Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Gen-RogueAv took over my desktop


  • Please log in to reply
13 replies to this topic

#1 Pinkie319

Pinkie319

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:10:36 PM

Posted 22 June 2012 - 12:57 PM

A couple days ago, while visiting a site I've trusted for years, I received a slew of error messages. I've had malware that has done stuff like this in the past and knew what was going on right away. In my panic, I shut down the computer without even reading the messages. Upon restarting, what I thought was a valid program called "system repair" demanded that it run a scan. I allowed it for a few minutes before I smelled something fishy and shut down again. I then disconnected the internet and restarted again, logging into safe mode. I ran a quick scan with SuperAntiSpyware and it found Gen-RogueAV in(**USER)/Appdata/local/temp/muru4FCXXOEO1B.EXE.TMP then removed it.

For a second there, I was surprised by how easy that one was compared to other issues I've had to deal with but when I restarted and logged back in, I found my desktop almost completely empty - folders full of music and photographs had just disappeared. AaaAaAHhHhhHh!!

I tried three different dates in system restore and my beloved files still won't come back. I get the feeling gen-rogue still has a grip on my machine and I don't know what else to do. Please help!

(I'm running Windows 7 on a Dell StudioSPX with Microsoft Security Essentials, SuperAntiSpyware, and weekly deep scans with Advanced System Care)

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:36 PM

Posted 22 June 2012 - 01:06 PM

Boot the PC into safemode with networking

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

Download UNHIDE from here

http://www.bleepingcomputer.com/download/unhide/

This should unhide your files

#3 Pinkie319

Pinkie319
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:10:36 PM

Posted 22 June 2012 - 04:06 PM

UNHIDE worked. I can see all the stuff that was missing on my desktop (THANK YOU!). I haven't done anything to remove the problems found by ESET, just posting the results for further instruction. As far as The Sims goes, boring game, wouldn't mind taking the whole thing off of the external drive.


TDSSkiller Log:

16:10:27.0754 1648 TDSS rootkit removing tool 2.7.41.0 Jun 20 2012 20:53:32
16:10:28.0004 1648 ============================================================
16:10:28.0004 1648 Current date / time: 2012/06/22 16:10:28.0004
16:10:28.0004 1648 SystemInfo:
16:10:28.0004 1648
16:10:28.0004 1648 OS Version: 6.1.7601 ServicePack: 1.0
16:10:28.0004 1648 Product type: Workstation
16:10:28.0004 1648 ComputerName: HOME
16:10:28.0004 1648 UserName: Tessa
16:10:28.0004 1648 Windows directory: C:\Windows
16:10:28.0004 1648 System windows directory: C:\Windows
16:10:28.0004 1648 Running under WOW64
16:10:28.0004 1648 Processor architecture: Intel x64
16:10:28.0004 1648 Number of processors: 6
16:10:28.0004 1648 Page size: 0x1000
16:10:28.0004 1648 Boot type: Safe boot with network
16:10:28.0004 1648 ============================================================
16:10:29.0299 1648 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:10:29.0299 1648 Drive \Device\Harddisk1\DR1 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:10:29.0314 1648 ============================================================
16:10:29.0314 1648 \Device\Harddisk0\DR0:
16:10:29.0314 1648 MBR partitions:
16:10:29.0314 1648 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x17E9000
16:10:29.0314 1648 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x17FD000, BlocksNum 0x72F09000
16:10:29.0314 1648 \Device\Harddisk1\DR1:
16:10:29.0314 1648 MBR partitions:
16:10:29.0314 1648 \Device\Harddisk1\DR1\Partition0: MBR, Type 0xC, StartLBA 0x3F, BlocksNum 0x254297C1
16:10:29.0314 1648 ============================================================
16:10:29.0377 1648 C: <-> \Device\Harddisk0\DR0\Partition1
16:10:29.0377 1648 I: <-> \Device\Harddisk1\DR1\Partition0
16:10:29.0377 1648 ============================================================
16:10:29.0377 1648 Initialize success
16:10:29.0377 1648 ============================================================
16:10:47.0722 0328 ============================================================
16:10:47.0722 0328 Scan started
16:10:47.0722 0328 Mode: Manual; TDLFS;
16:10:47.0722 0328 ============================================================
16:10:49.0235 0328 !SASCORE (7d9d615201a483d6fa99491c2e655a5a) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
16:10:49.0235 0328 !SASCORE - ok
16:10:49.0360 0328 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
16:10:49.0360 0328 1394ohci - ok
16:10:49.0391 0328 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
16:10:49.0391 0328 ACPI - ok
16:10:49.0423 0328 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
16:10:49.0423 0328 AcpiPmi - ok
16:10:49.0501 0328 AdobeFlashPlayerUpdateSvc (76d5a3d2a50402a0b9b6ed13c4371e79) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:10:49.0501 0328 AdobeFlashPlayerUpdateSvc - ok
16:10:49.0547 0328 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
16:10:49.0547 0328 adp94xx - ok
16:10:49.0563 0328 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
16:10:49.0563 0328 adpahci - ok
16:10:49.0579 0328 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
16:10:49.0579 0328 adpu320 - ok
16:10:49.0719 0328 AdvancedSystemCareService5 (b11c71b29fa69e4586f9b65560e6604d) C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCService.exe
16:10:49.0735 0328 AdvancedSystemCareService5 - ok
16:10:49.0750 0328 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
16:10:49.0766 0328 AeLookupSvc - ok
16:10:49.0797 0328 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
16:10:49.0813 0328 AFD - ok
16:10:49.0828 0328 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
16:10:49.0828 0328 agp440 - ok
16:10:49.0859 0328 ahcix64s (af53917d9741a84627fa689ea622558a) C:\Windows\system32\DRIVERS\ahcix64s.sys
16:10:49.0859 0328 ahcix64s - ok
16:10:49.0859 0328 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
16:10:49.0859 0328 ALG - ok
16:10:49.0875 0328 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
16:10:49.0875 0328 aliide - ok
16:10:49.0906 0328 AMD External Events Utility (f0e61cf2c0fda5b011cd1cb2e2353c9a) C:\Windows\system32\atiesrxx.exe
16:10:49.0906 0328 AMD External Events Utility - ok
16:10:49.0937 0328 AMDFusionSVC (b2b7d8f695b5d97a63eda789e9d237e1) c:\Program Files (x86)\AMD\AMD Fusion Utility for Desktops\FusionSVC.exe
16:10:49.0937 0328 AMDFusionSVC - ok
16:10:49.0953 0328 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
16:10:49.0953 0328 amdide - ok
16:10:49.0969 0328 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
16:10:49.0969 0328 AmdK8 - ok
16:10:50.0140 0328 amdkmdag (cf3db4d8b2ce0b282ab39c9d846eca74) C:\Windows\system32\DRIVERS\atikmdag.sys
16:10:50.0234 0328 amdkmdag - ok
16:10:50.0312 0328 amdkmdap (7d07db26f6d3a16a6c8d34ce6c09fd01) C:\Windows\system32\DRIVERS\atikmpag.sys
16:10:50.0327 0328 amdkmdap - ok
16:10:50.0343 0328 AmdLLD64 (c27e46c19d5a48ca02c11e3c9b58f4c1) C:\Windows\system32\DRIVERS\AmdLLD64.sys
16:10:50.0343 0328 AmdLLD64 - ok
16:10:50.0343 0328 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
16:10:50.0343 0328 AmdPPM - ok
16:10:50.0359 0328 amdsata (53d8d46d51d390abdb54eca623165cb7) C:\Windows\system32\DRIVERS\amdsata.sys
16:10:50.0359 0328 amdsata - ok
16:10:50.0374 0328 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
16:10:50.0374 0328 amdsbs - ok
16:10:50.0390 0328 amdxata (75c51148154e34eb3d7bb84749a758d5) C:\Windows\system32\DRIVERS\amdxata.sys
16:10:50.0390 0328 amdxata - ok
16:10:50.0405 0328 AMD_RAIDXpert (b01289cc07a2e21c4efca722d1efb243) C:\Program Files (x86)\AMD\RAIDXpert\bin\RAIDXpertService.exe
16:10:50.0405 0328 AMD_RAIDXpert - ok
16:10:50.0452 0328 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
16:10:50.0452 0328 AppID - ok
16:10:50.0468 0328 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
16:10:50.0468 0328 AppIDSvc - ok
16:10:50.0515 0328 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
16:10:50.0515 0328 Appinfo - ok
16:10:50.0577 0328 Apple Mobile Device (20f6f19fe9e753f2780dc2fa083ad597) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:10:50.0577 0328 Apple Mobile Device - ok
16:10:50.0593 0328 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
16:10:50.0593 0328 arc - ok
16:10:50.0593 0328 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
16:10:50.0593 0328 arcsas - ok
16:10:50.0608 0328 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
16:10:50.0608 0328 AsyncMac - ok
16:10:50.0624 0328 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
16:10:50.0624 0328 atapi - ok
16:10:50.0639 0328 AtiHdmiService (637e0753bd6deb8ea5314a5c357ec1a0) C:\Windows\system32\drivers\AtiHdmi.sys
16:10:50.0639 0328 AtiHdmiService - ok
16:10:50.0686 0328 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
16:10:50.0686 0328 AudioEndpointBuilder - ok
16:10:50.0686 0328 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
16:10:50.0702 0328 AudioSrv - ok
16:10:50.0733 0328 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
16:10:50.0733 0328 AxInstSV - ok
16:10:50.0749 0328 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
16:10:50.0749 0328 b06bdrv - ok
16:10:50.0764 0328 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
16:10:50.0764 0328 b57nd60a - ok
16:10:50.0795 0328 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
16:10:50.0795 0328 BDESVC - ok
16:10:50.0795 0328 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
16:10:50.0795 0328 Beep - ok
16:10:50.0827 0328 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
16:10:50.0827 0328 BFE - ok
16:10:50.0858 0328 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
16:10:50.0905 0328 BITS - ok
16:10:50.0920 0328 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
16:10:50.0920 0328 blbdrive - ok
16:10:50.0983 0328 Bonjour Service (f2060a34c8a75bc24a9222eb4f8c07bd) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
16:10:50.0983 0328 Bonjour Service - ok
16:10:51.0014 0328 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
16:10:51.0014 0328 bowser - ok
16:10:51.0014 0328 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
16:10:51.0014 0328 BrFiltLo - ok
16:10:51.0029 0328 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
16:10:51.0029 0328 BrFiltUp - ok
16:10:51.0061 0328 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
16:10:51.0061 0328 Browser - ok
16:10:51.0076 0328 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
16:10:51.0092 0328 Brserid - ok
16:10:51.0107 0328 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
16:10:51.0107 0328 BrSerWdm - ok
16:10:51.0123 0328 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
16:10:51.0123 0328 BrUsbMdm - ok
16:10:51.0123 0328 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
16:10:51.0123 0328 BrUsbSer - ok
16:10:51.0139 0328 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
16:10:51.0139 0328 BTHMODEM - ok
16:10:51.0154 0328 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
16:10:51.0154 0328 bthserv - ok
16:10:51.0154 0328 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
16:10:51.0154 0328 cdfs - ok
16:10:51.0185 0328 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
16:10:51.0185 0328 cdrom - ok
16:10:51.0217 0328 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
16:10:51.0217 0328 CertPropSvc - ok
16:10:51.0248 0328 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
16:10:51.0248 0328 circlass - ok
16:10:51.0263 0328 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
16:10:51.0263 0328 CLFS - ok
16:10:51.0310 0328 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:10:51.0310 0328 clr_optimization_v2.0.50727_32 - ok
16:10:51.0326 0328 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:10:51.0341 0328 clr_optimization_v2.0.50727_64 - ok
16:10:51.0404 0328 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:10:51.0419 0328 clr_optimization_v4.0.30319_32 - ok
16:10:51.0435 0328 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:10:51.0451 0328 clr_optimization_v4.0.30319_64 - ok
16:10:51.0451 0328 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
16:10:51.0466 0328 CmBatt - ok
16:10:51.0482 0328 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
16:10:51.0482 0328 cmdide - ok
16:10:51.0529 0328 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
16:10:51.0529 0328 CNG - ok
16:10:51.0544 0328 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
16:10:51.0544 0328 Compbatt - ok
16:10:51.0575 0328 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
16:10:51.0575 0328 CompositeBus - ok
16:10:51.0575 0328 COMSysApp - ok
16:10:51.0575 0328 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
16:10:51.0575 0328 crcdisk - ok
16:10:51.0607 0328 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll
16:10:51.0607 0328 CryptSvc - ok
16:10:51.0638 0328 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
16:10:51.0638 0328 DcomLaunch - ok
16:10:51.0669 0328 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
16:10:51.0669 0328 defragsvc - ok
16:10:51.0700 0328 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
16:10:51.0700 0328 DfsC - ok
16:10:51.0747 0328 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
16:10:51.0747 0328 Dhcp - ok
16:10:51.0763 0328 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
16:10:51.0778 0328 discache - ok
16:10:51.0778 0328 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
16:10:51.0778 0328 Disk - ok
16:10:51.0809 0328 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
16:10:51.0809 0328 Dnscache - ok
16:10:51.0872 0328 DockLoginService (0840abbbdf438691ee65a20040635cbe) C:\Program Files\Dell\DellDock\DockLogin.exe
16:10:51.0872 0328 DockLoginService - ok
16:10:51.0919 0328 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
16:10:51.0919 0328 dot3svc - ok
16:10:51.0950 0328 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
16:10:51.0950 0328 DPS - ok
16:10:51.0981 0328 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
16:10:51.0981 0328 drmkaud - ok
16:10:52.0012 0328 dtsoftbus01 (9f98d7afa293947a0dfc6ffd4671fe70) C:\Windows\system32\DRIVERS\dtsoftbus01.sys
16:10:52.0012 0328 dtsoftbus01 - ok
16:10:52.0075 0328 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
16:10:52.0090 0328 DXGKrnl - ok
16:10:52.0106 0328 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
16:10:52.0106 0328 EapHost - ok
16:10:52.0184 0328 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
16:10:52.0262 0328 ebdrv - ok
16:10:52.0355 0328 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
16:10:52.0355 0328 EFS - ok
16:10:52.0402 0328 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
16:10:52.0418 0328 ehRecvr - ok
16:10:52.0449 0328 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
16:10:52.0449 0328 ehSched - ok
16:10:52.0465 0328 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
16:10:52.0465 0328 elxstor - ok
16:10:52.0496 0328 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
16:10:52.0496 0328 ErrDev - ok
16:10:52.0511 0328 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
16:10:52.0511 0328 EventSystem - ok
16:10:52.0527 0328 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
16:10:52.0527 0328 exfat - ok
16:10:52.0543 0328 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
16:10:52.0543 0328 fastfat - ok
16:10:52.0589 0328 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
16:10:52.0589 0328 Fax - ok
16:10:52.0605 0328 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
16:10:52.0621 0328 fdc - ok
16:10:52.0652 0328 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
16:10:52.0652 0328 fdPHost - ok
16:10:52.0652 0328 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
16:10:52.0652 0328 FDResPub - ok
16:10:52.0667 0328 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
16:10:52.0667 0328 FileInfo - ok
16:10:52.0683 0328 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
16:10:52.0683 0328 Filetrace - ok
16:10:52.0714 0328 FLEXnet Licensing Service (8669be94f63944e4f899c3950b520241) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
16:10:52.0730 0328 FLEXnet Licensing Service - ok
16:10:52.0745 0328 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
16:10:52.0745 0328 flpydisk - ok
16:10:52.0792 0328 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
16:10:52.0792 0328 FltMgr - ok
16:10:52.0823 0328 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
16:10:52.0855 0328 FontCache - ok
16:10:52.0917 0328 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:10:52.0917 0328 FontCache3.0.0.0 - ok
16:10:52.0933 0328 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
16:10:52.0933 0328 FsDepends - ok
16:10:52.0979 0328 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
16:10:52.0979 0328 Fs_Rec - ok
16:10:53.0026 0328 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
16:10:53.0026 0328 fvevol - ok
16:10:53.0042 0328 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
16:10:53.0042 0328 gagp30kx - ok
16:10:53.0073 0328 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
16:10:53.0073 0328 GEARAspiWDM - ok
16:10:53.0104 0328 GoToAssist (d3316f6e3c011435f36e3d6e49b3196c) C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
16:10:53.0104 0328 GoToAssist - ok
16:10:53.0135 0328 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
16:10:53.0135 0328 gpsvc - ok
16:10:53.0182 0328 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:10:53.0182 0328 gupdate - ok
16:10:53.0182 0328 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:10:53.0182 0328 gupdatem - ok
16:10:53.0198 0328 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
16:10:53.0198 0328 hcw85cir - ok
16:10:53.0213 0328 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
16:10:53.0213 0328 HDAudBus - ok
16:10:53.0229 0328 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
16:10:53.0229 0328 HidBatt - ok
16:10:53.0229 0328 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
16:10:53.0245 0328 HidBth - ok
16:10:53.0245 0328 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
16:10:53.0245 0328 HidIr - ok
16:10:53.0260 0328 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
16:10:53.0260 0328 hidserv - ok
16:10:53.0291 0328 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\drivers\hidusb.sys
16:10:53.0291 0328 HidUsb - ok
16:10:53.0323 0328 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
16:10:53.0323 0328 hkmsvc - ok
16:10:53.0354 0328 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
16:10:53.0354 0328 HomeGroupListener - ok
16:10:53.0369 0328 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
16:10:53.0369 0328 HomeGroupProvider - ok
16:10:53.0401 0328 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
16:10:53.0401 0328 HpSAMD - ok
16:10:53.0432 0328 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
16:10:53.0447 0328 HTTP - ok
16:10:53.0463 0328 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
16:10:53.0463 0328 hwpolicy - ok
16:10:53.0494 0328 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
16:10:53.0494 0328 i8042prt - ok
16:10:54.0025 0328 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
16:10:54.0040 0328 iaStorV - ok
16:10:54.0836 0328 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:10:54.0914 0328 idsvc - ok
16:10:54.0961 0328 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
16:10:54.0961 0328 iirsp - ok
16:10:55.0195 0328 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
16:10:55.0210 0328 IKEEXT - ok
16:10:55.0273 0328 IntcAzAudAddService (52d9171838bb92319f23656f502916e9) C:\Windows\system32\drivers\RTKVHD64.sys
16:10:55.0319 0328 IntcAzAudAddService - ok
16:10:55.0413 0328 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
16:10:55.0413 0328 intelide - ok
16:10:55.0429 0328 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
16:10:55.0429 0328 intelppm - ok
16:10:55.0460 0328 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
16:10:55.0460 0328 IPBusEnum - ok
16:10:55.0491 0328 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:10:55.0491 0328 IpFilterDriver - ok
16:10:55.0522 0328 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
16:10:55.0538 0328 iphlpsvc - ok
16:10:55.0553 0328 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
16:10:55.0553 0328 IPMIDRV - ok
16:10:55.0569 0328 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
16:10:55.0569 0328 IPNAT - ok
16:10:55.0631 0328 iPod Service (a3bda1a8a016b5e5a525bcf684894ebe) C:\Program Files\iPod\bin\iPodService.exe
16:10:55.0631 0328 iPod Service - ok
16:10:55.0647 0328 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
16:10:55.0647 0328 IRENUM - ok
16:10:55.0663 0328 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
16:10:55.0663 0328 isapnp - ok
16:10:55.0694 0328 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
16:10:55.0694 0328 iScsiPrt - ok
16:10:55.0725 0328 k57nd60a (9d7ea8c7215d8d4ae7be110eee61085d) C:\Windows\system32\DRIVERS\k57nd60a.sys
16:10:55.0725 0328 k57nd60a - ok
16:10:55.0741 0328 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
16:10:55.0741 0328 kbdclass - ok
16:10:55.0756 0328 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
16:10:55.0772 0328 kbdhid - ok
16:10:55.0787 0328 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
16:10:55.0787 0328 KeyIso - ok
16:10:55.0819 0328 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
16:10:55.0819 0328 KSecDD - ok
16:10:55.0850 0328 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
16:10:55.0850 0328 KSecPkg - ok
16:10:55.0865 0328 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
16:10:55.0865 0328 ksthunk - ok
16:10:55.0881 0328 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
16:10:55.0881 0328 KtmRm - ok
16:10:55.0912 0328 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
16:10:55.0912 0328 LanmanServer - ok
16:10:55.0928 0328 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
16:10:55.0943 0328 LanmanWorkstation - ok
16:10:55.0959 0328 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
16:10:55.0959 0328 lltdio - ok
16:10:55.0975 0328 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
16:10:55.0975 0328 lltdsvc - ok
16:10:55.0990 0328 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
16:10:55.0990 0328 lmhosts - ok
16:10:56.0006 0328 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
16:10:56.0006 0328 LSI_FC - ok
16:10:56.0021 0328 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
16:10:56.0021 0328 LSI_SAS - ok
16:10:56.0021 0328 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
16:10:56.0021 0328 LSI_SAS2 - ok
16:10:56.0037 0328 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
16:10:56.0037 0328 LSI_SCSI - ok
16:10:56.0053 0328 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
16:10:56.0053 0328 luafv - ok
16:10:56.0099 0328 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
16:10:56.0115 0328 Mcx2Svc - ok
16:10:56.0131 0328 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
16:10:56.0146 0328 megasas - ok
16:10:56.0146 0328 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
16:10:56.0162 0328 MegaSR - ok
16:10:56.0177 0328 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
16:10:56.0177 0328 MMCSS - ok
16:10:56.0177 0328 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
16:10:56.0177 0328 Modem - ok
16:10:56.0209 0328 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
16:10:56.0209 0328 monitor - ok
16:10:56.0240 0328 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\drivers\mouclass.sys
16:10:56.0240 0328 mouclass - ok
16:10:56.0255 0328 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
16:10:56.0255 0328 mouhid - ok
16:10:56.0287 0328 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
16:10:56.0287 0328 mountmgr - ok
16:10:56.0318 0328 MpFilter (94c66ededcdb6a126880472f9a704d8e) C:\Windows\system32\DRIVERS\MpFilter.sys
16:10:56.0333 0328 MpFilter - ok
16:10:56.0365 0328 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
16:10:56.0365 0328 mpio - ok
16:10:56.0380 0328 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
16:10:56.0396 0328 mpsdrv - ok
16:10:56.0443 0328 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
16:10:56.0443 0328 MpsSvc - ok
16:10:56.0505 0328 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
16:10:56.0505 0328 MRxDAV - ok
16:10:56.0536 0328 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
16:10:56.0536 0328 mrxsmb - ok
16:10:56.0567 0328 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:10:56.0567 0328 mrxsmb10 - ok
16:10:56.0583 0328 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:10:56.0583 0328 mrxsmb20 - ok
16:10:56.0599 0328 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
16:10:56.0599 0328 msahci - ok
16:10:56.0599 0328 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
16:10:56.0614 0328 msdsm - ok
16:10:56.0614 0328 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
16:10:56.0614 0328 MSDTC - ok
16:10:56.0661 0328 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
16:10:56.0661 0328 Msfs - ok
16:10:56.0661 0328 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
16:10:56.0661 0328 mshidkmdf - ok
16:10:56.0677 0328 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
16:10:56.0692 0328 msisadrv - ok
16:10:56.0708 0328 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
16:10:56.0708 0328 MSiSCSI - ok
16:10:56.0708 0328 msiserver - ok
16:10:56.0708 0328 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
16:10:56.0708 0328 MSKSSRV - ok
16:10:56.0770 0328 MsMpSvc (59faaf2c83c8169ea20f9e335e418907) c:\Program Files\Microsoft Security Client\MsMpEng.exe
16:10:56.0770 0328 MsMpSvc - ok
16:10:56.0801 0328 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
16:10:56.0801 0328 MSPCLOCK - ok
16:10:56.0801 0328 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
16:10:56.0801 0328 MSPQM - ok
16:10:56.0817 0328 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
16:10:56.0817 0328 MsRPC - ok
16:10:56.0895 0328 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
16:10:56.0895 0328 mssmbios - ok
16:10:56.0911 0328 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
16:10:56.0911 0328 MSTEE - ok
16:10:56.0911 0328 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
16:10:56.0911 0328 MTConfig - ok
16:10:56.0926 0328 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
16:10:56.0926 0328 Mup - ok
16:10:56.0973 0328 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
16:10:56.0973 0328 napagent - ok
16:10:56.0989 0328 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
16:10:57.0004 0328 NativeWifiP - ok
16:10:57.0035 0328 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
16:10:57.0035 0328 NDIS - ok
16:10:57.0067 0328 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
16:10:57.0067 0328 NdisCap - ok
16:10:57.0082 0328 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
16:10:57.0082 0328 NdisTapi - ok
16:10:57.0113 0328 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
16:10:57.0113 0328 Ndisuio - ok
16:10:57.0145 0328 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
16:10:57.0145 0328 NdisWan - ok
16:10:57.0191 0328 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
16:10:57.0191 0328 NDProxy - ok
16:10:57.0207 0328 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
16:10:57.0207 0328 NetBIOS - ok
16:10:57.0238 0328 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
16:10:57.0238 0328 NetBT - ok
16:10:57.0269 0328 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
16:10:57.0269 0328 Netlogon - ok
16:10:57.0301 0328 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
16:10:57.0301 0328 Netman - ok
16:10:57.0316 0328 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
16:10:57.0332 0328 netprofm - ok
16:10:57.0379 0328 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:10:57.0394 0328 NetTcpPortSharing - ok
16:10:57.0394 0328 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
16:10:57.0394 0328 nfrd960 - ok
16:10:57.0425 0328 NisDrv (91b4e0273d2f6c24ef845f2b41311289) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
16:10:57.0425 0328 NisDrv - ok
16:10:57.0488 0328 NisSrv (10a43829a9e606af3eef25a1c1665923) c:\Program Files\Microsoft Security Client\NisSrv.exe
16:10:57.0488 0328 NisSrv - ok
16:10:57.0519 0328 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
16:10:57.0519 0328 NlaSvc - ok
16:10:57.0535 0328 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
16:10:57.0535 0328 Npfs - ok
16:10:57.0535 0328 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
16:10:57.0535 0328 nsi - ok
16:10:57.0550 0328 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
16:10:57.0550 0328 nsiproxy - ok
16:10:57.0597 0328 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
16:10:57.0644 0328 Ntfs - ok
16:10:57.0706 0328 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
16:10:57.0706 0328 Null - ok
16:10:57.0737 0328 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
16:10:57.0737 0328 nvraid - ok
16:10:57.0753 0328 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
16:10:57.0753 0328 nvstor - ok
16:10:57.0784 0328 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
16:10:57.0784 0328 nv_agp - ok
16:10:57.0800 0328 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
16:10:57.0800 0328 ohci1394 - ok
16:10:57.0815 0328 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
16:10:57.0831 0328 p2pimsvc - ok
16:10:57.0847 0328 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
16:10:57.0847 0328 p2psvc - ok
16:10:57.0862 0328 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
16:10:57.0862 0328 Parport - ok
16:10:57.0893 0328 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
16:10:57.0893 0328 partmgr - ok
16:10:58.0018 0328 pbfilter (55223eefabfdb84a926515febab50d9a) C:\Users\Tessa\Documents\PeerBlock_r181__x64_Release_(Vista)[1]\pbfilter.sys
16:10:58.0018 0328 pbfilter - ok
16:10:58.0049 0328 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
16:10:58.0049 0328 PcaSvc - ok
16:10:58.0096 0328 PCDSRVC{1E208CE0-FB7451FF-06020101}_0 (7317a0b550f7ac0223b7070897670476) c:\program files\dell support center\pcdsrvc_x64.pkms
16:10:58.0112 0328 PCDSRVC{1E208CE0-FB7451FF-06020101}_0 - ok
16:10:58.0143 0328 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
16:10:58.0143 0328 pci - ok
16:10:58.0159 0328 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
16:10:58.0159 0328 pciide - ok
16:10:58.0174 0328 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
16:10:58.0174 0328 pcmcia - ok
16:10:58.0190 0328 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
16:10:58.0190 0328 pcw - ok
16:10:58.0205 0328 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
16:10:58.0205 0328 PEAUTH - ok
16:10:58.0252 0328 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
16:10:58.0283 0328 PerfHost - ok
16:10:58.0330 0328 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
16:10:58.0361 0328 pla - ok
16:10:58.0393 0328 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
16:10:58.0393 0328 PlugPlay - ok
16:10:58.0424 0328 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
16:10:58.0424 0328 PNRPAutoReg - ok
16:10:58.0439 0328 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
16:10:58.0439 0328 PNRPsvc - ok
16:10:58.0502 0328 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
16:10:58.0502 0328 PolicyAgent - ok
16:10:58.0517 0328 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
16:10:58.0517 0328 Power - ok
16:10:58.0580 0328 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
16:10:58.0580 0328 PptpMiniport - ok
16:10:58.0595 0328 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
16:10:58.0595 0328 Processor - ok
16:10:58.0627 0328 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
16:10:58.0627 0328 ProfSvc - ok
16:10:58.0642 0328 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
16:10:58.0658 0328 ProtectedStorage - ok
16:10:58.0673 0328 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
16:10:58.0689 0328 Psched - ok
16:10:58.0705 0328 PxHlpa64 (87b04878a6d59d6c79251dc960c674c1) C:\Windows\system32\Drivers\PxHlpa64.sys
16:10:58.0705 0328 PxHlpa64 - ok
16:10:58.0751 0328 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
16:10:58.0783 0328 ql2300 - ok
16:10:58.0845 0328 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
16:10:58.0845 0328 ql40xx - ok
16:10:58.0861 0328 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
16:10:58.0861 0328 QWAVE - ok
16:10:58.0876 0328 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
16:10:58.0876 0328 QWAVEdrv - ok
16:10:58.0892 0328 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
16:10:58.0892 0328 RasAcd - ok
16:10:58.0907 0328 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
16:10:58.0907 0328 RasAgileVpn - ok
16:10:58.0907 0328 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
16:10:58.0907 0328 RasAuto - ok
16:10:58.0954 0328 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
16:10:58.0954 0328 Rasl2tp - ok
16:10:59.0001 0328 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
16:10:59.0001 0328 RasMan - ok
16:10:59.0017 0328 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
16:10:59.0017 0328 RasPppoe - ok
16:10:59.0017 0328 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
16:10:59.0017 0328 RasSstp - ok
16:10:59.0048 0328 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
16:10:59.0048 0328 rdbss - ok
16:10:59.0063 0328 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
16:10:59.0063 0328 rdpbus - ok
16:10:59.0079 0328 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
16:10:59.0079 0328 RDPCDD - ok
16:10:59.0079 0328 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
16:10:59.0079 0328 RDPENCDD - ok
16:10:59.0095 0328 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
16:10:59.0095 0328 RDPREFMP - ok
16:10:59.0110 0328 RDPWD (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys
16:10:59.0126 0328 RDPWD - ok
16:10:59.0141 0328 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
16:10:59.0157 0328 rdyboost - ok
16:10:59.0173 0328 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
16:10:59.0173 0328 RemoteAccess - ok
16:10:59.0188 0328 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
16:10:59.0188 0328 RemoteRegistry - ok
16:10:59.0204 0328 Revoflt (9c3ac71a9934b884fac567a8807e9c4d) C:\Windows\system32\DRIVERS\revoflt.sys
16:10:59.0204 0328 Revoflt - ok
16:10:59.0266 0328 RichVideo (616f6e52cae254727a886ba8eda1beea) C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
16:10:59.0282 0328 RichVideo - ok
16:10:59.0344 0328 RoxMediaDB12OEM (bddc447ab46625a54619808575d5cb46) C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
16:10:59.0375 0328 RoxMediaDB12OEM - ok
16:10:59.0391 0328 RoxWatch12 (ce203243adf512540249df9c264f12dd) C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
16:10:59.0407 0328 RoxWatch12 - ok
16:10:59.0500 0328 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
16:10:59.0500 0328 RpcEptMapper - ok
16:10:59.0500 0328 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
16:10:59.0500 0328 RpcLocator - ok
16:10:59.0547 0328 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
16:10:59.0547 0328 RpcSs - ok
16:10:59.0563 0328 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
16:10:59.0578 0328 rspndr - ok
16:10:59.0609 0328 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
16:10:59.0609 0328 SamSs - ok
16:10:59.0687 0328 SASDIFSV (3289766038db2cb14d07dc84392138d5) C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
16:10:59.0687 0328 SASDIFSV - ok
16:10:59.0703 0328 SASKUTIL (58a38e75f3316a83c23df6173d41f2b5) C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
16:10:59.0703 0328 SASKUTIL - ok
16:10:59.0734 0328 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
16:10:59.0734 0328 sbp2port - ok
16:10:59.0750 0328 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
16:10:59.0750 0328 SCardSvr - ok
16:10:59.0797 0328 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
16:10:59.0797 0328 scfilter - ok
16:10:59.0828 0328 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
16:10:59.0843 0328 Schedule - ok
16:10:59.0859 0328 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
16:10:59.0859 0328 SCPolicySvc - ok
16:10:59.0890 0328 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
16:10:59.0890 0328 SDRSVC - ok
16:10:59.0906 0328 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
16:10:59.0906 0328 secdrv - ok
16:10:59.0968 0328 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
16:10:59.0968 0328 seclogon - ok
16:10:59.0984 0328 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
16:10:59.0984 0328 SENS - ok
16:10:59.0999 0328 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
16:10:59.0999 0328 SensrSvc - ok
16:11:00.0015 0328 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
16:11:00.0015 0328 Serenum - ok
16:11:00.0031 0328 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
16:11:00.0031 0328 Serial - ok
16:11:00.0046 0328 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
16:11:00.0046 0328 sermouse - ok
16:11:00.0109 0328 ServicepointService (b041aae7a14a0db47583f9c866b8b2ea) C:\Program Files (x86)\Verizon\VSP\ServicepointService.exe
16:11:00.0124 0328 ServicepointService - ok
16:11:00.0140 0328 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
16:11:00.0155 0328 SessionEnv - ok
16:11:00.0171 0328 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
16:11:00.0171 0328 sffdisk - ok
16:11:00.0187 0328 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
16:11:00.0187 0328 sffp_mmc - ok
16:11:00.0187 0328 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
16:11:00.0202 0328 sffp_sd - ok
16:11:00.0202 0328 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
16:11:00.0202 0328 sfloppy - ok
16:11:00.0249 0328 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
16:11:00.0265 0328 SharedAccess - ok
16:11:00.0296 0328 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
16:11:00.0296 0328 ShellHWDetection - ok
16:11:00.0327 0328 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
16:11:00.0327 0328 SiSRaid2 - ok
16:11:00.0327 0328 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
16:11:00.0327 0328 SiSRaid4 - ok
16:11:00.0343 0328 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
16:11:00.0343 0328 Smb - ok
16:11:00.0358 0328 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
16:11:00.0358 0328 SNMPTRAP - ok
16:11:00.0374 0328 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
16:11:00.0374 0328 spldr - ok
16:11:00.0389 0328 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
16:11:00.0405 0328 Spooler - ok
16:11:00.0483 0328 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
16:11:00.0530 0328 sppsvc - ok
16:11:00.0608 0328 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
16:11:00.0608 0328 sppuinotify - ok
16:11:00.0639 0328 sprtsvc_ncnetworksdm - ok
16:11:00.0670 0328 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
16:11:00.0670 0328 srv - ok
16:11:00.0701 0328 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
16:11:00.0701 0328 srv2 - ok
16:11:00.0717 0328 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
16:11:00.0733 0328 srvnet - ok
16:11:00.0733 0328 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
16:11:00.0748 0328 SSDPSRV - ok
16:11:00.0748 0328 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
16:11:00.0764 0328 SstpSvc - ok
16:11:00.0764 0328 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
16:11:00.0764 0328 stexstor - ok
16:11:00.0826 0328 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
16:11:00.0826 0328 stisvc - ok
16:11:00.0904 0328 stllssvr (9e182dd94496550a22a392cc1a8e0f52) C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
16:11:00.0920 0328 stllssvr - ok
16:11:00.0951 0328 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
16:11:00.0951 0328 swenum - ok
16:11:01.0091 0328 SwitchBoard (f577910a133a592234ebaad3f3afa258) C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
16:11:01.0091 0328 SwitchBoard - ok
16:11:01.0123 0328 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
16:11:01.0138 0328 swprv - ok
16:11:01.0201 0328 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
16:11:01.0232 0328 SysMain - ok
16:11:01.0310 0328 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
16:11:01.0325 0328 TabletInputService - ok
16:11:01.0341 0328 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
16:11:01.0341 0328 TapiSrv - ok
16:11:01.0372 0328 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
16:11:01.0372 0328 TBS - ok
16:11:01.0450 0328 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
16:11:01.0481 0328 Tcpip - ok
16:11:01.0559 0328 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
16:11:01.0575 0328 TCPIP6 - ok
16:11:01.0653 0328 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
16:11:01.0653 0328 tcpipreg - ok
16:11:01.0684 0328 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
16:11:01.0684 0328 TDPIPE - ok
16:11:01.0747 0328 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
16:11:01.0747 0328 TDTCP - ok
16:11:01.0793 0328 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
16:11:01.0793 0328 tdx - ok
16:11:01.0809 0328 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
16:11:01.0809 0328 TermDD - ok
16:11:01.0840 0328 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
16:11:01.0840 0328 TermService - ok
16:11:01.0871 0328 tgsrvc_ncnetworksdm - ok
16:11:01.0903 0328 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
16:11:01.0903 0328 Themes - ok
16:11:01.0918 0328 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
16:11:01.0918 0328 THREADORDER - ok
16:11:01.0934 0328 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
16:11:01.0934 0328 TrkWks - ok
16:11:01.0981 0328 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
16:11:01.0996 0328 TrustedInstaller - ok
16:11:02.0027 0328 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
16:11:02.0027 0328 tssecsrv - ok
16:11:02.0059 0328 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
16:11:02.0059 0328 TsUsbFlt - ok
16:11:02.0090 0328 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
16:11:02.0090 0328 tunnel - ok
16:11:02.0105 0328 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
16:11:02.0105 0328 uagp35 - ok
16:11:02.0121 0328 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
16:11:02.0121 0328 udfs - ok
16:11:02.0137 0328 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
16:11:02.0137 0328 UI0Detect - ok
16:11:02.0152 0328 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
16:11:02.0152 0328 uliagpkx - ok
16:11:02.0183 0328 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
16:11:02.0183 0328 umbus - ok
16:11:02.0183 0328 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
16:11:02.0183 0328 UmPass - ok
16:11:02.0199 0328 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
16:11:02.0215 0328 upnphost - ok
16:11:02.0230 0328 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
16:11:02.0230 0328 usbccgp - ok
16:11:02.0261 0328 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
16:11:02.0261 0328 usbcir - ok
16:11:02.0277 0328 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
16:11:02.0277 0328 usbehci - ok
16:11:02.0293 0328 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
16:11:02.0293 0328 usbhub - ok
16:11:02.0308 0328 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\DRIVERS\usbohci.sys
16:11:02.0308 0328 usbohci - ok
16:11:02.0308 0328 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
16:11:02.0308 0328 usbprint - ok
16:11:02.0339 0328 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:11:02.0339 0328 USBSTOR - ok
16:11:02.0355 0328 usbuhci (81fb2216d3a60d1284455d511797db3d) C:\Windows\system32\DRIVERS\usbuhci.sys
16:11:02.0355 0328 usbuhci - ok
16:11:02.0371 0328 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
16:11:02.0371 0328 UxSms - ok
16:11:02.0402 0328 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
16:11:02.0402 0328 VaultSvc - ok
16:11:02.0417 0328 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
16:11:02.0417 0328 vdrvroot - ok
16:11:02.0449 0328 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
16:11:02.0449 0328 vds - ok
16:11:02.0464 0328 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
16:11:02.0464 0328 vga - ok
16:11:02.0480 0328 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
16:11:02.0480 0328 VgaSave - ok
16:11:02.0495 0328 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
16:11:02.0495 0328 vhdmp - ok
16:11:02.0511 0328 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
16:11:02.0511 0328 viaide - ok
16:11:02.0527 0328 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
16:11:02.0527 0328 volmgr - ok
16:11:02.0573 0328 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
16:11:02.0573 0328 volmgrx - ok
16:11:02.0605 0328 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
16:11:02.0605 0328 volsnap - ok
16:11:02.0620 0328 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
16:11:02.0620 0328 vsmraid - ok
16:11:02.0683 0328 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
16:11:02.0729 0328 VSS - ok
16:11:02.0807 0328 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
16:11:02.0807 0328 vwifibus - ok
16:11:02.0823 0328 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
16:11:02.0823 0328 W32Time - ok
16:11:02.0839 0328 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
16:11:02.0839 0328 WacomPen - ok
16:11:02.0839 0328 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
16:11:02.0854 0328 WANARP - ok
16:11:02.0854 0328 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
16:11:02.0854 0328 Wanarpv6 - ok
16:11:02.0901 0328 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
16:11:02.0932 0328 WatAdminSvc - ok
16:11:02.0963 0328 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
16:11:02.0979 0328 wbengine - ok
16:11:03.0026 0328 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
16:11:03.0041 0328 WbioSrvc - ok
16:11:03.0057 0328 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
16:11:03.0073 0328 wcncsvc - ok
16:11:03.0088 0328 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
16:11:03.0088 0328 WcsPlugInService - ok
16:11:03.0104 0328 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
16:11:03.0104 0328 Wd - ok
16:11:03.0135 0328 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
16:11:03.0135 0328 Wdf01000 - ok
16:11:03.0151 0328 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
16:11:03.0151 0328 WdiServiceHost - ok
16:11:03.0151 0328 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
16:11:03.0151 0328 WdiSystemHost - ok
16:11:03.0197 0328 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
16:11:03.0197 0328 WebClient - ok
16:11:03.0213 0328 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
16:11:03.0213 0328 Wecsvc - ok
16:11:03.0229 0328 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
16:11:03.0229 0328 wercplsupport - ok
16:11:03.0229 0328 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
16:11:03.0244 0328 WerSvc - ok
16:11:03.0244 0328 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
16:11:03.0244 0328 WfpLwf - ok
16:11:03.0275 0328 WimFltr (b14ef15bd757fa488f9c970eee9c0d35) C:\Windows\system32\DRIVERS\wimfltr.sys
16:11:03.0275 0328 WimFltr - ok
16:11:03.0275 0328 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
16:11:03.0275 0328 WIMMount - ok
16:11:03.0307 0328 WinDefend - ok
16:11:03.0307 0328 WinHttpAutoProxySvc - ok
16:11:03.0369 0328 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
16:11:03.0369 0328 Winmgmt - ok
16:11:03.0431 0328 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
16:11:03.0463 0328 WinRM - ok
16:11:03.0541 0328 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
16:11:03.0541 0328 WinUsb - ok
16:11:03.0587 0328 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
16:11:03.0587 0328 Wlansvc - ok
16:11:03.0619 0328 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
16:11:03.0619 0328 WmiAcpi - ok
16:11:03.0634 0328 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
16:11:03.0634 0328 wmiApSrv - ok
16:11:03.0634 0328 WMPNetworkSvc - ok
16:11:03.0650 0328 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
16:11:03.0650 0328 WPCSvc - ok
16:11:03.0681 0328 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
16:11:03.0681 0328 WPDBusEnum - ok
16:11:03.0697 0328 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
16:11:03.0697 0328 ws2ifsl - ok
16:11:03.0712 0328 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
16:11:03.0712 0328 wscsvc - ok
16:11:03.0712 0328 WSearch - ok
16:11:03.0775 0328 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
16:11:03.0806 0328 wuauserv - ok
16:11:03.0884 0328 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
16:11:03.0884 0328 WudfPf - ok
16:11:03.0884 0328 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
16:11:03.0884 0328 WUDFRd - ok
16:11:03.0899 0328 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
16:11:03.0915 0328 wudfsvc - ok
16:11:03.0931 0328 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
16:11:03.0946 0328 WwanSvc - ok
16:11:03.0962 0328 MBR (0x1B8) (cdb4de4bbd714f152979da2dcbef57eb) \Device\Harddisk0\DR0
16:11:04.0211 0328 \Device\Harddisk0\DR0 - ok
16:11:04.0211 0328 MBR (0x1B8) (31cfc50fbd443daeec9a5c7ae8da8f6d) \Device\Harddisk1\DR1
16:11:17.0440 0328 \Device\Harddisk1\DR1 - ok
16:11:17.0456 0328 Boot (0x1200) (6c6fc35057ded62f68c4d5fae56df0ed) \Device\Harddisk0\DR0\Partition0
16:11:17.0456 0328 \Device\Harddisk0\DR0\Partition0 - ok
16:11:17.0471 0328 Boot (0x1200) (caba6f5ad80741bd2eb36195d25193dc) \Device\Harddisk0\DR0\Partition1
16:11:17.0471 0328 \Device\Harddisk0\DR0\Partition1 - ok
16:11:17.0471 0328 Boot (0x1200) (4315c99beb115fcc0d32043bfcd5e6fd) \Device\Harddisk1\DR1\Partition0
16:11:17.0471 0328 \Device\Harddisk1\DR1\Partition0 - ok
16:11:17.0471 0328 ============================================================
16:11:17.0471 0328 Scan finished
16:11:17.0471 0328 ============================================================
16:11:17.0596 1996 Detected object count: 0
16:11:17.0596 1996 Actual detected object count: 0


========================================================================================================================
========================================================================================================================
========================================================================================================================

aswMBR Log:


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-06-22 16:14:14
-----------------------------
16:14:14.407 OS Version: Windows x64 6.1.7601 Service Pack 1
16:14:14.407 Number of processors: 6 586 0xA00
16:14:14.407 ComputerName: HOME UserName:
16:14:18.557 Initialize success
16:14:48.337 AVAST engine defs: 12062200
16:14:53.657 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\0000005d
16:14:53.657 Disk 0 Vendor: ST310005 CC46 Size: 953869MB BusType: 11
16:14:53.672 Disk 0 MBR read successfully
16:14:53.672 Disk 0 MBR scan
16:14:53.672 Disk 0 Windows VISTA default MBR code
16:14:53.672 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 39 MB offset 63
16:14:53.688 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 12242 MB offset 81920
16:14:53.703 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 941586 MB offset 25153536
16:14:53.750 Disk 0 scanning C:\Windows\system32\drivers
16:15:05.825 Service scanning
16:15:22.298 Modules scanning
16:15:22.298 Disk 0 trace - called modules:
16:15:22.329 ntoskrnl.exe CLASSPNP.SYS disk.sys amdxata.sys storport.sys hal.dll amdsata.sys
16:15:22.329 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80059d7060]
16:15:22.329 3 CLASSPNP.SYS[fffff8800180143f] -> nt!IofCallDriver -> [0xfffffa80055654e0]
16:15:22.329 5 amdxata.sys[fffff8800108a7a8] -> nt!IofCallDriver -> \Device\0000005d[0xfffffa80052519c0]
16:15:27.540 AVAST engine scan C:\Windows
16:15:29.849 AVAST engine scan C:\Windows\system32
16:17:59.546 AVAST engine scan C:\Windows\system32\drivers
16:18:09.453 AVAST engine scan C:\Users\Tessa
16:29:34.980 AVAST engine scan C:\ProgramData
16:31:35.085 Scan finished successfully
16:34:25.437 Disk 0 MBR has been saved successfully to "C:\Users\Tessa\Desktop\MBR.dat"
16:34:25.453 The log file has been saved successfully to "C:\Users\Tessa\Desktop\aswMBR.txt"

========================================================================================================================
========================================================================================================================
========================================================================================================================


ESET Found Threats:

C:\Users\Tessa\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\1\1fa06fc1-5e939c5b a variant of Java/TrojanDownloader.Agent.NDJ trojan
I:\Games\The Sims 2\11_Stuffs\The Sims 2 - Glamour Life Stuff.iso probably a variant of Win32/Agent.LNDZOZL trojan

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:36 PM

Posted 22 June 2012 - 04:13 PM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

#5 Pinkie319

Pinkie319
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:10:36 PM

Posted 22 June 2012 - 05:11 PM

MBAM didn't find anything...? should I run ESET again and let it get 'em or just skip ahead to mini toolbox?

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:36 PM

Posted 22 June 2012 - 05:27 PM

Allow ESET to remove them

Post the minitoolbox log

#7 Pinkie319

Pinkie319
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:10:36 PM

Posted 22 June 2012 - 07:05 PM

K. Deleted files with ESET in safe mode. Rebooted and ran minitoolbox in normal mode:


MiniToolBox by Farbar Version: 09-06-2012
Ran by Tessa (administrator) on 22-06-2012 at 21:56:41
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 adobe.activate.com
127.0.0.1 adobeereg.com
127.0.0.1 www.adobeereg.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 125.252.224.90

There are 1 more lines starting with "127.0.0.1"

========================= IP Configuration: ================================

Broadcom NetLink ™ Gigabit Ethernet = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : HOME
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : ftrdhcpuser.net

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : ftrdhcpuser.net
Description . . . . . . . . . . . : Broadcom NetLink ™ Gigabit Ethernet
Physical Address. . . . . . . . . : 84-2B-2B-B9-C4-8A
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::904a:f509:8217:e7eb%10(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.2(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Friday, June 22, 2012 9:49:52 PM
Lease Expires . . . . . . . . . . : Saturday, June 23, 2012 9:49:52 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 243542827
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-B6-E7-4F-84-2B-2B-B9-C4-8A
DNS Servers . . . . . . . . . . . : 192.168.1.1
184.16.4.22
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.ftrdhcpuser.net:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 9:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: Wireless_Broadband_Router.ftrdhcpuser.net
Address: 192.168.1.1

Name: google.com
Addresses: 2607:f8b0:4009:802::1004
74.125.225.70
74.125.225.71
74.125.225.72
74.125.225.73
74.125.225.78
74.125.225.64
74.125.225.65
74.125.225.66
74.125.225.67
74.125.225.68
74.125.225.69


Pinging google.com [74.125.225.68] with 32 bytes of data:
Reply from 74.125.225.68: bytes=32 time=13ms TTL=54
Reply from 74.125.225.68: bytes=32 time=12ms TTL=54

Ping statistics for 74.125.225.68:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 12ms, Maximum = 13ms, Average = 12ms
Server: Wireless_Broadband_Router.ftrdhcpuser.net
Address: 192.168.1.1

Name: yahoo.com
Addresses: 72.30.38.140
98.139.183.24
209.191.122.70


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=147ms TTL=50
Reply from 98.139.183.24: bytes=32 time=35ms TTL=51

Ping statistics for 98.139.183.24:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 35ms, Maximum = 147ms, Average = 91ms
Server: Wireless_Broadband_Router.ftrdhcpuser.net
Address: 192.168.1.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=3ms TTL=128
Reply from 127.0.0.1: bytes=32 time=3ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 3ms, Maximum = 3ms, Average = 3ms
===========================================================================
Interface List
10...84 2b 2b b9 c4 8a ......Broadcom NetLink ™ Gigabit Ethernet
1...........................Software Loopback Interface 1
11...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
12...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.2 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.2 276
192.168.1.2 255.255.255.255 On-link 192.168.1.2 276
192.168.1.255 255.255.255.255 On-link 192.168.1.2 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.2 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.2 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
10 276 fe80::/64 On-link
10 276 fe80::904a:f509:8217:e7eb/128
On-link
1 306 ff00::/8 On-link
10 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [152864] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [193824] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (06/22/2012 09:53:06 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/22/2012 09:53:03 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/22/2012 09:51:52 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (06/22/2012 09:51:52 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (06/22/2012 09:51:03 PM) (Source: PC-Doctor) (User: )
Description: (2324) Asapi: (21:51:03:7630)(2324) Asapi.State - Error -- 123 Plugin S3LogPusher.dll failed to load.

Error: (06/22/2012 09:51:03 PM) (Source: PC-Doctor) (User: )
Description: (2324) Asapi: (21:51:00:6900)(2324) libAsapi.DynamicLoadedPlugin - Error -- 64 Unable to load library 'S3LogPusher.dll'

Error: (06/22/2012 09:50:02 PM) (Source: Bonjour Service) (User: )
Description: mDNSCoreReceiveResponse: ProbeCount 2; will rename 18 Rp\.SpaEndpointV1._rp-hsd._tcp.local. SRV 0 0 8965 HOME.local.

Error: (06/22/2012 09:50:02 PM) (Source: Bonjour Service) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.1.3:5353 27 Rp\.SpaEndpointV1._rp-hsd._tcp.local. SRV 0 0 8965 Amanda-PC-LCS.local.

Error: (06/22/2012 09:48:22 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/22/2012 09:48:22 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.


System errors:
=============
Error: (06/22/2012 09:49:26 PM) (Source: volmgr) (User: )
Description: Crash dump initialization failed!

Error: (06/22/2012 09:49:11 PM) (Source: volmgr) (User: )
Description: Crash dump initialization failed!

Error: (06/22/2012 04:19:09 PM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.

New Signature Version:

Previous Signature Version: 1.129.117.0

Update Source: %NT AUTHORITY59

Update Stage: 4.0.1526.00

Source Path: 4.0.1526.01

Signature Type: %NT AUTHORITY602

Update Type: %NT AUTHORITY604

User: NT AUTHORITY\SYSTEM

Current Engine Version: %NT AUTHORITY605

Previous Engine Version: %NT AUTHORITY606

Error code: %NT AUTHORITY607

Error description: %NT AUTHORITY608

Error: (06/22/2012 04:19:09 PM) (Source: DCOM) (User: )
Description: 1084wuauserv{E60687F7-01A1-40AA-86AC-DB1CBF673334}

Error: (06/22/2012 04:09:26 PM) (Source: DCOM) (User: )
Description: 1084WSearch{9E175B6D-F52A-11D8-B9A5-505054503030}

Error: (06/22/2012 04:09:25 PM) (Source: DCOM) (User: )
Description: 1084WSearch{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

Error: (06/22/2012 04:09:23 PM) (Source: DCOM) (User: )
Description: 1084EventSystem{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error: (06/22/2012 04:09:16 PM) (Source: DCOM) (User: )
Description: 1084ShellHWDetection{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (06/22/2012 04:09:14 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
discache
MpFilter
SASDIFSV
SASKUTIL
spldr
Wanarpv6

Error: (06/22/2012 04:08:55 PM) (Source: volmgr) (User: )
Description: Crash dump initialization failed!


Microsoft Office Sessions:
=========================
Error: (06/22/2012 09:53:06 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Tessa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EDNVDGTN\esetsmartinstaller_enu[1].exe

Error: (06/22/2012 09:53:03 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Tessa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EDNVDGTN\esetsmartinstaller_enu[1].exe

Error: (06/22/2012 09:51:52 PM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (06/22/2012 09:51:52 PM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (06/22/2012 09:51:03 PM) (Source: PC-Doctor)(User: )
Description: (2324) Asapi: (21:51:03:7630)(2324) Asapi.State - Error -- 123 Plugin S3LogPusher.dll failed to load.

Error: (06/22/2012 09:51:03 PM) (Source: PC-Doctor)(User: )
Description: (2324) Asapi: (21:51:00:6900)(2324) libAsapi.DynamicLoadedPlugin - Error -- 64 Unable to load library 'S3LogPusher.dll'

Error: (06/22/2012 09:50:02 PM) (Source: Bonjour Service)(User: )
Description: mDNSCoreReceiveResponse: ProbeCount 2; will rename 18 Rp\.SpaEndpointV1._rp-hsd._tcp.local. SRV 0 0 8965 HOME.local.

Error: (06/22/2012 09:50:02 PM) (Source: Bonjour Service)(User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.1.3:5353 27 Rp\.SpaEndpointV1._rp-hsd._tcp.local. SRV 0 0 8965 Amanda-PC-LCS.local.

Error: (06/22/2012 09:48:22 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Program Files (x86)\Cozi Express\CoziExpress.exe

Error: (06/22/2012 09:48:22 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Program Files (x86)\Cozi Express\CoziExpress.exe


=========================== Installed Programs ============================

µTorrent (Version: 2.2.0)
Adobe AIR (Version: 1.5.3.9120)
Adobe Flash Player 11 ActiveX 64-bit (Version: 11.2.202.235)
Adobe Photoshop CS5 (Version: 12.0)
Adobe Reader 9.4.4 (Version: 9.4.4)
Adobe Shockwave Player 11.5 (Version: 11.5.9.620)
Advanced SystemCare 5 (Version: 5.2.0)
AMD Fusion Media Explorer (Version: 1.0.2.0163)
AMD Fusion Utility for Desktops (Version: 1.1.1)
Amnesia: The Dark Descent version 1.0 (Version: 1.0)
Apple Application Support (Version: 1.5.1)
Apple Mobile Device Support (Version: 3.4.0.25)
Apple Software Update (Version: 2.1.2.120)
ATI Catalyst Control Center (Version: 2.010.0517.1741)
AVCWare Ringtone Maker (Version: 2.0.4.0323)
Barbarian Invasion (Version: 1.4)
Bonjour (Version: 2.0.5.0)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (Version: 2010.0517.1742.29870)
Catalyst Control Center Graphics Previews Vista (Version: 2010.0517.1742.29870)
Catalyst Control Center InstallProxy (Version: 2010.0517.1742.29870)
Catalyst Control Center Localization All (Version: 2010.0517.1742.29870)
ccc-core-static (Version: 2010.0517.1742.29870)
ccc-utility64 (Version: 2010.0517.1742.29870)
CCC Help Chinese Standard (Version: 2010.0517.1741.29870)
CCC Help Chinese Traditional (Version: 2010.0517.1741.29870)
CCC Help Czech (Version: 2010.0517.1741.29870)
CCC Help Danish (Version: 2010.0517.1741.29870)
CCC Help Dutch (Version: 2010.0517.1741.29870)
CCC Help English (Version: 2010.0517.1741.29870)
CCC Help Finnish (Version: 2010.0517.1741.29870)
CCC Help French (Version: 2010.0517.1741.29870)
CCC Help German (Version: 2010.0517.1741.29870)
CCC Help Greek (Version: 2010.0517.1741.29870)
CCC Help Hungarian (Version: 2010.0517.1741.29870)
CCC Help Italian (Version: 2010.0517.1741.29870)
CCC Help Japanese (Version: 2010.0517.1741.29870)
CCC Help Korean (Version: 2010.0517.1741.29870)
CCC Help Norwegian (Version: 2010.0517.1741.29870)
CCC Help Polish (Version: 2010.0517.1741.29870)
CCC Help Portuguese (Version: 2010.0517.1741.29870)
CCC Help Russian (Version: 2010.0517.1741.29870)
CCC Help Spanish (Version: 2010.0517.1741.29870)
CCC Help Swedish (Version: 2010.0517.1741.29870)
CCC Help Thai (Version: 2010.0517.1741.29870)
CCC Help Turkish (Version: 2010.0517.1741.29870)
Consumer In-Home Service Agreement (Version: 2.0.0)
Cozi (Version: 1.0.4323.24051)
CyberLink PowerDirector (Version: 8.0.2013)
D3DX10 (Version: 15.4.2368.0902)
DAEMON Tools Lite (Version: 4.40.1.0127)
dBpowerAMP Music Converter
Dell Dock (Version: 2.0)
Dell Edoc Viewer (Version: 1.0.0)
Dell Getting Started Guide (Version: 1.00.0000)
Dell Support Center (Version: 3.0.5621.01)
Diablo II
DirectX 9 Runtime (Version: 1.00.0000)
ESET Online Scanner v3
Feedback Tool (Version: 1.2.0)
Free RAR Extract Frog (Version: 2.50)
Google Earth (Version: 6.1.0.5001)
Google Update Helper (Version: 1.3.21.111)
GoToAssist 8.0.0.514
Inspector-Parker
Internet Explorer (Version: 8)
Internet TV for Windows Media Center (Version: 4.2.2.0)
iTunes (Version: 10.2.2.12)
Java Auto Updater (Version: 2.0.4.1)
Java™ 6 Update 22 (64-bit) (Version: 6.0.220)
Java™ 6 Update 25 (Version: 6.0.250)
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Security Client (Version: 4.0.1526.0)
Microsoft Security Essentials (Version: 4.0.1526.0)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Multimedia Card Reader (Version: 1.7.915.93)
PDF Settings CS5 (Version: 10.0)
PhotoShowExpress (Version: 2.0.028)
QuickTime (Version: 7.69.80.9)
RAIDXpert (Version: 2.4.1540.27)
RBVirtualFolder64Inst (Version: 1.00.0000)
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
RealPlayer
Realtek High Definition Audio Driver (Version: 6.0.1.5983)
RealUpgrade 1.1 (Version: 1.1.0)
Revo Uninstaller Pro 2.5.3 (Version: 2.5.3)
Rome - Total War (Version: 1.5)
Roxio Activation Module (Version: 1.0)
Roxio BackOnTrack (Version: 1.3.3)
Roxio Burn (Version: 1.8)
Roxio Burn (Version: 1.8.57.4)
Roxio Creator Starter (Version: 1.0.311)
Roxio Creator Starter (Version: 12.1.40.0)
Roxio Creator Starter (Version: 5.0.0)
Roxio Express Labeler 3 (Version: 3.2.2)
Roxio File Backup (Version: 1.3.2)
Skins (Version: 2010.0517.1742.29870)
Skype™ 4.2 (Version: 4.2.169)
SmartSound Quicktracks Plugin (Version: 3.0.3.0)
Sonic CinePlayer Decoder Pack (Version: 4.3.0)
Spinco Download Manager (Version: 1.0.0)
SUPERAntiSpyware (Version: 5.0.1134)
THX TruStudio PC (Version: 1.0)
Tradewinds Odyssey 1.00
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Verizon Servicepoint 3.7.44 (Version: 3.7.44)
Virtual Villagers - New Believers 1.0 (Version: 1.0)
Vz In Home Agent (Version: 7.06.04)
Warcraft III: All Products
Westward Kingdoms (Version: 1.0)
Windows Installer Clean Up (Version: 3.00.00.0000)
Windows Media Center Add-in for Flash (Version: 4.1.2.0)

========================= Memory info: ===================================

Percentage of memory in use: 24%
Total physical RAM: 6143.3 MB
Available physical RAM: 4608.46 MB
Total Pagefile: 12284.79 MB
Available Pagefile: 10317.46 MB
Total Virtual: 4095.88 MB
Available Virtual: 3964.97 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:919.52 GB) (Free:719.25 GB) NTFS
7 Drive i: (My Book) (Fixed) (Total:298.01 GB) (Free:10.98 GB) FAT32

========================= Users: ========================================

User accounts for \\HOME

Administrator Guest Tessa


**** End of log ****

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:36 PM

Posted 22 June 2012 - 07:08 PM

Any current issues?

I want you to check if your startmenu programs have all icons

Edited by narenxp, 22 June 2012 - 07:09 PM.


#9 Pinkie319

Pinkie319
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:10:36 PM

Posted 22 June 2012 - 07:15 PM

Had to fix the time. There's an icon in my taskbar that I haven't seen before. "Real Message Center (new messages: 1)"

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:36 PM

Posted 22 June 2012 - 07:16 PM

You can remove it from taskbar,let me know if you have any other issues before we could wrap up

Edited by narenxp, 22 June 2012 - 07:16 PM.


#11 Pinkie319

Pinkie319
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:10:36 PM

Posted 22 June 2012 - 07:18 PM

everything in the start menu has icons. what is real message center and why did it just show up?

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:36 PM

Posted 22 June 2012 - 07:25 PM

Thats from RealPlayer

#13 Pinkie319

Pinkie319
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:10:36 PM

Posted 22 June 2012 - 07:31 PM

Ah. That's annoying. Guess RealPlayer's getting uninstalled. ;)

Looks like I'm safe now. Thanks so much for your help!

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:36 PM

Posted 22 June 2012 - 07:34 PM

Download

TFC


Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Update your flash player

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp


Update your antivirus frequently,do not click on suspicious links

Safe surfing :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users