006 2504 WcsPlugInService - ok
18:53:22.0046 2504 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
18:53:22.0046 2504 Wd - ok
18:53:22.0106 2504 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
18:53:22.0116 2504 Wdf01000 - ok
18:53:22.0126 2504 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
18:53:22.0136 2504 WdiServiceHost - ok
18:53:22.0136 2504 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
18:53:22.0136 2504 WdiSystemHost - ok
18:53:22.0196 2504 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
18:53:22.0206 2504 WebClient - ok
18:53:22.0246 2504 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
18:53:22.0246 2504 Wecsvc - ok
18:53:22.0266 2504 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
18:53:22.0266 2504 wercplsupport - ok
18:53:22.0306 2504 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
18:53:22.0306 2504 WerSvc - ok
18:53:22.0366 2504 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
18:53:22.0366 2504 WfpLwf - ok
18:53:22.0396 2504 WimFltr (52ded146e4797e6ccf94799e8e22bb2a) C:\Windows\system32\DRIVERS\wimfltr.sys
18:53:22.0396 2504 WimFltr - ok
18:53:22.0416 2504 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
18:53:22.0416 2504 WIMMount - ok
18:53:22.0496 2504 WinDefend - ok
18:53:22.0506 2504 WinHttpAutoProxySvc - ok
18:53:22.0576 2504 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
18:53:22.0576 2504 Winmgmt - ok
18:53:22.0716 2504 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
18:53:22.0726 2504 WinRM - ok
18:53:22.0886 2504 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
18:53:22.0886 2504 WinUsb - ok
18:53:22.0966 2504 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
18:53:22.0976 2504 Wlansvc - ok
18:53:23.0016 2504 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
18:53:23.0016 2504 WmiAcpi - ok
18:53:23.0086 2504 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
18:53:23.0086 2504 wmiApSrv - ok
18:53:23.0196 2504 WMPNetworkSvc - ok
18:53:23.0216 2504 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
18:53:23.0216 2504 WPCSvc - ok
18:53:23.0266 2504 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
18:53:23.0266 2504 WPDBusEnum - ok
18:53:23.0286 2504 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
18:53:23.0286 2504 ws2ifsl - ok
18:53:23.0306 2504 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
18:53:23.0306 2504 wscsvc - ok
18:53:23.0306 2504 WSearch - ok
18:53:23.0466 2504 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
18:53:23.0486 2504 wuauserv - ok
18:53:23.0616 2504 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
18:53:23.0616 2504 WudfPf - ok
18:53:23.0656 2504 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
18:53:23.0656 2504 WUDFRd - ok
18:53:23.0696 2504 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
18:53:23.0706 2504 wudfsvc - ok
18:53:23.0736 2504 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
18:53:23.0746 2504 WwanSvc - ok
18:53:23.0786 2504 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
18:53:24.0166 2504 \Device\Harddisk0\DR0 - ok
18:53:24.0176 2504 Boot (0x1200) (d25d3d60f9d8e6959a3d2dab138434d5) \Device\Harddisk0\DR0\Partition0
18:53:24.0176 2504 \Device\Harddisk0\DR0\Partition0 - ok
18:53:24.0176 2504 ============================================================
18:53:24.0176 2504 Scan finished
18:53:24.0176 2504 ============================================================
18:53:24.0186 1960 Detected object count: 0
18:53:24.0186 1960 Actual detected object count: 0

Avast scan:

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-06-19 19:13:39
-----------------------------
19:13:39.221 OS Version: Windows x64 6.1.7601 Service Pack 1
19:13:39.221 Number of processors: 2 586 0x170A
19:13:39.221 ComputerName: WASH_LAPTOP UserName: Mary
19:13:40.376 Initialize success
19:13:44.947 AVAST engine defs: 12061901
19:13:49.221 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
19:13:49.221 Disk 0 Vendor: WDC_WD32 01.0 Size: 305245MB BusType: 3
19:13:49.268 Disk 0 MBR read successfully
19:13:49.268 Disk 0 MBR scan
19:13:49.284 Disk 0 Windows VISTA default MBR code
19:13:49.299 Disk 0 Partition 1 00 1C Hidd FAT32 LBA MSDOS5.0 16997 MB offset 2048
19:13:49.315 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 288245 MB offset 34812855
19:13:49.346 Disk 0 scanning C:\Windows\system32\drivers
19:14:13.479 Service scanning
19:14:41.247 Modules scanning
19:14:41.247 Disk 0 trace - called modules:
19:14:41.294 ntoskrnl.exe CLASSPNP.SYS disk.sys PCTCore64.sys ACPI.sys iaStor.sys hal.dll
19:14:41.310 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8003363790]
19:14:41.325 3 CLASSPNP.SYS[fffff88001b5d43f] -> nt!IofCallDriver -> [0xfffffa80033622c0]
19:14:41.325 5 PCTCore64.sys[fffff88001350720] -> nt!IofCallDriver -> [0xfffffa8002463630]
19:14:41.325 7 ACPI.sys[fffff88000f477a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8002466050]
19:14:42.760 AVAST engine scan C:\Windows
19:15:03.056 AVAST engine scan C:\Windows\system32
19:20:51.389 AVAST engine scan C:\Windows\system32\drivers
19:21:06.849 AVAST engine scan C:\Users\Mary
19:34:47.785 File: C:\Users\Mary\AppData\Local\Temp\01zKRtDuGMEpjO.exe.tmp **INFECTED** Win32:FakeAV-DNB [Trj]
19:41:48.767 AVAST engine scan C:\ProgramData
19:41:48.907 File: C:\ProgramData\38bruWbZpaupxl.exe **INFECTED** Win32:FakeAlert-CRZ [Trj]
19:42:02.635 File: C:\ProgramData\bSIPsmLEdWM.exe **INFECTED** Win32:FakeAV-DNB [Trj]
19:42:48.219 Scan finished successfully
19:46:36.291 Disk 0 MBR has been saved successfully to "C:\Users\Mary\Desktop\MBR.dat"
19:46:36.291 The log file has been saved successfully to "C:\Users\Mary\Desktop\aswMBR.txt"
19:47:49.377 Disk 0 MBR has been saved successfully to "C:\Users\Mary\Desktop\MBR.dat"
19:47:49.377 The log file has been saved successfully to "C:\Users\Mary\Desktop\aswMBR.txt"

Eset scan:

C:\ProgramData\38bruWbZpaupxl.exe Win32/Adware.HDDRescue.AB application cleaned by deleting - quarantined
C:\ProgramData\bSIPsmLEdWM.exe Win32/TrojanDownloader.Prodatect.BL trojan cleaned by deleting - quarantined
C:\Users\Bill\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\1EIPV18E\best-way-do-45-degree-other-degree-moulding-cutting-7960[1].htm HTML/ScrInject.B.Gen virus deleted - quarantined
C:\Users\Bill\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\NUPF6QBO\material-ledge-chairrail-8319[1].htm HTML/ScrInject.B.Gen virus deleted - quarantined
C:\Users\Mary\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LX30PTX7\7zip_installer_1650.exe a variant of Win32/InstallIQ application cleaned by deleting - quarantined
C:\Users\Mary\AppData\Local\Temp\01zKRtDuGMEpjO.exe.tmp Win32/TrojanDownloader.Prodatect.BL trojan cleaned by deleting - quarantined
C:\Users\Mary\AppData\Local\Temp\AA50.tmp Win32/Olmasco.AA trojan cleaned by deleting - quarantined


Thanks for your help.

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:47 PM

Posted 19 June 2012 - 09:13 PM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

MiniToolBox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

#5 wfwalsh

wfwalsh
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:09:47 PM

Posted 20 June 2012 - 06:59 PM

Here in the mini toolbox result:

MiniToolBox by Farbar Version: 09-06-2012
Ran by Mary (administrator) on 20-06-2012 at 19:57:53
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Atheros AR9285 Wireless Network Adapter = Wireless Network Connection (Connected)
Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add address name="Local Area Connection" address=192.168.137.1 mask=255.255.255.0


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Wash_Laptop
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : home

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller
Physical Address. . . . . . . . . : 48-5B-39-4B-C3-D4
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : home
Description . . . . . . . . . . . : Atheros AR9285 Wireless Network Adapter
Physical Address. . . . . . . . . : 1C-4B-D6-AC-D6-9C
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::b169:15d1:880e:237c%10(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.4(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Wednesday, June 20, 2012 6:38:44 PM
Lease Expires . . . . . . . . . . : Thursday, June 21, 2012 6:38:44 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 236735446
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-13-53-40-1F-1C-4B-D6-AC-D6-9C
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.home:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : home
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:3464:3bbe:52cf:1f43(Preferred)
Link-local IPv6 Address . . . . . : fe80::3464:3bbe:52cf:1f43%12(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: Wireless_Broadband_Router.home
Address: 192.168.1.1

Name: google.com
Addresses: 2607:f8b0:4006:800::1008
74.125.226.200
74.125.226.196
74.125.226.206
74.125.226.193
74.125.226.198
74.125.226.197
74.125.226.199
74.125.226.201
74.125.226.192
74.125.226.195
74.125.226.194


Pinging google.com [74.125.226.196] with 32 bytes of data:
Reply from 74.125.226.196: bytes=32 time=18ms TTL=54
Reply from 74.125.226.196: bytes=32 time=85ms TTL=54

Ping statistics for 74.125.226.196:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 18ms, Maximum = 85ms, Average = 51ms
Server: Wireless_Broadband_Router.home
Address: 192.168.1.1

Name: yahoo.com
Addresses: 98.139.183.24
209.191.122.70
72.30.38.140


Pinging yahoo.com [209.191.122.70] with 32 bytes of data:
Reply from 209.191.122.70: bytes=32 time=67ms TTL=55
Reply from 209.191.122.70: bytes=32 time=217ms TTL=55

Ping statistics for 209.191.122.70:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 67ms, Maximum = 217ms, Average = 142ms
Server: Wireless_Broadband_Router.home
Address: 192.168.1.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
11...48 5b 39 4b c3 d4 ......Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller
10...1c 4b d6 ac d6 9c ......Atheros AR9285 Wireless Network Adapter
1...........................Software Loopback Interface 1
14...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.4 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.4 281
192.168.1.4 255.255.255.255 On-link 192.168.1.4 281
192.168.1.255 255.255.255.255 On-link 192.168.1.4 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.4 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.4 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
12 58 ::/0 On-link
1 306 ::1/128 On-link
12 58 2001::/32 On-link
12 306 2001:0:4137:9e76:3464:3bbe:52cf:1f43/128
On-link
10 281 fe80::/64 On-link
12 306 fe80::/64 On-link
12 306 fe80::3464:3bbe:52cf:1f43/128
On-link
10 281 fe80::b169:15d1:880e:237c/128
On-link
1 306 ff00::/8 On-link
12 306 ff00::/8 On-link
10 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (06/20/2012 07:28:52 PM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005

Error: (06/19/2012 06:54:56 PM) (Source: System Restore) (User: )
Description: Failed to create restore point (Process = C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe Files (x86)\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe" -Embedding; Description = Configured Microsoft Office Professional Plus 2010; Error = 0x8007043c).

Error: (06/19/2012 06:54:19 PM) (Source: System Restore) (User: )
Description: Failed to create restore point (Process = C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe Files (x86)\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe" -Embedding; Description = Configured Microsoft Office Professional Plus 2010; Error = 0x8007043c).

Error: (06/19/2012 06:54:16 PM) (Source: System Restore) (User: )
Description: Failed to create restore point (Process = C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe Files (x86)\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe" -Embedding; Description = Configured Microsoft Office Professional Plus 2010; Error = 0x8007043c).

Error: (06/19/2012 06:30:51 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 10626897

Error: (06/19/2012 06:30:51 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 10626897

Error: (06/19/2012 06:30:51 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/19/2012 06:30:50 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 10625883

Error: (06/19/2012 06:30:50 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 10625883

Error: (06/19/2012 06:30:50 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second


System errors:
=============
Error: (06/20/2012 06:45:03 PM) (Source: Service Control Manager) (User: )
Description: The Windows Update service hung on starting.

Error: (06/20/2012 06:38:54 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
TfFsMon
TFSysMon

Error: (06/20/2012 06:36:45 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (06/20/2012 06:36:45 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (06/20/2012 06:36:45 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (06/20/2012 06:31:45 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (06/20/2012 06:31:45 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (06/20/2012 06:31:45 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (06/20/2012 06:29:37 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (06/20/2012 06:29:37 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068


Microsoft Office Sessions:
=========================
Error: (06/20/2012 07:28:52 PM) (Source: Customer Experience Improvement Program)(User: )
Description: 80004005

Error: (06/19/2012 06:54:56 PM) (Source: System Restore)(User: )
Description: C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe Files (x86)\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe" -EmbeddingConfigured Microsoft Office Professional Plus 20100x8007043c

Error: (06/19/2012 06:54:19 PM) (Source: System Restore)(User: )
Description: C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe Files (x86)\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe" -EmbeddingConfigured Microsoft Office Professional Plus 20100x8007043c

Error: (06/19/2012 06:54:16 PM) (Source: System Restore)(User: )
Description: C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe Files (x86)\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe" -EmbeddingConfigured Microsoft Office Professional Plus 20100x8007043c

Error: (06/19/2012 06:30:51 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 10626897

Error: (06/19/2012 06:30:51 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 10626897

Error: (06/19/2012 06:30:51 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/19/2012 06:30:50 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 10625883

Error: (06/19/2012 06:30:50 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 10625883

Error: (06/19/2012 06:30:50 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second


=========================== Installed Programs ============================

Acrobat.com (Version: 1.6.65)
Adobe AIR (Version: 2.0.3.13070)
Adobe Flash Player 10 Plugin (Version: 10.0.32.18)
Adobe Flash Player 11 ActiveX 64-bit (Version: 11.2.202.235)
Adobe Reader 9.4.6 (Version: 9.4.6)
Alcor Micro USB Card Reader (Version: 1.5.17.25482)
Apple Application Support (Version: 2.1.7)
Apple Mobile Device Support (Version: 5.1.1.4)
Apple Software Update (Version: 2.1.3.127)
ASUS AI Recovery (Version: 1.0.8)
ASUS CopyProtect (Version: 1.0.0015)
ASUS FancyStart (Version: 1.0.8)
ASUS LifeFrame3 (Version: 3.0.20)
ASUS Live Update (Version: 2.5.9)
ASUS MultiFrame (Version: 1.0.0019)
ASUS Power4Gear Hybrid (Version: 1.1.28)
ASUS SmartLogon (Version: 1.0.0008)
ASUS Splendid Video Enhancement Technology (Version: 1.02.0028)
ASUS USB2.0 UVC VGA WebCam (Version: 5.8.53120.203)
ASUS Virtual Camera (Version: 1.0.19)
ASUS_Screensaver
ATK Generic Function Service (Version: 1.00.0008)
ATK Hotkey (Version: 1.0.0052)
ATK Media (Version: 2.0.0006)
ATKOSD2 (Version: 7.0.0006)
AviSynth 2.5
Best Buy Software Installer (Version: 2.5.0.1)
Bing Bar (Version: 7.1.362.0)
Bonjour (Version: 3.0.0.10)
Brother MFL-Pro Suite MFC-J415W (Version: 1.0.3.0)
Choice Guard (Version: 1.2.87.0)
Citrix Receiver (HDX Flash Redirection) (Version: 13.0.0.6685)
Citrix Receiver (Version: 13.0.0.6685)
Citrix Receiver Inside (Version: 3.0.0.56418)
Citrix Receiver(Aero) (Version: 13.0.0.6685)
Citrix Receiver(DV) (Version: 13.0.0.6685)
Citrix Receiver(USB) (Version: 13.0.0.6685)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
ControlDeck (Version: 1.0.5)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
DVD Decrypter (Remove Only)
ESET Online Scanner v3
ETDWare PS/2-x64 7.0.5.9_WHQL
Fast Boot (Version: 1.0.5)
Google Gmail Notifier
Google Talk Plugin (Version: 2.9.10.7526)
iCloud (Version: 1.1.0.40)
Intel® Control Center (Version: 1.2.1.1007)
Intel® Graphics Media Accelerator Driver (Version: 8.15.10.2021)
iTunes (Version: 10.6.1.7)
Java Auto Updater (Version: 2.0.6.1)
Java™ 6 Update 30 (Version: 6.0.300)
LeapFrog Connect (Version: 3.2.19.13664)
LeapFrog My Pals Plugin (Version: 3.2.19.13664)
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Live Add-in 1.3 (Version: 2.0.2313.0)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Works (Version: 9.7.0621)
Mozilla Firefox 13.0 (x86 en-US) (Version: 13.0)
Mozilla Maintenance Service (Version: 13.0)
MSXML 4.0 SP3 Parser (KB973685) (Version: 4.30.2107.0)
Online Plug-in (Version: 13.0.0.6685)
PaperPort Image Printer 64-bit (Version: 1.00.0000)
Platform (Version: 1.34)
QuickTime (Version: 7.71.80.42)
Roxio Burn (Version: 1.2)
Roxio Roxio Burn (Version: 1.0.0)
Roxio Update Manager (Version: 6.0.0)
ScanSoft PaperPort 11 (Version: 11.2.0000)
Skype Click to Call (Version: 5.9.9216)
Skype™ 5.8 (Version: 5.8.158)
SRS Premium Sound Control Panel (Version: 1.8.2300)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553092)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553385) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2597091) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2589345) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2553248) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Use the entry named LeapFrog Connect to uninstall (LeapFrog My Pals Plugin)
VIA Platform Device Manager (Version: 1.34)
Videora iPod Converter 5.04 (Version: 5.04)
VLC media player 1.1.4 (Version: 1.1.4)
vShare Plugin
Windows Driver Package - Leapfrog (Leapfrog-USBLAN) Net (09/10/2009 02.03.05.012) (Version: 09/10/2009 02.03.05.012)
Windows Live Sign-in Assistant (Version: 5.000.818.6)
Windows Live Sync (Version: 14.0.8050.1202)
Windows Live Upload Tool (Version: 14.0.8014.1029)
WinFlash (Version: 2.29.0)
WinZip 15.5 (Version: 15.5.9510)
Wireless Console 3 (Version: 3.0.15)

========================= Memory info: ===================================

Percentage of memory in use: 49%
Total physical RAM: 3037.09 MB
Available physical RAM: 1542.02 MB
Total Pagefile: 6072.36 MB
Available Pagefile: 4544.84 MB
Total Virtual: 4095.88 MB
Available Virtual: 3972.43 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:281.49 GB) (Free:196.56 GB) NTFS
2 Drive e: (Katelyn Baptism) (CDROM) (Total:0.69 GB) (Free:0.48 GB) UDF

========================= Users: ========================================

User accounts for \\WASH_LAPTOP

Administrator Bill Guest
Mary


**** End of log ****

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:47 PM

Posted 20 June 2012 - 07:13 PM

Re run ASWMBR and post the log

#7 wfwalsh

wfwalsh
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:09:47 PM

Posted 20 June 2012 - 08:33 PM

Here's the ASWMBR log:

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-06-20 20:40:20
-----------------------------
20:40:20.410 OS Version: Windows x64 6.1.7601 Service Pack 1
20:40:20.410 Number of processors: 2 586 0x170A
20:40:20.410 ComputerName: WASH_LAPTOP UserName: Mary
20:40:21.643 Initialize success
20:40:30.068 AVAST engine defs: 12061901
20:41:44.917 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
20:41:44.932 Disk 0 Vendor: WDC_WD32 01.0 Size: 305245MB BusType: 3
20:41:44.948 Disk 0 MBR read successfully
20:41:44.948 Disk 0 MBR scan
20:41:44.963 Disk 0 Windows VISTA default MBR code
20:41:44.979 Disk 0 Partition 1 00 1C Hidd FAT32 LBA MSDOS5.0 16997 MB offset 2048
20:41:44.995 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 288245 MB offset 34812855
20:41:45.026 Disk 0 scanning C:\Windows\system32\drivers
20:41:56.648 Service scanning
20:42:27.754 Modules scanning
20:42:27.754 Disk 0 trace - called modules:
20:42:27.801 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys iaStor.sys hal.dll
20:42:27.817 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800305e760]
20:42:27.817 3 CLASSPNP.SYS[fffff88001bc543f] -> nt!IofCallDriver -> [0xfffffa8002e6a5f0]
20:42:27.832 5 ACPI.sys[fffff88000f7a7a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8002e91050]
20:42:29.377 AVAST engine scan C:\Windows
20:42:32.309 AVAST engine scan C:\Windows\system32
20:46:13.652 AVAST engine scan C:\Windows\system32\drivers
20:46:33.666 AVAST engine scan C:\Users\Mary
21:13:49.658 AVAST engine scan C:\ProgramData
21:15:58.202 Scan finished successfully
21:30:42.350 Disk 0 MBR has been saved successfully to "C:\Users\Mary\Desktop\MBR.dat"
21:30:42.662 The log file has been saved successfully to "C:\Users\Mary\Desktop\aswMBR.txt"
21:31:26.090 Disk 0 MBR has been saved successfully to "C:\Users\Mary\Desktop\MBR.dat"
21:31:26.106 The log file has been saved successfully to "C:\Users\Mary\Desktop\aswMBR.txt"

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:47 PM

Posted 20 June 2012 - 08:55 PM

That looks good

Download

TFC


Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Update your flash player

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp


Update your antivirus frequently,do not click on suspicious links

Safe surfing :)

#9 wfwalsh

wfwalsh
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:09:47 PM

Posted 20 June 2012 - 09:55 PM

Thank you so much for your help.

Should I run "unhide" to recover my lost shortcuts and icons?

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:47 PM

Posted 20 June 2012 - 10:07 PM

IMPORTANT:Do not turn off your restore points

Yes you have run UNHIDE ,after running unhide let me know how your startmenu programs looks.We may need to use another procedure to restore startmenu programs

You should have informed me regarding hidden icons first !!!!

#11 wfwalsh

wfwalsh
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:09:47 PM

Posted 20 June 2012 - 10:29 PM

After running unhide, it appears that the entirety of the Start menu has been restored.

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:47 PM

Posted 20 June 2012 - 10:36 PM

I want you to expand your startmenu programs and check.If all icons have been restored then you can continue with instructions.

safe surfing :thumbsup:

#13 wfwalsh

wfwalsh
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:09:47 PM

Posted 20 June 2012 - 10:51 PM

I expanded everything and it doesn't appear that I'm missing any icons in the start menu.

Thanks again.

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:47 PM

Posted 20 June 2012 - 11:45 PM

You're welcome :thumbup2:




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users