Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Write Fault Errors Keeps Popping Up


  • Please log in to reply
18 replies to this topic

#1 mekap04

mekap04

  • Members
  • 49 posts
  • OFFLINE
  •  
  • Local time:06:08 PM

Posted 10 July 2012 - 08:09 PM

Hi,

I am having problems with my computer. It's Windows 7 home edition and all of these system errors are popping up. All of my files are gone and I have no desktop icons and I can't access any files. I keep getting all of these "System Message - Write Fault Errors" popping up. I don't know what to do at this point. The system says something about hardrive errors.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:08 PM

Posted 10 July 2012 - 08:48 PM

Boot into safemode with networking


Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)



Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 mekap04

mekap04
  • Topic Starter

  • Members
  • 49 posts
  • OFFLINE
  •  
  • Local time:06:08 PM

Posted 10 July 2012 - 11:39 PM

22:43:57.0352 2328 TDSS rootkit removing tool 2.7.45.0 Jul 9 2012 12:46:35
22:43:57.0696 2328 ============================================================
22:43:57.0696 2328 Current date / time: 2012/07/10 22:43:57.0696
22:43:57.0696 2328 SystemInfo:
22:43:57.0696 2328
22:43:57.0696 2328 OS Version: 6.1.7601 ServicePack: 1.0
22:43:57.0696 2328 Product type: Workstation
22:43:57.0696 2328 ComputerName: MEKAP
22:43:57.0711 2328 UserName: meka
22:43:57.0711 2328 Windows directory: C:\Windows
22:43:57.0711 2328 System windows directory: C:\Windows
22:43:57.0711 2328 Running under WOW64
22:43:57.0711 2328 Processor architecture: Intel x64
22:43:57.0711 2328 Number of processors: 2
22:43:57.0711 2328 Page size: 0x1000
22:43:57.0711 2328 Boot type: Safe boot with network
22:43:57.0711 2328 ============================================================
22:43:58.0476 2328 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:43:58.0507 2328 ============================================================
22:43:58.0507 2328 \Device\Harddisk0\DR0:
22:43:58.0507 2328 MBR partitions:
22:43:58.0507 2328 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
22:43:58.0507 2328 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x38C97000
22:43:58.0507 2328 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x38CC9800, BlocksNum 0x16BC000
22:43:58.0507 2328 ============================================================
22:43:58.0554 2328 C: <-> \Device\Harddisk0\DR0\Partition1
22:43:58.0600 2328 D: <-> \Device\Harddisk0\DR0\Partition2
22:43:58.0600 2328 ============================================================
22:43:58.0600 2328 Initialize success
22:43:58.0600 2328 ============================================================
22:44:22.0936 2456 ============================================================
22:44:22.0936 2456 Scan started
22:44:22.0936 2456 Mode: Manual; TDLFS;
22:44:22.0936 2456 ============================================================
22:44:23.0670 2456 !SASCORE (7d9d615201a483d6fa99491c2e655a5a) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
22:44:23.0670 2456 !SASCORE - ok
22:44:23.0950 2456 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
22:44:23.0966 2456 1394ohci - ok
22:44:24.0013 2456 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
22:44:24.0013 2456 ACPI - ok
22:44:24.0044 2456 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
22:44:24.0044 2456 AcpiPmi - ok
22:44:24.0216 2456 AdobeFlashPlayerUpdateSvc (f3cd7b20b27d1772c946df993ff3635c) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
22:44:24.0216 2456 AdobeFlashPlayerUpdateSvc - ok
22:44:24.0262 2456 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys
22:44:24.0278 2456 adp94xx - ok
22:44:24.0309 2456 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys
22:44:24.0325 2456 adpahci - ok
22:44:24.0356 2456 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys
22:44:24.0356 2456 adpu320 - ok
22:44:24.0387 2456 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
22:44:24.0387 2456 AeLookupSvc - ok
22:44:24.0434 2456 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
22:44:24.0450 2456 AFD - ok
22:44:24.0512 2456 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
22:44:24.0512 2456 agp440 - ok
22:44:24.0543 2456 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
22:44:24.0543 2456 ALG - ok
22:44:24.0574 2456 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
22:44:24.0590 2456 aliide - ok
22:44:24.0637 2456 AMD External Events Utility (23bc2ea87ab7d48756e6198a4e5d3ac0) C:\Windows\system32\atiesrxx.exe
22:44:24.0637 2456 AMD External Events Utility - ok
22:44:24.0668 2456 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
22:44:24.0668 2456 amdide - ok
22:44:24.0715 2456 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys
22:44:24.0715 2456 AmdK8 - ok
22:44:25.0760 2456 amdkmdag (4837aa524c1aeb34201ba425237fb45b) C:\Windows\system32\DRIVERS\atikmdag.sys
22:44:25.0932 2456 amdkmdag - ok
22:44:26.0041 2456 amdkmdap (d7cc3eb2ae5bb29858f254c9aa356601) C:\Windows\system32\DRIVERS\atikmpag.sys
22:44:26.0041 2456 amdkmdap - ok
22:44:26.0072 2456 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys
22:44:26.0088 2456 AmdPPM - ok
22:44:26.0119 2456 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
22:44:26.0119 2456 amdsata - ok
22:44:26.0181 2456 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys
22:44:26.0197 2456 amdsbs - ok
22:44:26.0228 2456 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
22:44:26.0228 2456 amdxata - ok
22:44:26.0291 2456 amd_sata (f9d46b6b322708bd5afcc8767ebdc901) C:\Windows\system32\drivers\amd_sata.sys
22:44:26.0291 2456 amd_sata - ok
22:44:26.0337 2456 amd_xata (329cc9c7e20deebcd4cd10816193ef14) C:\Windows\system32\drivers\amd_xata.sys
22:44:26.0353 2456 amd_xata - ok
22:44:26.0384 2456 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
22:44:26.0384 2456 AppID - ok
22:44:26.0415 2456 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
22:44:26.0415 2456 AppIDSvc - ok
22:44:26.0447 2456 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
22:44:26.0447 2456 Appinfo - ok
22:44:26.0478 2456 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys
22:44:26.0478 2456 arc - ok
22:44:26.0509 2456 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys
22:44:26.0525 2456 arcsas - ok
22:44:26.0727 2456 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
22:44:26.0759 2456 aspnet_state - ok
22:44:26.0790 2456 aswFsBlk (b9da213b5271db5fce962d827e6d620d) C:\Windows\system32\drivers\aswFsBlk.sys
22:44:26.0790 2456 aswFsBlk - ok
22:44:26.0852 2456 aswMonFlt (21c9835d0e5ad2ff0f16134bcb32cc71) C:\Windows\system32\drivers\aswMonFlt.sys
22:44:26.0852 2456 aswMonFlt - ok
22:44:26.0899 2456 aswRdr (1b96a5867abd4fa6135d8298fcccf9c6) C:\Windows\System32\Drivers\aswrdr2.sys
22:44:26.0915 2456 aswRdr - ok
22:44:27.0008 2456 aswSnx (6e98bb288696777a3a8a07a52b0eaee9) C:\Windows\system32\drivers\aswSnx.sys
22:44:27.0024 2456 aswSnx - ok
22:44:27.0055 2456 aswSP (d9fb49f16e4eb02efecae8cbfe4bcb4c) C:\Windows\system32\drivers\aswSP.sys
22:44:27.0071 2456 aswSP - ok
22:44:27.0133 2456 aswTdi (7352bb9a564b94bbd7c9cbf165f55006) C:\Windows\system32\drivers\aswTdi.sys
22:44:27.0133 2456 aswTdi - ok
22:44:27.0195 2456 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
22:44:27.0211 2456 AsyncMac - ok
22:44:27.0242 2456 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
22:44:27.0242 2456 atapi - ok
22:44:27.0351 2456 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
22:44:27.0367 2456 AudioEndpointBuilder - ok
22:44:27.0383 2456 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
22:44:27.0398 2456 AudioSrv - ok
22:44:27.0492 2456 avast! Antivirus (4041d31508a2a084dfb42c595854090f) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
22:44:27.0492 2456 avast! Antivirus - ok
22:44:27.0554 2456 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
22:44:27.0570 2456 AxInstSV - ok
22:44:27.0648 2456 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys
22:44:27.0648 2456 b06bdrv - ok
22:44:27.0773 2456 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
22:44:27.0788 2456 b57nd60a - ok
22:44:27.0866 2456 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
22:44:27.0866 2456 BDESVC - ok
22:44:27.0897 2456 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
22:44:27.0913 2456 Beep - ok
22:44:27.0975 2456 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
22:44:27.0975 2456 BFE - ok
22:44:28.0053 2456 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
22:44:28.0116 2456 BITS - ok
22:44:28.0178 2456 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\drivers\blbdrive.sys
22:44:28.0178 2456 blbdrive - ok
22:44:28.0225 2456 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
22:44:28.0225 2456 bowser - ok
22:44:28.0272 2456 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys
22:44:28.0287 2456 BrFiltLo - ok
22:44:28.0303 2456 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys
22:44:28.0303 2456 BrFiltUp - ok
22:44:28.0350 2456 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
22:44:28.0365 2456 Browser - ok
22:44:28.0443 2456 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
22:44:28.0459 2456 Brserid - ok
22:44:28.0506 2456 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
22:44:28.0506 2456 BrSerWdm - ok
22:44:28.0553 2456 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
22:44:28.0553 2456 BrUsbMdm - ok
22:44:28.0584 2456 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
22:44:28.0584 2456 BrUsbSer - ok
22:44:28.0599 2456 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\drivers\bthmodem.sys
22:44:28.0599 2456 BTHMODEM - ok
22:44:28.0662 2456 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
22:44:28.0677 2456 bthserv - ok
22:44:28.0709 2456 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
22:44:28.0709 2456 cdfs - ok
22:44:28.0740 2456 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
22:44:28.0771 2456 cdrom - ok
22:44:28.0802 2456 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
22:44:28.0802 2456 CertPropSvc - ok
22:44:28.0833 2456 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys
22:44:28.0849 2456 circlass - ok
22:44:28.0880 2456 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
22:44:28.0896 2456 CLFS - ok
22:44:28.0989 2456 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:44:29.0005 2456 clr_optimization_v2.0.50727_32 - ok
22:44:29.0083 2456 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:44:29.0099 2456 clr_optimization_v2.0.50727_64 - ok
22:44:29.0348 2456 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:44:29.0395 2456 clr_optimization_v4.0.30319_32 - ok
22:44:29.0598 2456 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:44:29.0598 2456 clr_optimization_v4.0.30319_64 - ok
22:44:29.0660 2456 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\drivers\CmBatt.sys
22:44:29.0660 2456 CmBatt - ok
22:44:29.0676 2456 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
22:44:29.0676 2456 cmdide - ok
22:44:29.0738 2456 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
22:44:29.0754 2456 CNG - ok
22:44:29.0801 2456 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys
22:44:29.0801 2456 Compbatt - ok
22:44:29.0879 2456 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
22:44:29.0879 2456 CompositeBus - ok
22:44:29.0894 2456 COMSysApp - ok
22:44:29.0910 2456 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys
22:44:29.0910 2456 crcdisk - ok
22:44:29.0972 2456 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
22:44:29.0972 2456 CryptSvc - ok
22:44:30.0144 2456 cvhsvc (72794d112cbaff3bc0c29bf7350d4741) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
22:44:30.0159 2456 cvhsvc - ok
22:44:30.0237 2456 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
22:44:30.0237 2456 DcomLaunch - ok
22:44:30.0269 2456 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
22:44:30.0284 2456 defragsvc - ok
22:44:30.0315 2456 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
22:44:30.0315 2456 DfsC - ok
22:44:30.0347 2456 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
22:44:30.0362 2456 Dhcp - ok
22:44:30.0362 2456 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
22:44:30.0378 2456 discache - ok
22:44:30.0393 2456 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys
22:44:30.0409 2456 Disk - ok
22:44:30.0440 2456 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
22:44:30.0440 2456 Dnscache - ok
22:44:30.0456 2456 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
22:44:30.0471 2456 dot3svc - ok
22:44:30.0503 2456 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
22:44:30.0503 2456 DPS - ok
22:44:30.0534 2456 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
22:44:30.0534 2456 drmkaud - ok
22:44:30.0581 2456 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
22:44:30.0596 2456 DXGKrnl - ok
22:44:30.0627 2456 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
22:44:30.0627 2456 EapHost - ok
22:44:30.0971 2456 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys
22:44:31.0033 2456 ebdrv - ok
22:44:31.0127 2456 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
22:44:31.0142 2456 EFS - ok
22:44:31.0205 2456 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
22:44:31.0205 2456 ehRecvr - ok
22:44:31.0236 2456 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
22:44:31.0236 2456 ehSched - ok
22:44:31.0314 2456 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys
22:44:31.0314 2456 elxstor - ok
22:44:31.0329 2456 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
22:44:31.0329 2456 ErrDev - ok
22:44:31.0407 2456 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
22:44:31.0423 2456 EventSystem - ok
22:44:31.0454 2456 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
22:44:31.0454 2456 exfat - ok
22:44:31.0485 2456 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
22:44:31.0501 2456 fastfat - ok
22:44:31.0548 2456 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
22:44:31.0563 2456 Fax - ok
22:44:31.0595 2456 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys
22:44:31.0595 2456 fdc - ok
22:44:31.0626 2456 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
22:44:31.0626 2456 fdPHost - ok
22:44:31.0657 2456 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
22:44:31.0657 2456 FDResPub - ok
22:44:31.0688 2456 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
22:44:31.0688 2456 FileInfo - ok
22:44:31.0719 2456 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
22:44:31.0719 2456 Filetrace - ok
22:44:31.0735 2456 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys
22:44:31.0735 2456 flpydisk - ok
22:44:31.0782 2456 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
22:44:31.0782 2456 FltMgr - ok
22:44:31.0875 2456 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
22:44:31.0922 2456 FontCache - ok
22:44:31.0985 2456 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:44:31.0985 2456 FontCache3.0.0.0 - ok
22:44:32.0031 2456 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
22:44:32.0031 2456 FsDepends - ok
22:44:32.0063 2456 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
22:44:32.0063 2456 Fs_Rec - ok
22:44:32.0109 2456 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
22:44:32.0109 2456 fvevol - ok
22:44:32.0141 2456 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys
22:44:32.0141 2456 gagp30kx - ok
22:44:32.0203 2456 GamesAppService (c403c5db49a0f9aaf4f2128edc0106d8) C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
22:44:32.0203 2456 GamesAppService - ok
22:44:32.0265 2456 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
22:44:32.0281 2456 gpsvc - ok
22:44:32.0312 2456 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
22:44:32.0312 2456 hcw85cir - ok
22:44:32.0359 2456 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
22:44:32.0359 2456 HdAudAddService - ok
22:44:32.0390 2456 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
22:44:32.0390 2456 HDAudBus - ok
22:44:32.0421 2456 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys
22:44:32.0421 2456 HidBatt - ok
22:44:32.0468 2456 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys
22:44:32.0468 2456 HidBth - ok
22:44:32.0515 2456 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys
22:44:32.0515 2456 HidIr - ok
22:44:32.0546 2456 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
22:44:32.0546 2456 hidserv - ok
22:44:32.0562 2456 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
22:44:32.0562 2456 HidUsb - ok
22:44:32.0593 2456 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
22:44:32.0593 2456 hkmsvc - ok
22:44:32.0624 2456 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
22:44:32.0624 2456 HomeGroupListener - ok
22:44:32.0655 2456 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
22:44:32.0671 2456 HomeGroupProvider - ok
22:44:32.0765 2456 HP Support Assistant Service (531d1843c7a411f4e41ec6786f291e5f) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
22:44:32.0780 2456 HP Support Assistant Service - ok
22:44:32.0858 2456 HPAuto (7b8c1b09c11e8db7c4480abd7d17e821) C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe
22:44:32.0874 2456 HPAuto - ok
22:44:32.0921 2456 HPClientSvc (6a181452d4e240b8ecc7614b9a19bde9) C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
22:44:32.0921 2456 HPClientSvc - ok
22:44:32.0952 2456 HPDrvMntSvc.exe (bcc4a8b2e2e902f52e7f2e7d8e125765) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
22:44:32.0952 2456 HPDrvMntSvc.exe - ok
22:44:33.0014 2456 hpqwmiex (ec9739a46f1f83c6e52a7a4697f44a65) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
22:44:33.0030 2456 hpqwmiex - ok
22:44:33.0170 2456 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
22:44:33.0170 2456 HpSAMD - ok
22:44:33.0217 2456 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
22:44:33.0233 2456 HTTP - ok
22:44:33.0233 2456 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
22:44:33.0233 2456 hwpolicy - ok
22:44:33.0264 2456 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
22:44:33.0264 2456 i8042prt - ok
22:44:33.0326 2456 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
22:44:33.0326 2456 iaStorV - ok
22:44:33.0404 2456 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:44:33.0420 2456 idsvc - ok
22:44:33.0810 2456 igfx (a87261ef1546325b559374f5689cf5bc) C:\Windows\system32\DRIVERS\igdkmd64.sys
22:44:33.0950 2456 igfx - ok
22:44:34.0044 2456 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys
22:44:34.0044 2456 iirsp - ok
22:44:34.0122 2456 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
22:44:34.0153 2456 IKEEXT - ok
22:44:34.0325 2456 IntcAzAudAddService (c7124da48e557d8f88d0d7f1254557f4) C:\Windows\system32\drivers\RTKVHD64.sys
22:44:34.0387 2456 IntcAzAudAddService - ok
22:44:34.0559 2456 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
22:44:34.0559 2456 intelide - ok
22:44:34.0605 2456 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\drivers\intelppm.sys
22:44:34.0605 2456 intelppm - ok
22:44:34.0652 2456 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
22:44:34.0652 2456 IPBusEnum - ok
22:44:34.0668 2456 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:44:34.0683 2456 IpFilterDriver - ok
22:44:34.0715 2456 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
22:44:34.0730 2456 iphlpsvc - ok
22:44:34.0761 2456 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
22:44:34.0761 2456 IPMIDRV - ok
22:44:34.0793 2456 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
22:44:34.0793 2456 IPNAT - ok
22:44:34.0824 2456 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
22:44:34.0824 2456 IRENUM - ok
22:44:34.0839 2456 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
22:44:34.0839 2456 isapnp - ok
22:44:34.0886 2456 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
22:44:34.0886 2456 iScsiPrt - ok
22:44:34.0933 2456 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
22:44:34.0933 2456 kbdclass - ok
22:44:34.0964 2456 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
22:44:34.0964 2456 kbdhid - ok
22:44:34.0995 2456 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
22:44:34.0995 2456 KeyIso - ok
22:44:35.0011 2456 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
22:44:35.0027 2456 KSecDD - ok
22:44:35.0042 2456 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
22:44:35.0058 2456 KSecPkg - ok
22:44:35.0073 2456 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
22:44:35.0073 2456 ksthunk - ok
22:44:35.0120 2456 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
22:44:35.0120 2456 KtmRm - ok
22:44:35.0151 2456 L1C (655a5d8e80869781cce23760ada7e695) C:\Windows\system32\DRIVERS\L1C62x64.sys
22:44:35.0151 2456 L1C - ok
22:44:35.0198 2456 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
22:44:35.0198 2456 LanmanServer - ok
22:44:35.0229 2456 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
22:44:35.0229 2456 LanmanWorkstation - ok
22:44:35.0261 2456 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
22:44:35.0261 2456 lltdio - ok
22:44:35.0307 2456 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
22:44:35.0307 2456 lltdsvc - ok
22:44:35.0339 2456 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
22:44:35.0339 2456 lmhosts - ok
22:44:35.0385 2456 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys
22:44:35.0385 2456 LSI_FC - ok
22:44:35.0417 2456 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys
22:44:35.0417 2456 LSI_SAS - ok
22:44:35.0432 2456 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys
22:44:35.0432 2456 LSI_SAS2 - ok
22:44:35.0448 2456 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys
22:44:35.0463 2456 LSI_SCSI - ok
22:44:35.0479 2456 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
22:44:35.0479 2456 luafv - ok
22:44:35.0510 2456 LVRS64 (ef2be2f45d4f06410a3bd2a3467325b0) C:\Windows\system32\DRIVERS\lvrs64.sys
22:44:35.0526 2456 LVRS64 - ok
22:44:35.0713 2456 LVUVC64 (ac22f92c6078640fe8a70d662a2f3ad5) C:\Windows\system32\DRIVERS\lvuvc64.sys
22:44:35.0807 2456 LVUVC64 - ok
22:44:35.0916 2456 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
22:44:35.0916 2456 Mcx2Svc - ok
22:44:35.0963 2456 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys
22:44:35.0963 2456 megasas - ok
22:44:35.0994 2456 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys
22:44:35.0994 2456 MegaSR - ok
22:44:36.0025 2456 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
22:44:36.0025 2456 MMCSS - ok
22:44:36.0056 2456 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
22:44:36.0056 2456 Modem - ok
22:44:36.0072 2456 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
22:44:36.0072 2456 monitor - ok
22:44:36.0087 2456 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
22:44:36.0103 2456 mouclass - ok
22:44:36.0119 2456 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
22:44:36.0119 2456 mouhid - ok
22:44:36.0134 2456 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
22:44:36.0150 2456 mountmgr - ok
22:44:36.0228 2456 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
22:44:36.0228 2456 MozillaMaintenance - ok
22:44:36.0243 2456 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
22:44:36.0259 2456 mpio - ok
22:44:36.0275 2456 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
22:44:36.0275 2456 mpsdrv - ok
22:44:36.0321 2456 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
22:44:36.0337 2456 MpsSvc - ok
22:44:36.0368 2456 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
22:44:36.0368 2456 MRxDAV - ok
22:44:36.0399 2456 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
22:44:36.0415 2456 mrxsmb - ok
22:44:36.0446 2456 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:44:36.0446 2456 mrxsmb10 - ok
22:44:36.0477 2456 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:44:36.0477 2456 mrxsmb20 - ok
22:44:36.0493 2456 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
22:44:36.0493 2456 msahci - ok
22:44:36.0524 2456 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
22:44:36.0524 2456 msdsm - ok
22:44:36.0540 2456 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
22:44:36.0540 2456 MSDTC - ok
22:44:36.0571 2456 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
22:44:36.0571 2456 Msfs - ok
22:44:36.0587 2456 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
22:44:36.0587 2456 mshidkmdf - ok
22:44:36.0602 2456 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
22:44:36.0618 2456 msisadrv - ok
22:44:36.0649 2456 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
22:44:36.0649 2456 MSiSCSI - ok
22:44:36.0649 2456 msiserver - ok
22:44:36.0680 2456 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
22:44:36.0680 2456 MSKSSRV - ok
22:44:36.0696 2456 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
22:44:36.0696 2456 MSPCLOCK - ok
22:44:36.0727 2456 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
22:44:36.0727 2456 MSPQM - ok
22:44:36.0743 2456 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
22:44:36.0758 2456 MsRPC - ok
22:44:36.0774 2456 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
22:44:36.0789 2456 mssmbios - ok
22:44:36.0805 2456 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
22:44:36.0805 2456 MSTEE - ok
22:44:36.0821 2456 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys
22:44:36.0821 2456 MTConfig - ok
22:44:36.0852 2456 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
22:44:36.0852 2456 Mup - ok
22:44:36.0899 2456 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
22:44:36.0899 2456 napagent - ok
22:44:36.0945 2456 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
22:44:36.0961 2456 NativeWifiP - ok
22:44:37.0008 2456 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
22:44:37.0008 2456 NDIS - ok
22:44:37.0039 2456 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
22:44:37.0039 2456 NdisCap - ok
22:44:37.0070 2456 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
22:44:37.0070 2456 NdisTapi - ok
22:44:37.0101 2456 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
22:44:37.0101 2456 Ndisuio - ok
22:44:37.0133 2456 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
22:44:37.0133 2456 NdisWan - ok
22:44:37.0164 2456 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
22:44:37.0164 2456 NDProxy - ok
22:44:37.0179 2456 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
22:44:37.0195 2456 NetBIOS - ok
22:44:37.0211 2456 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
22:44:37.0211 2456 NetBT - ok
22:44:37.0257 2456 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
22:44:37.0257 2456 Netlogon - ok
22:44:37.0304 2456 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
22:44:37.0320 2456 Netman - ok
22:44:37.0398 2456 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:44:37.0398 2456 NetMsmqActivator - ok
22:44:37.0413 2456 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:44:37.0413 2456 NetPipeActivator - ok
22:44:37.0460 2456 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
22:44:37.0460 2456 netprofm - ok
22:44:37.0476 2456 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:44:37.0476 2456 NetTcpActivator - ok
22:44:37.0476 2456 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:44:37.0476 2456 NetTcpPortSharing - ok
22:44:37.0554 2456 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys
22:44:37.0554 2456 nfrd960 - ok
22:44:37.0585 2456 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
22:44:37.0585 2456 NlaSvc - ok
22:44:37.0616 2456 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
22:44:37.0616 2456 Npfs - ok
22:44:37.0632 2456 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
22:44:37.0632 2456 nsi - ok
22:44:37.0679 2456 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
22:44:37.0679 2456 nsiproxy - ok
22:44:37.0788 2456 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
22:44:37.0819 2456 Ntfs - ok
22:44:38.0022 2456 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
22:44:38.0022 2456 Null - ok
22:44:38.0069 2456 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
22:44:38.0069 2456 nvraid - ok
22:44:38.0084 2456 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
22:44:38.0084 2456 nvstor - ok
22:44:38.0115 2456 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
22:44:38.0131 2456 nv_agp - ok
22:44:38.0147 2456 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
22:44:38.0147 2456 ohci1394 - ok
22:44:38.0225 2456 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:44:38.0225 2456 ose - ok
22:44:38.0427 2456 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
22:44:38.0537 2456 osppsvc - ok
22:44:38.0693 2456 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
22:44:38.0693 2456 p2pimsvc - ok
22:44:38.0739 2456 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
22:44:38.0739 2456 p2psvc - ok
22:44:38.0786 2456 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys
22:44:38.0786 2456 Parport - ok
22:44:38.0849 2456 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
22:44:38.0849 2456 partmgr - ok
22:44:38.0880 2456 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
22:44:38.0880 2456 PcaSvc - ok
22:44:38.0911 2456 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
22:44:38.0927 2456 pci - ok
22:44:38.0942 2456 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
22:44:38.0942 2456 pciide - ok
22:44:38.0958 2456 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys
22:44:38.0958 2456 pcmcia - ok
22:44:38.0989 2456 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
22:44:38.0989 2456 pcw - ok
22:44:39.0051 2456 pdfcDispatcher - ok
22:44:39.0083 2456 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
22:44:39.0098 2456 PEAUTH - ok
22:44:39.0176 2456 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
22:44:39.0176 2456 PerfHost - ok
22:44:39.0317 2456 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
22:44:39.0348 2456 pla - ok
22:44:39.0395 2456 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
22:44:39.0395 2456 PlugPlay - ok
22:44:39.0426 2456 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
22:44:39.0426 2456 PNRPAutoReg - ok
22:44:39.0457 2456 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
22:44:39.0457 2456 PNRPsvc - ok
22:44:39.0504 2456 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
22:44:39.0519 2456 PolicyAgent - ok
22:44:39.0551 2456 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
22:44:39.0551 2456 Power - ok
22:44:39.0597 2456 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
22:44:39.0597 2456 PptpMiniport - ok
22:44:39.0629 2456 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys
22:44:39.0629 2456 Processor - ok
22:44:39.0675 2456 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
22:44:39.0691 2456 ProfSvc - ok
22:44:39.0722 2456 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
22:44:39.0722 2456 ProtectedStorage - ok
22:44:39.0753 2456 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
22:44:39.0753 2456 Psched - ok
22:44:39.0878 2456 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys
22:44:39.0925 2456 ql2300 - ok
22:44:40.0019 2456 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys
22:44:40.0019 2456 ql40xx - ok
22:44:40.0065 2456 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
22:44:40.0065 2456 QWAVE - ok
22:44:40.0097 2456 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
22:44:40.0097 2456 QWAVEdrv - ok
22:44:40.0128 2456 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
22:44:40.0128 2456 RasAcd - ok
22:44:40.0143 2456 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
22:44:40.0159 2456 RasAgileVpn - ok
22:44:40.0175 2456 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
22:44:40.0190 2456 RasAuto - ok
22:44:40.0206 2456 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
22:44:40.0206 2456 Rasl2tp - ok
22:44:40.0237 2456 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
22:44:40.0237 2456 RasMan - ok
22:44:40.0268 2456 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
22:44:40.0268 2456 RasPppoe - ok
22:44:40.0299 2456 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
22:44:40.0299 2456 RasSstp - ok
22:44:40.0331 2456 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
22:44:40.0331 2456 rdbss - ok
22:44:40.0362 2456 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\drivers\rdpbus.sys
22:44:40.0362 2456 rdpbus - ok
22:44:40.0377 2456 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
22:44:40.0377 2456 RDPCDD - ok
22:44:40.0424 2456 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
22:44:40.0424 2456 RDPENCDD - ok
22:44:40.0455 2456 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
22:44:40.0455 2456 RDPREFMP - ok
22:44:40.0502 2456 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
22:44:40.0502 2456 RDPWD - ok
22:44:40.0533 2456 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
22:44:40.0549 2456 rdyboost - ok
22:44:40.0565 2456 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
22:44:40.0580 2456 RemoteAccess - ok
22:44:40.0611 2456 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
22:44:40.0611 2456 RemoteRegistry - ok
22:44:40.0674 2456 RoxioNow Service (085d18c71ab2611a3d61528132b6501e) C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe
22:44:40.0674 2456 RoxioNow Service - ok
22:44:40.0705 2456 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
22:44:40.0705 2456 RpcEptMapper - ok
22:44:40.0736 2456 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
22:44:40.0736 2456 RpcLocator - ok
22:44:40.0767 2456 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
22:44:40.0783 2456 RpcSs - ok
22:44:40.0845 2456 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
22:44:40.0845 2456 rspndr - ok
22:44:40.0892 2456 RTL8187B (c979ab0ecae51a091770a54cf64d791b) C:\Windows\system32\DRIVERS\wg111v3.sys
22:44:40.0908 2456 RTL8187B - ok
22:44:40.0939 2456 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
22:44:40.0939 2456 SamSs - ok
22:44:41.0001 2456 SASDIFSV (3289766038db2cb14d07dc84392138d5) C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
22:44:41.0001 2456 SASDIFSV - ok
22:44:41.0017 2456 SASKUTIL (58a38e75f3316a83c23df6173d41f2b5) C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
22:44:41.0017 2456 SASKUTIL - ok
22:44:41.0048 2456 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
22:44:41.0064 2456 sbp2port - ok
22:44:41.0095 2456 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
22:44:41.0095 2456 SCardSvr - ok
22:44:41.0126 2456 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
22:44:41.0126 2456 scfilter - ok
22:44:41.0173 2456 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
22:44:41.0204 2456 Schedule - ok
22:44:41.0235 2456 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
22:44:41.0235 2456 SCPolicySvc - ok
22:44:41.0267 2456 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
22:44:41.0267 2456 SDRSVC - ok
22:44:41.0313 2456 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
22:44:41.0329 2456 secdrv - ok
22:44:41.0345 2456 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
22:44:41.0345 2456 seclogon - ok
22:44:41.0376 2456 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
22:44:41.0376 2456 SENS - ok
22:44:41.0407 2456 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
22:44:41.0407 2456 SensrSvc - ok
22:44:41.0438 2456 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\drivers\serenum.sys
22:44:41.0438 2456 Serenum - ok
22:44:41.0469 2456 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\drivers\serial.sys
22:44:41.0469 2456 Serial - ok
22:44:41.0501 2456 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys
22:44:41.0501 2456 sermouse - ok
22:44:41.0547 2456 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
22:44:41.0547 2456 SessionEnv - ok
22:44:41.0563 2456 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
22:44:41.0563 2456 sffdisk - ok
22:44:41.0579 2456 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
22:44:41.0579 2456 sffp_mmc - ok
22:44:41.0594 2456 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
22:44:41.0594 2456 sffp_sd - ok
22:44:41.0610 2456 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys
22:44:41.0610 2456 sfloppy - ok
22:44:41.0672 2456 Sftfs (c6cc9297bd53e5229653303e556aa539) C:\Windows\system32\DRIVERS\Sftfslh.sys
22:44:41.0688 2456 Sftfs - ok
22:44:41.0766 2456 sftlist (13693b6354dd6e72dc5131da7d764b90) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
22:44:41.0781 2456 sftlist - ok
22:44:41.0813 2456 Sftplay (390aa7bc52cee43f6790cdea1e776703) C:\Windows\system32\DRIVERS\Sftplaylh.sys
22:44:41.0813 2456 Sftplay - ok
22:44:41.0828 2456 Sftredir (617e29a0b0a2807466560d4c4e338d3e) C:\Windows\system32\DRIVERS\Sftredirlh.sys
22:44:41.0828 2456 Sftredir - ok
22:44:41.0859 2456 Sftvol (8f571f016fa1976f445147e9e6c8ae9b) C:\Windows\system32\DRIVERS\Sftvollh.sys
22:44:41.0859 2456 Sftvol - ok
22:44:41.0891 2456 sftvsa (c3cddd18f43d44ab713cf8c4916f7696) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
22:44:41.0891 2456 sftvsa - ok
22:44:41.0922 2456 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
22:44:41.0937 2456 SharedAccess - ok
22:44:41.0984 2456 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
22:44:41.0984 2456 ShellHWDetection - ok
22:44:42.0000 2456 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys
22:44:42.0015 2456 SiSRaid2 - ok
22:44:42.0031 2456 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys
22:44:42.0047 2456 SiSRaid4 - ok
22:44:42.0093 2456 SkypeUpdate (8c5477eb1c03ca76cd8eb66a610a9e90) C:\Program Files (x86)\Skype\Updater\Updater.exe
22:44:42.0093 2456 SkypeUpdate - ok
22:44:42.0125 2456 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
22:44:42.0125 2456 Smb - ok
22:44:42.0156 2456 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
22:44:42.0171 2456 SNMPTRAP - ok
22:44:42.0187 2456 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
22:44:42.0187 2456 spldr - ok
22:44:42.0218 2456 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
22:44:42.0234 2456 Spooler - ok
22:44:42.0374 2456 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
22:44:42.0452 2456 sppsvc - ok
22:44:42.0546 2456 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
22:44:42.0546 2456 sppuinotify - ok
22:44:42.0593 2456 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
22:44:42.0608 2456 srv - ok
22:44:42.0624 2456 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
22:44:42.0639 2456 srv2 - ok
22:44:42.0655 2456 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
22:44:42.0655 2456 srvnet - ok
22:44:42.0686 2456 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
22:44:42.0702 2456 SSDPSRV - ok
22:44:42.0717 2456 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
22:44:42.0717 2456 SstpSvc - ok
22:44:42.0733 2456 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys
22:44:42.0749 2456 stexstor - ok
22:44:42.0780 2456 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
22:44:42.0795 2456 stisvc - ok
22:44:42.0827 2456 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
22:44:42.0827 2456 swenum - ok
22:44:42.0858 2456 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
22:44:42.0858 2456 swprv - ok
22:44:42.0936 2456 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
22:44:42.0983 2456 SysMain - ok
22:44:43.0061 2456 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
22:44:43.0061 2456 TabletInputService - ok
22:44:43.0076 2456 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
22:44:43.0092 2456 TapiSrv - ok
22:44:43.0107 2456 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
22:44:43.0107 2456 TBS - ok
22:44:43.0232 2456 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
22:44:43.0263 2456 Tcpip - ok
22:44:43.0388 2456 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
22:44:43.0404 2456 TCPIP6 - ok
22:44:43.0497 2456 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
22:44:43.0497 2456 tcpipreg - ok
22:44:43.0513 2456 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
22:44:43.0513 2456 TDPIPE - ok
22:44:43.0544 2456 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
22:44:43.0544 2456 TDTCP - ok
22:44:43.0575 2456 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
22:44:43.0575 2456 tdx - ok
22:44:43.0607 2456 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
22:44:43.0607 2456 TermDD - ok
22:44:43.0653 2456 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
22:44:43.0669 2456 TermService - ok
22:44:43.0685 2456 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
22:44:43.0685 2456 Themes - ok
22:44:43.0716 2456 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
22:44:43.0716 2456 THREADORDER - ok
22:44:43.0731 2456 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
22:44:43.0731 2456 TrkWks - ok
22:44:43.0778 2456 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
22:44:43.0778 2456 TrustedInstaller - ok
22:44:43.0809 2456 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
22:44:43.0809 2456 tssecsrv - ok
22:44:43.0841 2456 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
22:44:43.0841 2456 TsUsbFlt - ok
22:44:43.0856 2456 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\Windows\system32\drivers\TsUsbGD.sys
22:44:43.0856 2456 TsUsbGD - ok
22:44:43.0887 2456 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
22:44:43.0887 2456 tunnel - ok
22:44:43.0903 2456 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys
22:44:43.0903 2456 uagp35 - ok
22:44:43.0934 2456 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
22:44:43.0934 2456 udfs - ok
22:44:43.0965 2456 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
22:44:43.0965 2456 UI0Detect - ok
22:44:43.0997 2456 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
22:44:43.0997 2456 uliagpkx - ok
22:44:44.0012 2456 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
22:44:44.0028 2456 umbus - ok
22:44:44.0043 2456 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys
22:44:44.0043 2456 UmPass - ok
22:44:44.0121 2456 UMVPFSrv (927754abf077aeb5504be4e0f2c60c1b) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
22:44:44.0121 2456 UMVPFSrv - ok
22:44:44.0168 2456 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
22:44:44.0168 2456 upnphost - ok
22:44:44.0215 2456 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys
22:44:44.0215 2456 usbaudio - ok
22:44:44.0246 2456 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
22:44:44.0246 2456 usbccgp - ok
22:44:44.0277 2456 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
22:44:44.0293 2456 usbcir - ok
22:44:44.0309 2456 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
22:44:44.0309 2456 usbehci - ok
22:44:44.0324 2456 usbfilter (573d192e268f0c5b486b7e96f661e538) C:\Windows\system32\drivers\usbfilter.sys
22:44:44.0324 2456 usbfilter - ok
22:44:44.0355 2456 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
22:44:44.0371 2456 usbhub - ok
22:44:44.0371 2456 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\DRIVERS\usbohci.sys
22:44:44.0371 2456 usbohci - ok
22:44:44.0402 2456 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
22:44:44.0418 2456 usbprint - ok
22:44:44.0433 2456 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
22:44:44.0433 2456 usbscan - ok
22:44:44.0449 2456 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:44:44.0449 2456 USBSTOR - ok
22:44:44.0480 2456 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
22:44:44.0480 2456 usbuhci - ok
22:44:44.0511 2456 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
22:44:44.0511 2456 UxSms - ok
22:44:44.0543 2456 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
22:44:44.0543 2456 VaultSvc - ok
22:44:44.0574 2456 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
22:44:44.0574 2456 vdrvroot - ok
22:44:44.0605 2456 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
22:44:44.0621 2456 vds - ok
22:44:44.0636 2456 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
22:44:44.0636 2456 vga - ok
22:44:44.0652 2456 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
22:44:44.0652 2456 VgaSave - ok
22:44:44.0683 2456 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
22:44:44.0683 2456 vhdmp - ok
22:44:44.0699 2456 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
22:44:44.0699 2456 viaide - ok
22:44:44.0730 2456 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
22:44:44.0730 2456 volmgr - ok
22:44:44.0745 2456 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
22:44:44.0761 2456 volmgrx - ok
22:44:44.0777 2456 volsnap (df8126bd41180351a093a3ad2fc8903b) C:\Windows\system32\drivers\volsnap.sys
22:44:44.0777 2456 volsnap - ok
22:44:44.0808 2456 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys
22:44:44.0808 2456 vsmraid - ok
22:44:44.0886 2456 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
22:44:44.0917 2456 VSS - ok
22:44:45.0011 2456 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
22:44:45.0011 2456 vwifibus - ok
22:44:45.0057 2456 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
22:44:45.0057 2456 W32Time - ok
22:44:45.0089 2456 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys
22:44:45.0089 2456 WacomPen - ok
22:44:45.0104 2456 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
22:44:45.0120 2456 WANARP - ok
22:44:45.0120 2456 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
22:44:45.0135 2456 Wanarpv6 - ok
22:44:45.0213 2456 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
22:44:45.0245 2456 WatAdminSvc - ok
22:44:45.0323 2456 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
22:44:45.0354 2456 wbengine - ok
22:44:45.0432 2456 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
22:44:45.0432 2456 WbioSrvc - ok
22:44:45.0463 2456 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
22:44:45.0463 2456 wcncsvc - ok
22:44:45.0479 2456 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
22:44:45.0494 2456 WcsPlugInService - ok
22:44:45.0525 2456 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys
22:44:45.0525 2456 Wd - ok
22:44:45.0557 2456 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
22:44:45.0572 2456 Wdf01000 - ok
22:44:45.0588 2456 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
22:44:45.0588 2456 WdiServiceHost - ok
22:44:45.0603 2456 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
22:44:45.0603 2456 WdiSystemHost - ok
22:44:45.0635 2456 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
22:44:45.0635 2456 WebClient - ok
22:44:45.0650 2456 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
22:44:45.0666 2456 Wecsvc - ok
22:44:45.0681 2456 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
22:44:45.0681 2456 wercplsupport - ok
22:44:45.0728 2456 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
22:44:45.0728 2456 WerSvc - ok
22:44:45.0759 2456 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
22:44:45.0775 2456 WfpLwf - ok
22:44:45.0775 2456 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
22:44:45.0791 2456 WIMMount - ok
22:44:45.0806 2456 WinDefend - ok
22:44:45.0822 2456 WinHttpAutoProxySvc - ok
22:44:45.0869 2456 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
22:44:45.0869 2456 Winmgmt - ok
22:44:45.0962 2456 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
22:44:46.0009 2456 WinRM - ok
22:44:46.0103 2456 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
22:44:46.0118 2456 Wlansvc - ok
22:44:46.0181 2456 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
22:44:46.0181 2456 wlcrasvc - ok
22:44:46.0290 2456 wlidsvc (2bacd71123f42cea603f4e205e1ae337) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:44:46.0337 2456 wlidsvc - ok
22:44:46.0430 2456 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
22:44:46.0430 2456 WmiAcpi - ok
22:44:46.0477 2456 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
22:44:46.0477 2456 wmiApSrv - ok
22:44:46.0508 2456 WMPNetworkSvc - ok
22:44:46.0524 2456 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
22:44:46.0539 2456 WPCSvc - ok
22:44:46.0555 2456 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
22:44:46.0555 2456 WPDBusEnum - ok
22:44:46.0555 2456 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
22:44:46.0571 2456 ws2ifsl - ok
22:44:46.0586 2456 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
22:44:46.0586 2456 wscsvc - ok
22:44:46.0586 2456 WSearch - ok
22:44:46.0711 2456 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
22:44:46.0758 2456 wuauserv - ok
22:44:46.0836 2456 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
22:44:46.0851 2456 WudfPf - ok
22:44:46.0851 2456 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
22:44:46.0867 2456 WUDFRd - ok
22:44:46.0883 2456 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
22:44:46.0883 2456 wudfsvc - ok
22:44:46.0898 2456 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
22:44:46.0914 2456 WwanSvc - ok
22:44:46.0945 2456 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
22:44:47.0195 2456 \Device\Harddisk0\DR0 - ok
22:44:47.0195 2456 Boot (0x1200) (211205f5a197701062beb3f0b29b0110) \Device\Harddisk0\DR0\Partition0
22:44:47.0210 2456 \Device\Harddisk0\DR0\Partition0 - ok
22:44:47.0226 2456 Boot (0x1200) (9f2908c10b3b05ad457c21b4e5c14ba3) \Device\Harddisk0\DR0\Partition1
22:44:47.0241 2456 \Device\Harddisk0\DR0\Partition1 - ok
22:44:47.0273 2456 Boot (0x1200) (c6040d547e29f5dc4c1cef3a90cf4432) \Device\Harddisk0\DR0\Partition2
22:44:47.0273 2456 \Device\Harddisk0\DR0\Partition2 - ok
22:44:47.0273 2456 ============================================================
22:44:47.0273 2456 Scan finished
22:44:47.0273 2456 ============================================================
22:44:47.0288 2072 Detected object count: 0
22:44:47.0288 2072 Actual detected object count: 0



aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-07-10 22:51:35
-----------------------------
22:51:35.917 OS Version: Windows x64 6.1.7601 Service Pack 1
22:51:35.917 Number of processors: 2 586 0x200
22:51:35.917 ComputerName: MEKAP UserName: meka
22:51:40.379 Initialize success
22:51:41.252 AVAST engine defs: 12071001
22:52:10.846 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\0000005f
22:52:10.861 Disk 0 Vendor: ST350041 HP63 Size: 476940MB BusType: 11
22:52:10.892 Disk 0 MBR read successfully
22:52:10.892 Disk 0 MBR scan
22:52:11.220 Disk 0 Windows 7 default MBR code
22:52:11.220 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
22:52:11.501 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 465198 MB offset 206848
22:52:11.563 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 11640 MB offset 952932352
22:52:11.750 Disk 0 scanning C:\Windows\system32\drivers
22:52:24.574 Service scanning
22:52:41.281 Modules scanning
22:52:41.281 Disk 0 trace - called modules:
22:52:41.297 ntoskrnl.exe CLASSPNP.SYS disk.sys amd_xata.sys storport.sys hal.dll amd_sata.sys
22:52:41.297 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80030cd410]
22:52:41.297 3 CLASSPNP.SYS[fffff8800165143f] -> nt!IofCallDriver -> [0xfffffa8002fa3040]
22:52:41.297 5 amd_xata.sys[fffff88001146a1d] -> nt!IofCallDriver -> \Device\0000005f[0xfffffa8001ffd180]
22:52:43.730 AVAST engine scan C:\Windows
22:52:46.055 AVAST engine scan C:\Windows\system32
22:55:45.205 AVAST engine scan C:\Windows\system32\drivers
22:56:08.871 AVAST engine scan C:\Users\meka
23:01:29.997 AVAST engine scan C:\ProgramData
23:02:04.863 Scan finished successfully
00:37:29.209 Disk 0 MBR has been saved successfully to "C:\Users\meka\Documents\MBR.dat"
00:37:29.225 The log file has been saved successfully to "C:\Users\meka\Documents\aswMBR.txt"


C:\$RECYCLE.BIN\S-1-5-21-766599681-2106150175-1274288183-1000\$R88NV5S.exe a variant of Win32/InstallCore.D application
C:\$RECYCLE.BIN\S-1-5-21-766599681-2106150175-1274288183-1000\$R9TJ2TN.exe a variant of Win32/InstallCore.D application
C:\$RECYCLE.BIN\S-1-5-21-766599681-2106150175-1274288183-1000\$RJ8V0WM.exe a variant of Win32/InstallCore.D application
C:\Users\meka\AppData\Local\Temp\jar_cache1341621745340017466.tmp Java/Exploit.Agent.NAV trojan
C:\Users\meka\AppData\Local\Temp\ICReinstall\cnet2_4free_video_converter_exe.exe a variant of Win32/InstallCore.D application
C:\Users\meka\AppData\Local\Temp\ICReinstall\cnet2_avc-free_exe.exe a variant of Win32/InstallCore.D application
C:\Users\meka\AppData\Local\Temp\ICReinstall\cnet2_FreeMouseAutoClickerSetup_exe.exe a variant of Win32/InstallCore.D application

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:08 PM

Posted 11 July 2012 - 08:16 AM

Reboot to normal mode

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log


Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

#5 mekap04

mekap04
  • Topic Starter

  • Members
  • 49 posts
  • OFFLINE
  •  
  • Local time:06:08 PM

Posted 11 July 2012 - 01:11 PM

Malwarebytes didnt find anything but I'm sure there is a little trace of this bug on the computer although I don't get those sudden popups now. Still got the harddrive error thingy.

MiniToolBox by Farbar Version: 25-06-2012
Ran by meka (administrator) on 11-07-2012 at 14:09:00
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

NETGEAR WG111v3 54Mbps Wireless USB 2.0 Adapter = Wireless Network Connection (Connected)
Atheros AR8152/8158 PCI-E Fast Ethernet Controller (NDIS 6.20) = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : mekap
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : NETGEAR WG111v3 54Mbps Wireless USB 2.0 Adapter
Physical Address. . . . . . . . . : 00-22-3F-F0-97-21
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::8592:1e82:f066:c7df%14(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.0.12(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Wednesday, July 11, 2012 1:07:18 PM
Lease Expires . . . . . . . . . . : Wednesday, July 11, 2012 3:07:22 PM
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DHCPv6 IAID . . . . . . . . . . . : 335553087
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-FC-C9-C2-38-60-77-1E-F5-AC
DNS Servers . . . . . . . . . . . : 24.178.162.3
66.189.0.100
24.217.201.67
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : sgt.automation.net
Description . . . . . . . . . . . : Atheros AR8152/8158 PCI-E Fast Ethernet Controller (NDIS 6.20)
Physical Address. . . . . . . . . : 38-60-77-1E-F5-AC
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{F40AF6E4-2272-41BA-A6F9-4A6E413CBC12}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 9:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 12:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Teredo Tunneling Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:109d:22b8:9fdb:bc28(Preferred)
Link-local IPv6 Address . . . . . : fe80::109d:22b8:9fdb:bc28%12(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: vip01spbgsc.spbg.sc.charter.com
Address: 24.178.162.3

Name: google.com
Addresses: 2607:f8b0:4002:802::1001
74.125.45.101
74.125.45.102
74.125.45.113
74.125.45.100
74.125.45.138
74.125.45.139


Pinging google.com [74.125.139.138] with 32 bytes of data:
Reply from 74.125.139.138: bytes=32 time=16ms TTL=47
Reply from 74.125.139.138: bytes=32 time=15ms TTL=47

Ping statistics for 74.125.139.138:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 15ms, Maximum = 16ms, Average = 15ms
Server: vip01spbgsc.spbg.sc.charter.com
Address: 24.178.162.3

Name: yahoo.com
Addresses: 209.191.122.70
72.30.38.140
98.139.183.24


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=135ms TTL=49
Reply from 98.139.183.24: bytes=32 time=52ms TTL=49

Ping statistics for 98.139.183.24:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 52ms, Maximum = 135ms, Average = 93ms
Server: vip01spbgsc.spbg.sc.charter.com
Address: 24.178.162.3

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
14...00 22 3f f0 97 21 ......NETGEAR WG111v3 54Mbps Wireless USB 2.0 Adapter
13...38 60 77 1e f5 ac ......Atheros AR8152/8158 PCI-E Fast Ethernet Controller (NDIS 6.20)
1...........................Software Loopback Interface 1
15...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
11...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
12...00 00 00 00 00 00 00 e0 Microsoft Teredo Tunneling Adapter
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.12 30
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.0.0 255.255.255.0 On-link 192.168.0.12 286
192.168.0.12 255.255.255.255 On-link 192.168.0.12 286
192.168.0.255 255.255.255.255 On-link 192.168.0.12 286
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.0.12 286
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.0.12 286
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
12 58 ::/0 On-link
1 306 ::1/128 On-link
12 58 2001::/32 On-link
12 306 2001:0:4137:9e76:109d:22b8:9fdb:bc28/128
On-link
14 286 fe80::/64 On-link
12 306 fe80::/64 On-link
12 306 fe80::109d:22b8:9fdb:bc28/128
On-link
14 286 fe80::8592:1e82:f066:c7df/128
On-link
1 306 ff00::/8 On-link
12 306 ff00::/8 On-link
14 286 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (07/09/2012 01:40:30 AM) (Source: Application Error) (User: )
Description: Faulting application name: wmprph.exe, version: 12.0.7600.16385, time stamp: 0x4a5bd018
Faulting module name: jscript.dll, version: 5.8.7601.16982, time stamp: 0x4fb5abf5
Exception code: 0xc000041d
Fault offset: 0x0000000000014184
Faulting process id: 0x510
Faulting application start time: 0xwmprph.exe0
Faulting application path: wmprph.exe1
Faulting module path: wmprph.exe2
Report Id: wmprph.exe3

Error: (07/09/2012 01:40:18 AM) (Source: Application Error) (User: )
Description: Faulting application name: wmprph.exe, version: 12.0.7600.16385, time stamp: 0x4a5bd018
Faulting module name: jscript.dll, version: 5.8.7601.16982, time stamp: 0x4fb5abf5
Exception code: 0xc0000005
Fault offset: 0x0000000000014184
Faulting process id: 0x510
Faulting application start time: 0xwmprph.exe0
Faulting application path: wmprph.exe1
Faulting module path: wmprph.exe2
Report Id: wmprph.exe3

Error: (07/09/2012 01:39:41 AM) (Source: Application Error) (User: )
Description: Faulting application name: wmprph.exe, version: 12.0.7600.16385, time stamp: 0x4a5bd018
Faulting module name: ntdll.dll, version: 6.1.7601.17725, time stamp: 0x4ec4aa8e
Exception code: 0xc0000005
Fault offset: 0x000000000004e4b4
Faulting process id: 0x510
Faulting application start time: 0xwmprph.exe0
Faulting application path: wmprph.exe1
Faulting module path: wmprph.exe2
Report Id: wmprph.exe3

Error: (07/05/2012 11:24:13 AM) (Source: Application Hang) (User: )
Description: The program firefox.exe version 13.0.1.4548 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1898

Start Time: 01cd5a8bdc485017

Termination Time: 148

Application Path: C:\Program Files (x86)\Mozilla Firefox\firefox.exe

Report Id: 759f3f8c-c6b5-11e1-bc04-3860771ef5ac

Error: (07/04/2012 04:33:19 AM) (Source: Application Hang) (User: )
Description: The program firefox.exe version 13.0.1.4548 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1190

Start Time: 01cd5971c1fc5eda

Termination Time: 55

Application Path: C:\Program Files (x86)\Mozilla Firefox\firefox.exe

Report Id: b0320c48-c5b2-11e1-bc04-3860771ef5ac

Error: (06/30/2012 10:34:50 AM) (Source: Application Hang) (User: )
Description: The program iexplore.exe version 9.0.8112.16446 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 15e0

Start Time: 01cd56cd1001f855

Termination Time: 39

Application Path: C:\Program Files (x86)\Internet Explorer\iexplore.exe

Report Id:

Error: (06/28/2012 06:07:15 PM) (Source: Microsoft-Windows-RestartManager) (User: mekap)mekap
Description: Application or service 'Windows Live Movie Maker' could not be shut down.

Error: (06/27/2012 03:05:18 AM) (Source: Application Error) (User: )
Description: Faulting application name: FlashPlayerPlugin_11_3_300_257.exe, version: 11.3.300.257, time stamp: 0x4fc82063
Faulting module name: NPSWF32_11_3_300_257.dll, version: 11.3.300.257, time stamp: 0x4fc821fc
Exception code: 0xc0000005
Fault offset: 0x0016b4bd
Faulting process id: 0x22e4
Faulting application start time: 0xFlashPlayerPlugin_11_3_300_257.exe0
Faulting application path: FlashPlayerPlugin_11_3_300_257.exe1
Faulting module path: FlashPlayerPlugin_11_3_300_257.exe2
Report Id: FlashPlayerPlugin_11_3_300_257.exe3

Error: (06/26/2012 10:16:16 PM) (Source: Application Error) (User: )
Description: Faulting application name: FlashPlayerPlugin_11_3_300_257.exe, version: 11.3.300.257, time stamp: 0x4fc82063
Faulting module name: NPSWF32_11_3_300_257.dll, version: 11.3.300.257, time stamp: 0x4fc821fc
Exception code: 0xc0000005
Fault offset: 0x0016b4a9
Faulting process id: 0x13e8
Faulting application start time: 0xFlashPlayerPlugin_11_3_300_257.exe0
Faulting application path: FlashPlayerPlugin_11_3_300_257.exe1
Faulting module path: FlashPlayerPlugin_11_3_300_257.exe2
Report Id: FlashPlayerPlugin_11_3_300_257.exe3

Error: (06/25/2012 04:46:16 PM) (Source: Application Error) (User: )
Description: Faulting application name: FlashPlayerPlugin_11_3_300_257.exe, version: 11.3.300.257, time stamp: 0x4fc82063
Faulting module name: NPSWF32_11_3_300_257.dll, version: 11.3.300.257, time stamp: 0x4fc821fc
Exception code: 0xc0000005
Fault offset: 0x0016b4a9
Faulting process id: 0x1204
Faulting application start time: 0xFlashPlayerPlugin_11_3_300_257.exe0
Faulting application path: FlashPlayerPlugin_11_3_300_257.exe1
Faulting module path: FlashPlayerPlugin_11_3_300_257.exe2
Report Id: FlashPlayerPlugin_11_3_300_257.exe3


System errors:
=============
Error: (07/11/2012 01:02:01 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (07/11/2012 01:02:01 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (07/11/2012 01:02:01 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (07/11/2012 00:59:53 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (07/11/2012 00:59:53 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (07/11/2012 00:59:53 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (07/11/2012 00:54:53 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (07/11/2012 00:54:53 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (07/11/2012 00:54:53 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (07/11/2012 00:52:47 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068


Microsoft Office Sessions:
=========================
Error: (07/09/2012 01:40:30 AM) (Source: Application Error)(User: )
Description: wmprph.exe12.0.7600.163854a5bd018jscript.dll5.8.7601.169824fb5abf5c000041d000000000001418451001cd5d9536cf0a07C:\Program Files\Windows Media Player\wmprph.exeC:\Windows\System32\jscript.dll975de6f3-c988-11e1-bc04-3860771ef5ac

Error: (07/09/2012 01:40:18 AM) (Source: Application Error)(User: )
Description: wmprph.exe12.0.7600.163854a5bd018jscript.dll5.8.7601.169824fb5abf5c0000005000000000001418451001cd5d9536cf0a07C:\Program Files\Windows Media Player\wmprph.exeC:\Windows\System32\jscript.dll909ed049-c988-11e1-bc04-3860771ef5ac

Error: (07/09/2012 01:39:41 AM) (Source: Application Error)(User: )
Description: wmprph.exe12.0.7600.163854a5bd018ntdll.dll6.1.7601.177254ec4aa8ec0000005000000000004e4b451001cd5d9536cf0a07C:\Program Files\Windows Media Player\wmprph.exeC:\Windows\SYSTEM32\ntdll.dll7a4470bf-c988-11e1-bc04-3860771ef5ac

Error: (07/05/2012 11:24:13 AM) (Source: Application Hang)(User: )
Description: firefox.exe13.0.1.4548189801cd5a8bdc485017148C:\Program Files (x86)\Mozilla Firefox\firefox.exe759f3f8c-c6b5-11e1-bc04-3860771ef5ac

Error: (07/04/2012 04:33:19 AM) (Source: Application Hang)(User: )
Description: firefox.exe13.0.1.4548119001cd5971c1fc5eda55C:\Program Files (x86)\Mozilla Firefox\firefox.exeb0320c48-c5b2-11e1-bc04-3860771ef5ac

Error: (06/30/2012 10:34:50 AM) (Source: Application Hang)(User: )
Description: iexplore.exe9.0.8112.1644615e001cd56cd1001f85539C:\Program Files (x86)\Internet Explorer\iexplore.exe

Error: (06/28/2012 06:07:15 PM) (Source: Microsoft-Windows-RestartManager)(User: mekap)mekap
Description: 1C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.exeWindows Live Movie Maker011171680

Error: (06/27/2012 03:05:18 AM) (Source: Application Error)(User: )
Description: FlashPlayerPlugin_11_3_300_257.exe11.3.300.2574fc82063NPSWF32_11_3_300_257.dll11.3.300.2574fc821fcc00000050016b4bd22e401cd540ad7e7e160C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_257.exeC:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_257.dll732e7e88-c026-11e1-aff5-3860771ef5ac

Error: (06/26/2012 10:16:16 PM) (Source: Application Error)(User: )
Description: FlashPlayerPlugin_11_3_300_257.exe11.3.300.2574fc82063NPSWF32_11_3_300_257.dll11.3.300.2574fc821fcc00000050016b4a913e801cd53d58af7e184C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_257.exeC:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_257.dll128a16b3-bffe-11e1-aff5-3860771ef5ac

Error: (06/25/2012 04:46:16 PM) (Source: Application Error)(User: )
Description: FlashPlayerPlugin_11_3_300_257.exe11.3.300.2574fc82063NPSWF32_11_3_300_257.dll11.3.300.2574fc821fcc00000050016b4a9120401cd52db9df1a23eC:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_257.exeC:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_257.dllce866d27-bf06-11e1-aff5-3860771ef5ac


=========================== Installed Programs ============================

Adobe AIR (Version: 2.6.0.19120)
Adobe Flash Player 11 ActiveX (Version: 11.3.300.257)
Adobe Flash Player 11 Plugin (Version: 11.3.300.262)
Agatha Christie - Peril at End House (Version: 2.2.0.95)
AMD APP SDK Runtime (Version: 2.4.650.9)
AMD Media Foundation Decoders (Version: 1.0.60512.1804)
AMD VISION Engine Control Center (Version: 2011.0512.1812.30806)
ATI Catalyst Install Manager (Version: 3.0.829.0)
avast! Free Antivirus (Version: 7.0.1426.0)
Bejeweled 3 (Version: 2.2.0.97)
Blackhawk Striker 2 (Version: 2.2.0.95)
Blasterball 3 (Version: 2.2.0.97)
Blio (Version: 2.2.6699)
Bounce Symphony (Version: 2.2.0.97)
Cake Mania (Version: 2.2.0.95)
CameraHelperMsi (Version: 13.30.1395.0)
CamStudio Lossless Codec
CamStudio OSS Desktop Recorder (Version: 2.6 Beta r294)
Canon Easy-PhotoPrint EX
Canon MP Navigator EX 4.0
Canon MP280 series MP Drivers
Canon MP280 series User Registration
Canon My Printer
Canon Solution Menu EX
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (Version: 2011.0512.1812.30806)
Catalyst Control Center InstallProxy (Version: 2011.0512.1812.30806)
Catalyst Control Center Localization All (Version: 2011.0512.1812.30806)
ccc-utility64 (Version: 2011.0512.1812.30806)
CCC Help Chinese Standard (Version: 2011.0512.1811.30806)
CCC Help Chinese Traditional (Version: 2011.0512.1811.30806)
CCC Help Czech (Version: 2011.0512.1811.30806)
CCC Help Danish (Version: 2011.0512.1811.30806)
CCC Help Dutch (Version: 2011.0512.1811.30806)
CCC Help English (Version: 2011.0512.1811.30806)
CCC Help Finnish (Version: 2011.0512.1811.30806)
CCC Help French (Version: 2011.0512.1811.30806)
CCC Help German (Version: 2011.0512.1811.30806)
CCC Help Greek (Version: 2011.0512.1811.30806)
CCC Help Hungarian (Version: 2011.0512.1811.30806)
CCC Help Italian (Version: 2011.0512.1811.30806)
CCC Help Japanese (Version: 2011.0512.1811.30806)
CCC Help Korean (Version: 2011.0512.1811.30806)
CCC Help Norwegian (Version: 2011.0512.1811.30806)
CCC Help Polish (Version: 2011.0512.1811.30806)
CCC Help Portuguese (Version: 2011.0512.1811.30806)
CCC Help Russian (Version: 2011.0512.1811.30806)
CCC Help Spanish (Version: 2011.0512.1811.30806)
CCC Help Swedish (Version: 2011.0512.1811.30806)
CCC Help Thai (Version: 2011.0512.1811.30806)
CCC Help Turkish (Version: 2011.0512.1811.30806)
Chronicles of Albian (Version: 2.2.0.95)
Chuzzle Deluxe (Version: 2.2.0.95)
Cradle of Rome 2 (Version: 2.2.0.95)
D3DX10 (Version: 15.4.2368.0902)
erLT (Version: 1.20.138.34)
ESET Online Scanner v3
Farm Frenzy (Version: 2.2.0.95)
FATE (Version: 2.2.0.97)
GIMP 2.8.0 (Version: 2.8.0)
Google Chrome (Version: 20.0.1132.47)
GoToMeeting 5.0.0.799 (Version: 5.0.0.799)
Governor of Poker 2 Premium Edition (Version: 2.2.0.95)
Hewlett-Packard ACLM.NET v1.1.1.0 (Version: 1.00.0000)
HP Auto (Version: 1.0.12935.3667)
HP Client Services (Version: 1.1.12938.3539)
HP Customer Experience Enhancements (Version: 6.0.1.7)
HP Games (Version: 1.0.2.5)
HP LinkUp (Version: 2.01.028)
HP MovieStore (Version: 1.0.057)
HP MovieStore (Version: 2.0)
HP Odometer (Version: 2.10.0000)
HP Setup (Version: 8.7.4747.3786)
HP Setup Manager (Version: 1.1.13880.3792)
HP Support Assistant (Version: 6.0.4.1)
HP Support Information (Version: 10.1.1000)
HP Update (Version: 5.002.003.003)
HP Vision Hardware Diagnostics (Version: 2.9.0.0)
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 31 (Version: 6.0.310)
Jewel Quest: The Sleepless Star - Collector's Edition (Version: 2.2.0.95)
Junk Mail filter update (Version: 15.4.3502.0922)
Kobo (Version: 1.6)
LabelPrint (Version: 2.5.3925)
Logitech Webcam Software (Version: 2.30)
LWS Facebook (Version: 13.30.1346.0)
LWS Gallery (Version: 13.30.1379.0)
LWS Help_main (Version: 13.30.1396.0)
LWS Launcher (Version: 13.30.1379.0)
LWS Motion Detection (Version: 13.30.1395.0)
LWS Pictures And Video (Version: 13.30.1395.0)
LWS Twitter (Version: 13.30.1346.0)
LWS Video Mask Maker (Version: 13.30.1379.0)
LWS VideoEffects (Version: 13.30.1379.0)
LWS Webcam Software (Version: 13.30.1379.0)
LWS WLM Plugin (Version: 1.30.1201.0)
LWS YouTube Plugin (Version: 13.30.1346.0)
Mah Jong Medley (Version: 2.2.0.95)
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
Mesh Runtime (Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office Starter 2010 - English (Version: 14.0.4763.1000)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 (Version: 9.0.30411)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0)
Mozilla Firefox 13.0.1 (x86 en-US) (Version: 13.0.1)
Mozilla Maintenance Service (Version: 13.0.1)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Mystery of Mortlake Mansion (Version: 2.2.0.97)
Namco All-Stars: PAC-MAN (Version: 2.2.0.95)
NETGEAR WG111v3 wireless USB 2.0 adapter (Version: 1.01.10)
OnlyWire (Version: 2.0.3)
OpenOffice.org 3.4 (Version: 3.4.9590)
PDF Complete Special Edition (Version: 4.0.54)
Penguins! (Version: 2.2.0.95)
Plants vs. Zombies - Game of the Year (Version: 2.2.0.95)
PlayReady PC Runtime amd64 (Version: 1.3.0)
PlayReady PC Runtime x86 (Version: 1.3.0)
Poker Superstars III (Version: 2.2.0.95)
Polar Bowler (Version: 2.2.0.97)
Polar Golfer (Version: 2.2.0.95)
Power2Go (Version: 6.1.5331)
PressReader (Version: 5.10.1217.0)
Realtek High Definition Audio Driver (Version: 6.0.1.6378)
Recovery Manager (Version: 5.5.0.4222)
Remote Graphics Receiver (Version: 5.4.5)
RoboForm 7-6-6 (All Users) (Version: 7-6-6)
RoxioNow Player (Version: 1.9.5.103)
Screencast-O-Matic
Skype™ 5.8 (Version: 5.8.158)
Slingo Supreme (Version: 2.2.0.97)
SUPERAntiSpyware (Version: 5.0.1142)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update Installer for WildTangent Games App
Vacation Quest - The Hawaiian Islands (Version: 2.2.0.97)
Virtual Villagers 5 - New Believers (Version: 2.2.0.97)
WildTangent Games App (HP Games) (Version: 4.0.5.36)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
Zinio Reader 4 (Version: 4.2.4164)
Zuma Deluxe (Version: 2.2.0.95)

========================= Memory info: ===================================

Percentage of memory in use: 60%
Total physical RAM: 2662.55 MB
Available physical RAM: 1061.82 MB
Total Pagefile: 5323.29 MB
Available Pagefile: 3221.01 MB
Total Virtual: 4095.88 MB
Available Virtual: 3964.56 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:454.29 GB) (Free:404.88 GB) NTFS
2 Drive d: (HP_RECOVERY) (Fixed) (Total:11.37 GB) (Free:1.39 GB) NTFS

========================= Users: ========================================

User accounts for \\MEKAP

Administrator Guest meka


**** End of log ****

Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.07.11.08

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
meka :: MEKAP [administrator]

7/11/2012 1:13:38 PM
mbam-log-2012-07-11 (13-13-38).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 330146
Time elapsed: 53 minute(s), 15 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:08 PM

Posted 11 July 2012 - 01:15 PM

Malwarebytes didnt find anything but I'm sure there is a little trace of this bug on the computer although I don't get those sudden popups now. Still got the harddrive error thingy.


Please explain

#7 mekap04

mekap04
  • Topic Starter

  • Members
  • 49 posts
  • OFFLINE
  •  
  • Local time:06:08 PM

Posted 11 July 2012 - 02:46 PM

I still cant see my desktop icons and when I go to start menu, none of my old programs are there. The background screen is still black as well. I can't open firefox either.

#8 mekap04

mekap04
  • Topic Starter

  • Members
  • 49 posts
  • OFFLINE
  •  
  • Local time:06:08 PM

Posted 11 July 2012 - 02:56 PM

When I rebooted, I got a message about catalyst control something about error with host or something.

#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:08 PM

Posted 11 July 2012 - 07:13 PM

You didnot explain to me that your files are hidden

Download

UNHIDE

Run it,this should unhide your files and remove catalyst error

Let me know if it restored your startmenu programs

#10 mekap04

mekap04
  • Topic Starter

  • Members
  • 49 posts
  • OFFLINE
  •  
  • Local time:06:08 PM

Posted 11 July 2012 - 07:51 PM

Thanks, that did it. However, I now see some temp files in my documents and some of the files have these characters in front of them ~$. Should I delete those?

#11 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:08 PM

Posted 11 July 2012 - 08:53 PM

No,

Open your C drive

On top,click on Organize-folder and search options

Click on View tab and scroll down

Check mark Dont Show hidden files
checkmark Hide operating system files


Click ok

Expand your startmenu programs see if everything has been recovered

#12 mekap04

mekap04
  • Topic Starter

  • Members
  • 49 posts
  • OFFLINE
  •  
  • Local time:06:08 PM

Posted 12 July 2012 - 05:06 AM

Darnit, I accidentally deleted some of the temp files. I did what you said and I don't see those funny looking files anymore. Everything else is back the same. The only problem is that my Internet seems slower than it was before this attack.

#13 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:08 PM

Posted 12 July 2012 - 06:35 AM

Click on start button and type

cmd right click-Run as administrator

Run the following commands


netsh i i r r
netsh winsock reset
ipconfig /registerdns
ipconfig /flushdns
ipconfig /release
ipconfig /renew


Restart your PC

Do you find slowness on a specific browser?

#14 mekap04

mekap04
  • Topic Starter

  • Members
  • 49 posts
  • OFFLINE
  •  
  • Local time:06:08 PM

Posted 12 July 2012 - 07:52 AM

Nope, its slow in all browsers I try. Restarted PC after doing the commands

#15 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:08 PM

Posted 12 July 2012 - 08:27 AM

Download

TFC


Launch it,it will close all running programs

click on START,it should ask for reboot

Let me know how it goes




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users