Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Annoying sliding popup, Lower Right corner


  • Please log in to reply
15 replies to this topic

#1 Virgorival

Virgorival

  • Members
  • 53 posts
  • OFFLINE
  •  
  • Local time:03:34 PM

Posted 02 July 2012 - 04:49 AM

I made a post about issues I was having, Most of them seemed to have been cleared up

I found a similer issue addressed on the forum already, but I didn't want to do anything harmful to the computer without assistance

Popup, lower right
Posted Image

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:34 PM

Posted 02 July 2012 - 11:34 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)



Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 Virgorival

Virgorival
  • Topic Starter

  • Members
  • 53 posts
  • OFFLINE
  •  
  • Local time:03:34 PM

Posted 02 July 2012 - 04:07 PM

16:04:58.0531 1496 TDSS rootkit removing tool 2.7.43.0 Jun 29 2012 17:54:22
16:04:59.0011 1496 ============================================================
16:04:59.0011 1496 Current date / time: 2012/07/02 16:04:59.0011
16:04:59.0011 1496 SystemInfo:
16:04:59.0011 1496
16:04:59.0011 1496 OS Version: 6.1.7600 ServicePack: 0.0
16:04:59.0011 1496 Product type: Workstation
16:04:59.0011 1496 ComputerName: PATCHOULI
16:04:59.0011 1496 UserName: Rival
16:04:59.0011 1496 Windows directory: C:\Windows
16:04:59.0011 1496 System windows directory: C:\Windows
16:04:59.0011 1496 Running under WOW64
16:04:59.0011 1496 Processor architecture: Intel x64
16:04:59.0011 1496 Number of processors: 6
16:04:59.0011 1496 Page size: 0x1000
16:04:59.0011 1496 Boot type: Normal boot
16:04:59.0011 1496 ============================================================
16:05:01.0321 1496 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:05:01.0331 1496 ============================================================
16:05:01.0331 1496 \Device\Harddisk0\DR0:
16:05:01.0331 1496 MBR partitions:
16:05:01.0331 1496 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1394800, BlocksNum 0x73371800
16:05:01.0331 1496 ============================================================
16:05:01.0351 1496 C: <-> \Device\Harddisk0\DR0\Partition0
16:05:01.0351 1496 ============================================================
16:05:01.0351 1496 Initialize success
16:05:01.0351 1496 ============================================================
16:05:10.0519 2004 ============================================================
16:05:10.0519 2004 Scan started
16:05:10.0519 2004 Mode: Manual; TDLFS;
16:05:10.0519 2004 ============================================================
16:05:12.0253 2004 !SASCORE (7d9d615201a483d6fa99491c2e655a5a) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
16:05:12.0254 2004 !SASCORE - ok
16:05:12.0862 2004 1394ohci (969c91060cbb5d17cb8440b5f78b4c51) C:\Windows\system32\DRIVERS\1394ohci.sys
16:05:12.0882 2004 1394ohci - ok
16:05:12.0902 2004 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
16:05:12.0912 2004 ACPI - ok
16:05:12.0942 2004 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
16:05:12.0942 2004 AcpiPmi - ok
16:05:13.0162 2004 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
16:05:13.0162 2004 AdobeARMservice - ok
16:05:13.0192 2004 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
16:05:13.0202 2004 adp94xx - ok
16:05:13.0212 2004 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
16:05:13.0212 2004 adpahci - ok
16:05:13.0222 2004 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
16:05:13.0232 2004 adpu320 - ok
16:05:13.0252 2004 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
16:05:13.0252 2004 AeLookupSvc - ok
16:05:13.0312 2004 AFD (db9d6c6b2cd95a9ca414d045b627422e) C:\Windows\system32\drivers\afd.sys
16:05:13.0312 2004 AFD - ok
16:05:13.0322 2004 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
16:05:13.0322 2004 agp440 - ok
16:05:13.0342 2004 ahcix64s (4b4c16b50fdcd6b5cd21721eda2ed54c) C:\Windows\system32\DRIVERS\ahcix64s.sys
16:05:13.0342 2004 ahcix64s - ok
16:05:13.0352 2004 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
16:05:13.0362 2004 ALG - ok
16:05:13.0362 2004 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
16:05:13.0362 2004 aliide - ok
16:05:13.0673 2004 AMD External Events Utility (20c8a3e435a47f0408a1ea674afa6194) C:\Windows\system32\atiesrxx.exe
16:05:13.0675 2004 AMD External Events Utility - ok
16:05:13.0743 2004 AMD FUEL Service - ok
16:05:13.0785 2004 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
16:05:13.0786 2004 amdide - ok
16:05:13.0820 2004 amdiox64 (6a2eeb0c4133b20773bb3dd0b7b377b4) C:\Windows\system32\DRIVERS\amdiox64.sys
16:05:13.0820 2004 amdiox64 - ok
16:05:13.0841 2004 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
16:05:13.0842 2004 AmdK8 - ok
16:05:15.0940 2004 amdkmdag (0b45c18b0f3ee996d25baa4e74884b83) C:\Windows\system32\DRIVERS\atikmdag.sys
16:05:16.0101 2004 amdkmdag - ok
16:05:17.0394 2004 amdkmdap (0e57258e5cc4cc7a9a9a877afdf0cec6) C:\Windows\system32\DRIVERS\atikmpag.sys
16:05:17.0394 2004 amdkmdap - ok
16:05:17.0545 2004 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
16:05:17.0545 2004 AmdPPM - ok
16:05:17.0625 2004 amdsata (ec7ebab00a4d8448bab68d1e49b4beb9) C:\Windows\system32\drivers\amdsata.sys
16:05:17.0625 2004 amdsata - ok
16:05:17.0645 2004 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
16:05:17.0645 2004 amdsbs - ok
16:05:17.0655 2004 amdxata (db27766102c7bf7e95140a2aa81d042e) C:\Windows\system32\drivers\amdxata.sys
16:05:17.0655 2004 amdxata - ok
16:05:17.0845 2004 AODDriver4.1 (5b25d1a753cc3a3edb909bb759ac1098) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
16:05:17.0845 2004 AODDriver4.1 - ok
16:05:17.0865 2004 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
16:05:17.0875 2004 AppID - ok
16:05:17.0895 2004 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
16:05:17.0895 2004 AppIDSvc - ok
16:05:17.0905 2004 Appinfo (d065be66822847b7f127d1f90158376e) C:\Windows\System32\appinfo.dll
16:05:17.0915 2004 Appinfo - ok
16:05:17.0955 2004 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
16:05:17.0955 2004 arc - ok
16:05:17.0965 2004 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
16:05:17.0965 2004 arcsas - ok
16:05:18.0015 2004 ASInsHelp (edaa17ce771c696655b6585f7cad2100) C:\Windows\SysWow64\drivers\AsInsHelp64.sys
16:05:18.0015 2004 ASInsHelp - ok
16:05:18.0035 2004 AsIO (fef9dd9ea587f8886ade43c1befbdafe) C:\Windows\syswow64\drivers\AsIO.sys
16:05:18.0035 2004 AsIO - ok
16:05:18.0045 2004 AsUpIO (26d66e32e78d3059715b3a17bc679cd9) C:\Windows\syswow64\drivers\AsUpIO.sys
16:05:18.0045 2004 AsUpIO - ok
16:05:18.0055 2004 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
16:05:18.0055 2004 AsyncMac - ok
16:05:18.0065 2004 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
16:05:18.0065 2004 atapi - ok
16:05:18.0105 2004 AtiHDAudioService (24464b908e143d2561e9e452fee97309) C:\Windows\system32\drivers\AtihdW76.sys
16:05:18.0105 2004 AtiHDAudioService - ok
16:05:18.0115 2004 AtiHdmiService (77c149e6d702737b2e372dee166faef8) C:\Windows\system32\drivers\AtiHdmi.sys
16:05:18.0115 2004 AtiHdmiService - ok
16:05:19.0765 2004 atikmdag (0b45c18b0f3ee996d25baa4e74884b83) C:\Windows\system32\DRIVERS\atikmdag.sys
16:05:19.0815 2004 atikmdag - ok
16:05:20.0015 2004 AtiPcie (7c5d273e29dcc5505469b299c6f29163) C:\Windows\system32\DRIVERS\AtiPcie.sys
16:05:20.0015 2004 AtiPcie - ok
16:05:20.0305 2004 AudioEndpointBuilder (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
16:05:20.0305 2004 AudioEndpointBuilder - ok
16:05:20.0315 2004 AudioSrv (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
16:05:20.0315 2004 AudioSrv - ok
16:05:20.0369 2004 AxInstSV (b20b5fa5ca050e9926e4d1db81501b32) C:\Windows\System32\AxInstSV.dll
16:05:20.0371 2004 AxInstSV - ok
16:05:20.0399 2004 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
16:05:20.0404 2004 b06bdrv - ok
16:05:20.0421 2004 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
16:05:20.0425 2004 b57nd60a - ok
16:05:20.0446 2004 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
16:05:20.0448 2004 BDESVC - ok
16:05:20.0460 2004 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
16:05:20.0461 2004 Beep - ok
16:05:20.0525 2004 BFE (4992c609a6315671463e30f6512bc022) C:\Windows\System32\bfe.dll
16:05:20.0532 2004 BFE - ok
16:05:20.0580 2004 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
16:05:20.0582 2004 blbdrive - ok
16:05:20.0600 2004 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
16:05:20.0601 2004 bowser - ok
16:05:20.0613 2004 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
16:05:20.0615 2004 BrFiltLo - ok
16:05:20.0627 2004 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
16:05:20.0628 2004 BrFiltUp - ok
16:05:20.0641 2004 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
16:05:20.0642 2004 BridgeMP - ok
16:05:20.0682 2004 Browser (94fbc06f294d58d02361918418f996e3) C:\Windows\System32\browser.dll
16:05:20.0684 2004 Browser - ok
16:05:20.0702 2004 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
16:05:20.0706 2004 Brserid - ok
16:05:20.0723 2004 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
16:05:20.0724 2004 BrSerWdm - ok
16:05:20.0731 2004 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
16:05:20.0732 2004 BrUsbMdm - ok
16:05:20.0737 2004 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
16:05:20.0738 2004 BrUsbSer - ok
16:05:20.0752 2004 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
16:05:20.0754 2004 BTHMODEM - ok
16:05:20.0768 2004 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
16:05:20.0769 2004 bthserv - ok
16:05:20.0772 2004 catchme - ok
16:05:20.0787 2004 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
16:05:20.0789 2004 cdfs - ok
16:05:20.0805 2004 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
16:05:20.0807 2004 cdrom - ok
16:05:20.0821 2004 CertPropSvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
16:05:20.0822 2004 CertPropSvc - ok
16:05:20.0827 2004 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
16:05:20.0828 2004 circlass - ok
16:05:20.0841 2004 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
16:05:20.0845 2004 CLFS - ok
16:05:20.0925 2004 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:05:20.0926 2004 clr_optimization_v2.0.50727_32 - ok
16:05:21.0015 2004 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:05:21.0018 2004 clr_optimization_v2.0.50727_64 - ok
16:05:21.0085 2004 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:05:21.0109 2004 clr_optimization_v4.0.30319_32 - ok
16:05:21.0126 2004 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:05:21.0128 2004 clr_optimization_v4.0.30319_64 - ok
16:05:21.0147 2004 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
16:05:21.0148 2004 CmBatt - ok
16:05:21.0151 2004 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
16:05:21.0153 2004 cmdide - ok
16:05:21.0188 2004 CNG (937beb186a735aca91d717044a49d17e) C:\Windows\system32\Drivers\cng.sys
16:05:21.0192 2004 CNG - ok
16:05:21.0195 2004 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
16:05:21.0196 2004 Compbatt - ok
16:05:21.0217 2004 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
16:05:21.0217 2004 CompositeBus - ok
16:05:21.0220 2004 COMSysApp - ok
16:05:21.0224 2004 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
16:05:21.0225 2004 crcdisk - ok
16:05:21.0264 2004 CryptSvc (f02786b66375292e58c8777082d4396d) C:\Windows\system32\cryptsvc.dll
16:05:21.0266 2004 CryptSvc - ok
16:05:21.0326 2004 DAZContentManagementService (958ef96991abccfdac0953c4a24081dc) C:\Program Files\DAZ 3D\Content Management Service\ContentManagementServer.exe
16:05:21.0326 2004 DAZContentManagementService - ok
16:05:21.0355 2004 DcomLaunch (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
16:05:21.0357 2004 DcomLaunch - ok
16:05:21.0367 2004 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
16:05:21.0367 2004 defragsvc - ok
16:05:21.0507 2004 Device Handle Service (0a403702cb00432ac818523cd416bf67) C:\Windows\SysWOW64\AsHookDevice.exe
16:05:21.0507 2004 Device Handle Service - ok
16:05:21.0577 2004 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
16:05:21.0587 2004 DfsC - ok
16:05:21.0597 2004 Dhcp (ce3b9562d997f69b330d181a8875960f) C:\Windows\system32\dhcpcore.dll
16:05:21.0607 2004 Dhcp - ok
16:05:21.0617 2004 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
16:05:21.0617 2004 discache - ok
16:05:21.0657 2004 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
16:05:21.0657 2004 Disk - ok
16:05:21.0687 2004 Dnscache (85cf424c74a1d5ec33533e1dbff9920a) C:\Windows\System32\dnsrslvr.dll
16:05:21.0687 2004 Dnscache - ok
16:05:21.0697 2004 dot3svc (14452acdb09b70964c8c21bf80a13acb) C:\Windows\System32\dot3svc.dll
16:05:21.0697 2004 dot3svc - ok
16:05:21.0707 2004 DPS (8c2ba6bea949ee6e68385f5692bafb94) C:\Windows\system32\dps.dll
16:05:21.0717 2004 DPS - ok
16:05:21.0737 2004 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
16:05:21.0737 2004 drmkaud - ok
16:05:21.0767 2004 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
16:05:21.0767 2004 DXGKrnl - ok
16:05:21.0777 2004 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
16:05:21.0777 2004 EapHost - ok
16:05:21.0887 2004 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
16:05:21.0947 2004 ebdrv - ok
16:05:22.0057 2004 EFS (156f6159457d0aa7e59b62681b56eb90) C:\Windows\System32\lsass.exe
16:05:22.0057 2004 EFS - ok
16:05:22.0395 2004 ehRecvr (47c071994c3f649f23d9cd075ac9304a) C:\Windows\ehome\ehRecvr.exe
16:05:22.0395 2004 ehRecvr - ok
16:05:22.0411 2004 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
16:05:22.0411 2004 ehSched - ok
16:05:22.0456 2004 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
16:05:22.0466 2004 elxstor - ok
16:05:22.0476 2004 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
16:05:22.0476 2004 ErrDev - ok
16:05:22.0516 2004 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
16:05:22.0520 2004 EventSystem - ok
16:05:22.0535 2004 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
16:05:22.0538 2004 exfat - ok
16:05:22.0553 2004 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
16:05:22.0555 2004 fastfat - ok
16:05:22.0587 2004 Fax (d607b2f1bee3992aa6c2c92c0a2f0855) C:\Windows\system32\fxssvc.exe
16:05:22.0593 2004 Fax - ok
16:05:22.0603 2004 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
16:05:22.0604 2004 fdc - ok
16:05:22.0625 2004 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
16:05:22.0626 2004 fdPHost - ok
16:05:22.0632 2004 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
16:05:22.0633 2004 FDResPub - ok
16:05:22.0660 2004 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
16:05:22.0660 2004 FileInfo - ok
16:05:22.0669 2004 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
16:05:22.0670 2004 Filetrace - ok
16:05:22.0678 2004 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
16:05:22.0679 2004 flpydisk - ok
16:05:22.0699 2004 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
16:05:22.0701 2004 FltMgr - ok
16:05:22.0970 2004 FontCache (cb5e4b9c319e3c6bb363eb7e58a4a051) C:\Windows\system32\FntCache.dll
16:05:22.0983 2004 FontCache - ok
16:05:23.0053 2004 FontCache3.0.0.0 (8d89e3131c27fdd6932189cb785e1b7a) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:05:23.0054 2004 FontCache3.0.0.0 - ok
16:05:23.0071 2004 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
16:05:23.0072 2004 FsDepends - ok
16:05:23.0097 2004 fssfltr (6c06701bf1db05405804d7eb610991ce) C:\Windows\system32\DRIVERS\fssfltr.sys
16:05:23.0099 2004 fssfltr - ok
16:05:23.0424 2004 fsssvc (4ce9dac1518ff7e77bd213e6394b9d77) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
16:05:23.0456 2004 fsssvc - ok
16:05:23.0610 2004 Fs_Rec (d3e3f93d67821a2db2b3d9fac2dc2064) C:\Windows\system32\drivers\Fs_Rec.sys
16:05:23.0610 2004 Fs_Rec - ok
16:05:23.0670 2004 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
16:05:23.0680 2004 fvevol - ok
16:05:23.0730 2004 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
16:05:23.0730 2004 gagp30kx - ok
16:05:23.0760 2004 gpsvc (fe5ab4525bc2ec68b9119a6e5d40128b) C:\Windows\System32\gpsvc.dll
16:05:23.0770 2004 gpsvc - ok
16:05:23.0930 2004 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:05:23.0930 2004 gupdate - ok
16:05:23.0940 2004 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:05:23.0940 2004 gupdatem - ok
16:05:23.0990 2004 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
16:05:23.0990 2004 gusvc - ok
16:05:24.0000 2004 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
16:05:24.0000 2004 hcw85cir - ok
16:05:24.0040 2004 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
16:05:24.0050 2004 HdAudAddService - ok
16:05:24.0070 2004 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
16:05:24.0080 2004 HDAudBus - ok
16:05:24.0080 2004 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
16:05:24.0080 2004 HidBatt - ok
16:05:24.0090 2004 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
16:05:24.0090 2004 HidBth - ok
16:05:24.0110 2004 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
16:05:24.0110 2004 HidIr - ok
16:05:24.0120 2004 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
16:05:24.0120 2004 hidserv - ok
16:05:24.0140 2004 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
16:05:24.0140 2004 HidUsb - ok
16:05:24.0150 2004 hkmsvc (efa58ede58dd74388ffd04cb32681518) C:\Windows\system32\kmsvc.dll
16:05:24.0150 2004 hkmsvc - ok
16:05:24.0160 2004 HomeGroupListener (046b2673767ca626e2cfb7fdf735e9e8) C:\Windows\system32\ListSvc.dll
16:05:24.0160 2004 HomeGroupListener - ok
16:05:24.0190 2004 HomeGroupProvider (06a7422224d9865a5613710a089987df) C:\Windows\system32\provsvc.dll
16:05:24.0190 2004 HomeGroupProvider - ok
16:05:24.0220 2004 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
16:05:24.0220 2004 HpSAMD - ok
16:05:24.0240 2004 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
16:05:24.0250 2004 HTTP - ok
16:05:24.0270 2004 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
16:05:24.0270 2004 hwpolicy - ok
16:05:24.0290 2004 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
16:05:24.0290 2004 i8042prt - ok
16:05:24.0310 2004 iaStorV (b75e45c564e944a2657167d197ab29da) C:\Windows\system32\drivers\iaStorV.sys
16:05:24.0310 2004 iaStorV - ok
16:05:24.0663 2004 idsvc (2f2be70d3e02b6fa877921ab9516d43c) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:05:24.0759 2004 idsvc - ok
16:05:25.0709 2004 igfx (a87261ef1546325b559374f5689cf5bc) C:\Windows\system32\DRIVERS\igdkmd64.sys
16:05:25.0825 2004 igfx - ok
16:05:25.0959 2004 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
16:05:25.0960 2004 iirsp - ok
16:05:26.0020 2004 IKEEXT (c5b4683680df085b57bc53e5ef34861f) C:\Windows\System32\ikeext.dll
16:05:26.0028 2004 IKEEXT - ok
16:05:26.0034 2004 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
16:05:26.0035 2004 intelide - ok
16:05:26.0082 2004 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
16:05:26.0083 2004 intelppm - ok
16:05:26.0098 2004 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
16:05:26.0099 2004 IPBusEnum - ok
16:05:26.0107 2004 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:05:26.0108 2004 IpFilterDriver - ok
16:05:26.0154 2004 iphlpsvc (f8e058d17363ec580e4b7232778b6cb5) C:\Windows\System32\iphlpsvc.dll
16:05:26.0159 2004 iphlpsvc - ok
16:05:26.0172 2004 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
16:05:26.0173 2004 IPMIDRV - ok
16:05:26.0184 2004 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
16:05:26.0186 2004 IPNAT - ok
16:05:26.0189 2004 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
16:05:26.0190 2004 IRENUM - ok
16:05:26.0202 2004 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
16:05:26.0203 2004 isapnp - ok
16:05:26.0539 2004 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
16:05:26.0552 2004 iScsiPrt - ok
16:05:26.0572 2004 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
16:05:26.0572 2004 kbdclass - ok
16:05:26.0581 2004 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
16:05:26.0582 2004 kbdhid - ok
16:05:26.0613 2004 KeyIso (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
16:05:26.0614 2004 KeyIso - ok
16:05:26.0627 2004 KSecDD (16c1b906fc5ead84769f90b736b6bf0e) C:\Windows\system32\Drivers\ksecdd.sys
16:05:26.0628 2004 KSecDD - ok
16:05:26.0641 2004 KSecPkg (0b711550c56444879d71c7daabda6c83) C:\Windows\system32\Drivers\ksecpkg.sys
16:05:26.0643 2004 KSecPkg - ok
16:05:26.0657 2004 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
16:05:26.0658 2004 ksthunk - ok
16:05:26.0721 2004 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
16:05:26.0725 2004 KtmRm - ok
16:05:26.0754 2004 LanmanServer (81f1d04d4d0e433099365127375fd501) C:\Windows\System32\srvsvc.dll
16:05:26.0757 2004 LanmanServer - ok
16:05:26.0799 2004 LanmanWorkstation (27026eac8818e8a6c00a1cad2f11d29a) C:\Windows\System32\wkssvc.dll
16:05:26.0802 2004 LanmanWorkstation - ok
16:05:26.0822 2004 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
16:05:26.0823 2004 lltdio - ok
16:05:26.0842 2004 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
16:05:26.0846 2004 lltdsvc - ok
16:05:26.0858 2004 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
16:05:26.0859 2004 lmhosts - ok
16:05:26.0887 2004 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
16:05:26.0888 2004 LSI_FC - ok
16:05:26.0896 2004 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
16:05:26.0897 2004 LSI_SAS - ok
16:05:26.0911 2004 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
16:05:26.0912 2004 LSI_SAS2 - ok
16:05:26.0919 2004 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
16:05:26.0920 2004 LSI_SCSI - ok
16:05:26.0935 2004 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
16:05:26.0937 2004 luafv - ok
16:05:26.0975 2004 MagicTune (b3b7c5f26f3f8c7992350b7ede64f5c9) C:\Windows\system32\drivers\MTiCtwl.sys
16:05:26.0976 2004 MagicTune - ok
16:05:26.0988 2004 Mcx2Svc (f84c8f1000bc11e3b7b23cbd3baff111) C:\Windows\system32\Mcx2Svc.dll
16:05:26.0990 2004 Mcx2Svc - ok
16:05:26.0999 2004 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
16:05:27.0000 2004 megasas - ok
16:05:27.0014 2004 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
16:05:27.0017 2004 MegaSR - ok
16:05:27.0030 2004 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
16:05:27.0031 2004 MMCSS - ok
16:05:27.0039 2004 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
16:05:27.0040 2004 Modem - ok
16:05:27.0052 2004 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
16:05:27.0053 2004 monitor - ok
16:05:27.0061 2004 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
16:05:27.0061 2004 mouclass - ok
16:05:27.0087 2004 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
16:05:27.0087 2004 mouhid - ok
16:05:27.0098 2004 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
16:05:27.0099 2004 mountmgr - ok
16:05:27.0162 2004 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
16:05:27.0164 2004 MozillaMaintenance - ok
16:05:27.0181 2004 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
16:05:27.0182 2004 mpio - ok
16:05:27.0193 2004 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
16:05:27.0194 2004 mpsdrv - ok
16:05:27.0209 2004 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
16:05:27.0211 2004 MRxDAV - ok
16:05:27.0236 2004 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
16:05:27.0238 2004 mrxsmb - ok
16:05:27.0249 2004 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:05:27.0252 2004 mrxsmb10 - ok
16:05:27.0261 2004 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:05:27.0261 2004 mrxsmb20 - ok
16:05:27.0277 2004 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys
16:05:27.0277 2004 msahci - ok
16:05:27.0292 2004 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
16:05:27.0292 2004 msdsm - ok
16:05:27.0339 2004 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
16:05:27.0339 2004 MSDTC - ok
16:05:27.0355 2004 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
16:05:27.0355 2004 Msfs - ok
16:05:27.0386 2004 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
16:05:27.0386 2004 mshidkmdf - ok
16:05:27.0386 2004 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
16:05:27.0386 2004 msisadrv - ok
16:05:27.0417 2004 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
16:05:27.0417 2004 MSiSCSI - ok
16:05:27.0417 2004 msiserver - ok
16:05:27.0433 2004 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
16:05:27.0433 2004 MSKSSRV - ok
16:05:27.0433 2004 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
16:05:27.0448 2004 MSPCLOCK - ok
16:05:27.0448 2004 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
16:05:27.0448 2004 MSPQM - ok
16:05:27.0464 2004 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
16:05:27.0464 2004 MsRPC - ok
16:05:27.0479 2004 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
16:05:27.0479 2004 mssmbios - ok
16:05:27.0479 2004 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
16:05:27.0479 2004 MSTEE - ok
16:05:27.0495 2004 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
16:05:27.0495 2004 MTConfig - ok
16:05:27.0526 2004 MTsensor (19b006b181e3875fd254f7b67acf1e7c) C:\Windows\system32\DRIVERS\ASACPI.sys
16:05:27.0526 2004 MTsensor - ok
16:05:27.0526 2004 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
16:05:27.0526 2004 Mup - ok
16:05:27.0557 2004 napagent (4987e079a4530fa737a128be54b63b12) C:\Windows\system32\qagentRT.dll
16:05:27.0573 2004 napagent - ok
16:05:27.0589 2004 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
16:05:27.0589 2004 NativeWifiP - ok
16:05:27.0635 2004 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
16:05:27.0635 2004 NDIS - ok
16:05:27.0651 2004 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
16:05:27.0651 2004 NdisCap - ok
16:05:27.0682 2004 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
16:05:27.0682 2004 NdisTapi - ok
16:05:27.0698 2004 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
16:05:27.0698 2004 Ndisuio - ok
16:05:27.0713 2004 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
16:05:27.0713 2004 NdisWan - ok
16:05:27.0729 2004 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
16:05:27.0729 2004 NDProxy - ok
16:05:27.0776 2004 Net Driver HPZ12 (dc6530a291d4bdf6df399f1f128e7f8f) C:\Windows\system32\HPZinw12.dll
16:05:27.0776 2004 Net Driver HPZ12 - ok
16:05:27.0791 2004 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
16:05:27.0791 2004 NetBIOS - ok
16:05:27.0807 2004 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
16:05:27.0807 2004 NetBT - ok
16:05:27.0823 2004 Netlogon (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
16:05:27.0823 2004 Netlogon - ok
16:05:27.0854 2004 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
16:05:27.0854 2004 Netman - ok
16:05:27.0869 2004 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
16:05:27.0885 2004 netprofm - ok
16:05:27.0916 2004 netr28x (44d4bd55191624c82a2745296ba42814) C:\Windows\system32\DRIVERS\netr28x.sys
16:05:27.0916 2004 netr28x - ok
16:05:28.0642 2004 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:05:28.0672 2004 NetTcpPortSharing - ok
16:05:28.0712 2004 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
16:05:28.0712 2004 nfrd960 - ok
16:05:28.0742 2004 NlaSvc (d9a0ce66046d6efa0c61baa885cba0a8) C:\Windows\System32\nlasvc.dll
16:05:28.0742 2004 NlaSvc - ok
16:05:28.0752 2004 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
16:05:28.0752 2004 Npfs - ok
16:05:28.0762 2004 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
16:05:28.0762 2004 nsi - ok
16:05:28.0772 2004 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
16:05:28.0772 2004 nsiproxy - ok
16:05:29.0102 2004 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
16:05:29.0192 2004 Ntfs - ok
16:05:29.0292 2004 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
16:05:29.0312 2004 Null - ok
16:05:29.0342 2004 nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\Windows\system32\drivers\nvraid.sys
16:05:29.0342 2004 nvraid - ok
16:05:29.0362 2004 nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\Windows\system32\drivers\nvstor.sys
16:05:29.0362 2004 nvstor - ok
16:05:29.0372 2004 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
16:05:29.0372 2004 nv_agp - ok
16:05:29.0382 2004 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
16:05:29.0382 2004 ohci1394 - ok
16:05:29.0404 2004 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
16:05:29.0408 2004 p2pimsvc - ok
16:05:29.0433 2004 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
16:05:29.0438 2004 p2psvc - ok
16:05:29.0448 2004 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
16:05:29.0449 2004 Parport - ok
16:05:29.0475 2004 partmgr (90061b1acfe8ccaa5345750ffe08d8b8) C:\Windows\system32\drivers\partmgr.sys
16:05:29.0476 2004 partmgr - ok
16:05:29.0490 2004 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
16:05:29.0493 2004 PcaSvc - ok
16:05:29.0504 2004 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
16:05:29.0506 2004 pci - ok
16:05:29.0518 2004 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
16:05:29.0518 2004 pciide - ok
16:05:29.0536 2004 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
16:05:29.0538 2004 pcmcia - ok
16:05:29.0544 2004 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
16:05:29.0545 2004 pcw - ok
16:05:29.0570 2004 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
16:05:29.0576 2004 PEAUTH - ok
16:05:29.0652 2004 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
16:05:29.0653 2004 PerfHost - ok
16:05:29.0754 2004 pla (557e9a86f65f0de18c9b6751dfe9d3f1) C:\Windows\system32\pla.dll
16:05:29.0775 2004 pla - ok
16:05:29.0811 2004 PlugPlay (98b1721b8718164293b9701b98c52d77) C:\Windows\system32\umpnpmgr.dll
16:05:29.0815 2004 PlugPlay - ok
16:05:29.0843 2004 Pml Driver HPZ12 (71f62c51dfdfbc04c83c5c64b2b8058e) C:\Windows\system32\HPZipm12.dll
16:05:29.0845 2004 Pml Driver HPZ12 - ok
16:05:29.0850 2004 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
16:05:29.0851 2004 PNRPAutoReg - ok
16:05:29.0871 2004 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
16:05:29.0873 2004 PNRPsvc - ok
16:05:29.0911 2004 PolicyAgent (166eb40d1f5b47e615de3d0fffe5f243) C:\Windows\System32\ipsecsvc.dll
16:05:29.0917 2004 PolicyAgent - ok
16:05:30.0166 2004 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
16:05:30.0181 2004 Power - ok
16:05:30.0410 2004 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
16:05:30.0426 2004 PptpMiniport - ok
16:05:30.0442 2004 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
16:05:30.0442 2004 Processor - ok
16:05:30.0473 2004 ProfSvc (97293447431311c06703368ad0f6c4be) C:\Windows\system32\profsvc.dll
16:05:30.0473 2004 ProfSvc - ok
16:05:30.0520 2004 ProtectedStorage (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
16:05:30.0520 2004 ProtectedStorage - ok
16:05:30.0535 2004 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
16:05:30.0535 2004 Psched - ok
16:05:30.0660 2004 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
16:05:30.0706 2004 ql2300 - ok
16:05:30.0796 2004 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
16:05:30.0796 2004 ql40xx - ok
16:05:30.0826 2004 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
16:05:30.0826 2004 QWAVE - ok
16:05:30.0836 2004 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
16:05:30.0836 2004 QWAVEdrv - ok
16:05:30.0856 2004 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
16:05:30.0856 2004 RasAcd - ok
16:05:30.0876 2004 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
16:05:30.0876 2004 RasAgileVpn - ok
16:05:30.0886 2004 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
16:05:30.0886 2004 RasAuto - ok
16:05:30.0896 2004 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
16:05:30.0906 2004 Rasl2tp - ok
16:05:30.0926 2004 RasMan (47394ed3d16d053f5906efe5ab51cc83) C:\Windows\System32\rasmans.dll
16:05:30.0926 2004 RasMan - ok
16:05:30.0936 2004 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
16:05:30.0936 2004 RasPppoe - ok
16:05:30.0956 2004 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
16:05:30.0956 2004 RasSstp - ok
16:05:30.0976 2004 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
16:05:30.0976 2004 rdbss - ok
16:05:30.0986 2004 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
16:05:30.0986 2004 rdpbus - ok
16:05:30.0996 2004 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
16:05:30.0996 2004 RDPCDD - ok
16:05:31.0016 2004 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
16:05:31.0016 2004 RDPENCDD - ok
16:05:31.0036 2004 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
16:05:31.0036 2004 RDPREFMP - ok
16:05:31.0076 2004 RDPWD (447de7e3dea39d422c1504f245b668b1) C:\Windows\system32\drivers\RDPWD.sys
16:05:31.0086 2004 RDPWD - ok
16:05:31.0096 2004 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
16:05:31.0096 2004 rdyboost - ok
16:05:31.0136 2004 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
16:05:31.0136 2004 RemoteAccess - ok
16:05:31.0146 2004 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
16:05:31.0156 2004 RemoteRegistry - ok
16:05:31.0166 2004 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
16:05:31.0166 2004 RpcEptMapper - ok
16:05:31.0176 2004 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
16:05:31.0176 2004 RpcLocator - ok
16:05:31.0196 2004 RpcSs (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
16:05:31.0196 2004 RpcSs - ok
16:05:31.0206 2004 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
16:05:31.0216 2004 rspndr - ok
16:05:31.0296 2004 RTL8167 (2777226ee8bf50b059d7a7c90177e99c) C:\Windows\system32\DRIVERS\Rt64win7.sys
16:05:31.0296 2004 RTL8167 - ok
16:05:31.0376 2004 SamSs (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
16:05:31.0376 2004 SamSs - ok
16:05:31.0476 2004 SASDIFSV (3289766038db2cb14d07dc84392138d5) C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
16:05:31.0476 2004 SASDIFSV - ok
16:05:31.0476 2004 SASKUTIL (58a38e75f3316a83c23df6173d41f2b5) C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
16:05:31.0476 2004 SASKUTIL - ok
16:05:31.0486 2004 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
16:05:31.0496 2004 sbp2port - ok
16:05:31.0506 2004 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
16:05:31.0506 2004 SCardSvr - ok
16:05:31.0516 2004 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
16:05:31.0516 2004 scfilter - ok
16:05:31.0555 2004 Schedule (624d0f5ff99428bb90a5b8a4123e918e) C:\Windows\system32\schedsvc.dll
16:05:31.0585 2004 Schedule - ok
16:05:31.0610 2004 SCPolicySvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
16:05:31.0610 2004 SCPolicySvc - ok
16:05:31.0650 2004 SDRSVC (765a27c3279ce11d14cb9e4f5869fca5) C:\Windows\System32\SDRSVC.dll
16:05:31.0653 2004 SDRSVC - ok
16:05:31.0685 2004 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
16:05:31.0686 2004 secdrv - ok
16:05:31.0700 2004 seclogon (463b386ebc70f98da5dff85f7e654346) C:\Windows\system32\seclogon.dll
16:05:31.0701 2004 seclogon - ok
16:05:31.0713 2004 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
16:05:31.0714 2004 SENS - ok
16:05:31.0718 2004 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
16:05:31.0720 2004 SensrSvc - ok
16:05:31.0728 2004 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
16:05:31.0728 2004 Serenum - ok
16:05:31.0745 2004 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
16:05:31.0746 2004 Serial - ok
16:05:31.0772 2004 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
16:05:31.0773 2004 sermouse - ok
16:05:31.0788 2004 SessionEnv (c3bc61ce47ff6f4e88ab8a3b429a36af) C:\Windows\system32\sessenv.dll
16:05:31.0790 2004 SessionEnv - ok
16:05:31.0800 2004 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
16:05:31.0801 2004 sffdisk - ok
16:05:31.0807 2004 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys
16:05:31.0807 2004 sffp_mmc - ok
16:05:31.0811 2004 sffp_sd (178298f767fe638c9fedcbdef58bb5e4) C:\Windows\system32\DRIVERS\sffp_sd.sys
16:05:31.0811 2004 sffp_sd - ok
16:05:31.0820 2004 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
16:05:31.0821 2004 sfloppy - ok
16:05:31.0836 2004 ShellHWDetection (0298ac45d0efffb2db4baa7dd186e7bf) C:\Windows\System32\shsvcs.dll
16:05:31.0840 2004 ShellHWDetection - ok
16:05:31.0861 2004 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
16:05:31.0862 2004 SiSRaid2 - ok
16:05:31.0868 2004 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
16:05:31.0869 2004 SiSRaid4 - ok
16:05:31.0887 2004 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
16:05:31.0888 2004 Smb - ok
16:05:31.0897 2004 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
16:05:31.0898 2004 SNMPTRAP - ok
16:05:31.0906 2004 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
16:05:31.0906 2004 spldr - ok
16:05:31.0956 2004 Spooler (f8e1fa03cb70d54a9892ac88b91d1e7b) C:\Windows\System32\spoolsv.exe
16:05:31.0962 2004 Spooler - ok
16:05:32.0708 2004 sppsvc (913d843498553a1bc8f8dbad6358e49f) C:\Windows\system32\sppsvc.exe
16:05:32.0770 2004 sppsvc - ok
16:05:33.0476 2004 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
16:05:33.0476 2004 sppuinotify - ok
16:05:33.0516 2004 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
16:05:33.0526 2004 srv - ok
16:05:33.0556 2004 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
16:05:33.0556 2004 srv2 - ok
16:05:33.0566 2004 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
16:05:33.0576 2004 srvnet - ok
16:05:33.0586 2004 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
16:05:33.0586 2004 SSDPSRV - ok
16:05:33.0596 2004 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
16:05:33.0596 2004 SstpSvc - ok
16:05:33.0636 2004 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
16:05:33.0646 2004 stexstor - ok
16:05:33.0696 2004 stisvc (52d0e33b681bd0f33fdc08812fee4f7d) C:\Windows\System32\wiaservc.dll
16:05:33.0716 2004 stisvc - ok
16:05:33.0726 2004 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
16:05:33.0726 2004 swenum - ok
16:05:33.0836 2004 SwitchBoard (f577910a133a592234ebaad3f3afa258) C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
16:05:33.0846 2004 SwitchBoard - ok
16:05:33.0866 2004 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
16:05:33.0876 2004 swprv - ok
16:05:33.0926 2004 SysMain (3c1284516a62078fb68f768de4f1a7be) C:\Windows\system32\sysmain.dll
16:05:33.0956 2004 SysMain - ok
16:05:34.0016 2004 TabletInputService (238935c3cf2854886dc7cbb2a0e2cc66) C:\Windows\System32\TabSvc.dll
16:05:34.0016 2004 TabletInputService - ok
16:05:34.0746 2004 TabletServicePen (c4c20cfa4f42e9b7454e895c5c47bcd3) C:\Program Files\Tablet\Pen\Pen_Tablet.exe
16:05:34.0776 2004 TabletServicePen - ok
16:05:35.0335 2004 TapiSrv (884264ac597b690c5707c89723bb8e7b) C:\Windows\System32\tapisrv.dll
16:05:35.0345 2004 TapiSrv - ok
16:05:35.0355 2004 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
16:05:35.0355 2004 TBS - ok
16:05:35.0595 2004 Tcpip (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\drivers\tcpip.sys
16:05:35.0625 2004 Tcpip - ok
16:05:35.0927 2004 TCPIP6 (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\DRIVERS\tcpip.sys
16:05:35.0935 2004 TCPIP6 - ok
16:05:35.0990 2004 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
16:05:35.0991 2004 tcpipreg - ok
16:05:36.0008 2004 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
16:05:36.0008 2004 TDPIPE - ok
16:05:36.0055 2004 TDTCP (7518f7bcfd4b308abc9192bacaf6c970) C:\Windows\system32\drivers\tdtcp.sys
16:05:36.0057 2004 TDTCP - ok
16:05:36.0069 2004 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
16:05:36.0070 2004 tdx - ok
16:05:36.0094 2004 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
16:05:36.0094 2004 TermDD - ok
16:05:36.0139 2004 TermService (0f05ec2887bfe197ad82a13287d2f404) C:\Windows\System32\termsrv.dll
16:05:36.0146 2004 TermService - ok
16:05:36.0154 2004 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
16:05:36.0156 2004 Themes - ok
16:05:36.0174 2004 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
16:05:36.0175 2004 THREADORDER - ok
16:05:36.0270 2004 TouchServicePen (7625dcf246e488e523dc1f64c38abda2) C:\Program Files\Tablet\Pen\Pen_TouchService.exe
16:05:36.0275 2004 TouchServicePen - ok
16:05:36.0282 2004 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
16:05:36.0285 2004 TrkWks - ok
16:05:36.0322 2004 TrustedInstaller (840f7fb849f5887a49ba18c13b2da920) C:\Windows\servicing\TrustedInstaller.exe
16:05:36.0324 2004 TrustedInstaller - ok
16:05:36.0342 2004 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
16:05:36.0342 2004 tssecsrv - ok
16:05:36.0363 2004 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
16:05:36.0364 2004 tunnel - ok
16:05:36.0371 2004 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
16:05:36.0372 2004 uagp35 - ok
16:05:36.0392 2004 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys
16:05:36.0395 2004 udfs - ok
16:05:36.0409 2004 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
16:05:36.0411 2004 UI0Detect - ok
16:05:36.0425 2004 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
16:05:36.0426 2004 uliagpkx - ok
16:05:36.0436 2004 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
16:05:36.0437 2004 umbus - ok
16:05:36.0440 2004 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
16:05:36.0440 2004 UmPass - ok
16:05:36.0455 2004 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
16:05:36.0459 2004 upnphost - ok
16:05:36.0489 2004 usbccgp (7b6a127c93ee590e4d79a5f2a76fe46f) C:\Windows\system32\DRIVERS\usbccgp.sys
16:05:36.0491 2004 usbccgp - ok
16:05:36.0498 2004 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
16:05:36.0500 2004 usbcir - ok
16:05:36.0504 2004 usbehci (92969ba5ac44e229c55a332864f79677) C:\Windows\system32\DRIVERS\usbehci.sys
16:05:36.0505 2004 usbehci - ok
16:05:36.0524 2004 usbfilter (2c780746dc44a28fe67004dc58173f05) C:\Windows\system32\DRIVERS\usbfilter.sys
16:05:36.0525 2004 usbfilter - ok
16:05:36.0538 2004 usbhub (e7df1cfd28ca86b35ef5add0735ceef3) C:\Windows\system32\DRIVERS\usbhub.sys
16:05:36.0542 2004 usbhub - ok
16:05:36.0551 2004 usbohci (f1bb1e55f1e7a65c5839ccc7b36d773e) C:\Windows\system32\DRIVERS\usbohci.sys
16:05:36.0552 2004 usbohci - ok
16:05:36.0560 2004 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
16:05:36.0560 2004 usbprint - ok
16:05:36.0568 2004 USBSTOR (f39983647bc1f3e6100778ddfe9dce29) C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:05:36.0569 2004 USBSTOR - ok
16:05:36.0575 2004 usbuhci (bc3070350a491d84b518d7cca9abd36f) C:\Windows\system32\drivers\usbuhci.sys
16:05:36.0576 2004 usbuhci - ok
16:05:36.0580 2004 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
16:05:36.0582 2004 UxSms - ok
16:05:36.0612 2004 VaultSvc (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
16:05:36.0613 2004 VaultSvc - ok
16:05:36.0624 2004 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
16:05:36.0625 2004 vdrvroot - ok
16:05:36.0663 2004 vds (44d73e0bbc1d3c8981304ba15135c2f2) C:\Windows\System32\vds.exe
16:05:36.0669 2004 vds - ok
16:05:36.0681 2004 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
16:05:36.0682 2004 vga - ok
16:05:36.0686 2004 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
16:05:36.0687 2004 VgaSave - ok
16:05:36.0698 2004 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
16:05:36.0700 2004 vhdmp - ok
16:05:36.0764 2004 VIAHdAudAddService (d4944dbf92e07f1f641cb512065966e6) C:\Windows\system32\drivers\viahduaa.sys
16:05:36.0770 2004 VIAHdAudAddService - ok
16:05:37.0986 2004 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
16:05:37.0986 2004 viaide - ok
16:05:37.0986 2004 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
16:05:37.0996 2004 volmgr - ok
16:05:38.0006 2004 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
16:05:38.0006 2004 volmgrx - ok
16:05:38.0026 2004 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
16:05:38.0036 2004 volsnap - ok
16:05:38.0046 2004 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
16:05:38.0046 2004 vsmraid - ok
16:05:38.0949 2004 VSS (787898bf9fb6d7bd87a36e2d95c899ba) C:\Windows\system32\vssvc.exe
16:05:38.0977 2004 VSS - ok
16:05:39.0748 2004 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
16:05:39.0748 2004 vwifibus - ok
16:05:39.0778 2004 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
16:05:39.0778 2004 vwififlt - ok
16:05:39.0808 2004 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
16:05:39.0808 2004 W32Time - ok
16:05:39.0838 2004 wacommousefilter (e04d43c7d1641e95d35cae6086c7e350) C:\Windows\system32\DRIVERS\wacommousefilter.sys
16:05:39.0838 2004 wacommousefilter - ok
16:05:39.0848 2004 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
16:05:39.0848 2004 WacomPen - ok
16:05:39.0878 2004 wacomvhid (ec1ceb237e365330c1fcfc4876aa0ac0) C:\Windows\system32\DRIVERS\wacomvhid.sys
16:05:39.0878 2004 wacomvhid - ok
16:05:39.0908 2004 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
16:05:39.0908 2004 WANARP - ok
16:05:39.0918 2004 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
16:05:39.0918 2004 Wanarpv6 - ok
16:05:39.0989 2004 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
16:05:40.0005 2004 WatAdminSvc - ok
16:05:40.0557 2004 wbengine (5ab1bb85bd8b5089cc5d64200dedae68) C:\Windows\system32\wbengine.exe
16:05:40.0598 2004 wbengine - ok
16:05:40.0719 2004 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
16:05:40.0723 2004 WbioSrvc - ok
16:05:40.0747 2004 wcncsvc (dd1bae8ebfc653824d29ccf8c9054d68) C:\Windows\System32\wcncsvc.dll
16:05:40.0752 2004 wcncsvc - ok
16:05:40.0766 2004 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
16:05:40.0769 2004 WcsPlugInService - ok
16:05:40.0805 2004 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
16:05:40.0806 2004 Wd - ok
16:05:40.0835 2004 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
16:05:40.0842 2004 Wdf01000 - ok
16:05:40.0853 2004 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
16:05:40.0855 2004 WdiServiceHost - ok
16:05:40.0858 2004 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
16:05:40.0859 2004 WdiSystemHost - ok
16:05:40.0872 2004 WebClient (733006127f235be7c35354ebee7b9a7b) C:\Windows\System32\webclnt.dll
16:05:40.0876 2004 WebClient - ok
16:05:40.0892 2004 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
16:05:40.0896 2004 Wecsvc - ok
16:05:40.0904 2004 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
16:05:40.0906 2004 wercplsupport - ok
16:05:40.0943 2004 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
16:05:40.0945 2004 WerSvc - ok
16:05:40.0971 2004 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
16:05:40.0971 2004 WfpLwf - ok
16:05:40.0982 2004 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
16:05:40.0982 2004 WIMMount - ok
16:05:41.0031 2004 WinDefend - ok
16:05:41.0037 2004 WinHttpAutoProxySvc - ok
16:05:41.0084 2004 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
16:05:41.0086 2004 Winmgmt - ok
16:05:41.0989 2004 WinRM (41fbb751936b387f9179e7f03a74fe29) C:\Windows\system32\WsmSvc.dll
16:05:42.0049 2004 WinRM - ok
16:05:43.0137 2004 WinUsb (817eaff5d38674edd7713b9dfb8e9791) C:\Windows\system32\DRIVERS\WinUsb.sys
16:05:43.0167 2004 WinUsb - ok
16:05:43.0207 2004 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
16:05:43.0217 2004 Wlansvc - ok
16:05:43.0537 2004 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
16:05:43.0577 2004 wlcrasvc - ok
16:05:45.0666 2004 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
16:05:45.0696 2004 wlidsvc - ok
16:05:46.0135 2004 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
16:05:46.0135 2004 WmiAcpi - ok
16:05:46.0222 2004 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
16:05:46.0224 2004 wmiApSrv - ok
16:05:46.0265 2004 WMPNetworkSvc - ok
16:05:46.0339 2004 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
16:05:46.0349 2004 WPCSvc - ok
16:05:46.0365 2004 WPDBusEnum (2e57ddf2880a7e52e76f41c7e96d327b) C:\Windows\system32\wpdbusenum.dll
16:05:46.0367 2004 WPDBusEnum - ok
16:05:46.0376 2004 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
16:05:46.0377 2004 ws2ifsl - ok
16:05:46.0402 2004 wscsvc (8f9f3969933c02da96eb0f84576db43e) C:\Windows\system32\wscsvc.dll
16:05:46.0404 2004 wscsvc - ok
16:05:46.0406 2004 WSearch - ok
16:05:46.0702 2004 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
16:05:46.0745 2004 wuauserv - ok
16:05:47.0695 2004 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
16:05:47.0696 2004 WudfPf - ok
16:05:47.0729 2004 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
16:05:47.0730 2004 WUDFRd - ok
16:05:47.0751 2004 wudfsvc (b551d6637aa0e132c18ac6e504f7b79b) C:\Windows\System32\WUDFSvc.dll
16:05:47.0753 2004 wudfsvc - ok
16:05:47.0764 2004 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
16:05:47.0767 2004 WwanSvc - ok
16:05:47.0791 2004 MBR (0x1B8) (4976d4a7a40b83fc7f06ee4bdd84eb9b) \Device\Harddisk0\DR0
16:05:49.0602 2004 \Device\Harddisk0\DR0 - ok
16:05:49.0633 2004 Boot (0x1200) (04879ef0d98b65f9854d49c3fe7d1003) \Device\Harddisk0\DR0\Partition0
16:05:49.0634 2004 \Device\Harddisk0\DR0\Partition0 - ok
16:05:49.0634 2004 ============================================================
16:05:49.0634 2004 Scan finished
16:05:49.0634 2004 ============================================================
16:05:49.0642 4772 Detected object count: 0
16:05:49.0642 4772 Actual detected object count: 0

#4 Virgorival

Virgorival
  • Topic Starter

  • Members
  • 53 posts
  • OFFLINE
  •  
  • Local time:03:34 PM

Posted 02 July 2012 - 04:13 PM

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-07-02 16:07:24
-----------------------------
16:07:24.787 OS Version: Windows x64 6.1.7600
16:07:24.787 Number of processors: 6 586 0xA00
16:07:24.787 ComputerName: PATCHOULI UserName: Rival
16:07:31.315 Initialize success
16:07:36.993 AVAST engine defs: 12070200
16:07:50.886 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
16:07:50.902 Disk 0 Vendor: ST31000524AS JC45 Size: 953869MB BusType: 3
16:07:50.918 Disk 0 MBR read successfully
16:07:50.918 Disk 0 MBR scan
16:07:50.918 Disk 0 unknown MBR code
16:07:50.918 Disk 0 Partition 1 00 1B Hidd FAT32 NTFS 10024 MB offset 2048
16:07:50.949 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 943843 MB offset 20531200
16:07:50.949 Disk 0 scanning C:\Windows\system32\drivers
16:07:57.803 Service scanning
16:08:10.683 Modules scanning
16:08:10.688 Disk 0 trace - called modules:
16:08:10.701 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
16:08:10.704 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8007743060]
16:08:10.709 3 CLASSPNP.SYS[fffff8800100143f] -> nt!IofCallDriver -> [0xfffffa80076599b0]
16:08:10.717 5 ACPI.sys[fffff88000e5c781] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa8007740060]
16:08:13.425 AVAST engine scan C:\Windows
16:08:16.387 AVAST engine scan C:\Windows\system32
16:10:25.776 AVAST engine scan C:\Windows\system32\drivers
16:10:34.986 AVAST engine scan C:\Users\Rival
16:12:59.859 Disk 0 MBR has been saved successfully to "C:\Users\Rival\Desktop\MBR.dat"
16:12:59.909 The log file has been saved successfully to "C:\Users\Rival\Desktop\aswMBR.txt"

#5 Virgorival

Virgorival
  • Topic Starter

  • Members
  • 53 posts
  • OFFLINE
  •  
  • Local time:03:34 PM

Posted 02 July 2012 - 05:39 PM

C:\Qoobox\Quarantine\C\Windows\Installer\{b22b0583-4748-ebf7-64a1-21f70e4d6814}\U\80000000.@.vir Win64/Sirefef.AL trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Windows\Installer\{b22b0583-4748-ebf7-64a1-21f70e4d6814}\U\800000cb.@.vir Win64/Sirefef.T trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\02.07.2012_03.59.16\tdlfs0000\tsk0000.dta Win32/Olmarik.AYI trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\02.07.2012_03.59.16\tdlfs0000\tsk0001.dta Win64/Olmarik.AD trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\02.07.2012_03.59.16\tdlfs0000\tsk0002.dta Win32/Olmarik.AWO trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\02.07.2012_03.59.16\tdlfs0000\tsk0003.dta Win64/Olmarik.AI trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\02.07.2012_03.59.16\tdlfs0000\tsk0007.dta Win32/Olmarik.AWO trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\02.07.2012_03.59.16\tdlfs0000\tsk0008.dta Win64/Olmarik.X trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\02.07.2012_03.59.16\tdlfs0001\tsk0000.dta Win32/Olmarik.AYI trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\02.07.2012_03.59.16\tdlfs0001\tsk0001.dta Win64/Olmarik.AD trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\02.07.2012_03.59.16\tdlfs0001\tsk0002.dta Win32/Olmarik.AWO trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\02.07.2012_03.59.16\tdlfs0001\tsk0003.dta Win64/Olmarik.AI trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\02.07.2012_03.59.16\tdlfs0001\tsk0007.dta Win32/Olmarik.AWO trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\02.07.2012_03.59.16\tdlfs0001\tsk0008.dta Win64/Olmarik.X trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\22.06.2012_18.14.01\mbr0000\tdlfs0000\tsk0000.dta Win32/Olmarik.AYI trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\22.06.2012_18.14.01\mbr0000\tdlfs0000\tsk0001.dta Win64/Olmarik.AD trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\22.06.2012_18.14.01\mbr0000\tdlfs0000\tsk0002.dta Win32/Olmarik.AWO trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\22.06.2012_18.14.01\mbr0000\tdlfs0000\tsk0003.dta Win64/Olmarik.AI trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\22.06.2012_18.14.01\mbr0000\tdlfs0000\tsk0007.dta Win32/Olmarik.AWO trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\22.06.2012_18.14.01\mbr0000\tdlfs0000\tsk0008.dta Win64/Olmarik.X trojan cleaned by deleting - quarantined
C:\Windows\Installer\{b22b0583-4748-ebf7-64a1-21f70e4d6814}\U\80000000.@ Win64/Sirefef.AL trojan cleaned by deleting - quarantined
C:\Windows\Installer\{b22b0583-4748-ebf7-64a1-21f70e4d6814}\U\800000cb.@ Win64/Sirefef.T trojan cleaned by deleting - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\fidelsa.dll a variant of Win32/TrojanProxy.Agent.NIR trojan cleaned by deleting - quarantined

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:34 PM

Posted 02 July 2012 - 09:03 PM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

Rogue killer

right click on it and select run as administrator

Now,click on HOSTS FIX option on right side

A log should get generated after the fix ,post the log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

systemlook

Launch it and copy this script and paste in the BOX

:filefind
services.exe
:folderfind
{b22b0583-4748-ebf7-64a1-21f70e4d6814}

Click on LOOK,post the generated log

Edited by narenxp, 02 July 2012 - 09:03 PM.


#7 Virgorival

Virgorival
  • Topic Starter

  • Members
  • 53 posts
  • OFFLINE
  •  
  • Local time:03:34 PM

Posted 03 July 2012 - 03:09 AM

RogueKiller V7.6.2 [07/02/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.geekstogo.com/forum/files/file/413-roguekiller/
Blog: http://tigzyrk.blogspot.com

Operating System: Windows 7 (6.1.7600 ) 64 bits version
Started in : Normal mode
User: Rival [Admin rights]
Mode: HOSTSFix -- Date: 07/03/2012 03:08:53

¤¤¤ Bad processes: 0 ¤¤¤

¤¤¤ Driver: [NOT LOADED] ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
127.0.0.1 localhost


¤¤¤ Resetted HOSTS: ¤¤¤
127.0.0.1 localhost

Finished : << RKreport[2].txt >>
RKreport[1].txt ; RKreport[2].txt

#8 Virgorival

Virgorival
  • Topic Starter

  • Members
  • 53 posts
  • OFFLINE
  •  
  • Local time:03:34 PM

Posted 03 July 2012 - 03:24 AM

MiniToolBox by Farbar Version: 25-06-2012
Ran by Rival (administrator) on 03-07-2012 at 03:23:45
Microsoft Windows 7 Home Premium (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1 localhost
127.0.0.1 localhost

========================= IP Configuration: ================================

Realtek PCIe GBE Family Controller = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Patchouli
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : F4-6D-04-9E-56-17
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::cc7:ec5f:4496:154b%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.100(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Tuesday, July 03, 2012 2:58:07 AM
Lease Expires . . . . . . . . . . : Wednesday, July 04, 2012 2:58:07 AM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 234938452
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-2F-FD-D6-F4-6D-04-9E-56-17
DNS Servers . . . . . . . . . . . : 192.168.15.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{6E24409E-A34A-4D00-AC4C-39F45C50C0E2}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:5ef5:79fb:1478:1de2:3f57:fe9b(Preferred)
Link-local IPv6 Address . . . . . : fe80::1478:1de2:3f57:fe9b%12(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: WiMaxCPE
Address: 192.168.15.1

Name: google.com
Addresses: 2001:4860:4002:801::1004
74.125.227.41
74.125.227.35
74.125.227.37
74.125.227.38
74.125.227.46
74.125.227.39
74.125.227.34
74.125.227.40
74.125.227.36
74.125.227.33
74.125.227.32


Pinging google.com [74.125.227.32] with 32 bytes of data:
Reply from 74.125.227.32: bytes=32 time=69ms TTL=52
Reply from 74.125.227.32: bytes=32 time=75ms TTL=52

Ping statistics for 74.125.227.32:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 69ms, Maximum = 75ms, Average = 72ms
Server: WiMaxCPE
Address: 192.168.15.1

Name: yahoo.com
Addresses: 72.30.38.140
209.191.122.70
98.139.183.24


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=168ms TTL=46
Reply from 98.139.183.24: bytes=32 time=107ms TTL=46

Ping statistics for 98.139.183.24:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 107ms, Maximum = 168ms, Average = 137ms
Server: WiMaxCPE
Address: 192.168.15.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
11...f4 6d 04 9e 56 17 ......Realtek PCIe GBE Family Controller
1...........................Software Loopback Interface 1
13...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.100 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.100 276
192.168.1.100 255.255.255.255 On-link 192.168.1.100 276
192.168.1.255 255.255.255.255 On-link 192.168.1.100 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.100 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.100 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
12 58 ::/0 On-link
1 306 ::1/128 On-link
12 58 2001::/32 On-link
12 306 2001:0:5ef5:79fb:1478:1de2:3f57:fe9b/128
On-link
11 276 fe80::/64 On-link
12 306 fe80::/64 On-link
11 276 fe80::cc7:ec5f:4496:154b/128
On-link
12 306 fe80::1478:1de2:3f57:fe9b/128
On-link
1 306 ff00::/8 On-link
12 306 ff00::/8 On-link
11 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

Catalog5 04 C:\Windows\SysWOW64\nwprovau.dll [File Not found] ()
Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 12 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 13 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 14 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 15 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 16 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 17 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 18 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 19 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 20 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 21 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 22 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 23 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 24 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 25 C:\Windows\SysWOW64\rsvpsp.dll [File Not found] ()
Catalog9 26 C:\Windows\SysWOW64\rsvpsp.dll [File Not found] ()
Catalog9 27 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 28 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 29 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

x64-Catalog5 02 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\winrnr.dll"

x64-Catalog5 03 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog5 04 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog5 05 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog5 06 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog9 01 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 04 mswsock.dll [File Not found] ()
x64-Catalog9 05 mswsock.dll [File Not found] ()
x64-Catalog9 06 mswsock.dll [File Not found] ()
x64-Catalog9 07 mswsock.dll [File Not found] ()
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (07/03/2012 00:30:49 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (07/03/2012 00:30:49 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (07/03/2012 00:30:24 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (07/03/2012 00:30:19 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.

Error: (07/02/2012 11:52:59 PM) (Source: Customer Experience Improvement Program) (User: )
Description: 90080108

Error: (07/02/2012 10:28:23 PM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005

Error: (07/02/2012 04:13:52 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (07/02/2012 04:13:50 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (07/02/2012 04:13:49 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (07/02/2012 04:13:49 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.


System errors:
=============
Error: (07/03/2012 03:03:02 AM) (Source: Service Control Manager) (User: )
Description: The Windows Update service hung on starting.

Error: (07/03/2012 02:58:42 AM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (07/03/2012 02:58:42 AM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (07/03/2012 02:58:17 AM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service terminated with the following error:
%%1060

Error: (07/03/2012 02:58:12 AM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service terminated with the following error:
%%1060

Error: (07/02/2012 04:00:50 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (07/02/2012 04:00:50 PM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (07/02/2012 03:59:11 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service terminated with the following error:
%%1060

Error: (07/02/2012 03:59:06 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service terminated with the following error:
%%1060

Error: (07/01/2012 03:28:57 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891


Microsoft Office Sessions:
=========================
Error: (07/03/2012 00:30:49 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestC:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe

Error: (07/03/2012 00:30:49 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestC:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe

Error: (07/03/2012 00:30:24 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe

Error: (07/03/2012 00:30:19 AM) (Source: SideBySide)(User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORC:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllC:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3

Error: (07/02/2012 11:52:59 PM) (Source: Customer Experience Improvement Program)(User: )
Description: 90080108

Error: (07/02/2012 10:28:23 PM) (Source: Customer Experience Improvement Program)(User: )
Description: 80004005

Error: (07/02/2012 04:13:52 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestC:\Users\Rival\Downloads\esetsmartinstaller_enu.exe

Error: (07/02/2012 04:13:50 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestC:\Users\Rival\Downloads\esetsmartinstaller_enu.exe

Error: (07/02/2012 04:13:49 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestC:\Users\Rival\Downloads\esetsmartinstaller_enu.exe

Error: (07/02/2012 04:13:49 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestC:\Users\Rival\Downloads\esetsmartinstaller_enu.exe


=========================== Installed Programs ============================

3D Bridge DS4 (64bit) (Version: 1.0.11.47)
64 Bit HP CIO Components Installer (Version: 1.2.0)
Adobe AIR (Version: 1.5.3.9120)
Adobe Community Help (Version: 3.0.0)
Adobe Community Help (Version: 3.0.0.400)
Adobe Flash Player 11 ActiveX (Version: 11.3.300.257)
Adobe Flash Player 11 Plugin 64-bit (Version: 11.2.202.235)
Adobe Media Player (Version: 1.8)
Adobe Photoshop CS5 (Version: 12.0)
Adobe Reader X (10.1.3) MUI (Version: 10.1.3)
AI Manager (Version: 1.08.10)
AIM 7
AMD Accelerated Video Transcoding (Version: 2.00.0002)
AMD APP SDK Runtime (Version: 10.0.923.1)
AMD Catalyst Install Manager (Version: 8.0.873.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Fuel (Version: 2012.0405.2205.37728)
AMD Media Foundation Decoders (Version: 1.0.70405.2224)
AMD Steady Video Plug-In (Version: 2.04.0000)
AMD USB Filter Driver (Version: 1.0.15.94)
AMD VISION Engine Control Center (Version: 2012.0405.2205.37728)
ASUS Backup Wizard (Version: 1.00.10)
ASUSUpdate (Version: 7.18.03)
AsusVibe2.0 (Version: 2.0.2.562)
ATI AVIVO64 Codecs (Version: 11.6.0.10627)
Bamboo (Version: 5.2.5-5)
Best Buy pc app (Version: 3.2.2.1)
BitTornado 0.3.18 (Version: 0.3.18)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (Version: 2012.0405.2205.37728)
Catalyst Control Center InstallProxy (Version: 2010.0210.2206.39615)
Catalyst Control Center InstallProxy (Version: 2012.0405.2205.37728)
Catalyst Control Center Localization All (Version: 2012.0405.2205.37728)
ccc-utility64 (Version: 2012.0405.2205.37728)
CCC Help Chinese Standard (Version: 2012.0405.2204.37728)
CCC Help Chinese Traditional (Version: 2012.0405.2204.37728)
CCC Help Czech (Version: 2012.0405.2204.37728)
CCC Help Danish (Version: 2012.0405.2204.37728)
CCC Help Dutch (Version: 2012.0405.2204.37728)
CCC Help English (Version: 2012.0405.2204.37728)
CCC Help Finnish (Version: 2012.0405.2204.37728)
CCC Help French (Version: 2012.0405.2204.37728)
CCC Help German (Version: 2012.0405.2204.37728)
CCC Help Greek (Version: 2012.0405.2204.37728)
CCC Help Hungarian (Version: 2012.0405.2204.37728)
CCC Help Italian (Version: 2012.0405.2204.37728)
CCC Help Japanese (Version: 2012.0405.2204.37728)
CCC Help Korean (Version: 2012.0405.2204.37728)
CCC Help Norwegian (Version: 2012.0405.2204.37728)
CCC Help Polish (Version: 2012.0405.2204.37728)
CCC Help Portuguese (Version: 2012.0405.2204.37728)
CCC Help Russian (Version: 2012.0405.2204.37728)
CCC Help Spanish (Version: 2012.0405.2204.37728)
CCC Help Swedish (Version: 2012.0405.2204.37728)
CCC Help Thai (Version: 2012.0405.2204.37728)
CCC Help Turkish (Version: 2012.0405.2204.37728)
CCleaner (Version: 3.19)
Complément Messenger (Version: 15.4.3502.0922)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (Version: 15.4.5722.2)
Control ActiveX de Windows Live Mesh para conexiones remotas (Version: 15.4.5722.2)
D3DX10 (Version: 15.4.2368.0902)
DAZ Content Management Service (Version: 4.8.1.7)
DAZ Studio 4 (64bit) (Version: 4.0.3.47)
DAZ Studio 4 (Version: 4.0.3.19)
Download Updater (AOL LLC)
DS4 Default Content (Version: 4.0.0.19)
EPU-4 Engine (Version: 1.01.02)
ESET Online Scanner v3
Galerie de photos Windows Live (Version: 15.4.3502.0922)
Galería fotográfica de Windows Live (Version: 15.4.3502.0922)
Google Chrome (Version: 20.0.1132.47)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.3.2710.138)
Google Update Helper (Version: 1.3.21.111)
GoZ DS4 (64bit) (Version: 1.0.3.47)
Hexagon 2 (Version: 2.5.1.79)
HydraVision (Version: 4.2.208.0)
Java Auto Updater (Version: 2.0.6.1)
Java™ 6 Update 29 (64-bit) (Version: 6.0.290)
Java™ 6 Update 29 (Version: 6.0.290)
Junk Mail filter update (Version: 15.4.3502.0922)
MagicTune Premium (Version: 4.0.12)
MagicTunePremium (Version: 4.0.14)
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
Mesh Runtime (Version: 15.4.5722.2)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)
Mozilla Firefox 12.0 (x86 en-US) (Version: 12.0)
Mozilla Maintenance Service (Version: 12.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP3 Parser (KB973685) (Version: 4.30.2107.0)
MultiScreen (Version: 1.00.0000)
PDF Settings CS5 (Version: 10.0)
Platform (Version: 1.34)
Ralink RT2860 Wireless LAN Card (Version: 1.2.0.1)
Realtek Ethernet Controller Driver (Version: 7.31.1025.2010)
Samsung_MonSetup (Version: 1.00.0000)
SUPERAntiSpyware (Version: 5.1.1002)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
VIA Platform Device Manager (Version: 1.34)
Victoria 4.2 Base (Version: ps_pe069_Victoria4)
WebTablet FB Plugin (Version: 2.0.0.1)
WebTablet IE Plugin (Version: 1.1.0.12)
WebTablet Netscape Plugin (Version: 1.1.0.10)
Winamp (Version: 5.621 )
Windows Live (Version: 15.4.3502.0922)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3508.1109)
Windows Live Family Safety (Version: 15.4.3502.0922)
Windows Live Fotogalerie (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3508.1109)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (Version: 15.4.5722.2)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX control for remote connections (Version: 15.4.5722.2)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
WinRAR 4.01 (32-bit) (Version: 4.01.0)

========================= Memory info: ===================================

Percentage of memory in use: 31%
Total physical RAM: 7935.18 MB
Available physical RAM: 5471.08 MB
Total Pagefile: 15868.46 MB
Available Pagefile: 12736.37 MB
Total Virtual: 4095.88 MB
Available Virtual: 3956.07 MB

========================= Partitions: =====================================

1 Drive c: (WIN7) (Fixed) (Total:921.72 GB) (Free:823.58 GB) NTFS
2 Drive d: (NE-9.4.11.67) (CDROM) (Total:0.31 GB) (Free:0 GB) CDFS

========================= Users: ========================================

User accounts for \\PATCHOULI

Administrator Guest Rival


**** End of log ****

#9 Virgorival

Virgorival
  • Topic Starter

  • Members
  • 53 posts
  • OFFLINE
  •  
  • Local time:03:34 PM

Posted 03 July 2012 - 03:44 AM

SystemLook 30.07.11 by jpshortstuff
Log created at 03:27 on 03/07/2012 by Rival
Administrator - Elevation successful

========== filefind ==========

Searching for "services.exe"
C:\Windows\ERDNT\cache64\services.exe --a---- 328704 bytes [10:17 29/04/2012] [01:39 14/07/2009] 24ACB7E5BE595468E3B9AA488B9B4FCB
C:\Windows\System32\services.exe --a---- 328704 bytes [23:19 13/07/2009] [01:39 14/07/2009] 014A9CB92514E27C0107614DF764BC06
C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe --a---- 328704 bytes [23:19 13/07/2009] [01:39 14/07/2009] 24ACB7E5BE595468E3B9AA488B9B4FCB

========== folderfind ==========

Searching for "{b22b0583-4748-ebf7-64a1-21f70e4d6814}"
C:\Qoobox\Quarantine\C\Windows\Installer\{b22b0583-4748-ebf7-64a1-21f70e4d6814} d------ [08:55 02/07/2012]
C:\Windows\Installer\{b22b0583-4748-ebf7-64a1-21f70e4d6814} d------ [07:47 11/01/2012]
C:\Windows\SysWOW64\config\systemprofile\AppData\Local\{b22b0583-4748-ebf7-64a1-21f70e4d6814} d--hs-- [07:47 11/01/2012]

-= EOF =-

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:34 PM

Posted 03 July 2012 - 03:47 AM

Malwarebytes log?

Open your C drive

On top,click on Organize-folder and search options

Click on View tab and scroll down

Check mark Show hidden files
Uncheck Hide operating system files


Click ok,now go to

C:\Windows\SysWOW64\config\systemprofile\AppData\Local\{b22b0583-4748-ebf7-64a1-21f70e4d6814}
C:\Windows\Installer\{b22b0583-4748-ebf7-64a1-21f70e4d6814}

delete both the folders


Press Windows+R key and type

notepad and click ok

copy this script and paste in notepad
@echo off
cd c:\windows\system32
takeown /a /f services.exe
cacls services.exe /g administrators:f
ren services.exe services.exe.old
COPY /Y C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe C:\WINDOWS\system32
DEL %0

Click on FILE>> save as

filename:sevices.bat
Save as type:All types

Now right click on the services.bat file and select run as administrator and run it,click Y and press ENTER

Post the new system look log

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Edited by narenxp, 03 July 2012 - 03:47 AM.


#11 Virgorival

Virgorival
  • Topic Starter

  • Members
  • 53 posts
  • OFFLINE
  •  
  • Local time:03:34 PM

Posted 03 July 2012 - 03:50 AM

Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.07.02.01

Windows 7 x64 NTFS
Internet Explorer 9.0.8112.16421
Rival :: PATCHOULI [administrator]

7/3/2012 1:13:37 AM
mbam-log-2012-07-03 (02-55-45).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 896907
Time elapsed: 1 hour(s), 36 minute(s), 30 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 1
C:\Windows\svchost.exe (Trojan.Agent) -> No action taken.

(end)

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:34 PM

Posted 03 July 2012 - 03:51 AM

Please follow my previous instructions ,also

C:\Windows\svchost.exe (Trojan.Agent) -> No action taken.>>>

Make sure to remove this infections

#13 Virgorival

Virgorival
  • Topic Starter

  • Members
  • 53 posts
  • OFFLINE
  •  
  • Local time:03:34 PM

Posted 03 July 2012 - 03:57 AM

SystemLook 30.07.11 by jpshortstuff
Log created at 03:57 on 03/07/2012 by Rival
Administrator - Elevation successful

========== filefind ==========

Searching for "services.exe"
C:\Windows\ERDNT\cache64\services.exe --a---- 328704 bytes [10:17 29/04/2012] [01:39 14/07/2009] 24ACB7E5BE595468E3B9AA488B9B4FCB
C:\Windows\System32\services.exe --a---- 328704 bytes [23:19 13/07/2009] [01:39 14/07/2009] 24ACB7E5BE595468E3B9AA488B9B4FCB
C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe --a---- 328704 bytes [23:19 13/07/2009] [01:39 14/07/2009] 24ACB7E5BE595468E3B9AA488B9B4FCB

========== folderfind ==========

Searching for "{b22b0583-4748-ebf7-64a1-21f70e4d6814}"
C:\Qoobox\Quarantine\C\Windows\Installer\{b22b0583-4748-ebf7-64a1-21f70e4d6814} d------ [08:55 02/07/2012]

-= EOF =-

#14 Virgorival

Virgorival
  • Topic Starter

  • Members
  • 53 posts
  • OFFLINE
  •  
  • Local time:03:34 PM

Posted 03 July 2012 - 03:58 AM

Farbar Service Scanner Version: 02-07-2012
Ran by Rival (administrator) on 03-07-2012 at 03:58:20
Running from "C:\Users\Rival\Downloads"
Microsoft Windows 7 Home Premium (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
mpsdrv Service is not running. Checking service configuration:
The start type of mpsdrv service is OK.
The ImagePath of mpsdrv service is OK.

MpsSvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============
BITS Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to retrieve start type of BITS. The value does not exist.
The ImagePath of BITS service is OK.
Checking ServiceDll: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys
[2012-02-16 23:23] - [2011-12-27 22:59] - 0499200 ____A (Microsoft Corporation) DB9D6C6B2CD95A9CA414D045B627422E

C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys
[2012-05-10 20:44] - [2012-03-30 06:09] - 1895280 ____A (Microsoft Corporation) 624C5B3AA4C99B3184BB922D9ECE3FF0

C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll
[2009-07-13 19:09] - [2009-07-13 20:41] - 0824832 ____A (Microsoft Corporation) AECAB449567D1846DAD63ECE49E893E3

C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll
[2009-07-13 18:36] - [2009-07-13 20:41] - 0170496 ____A (Microsoft Corporation) 765A27C3279CE11D14CB9E4F5869FCA5

C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll
[2012-06-13 03:48] - [2012-04-24 00:59] - 0182272 ____A (Microsoft Corporation) F02786B66375292E58C8777082D4396D

C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

#15 Virgorival

Virgorival
  • Topic Starter

  • Members
  • 53 posts
  • OFFLINE
  •  
  • Local time:03:34 PM

Posted 03 July 2012 - 04:03 AM

Please follow my previous instructions ,also

C:\Windows\svchost.exe (Trojan.Agent) -> No action taken.>>>

Make sure to remove this infections


oops, sorry wrong log
That was the log when you asked to run it Till it came up clean

Reran quick scan

Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.07.02.01

Windows 7 x64 NTFS
Internet Explorer 9.0.8112.16421
Rival :: PATCHOULI [administrator]

7/3/2012 4:02:42 AM
mbam-log-2012-07-03 (04-02-42).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 218056
Time elapsed: 38 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users