Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Post virus removal problems


  • Please log in to reply
8 replies to this topic

#1 nogbad73

nogbad73

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:02:22 AM

Posted 23 July 2012 - 03:02 PM

Hi,

running win7, sp2, after 3 trojans tried to hijack my computer from a website (blocked by zone alarm), and I accidentaly started another bundled in a legit email (so I thought), and blocked it once I realised it wasnt. I cleaned my computer with zone alarm which found all 4. Once I deleted some of the quarantine files I started having issues.

Three main problems:
Internet not working, I got it back up but it went down again, 12hrs later
Zone alarm now refusing to scan
vSlow computer.

I have malwarebytes as well and no current detection.

Help appreciated. I have FSS if the log would help as step 1?

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,428 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:22 AM

Posted 23 July 2012 - 08:41 PM

Hello,please post the FSS log.
For the connection try these...

Please click Start > Run, type inetcpl.cpl in the runbox and press enter.
Click the Connections tab and click the LAN settings option.
Verify if "Use a proxy..." is checked, if so, UNcheck it and click OK/OK to exit.
Now check if the internet is working again.

OR

Please Download this file, Click Me
Right-click on winsockfix.bat and click on Run as Administrator.

Reboot your system to complete the process.



Please download TDSSKiller.zip and and extract it.
  • Run TDSSKiller.exe.
  • Click on Change Parameters
  • Put a check in the box of Detect TDLFS file system
  • Click Start scan.
  • When it is finished the utility outputs a list of detected objects with description.
    The utility automatically selects an action (Cure or Delete) for malicious objects.
    The utility prompts the user to select an action to apply to suspicious objects (Skip, by default). Let the options as it is and click Continue
  • Let reboot if needed and tell me if the tool needed a reboot.
  • Click on Report and post the contents of the text file that will open.

    Note: By default, the utility outputs the log into system disk (it is usually the disk with installed operating system, C:\) root folder. The Log has a name like: TDSSKiller.Version_Date_Time_log.txt.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 nogbad73

nogbad73
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:02:22 AM

Posted 24 July 2012 - 03:26 PM

Log below (I had ckecked the proxy, they had not been rerouted)

Farbar Service Scanner Version: 19-07-2012
Ran by vanda (administrator) on 24-07-2012 at 21:17:48
Running from "E:\"
Microsoft Windows 7 Home Premium (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Attempt to access Local Host IP returned error: Localhost is blocked: Destination is offline
LAN connected.
Attempt to access Google IP returned error: Google IP is offline
Attempt to access Google.com returned error: Google.com is offline
Attempt to access Yahoo IP returned error: Yahoo IP is offline
Attempt to access Yahoo.com returned error: Yahoo.com is offline


Other Services:
==============

sharedaccess Service is not running. Checking service configuration:
The start type of sharedaccess service is set to Auto
The ImagePath of sharedaccess service is OK.
The ServiceDll of sharedaccess service is OK.


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys
[2012-02-15 20:32] - [2011-12-28 04:59] - 0499200 ____A (Microsoft Corporation) DB9D6C6B2CD95A9CA414D045B627422E

C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys
[2012-05-10 12:56] - [2012-03-30 12:09] - 1895280 ____A (Microsoft Corporation) 624C5B3AA4C99B3184BB922D9ECE3FF0

C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

#4 nogbad73

nogbad73
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:02:22 AM

Posted 24 July 2012 - 04:08 PM

Kill log, no restart only one file was locked (med risk, skipped)


21:37:42.0151 4320 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
21:37:42.0197 4320 ============================================================
21:37:42.0197 4320 Current date / time: 2012/07/24 21:37:42.0197
21:37:42.0197 4320 SystemInfo:
21:37:42.0197 4320
21:37:42.0197 4320 OS Version: 6.1.7600 ServicePack: 0.0
21:37:42.0197 4320 Product type: Workstation
21:37:42.0197 4320 ComputerName: DOLLYWOOD2
21:37:42.0197 4320 UserName: vanda
21:37:42.0197 4320 Windows directory: C:\Windows
21:37:42.0197 4320 System windows directory: C:\Windows
21:37:42.0197 4320 Running under WOW64
21:37:42.0197 4320 Processor architecture: Intel x64
21:37:42.0197 4320 Number of processors: 4
21:37:42.0197 4320 Page size: 0x1000
21:37:42.0197 4320 Boot type: Normal boot
21:37:42.0197 4320 ============================================================
21:37:42.0681 4320 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:37:42.0697 4320 Drive \Device\Harddisk1\DR1 - Size: 0x3BBA00000 (14.93 Gb), SectorSize: 0x200, Cylinders: 0x79D, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
21:37:42.0697 4320 ============================================================
21:37:42.0697 4320 \Device\Harddisk0\DR0:
21:37:42.0697 4320 MBR partitions:
21:37:42.0697 4320 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1964800, BlocksNum 0x32000
21:37:42.0697 4320 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1996800, BlocksNum 0x48EC12B0
21:37:42.0697 4320 \Device\Harddisk1\DR1:
21:37:42.0697 4320 MBR partitions:
21:37:42.0697 4320 \Device\Harddisk1\DR1\Partition0: MBR, Type 0xB, StartLBA 0x978, BlocksNum 0x1DDC688
21:37:42.0697 4320 ============================================================
21:37:42.0728 4320 C: <-> \Device\Harddisk0\DR0\Partition1
21:37:42.0728 4320 ============================================================
21:37:42.0728 4320 Initialize success
21:37:42.0728 4320 ============================================================
21:38:03.0429 4372 ============================================================
21:38:03.0429 4372 Scan started
21:38:03.0429 4372 Mode: Manual; TDLFS;
21:38:03.0429 4372 ============================================================
21:38:29.0013 4372 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
21:38:29.0029 4372 1394ohci - ok
21:38:29.0216 4372 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
21:38:29.0216 4372 ACPI - ok
21:38:29.0341 4372 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
21:38:29.0356 4372 AcpiPmi - ok
21:38:29.0590 4372 adfs (2f0683fd2df1d92e891caca14b45a8c1) C:\Windows\system32\drivers\adfs.sys
21:38:29.0590 4372 adfs - ok
21:38:29.0653 4372 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
21:38:29.0731 4372 adp94xx - ok
21:38:29.0824 4372 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
21:38:29.0824 4372 adpahci - ok
21:38:29.0856 4372 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
21:38:29.0871 4372 adpu320 - ok
21:38:30.0043 4372 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
21:38:30.0074 4372 AeLookupSvc - ok
21:38:30.0074 4372 AfaService - ok
21:38:30.0433 4372 AFD (db9d6c6b2cd95a9ca414d045b627422e) C:\Windows\system32\drivers\afd.sys
21:38:30.0448 4372 AFD - ok
21:38:30.0542 4372 AgereModemAudio (b65f8dba54f251906bbe8611b5a0e7ab) C:\Program Files\LSI SoftModem\agr64svc.exe
21:38:30.0542 4372 AgereModemAudio - ok
21:38:30.0651 4372 AgereSoftModem (a6ab6f0ace87da76b4c401813d18be95) C:\Windows\system32\DRIVERS\agrsm64.sys
21:38:30.0979 4372 AgereSoftModem - ok
21:38:31.0010 4372 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
21:38:31.0010 4372 agp440 - ok
21:38:31.0041 4372 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
21:38:31.0041 4372 ALG - ok
21:38:31.0057 4372 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
21:38:31.0057 4372 aliide - ok
21:38:31.0119 4372 AMD External Events Utility (41a0813f22d3330c0ca71ce5bbd42b12) C:\Windows\system32\atiesrxx.exe
21:38:31.0119 4372 AMD External Events Utility - ok
21:38:31.0197 4372 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
21:38:31.0197 4372 amdide - ok
21:38:31.0228 4372 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
21:38:31.0228 4372 AmdK8 - ok
21:39:11.0149 4372 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
21:39:19.0713 4372 AmdPPM - ok
21:39:21.0616 4372 amdsata (ec7ebab00a4d8448bab68d1e49b4beb9) C:\Windows\system32\drivers\amdsata.sys
21:39:21.0632 4372 amdsata - ok
21:39:21.0757 4372 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
21:39:21.0757 4372 amdsbs - ok
21:39:21.0897 4372 amdxata (db27766102c7bf7e95140a2aa81d042e) C:\Windows\system32\drivers\amdxata.sys
21:39:21.0897 4372 amdxata - ok
21:39:21.0975 4372 AmUStor (391887990cdaa83de5c56c3fde966da1) C:\Windows\system32\drivers\AmUStor.SYS
21:39:21.0991 4372 AmUStor - ok
21:39:22.0131 4372 AppHostSvc (03fbb7c5ea4ef153f10282614b9771cb) C:\Windows\system32\inetsrv\apphostsvc.dll
21:39:22.0147 4372 AppHostSvc - ok
21:39:22.0599 4372 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
21:39:22.0630 4372 AppID - ok
21:39:22.0662 4372 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
21:39:22.0662 4372 AppIDSvc - ok
21:39:22.0802 4372 Appinfo (d065be66822847b7f127d1f90158376e) C:\Windows\System32\appinfo.dll
21:39:22.0802 4372 Appinfo - ok
21:39:23.0083 4372 Apple Mobile Device (20f6f19fe9e753f2780dc2fa083ad597) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:39:23.0098 4372 Apple Mobile Device - ok
21:39:23.0130 4372 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
21:39:23.0130 4372 arc - ok
21:39:23.0176 4372 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
21:39:23.0176 4372 arcsas - ok
21:39:23.0379 4372 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
21:39:23.0785 4372 aspnet_state - ok
21:39:23.0816 4372 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
21:39:23.0816 4372 AsyncMac - ok
21:39:23.0863 4372 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
21:39:23.0863 4372 atapi - ok
21:39:24.0440 4372 athr (d6cad7e5b05055bb8226bdcb1644da27) C:\Windows\system32\DRIVERS\athrx.sys
21:39:24.0534 4372 athr - ok
21:39:25.0485 4372 atikmdag (37456be85384e4cc38dc899f07f88c45) C:\Windows\system32\DRIVERS\atikmdag.sys
21:39:25.0610 4372 atikmdag - ok
21:39:26.0094 4372 AudioEndpointBuilder (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
21:39:26.0172 4372 AudioEndpointBuilder - ok
21:39:26.0172 4372 AudioSrv (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
21:39:26.0172 4372 AudioSrv - ok
21:39:26.0281 4372 AxInstSV (b20b5fa5ca050e9926e4d1db81501b32) C:\Windows\System32\AxInstSV.dll
21:39:26.0328 4372 AxInstSV - ok
21:39:26.0577 4372 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
21:39:26.0608 4372 b06bdrv - ok
21:39:26.0733 4372 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
21:39:26.0749 4372 b57nd60a - ok
21:39:27.0061 4372 BCM43XX (9e84a931dbee0292e38ed672f6293a99) C:\Windows\system32\DRIVERS\bcmwl664.sys
21:39:27.0123 4372 BCM43XX - ok
21:39:27.0513 4372 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
21:39:27.0747 4372 BDESVC - ok
21:39:27.0856 4372 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
21:39:27.0856 4372 Beep - ok
21:39:28.0028 4372 BFE (4992c609a6315671463e30f6512bc022) C:\Windows\System32\bfe.dll
21:39:28.0044 4372 BFE - ok
21:39:28.0246 4372 BITS (7f0c323fe3da28aa4aa1bda3f575707f) C:\Windows\system32\qmgr.dll
21:39:28.0262 4372 BITS - ok
21:39:28.0465 4372 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
21:39:28.0465 4372 blbdrive - ok
21:39:28.0777 4372 Bonjour Service (f2060a34c8a75bc24a9222eb4f8c07bd) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
21:39:28.0792 4372 Bonjour Service - ok
21:39:28.0870 4372 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
21:39:28.0870 4372 bowser - ok
21:39:28.0948 4372 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
21:39:28.0948 4372 BrFiltLo - ok
21:39:28.0948 4372 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
21:39:28.0964 4372 BrFiltUp - ok
21:39:28.0980 4372 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
21:39:28.0995 4372 BridgeMP - ok
21:39:29.0026 4372 Browser (94fbc06f294d58d02361918418f996e3) C:\Windows\System32\browser.dll
21:39:29.0026 4372 Browser - ok
21:39:29.0276 4372 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
21:39:29.0292 4372 Brserid - ok
21:39:29.0323 4372 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
21:39:29.0323 4372 BrSerWdm - ok
21:39:29.0338 4372 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
21:39:29.0338 4372 BrUsbMdm - ok
21:39:29.0448 4372 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
21:39:29.0494 4372 BrUsbSer - ok
21:39:29.0572 4372 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
21:39:29.0572 4372 BTHMODEM - ok
21:39:29.0604 4372 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
21:39:29.0604 4372 bthserv - ok
21:39:29.0604 4372 catchme - ok
21:39:29.0666 4372 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
21:39:29.0666 4372 cdfs - ok
21:39:29.0713 4372 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
21:39:29.0713 4372 cdrom - ok
21:39:30.0087 4372 CertPropSvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
21:39:30.0134 4372 CertPropSvc - ok
21:39:30.0290 4372 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
21:39:30.0306 4372 circlass - ok
21:39:30.0368 4372 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
21:39:30.0368 4372 CLFS - ok
21:39:31.0117 4372 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:39:31.0195 4372 clr_optimization_v2.0.50727_32 - ok
21:39:32.0131 4372 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:39:32.0209 4372 clr_optimization_v2.0.50727_64 - ok
21:39:32.0412 4372 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:39:32.0755 4372 clr_optimization_v4.0.30319_32 - ok
21:39:32.0880 4372 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:39:33.0082 4372 clr_optimization_v4.0.30319_64 - ok
21:39:33.0098 4372 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
21:39:33.0098 4372 CmBatt - ok
21:39:33.0145 4372 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
21:39:33.0145 4372 cmdide - ok
21:39:33.0270 4372 CNG (ca7720b73446fddec5c69519c1174c98) C:\Windows\system32\Drivers\cng.sys
21:39:33.0285 4372 CNG - ok
21:39:33.0332 4372 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
21:39:33.0332 4372 Compbatt - ok
21:39:33.0519 4372 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
21:39:33.0550 4372 CompositeBus - ok
21:39:33.0566 4372 COMSysApp - ok
21:39:34.0050 4372 cpuz132 - ok
21:39:34.0143 4372 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
21:39:34.0143 4372 crcdisk - ok
21:39:34.0221 4372 CryptSvc (f02786b66375292e58c8777082d4396d) C:\Windows\system32\cryptsvc.dll
21:39:34.0221 4372 CryptSvc - ok
21:39:34.0315 4372 DCDisk (16146f188c504478b35c9f0ce619433d) C:\Windows\system32\drivers\DCDisk.sys
21:39:34.0315 4372 DCDisk - ok
21:39:34.0408 4372 DcomLaunch (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
21:39:34.0408 4372 DcomLaunch - ok
21:39:34.0908 4372 DCScheduler (10366069f533d0672aa8fab07c516cb5) C:\Program Files (x86)\FarStone\DriveClone Personal\CBP\DCSchdlerSRVC.exe
21:39:35.0110 4372 DCScheduler - ok
21:39:35.0142 4372 dcsnap (e20088659cf6a40147128fb28c1f1ea3) C:\Windows\system32\drivers\dcsnap.sys
21:39:35.0142 4372 dcsnap - ok
21:39:35.0188 4372 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
21:39:35.0298 4372 defragsvc - ok
21:39:35.0438 4372 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
21:39:35.0438 4372 DfsC - ok
21:39:35.0500 4372 Dhcp (ce3b9562d997f69b330d181a8875960f) C:\Windows\system32\dhcpcore.dll
21:39:35.0500 4372 Dhcp - ok
21:39:35.0547 4372 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
21:39:35.0547 4372 discache - ok
21:39:35.0672 4372 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
21:39:35.0672 4372 Disk - ok
21:39:36.0171 4372 DKbFltr (d5bcb77be83cf99f508943945d46343d) C:\Windows\syswow64\Drivers\DKbFltr.sys
21:39:36.0171 4372 DKbFltr - ok
21:39:36.0234 4372 Dnscache (85cf424c74a1d5ec33533e1dbff9920a) C:\Windows\System32\dnsrslvr.dll
21:39:36.0234 4372 Dnscache - ok
21:39:36.0343 4372 dot3svc (14452acdb09b70964c8c21bf80a13acb) C:\Windows\System32\dot3svc.dll
21:39:36.0358 4372 dot3svc - ok
21:39:36.0468 4372 DPS (8c2ba6bea949ee6e68385f5692bafb94) C:\Windows\system32\dps.dll
21:39:36.0468 4372 DPS - ok
21:39:36.0577 4372 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
21:39:36.0577 4372 drmkaud - ok
21:39:36.0748 4372 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
21:39:36.0748 4372 DXGKrnl - ok
21:39:36.0795 4372 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
21:39:36.0795 4372 EapHost - ok
21:39:38.0371 4372 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
21:39:38.0464 4372 ebdrv - ok
21:39:39.0135 4372 efbfs (2e1f37350e8b4a15ce2499451f239d97) C:\Program Files (x86)\FarStone\DriveClone Personal\EFB\efbfs.exe
21:39:39.0135 4372 efbfs - ok
21:39:39.0681 4372 EFS (156f6159457d0aa7e59b62681b56eb90) C:\Windows\System32\lsass.exe
21:39:39.0681 4372 EFS - ok
21:39:39.0993 4372 ehRecvr (47c071994c3f649f23d9cd075ac9304a) C:\Windows\ehome\ehRecvr.exe
21:39:40.0212 4372 ehRecvr - ok
21:39:40.0305 4372 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
21:39:40.0305 4372 ehSched - ok
21:39:40.0524 4372 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
21:39:40.0555 4372 elxstor - ok
21:39:41.0226 4372 ePowerSvc (fb67aa8ac61b9365add546139a21bed6) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
21:39:41.0226 4372 ePowerSvc - ok
21:39:41.0428 4372 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
21:39:41.0428 4372 ErrDev - ok
21:39:41.0506 4372 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
21:39:41.0506 4372 EventSystem - ok
21:39:41.0600 4372 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
21:39:41.0616 4372 exfat - ok
21:39:41.0928 4372 FarStone RestoreIT Loader (5080f620927a9d3470a6cb9ee6ba585b) C:\Program Files (x86)\FarStone\DriveClone Personal\fsloader.exe
21:39:41.0943 4372 FarStone RestoreIT Loader - ok
21:39:42.0021 4372 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
21:39:42.0052 4372 fastfat - ok
21:39:42.0115 4372 Fax (d607b2f1bee3992aa6c2c92c0a2f0855) C:\Windows\system32\fxssvc.exe
21:39:42.0364 4372 Fax - ok
21:39:42.0427 4372 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
21:39:42.0427 4372 fdc - ok
21:39:42.0442 4372 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
21:39:42.0442 4372 fdPHost - ok
21:39:42.0458 4372 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
21:39:42.0458 4372 FDResPub - ok
21:39:42.0474 4372 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
21:39:42.0489 4372 FileInfo - ok
21:39:42.0489 4372 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
21:39:42.0489 4372 Filetrace - ok
21:39:42.0536 4372 flbdisk (0a3e4a5c85407ed34e8e3827422f1c9d) C:\Windows\system32\drivers\flbdisk.sys
21:39:42.0536 4372 flbdisk - ok
21:39:42.0630 4372 flbrc (96dc34c37389cbeba1b745aa2a608b85) C:\Windows\system32\drivers\flbrc.sys
21:39:42.0630 4372 flbrc - ok
21:39:42.0786 4372 FLEXnet Licensing Service (1f63900e2eb00101b9aca2b7a870704e) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
21:39:42.0848 4372 FLEXnet Licensing Service - ok
21:39:43.0410 4372 FLEXnet Licensing Service 64 (1c3fb052a0bb72edaed90785c34d6eed) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
21:39:43.0456 4372 FLEXnet Licensing Service 64 - ok
21:40:04.0579 4372 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
21:40:04.0704 4372 flpydisk - ok
21:40:07.0387 4372 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
21:40:07.0434 4372 FltMgr - ok
21:40:07.0761 4372 FontCache (cb5e4b9c319e3c6bb363eb7e58a4a051) C:\Windows\system32\FntCache.dll
21:40:08.0292 4372 FontCache - ok
21:40:25.0764 4372 FontCache3.0.0.0 (8d89e3131c27fdd6932189cb785e1b7a) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:40:39.0273 4372 FontCache3.0.0.0 - ok
21:40:59.0085 4372 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
21:40:59.0085 4372 FsDepends - ok
21:40:59.0163 4372 Fs_Rec (d3e3f93d67821a2db2b3d9fac2dc2064) C:\Windows\system32\drivers\Fs_Rec.sys
21:40:59.0163 4372 Fs_Rec - ok
21:40:59.0351 4372 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
21:40:59.0351 4372 fvevol - ok
21:40:59.0429 4372 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
21:40:59.0429 4372 gagp30kx - ok
21:41:00.0427 4372 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:41:00.0427 4372 GEARAspiWDM - ok
21:41:01.0472 4372 GoogleDesktopManager-051210-111108 (9f5f2f0fb0a7f5aa9f16b9a7b6dad89f) C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe
21:41:01.0472 4372 GoogleDesktopManager-051210-111108 - ok
21:41:01.0722 4372 gpsvc (fe5ab4525bc2ec68b9119a6e5d40128b) C:\Windows\System32\gpsvc.dll
21:41:01.0831 4372 gpsvc - ok
21:41:02.0081 4372 Greg_Service (816fd5a6f3c2f3d600900096632fc60e) C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
21:41:02.0081 4372 Greg_Service - ok
21:41:02.0252 4372 gupdate - ok
21:41:02.0252 4372 gupdatem - ok
21:41:02.0564 4372 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
21:41:02.0595 4372 gusvc - ok
21:41:03.0235 4372 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
21:41:03.0235 4372 hcw85cir - ok
21:41:03.0266 4372 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
21:41:03.0313 4372 HdAudAddService - ok
21:41:03.0344 4372 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
21:41:03.0344 4372 HDAudBus - ok
21:41:03.0375 4372 HECIx64 (b6ac71aaa2b10848f57fc49d55a651af) C:\Windows\system32\DRIVERS\HECIx64.sys
21:41:03.0391 4372 HECIx64 - ok
21:41:03.0438 4372 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
21:41:03.0438 4372 HidBatt - ok
21:41:03.0531 4372 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
21:41:03.0781 4372 HidBth - ok
21:41:03.0828 4372 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
21:41:03.0828 4372 HidIr - ok
21:41:03.0890 4372 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
21:41:03.0906 4372 hidserv - ok
21:41:03.0968 4372 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
21:41:03.0968 4372 HidUsb - ok
21:41:03.0999 4372 hkmsvc (efa58ede58dd74388ffd04cb32681518) C:\Windows\system32\kmsvc.dll
21:41:03.0999 4372 hkmsvc - ok
21:41:04.0343 4372 HomeGroupListener (046b2673767ca626e2cfb7fdf735e9e8) C:\Windows\system32\ListSvc.dll
21:41:04.0358 4372 HomeGroupListener - ok
21:41:04.0577 4372 HomeGroupProvider (06a7422224d9865a5613710a089987df) C:\Windows\system32\provsvc.dll
21:41:04.0592 4372 HomeGroupProvider - ok
21:41:04.0920 4372 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
21:41:04.0951 4372 HpSAMD - ok
21:41:05.0279 4372 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
21:41:05.0325 4372 HTTP - ok
21:41:05.0419 4372 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
21:41:05.0419 4372 hwpolicy - ok
21:41:05.0481 4372 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
21:41:05.0481 4372 i8042prt - ok
21:41:06.0090 4372 IAANTMON (7548066df68a8a1a56b043359f915f37) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
21:41:06.0090 4372 IAANTMON - ok
21:41:06.0183 4372 iaStor (1d004cb1da6323b1f55caef7f94b61d9) C:\Windows\system32\DRIVERS\iaStor.sys
21:41:06.0183 4372 iaStor - ok
21:41:06.0807 4372 iaStorV (b75e45c564e944a2657167d197ab29da) C:\Windows\system32\drivers\iaStorV.sys
21:41:07.0026 4372 iaStorV - ok
21:41:07.0182 4372 icsak (acbab67fa8de733af04a5f6494bf41db) C:\Program Files\CheckPoint\ZAForceField\AK\icsak.sys
21:41:07.0182 4372 icsak - ok
21:41:07.0541 4372 idsvc (2f2be70d3e02b6fa877921ab9516d43c) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:41:07.0712 4372 idsvc - ok
21:41:10.0239 4372 igfx (a87261ef1546325b559374f5689cf5bc) C:\Windows\system32\DRIVERS\igdkmd64.sys
21:41:10.0395 4372 igfx - ok
21:41:10.0863 4372 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
21:41:10.0879 4372 iirsp - ok
21:41:11.0066 4372 IKEEXT (c5b4683680df085b57bc53e5ef34861f) C:\Windows\System32\ikeext.dll
21:41:11.0097 4372 IKEEXT - ok
21:41:11.0222 4372 Impcd (36fdf367a1dabff903e2214023d71368) C:\Windows\system32\DRIVERS\Impcd.sys
21:41:11.0238 4372 Impcd - ok
21:41:11.0675 4372 IntcAzAudAddService (42943bb3ab7a405b30eff7c8283cc129) C:\Windows\system32\drivers\RTKVHD64.sys
21:41:11.0690 4372 IntcAzAudAddService - ok
21:41:13.0141 4372 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
21:41:13.0141 4372 intelide - ok
21:41:13.0172 4372 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
21:41:13.0172 4372 intelppm - ok
21:41:13.0266 4372 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
21:41:13.0266 4372 IPBusEnum - ok
21:41:13.0297 4372 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:41:13.0297 4372 IpFilterDriver - ok
21:41:13.0344 4372 iphlpsvc (f8e058d17363ec580e4b7232778b6cb5) C:\Windows\System32\iphlpsvc.dll
21:41:13.0406 4372 iphlpsvc - ok
21:41:13.0422 4372 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
21:41:13.0437 4372 IPMIDRV - ok
21:41:13.0484 4372 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
21:41:13.0500 4372 IPNAT - ok
21:41:13.0999 4372 iPod Service (a3bda1a8a016b5e5a525bcf684894ebe) C:\Program Files\iPod\bin\iPodService.exe
21:41:13.0999 4372 iPod Service - ok
21:41:14.0108 4372 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
21:41:14.0108 4372 IRENUM - ok
21:41:14.0186 4372 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
21:41:14.0202 4372 isapnp - ok
21:41:14.0264 4372 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
21:41:14.0264 4372 iScsiPrt - ok
21:41:14.0592 4372 ISWKL (bf65e6d039ae37c988d5b2b680e7d718) C:\Program Files\CheckPoint\ZAForceField\ISWKL.sys
21:41:14.0592 4372 ISWKL - ok
21:41:15.0637 4372 IswSvc (99148599fe4d0a5cd7c7eb74ed5a63e4) C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe
21:41:15.0637 4372 IswSvc - ok
21:41:16.0370 4372 k57nd60a (d85f3f18e44f7447b5f1ba5c85baeb7c) C:\Windows\system32\DRIVERS\k57nd60a.sys
21:41:16.0370 4372 k57nd60a - ok
21:41:16.0433 4372 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
21:41:16.0433 4372 kbdclass - ok
21:41:16.0542 4372 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
21:41:16.0573 4372 kbdhid - ok
21:41:16.0620 4372 KeyIso (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
21:41:16.0620 4372 KeyIso - ok
21:41:16.0682 4372 KL1 (8d7120743a0973ceab548b475c9d4289) C:\Windows\system32\DRIVERS\kl1.sys
21:41:16.0698 4372 KL1 - ok
21:41:16.0713 4372 kl2 (cd146d8e525d6eebdcaf24120a8ab9ce) C:\Windows\system32\DRIVERS\kl2.sys
21:41:16.0713 4372 kl2 - ok
21:41:16.0791 4372 KLIF (a4813ee804a1d96dcb01aefd7f565c6b) C:\Windows\system32\DRIVERS\klif.sys
21:41:16.0791 4372 KLIF - ok
21:41:16.0838 4372 KSecDD (4f4b5fde429416877de7143044582eb5) C:\Windows\system32\Drivers\ksecdd.sys
21:41:16.0838 4372 KSecDD - ok
21:41:16.0869 4372 KSecPkg (6f40465a44ecdc1731befafec5bdd03c) C:\Windows\system32\Drivers\ksecpkg.sys
21:41:16.0869 4372 KSecPkg - ok
21:41:16.0916 4372 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
21:41:16.0916 4372 ksthunk - ok
21:41:16.0963 4372 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
21:41:17.0041 4372 KtmRm - ok
21:41:17.0088 4372 L1E (2ac603c3188c704cfce353659aa7ad71) C:\Windows\system32\DRIVERS\L1E62x64.sys
21:41:17.0088 4372 L1E - ok
21:41:17.0150 4372 LanmanServer (81f1d04d4d0e433099365127375fd501) C:\Windows\System32\srvsvc.dll
21:41:17.0150 4372 LanmanServer - ok
21:41:17.0244 4372 LanmanWorkstation (27026eac8818e8a6c00a1cad2f11d29a) C:\Windows\System32\wkssvc.dll
21:41:17.0244 4372 LanmanWorkstation - ok
21:41:17.0306 4372 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
21:41:17.0306 4372 lltdio - ok
21:41:17.0369 4372 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
21:41:17.0415 4372 lltdsvc - ok
21:41:17.0447 4372 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
21:41:17.0447 4372 lmhosts - ok
21:41:17.0571 4372 LMS (7485fbcef9136f530953575e2977859d) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
21:41:17.0587 4372 LMS - ok
21:41:17.0649 4372 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
21:41:17.0649 4372 LSI_FC - ok
21:41:17.0681 4372 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
21:41:17.0681 4372 LSI_SAS - ok
21:41:17.0774 4372 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
21:41:17.0774 4372 LSI_SAS2 - ok
21:41:17.0821 4372 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
21:41:17.0821 4372 LSI_SCSI - ok
21:41:17.0852 4372 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
21:41:17.0852 4372 luafv - ok
21:41:17.0899 4372 MBAMProtector (dbc08862a71459e74f7538b432c114cc) C:\Windows\system32\drivers\mbam.sys
21:41:17.0899 4372 MBAMProtector - ok
21:41:18.0024 4372 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
21:41:18.0024 4372 MBAMService - ok
21:41:18.0102 4372 McAfee SiteAdvisor Service - ok
21:41:18.0149 4372 Mcx2Svc (f84c8f1000bc11e3b7b23cbd3baff111) C:\Windows\system32\Mcx2Svc.dll
21:41:18.0149 4372 Mcx2Svc - ok
21:41:18.0195 4372 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
21:41:18.0195 4372 megasas - ok
21:41:18.0242 4372 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
21:41:18.0258 4372 MegaSR - ok
21:41:18.0289 4372 MHIKEY10 (e805a347ab28ad569c5ced370a966d80) C:\Windows\system32\Drivers\MHIKEY10x64.sys
21:41:18.0289 4372 MHIKEY10 - ok
21:41:18.0336 4372 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
21:41:18.0336 4372 MMCSS - ok
21:41:18.0383 4372 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
21:41:18.0383 4372 Modem - ok
21:41:18.0414 4372 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
21:41:18.0414 4372 monitor - ok
21:41:18.0429 4372 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
21:41:18.0429 4372 mouclass - ok
21:41:18.0445 4372 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
21:41:18.0445 4372 mouhid - ok
21:41:18.0461 4372 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
21:41:18.0476 4372 mountmgr - ok
21:41:18.0523 4372 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
21:41:18.0523 4372 MozillaMaintenance - ok
21:41:18.0554 4372 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
21:41:18.0570 4372 mpio - ok
21:41:18.0585 4372 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
21:41:18.0601 4372 mpsdrv - ok
21:41:18.0663 4372 MpsSvc (aecab449567d1846dad63ece49e893e3) C:\Windows\system32\mpssvc.dll
21:41:18.0679 4372 MpsSvc - ok
21:41:18.0710 4372 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
21:41:18.0710 4372 MRxDAV - ok
21:41:18.0757 4372 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
21:41:18.0773 4372 mrxsmb - ok
21:41:18.0819 4372 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:41:18.0835 4372 mrxsmb10 - ok
21:41:18.0851 4372 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:41:18.0851 4372 mrxsmb20 - ok
21:41:18.0897 4372 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys
21:41:18.0897 4372 msahci - ok
21:41:18.0929 4372 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
21:41:18.0929 4372 msdsm - ok
21:41:18.0975 4372 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
21:41:18.0975 4372 MSDTC - ok
21:41:19.0007 4372 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
21:41:19.0007 4372 Msfs - ok
21:41:19.0022 4372 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
21:41:19.0022 4372 mshidkmdf - ok
21:41:19.0038 4372 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
21:41:19.0038 4372 msisadrv - ok
21:41:19.0069 4372 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
21:41:19.0085 4372 MSiSCSI - ok
21:41:19.0085 4372 msiserver - ok
21:41:19.0100 4372 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
21:41:19.0100 4372 MSKSSRV - ok
21:41:19.0116 4372 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
21:41:19.0116 4372 MSPCLOCK - ok
21:41:19.0147 4372 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
21:41:19.0147 4372 MSPQM - ok
21:41:19.0194 4372 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
21:41:19.0209 4372 MsRPC - ok
21:41:19.0225 4372 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
21:41:19.0225 4372 mssmbios - ok
21:41:19.0241 4372 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
21:41:19.0241 4372 MSTEE - ok
21:41:19.0256 4372 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
21:41:19.0256 4372 MTConfig - ok
21:41:19.0272 4372 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
21:41:19.0287 4372 Mup - ok
21:41:19.0334 4372 napagent (4987e079a4530fa737a128be54b63b12) C:\Windows\system32\qagentRT.dll
21:41:19.0334 4372 napagent - ok
21:41:19.0381 4372 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
21:41:19.0397 4372 NativeWifiP - ok
21:41:19.0475 4372 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
21:41:19.0475 4372 NDIS - ok
21:41:19.0506 4372 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
21:41:19.0506 4372 NdisCap - ok
21:41:19.0568 4372 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
21:41:19.0568 4372 NdisTapi - ok
21:41:19.0584 4372 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
21:41:19.0584 4372 Ndisuio - ok
21:41:19.0615 4372 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
21:41:19.0615 4372 NdisWan - ok
21:41:19.0631 4372 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
21:41:19.0631 4372 NDProxy - ok
21:41:19.0662 4372 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
21:41:19.0662 4372 NetBIOS - ok
21:41:19.0693 4372 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
21:41:19.0693 4372 NetBT - ok
21:41:19.0755 4372 Netlogon (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
21:41:19.0755 4372 Netlogon - ok
21:41:19.0818 4372 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
21:41:19.0833 4372 Netman - ok
21:41:19.0974 4372 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:41:20.0005 4372 NetMsmqActivator - ok
21:41:20.0021 4372 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:41:20.0021 4372 NetPipeActivator - ok
21:41:20.0099 4372 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
21:41:20.0114 4372 netprofm - ok
21:41:20.0130 4372 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:41:20.0130 4372 NetTcpActivator - ok
21:41:20.0130 4372 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:41:20.0130 4372 NetTcpPortSharing - ok
21:41:20.0707 4372 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
21:41:20.0707 4372 nfrd960 - ok
21:41:20.0769 4372 NlaSvc (d9a0ce66046d6efa0c61baa885cba0a8) C:\Windows\System32\nlasvc.dll
21:41:20.0816 4372 NlaSvc - ok
21:41:20.0925 4372 nlsX86cc (b1ef4686961986dffb7fe8f18e6fcb5b) C:\Windows\SysWOW64\nlssrv32.exe
21:41:20.0925 4372 nlsX86cc - ok
21:41:21.0003 4372 nosGetPlusHelper (f44addbf29905cb19f52fc9fe6a0efa1) C:\Program Files (x86)\NOS\bin\getPlus_Helper_3004.dll
21:41:21.0003 4372 nosGetPlusHelper - ok
21:41:21.0050 4372 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
21:41:21.0050 4372 Npfs - ok
21:41:21.0097 4372 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
21:41:21.0097 4372 nsi - ok
21:41:21.0113 4372 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
21:41:21.0113 4372 nsiproxy - ok
21:41:21.0253 4372 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
21:41:21.0300 4372 Ntfs - ok
21:41:21.0440 4372 NTI IScheduleSvc (14e66f603fb187713aeb02ad3b0390cf) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
21:41:21.0440 4372 NTI IScheduleSvc - ok
21:41:21.0518 4372 NTIBackupSvc (fd324cce1d4d5bb5af65f8e55b462c7e) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
21:41:21.0518 4372 NTIBackupSvc - ok
21:41:21.0659 4372 NTIDrvr (64ddd0dee976302f4bd93e5efcc2f013) C:\Windows\system32\drivers\NTIDrvr.sys
21:41:21.0659 4372 NTIDrvr - ok
21:41:21.0721 4372 NTISchedulerSvc (3f6268a2ec33cd38cf75c880af8ded42) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
21:41:21.0799 4372 NTISchedulerSvc - ok
21:41:21.0846 4372 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
21:41:21.0846 4372 Null - ok
21:41:21.0893 4372 nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\Windows\system32\drivers\nvraid.sys
21:41:21.0893 4372 nvraid - ok
21:41:21.0939 4372 nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\Windows\system32\drivers\nvstor.sys
21:41:21.0939 4372 nvstor - ok
21:41:21.0986 4372 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
21:41:22.0002 4372 nv_agp - ok
21:41:22.0017 4372 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
21:41:22.0017 4372 ohci1394 - ok
21:41:22.0111 4372 OMSI download service (da345de3b450e9e1691e7b9956d8ffc3) C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe
21:41:22.0111 4372 OMSI download service - ok
21:41:22.0283 4372 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:41:22.0298 4372 ose - ok
21:41:22.0345 4372 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
21:41:22.0407 4372 p2pimsvc - ok
21:41:22.0485 4372 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
21:41:22.0501 4372 p2psvc - ok
21:41:22.0579 4372 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
21:41:22.0579 4372 Parport - ok
21:41:22.0626 4372 partmgr (90061b1acfe8ccaa5345750ffe08d8b8) C:\Windows\system32\drivers\partmgr.sys
21:41:22.0626 4372 partmgr - ok
21:41:22.0641 4372 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
21:41:22.0657 4372 PcaSvc - ok
21:41:22.0704 4372 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
21:41:22.0704 4372 pci - ok
21:41:22.0735 4372 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
21:41:22.0735 4372 pciide - ok
21:41:22.0766 4372 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
21:41:22.0782 4372 pcmcia - ok
21:41:33.0312 4372 pcouffin (af7ce12c4f3dc8cb2b07685c916bbcfe) C:\Windows\system32\Drivers\pcouffin.sys
21:41:35.0855 4372 pcouffin - ok
21:41:46.0182 4372 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
21:41:46.0197 4372 pcw - ok
21:41:46.0431 4372 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
21:41:46.0525 4372 PEAUTH - ok
21:41:46.0946 4372 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
21:41:46.0946 4372 PerfHost - ok
21:41:47.0102 4372 pgsql-8.3 (acc93675d78d1c07dad09d7837f2397a) C:\Program Files (x86)\PostgreSQL\8.3\bin\pg_ctl.exe
21:41:47.0102 4372 pgsql-8.3 - ok
21:41:47.0399 4372 pla (557e9a86f65f0de18c9b6751dfe9d3f1) C:\Windows\system32\pla.dll
21:41:47.0430 4372 pla - ok
21:41:47.0523 4372 PlugPlay (98b1721b8718164293b9701b98c52d77) C:\Windows\system32\umpnpmgr.dll
21:41:47.0570 4372 PlugPlay - ok
21:41:47.0648 4372 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
21:41:47.0648 4372 PNRPAutoReg - ok
21:41:47.0695 4372 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
21:41:47.0695 4372 PNRPsvc - ok
21:41:47.0820 4372 PolicyAgent (166eb40d1f5b47e615de3d0fffe5f243) C:\Windows\System32\ipsecsvc.dll
21:41:47.0929 4372 PolicyAgent - ok
21:41:47.0960 4372 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
21:41:47.0976 4372 Power - ok
21:41:48.0085 4372 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
21:41:48.0085 4372 PptpMiniport - ok
21:41:48.0132 4372 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
21:41:48.0132 4372 Processor - ok
21:41:48.0179 4372 ProfSvc (97293447431311c06703368ad0f6c4be) C:\Windows\system32\profsvc.dll
21:41:48.0194 4372 ProfSvc - ok
21:41:48.0241 4372 ProtectedStorage (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
21:41:48.0241 4372 ProtectedStorage - ok
21:41:48.0288 4372 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
21:41:48.0288 4372 Psched - ok
21:41:48.0413 4372 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
21:41:48.0444 4372 ql2300 - ok
21:42:37.0210 4372 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
21:42:37.0225 4372 ql40xx - ok
21:42:37.0288 4372 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
21:42:37.0537 4372 QWAVE - ok
21:42:37.0568 4372 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
21:42:37.0568 4372 QWAVEdrv - ok
21:42:37.0615 4372 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
21:42:37.0615 4372 RasAcd - ok
21:42:37.0662 4372 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
21:42:37.0662 4372 RasAgileVpn - ok
21:42:37.0693 4372 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
21:42:37.0709 4372 RasAuto - ok
21:42:37.0771 4372 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
21:42:37.0787 4372 Rasl2tp - ok
21:42:37.0818 4372 RasMan (47394ed3d16d053f5906efe5ab51cc83) C:\Windows\System32\rasmans.dll
21:42:37.0834 4372 RasMan - ok
21:42:37.0896 4372 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
21:42:37.0896 4372 RasPppoe - ok
21:42:37.0912 4372 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
21:42:37.0927 4372 RasSstp - ok
21:42:37.0958 4372 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
21:42:37.0974 4372 rdbss - ok
21:42:37.0990 4372 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
21:42:37.0990 4372 rdpbus - ok
21:42:38.0021 4372 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
21:42:38.0021 4372 RDPCDD - ok
21:42:38.0036 4372 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
21:42:38.0036 4372 RDPENCDD - ok
21:42:38.0052 4372 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
21:42:38.0052 4372 RDPREFMP - ok
21:42:38.0099 4372 RDPWD (447de7e3dea39d422c1504f245b668b1) C:\Windows\system32\drivers\RDPWD.sys
21:42:38.0099 4372 RDPWD - ok
21:42:38.0146 4372 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
21:42:38.0161 4372 rdyboost - ok
21:42:38.0224 4372 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
21:42:38.0224 4372 RemoteAccess - ok
21:42:38.0270 4372 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
21:42:38.0302 4372 RemoteRegistry - ok
21:42:38.0426 4372 RichVideo64 (0b169fe016039571ecc6db70073f8979) C:\Program Files\CyberLink\Shared files\RichVideo64.exe
21:42:38.0426 4372 RichVideo64 - ok
21:42:38.0473 4372 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
21:42:38.0473 4372 RpcEptMapper - ok
21:42:38.0504 4372 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
21:42:38.0504 4372 RpcLocator - ok
21:42:38.0582 4372 RpcSs (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
21:42:38.0582 4372 RpcSs - ok
21:42:38.0692 4372 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
21:42:38.0707 4372 rspndr - ok
21:42:38.0770 4372 RTHDMIAzAudService (7421a35c45484b95e83b5e9e107cefc2) C:\Windows\system32\drivers\RtHDMIVX.sys
21:42:38.0770 4372 RTHDMIAzAudService - ok
21:42:38.0832 4372 SamSs (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
21:42:38.0832 4372 SamSs - ok
21:42:38.0879 4372 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
21:42:38.0879 4372 sbp2port - ok
21:42:38.0926 4372 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
21:42:38.0941 4372 SCardSvr - ok
21:42:39.0004 4372 SCDEmu (4dfe7adb4188f01ace51f9aa7c6a2924) C:\Windows\system32\drivers\SCDEmu.sys
21:42:39.0004 4372 SCDEmu - ok
21:42:39.0019 4372 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
21:42:39.0019 4372 scfilter - ok
21:42:39.0128 4372 Schedule (624d0f5ff99428bb90a5b8a4123e918e) C:\Windows\system32\schedsvc.dll
21:42:39.0206 4372 Schedule - ok
21:42:39.0253 4372 SCPolicySvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
21:42:39.0253 4372 SCPolicySvc - ok
21:42:39.0284 4372 SDRSVC (765a27c3279ce11d14cb9e4f5869fca5) C:\Windows\System32\SDRSVC.dll
21:42:39.0300 4372 SDRSVC - ok
21:42:39.0378 4372 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
21:42:39.0378 4372 secdrv - ok
21:42:39.0394 4372 seclogon (463b386ebc70f98da5dff85f7e654346) C:\Windows\system32\seclogon.dll
21:42:39.0394 4372 seclogon - ok
21:42:39.0425 4372 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
21:42:39.0425 4372 SENS - ok
21:42:39.0440 4372 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
21:42:39.0440 4372 SensrSvc - ok
21:42:39.0456 4372 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
21:42:39.0472 4372 Serenum - ok
21:42:39.0487 4372 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
21:42:39.0487 4372 Serial - ok
21:42:39.0503 4372 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
21:42:39.0503 4372 sermouse - ok
21:42:39.0550 4372 SessionEnv (c3bc61ce47ff6f4e88ab8a3b429a36af) C:\Windows\system32\sessenv.dll
21:42:39.0550 4372 SessionEnv - ok
21:42:39.0581 4372 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
21:42:39.0581 4372 sffdisk - ok
21:42:39.0596 4372 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys
21:42:39.0596 4372 sffp_mmc - ok
21:42:39.0596 4372 sffp_sd (5588b8c6193eb1522490c122eb94dffa) C:\Windows\system32\DRIVERS\sffp_sd.sys
21:42:39.0612 4372 sffp_sd - ok
21:42:39.0659 4372 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
21:42:39.0659 4372 sfloppy - ok
21:42:39.0737 4372 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
21:42:39.0752 4372 SharedAccess - ok
21:42:39.0846 4372 ShellHWDetection (0298ac45d0efffb2db4baa7dd186e7bf) C:\Windows\System32\shsvcs.dll
21:42:39.0862 4372 ShellHWDetection - ok
21:42:39.0893 4372 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
21:42:39.0893 4372 SiSRaid2 - ok
21:42:39.0924 4372 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
21:42:39.0924 4372 SiSRaid4 - ok
21:42:39.0955 4372 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
21:42:39.0955 4372 Smb - ok
21:42:39.0986 4372 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
21:42:39.0986 4372 SNMPTRAP - ok
21:42:40.0096 4372 Sony Ericsson PCCompanion (86216565b0e5cc28fc7d305ec80457d4) C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe
21:42:40.0096 4372 Sony Ericsson PCCompanion - ok
21:42:40.0158 4372 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
21:42:40.0158 4372 spldr - ok
21:42:40.0236 4372 Spooler (f8e1fa03cb70d54a9892ac88b91d1e7b) C:\Windows\System32\spoolsv.exe
21:42:40.0236 4372 Spooler - ok
21:42:40.0486 4372 sppsvc (913d843498553a1bc8f8dbad6358e49f) C:\Windows\system32\sppsvc.exe
21:42:40.0501 4372 sppsvc - ok
21:42:40.0673 4372 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
21:42:40.0673 4372 sppuinotify - ok
21:42:40.0782 4372 sptd (602884696850c86434530790b110e8eb) C:\Windows\system32\Drivers\sptd.sys
21:42:40.0782 4372 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 602884696850c86434530790b110e8eb
21:42:40.0829 4372 sptd ( LockedFile.Multi.Generic ) - warning
21:42:40.0829 4372 sptd - detected LockedFile.Multi.Generic (1)
21:42:40.0891 4372 Spyder3 (d8b882c520fc83547e22014ff5ec66d7) C:\Windows\system32\DRIVERS\Spyder3.sys
21:42:40.0891 4372 Spyder3 - ok
21:42:40.0969 4372 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
21:42:40.0969 4372 srv - ok
21:42:41.0000 4372 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
21:42:41.0016 4372 srv2 - ok
21:42:41.0078 4372 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
21:42:41.0078 4372 srvnet - ok
21:42:41.0141 4372 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
21:42:41.0141 4372 SSDPSRV - ok
21:42:41.0156 4372 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
21:42:41.0156 4372 SstpSvc - ok
21:42:41.0203 4372 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
21:42:41.0203 4372 stexstor - ok
21:42:41.0266 4372 stisvc (52d0e33b681bd0f33fdc08812fee4f7d) C:\Windows\System32\wiaservc.dll
21:42:41.0281 4372 stisvc - ok
21:42:41.0297 4372 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
21:42:41.0297 4372 swenum - ok
21:42:41.0406 4372 SwitchBoard (f577910a133a592234ebaad3f3afa258) C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
21:42:41.0437 4372 SwitchBoard - ok
21:42:41.0500 4372 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
21:42:41.0515 4372 swprv - ok
21:42:41.0593 4372 SynTP (ed6d1424e5b0c21a57b28dd8508d6843) C:\Windows\system32\DRIVERS\SynTP.sys
21:42:41.0593 4372 SynTP - ok
21:42:41.0702 4372 SysMain (3c1284516a62078fb68f768de4f1a7be) C:\Windows\system32\sysmain.dll
21:42:41.0734 4372 SysMain - ok
21:42:41.0905 4372 TabletInputService (238935c3cf2854886dc7cbb2a0e2cc66) C:\Windows\System32\TabSvc.dll
21:42:41.0905 4372 TabletInputService - ok
21:42:41.0983 4372 TapiSrv (884264ac597b690c5707c89723bb8e7b) C:\Windows\System32\tapisrv.dll
21:42:41.0999 4372 TapiSrv - ok
21:42:42.0046 4372 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
21:42:42.0046 4372 TBS - ok
21:42:42.0295 4372 Tcpip (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\drivers\tcpip.sys
21:42:42.0295 4372 Tcpip - ok
21:42:42.0607 4372 TCPIP6 (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\DRIVERS\tcpip.sys
21:42:42.0623 4372 TCPIP6 - ok
21:42:42.0826 4372 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
21:42:42.0826 4372 tcpipreg - ok
21:42:42.0919 4372 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
21:42:42.0919 4372 TDPIPE - ok
21:42:42.0950 4372 TDTCP (7518f7bcfd4b308abc9192bacaf6c970) C:\Windows\system32\drivers\tdtcp.sys
21:42:42.0950 4372 TDTCP - ok
21:42:42.0982 4372 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
21:42:42.0982 4372 tdx - ok
21:42:42.0997 4372 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
21:42:42.0997 4372 TermDD - ok
21:42:43.0060 4372 TermService (0f05ec2887bfe197ad82a13287d2f404) C:\Windows\System32\termsrv.dll
21:42:43.0138 4372 TermService - ok
21:42:43.0169 4372 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
21:42:43.0169 4372 Themes - ok
21:42:43.0216 4372 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
21:42:43.0216 4372 THREADORDER - ok
21:42:43.0247 4372 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
21:42:43.0247 4372 TrkWks - ok
21:42:43.0309 4372 TrustedInstaller (840f7fb849f5887a49ba18c13b2da920) C:\Windows\servicing\TrustedInstaller.exe
21:42:43.0309 4372 TrustedInstaller - ok
21:42:43.0340 4372 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
21:42:43.0340 4372 tssecsrv - ok
21:42:43.0387 4372 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
21:42:43.0387 4372 tunnel - ok
21:42:43.0434 4372 TurboB (825e7a1f48fb8bcfba27c178aab4e275) C:\Windows\system32\DRIVERS\TurboB.sys
21:42:43.0434 4372 TurboB - ok
21:42:43.0543 4372 TurboBoost (b206be1174d5964d49a56bb6c4e0524a) C:\Program Files\Intel\TurboBoost\TurboBoost.exe
21:42:43.0543 4372 TurboBoost - ok
21:42:43.0559 4372 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
21:42:43.0559 4372 uagp35 - ok
21:42:43.0606 4372 UBHelper (2e22c1fd397a5a9ffef55e9d1fc96c00) C:\Windows\system32\drivers\UBHelper.sys
21:42:43.0621 4372 UBHelper - ok
21:42:43.0684 4372 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys
21:42:43.0699 4372 udfs - ok
21:42:43.0746 4372 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
21:42:43.0762 4372 UI0Detect - ok
21:42:43.0777 4372 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
21:42:43.0793 4372 uliagpkx - ok
21:42:43.0808 4372 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
21:42:43.0808 4372 umbus - ok
21:42:43.0824 4372 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
21:42:43.0824 4372 UmPass - ok
21:42:44.0089 4372 UNS (765f2dd351ba064f657751d8d75e58c0) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
21:42:44.0105 4372 UNS - ok
21:42:44.0245 4372 Updater Service (70dde3a86dbeb1d6c3c30ad687b1877a) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
21:42:44.0245 4372 Updater Service - ok
21:42:44.0386 4372 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
21:42:44.0401 4372 upnphost - ok
21:42:44.0448 4372 USBAAPL64 (54d4b48d443e7228bf64cf7cdc3118ac) C:\Windows\system32\Drivers\usbaapl64.sys
21:42:44.0448 4372 USBAAPL64 - ok
21:42:44.0510 4372 usbaudio (77b01bc848298223a95d4ec23e1785a1) C:\Windows\system32\drivers\usbaudio.sys
21:42:44.0510 4372 usbaudio - ok
21:42:44.0557 4372 usbccgp (7b6a127c93ee590e4d79a5f2a76fe46f) C:\Windows\system32\DRIVERS\usbccgp.sys
21:42:44.0557 4372 usbccgp - ok
21:42:44.0604 4372 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
21:42:44.0604 4372 usbcir - ok
21:42:44.0635 4372 usbehci (92969ba5ac44e229c55a332864f79677) C:\Windows\system32\drivers\usbehci.sys
21:42:44.0635 4372 usbehci - ok
21:42:44.0666 4372 usbhub (e7df1cfd28ca86b35ef5add0735ceef3) C:\Windows\system32\DRIVERS\usbhub.sys
21:42:44.0682 4372 usbhub - ok
21:42:44.0760 4372 usbohci (f1bb1e55f1e7a65c5839ccc7b36d773e) C:\Windows\system32\drivers\usbohci.sys
21:42:44.0760 4372 usbohci - ok
21:42:44.0807 4372 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
21:42:44.0807 4372 usbprint - ok
21:42:44.0838 4372 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
21:42:44.0838 4372 usbscan - ok
21:42:44.0885 4372 usbser (0f0c72a657c622286013788b886968ad) C:\Windows\system32\DRIVERS\usbser.sys
21:42:44.0885 4372 usbser - ok
21:42:44.0947 4372 USBSTOR (f39983647bc1f3e6100778ddfe9dce29) C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:42:44.0947 4372 USBSTOR - ok
21:42:45.0010 4372 usbuhci (bc3070350a491d84b518d7cca9abd36f) C:\Windows\system32\drivers\usbuhci.sys
21:42:45.0010 4372 usbuhci - ok
21:42:45.0072 4372 usbvideo (7cb8c573c6e4a2714402cc0a36eab4fe) C:\Windows\System32\Drivers\usbvideo.sys
21:42:45.0088 4372 usbvideo - ok
21:42:45.0119 4372 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
21:42:45.0119 4372 UxSms - ok
21:42:45.0166 4372 VaultSvc (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
21:42:45.0166 4372 VaultSvc - ok
21:42:45.0228 4372 VBoxDrv (e5af6997b59429bc44de616b5a963788) C:\Windows\system32\DRIVERS\VBoxDrv.sys
21:42:45.0228 4372 VBoxDrv - ok
21:42:45.0306 4372 VBoxNetAdp (b4ffc1739b9bd3b0177b16b46caf8420) C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
21:42:45.0306 4372 VBoxNetAdp - ok
21:42:45.0353 4372 VBoxNetFlt (5eb23066803668b29d403bc76c63cc70) C:\Windows\system32\DRIVERS\VBoxNetFlt.sys
21:42:45.0353 4372 VBoxNetFlt - ok
21:42:45.0400 4372 VBoxUSBMon (e6a42e54d4f7d7756e988f9135796572) C:\Windows\system32\DRIVERS\VBoxUSBMon.sys
21:42:45.0400 4372 VBoxUSBMon - ok
21:42:45.0446 4372 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
21:42:45.0446 4372 vdrvroot - ok
21:42:45.0493 4372 vds (44d73e0bbc1d3c8981304ba15135c2f2) C:\Windows\System32\vds.exe
21:42:45.0540 4372 vds - ok
21:42:45.0634 4372 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
21:42:45.0634 4372 vga - ok
21:42:45.0649 4372 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
21:42:45.0649 4372 VgaSave - ok
21:42:45.0743 4372 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
21:42:45.0758 4372 vhdmp - ok
21:42:45.0836 4372 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
21:42:45.0836 4372 viaide - ok
21:42:45.0852 4372 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
21:42:45.0852 4372 volmgr - ok
21:42:45.0899 4372 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
21:42:45.0899 4372 volmgrx - ok
21:42:45.0977 4372 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
21:42:45.0992 4372 volsnap - ok
21:42:46.0086 4372 Vsdatant (239d8d72730226cd460bdc8ca0a23d43) C:\Windows\system32\DRIVERS\vsdatant.sys
21:42:46.0086 4372 Vsdatant - ok
21:42:46.0164 4372 vsmon - ok
21:42:46.0242 4372 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
21:42:46.0242 4372 vsmraid - ok
21:42:46.0398 4372 VSS (787898bf9fb6d7bd87a36e2d95c899ba) C:\Windows\system32\vssvc.exe
21:42:46.0460 4372 VSS - ok
21:42:46.0694 4372 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
21:42:46.0694 4372 vwifibus - ok
21:42:46.0726 4372 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
21:42:46.0726 4372 vwififlt - ok
21:42:46.0726 4372 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
21:42:46.0741 4372 vwifimp - ok
21:42:46.0788 4372 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
21:42:46.0835 4372 W32Time - ok
21:42:46.0975 4372 W3SVC (06d2b9bc146bb0f45f45ff7a296d50c4) C:\Windows\system32\inetsrv\iisw3adm.dll
21:42:46.0991 4372 W3SVC - ok
21:42:47.0022 4372 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
21:42:47.0022 4372 WacomPen - ok
21:42:47.0069 4372 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
21:42:47.0069 4372 WANARP - ok
21:42:47.0069 4372 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
21:42:47.0069 4372 Wanarpv6 - ok
21:42:47.0084 4372 WAS (06d2b9bc146bb0f45f45ff7a296d50c4) C:\Windows\system32\inetsrv\iisw3adm.dll
21:42:47.0084 4372 WAS - ok
21:42:47.0225 4372 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
21:42:47.0256 4372 WatAdminSvc - ok
21:42:47.0365 4372 wbengine (5ab1bb85bd8b5089cc5d64200dedae68) C:\Windows\system32\wbengine.exe
21:42:47.0381 4372 wbengine - ok
21:42:47.0506 4372 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
21:42:47.0521 4372 WbioSrvc - ok
21:42:47.0584 4372 wcncsvc (dd1bae8ebfc653824d29ccf8c9054d68) C:\Windows\System32\wcncsvc.dll
21:42:47.0599 4372 wcncsvc - ok
21:42:47.0630 4372 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
21:42:47.0630 4372 WcsPlugInService - ok
21:42:47.0740 4372 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
21:42:47.0740 4372 Wd - ok
21:42:47.0802 4372 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
21:42:47.0802 4372 Wdf01000 - ok
21:42:47.0833 4372 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
21:42:47.0833 4372 WdiServiceHost - ok
21:42:47.0833 4372 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
21:42:47.0833 4372 WdiSystemHost - ok
21:42:47.0896 4372 WebClient (733006127f235be7c35354ebee7b9a7b) C:\Windows\System32\webclnt.dll
21:42:47.0911 4372 WebClient - ok
21:42:47.0958 4372 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
21:42:47.0958 4372 Wecsvc - ok
21:42:47.0989 4372 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
21:42:47.0989 4372 wercplsupport - ok
21:42:48.0005 4372 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
21:42:48.0005 4372 WerSvc - ok
21:42:48.0083 4372 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
21:42:48.0083 4372 WfpLwf - ok
21:42:48.0161 4372 WimFltr (f9ad3a5e3fd7e0bdb18b8202b0fdd4e4) C:\Windows\system32\DRIVERS\wimfltr.sys
21:42:48.0161 4372 WimFltr - ok
21:42:48.0176 4372 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
21:42:48.0176 4372 WIMMount - ok
21:42:48.0223 4372 WinDefend - ok
21:42:48.0239 4372 WinHttpAutoProxySvc - ok
21:42:48.0332 4372 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
21:42:48.0332 4372 Winmgmt - ok
21:42:48.0520 4372 WinRM (41fbb751936b387f9179e7f03a74fe29) C:\Windows\system32\WsmSvc.dll
21:42:48.0551 4372 WinRM - ok
21:42:48.0738 4372 WinUsb (817eaff5d38674edd7713b9dfb8e9791) C:\Windows\system32\DRIVERS\WinUsb.sys
21:42:48.0754 4372 WinUsb - ok
21:42:48.0847 4372 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
21:42:48.0863 4372 Wlansvc - ok
21:42:48.0925 4372 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
21:42:48.0925 4372 WmiAcpi - ok
21:42:49.0019 4372 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
21:42:49.0034 4372 wmiApSrv - ok
21:42:49.0050 4372 WMPNetworkSvc - ok
21:42:49.0112 4372 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
21:42:49.0112 4372 WPCSvc - ok
21:42:49.0144 4372 WPDBusEnum (2e57ddf2880a7e52e76f41c7e96d327b) C:\Windows\system32\wpdbusenum.dll
21:42:49.0144 4372 WPDBusEnum - ok
21:42:49.0190 4372 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
21:42:49.0190 4372 ws2ifsl - ok
21:42:49.0237 4372 wscsvc (8f9f3969933c02da96eb0f84576db43e) C:\Windows\system32\wscsvc.dll
21:42:49.0237 4372 wscsvc - ok
21:42:49.0253 4372 WSearch - ok
21:42:49.0471 4372 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
21:42:49.0502 4372 wuauserv - ok
21:42:49.0674 4372 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
21:42:49.0690 4372 WudfPf - ok
21:42:49.0705 4372 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
21:42:49.0705 4372 WUDFRd - ok
21:42:49.0752 4372 wudfsvc (b551d6637aa0e132c18ac6e504f7b79b) C:\Windows\System32\WUDFSvc.dll
21:42:49.0752 4372 wudfsvc - ok
21:42:49.0783 4372 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
21:42:49.0783 4372 WwanSvc - ok
21:42:49.0939 4372 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796} (74983addca2d9618512c088d856d6615) C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\000.fcl
21:42:49.0939 4372 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796} - ok
21:42:49.0970 4372 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
21:42:50.0345 4372 \Device\Harddisk0\DR0 - ok
21:42:50.0345 4372 MBR (0x1B8) (ddae9d649db12f6aff24483f2c298989) \Device\Harddisk1\DR1
21:42:50.0548 4372 \Device\Harddisk1\DR1 - ok
21:42:50.0548 4372 Boot (0x1200) (a9d0f63221f76f637f2e32462a90aeec) \Device\Harddisk0\DR0\Partition0
21:42:50.0548 4372 \Device\Harddisk0\DR0\Partition0 - ok
21:42:50.0563 4372 Boot (0x1200) (88a1c2481ee9249e0c37cad8f2063d09) \Device\Harddisk0\DR0\Partition1
21:42:50.0563 4372 \Device\Harddisk0\DR0\Partition1 - ok
21:42:50.0563 4372 Boot (0x1200) (2aba67764ab284d8f94a062dd51c38fb) \Device\Harddisk1\DR1\Partition0
21:42:50.0563 4372 \Device\Harddisk1\DR1\Partition0 - ok
21:42:50.0563 4372 ============================================================
21:42:50.0579 4372 Scan finished
21:42:50.0579 4372 ============================================================
21:42:50.0579 1144 Detected object count: 1
21:42:50.0579 1144 Actual detected object count: 1
22:02:52.0046 1144 sptd ( LockedFile.Multi.Generic ) - skipped by user
22:02:52.0046 1144 sptd ( LockedFile.Multi.Generic ) - User select action: Skip

#5 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,716 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:12:22 AM

Posted 24 July 2012 - 08:41 PM

Hi
boopme asked me to take a look here.

First of all I'm not sure what you mean by this:

(I had ckecked the proxy, they had not been rerouted)


Then, FSS log is incomplete so you'll have to re-run it following my instructions below:

Download Security Check from HERE, and save it to your Desktop.

* Double-click SecurityCheck.exe
* Follow the onscreen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt; please post the contents of that document.

=============================================================================

Please download Farbar Service Scanner (FSS) and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.

====================================================================================

Please download MiniToolBox and run it.

Checkmark following boxes:
  • Report IE Proxy Settings
  • Report FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices (do NOT change any settings here)
  • List Users, Partitions and Memory size
Click Go and post the result.

=============================================================================

Download Malwarebytes' Anti-Malware (aka MBAM): https://www.bleepingcomputer.com/download/malwarebytes-anti-malware/ to your desktop.

* Double-click mbam-setup.exe and follow the prompts to install the program.
* At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
* If an update is found, it will download and install the latest version.
* Once the program has loaded, select Perform quick scan, then click Scan.
* When the scan is complete, click OK, then Show Results to view the results.
* Be sure that everything is checked, and click Remove Selected.
* When completed, a log will open in Notepad.
* Post the log back here.

Be sure to restart the computer.

The log can also be found here:
C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
Or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt

=============================================================================

Download aswMBR to your desktop.
Double click the aswMBR.exe to run it.
If you see this question: Would you like to download latest Avast! virus definitions?" say "Yes".
Click the "Scan" button to start scan.
On completion of the scan click "Save log", save it to your desktop and post in your next reply.

NOTE. aswMBR will create MBR.dat file on your desktop. This is a copy of your MBR. Do NOT delete it.

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#6 nogbad73

nogbad73
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:02:22 AM

Posted 25 July 2012 - 05:45 PM

Results of screen317's Security Check version 0.99.24
Windows 7 x64 (UAC is disabled!)
Internet Explorer 9
``````````````````````````````
Antivirus/Firewall Check:

Windows Firewall Disabled!
ZoneAlarm Antivirus
ZoneAlarm Firewall
ZoneAlarm Extreme Security
ZoneAlarm Security Toolbar
ZoneAlarm Security
ZoneAlarm DataLock
WMI entry may not exist for antivirus; attempting automatic update.
```````````````````````````````
Anti-malware/Other Utilities Check:

Spyder3Elite
Java™ 6 Update 31
Adobe Flash Player 11.3.300.265
Mozilla Firefox (x86 en-US..)
````````````````````````````````
Process Check:
objlist.exe by Laurent

Malwarebytes' Anti-Malware mbamservice.exe
Malwarebytes' Anti-Malware mbamgui.exe
CheckPoint ZoneAlarm zatray.exe
CheckPoint ZoneAlarm vsmon.exe
``````````End of Log````````````


Farbar Service Scanner Version: 19-07-2012
Ran by vanda (administrator) on 25-07-2012 at 22:43:10
Running from "E:\"
Microsoft Windows 7 Home Premium (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Attempt to access Local Host IP returned error: Localhost is blocked: Destination is offline
There is no connection to network.
Google IP is accessible.
Attempt to access Google.com returned error: Other errors
Yahoo IP is accessible.
Attempt to access Yahoo.com returned error: Other errors


Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall"=DWORD:0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall"=DWORD:0


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

Other Services:
==============

sharedaccess Service is not running. Checking service configuration:
The start type of sharedaccess service is set to Auto
The ImagePath of sharedaccess service is OK.
The ServiceDll of sharedaccess service is OK.


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys
[2012-02-15 20:32] - [2011-12-28 04:59] - 0499200 ____A (Microsoft Corporation) DB9D6C6B2CD95A9CA414D045B627422E

C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys
[2012-05-10 12:56] - [2012-03-30 12:09] - 1895280 ____A (Microsoft Corporation) 624C5B3AA4C99B3184BB922D9ECE3FF0

C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll
[2009-07-14 01:09] - [2009-07-14 02:41] - 0824832 ____A (Microsoft Corporation) AECAB449567D1846DAD63ECE49E893E3

C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll
[2009-07-14 00:36] - [2009-07-14 02:41] - 0170496 ____A (Microsoft Corporation) 765A27C3279CE11D14CB9E4F5869FCA5

C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll
[2012-06-13 20:38] - [2012-04-24 06:59] - 0182272 ____A (Microsoft Corporation) F02786B66375292E58C8777082D4396D

C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

MiniToolBox by Farbar Version: 23-07-2012
Ran by vanda (administrator) on 25-07-2012 at 23:40:44
Microsoft Windows 7 Home Premium (X64)
Boot Mode: Normal
***************************************************************************

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

========================= FF Proxy Settings: ==============================

========================= Hosts content: =================================

127.0.0.1 localhost

========================= IP Configuration: ================================

Broadcom NetLink ™ Gigabit Ethernet = Local Area Connection (Connected)
VirtualBox Host-Only Ethernet Adapter = VirtualBox Host-Only Network (Connected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Hardware not present)
Atheros AR5B93 Wireless Network Adapter = Wireless Network Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global
add route prefix=169.254.0.0/16 interface="iftype0_0" nexthop=192.168.1.69 metric=1 publish=Yes
add route prefix=169.254.0.0/16 interface="iftype0_0" nexthop=192.168.1.70 metric=1 publish=Yes
add route prefix=169.254.0.0/16 interface="iftype0_0" nexthop=192.168.56.1 metric=1 publish=Yes
add address name="VirtualBox Host-Only Network" address=192.168.56.1


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Dollywood2
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Atheros AR5B93 Wireless Network Adapter
Physical Address. . . . . . . . . : C4-17-FE-1C-7B-49
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom NetLink ™ Gigabit Ethernet
Physical Address. . . . . . . . . : 00-26-2D-7B-1C-FC
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::3c07:4168:1fe1:cbea%11(Preferred)
Autoconfiguration IPv4 Address. . : 169.254.203.234(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.0.0
Default Gateway . . . . . . . . . :
DHCPv6 IAID . . . . . . . . . . . : 335554093
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-12-D4-39-C2-00-26-2D-7B-1C-FC
DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
fec0:0:0:ffff::2%1
fec0:0:0:ffff::3%1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter VirtualBox Host-Only Network:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : VirtualBox Host-Only Ethernet Adapter
Physical Address. . . . . . . . . : 08-00-27-00-24-34
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::91f8:c77e:5425:a98b%17(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.56.1(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . :
DHCPv6 IAID . . . . . . . . . . . : 453509159
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-12-D4-39-C2-00-26-2D-7B-1C-FC
DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
fec0:0:0:ffff::2%1
fec0:0:0:ffff::3%1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{DD75410A-DA1A-45EF-8EE9-4A6CD9C376BC}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 13:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{44EA7C88-A958-4039-AC80-E63D8654870D}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{079E895E-A34A-44CA-AB30-B5385D4D0B79}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: UnKnown
Address: fec0:0:0:ffff::1

Ping request could not find host google.com. Please check the name and try again.
Server: UnKnown
Address: fec0:0:0:ffff::1

Ping request could not find host yahoo.com. Please check the name and try again.
Server: UnKnown
Address: fec0:0:0:ffff::1

Ping request could not find host bleepingcomputer.com. Please check the name and try again.

Pinging 127.0.0.1 with 32 bytes of data:
Request timed out.
Request timed out.

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 0, Lost = 2 (100% loss),
===========================================================================
Interface List
12...c4 17 fe 1c 7b 49 ......Atheros AR5B93 Wireless Network Adapter
11...00 26 2d 7b 1c fc ......Broadcom NetLink ™ Gigabit Ethernet
17...08 00 27 00 24 34 ......VirtualBox Host-Only Ethernet Adapter
1...........................Software Loopback Interface 1
20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
19...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
22...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
169.254.0.0 255.255.0.0 On-link 192.168.56.1 21
169.254.0.0 255.255.0.0 On-link 169.254.203.234 21
169.254.203.234 255.255.255.255 On-link 169.254.203.234 276
169.254.255.255 255.255.255.255 On-link 192.168.56.1 276
169.254.255.255 255.255.255.255 On-link 169.254.203.234 276
192.168.56.0 255.255.255.0 On-link 192.168.56.1 276
192.168.56.1 255.255.255.255 On-link 192.168.56.1 276
192.168.56.255 255.255.255.255 On-link 192.168.56.1 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.56.1 276
224.0.0.0 240.0.0.0 On-link 169.254.203.234 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.56.1 276
255.255.255.255 255.255.255.255 On-link 169.254.203.234 276
===========================================================================
Persistent Routes:
Network Address Netmask Gateway Address Metric
169.254.0.0 255.255.0.0 192.168.1.69 1
169.254.0.0 255.255.0.0 192.168.1.70 1
169.254.0.0 255.255.0.0 192.168.56.1 1
===========================================================================

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
17 276 fe80::/64 On-link
11 276 fe80::/64 On-link
11 276 fe80::3c07:4168:1fe1:cbea/128
On-link
17 276 fe80::91f8:c77e:5425:a98b/128
On-link
1 306 ff00::/8 On-link
17 276 ff00::/8 On-link
11 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [51712] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [152864] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70144] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [193824] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (07/23/2012 06:45:13 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007043c, This service cannot be started in Safe Mode
.


Operation:
Instantiating VSS server

Error: (07/23/2012 06:45:13 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: The COM Server with CLSID {e579ab5f-1cc4-44b4-bed9-de0991ff0623} and name IVssCoordinatorEx2 cannot be started during Safe Mode.
The Volume Shadow Copy service cannot start while in safe mode. [0x8007043c, This service cannot be started in Safe Mode
]


Operation:
Instantiating VSS server

Error: (07/22/2012 07:35:42 AM) (Source: Family Tree Maker) (User: )
Description: Timestamp: 22/07/2012 06:35:42
Message: HandlingInstanceID: 45285588-5e1f-4675-9d0e-a905d1d602bb
An exception of type 'System.Net.Sockets.SocketException' occurred and was caught.
----------------------------------------------------------------------------------
07/22/2012 07:35:42
Type : System.Net.Sockets.SocketException, System, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089
Message : A connection attempt failed because the connected party did not properly respond after a period of time, or established connection failed because connected host has failed to respond 66.43.20.207:80
Source : System
Help link :
ErrorCode : 10060
SocketErrorCode : TimedOut
NativeErrorCode : 10060
Data : System.Collections.ListDictionaryInternal
TargetSite : Void Connect(System.Net.IPAddress[], Int32)
Stack Trace : at System.Net.Sockets.Socket.Connect(IPAddress[] addresses, Int32 port)
at System.Net.Sockets.Socket.Connect(String host, Int32 port)
at FTM.Connectivity.ConnectionDetector.SocketConnect(String serverName)

Additional Info:

MachineName : DOLLYWOOD2
TimeStamp : 22/07/2012 06:35:42
FullName : Microsoft.Practices.EnterpriseLibrary.ExceptionHandling, Version=2.0.0.0, Culture=neutral, PublicKeyToken=69cf5367912b86b4
AppDomainName : FTM.exe
ThreadIdentity : Dollywood2\vanda
WindowsIdentity : Dollywood2\vanda

Category: Exception
Priority: 0
EventId: 100
Severity: Error
Title:FTM Exception Handling
Machine: DOLLYWOOD2
Application Domain: FTM.exe
Process Id: 3968
Process Name: C:\Program Files (x86)\Family Tree Maker 2012\FTM.exe
Win32 Thread Id: 4124
Thread Name:
Extended Properties:

Error: (07/21/2012 10:28:46 PM) (Source: Application Hang) (User: )
Description: The program mbam.exe version 1.60.0.80 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 3f4

Start Time: 01cd67878fcae9cf

Termination Time: 0

Application Path: C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe

Report Id: 0426715c-d37b-11e1-a4fc-00262d7b1cfc

Error: (07/21/2012 10:20:10 PM) (Source: Application Hang) (User: )
Description: The program mbam.exe version 1.60.0.80 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 134c

Start Time: 01cd6785f8aa2e92

Termination Time: 15

Application Path: C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe

Report Id: ca03d833-d379-11e1-a4fc-00262d7b1cfc

Error: (07/21/2012 07:21:22 PM) (Source: Microsoft-Windows-RestartManager) (User: Dollywood2)Dollywood2
Description: Application or service 'Windows Explorer' could not be shut down.

Error: (07/20/2012 10:51:33 AM) (Source: Application Error) (User: )
Description: Faulting application name: Acrobat.exe, version: 8.0.0.456, time stamp: 0x453c8d7f
Faulting module name: AcroForm.api, version: 8.0.0.456, time stamp: 0x453c8733
Exception code: 0xc0000409
Fault offset: 0x0043544c
Faulting process id: 0x1688
Faulting application start time: 0xAcrobat.exe0
Faulting application path: Acrobat.exe1
Faulting module path: Acrobat.exe2
Report Id: Acrobat.exe3

Error: (07/19/2012 07:33:19 PM) (Source: Application Hang) (User: )
Description: The program firefox.exe version 10.0.2.4428 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: fd4

Start Time: 01cd6516b87e34b7

Termination Time: 250

Application Path: C:\Program Files (x86)\Mozilla Firefox\firefox.exe

Report Id: 24a65342-d1d0-11e1-9e27-00262d7b1cfc

Error: (07/18/2012 07:54:06 PM) (Source: Application Hang) (User: )
Description: The program firefox.exe version 10.0.2.4428 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 11ec

Start Time: 01cd643e690448b3

Termination Time: 23

Application Path: C:\Program Files (x86)\Mozilla Firefox\firefox.exe

Report Id: db4be818-d109-11e1-9e27-00262d7b1cfc

Error: (07/14/2012 00:53:21 PM) (Source: .NET Runtime) (User: )
Description: Application: FTM.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.AccessViolationException
Stack:
at System.Data.SQLite.SQLiteCommand.BuildNextCommand()
at System.Data.SQLite.SQLiteCommand.GetStatement(Int32)
at System.Data.SQLite.SQLiteDataReader.NextResult()
at System.Data.SQLite.SQLiteDataReader..ctor(System.Data.SQLite.SQLiteCommand, System.Data.CommandBehavior)
at System.Data.SQLite.SQLiteCommand.ExecuteReader(System.Data.CommandBehavior)
at System.Data.SQLite.SQLiteCommand.ExecuteDbDataReader(System.Data.CommandBehavior)
at System.Data.Common.DbCommand.ExecuteReader(System.Data.CommandBehavior)
at System.Data.EntityClient.EntityCommandDefinition.ExecuteStoreCommands(System.Data.EntityClient.EntityCommand, System.Data.CommandBehavior)
at System.Data.Objects.Internal.ObjectQueryExecutionPlan.Execute[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.Data.Objects.ObjectContext, System.Data.Objects.ObjectParameterCollection)
at System.Data.Objects.ObjectQuery`1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].GetResults(System.Nullable`1<System.Data.Objects.MergeOption>)
at System.Data.Objects.ObjectQuery`1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].System.Collections.Generic.IEnumerable<T>.GetEnumerator()
at System.Linq.Enumerable.FirstOrDefault[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.Collections.Generic.IEnumerable`1<System.__Canon>)
at System.Data.Objects.ELinq.ObjectQueryProvider.<GetElementFunction>b__1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.Collections.Generic.IEnumerable`1<System.__Canon>)
at System.Data.Objects.ELinq.ObjectQueryProvider.ExecuteSingle[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.Collections.Generic.IEnumerable`1<System.__Canon>, System.Linq.Expressions.Expression)
at System.Data.Objects.ELinq.ObjectQueryProvider.System.Linq.IQueryProvider.Execute[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.Linq.Expressions.Expression)
at System.Linq.Queryable.FirstOrDefault[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.Linq.IQueryable`1<System.__Canon>)
at FTM.Sync.Manager.SyncManager.GetCurrentState()
at FTM.Sync.Manager.SyncManager.CheckOnlineChanged(System.Object, System.Timers.ElapsedEventArgs)
at System.Timers.Timer.MyTimerCallback(System.Object)
at System.Threading._TimerCallback.TimerCallback_Context(System.Object)
at System.Threading.ExecutionContext.runTryCode(System.Object)
at System.Runtime.CompilerServices.RuntimeHelpers.ExecuteCodeWithGuaranteedCleanup(TryCode, CleanupCode, System.Object)
at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading._TimerCallback.PerformTimerCallback(System.Object)


System errors:
=============
Error: (07/25/2012 10:35:07 PM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR3.

Error: (07/25/2012 10:33:15 PM) (Source: Service Control Manager) (User: )
Description: The TrueVector Internet Monitor service terminated unexpectedly. It has done this 687 time(s).

Error: (07/25/2012 10:31:23 PM) (Source: Service Control Manager) (User: )
Description: The TrueVector Internet Monitor service terminated unexpectedly. It has done this 686 time(s).

Error: (07/25/2012 10:29:49 PM) (Source: Service Control Manager) (User: )
Description: The TrueVector Internet Monitor service terminated unexpectedly. It has done this 685 time(s).

Error: (07/25/2012 10:28:16 PM) (Source: Service Control Manager) (User: )
Description: The TrueVector Internet Monitor service terminated unexpectedly. It has done this 684 time(s).

Error: (07/25/2012 10:26:44 PM) (Source: Service Control Manager) (User: )
Description: The TrueVector Internet Monitor service terminated unexpectedly. It has done this 683 time(s).

Error: (07/25/2012 10:23:44 PM) (Source: Service Control Manager) (User: )
Description: The TrueVector Internet Monitor service terminated unexpectedly. It has done this 682 time(s).

Error: (07/25/2012 10:21:27 PM) (Source: Service Control Manager) (User: )
Description: The TrueVector Internet Monitor service terminated unexpectedly. It has done this 681 time(s).

Error: (07/25/2012 10:18:59 PM) (Source: Service Control Manager) (User: )
Description: The TrueVector Internet Monitor service terminated unexpectedly. It has done this 680 time(s).

Error: (07/25/2012 10:16:25 PM) (Source: Service Control Manager) (User: )
Description: The TrueVector Internet Monitor service terminated unexpectedly. It has done this 679 time(s).


Microsoft Office Sessions:
=========================
Error: (07/23/2012 06:45:13 PM) (Source: VSS)(User: )
Description: CoCreateInstance0x8007043c, This service cannot be started in Safe Mode


Operation:
Instantiating VSS server

Error: (07/23/2012 06:45:13 PM) (Source: VSS)(User: )
Description: {e579ab5f-1cc4-44b4-bed9-de0991ff0623}IVssCoordinatorEx20x8007043c, This service cannot be started in Safe Mode


Operation:
Instantiating VSS server

Error: (07/22/2012 07:35:42 AM) (Source: Family Tree Maker)(User: )
Description: Timestamp: 22/07/2012 06:35:42
Message: HandlingInstanceID: 45285588-5e1f-4675-9d0e-a905d1d602bb
An exception of type 'System.Net.Sockets.SocketException' occurred and was caught.
----------------------------------------------------------------------------------
07/22/2012 07:35:42
Type : System.Net.Sockets.SocketException, System, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089
Message : A connection attempt failed because the connected party did not properly respond after a period of time, or established connection failed because connected host has failed to respond 66.43.20.207:80
Source : System
Help link :
ErrorCode : 10060
SocketErrorCode : TimedOut
NativeErrorCode : 10060
Data : System.Collections.ListDictionaryInternal
TargetSite : Void Connect(System.Net.IPAddress[], Int32)
Stack Trace : at System.Net.Sockets.Socket.Connect(IPAddress[] addresses, Int32 port)
at System.Net.Sockets.Socket.Connect(String host, Int32 port)
at FTM.Connectivity.ConnectionDetector.SocketConnect(String serverName)

Additional Info:

MachineName : DOLLYWOOD2
TimeStamp : 22/07/2012 06:35:42
FullName : Microsoft.Practices.EnterpriseLibrary.ExceptionHandling, Version=2.0.0.0, Culture=neutral, PublicKeyToken=69cf5367912b86b4
AppDomainName : FTM.exe
ThreadIdentity : Dollywood2\vanda
WindowsIdentity : Dollywood2\vanda

Category: Exception
Priority: 0
EventId: 100
Severity: Error
Title:FTM Exception Handling
Machine: DOLLYWOOD2
Application Domain: FTM.exe
Process Id: 3968
Process Name: C:\Program Files (x86)\Family Tree Maker 2012\FTM.exe
Win32 Thread Id: 4124
Thread Name:
Extended Properties:

Error: (07/21/2012 10:28:46 PM) (Source: Application Hang)(User: )
Description: mbam.exe1.60.0.803f401cd67878fcae9cf0C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe0426715c-d37b-11e1-a4fc-00262d7b1cfc

Error: (07/21/2012 10:20:10 PM) (Source: Application Hang)(User: )
Description: mbam.exe1.60.0.80134c01cd6785f8aa2e9215C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.execa03d833-d379-11e1-a4fc-00262d7b1cfc

Error: (07/21/2012 07:21:22 PM) (Source: Microsoft-Windows-RestartManager)(User: Dollywood2)Dollywood2
Description: 1C:\Windows\explorer.exeWindows Explorer0411734960

Error: (07/20/2012 10:51:33 AM) (Source: Application Error)(User: )
Description: Acrobat.exe8.0.0.456453c8d7fAcroForm.api8.0.0.456453c8733c00004090043544c168801cd665d379f3879C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\Acrobat.exeC:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\plug_ins\AcroForm.api7c46053e-d250-11e1-9e27-00262d7b1cfc

Error: (07/19/2012 07:33:19 PM) (Source: Application Hang)(User: )
Description: firefox.exe10.0.2.4428fd401cd6516b87e34b7250C:\Program Files (x86)\Mozilla Firefox\firefox.exe24a65342-d1d0-11e1-9e27-00262d7b1cfc

Error: (07/18/2012 07:54:06 PM) (Source: Application Hang)(User: )
Description: firefox.exe10.0.2.442811ec01cd643e690448b323C:\Program Files (x86)\Mozilla Firefox\firefox.exedb4be818-d109-11e1-9e27-00262d7b1cfc

Error: (07/14/2012 00:53:21 PM) (Source: .NET Runtime)(User: )
Description: Application: FTM.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.AccessViolationException
Stack:
at System.Data.SQLite.SQLiteCommand.BuildNextCommand()
at System.Data.SQLite.SQLiteCommand.GetStatement(Int32)
at System.Data.SQLite.SQLiteDataReader.NextResult()
at System.Data.SQLite.SQLiteDataReader..ctor(System.Data.SQLite.SQLiteCommand, System.Data.CommandBehavior)
at System.Data.SQLite.SQLiteCommand.ExecuteReader(System.Data.CommandBehavior)
at System.Data.SQLite.SQLiteCommand.ExecuteDbDataReader(System.Data.CommandBehavior)
at System.Data.Common.DbCommand.ExecuteReader(System.Data.CommandBehavior)
at System.Data.EntityClient.EntityCommandDefinition.ExecuteStoreCommands(System.Data.EntityClient.EntityCommand, System.Data.CommandBehavior)
at System.Data.Objects.Internal.ObjectQueryExecutionPlan.Execute[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.Data.Objects.ObjectContext, System.Data.Objects.ObjectParameterCollection)
at System.Data.Objects.ObjectQuery`1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].GetResults(System.Nullable`1<System.Data.Objects.MergeOption>)
at System.Data.Objects.ObjectQuery`1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].System.Collections.Generic.IEnumerable<T>.GetEnumerator()
at System.Linq.Enumerable.FirstOrDefault[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.Collections.Generic.IEnumerable`1<System.__Canon>)
at System.Data.Objects.ELinq.ObjectQueryProvider.<GetElementFunction>b__1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.Collections.Generic.IEnumerable`1<System.__Canon>)
at System.Data.Objects.ELinq.ObjectQueryProvider.ExecuteSingle[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.Collections.Generic.IEnumerable`1<System.__Canon>, System.Linq.Expressions.Expression)
at System.Data.Objects.ELinq.ObjectQueryProvider.System.Linq.IQueryProvider.Execute[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.Linq.Expressions.Expression)
at System.Linq.Queryable.FirstOrDefault[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.Linq.IQueryable`1<System.__Canon>)
at FTM.Sync.Manager.SyncManager.GetCurrentState()
at FTM.Sync.Manager.SyncManager.CheckOnlineChanged(System.Object, System.Timers.ElapsedEventArgs)
at System.Timers.Timer.MyTimerCallback(System.Object)
at System.Threading._TimerCallback.TimerCallback_Context(System.Object)
at System.Threading.ExecutionContext.runTryCode(System.Object)
at System.Runtime.CompilerServices.RuntimeHelpers.ExecuteCodeWithGuaranteedCleanup(TryCode, CleanupCode, System.Object)
at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading._TimerCallback.PerformTimerCallback(System.Object)


=========================== Installed Programs ============================

AAC Decoder (Version: 7.1.0)
Acer Arcade Deluxe (Version: 3.0.7112)
Acer Backup Manager (Version: 2.0.0.29)
Acer Crystal Eye webcam Ver:1.1.124.1120 (Version: 1.1.124.1120)
Acer ePower Management (Version: 4.05.3004)
Acer eRecovery Management (Version: 4.05.3005)
Acer GameZone Console (Version: 5.1.0.2)
Acer GridVista (Version: 3.01.0730)
Acer Registration (Version: 1.02.3006)
Acer ScreenSaver (Version: 1.5.0715)
Acer Updater (Version: 1.01.3017)
Acrobat.com (Version: 1.6.65)
Active@ ISO Burner (Version: 2.1.0)
Adobe Acrobat 8 Professional - English, Français, Deutsch (Version: 8.0.0)
Adobe AIR (Version: 1.5.3.9130)
Adobe Anchor Service CS4 (Version: 2.0)
Adobe Anchor Service x64 CS4 (Version: 2.0)
Adobe Bridge CS4 (Version: 3)
Adobe CMaps CS4 (Version: 2.0)
Adobe CMaps x64 CS4 (Version: 2.0)
Adobe Color - Photoshop Specific CS4 (Version: 2.0)
Adobe Color EU Extra Settings CS4 (Version: 2.0)
Adobe Color JA Extra Settings CS4 (Version: 2.0)
Adobe Color NA Recommended Settings CS4 (Version: 2.0)
Adobe Color Video Profiles CS CS4 (Version: 2.0)
Adobe Community Help (Version: 3.0.0)
Adobe Community Help (Version: 3.0.0.400)
Adobe CSI CS4 (Version: 1)
Adobe CSI CS4 x64 (Version: 1)
Adobe Default Language CS4 (Version: 2.0)
Adobe Device Central CS4 (Version: 2)
Adobe Download Manager (Version: 1.6.2.91)
Adobe Drive CS4 (Version: 1)
Adobe Drive CS4 x64 (Version: 1)
Adobe ExtendScript Toolkit CS4 (Version: 3.0.0)
Adobe Extension Manager CS4 (Version: 2.0)
Adobe Flash Player 11 ActiveX 64-bit (Version: 11.1.102.55)
Adobe Flash Player 11 Plugin (Version: 11.3.300.265)
Adobe Fonts All (Version: 2.0)
Adobe Fonts All x64 (Version: 2.0)
Adobe Linguistics CS4 (Version: 4.0.0)
Adobe Linguistics CS4 x64 (Version: 4.0.0)
Adobe Media Player (Version: 0.0.0)
Adobe Media Player (Version: 1.1)
Adobe Output Module (Version: 2.0)
Adobe PDF Library Files CS4 (Version: 9.0)
Adobe PDF Library Files x64 CS4 (Version: 9.0)
Adobe Photoshop CS4 (64 Bit) (Version: 11.0)
Adobe Photoshop CS4 (Version: 11.0)
Adobe Photoshop CS4 Support (Version: 11.0)
Adobe Photoshop CS5 (Version: 12.0)
Adobe Photoshop Lightroom 2.7 64-bit (Version: 2.7)
Adobe Photoshop Lightroom 3 64-bit (Version: 3.0.2)
Adobe Photoshop Lightroom 4 64-bit (Version: 4.0.1)
Adobe Reader 9.1 MUI (Version: 9.1.0)
Adobe Search for Help (Version: 1.0)
Adobe Service Manager Extension (Version: 1.0)
Adobe Setup (Version: 2.0)
Adobe Type Support CS4 (Version: 9.0)
Adobe Type Support x64 CS4 (Version: 9.0)
Adobe Update Manager CS4 (Version: 6.0.0)
Adobe WinSoft Linguistics Plugin (Version: 1.1)
Adobe WinSoft Linguistics Plugin x64 (Version: 1.1)
Adobe XMP Panels CS4 (Version: 2.0)
AdobeColorCommonSetCMYK (Version: 2.0)
AdobeColorCommonSetRGB (Version: 2.0)
Alcor Micro USB Card Reader (Version: 1.4.17.35005)
Alice Greenfingers
Amazonia
Apple Application Support (Version: 1.5.1)
Apple Mobile Device Support (Version: 3.4.0.25)
Apple Software Update (Version: 2.1.3.127)
ATI Catalyst Install Manager (Version: 3.0.754.0)
µTorrent (Version: 1.8.5)
Audacity 1.2.6
AutoHotkey 1.0.91.05 (Version: 1.0.91.05)
AutoUpdate (Version: 1.1)
Avanquest update (Version: 1.28)
AVS Audio Converter version 6.1
AVS Update Manager 1.0
AVS Video Converter 7
AVS4YOU Software Navigator 1.4
Axis & Allies
Backup Manager Basic (Version: 2.0.0.29)
Bonjour (Version: 2.0.5.0)
Broadcom Gigabit NetLink Controller (Version: 12.33.03)
Canon Easy-PhotoPrint EX
Canon Easy-PhotoPrint Pro - Pro9000 series Extention Data
Canon Easy-PhotoPrint Pro - Pro9500 series Extention Data
Canon IJ Network Scan Utility
Canon IJ Network Tool
Canon MG6100 series MP Drivers
Canon MG6100 series User Registration
Canon MP Navigator EX 2.0
Canon MP Navigator EX 4.0
Canon My Printer
Canon Solution Menu EX
Canon Utilities Solution Menu
CanoScan 5600F Scanner Driver
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Core Implementation (Version: 2009.1209.2335.42329)
Catalyst Control Center Graphics Full Existing (Version: 2009.1209.2335.42329)
Catalyst Control Center Graphics Full New (Version: 2009.1209.2335.42329)
Catalyst Control Center Graphics Light (Version: 2009.1209.2335.42329)
Catalyst Control Center Graphics Previews Vista (Version: 2009.1209.2335.42329)
Catalyst Control Center InstallProxy (Version: 2009.1209.2335.42329)
Catalyst Control Center Localization All (Version: 2009.1209.2335.42329)
ccc-core-static (Version: 2009.1209.2335.42329)
ccc-utility64 (Version: 2009.1209.2335.42329)
CCC Help Chinese Standard (Version: 2009.1209.2334.42329)
CCC Help Chinese Traditional (Version: 2009.1209.2334.42329)
CCC Help Czech (Version: 2009.1209.2334.42329)
CCC Help Danish (Version: 2009.1209.2334.42329)
CCC Help Dutch (Version: 2009.1209.2334.42329)
CCC Help English (Version: 2009.1209.2334.42329)
CCC Help Finnish (Version: 2009.1209.2334.42329)
CCC Help French (Version: 2009.1209.2334.42329)
CCC Help German (Version: 2009.1209.2334.42329)
CCC Help Greek (Version: 2009.1209.2334.42329)
CCC Help Hungarian (Version: 2009.1209.2334.42329)
CCC Help Italian (Version: 2009.1209.2334.42329)
CCC Help Japanese (Version: 2009.1209.2334.42329)
CCC Help Korean (Version: 2009.1209.2334.42329)
CCC Help Norwegian (Version: 2009.1209.2334.42329)
CCC Help Polish (Version: 2009.1209.2334.42329)
CCC Help Portuguese (Version: 2009.1209.2334.42329)
CCC Help Russian (Version: 2009.1209.2334.42329)
CCC Help Spanish (Version: 2009.1209.2334.42329)
CCC Help Swedish (Version: 2009.1209.2334.42329)
CCC Help Thai (Version: 2009.1209.2334.42329)
CCC Help Turkish (Version: 2009.1209.2334.42329)
CD-LabelPrint
Chicken Invaders 2
Civilization II Multiplayer Gold Edition
Color Efex Pro 4 (Version: 4.0.0.0)
Compatibility Pack for the 2007 Office system (Version: 12.0.6425.1000)
Connect (Version: 1.0.0.1)
ConvertXtoDVD 3.0.0.9 (Version: 3.0.0.9)
CyberLink PowerDirector (Version: 9.0.0.2330a)
CyberLink WaveEditor (Version: 1.0.1.2318)
Dairy Dash (remove only)
DivX Codec (Version: 6.9.1)
DivX Converter (Version: 7.1.0)
DivX Player (Version: 7.2.0)
DivX Plus DirectShow Filters
DivX Plus Media Foundation Components (Version: 1.0.0)
DivX Plus Web Player (Version: 2.0.0)
DivX Version Checker (Version: 7.1.0.9)
Dream Day First Home
DriveClone
DVD Shrink 3.2
DVDFab 7.0.9.3 (08/08/2010)
eBay Worldwide (Version: 2.1.0901)
EmpirePoker (Version: 145)
eSobi v2 (Version: 2.0.4.000274)
Eudora (Version: 7.0)
EZ Vinyl/Tape Converter 4.1 by MixMeister
FairUse Wizard 2 (Version: (v2.11b))
Family Tree Maker 2012 (Version: 21.0.388)
Farm Frenzy 2
First Class Flurry
FreePHG V3.06
Google Desktop (Version: 5.9.1005.12335)
Google Earth (Version: 6.0.3.2197)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.2.2318.1946)
Google Update Helper (Version: 1.3.21.79)
Granny In Paradise
Graphic.ly (Version: 0.8.4)
H.264 Decoder (Version: 1.1.0)
Holdem Indicator 2.0.9
Holdem Manager
Identity Card (Version: 1.00.3003)
ImgBurn (Version: 2.5.2.0)
Intel® Management Engine Components (Version: 6.0.0.1179)
Intel® Turbo Boost Technology Driver (Version: 01.00.01.1002)
Intel® Turbo Boost Technology Monitor (Version: 1.0.186.6)
Intel® Matrix Storage Manager
iTunes (Version: 10.2.2.12)
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 31 (Version: 6.0.310)
Junk Mail filter update (Version: 14.0.8089.726)
kuler (Version: 2.0)
LAME v3.98.2 for Audacity
Launch Manager (Version: 3.0.05)
Legacy 7.5 (Version: 7.5 )
LSI HDA Modem (Version: 2.2.98)
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
Merriam Websters Spell Jam
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Professional Edition 2003 (Version: 11.0.8173.0)
Microsoft Office Suite Activation Assistant (Version: 2.9)
Microsoft Primary Interoperability Assemblies 2005 (Version: 8.0.50727.42)
Microsoft Robocopy GUI (Version: 1.0.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Works (Version: 9.7.0621)
Microsoft WSE 3.0 (Version: 3.0.5305.0)
Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)
MKV Splitter (Version: 1.0.1)
Mozilla Firefox 10.0.2 (x86 en-US) (Version: 10.0.2)
Mozilla Maintenance Service (Version: 12.0)
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MVP Bridge Deluxe Trial (Version: 3.7.0)
Notepad++ (Version: 6.1.1)
nrg2iso (Version: 1.0.0)
NTI Backup Now 5 (Version: 5.1.2.627)
NTI Backup Now Standard (Version: 5.1.2.627)
NTI Media Maker 8 (Version: 8.0.12.6623)
OpenOffice.org 3.2 (Version: 3.2.9483)
Oracle VM VirtualBox 4.0.6 (Version: 4.0.6)
PartyPoker (Version: 150)
PC Tune-Up
PC Tune-Up (Version: 1.1.0.7)
PDF Settings CS4 (Version: 9.0)
PDF Settings CS5 (Version: 10.0)
PDFCreator (Version: 1.0.1)
Photoshop Camera Raw (Version: 5.0)
Photoshop Camera Raw_x64 (Version: 5.0)
PokerTracker 3 (remove only)
PostgreSQL 8.3 (Version: 8.3)
PowerISO
QuickTime (Version: 7.69.80.9)
Realtek High Definition Audio Driver (Version: 6.0.1.5969)
Sharpener Pro 3.0 (Version: 3.0.0.2)
Sid Meier's Civilization 4 (Version: 1.74)
Silver Efex Pro (Version: 1.0.0.5)
SmartSound Quicktracks 5 (Version: 5.1.7)
Sony Ericsson PC Companion 2.01.149 (Version: 2.01.149)
Sony Ericsson PC Suite 6.011.00 (Version: 6.011.00)
Spyder3Elite
Suite Shared Configuration CS4 (Version: 1.0)
Synaptics Pointing Device Driver (Version: 14.0.6.0)
The Settlers 7 - Paths to a Kingdom (Version: 1.12.1396)
Ubisoft Game Launcher (Version: 1.0.0.0)
Unlocker 1.8.9 (Version: 1.8.9)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
USIM Editor 1.0.33.70
VC 9.0 Runtime (Version: 1.0.0)
VC80CRTRedist - 8.0.50727.4053 (Version: 1.1.0)
VidCrop PRO
VLC media player 1.0.3 (Version: 1.0.3)
Welcome Center (Version: 1.00.3008)
Windows Live Call (Version: 14.0.8064.0206)
Windows Live Communications Platform (Version: 14.0.8064.206)
Windows Live Essentials (Version: 14.0.8089.0726)
Windows Live Essentials (Version: 14.0.8089.726)
Windows Live Mail (Version: 14.0.8089.0726)
Windows Live Messenger (Version: 14.0.8089.0726)
Windows Live Movie Maker (Version: 14.0.8091.0730)
Windows Live Photo Gallery (Version: 14.0.8081.709)
Windows Live Writer (Version: 14.0.8089.0726)
Windows Media Encoder 9 Series
Windows Media Encoder 9 Series (Version: 9.00.2980)
WinRAR archiver
ZoneAlarm Antivirus (Version: 10.1.079.000)
ZoneAlarm DataLock (Version: 10.1.079.000)
ZoneAlarm Extreme Security (Version: 10.1.079.000)
ZoneAlarm Firewall (Version: 10.1.079.000)
ZoneAlarm Security (Version: 10.1.079.000)
ZoneAlarm Security Toolbar (Version: 6.7.0.6)

========================= Devices: ================================

Name: Microsoft Virtual WiFi Miniport Adapter
Description: Microsoft Virtual WiFi Miniport Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: RF USB Receiver
Description: RF USB Receiver
Class Guid:
Manufacturer:
Service:
Problem: : This device is not configured correctly. (Code1)
Resolution: You may be prompted to provide the path of the driver. Windows may have the driver built-in, or may still have the driver files installed from the last time that you set up the device. If you are asked for the driver and you do not have it, you can try to download the latest driver from the hardware vendor’s Web site.
In the device properties dialog box, click the "Driver" tab, and then click "Update Driver" to start the "Hardware Update Wizard". Follow the instructions to update the driver. If updating the driver does not work, see your hardware documentation for more information.


========================= Memory info: ===================================

Percentage of memory in use: 39%
Total physical RAM: 3956.5 MB
Available physical RAM: 2377.98 MB
Total Pagefile: 7911.14 MB
Available Pagefile: 6306.71 MB
Total Virtual: 4095.88 MB
Available Virtual: 3957.64 MB

========================= Partitions: =====================================

1 Drive c: (ACER) (Fixed) (Total:583.38 GB) (Free:120.53 GB) NTFS
3 Drive e: () (Removable) (Total:14.92 GB) (Free:12.16 GB) FAT32
4 Drive g: (FreeAgent Drive) (Fixed) (Total:465.76 GB) (Free:9.57 GB) NTFS
5 Drive i: (FreeAgent Drive) (Fixed) (Total:931.51 GB) (Free:79.93 GB) NTFS
6 Drive m: (FreeAgent GoFlex Drive) (Fixed) (Total:2794.51 GB) (Free:651.9 GB) NTFS

========================= Users: ========================================

User accounts for \\DOLLYWOOD2

Administrator Guest postgres
vanda


**** End of log ****


MiniToolBox by Farbar Version: 23-07-2012
Ran by vanda (administrator) on 25-07-2012 at 23:40:44
Microsoft Windows 7 Home Premium (X64)
Boot Mode: Normal
***************************************************************************

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

========================= FF Proxy Settings: ==============================

========================= Hosts content: =================================

127.0.0.1 localhost

========================= IP Configuration: ================================

Broadcom NetLink ™ Gigabit Ethernet = Local Area Connection (Connected)
VirtualBox Host-Only Ethernet Adapter = VirtualBox Host-Only Network (Connected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Hardware not present)
Atheros AR5B93 Wireless Network Adapter = Wireless Network Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global
add route prefix=169.254.0.0/16 interface="iftype0_0" nexthop=192.168.1.69 metric=1 publish=Yes
add route prefix=169.254.0.0/16 interface="iftype0_0" nexthop=192.168.1.70 metric=1 publish=Yes
add route prefix=169.254.0.0/16 interface="iftype0_0" nexthop=192.168.56.1 metric=1 publish=Yes
add address name="VirtualBox Host-Only Network" address=192.168.56.1


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Dollywood2
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Atheros AR5B93 Wireless Network Adapter
Physical Address. . . . . . . . . : C4-17-FE-1C-7B-49
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom NetLink ™ Gigabit Ethernet
Physical Address. . . . . . . . . : 00-26-2D-7B-1C-FC
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::3c07:4168:1fe1:cbea%11(Preferred)
Autoconfiguration IPv4 Address. . : 169.254.203.234(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.0.0
Default Gateway . . . . . . . . . :
DHCPv6 IAID . . . . . . . . . . . : 335554093
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-12-D4-39-C2-00-26-2D-7B-1C-FC
DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
fec0:0:0:ffff::2%1
fec0:0:0:ffff::3%1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter VirtualBox Host-Only Network:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : VirtualBox Host-Only Ethernet Adapter
Physical Address. . . . . . . . . : 08-00-27-00-24-34
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::91f8:c77e:5425:a98b%17(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.56.1(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . :
DHCPv6 IAID . . . . . . . . . . . : 453509159
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-12-D4-39-C2-00-26-2D-7B-1C-FC
DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
fec0:0:0:ffff::2%1
fec0:0:0:ffff::3%1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{DD75410A-DA1A-45EF-8EE9-4A6CD9C376BC}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 13:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{44EA7C88-A958-4039-AC80-E63D8654870D}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{079E895E-A34A-44CA-AB30-B5385D4D0B79}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: UnKnown
Address: fec0:0:0:ffff::1

Ping request could not find host google.com. Please check the name and try again.
Server: UnKnown
Address: fec0:0:0:ffff::1

Ping request could not find host yahoo.com. Please check the name and try again.
Server: UnKnown
Address: fec0:0:0:ffff::1

Ping request could not find host bleepingcomputer.com. Please check the name and try again.

Pinging 127.0.0.1 with 32 bytes of data:
Request timed out.
Request timed out.

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 0, Lost = 2 (100% loss),
===========================================================================
Interface List
12...c4 17 fe 1c 7b 49 ......Atheros AR5B93 Wireless Network Adapter
11...00 26 2d 7b 1c fc ......Broadcom NetLink ™ Gigabit Ethernet
17...08 00 27 00 24 34 ......VirtualBox Host-Only Ethernet Adapter
1...........................Software Loopback Interface 1
20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
19...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
22...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
169.254.0.0 255.255.0.0 On-link 192.168.56.1 21
169.254.0.0 255.255.0.0 On-link 169.254.203.234 21
169.254.203.234 255.255.255.255 On-link 169.254.203.234 276
169.254.255.255 255.255.255.255 On-link 192.168.56.1 276
169.254.255.255 255.255.255.255 On-link 169.254.203.234 276
192.168.56.0 255.255.255.0 On-link 192.168.56.1 276
192.168.56.1 255.255.255.255 On-link 192.168.56.1 276
192.168.56.255 255.255.255.255 On-link 192.168.56.1 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.56.1 276
224.0.0.0 240.0.0.0 On-link 169.254.203.234 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.56.1 276
255.255.255.255 255.255.255.255 On-link 169.254.203.234 276
===========================================================================
Persistent Routes:
Network Address Netmask Gateway Address Metric
169.254.0.0 255.255.0.0 192.168.1.69 1
169.254.0.0 255.255.0.0 192.168.1.70 1
169.254.0.0 255.255.0.0 192.168.56.1 1
===========================================================================

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
17 276 fe80::/64 On-link
11 276 fe80::/64 On-link
11 276 fe80::3c07:4168:1fe1:cbea/128
On-link
17 276 fe80::91f8:c77e:5425:a98b/128
On-link
1 306 ff00::/8 On-link
17 276 ff00::/8 On-link
11 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [51712] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [152864] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70144] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [193824] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (07/23/2012 06:45:13 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007043c, This service cannot be started in Safe Mode
.


Operation:
Instantiating VSS server

Error: (07/23/2012 06:45:13 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: The COM Server with CLSID {e579ab5f-1cc4-44b4-bed9-de0991ff0623} and name IVssCoordinatorEx2 cannot be started during Safe Mode.
The Volume Shadow Copy service cannot start while in safe mode. [0x8007043c, This service cannot be started in Safe Mode
]


Operation:
Instantiating VSS server

Error: (07/22/2012 07:35:42 AM) (Source: Family Tree Maker) (User: )
Description: Timestamp: 22/07/2012 06:35:42
Message: HandlingInstanceID: 45285588-5e1f-4675-9d0e-a905d1d602bb
An exception of type 'System.Net.Sockets.SocketException' occurred and was caught.
----------------------------------------------------------------------------------
07/22/2012 07:35:42
Type : System.Net.Sockets.SocketException, System, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089
Message : A connection attempt failed because the connected party did not properly respond after a period of time, or established connection failed because connected host has failed to respond 66.43.20.207:80
Source : System
Help link :
ErrorCode : 10060
SocketErrorCode : TimedOut
NativeErrorCode : 10060
Data : System.Collections.ListDictionaryInternal
TargetSite : Void Connect(System.Net.IPAddress[], Int32)
Stack Trace : at System.Net.Sockets.Socket.Connect(IPAddress[] addresses, Int32 port)
at System.Net.Sockets.Socket.Connect(String host, Int32 port)
at FTM.Connectivity.ConnectionDetector.SocketConnect(String serverName)

Additional Info:

MachineName : DOLLYWOOD2
TimeStamp : 22/07/2012 06:35:42
FullName : Microsoft.Practices.EnterpriseLibrary.ExceptionHandling, Version=2.0.0.0, Culture=neutral, PublicKeyToken=69cf5367912b86b4
AppDomainName : FTM.exe
ThreadIdentity : Dollywood2\vanda
WindowsIdentity : Dollywood2\vanda

Category: Exception
Priority: 0
EventId: 100
Severity: Error
Title:FTM Exception Handling
Machine: DOLLYWOOD2
Application Domain: FTM.exe
Process Id: 3968
Process Name: C:\Program Files (x86)\Family Tree Maker 2012\FTM.exe
Win32 Thread Id: 4124
Thread Name:
Extended Properties:

Error: (07/21/2012 10:28:46 PM) (Source: Application Hang) (User: )
Description: The program mbam.exe version 1.60.0.80 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 3f4

Start Time: 01cd67878fcae9cf

Termination Time: 0

Application Path: C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe

Report Id: 0426715c-d37b-11e1-a4fc-00262d7b1cfc

Error: (07/21/2012 10:20:10 PM) (Source: Application Hang) (User: )
Description: The program mbam.exe version 1.60.0.80 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 134c

Start Time: 01cd6785f8aa2e92

Termination Time: 15

Application Path: C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe

Report Id: ca03d833-d379-11e1-a4fc-00262d7b1cfc

Error: (07/21/2012 07:21:22 PM) (Source: Microsoft-Windows-RestartManager) (User: Dollywood2)Dollywood2
Description: Application or service 'Windows Explorer' could not be shut down.

Error: (07/20/2012 10:51:33 AM) (Source: Application Error) (User: )
Description: Faulting application name: Acrobat.exe, version: 8.0.0.456, time stamp: 0x453c8d7f
Faulting module name: AcroForm.api, version: 8.0.0.456, time stamp: 0x453c8733
Exception code: 0xc0000409
Fault offset: 0x0043544c
Faulting process id: 0x1688
Faulting application start time: 0xAcrobat.exe0
Faulting application path: Acrobat.exe1
Faulting module path: Acrobat.exe2
Report Id: Acrobat.exe3

Error: (07/19/2012 07:33:19 PM) (Source: Application Hang) (User: )
Description: The program firefox.exe version 10.0.2.4428 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: fd4

Start Time: 01cd6516b87e34b7

Termination Time: 250

Application Path: C:\Program Files (x86)\Mozilla Firefox\firefox.exe

Report Id: 24a65342-d1d0-11e1-9e27-00262d7b1cfc

Error: (07/18/2012 07:54:06 PM) (Source: Application Hang) (User: )
Description: The program firefox.exe version 10.0.2.4428 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 11ec

Start Time: 01cd643e690448b3

Termination Time: 23

Application Path: C:\Program Files (x86)\Mozilla Firefox\firefox.exe

Report Id: db4be818-d109-11e1-9e27-00262d7b1cfc

Error: (07/14/2012 00:53:21 PM) (Source: .NET Runtime) (User: )
Description: Application: FTM.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.AccessViolationException
Stack:
at System.Data.SQLite.SQLiteCommand.BuildNextCommand()
at System.Data.SQLite.SQLiteCommand.GetStatement(Int32)
at System.Data.SQLite.SQLiteDataReader.NextResult()
at System.Data.SQLite.SQLiteDataReader..ctor(System.Data.SQLite.SQLiteCommand, System.Data.CommandBehavior)
at System.Data.SQLite.SQLiteCommand.ExecuteReader(System.Data.CommandBehavior)
at System.Data.SQLite.SQLiteCommand.ExecuteDbDataReader(System.Data.CommandBehavior)
at System.Data.Common.DbCommand.ExecuteReader(System.Data.CommandBehavior)
at System.Data.EntityClient.EntityCommandDefinition.ExecuteStoreCommands(System.Data.EntityClient.EntityCommand, System.Data.CommandBehavior)
at System.Data.Objects.Internal.ObjectQueryExecutionPlan.Execute[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.Data.Objects.ObjectContext, System.Data.Objects.ObjectParameterCollection)
at System.Data.Objects.ObjectQuery`1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].GetResults(System.Nullable`1<System.Data.Objects.MergeOption>)
at System.Data.Objects.ObjectQuery`1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].System.Collections.Generic.IEnumerable<T>.GetEnumerator()
at System.Linq.Enumerable.FirstOrDefault[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.Collections.Generic.IEnumerable`1<System.__Canon>)
at System.Data.Objects.ELinq.ObjectQueryProvider.<GetElementFunction>b__1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.Collections.Generic.IEnumerable`1<System.__Canon>)
at System.Data.Objects.ELinq.ObjectQueryProvider.ExecuteSingle[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.Collections.Generic.IEnumerable`1<System.__Canon>, System.Linq.Expressions.Expression)
at System.Data.Objects.ELinq.ObjectQueryProvider.System.Linq.IQueryProvider.Execute[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.Linq.Expressions.Expression)
at System.Linq.Queryable.FirstOrDefault[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.Linq.IQueryable`1<System.__Canon>)
at FTM.Sync.Manager.SyncManager.GetCurrentState()
at FTM.Sync.Manager.SyncManager.CheckOnlineChanged(System.Object, System.Timers.ElapsedEventArgs)
at System.Timers.Timer.MyTimerCallback(System.Object)
at System.Threading._TimerCallback.TimerCallback_Context(System.Object)
at System.Threading.ExecutionContext.runTryCode(System.Object)
at System.Runtime.CompilerServices.RuntimeHelpers.ExecuteCodeWithGuaranteedCleanup(TryCode, CleanupCode, System.Object)
at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading._TimerCallback.PerformTimerCallback(System.Object)


System errors:
=============
Error: (07/25/2012 10:35:07 PM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR3.

Error: (07/25/2012 10:33:15 PM) (Source: Service Control Manager) (User: )
Description: The TrueVector Internet Monitor service terminated unexpectedly. It has done this 687 time(s).

Error: (07/25/2012 10:31:23 PM) (Source: Service Control Manager) (User: )
Description: The TrueVector Internet Monitor service terminated unexpectedly. It has done this 686 time(s).

Error: (07/25/2012 10:29:49 PM) (Source: Service Control Manager) (User: )
Description: The TrueVector Internet Monitor service terminated unexpectedly. It has done this 685 time(s).

Error: (07/25/2012 10:28:16 PM) (Source: Service Control Manager) (User: )
Description: The TrueVector Internet Monitor service terminated unexpectedly. It has done this 684 time(s).

Error: (07/25/2012 10:26:44 PM) (Source: Service Control Manager) (User: )
Description: The TrueVector Internet Monitor service terminated unexpectedly. It has done this 683 time(s).

Error: (07/25/2012 10:23:44 PM) (Source: Service Control Manager) (User: )
Description: The TrueVector Internet Monitor service terminated unexpectedly. It has done this 682 time(s).

Error: (07/25/2012 10:21:27 PM) (Source: Service Control Manager) (User: )
Description: The TrueVector Internet Monitor service terminated unexpectedly. It has done this 681 time(s).

Error: (07/25/2012 10:18:59 PM) (Source: Service Control Manager) (User: )
Description: The TrueVector Internet Monitor service terminated unexpectedly. It has done this 680 time(s).

Error: (07/25/2012 10:16:25 PM) (Source: Service Control Manager) (User: )
Description: The TrueVector Internet Monitor service terminated unexpectedly. It has done this 679 time(s).


Microsoft Office Sessions:
=========================
Error: (07/23/2012 06:45:13 PM) (Source: VSS)(User: )
Description: CoCreateInstance0x8007043c, This service cannot be started in Safe Mode


Operation:
Instantiating VSS server

Error: (07/23/2012 06:45:13 PM) (Source: VSS)(User: )
Description: {e579ab5f-1cc4-44b4-bed9-de0991ff0623}IVssCoordinatorEx20x8007043c, This service cannot be started in Safe Mode


Operation:
Instantiating VSS server

Error: (07/22/2012 07:35:42 AM) (Source: Family Tree Maker)(User: )
Description: Timestamp: 22/07/2012 06:35:42
Message: HandlingInstanceID: 45285588-5e1f-4675-9d0e-a905d1d602bb
An exception of type 'System.Net.Sockets.SocketException' occurred and was caught.
----------------------------------------------------------------------------------
07/22/2012 07:35:42
Type : System.Net.Sockets.SocketException, System, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089
Message : A connection attempt failed because the connected party did not properly respond after a period of time, or established connection failed because connected host has failed to respond 66.43.20.207:80
Source : System
Help link :
ErrorCode : 10060
SocketErrorCode : TimedOut
NativeErrorCode : 10060
Data : System.Collections.ListDictionaryInternal
TargetSite : Void Connect(System.Net.IPAddress[], Int32)
Stack Trace : at System.Net.Sockets.Socket.Connect(IPAddress[] addresses, Int32 port)
at System.Net.Sockets.Socket.Connect(String host, Int32 port)
at FTM.Connectivity.ConnectionDetector.SocketConnect(String serverName)

Additional Info:

MachineName : DOLLYWOOD2
TimeStamp : 22/07/2012 06:35:42
FullName : Microsoft.Practices.EnterpriseLibrary.ExceptionHandling, Version=2.0.0.0, Culture=neutral, PublicKeyToken=69cf5367912b86b4
AppDomainName : FTM.exe
ThreadIdentity : Dollywood2\vanda
WindowsIdentity : Dollywood2\vanda

Category: Exception
Priority: 0
EventId: 100
Severity: Error
Title:FTM Exception Handling
Machine: DOLLYWOOD2
Application Domain: FTM.exe
Process Id: 3968
Process Name: C:\Program Files (x86)\Family Tree Maker 2012\FTM.exe
Win32 Thread Id: 4124
Thread Name:
Extended Properties:

Error: (07/21/2012 10:28:46 PM) (Source: Application Hang)(User: )
Description: mbam.exe1.60.0.803f401cd67878fcae9cf0C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe0426715c-d37b-11e1-a4fc-00262d7b1cfc

Error: (07/21/2012 10:20:10 PM) (Source: Application Hang)(User: )
Description: mbam.exe1.60.0.80134c01cd6785f8aa2e9215C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.execa03d833-d379-11e1-a4fc-00262d7b1cfc

Error: (07/21/2012 07:21:22 PM) (Source: Microsoft-Windows-RestartManager)(User: Dollywood2)Dollywood2
Description: 1C:\Windows\explorer.exeWindows Explorer0411734960

Error: (07/20/2012 10:51:33 AM) (Source: Application Error)(User: )
Description: Acrobat.exe8.0.0.456453c8d7fAcroForm.api8.0.0.456453c8733c00004090043544c168801cd665d379f3879C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\Acrobat.exeC:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\plug_ins\AcroForm.api7c46053e-d250-11e1-9e27-00262d7b1cfc

Error: (07/19/2012 07:33:19 PM) (Source: Application Hang)(User: )
Description: firefox.exe10.0.2.4428fd401cd6516b87e34b7250C:\Program Files (x86)\Mozilla Firefox\firefox.exe24a65342-d1d0-11e1-9e27-00262d7b1cfc

Error: (07/18/2012 07:54:06 PM) (Source: Application Hang)(User: )
Description: firefox.exe10.0.2.442811ec01cd643e690448b323C:\Program Files (x86)\Mozilla Firefox\firefox.exedb4be818-d109-11e1-9e27-00262d7b1cfc

Error: (07/14/2012 00:53:21 PM) (Source: .NET Runtime)(User: )
Description: Application: FTM.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.AccessViolationException
Stack:
at System.Data.SQLite.SQLiteCommand.BuildNextCommand()
at System.Data.SQLite.SQLiteCommand.GetStatement(Int32)
at System.Data.SQLite.SQLiteDataReader.NextResult()
at System.Data.SQLite.SQLiteDataReader..ctor(System.Data.SQLite.SQLiteCommand, System.Data.CommandBehavior)
at System.Data.SQLite.SQLiteCommand.ExecuteReader(System.Data.CommandBehavior)
at System.Data.SQLite.SQLiteCommand.ExecuteDbDataReader(System.Data.CommandBehavior)
at System.Data.Common.DbCommand.ExecuteReader(System.Data.CommandBehavior)
at System.Data.EntityClient.EntityCommandDefinition.ExecuteStoreCommands(System.Data.EntityClient.EntityCommand, System.Data.CommandBehavior)
at System.Data.Objects.Internal.ObjectQueryExecutionPlan.Execute[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.Data.Objects.ObjectContext, System.Data.Objects.ObjectParameterCollection)
at System.Data.Objects.ObjectQuery`1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].GetResults(System.Nullable`1<System.Data.Objects.MergeOption>)
at System.Data.Objects.ObjectQuery`1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].System.Collections.Generic.IEnumerable<T>.GetEnumerator()
at System.Linq.Enumerable.FirstOrDefault[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.Collections.Generic.IEnumerable`1<System.__Canon>)
at System.Data.Objects.ELinq.ObjectQueryProvider.<GetElementFunction>b__1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.Collections.Generic.IEnumerable`1<System.__Canon>)
at System.Data.Objects.ELinq.ObjectQueryProvider.ExecuteSingle[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.Collections.Generic.IEnumerable`1<System.__Canon>, System.Linq.Expressions.Expression)
at System.Data.Objects.ELinq.ObjectQueryProvider.System.Linq.IQueryProvider.Execute[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.Linq.Expressions.Expression)
at System.Linq.Queryable.FirstOrDefault[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.Linq.IQueryable`1<System.__Canon>)
at FTM.Sync.Manager.SyncManager.GetCurrentState()
at FTM.Sync.Manager.SyncManager.CheckOnlineChanged(System.Object, System.Timers.ElapsedEventArgs)
at System.Timers.Timer.MyTimerCallback(System.Object)
at System.Threading._TimerCallback.TimerCallback_Context(System.Object)
at System.Threading.ExecutionContext.runTryCode(System.Object)
at System.Runtime.CompilerServices.RuntimeHelpers.ExecuteCodeWithGuaranteedCleanup(TryCode, CleanupCode, System.Object)
at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading._TimerCallback.PerformTimerCallback(System.Object)


=========================== Installed Programs ============================

AAC Decoder (Version: 7.1.0)
Acer Arcade Deluxe (Version: 3.0.7112)
Acer Backup Manager (Version: 2.0.0.29)
Acer Crystal Eye webcam Ver:1.1.124.1120 (Version: 1.1.124.1120)
Acer ePower Management (Version: 4.05.3004)
Acer eRecovery Management (Version: 4.05.3005)
Acer GameZone Console (Version: 5.1.0.2)
Acer GridVista (Version: 3.01.0730)
Acer Registration (Version: 1.02.3006)
Acer ScreenSaver (Version: 1.5.0715)
Acer Updater (Version: 1.01.3017)
Acrobat.com (Version: 1.6.65)
Active@ ISO Burner (Version: 2.1.0)
Adobe Acrobat 8 Professional - English, Français, Deutsch (Version: 8.0.0)
Adobe AIR (Version: 1.5.3.9130)
Adobe Anchor Service CS4 (Version: 2.0)
Adobe Anchor Service x64 CS4 (Version: 2.0)
Adobe Bridge CS4 (Version: 3)
Adobe CMaps CS4 (Version: 2.0)
Adobe CMaps x64 CS4 (Version: 2.0)
Adobe Color - Photoshop Specific CS4 (Version: 2.0)
Adobe Color EU Extra Settings CS4 (Version: 2.0)
Adobe Color JA Extra Settings CS4 (Version: 2.0)
Adobe Color NA Recommended Settings CS4 (Version: 2.0)
Adobe Color Video Profiles CS CS4 (Version: 2.0)
Adobe Community Help (Version: 3.0.0)
Adobe Community Help (Version: 3.0.0.400)
Adobe CSI CS4 (Version: 1)
Adobe CSI CS4 x64 (Version: 1)
Adobe Default Language CS4 (Version: 2.0)
Adobe Device Central CS4 (Version: 2)
Adobe Download Manager (Version: 1.6.2.91)
Adobe Drive CS4 (Version: 1)
Adobe Drive CS4 x64 (Version: 1)
Adobe ExtendScript Toolkit CS4 (Version: 3.0.0)
Adobe Extension Manager CS4 (Version: 2.0)
Adobe Flash Player 11 ActiveX 64-bit (Version: 11.1.102.55)
Adobe Flash Player 11 Plugin (Version: 11.3.300.265)
Adobe Fonts All (Version: 2.0)
Adobe Fonts All x64 (Version: 2.0)
Adobe Linguistics CS4 (Version: 4.0.0)
Adobe Linguistics CS4 x64 (Version: 4.0.0)
Adobe Media Player (Version: 0.0.0)
Adobe Media Player (Version: 1.1)
Adobe Output Module (Version: 2.0)
Adobe PDF Library Files CS4 (Version: 9.0)
Adobe PDF Library Files x64 CS4 (Version: 9.0)
Adobe Photoshop CS4 (64 Bit) (Version: 11.0)
Adobe Photoshop CS4 (Version: 11.0)
Adobe Photoshop CS4 Support (Version: 11.0)
Adobe Photoshop CS5 (Version: 12.0)
Adobe Photoshop Lightroom 2.7 64-bit (Version: 2.7)
Adobe Photoshop Lightroom 3 64-bit (Version: 3.0.2)
Adobe Photoshop Lightroom 4 64-bit (Version: 4.0.1)
Adobe Reader 9.1 MUI (Version: 9.1.0)
Adobe Search for Help (Version: 1.0)
Adobe Service Manager Extension (Version: 1.0)
Adobe Setup (Version: 2.0)
Adobe Type Support CS4 (Version: 9.0)
Adobe Type Support x64 CS4 (Version: 9.0)
Adobe Update Manager CS4 (Version: 6.0.0)
Adobe WinSoft Linguistics Plugin (Version: 1.1)
Adobe WinSoft Linguistics Plugin x64 (Version: 1.1)
Adobe XMP Panels CS4 (Version: 2.0)
AdobeColorCommonSetCMYK (Version: 2.0)
AdobeColorCommonSetRGB (Version: 2.0)
Alcor Micro USB Card Reader (Version: 1.4.17.35005)
Alice Greenfingers
Amazonia
Apple Application Support (Version: 1.5.1)
Apple Mobile Device Support (Version: 3.4.0.25)
Apple Software Update (Version: 2.1.3.127)
ATI Catalyst Install Manager (Version: 3.0.754.0)
µTorrent (Version: 1.8.5)
Audacity 1.2.6
AutoHotkey 1.0.91.05 (Version: 1.0.91.05)
AutoUpdate (Version: 1.1)
Avanquest update (Version: 1.28)
AVS Audio Converter version 6.1
AVS Update Manager 1.0
AVS Video Converter 7
AVS4YOU Software Navigator 1.4
Axis & Allies
Backup Manager Basic (Version: 2.0.0.29)
Bonjour (Version: 2.0.5.0)
Broadcom Gigabit NetLink Controller (Version: 12.33.03)
Canon Easy-PhotoPrint EX
Canon Easy-PhotoPrint Pro - Pro9000 series Extention Data
Canon Easy-PhotoPrint Pro - Pro9500 series Extention Data
Canon IJ Network Scan Utility
Canon IJ Network Tool
Canon MG6100 series MP Drivers
Canon MG6100 series User Registration
Canon MP Navigator EX 2.0
Canon MP Navigator EX 4.0
Canon My Printer
Canon Solution Menu EX
Canon Utilities Solution Menu
CanoScan 5600F Scanner Driver
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Core Implementation (Version: 2009.1209.2335.42329)
Catalyst Control Center Graphics Full Existing (Version: 2009.1209.2335.42329)
Catalyst Control Center Graphics Full New (Version: 2009.1209.2335.42329)
Catalyst Control Center Graphics Light (Version: 2009.1209.2335.42329)
Catalyst Control Center Graphics Previews Vista (Version: 2009.1209.2335.42329)
Catalyst Control Center InstallProxy (Version: 2009.1209.2335.42329)
Catalyst Control Center Localization All (Version: 2009.1209.2335.42329)
ccc-core-static (Version: 2009.1209.2335.42329)
ccc-utility64 (Version: 2009.1209.2335.42329)
CCC Help Chinese Standard (Version: 2009.1209.2334.42329)
CCC Help Chinese Traditional (Version: 2009.1209.2334.42329)
CCC Help Czech (Version: 2009.1209.2334.42329)
CCC Help Danish (Version: 2009.1209.2334.42329)
CCC Help Dutch (Version: 2009.1209.2334.42329)
CCC Help English (Version: 2009.1209.2334.42329)
CCC Help Finnish (Version: 2009.1209.2334.42329)
CCC Help French (Version: 2009.1209.2334.42329)
CCC Help German (Version: 2009.1209.2334.42329)
CCC Help Greek (Version: 2009.1209.2334.42329)
CCC Help Hungarian (Version: 2009.1209.2334.42329)
CCC Help Italian (Version: 2009.1209.2334.42329)
CCC Help Japanese (Version: 2009.1209.2334.42329)
CCC Help Korean (Version: 2009.1209.2334.42329)
CCC Help Norwegian (Version: 2009.1209.2334.42329)
CCC Help Polish (Version: 2009.1209.2334.42329)
CCC Help Portuguese (Version: 2009.1209.2334.42329)
CCC Help Russian (Version: 2009.1209.2334.42329)
CCC Help Spanish (Version: 2009.1209.2334.42329)
CCC Help Swedish (Version: 2009.1209.2334.42329)
CCC Help Thai (Version: 2009.1209.2334.42329)
CCC Help Turkish (Version: 2009.1209.2334.42329)
CD-LabelPrint
Chicken Invaders 2
Civilization II Multiplayer Gold Edition
Color Efex Pro 4 (Version: 4.0.0.0)
Compatibility Pack for the 2007 Office system (Version: 12.0.6425.1000)
Connect (Version: 1.0.0.1)
ConvertXtoDVD 3.0.0.9 (Version: 3.0.0.9)
CyberLink PowerDirector (Version: 9.0.0.2330a)
CyberLink WaveEditor (Version: 1.0.1.2318)
Dairy Dash (remove only)
DivX Codec (Version: 6.9.1)
DivX Converter (Version: 7.1.0)
DivX Player (Version: 7.2.0)
DivX Plus DirectShow Filters
DivX Plus Media Foundation Components (Version: 1.0.0)
DivX Plus Web Player (Version: 2.0.0)
DivX Version Checker (Version: 7.1.0.9)
Dream Day First Home
DriveClone
DVD Shrink 3.2
DVDFab 7.0.9.3 (08/08/2010)
eBay Worldwide (Version: 2.1.0901)
EmpirePoker (Version: 145)
eSobi v2 (Version: 2.0.4.000274)
Eudora (Version: 7.0)
EZ Vinyl/Tape Converter 4.1 by MixMeister
FairUse Wizard 2 (Version: (v2.11b))
Family Tree Maker 2012 (Version: 21.0.388)
Farm Frenzy 2
First Class Flurry
FreePHG V3.06
Google Desktop (Version: 5.9.1005.12335)
Google Earth (Version: 6.0.3.2197)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.2.2318.1946)
Google Update Helper (Version: 1.3.21.79)
Granny In Paradise
Graphic.ly (Version: 0.8.4)
H.264 Decoder (Version: 1.1.0)
Holdem Indicator 2.0.9
Holdem Manager
Identity Card (Version: 1.00.3003)
ImgBurn (Version: 2.5.2.0)
Intel® Management Engine Components (Version: 6.0.0.1179)
Intel® Turbo Boost Technology Driver (Version: 01.00.01.1002)
Intel® Turbo Boost Technology Monitor (Version: 1.0.186.6)
Intel® Matrix Storage Manager
iTunes (Version: 10.2.2.12)
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 31 (Version: 6.0.310)
Junk Mail filter update (Version: 14.0.8089.726)
kuler (Version: 2.0)
LAME v3.98.2 for Audacity
Launch Manager (Version: 3.0.05)
Legacy 7.5 (Version: 7.5 )
LSI HDA Modem (Version: 2.2.98)
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
Merriam Websters Spell Jam
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Professional Edition 2003 (Version: 11.0.8173.0)
Microsoft Office Suite Activation Assistant (Version: 2.9)
Microsoft Primary Interoperability Assemblies 2005 (Version: 8.0.50727.42)
Microsoft Robocopy GUI (Version: 1.0.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Works (Version: 9.7.0621)
Microsoft WSE 3.0 (Version: 3.0.5305.0)
Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)
MKV Splitter (Version: 1.0.1)
Mozilla Firefox 10.0.2 (x86 en-US) (Version: 10.0.2)
Mozilla Maintenance Service (Version: 12.0)
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MVP Bridge Deluxe Trial (Version: 3.7.0)
Notepad++ (Version: 6.1.1)
nrg2iso (Version: 1.0.0)
NTI Backup Now 5 (Version: 5.1.2.627)
NTI Backup Now Standard (Version: 5.1.2.627)
NTI Media Maker 8 (Version: 8.0.12.6623)
OpenOffice.org 3.2 (Version: 3.2.9483)
Oracle VM VirtualBox 4.0.6 (Version: 4.0.6)
PartyPoker (Version: 150)
PC Tune-Up
PC Tune-Up (Version: 1.1.0.7)
PDF Settings CS4 (Version: 9.0)
PDF Settings CS5 (Version: 10.0)
PDFCreator (Version: 1.0.1)
Photoshop Camera Raw (Version: 5.0)
Photoshop Camera Raw_x64 (Version: 5.0)
PokerTracker 3 (remove only)
PostgreSQL 8.3 (Version: 8.3)
PowerISO
QuickTime (Version: 7.69.80.9)
Realtek High Definition Audio Driver (Version: 6.0.1.5969)
Sharpener Pro 3.0 (Version: 3.0.0.2)
Sid Meier's Civilization 4 (Version: 1.74)
Silver Efex Pro (Version: 1.0.0.5)
SmartSound Quicktracks 5 (Version: 5.1.7)
Sony Ericsson PC Companion 2.01.149 (Version: 2.01.149)
Sony Ericsson PC Suite 6.011.00 (Version: 6.011.00)
Spyder3Elite
Suite Shared Configuration CS4 (Version: 1.0)
Synaptics Pointing Device Driver (Version: 14.0.6.0)
The Settlers 7 - Paths to a Kingdom (Version: 1.12.1396)
Ubisoft Game Launcher (Version: 1.0.0.0)
Unlocker 1.8.9 (Version: 1.8.9)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
USIM Editor 1.0.33.70
VC 9.0 Runtime (Version: 1.0.0)
VC80CRTRedist - 8.0.50727.4053 (Version: 1.1.0)
VidCrop PRO
VLC media player 1.0.3 (Version: 1.0.3)
Welcome Center (Version: 1.00.3008)
Windows Live Call (Version: 14.0.8064.0206)
Windows Live Communications Platform (Version: 14.0.8064.206)
Windows Live Essentials (Version: 14.0.8089.0726)
Windows Live Essentials (Version: 14.0.8089.726)
Windows Live Mail (Version: 14.0.8089.0726)
Windows Live Messenger (Version: 14.0.8089.0726)
Windows Live Movie Maker (Version: 14.0.8091.0730)
Windows Live Photo Gallery (Version: 14.0.8081.709)
Windows Live Writer (Version: 14.0.8089.0726)
Windows Media Encoder 9 Series
Windows Media Encoder 9 Series (Version: 9.00.2980)
WinRAR archiver
ZoneAlarm Antivirus (Version: 10.1.079.000)
ZoneAlarm DataLock (Version: 10.1.079.000)
ZoneAlarm Extreme Security (Version: 10.1.079.000)
ZoneAlarm Firewall (Version: 10.1.079.000)
ZoneAlarm Security (Version: 10.1.079.000)
ZoneAlarm Security Toolbar (Version: 6.7.0.6)

========================= Devices: ================================

Name: Microsoft Virtual WiFi Miniport Adapter
Description: Microsoft Virtual WiFi Miniport Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: RF USB Receiver
Description: RF USB Receiver
Class Guid:
Manufacturer:
Service:
Problem: : This device is not configured correctly. (Code1)
Resolution: You may be prompted to provide the path of the driver. Windows may have the driver built-in, or may still have the driver files installed from the last time that you set up the device. If you are asked for the driver and you do not have it, you can try to download the latest driver from the hardware vendor’s Web site.
In the device properties dialog box, click the "Driver" tab, and then click "Update Driver" to start the "Hardware Update Wizard". Follow the instructions to update the driver. If updating the driver does not work, see your hardware documentation for more information.


========================= Memory info: ===================================

Percentage of memory in use: 39%
Total physical RAM: 3956.5 MB
Available physical RAM: 2377.98 MB
Total Pagefile: 7911.14 MB
Available Pagefile: 6306.71 MB
Total Virtual: 4095.88 MB
Available Virtual: 3957.64 MB

========================= Partitions: =====================================

1 Drive c: (ACER) (Fixed) (Total:583.38 GB) (Free:120.53 GB) NTFS
3 Drive e: () (Removable) (Total:14.92 GB) (Free:12.16 GB) FAT32
4 Drive g: (FreeAgent Drive) (Fixed) (Total:465.76 GB) (Free:9.57 GB) NTFS
5 Drive i: (FreeAgent Drive) (Fixed) (Total:931.51 GB) (Free:79.93 GB) NTFS
6 Drive m: (FreeAgent GoFlex Drive) (Fixed) (Total:2794.51 GB) (Free:651.9 GB) NTFS

========================= Users: ========================================

User accounts for \\DOLLYWOOD2

Administrator Guest postgres
vanda


**** End of log ****

#7 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,716 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:12:22 AM

Posted 25 July 2012 - 06:01 PM

You posted MiniToolbox log twice.

I still need MBAM and aswMBR logs.

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#8 nogbad73

nogbad73
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:02:22 AM

Posted 26 July 2012 - 01:47 AM

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-07-26 07:05:47
-----------------------------
07:05:47.661 OS Version: Windows x64 6.1.7600
07:05:47.661 Number of processors: 4 586 0x2502
07:05:47.661 ComputerName: DOLLYWOOD2 UserName: vanda
07:05:49.268 Initialize success
07:05:59.314 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
07:05:59.314 Disk 0 Vendor: WDC_WD64 01.0 Size: 610480MB BusType: 3
07:05:59.345 Disk 0 MBR read successfully
07:05:59.345 Disk 0 MBR scan
07:05:59.361 Disk 0 Windows VISTA default MBR code
07:05:59.361 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 13000 MB offset 2048
07:05:59.392 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 26626048
07:05:59.408 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 597378 MB offset 26830848
07:05:59.439 Disk 0 scanning C:\Windows\system32\drivers
07:06:07.302 Service scanning
07:06:55.506 Service sptd C:\Windows\System32\Drivers\sptd.sys **LOCKED** 32
07:07:03.243 Modules scanning
07:07:03.243 Disk 0 trace - called modules:
07:07:03.274 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys spev.sys hal.dll
07:07:03.274 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004ac7580]
07:07:03.290 3 CLASSPNP.SYS[fffff8800196043f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa80048e8050]
07:07:03.306 Scan finished successfully
07:23:15.047 Disk 0 MBR has been saved successfully to "E:\MBR.dat"
07:23:15.063 The log file has been saved successfully to "E:\aswMBR.txt"


Malwarebytes Anti-Malware (Trial) 1.61.0.1400
www.malwarebytes.org

Database version: v2012.07.16.09

Windows 7 x64 NTFS
Internet Explorer 9.0.8112.16421
vanda :: DOLLYWOOD2 [administrator]

Protection: Enabled

26/07/2012 07:23:55
mbam-log-2012-07-26 (07-23-55).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 275035
Time elapsed: 7 minute(s), 51 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#9 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,716 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:12:22 AM

Posted 26 July 2012 - 03:03 PM

All logs looks clean.

I suggest you reinstall ZoneAlarm.

Regarding internet issue....

Make sure, your settings are correct.
1. Go Start>Settings>Control Panel (Vista/7 users: Start>Control Panel)
2. Double click Network Connections (Vista/7 users: Network and Sharing Center)
3. Vista/7 users - From the list of tasks on the left, click Manage network connections.
4. For a wired network connection, right-click Local Area Connection, and then select Properties.
For a wireless network connection, right-click Wireless Network Connection, and then select Properties.
5. From the General tab (Vista/7 users: Networking tab), click Internet Protocol version 4 (TCP/IPv4), make sure it is checked, and then click Properties
6. Make sure Obtain an IP Address Automatically and Obtain DNS server address Automatically are checked.
7. Click on "Advanced" button and make sure "IP Settings" tab looks like this:
Posted Image
Make sure "DNS" tab looks like this:
Posted Image
Make sure "WINS" tab looks like this:
Posted Image
8. Still in Control Panel double click on "Internet options" then "Connections" tab then "LAN Settings" button. Make sure "Automatically detect settings" is checked.
If you made any changes OK your way out.
Restart computer.


If that doesn't work...
Turn off computer. Disconnect router, and modem from power source for 1 minute. At the same time disconnect ethernet cable as well.
Reconnect everything.
Restart computer.

If that doesn't work, bypass router, and connect computer straight to the modem.

If that doesn't work...
Go Start>Run (Start search in Vista), type in:
cmd
Click OK (in Vista and 7, while holding CTRL, and SHIFT, press Enter).

In Command Prompt window, type in following commands, and hit Enter after each one:
ipconfig /flushdns
ipconfig /registerdns
ipconfig /release
ipconfig /renew
net stop "dns client"
net start "dns client"


Restart computer.

If that doesn't work...
Go Start>Run (Start search in Vista and 7), type in:
cmd
Click OK (in Vista and 7, while holding CTRL, and SHIFT, press Enter).

At Command Prompt, type in:
netsh int ip reset reset.log
Hit Enter.
Type in:
netsh winsock reset catalog
Hit Enter.

Restart computer.

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users