Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Split From http://www.bleepingcomputer.com/forums/topic458568.html


  • Please log in to reply
19 replies to this topic

#1 Robyn1727

Robyn1727

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:05:40 PM

Posted 27 June 2012 - 08:30 PM

21:22:54.0740 4532 TDSS rootkit removing tool 2.7.42.0 Jun 25 2012 21:18:44
21:22:55.0043 4532 ============================================================
21:22:55.0044 4532 Current date / time: 2012/06/27 21:22:55.0043
21:22:55.0044 4532 SystemInfo:
21:22:55.0044 4532
21:22:55.0044 4532 OS Version: 6.1.7601 ServicePack: 1.0
21:22:55.0044 4532 Product type: Workstation
21:22:55.0044 4532 ComputerName: RL1727
21:22:55.0044 4532 UserName: Robyn
21:22:55.0044 4532 Windows directory: C:\Windows
21:22:55.0045 4532 System windows directory: C:\Windows
21:22:55.0045 4532 Running under WOW64
21:22:55.0045 4532 Processor architecture: Intel x64
21:22:55.0045 4532 Number of processors: 4
21:22:55.0045 4532 Page size: 0x1000
21:22:55.0045 4532 Boot type: Normal boot
21:22:55.0045 4532 ============================================================
21:22:55.0787 4532 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1F8B1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
21:22:55.0790 4532 Drive \Device\Harddisk1\DR1 - Size: 0x1D1C0F00000 (1863.01 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
21:22:55.0792 4532 ============================================================
21:22:55.0792 4532 \Device\Harddisk0\DR0:
21:22:55.0792 4532 MBR partitions:
21:22:55.0792 4532 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
21:22:55.0792 4532 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x746D3000
21:22:55.0792 4532 \Device\Harddisk1\DR1:
21:22:55.0793 4532 MBR partitions:
21:22:55.0793 4532 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xE8E07000
21:22:55.0793 4532 ============================================================
21:22:55.0818 4532 C: <-> \Device\Harddisk0\DR0\Partition1
21:22:55.0824 4532 E: <-> \Device\Harddisk1\DR1\Partition0
21:22:55.0824 4532 ============================================================
21:22:55.0824 4532 Initialize success
21:22:55.0824 4532 ============================================================
21:23:29.0021 5536 ============================================================
21:23:29.0021 5536 Scan started
21:23:29.0021 5536 Mode: Manual; TDLFS;
21:23:29.0021 5536 ============================================================
21:23:30.0198 5536 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
21:23:30.0203 5536 1394ohci - ok
21:23:30.0255 5536 ACDaemon (adc420616c501b45d26c0fd3ef1e54e4) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
21:23:30.0258 5536 ACDaemon - ok
21:23:30.0293 5536 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
21:23:30.0296 5536 ACPI - ok
21:23:30.0333 5536 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
21:23:30.0334 5536 AcpiPmi - ok
21:23:30.0379 5536 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
21:23:30.0381 5536 AdobeARMservice - ok
21:23:30.0535 5536 AdobeFlashPlayerUpdateSvc (76d5a3d2a50402a0b9b6ed13c4371e79) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:23:30.0540 5536 AdobeFlashPlayerUpdateSvc - ok
21:23:30.0592 5536 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
21:23:30.0600 5536 adp94xx - ok
21:23:30.0632 5536 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
21:23:30.0635 5536 adpahci - ok
21:23:30.0675 5536 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
21:23:30.0679 5536 adpu320 - ok
21:23:30.0702 5536 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
21:23:30.0705 5536 AeLookupSvc - ok
21:23:30.0770 5536 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
21:23:30.0778 5536 AFD - ok
21:23:30.0820 5536 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
21:23:30.0820 5536 agp440 - ok
21:23:30.0843 5536 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
21:23:30.0845 5536 ALG - ok
21:23:30.0874 5536 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
21:23:30.0875 5536 aliide - ok
21:23:30.0927 5536 AMD External Events Utility (962227630779043b5c1d4cd157abb912) C:\Windows\system32\atiesrxx.exe
21:23:30.0932 5536 AMD External Events Utility - ok
21:23:31.0004 5536 AMD FUEL Service - ok
21:23:31.0030 5536 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
21:23:31.0031 5536 amdide - ok
21:23:31.0050 5536 amdiox64 (6a2eeb0c4133b20773bb3dd0b7b377b4) C:\Windows\system32\DRIVERS\amdiox64.sys
21:23:31.0051 5536 amdiox64 - ok
21:23:31.0068 5536 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
21:23:31.0069 5536 AmdK8 - ok
21:23:31.0535 5536 amdkmdag (56d6631761ec37745f0df16bcdc4caf4) C:\Windows\system32\DRIVERS\atikmdag.sys
21:23:31.0585 5536 amdkmdag - ok
21:23:31.0692 5536 amdkmdap (2d9005ea0bfd25c740e53c8dd3c069e0) C:\Windows\system32\DRIVERS\atikmpag.sys
21:23:31.0697 5536 amdkmdap - ok
21:23:31.0727 5536 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
21:23:31.0728 5536 AmdPPM - ok
21:23:31.0775 5536 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
21:23:31.0777 5536 amdsata - ok
21:23:31.0806 5536 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
21:23:31.0810 5536 amdsbs - ok
21:23:31.0825 5536 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
21:23:31.0827 5536 amdxata - ok
21:23:31.0927 5536 AODDriver4.01 (0e2ba6dc63e9cf3bf275856735a3e3be) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
21:23:31.0929 5536 AODDriver4.01 - ok
21:23:31.0966 5536 AODDriver4.1 (0e2ba6dc63e9cf3bf275856735a3e3be) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
21:23:31.0968 5536 AODDriver4.1 - ok
21:23:32.0021 5536 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
21:23:32.0023 5536 AppID - ok
21:23:32.0042 5536 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
21:23:32.0043 5536 AppIDSvc - ok
21:23:32.0071 5536 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
21:23:32.0072 5536 Appinfo - ok
21:23:32.0155 5536 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:23:32.0158 5536 Apple Mobile Device - ok
21:23:32.0189 5536 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
21:23:32.0191 5536 arc - ok
21:23:32.0210 5536 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
21:23:32.0212 5536 arcsas - ok
21:23:32.0306 5536 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
21:23:32.0307 5536 aspnet_state - ok
21:23:32.0335 5536 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
21:23:32.0336 5536 AsyncMac - ok
21:23:32.0391 5536 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
21:23:32.0393 5536 atapi - ok
21:23:32.0454 5536 AtiHDAudioService (2b3b05c0a7768bf033217eb8f33f9c35) C:\Windows\system32\drivers\AtihdW76.sys
21:23:32.0456 5536 AtiHDAudioService - ok
21:23:32.0531 5536 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
21:23:32.0542 5536 AudioEndpointBuilder - ok
21:23:32.0557 5536 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
21:23:32.0564 5536 AudioSrv - ok
21:23:32.0871 5536 AVGIDSAgent (ba60fd7a64b9759a14c0fba4a9ed4c7b) C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe
21:23:32.0899 5536 AVGIDSAgent - ok
21:23:32.0983 5536 AVGIDSDriver (1b2e9fcdc26dc7c81d4131430e2dc936) C:\Windows\system32\DRIVERS\avgidsdrivera.sys
21:23:32.0986 5536 AVGIDSDriver - ok
21:23:33.0016 5536 AVGIDSFilter (0f293406f64b48d5d2f0d3a1117f3a83) C:\Windows\system32\DRIVERS\avgidsfiltera.sys
21:23:33.0017 5536 AVGIDSFilter - ok
21:23:33.0041 5536 AVGIDSHA (cffc3a4a638f462e0561cb368b9a7a3a) C:\Windows\system32\DRIVERS\avgidsha.sys
21:23:33.0042 5536 AVGIDSHA - ok
21:23:33.0069 5536 Avgldx64 (59955b4c288dd2a8b9fd2cd5158355c5) C:\Windows\system32\DRIVERS\avgldx64.sys
21:23:33.0071 5536 Avgldx64 - ok
21:23:33.0091 5536 Avgmfx64 (a6aec362aae5e2dda7445e7690cb0f33) C:\Windows\system32\DRIVERS\avgmfx64.sys
21:23:33.0092 5536 Avgmfx64 - ok
21:23:33.0107 5536 Avgrkx64 (645c7f0a0e39758a0024a9b1748273c0) C:\Windows\system32\DRIVERS\avgrkx64.sys
21:23:33.0108 5536 Avgrkx64 - ok
21:23:33.0137 5536 Avgtdia (1bee674ad792b1c63bb0dac5fa724b23) C:\Windows\system32\DRIVERS\avgtdia.sys
21:23:33.0140 5536 Avgtdia - ok
21:23:33.0240 5536 avgwd (ea1145debcd508fd25bd1e95c4346929) C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
21:23:33.0244 5536 avgwd - ok
21:23:33.0291 5536 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
21:23:33.0294 5536 AxInstSV - ok
21:23:33.0343 5536 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
21:23:33.0351 5536 b06bdrv - ok
21:23:33.0391 5536 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
21:23:33.0396 5536 b57nd60a - ok
21:23:33.0560 5536 BCM43XX (fb4fda64f2e8552eaeb5986c3f34462c) C:\Windows\system32\DRIVERS\bcmwl664.sys
21:23:33.0581 5536 BCM43XX - ok
21:23:33.0658 5536 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
21:23:33.0660 5536 BDESVC - ok
21:23:33.0695 5536 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
21:23:33.0696 5536 Beep - ok
21:23:33.0771 5536 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
21:23:33.0782 5536 BFE - ok
21:23:33.0826 5536 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
21:23:33.0834 5536 BITS - ok
21:23:33.0863 5536 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
21:23:33.0864 5536 blbdrive - ok
21:23:33.0989 5536 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
21:23:33.0996 5536 Bonjour Service - ok
21:23:34.0038 5536 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
21:23:34.0040 5536 bowser - ok
21:23:34.0057 5536 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
21:23:34.0057 5536 BrFiltLo - ok
21:23:34.0077 5536 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
21:23:34.0078 5536 BrFiltUp - ok
21:23:34.0112 5536 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
21:23:34.0114 5536 Browser - ok
21:23:34.0148 5536 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
21:23:34.0151 5536 Brserid - ok
21:23:34.0166 5536 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
21:23:34.0167 5536 BrSerWdm - ok
21:23:34.0177 5536 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
21:23:34.0178 5536 BrUsbMdm - ok
21:23:34.0186 5536 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
21:23:34.0187 5536 BrUsbSer - ok
21:23:34.0209 5536 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
21:23:34.0210 5536 BTHMODEM - ok
21:23:34.0238 5536 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
21:23:34.0239 5536 bthserv - ok
21:23:34.0261 5536 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
21:23:34.0262 5536 cdfs - ok
21:23:34.0304 5536 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
21:23:34.0307 5536 cdrom - ok
21:23:34.0337 5536 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
21:23:34.0339 5536 CertPropSvc - ok
21:23:34.0365 5536 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
21:23:34.0367 5536 circlass - ok
21:23:34.0408 5536 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
21:23:34.0415 5536 CLFS - ok
21:23:34.0462 5536 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:23:34.0464 5536 clr_optimization_v2.0.50727_32 - ok
21:23:34.0508 5536 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:23:34.0510 5536 clr_optimization_v2.0.50727_64 - ok
21:23:34.0570 5536 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:23:34.0573 5536 clr_optimization_v4.0.30319_32 - ok
21:23:34.0603 5536 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:23:34.0606 5536 clr_optimization_v4.0.30319_64 - ok
21:23:34.0637 5536 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
21:23:34.0638 5536 CmBatt - ok
21:23:34.0665 5536 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
21:23:34.0666 5536 cmdide - ok
21:23:34.0716 5536 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
21:23:34.0723 5536 CNG - ok
21:23:34.0738 5536 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
21:23:34.0739 5536 Compbatt - ok
21:23:34.0752 5536 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
21:23:34.0752 5536 CompositeBus - ok
21:23:34.0764 5536 COMSysApp - ok
21:23:34.0783 5536 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
21:23:34.0783 5536 crcdisk - ok
21:23:34.0820 5536 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
21:23:34.0822 5536 CryptSvc - ok
21:23:34.0949 5536 cvhsvc (72794d112cbaff3bc0c29bf7350d4741) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
21:23:34.0961 5536 cvhsvc - ok
21:23:35.0008 5536 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
21:23:35.0014 5536 DcomLaunch - ok
21:23:35.0040 5536 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
21:23:35.0043 5536 defragsvc - ok
21:23:35.0087 5536 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
21:23:35.0089 5536 DfsC - ok
21:23:35.0120 5536 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
21:23:35.0126 5536 Dhcp - ok
21:23:35.0141 5536 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
21:23:35.0143 5536 discache - ok
21:23:35.0188 5536 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
21:23:35.0190 5536 Disk - ok
21:23:35.0264 5536 dleaCATSCustConnectService (0b35ca50349af8145850b4bd1782dbf5) C:\Windows\system32\spool\DRIVERS\x64\3\\dleaserv.exe
21:23:35.0269 5536 dleaCATSCustConnectService - ok
21:23:35.0275 5536 dlea_device - ok
21:23:35.0319 5536 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
21:23:35.0324 5536 Dnscache - ok
21:23:35.0369 5536 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
21:23:35.0375 5536 dot3svc - ok
21:23:35.0409 5536 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
21:23:35.0413 5536 DPS - ok
21:23:35.0443 5536 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
21:23:35.0445 5536 drmkaud - ok
21:23:35.0528 5536 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
21:23:35.0537 5536 DXGKrnl - ok
21:23:35.0571 5536 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
21:23:35.0572 5536 EapHost - ok
21:23:35.0738 5536 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
21:23:35.0755 5536 ebdrv - ok
21:23:35.0836 5536 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
21:23:35.0838 5536 EFS - ok
21:23:35.0930 5536 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
21:23:35.0941 5536 ehRecvr - ok
21:23:35.0964 5536 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
21:23:35.0966 5536 ehSched - ok
21:23:36.0036 5536 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
21:23:36.0045 5536 elxstor - ok
21:23:36.0076 5536 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
21:23:36.0076 5536 ErrDev - ok
21:23:36.0110 5536 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
21:23:36.0112 5536 EventSystem - ok
21:23:36.0137 5536 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
21:23:36.0138 5536 exfat - ok
21:23:36.0155 5536 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
21:23:36.0157 5536 fastfat - ok
21:23:36.0221 5536 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
21:23:36.0232 5536 Fax - ok
21:23:36.0266 5536 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
21:23:36.0267 5536 fdc - ok
21:23:36.0290 5536 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
21:23:36.0291 5536 fdPHost - ok
21:23:36.0298 5536 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
21:23:36.0299 5536 FDResPub - ok
21:23:36.0324 5536 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
21:23:36.0325 5536 FileInfo - ok
21:23:36.0332 5536 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
21:23:36.0333 5536 Filetrace - ok
21:23:36.0343 5536 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
21:23:36.0344 5536 flpydisk - ok
21:23:36.0424 5536 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
21:23:36.0429 5536 FltMgr - ok
21:23:36.0510 5536 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
21:23:36.0524 5536 FontCache - ok
21:23:36.0574 5536 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:23:36.0575 5536 FontCache3.0.0.0 - ok
21:23:36.0610 5536 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
21:23:36.0610 5536 FsDepends - ok
21:23:36.0641 5536 fssfltr (53dab1791917a72738539ad25c4eed7f) C:\Windows\system32\DRIVERS\fssfltr.sys
21:23:36.0642 5536 fssfltr - ok
21:23:36.0731 5536 fsssvc (206ad9a89bf05dfa1621f1fc7b82592d) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
21:23:36.0742 5536 fsssvc - ok
21:23:36.0766 5536 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
21:23:36.0767 5536 Fs_Rec - ok
21:23:36.0813 5536 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
21:23:36.0817 5536 fvevol - ok
21:23:36.0847 5536 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
21:23:36.0849 5536 gagp30kx - ok
21:23:36.0884 5536 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:23:36.0885 5536 GEARAspiWDM - ok
21:23:36.0951 5536 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
21:23:36.0964 5536 gpsvc - ok
21:23:36.0978 5536 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
21:23:36.0978 5536 hcw85cir - ok
21:23:37.0034 5536 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
21:23:37.0040 5536 HdAudAddService - ok
21:23:37.0070 5536 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
21:23:37.0073 5536 HDAudBus - ok
21:23:37.0095 5536 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
21:23:37.0096 5536 HidBatt - ok
21:23:37.0124 5536 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
21:23:37.0125 5536 HidBth - ok
21:23:37.0139 5536 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
21:23:37.0140 5536 HidIr - ok
21:23:37.0161 5536 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
21:23:37.0162 5536 hidserv - ok
21:23:37.0187 5536 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
21:23:37.0188 5536 HidUsb - ok
21:23:37.0216 5536 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
21:23:37.0218 5536 hkmsvc - ok
21:23:37.0254 5536 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
21:23:37.0257 5536 HomeGroupListener - ok
21:23:37.0295 5536 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
21:23:37.0298 5536 HomeGroupProvider - ok
21:23:37.0338 5536 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
21:23:37.0340 5536 HpSAMD - ok
21:23:37.0408 5536 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
21:23:37.0420 5536 HTTP - ok
21:23:37.0441 5536 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
21:23:37.0442 5536 hwpolicy - ok
21:23:37.0470 5536 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
21:23:37.0472 5536 i8042prt - ok
21:23:37.0511 5536 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
21:23:37.0514 5536 iaStorV - ok
21:23:37.0629 5536 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:23:37.0637 5536 idsvc - ok
21:23:37.0662 5536 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
21:23:37.0663 5536 iirsp - ok
21:23:37.0720 5536 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
21:23:37.0727 5536 IKEEXT - ok
21:23:37.0923 5536 IntcAzAudAddService (c2f868881d48a568b525255f084ef063) C:\Windows\system32\drivers\RTKVHD64.sys
21:23:37.0945 5536 IntcAzAudAddService - ok
21:23:38.0034 5536 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
21:23:38.0036 5536 intelide - ok
21:23:38.0060 5536 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
21:23:38.0062 5536 intelppm - ok
21:23:38.0087 5536 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
21:23:38.0090 5536 IPBusEnum - ok
21:23:38.0125 5536 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:23:38.0126 5536 IpFilterDriver - ok
21:23:38.0168 5536 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
21:23:38.0172 5536 iphlpsvc - ok
21:23:38.0198 5536 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
21:23:38.0199 5536 IPMIDRV - ok
21:23:38.0223 5536 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
21:23:38.0224 5536 IPNAT - ok
21:23:38.0364 5536 iPod Service (50d6ccc6ff5561f9f56946b3e6164fb8) C:\Program Files\iPod\bin\iPodService.exe
21:23:38.0378 5536 iPod Service - ok
21:23:38.0401 5536 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
21:23:38.0402 5536 IRENUM - ok
21:23:38.0427 5536 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
21:23:38.0427 5536 isapnp - ok
21:23:38.0460 5536 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
21:23:38.0462 5536 iScsiPrt - ok
21:23:38.0479 5536 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
21:23:38.0480 5536 kbdclass - ok
21:23:38.0505 5536 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
21:23:38.0507 5536 kbdhid - ok
21:23:38.0536 5536 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:23:38.0539 5536 KeyIso - ok
21:23:38.0556 5536 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
21:23:38.0558 5536 KSecDD - ok
21:23:38.0576 5536 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
21:23:38.0579 5536 KSecPkg - ok
21:23:38.0601 5536 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
21:23:38.0602 5536 ksthunk - ok
21:23:38.0633 5536 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
21:23:38.0637 5536 KtmRm - ok
21:23:38.0667 5536 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
21:23:38.0670 5536 LanmanServer - ok
21:23:38.0708 5536 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
21:23:38.0712 5536 LanmanWorkstation - ok
21:23:38.0746 5536 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
21:23:38.0748 5536 lltdio - ok
21:23:38.0775 5536 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
21:23:38.0781 5536 lltdsvc - ok
21:23:38.0792 5536 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
21:23:38.0795 5536 lmhosts - ok
21:23:38.0825 5536 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
21:23:38.0827 5536 LSI_FC - ok
21:23:38.0844 5536 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
21:23:38.0845 5536 LSI_SAS - ok
21:23:38.0869 5536 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
21:23:38.0870 5536 LSI_SAS2 - ok
21:23:38.0898 5536 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
21:23:38.0900 5536 LSI_SCSI - ok
21:23:38.0926 5536 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
21:23:38.0928 5536 luafv - ok
21:23:38.0971 5536 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
21:23:38.0973 5536 Mcx2Svc - ok
21:23:38.0993 5536 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
21:23:38.0994 5536 megasas - ok
21:23:39.0024 5536 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
21:23:39.0027 5536 MegaSR - ok
21:23:39.0048 5536 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
21:23:39.0050 5536 MMCSS - ok
21:23:39.0059 5536 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
21:23:39.0060 5536 Modem - ok
21:23:39.0085 5536 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
21:23:39.0086 5536 monitor - ok
21:23:39.0106 5536 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
21:23:39.0107 5536 mouclass - ok
21:23:39.0118 5536 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
21:23:39.0119 5536 mouhid - ok
21:23:39.0139 5536 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
21:23:39.0140 5536 mountmgr - ok
21:23:39.0209 5536 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
21:23:39.0212 5536 MozillaMaintenance - ok
21:23:39.0249 5536 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
21:23:39.0253 5536 mpio - ok
21:23:39.0280 5536 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
21:23:39.0282 5536 mpsdrv - ok
21:23:39.0355 5536 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
21:23:39.0369 5536 MpsSvc - ok
21:23:39.0398 5536 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
21:23:39.0399 5536 MRxDAV - ok
21:23:39.0425 5536 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
21:23:39.0427 5536 mrxsmb - ok
21:23:39.0466 5536 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:23:39.0471 5536 mrxsmb10 - ok
21:23:39.0491 5536 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:23:39.0493 5536 mrxsmb20 - ok
21:23:39.0521 5536 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
21:23:39.0522 5536 msahci - ok
21:23:39.0546 5536 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
21:23:39.0549 5536 msdsm - ok
21:23:39.0573 5536 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
21:23:39.0578 5536 MSDTC - ok
21:23:39.0611 5536 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
21:23:39.0611 5536 Msfs - ok
21:23:39.0616 5536 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
21:23:39.0617 5536 mshidkmdf - ok
21:23:39.0625 5536 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
21:23:39.0626 5536 msisadrv - ok
21:23:39.0657 5536 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
21:23:39.0660 5536 MSiSCSI - ok
21:23:39.0663 5536 msiserver - ok
21:23:39.0677 5536 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
21:23:39.0678 5536 MSKSSRV - ok
21:23:39.0689 5536 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
21:23:39.0690 5536 MSPCLOCK - ok
21:23:39.0702 5536 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
21:23:39.0702 5536 MSPQM - ok
21:23:39.0747 5536 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
21:23:39.0750 5536 MsRPC - ok
21:23:39.0763 5536 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
21:23:39.0764 5536 mssmbios - ok
21:23:39.0838 5536 MSSQL$HSSE - ok
21:23:39.0869 5536 MSSQLServerADHelper (1d89eb4e2a99cabd4e81225f4f4c4b25) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqladhlp90.exe
21:23:39.0871 5536 MSSQLServerADHelper - ok
21:23:39.0893 5536 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
21:23:39.0894 5536 MSTEE - ok
21:23:39.0915 5536 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
21:23:39.0917 5536 MTConfig - ok
21:23:39.0940 5536 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
21:23:39.0942 5536 Mup - ok
21:23:39.0989 5536 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
21:23:39.0999 5536 napagent - ok
21:23:40.0038 5536 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
21:23:40.0041 5536 NativeWifiP - ok
21:23:40.0095 5536 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
21:23:40.0103 5536 NDIS - ok
21:23:40.0121 5536 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
21:23:40.0122 5536 NdisCap - ok
21:23:40.0138 5536 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
21:23:40.0139 5536 NdisTapi - ok
21:23:40.0162 5536 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
21:23:40.0162 5536 Ndisuio - ok
21:23:40.0191 5536 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
21:23:40.0193 5536 NdisWan - ok
21:23:40.0223 5536 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
21:23:40.0224 5536 NDProxy - ok
21:23:40.0244 5536 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
21:23:40.0245 5536 NetBIOS - ok
21:23:40.0279 5536 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
21:23:40.0281 5536 NetBT - ok
21:23:40.0311 5536 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:23:40.0313 5536 Netlogon - ok
21:23:40.0359 5536 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
21:23:40.0368 5536 Netman - ok
21:23:40.0461 5536 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:23:40.0465 5536 NetMsmqActivator - ok
21:23:40.0472 5536 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:23:40.0475 5536 NetPipeActivator - ok
21:23:40.0517 5536 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
21:23:40.0526 5536 netprofm - ok
21:23:40.0535 5536 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:23:40.0538 5536 NetTcpActivator - ok
21:23:40.0543 5536 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:23:40.0545 5536 NetTcpPortSharing - ok
21:23:40.0583 5536 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
21:23:40.0584 5536 nfrd960 - ok
21:23:40.0638 5536 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
21:23:40.0645 5536 NlaSvc - ok
21:23:40.0680 5536 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
21:23:40.0681 5536 Npfs - ok
21:23:40.0695 5536 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
21:23:40.0698 5536 nsi - ok
21:23:40.0709 5536 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
21:23:40.0711 5536 nsiproxy - ok
21:23:40.0823 5536 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
21:23:40.0844 5536 Ntfs - ok
21:23:40.0927 5536 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
21:23:40.0928 5536 Null - ok
21:23:40.0976 5536 NVENETFD (a85b4f2ef3a7304a5399ef0526423040) C:\Windows\system32\DRIVERS\nvm62x64.sys
21:23:40.0982 5536 NVENETFD - ok
21:23:41.0440 5536 nvlddmkm (dd81fbc57ab9134cddc5ce90880bfd80) C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:23:41.0493 5536 nvlddmkm - ok
21:23:41.0615 5536 NVNET (0ad267a4674805b61a5d7b911d2a978a) C:\Windows\system32\DRIVERS\nvmf6264.sys
21:23:41.0621 5536 NVNET - ok
21:23:41.0673 5536 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
21:23:41.0676 5536 nvraid - ok
21:23:41.0700 5536 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
21:23:41.0704 5536 nvstor - ok
21:23:41.0737 5536 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
21:23:41.0740 5536 nv_agp - ok
21:23:41.0754 5536 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
21:23:41.0756 5536 ohci1394 - ok
21:23:41.0825 5536 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:23:41.0828 5536 ose - ok
21:23:42.0112 5536 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
21:23:42.0139 5536 osppsvc - ok
21:23:42.0221 5536 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
21:23:42.0229 5536 p2pimsvc - ok
21:23:42.0267 5536 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
21:23:42.0276 5536 p2psvc - ok
21:23:42.0300 5536 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
21:23:42.0302 5536 Parport - ok
21:23:42.0335 5536 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
21:23:42.0336 5536 partmgr - ok
21:23:42.0354 5536 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
21:23:42.0357 5536 PcaSvc - ok
21:23:42.0399 5536 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
21:23:42.0402 5536 pci - ok
21:23:42.0425 5536 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
21:23:42.0426 5536 pciide - ok
21:23:42.0450 5536 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
21:23:42.0453 5536 pcmcia - ok
21:23:42.0478 5536 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
21:23:42.0480 5536 pcw - ok
21:23:42.0527 5536 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
21:23:42.0537 5536 PEAUTH - ok
21:23:42.0590 5536 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
21:23:42.0592 5536 PerfHost - ok
21:23:42.0690 5536 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
21:23:42.0706 5536 pla - ok
21:23:42.0751 5536 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
21:23:42.0754 5536 PlugPlay - ok
21:23:42.0772 5536 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
21:23:42.0774 5536 PNRPAutoReg - ok
21:23:42.0792 5536 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
21:23:42.0795 5536 PNRPsvc - ok
21:23:42.0828 5536 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
21:23:42.0832 5536 PolicyAgent - ok
21:23:42.0855 5536 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
21:23:42.0857 5536 Power - ok
21:23:42.0918 5536 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
21:23:42.0920 5536 PptpMiniport - ok
21:23:42.0945 5536 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
21:23:42.0947 5536 Processor - ok
21:23:42.0993 5536 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
21:23:42.0999 5536 ProfSvc - ok
21:23:43.0027 5536 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:23:43.0030 5536 ProtectedStorage - ok
21:23:43.0130 5536 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
21:23:43.0152 5536 ql2300 - ok
21:23:43.0233 5536 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
21:23:43.0236 5536 ql40xx - ok
21:23:43.0270 5536 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
21:23:43.0276 5536 QWAVE - ok
21:23:43.0301 5536 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
21:23:43.0303 5536 QWAVEdrv - ok
21:23:43.0314 5536 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
21:23:43.0316 5536 RasAcd - ok
21:23:43.0344 5536 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
21:23:43.0346 5536 RasAgileVpn - ok
21:23:43.0366 5536 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
21:23:43.0371 5536 RasAuto - ok
21:23:43.0399 5536 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
21:23:43.0402 5536 Rasl2tp - ok
21:23:43.0446 5536 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
21:23:43.0454 5536 RasMan - ok
21:23:43.0485 5536 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
21:23:43.0488 5536 RasPppoe - ok
21:23:43.0509 5536 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
21:23:43.0511 5536 RasSstp - ok
21:23:43.0558 5536 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
21:23:43.0564 5536 rdbss - ok
21:23:43.0580 5536 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
21:23:43.0581 5536 rdpbus - ok
21:23:43.0590 5536 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
21:23:43.0591 5536 RDPCDD - ok
21:23:43.0613 5536 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
21:23:43.0613 5536 RDPENCDD - ok
21:23:43.0624 5536 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
21:23:43.0624 5536 RDPREFMP - ok
21:23:43.0663 5536 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
21:23:43.0667 5536 RDPWD - ok
21:23:43.0704 5536 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
21:23:43.0708 5536 rdyboost - ok
21:23:43.0732 5536 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
21:23:43.0736 5536 RemoteAccess - ok
21:23:43.0766 5536 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
21:23:43.0772 5536 RemoteRegistry - ok
21:23:43.0800 5536 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
21:23:43.0804 5536 RpcEptMapper - ok
21:23:43.0816 5536 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
21:23:43.0818 5536 RpcLocator - ok
21:23:43.0859 5536 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
21:23:43.0864 5536 RpcSs - ok
21:23:43.0894 5536 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
21:23:43.0896 5536 rspndr - ok
21:23:43.0951 5536 RTHDMIAzAudService (116d03e901246ac7af006121e1e22842) C:\Windows\system32\drivers\RtHDMIVX.sys
21:23:43.0955 5536 RTHDMIAzAudService - ok
21:23:43.0989 5536 RTL8167 (baefee35d27a5440d35092ce10267bec) C:\Windows\system32\DRIVERS\Rt64win7.sys
21:23:43.0992 5536 RTL8167 - ok
21:23:44.0027 5536 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:23:44.0030 5536 SamSs - ok
21:23:44.0060 5536 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
21:23:44.0062 5536 sbp2port - ok
21:23:44.0190 5536 SBSDWSCService (794d4b48dfb6e999537c7c3947863463) C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
21:23:44.0203 5536 SBSDWSCService - ok
21:23:44.0229 5536 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
21:23:44.0232 5536 SCardSvr - ok
21:23:44.0273 5536 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
21:23:44.0275 5536 scfilter - ok
21:23:44.0361 5536 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
21:23:44.0381 5536 Schedule - ok
21:23:44.0411 5536 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
21:23:44.0413 5536 SCPolicySvc - ok
21:23:44.0431 5536 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
21:23:44.0434 5536 SDRSVC - ok
21:23:44.0480 5536 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
21:23:44.0481 5536 secdrv - ok
21:23:44.0498 5536 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
21:23:44.0501 5536 seclogon - ok
21:23:44.0519 5536 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
21:23:44.0521 5536 SENS - ok
21:23:44.0542 5536 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
21:23:44.0544 5536 SensrSvc - ok
21:23:44.0576 5536 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
21:23:44.0576 5536 Serenum - ok
21:23:44.0593 5536 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
21:23:44.0594 5536 Serial - ok
21:23:44.0626 5536 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
21:23:44.0627 5536 sermouse - ok
21:23:44.0658 5536 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
21:23:44.0661 5536 SessionEnv - ok
21:23:44.0673 5536 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
21:23:44.0674 5536 sffdisk - ok
21:23:44.0686 5536 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
21:23:44.0687 5536 sffp_mmc - ok
21:23:44.0699 5536 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
21:23:44.0699 5536 sffp_sd - ok
21:23:44.0706 5536 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
21:23:44.0707 5536 sfloppy - ok
21:23:44.0807 5536 Sftfs (c6cc9297bd53e5229653303e556aa539) C:\Windows\system32\DRIVERS\Sftfslh.sys
21:23:44.0819 5536 Sftfs - ok
21:23:44.0899 5536 sftlist (13693b6354dd6e72dc5131da7d764b90) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
21:23:44.0908 5536 sftlist - ok
21:23:44.0933 5536 Sftplay (390aa7bc52cee43f6790cdea1e776703) C:\Windows\system32\DRIVERS\Sftplaylh.sys
21:23:44.0936 5536 Sftplay - ok
21:23:44.0951 5536 Sftredir (617e29a0b0a2807466560d4c4e338d3e) C:\Windows\system32\DRIVERS\Sftredirlh.sys
21:23:44.0952 5536 Sftredir - ok
21:23:44.0961 5536 Sftvol (8f571f016fa1976f445147e9e6c8ae9b) C:\Windows\system32\DRIVERS\Sftvollh.sys
21:23:44.0962 5536 Sftvol - ok
21:23:44.0981 5536 sftvsa (c3cddd18f43d44ab713cf8c4916f7696) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
21:23:44.0983 5536 sftvsa - ok
21:23:45.0022 5536 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
21:23:45.0025 5536 SharedAccess - ok
21:23:45.0072 5536 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
21:23:45.0080 5536 ShellHWDetection - ok
21:23:45.0107 5536 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
21:23:45.0108 5536 SiSRaid2 - ok
21:23:45.0131 5536 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
21:23:45.0133 5536 SiSRaid4 - ok
21:23:45.0161 5536 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
21:23:45.0163 5536 Smb - ok
21:23:45.0202 5536 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
21:23:45.0206 5536 SNMPTRAP - ok
21:23:45.0220 5536 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
21:23:45.0221 5536 spldr - ok
21:23:45.0252 5536 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
21:23:45.0258 5536 Spooler - ok
21:23:45.0421 5536 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
21:23:45.0442 5536 sppsvc - ok
21:23:45.0525 5536 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
21:23:45.0530 5536 sppuinotify - ok
21:23:45.0644 5536 SQLBrowser (86ebd8b1f23e743aad21f4d5b4d40985) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
21:23:45.0648 5536 SQLBrowser - ok
21:23:45.0731 5536 SQLWriter (3c432a96363097870995e2a3c8b66abd) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
21:23:45.0734 5536 SQLWriter - ok
21:23:45.0808 5536 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
21:23:45.0816 5536 srv - ok
21:23:45.0842 5536 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
21:23:45.0846 5536 srv2 - ok
21:23:45.0859 5536 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
21:23:45.0860 5536 srvnet - ok
21:23:45.0905 5536 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
21:23:45.0908 5536 SSDPSRV - ok
21:23:45.0920 5536 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
21:23:45.0923 5536 SstpSvc - ok
21:23:45.0938 5536 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
21:23:45.0938 5536 stexstor - ok
21:23:46.0000 5536 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
21:23:46.0012 5536 stisvc - ok
21:23:46.0051 5536 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
21:23:46.0052 5536 swenum - ok
21:23:46.0087 5536 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
21:23:46.0092 5536 swprv - ok
21:23:46.0188 5536 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
21:23:46.0203 5536 SysMain - ok
21:23:46.0278 5536 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
21:23:46.0283 5536 TabletInputService - ok
21:23:46.0319 5536 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
21:23:46.0327 5536 TapiSrv - ok
21:23:46.0349 5536 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
21:23:46.0352 5536 TBS - ok
21:23:46.0506 5536 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
21:23:46.0520 5536 Tcpip - ok
21:23:46.0677 5536 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
21:23:46.0696 5536 TCPIP6 - ok
21:23:46.0745 5536 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
21:23:46.0746 5536 tcpipreg - ok
21:23:46.0779 5536 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
21:23:46.0781 5536 TDPIPE - ok
21:23:46.0809 5536 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
21:23:46.0810 5536 TDTCP - ok
21:23:46.0844 5536 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
21:23:46.0845 5536 tdx - ok
21:23:46.0872 5536 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
21:23:46.0873 5536 TermDD - ok
21:23:46.0938 5536 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
21:23:46.0951 5536 TermService - ok
21:23:46.0969 5536 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
21:23:46.0971 5536 Themes - ok
21:23:46.0990 5536 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
21:23:46.0991 5536 THREADORDER - ok
21:23:47.0003 5536 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
21:23:47.0005 5536 TrkWks - ok
21:23:47.0054 5536 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
21:23:47.0057 5536 TrustedInstaller - ok
21:23:47.0091 5536 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
21:23:47.0092 5536 tssecsrv - ok
21:23:47.0124 5536 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
21:23:47.0126 5536 TsUsbFlt - ok
21:23:47.0165 5536 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
21:23:47.0168 5536 tunnel - ok
21:23:47.0193 5536 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
21:23:47.0195 5536 uagp35 - ok
21:23:47.0236 5536 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
21:23:47.0242 5536 udfs - ok
21:23:47.0273 5536 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
21:23:47.0276 5536 UI0Detect - ok
21:23:47.0300 5536 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
21:23:47.0301 5536 uliagpkx - ok
21:23:47.0323 5536 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
21:23:47.0324 5536 umbus - ok
21:23:47.0340 5536 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
21:23:47.0340 5536 UmPass - ok
21:23:47.0365 5536 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
21:23:47.0370 5536 upnphost - ok
21:23:47.0402 5536 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\Windows\system32\Drivers\usbaapl64.sys
21:23:47.0403 5536 USBAAPL64 - ok
21:23:47.0430 5536 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
21:23:47.0431 5536 usbccgp - ok
21:23:47.0477 5536 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
21:23:47.0480 5536 usbcir - ok
21:23:47.0514 5536 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
21:23:47.0516 5536 usbehci - ok
21:23:47.0556 5536 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
21:23:47.0562 5536 usbhub - ok
21:23:47.0593 5536 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\DRIVERS\usbohci.sys
21:23:47.0595 5536 usbohci - ok
21:23:47.0615 5536 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
21:23:47.0617 5536 usbprint - ok
21:23:47.0641 5536 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
21:23:47.0642 5536 usbscan - ok
21:23:47.0670 5536 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:23:47.0671 5536 USBSTOR - ok
21:23:47.0688 5536 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
21:23:47.0689 5536 usbuhci - ok
21:23:47.0711 5536 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
21:23:47.0714 5536 UxSms - ok
21:23:47.0744 5536 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:23:47.0745 5536 VaultSvc - ok
21:23:47.0771 5536 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
21:23:47.0772 5536 vdrvroot - ok
21:23:47.0828 5536 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
21:23:47.0834 5536 vds - ok
21:23:47.0860 5536 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
21:23:47.0861 5536 vga - ok
21:23:47.0870 5536 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
21:23:47.0871 5536 VgaSave - ok
21:23:47.0893 5536 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
21:23:47.0895 5536 vhdmp - ok
21:23:47.0907 5536 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
21:23:47.0908 5536 viaide - ok
21:23:47.0920 5536 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
21:23:47.0921 5536 volmgr - ok
21:23:47.0967 5536 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
21:23:47.0970 5536 volmgrx - ok
21:23:48.0005 5536 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
21:23:48.0007 5536 volsnap - ok
21:23:48.0043 5536 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
21:23:48.0046 5536 vsmraid - ok
21:23:48.0161 5536 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
21:23:48.0175 5536 VSS - ok
21:23:48.0265 5536 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
21:23:48.0267 5536 vwifibus - ok
21:23:48.0283 5536 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
21:23:48.0284 5536 vwififlt - ok
21:23:48.0303 5536 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
21:23:48.0304 5536 vwifimp - ok
21:23:48.0332 5536 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
21:23:48.0336 5536 W32Time - ok
21:23:48.0357 5536 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
21:23:48.0358 5536 WacomPen - ok
21:23:48.0413 5536 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:23:48.0416 5536 WANARP - ok
21:23:48.0423 5536 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:23:48.0425 5536 Wanarpv6 - ok
21:23:48.0538 5536 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
21:23:48.0553 5536 WatAdminSvc - ok
21:23:48.0650 5536 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
21:23:48.0673 5536 wbengine - ok
21:23:48.0756 5536 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
21:23:48.0763 5536 WbioSrvc - ok
21:23:48.0813 5536 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
21:23:48.0816 5536 wcncsvc - ok
21:23:48.0824 5536 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
21:23:48.0825 5536 WcsPlugInService - ok
21:23:48.0847 5536 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
21:23:48.0848 5536 Wd - ok
21:23:48.0892 5536 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
21:23:48.0903 5536 Wdf01000 - ok
21:23:48.0917 5536 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
21:23:48.0919 5536 WdiServiceHost - ok
21:23:48.0921 5536 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
21:23:48.0923 5536 WdiSystemHost - ok
21:23:48.0943 5536 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
21:23:48.0946 5536 WebClient - ok
21:23:48.0958 5536 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
21:23:48.0961 5536 Wecsvc - ok
21:23:48.0973 5536 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
21:23:48.0975 5536 wercplsupport - ok
21:23:48.0991 5536 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
21:23:48.0993 5536 WerSvc - ok
21:23:49.0017 5536 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
21:23:49.0017 5536 WfpLwf - ok
21:23:49.0024 5536 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
21:23:49.0025 5536 WIMMount - ok
21:23:49.0055 5536 WinDefend - ok
21:23:49.0063 5536 WinHttpAutoProxySvc - ok
21:23:49.0103 5536 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
21:23:49.0105 5536 Winmgmt - ok
21:23:49.0213 5536 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
21:23:49.0230 5536 WinRM - ok
21:23:49.0327 5536 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
21:23:49.0329 5536 WinUsb - ok
21:23:49.0396 5536 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
21:23:49.0412 5536 Wlansvc - ok
21:23:49.0452 5536 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
21:23:49.0454 5536 WmiAcpi - ok
21:23:49.0505 5536 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
21:23:49.0509 5536 wmiApSrv - ok
21:23:49.0546 5536 WMPNetworkSvc - ok
21:23:49.0571 5536 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
21:23:49.0573 5536 WPCSvc - ok
21:23:49.0595 5536 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
21:23:49.0598 5536 WPDBusEnum - ok
21:23:49.0614 5536 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
21:23:49.0615 5536 ws2ifsl - ok
21:23:49.0633 5536 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
21:23:49.0635 5536 wscsvc - ok
21:23:49.0639 5536 WSearch - ok
21:23:49.0783 5536 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
21:23:49.0798 5536 wuauserv - ok
21:23:49.0882 5536 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
21:23:49.0885 5536 WudfPf - ok
21:23:49.0922 5536 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
21:23:49.0925 5536 WUDFRd - ok
21:23:49.0952 5536 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
21:23:49.0957 5536 wudfsvc - ok
21:23:49.0994 5536 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
21:23:50.0001 5536 WwanSvc - ok
21:23:50.0111 5536 YahooAUService (dd0042f0c3b606a6a8b92d49afb18ad6) C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
21:23:50.0120 5536 YahooAUService - ok
21:23:50.0165 5536 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
21:23:50.0422 5536 \Device\Harddisk0\DR0 - ok
21:23:50.0430 5536 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR1
21:23:51.0121 5536 \Device\Harddisk1\DR1 - ok
21:23:51.0138 5536 Boot (0x1200) (0ae33ec8e51cd168a6a305cd6abc2224) \Device\Harddisk0\DR0\Partition0
21:23:51.0141 5536 \Device\Harddisk0\DR0\Partition0 - ok
21:23:51.0152 5536 Boot (0x1200) (c4af33452b4a9add3bcd1d29a941ddab) \Device\Harddisk0\DR0\Partition1
21:23:51.0155 5536 \Device\Harddisk0\DR0\Partition1 - ok
21:23:51.0161 5536 Boot (0x1200) (1225695bd600c7401748cd81430eea73) \Device\Harddisk1\DR1\Partition0
21:23:51.0164 5536 \Device\Harddisk1\DR1\Partition0 - ok
21:23:51.0164 5536 ============================================================
21:23:51.0164 5536 Scan finished
21:23:51.0164 5536 ============================================================
21:23:51.0176 3872 Detected object count: 0
21:23:51.0176 3872 Actual detected object count: 0
21:23:58.0658 4908 Deinitialize success

BC AdBot (Login to Remove)

 


#2 Robyn1727

Robyn1727
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:05:40 PM

Posted 27 June 2012 - 09:31 PM

Avast Antirootkit crashed when I tried to run it.
Trying a second time.

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-06-27 22:32:49
-----------------------------
22:32:49.414 OS Version: Windows x64 6.1.7601 Service Pack 1
22:32:49.414 Number of processors: 4 586 0x402
22:32:49.414 ComputerName: RL1727 UserName: Robyn
22:32:53.538 Initialize success
22:56:27.443 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000060
22:56:27.450 Disk 0 Vendor: Hitachi_ JP4O Size: 953869MB BusType: 3
22:56:27.459 Disk 0 MBR read successfully
22:56:27.464 Disk 0 MBR scan
22:56:27.469 Disk 0 Windows 7 default MBR code
22:56:27.475 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
22:56:27.488 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 953766 MB offset 206848
22:56:27.503 Disk 0 scanning C:\Windows\system32\drivers
22:56:32.960 Service scanning
22:56:47.413 Modules scanning
22:56:47.428 Disk 0 trace - called modules:
22:56:47.443 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys storport.sys hal.dll nvstor.sys
22:56:47.447 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004a07060]
22:56:47.452 3 CLASSPNP.SYS[fffff8800160143f] -> nt!IofCallDriver -> [0xfffffa800395ebb0]
22:56:47.458 5 ACPI.sys[fffff88000eee7a1] -> nt!IofCallDriver -> \Device\00000060[0xfffffa8003aa24f0]
22:56:47.463 Scan finished successfully
22:56:57.516 Disk 0 MBR has been saved successfully to "C:\Users\Robyn\Desktop\MBR.dat"
22:56:57.520 The log file has been saved successfully to "C:\Users\Robyn\Desktop\aswMBR.txt"

Edited by Robyn1727, 27 June 2012 - 09:57 PM.


#3 Robyn1727

Robyn1727
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:05:40 PM

Posted 27 June 2012 - 10:21 PM

Some other information while I wait for Eset to install, I have AVG Free, Malwarebytes, Spybot S&D - nothing comes up in scans.
I have been getting these pop ups for a long time now. I was addressing other issues today and decided it was time to get rid of it!
So I've been all over the net looking for a resolution. I didn't want to do it this way, because if I post all my info and you give me the resolution I haven't really learned anything! I truly prefer to figure out what's wrong, find a solution and implement it. Don't get me wrong, I greatly appreciate the help, but it would be nice to see a list of "look for this...", "if you find this...", "do this...", etc.

Screenshot of the popup can be seen here --> http://www.facebook.com/media/set/?set=a.125003224196978.13129.100000619033516&type=3&l=9a0a05249b

Edited by Robyn1727, 27 June 2012 - 10:22 PM.


#4 Robyn1727

Robyn1727
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:05:40 PM

Posted 27 June 2012 - 10:23 PM

If it fails again,try to run in it in safemode with networking



It worked the second time. The log is posted under my comment about the crash on the first attempt.

#5 Robyn1727

Robyn1727
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:05:40 PM

Posted 27 June 2012 - 10:43 PM

Thanks, it is VERY slow!

#6 Robyn1727

Robyn1727
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:05:40 PM

Posted 27 June 2012 - 10:48 PM

MiniToolBox by Farbar Version: 25-06-2012
Ran by Robyn (administrator) on 27-06-2012 at 23:48:18
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.no_proxies_on", "*.local"
"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

::1 localhost



69.72.252.254 www.google-analytics.com.
69.72.252.254 ad-emea.doubleclick.net.
69.72.252.254 www.statcounter.com.
184.95.41.155 www.google-analytics.com.
184.95.41.155 ad-emea.doubleclick.net.
184.95.41.155 www.statcounter.com.

127.0.0.1 localhost

========================= IP Configuration: ================================

NVIDIA nForce 10/100/1000 Mbps Ethernet = Local Area Connection (Disconnected)
Broadcom 802.11g Network Adapter = Wireless Network Connection (Connected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : RL1727
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Broadcast
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 00-1E-8C-EC-2B-12
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom 802.11g Network Adapter
Physical Address. . . . . . . . . : 00-1E-8C-EC-2B-12
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::31bf:a689:5088:bda5%13(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.3(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Wednesday, June 27, 2012 10:18:19 PM
Lease Expires . . . . . . . . . . : Thursday, June 28, 2012 11:48:01 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 184557196
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-20-D7-25-1C-6F-65-B7-55-30
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : NVIDIA nForce 10/100/1000 Mbps Ethernet
Physical Address. . . . . . . . . : 1C-6F-65-B7-55-30
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{AFDD3D95-0778-4C2E-BD6A-62D1B4BF54E3}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:48:3002:3f57:fefc(Preferred)
Link-local IPv6 Address . . . . . : fe80::48:3002:3f57:fefc%11(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{F8C0718E-3DAF-47AD-8447-26B6E844E56A}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: UnKnown
Address: 192.168.1.1

Name: google.com
Addresses: 2607:f8b0:4004:801::1002
74.125.228.32
74.125.228.46
74.125.228.39
74.125.228.35
74.125.228.37
74.125.228.41
74.125.228.38
74.125.228.33
74.125.228.36
74.125.228.34
74.125.228.40


Pinging google.com [74.125.228.69] with 32 bytes of data:
Request timed out.
Reply from 74.125.228.69: bytes=32 time=36ms TTL=55

Ping statistics for 74.125.228.69:
Packets: Sent = 2, Received = 1, Lost = 1 (50% loss),
Approximate round trip times in milli-seconds:
Minimum = 36ms, Maximum = 36ms, Average = 36ms
Server: UnKnown
Address: 192.168.1.1

DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
Name: yahoo.com
Addresses: 209.191.122.70
72.30.38.140
98.139.183.24


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=32ms TTL=49
Reply from 98.139.183.24: bytes=32 time=53ms TTL=49

Ping statistics for 98.139.183.24:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 32ms, Maximum = 53ms, Average = 42ms
Server: UnKnown
Address: 192.168.1.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Request timed out.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 1, Lost = 1 (50% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
14...00 1e 8c ec 2b 12 ......Microsoft Virtual WiFi Miniport Adapter
13...00 1e 8c ec 2b 12 ......Broadcom 802.11g Network Adapter
10...1c 6f 65 b7 55 30 ......NVIDIA nForce 10/100/1000 Mbps Ethernet
1...........................Software Loopback Interface 1
15...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
11...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.3 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.3 281
192.168.1.3 255.255.255.255 On-link 192.168.1.3 281
192.168.1.255 255.255.255.255 On-link 192.168.1.3 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.3 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.3 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
11 58 ::/0 On-link
1 306 ::1/128 On-link
11 58 2001::/32 On-link
11 306 2001:0:4137:9e76:48:3002:3f57:fefc/128
On-link
13 281 fe80::/64 On-link
11 306 fe80::/64 On-link
11 306 fe80::48:3002:3f57:fefc/128
On-link
13 281 fe80::31bf:a689:5088:bda5/128
On-link
1 306 ff00::/8 On-link
11 306 ff00::/8 On-link
13 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (06/27/2012 11:02:41 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/27/2012 11:02:35 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/27/2012 10:30:31 PM) (Source: Application Error) (User: )
Description: Faulting application name: aswMBR.exe, version: 0.9.9.1665, time stamp: 0x4f5f9c86
Faulting module name: ntdll.dll, version: 6.1.7601.17725, time stamp: 0x4ec49b8f
Exception code: 0xc0000005
Fault offset: 0x0002dfe4
Faulting process id: 0x10a8
Faulting application start time: 0xaswMBR.exe0
Faulting application path: aswMBR.exe1
Faulting module path: aswMBR.exe2
Report Id: aswMBR.exe3

Error: (06/27/2012 10:12:11 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "*" of attribute "language" in element "assemblyIdentity" is invalid.

Error: (06/27/2012 10:11:36 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"1".Error in manifest or policy file "WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"2" on line WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"3.
Component identity found in manifest does not match the identity of the component requested.
Reference is WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1".
Definition is WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1".
Please use sxstrace.exe for detailed diagnosis.

Error: (06/27/2012 10:11:35 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "UCCAPI,processorArchitecture="x86",type="win32",version="2.0.0.0"1".
Dependent Assembly UCCAPI,processorArchitecture="x86",type="win32",version="2.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (06/27/2012 08:01:23 PM) (Source: CVHSVC) (User: )
Description: Information only.
(Stream product id=0x0066): Streaming Failed

Error: (06/27/2012 08:00:08 PM) (Source: CVHSVC) (User: )
Description: Information only.
(Patch task for {90140011-0066-0409-0000-0000000FF1CE}): DownloadLatest Failed: There are currently no active network connections. Background Intelligent Transfer Service (BITS) will try again when an adapter is connected.

Error: (06/27/2012 07:56:52 PM) (Source: CVHSVC) (User: )
Description: Information only.
Too many failures while downloading ranges: 2

Error: (06/27/2012 07:49:35 PM) (Source: SetupARService) (User: )
Description: Service cannot be started. System.NullReferenceException: Object reference not set to an instance of an object.
at SetupAfterRebootService.SetupARService.OnStart(String[] args)
at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)


System errors:
=============
Error: (06/27/2012 07:49:46 PM) (Source: Service Control Manager) (User: )
Description: The AODDriver4.1 service failed to start due to the following error:
%%2

Error: (06/27/2012 07:49:34 PM) (Source: Service Control Manager) (User: )
Description: The dleaCATSCustConnectService service failed to start due to the following error:
%%1053

Error: (06/27/2012 07:49:34 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the dleaCATSCustConnectService service to connect.

Error: (06/27/2012 07:49:34 PM) (Source: Service Control Manager) (User: )
Description: The AODDriver4.1 service failed to start due to the following error:
%%2

Error: (06/27/2012 01:37:39 PM) (Source: Service Control Manager) (User: )
Description: The dleaCATSCustConnectService service failed to start due to the following error:
%%1053

Error: (06/27/2012 01:37:39 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the dleaCATSCustConnectService service to connect.

Error: (06/27/2012 01:37:38 PM) (Source: Service Control Manager) (User: )
Description: The AODDriver4.1 service failed to start due to the following error:
%%2

Error: (06/27/2012 01:30:52 AM) (Source: Service Control Manager) (User: )
Description: The AODDriver4.1 service failed to start due to the following error:
%%2

Error: (06/27/2012 01:30:36 AM) (Source: Service Control Manager) (User: )
Description: The dleaCATSCustConnectService service failed to start due to the following error:
%%1053

Error: (06/27/2012 01:30:36 AM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the dleaCATSCustConnectService service to connect.


Microsoft Office Sessions:
=========================
Error: (06/27/2012 11:02:41 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Robyn\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RAYOS0S3\esetsmartinstaller_enu.exe

Error: (06/27/2012 11:02:35 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Robyn\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RAYOS0S3\esetsmartinstaller_enu.exe

Error: (06/27/2012 10:30:31 PM) (Source: Application Error)(User: )
Description: aswMBR.exe0.9.9.16654f5f9c86ntdll.dll6.1.7601.177254ec49b8fc00000050002dfe410a801cd54ce6da7fb70C:\Users\Robyn\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SQS6BVG3\aswMBR.exeC:\Windows\SysWOW64\ntdll.dll3ae1af30-c0c9-11e1-897f-928a45cc3448

Error: (06/27/2012 10:12:11 PM) (Source: SideBySide)(User: )
Description: assemblyIdentitylanguage*c:\program files (x86)\spybot - search & destroy\DelZip179.dllc:\program files (x86)\spybot - search & destroy\DelZip179.dll8

Error: (06/27/2012 10:11:36 PM) (Source: SideBySide)(User: )
Description: WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1"c:\program files (x86)\windows live\photo gallery\MovieMaker.Exec:\program files (x86)\windows live\photo gallery\WLMFDS.DLL8

Error: (06/27/2012 10:11:35 PM) (Source: SideBySide)(User: )
Description: UCCAPI,processorArchitecture="x86",type="win32",version="2.0.0.0"c:\program files (x86)\windows live\messenger\wlcsdk.exe

Error: (06/27/2012 08:01:23 PM) (Source: CVHSVC)(User: )
Description: (Stream product id=0x0066): Streaming Failed

Error: (06/27/2012 08:00:08 PM) (Source: CVHSVC)(User: )
Description: (Patch task for {90140011-0066-0409-0000-0000000FF1CE}): DownloadLatest Failed: There are currently no active network connections. Background Intelligent Transfer Service (BITS) will try again when an adapter is connected.

Error: (06/27/2012 07:56:52 PM) (Source: CVHSVC)(User: )
Description: Too many failures while downloading ranges: 2

Error: (06/27/2012 07:49:35 PM) (Source: SetupARService)(User: )
Description: Service cannot be started. System.NullReferenceException: Object reference not set to an instance of an object.
at SetupAfterRebootService.SetupARService.OnStart(String[] args)
at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)


=========================== Installed Programs ============================

Adobe AIR (Version: 2.7.0.19480)
Adobe Flash Player 10 ActiveX 64-bit (Version: 10.3.162.28)
Adobe Flash Player 11 ActiveX 64-bit (Version: 11.2.202.235)
Adobe Flash Player 11 Plugin 64-bit (Version: 11.2.202.235)
Adobe Reader X (10.1.3) (Version: 10.1.3)
Amazon Kindle
AMD Accelerated Video Transcoding (Version: 2.00.0001)
AMD APP SDK Runtime (Version: 10.0.898.1)
AMD Catalyst Install Manager (Version: 3.0.868.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Fuel (Version: 2012.0214.2218.39913)
AMD Media Foundation Decoders (Version: 1.0.70214.2220)
AMD Steady Video Plug-In (Version: 2.04.0000)
AMD VISION Engine Control Center (Version: 2012.0214.2218.39913)
Apple Application Support (Version: 2.1.7)
Apple Mobile Device Support (Version: 5.1.1.4)
Apple Software Update (Version: 2.1.3.127)
Application Profiles (Version: 2.0.4260.33703)
ATI Catalyst Registration (Version: 3.00.0000)
AVG 2012 (Version: 12.0.2180)
AVG 2012 (Version: 12.0.2437)
AVG 2012 (Version: 2012.0.2180)
Bejeweled 2 Deluxe
Bonjour (Version: 3.0.0.10)
Burger Island® 2 - The Missing Ingredient
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (Version: 2012.0214.2218.39913)
Catalyst Control Center InstallProxy (Version: 2012.0214.2218.39913)
Catalyst Control Center Localization All (Version: 2012.0214.2218.39913)
ccc-utility64 (Version: 2012.0214.2218.39913)
CCC Help Chinese Standard (Version: 2012.0214.2217.39913)
CCC Help Chinese Traditional (Version: 2012.0214.2217.39913)
CCC Help Czech (Version: 2012.0214.2217.39913)
CCC Help Danish (Version: 2012.0214.2217.39913)
CCC Help Dutch (Version: 2012.0214.2217.39913)
CCC Help English (Version: 2012.0214.2217.39913)
CCC Help Finnish (Version: 2012.0214.2217.39913)
CCC Help French (Version: 2012.0214.2217.39913)
CCC Help German (Version: 2012.0214.2217.39913)
CCC Help Greek (Version: 2012.0214.2217.39913)
CCC Help Hungarian (Version: 2012.0214.2217.39913)
CCC Help Italian (Version: 2012.0214.2217.39913)
CCC Help Japanese (Version: 2012.0214.2217.39913)
CCC Help Korean (Version: 2012.0214.2217.39913)
CCC Help Norwegian (Version: 2012.0214.2217.39913)
CCC Help Polish (Version: 2012.0214.2217.39913)
CCC Help Portuguese (Version: 2012.0214.2217.39913)
CCC Help Russian (Version: 2012.0214.2217.39913)
CCC Help Spanish (Version: 2012.0214.2217.39913)
CCC Help Swedish (Version: 2012.0214.2217.39913)
CCC Help Thai (Version: 2012.0214.2217.39913)
CCC Help Turkish (Version: 2012.0214.2217.39913)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Coupon Printer for Windows (Version: 5.0.0.1)
Dell V310-V510 Series
DivX Setup (Version: 2.6.1.8)
EA Download Manager (Version: 8.0.3.427)
ESET Online Scanner v3
FYZip 1.00 (Version: 1.00)
Hardware Helper (Version: 10.0)
iCloud (Version: 1.1.0.40)
IGG Web3D Player version 1.0.0.37 (Version: 1.0.0.37)
iTunes (Version: 10.6.1.7)
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 22 (Version: 6.0.220)
Java™ 6 Update 31 (Version: 6.0.310)
Junk Mail filter update (Version: 14.0.8089.726)
Media Converter for Philips (Version: 2.5.2.231)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft .NET Framework 4 Multi-Targeting Pack (Version: 4.0.30319)
Microsoft Age of Empires Gold
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Expression Blend 3 SDK (Version: 1.0.1343.0)
Microsoft Expression Blend 4 (Version: 4.0.20525.0)
Microsoft Expression Blend SDK for .NET 4 (Version: 2.0.20525.0)
Microsoft Expression Blend SDK for Silverlight 4 (Version: 2.0.20525.0)
Microsoft Expression Design 4 (Version: 7.0.20516.0)
Microsoft Expression Encoder 4 (Version: 4.0.1639.0)
Microsoft Expression Encoder 4 Screen Capture Codec (Version: 4.0.1639.0)
Microsoft Expression Studio 4 (Version: 4.0.20525.0)
Microsoft Expression Web 4 (Version: 4.0.1303.0)
Microsoft Expression Web 4 Service Pack 2
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office Starter 2010 - English (Version: 14.0.4763.1000)
Microsoft Office XP Professional with FrontPage (Version: 10.0.6626.0)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft Silverlight 3 SDK (Version: 3.0.40818.0)
Microsoft Silverlight 4 SDK (Version: 4.0.50401.0)
Microsoft SQL Server 2005
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft SQL Server 2005 Express Edition (HSSE) (Version: 9.4.5000.00)
Microsoft SQL Server Native Client (Version: 9.00.5000.00)
Microsoft SQL Server Setup Support Files (English) (Version: 9.00.5000.00)
Microsoft SQL Server VSS Writer (Version: 9.00.5000.00)
Microsoft Sync Framework Runtime Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Sync Framework Services Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 (Version: 9.0.30411)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0)
Mozilla Firefox 13.0.1 (x86 en-US) (Version: 13.0.1)
Mozilla Maintenance Service (Version: 13.0.1)
MSVCRT (Version: 14.0.1468.721)
MyHeritage Family Tree Builder (Version: 5.1.0.5324)
NVIDIA Drivers (Version: 1.10.62.40)
OneClickdigital Media Manager (Version: 56.0.0.0)
OpenOffice.org 3.4 (Version: 3.4.9590)
OverDrive Media Console (Version: 3.2.10)
Pando Media Booster (Version: 2.6.0.1)
QuickTime (Version: 7.71.80.42)
Realtek HDMI Audio Driver for ATI (Version: 6.0.1.6121)
Realtek High Definition Audio Driver (Version: 6.0.1.6662)
Safari (Version: 5.34.55.3)
Spybot - Search & Destroy (Version: 1.6.2)
The Sims 2 Family Fun Stuff
The Sims 2 Glamour Life Stuff
The Sims 2 Pets
The Sims 2 University
The Sims Medieval (Version: 2.0.113)
The Sims™ 2 Apartment Life
The Sims™ 2 Best of Business Collection
The Sims™ 2 Bon Voyage
The Sims™ 2 Double Deluxe
The Sims™ 2 FreeTime
The Sims™ 2 IKEA® Home Stuff
The Sims™ 2 Mansion and Garden Stuff
The Sims™ 2 Seasons
The Sims™ 2 Teen Style Stuff
The Sims™ 3 (Version: 1.33.2)
The Sims™ 3 Ambitions (Version: 4.10.1)
TI-83 Plus Flash Debugger
Unity Web Player (Version: )
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
Ventrilo Client for Windows x64 (Version: 3.0.8.0)
VideoLAN VLC media player 0.8.6f (Version: 0.8.6f)
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
Wedding Dash 2® - Rings Around the World
Windows Live Call (Version: 14.0.8064.0206)
Windows Live Communications Platform (Version: 14.0.8064.206)
Windows Live Essentials (Version: 14.0.8089.0726)
Windows Live Essentials (Version: 14.0.8089.726)
Windows Live Family Safety (Version: 14.0.8093.805)
Windows Live Mail (Version: 14.0.8089.0726)
Windows Live Movie Maker (Version: 14.0.8091.0730)
Windows Live Photo Gallery (Version: 14.0.8081.709)
Windows Live Sign-in Assistant (Version: 5.000.818.5)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Live Writer (Version: 14.0.8089.0726)
World of Warcraft (Version: 4.3.4.15595)
WPF Toolkit February 2010 (Version 3.5.50211.1) (Version: 3.5.50211.1)
Xvid Video Codec (Version: 1.3.2)
Yahoo! Software Update

========================= Memory info: ===================================

Percentage of memory in use: 49%
Total physical RAM: 4094.46 MB
Available physical RAM: 2086.77 MB
Total Pagefile: 8187.12 MB
Available Pagefile: 5681.77 MB
Total Virtual: 4095.88 MB
Available Virtual: 3957.38 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:931.41 GB) (Free:775.2 GB) NTFS
2 Drive d: (Sims3EP02) (CDROM) (Total:4.6 GB) (Free:0 GB) UDF
3 Drive e: (Elements) (Fixed) (Total:1863.01 GB) (Free:948.33 GB) NTFS

========================= Users: ========================================

User accounts for \\RL1727

Administrator Guest Robyn


**** End of log ****

Edited by Robyn1727, 27 June 2012 - 10:49 PM.


#7 Robyn1727

Robyn1727
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:05:40 PM

Posted 27 June 2012 - 10:58 PM

Regarding my host file, I found a post on trendmicro about that...do you concur?


See below:
------------------
You can use Hijackthis to fix those malicious addresses in your hosts file.



1. Open HJT

2. Fix checked these entries:


O1 - Hosts: 69.72.252.254 www.google-analytics.com.
O1 - Hosts: 69.72.252.254 ad-emea.doubleclick.net.
O1 - Hosts: 69.72.252.254 www.statcounter.com.
O1 - Hosts: 184.95.41.155 www.google-analytics.com.
O1 - Hosts: 184.95.41.155 ad-emea.doubleclick.net.
O1 - Hosts: 184.95.41.155 www.statcounter.com.


3. Scan again using your HJT then check if you still have those entries.


Alternatively, you can manually edit your hosts file but make sure that you run first a notepad as administrator before editing the hosts file.



1. Right-click on notepad then choose Run as Administrator.

2. Go to file then open.

3. Locate your hosts file then open it.

Edited by Robyn1727, 27 June 2012 - 11:00 PM.


#8 Robyn1727

Robyn1727
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:05:40 PM

Posted 27 June 2012 - 11:01 PM

I got "Unexpected error 2002" on the Eset scan.

Starting the scan again...

#9 Robyn1727

Robyn1727
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:05:40 PM

Posted 27 June 2012 - 11:20 PM

I got the same error on the second Eset scan.

Also for the hosts file issue, I cannot find the hosts file, but if I create a new one in Notepad when I attempt to save it, I am asked to overwrite it. I say yes to that and it tells me the file is Read-only. Not sure how to go about correcting that. Any suggestions?

I am done for the night. I will try again for the Eset scan tomorrow and check this forum when I get home from work.

Thanks in advance for your help.

Edited by Robyn1727, 27 June 2012 - 11:22 PM.


#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:40 PM

Posted 28 June 2012 - 03:41 AM

Do you still want my help ? It seems you have started fixing things on your own.Let me know :thumbup2:

#11 Robyn1727

Robyn1727
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:05:40 PM

Posted 28 June 2012 - 11:04 PM

I created a new thread for my problem.

http://www.bleepingcomputer.com/forums/topic458718.html


EDIT: Well I moved everything to that thread but its been deleted!!

Edited by Robyn1727, 28 June 2012 - 11:32 PM.


#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:40 PM

Posted 29 June 2012 - 01:23 AM

Ignore that.Post the logs here

Download

Rogue killer

right click on it and select run as administrator

Now,click on HOSTS FIX option on right side

A log should get generated after the fix ,post the log here

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log


Download

MiniToolBox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Edited by narenxp, 29 June 2012 - 06:40 AM.


#13 Robyn1727

Robyn1727
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:05:40 PM

Posted 30 June 2012 - 02:20 PM

Eset scan

C:\Users\Robyn\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U3M43NZN\meu-sevonce[1].htm HTML/Iframe.B.Gen virus deleted - quarantined
E:\Miscellaneous bleep\Downloads\VLCfree_8676.exe probably a variant of Win32/InstallIQ application cleaned by deleting - quarantined

MiniToolBox by Farbar Version: 25-06-2012
Ran by Robyn (administrator) on 30-06-2012 at 13:37:32
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

::1 localhost

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:40 PM

Posted 30 June 2012 - 02:20 PM

PLEASE FOLLOW MY PREVIOUS INSTRUCTIONS :thumbup2:

#15 Robyn1727

Robyn1727
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:05:40 PM

Posted 30 June 2012 - 02:23 PM

RogueKiller V7.6.1 [06/28/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.geekstogo.com/forum/files/file/413-roguekiller/
Blog: http://tigzyrk.blogspot.com

Operating System: Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User: Robyn [Admin rights]
Mode: HOSTSFix -- Date: 06/30/2012 15:22:26

Bad processes: 0

Driver: [NOT LOADED]

HOSTS File:
127.0.0.1 localhost
::1 localhost
69.72.252.254 www.google-analytics.com.
69.72.252.254 ad-emea.doubleclick.net.
69.72.252.254 www.statcounter.com.
184.95.41.155 www.google-analytics.com.
184.95.41.155 ad-emea.doubleclick.net.
184.95.41.155 www.statcounter.com.


Resetted HOSTS:
127.0.0.1 localhost

Finished : << RKreport[1].txt >>
RKreport[1].txt

We are posting at the same time. No need to shout. I'm working on the scans now.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users