Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Write Fault/ HD Failure errors


  • Please log in to reply
16 replies to this topic

#1 myjoe

myjoe

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:01:25 AM

Posted 19 August 2012 - 08:30 PM

Hello

Yesterday I received waves of Write Fault errors and HD failure detected notices on my Vista Home 32 bit computer. I downloaded Malware Bytes and it deleted a few things. This morning everything was hidden and I managed to unhide desktop icons, etc, now all my feeds have gone (they were still there this morning). So I just wanted to know if there is actually still something infecting my computer or, if clean, where did the feeds go to?!

Look forward to receiving some help advice from you.

Best Regards
Margaret

Edited by myjoe, 19 August 2012 - 08:33 PM.


BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:25 PM

Posted 19 August 2012 - 09:50 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 myjoe

myjoe
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:01:25 AM

Posted 19 August 2012 - 11:49 PM

Sorry, I accidently posted this before the final scan (which is still slowly ongoing)
Thank you
TDSSKiller log:
11:15:18.0214 3808 TDSS rootkit removing tool 2.8.6.0 Aug 13 2012 17:24:05
11:15:19.0154 3808 ============================================================
11:15:19.0154 3808 Current date / time: 2012/08/20 11:15:19.0154
11:15:19.0154 3808 SystemInfo:
11:15:19.0154 3808
11:15:19.0154 3808 OS Version: 6.0.6002 ServicePack: 2.0
11:15:19.0154 3808 Product type: Workstation
11:15:19.0154 3808 ComputerName: MARGARET-PC
11:15:19.0155 3808 UserName: Margaret
11:15:19.0155 3808 Windows directory: C:\Windows
11:15:19.0155 3808 System windows directory: C:\Windows
11:15:19.0155 3808 Processor architecture: Intel x86
11:15:19.0155 3808 Number of processors: 4
11:15:19.0155 3808 Page size: 0x1000
11:15:19.0155 3808 Boot type: Normal boot
11:15:19.0155 3808 ============================================================
11:15:20.0188 3808 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
11:15:20.0229 3808 Drive \Device\Harddisk3\DR4 - Size: 0xE8E0DB5800 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
11:15:20.0237 3808 ============================================================
11:15:20.0237 3808 \Device\Harddisk0\DR0:
11:15:20.0237 3808 MBR partitions:
11:15:20.0237 3808 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1C00800, BlocksNum 0x39582800
11:15:20.0237 3808 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x3B183000, BlocksNum 0x39583000
11:15:20.0237 3808 \Device\Harddisk3\DR4:
11:15:20.0238 3808 MBR partitions:
11:15:20.0238 3808 \Device\Harddisk3\DR4\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x747059C1
11:15:20.0238 3808 ============================================================
11:15:20.0282 3808 C: <-> \Device\Harddisk0\DR0\Partition1
11:15:20.0311 3808 D: <-> \Device\Harddisk0\DR0\Partition2
11:15:20.0353 3808 F: <-> \Device\Harddisk3\DR4\Partition1
11:15:20.0353 3808 ============================================================
11:15:20.0353 3808 Initialize success
11:15:20.0353 3808 ============================================================
11:15:39.0846 4364 ============================================================
11:15:39.0846 4364 Scan started
11:15:39.0846 4364 Mode: Manual; TDLFS;
11:15:39.0846 4364 ============================================================
11:15:40.0888 4364 ================ Scan services =============================
11:15:41.0262 4364 [ 82b296ae1892fe3dbee00c9cf92f8ac7 ] ACPI C:\Windows\system32\drivers\acpi.sys
11:15:41.0267 4364 ACPI - ok
11:15:41.0314 4364 [ 04f0fcac69c7c71a3ac4eb97fafc8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
11:15:41.0320 4364 adp94xx - ok
11:15:41.0345 4364 [ 60505e0041f7751bdbb80f88bf45c2ce ] adpahci C:\Windows\system32\drivers\adpahci.sys
11:15:41.0350 4364 adpahci - ok
11:15:41.0370 4364 [ 8a42779b02aec986eab64ecfc98f8bd7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
11:15:41.0373 4364 adpu160m - ok
11:15:41.0414 4364 [ 241c9e37f8ce45ef51c3de27515ca4e5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
11:15:41.0418 4364 adpu320 - ok
11:15:41.0461 4364 [ 9d1fda9e086ba64e3c93c9de32461bcf ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
11:15:41.0462 4364 AeLookupSvc - ok
11:15:41.0489 4364 [ 3911b972b55fea0478476b2e777b29fa ] AFD C:\Windows\system32\drivers\afd.sys
11:15:41.0493 4364 AFD - ok
11:15:41.0539 4364 [ 13f9e33747e6b41a3ff305c37db0d360 ] agp440 C:\Windows\system32\drivers\agp440.sys
11:15:41.0541 4364 agp440 - ok
11:15:41.0555 4364 [ ae1fdf7bf7bb6c6a70f67699d880592a ] aic78xx C:\Windows\system32\drivers\djsvs.sys
11:15:41.0557 4364 aic78xx - ok
11:15:41.0581 4364 [ a1545b731579895d8cc44fc0481c1192 ] ALG C:\Windows\System32\alg.exe
11:15:41.0583 4364 ALG - ok
11:15:41.0605 4364 [ 9eaef5fc9b8e351afa7e78a6fae91f91 ] aliide C:\Windows\system32\drivers\aliide.sys
11:15:41.0607 4364 aliide - ok
11:15:41.0620 4364 [ c47344bc706e5f0b9dce369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
11:15:41.0623 4364 amdagp - ok
11:15:41.0636 4364 [ 9b78a39a4c173fdbc1321e0dd659b34c ] amdide C:\Windows\system32\drivers\amdide.sys
11:15:41.0638 4364 amdide - ok
11:15:41.0651 4364 [ 18f29b49ad23ecee3d2a826c725c8d48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
11:15:41.0653 4364 AmdK7 - ok
11:15:41.0669 4364 [ 93ae7f7dd54ab986a6f1a1b37be7442d ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
11:15:41.0671 4364 AmdK8 - ok
11:15:41.0709 4364 [ 0e46fda73fd47fa4c61223e45187f7d5 ] androidusb C:\Windows\system32\Drivers\androidusb.sys
11:15:41.0710 4364 androidusb - ok
11:15:41.0749 4364 [ c6d704c7f0434dc791aac37cac4b6e14 ] Appinfo C:\Windows\System32\appinfo.dll
11:15:41.0750 4364 Appinfo - ok
11:15:41.0779 4364 [ 5d2888182fb46632511acee92fdad522 ] arc C:\Windows\system32\drivers\arc.sys
11:15:41.0790 4364 arc - ok
11:15:41.0823 4364 [ 5e2a321bd7c8b3624e41fdec3e244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
11:15:41.0827 4364 arcsas - ok
11:15:41.0851 4364 [ 53b202abee6455406254444303e87be1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
11:15:41.0852 4364 AsyncMac - ok
11:15:41.0878 4364 [ 1f05b78ab91c9075565a9d8a4b880bc4 ] atapi C:\Windows\system32\drivers\atapi.sys
11:15:41.0880 4364 atapi - ok
11:15:41.0928 4364 [ 68e2a1a0407a66cf50da0300852424ab ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:15:41.0933 4364 AudioEndpointBuilder - ok
11:15:41.0939 4364 [ 68e2a1a0407a66cf50da0300852424ab ] Audiosrv C:\Windows\System32\Audiosrv.dll
11:15:41.0942 4364 Audiosrv - ok
11:15:42.0125 4364 [ 5cd22eb540f82c70e33e530003f3903b ] avgfws C:\Program Files\AVG\AVG2012\avgfws.exe
11:15:42.0154 4364 avgfws - ok
11:15:42.0281 4364 [ 6d440ff3f44ca72edfd6176c6d6a89c0 ] AVGIDSAgent C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
11:15:42.0332 4364 AVGIDSAgent - ok
11:15:42.0360 4364 [ 6699ece24fe4b3f752a66c66a602ee86 ] avgwd C:\Program Files\AVG\AVG2012\avgwdsvc.exe
11:15:42.0363 4364 avgwd - ok
11:15:42.0398 4364 [ 67e506b75bd5326a3ec7b70bd014dfb6 ] Beep C:\Windows\system32\drivers\Beep.sys
11:15:42.0400 4364 Beep - ok
11:15:42.0430 4364 [ c789af0f724fda5852fb9a7d3a432381 ] BFE C:\Windows\System32\bfe.dll
11:15:42.0436 4364 BFE - ok
11:15:42.0485 4364 [ 93952506c6d67330367f7e7934b6a02f ] BITS C:\Windows\System32\qmgr.dll
11:15:42.0497 4364 BITS - ok
11:15:42.0522 4364 [ d4df28447741fd3d953526e33a617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
11:15:42.0524 4364 blbdrive - ok
11:15:42.0552 4364 [ 35f376253f687bde63976ccb3f2108ca ] bowser C:\Windows\system32\DRIVERS\bowser.sys
11:15:42.0554 4364 bowser - ok
11:15:42.0595 4364 [ 9f9acc7f7ccde8a15c282d3f88b43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
11:15:42.0597 4364 BrFiltLo - ok
11:15:42.0610 4364 [ 56801ad62213a41f6497f96dee83755a ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
11:15:42.0612 4364 BrFiltUp - ok
11:15:42.0642 4364 [ a3629a0c4226f9e9c72faaeebc3ad33c ] Browser C:\Windows\System32\browser.dll
11:15:42.0644 4364 Browser - ok
11:15:42.0663 4364 [ b304e75cff293029eddf094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
11:15:42.0664 4364 Brserid - ok
11:15:42.0675 4364 [ 203f0b1e73adadbbb7b7b1fabd901f6b ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
11:15:42.0677 4364 BrSerWdm - ok
11:15:42.0696 4364 [ bd456606156ba17e60a04e18016ae54b ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
11:15:42.0697 4364 BrUsbMdm - ok
11:15:42.0713 4364 [ af72ed54503f717a43268b3cc5faec2e ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
11:15:42.0714 4364 BrUsbSer - ok
11:15:42.0727 4364 [ ad07c1ec6665b8b35741ab91200c6b68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
11:15:42.0729 4364 BTHMODEM - ok
11:15:42.0763 4364 [ 7add03e75beb9e6dd102c3081d29840a ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
11:15:42.0766 4364 cdfs - ok
11:15:42.0801 4364 [ 6b4bffb9becd728097024276430db314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
11:15:42.0809 4364 cdrom - ok
11:15:42.0870 4364 [ 312ec3e37a0a1f2006534913e37b4423 ] CertPropSvc C:\Windows\System32\certprop.dll
11:15:42.0877 4364 CertPropSvc - ok
11:15:42.0908 4364 [ e5d4133f37219dbcfe102bc61072589d ] circlass C:\Windows\system32\DRIVERS\circlass.sys
11:15:42.0918 4364 circlass - ok
11:15:43.0211 4364 [ d7659d3b5b92c31e84e53c1431f35132 ] CLFS C:\Windows\system32\CLFS.sys
11:15:43.0219 4364 CLFS - ok
11:15:43.0759 4364 [ e3f539a0a831b4cc6a62dd8f570761f4 ] CLHNService C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe
11:15:43.0778 4364 CLHNService - ok
11:15:43.0863 4364 [ 8ee772032e2fe80a924f3b8dd5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:15:43.0882 4364 clr_optimization_v2.0.50727_32 - ok
11:15:43.0973 4364 [ c5a75eb48e2344abdc162bda79e16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:15:43.0981 4364 clr_optimization_v4.0.30319_32 - ok
11:15:44.0020 4364 [ 0ca25e686a4928484e9fdabd168ab629 ] cmdide C:\Windows\system32\drivers\cmdide.sys
11:15:44.0035 4364 cmdide - ok
11:15:44.0058 4364 [ 6afef0b60fa25de07c0968983ee4f60a ] Compbatt C:\Windows\system32\drivers\compbatt.sys
11:15:44.0060 4364 Compbatt - ok
11:15:44.0065 4364 COMSysApp - ok
11:15:44.0095 4364 [ 741e9dff4f42d2d8477d0fc1dc0df871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
11:15:44.0097 4364 crcdisk - ok
11:15:44.0124 4364 [ 1f07becdca750766a96cda811ba86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
11:15:44.0137 4364 Crusoe - ok
11:15:44.0186 4364 [ 75c6a297e364014840b48eccd7525e30 ] CryptSvc C:\Windows\system32\cryptsvc.dll
11:15:44.0204 4364 CryptSvc - ok
11:15:44.0296 4364 [ 9fd96afed226918a6ed8d0baf9c2b398 ] CyberLink Media Server Monitor Service C:\Program Files\Acer Arcade Deluxe\Acer HomeMedia Connect\Kernel\DMS\CLMSMonitorService.exe
11:15:44.0301 4364 CyberLink Media Server Monitor Service - ok
11:15:44.0315 4364 [ 051e8d7ac7b1902bd32060ab7ed6e449 ] CyberLink Media Server Service C:\Program Files\Acer Arcade Deluxe\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe
11:15:44.0320 4364 CyberLink Media Server Service - ok
11:15:44.0390 4364 [ 3b5b4d53fec14f7476ca29a20cc31ac9 ] DcomLaunch C:\Windows\system32\rpcss.dll
11:15:44.0417 4364 DcomLaunch - ok
11:15:44.0470 4364 [ 622c41a07ca7e6dd91770f50d532cb6c ] DfsC C:\Windows\system32\Drivers\dfsc.sys
11:15:44.0472 4364 DfsC - ok
11:15:44.0553 4364 [ 2cc3dcfb533a1035b13dcab6160ab38b ] DFSR C:\Windows\system32\DFSR.exe
11:15:44.0579 4364 DFSR - ok
11:15:44.0624 4364 [ 9028559c132146fb75eb7acf384b086a ] Dhcp C:\Windows\System32\dhcpcsvc.dll
11:15:44.0628 4364 Dhcp - ok
11:15:44.0659 4364 [ 5d4aefc3386920236a548271f8f1af6a ] disk C:\Windows\system32\drivers\disk.sys
11:15:44.0661 4364 disk - ok
11:15:44.0684 4364 [ 57d762f6f5974af0da2be88a3349baaa ] Dnscache C:\Windows\System32\dnsrslvr.dll
11:15:44.0687 4364 Dnscache - ok
11:15:44.0733 4364 [ 324fd74686b1ef5e7c19a8af49e748f6 ] dot3svc C:\Windows\System32\dot3svc.dll
11:15:44.0737 4364 dot3svc - ok
11:15:44.0769 4364 [ a622e888f8aa2f6b49e9bc466f0e5def ] DPS C:\Windows\system32\dps.dll
11:15:44.0772 4364 DPS - ok
11:15:44.0808 4364 [ 97fef831ab90bee128c9af390e243f80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
11:15:44.0809 4364 drmkaud - ok
11:15:44.0848 4364 [ c68ac676b0ef30cfbb1080adce49eb1f ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
11:15:44.0858 4364 DXGKrnl - ok
11:15:44.0913 4364 [ 5425f74ac0c1dbd96a1e04f17d63f94c ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
11:15:44.0915 4364 E1G60 - ok
11:15:44.0973 4364 [ c0b95e40d85cd807d614e264248a45b9 ] EapHost C:\Windows\System32\eapsvc.dll
11:15:44.0974 4364 EapHost - ok
11:15:45.0005 4364 [ 7f64ea048dcfac7acf8b4d7b4e6fe371 ] Ecache C:\Windows\system32\drivers\ecache.sys
11:15:45.0008 4364 Ecache - ok
11:15:45.0098 4364 [ 9be3744d295a7701eb425332014f0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
11:15:45.0103 4364 ehRecvr - ok
11:15:45.0159 4364 [ ad1870c8e5d6dd340c829e6074bf3c3f ] ehSched C:\Windows\ehome\ehsched.exe
11:15:45.0162 4364 ehSched - ok
11:15:45.0197 4364 [ c27c4ee8926e74aa72efcab24c5242c3 ] ehstart C:\Windows\ehome\ehstart.dll
11:15:45.0199 4364 ehstart - ok
11:15:45.0565 4364 [ 23b62471681a124889978f6295b3f4c6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
11:15:45.0582 4364 elxstor - ok
11:15:45.0711 4364 [ 4e6b23dfc917ea39306b529b773950f4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
11:15:46.0019 4364 EMDMgmt - ok
11:15:46.0094 4364 [ 3db974f3935483555d7148663f726c61 ] ErrDev C:\Windows\system32\drivers\errdev.sys
11:15:46.0105 4364 ErrDev - ok
11:15:46.0166 4364 [ 67058c46504bc12d821f38cf99b7b28f ] EventSystem C:\Windows\system32\es.dll
11:15:46.0171 4364 EventSystem - ok
11:15:46.0223 4364 [ 22b408651f9123527bcee54b4f6c5cae ] exfat C:\Windows\system32\drivers\exfat.sys
11:15:46.0226 4364 exfat - ok
11:15:46.0257 4364 [ 1e9b9a70d332103c52995e957dc09ef8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
11:15:46.0260 4364 fastfat - ok
11:15:46.0289 4364 [ afe1e8b9782a0dd7fb46bbd88e43f89a ] fdc C:\Windows\system32\DRIVERS\fdc.sys
11:15:46.0290 4364 fdc - ok
11:15:46.0316 4364 [ 6629b5f0e98151f4afdd87567ea32ba3 ] fdPHost C:\Windows\system32\fdPHost.dll
11:15:46.0318 4364 fdPHost - ok
11:15:46.0323 4364 [ 89ed56dce8e47af40892778a5bd31fd2 ] FDResPub C:\Windows\system32\fdrespub.dll
11:15:46.0325 4364 FDResPub - ok
11:15:46.0360 4364 [ a8c0139a884861e3aae9cfe73b208a9f ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
11:15:46.0362 4364 FileInfo - ok
11:15:46.0394 4364 [ 0ae429a696aecbc5970e3cf2c62635ae ] Filetrace C:\Windows\system32\drivers\filetrace.sys
11:15:46.0395 4364 Filetrace - ok
11:15:46.0414 4364 [ 85b7cf99d532820495d68d747fda9ebd ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
11:15:46.0415 4364 flpydisk - ok
11:15:46.0452 4364 [ 01334f9ea68e6877c4ef05d3ea8abb05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
11:15:46.0455 4364 FltMgr - ok
11:15:46.0505 4364 [ 8ce364388c8eca59b14b539179276d44 ] FontCache C:\Windows\system32\FntCache.dll
11:15:46.0516 4364 FontCache - ok
11:15:46.0583 4364 [ c7fbdd1ed42f82bfa35167a5c9803ea3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
11:15:46.0584 4364 FontCache3.0.0.0 - ok
11:15:46.0614 4364 [ b972a66758577e0bfd1de0f91aaa27b5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
11:15:46.0615 4364 Fs_Rec - ok
11:15:46.0673 4364 [ 34582a6e6573d54a07ece5fe24a126b5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
11:15:46.0676 4364 gagp30kx - ok
11:15:46.0789 4364 [ f0187e45268e86aaaa932cbd9087bea8 ] GoogleDesktopManager-110309-193829 C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
11:15:46.0800 4364 GoogleDesktopManager-110309-193829 - ok
11:15:46.0839 4364 [ cd5d0aeee35dfd4e986a5aa1500a6e66 ] gpsvc C:\Windows\System32\gpsvc.dll
11:15:46.0848 4364 gpsvc - ok
11:15:46.0932 4364 [ f02a533f517eb38333cb12a9e8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
11:15:46.0935 4364 gupdate - ok
11:15:46.0949 4364 [ f02a533f517eb38333cb12a9e8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
11:15:46.0951 4364 gupdatem - ok
11:15:46.0994 4364 [ 8a655ae5c2fd563570b9a9f362c4156d ] HCW85BDA C:\Windows\system32\drivers\HCW85BDA.sys
11:15:47.0014 4364 HCW85BDA - ok
11:15:47.0072 4364 [ cb04c744be0a61b1d648faed182c3b59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
11:15:47.0077 4364 HdAudAddService - ok
11:15:47.0113 4364 [ 062452b7ffd68c8c042a6261fe8dff4a ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
11:15:47.0120 4364 HDAudBus - ok
11:15:47.0150 4364 [ 1338520e78d90154ed6be8f84de5fceb ] HidBth C:\Windows\system32\drivers\hidbth.sys
11:15:47.0152 4364 HidBth - ok
11:15:47.0190 4364 [ d8df3722d5e961baa1292aa2f12827e2 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
11:15:47.0192 4364 HidIr - ok
11:15:47.0225 4364 [ 84067081f3318162797385e11a8f0582 ] hidserv C:\Windows\system32\hidserv.dll
11:15:47.0227 4364 hidserv - ok
11:15:47.0272 4364 [ cca4b519b17e23a00b826c55716809cc ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
11:15:47.0274 4364 HidUsb - ok
11:15:47.0294 4364 [ d8ad255b37da92434c26e4876db7d418 ] hkmsvc C:\Windows\system32\kmsvc.dll
11:15:47.0297 4364 hkmsvc - ok
11:15:47.0336 4364 [ 16ee7b23a009e00d835cdb79574a91a6 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
11:15:47.0338 4364 HpCISSs - ok
11:15:47.0369 4364 [ f870aa3e254628ebeafe754108d664de ] HTTP C:\Windows\system32\drivers\HTTP.sys
11:15:47.0375 4364 HTTP - ok
11:15:47.0399 4364 [ c6b032d69650985468160fc9937cf5b4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
11:15:47.0401 4364 i2omp - ok
11:15:47.0439 4364 [ 22d56c8184586b7a1f6fa60be5f5a2bd ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
11:15:47.0441 4364 i8042prt - ok
11:15:47.0469 4364 [ 54155ea1b0df185878e0fc9ec3ac3a14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
11:15:47.0473 4364 iaStorV - ok
11:15:47.0526 4364 [ 98477b08e61945f974ed9fdc4cb6bdab ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
11:15:47.0538 4364 idsvc - ok
11:15:47.0561 4364 [ 2d077bf86e843f901d8db709c95b49a5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
11:15:47.0562 4364 iirsp - ok
11:15:47.0997 4364 [ f82bc30bb2b608af8b5540cdbaea93a6 ] IJPLMSVC C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
11:15:48.0000 4364 IJPLMSVC - ok
11:15:48.0035 4364 [ 9908d8a397b76cd8d31d0d383c5773c9 ] IKEEXT C:\Windows\System32\ikeext.dll
11:15:48.0043 4364 IKEEXT - ok
11:15:48.0656 4364 [ 84ed2154239f9d013bbd3220755ada8b ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
11:15:48.0823 4364 IntcAzAudAddService - ok
11:15:48.0873 4364 [ 83aa759f3189e6370c30de5dc5590718 ] intelide C:\Windows\system32\drivers\intelide.sys
11:15:48.0875 4364 intelide - ok
11:15:48.0907 4364 [ 224191001e78c89dfa78924c3ea595ff ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
11:15:48.0908 4364 intelppm - ok
11:15:48.0925 4364 [ 9ac218c6e6105477484c6fdbe7d409a4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
11:15:48.0950 4364 IPBusEnum - ok
11:15:48.0974 4364 [ 62c265c38769b864cb25b4bcf62df6c3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:15:48.0975 4364 IpFilterDriver - ok
11:15:49.0009 4364 [ 1998bd97f950680bb55f55a7244679c2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
11:15:49.0013 4364 iphlpsvc - ok
11:15:49.0018 4364 IpInIp - ok
11:15:49.0039 4364 [ b25aaf203552b7b3491139d582b39ad1 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
11:15:49.0041 4364 IPMIDRV - ok
11:15:49.0062 4364 [ 8793643a67b42cec66490b2a0cf92d68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
11:15:49.0065 4364 IPNAT - ok
11:15:49.0082 4364 [ 109c0dfb82c3632fbd11949b73aeeac9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
11:15:49.0084 4364 IRENUM - ok
11:15:49.0116 4364 [ 6c70698a3e5c4376c6ab5c7c17fb0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
11:15:49.0118 4364 isapnp - ok
11:15:49.0154 4364 [ 232fa340531d940aac623b121a595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
11:15:49.0157 4364 iScsiPrt - ok
11:15:49.0197 4364 [ bced60d16156e428f8df8cf27b0df150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
11:15:49.0198 4364 iteatapi - ok
11:15:49.0213 4364 [ 06fa654504a498c30adca8bec4e87e7e ] iteraid C:\Windows\system32\drivers\iteraid.sys
11:15:49.0214 4364 iteraid - ok
11:15:49.0239 4364 [ 37605e0a8cf00cbba538e753e4344c6e ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
11:15:49.0241 4364 kbdclass - ok
11:15:49.0288 4364 [ ede59ec70e25c24581add1fbec7325f7 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
11:15:49.0289 4364 kbdhid - ok
11:15:49.0300 4364 [ a3e186b4b935905b829219502557314e ] KeyIso C:\Windows\system32\lsass.exe
11:15:49.0303 4364 KeyIso - ok
11:15:49.0340 4364 [ 4a1445efa932a3baf5bdb02d7131ee20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
11:15:49.0347 4364 KSecDD - ok
11:15:49.0388 4364 [ 8078f8f8f7a79e2e6b494523a828c585 ] KtmRm C:\Windows\system32\msdtckrm.dll
11:15:49.0394 4364 KtmRm - ok
11:15:49.0412 4364 [ 1bf5eebfd518dd7298434d8c862f825d ] LanmanServer C:\Windows\system32\srvsvc.dll
11:15:49.0416 4364 LanmanServer - ok
11:15:49.0472 4364 [ 1db69705b695b987082c8baec0c6b34f ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:15:49.0477 4364 LanmanWorkstation - ok
11:15:49.0518 4364 [ d1c5883087a0c3f1344d9d55a44901f6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
11:15:49.0534 4364 lltdio - ok
11:15:49.0567 4364 [ 2d5a428872f1442631d0959a34abff63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
11:15:49.0572 4364 lltdsvc - ok
11:15:49.0597 4364 [ 35d40113e4a5b961b6ce5c5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
11:15:49.0599 4364 lmhosts - ok
11:15:49.0629 4364 [ c7e15e82879bf3235b559563d4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
11:15:49.0638 4364 LSI_FC - ok
11:15:49.0651 4364 [ ee01ebae8c9bf0fa072e0ff68718920a ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
11:15:49.0653 4364 LSI_SAS - ok
11:15:49.0695 4364 [ 912a04696e9ca30146a62afa1463dd5c ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
11:15:49.0697 4364 LSI_SCSI - ok
11:15:49.0721 4364 [ 8f5c7426567798e62a3b3614965d62cc ] luafv C:\Windows\system32\drivers\luafv.sys
11:15:49.0723 4364 luafv - ok
11:15:49.0748 4364 [ 1a7db7a00a4b0d8da24cd691a4547291 ] LVPr2Mon C:\Windows\system32\DRIVERS\LVPr2Mon.sys
11:15:49.0750 4364 LVPr2Mon - ok
11:15:49.0795 4364 [ 0ddfdcaa92c7f553328db06ba599bea9 ] LVPrcSrv C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
11:15:49.0797 4364 LVPrcSrv - ok
11:15:49.0821 4364 [ c5efbd05a5195402121711a6ebbb271f ] LVUSBSta C:\Windows\system32\drivers\lvusbsta.sys
11:15:49.0822 4364 LVUSBSta - ok
11:15:49.0857 4364 [ e6249b754b5fcfc286be2082af1487f0 ] massfilter_hs C:\Windows\system32\drivers\massfilter_hs.sys
11:15:49.0859 4364 massfilter_hs - ok
11:15:49.0892 4364 [ 6dfe7f2e8e8a337263aa5c92a215f161 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
11:15:49.0894 4364 MBAMProtector - ok
11:15:50.0060 4364 [ 43683e970f008c93c9429ef428147a54 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
11:15:50.0070 4364 MBAMService - ok
11:15:50.0475 4364 [ aef9babb8a506bc4ce0451a64aaded46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
11:15:50.0742 4364 Mcx2Svc - ok
11:15:50.0795 4364 [ 0001ce609d66632fa17b84705f658879 ] megasas C:\Windows\system32\drivers\megasas.sys
11:15:50.0808 4364 megasas - ok
11:15:50.0848 4364 [ c252f32cd9a49dbfc25ecf26ebd51a99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
11:15:50.0857 4364 MegaSR - ok
11:15:50.0965 4364 [ 671a03ca9cd0259ccbb7b78a9ce234ec ] MemeoBackgroundService C:\Program Files\Memeo\AutoBackup\MemeoBackgroundService.exe
11:15:50.0984 4364 MemeoBackgroundService - ok
11:15:51.0036 4364 [ bafdd5e28baea99d7f4772af2f5ec7ee ] mfeavfk C:\Windows\system32\drivers\mfeavfk.sys
11:15:51.0038 4364 mfeavfk - ok
11:15:51.0080 4364 [ 1d003e3056a43d881597d6763e83b943 ] mfebopk C:\Windows\system32\drivers\mfebopk.sys
11:15:51.0081 4364 mfebopk - ok
11:15:51.0106 4364 [ 3f138a1c8a0659f329f242d1e389b2cf ] mfehidk C:\Windows\system32\drivers\mfehidk.sys
11:15:51.0110 4364 mfehidk - ok
11:15:51.0149 4364 [ 41fe2f288e05a6c8ab85dd56770ffbad ] mferkdk C:\Windows\system32\drivers\mferkdk.sys
11:15:51.0150 4364 mferkdk - ok
11:15:51.0178 4364 [ 096b52ea918aa909ba5903d79e129005 ] mfesmfk C:\Windows\system32\drivers\mfesmfk.sys
11:15:51.0179 4364 mfesmfk - ok
11:15:51.0204 4364 [ 1076ffcffaae8385fd62dfcb25ac4708 ] MMCSS C:\Windows\system32\mmcss.dll
11:15:51.0221 4364 MMCSS - ok
11:15:51.0237 4364 [ e13b5ea0f51ba5b1512ec671393d09ba ] Modem C:\Windows\system32\drivers\modem.sys
11:15:51.0238 4364 Modem - ok
11:15:51.0266 4364 [ 0a9bb33b56e294f686abb7c1e4e2d8a8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
11:15:51.0267 4364 monitor - ok
11:15:51.0305 4364 [ 5bf6a1326a335c5298477754a506d263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
11:15:51.0307 4364 mouclass - ok
11:15:51.0315 4364 [ 93b8d4869e12cfbe663915502900876f ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
11:15:51.0316 4364 mouhid - ok
11:15:51.0328 4364 [ bdafc88aa6b92f7842416ea6a48e1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
11:15:51.0330 4364 MountMgr - ok
11:15:51.0368 4364 [ d993bea500e7382dc4e760bf4f35efcb ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
11:15:51.0371 4364 MpFilter - ok
11:15:51.0399 4364 [ 511d011289755dd9f9a7579fb0b064e6 ] mpio C:\Windows\system32\drivers\mpio.sys
11:15:51.0401 4364 mpio - ok
11:15:51.0633 4364 [ a69630d039c38018689190234f866d77 ] MpKsl69490ace C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{36BCD0F3-18B3-4E0A-8D16-6DAB5C4AA682}\MpKsl69490ace.sys
11:15:51.0634 4364 MpKsl69490ace - ok
11:15:51.0649 4364 [ 22241feba9b2defa669c8cb0a8dd7d2e ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
11:15:51.0651 4364 mpsdrv - ok
11:15:51.0678 4364 [ 5de62c6e9108f14f6794060a9bdecaec ] MpsSvc C:\Windows\system32\mpssvc.dll
11:15:51.0685 4364 MpsSvc - ok
11:15:51.0736 4364 [ 4fbbb70d30fd20ec51f80061703b001e ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
11:15:51.0738 4364 Mraid35x - ok
11:15:51.0794 4364 [ 82cea0395524aacfeb58ba1448e8325c ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
11:15:51.0808 4364 MRxDAV - ok
11:15:51.0837 4364 [ 1e94971c4b446ab2290deb71d01cf0c2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
11:15:51.0840 4364 mrxsmb - ok
11:15:51.0865 4364 [ 4fccb34d793b116423209c0f8b7a3b03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:15:51.0869 4364 mrxsmb10 - ok
11:15:51.0903 4364 [ c3cb1b40ad4a0124d617a1199b0b9d7c ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:15:51.0906 4364 mrxsmb20 - ok
11:15:51.0929 4364 [ 28023e86f17001f7cd9b15a5bc9ae07d ] msahci C:\Windows\system32\drivers\msahci.sys
11:15:51.0931 4364 msahci - ok
11:15:51.0950 4364 [ 4468b0f385a86ecddaf8d3ca662ec0e7 ] msdsm C:\Windows\system32\drivers\msdsm.sys
11:15:51.0952 4364 msdsm - ok
11:15:51.0965 4364 [ fd7520cc3a80c5fc8c48852bb24c6ded ] MSDTC C:\Windows\System32\msdtc.exe
11:15:51.0969 4364 MSDTC - ok
11:15:51.0996 4364 [ a9927f4a46b816c92f461acb90cf8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
11:15:52.0031 4364 Msfs - ok
11:15:52.0055 4364 [ 0f400e306f385c56317357d6dea56f62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
11:15:52.0073 4364 msisadrv - ok
11:15:52.0119 4364 [ 85466c0757a23d9a9aecdc0755203cb2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
11:15:52.0124 4364 MSiSCSI - ok
11:15:52.0130 4364 msiserver - ok
11:15:52.0157 4364 [ d8c63d34d9c9e56c059e24ec7185cc07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
11:15:52.0159 4364 MSKSSRV - ok
11:15:52.0194 4364 [ 24516bf4e12a46cb67302e2cdcb8cddf ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe
11:15:52.0195 4364 MsMpSvc - ok
11:15:52.0214 4364 [ 1d373c90d62ddb641d50e55b9e78d65e ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
11:15:52.0216 4364 MSPCLOCK - ok
11:15:52.0241 4364 [ b572da05bf4e098d4bba3a4734fb505b ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
11:15:52.0242 4364 MSPQM - ok
11:15:52.0273 4364 [ b49456d70555de905c311bcda6ec6adb ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
11:15:52.0276 4364 MsRPC - ok
11:15:52.0303 4364 [ e384487cb84be41d09711c30ca79646c ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
11:15:52.0304 4364 mssmbios - ok
11:15:52.0326 4364 [ 7199c1eec1e4993caf96b8c0a26bd58a ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
11:15:52.0327 4364 MSTEE - ok
11:15:52.0348 4364 [ 6a57b5733d4cb702c8ea4542e836b96c ] Mup C:\Windows\system32\Drivers\mup.sys
11:15:52.0350 4364 Mup - ok
11:15:52.0395 4364 [ 2de94e435c3efde58c7b1856d4f20724 ] mwlPSDFilter C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
11:15:52.0397 4364 mwlPSDFilter - ok
11:15:52.0415 4364 [ 61920a7146eed3d903dbbb8ec295af76 ] mwlPSDNServ C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
11:15:52.0417 4364 mwlPSDNServ - ok
11:15:52.0449 4364 [ e0f49721e68ebd2983e84c44fada6665 ] mwlPSDVDisk C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
11:15:52.0451 4364 mwlPSDVDisk - ok
11:15:52.0487 4364 [ 77f8ad024059a9a8e17e654b887d1ef0 ] MWLService C:\Program Files\EgisTec\MyWinLocker 3\x86\\MWLService.exe
11:15:52.0491 4364 MWLService - ok
11:15:52.0518 4364 [ e4eaf0c5c1b41b5c83386cf212ca9584 ] napagent C:\Windows\system32\qagentRT.dll
11:15:52.0525 4364 napagent - ok
11:15:52.0554 4364 [ 85c44fdff9cf7e72a40dcb7ec06a4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
11:15:53.0270 4364 NativeWifiP - ok
11:15:53.0359 4364 [ 1357274d1883f68300aeadd15d7bbb42 ] NDIS C:\Windows\system32\drivers\ndis.sys
11:15:53.0367 4364 NDIS - ok
11:15:53.0380 4364 [ 0e186e90404980569fb449ba7519ae61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
11:15:53.0382 4364 NdisTapi - ok
11:15:53.0401 4364 [ d6973aa34c4d5d76c0430b181c3cd389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
11:15:53.0403 4364 Ndisuio - ok
11:15:53.0436 4364 [ 818f648618ae34f729fdb47ec68345c3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
11:15:53.0439 4364 NdisWan - ok
11:15:53.0447 4364 [ 71dab552b41936358f3b541ae5997fb3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
11:15:53.0449 4364 NDProxy - ok
11:15:53.0456 4364 [ bcd093a5a6777cf626434568dc7dba78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
11:15:53.0458 4364 NetBIOS - ok
11:15:53.0475 4364 [ ecd64230a59cbd93c85f1cd1cab9f3f6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
11:15:53.0478 4364 netbt - ok
11:15:53.0483 4364 [ a3e186b4b935905b829219502557314e ] Netlogon C:\Windows\system32\lsass.exe
11:15:53.0485 4364 Netlogon - ok
11:15:53.0502 4364 [ c8052711daecc48b982434c5116ca401 ] Netman C:\Windows\System32\netman.dll
11:15:53.0508 4364 Netman - ok
11:15:53.0518 4364 [ 2ef3bbe22e5a5acd1428ee387a0d0172 ] netprofm C:\Windows\System32\netprofm.dll
11:15:53.0522 4364 netprofm - ok
11:15:53.0550 4364 [ d6c4e4a39a36029ac0813d476fbd0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
11:15:53.0553 4364 NetTcpPortSharing - ok
11:15:53.0589 4364 [ 2e7fb731d4790a1bc6270accefacb36e ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
11:15:53.0592 4364 nfrd960 - ok
11:15:53.0656 4364 [ b52f26bade7d7e4a79706e3fd91834cd ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
11:15:53.0658 4364 NisDrv - ok
11:15:53.0690 4364 [ 290c0d4c4889398797f8df3be00b9698 ] NisSrv C:\Program Files\Microsoft Security Client\NisSrv.exe
11:15:53.0693 4364 NisSrv - ok
11:15:53.0721 4364 [ 2997b15415f9bbe05b5a4c1c85e0c6a2 ] NlaSvc C:\Windows\System32\nlasvc.dll
11:15:53.0726 4364 NlaSvc - ok
11:15:53.0755 4364 [ d36f239d7cce1931598e8fb90a0dbc26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
11:15:53.0757 4364 Npfs - ok
11:15:53.0782 4364 [ 8bb86f0c7eea2bded6fe095d0b4ca9bd ] nsi C:\Windows\system32\nsisvc.dll
11:15:53.0784 4364 nsi - ok
11:15:53.0812 4364 [ 609773e344a97410ce4ebf74a8914fcf ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
11:15:53.0814 4364 nsiproxy - ok
11:15:53.0866 4364 [ 6a4a98cee84cf9e99564510dda4baa47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
11:15:53.0880 4364 Ntfs - ok
11:15:53.0922 4364 [ 973dcb15731339fca176e534055cf115 ] NTIBackupSvc C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
11:15:53.0924 4364 NTIBackupSvc - ok
11:15:53.0954 4364 [ 2757d2ba59aee155209e24942ab127c9 ] NTIDrvr C:\Windows\system32\DRIVERS\NTIDrvr.sys
11:15:53.0955 4364 NTIDrvr - ok
11:15:53.0971 4364 [ 58751f9248d50bce1053976c9e2f0859 ] NTISchedulerSvc C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
11:15:53.0973 4364 NTISchedulerSvc - ok
11:15:53.0996 4364 [ e875c093aec0c978a90f30c9e0dfbb72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
11:15:53.0998 4364 ntrigdigi - ok
11:15:54.0031 4364 [ cf7e041663119e09d2e118521ada9300 ] NuidFltr C:\Windows\system32\DRIVERS\NuidFltr.sys
11:15:54.0032 4364 NuidFltr - ok
11:15:54.0048 4364 [ c5dbbcda07d780bda9b685df333bb41e ] Null C:\Windows\system32\drivers\Null.sys
11:15:54.0049 4364 Null - ok
11:15:54.0109 4364 [ d958a2b5f6ad5c3b8ccdc4d7da62466c ] NVENETFD C:\Windows\system32\DRIVERS\nvmfdx32.sys
11:15:54.0123 4364 NVENETFD - ok
11:15:54.0157 4364 [ b4f70fac4ea61cf150823aa063a39ff9 ] NVHDA C:\Windows\system32\drivers\nvhda32v.sys
11:15:54.0160 4364 NVHDA - ok
11:15:54.0620 4364 [ 377140a534d013bd661c69f1741de43c ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
11:15:54.0798 4364 nvlddmkm - ok
11:15:54.0841 4364 [ 2edf9e7751554b42cbb60116de727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
11:15:54.0844 4364 nvraid - ok
11:15:54.0859 4364 [ abed0c09758d1d97db0042dbb2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
11:15:54.0861 4364 nvstor - ok
11:15:54.0913 4364 [ bb4dd678706510d9249eed1da0219900 ] nvstor32 C:\Windows\system32\DRIVERS\nvstor32.sys
11:15:54.0915 4364 nvstor32 - ok
11:15:54.0945 4364 [ 4ed813efd77a9b7e57e341cdc1c5cbc4 ] nvsvc C:\Windows\system32\nvvsvc.exe
11:15:54.0949 4364 nvsvc - ok
11:15:54.0974 4364 [ 18bbdf913916b71bd54575bdb6eeac0b ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
11:15:54.0977 4364 nv_agp - ok
11:15:54.0982 4364 NwlnkFlt - ok
11:15:54.0988 4364 NwlnkFwd - ok
11:15:55.0081 4364 [ 785f487a64950f3cb8e9f16253ba3b7b ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
11:15:55.0087 4364 odserv - ok
11:15:55.0127 4364 [ 6f310e890d46e246e0e261a63d9b36b4 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
11:15:55.0129 4364 ohci1394 - ok
11:15:55.0658 4364 [ 5a432a042dae460abe7199b758e8606c ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:15:55.0667 4364 ose - ok
11:15:55.0791 4364 [ 0c8e8e61ad1eb0b250b846712c917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
11:15:55.0806 4364 p2pimsvc - ok
11:15:55.0818 4364 [ 0c8e8e61ad1eb0b250b846712c917506 ] p2psvc C:\Windows\system32\p2psvc.dll
11:15:55.0828 4364 p2psvc - ok
11:15:55.0870 4364 [ 0fa9b5055484649d63c303fe404e5f4d ] Parport C:\Windows\system32\drivers\parport.sys
11:15:55.0882 4364 Parport - ok
11:15:55.0916 4364 [ b9c2b89f08670e159f7181891e449cd9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
11:15:55.0918 4364 partmgr - ok
11:15:55.0934 4364 [ 4f9a6a8a31413180d0fcb279ad5d8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
11:15:55.0935 4364 Parvdm - ok
11:15:55.0961 4364 [ c6276ad11f4bb49b58aa1ed88537f14a ] PcaSvc C:\Windows\System32\pcasvc.dll
11:15:55.0964 4364 PcaSvc - ok
11:15:55.0983 4364 [ 941dc1d19e7e8620f40bbc206981efdb ] pci C:\Windows\system32\drivers\pci.sys
11:15:55.0986 4364 pci - ok
11:15:56.0012 4364 [ 1636d43f10416aeb483bc6001097b26c ] pciide C:\Windows\system32\drivers\pciide.sys
11:15:56.0014 4364 pciide - ok
11:15:56.0040 4364 [ e6f3fb1b86aa519e7698ad05e58b04e5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
11:15:56.0062 4364 pcmcia - ok
11:15:56.0094 4364 [ 995e6bc3bb92bb4a9eb49a663c43b6cb ] PCTCore C:\Windows\system32\drivers\PCTCore.sys
11:15:56.0098 4364 PCTCore - ok
11:15:56.0134 4364 [ f820b4c61d1e591325b679d479d4eea4 ] pctDS C:\Windows\system32\drivers\pctDS.sys
11:15:56.0142 4364 pctDS - ok
11:15:56.0186 4364 [ acc8c15f3d59f17c5d903ff1de3b43d3 ] pctEFA C:\Windows\system32\drivers\pctEFA.sys
11:15:56.0195 4364 pctEFA - ok
11:15:56.0221 4364 [ 6349f6ed9c623b44b52ea3c63c831a92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
11:15:56.0233 4364 PEAUTH - ok
11:15:56.0287 4364 [ cebefeae6156f4fee41f56be89ea9c96 ] PID_08A0 C:\Windows\system32\DRIVERS\LV302AV.SYS
11:15:56.0298 4364 PID_08A0 - ok
11:15:56.0346 4364 [ b1689df169143f57053f795390c99db3 ] pla C:\Windows\system32\pla.dll
11:15:56.0358 4364 pla - ok
11:15:56.0435 4364 [ c5e7f8a996ec0a82d508fd9064a5569e ] PlugPlay C:\Windows\system32\umpnpmgr.dll
11:15:56.0440 4364 PlugPlay - ok
11:15:56.0468 4364 [ 0c8e8e61ad1eb0b250b846712c917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
11:15:56.0475 4364 PNRPAutoReg - ok
11:15:56.0488 4364 [ 0c8e8e61ad1eb0b250b846712c917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
11:15:56.0495 4364 PNRPsvc - ok
11:15:56.0519 4364 [ d0494460421a03cd5225cca0059aa146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
11:15:56.0525 4364 PolicyAgent - ok
11:15:56.0554 4364 [ ecfffaec0c1ecd8dbc77f39070ea1db1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
11:15:56.0556 4364 PptpMiniport - ok
11:15:56.0574 4364 [ 2027293619dd0f047c584cf2e7df4ffd ] Processor C:\Windows\system32\drivers\processr.sys
11:15:56.0576 4364 Processor - ok
11:15:56.0600 4364 [ 0508faa222d28835310b7bfca7a77346 ] ProfSvc C:\Windows\system32\profsvc.dll
11:15:56.0604 4364 ProfSvc - ok
11:15:56.0618 4364 [ a3e186b4b935905b829219502557314e ] ProtectedStorage C:\Windows\system32\lsass.exe
11:15:56.0620 4364 ProtectedStorage - ok
11:15:56.0642 4364 [ 99514faa8df93d34b5589187db3aa0ba ] PSched C:\Windows\system32\DRIVERS\pacer.sys
11:15:56.0644 4364 PSched - ok
11:15:56.0688 4364 [ 0a6db55afb7820c99aa1f3a1d270f4f6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
11:15:56.0703 4364 ql2300 - ok
11:15:56.0730 4364 [ 81a7e5c076e59995d54bc1ed3a16e60b ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
11:15:56.0732 4364 ql40xx - ok
11:15:56.0765 4364 [ e9ecae663f47e6cb43962d18ab18890f ] QWAVE C:\Windows\system32\qwave.dll
11:15:56.0770 4364 QWAVE - ok
11:15:56.0783 4364 [ 9f5e0e1926014d17486901c88eca2db7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
11:15:56.0785 4364 QWAVEdrv - ok
11:15:56.0793 4364 [ 147d7f9c556d259924351feb0de606c3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
11:15:56.0794 4364 RasAcd - ok
11:15:56.0811 4364 [ f6a452eb4ceadbb51c9e0ee6b3ecef0f ] RasAuto C:\Windows\System32\rasauto.dll
11:15:56.0816 4364 RasAuto - ok
11:15:56.0835 4364 [ a214adbaf4cb47dd2728859ef31f26b0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
11:15:56.0837 4364 Rasl2tp - ok
11:15:56.0861 4364 [ 75d47445d70ca6f9f894b032fbc64fcf ] RasMan C:\Windows\System32\rasmans.dll
11:15:56.0868 4364 RasMan - ok
11:15:56.0889 4364 [ 509a98dd18af4375e1fc40bc175f1def ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
11:15:56.0891 4364 RasPppoe - ok
11:15:56.0898 4364 [ 2005f4a1e05fa09389ac85840f0a9e4d ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
11:15:56.0901 4364 RasSstp - ok
11:15:56.0921 4364 [ b14c9d5b9add2f84f70570bbbfaa7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
11:15:56.0926 4364 rdbss - ok
11:15:56.0941 4364 [ 89e59be9a564262a3fb6c4f4f1cd9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
11:15:56.0942 4364 RDPCDD - ok
11:15:56.0971 4364 [ fbc0bacd9c3d7f6956853f64a66e252d ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
11:15:56.0989 4364 rdpdr - ok
11:15:56.0997 4364 [ 9d91fe5286f748862ecffa05f8a0710c ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
11:15:57.0000 4364 RDPENCDD - ok
11:15:57.0038 4364 [ c127ebd5afab31524662c48dfceb773a ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
11:15:57.0041 4364 RDPWD - ok
11:15:57.0091 4364 [ bcdd6b4804d06b1f7ebf29e53a57ece9 ] RemoteAccess C:\Windows\System32\mprdim.dll
11:15:57.0094 4364 RemoteAccess - ok
11:15:57.0164 4364 [ 9e6894ea18daff37b63e1005f83ae4ab ] RemoteRegistry C:\Windows\system32\regsvc.dll
11:15:57.0168 4364 RemoteRegistry - ok
11:15:57.0344 4364 [ 7ccaebcab6fc1ed0206c07e083e79207 ] RichVideo C:\Program Files\CyberLink\Shared files\RichVideo.exe
11:15:57.0346 4364 RichVideo - ok
11:15:57.0376 4364 [ 5123f83cbc4349d065534eeb6bbdc42b ] RpcLocator C:\Windows\system32\locator.exe
11:15:57.0394 4364 RpcLocator - ok
11:15:57.0477 4364 [ 3b5b4d53fec14f7476ca29a20cc31ac9 ] RpcSs C:\Windows\system32\rpcss.dll
11:15:57.0483 4364 RpcSs - ok
11:15:58.0047 4364 [ 9c508f4074a39e8b4b31d27198146fad ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
11:15:58.0061 4364 rspndr - ok
11:15:58.0093 4364 [ a3e186b4b935905b829219502557314e ] SamSs C:\Windows\system32\lsass.exe
11:15:58.0095 4364 SamSs - ok
11:15:58.0117 4364 [ 3ce8f073a557e172b330109436984e30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
11:15:58.0141 4364 sbp2port - ok
11:15:58.0204 4364 [ 77b7a11a0c3d78d3386398fbbea1b632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
11:15:58.0208 4364 SCardSvr - ok
11:15:58.0253 4364 [ 1a58069db21d05eb2ab58ee5753ebe8d ] Schedule C:\Windows\system32\schedsvc.dll
11:15:58.0263 4364 Schedule - ok
11:15:58.0303 4364 [ 312ec3e37a0a1f2006534913e37b4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
11:15:58.0304 4364 SCPolicySvc - ok
11:15:58.0353 4364 [ a1089ac7683826e6c7c9fab9723dd80f ] sdAuxService C:\Program Files\PC Tools Security\pctsAuxs.exe
11:15:58.0358 4364 sdAuxService - ok
11:15:58.0422 4364 [ ed6c2efeb47524bff4d5e5109fb1a2bb ] sdCoreService C:\Program Files\PC Tools Security\pctsSvc.exe
11:15:58.0438 4364 sdCoreService - ok
11:15:58.0462 4364 [ 716313d9f6b0529d03f726d5aaf6f191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
11:15:58.0466 4364 SDRSVC - ok
11:15:58.0534 4364 [ 16b44d246835eac156f8daf0aa4f530c ] SeagateDashboardService C:\Program Files\Seagate\Seagate Dashboard\SeagateDashboardService.exe
11:15:58.0536 4364 SeagateDashboardService - ok
11:15:58.0561 4364 [ 90a3935d05b494a5a39d37e71f09a677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
11:15:58.0562 4364 secdrv - ok
11:15:58.0589 4364 [ fd5199d4d8a521005e4b5ee7fe00fa9b ] seclogon C:\Windows\system32\seclogon.dll
11:15:58.0592 4364 seclogon - ok
11:15:58.0615 4364 [ a9bbab5759771e523f55563d6cbe140f ] SENS C:\Windows\System32\sens.dll
11:15:58.0648 4364 SENS - ok
11:15:58.0658 4364 [ ce9ec966638ef0b10b864ddedf62a099 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
11:15:58.0660 4364 Serenum - ok
11:15:58.0689 4364 [ 6d663022db3e7058907784ae14b69898 ] Serial C:\Windows\system32\DRIVERS\serial.sys
11:15:58.0691 4364 Serial - ok
11:15:58.0722 4364 [ 8af3d28a879bf75db53a0ee7a4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
11:15:58.0723 4364 sermouse - ok
11:15:58.0763 4364 [ d2193326f729b163125610dbf3e17d57 ] SessionEnv C:\Windows\system32\sessenv.dll
11:15:58.0766 4364 SessionEnv - ok
11:15:58.0813 4364 [ 3efa810bdca87f6ecc24f9832243fe86 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
11:15:58.0815 4364 sffdisk - ok
11:15:58.0826 4364 [ e95d451f7ea3e583aec75f3b3ee42dc5 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
11:15:58.0829 4364 sffp_mmc - ok
11:15:58.0854 4364 [ 3d0ea348784b7ac9ea9bd9f317980979 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
11:15:58.0855 4364 sffp_sd - ok
11:15:58.0898 4364 [ c33bfbd6e9e41fcd9ffef9729e9faed6 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
11:15:58.0900 4364 sfloppy - ok
11:15:58.0945 4364 [ e1499bd0ff76b1b2fbbf1af339d91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
11:15:58.0950 4364 SharedAccess - ok
11:15:58.0986 4364 [ c7230fbee14437716701c15be02c27b8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:15:58.0991 4364 ShellHWDetection - ok
11:15:59.0016 4364 [ 1d76624a09a054f682d746b924e2dbc3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
11:15:59.0019 4364 sisagp - ok
11:15:59.0057 4364 [ 43cb7aa756c7db280d01da9b676cfde2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
11:15:59.0059 4364 SiSRaid2 - ok
11:15:59.0087 4364 [ a99c6c8b0baa970d8aa59ddc50b57f94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
11:15:59.0090 4364 SiSRaid4 - ok
11:15:59.0442 4364 [ 862bb4cbc05d80c5b45be430e5ef872f ] slsvc C:\Windows\system32\SLsvc.exe
11:15:59.0508 4364 slsvc - ok
11:15:59.0536 4364 [ 6edc422215cd78aa8a9cde6b30abbd35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
11:15:59.0549 4364 SLUINotify - ok
11:15:59.0579 4364 [ 7b75299a4d201d6a6533603d6914ab04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
11:15:59.0582 4364 Smb - ok
11:15:59.0627 4364 [ 2a146a055b4401c16ee62d18b8e2a032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
11:15:59.0660 4364 SNMPTRAP - ok
11:15:59.0680 4364 [ 7aebdeef071fe28b0eef2cdd69102bff ] spldr C:\Windows\system32\drivers\spldr.sys
11:15:59.0705 4364 spldr - ok
11:15:59.0733 4364 [ 8554097e5136c3bf9f69fe578a1b35f4 ] Spooler C:\Windows\System32\spoolsv.exe
11:15:59.0738 4364 Spooler - ok
11:15:59.0779 4364 [ 41987f9fc0e61adf54f581e15029ad91 ] srv C:\Windows\system32\DRIVERS\srv.sys
11:15:59.0802 4364 srv - ok
11:15:59.0866 4364 [ ff33aff99564b1aa534f58868cbe41ef ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
11:16:00.0425 4364 srv2 - ok
11:16:00.0457 4364 [ 7605c0e1d01a08f3ecd743f38b834a44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
11:16:00.0460 4364 srvnet - ok
11:16:00.0482 4364 [ 03d50b37234967433a5ea5ba72bc0b62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
11:16:00.0487 4364 SSDPSRV - ok
11:16:00.0519 4364 [ 6f1a32e7b7b30f004d9a20afadb14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
11:16:00.0524 4364 SstpSvc - ok
11:16:00.0593 4364 [ 29662881a46db66730c62a4f1bfa3dc2 ] Stereo Service C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
11:16:00.0595 4364 Stereo Service - ok
11:16:00.0634 4364 [ ef70b3d22b4bffda6ea851ecb063efaa ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
11:16:00.0636 4364 StillCam - ok
11:16:00.0671 4364 [ 5de7d67e49b88f5f07f3e53c4b92a352 ] stisvc C:\Windows\System32\wiaservc.dll
11:16:00.0679 4364 stisvc - ok
11:16:00.0710 4364 [ 7ba58ecf0c0a9a69d44b3dca62becf56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
11:16:00.0718 4364 swenum - ok
11:16:00.0769 4364 [ f21fd248040681cca1fb6c9a03aaa93d ] swprv C:\Windows\System32\swprv.dll
11:16:00.0787 4364 swprv - ok
11:16:00.0815 4364 [ 192aa3ac01df071b541094f251deed10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
11:16:00.0817 4364 Symc8xx - ok
11:16:00.0843 4364 [ 8c8eb8c76736ebaf3b13b633b2e64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
11:16:00.0845 4364 Sym_hi - ok
11:16:00.0871 4364 [ 8072af52b5fd103bbba387a1e49f62cb ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
11:16:00.0873 4364 Sym_u3 - ok
11:16:00.0957 4364 [ 9a51b04e9886aa4ee90093586b0ba88d ] SysMain C:\Windows\system32\sysmain.dll
11:16:00.0967 4364 SysMain - ok
11:16:01.0017 4364 [ 2dca225eae15f42c0933e998ee0231c3 ] TabletInputService C:\Windows\System32\TabSvc.dll
11:16:01.0021 4364 TabletInputService - ok
11:16:01.0060 4364 [ d7673e4b38ce21ee54c59eeeb65e2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
11:16:01.0066 4364 TapiSrv - ok
11:16:01.0111 4364 [ cb05822cd9cc6c688168e113c603dbe7 ] TBS C:\Windows\System32\tbssvc.dll
11:16:01.0114 4364 TBS - ok
11:16:01.0175 4364 [ ee7e10bed85c312c1d5d30c435bdda9f ] Tcpip C:\Windows\system32\drivers\tcpip.sys
11:16:01.0190 4364 Tcpip - ok
11:16:01.0211 4364 [ ee7e10bed85c312c1d5d30c435bdda9f ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
11:16:01.0218 4364 Tcpip6 - ok
11:16:01.0243 4364 [ 2c2d4cff5e09c73908f9b5af49a51365 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
11:16:01.0245 4364 tcpipreg - ok
11:16:01.0272 4364 [ 5dcf5e267be67a1ae926f2df77fbcc56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
11:16:01.0285 4364 TDPIPE - ok
11:16:01.0306 4364 [ 389c63e32b3cefed425b61ed92d3f021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
11:16:01.0308 4364 TDTCP - ok
11:16:01.0332 4364 [ 76b06eb8a01fc8624d699e7045303e54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
11:16:01.0334 4364 tdx - ok
11:16:01.0363 4364 [ 3cad38910468eab9a6479e2f01db43c7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
11:16:01.0365 4364 TermDD - ok
11:16:01.0391 4364 [ bb95da09bef6e7a131bff3ba5032090d ] TermService C:\Windows\System32\termsrv.dll
11:16:01.0396 4364 TermService - ok
11:16:01.0415 4364 [ c7230fbee14437716701c15be02c27b8 ] Themes C:\Windows\system32\shsvcs.dll
11:16:01.0419 4364 Themes - ok
11:16:01.0429 4364 [ 1076ffcffaae8385fd62dfcb25ac4708 ] THREADORDER C:\Windows\system32\mmcss.dll
11:16:01.0431 4364 THREADORDER - ok
11:16:01.0449 4364 [ ec74e77d0eb004bd3a809b5f8fb8c2ce ] TrkWks C:\Windows\System32\trkwks.dll
11:16:01.0455 4364 TrkWks - ok
11:16:01.0480 4364 [ 97d9d6a04e3ad9b6c626b9931db78dba ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:16:01.0481 4364 TrustedInstaller - ok
11:16:01.0509 4364 [ dcf0f056a2e4f52287264f5ab29cf206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
11:16:01.0510 4364 tssecsrv - ok
11:16:01.0541 4364 [ caecc0120ac49e3d2f758b9169872d38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
11:16:01.0542 4364 tunmp - ok
11:16:01.0557 4364 [ 300db877ac094feab0be7688c3454a9c ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
11:16:01.0559 4364 tunnel - ok
11:16:01.0580 4364 [ 7d33c4db2ce363c8518d2dfcf533941f ] uagp35 C:\Windows\system32\drivers\uagp35.sys
11:16:01.0582 4364 uagp35 - ok
11:16:01.0613 4364 [ f763e070843ee2803de1395002b42938 ] UBHelper C:\Windows\system32\drivers\UBHelper.sys
11:16:01.0619 4364 UBHelper - ok
11:16:01.0646 4364 [ d9728af68c4c7693cb100b8441cbdec6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
11:16:01.0650 4364 udfs - ok
11:16:01.0682 4364 [ ecef404f62863755951e09c802c94ad5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
11:16:01.0703 4364 UI0Detect - ok
11:16:01.0743 4364 [ b0acfdc9e4af279e9116c03e014b2b27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
11:16:01.0760 4364 uliagpkx - ok
11:16:01.0796 4364 [ 9224bb254f591de4ca8d572a5f0d635c ] uliahci C:\Windows\system32\drivers\uliahci.sys
11:16:01.0800 4364 uliahci - ok
11:16:01.0838 4364 [ 8514d0e5cd0534467c5fc61be94a569f ] UlSata C:\Windows\system32\drivers\ulsata.sys
11:16:01.0853 4364 UlSata - ok
11:16:01.0876 4364 [ 38c3c6e62b157a6bc46594fada45c62b ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
11:16:01.0879 4364 ulsata2 - ok
11:16:01.0899 4364 [ 32cff9f809ae9aed85464492bf3e32d2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
11:16:01.0901 4364 umbus - ok
11:16:01.0915 4364 [ 68308183f4ae0be7bf8ecd07cb297999 ] upnphost C:\Windows\System32\upnphost.dll
11:16:01.0921 4364 upnphost - ok
11:16:01.0954 4364 [ caf811ae4c147ffcd5b51750c7f09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
11:16:01.0956 4364 usbccgp - ok
11:16:01.0987 4364 [ 47b9770ea21436de4ad5aea7926e0900 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
11:16:01.0989 4364 usbcir - ok
11:16:02.0017 4364 [ 79e96c23a97ce7b8f14d310da2db0c9b ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
11:16:02.0019 4364 usbehci - ok
11:16:02.0040 4364 [ 4673bbcb006af60e7abddbe7a130ba42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
11:16:02.0045 4364 usbhub - ok
11:16:02.0093 4364 [ ce697fee0d479290d89bec80dfe793b7 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
11:16:02.0095 4364 usbohci - ok
11:16:02.0102 4364 [ e75c4b5269091d15a2e7dc0b6d35f2f5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
11:16:02.0105 4364 usbprint - ok
11:16:02.0124 4364 [ a508c9bd8724980512136b039bba65e9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
11:16:02.0126 4364 usbscan - ok
11:16:02.0133 4364 [ be3da31c191bc222d9ad503c5224f2ad ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:16:02.0136 4364 USBSTOR - ok
11:16:02.0166 4364 [ 814d653efc4d48be3b04a307eceff56f ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
11:16:02.0168 4364 usbuhci - ok
11:16:02.0205 4364 [ e67998e8f14cb0627a769f6530bcb352 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
11:16:02.0209 4364 usbvideo - ok
11:16:02.0236 4364 [ 1509e705f3ac1d474c92454a5c2dd81f ] UxSms C:\Windows\System32\uxsms.dll
11:16:02.0239 4364 UxSms - ok
11:16:02.0721 4364 [ cd88d1b7776dc17a119049742ec07eb4 ] vds C:\Windows\System32\vds.exe
11:16:02.0737 4364 vds - ok
11:16:02.0770 4364 [ 87b06e1f30b749a114f74622d013f8d4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
11:16:02.0772 4364 vga - ok
11:16:02.0792 4364 [ 2e93ac0a1d8c79d019db6c51f036636c ] VgaSave C:\Windows\System32\drivers\vga.sys
11:16:02.0794 4364 VgaSave - ok
11:16:02.0815 4364 [ 5d7159def58a800d5781ba3a879627bc ] viaagp C:\Windows\system32\drivers\viaagp.sys
11:16:02.0817 4364 viaagp - ok
11:16:02.0827 4364 [ c4f3a691b5bad343e6249bd8c2d45dee ] ViaC7 C:\Windows\system32\drivers\viac7.sys
11:16:02.0829 4364 ViaC7 - ok
11:16:02.0841 4364 [ aadf5587a4063f52c2c3fed7887426fc ] viaide C:\Windows\system32\drivers\viaide.sys
11:16:02.0843 4364 viaide - ok
11:16:02.0850 4364 [ 69503668ac66c77c6cd7af86fbdf8c43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
11:16:02.0853 4364 volmgr - ok
11:16:02.0886 4364 [ 23e41b834759917bfd6b9a0d625d0c28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
11:16:02.0890 4364 volmgrx - ok
11:16:02.0910 4364 [ 147281c01fcb1df9252de2a10d5e7093 ] volsnap C:\Windows\system32\drivers\volsnap.sys
11:16:02.0915 4364 volsnap - ok
11:16:02.0961 4364 [ 587253e09325e6bf226b299774b728a9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
11:16:02.0964 4364 vsmraid - ok
11:16:02.0998 4364 [ db3d19f850c6eb32bdcb9bc0836acddb ] VSS C:\Windows\system32\vssvc.exe
11:16:03.0016 4364 VSS - ok
11:16:03.0036 4364 [ 96ea68b9eb310a69c25ebb0282b2b9de ] W32Time C:\Windows\system32\w32time.dll
11:16:03.0043 4364 W32Time - ok
11:16:03.0083 4364 [ 48dfee8f1af7c8235d4e626f0c4fe031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
11:16:03.0085 4364 WacomPen - ok
11:16:03.0119 4364 [ 55201897378cca7af8b5efd874374a26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
11:16:03.0121 4364 Wanarp - ok
11:16:03.0126 4364 [ 55201897378cca7af8b5efd874374a26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
11:16:03.0128 4364 Wanarpv6 - ok
11:16:03.0171 4364 [ a3cd60fd826381b49f03832590e069af ] wcncsvc C:\Windows\System32\wcncsvc.dll
11:16:03.0180 4364 wcncsvc - ok
11:16:03.0228 4364 [ 11bcb7afcdd7aadacb5746f544d3a9c7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
11:16:03.0232 4364 WcsPlugInService - ok
11:16:03.0281 4364 [ 78fe9542363f297b18c027b2d7e7c07f ] Wd C:\Windows\system32\drivers\wd.sys
11:16:03.0283 4364 Wd - ok
11:16:03.0322 4364 [ b6f0a7ad6d4bd325fbcd8bac96cd8d96 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
11:16:03.0330 4364 Wdf01000 - ok
11:16:03.0365 4364 [ abfc76b48bb6c96e3338d8943c5d93b5 ] WdiServiceHost C:\Windows\system32\wdi.dll
11:16:03.0369 4364 WdiServiceHost - ok
11:16:03.0376 4364 [ abfc76b48bb6c96e3338d8943c5d93b5 ] WdiSystemHost C:\Windows\system32\wdi.dll
11:16:03.0380 4364 WdiSystemHost - ok
11:16:03.0409 4364 [ 04c37d8107320312fbae09926103d5e2 ] WebClient C:\Windows\System32\webclnt.dll
11:16:03.0415 4364 WebClient - ok
11:16:03.0445 4364 [ ae3736e7e8892241c23e4ebbb7453b60 ] Wecsvc C:\Windows\system32\wecsvc.dll
11:16:03.0449 4364 Wecsvc - ok
11:16:03.0470 4364 [ 670ff720071ed741206d69bd995ea453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
11:16:03.0474 4364 wercplsupport - ok
11:16:03.0490 4364 [ 32b88481d3b326da6deb07b1d03481e7 ] WerSvc C:\Windows\System32\WerSvc.dll
11:16:03.0496 4364 WerSvc - ok
11:16:03.0531 4364 [ 4575aa12561c5648483403541d0d7f2b ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
11:16:03.0535 4364 WinDefend - ok
11:16:03.0541 4364 WinHttpAutoProxySvc - ok
11:16:03.0563 4364 [ 6b2a1d0e80110e3d04e6863c6e62fd8a ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
11:16:03.0566 4364 Winmgmt - ok
11:16:03.0609 4364 [ 7cfe68bdc065e55aa5e8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
11:16:03.0637 4364 WinRM - ok
11:16:03.0675 4364 [ c008405e4feeb069e30da1d823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
11:16:03.0684 4364 Wlansvc - ok
11:16:03.0701 4364 [ 2e7255d172df0b8283cdfb7b433b864e ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
11:16:03.0702 4364 WmiAcpi - ok
11:16:03.0727 4364 [ 43be3875207dcb62a85c8c49970b66cc ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
11:16:03.0729 4364 wmiApSrv - ok
11:16:03.0775 4364 [ 3978704576a121a9204f8cc49a301a9b ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
11:16:03.0788 4364 WMPNetworkSvc - ok
11:16:03.0804 4364 [ cfc5a04558f5070cee3e3a7809f3ff52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
11:16:03.0810 4364 WPCSvc - ok
11:16:03.0834 4364 [ 801fbdb89d472b3c467eb112a0fc9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
11:16:03.0842 4364 WPDBusEnum - ok
11:16:03.0876 4364 [ de9d36f91a4df3d911626643debf11ea ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
11:16:03.0878 4364 WpdUsb - ok
11:16:03.0992 4364 [ dcf3e3edf5109ee8bc02fe6e1f045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
11:16:04.0002 4364 WPFFontCache_v0400 - ok
11:16:04.0024 4364 [ e3a3cb253c0ec2494d4a61f5e43a389c ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
11:16:04.0025 4364 ws2ifsl - ok
11:16:04.0050 4364 [ 1ca6c40261ddc0425987980d0cd2aaab ] wscsvc C:\Windows\System32\wscsvc.dll
11:16:04.0055 4364 wscsvc - ok
11:16:04.0062 4364 WSearch - ok
11:16:04.0139 4364 [ fc3ec24fce372c89423e015a2ac1a31e ] wuauserv C:\Windows\system32\wuaueng.dll
11:16:04.0166 4364 wuauserv - ok
11:16:04.0197 4364 [ ac13cb789d93412106b0fb6c7eb2bcb6 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
11:16:04.0199 4364 WUDFRd - ok
11:16:04.0222 4364 [ 575a4190d989f64732119e4114045a4f ] wudfsvc C:\Windows\System32\WUDFSvc.dll
11:16:04.0226 4364 wudfsvc - ok
11:16:04.0280 4364 [ c6031757a76bddc3e93647a177916cec ] zghsmdm C:\Windows\system32\DRIVERS\zghsmdm.sys
11:16:04.0295 4364 zghsmdm - ok
11:16:04.0300 4364 ================ Scan global ===============================
11:16:04.0315 4364 (f31eebc1a1c81fd04005489cc3dcdfe7) C:\Windows\system32\basesrv.dll
11:16:04.0339 4364 (d2293b069e4b63dc17b2f08d45e71124) C:\Windows\system32\winsrv.dll
11:16:04.0353 4364 (d2293b069e4b63dc17b2f08d45e71124) C:\Windows\system32\winsrv.dll
11:16:04.0376 4364 (d4e6d91c1349b7bfb3599a6ada56851b) C:\Windows\system32\services.exe
11:16:04.0382 4364 [Global] - ok
11:16:04.0382 4364 ================ Scan MBR ==================================
11:16:04.0396 4364 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
11:16:05.0377 4364 \Device\Harddisk0\DR0 - ok
11:16:05.0381 4364 MBR (0x1B8) (5fb38429d5d77768867c76dcbdb35194) \Device\Harddisk3\DR4
11:16:05.0564 4364 \Device\Harddisk3\DR4 - ok
11:16:05.0565 4364 ================ Scan VBR ==================================
11:16:05.0600 4364 Boot (0x1200) (d7194f624057647cbe0f60e373987343) \Device\Harddisk0\DR0\Partition1
11:16:05.0601 4364 \Device\Harddisk0\DR0\Partition1 - ok
11:16:05.0624 4364 Boot (0x1200) (b81b3a3b294c370f51e663f42ded58b3) \Device\Harddisk0\DR0\Partition2
11:16:05.0626 4364 \Device\Harddisk0\DR0\Partition2 - ok
11:16:05.0633 4364 Boot (0x1200) (1a2a04c4dad4868be046798b42403dab) \Device\Harddisk3\DR4\Partition1
11:16:05.0636 4364 \Device\Harddisk3\DR4\Partition1 - ok
11:16:05.0636 4364 ============================================================
11:16:05.0636 4364 Scan finished
11:16:05.0636 4364 ============================================================
11:16:05.0656 5472 Detected object count: 0
11:16:05.0656 5472 Actual detected object count: 0

aswMBR:
aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-20 11:18:10
-----------------------------
11:18:10.122 OS Version: Windows 6.0.6002 Service Pack 2
11:18:10.122 Number of processors: 4 586 0x170A
11:18:10.126 ComputerName: MARGARET-PC UserName: Margaret
11:18:15.176 Initialize success
11:20:29.184 AVAST engine defs: 12081900
11:20:59.604 The log file has been saved successfully to "C:\Users\Margaret\Desktop\aswMBR.txt"
11:21:43.988 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\0000005d
11:21:43.988 Disk 0 Vendor: Hitachi_ ST6O Size: 953869MB BusType: 3
11:21:44.003 Disk 0 MBR read successfully
11:21:44.003 Disk 0 MBR scan
11:21:44.050 Disk 0 Windows VISTA default MBR code
11:21:44.066 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 14336 MB offset 2048
11:21:44.097 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 469765 MB offset 29362176
11:21:44.159 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 469766 MB offset 991440896
11:21:44.175 Disk 0 scanning sectors +1953521664
11:21:44.268 Disk 0 scanning C:\Windows\system32\drivers
11:22:09.416 Service scanning
11:22:23.702 Disk 0 MBR has been saved successfully to "C:\Users\Margaret\Desktop\MBR.dat"
11:22:23.712 The log file has been saved successfully to "C:\Users\Margaret\Desktop\aswMBR.txt"
11:22:36.878 Service MpKsl69490ace C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{36BCD0F3-18B3-4E0A-8D16-6DAB5C4AA682}\MpKsl69490ace.sys **LOCKED** 32
11:23:05.500 Modules scanning
11:23:17.106 Disk 0 trace - called modules:
11:23:17.137 ntkrnlpa.exe CLASSPNP.SYS disk.sys PCTCore.sys acpi.sys hal.dll storport.sys nvstor32.sys
11:23:17.153 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x878f0640]
11:23:17.153 3 CLASSPNP.SYS[8bbab8b3] -> nt!IofCallDriver -> [0x878f0e40]
11:23:17.168 5 PCTCore.sys[83695099] -> nt!IofCallDriver -> [0x869a65f8]
11:23:17.168 7 acpi.sys[806cd6bc] -> nt!IofCallDriver -> \Device\0000005d[0x869a6030]
11:23:19.824 AVAST engine scan C:\Windows
11:23:30.934 AVAST engine scan C:\Windows\system32
11:31:41.016 AVAST engine scan C:\Windows\system32\drivers
11:33:18.142 AVAST engine scan C:\Users\Margaret
11:40:58.077 Disk 0 MBR has been saved successfully to "C:\Users\Margaret\Desktop\MBR.dat"
11:40:58.124 The log file has been saved successfully to "C:\Users\Margaret\Desktop\aswMBR.txt"
11:42:50.714 Disk 0 MBR has been saved successfully to "C:\Users\Margaret\Desktop\MBR.dat"
11:42:50.729 The log file has been saved successfully to "C:\Users\Margaret\Desktop\aswMBR.txt"

ESET:

Edited by myjoe, 19 August 2012 - 11:50 PM.


#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:25 PM

Posted 19 August 2012 - 11:50 PM

ESET log?

#5 myjoe

myjoe
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:01:25 AM

Posted 19 August 2012 - 11:55 PM

Hi
Sorry, I edited my post to add that I accidently posted this. The ESET scan is still going (and looks as though it will be a few hours yet? Only done about a quarter so far)
Thanks
Margaret

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:25 PM

Posted 19 August 2012 - 11:57 PM

I will wait for ESET logs

#7 myjoe

myjoe
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:01:25 AM

Posted 20 August 2012 - 04:03 AM

Hi
No threats were found on the ESET scan.
Margaret

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:25 PM

Posted 20 August 2012 - 04:59 AM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

post the generated log

#9 myjoe

myjoe
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:01:25 AM

Posted 20 August 2012 - 06:35 PM

Malware - no malicious objects found.
Minitoolbox:
MiniToolBox by Farbar Version: 23-07-2012
Ran by Margaret (administrator) on 21-08-2012 at 06:45:32
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

::1 localhost

127.0.0.1 localhost

========================= IP Configuration: ================================

NVIDIA nForce 10/100/1000 Mbps Ethernet = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Margaret-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : NVIDIA nForce 10/100/1000 Mbps Ethernet
Physical Address. . . . . . . . . : 00-25-11-32-11-00
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::5106:8472:fca5:cd86%10(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.0.2(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Monday, 20 August 2012 6:37:33 AM
Lease Expires . . . . . . . . . . : Wednesday, 22 August 2012 6:37:34 AM
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DHCPv6 IAID . . . . . . . . . . . : 218112407
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-0C-BD-B5-8A-00-25-11-32-11-00
DNS Servers . . . . . . . . . . . : 192.168.0.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Local Area Connection* 6:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 7:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: www.routerlogin.com
Address: 192.168.0.1

Name: google.com
Addresses: 2404:6800:4006:803::1002
74.125.237.129
74.125.237.134
74.125.237.130
74.125.237.128
74.125.237.131
74.125.237.135
74.125.237.132
74.125.237.133
74.125.237.137
74.125.237.136
74.125.237.142



Pinging google.com [74.125.237.137] with 32 bytes of data:

Reply from 74.125.237.137: bytes=32 time=85ms TTL=49

Reply from 74.125.237.137: bytes=32 time=86ms TTL=50



Ping statistics for 74.125.237.137:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 85ms, Maximum = 86ms, Average = 85ms

Server: www.routerlogin.com
Address: 192.168.0.1

Name: yahoo.com
Addresses: 72.30.38.140
98.138.253.109
98.139.183.24



Pinging yahoo.com [98.139.183.24] with 32 bytes of data:

Reply from 98.139.183.24: bytes=32 time=326ms TTL=40

Reply from 98.139.183.24: bytes=32 time=332ms TTL=40



Ping statistics for 98.139.183.24:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 326ms, Maximum = 332ms, Average = 329ms

Server: www.routerlogin.com
Address: 192.168.0.1

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:

Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time=17ms TTL=128

Reply from 127.0.0.1: bytes=32 time=4ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 4ms, Maximum = 17ms, Average = 10ms

===========================================================================
Interface List
10 ...00 25 11 32 11 00 ...... NVIDIA nForce 10/100/1000 Mbps Ethernet
1 ........................... Software Loopback Interface 1
12 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
11 ...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.2 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.0.0 255.255.255.0 On-link 192.168.0.2 276
192.168.0.2 255.255.255.255 On-link 192.168.0.2 276
192.168.0.255 255.255.255.255 On-link 192.168.0.2 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.0.2 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.0.2 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
10 276 fe80::/64 On-link
10 276 fe80::5106:8472:fca5:cd86/128
On-link
1 306 ff00::/8 On-link
10 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 C:\Windows\System32\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 06 C:\Windows\System32\winrnr.dll [19968] (Microsoft Corporation)
Catalog9 01 C:\Program Files\Common Files\PC Tools\Lsp\PCTLsp.dll [329688] (PC Tools Research Pty Ltd.)
Catalog9 02 C:\Program Files\Common Files\PC Tools\Lsp\PCTLsp.dll [329688] (PC Tools Research Pty Ltd.)
Catalog9 03 C:\Program Files\Common Files\PC Tools\Lsp\PCTLsp.dll [329688] (PC Tools Research Pty Ltd.)
Catalog9 04 C:\Program Files\Common Files\PC Tools\Lsp\PCTLsp.dll [329688] (PC Tools Research Pty Ltd.)
Catalog9 05 C:\Program Files\Common Files\PC Tools\Lsp\PCTLsp.dll [329688] (PC Tools Research Pty Ltd.)
Catalog9 06 C:\Program Files\Common Files\PC Tools\Lsp\PCTLsp.dll [329688] (PC Tools Research Pty Ltd.)
Catalog9 07 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 25 C:\Program Files\Common Files\PC Tools\Lsp\PCTLsp.dll [329688] (PC Tools Research Pty Ltd.)

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/20/2012 00:56:05 PM) (Source: Application Hang) (User: )
Description: The program iexplore.exe version 8.0.6001.19298 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel.
Process ID: 46c
Start Time: 01cd7e6f91127928
Termination Time: 285

Error: (08/20/2012 08:51:34 AM) (Source: Perflib) (User: )
Description: PNRPsvcC:\Windows\system32\pnrpperf.dll4

Error: (08/20/2012 08:51:34 AM) (Source: Perflib) (User: )
Description: EmdCacheC:\Windows\system32\emdmgmt.dll4

Error: (08/20/2012 08:09:33 AM) (Source: Application Hang) (User: )
Description: The program MailWasherPro.exe version 2011.1.3.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel.
Process ID: 14c0
Start Time: 01cd7e6617c74278
Termination Time: 141

Error: (08/20/2012 08:09:20 AM) (Source: .NET Runtime) (User: )
Description: Application: MailWasherPro.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.ComponentModel.Win32Exception
Stack:
at MailWasherPro.Startup.Main(System.String[])

Error: (08/20/2012 07:55:32 AM) (Source: Perflib) (User: )
Description: WmiApRplC:\Windows\system32\wbem\wmiaprpl.dll4

Error: (08/20/2012 07:55:30 AM) (Source: Perflib) (User: )
Description: PNRPsvcC:\Windows\system32\pnrpperf.dll4

Error: (08/20/2012 07:55:29 AM) (Source: Perflib) (User: )
Description: MSDTCC:\Windows\system32\msdtcuiu.DLL4

Error: (08/20/2012 07:55:28 AM) (Source: Perflib) (User: )
Description: LsaC:\Windows\system32\Secur32.dll4

Error: (08/20/2012 07:55:28 AM) (Source: Perflib) (User: )
Description: ESENTC:\Windows\system32\esentprf.dll4


System errors:
=============
Error: (08/21/2012 01:21:31 AM) (Source: Service Control Manager) (User: )
Description: Google Update Service (gupdate)%%1053

Error: (08/21/2012 01:21:31 AM) (Source: Service Control Manager) (User: )
Description: 30000Google Update Service (gupdate)

Error: (08/21/2012 01:21:31 AM) (Source: DCOM) (User: )
Description: 1053gupdate/comsvc{4EB61BAC-A3B6-4760-9581-655041EF4D69}

Error: (08/20/2012 07:31:11 AM) (Source: cdrom) (User: )
Description: The driver detected a controller error on \Device\CdRom0.

Error: (08/20/2012 07:31:03 AM) (Source: cdrom) (User: )
Description: The driver detected a controller error on \Device\CdRom0.

Error: (08/20/2012 07:30:55 AM) (Source: cdrom) (User: )
Description: The driver detected a controller error on \Device\CdRom0.

Error: (08/20/2012 07:30:48 AM) (Source: cdrom) (User: )
Description: The driver detected a controller error on \Device\CdRom0.

Error: (08/20/2012 07:30:40 AM) (Source: cdrom) (User: )
Description: The driver detected a controller error on \Device\CdRom0.

Error: (08/20/2012 07:01:35 AM) (Source: Microsoft-Windows-Service Pack Installer) (User: Margaret-PC)
Description: 0x800f0a03

Error: (08/20/2012 06:38:45 AM) (Source: Service Control Manager) (User: )
Description: AVGIDSAgentAVGIDSDriver


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
9: The Dark Side Collector's Edition
Abandoned: Chestnut Lodge Asylum
Acer Arcade Deluxe (Version: 2.6.6326)
Acer eRecovery Management (Version: 4.00.3006)
Acer ScreenSaver (Version: 4.01.0718)
Acrobat.com (Version: 0.0.0)
Acrobat.com (Version: 1.1.377)
Adobe AIR (Version: 1.0.4990)
Adobe AIR (Version: 1.0.8.4990)
Adobe Flash Player 10 Plugin (Version: 10.3.181.14)
Adobe Flash Player 11 ActiveX (Version: 11.0.1.152)
Adobe Reader 9.2 (Version: 9.2.0)
Adobe Shockwave Player 11.5 (Version: 11.5.6.606)
Alice Greenfingers
Alien Shooter
Apple Application Support (Version: 2.1.7)
Apple Software Update (Version: 2.1.3.127)
AV Input Selection (Version: 1.02.0047)
AVG 2012 (Version: 12.0.1869)
AVG 2012 (Version: 2012.0.1890)
Azada: In Libro
Big Fish Games: Game Manager (Version: 3.0.1.60)
BigPond Media Downloader (Version: 1.0.49)
Bookworm Adventures
Byki (Version: 4.0)
Byki Express
C:\Program Files\Acer GameZone\GameConsole (Version: 2.0.1.6)
Canon Easy-PhotoPrint EX
Canon Easy-WebPrint EX
Canon G.726 WMP-Decoder (Version: 1.1.0.4)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program
Canon MovieEdit Task for ZoomBrowser EX (Version: 2.6.0.4)
Canon MP Navigator EX 4.1
Canon MX880 series MP Drivers
Canon My Printer
Canon RAW Image Task for ZoomBrowser EX (Version: 0.9.3.9)
Canon Solution Menu EX
Canon Speed Dial Utility
Canon Utilities CameraWindow (Version: 7.1.0.2)
Canon Utilities CameraWindow DC (Version: 7.1.0.7)
Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX (Version: 6.4.2.16)
Canon Utilities MyCamera (Version: 6.4.0.5)
Canon Utilities MyCamera DC (Version: 7.0.1.8)
Canon Utilities PhotoStitch (Version: 3.1.21.45)
Canon Utilities RemoteCapture DC (Version: 3.0.1.8)
Canon Utilities RemoteCapture Task for ZoomBrowser EX (Version: 1.7.1.9)
Canon Utilities ZoomBrowser EX (Version: 6.1.1.21)
Canon ZoomBrowser EX Memory Card Utility (Version: 1.1.0.8)
Chicken Invaders 2
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Curse at Twilight: Thief of Souls Collector's Edition
CyberLink MediaShow (Version: 4.1.2325)
CyberLink PowerDirector (Version: 7.0.2514)
Dark Alleys: Penumbra Motel Collector's Edition
Dark Dimensions: City of Fog
Dark Dimensions: Wax Beauty Collector's Edition
Dark Heritage: Guardians of Hope Collector's Edition
Dark Parables: Rise of the Snow Queen
Dark Parables: The Exiled Prince Collector's Edition
Dark Strokes: Sins of the Fathers Collector's Edition
DoulosSIL 4.106
Dream Day First Home
Echoes of the Past: The Revenge of the Witch Collector's Edition
EndNote X5 (Version: 15.0.0.5478)
Entwined: Strings of Deception
ESET Online Scanner v3
eSobi v2 (Version: 2.0.3.000223)
Fabled Legends: The Dark Piper Collector's Edition
Fear for Sale: Sunnyvale Story Collector's Edition
FeedDemon (Version: 4.0.0.22)
Fierce Tales: The Dog's Heart Collector's Edition
Final Cut: Death on the Silver Screen Collector's Edition
Galapago
GameXN GO
Ghost Encounters: Deadwood
Ghost Towns: The Cats Of Ulthar Collector's Edition
Go-Go Gourmet
Google Desktop (Version: 5.9.0911.03589)
Google Earth (Version: 6.1.0.5001)
Google Update Helper (Version: 1.3.21.115)
Gravely Silent: House of Deadlock
Grim Facade: Sinister Obsession Collector’s Edition
Grim Tales: The Legacy
Grim Tales: The Wishes
Grim Tales: The Wishes Collector's Edition
Haunted Halls: Fears from Childhood
Haunted Hotel: Charles Dexter Ward Collector's Edition
Haunted Legends: The Bronze Horseman
Haunting Mysteries: The Island of Lost Souls
Hauppauge MCE XP/Vista Software Encoder (2.0.26331) (Version: 2.0.26331)
Hidden Mysteries: Royal Family Secrets
House of 1000 Doors: The Palm of Zoroaster Collector's Edition
HyperTiles (Version: 1.0.1.0)
IKEA Home Planner
Infected: The Twin Vaccine Collector’s Edition
Java™ 6 Update 17 (Version: 6.0.170)
Join Me (Version: 1.0.0)
Junk Mail filter update (Version: 14.0.8117.416)
K-Lite Codec Pack 7.1.0 (Basic) (Version: 7.1.0)
Living Legends: Ice Rose Collector's Edition
Logitech Desktop Messenger (Version: 2.52.18)
Logitech Harmony Remote Software 7 (Version: 7.4.0.5)
Logitech Harmony Remote Software 7 (Version: 7.7.0.0)
Logitech Webcam Software (Version: 12.10.1113)
Logitech Webcam Software Driver Package (Version: 12.10.1110)
Maestro: Notes of Life
Magic Farm
Magic Match Adventures
MailWasher Free 6.5.2
MailWasherPro (Version: 1.3.0)
Malice: Two Sisters
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
Memeo AutoSync
Memeo Instant Backup (Version: 4.60.0.7923)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Suite Activation Assistant (Version: 2.9)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Security Client (Version: 4.0.1526.0)
Microsoft Security Essentials (Version: 4.0.1526.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Works (Version: 9.7.0621)
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Mystery Case Files&reg;: Escape from Ravenhearst™ Collector's Edition
Mystery Trackers: Black Isle Collector's Edition
Mystery Trackers: Raincliff
Mystic Diary: Missing Pages
MyWinLocker (Version: 3.1.36.0)
Nightmare Realm Collector's Edition
Nightmares from the Deep: The Cursed Heart Collector's Edition
NTI Backup Now 5 (Version: 5.1.2.616)
NTI Backup Now Standard (Version: 5.1.2.616)
NTI Media Maker 8 (Version: 8.0.2.6509)
NVIDIA Display Control Panel (Version: 6.14.12.5896)
NVIDIA Drivers (Version: 1.10.62.40)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.12.5896)
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0)
OpenAL
Otherworld: Spring of Shadows
Phenomenon: City of Cyan
PhoTransEdit (Version: 1.6.0)
PuppetShow: Return to Joyville Collector's Edition
QuickTime (Version: 7.72.80.56)
Realtek High Definition Audio Driver (Version: 6.0.1.5789)
Remote Control USB Driver (Version: 2.3.2.317)
ResearchSoft Direct Export Helper
Resurrection, New Mexico
Revenge of the Spirit: Rite of Resurrection
Righteous Kill 2: Revenge of the Poet Killer
Rite of Passage: The Perfect Show Collector's Edition
Royal Detective: The Lord of Statues Collector's Edition
Sacra Terra: Angelic Night
Scouting Assistant version 1.5.1.2 (Version: 1.5.1.2)
Sea Legends: Phantasmal Light
Seagate Dashboard (Version: 1.1.0.1421)
Secrets of the Dark: Eclipse Mountain Collector's Edition
Secrets of the Past: Mother's Diary
Secrets of the Seas: Flying Dutchman Collector's Edition
Shades of Death: Royal Blood
Shadow Wolf Mysteries: Bane of the Family Collector's Edition
Shaolin Mystery: Revenge of the Terracotta Warriors
Shattered Minds: Masquerade Collector's Edition
Shiver: Poltergeist Collector's Edition
Silent Nights: The Pianist Collector's Edition
Sister's Secrecy: Arcanum Bloodlines Collector's Edition
Skype Click to Call (Version: 5.6.8442)
Skype™ 5.5 (Version: 5.5.124)
Small Town Terrors: Livingston
Sphera
Spirit Walkers: Curse of the Cypress Witch
Spirits of Mystery: Song of the Phoenix Collector's Edition
Spyware Doctor with AntiVirus 8.0 (Version: 8.0)
Surface: Mystery of Another World Collector's Edition
Telstra Online Text Buddy 1.0 (Version: 1.0)
The Agency of Anomalies: Cinderstone Orphanage Collector's Edition
The Dark Hills of Cherai: The Regal Scepter
The Secrets of Arcelia Island
Tiger Eye: The Sacrifice
Time Mysteries: The Ancient Spectres
TimeLeft (Version: 3.59)
Toggle Flash (Version: 1.0.4)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Weird Park: Broken Tune
Windows Driver Package - YUAN TV DRIVER (cxpl_mhd) Media (03/21/2009 6.0.32.0057) (Version: 03/21/2009 6.0.32.0057)
Windows Live Call (Version: 14.0.8117.0416)
Windows Live Communications Platform (Version: 14.0.8117.416)
Windows Live Essentials (Version: 14.0.8117.0416)
Windows Live Essentials (Version: 14.0.8117.416)
Windows Live Mail (Version: 14.0.8117.0416)
Windows Live Messenger (Version: 14.0.8117.0416)
Windows Live Photo Gallery (Version: 14.0.8117.416)
Windows Live Sign-in Assistant (Version: 5.000.818.6)
Windows Live Sync (Version: 14.0.8117.416)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Live Writer (Version: 14.0.8117.0416)
Witches' Legacy: The Charleston Curse
Witches' Legacy: The Charleston Curse Collector's Edition
Written Legends: Nightmare at Sea

========================= Memory info: ===================================

Percentage of memory in use: 54%
Total physical RAM: 3070.32 MB
Available physical RAM: 1400.84 MB
Total Pagefile: 6348.8 MB
Available Pagefile: 4133.01 MB
Total Virtual: 2047.88 MB
Available Virtual: 1964.22 MB

========================= Partitions: =====================================

1 Drive c: (ACER) (Fixed) (Total:458.75 GB) (Free:311.86 GB) NTFS
2 Drive d: (DATA) (Fixed) (Total:458.76 GB) (Free:458.64 GB) NTFS

========================= Users: ========================================

User accounts for \\MARGARET-PC

Administrator Guest Margaret


**** End of log ****


FSS:
Farbar Service Scanner Version: 06-08-2012
Ran by Margaret (administrator) on 21-08-2012 at 06:53:43
Running from "C:\Users\Margaret\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WVXY4OIG"
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is OK.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcsvc.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll => MD5 is legit
C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\ipnathlp.dll
[2008-01-21 10:24] - [2008-01-21 10:24] - 0288256 ____A (Microsoft Corporation) E1499BD0FF76B1B2FBBF1AF339D91165

C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****

Will post adwcleaner in new post - my computer keeps freezing up with it.

#10 myjoe

myjoe
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:01:25 AM

Posted 20 August 2012 - 06:41 PM

# AdwCleaner v1.801 - Logfile created 08/21/2012 at 07:37:06
# Updated 14/08/2012 by Xplode
# Operating system : Windows Vista ™ Home Premium Service Pack 2 (32 bits)
# User : Margaret - MARGARET-PC
# Boot Mode : Normal
# Running from : C:\Users\Margaret\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XS59QSPV\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\ProgramData\Trymedia

***** [Registry] *****

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}

***** [Registre - GUID] *****


***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

-\\ Mozilla Firefox v [Unable to get version]

Profile name : default
File : C:\Users\Margaret\AppData\Roaming\Mozilla\Firefox\Profiles\z7dpxqps.default\prefs.js

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [444 octets] - [21/08/2012 06:55:16]
AdwCleaner[S2].txt - [1056 octets] - [21/08/2012 07:37:06]

########## EOF - C:\AdwCleaner[S2].txt - [1184 octets] ##########

#11 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:25 PM

Posted 20 August 2012 - 08:48 PM

Any current issues?

#12 myjoe

myjoe
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:01:25 AM

Posted 20 August 2012 - 08:51 PM

No issue; all seems to be going well now.

Many, many thanks for your time and help in sorting this. Very much appreciated, particularly your quick replies.

Regards
Margaret

#13 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:25 PM

Posted 20 August 2012 - 08:53 PM

:thumbsup:

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot.If TFC locks up the system,run it in safemode

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows-vista/Turn-System-Restore-on-or-off

Update your flash player

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp

Update your antivirus frequently,do not click on suspicious links

Safe surfing :)

#14 myjoe

myjoe
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:01:25 AM

Posted 20 August 2012 - 10:02 PM

Hi
OK, having a slight problem here! TFC did indeed keep locking system up, but whenever I went into safe mode, it started up again normally without allowing me to run it.

I have created a new restore point.
Computer is now very, very slow.
Sorry, but what am I doing wrong here?! Just when I thought we were finished :)

#15 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:25 PM

Posted 20 August 2012 - 10:20 PM

You have two antivirus

AVG & spyware doctor

Uninstall one of them

Download

http://www.scanwith.com/download/ATF_Cleaner.htm

Run it and remove temporary files.Let me know if that optimizes system performance.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users