Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

I Think I'm infected


  • Please log in to reply
6 replies to this topic

#1 Tchock

Tchock

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:10:19 PM

Posted 09 July 2012 - 12:21 AM

My flash kept crashing and I did a scan on Malwarebytes and I dont know what to do.



Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.07.09.01

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Joel :: JOEL-PC [administrator]

7/8/2012 10:34:19 PM
mbam-log-2012-07-08 (22-34-19).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 419983
Time elapsed: 1 hour(s), 8 minute(s), 37 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 14
HKCR\CrossriderApp0005060.BHO (PUP.CrossFire.Gen) -> Quarantined and deleted successfully.
HKCR\CrossriderApp0005060.BHO.1 (PUP.CrossFire.Gen) -> Quarantined and deleted successfully.
HKCR\CrossriderApp0005060.FBApi (PUP.CrossFire.Gen) -> Quarantined and deleted successfully.
HKCR\CrossriderApp0005060.FBApi.1 (PUP.CrossFire.Gen) -> Quarantined and deleted successfully.
HKCR\CrossriderApp0005060.Sandbox (PUP.CrossFire.Gen) -> Quarantined and deleted successfully.
HKCR\CrossriderApp0005060.Sandbox.1 (PUP.CrossFire.Gen) -> Quarantined and deleted successfully.
HKCU\Software\Cr_Installer\5060 (Adware.GamePlayLab) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\215 APPS (PUP.CrossFire.SA) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110011501160} (PUP.GamePlayLab) -> Quarantined and deleted successfully.
HKCR\CLSID\{11111111-1111-1111-1111-110011501160} (PUP.GamePlayLab) -> Quarantined and deleted successfully.
HKCR\TypeLib\{44444444-4444-4444-4444-440044504460} (PUP.GamePlayLab) -> Quarantined and deleted successfully.
HKCR\Interface\{55555555-5555-5555-5555-550055505560} (PUP.GamePlayLab) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11111111-1111-1111-1111-110011501160} (PUP.GamePlayLab) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110011501160} (PUP.GamePlayLab) -> Quarantined and deleted successfully.

Registry Values Detected: 1
HKCU\Software\InstalledBrowserExtensions\215 Apps|5060 (PUP.CrossFire.SA) -> Data: Savings Sidekick -> Quarantined and deleted successfully.

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 1
C:\Program Files (x86)\Savings Sidekick\Savings Sidekick.dll (PUP.GamePlayLab) -> Quarantined and deleted successfully.

(end)

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:19 PM

Posted 09 July 2012 - 12:22 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)



Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 Tchock

Tchock
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:10:19 PM

Posted 09 July 2012 - 01:54 AM

TDDSKILLER report


12:07:52.0148 3144 TDSS rootkit removing tool 2.7.45.0 Jul  9 2012 12:46:35
12:07:52.0760 3144 ============================================================
12:07:52.0760 3144 Current date / time: 2012/07/09 12:07:52.0760
12:07:52.0760 3144 SystemInfo:
12:07:52.0761 3144
12:07:52.0761 3144 OS Version: 6.1.7601 ServicePack: 1.0
12:07:52.0761 3144 Product type: Workstation
12:07:52.0761 3144 ComputerName: JOEL-PC
12:07:52.0761 3144 UserName: Joel
12:07:52.0761 3144 Windows directory: C:\windows
12:07:52.0761 3144 System windows directory: C:\windows
12:07:52.0761 3144 Running under WOW64
12:07:52.0762 3144 Processor architecture: Intel x64
12:07:52.0762 3144 Number of processors: 2
12:07:52.0762 3144 Page size: 0x1000
12:07:52.0762 3144 Boot type: Normal boot
12:07:52.0762 3144 ============================================================
12:07:54.0691 3144 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:07:54.0787 3144 ============================================================
12:07:54.0787 3144 \Device\Harddisk0\DR0:
12:07:54.0787 3144 MBR partitions:
12:07:54.0787 3144 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x64000
12:07:54.0787 3144 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x64800, BlocksNum 0x34BA1000
12:07:54.0838 3144 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x34C06000, BlocksNum 0x39FD800
12:07:54.0838 3144 ============================================================
12:07:54.0962 3144 C: <-> \Device\Harddisk0\DR0\Partition1
12:07:55.0621 3144 D: <-> \Device\Harddisk0\DR0\Partition2
12:07:55.0750 3144 ============================================================
12:07:55.0750 3144 Initialize success
12:07:55.0750 3144 ============================================================
12:08:20.0348 3608 ============================================================
12:08:20.0348 3608 Scan started
12:08:20.0348 3608 Mode: Manual; SigCheck; TDLFS; 
12:08:20.0348 3608 ============================================================
12:08:22.0124 3608 1394ohci        (a87d604aea360176311474c87a63bb88) C:\windows\system32\drivers\1394ohci.sys
12:08:22.0814 3608 1394ohci - ok
12:08:23.0346 3608 ACPI            (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\windows\system32\drivers\ACPI.sys
12:08:23.0382 3608 ACPI - ok
12:08:23.0454 3608 AcpiPmi         (99f8e788246d495ce3794d7e7821d2ca) C:\windows\system32\drivers\acpipmi.sys
12:08:23.0831 3608 AcpiPmi - ok
12:08:23.0900 3608 ACPIVPC         (5bbff8b826ec38d32c26334e079c7efc) C:\windows\system32\DRIVERS\AcpiVpc.sys
12:08:24.0393 3608 ACPIVPC - ok
12:08:24.0744 3608 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
12:08:24.0802 3608 AdobeARMservice - ok
12:08:25.0852 3608 AdobeFlashPlayerUpdateSvc (f3cd7b20b27d1772c946df993ff3635c) C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
12:08:25.0891 3608 AdobeFlashPlayerUpdateSvc - ok
12:08:26.0505 3608 adp94xx         (2f6b34b83843f0c5118b63ac634f5bf4) C:\windows\system32\drivers\adp94xx.sys
12:08:26.0552 3608 adp94xx - ok
12:08:26.0961 3608 adpahci         (597f78224ee9224ea1a13d6350ced962) C:\windows\system32\drivers\adpahci.sys
12:08:27.0061 3608 adpahci - ok
12:08:27.0299 3608 adpu320         (e109549c90f62fb570b9540c4b148e54) C:\windows\system32\drivers\adpu320.sys
12:08:27.0341 3608 adpu320 - ok
12:08:27.0462 3608 AeLookupSvc     (4b78b431f225fd8624c5655cb1de7b61) C:\windows\System32\aelupsvc.dll
12:08:28.0334 3608 AeLookupSvc - ok
12:08:28.0976 3608 AFD             (1c7857b62de5994a75b054a9fd4c3825) C:\windows\system32\drivers\afd.sys
12:08:29.0150 3608 AFD - ok
12:08:29.0293 3608 agp440          (608c14dba7299d8cb6ed035a68a15799) C:\windows\system32\drivers\agp440.sys
12:08:29.0318 3608 agp440 - ok
12:08:29.0425 3608 ALG             (3290d6946b5e30e70414990574883ddb) C:\windows\System32\alg.exe
12:08:29.0551 3608 ALG - ok
12:08:29.0609 3608 aliide          (5812713a477a3ad7363c7438ca2ee038) C:\windows\system32\drivers\aliide.sys
12:08:29.0668 3608 aliide - ok
12:08:29.0679 3608 amdide          (1ff8b4431c353ce385c875f194924c0c) C:\windows\system32\drivers\amdide.sys
12:08:29.0695 3608 amdide - ok
12:08:29.0765 3608 AmdK8           (7024f087cff1833a806193ef9d22cda9) C:\windows\system32\drivers\amdk8.sys
12:08:29.0817 3608 AmdK8 - ok
12:08:29.0858 3608 AmdPPM          (1e56388b3fe0d031c44144eb8c4d6217) C:\windows\system32\drivers\amdppm.sys
12:08:29.0909 3608 AmdPPM - ok
12:08:30.0062 3608 amdsata         (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\windows\system32\drivers\amdsata.sys
12:08:30.0100 3608 amdsata - ok
12:08:30.0330 3608 amdsbs          (f67f933e79241ed32ff46a4f29b5120b) C:\windows\system32\drivers\amdsbs.sys
12:08:30.0383 3608 amdsbs - ok
12:08:30.0466 3608 amdxata         (540daf1cea6094886d72126fd7c33048) C:\windows\system32\drivers\amdxata.sys
12:08:30.0477 3608 amdxata - ok
12:08:30.0683 3608 AppID           (89a69c3f2f319b43379399547526d952) C:\windows\system32\drivers\appid.sys
12:08:31.0460 3608 AppID - ok
12:08:31.0562 3608 AppIDSvc        (0bc381a15355a3982216f7172f545de1) C:\windows\System32\appidsvc.dll
12:08:31.0625 3608 AppIDSvc - ok
12:08:31.0770 3608 Appinfo         (3977d4a871ca0d4f2ed1e7db46829731) C:\windows\System32\appinfo.dll
12:08:31.0873 3608 Appinfo - ok
12:08:32.0154 3608 Apple Mobile Device (f401929ee0cc92bfe7f15161ca535383) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
12:08:32.0214 3608 Apple Mobile Device - ok
12:08:32.0365 3608 arc             (c484f8ceb1717c540242531db7845c4e) C:\windows\system32\drivers\arc.sys
12:08:32.0410 3608 arc - ok
12:08:32.0568 3608 arcsas          (019af6924aefe7839f61c830227fe79c) C:\windows\system32\drivers\arcsas.sys
12:08:32.0593 3608 arcsas - ok
12:08:33.0092 3608 aspnet_state    (9217d874131ae6ff8f642f124f00a555) C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
12:08:33.0125 3608 aspnet_state - ok
12:08:33.0192 3608 AsyncMac        (769765ce2cc62867468cea93969b2242) C:\windows\system32\DRIVERS\asyncmac.sys
12:08:33.0284 3608 AsyncMac - ok
12:08:33.0467 3608 atapi           (02062c0b390b7729edc9e69c680a6f3c) C:\windows\system32\drivers\atapi.sys
12:08:33.0484 3608 atapi - ok
12:08:35.0768 3608 athr            (782d36bad8ddbf008d02e055dbe70f82) C:\windows\system32\DRIVERS\athrx.sys
12:08:35.0889 3608 athr - ok
12:08:37.0276 3608 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\windows\System32\Audiosrv.dll
12:08:37.0368 3608 AudioEndpointBuilder - ok
12:08:37.0375 3608 AudioSrv        (f23fef6d569fce88671949894a8becf1) C:\windows\System32\Audiosrv.dll
12:08:37.0419 3608 AudioSrv - ok
12:08:37.0699 3608 AxInstSV        (a6bf31a71b409dfa8cac83159e1e2aff) C:\windows\System32\AxInstSV.dll
12:08:37.0906 3608 AxInstSV - ok
12:08:38.0466 3608 b06bdrv         (3e5b191307609f7514148c6832bb0842) C:\windows\system32\drivers\bxvbda.sys
12:08:38.0597 3608 b06bdrv - ok
12:08:39.0033 3608 b57nd60a        (b5ace6968304a3900eeb1ebfd9622df2) C:\windows\system32\DRIVERS\b57nd60a.sys
12:08:39.0143 3608 b57nd60a - ok
12:08:39.0356 3608 BDESVC          (fde360167101b4e45a96f939f388aeb0) C:\windows\System32\bdesvc.dll
12:08:39.0407 3608 BDESVC - ok
12:08:39.0453 3608 Beep            (16a47ce2decc9b099349a5f840654746) C:\windows\system32\drivers\Beep.sys
12:08:39.0518 3608 Beep - ok
12:08:40.0325 3608 BFE             (82974d6a2fd19445cc5171fc378668a4) C:\windows\System32\bfe.dll
12:08:40.0401 3608 BFE - ok
12:08:40.0786 3608 BingDesktopUpdate (1b63f2b7ca6b5290cc124cdd07520bc9) C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe
12:08:40.0837 3608 BingDesktopUpdate - ok
12:08:41.0755 3608 BITS            (1ea7969e3271cbc59e1730697dc74682) C:\windows\System32\qmgr.dll
12:08:41.0877 3608 BITS - ok
12:08:42.0139 3608 blbdrive        (61583ee3c3a17003c4acd0475646b4d3) C:\windows\system32\DRIVERS\blbdrive.sys
12:08:42.0200 3608 blbdrive - ok
12:08:42.0572 3608 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
12:08:42.0596 3608 Bonjour Service - ok
12:08:42.0785 3608 bowser          (6c02a83164f5cc0a262f4199f0871cf5) C:\windows\system32\DRIVERS\bowser.sys
12:08:42.0882 3608 bowser - ok
12:08:43.0003 3608 BPntDrv         (aaa4f992f879977a000fe8b8c730cd2c) C:\windows\system32\drivers\BPntDrv.sys
12:08:43.0011 3608 BPntDrv - ok
12:08:43.0048 3608 BrFiltLo        (f09eee9edc320b5e1501f749fde686c8) C:\windows\system32\drivers\BrFiltLo.sys
12:08:43.0091 3608 BrFiltLo - ok
12:08:43.0108 3608 BrFiltUp        (b114d3098e9bdb8bea8b053685831be6) C:\windows\system32\drivers\BrFiltUp.sys
12:08:43.0153 3608 BrFiltUp - ok
12:08:43.0526 3608 Browser         (8ef0d5c41ec907751b8429162b1239ed) C:\windows\System32\browser.dll
12:08:43.0597 3608 Browser - ok
12:08:43.0924 3608 Brserid         (43bea8d483bf1870f018e2d02e06a5bd) C:\windows\System32\Drivers\Brserid.sys
12:08:43.0998 3608 Brserid - ok
12:08:44.0128 3608 BrSerWdm        (a6eca2151b08a09caceca35c07f05b42) C:\windows\System32\Drivers\BrSerWdm.sys
12:08:44.0160 3608 BrSerWdm - ok
12:08:44.0173 3608 BrUsbMdm        (b79968002c277e869cf38bd22cd61524) C:\windows\System32\Drivers\BrUsbMdm.sys
12:08:44.0201 3608 BrUsbMdm - ok
12:08:44.0278 3608 BrUsbSer        (a87528880231c54e75ea7a44943b38bf) C:\windows\System32\Drivers\BrUsbSer.sys
12:08:44.0331 3608 BrUsbSer - ok
12:08:44.0489 3608 BthEnum         (cf98190a94f62e405c8cb255018b2315) C:\windows\system32\drivers\BthEnum.sys
12:08:44.0597 3608 BthEnum - ok
12:08:44.0724 3608 BTHMODEM        (9da669f11d1f894ab4eb69bf546a42e8) C:\windows\system32\drivers\bthmodem.sys
12:08:44.0794 3608 BTHMODEM - ok
12:08:44.0900 3608 BthPan          (02dd601b708dd0667e1331fa8518e9ff) C:\windows\system32\DRIVERS\bthpan.sys
12:08:44.0958 3608 BthPan - ok
12:08:45.0586 3608 BTHPORT         (64c198198501f7560ee41d8d1efa7952) C:\windows\System32\Drivers\BTHport.sys
12:08:45.0665 3608 BTHPORT - ok
12:08:45.0883 3608 bthserv         (95f9c2976059462cbbf227f7aab10de9) C:\windows\system32\bthserv.dll
12:08:45.0949 3608 bthserv - ok
12:08:46.0091 3608 BTHUSB          (f188b7394d81010767b6df3178519a37) C:\windows\System32\Drivers\BTHUSB.sys
12:08:46.0159 3608 BTHUSB - ok
12:08:46.0469 3608 cdfs            (b8bd2bb284668c84865658c77574381a) C:\windows\system32\DRIVERS\cdfs.sys
12:08:46.0537 3608 cdfs - ok
12:08:46.0830 3608 cdrom           (f036ce71586e93d94dab220d7bdf4416) C:\windows\system32\DRIVERS\cdrom.sys
12:08:46.0903 3608 cdrom - ok
12:08:47.0096 3608 CertPropSvc     (f17d1d393bbc69c5322fbfafaca28c7f) C:\windows\System32\certprop.dll
12:08:47.0208 3608 CertPropSvc - ok
12:08:47.0324 3608 circlass        (d7cd5c4e1b71fa62050515314cfb52cf) C:\windows\system32\drivers\circlass.sys
12:08:47.0403 3608 circlass - ok
12:08:47.0864 3608 CLFS            (fe1ec06f2253f691fe36217c592a0206) C:\windows\system32\CLFS.sys
12:08:47.0914 3608 CLFS - ok
12:08:48.0264 3608 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:08:48.0301 3608 clr_optimization_v2.0.50727_32 - ok
12:08:48.0691 3608 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
12:08:48.0810 3608 clr_optimization_v2.0.50727_64 - ok
12:08:49.0381 3608 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:08:49.0428 3608 clr_optimization_v4.0.30319_32 - ok
12:08:49.0928 3608 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
12:08:49.0963 3608 clr_optimization_v4.0.30319_64 - ok
12:08:50.0078 3608 clwvd           (50f92c943f18b070f166d019dfab3d9a) C:\windows\system32\DRIVERS\clwvd.sys
12:08:50.0101 3608 clwvd - ok
12:08:50.0201 3608 CmBatt          (0840155d0bddf1190f84a663c284bd33) C:\windows\system32\DRIVERS\CmBatt.sys
12:08:50.0234 3608 CmBatt - ok
12:08:50.0269 3608 cmdide          (e19d3f095812725d88f9001985b94edd) C:\windows\system32\drivers\cmdide.sys
12:08:50.0285 3608 cmdide - ok
12:08:50.0884 3608 CNG             (c4943b6c962e4b82197542447ad599f4) C:\windows\system32\Drivers\cng.sys
12:08:51.0001 3608 CNG - ok
12:08:53.0287 3608 CnxtHdAudService (99b1b888b793de320c5479b3c953781f) C:\windows\system32\drivers\CHDRT64.sys
12:08:53.0372 3608 CnxtHdAudService - ok
12:08:54.0571 3608 Compbatt        (102de219c3f61415f964c88e9085ad14) C:\windows\system32\drivers\compbatt.sys
12:08:54.0597 3608 Compbatt - ok
12:08:54.0675 3608 CompositeBus    (03edb043586cceba243d689bdda370a8) C:\windows\system32\DRIVERS\CompositeBus.sys
12:08:54.0761 3608 CompositeBus - ok
12:08:54.0785 3608 COMSysApp - ok
12:08:55.0942 3608 cphs            (f08c6020e57f5e5bf2fd034db10bedfb) C:\windows\SysWow64\IntelCpHeciSvc.exe
12:08:55.0987 3608 cphs - ok
12:08:56.0028 3608 crcdisk         (1c827878a998c18847245fe1f34ee597) C:\windows\system32\drivers\crcdisk.sys
12:08:56.0047 3608 crcdisk - ok
12:08:56.0343 3608 CryptSvc        (4f5414602e2544a4554d95517948b705) C:\windows\system32\cryptsvc.dll
12:08:56.0436 3608 CryptSvc - ok
12:08:57.0665 3608 cvhsvc          (72794d112cbaff3bc0c29bf7350d4741) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
12:08:57.0726 3608 cvhsvc - ok
12:08:58.0306 3608 DcomLaunch      (5c627d1b1138676c0a7ab2c2c190d123) C:\windows\system32\rpcss.dll
12:08:58.0405 3608 DcomLaunch - ok
12:08:58.0927 3608 defragsvc       (3cec7631a84943677aa8fa8ee5b6b43d) C:\windows\System32\defragsvc.dll
12:08:59.0014 3608 defragsvc - ok
12:08:59.0319 3608 DfsC            (9bb2ef44eaa163b29c4a4587887a0fe4) C:\windows\system32\Drivers\dfsc.sys
12:08:59.0421 3608 DfsC - ok
12:08:59.0917 3608 Dhcp            (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\windows\system32\dhcpcore.dll
12:09:00.0027 3608 Dhcp - ok
12:09:00.0114 3608 discache        (13096b05847ec78f0977f2c0f79e9ab3) C:\windows\system32\drivers\discache.sys
12:09:00.0219 3608 discache - ok
12:09:00.0370 3608 Disk            (9819eee8b5ea3784ec4af3b137a5244c) C:\windows\system32\drivers\disk.sys
12:09:00.0383 3608 Disk - ok
12:09:00.0639 3608 Dnscache        (16835866aaa693c7d7fceba8fff706e4) C:\windows\System32\dnsrslvr.dll
12:09:00.0710 3608 Dnscache - ok
12:09:01.0021 3608 dot3svc         (b1fb3ddca0fdf408750d5843591afbc6) C:\windows\System32\dot3svc.dll
12:09:01.0120 3608 dot3svc - ok
12:09:01.0385 3608 DPS             (b26f4f737e8f9df4f31af6cf31d05820) C:\windows\system32\dps.dll
12:09:01.0450 3608 DPS - ok
12:09:01.0534 3608 drmkaud         (9b19f34400d24df84c858a421c205754) C:\windows\system32\drivers\drmkaud.sys
12:09:01.0571 3608 drmkaud - ok
12:09:02.0659 3608 DXGKrnl         (f5bee30450e18e6b83a5012c100616fd) C:\windows\System32\drivers\dxgkrnl.sys
12:09:02.0736 3608 DXGKrnl - ok
12:09:02.0865 3608 EapHost         (e2dda8726da9cb5b2c4000c9018a9633) C:\windows\System32\eapsvc.dll
12:09:02.0923 3608 EapHost - ok
12:09:07.0372 3608 ebdrv           (dc5d737f51be844d8c82c695eb17372f) C:\windows\system32\drivers\evbda.sys
12:09:07.0527 3608 ebdrv - ok
12:09:08.0566 3608 EFS             (c118a82cd78818c29ab228366ebf81c3) C:\windows\System32\lsass.exe
12:09:08.0642 3608 EFS - ok
12:09:09.0456 3608 ehRecvr         (c4002b6b41975f057d98c439030cea07) C:\windows\ehome\ehRecvr.exe
12:09:09.0646 3608 ehRecvr - ok
12:09:09.0794 3608 ehSched         (4705e8ef9934482c5bb488ce28afc681) C:\windows\ehome\ehsched.exe
12:09:09.0837 3608 ehSched - ok
12:09:10.0753 3608 elxstor         (0e5da5369a0fcaea12456dd852545184) C:\windows\system32\drivers\elxstor.sys
12:09:10.0830 3608 elxstor - ok
12:09:10.0899 3608 ErrDev          (34a3c54752046e79a126e15c51db409b) C:\windows\system32\drivers\errdev.sys
12:09:10.0930 3608 ErrDev - ok
12:09:11.0430 3608 EventSystem     (4166f82be4d24938977dd1746be9b8a0) C:\windows\system32\es.dll
12:09:11.0512 3608 EventSystem - ok
12:09:11.0771 3608 exfat           (a510c654ec00c1e9bdd91eeb3a59823b) C:\windows\system32\drivers\exfat.sys
12:09:11.0831 3608 exfat - ok
12:09:12.0086 3608 fastfat         (0adc83218b66a6db380c330836f3e36d) C:\windows\system32\drivers\fastfat.sys
12:09:12.0177 3608 fastfat - ok
12:09:12.0882 3608 Fax             (dbefd454f8318a0ef691fdd2eaab44eb) C:\windows\system32\fxssvc.exe
12:09:12.0970 3608 Fax - ok
12:09:13.0183 3608 fbfmon          (3191aca33088ee2481044fc0db736442) C:\windows\system32\drivers\fbfmon.sys
12:09:13.0213 3608 fbfmon - ok
12:09:13.0289 3608 fdc             (d765d19cd8ef61f650c384f62fac00ab) C:\windows\system32\drivers\fdc.sys
12:09:13.0339 3608 fdc - ok
12:09:13.0373 3608 fdPHost         (0438cab2e03f4fb61455a7956026fe86) C:\windows\system32\fdPHost.dll
12:09:13.0448 3608 fdPHost - ok
12:09:13.0536 3608 FDResPub        (802496cb59a30349f9a6dd22d6947644) C:\windows\system32\fdrespub.dll
12:09:13.0573 3608 FDResPub - ok
12:09:13.0705 3608 FileInfo        (655661be46b5f5f3fd454e2c3095b930) C:\windows\system32\drivers\fileinfo.sys
12:09:13.0720 3608 FileInfo - ok
12:09:13.0806 3608 Filetrace       (5f671ab5bc87eea04ec38a6cd5962a47) C:\windows\system32\drivers\filetrace.sys
12:09:13.0902 3608 Filetrace - ok
12:09:13.0955 3608 flpydisk        (c172a0f53008eaeb8ea33fe10e177af5) C:\windows\system32\drivers\flpydisk.sys
12:09:13.0988 3608 flpydisk - ok
12:09:14.0460 3608 FltMgr          (da6b67270fd9db3697b20fce94950741) C:\windows\system32\drivers\fltmgr.sys
12:09:14.0513 3608 FltMgr - ok
12:09:16.0108 3608 FontCache       (5c4cb4086fb83115b153e47add961a0c) C:\windows\system32\FntCache.dll
12:09:16.0300 3608 FontCache - ok
12:09:16.0565 3608 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
12:09:16.0588 3608 FontCache3.0.0.0 - ok
12:09:16.0736 3608 FsDepends       (d43703496149971890703b4b1b723eac) C:\windows\system32\drivers\FsDepends.sys
12:09:16.0752 3608 FsDepends - ok
12:09:16.0813 3608 Fs_Rec          (6bd9295cc032dd3077c671fccf579a7b) C:\windows\system32\drivers\Fs_Rec.sys
12:09:16.0823 3608 Fs_Rec - ok
12:09:17.0107 3608 fvevol          (1f7b25b858fa27015169fe95e54108ed) C:\windows\system32\DRIVERS\fvevol.sys
12:09:17.0169 3608 fvevol - ok
12:09:17.0279 3608 gagp30kx        (8c778d335c9d272cfd3298ab02abe3b6) C:\windows\system32\drivers\gagp30kx.sys
12:09:17.0313 3608 gagp30kx - ok
12:09:17.0546 3608 GEARAspiWDM     (e403aacf8c7bb11375122d2464560311) C:\windows\system32\DRIVERS\GEARAspiWDM.sys
12:09:17.0577 3608 GEARAspiWDM - ok
12:09:18.0599 3608 gpsvc           (277bbc7e1aa1ee957f573a10eca7ef3a) C:\windows\System32\gpsvc.dll
12:09:18.0671 3608 gpsvc - ok
12:09:19.0098 3608 gupdate         (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:09:19.0140 3608 gupdate - ok
12:09:19.0168 3608 gupdatem        (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:09:19.0178 3608 gupdatem - ok
12:09:19.0524 3608 gusvc           (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
12:09:19.0548 3608 gusvc - ok
12:09:19.0591 3608 hcw85cir        (f2523ef6460fc42405b12248338ab2f0) C:\windows\system32\drivers\hcw85cir.sys
12:09:19.0684 3608 hcw85cir - ok
12:09:20.0105 3608 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\windows\system32\drivers\HdAudio.sys
12:09:20.0149 3608 HdAudAddService - ok
12:09:20.0346 3608 HDAudBus        (97bfed39b6b79eb12cddbfeed51f56bb) C:\windows\system32\DRIVERS\HDAudBus.sys
12:09:20.0411 3608 HDAudBus - ok
12:09:20.0440 3608 HidBatt         (78e86380454a7b10a5eb255dc44a355f) C:\windows\system32\drivers\HidBatt.sys
12:09:20.0459 3608 HidBatt - ok
12:09:20.0596 3608 HidBth          (7fd2a313f7afe5c4dab14798c48dd104) C:\windows\system32\drivers\hidbth.sys
12:09:20.0666 3608 HidBth - ok
12:09:20.0819 3608 HidIr           (0a77d29f311b88cfae3b13f9c1a73825) C:\windows\system32\drivers\hidir.sys
12:09:20.0853 3608 HidIr - ok
12:09:20.0960 3608 hidserv         (bd9eb3958f213f96b97b1d897dee006d) C:\windows\system32\hidserv.dll
12:09:21.0019 3608 hidserv - ok
12:09:21.0080 3608 HidUsb          (9592090a7e2b61cd582b612b6df70536) C:\windows\system32\drivers\hidusb.sys
12:09:21.0110 3608 HidUsb - ok
12:09:21.0290 3608 hkmsvc          (387e72e739e15e3d37907a86d9ff98e2) C:\windows\system32\kmsvc.dll
12:09:21.0387 3608 hkmsvc - ok
12:09:21.0814 3608 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\windows\system32\ListSvc.dll
12:09:21.0889 3608 HomeGroupListener - ok
12:09:22.0212 3608 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\windows\system32\provsvc.dll
12:09:22.0269 3608 HomeGroupProvider - ok
12:09:22.0364 3608 HpSAMD          (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\windows\system32\drivers\HpSAMD.sys
12:09:22.0391 3608 HpSAMD - ok
12:09:22.0668 3608 HTTP            (0ea7de1acb728dd5a369fd742d6eee28) C:\windows\system32\drivers\HTTP.sys
12:09:22.0758 3608 HTTP - ok
12:09:22.0780 3608 hwpolicy        (a5462bd6884960c9dc85ed49d34ff392) C:\windows\system32\drivers\hwpolicy.sys
12:09:22.0791 3608 hwpolicy - ok
12:09:22.0974 3608 i8042prt        (fa55c73d4affa7ee23ac4be53b4592d3) C:\windows\system32\DRIVERS\i8042prt.sys
12:09:22.0990 3608 i8042prt - ok
12:09:23.0492 3608 iaStor          (53cc5bf8b5a219119953c7abb19a7705) C:\windows\system32\DRIVERS\iaStor.sys
12:09:23.0512 3608 iaStor - ok
12:09:23.0683 3608 IAStorDataMgrSvc (f5c0317af600f8c0d7e4202eb04232b1) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
12:09:23.0692 3608 IAStorDataMgrSvc - ok
12:09:24.0132 3608 iaStorV         (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\windows\system32\drivers\iaStorV.sys
12:09:24.0157 3608 iaStorV - ok
12:09:24.0900 3608 idsvc           (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
12:09:24.0995 3608 idsvc - ok
12:09:36.0204 3608 igfx            (371d7f91c0d2314eb984a4a6cbeabc92) C:\windows\system32\DRIVERS\igdkmd64.sys
12:09:37.0038 3608 igfx - ok
12:09:38.0493 3608 iirsp           (5c18831c61933628f5bb0ea2675b9d21) C:\windows\system32\drivers\iirsp.sys
12:09:38.0509 3608 iirsp - ok
12:09:39.0779 3608 IKEEXT          (fcd84c381e0140af901e58d48882d26b) C:\windows\System32\ikeext.dll
12:09:39.0858 3608 IKEEXT - ok
12:09:40.0341 3608 IntcDAud        (fc727061c0f47c8059e88e05d5c8e381) C:\windows\system32\DRIVERS\IntcDAud.sys
12:09:40.0431 3608 IntcDAud - ok
12:09:40.0467 3608 intelide        (f00f20e70c6ec3aa366910083a0518aa) C:\windows\system32\drivers\intelide.sys
12:09:40.0483 3608 intelide - ok
12:09:40.0595 3608 intelppm        (ada036632c664caa754079041cf1f8c1) C:\windows\system32\DRIVERS\intelppm.sys
12:09:40.0642 3608 intelppm - ok
12:09:40.0778 3608 IPBusEnum       (098a91c54546a3b878dad6a7e90a455b) C:\windows\system32\ipbusenum.dll
12:09:40.0863 3608 IPBusEnum - ok
12:09:41.0017 3608 IpFilterDriver  (c9f0e1bd74365a8771590e9008d22ab6) C:\windows\system32\DRIVERS\ipfltdrv.sys
12:09:41.0066 3608 IpFilterDriver - ok
12:09:41.0726 3608 iphlpsvc        (a34a587fffd45fa649fba6d03784d257) C:\windows\System32\iphlpsvc.dll
12:09:41.0814 3608 iphlpsvc - ok
12:09:41.0829 3608 IPMIDRV         (0fc1aea580957aa8817b8f305d18ca3a) C:\windows\system32\drivers\IPMIDrv.sys
12:09:41.0876 3608 IPMIDRV - ok
12:09:42.0018 3608 IPNAT           (af9b39a7e7b6caa203b3862582e9f2d0) C:\windows\system32\drivers\ipnat.sys
12:09:42.0077 3608 IPNAT - ok
12:09:42.0453 3608 iPod Service    (a9ab99ee7d39725eafec82732d2b3271) C:\Program Files\iPod\bin\iPodService.exe
12:09:42.0503 3608 iPod Service - ok
12:09:42.0546 3608 IRENUM          (3abf5e7213eb28966d55d58b515d5ce9) C:\windows\system32\drivers\irenum.sys
12:09:42.0574 3608 IRENUM - ok
12:09:42.0600 3608 isapnp          (2f7b28dc3e1183e5eb418df55c204f38) C:\windows\system32\drivers\isapnp.sys
12:09:42.0613 3608 isapnp - ok
12:09:42.0888 3608 iScsiPrt        (d931d7309deb2317035b07c9f9e6b0bd) C:\windows\system32\drivers\msiscsi.sys
12:09:42.0930 3608 iScsiPrt - ok
12:09:42.0970 3608 kbdclass        (bc02336f1cba7dcc7d1213bb588a68a5) C:\windows\system32\DRIVERS\kbdclass.sys
12:09:42.0988 3608 kbdclass - ok
12:09:43.0045 3608 kbdhid          (0705eff5b42a9db58548eec3b26bb484) C:\windows\system32\drivers\kbdhid.sys
12:09:43.0069 3608 kbdhid - ok
12:09:43.0136 3608 KeyIso          (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
12:09:43.0147 3608 KeyIso - ok
12:09:43.0343 3608 KSecDD          (da1e991a61cfdd755a589e206b97644b) C:\windows\system32\Drivers\ksecdd.sys
12:09:43.0370 3608 KSecDD - ok
12:09:43.0397 3608 KSecPkg         (7e33198d956943a4f11a5474c1e9106f) C:\windows\system32\Drivers\ksecpkg.sys
12:09:43.0411 3608 KSecPkg - ok
12:09:43.0437 3608 ksthunk         (6869281e78cb31a43e969f06b57347c4) C:\windows\system32\drivers\ksthunk.sys
12:09:43.0547 3608 ksthunk - ok
12:09:43.0586 3608 KtmRm           (6ab66e16aa859232f64deb66887a8c9c) C:\windows\system32\msdtckrm.dll
12:09:43.0713 3608 KtmRm - ok
12:09:43.0753 3608 L1C             (95ca93fc12be372bb952669f37fff9c5) C:\windows\system32\DRIVERS\L1C62x64.sys
12:09:43.0772 3608 L1C - ok
12:09:43.0879 3608 LanmanServer    (d9f42719019740baa6d1c6d536cbdaa6) C:\windows\system32\srvsvc.dll
12:09:43.0934 3608 LanmanServer - ok
12:09:44.0007 3608 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\windows\System32\wkssvc.dll
12:09:44.0072 3608 LanmanWorkstation - ok
12:09:44.0135 3608 LHDmgr          (be166935083f9c38edfdc21b9a7a679b) C:\windows\system32\DRIVERS\LhdX64.sys
12:09:44.0149 3608 LHDmgr - ok
12:09:44.0211 3608 lltdio          (1538831cf8ad2979a04c423779465827) C:\windows\system32\DRIVERS\lltdio.sys
12:09:44.0327 3608 lltdio - ok
12:09:44.0593 3608 lltdsvc         (c1185803384ab3feed115f79f109427f) C:\windows\System32\lltdsvc.dll
12:09:44.0701 3608 lltdsvc - ok
12:09:44.0735 3608 lmhosts         (f993a32249b66c9d622ea5592a8b76b8) C:\windows\System32\lmhsvc.dll
12:09:44.0774 3608 lmhosts - ok
12:09:45.0111 3608 LMS             (2ed1786b7542cda261029f6b526edf44) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
12:09:45.0135 3608 LMS - ok
12:09:45.0289 3608 LSI_FC          (1a93e54eb0ece102495a51266dcdb6a6) C:\windows\system32\drivers\lsi_fc.sys
12:09:45.0343 3608 LSI_FC - ok
12:09:45.0420 3608 LSI_SAS         (1047184a9fdc8bdbff857175875ee810) C:\windows\system32\drivers\lsi_sas.sys
12:09:45.0433 3608 LSI_SAS - ok
12:09:45.0520 3608 LSI_SAS2        (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\windows\system32\drivers\lsi_sas2.sys
12:09:45.0555 3608 LSI_SAS2 - ok
12:09:45.0611 3608 LSI_SCSI        (0504eacaff0d3c8aed161c4b0d369d4a) C:\windows\system32\drivers\lsi_scsi.sys
12:09:45.0635 3608 LSI_SCSI - ok
12:09:45.0817 3608 luafv           (43d0f98e1d56ccddb0d5254cff7b356e) C:\windows\system32\drivers\luafv.sys
12:09:45.0869 3608 luafv - ok
12:09:45.0880 3608 massfilter - ok
12:09:46.0019 3608 McAfee SiteAdvisor Service (be8c524313db75fa26fb2b0c0aaff88e) c:\PROGRA~2\mcafee\SITEAD~1\McSACore.exe
12:09:46.0038 3608 McAfee SiteAdvisor Service - ok
12:09:46.0083 3608 Mcx2Svc         (0be09cd858abf9df6ed259d57a1a1663) C:\windows\system32\Mcx2Svc.dll
12:09:46.0123 3608 Mcx2Svc - ok
12:09:46.0192 3608 megasas         (a55805f747c6edb6a9080d7c633bd0f4) C:\windows\system32\drivers\megasas.sys
12:09:46.0213 3608 megasas - ok
12:09:46.0278 3608 MegaSR          (baf74ce0072480c3b6b7c13b2a94d6b3) C:\windows\system32\drivers\MegaSR.sys
12:09:46.0320 3608 MegaSR - ok
12:09:46.0483 3608 MEIx64          (a6518dcc42f7a6e999bb3bea8fd87567) C:\windows\system32\DRIVERS\HECIx64.sys
12:09:46.0506 3608 MEIx64 - ok
12:09:46.0584 3608 MMCSS           (e40e80d0304a73e8d269f7141d77250b) C:\windows\system32\mmcss.dll
12:09:46.0652 3608 MMCSS - ok
12:09:46.0667 3608 Modem           (800ba92f7010378b09f9ed9270f07137) C:\windows\system32\drivers\modem.sys
12:09:46.0723 3608 Modem - ok
12:09:46.0786 3608 monitor         (b03d591dc7da45ece20b3b467e6aadaa) C:\windows\system32\DRIVERS\monitor.sys
12:09:46.0828 3608 monitor - ok
12:09:46.0884 3608 mouclass        (7d27ea49f3c1f687d357e77a470aea99) C:\windows\system32\DRIVERS\mouclass.sys
12:09:46.0895 3608 mouclass - ok
12:09:46.0967 3608 mouhid          (d3bf052c40b0c4166d9fd86a4288c1e6) C:\windows\system32\drivers\mouhid.sys
12:09:47.0005 3608 mouhid - ok
12:09:47.0077 3608 mountmgr        (32e7a3d591d671a6df2db515a5cbe0fa) C:\windows\system32\drivers\mountmgr.sys
12:09:47.0089 3608 mountmgr - ok
12:09:47.0269 3608 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
12:09:47.0330 3608 MozillaMaintenance - ok
12:09:48.0016 3608 MpFilter        (94c66ededcdb6a126880472f9a704d8e) C:\windows\system32\DRIVERS\MpFilter.sys
12:09:48.0069 3608 MpFilter - ok
12:09:48.0141 3608 mpio            (a44b420d30bd56e145d6a2bc8768ec58) C:\windows\system32\drivers\mpio.sys
12:09:48.0156 3608 mpio - ok
12:09:48.0207 3608 mpsdrv          (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\windows\system32\drivers\mpsdrv.sys
12:09:48.0246 3608 mpsdrv - ok
12:09:48.0391 3608 MpsSvc          (54ffc9c8898113ace189d4aa7199d2c1) C:\windows\system32\mpssvc.dll
12:09:48.0478 3608 MpsSvc - ok
12:09:48.0537 3608 MRxDAV          (dc722758b8261e1abafd31a3c0a66380) C:\windows\system32\drivers\mrxdav.sys
12:09:48.0586 3608 MRxDAV - ok
12:09:48.0632 3608 mrxsmb          (a5d9106a73dc88564c825d317cac68ac) C:\windows\system32\DRIVERS\mrxsmb.sys
12:09:48.0683 3608 mrxsmb - ok
12:09:48.0756 3608 mrxsmb10        (d711b3c1d5f42c0c2415687be09fc163) C:\windows\system32\DRIVERS\mrxsmb10.sys
12:09:48.0774 3608 mrxsmb10 - ok
12:09:48.0797 3608 mrxsmb20        (9423e9d355c8d303e76b8cfbd8a5c30c) C:\windows\system32\DRIVERS\mrxsmb20.sys
12:09:48.0811 3608 mrxsmb20 - ok
12:09:48.0880 3608 msahci          (c25f0bafa182cbca2dd3c851c2e75796) C:\windows\system32\drivers\msahci.sys
12:09:48.0890 3608 msahci - ok
12:09:48.0926 3608 msdsm           (db801a638d011b9633829eb6f663c900) C:\windows\system32\drivers\msdsm.sys
12:09:48.0946 3608 msdsm - ok
12:09:49.0170 3608 MSDTC           (de0ece52236cfa3ed2dbfc03f28253a8) C:\windows\System32\msdtc.exe
12:09:49.0202 3608 MSDTC - ok
12:09:49.0314 3608 Msfs            (aa3fb40e17ce1388fa1bedab50ea8f96) C:\windows\system32\drivers\Msfs.sys
12:09:49.0350 3608 Msfs - ok
12:09:49.0390 3608 mshidkmdf       (f9d215a46a8b9753f61767fa72a20326) C:\windows\System32\drivers\mshidkmdf.sys
12:09:49.0455 3608 mshidkmdf - ok
12:09:49.0495 3608 msisadrv        (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\windows\system32\drivers\msisadrv.sys
12:09:49.0505 3608 msisadrv - ok
12:09:49.0610 3608 MSiSCSI         (808e98ff49b155c522e6400953177b08) C:\windows\system32\iscsiexe.dll
12:09:49.0681 3608 MSiSCSI - ok
12:09:49.0684 3608 msiserver - ok
12:09:49.0737 3608 MSKSSRV         (49ccf2c4fea34ffad8b1b59d49439366) C:\windows\system32\drivers\MSKSSRV.sys
12:09:49.0784 3608 MSKSSRV - ok
12:09:49.0908 3608 MsMpSvc         (59faaf2c83c8169ea20f9e335e418907) c:\Program Files\Microsoft Security Client\MsMpEng.exe
12:09:49.0917 3608 MsMpSvc - ok
12:09:49.0935 3608 MSPCLOCK        (bdd71ace35a232104ddd349ee70e1ab3) C:\windows\system32\drivers\MSPCLOCK.sys
12:09:50.0007 3608 MSPCLOCK - ok
12:09:50.0035 3608 MSPQM           (4ed981241db27c3383d72092b618a1d0) C:\windows\system32\drivers\MSPQM.sys
12:09:50.0076 3608 MSPQM - ok
12:09:50.0373 3608 MsRPC           (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\windows\system32\drivers\MsRPC.sys
12:09:50.0397 3608 MsRPC - ok
12:09:50.0423 3608 mssmbios        (0eed230e37515a0eaee3c2e1bc97b288) C:\windows\system32\DRIVERS\mssmbios.sys
12:09:50.0435 3608 mssmbios - ok
12:09:50.0460 3608 MSTEE           (2e66f9ecb30b4221a318c92ac2250779) C:\windows\system32\drivers\MSTEE.sys
12:09:50.0538 3608 MSTEE - ok
12:09:50.0557 3608 MTConfig        (7ea404308934e675bffde8edf0757bcd) C:\windows\system32\drivers\MTConfig.sys
12:09:50.0591 3608 MTConfig - ok
12:09:50.0633 3608 Mup             (f9a18612fd3526fe473c1bda678d61c8) C:\windows\system32\Drivers\mup.sys
12:09:50.0644 3608 Mup - ok
12:09:50.0791 3608 napagent        (582ac6d9873e31dfa28a4547270862dd) C:\windows\system32\qagentRT.dll
12:09:50.0884 3608 napagent - ok
12:09:50.0968 3608 NativeWifiP     (1ea3749c4114db3e3161156ffffa6b33) C:\windows\system32\DRIVERS\nwifi.sys
12:09:51.0020 3608 NativeWifiP - ok
12:09:51.0143 3608 NDIS            (79b47fd40d9a817e932f9d26fac0a81c) C:\windows\system32\drivers\ndis.sys
12:09:51.0178 3608 NDIS - ok
12:09:51.0230 3608 NdisCap         (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\windows\system32\DRIVERS\ndiscap.sys
12:09:51.0275 3608 NdisCap - ok
12:09:51.0375 3608 NdisTapi        (30639c932d9fef22b31268fe25a1b6e5) C:\windows\system32\DRIVERS\ndistapi.sys
12:09:51.0413 3608 NdisTapi - ok
12:09:51.0557 3608 Ndisuio         (136185f9fb2cc61e573e676aa5402356) C:\windows\system32\DRIVERS\ndisuio.sys
12:09:51.0615 3608 Ndisuio - ok
12:09:51.0655 3608 NdisWan         (53f7305169863f0a2bddc49e116c2e11) C:\windows\system32\DRIVERS\ndiswan.sys
12:09:51.0743 3608 NdisWan - ok
12:09:51.0802 3608 NDProxy         (015c0d8e0e0421b4cfd48cffe2825879) C:\windows\system32\drivers\NDProxy.sys
12:09:51.0844 3608 NDProxy - ok
12:09:51.0875 3608 NetBIOS         (86743d9f5d2b1048062b14b1d84501c4) C:\windows\system32\DRIVERS\netbios.sys
12:09:51.0926 3608 NetBIOS - ok
12:09:51.0979 3608 NetBT           (09594d1089c523423b32a4229263f068) C:\windows\system32\DRIVERS\netbt.sys
12:09:52.0033 3608 NetBT - ok
12:09:52.0112 3608 Netlogon        (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
12:09:52.0165 3608 Netlogon - ok
12:09:52.0283 3608 Netman          (847d3ae376c0817161a14a82c8922a9e) C:\windows\System32\netman.dll
12:09:52.0351 3608 Netman - ok
12:09:52.0683 3608 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:09:52.0716 3608 NetMsmqActivator - ok
12:09:52.0735 3608 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:09:52.0747 3608 NetPipeActivator - ok
12:09:52.0876 3608 netprofm        (5f28111c648f1e24f7dbc87cdeb091b8) C:\windows\System32\netprofm.dll
12:09:52.0954 3608 netprofm - ok
12:09:52.0973 3608 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:09:52.0998 3608 NetTcpActivator - ok
12:09:53.0001 3608 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:09:53.0012 3608 NetTcpPortSharing - ok
12:09:53.0134 3608 nfrd960         (77889813be4d166cdab78ddba990da92) C:\windows\system32\drivers\nfrd960.sys
12:09:53.0152 3608 nfrd960 - ok
12:09:53.0441 3608 NisDrv          (91b4e0273d2f6c24ef845f2b41311289) C:\windows\system32\DRIVERS\NisDrvWFP.sys
12:09:53.0453 3608 NisDrv - ok
12:09:53.0597 3608 NisSrv          (10a43829a9e606af3eef25a1c1665923) c:\Program Files\Microsoft Security Client\NisSrv.exe
12:09:53.0615 3608 NisSrv - ok
12:09:53.0772 3608 NlaSvc          (1ee99a89cc788ada662441d1e9830529) C:\windows\System32\nlasvc.dll
12:09:53.0841 3608 NlaSvc - ok
12:09:53.0870 3608 Npfs            (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\windows\system32\drivers\Npfs.sys
12:09:53.0916 3608 Npfs - ok
12:09:53.0990 3608 nsi             (d54bfdf3e0c953f823b3d0bfe4732528) C:\windows\system32\nsisvc.dll
12:09:54.0047 3608 nsi - ok
12:09:54.0112 3608 nsiproxy        (e7f5ae18af4168178a642a9247c63001) C:\windows\system32\drivers\nsiproxy.sys
12:09:54.0174 3608 nsiproxy - ok
12:09:54.0618 3608 Ntfs            (a2f74975097f52a00745f9637451fdd8) C:\windows\system32\drivers\Ntfs.sys
12:09:54.0678 3608 Ntfs - ok
12:09:55.0253 3608 Null            (9899284589f75fa8724ff3d16aed75c1) C:\windows\system32\drivers\Null.sys
12:09:55.0290 3608 Null - ok
12:09:55.0365 3608 nvraid          (0a92cb65770442ed0dc44834632f66ad) C:\windows\system32\drivers\nvraid.sys
12:09:55.0421 3608 nvraid - ok
12:09:55.0439 3608 nvstor          (dab0e87525c10052bf65f06152f37e4a) C:\windows\system32\drivers\nvstor.sys
12:09:55.0457 3608 nvstor - ok
12:09:55.0513 3608 nv_agp          (270d7cd42d6e3979f6dd0146650f0e05) C:\windows\system32\drivers\nv_agp.sys
12:09:55.0540 3608 nv_agp - ok
12:09:55.0578 3608 ohci1394        (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\windows\system32\drivers\ohci1394.sys
12:09:55.0603 3608 ohci1394 - ok
12:09:55.0865 3608 ose             (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:09:55.0914 3608 ose - ok
12:09:58.0488 3608 osppsvc         (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
12:09:58.0717 3608 osppsvc - ok
12:09:59.0036 3608 p2pimsvc        (3eac4455472cc2c97107b5291e0dcafe) C:\windows\system32\pnrpsvc.dll
12:09:59.0117 3608 p2pimsvc - ok
12:09:59.0392 3608 p2psvc          (927463ecb02179f88e4b9a17568c63c3) C:\windows\system32\p2psvc.dll
12:09:59.0419 3608 p2psvc - ok
12:09:59.0541 3608 Parport         (0086431c29c35be1dbc43f52cc273887) C:\windows\system32\drivers\parport.sys
12:09:59.0554 3608 Parport - ok
12:09:59.0642 3608 partmgr         (e9766131eeade40a27dc27d2d68fba9c) C:\windows\system32\drivers\partmgr.sys
12:09:59.0653 3608 partmgr - ok
12:09:59.0976 3608 PcaSvc          (3aeaa8b561e63452c655dc0584922257) C:\windows\System32\pcasvc.dll
12:10:00.0040 3608 PcaSvc - ok
12:10:00.0103 3608 pci             (94575c0571d1462a0f70bde6bd6ee6b3) C:\windows\system32\drivers\pci.sys
12:10:00.0119 3608 pci - ok
12:10:00.0128 3608 pciide          (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\windows\system32\drivers\pciide.sys
12:10:00.0145 3608 pciide - ok
12:10:00.0165 3608 pcmcia          (b2e81d4e87ce48589f98cb8c05b01f2f) C:\windows\system32\drivers\pcmcia.sys
12:10:00.0197 3608 pcmcia - ok
12:10:00.0268 3608 pcw             (d6b9c2e1a11a3a4b26a182ffef18f603) C:\windows\system32\drivers\pcw.sys
12:10:00.0278 3608 pcw - ok
12:10:00.0941 3608 PEAUTH          (68769c3356b3be5d1c732c97b9a80d6e) C:\windows\system32\drivers\peauth.sys
12:10:01.0028 3608 PEAUTH - ok
12:10:01.0738 3608 PerfHost        (e495e408c93141e8fc72dc0c6046ddfa) C:\windows\SysWow64\perfhost.exe
12:10:01.0775 3608 PerfHost - ok
12:10:03.0304 3608 pla             (c7cf6a6e137463219e1259e3f0f0dd6c) C:\windows\system32\pla.dll
12:10:03.0424 3608 pla - ok
12:10:03.0846 3608 PlugPlay        (25fbdef06c4d92815b353f6e792c8129) C:\windows\system32\umpnpmgr.dll
12:10:03.0976 3608 PlugPlay - ok
12:10:04.0025 3608 PNRPAutoReg     (7195581cec9bb7d12abe54036acc2e38) C:\windows\system32\pnrpauto.dll
12:10:04.0069 3608 PNRPAutoReg - ok
12:10:04.0217 3608 PNRPsvc         (3eac4455472cc2c97107b5291e0dcafe) C:\windows\system32\pnrpsvc.dll
12:10:04.0248 3608 PNRPsvc - ok
12:10:04.0447 3608 PolicyAgent     (4f15d75adf6156bf56eced6d4a55c389) C:\windows\System32\ipsecsvc.dll
12:10:04.0535 3608 PolicyAgent - ok
12:10:04.0633 3608 Power           (6ba9d927dded70bd1a9caded45f8b184) C:\windows\system32\umpo.dll
12:10:04.0700 3608 Power - ok
12:10:04.0765 3608 PptpMiniport    (f92a2c41117a11a00be01ca01a7fcde9) C:\windows\system32\DRIVERS\raspptp.sys
12:10:04.0826 3608 PptpMiniport - ok
12:10:04.0838 3608 Processor       (0d922e23c041efb1c3fac2a6f943c9bf) C:\windows\system32\drivers\processr.sys
12:10:04.0874 3608 Processor - ok
12:10:04.0950 3608 ProfSvc         (53e83f1f6cf9d62f32801cf66d8352a8) C:\windows\system32\profsvc.dll
12:10:05.0025 3608 ProfSvc - ok
12:10:05.0067 3608 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
12:10:05.0078 3608 ProtectedStorage - ok
12:10:05.0219 3608 Psched          (0557cf5a2556bd58e26384169d72438d) C:\windows\system32\DRIVERS\pacer.sys
12:10:05.0276 3608 Psched - ok
12:10:05.0557 3608 ql2300          (a53a15a11ebfd21077463ee2c7afeef0) C:\windows\system32\drivers\ql2300.sys
12:10:05.0623 3608 ql2300 - ok
12:10:06.0148 3608 ql40xx          (4f6d12b51de1aaeff7dc58c4d75423c8) C:\windows\system32\drivers\ql40xx.sys
12:10:06.0188 3608 ql40xx - ok
12:10:06.0313 3608 QWAVE           (906191634e99aea92c4816150bda3732) C:\windows\system32\qwave.dll
12:10:06.0350 3608 QWAVE - ok
12:10:06.0515 3608 QWAVEdrv        (76707bb36430888d9ce9d705398adb6c) C:\windows\system32\drivers\qwavedrv.sys
12:10:06.0552 3608 QWAVEdrv - ok
12:10:06.0562 3608 RasAcd          (5a0da8ad5762fa2d91678a8a01311704) C:\windows\system32\DRIVERS\rasacd.sys
12:10:06.0631 3608 RasAcd - ok
12:10:06.0727 3608 RasAgileVpn     (7ecff9b22276b73f43a99a15a6094e90) C:\windows\system32\DRIVERS\AgileVpn.sys
12:10:06.0764 3608 RasAgileVpn - ok
12:10:06.0802 3608 RasAuto         (8f26510c5383b8dbe976de1cd00fc8c7) C:\windows\System32\rasauto.dll
12:10:06.0875 3608 RasAuto - ok
12:10:06.0958 3608 Rasl2tp         (471815800ae33e6f1c32fb1b97c490ca) C:\windows\system32\DRIVERS\rasl2tp.sys
12:10:07.0032 3608 Rasl2tp - ok
12:10:07.0088 3608 RasMan          (ee867a0870fc9e4972ba9eaad35651e2) C:\windows\System32\rasmans.dll
12:10:07.0178 3608 RasMan - ok
12:10:07.0296 3608 RasPppoe        (855c9b1cd4756c5e9a2aa58a15f58c25) C:\windows\system32\DRIVERS\raspppoe.sys
12:10:07.0346 3608 RasPppoe - ok
12:10:07.0453 3608 RasSstp         (e8b1e447b008d07ff47d016c2b0eeecb) C:\windows\system32\DRIVERS\rassstp.sys
12:10:07.0516 3608 RasSstp - ok
12:10:07.0840 3608 rdbss           (77f665941019a1594d887a74f301fa2f) C:\windows\system32\DRIVERS\rdbss.sys
12:10:07.0956 3608 rdbss - ok
12:10:08.0010 3608 rdpbus          (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\windows\system32\drivers\rdpbus.sys
12:10:08.0039 3608 rdpbus - ok
12:10:08.0076 3608 RDPCDD          (cea6cc257fc9b7715f1c2b4849286d24) C:\windows\system32\DRIVERS\RDPCDD.sys
12:10:08.0129 3608 RDPCDD - ok
12:10:08.0214 3608 RDPENCDD        (bb5971a4f00659529a5c44831af22365) C:\windows\system32\drivers\rdpencdd.sys
12:10:08.0266 3608 RDPENCDD - ok
12:10:08.0344 3608 RDPREFMP        (216f3fa57533d98e1f74ded70113177a) C:\windows\system32\drivers\rdprefmp.sys
12:10:08.0380 3608 RDPREFMP - ok
12:10:08.0669 3608 RDPWD           (e61608aa35e98999af9aaeeea6114b0a) C:\windows\system32\drivers\RDPWD.sys
12:10:08.0718 3608 RDPWD - ok
12:10:09.0068 3608 rdyboost        (34ed295fa0121c241bfef24764fc4520) C:\windows\system32\drivers\rdyboost.sys
12:10:09.0154 3608 rdyboost - ok
12:10:09.0316 3608 RemoteAccess    (254fb7a22d74e5511c73a3f6d802f192) C:\windows\System32\mprdim.dll
12:10:09.0364 3608 RemoteAccess - ok
12:10:09.0661 3608 RemoteRegistry  (e4d94f24081440b5fc5aa556c7c62702) C:\windows\system32\regsvc.dll
12:10:09.0703 3608 RemoteRegistry - ok
12:10:09.0817 3608 RFCOMM          (3dd798846e2c28102b922c56e71b7932) C:\windows\system32\DRIVERS\rfcomm.sys
12:10:09.0857 3608 RFCOMM - ok
12:10:09.0898 3608 RpcEptMapper    (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\windows\System32\RpcEpMap.dll
12:10:09.0956 3608 RpcEptMapper - ok
12:10:09.0992 3608 RpcLocator      (d5ba242d4cf8e384db90e6a8ed850b8c) C:\windows\system32\locator.exe
12:10:10.0005 3608 RpcLocator - ok
12:10:10.0230 3608 RpcSs           (5c627d1b1138676c0a7ab2c2c190d123) C:\windows\system32\rpcss.dll
12:10:10.0280 3608 RpcSs - ok
12:10:10.0355 3608 RRNetCap        (2abd2b3ba2ef0c3ba82284c2a5e28675) C:\windows\system32\DRIVERS\rrnetcap.sys
12:10:10.0385 3608 RRNetCap - ok
12:10:10.0390 3608 RRNetCapMP      (2abd2b3ba2ef0c3ba82284c2a5e28675) C:\windows\system32\DRIVERS\rrnetcap.sys
12:10:10.0398 3608 RRNetCapMP - ok
12:10:10.0594 3608 rspndr          (ddc86e4f8e7456261e637e3552e804ff) C:\windows\system32\DRIVERS\rspndr.sys
12:10:10.0633 3608 rspndr - ok
12:10:11.0188 3608 RSUSBVSTOR      (89dfb71b370d82dfe75183f677043cee) C:\windows\system32\Drivers\RtsUVStor.sys
12:10:11.0250 3608 RSUSBVSTOR - ok
12:10:11.0625 3608 RTL8167         (baefee35d27a5440d35092ce10267bec) C:\windows\system32\DRIVERS\Rt64win7.sys
12:10:11.0677 3608 RTL8167 - ok
12:10:11.0725 3608 SamSs           (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
12:10:11.0754 3608 SamSs - ok
12:10:11.0881 3608 sbp2port        (ac03af3329579fffb455aa2daabbe22b) C:\windows\system32\drivers\sbp2port.sys
12:10:11.0914 3608 sbp2port - ok
12:10:12.0141 3608 SCardSvr        (9b7395789e3791a3b6d000fe6f8b131e) C:\windows\System32\SCardSvr.dll
12:10:12.0200 3608 SCardSvr - ok
12:10:12.0223 3608 scfilter        (253f38d0d7074c02ff8deb9836c97d2b) C:\windows\system32\DRIVERS\scfilter.sys
12:10:12.0283 3608 scfilter - ok
12:10:12.0613 3608 Schedule        (262f6592c3299c005fd6bec90fc4463a) C:\windows\system32\schedsvc.dll
12:10:12.0708 3608 Schedule - ok
12:10:12.0841 3608 SCPolicySvc     (f17d1d393bbc69c5322fbfafaca28c7f) C:\windows\System32\certprop.dll
12:10:12.0901 3608 SCPolicySvc - ok
12:10:13.0163 3608 SDRSVC          (6ea4234dc55346e0709560fe7c2c1972) C:\windows\System32\SDRSVC.dll
12:10:13.0246 3608 SDRSVC - ok
12:10:13.0421 3608 secdrv          (3ea8a16169c26afbeb544e0e48421186) C:\windows\system32\drivers\secdrv.sys
12:10:13.0526 3608 secdrv - ok
12:10:13.0632 3608 seclogon        (bc617a4e1b4fa8df523a061739a0bd87) C:\windows\system32\seclogon.dll
12:10:13.0674 3608 seclogon - ok
12:10:13.0753 3608 SENS            (c32ab8fa018ef34c0f113bd501436d21) C:\windows\System32\sens.dll
12:10:13.0815 3608 SENS - ok
12:10:13.0858 3608 SensrSvc        (0336cffafaab87a11541f1cf1594b2b2) C:\windows\system32\sensrsvc.dll
12:10:13.0953 3608 SensrSvc - ok
12:10:14.0006 3608 Serenum         (cb624c0035412af0debec78c41f5ca1b) C:\windows\system32\drivers\serenum.sys
12:10:14.0029 3608 Serenum - ok
12:10:14.0160 3608 Serial          (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\windows\system32\drivers\serial.sys
12:10:14.0202 3608 Serial - ok
12:10:14.0278 3608 sermouse        (1c545a7d0691cc4a027396535691c3e3) C:\windows\system32\drivers\sermouse.sys
12:10:14.0300 3608 sermouse - ok
12:10:14.0479 3608 SessionEnv      (0b6231bf38174a1628c4ac812cc75804) C:\windows\system32\sessenv.dll
12:10:14.0543 3608 SessionEnv - ok
12:10:14.0581 3608 sffdisk         (a554811bcd09279536440c964ae35bbf) C:\windows\system32\drivers\sffdisk.sys
12:10:14.0609 3608 sffdisk - ok
12:10:14.0665 3608 sffp_mmc        (ff414f0baefeba59bc6c04b3db0b87bf) C:\windows\system32\drivers\sffp_mmc.sys
12:10:14.0706 3608 sffp_mmc - ok
12:10:14.0762 3608 sffp_sd         (dd85b78243a19b59f0637dcf284da63c) C:\windows\system32\drivers\sffp_sd.sys
12:10:14.0792 3608 sffp_sd - ok
12:10:14.0818 3608 sfloppy         (a9d601643a1647211a1ee2ec4e433ff4) C:\windows\system32\drivers\sfloppy.sys
12:10:14.0846 3608 sfloppy - ok
12:10:15.0755 3608 Sftfs           (c6cc9297bd53e5229653303e556aa539) C:\windows\system32\DRIVERS\Sftfslh.sys
12:10:15.0821 3608 Sftfs - ok
12:10:16.0601 3608 sftlist         (13693b6354dd6e72dc5131da7d764b90) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
12:10:16.0667 3608 sftlist - ok
12:10:16.0910 3608 Sftplay         (390aa7bc52cee43f6790cdea1e776703) C:\windows\system32\DRIVERS\Sftplaylh.sys
12:10:16.0974 3608 Sftplay - ok
12:10:17.0079 3608 Sftredir        (617e29a0b0a2807466560d4c4e338d3e) C:\windows\system32\DRIVERS\Sftredirlh.sys
12:10:17.0162 3608 Sftredir - ok
12:10:17.0220 3608 Sftvol          (8f571f016fa1976f445147e9e6c8ae9b) C:\windows\system32\DRIVERS\Sftvollh.sys
12:10:17.0314 3608 Sftvol - ok
12:10:17.0657 3608 sftvsa          (c3cddd18f43d44ab713cf8c4916f7696) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
12:10:17.0719 3608 sftvsa - ok
12:10:18.0310 3608 SharedAccess    (b95f6501a2f8b2e78c697fec401970ce) C:\windows\System32\ipnathlp.dll
12:10:18.0397 3608 SharedAccess - ok
12:10:18.0886 3608 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\windows\System32\shsvcs.dll
12:10:18.0978 3608 ShellHWDetection - ok
12:10:19.0084 3608 SiSRaid2        (843caf1e5fde1ffd5ff768f23a51e2e1) C:\windows\system32\drivers\SiSRaid2.sys
12:10:19.0139 3608 SiSRaid2 - ok
12:10:19.0230 3608 SiSRaid4        (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\windows\system32\drivers\sisraid4.sys
12:10:19.0261 3608 SiSRaid4 - ok
12:10:19.0391 3608 Smb             (548260a7b8654e024dc30bf8a7c5baa4) C:\windows\system32\DRIVERS\smb.sys
12:10:19.0514 3608 Smb - ok
12:10:19.0720 3608 SNMPTRAP        (6313f223e817cc09aa41811daa7f541d) C:\windows\System32\snmptrap.exe
12:10:19.0768 3608 SNMPTRAP - ok
12:10:19.0810 3608 spldr           (b9e31e5cacdfe584f34f730a677803f9) C:\windows\system32\drivers\spldr.sys
12:10:19.0824 3608 spldr - ok
12:10:20.0432 3608 Spooler         (b96c17b5dc1424d56eea3a99e97428cd) C:\windows\System32\spoolsv.exe
12:10:20.0555 3608 Spooler - ok
12:10:25.0022 3608 sppsvc          (e17e0188bb90fae42d83e98707efa59c) C:\windows\system32\sppsvc.exe
12:10:25.0233 3608 sppsvc - ok
12:10:26.0276 3608 sppuinotify     (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\windows\system32\sppuinotify.dll
12:10:26.0340 3608 sppuinotify - ok
12:10:27.0032 3608 srv             (441fba48bff01fdb9d5969ebc1838f0b) C:\windows\system32\DRIVERS\srv.sys
12:10:27.0208 3608 srv - ok
12:10:27.0964 3608 srv2            (b4adebbf5e3677cce9651e0f01f7cc28) C:\windows\system32\DRIVERS\srv2.sys
12:10:28.0022 3608 srv2 - ok
12:10:28.0257 3608 srvnet          (27e461f0be5bff5fc737328f749538c3) C:\windows\system32\DRIVERS\srvnet.sys
12:10:28.0310 3608 srvnet - ok
12:10:28.0527 3608 SSDPSRV         (51b52fbd583cde8aa9ba62b8b4298f33) C:\windows\System32\ssdpsrv.dll
12:10:28.0670 3608 SSDPSRV - ok
12:10:28.0765 3608 SstpSvc         (ab7aebf58dad8daab7a6c45e6a8885cb) C:\windows\system32\sstpsvc.dll
12:10:28.0810 3608 SstpSvc - ok
12:10:28.0921 3608 stexstor        (f3817967ed533d08327dc73bc4d5542a) C:\windows\system32\drivers\stexstor.sys
12:10:28.0962 3608 stexstor - ok
12:10:29.0733 3608 stisvc          (8dd52e8e6128f4b2da92ce27402871c1) C:\windows\System32\wiaservc.dll
12:10:29.0804 3608 stisvc - ok
12:10:29.0832 3608 swenum          (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\windows\system32\DRIVERS\swenum.sys
12:10:29.0845 3608 swenum - ok
12:10:30.0756 3608 swprv           (e08e46fdd841b7184194011ca1955a0b) C:\windows\System32\swprv.dll
12:10:30.0843 3608 swprv - ok
12:10:32.0401 3608 SynTP           (9643991b5cfd7a9ba68626b7a005f7e6) C:\windows\system32\DRIVERS\SynTP.sys
12:10:32.0481 3608 SynTP - ok
12:10:35.0376 3608 SysMain         (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\windows\system32\sysmain.dll
12:10:35.0561 3608 SysMain - ok
12:10:36.0574 3608 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\windows\System32\TabSvc.dll
12:10:36.0617 3608 TabletInputService - ok
12:10:36.0969 3608 TapiSrv         (40f0849f65d13ee87b9a9ae3c1dd6823) C:\windows\System32\tapisrv.dll
12:10:37.0058 3608 TapiSrv - ok
12:10:37.0295 3608 tbhsd           (4430e9b4c60aab672d16e801bad0555e) C:\windows\system32\drivers\tbhsd.sys
12:10:37.0317 3608 tbhsd - ok
12:10:37.0417 3608 TBS             (1be03ac720f4d302ea01d40f588162f6) C:\windows\System32\tbssvc.dll
12:10:37.0474 3608 TBS - ok
12:10:38.0849 3608 Tcpip           (acb82bda8f46c84f465c1afa517dc4b9) C:\windows\system32\drivers\tcpip.sys
12:10:38.0924 3608 Tcpip - ok
12:10:41.0444 3608 TCPIP6          (acb82bda8f46c84f465c1afa517dc4b9) C:\windows\system32\DRIVERS\tcpip.sys
12:10:41.0526 3608 TCPIP6 - ok
12:10:42.0484 3608 tcpipreg        (df687e3d8836bfb04fcc0615bf15a519) C:\windows\system32\drivers\tcpipreg.sys
12:10:42.0551 3608 tcpipreg - ok
12:10:42.0621 3608 TDPIPE          (3371d21011695b16333a3934340c4e7c) C:\windows\system32\drivers\tdpipe.sys
12:10:42.0686 3608 TDPIPE - ok
12:10:42.0753 3608 TDTCP           (51c5eceb1cdee2468a1748be550cfbc8) C:\windows\system32\drivers\tdtcp.sys
12:10:42.0793 3608 TDTCP - ok
12:10:42.0936 3608 tdx             (ddad5a7ab24d8b65f8d724f5c20fd806) C:\windows\system32\DRIVERS\tdx.sys
12:10:42.0978 3608 tdx - ok
12:10:43.0101 3608 TermDD          (561e7e1f06895d78de991e01dd0fb6e5) C:\windows\system32\DRIVERS\termdd.sys
12:10:43.0135 3608 TermDD - ok
12:10:43.0837 3608 TermService     (2e648163254233755035b46dd7b89123) C:\windows\System32\termsrv.dll
12:10:43.0964 3608 TermService - ok
12:10:44.0033 3608 Themes          (f0344071948d1a1fa732231785a0664c) C:\windows\system32\themeservice.dll
12:10:44.0052 3608 Themes - ok
12:10:44.0163 3608 THREADORDER     (e40e80d0304a73e8d269f7141d77250b) C:\windows\system32\mmcss.dll
12:10:44.0204 3608 THREADORDER - ok
12:10:44.0360 3608 TrkWks          (7e7afd841694f6ac397e99d75cead49d) C:\windows\System32\trkwks.dll
12:10:44.0419 3608 TrkWks - ok
12:10:44.0809 3608 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\windows\servicing\TrustedInstaller.exe
12:10:44.0886 3608 TrustedInstaller - ok
12:10:44.0987 3608 tssecsrv        (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\windows\system32\DRIVERS\tssecsrv.sys
12:10:45.0036 3608 tssecsrv - ok
12:10:45.0123 3608 TsUsbFlt        (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\windows\system32\drivers\tsusbflt.sys
12:10:45.0231 3608 TsUsbFlt - ok
12:10:45.0280 3608 TsUsbGD         (9cc2ccae8a84820eaecb886d477cbcb8) C:\windows\system32\drivers\TsUsbGD.sys
12:10:45.0351 3608 TsUsbGD - ok
12:10:45.0533 3608 tunnel          (3566a8daafa27af944f5d705eaa64894) C:\windows\system32\DRIVERS\tunnel.sys
12:10:45.0614 3608 tunnel - ok
12:10:45.0779 3608 uagp35          (b4dd609bd7e282bfc683cec7eaaaad67) C:\windows\system32\drivers\uagp35.sys
12:10:45.0813 3608 uagp35 - ok
12:10:46.0394 3608 udfs            (ff4232a1a64012baa1fd97c7b67df593) C:\windows\system32\DRIVERS\udfs.sys
12:10:46.0466 3608 udfs - ok
12:10:46.0540 3608 UI0Detect       (3cbdec8d06b9968aba702eba076364a1) C:\windows\system32\UI0Detect.exe
12:10:46.0553 3608 UI0Detect - ok
12:10:46.0633 3608 uliagpkx        (4bfe1bc28391222894cbf1e7d0e42320) C:\windows\system32\drivers\uliagpkx.sys
12:10:46.0681 3608 uliagpkx - ok
12:10:46.0824 3608 umbus           (dc54a574663a895c8763af0fa1ff7561) C:\windows\system32\DRIVERS\umbus.sys
12:10:46.0851 3608 umbus - ok
12:10:46.0957 3608 UmPass          (b2e8e8cb557b156da5493bbddcc1474d) C:\windows\system32\DRIVERS\umpass.sys
12:10:47.0009 3608 UmPass - ok
12:10:49.0634 3608 UNS             (7e5e1603d0ff2d240ae70295c5c3fefc) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
12:10:49.0778 3608 UNS - ok
12:10:50.0901 3608 upnphost        (d47ec6a8e81633dd18d2436b19baf6de) C:\windows\System32\upnphost.dll
12:10:50.0977 3608 upnphost - ok
12:10:51.0167 3608 USBAAPL64       (fb251567f41bc61988b26731dec19e4b) C:\windows\system32\Drivers\usbaapl64.sys
12:10:51.0237 3608 USBAAPL64 - ok
12:10:51.0464 3608 usbccgp         (6f1a3157a1c89435352ceb543cdb359c) C:\windows\system32\DRIVERS\usbccgp.sys
12:10:51.0542 3608 usbccgp - ok
12:10:51.0641 3608 usbcir          (af0892a803fdda7492f595368e3b68e7) C:\windows\system32\drivers\usbcir.sys
12:10:51.0670 3608 usbcir - ok
12:10:51.0776 3608 usbehci         (c025055fe7b87701eb042095df1a2d7b) C:\windows\system32\drivers\usbehci.sys
12:10:51.0846 3608 usbehci - ok
12:10:52.0138 3608 usbhub          (287c6c9410b111b68b52ca298f7b8c24) C:\windows\system32\DRIVERS\usbhub.sys
12:10:52.0225 3608 usbhub - ok
12:10:52.0274 3608 usbohci         (9840fc418b4cbd632d3d0a667a725c31) C:\windows\system32\drivers\usbohci.sys
12:10:52.0337 3608 usbohci - ok
12:10:52.0402 3608 usbprint        (73188f58fb384e75c4063d29413cee3d) C:\windows\system32\drivers\usbprint.sys
12:10:52.0450 3608 usbprint - ok
12:10:52.0527 3608 USBSTOR         (fed648b01349a3c8395a5169db5fb7d6) C:\windows\system32\DRIVERS\USBSTOR.SYS
12:10:52.0586 3608 USBSTOR - ok
12:10:52.0656 3608 usbuhci         (62069a34518bcf9c1fd9e74b3f6db7cd) C:\windows\system32\drivers\usbuhci.sys
12:10:52.0730 3608 usbuhci - ok
12:10:52.0999 3608 usbvideo        (454800c2bc7f3927ce030141ee4f4c50) C:\windows\system32\Drivers\usbvideo.sys
12:10:53.0046 3608 usbvideo - ok
12:10:53.0090 3608 UxSms           (edbb23cbcf2cdf727d64ff9b51a6070e) C:\windows\System32\uxsms.dll
12:10:53.0157 3608 UxSms - ok
12:10:53.0195 3608 VaultSvc        (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
12:10:53.0208 3608 VaultSvc - ok
12:10:53.0282 3608 vdrvroot        (c5c876ccfc083ff3b128f933823e87bd) C:\windows\system32\drivers\vdrvroot.sys
12:10:53.0309 3608 vdrvroot - ok
12:10:53.0839 3608 vds             (8d6b481601d01a456e75c3210f1830be) C:\windows\System32\vds.exe
12:10:53.0951 3608 vds - ok
12:10:54.0009 3608 vga             (da4da3f5e02943c2dc8c6ed875de68dd) C:\windows\system32\DRIVERS\vgapnp.sys
12:10:54.0031 3608 vga - ok
12:10:54.0107 3608 VgaSave         (53e92a310193cb3c03bea963de7d9cfc) C:\windows\System32\drivers\vga.sys
12:10:54.0194 3608 VgaSave - ok
12:10:54.0522 3608 vhdmp           (2ce2df28c83aeaf30084e1b1eb253cbb) C:\windows\system32\drivers\vhdmp.sys
12:10:54.0541 3608 vhdmp - ok
12:10:54.0608 3608 viaide          (e5689d93ffe4e5d66c0178761240dd54) C:\windows\system32\drivers\viaide.sys
12:10:54.0633 3608 viaide - ok
12:10:54.0764 3608 vm2uvcflt       (5cb80afa98111fc6ed6e8702a0d7ac5b) C:\windows\system32\Drivers\vm2uvcflt.sys
12:10:54.0783 3608 vm2uvcflt - ok
12:10:55.0020 3608 vm332avs        (fe75ed0244aedff9b278a2a09ac06ca9) C:\windows\system32\Drivers\vm332avs.sys
12:10:55.0068 3608 vm332avs - ok
12:10:55.0150 3608 volmgr          (d2aafd421940f640b407aefaaebd91b0) C:\windows\system32\drivers\volmgr.sys
12:10:55.0181 3608 volmgr - ok
12:10:55.0497 3608 volmgrx         (a255814907c89be58b79ef2f189b843b) C:\windows\system32\drivers\volmgrx.sys
12:10:55.0549 3608 volmgrx - ok
12:10:55.0824 3608 volsnap         (0d08d2f3b3ff84e433346669b5e0f639) C:\windows\system32\drivers\volsnap.sys
12:10:55.0850 3608 volsnap - ok
12:10:56.0023 3608 vsmraid         (5e2016ea6ebaca03c04feac5f330d997) C:\windows\system32\drivers\vsmraid.sys
12:10:56.0092 3608 vsmraid - ok
12:10:57.0012 3608 VSS             (b60ba0bc31b0cb414593e169f6f21cc2) C:\windows\system32\vssvc.exe
12:10:57.0168 3608 VSS - ok
12:10:58.0154 3608 vwifibus        (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\windows\system32\DRIVERS\vwifibus.sys
12:10:58.0189 3608 vwifibus - ok
12:10:58.0368 3608 vwififlt        (6a3d66263414ff0d6fa754c646612f3f) C:\windows\system32\DRIVERS\vwififlt.sys
12:10:58.0404 3608 vwififlt - ok
12:10:58.0739 3608 W32Time         (1c9d80cc3849b3788048078c26486e1a) C:\windows\system32\w32time.dll
12:10:58.0788 3608 W32Time - ok
12:10:58.0833 3608 WacomPen        (4e9440f4f152a7b944cb1663d3935a3e) C:\windows\system32\drivers\wacompen.sys
12:10:58.0859 3608 WacomPen - ok
12:10:58.0928 3608 WANARP          (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys
12:10:58.0976 3608 WANARP - ok
12:10:58.0994 3608 Wanarpv6        (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys
12:10:59.0033 3608 Wanarpv6 - ok
12:11:00.0441 3608 WatAdminSvc     (3cec96de223e49eaae3651fcf8faea6c) C:\windows\system32\Wat\WatAdminSvc.exe
12:11:00.0554 3608 WatAdminSvc - ok
12:11:01.0676 3608 wbengine        (78f4e7f5c56cb9716238eb57da4b6a75) C:\windows\system32\wbengine.exe
12:11:01.0811 3608 wbengine - ok
12:11:02.0811 3608 WbioSrvc        (3aa101e8edab2db4131333f4325c76a3) C:\windows\System32\wbiosrvc.dll
12:11:02.0859 3608 WbioSrvc - ok
12:11:03.0214 3608 wcncsvc         (7368a2afd46e5a4481d1de9d14848edd) C:\windows\System32\wcncsvc.dll
12:11:03.0247 3608 wcncsvc - ok
12:11:03.0328 3608 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\windows\System32\WcsPlugInService.dll
12:11:03.0480 3608 WcsPlugInService - ok
12:11:03.0641 3608 Wd              (72889e16ff12ba0f235467d6091b17dc) C:\windows\system32\drivers\wd.sys
12:11:03.0664 3608 Wd - ok
12:11:04.0284 3608 Wdf01000        (441bd2d7b4f98134c3a4f9fa570fd250) C:\windows\system32\drivers\Wdf01000.sys
12:11:04.0332 3608 Wdf01000 - ok
12:11:04.0373 3608 WdiServiceHost  (bf1fc3f79b863c914687a737c2f3d681) C:\windows\system32\wdi.dll
12:11:04.0555 3608 WdiServiceHost - ok
12:11:04.0559 3608 WdiSystemHost   (bf1fc3f79b863c914687a737c2f3d681) C:\windows\system32\wdi.dll
12:11:04.0578 3608 WdiSystemHost - ok
12:11:04.0759 3608 WebClient       (3db6d04e1c64272f8b14eb8bc4616280) C:\windows\System32\webclnt.dll
12:11:04.0792 3608 WebClient - ok
12:11:04.0932 3608 Wecsvc          (c749025a679c5103e575e3b48e092c43) C:\windows\system32\wecsvc.dll
12:11:05.0059 3608 Wecsvc - ok
12:11:05.0124 3608 wercplsupport   (7e591867422dc788b9e5bd337a669a08) C:\windows\System32\wercplsupport.dll
12:11:05.0167 3608 wercplsupport - ok
12:11:05.0270 3608 WerSvc          (6d137963730144698cbd10f202e9f251) C:\windows\System32\WerSvc.dll
12:11:05.0325 3608 WerSvc - ok
12:11:05.0477 3608 WfpLwf          (611b23304bf067451a9fdee01fbdd725) C:\windows\system32\DRIVERS\wfplwf.sys
12:11:05.0529 3608 WfpLwf - ok
12:11:05.0587 3608 WIMMount        (05ecaec3e4529a7153b3136ceb49f0ec) C:\windows\system32\drivers\wimmount.sys
12:11:05.0598 3608 WIMMount - ok
12:11:05.0679 3608 WinDefend - ok
12:11:05.0701 3608 WinHttpAutoProxySvc - ok
12:11:06.0105 3608 Winmgmt         (19b07e7e8915d701225da41cb3877306) C:\windows\system32\wbem\WMIsvc.dll
12:11:06.0214 3608 Winmgmt - ok
12:11:09.0003 3608 WinRM           (bcb1310604aa415c4508708975b3931e) C:\windows\system32\WsmSvc.dll
12:11:09.0128 3608 WinRM - ok
12:11:11.0339 3608 Wlansvc         (4fada86e62f18a1b2f42ba18ae24e6aa) C:\windows\System32\wlansvc.dll
12:11:11.0448 3608 Wlansvc - ok
12:11:11.0639 3608 wlcrasvc        (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
12:11:11.0681 3608 wlcrasvc - ok
12:11:14.0756 3608 wlidsvc         (2bacd71123f42cea603f4e205e1ae337) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
12:11:14.0846 3608 wlidsvc - ok
12:11:15.0966 3608 WmiAcpi         (f6ff8944478594d0e414d3f048f0d778) C:\windows\system32\drivers\wmiacpi.sys
12:11:16.0007 3608 WmiAcpi - ok
12:11:16.0414 3608 wmiApSrv        (38b84c94c5a8af291adfea478ae54f93) C:\windows\system32\wbem\WmiApSrv.exe
12:11:16.0488 3608 wmiApSrv - ok
12:11:16.0595 3608 WMPNetworkSvc - ok
12:11:16.0661 3608 WPCSvc          (96c6e7100d724c69fcf9e7bf590d1dca) C:\windows\System32\wpcsvc.dll
12:11:16.0700 3608 WPCSvc - ok
12:11:16.0870 3608 WPDBusEnum      (93221146d4ebbf314c29b23cd6cc391d) C:\windows\system32\wpdbusenum.dll
12:11:16.0988 3608 WPDBusEnum - ok
12:11:17.0094 3608 ws2ifsl         (6bcc1d7d2fd2453957c5479a32364e52) C:\windows\system32\drivers\ws2ifsl.sys
12:11:17.0152 3608 ws2ifsl - ok
12:11:17.0325 3608 wscsvc          (e8b1fe6669397d1772d8196df0e57a9e) C:\windows\System32\wscsvc.dll
12:11:17.0378 3608 wscsvc - ok
12:11:17.0384 3608 WSearch - ok
12:11:17.0614 3608 wsvd            (83575c43b2bfe9ab0661a7f957e843c0) C:\windows\system32\DRIVERS\wsvd.sys
12:11:17.0642 3608 wsvd - ok
12:11:21.0375 3608 wuauserv        (d9ef901dca379cfe914e9fa13b73b4c4) C:\windows\system32\wuaueng.dll
12:11:21.0462 3608 wuauserv - ok
12:11:22.0213 3608 WudfPf          (d3381dc54c34d79b22cee0d65ba91b7c) C:\windows\system32\drivers\WudfPf.sys
12:11:22.0299 3608 WudfPf - ok
12:11:22.0478 3608 WUDFRd          (cf8d590be3373029d57af80914190682) C:\windows\system32\DRIVERS\WUDFRd.sys
12:11:22.0633 3608 WUDFRd - ok
12:11:22.0791 3608 wudfsvc         (7a95c95b6c4cf292d689106bcae49543) C:\windows\System32\WUDFSvc.dll
12:11:22.0858 3608 wudfsvc - ok
12:11:23.0059 3608 WwanSvc         (9a3452b3c2a46c073166c5cf49fad1ae) C:\windows\System32\wwansvc.dll
12:11:23.0095 3608 WwanSvc - ok
12:11:23.0129 3608 ZTEusbMB - ok
12:11:23.0136 3608 ZTEusbnet - ok
12:11:23.0141 3608 ZTEusbnmea - ok
12:11:23.0162 3608 ZTEusbser6k - ok
12:11:23.0199 3608 MBR (0x1B8)     (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
12:11:26.0167 3608 \Device\Harddisk0\DR0 - ok
12:11:26.0195 3608 Boot (0x1200)   (9b52b0c1568af23b61a2ccd0a8017649) \Device\Harddisk0\DR0\Partition0
12:11:26.0198 3608 \Device\Harddisk0\DR0\Partition0 - ok
12:11:26.0216 3608 Boot (0x1200)   (3609204f812cdd0c257b5d0fdf0ed537) \Device\Harddisk0\DR0\Partition1
12:11:26.0221 3608 \Device\Harddisk0\DR0\Partition1 - ok
12:11:26.0295 3608 Boot (0x1200)   (de6460a2eb4ad5bf46225ce549eacc05) \Device\Harddisk0\DR0\Partition2
12:11:26.0301 3608 \Device\Harddisk0\DR0\Partition2 - ok
12:11:26.0301 3608 ============================================================
12:11:26.0301 3608 Scan finished
12:11:26.0301 3608 ============================================================
12:11:26.0310 6540 Detected object count: 0
12:11:26.0310 6540 Actual detected object count: 0

Edited by Tchock, 09 July 2012 - 12:26 PM.


#4 Tchock

Tchock
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:10:19 PM

Posted 09 July 2012 - 07:49 AM

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-07-09 01:55:34
-----------------------------
01:55:34.654 OS Version: Windows x64 6.1.7601 Service Pack 1
01:55:34.654 Number of processors: 2 586 0x2A07
01:55:34.656 ComputerName: JOEL-PC UserName: Joel
01:55:40.278 Initialize success
02:02:08.671 AVAST engine defs: 12070801
02:02:19.266 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
02:02:19.269 Disk 0 Vendor: ST950032 0011 Size: 476940MB BusType: 3
02:02:19.288 Disk 0 MBR read successfully
02:02:19.290 Disk 0 MBR scan
02:02:19.306 Disk 0 Windows 7 default MBR code
02:02:19.322 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 200 MB offset 2048
02:02:19.333 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 431938 MB offset 411648
02:02:19.338 Disk 0 Partition - 00 0F Extended LBA 29692 MB offset 885020672
02:02:19.371 Disk 0 Partition 3 00 12 Compaq diag NTFS 15109 MB offset 945829888
02:02:19.400 Disk 0 Partition 4 00 07 HPFS/NTFS NTFS 29691 MB offset 885022720
02:02:19.466 Disk 0 scanning C:\windows\system32\drivers
02:02:33.826 Service scanning
02:02:59.506 Modules scanning
02:02:59.526 Disk 0 trace - called modules:
02:02:59.597 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
02:02:59.609 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8005907620]
02:02:59.621 3 CLASSPNP.SYS[fffff8800182b43f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8003bb8050]
02:03:00.778 AVAST engine scan C:\windows
02:03:03.364 AVAST engine scan C:\windows\system32
02:06:52.516 AVAST engine scan C:\windows\system32\drivers
02:07:14.568 AVAST engine scan C:\Users\Joel
02:15:07.460 AVAST engine scan C:\ProgramData
02:16:28.220 Scan finished successfully
07:47:44.803 Disk 0 MBR has been saved successfully to "C:\Users\Joel\Documents\MBR.dat"
07:47:44.844 The log file has been saved successfully to "C:\Users\Joel\Documents\aswMBR.txt"

#5 Tchock

Tchock
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:10:19 PM

Posted 09 July 2012 - 12:33 PM

ESET Online Scanner Results:



C:\Users\Joel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RU1BSJC1\FIFA12.zip[1].htm HTML/ScrInject.B.Gen virus deleted - quarantined
C:\Users\Joel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\WF8V81UF\Free.rar[1].htm HTML/ScrInject.B.Gen virus deleted - quarantined


C:\$Recycle.Bin\S-1-5-21-4096276478-1758773356-2336194163-1000\$RCZGT4O.exe Win32/OpenCandy application cleaned by deleting - quarantined
C:\Users\Joel\Downloads\cdbxp_setup_4.3.8.2631.exe Win32/OpenCandy application cleaned by deleting - quarantined
C:\Users\Joel\Downloads\extractnow.exe Win32/OpenCandy application cleaned by deleting - quarantined

Edited by Tchock, 09 July 2012 - 04:18 PM.


#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:19 PM

Posted 09 July 2012 - 10:21 PM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log


Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

#7 Tchock

Tchock
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:10:19 PM

Posted 09 July 2012 - 10:40 PM

MiniToolBox by Farbar Version: 25-06-2012
Ran by Joel (administrator) on 09-07-2012 at 22:36:25
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Atheros AR9285 Wireless Network Adapter = Wireless Network Connection (Connected)
Atheros AR8152/8158 PCI-E Fast Ethernet Controller (NDIS 6.20) = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Joel-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Broadcast
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : gateway.2wire.net

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : gateway.2wire.net
Description . . . . . . . . . . . : Atheros AR9285 Wireless Network Adapter
Physical Address. . . . . . . . . : 68-A3-C4-FE-69-1B
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::c574:efae:390c:ca5b%13(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.65(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Monday, July 09, 2012 10:32:56 PM
Lease Expires . . . . . . . . . . : Tuesday, July 10, 2012 10:32:56 PM
Default Gateway . . . . . . . . . : 192.168.1.254
DHCP Server . . . . . . . . . . . : 192.168.1.254
DHCPv6 IAID . . . . . . . . . . . : 325624772
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-7C-BD-C7-B8-70-F4-1E-DD-AF
DNS Servers . . . . . . . . . . . : 192.168.1.254
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Atheros AR8152/8158 PCI-E Fast Ethernet Controller (NDIS 6.20)
Physical Address. . . . . . . . . : B8-70-F4-1E-DD-AF
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.gateway.2wire.net:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : gateway.2wire.net
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:2c8e:3d59:9ccd:8e4(Preferred)
Link-local IPv6 Address . . . . . : fe80::2c8e:3d59:9ccd:8e4%14(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: home
Address: 192.168.1.254

Name: google.com
Addresses: 2001:4860:4002:801::1004
74.125.227.105
74.125.227.110
74.125.227.96
74.125.227.97
74.125.227.98
74.125.227.99
74.125.227.100
74.125.227.101
74.125.227.102
74.125.227.103
74.125.227.104


Pinging google.com [74.125.227.102] with 32 bytes of data:
Reply from 74.125.227.102: bytes=32 time=21ms TTL=52
Reply from 74.125.227.102: bytes=32 time=23ms TTL=52

Ping statistics for 74.125.227.102:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 21ms, Maximum = 23ms, Average = 22ms
Server: home
Address: 192.168.1.254

Name: yahoo.com
Addresses: 209.191.122.70
72.30.38.140
98.139.183.24


Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=73ms TTL=48
Reply from 72.30.38.140: bytes=32 time=73ms TTL=48

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 73ms, Maximum = 73ms, Average = 73ms
Server: home
Address: 192.168.1.254

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=5ms TTL=128
Reply from 127.0.0.1: bytes=32 time=1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 1ms, Maximum = 5ms, Average = 3ms
===========================================================================
Interface List
13...68 a3 c4 fe 69 1b ......Atheros AR9285 Wireless Network Adapter
11...b8 70 f4 1e dd af ......Atheros AR8152/8158 PCI-E Fast Ethernet Controller (NDIS 6.20)
1...........................Software Loopback Interface 1
20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
12...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
14...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.254 192.168.1.65 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.65 281
192.168.1.65 255.255.255.255 On-link 192.168.1.65 281
192.168.1.255 255.255.255.255 On-link 192.168.1.65 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.65 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.65 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
14 58 ::/0 On-link
1 306 ::1/128 On-link
14 58 2001::/32 On-link
14 306 2001:0:4137:9e76:2c8e:3d59:9ccd:8e4/128
On-link
13 281 fe80::/64 On-link
14 306 fe80::/64 On-link
14 306 fe80::2c8e:3d59:9ccd:8e4/128
On-link
13 281 fe80::c574:efae:390c:ca5b/128
On-link
1 306 ff00::/8 On-link
14 306 ff00::/8 On-link
13 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 10 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 10 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (07/09/2012 10:34:33 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/09/2012 04:17:14 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (07/09/2012 04:17:13 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (07/09/2012 03:04:03 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (07/09/2012 03:03:58 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (07/09/2012 03:03:57 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (07/09/2012 03:03:57 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (07/09/2012 11:56:08 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (07/09/2012 10:42:06 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (07/09/2012 09:12:53 AM) (Source: CVHSVC) (User: )
Description: Information only.
Error: The server returned an invalid or unrecognized response
ErrorCode: 14007(0x36b7).


System errors:
=============
Error: (07/09/2012 04:17:21 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the IPBusEnum service.

Error: (07/06/2012 09:27:01 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the IPBusEnum service.

Error: (07/06/2012 09:27:01 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the McODS service.

Error: (07/05/2012 11:09:27 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the wlidsvc service.

Error: (07/05/2012 11:09:27 AM) (Source: Service Control Manager) (User: )
Description: The McAfee McShield service failed to start due to the following error:
%%1053

Error: (07/05/2012 11:09:27 AM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the McAfee McShield service to connect.

Error: (07/04/2012 08:50:54 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the PlugPlay service.

Error: (07/04/2012 07:09:49 AM) (Source: volsnap) (User: )
Description: The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.

Error: (06/30/2012 02:45:56 AM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR2.

Error: (06/30/2012 02:45:56 AM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR2.


Microsoft Office Sessions:
=========================
Error: (07/09/2012 10:34:33 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/09/2012 04:17:14 PM) (Source: SideBySide)(User: )
Description: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Joel\Downloads\esetsmartinstaller_enu.exe

Error: (07/09/2012 04:17:13 PM) (Source: SideBySide)(User: )
Description: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Joel\Downloads\esetsmartinstaller_enu.exe

Error: (07/09/2012 03:04:03 PM) (Source: SideBySide)(User: )
Description: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Joel\Downloads\esetsmartinstaller_enu.exe

Error: (07/09/2012 03:03:58 PM) (Source: SideBySide)(User: )
Description: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Joel\Downloads\esetsmartinstaller_enu.exe

Error: (07/09/2012 03:03:57 PM) (Source: SideBySide)(User: )
Description: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Joel\Downloads\esetsmartinstaller_enu.exe

Error: (07/09/2012 03:03:57 PM) (Source: SideBySide)(User: )
Description: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Joel\Downloads\esetsmartinstaller_enu.exe

Error: (07/09/2012 11:56:08 AM) (Source: SideBySide)(User: )
Description: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Joel\Downloads\esetsmartinstaller_enu.exe

Error: (07/09/2012 10:42:06 AM) (Source: SideBySide)(User: )
Description: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Joel\Downloads\esetsmartinstaller_enu.exe

Error: (07/09/2012 09:12:53 AM) (Source: CVHSVC)(User: )
Description: Error: The server returned an invalid or unrecognized response
ErrorCode: 14007(0x36b7).


=========================== Installed Programs ============================

Adobe AIR (Version: 3.3.0.3650)
Adobe Flash Player 11 ActiveX (Version: 11.3.300.257)
Adobe Flash Player 11 Plugin (Version: 11.3.300.262)
Adobe Reader X (10.1.3) (Version: 10.1.3)
Adobe Shockwave Player 11.6 (Version: 11.6.5.635)
Apple Application Support (Version: 2.1.9)
Apple Mobile Device Support (Version: 5.2.0.6)
Apple Software Update (Version: 2.1.3.127)
Atheros Client Installation Program (Version: 7.0)
Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver (Version: 1.0.0.36)
Audacity 2.0
Audials (Version: 9.1.23700.0)
Bing Desktop (Version: 1.0.45.0)
Bonjour (Version: 3.0.0.10)
CDBurnerXP (Version: 4.3.8.2631)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Conexant HD Audio (Version: 8.54.1.0)
D3DX10 (Version: 15.4.2368.0902)
Energy Management (Version: 6.0.2.0)
ExtractNow
Google Chrome (Version: 20.0.1132.47)
Google Earth (Version: 6.2.2.6613)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.3.2710.138)
Google Update Helper (Version: 1.3.21.111)
Intel® Control Center (Version: 1.2.1.1007)
Intel® Management Engine Components (Version: 7.0.0.1144)
Intel® Processor Graphics (Version: 8.15.10.2342)
Intel® Rapid Storage Technology (Version: 10.1.5.1001)
iTunes (Version: 10.6.3.25)
iWisoft Free Video Converter 1.2 (Version: 1.2)
Java Auto Updater (Version: 2.1.6.0)
Java™ 7 Update 5 (Version: 7.0.50)
JavaFX 2.1.1 (Version: 2.1.1)
Junk Mail filter update (Version: 15.4.3502.0922)
Lenovo DirectShare (Version: 1.0.1.38)
Lenovo EasyCamera (Version: 1.10.1209.1)
Lenovo EE Boot Optimizer (Version: 0.0.1.6)
Lenovo Games Console (Version: 1.2.6.436)
Lenovo OneKey Recovery (Version: 7.0.1628)
Lenovo YouCam (Version: 3.1.3728)
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
McAfee SiteAdvisor (Version: 3.4.1.195)
MediaBar (Version: 3.0.0.116189)
Mesh Runtime (Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Starter 2010 - English (Version: 14.0.4763.1000)
Microsoft Security Client (Version: 4.0.1526.0)
Microsoft Security Essentials (Version: 4.0.1526.0)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 (Version: 9.0.30411)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Works (Version: 9.7.0621)
Mozilla Firefox 13.0.1 (x86 en-US) (Version: 13.0.1)
Mozilla Maintenance Service (Version: 13.0.1)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
Next Generation Visualisations (Version: 1.0.0)
ooVoo (Version: 2.2.4.25)
OpenOffice.org 3.4 (Version: 3.4.9590)
Power2Go (Version: 5.6.0.7108)
QuickTime (Version: 7.72.80.56)
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
RealPlayer (Version: 15.0.4)
Realtek USB 2.0 Reader Driver (Version: 6.1.7600.10003)
RealUpgrade 1.1 (Version: 1.1.0)
Sports Tactics Board (Version: 0.2.1008.0)
swMSM (Version: 12.0.0.1)
Synaptics Pointing Device Driver (Version: 15.3.0.0)
Synthesia (remove only)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
UserGuide (Version: 1.0.0.6)
VeriFace (Version: 4.0.0.1224)
WhiteCap (Version: 5.6.0)
Windows Driver Package - Lenovo (ACPIVPC) System (12/02/2010 6.1.0.1) (Version: 12/02/2010 6.1.0.1)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)

========================= Memory info: ===================================

Percentage of memory in use: 63%
Total physical RAM: 3015.86 MB
Available physical RAM: 1105.75 MB
Total Pagefile: 6029.91 MB
Available Pagefile: 3704.13 MB
Total Virtual: 4095.88 MB
Available Virtual: 3958.84 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:421.81 GB) (Free:298.36 GB) NTFS
2 Drive d: (LENOVO) (Fixed) (Total:29 GB) (Free:26.88 GB) NTFS

========================= Users: ========================================

User accounts for \\JOEL-PC

Administrator Guest Joel
Mcx1-JOEL-PC


**** End of log ****




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users