Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Help Me Please - Trojans invested


  • Please log in to reply
20 replies to this topic

#1 thebritish

thebritish

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:08:34 AM

Posted 21 August 2012 - 05:38 AM

Apologises if this isn't the right place to post, but ESET Smart Security on my computer has mentioned that they are unable to clean the following:

Operating memory >> taskhost.exe(1564)- a variant of Win/32/Spy.Zbot.ZRtrojan - unable to clean

Operating memory >> c:\\Windows\System32\\svchost.exe - a variant of Win32/IRCBot.NFUtrojan - unable to clean

How do I get rid of these trojans, as ESET is unable to clean them

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:34 AM

Posted 21 August 2012 - 06:32 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 thebritish

thebritish
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:08:34 AM

Posted 21 August 2012 - 09:34 AM

12:53:12.0251 2600 TDSS rootkit removing tool 2.8.7.0 Aug 20 2012 17:30:03
12:53:12.0443 2600 ============================================================
12:53:12.0443 2600 Current date / time: 2012/08/21 12:53:12.0443
12:53:12.0443 2600 SystemInfo:
12:53:12.0444 2600
12:53:12.0444 2600 OS Version: 6.1.7601 ServicePack: 1.0
12:53:12.0444 2600 Product type: Workstation
12:53:12.0444 2600 ComputerName: USER-PC
12:53:12.0444 2600 UserName: user
12:53:12.0444 2600 Windows directory: C:\Windows
12:53:12.0444 2600 System windows directory: C:\Windows
12:53:12.0444 2600 Processor architecture: Intel x86
12:53:12.0444 2600 Number of processors: 1
12:53:12.0444 2600 Page size: 0x1000
12:53:12.0444 2600 Boot type: Normal boot
12:53:12.0444 2600 ============================================================
12:53:13.0968 2600 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
12:53:13.0992 2600 ============================================================
12:53:13.0992 2600 \Device\Harddisk0\DR0:
12:53:13.0992 2600 MBR partitions:
12:53:13.0992 2600 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
12:53:13.0992 2600 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1A483800
12:53:13.0992 2600 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x1A4B6000, BlocksNum 0x3D08F000
12:53:13.0992 2600 ============================================================
12:53:14.0014 2600 C: <-> \Device\Harddisk0\DR0\Partition2
12:53:14.0053 2600 G: <-> \Device\Harddisk0\DR0\Partition3
12:53:14.0053 2600 ============================================================
12:53:14.0053 2600 Initialize success
12:53:14.0053 2600 ============================================================
12:53:41.0995 5820 ============================================================
12:53:41.0995 5820 Scan started
12:53:41.0995 5820 Mode: Manual; TDLFS;
12:53:41.0995 5820 ============================================================
12:53:42.0588 5820 ================ Scan system memory ========================
12:53:42.0588 5820 System memory - ok
12:53:42.0588 5820 ================ Scan services =============================
12:53:42.0775 5820 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
12:53:42.0838 5820 1394ohci - ok
12:53:42.0869 5820 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys
12:53:42.0884 5820 ACPI - ok
12:53:42.0900 5820 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
12:53:42.0931 5820 AcpiPmi - ok
12:53:43.0040 5820 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
12:53:43.0040 5820 AdobeARMservice - ok
12:53:43.0118 5820 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
12:53:43.0134 5820 AdobeFlashPlayerUpdateSvc - ok
12:53:43.0196 5820 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
12:53:43.0274 5820 adp94xx - ok
12:53:43.0306 5820 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
12:53:43.0337 5820 adpahci - ok
12:53:43.0368 5820 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
12:53:43.0384 5820 adpu320 - ok
12:53:43.0430 5820 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
12:53:43.0430 5820 AeLookupSvc - ok
12:53:43.0493 5820 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD C:\Windows\system32\drivers\afd.sys
12:53:43.0508 5820 AFD - ok
12:53:43.0540 5820 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys
12:53:43.0571 5820 agp440 - ok
12:53:43.0586 5820 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
12:53:43.0618 5820 aic78xx - ok
12:53:43.0664 5820 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
12:53:43.0680 5820 ALG - ok
12:53:43.0696 5820 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\drivers\aliide.sys
12:53:43.0711 5820 aliide - ok
12:53:43.0758 5820 [ EBCCBCBF1DF132E4775E5D6E6DEA3ED0 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
12:53:43.0758 5820 AMD External Events Utility - ok
12:53:43.0789 5820 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys
12:53:43.0820 5820 amdagp - ok
12:53:43.0836 5820 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\drivers\amdide.sys
12:53:43.0852 5820 amdide - ok
12:53:43.0883 5820 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
12:53:43.0883 5820 AmdK8 - ok
12:53:44.0101 5820 [ F89643A2CA001B1162061E306F8BF267 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
12:53:44.0257 5820 amdkmdag - ok
12:53:44.0288 5820 [ FB68E1B9CEC598F0F69503F3AEBB45DD ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
12:53:44.0320 5820 amdkmdap - ok
12:53:44.0351 5820 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
12:53:44.0382 5820 AmdPPM - ok
12:53:44.0413 5820 [ D320BF87125326F996D4904FE24300FC ] amdsata C:\Windows\system32\drivers\amdsata.sys
12:53:44.0444 5820 amdsata - ok
12:53:44.0476 5820 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
12:53:44.0507 5820 amdsbs - ok
12:53:44.0522 5820 [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata C:\Windows\system32\drivers\amdxata.sys
12:53:44.0538 5820 amdxata - ok
12:53:44.0569 5820 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys
12:53:44.0600 5820 AppID - ok
12:53:44.0632 5820 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
12:53:44.0632 5820 AppIDSvc - ok
12:53:44.0663 5820 [ FB1959012294D6AD43E5304DF65E3C26 ] Appinfo C:\Windows\System32\appinfo.dll
12:53:44.0663 5820 Appinfo - ok
12:53:44.0756 5820 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
12:53:44.0772 5820 Apple Mobile Device - ok
12:53:44.0819 5820 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys
12:53:44.0850 5820 arc - ok
12:53:44.0881 5820 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
12:53:44.0897 5820 arcsas - ok
12:53:44.0928 5820 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
12:53:44.0959 5820 AsyncMac - ok
12:53:44.0975 5820 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys
12:53:44.0975 5820 atapi - ok
12:53:45.0146 5820 [ F89643A2CA001B1162061E306F8BF267 ] atikmdag C:\Windows\system32\drivers\atikmdag.sys
12:53:45.0209 5820 atikmdag - ok
12:53:45.0256 5820 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
12:53:45.0271 5820 AudioEndpointBuilder - ok
12:53:45.0287 5820 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll
12:53:45.0302 5820 Audiosrv - ok
12:53:45.0334 5820 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\Windows\System32\AxInstSV.dll
12:53:45.0334 5820 AxInstSV - ok
12:53:45.0365 5820 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
12:53:45.0380 5820 b06bdrv - ok
12:53:45.0396 5820 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
12:53:45.0458 5820 b57nd60x - ok
12:53:45.0490 5820 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
12:53:45.0505 5820 BDESVC - ok
12:53:45.0536 5820 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
12:53:45.0552 5820 Beep - ok
12:53:45.0599 5820 [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE C:\Windows\System32\bfe.dll
12:53:45.0614 5820 BFE - ok
12:53:45.0646 5820 [ E585445D5021971FAE10393F0F1C3961 ] BITS C:\Windows\System32\qmgr.dll
12:53:45.0661 5820 BITS - ok
12:53:45.0677 5820 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
12:53:45.0708 5820 blbdrive - ok
12:53:45.0770 5820 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
12:53:45.0770 5820 Bonjour Service - ok
12:53:45.0802 5820 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
12:53:45.0802 5820 bowser - ok
12:53:45.0833 5820 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
12:53:45.0833 5820 BrFiltLo - ok
12:53:45.0864 5820 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
12:53:45.0864 5820 BrFiltUp - ok
12:53:45.0911 5820 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser C:\Windows\System32\browser.dll
12:53:45.0911 5820 Browser - ok
12:53:45.0942 5820 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
12:53:45.0958 5820 Brserid - ok
12:53:45.0973 5820 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
12:53:45.0989 5820 BrSerWdm - ok
12:53:46.0020 5820 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
12:53:46.0020 5820 BrUsbMdm - ok
12:53:46.0036 5820 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
12:53:46.0051 5820 BrUsbSer - ok
12:53:46.0067 5820 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
12:53:46.0098 5820 BTHMODEM - ok
12:53:46.0129 5820 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
12:53:46.0145 5820 bthserv - ok
12:53:46.0160 5820 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
12:53:46.0192 5820 cdfs - ok
12:53:46.0223 5820 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom C:\Windows\system32\drivers\cdrom.sys
12:53:46.0270 5820 cdrom - ok
12:53:46.0301 5820 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll
12:53:46.0316 5820 CertPropSvc - ok
12:53:46.0348 5820 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
12:53:46.0348 5820 circlass - ok
12:53:46.0379 5820 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
12:53:46.0379 5820 CLFS - ok
12:53:46.0441 5820 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:53:46.0457 5820 clr_optimization_v2.0.50727_32 - ok
12:53:46.0550 5820 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:53:46.0550 5820 clr_optimization_v4.0.30319_32 - ok
12:53:46.0582 5820 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
12:53:46.0597 5820 CmBatt - ok
12:53:46.0628 5820 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\drivers\cmdide.sys
12:53:46.0644 5820 cmdide - ok
12:53:46.0691 5820 [ 247B4CE2DAB1160CD422D532D5241E1F ] CNG C:\Windows\system32\Drivers\cng.sys
12:53:46.0706 5820 CNG - ok
12:53:46.0722 5820 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
12:53:46.0753 5820 Compbatt - ok
12:53:46.0784 5820 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
12:53:46.0784 5820 CompositeBus - ok
12:53:46.0800 5820 COMSysApp - ok
12:53:46.0831 5820 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
12:53:46.0847 5820 crcdisk - ok
12:53:46.0909 5820 [ 06E771AA596B8761107AB57E99F128D7 ] CryptSvc C:\Windows\system32\cryptsvc.dll
12:53:46.0909 5820 CryptSvc - ok
12:53:47.0081 5820 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll
12:53:47.0096 5820 DcomLaunch - ok
12:53:47.0174 5820 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
12:53:47.0174 5820 defragsvc - ok
12:53:47.0221 5820 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
12:53:47.0237 5820 DfsC - ok
12:53:47.0268 5820 [ B327B0CA9FCE58893D456EE2360378AF ] DgiVecp C:\Windows\system32\Drivers\DgiVecp.sys
12:53:47.0299 5820 DgiVecp - ok
12:53:47.0330 5820 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll
12:53:47.0330 5820 Dhcp - ok
12:53:47.0362 5820 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
12:53:47.0377 5820 discache - ok
12:53:47.0408 5820 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys
12:53:47.0424 5820 Disk - ok
12:53:47.0471 5820 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
12:53:47.0471 5820 Dnscache - ok
12:53:47.0502 5820 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll
12:53:47.0502 5820 dot3svc - ok
12:53:47.0549 5820 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll
12:53:47.0549 5820 DPS - ok
12:53:47.0580 5820 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
12:53:47.0611 5820 drmkaud - ok
12:53:47.0642 5820 [ 23F5D28378A160352BA8F817BD8C71CB ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
12:53:47.0798 5820 DXGKrnl - ok
12:53:47.0830 5820 [ FDAA8A0CF9EF7AF0DA2F7B4E55AB0BDF ] eamonm C:\Windows\system32\DRIVERS\eamonm.sys
12:53:47.0830 5820 eamonm - ok
12:53:47.0861 5820 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
12:53:47.0861 5820 EapHost - ok
12:53:47.0986 5820 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
12:53:48.0126 5820 ebdrv - ok
12:53:48.0157 5820 [ 81951F51E318AECC2D68559E47485CC4 ] EFS C:\Windows\System32\lsass.exe
12:53:48.0157 5820 EFS - ok
12:53:48.0220 5820 [ 6F2441C26D74BDE88C25E240A2720EEB ] ehdrv C:\Windows\system32\DRIVERS\ehdrv.sys
12:53:48.0235 5820 ehdrv - ok
12:53:48.0298 5820 [ A8C362018EFC87BEB013EE28F29C0863 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
12:53:48.0313 5820 ehRecvr - ok
12:53:48.0344 5820 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe
12:53:48.0344 5820 ehSched - ok
12:53:48.0391 5820 [ EE0F138E023787DE4D3F1C86A6907CC4 ] EhttpSrv C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
12:53:48.0391 5820 EhttpSrv - ok
12:53:48.0422 5820 [ CD76857C30BB34D5D9E02A7C9DE5FB9E ] ekrn C:\Program Files\ESET\ESET Smart Security\ekrn.exe
12:53:48.0438 5820 ekrn - ok
12:53:48.0469 5820 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
12:53:48.0532 5820 elxstor - ok
12:53:48.0547 5820 [ 93AA9CEF77315A0866F8307195DE416D ] epfw C:\Windows\system32\DRIVERS\epfw.sys
12:53:48.0578 5820 epfw - ok
12:53:48.0610 5820 [ 7946B41DAEB3E610742FF01A6D2D61B2 ] Epfwndis C:\Windows\system32\DRIVERS\Epfwndis.sys
12:53:48.0625 5820 Epfwndis - ok
12:53:48.0672 5820 [ 14F8BB85D593846724E8812756BE821A ] epfwwfp C:\Windows\system32\DRIVERS\epfwwfp.sys
12:53:48.0672 5820 epfwwfp - ok
12:53:48.0688 5820 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys
12:53:48.0719 5820 ErrDev - ok
12:53:48.0766 5820 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
12:53:48.0766 5820 EventSystem - ok
12:53:48.0797 5820 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
12:53:48.0828 5820 exfat - ok
12:53:48.0844 5820 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
12:53:48.0859 5820 fastfat - ok
12:53:48.0906 5820 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe
12:53:48.0922 5820 Fax - ok
12:53:48.0953 5820 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
12:53:48.0984 5820 fdc - ok
12:53:49.0015 5820 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
12:53:49.0015 5820 fdPHost - ok
12:53:49.0031 5820 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
12:53:49.0031 5820 FDResPub - ok
12:53:49.0062 5820 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
12:53:49.0078 5820 FileInfo - ok
12:53:49.0093 5820 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
12:53:49.0124 5820 Filetrace - ok
12:53:49.0156 5820 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
12:53:49.0171 5820 flpydisk - ok
12:53:49.0202 5820 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
12:53:49.0234 5820 FltMgr - ok
12:53:49.0265 5820 [ B3A5EC6B6B6673DB7E87C2BCDBDDC074 ] FontCache C:\Windows\system32\FntCache.dll
12:53:49.0280 5820 FontCache - ok
12:53:49.0343 5820 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
12:53:49.0343 5820 FontCache3.0.0.0 - ok
12:53:49.0358 5820 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
12:53:49.0390 5820 FsDepends - ok
12:53:49.0421 5820 [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
12:53:49.0436 5820 Fs_Rec - ok
12:53:49.0483 5820 [ 8A73E79089B282100B9393B644CB853B ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
12:53:49.0483 5820 fvevol - ok
12:53:49.0499 5820 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
12:53:49.0530 5820 gagp30kx - ok
12:53:49.0577 5820 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
12:53:49.0592 5820 GEARAspiWDM - ok
12:53:49.0639 5820 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll
12:53:49.0639 5820 gpsvc - ok
12:53:49.0780 5820 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
12:53:49.0795 5820 gupdate - ok
12:53:49.0826 5820 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
12:53:49.0826 5820 gupdatem - ok
12:53:49.0873 5820 [ C1B577B2169900F4CF7190C39F085794 ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
12:53:49.0873 5820 gusvc - ok
12:53:49.0904 5820 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
12:53:49.0920 5820 hcw85cir - ok
12:53:49.0967 5820 [ A5EF29D5315111C80A5C1ABAD14C8972 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
12:53:50.0060 5820 HdAudAddService - ok
12:53:50.0107 5820 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
12:53:50.0107 5820 HDAudBus - ok
12:53:50.0138 5820 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
12:53:50.0154 5820 HidBatt - ok
12:53:50.0170 5820 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
12:53:50.0201 5820 HidBth - ok
12:53:50.0216 5820 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
12:53:50.0248 5820 HidIr - ok
12:53:50.0263 5820 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\system32\hidserv.dll
12:53:50.0263 5820 hidserv - ok
12:53:50.0294 5820 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
12:53:50.0310 5820 HidUsb - ok
12:53:50.0341 5820 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll
12:53:50.0357 5820 hkmsvc - ok
12:53:50.0388 5820 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
12:53:50.0388 5820 HomeGroupListener - ok
12:53:50.0419 5820 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
12:53:50.0435 5820 HomeGroupProvider - ok
12:53:50.0450 5820 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
12:53:50.0497 5820 HpSAMD - ok
12:53:50.0544 5820 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys
12:53:50.0591 5820 HTTP - ok
12:53:50.0638 5820 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
12:53:50.0653 5820 hwpolicy - ok
12:53:50.0669 5820 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
12:53:50.0700 5820 i8042prt - ok
12:53:50.0716 5820 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
12:53:50.0747 5820 iaStorV - ok
12:53:50.0809 5820 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
12:53:50.0825 5820 idsvc - ok
12:53:50.0825 5820 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
12:53:50.0856 5820 iirsp - ok
12:53:50.0887 5820 [ F95622F161474511B8D80D6B093AA610 ] IKEEXT C:\Windows\System32\ikeext.dll
12:53:50.0903 5820 IKEEXT - ok
12:53:50.0934 5820 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys
12:53:50.0950 5820 intelide - ok
12:53:50.0981 5820 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
12:53:51.0012 5820 intelppm - ok
12:53:51.0028 5820 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
12:53:51.0043 5820 IPBusEnum - ok
12:53:51.0074 5820 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:53:51.0090 5820 IpFilterDriver - ok
12:53:51.0137 5820 [ 4D65A07B795D6674312F879D09AA7663 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
12:53:51.0137 5820 iphlpsvc - ok
12:53:51.0168 5820 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
12:53:51.0199 5820 IPMIDRV - ok
12:53:51.0215 5820 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
12:53:51.0262 5820 IPNAT - ok
12:53:51.0340 5820 [ E6BE7A41A28D8F2DB174957454D32448 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
12:53:51.0355 5820 iPod Service - ok
12:53:51.0371 5820 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
12:53:51.0402 5820 IRENUM - ok
12:53:51.0433 5820 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\drivers\isapnp.sys
12:53:51.0464 5820 isapnp - ok
12:53:51.0496 5820 [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
12:53:51.0542 5820 iScsiPrt - ok
12:53:51.0589 5820 [ 7EA81534E80570BDF6EE4A4248BBA4D6 ] k57nd60x C:\Windows\system32\DRIVERS\k57nd60x.sys
12:53:51.0652 5820 k57nd60x - ok
12:53:51.0667 5820 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
12:53:51.0683 5820 kbdclass - ok
12:53:51.0714 5820 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
12:53:51.0730 5820 kbdhid - ok
12:53:51.0745 5820 [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso C:\Windows\system32\lsass.exe
12:53:51.0745 5820 KeyIso - ok
12:53:51.0792 5820 [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
12:53:51.0792 5820 KSecDD - ok
12:53:51.0808 5820 [ D30159AC9237519FBC62C6EC247D2D46 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
12:53:51.0870 5820 KSecPkg - ok
12:53:51.0901 5820 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
12:53:51.0917 5820 KtmRm - ok
12:53:51.0932 5820 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\system32\srvsvc.dll
12:53:51.0932 5820 LanmanServer - ok
12:53:51.0979 5820 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:53:51.0979 5820 LanmanWorkstation - ok
12:53:52.0011 5820 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
12:53:52.0043 5820 lltdio - ok
12:53:52.0074 5820 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
12:53:52.0074 5820 lltdsvc - ok
12:53:52.0105 5820 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
12:53:52.0105 5820 lmhosts - ok
12:53:52.0136 5820 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
12:53:52.0152 5820 LSI_FC - ok
12:53:52.0199 5820 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
12:53:52.0214 5820 LSI_SAS - ok
12:53:52.0245 5820 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
12:53:52.0292 5820 LSI_SAS2 - ok
12:53:52.0308 5820 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
12:53:52.0339 5820 LSI_SCSI - ok
12:53:52.0355 5820 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
12:53:52.0355 5820 luafv - ok
12:53:52.0401 5820 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
12:53:52.0401 5820 Mcx2Svc - ok
12:53:52.0433 5820 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
12:53:52.0464 5820 megasas - ok
12:53:52.0479 5820 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
12:53:52.0511 5820 MegaSR - ok
12:53:52.0526 5820 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
12:53:52.0526 5820 MMCSS - ok
12:53:52.0557 5820 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
12:53:52.0573 5820 Modem - ok
12:53:52.0604 5820 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
12:53:52.0651 5820 monitor - ok
12:53:52.0667 5820 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\drivers\mouclass.sys
12:53:52.0698 5820 mouclass - ok
12:53:52.0713 5820 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
12:53:52.0729 5820 mouhid - ok
12:53:52.0760 5820 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
12:53:52.0776 5820 mountmgr - ok
12:53:52.0838 5820 [ 46297FA8E30A6007F14118FC2B942FBC ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
12:53:52.0854 5820 MozillaMaintenance - ok
12:53:52.0916 5820 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\Windows\system32\drivers\mpio.sys
12:53:52.0963 5820 mpio - ok
12:53:52.0979 5820 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
12:53:53.0010 5820 mpsdrv - ok
12:53:53.0041 5820 [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc C:\Windows\system32\mpssvc.dll
12:53:53.0057 5820 MpsSvc - ok
12:53:53.0103 5820 [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
12:53:53.0135 5820 MRxDAV - ok
12:53:53.0181 5820 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
12:53:53.0197 5820 mrxsmb - ok
12:53:53.0228 5820 [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:53:53.0275 5820 mrxsmb10 - ok
12:53:53.0306 5820 [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:53:53.0337 5820 mrxsmb20 - ok
12:53:53.0337 5820 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\Windows\system32\drivers\msahci.sys
12:53:53.0353 5820 msahci - ok
12:53:53.0384 5820 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\Windows\system32\drivers\msdsm.sys
12:53:53.0400 5820 msdsm - ok
12:53:53.0415 5820 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
12:53:53.0431 5820 MSDTC - ok
12:53:53.0478 5820 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
12:53:53.0509 5820 Msfs - ok
12:53:53.0525 5820 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
12:53:53.0540 5820 mshidkmdf - ok
12:53:53.0571 5820 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
12:53:53.0587 5820 msisadrv - ok
12:53:53.0618 5820 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
12:53:53.0634 5820 MSiSCSI - ok
12:53:53.0649 5820 msiserver - ok
12:53:53.0681 5820 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
12:53:53.0681 5820 MSKSSRV - ok
12:53:53.0696 5820 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
12:53:53.0727 5820 MSPCLOCK - ok
12:53:53.0743 5820 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
12:53:53.0759 5820 MSPQM - ok
12:53:53.0790 5820 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
12:53:53.0790 5820 MsRPC - ok
12:53:53.0805 5820 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
12:53:53.0821 5820 mssmbios - ok
12:53:53.0837 5820 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
12:53:53.0868 5820 MSTEE - ok
12:53:53.0883 5820 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
12:53:53.0899 5820 MTConfig - ok
12:53:53.0930 5820 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
12:53:53.0930 5820 Mup - ok
12:53:53.0977 5820 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll
12:53:53.0993 5820 napagent - ok
12:53:54.0008 5820 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
12:53:54.0055 5820 NativeWifiP - ok
12:53:54.0102 5820 [ E7C54812A2AAF43316EB6930C1FFA108 ] NDIS C:\Windows\system32\drivers\ndis.sys
12:53:54.0102 5820 NDIS - ok
12:53:54.0133 5820 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
12:53:54.0149 5820 NdisCap - ok
12:53:54.0180 5820 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
12:53:54.0180 5820 NdisTapi - ok
12:53:54.0227 5820 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
12:53:54.0227 5820 Ndisuio - ok
12:53:54.0273 5820 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
12:53:54.0289 5820 NdisWan - ok
12:53:54.0305 5820 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
12:53:54.0351 5820 NDProxy - ok
12:53:54.0383 5820 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
12:53:54.0429 5820 NetBIOS - ok
12:53:54.0461 5820 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
12:53:54.0492 5820 NetBT - ok
12:53:54.0507 5820 [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon C:\Windows\system32\lsass.exe
12:53:54.0523 5820 Netlogon - ok
12:53:54.0570 5820 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
12:53:54.0570 5820 Netman - ok
12:53:54.0601 5820 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
12:53:54.0617 5820 netprofm - ok
12:53:54.0648 5820 [ F476EC40033CDB91EFBE73EB99B8362D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
12:53:54.0648 5820 NetTcpPortSharing - ok
12:53:54.0679 5820 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
12:53:54.0710 5820 nfrd960 - ok
12:53:54.0741 5820 [ 912084381D30D8B89EC4E293053F4710 ] NlaSvc C:\Windows\System32\nlasvc.dll
12:53:54.0741 5820 NlaSvc - ok
12:53:54.0819 5820 [ 6623E51595C0076755C29C00846C4EB2 ] NPF C:\Windows\system32\drivers\npf.sys
12:53:54.0819 5820 NPF - ok
12:53:54.0851 5820 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
12:53:54.0866 5820 Npfs - ok
12:53:54.0897 5820 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
12:53:54.0897 5820 nsi - ok
12:53:54.0913 5820 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
12:53:54.0960 5820 nsiproxy - ok
12:53:55.0069 5820 [ 81189C3D7763838E55C397759D49007A ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
12:53:55.0147 5820 Ntfs - ok
12:53:55.0163 5820 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
12:53:55.0178 5820 Null - ok
12:53:55.0209 5820 [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid C:\Windows\system32\drivers\nvraid.sys
12:53:55.0225 5820 nvraid - ok
12:53:55.0272 5820 [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor C:\Windows\system32\drivers\nvstor.sys
12:53:55.0334 5820 nvstor - ok
12:53:55.0334 5820 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
12:53:55.0365 5820 nv_agp - ok
12:53:55.0428 5820 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
12:53:55.0443 5820 odserv - ok
12:53:55.0475 5820 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
12:53:55.0475 5820 ohci1394 - ok
12:53:55.0506 5820 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:53:55.0521 5820 ose - ok
12:53:55.0568 5820 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
12:53:55.0584 5820 p2pimsvc - ok
12:53:55.0646 5820 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
12:53:55.0646 5820 p2psvc - ok
12:53:55.0662 5820 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
12:53:55.0693 5820 Parport - ok
12:53:55.0724 5820 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr C:\Windows\system32\drivers\partmgr.sys
12:53:55.0771 5820 partmgr - ok
12:53:55.0802 5820 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
12:53:55.0818 5820 Parvdm - ok
12:53:55.0849 5820 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
12:53:55.0849 5820 PcaSvc - ok
12:53:55.0880 5820 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\Windows\system32\drivers\pci.sys
12:53:55.0911 5820 pci - ok
12:53:55.0943 5820 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\drivers\pciide.sys
12:53:55.0958 5820 pciide - ok
12:53:55.0989 5820 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
12:53:56.0021 5820 pcmcia - ok
12:53:56.0036 5820 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
12:53:56.0067 5820 pcw - ok
12:53:56.0099 5820 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
12:53:56.0099 5820 PEAUTH - ok
12:53:56.0192 5820 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll
12:53:56.0223 5820 pla - ok
12:53:56.0255 5820 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay C:\Windows\system32\umpnpmgr.dll
12:53:56.0255 5820 PlugPlay - ok
12:53:56.0270 5820 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
12:53:56.0286 5820 PNRPAutoReg - ok
12:53:56.0317 5820 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
12:53:56.0317 5820 PNRPsvc - ok
12:53:56.0364 5820 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
12:53:56.0364 5820 PolicyAgent - ok
12:53:56.0411 5820 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll
12:53:56.0411 5820 Power - ok
12:53:56.0457 5820 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
12:53:56.0473 5820 PptpMiniport - ok
12:53:56.0504 5820 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys
12:53:56.0520 5820 Processor - ok
12:53:56.0567 5820 [ CADEFAC453040E370A1BDFF3973BE00D ] ProfSvc C:\Windows\system32\profsvc.dll
12:53:56.0567 5820 ProfSvc - ok
12:53:56.0598 5820 [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe
12:53:56.0598 5820 ProtectedStorage - ok
12:53:56.0613 5820 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
12:53:56.0629 5820 Psched - ok
12:53:56.0691 5820 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
12:53:56.0785 5820 ql2300 - ok
12:53:56.0816 5820 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
12:53:56.0832 5820 ql40xx - ok
12:53:56.0863 5820 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
12:53:56.0879 5820 QWAVE - ok
12:53:56.0894 5820 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
12:53:56.0925 5820 QWAVEdrv - ok
12:53:56.0957 5820 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
12:53:56.0972 5820 RasAcd - ok
12:53:57.0003 5820 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
12:53:57.0019 5820 RasAgileVpn - ok
12:53:57.0035 5820 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
12:53:57.0050 5820 RasAuto - ok
12:53:57.0066 5820 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
12:53:57.0081 5820 Rasl2tp - ok
12:53:57.0113 5820 [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan C:\Windows\System32\rasmans.dll
12:53:57.0128 5820 RasMan - ok
12:53:57.0144 5820 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
12:53:57.0175 5820 RasPppoe - ok
12:53:57.0191 5820 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
12:53:57.0222 5820 RasSstp - ok
12:53:57.0253 5820 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
12:53:57.0284 5820 rdbss - ok
12:53:57.0315 5820 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
12:53:57.0331 5820 rdpbus - ok
12:53:57.0378 5820 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
12:53:57.0393 5820 RDPCDD - ok
12:53:57.0425 5820 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
12:53:57.0440 5820 RDPENCDD - ok
12:53:57.0471 5820 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
12:53:57.0471 5820 RDPREFMP - ok
12:53:57.0487 5820 [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
12:53:57.0534 5820 RDPWD - ok
12:53:57.0565 5820 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
12:53:57.0596 5820 rdyboost - ok
12:53:57.0643 5820 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
12:53:57.0643 5820 RemoteAccess - ok
12:53:57.0659 5820 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
12:53:57.0674 5820 RemoteRegistry - ok
12:53:57.0721 5820 [ 0F6756EF8BDA6DFA7BE50465C83132BB ] RimUsb C:\Windows\system32\Drivers\RimUsb.sys
12:53:57.0737 5820 RimUsb - ok
12:53:57.0783 5820 [ E51A8D02B4BD33EBA1F7A5B76C3766ED ] rpcapd C:\Program Files\WinPcap\rpcapd.exe
12:53:57.0783 5820 rpcapd - ok
12:53:57.0815 5820 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
12:53:57.0815 5820 RpcEptMapper - ok
12:53:57.0846 5820 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
12:53:57.0861 5820 RpcLocator - ok
12:53:57.0893 5820 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\Windows\system32\rpcss.dll
12:53:57.0893 5820 RpcSs - ok
12:53:57.0924 5820 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
12:53:57.0971 5820 rspndr - ok
12:53:58.0002 5820 [ 81951F51E318AECC2D68559E47485CC4 ] SamSs C:\Windows\system32\lsass.exe
12:53:58.0002 5820 SamSs - ok
12:53:58.0033 5820 [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
12:53:58.0049 5820 sbp2port - ok
12:53:58.0080 5820 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
12:53:58.0095 5820 SCardSvr - ok
12:53:58.0111 5820 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
12:53:58.0127 5820 scfilter - ok
12:53:58.0173 5820 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\Windows\system32\schedsvc.dll
12:53:58.0189 5820 Schedule - ok
12:53:58.0205 5820 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\Windows\System32\certprop.dll
12:53:58.0205 5820 SCPolicySvc - ok
12:53:58.0236 5820 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\Windows\System32\SDRSVC.dll
12:53:58.0251 5820 SDRSVC - ok
12:53:58.0267 5820 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
12:53:58.0298 5820 secdrv - ok
12:53:58.0314 5820 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
12:53:58.0314 5820 seclogon - ok
12:53:58.0345 5820 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\System32\sens.dll
12:53:58.0345 5820 SENS - ok
12:53:58.0376 5820 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll
12:53:58.0376 5820 SensrSvc - ok
12:53:58.0407 5820 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
12:53:58.0423 5820 Serenum - ok
12:53:58.0454 5820 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys
12:53:58.0470 5820 Serial - ok
12:53:58.0501 5820 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
12:53:58.0517 5820 sermouse - ok
12:53:58.0579 5820 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\Windows\system32\sessenv.dll
12:53:58.0579 5820 SessionEnv - ok
12:53:58.0626 5820 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
12:53:58.0641 5820 sffdisk - ok
12:53:58.0657 5820 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
12:53:58.0688 5820 sffp_mmc - ok
12:53:58.0704 5820 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
12:53:58.0735 5820 sffp_sd - ok
12:53:58.0751 5820 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
12:53:58.0782 5820 sfloppy - ok
12:53:58.0813 5820 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\Windows\System32\ipnathlp.dll
12:53:58.0829 5820 SharedAccess - ok
12:53:58.0860 5820 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:53:58.0860 5820 ShellHWDetection - ok
12:53:58.0875 5820 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys
12:53:58.0907 5820 sisagp - ok
12:53:58.0938 5820 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
12:53:58.0969 5820 SiSRaid2 - ok
12:53:59.0000 5820 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
12:53:59.0047 5820 SiSRaid4 - ok
12:53:59.0078 5820 [ 579BA0A911FF5EA70CB604CD3B744B0A ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
12:53:59.0125 5820 SkypeUpdate - ok
12:53:59.0156 5820 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
12:53:59.0187 5820 Smb - ok
12:53:59.0219 5820 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
12:53:59.0219 5820 SNMPTRAP - ok
12:53:59.0234 5820 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
12:53:59.0234 5820 spldr - ok
12:53:59.0265 5820 [ 9AEA093B8F9C37CF45538382CABA2475 ] Spooler C:\Windows\System32\spoolsv.exe
12:53:59.0265 5820 Spooler - ok
12:53:59.0390 5820 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe
12:53:59.0499 5820 sppsvc - ok
12:53:59.0531 5820 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\Windows\system32\sppuinotify.dll
12:53:59.0546 5820 sppuinotify - ok
12:53:59.0577 5820 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv C:\Windows\system32\DRIVERS\srv.sys
12:53:59.0609 5820 srv - ok
12:53:59.0640 5820 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
12:53:59.0640 5820 srv2 - ok
12:53:59.0671 5820 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
12:53:59.0671 5820 srvnet - ok
12:53:59.0702 5820 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
12:53:59.0702 5820 SSDPSRV - ok
12:53:59.0749 5820 [ EF3458337D7341A05169CEFC73709264 ] SSPORT C:\Windows\system32\Drivers\SSPORT.sys
12:53:59.0780 5820 SSPORT - ok
12:53:59.0796 5820 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
12:53:59.0811 5820 SstpSvc - ok
12:53:59.0827 5820 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
12:53:59.0858 5820 stexstor - ok
12:53:59.0889 5820 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll
12:53:59.0889 5820 StiSvc - ok
12:53:59.0921 5820 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\drivers\swenum.sys
12:53:59.0921 5820 swenum - ok
12:53:59.0952 5820 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
12:53:59.0967 5820 swprv - ok
12:54:00.0030 5820 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\Windows\system32\sysmain.dll
12:54:00.0045 5820 SysMain - ok
12:54:00.0061 5820 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
12:54:00.0077 5820 TabletInputService - ok
12:54:00.0108 5820 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll
12:54:00.0108 5820 TapiSrv - ok
12:54:00.0155 5820 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
12:54:00.0155 5820 TBS - ok
12:54:00.0233 5820 [ 7FA2E0F8B072BD04B77B421480B6CC22 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
12:54:00.0311 5820 Tcpip - ok
12:54:00.0404 5820 [ 7FA2E0F8B072BD04B77B421480B6CC22 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
12:54:00.0420 5820 TCPIP6 - ok
12:54:00.0451 5820 [ CCA24162E055C3714CE5A88B100C64ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
12:54:00.0498 5820 tcpipreg - ok
12:54:00.0545 5820 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
12:54:00.0576 5820 TDPIPE - ok
12:54:00.0607 5820 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
12:54:00.0623 5820 TDTCP - ok
12:54:00.0638 5820 [ B459575348C20E8121D6039DA063C704 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
12:54:00.0685 5820 tdx - ok
12:54:00.0716 5820 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\Windows\system32\drivers\termdd.sys
12:54:00.0732 5820 TermDD - ok
12:54:00.0779 5820 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll
12:54:00.0794 5820 TermService - ok
12:54:00.0825 5820 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
12:54:00.0825 5820 Themes - ok
12:54:00.0841 5820 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
12:54:00.0857 5820 THREADORDER - ok
12:54:00.0919 5820 [ E9CA6ED72EA9F56BD6E98C7042092A1C ] TomTomHOMEService C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
12:54:00.0919 5820 TomTomHOMEService - ok
12:54:00.0966 5820 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
12:54:00.0966 5820 TrkWks - ok
12:54:01.0028 5820 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:54:01.0044 5820 TrustedInstaller - ok
12:54:01.0106 5820 [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
12:54:01.0153 5820 tssecsrv - ok
12:54:01.0200 5820 [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
12:54:01.0231 5820 TsUsbFlt - ok
12:54:01.0278 5820 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
12:54:01.0293 5820 tunnel - ok
12:54:01.0325 5820 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
12:54:01.0356 5820 uagp35 - ok
12:54:01.0387 5820 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys
12:54:01.0449 5820 udfs - ok
12:54:01.0496 5820 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
12:54:01.0496 5820 UI0Detect - ok
12:54:01.0543 5820 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
12:54:01.0559 5820 uliagpkx - ok
12:54:01.0590 5820 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\Windows\system32\drivers\umbus.sys
12:54:01.0621 5820 umbus - ok
12:54:01.0637 5820 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
12:54:01.0668 5820 UmPass - ok
12:54:01.0699 5820 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
12:54:01.0699 5820 upnphost - ok
12:54:01.0730 5820 [ EAFE1E00739AFE6C51487A050E772E17 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
12:54:01.0761 5820 USBAAPL - ok
12:54:01.0808 5820 [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
12:54:01.0886 5820 usbccgp - ok
12:54:01.0917 5820 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\drivers\usbcir.sys
12:54:01.0949 5820 usbcir - ok
12:54:01.0964 5820 [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
12:54:01.0995 5820 usbehci - ok
12:54:02.0011 5820 [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
12:54:02.0058 5820 usbhub - ok
12:54:02.0073 5820 [ E185D44FAC515A18D9DEDDC23C2CDF44 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
12:54:02.0105 5820 usbohci - ok
12:54:02.0136 5820 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
12:54:02.0151 5820 usbprint - ok
12:54:02.0167 5820 [ F991AB9CC6B908DB552166768176896A ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:54:02.0198 5820 USBSTOR - ok
12:54:02.0229 5820 [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
12:54:02.0245 5820 usbuhci - ok
12:54:02.0261 5820 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
12:54:02.0261 5820 UxSms - ok
12:54:02.0292 5820 [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc C:\Windows\system32\lsass.exe
12:54:02.0292 5820 VaultSvc - ok
12:54:02.0323 5820 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
12:54:02.0339 5820 vdrvroot - ok
12:54:02.0385 5820 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe
12:54:02.0401 5820 vds - ok
12:54:02.0432 5820 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
12:54:02.0448 5820 vga - ok
12:54:02.0479 5820 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
12:54:02.0510 5820 VgaSave - ok
12:54:02.0541 5820 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
12:54:02.0573 5820 vhdmp - ok
12:54:02.0604 5820 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys
12:54:02.0619 5820 viaagp - ok
12:54:02.0651 5820 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
12:54:02.0666 5820 ViaC7 - ok
12:54:02.0697 5820 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\drivers\viaide.sys
12:54:02.0713 5820 viaide - ok
12:54:02.0744 5820 [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr C:\Windows\system32\drivers\volmgr.sys
12:54:02.0744 5820 volmgr - ok
12:54:02.0775 5820 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
12:54:02.0775 5820 volmgrx - ok
12:54:02.0822 5820 [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
12:54:02.0869 5820 volsnap - ok
12:54:02.0900 5820 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
12:54:02.0947 5820 vsmraid - ok
12:54:02.0994 5820 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\Windows\system32\vssvc.exe
12:54:03.0009 5820 VSS - ok
12:54:03.0025 5820 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
12:54:03.0056 5820 vwifibus - ok
12:54:03.0072 5820 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
12:54:03.0087 5820 W32Time - ok
12:54:03.0119 5820 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
12:54:03.0150 5820 WacomPen - ok
12:54:03.0197 5820 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
12:54:03.0228 5820 WANARP - ok
12:54:03.0228 5820 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
12:54:03.0228 5820 Wanarpv6 - ok
12:54:03.0306 5820 [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
12:54:03.0368 5820 WatAdminSvc - ok
12:54:03.0462 5820 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\Windows\system32\wbengine.exe
12:54:03.0493 5820 wbengine - ok
12:54:03.0524 5820 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
12:54:03.0524 5820 WbioSrvc - ok
12:54:03.0555 5820 [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc C:\Windows\System32\wcncsvc.dll
12:54:03.0571 5820 wcncsvc - ok
12:54:03.0587 5820 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:54:03.0602 5820 WcsPlugInService - ok
12:54:03.0633 5820 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys
12:54:03.0649 5820 Wd - ok
12:54:03.0680 5820 [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
12:54:03.0758 5820 Wdf01000 - ok
12:54:03.0789 5820 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
12:54:03.0789 5820 WdiServiceHost - ok
12:54:03.0805 5820 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
12:54:03.0805 5820 WdiSystemHost - ok
12:54:03.0852 5820 [ A9D880F97530D5B8FEE278923349929D ] WebClient C:\Windows\System32\webclnt.dll
12:54:03.0867 5820 WebClient - ok
12:54:03.0883 5820 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
12:54:03.0883 5820 Wecsvc - ok
12:54:03.0914 5820 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
12:54:03.0914 5820 wercplsupport - ok
12:54:03.0945 5820 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
12:54:03.0945 5820 WerSvc - ok
12:54:03.0977 5820 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
12:54:04.0008 5820 WfpLwf - ok
12:54:04.0039 5820 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
12:54:04.0055 5820 WIMMount - ok
12:54:04.0133 5820 [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
12:54:04.0164 5820 WinDefend - ok
12:54:04.0195 5820 WinHttpAutoProxySvc - ok
12:54:04.0257 5820 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
12:54:04.0257 5820 Winmgmt - ok
12:54:04.0320 5820 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\Windows\system32\WsmSvc.dll
12:54:04.0351 5820 WinRM - ok
12:54:04.0413 5820 [ A67E5F9A400F3BD1BE3D80613B45F708 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
12:54:04.0413 5820 WinUsb - ok
12:54:04.0460 5820 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
12:54:04.0476 5820 Wlansvc - ok
12:54:04.0569 5820 [ FB01D4AE207B9EFDBABFC55DC95C7E31 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
12:54:04.0585 5820 wlidsvc - ok
12:54:04.0601 5820 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
12:54:04.0616 5820 WmiAcpi - ok
12:54:04.0663 5820 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
12:54:04.0663 5820 wmiApSrv - ok
12:54:04.0725 5820 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
12:54:04.0741 5820 WMPNetworkSvc - ok
12:54:04.0757 5820 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
12:54:04.0772 5820 WPCSvc - ok
12:54:04.0788 5820 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
12:54:04.0803 5820 WPDBusEnum - ok
12:54:04.0819 5820 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
12:54:04.0850 5820 ws2ifsl - ok
12:54:04.0866 5820 [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc C:\Windows\System32\wscsvc.dll
12:54:04.0866 5820 wscsvc - ok
12:54:04.0881 5820 WSearch - ok
12:54:04.0975 5820 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
12:54:05.0006 5820 wuauserv - ok
12:54:05.0053 5820 [ E714A1C0354636837E20CCBF00888EE7 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
12:54:05.0069 5820 WudfPf - ok
12:54:05.0115 5820 [ 1023EE888C9B47178C5293ED5336AB69 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
12:54:05.0115 5820 WUDFRd - ok
12:54:05.0147 5820 [ 8D1E1E529A2C9E9B6A85B55A345F7629 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
12:54:05.0162 5820 wudfsvc - ok
12:54:05.0178 5820 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
12:54:05.0193 5820 WwanSvc - ok
12:54:05.0240 5820 [ C53CB6B30E8D7FE6D950707508AACFB9 ] ZSMC0305 C:\Windows\system32\Drivers\usbVM305.sys
12:54:05.0396 5820 ZSMC0305 - ok
12:54:05.0443 5820 [ 7481637A50A0468CF46C719672BC7EAA ] ZSMC301b C:\Windows\system32\Drivers\usbVM31b.sys
12:54:05.0459 5820 ZSMC301b - ok
12:54:05.0537 5820 [ 74EC37B9EAF9FCA015B933A526825C7A ] {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC} C:\Program Files\CyberLink\PowerDVD10\NavFilter\000.fcl
12:54:05.0537 5820 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC} - ok
12:54:05.0552 5820 ================ Scan global ===============================
12:54:05.0583 5820 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
12:54:05.0615 5820 [ 183B4188D5D91B271613EC3EFD1B3CEF ] C:\Windows\system32\winsrv.dll
12:54:05.0646 5820 [ 183B4188D5D91B271613EC3EFD1B3CEF ] C:\Windows\system32\winsrv.dll
12:54:05.0677 5820 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
12:54:05.0708 5820 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
12:54:05.0724 5820 [Global] - ok
12:54:05.0724 5820 ================ Scan MBR ==================================
12:54:05.0739 5820 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
12:54:06.0051 5820 \Device\Harddisk0\DR0 - ok
12:54:06.0051 5820 ================ Scan VBR ==================================
12:54:06.0051 5820 [ 7491281F8B39E138C7976BE9D5F2F0BB ] \Device\Harddisk0\DR0\Partition1
12:54:06.0067 5820 \Device\Harddisk0\DR0\Partition1 - ok
12:54:06.0067 5820 [ A79F1281AE4FFDE83CF05CA954EC756B ] \Device\Harddisk0\DR0\Partition2
12:54:06.0067 5820 \Device\Harddisk0\DR0\Partition2 - ok
12:54:06.0114 5820 [ 09AE0F435BCD3E3324B3D29CFB6CF4A2 ] \Device\Harddisk0\DR0\Partition3
12:54:06.0114 5820 \Device\Harddisk0\DR0\Partition3 - ok
12:54:06.0114 5820 ============================================================
12:54:06.0114 5820 Scan finished
12:54:06.0114 5820 ============================================================
12:54:06.0145 4540 Detected object count: 0
12:54:06.0145 4540 Actual detected object count: 0
12:54:59.0562 5424 Deinitialize success


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-21 12:55:48
-----------------------------
12:55:48.235 OS Version: Windows 6.1.7601 Service Pack 1
12:55:48.235 Number of processors: 1 586 0x7F02
12:55:48.237 ComputerName: USER-PC UserName: user
12:56:03.857 Initialize success
12:57:17.204 AVAST engine defs: 12082100
12:57:27.209 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
12:57:27.225 Disk 0 Vendor: WDC_WD7500AARX-00N0YB0 51.0AB51 Size: 715404MB BusType: 11
12:57:27.241 Disk 0 MBR read successfully
12:57:27.241 Disk 0 MBR scan
12:57:27.256 Disk 0 Windows 7 default MBR code
12:57:27.256 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
12:57:27.272 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 215303 MB offset 206848
12:57:27.303 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 499998 MB offset 441147392
12:57:27.319 Disk 0 scanning sectors +1465143296
12:57:27.397 Disk 0 scanning C:\Windows\system32\drivers
12:57:47.162 Service scanning
12:58:17.690 Modules scanning
12:58:22.901 Disk 0 trace - called modules:
12:58:23.431 ntkrnlpa.exe CLASSPNP.SYS disk.sys ataport.SYS halmacpi.dll PCIIDEX.SYS msahci.sys
12:58:23.447 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x85bb0030]
12:58:23.462 3 CLASSPNP.SYS[8a98759e] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0x856cb908]
12:58:24.414 AVAST engine scan C:\Windows
12:58:26.972 AVAST engine scan C:\Windows\system32
13:02:12.680 AVAST engine scan C:\Windows\system32\drivers
13:02:33.507 AVAST engine scan C:\Users\user
13:07:53.336 Disk 0 MBR has been saved successfully to "C:\MBR.dat"
13:07:53.354 The log file has been saved successfully to "C:\aswMBR.txt"

ESET Scanner

After scanning and exporting, all it produced was "Operating memory multiple threats"

I think I might have not have ESET scanned properly, I'll do it again

Edited by thebritish, 21 August 2012 - 10:03 AM.


#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:34 AM

Posted 21 August 2012 - 09:48 AM

Please post the ESET results properly Hard to identify detections

DID YOU RUN ESET ONLINE SCANNER? ESET online scanner is different from ESET smart security


Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Post the log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log

Edited by narenxp, 21 August 2012 - 09:50 AM.


#5 thebritish

thebritish
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:08:34 AM

Posted 21 August 2012 - 10:28 AM

ESET

21/08/2012 13:09:07 Startup scanner file Operating memory » C:\Windows\system32\svchost.exe a variant of Win32/IRCBot.NFU trojan unable to clean
21/08/2012 13:09:04 Startup scanner file Operating memory » taskhost.exe(1476) a variant of Win32/Spy.Zbot.ZR trojan unable to clean
21/08/2012 10:51:04 Startup scanner file Operating memory » C:\Windows\system32\svchost.exe a variant of Win32/IRCBot.NFU trojan unable to clean user-PC\user
21/08/2012 10:50:59 Startup scanner file Operating memory » taskhost.exe(1476) a variant of Win32/Spy.Zbot.ZR trojan unable to clean user-PC\user
21/08/2012 09:08:34 Startup scanner file Operating memory » C:\Windows\system32\svchost.exe a variant of Win32/IRCBot.NFU trojan unable to clean
21/08/2012 09:08:32 Startup scanner file Operating memory » taskhost.exe(1540) a variant of Win32/Spy.Zbot.ZR trojan unable to clean
20/08/2012 19:16:54 Startup scanner file Operating memory » C:\Windows\system32\svchost.exe a variant of Win32/IRCBot.NFU trojan unable to clean
20/08/2012 19:16:13 Startup scanner file Operating memory » taskhost.exe(1532) a variant of Win32/Spy.Zbot.ZR trojan unable to clean
20/08/2012 17:14:53 Startup scanner file Operating memory » C:\Windows\system32\svchost.exe a variant of Win32/IRCBot.NFU trojan unable to clean user-PC\user
20/08/2012 17:14:31 Startup scanner file Operating memory » taskhost.exe(1532) a variant of Win32/Spy.Zbot.ZR trojan unable to clean user-PC\user
20/08/2012 16:47:07 Startup scanner file Operating memory » C:\Windows\system32\svchost.exe a variant of Win32/IRCBot.NFU trojan unable to clean
20/08/2012 16:47:03 Startup scanner file Operating memory » taskhost.exe(1564) a variant of Win32/Spy.Zbot.ZR trojan unable to clean
20/08/2012 13:47:58 Startup scanner file Operating memory » C:\Windows\system32\svchost.exe a variant of Win32/IRCBot.NFU trojan unable to clean
20/08/2012 13:47:54 Startup scanner file Operating memory » taskhost.exe(1564) a variant of Win32/Spy.Zbot.ZR trojan unable to clean
20/08/2012 09:47:12 Startup scanner file Operating memory » C:\Windows\system32\svchost.exe a variant of Win32/IRCBot.NFU trojan unable to clean
20/08/2012 09:47:07 Startup scanner file Operating memory » taskhost.exe(1564) a variant of Win32/Spy.Zbot.ZR trojan unable to clean
20/08/2012 08:47:04 Startup scanner file Operating memory » C:\Windows\system32\svchost.exe a variant of Win32/IRCBot.NFU trojan unable to clean user-PC\user
20/08/2012 08:46:51 Startup scanner file Operating memory » taskhost.exe(1564) a variant of Win32/Spy.Zbot.ZR trojan unable to clean user-PC\user
19/08/2012 20:07:47 Startup scanner file Operating memory » C:\Windows\system32\svchost.exe a variant of Win32/IRCBot.NFU trojan unable to clean
19/08/2012 20:07:43 Startup scanner file Operating memory » taskhost.exe(1684) a variant of Win32/Spy.Zbot.ZR trojan unable to clean
19/08/2012 12:50:33 Startup scanner file Operating memory » C:\Windows\system32\svchost.exe a variant of Win32/IRCBot.NFU trojan unable to clean
19/08/2012 12:50:23 Startup scanner file Operating memory » taskhost.exe(1528) a variant of Win32/Spy.Zbot.ZR trojan unable to clean
19/08/2012 09:48:00 Startup scanner file Operating memory » explorer.exe(1672) a variant of Win32/Spy.Zbot.ZR trojan unable to clean user-PC\user
19/08/2012 00:27:06 Startup scanner file Operating memory » C:\Windows\system32\svchost.exe a variant of Win32/IRCBot.NFU trojan unable to clean user-PC\user
19/08/2012 00:26:23 Startup scanner file Operating memory » taskhost.exe(1508) a variant of Win32/Spy.Zbot.ZR trojan unable to clean user-PC\user
18/08/2012 20:37:58 Startup scanner file Operating memory » C:\Windows\system32\svchost.exe a variant of Win32/IRCBot.NFU trojan unable to clean
18/08/2012 20:37:54 Startup scanner file Operating memory » taskhost.exe(1528) a variant of Win32/Spy.Zbot.ZR trojan unable to clean
18/08/2012 13:38:02 Startup scanner file Operating memory » C:\Windows\system32\svchost.exe a variant of Win32/IRCBot.NFU trojan unable to clean
18/08/2012 13:37:55 Startup scanner file Operating memory » taskhost.exe(1528) a variant of Win32/Spy.Zbot.ZR trojan unable to clean
17/08/2012 19:37:24 Startup scanner file Operating memory » C:\Windows\system32\svchost.exe a variant of Win32/IRCBot.NFU trojan unable to clean
17/08/2012 19:37:20 Startup scanner file Operating memory » taskhost.exe(1528) a variant of Win32/Spy.Zbot.ZR trojan unable to clean
17/08/2012 13:37:27 Startup scanner file Operating memory » C:\Windows\system32\svchost.exe a variant of Win32/IRCBot.NFU trojan unable to clean
17/08/2012 13:37:21 Startup scanner file Operating memory » taskhost.exe(1528) a variant of Win32/Spy.Zbot.ZR trojan unable to clean
30/07/2012 23:00:38 HTTP filter archive http://www.tinariwen.com/ JS/Kryptik.LD trojan connection terminated - quarantined user-PC\user Threat was detected upon access to web by the application: C:\Users\user\AppData\Local\Google\Chrome\Application\chrome.exe.
17/07/2012 14:55:32 Real-time file system protection file G:\Downloads\SoftonicDownloader_for_videopad-video-editor.exe a variant of Win32/SoftonicDownloader.A potentially unwanted application deleted - quarantined user-PC\user Event occurred on a new file created by the application: C:\Windows\explorer.exe.
17/07/2012 14:55:20 Real-time file system protection file C:\Users\user\Downloads\SoftonicDownloader_for_videopad-video-editor.exe a variant of Win32/SoftonicDownloader.A potentially unwanted application deleted user-PC\user Event occurred on a file modified by the application: C:\Windows\explorer.exe.
25/06/2012 11:33:39 HTTP filter file http://www.ellingham.org.uk/js/jquery-1.3.2.js JS/Kryptik.QD trojan connection terminated - quarantined user-PC\user Threat was detected upon access to web by the application: C:\Users\user\AppData\Local\Google\Chrome\Application\chrome.exe.
25/06/2012 11:33:38 HTTP filter file http://www.ellingham.org.uk/js/resize/textSizeSwitcher.js JS/Kryptik.QD trojan connection terminated - quarantined user-PC\user Threat was detected upon access to web by the application: C:\Users\user\AppData\Local\Google\Chrome\Application\chrome.exe.
25/06/2012 11:33:38 HTTP filter file http://www.ellingham.org.uk/js/analytics/google/analytics_google.js JS/Kryptik.QD trojan connection terminated - quarantined user-PC\user Threat was detected upon access to web by the application: C:\Users\user\AppData\Local\Google\Chrome\Application\chrome.exe.
25/06/2012 11:33:38 HTTP filter file http://www.ellingham.org.uk/js/index.js JS/Kryptik.QD trojan connection terminated - quarantined user-PC\user Threat was detected upon access to web by the application: C:\Users\user\AppData\Local\Google\Chrome\Application\chrome.exe.
25/06/2012 11:33:38 HTTP filter file http://www.ellingham.org.uk/js/bookmark.js JS/Kryptik.QD trojan connection terminated - quarantined user-PC\user Threat was detected upon access to web by the application: C:\Users\user\AppData\Local\Google\Chrome\Application\chrome.exe.

On Demand Computer Scan

21/08/2012 09:48:03 C:\Boot sector;C:\;G:\Boot sector;G:\ 229218 0 0 Completed
21/08/2012 00:11:17 C:\ 125772 0 0 Completed
20/08/2012 23:57:35 C:\ 125763 0 0 Completed
20/08/2012 19:59:26 C:\ 240099 0 0 Completed
20/08/2012 09:59:07 Operating memory;C:\Boot sector;G:\Boot sector;C:\;G:\ 409464 15 13 Completed

I'm going to get more details from ESET Scanner and also the others you have suggested and will post them

Edited by thebritish, 21 August 2012 - 10:45 AM.


#6 thebritish

thebritish
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:08:34 AM

Posted 21 August 2012 - 04:28 PM

First I used Malwarebytes


Malwarebytes Anti-Malware (Trial) 1.62.0.1300
www.malwarebytes.org

Database version: v2012.08.21.08

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 9.0.8112.16421
user :: USER-PC [administrator]

Protection: Enabled

21/08/2012 16:37:38
mbam-log-2012-08-21 (16-37-38).txt

Scan type: Full scan (C:\|G:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 306456
Time elapsed: 1 hour(s), 4 minute(s), 23 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 1
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|{7483B951-2821-5CE5-7AFA-B049163D8EE2} (Trojan.Agent.BRGen2) -> Data: C:\Users\user\AppData\Roaming\Ikozyl\ivva.exe -> Quarantined and deleted successfully.

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 2
C:\Users\user\AppData\Roaming\Ikozyl\ivva.exe (Trojan.Agent.BRGen2) -> Quarantined and deleted successfully.
C:\Users\user\Documents\Downloads\complete\Trailer_Park_Boys_S05E08-CBC\Trailer.Park.Boys.S05E08-CBC.exe (Trojan.Agent.BRGen2) -> Quarantined and deleted successfully.

(end)

After using and following your instruction, I then used Minitoolbox and this is what its result:

MiniToolBox by Farbar Version: 23-07-2012
Ran by user (administrator) on 21-08-2012 at 21:59:53
Microsoft Windows 7 Home Premium Service Pack 1 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Broadcom NetLink ™ Gigabit Ethernet = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : user-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : Belkin

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : Belkin
Description . . . . . . . . . . . : Broadcom NetLink ™ Gigabit Ethernet
Physical Address. . . . . . . . . : 00-26-2D-12-96-92
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::3c60:2848:8e07:5e28%10(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.2.3(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : 21 August 2012 21:56:39
Lease Expires . . . . . . . . . . : 21 August 2013 21:56:39
Default Gateway . . . . . . . . . : 192.168.2.1
DHCP Server . . . . . . . . . . . : 192.168.2.1
DHCPv6 IAID . . . . . . . . . . . : 234890797
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-16-32-A8-00-26-2D-12-96-92
DNS Servers . . . . . . . . . . . : 192.168.2.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.Belkin:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : Belkin
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:5ef5:79fb:c32:2565:adf3:f631(Preferred)
Link-local IPv6 Address . . . . . : fe80::c32:2565:adf3:f631%12(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: Virgin.Belkin
Address: 192.168.2.1

Name: google.com
Addresses: 2a00:1450:4009:809::1009
173.194.41.166
173.194.41.174
173.194.41.160
173.194.41.162
173.194.41.167
173.194.41.165
173.194.41.161
173.194.41.163
173.194.41.164
173.194.41.168
173.194.41.169


Pinging google.com [173.194.41.168] with 32 bytes of data:
Reply from 173.194.41.168: bytes=32 time=27ms TTL=55
Reply from 173.194.41.168: bytes=32 time=26ms TTL=55

Ping statistics for 173.194.41.168:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 26ms, Maximum = 27ms, Average = 26ms
Server: Virgin.Belkin
Address: 192.168.2.1

Name: yahoo.com
Addresses: 98.138.253.109
98.139.183.24
72.30.38.140


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=197ms TTL=48
Reply from 98.139.183.24: bytes=32 time=228ms TTL=48

Ping statistics for 98.139.183.24:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 197ms, Maximum = 228ms, Average = 212ms
Server: Virgin.Belkin
Address: 192.168.2.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=13ms TTL=128
Reply from 127.0.0.1: bytes=32 time=3ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 3ms, Maximum = 13ms, Average = 8ms
===========================================================================
Interface List
10...00 26 2d 12 96 92 ......Broadcom NetLink ™ Gigabit Ethernet
1...........................Software Loopback Interface 1
11...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.2.1 192.168.2.3 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.2.0 255.255.255.0 On-link 192.168.2.3 276
192.168.2.3 255.255.255.255 On-link 192.168.2.3 276
192.168.2.255 255.255.255.255 On-link 192.168.2.3 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.2.3 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.2.3 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
12 58 ::/0 On-link
1 306 ::1/128 On-link
12 58 2001::/32 On-link
12 306 2001:0:5ef5:79fb:c32:2565:adf3:f631/128
On-link
10 276 fe80::/64 On-link
12 306 fe80::/64 On-link
12 306 fe80::c32:2565:adf3:f631/128
On-link
10 276 fe80::3c60:2848:8e07:5e28/128
On-link
1 306 ff00::/8 On-link
12 306 ff00::/8 On-link
10 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 07 C:\Windows\System32\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 08 C:\Windows\System32\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/21/2012 06:19:36 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 16504

Error: (08/21/2012 06:19:36 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 16504

Error: (08/21/2012 06:19:36 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/21/2012 06:19:35 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15366

Error: (08/21/2012 06:19:35 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 15366

Error: (08/21/2012 06:19:35 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/21/2012 06:19:34 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 14133

Error: (08/21/2012 06:19:34 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 14133

Error: (08/21/2012 06:19:34 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/21/2012 06:19:33 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 12823


System errors:
=============
Error: (08/21/2012 09:56:21 PM) (Source: DCOM) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}

Error: (08/21/2012 05:46:13 PM) (Source: Service Control Manager) (User: )
Description: The DgiVecp service failed to start due to the following error:
%%193

Error: (08/21/2012 05:45:18 PM) (Source: DCOM) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}

Error: (08/21/2012 03:40:33 PM) (Source: atapi) (User: )
Description: The driver detected a controller error on \Device\Ide\IdePort0.

Error: (08/21/2012 03:40:33 PM) (Source: atapi) (User: )
Description: The driver detected a controller error on \Device\Ide\IdePort0.

Error: (08/21/2012 03:40:33 PM) (Source: atapi) (User: )
Description: The driver detected a controller error on \Device\Ide\IdePort0.

Error: (08/21/2012 03:40:33 PM) (Source: atapi) (User: )
Description: The driver detected a controller error on \Device\Ide\IdePort0.

Error: (08/21/2012 03:33:45 PM) (Source: atapi) (User: )
Description: The driver detected a controller error on \Device\Ide\IdePort0.

Error: (08/21/2012 03:29:37 PM) (Source: Microsoft-Windows-Kernel-General) (User: NT AUTHORITY)
Description: 0xc000014d62\??\C:\Users\user\AppData\Local\Microsoft\Windows\UsrClass.dat

Error: (08/21/2012 03:29:29 PM) (Source: volsnap) (User: )
Description: The shadow copies of volume C: were aborted because of an IO failure on volume C:.


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
2.0 (Version: 2.0)
7-Zip 9.20
Adobe Flash Player 11 ActiveX (Version: 11.3.300.271)
Adobe Flash Player 11 Plugin (Version: 11.3.300.271)
Adobe Reader X (10.1.4) (Version: 10.1.4)
Any Video Converter 3.2.7
Apple Application Support (Version: 2.1.9)
Apple Mobile Device Support (Version: 5.2.0.6)
Apple Software Update (Version: 2.1.3.127)
µTorrent (Version: 1.8.3)
Audacity 2.0
AVS Update Manager 1.0
Bonjour (Version: 3.0.0.10)
Broadcom Gigabit NetLink Controller (Version: 12.33.02)
Common Desktop Agent (Version: 1.53.0)
CyberLink PowerDVD 10 (Version: 10.0.1705)
D3DX10 (Version: 15.4.2368.0902)
DiskAid 4.63 (Version: 4.63)
DivX Setup (Version: 2.6.1.9)
Dropbox (Version: 1.4.7)
ESET Online Scanner v3
ESET Smart Security (Version: 4.2.35.0)
ffvfw (uninstall only)
FileZilla Client 3.5.1 (Version: 3.5.1)
Free Merge MP3 3.2.1
Free Studio version 5.2.1
get_iplayer 4.5 (Version: 4.5)
Google Chrome (Version: 21.0.1180.79)
Google Earth (Version: 6.1.0.5001)
Google Talk Plugin (Version: 3.4.2.8800)
Google Update Helper (Version: 1.3.21.115)
iTunes (Version: 10.6.3.25)
Java Auto Updater (Version: 2.1.6.0)
Java™ 7 Update 5 (Version: 7.0.50)
JavaFX 2.1.1 (Version: 2.1.1)
Junk Mail filter update (Version: 15.4.3502.0922)
Magic DVD Ripper V5.5.2
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
MediaInfo 0.7.51 (Version: 0.7.51)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Mini-stream Ripper 3.1.3.2.2010.06.24
Moyea FLV Editor Lite version: 1.1.1.846
Mozilla Firefox 14.0.1 (x86 en-GB) (Version: 14.0.1)
Mozilla Maintenance Service (Version: 14.0.1)
MSVCRT (Version: 15.4.2862.0708)
MyTomTom 3.2.0.700 (Version: 3.2.0.700)
Picasa 3 (Version: 3.8)
QuickTime (Version: 7.72.80.56)
Real Alternative 1.9.0 Lite (Version: 1.9.0)
SABnzbd 0.7.0 (Version: 0.7.0)
Safari (Version: 5.34.57.2)
Samsung Easy Printer Manager (Version: 1.02.06.05)
Samsung ML-2160 Series
Samsung Printer Live Update
Skype Click to Call (Version: 5.10.9560)
Skype™ 5.9 (Version: 5.9.115)
SolveigMM AVI Trimmer (Version: 1.6.1005.17)
StreamTransport version: 1.0.2.2171
TomTom HOME (Version: 2.9.0)
TomTom HOME Visual Studio Merge Modules (Version: 1.0.2)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
VideoPad Video Editor
Visual Studio C++ 10.0 Runtime (Version: 10.0.0)
VLC media player 1.1.11 (Version: 1.1.11)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3538.0513)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
Windows Movie Maker 2.6 (Version: 2.6.4037.0)
WinPcap 4.0.2 (Version: 4.0.0.1040)

========================= Memory info: ===================================

Percentage of memory in use: 28%
Total physical RAM: 2814.85 MB
Available physical RAM: 2002.05 MB
Total Pagefile: 5627.99 MB
Available Pagefile: 4335.94 MB
Total Virtual: 2047.88 MB
Available Virtual: 1929.31 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:210.26 GB) (Free:41.18 GB) NTFS
4 Drive g: (New Volume) (Fixed) (Total:488.28 GB) (Free:488.18 GB) NTFS

========================= Users: ========================================

User accounts for \\USER-PC

Administrator Guest user


**** End of log ****

After that, then I used FSS, this is what its result:

Farbar Service Scanner Version: 06-08-2012
Ran by user (administrator) on 21-08-2012 at 22:04:21
Running from "C:\Users\user\Downloads"
Microsoft Windows 7 Home Premium Service Pack 1 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcore.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll => MD5 is legit
C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\ipnathlp.dll => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****

After that, I used Adware Cleaner and this is its result:

# AdwCleaner v1.801 - Logfile created 08/21/2012 at 22:05:17
# Updated 14/08/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (32 bits)
# User : user - USER-PC
# Boot Mode : Normal
# Running from : C:\Users\user\Downloads\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****


***** [Registry] *****

Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKLM\SOFTWARE\Conduit

***** [Registre - GUID] *****


***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

-\\ Mozilla Firefox v14.0.1 (en-GB)

-\\ Google Chrome v21.0.1180.79

*************************

AdwCleaner[S1].txt - [735 octets] - [21/08/2012 22:05:17]

########## EOF - C:\AdwCleaner[S1].txt - [862 octets] ##########

#7 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:34 AM

Posted 21 August 2012 - 04:33 PM

I'm going to get more details from ESET Scanner and also the others you have suggested and will post them


Still need the ESET scanner log.I do not need ESET antivirus logs

#8 thebritish

thebritish
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:08:34 AM

Posted 21 August 2012 - 04:40 PM

OK I'm going to run through ESET Scanner. Also ESET Scanner has mentioned that my Windows Defender and ESET Security might interfere with the results. Will that make any difference ?

#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:34 AM

Posted 21 August 2012 - 05:00 PM

Disable ESET security

#10 thebritish

thebritish
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:08:34 AM

Posted 22 August 2012 - 02:40 AM

Scan Log
Version of virus signature database: 7406 (20120821)
Date: 22/08/2012 Time: 00:52:39
Scanned disks, folders and files: Operating memory;C:\Boot sector;G:\Boot sector;C:\;G:\
C:\hiberfil.sys - error opening [4]
C:\pagefile.sys - error opening [4]
C:\Program Files\DivX\DivX Plus Player\DPXPlugins\DPXDownloadManagerPlugin.dll » PECompact v2.xx - unpack error
C:\Program Files\Free Video to GIF Converter\FreeVideotoGIFConverter.exe » ENIGMA - unpack error
C:\Program Files\Google\Update\1.3.21.115\GoogleUpdateHelper.msi » MSI » required.cab » CAB - error reading archive
C:\ProgramData\Microsoft\Crypto\Keys\00fc206e7feba7c7381cccb3f178a53f_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\039932eefe76a96b8676b03e76ef02f8_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\046f814d9713d5135dc2f5169e4bb6ce_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\0555e2d03e6a891ddc57cf8ba3c2138a_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\0896c9e53aab3c097a1df3935eda0148_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\09308a688b222ca6b5b7b41968cad36f_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\0a09ba97f6a90a2a9f0b03e557dd499a_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\0b5da02f69ce4bfd49f34a5336f7b998_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\0c07a0428837a8fd4516ede49f707d85_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\0e26dc9f2db19d4feea73ebeef79878f_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\0fa92c052e29a89ec9ac420070212ca1_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\0fed84dbcb09e6d59baa27b32a4072e3_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\114d665286387f2894e978e78e979239_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\121fd33e1a2ac30200b69762bd6efff9_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\123177672944edef0ef2ed7b5e44e92e_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\13a0269ae16f6816319431afaac53c07_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\157f545f9708a4100cdd7e2d7087a84d_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\17245486068e630ccc763448fdbaec17_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\191c3b5f066ed056a0d3e0e4054bc812_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\1ac2c96bb0ed61f7c252f216bee8fca3_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\1d66b71347e9756159044546be2fa9bc_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\1e50d13796ff76181a6278d07dc3bda0_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\1e6a30bea1035feb42f085eefde8654b_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\1e73269b41ab357aed5c29820834849b_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\21706f81cf2e99a1438ff0404622aaf4_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\2250d67acb87c5b809560c511530cd34_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\229f31cc974d9ac23c01c64352395ab1_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\22e1b16eac9811556912fd59a7fd22f3_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\249ba335b0f39bb3c641a64e6acb3877_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\24b5c39256e269860d9f402fbbe34e80_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\2587bd85fb200a45a4f8ba801cdbcfe8_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\267c4b8dd9de646944952d779f51de74_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\26a3c2f3b0c8c34d278cee98460aa3fb_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\27f62ffb0bbc9db5ec5a7cbf7807eb29_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\28dd6a7080bca7e7a4bef28345a19235_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\29705c6f46ff16ea9803a098bad190f1_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\2a17a9f95eae0311a836b7a3d3fc4021_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\2dc74d4ef8dd9ec2db92d0cb09c96505_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\2e87d167d0ac56cc192790d70e0cc6b4_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\2ea331c18274274e6e88e434002bfacf_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\2f121eb44d6829e12d4fe02e5d5d3b2f_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\2f505d657983d6b7c03c5ede46ddc970_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\2f9cb78e4a29b4a7aef1cbff21445ee2_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\30930e63a34d16b5a9898529d5f6f9e5_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\32825348db91d5f4631728c4758d78f8_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\3390382654a70bca0e50273b367204dd_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\33b8d88accbd8f7601b16225346db636_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\35da1b4868f8569543e14def0a2941a2_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\3762972a197dc4c65642c245a0ea12c2_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\38d5449178b73ae1a5d9cc6f917168dc_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\3932098bf5d2f86ec962767504b2a0ca_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\3a536bdb9922122103b5d397be7a2305_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\3ad9b5b245d242f69ade3dada5c44595_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\3cc143e708e475c4ed568a82d6f034b0_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\3ed24013345c6dbd45bd24aecb3c3c7c_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\3ff00bdd76988dc7f452b8ecd6ea4f1c_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\40aefe4fc8e665ad191e3fdd0e81036a_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\40cc279eb60db2b44655ae80a958acd4_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\41125c834bca328b822c15d008ae763d_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\4142e112a299bc058171af735c32b104_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\41fd4ba2dcb3b28ee16d88529a053055_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\425a0620e6e8a1c86bd3f6b0735661ba_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\448db5699eb8a3c845ab502b8af011c0_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\44c73958cf6674e4445e8150ba0cbc66_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\46f30a871ba0976ac2e97db94a75092e_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\47b7e10b98c76c39f70e0574c6b0f77e_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\481a2f2ebce2c6fa4a93ecf300db5988_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\499a68731946ea5a8a64fbf990f64d3e_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\4b5f52962fc29f212c7bdca71330abbd_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\4c6e434c93c9ecf3bd79726ad751468e_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\4dbc0cd77199736c00d06882de2443e5_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\4e17243f1979f957e7e480ea63da19fa_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\50c4c0f6d1722b8a6eedadbc84c0e7fe_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\5240fd6c13562b2da9aa06a33519e280_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\5328c1b9e5f4123247a404fff90caf38_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\55ff233f779af4533843b6005db766e3_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\588c7ba22f89c4cf02872e3efeb5024f_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\5a21b95acec2e8d826baead513683df3_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\5b19a0c592ad148bf6eabf32158abded_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\5bb0d2dd1682d3341935c2d8078777df_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\5c2bcf528484f247ae9aca92457a11f8_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\5c635550f2555e1cc2922c85082c878e_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\5d1d05a17805159dfbb7d25f20a963f3_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\5e08d5ebc0d6dd933c61816932c451bb_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\5e3a81307fa2059d4fae4265f9fec6c2_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\5fc8d38b9f8343a1e4a2b96caf56909c_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\601e696353a809288411f89fc47f3a94_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\61d7847e283c8e54aeae1f5c267fa346_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\665aa2afda257bab74083e84110eee35_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\678ad9c9cab124e2d6135d74280f702e_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\68c8e6c9459efec1030d6d54edc2c4be_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\69deb7ab5a64019d223c7fbb7f05196b_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\6a38ce9994189effd240b00d066bbe0a_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\6ab62a1c1d8cba89663e6d229bbb4293_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\6e5c69a600c6a4dd11016d403b2a7842_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\6f1876e172450f4a7d99632c75e4264f_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\6fdb897b4744bf5abf9077b1b0ff06b6_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\7080c2eb03a9b9c0ad13313ec3c15c8f_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\7188807b14a02457c3ee2df2779f5df4_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\71e48b11e38f4c6f2e5b517372bff685_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\739f9f52fa4f89cfd464ef0bb6f2f948_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\74aec7e570f190a8c87121145d794e5a_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\75d71d5fcaf26c289f9f76aa6d2a07b6_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\774c2d74d664734a48ef2b5ae175cc19_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\7953272f641ecacf1aa988c4c5c1ba1e_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\79844882bd2ae9d55466b4aea5e5929f_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\7a2cf1bbe56bdab759fdbd37056ce22e_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\7afcf3f1d6f81d2c5e4158726b998fbd_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\7b694fca798f08642abb1eff6d3fe520_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\7cc2e4cb04d2afe273707084f394ccf6_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\7fbfbee109087953b6ed2636ef487131_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\832b8389547ac1a9e58ff9283924b2b6_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\8510eaf8f1667f958f7bffce6411205f_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\8528227aa8004f5461135e563cc1f1fe_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\86b6834336f138dda115941286ad0597_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\88d21d45f586258000182ac37a3b3734_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\8afcb4485f4acbb512a75fe470487bf2_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\8bf897c70a07f85ca3df7a96e58ce4a0_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\8cdb59d143e330131e563ac6fc412713_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\8d1462b8b643827122a8bef73f825d67_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\8e6ee9e403ef5cd76d68555dedfc3d00_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\8f9a94f7e599a1627f0cf3c654c7e219_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\905e5d03397217a340049547ac99203e_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\9197e1e5bee2ee693e87cc6f5abb7999_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\92099bfbce711ec14b4d49539b9d96c8_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\93e46d8aa0570bed1fe576009b0d5086_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\957b5f8a10e2b76c0cac2924629c8cbf_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\96ffe135c91122f56cffb7fd3ebc2593_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\97a92cee3f26b95087e59ce3f4c2d5b5_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\97ef376461c17fe606b6d72dc8665271_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\97f1c5ffcb7176bf01f51f2ff18bd1eb_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\9c1abe05d3db60d3861e7840d0bb31a0_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\9e09f6e5711afff12f82c4a4d3f372e5_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\9f959d27359717394fbee3f8307057b6_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\a04db53614fa458ae281bc73cc64e08e_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\a06b280924e515dd692b10181a0dabf2_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\a11587ea2541176933b089086952be60_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\a1414e2b70bff66b6f6feaac7e92b5d8_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\a2411046e3502c7c49e1eb06b53a8d84_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\a4c5838ba6ebca1ece12c0c189beebc0_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\a6688889aa8cc659f8988c381736835f_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\a71bd91511985b0a1b692b4618a4cacb_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\a8159d3b56ec460f771dca81ce26b9dd_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\a871dea2b8a7d9f8290c19df6f941fc8_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\a87db87264047de1574007831cd0d3ad_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\a8a0064ce20c44fa71cba6911e38b2d5_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\aad8c54f8ebb421728847b9a2c6d64d0_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\aafb0bbd619ed7f173faaa537ab46e1d_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\abeebcc5d392f747fb5de7f0e5ffe29d_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\ae18e40e0d40aa8858870c370ec0256d_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\ae970049f7e335fe14f0918c016ec618_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\af4482044f2b12a14da3332c3e33a315_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\b24e50dfe51e49ced07d7dffbb60250d_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\b2565f9868466565bfaa59e41d042a73_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\b3d123635440aaae3a9855439beb219f_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\b4161674f3ccbbc8bd699737853a6f9a_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\b61247103c1bee137f99ff427bff7f4b_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\b677573a874dc845a8bf5ee1802b3fd2_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\b84cb277cf119da3dade18ba95dcd38b_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\b85ff69874437c995e1f83f0a43a6ad4_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\b911ada06d68404e1ee4d6ede9db7ae7_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\be07a7a5a45a166e3dd4bf68d0aab389_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\be9489ea8e8656e3deee8b222f9f2c4e_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\bea4f00224036ddfbca9bc69f3f4cecc_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\bf44c020e53bdb7d08c6f677ec2e7a59_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\c1e2b156393e5f7e86bfce6ae3a98da2_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\c292b029b384c5166276f9c5f4fa35f8_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\c2b811e7768c53fffde9474ff6a538a0_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\c34c16f121fd59a51023387bc1a8b144_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\c455b6928052f0d218361c72cc6aa9cb_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\c572874e04e3d28acc8d3b75ffdef1b9_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\c5831cbd89f7656b98f849a2c2dbcb5a_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\c606dad50e9f89daf696899602e6d84f_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\c6e1f4e55cbc8be3b31691d9d74fd737_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\c91b8ae4ce0ad0c0be976528bb90dadd_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\ca7478ebc1e8e3c6dcc7e66145625652_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\cba0c7d624fb7378b5e87731deea7d19_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\cc3a4551a37bd5bcfba1079e816639b7_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\cd64e640d0c5331a07757c4ba6bcef3d_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\cf7102ac0670f0eed0df20c7abf99a22_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\d16da1c9cb41b2a15003a0fe4a1dfaa3_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\d243538f94ee09f4501b420ab5b879b0_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\d3e00a77d504daea41e3f3db1a6214b8_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\d4374ffb3a7fe99df1992b23453e3979_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\d4452621ef9b2851751e5974d7a80f18_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\d47631909090debed5f05e812cfafe5a_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\d6bc07cbd8f40096e2b4b196b82d30c1_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\d6c502831fff712c35299ee0e819d5f8_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\d89920b73013e6183ac310f5e469d164_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\da34d46fcde8638f566f57eeb273abdf_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\dabf631e01d5928333b7a6a6e3750c6c_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\db2c40f887b653b3b45ae3f562cb2163_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\dbcd365a9fb4138e2b23dd49e4566814_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\dc37d916535bfcb080e5de308833100a_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\de86727f4a8b9cee5da3a9ee5b4622a6_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\dec005a4f51e877fbe22ec2233aaf9c2_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\e14f8efde814e1a93205647b2bef009b_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\e382f771b622c0cf3281ea8ca46ea09e_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\e58389f11ce7109733a03fceb207c999_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\e61aecb6a6f9da6ca3fdb15b46dcaeea_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\f099b009bc846cf41bbbcdf3bc35b82c_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\f2a6265145c228437ff5ebb50a887cf9_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\f4148fc59e65b7b75b79a140a4c30c5e_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\f50bb3618a3e659c666534183def1c77_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\f64f1584c559bb367b646f3d1158d0b0_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\f6ecdd0a4bdec54e6ee8fa7d2944bbac_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\f72ce72e68eaa104b1ba6a74b4903b4f_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\f73b43f965ecf40c995acfc998de3762_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\f8e90653e00e9572196b83de3b9de1dc_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\f92e71491711a48809538e0e5cd42339_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\fb6e030f43d074796d456a349d7940f5_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\fced979ae3b4f73206ebfbcbeda5862f_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\fedaf167de18e703b1e4e0e2588af677_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\fef0d535e6b91c507ac3c714a612dfec_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\ff8c862065c5013b70ff6bb367ebe5ee_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\Keys\00fc206e7feba7c7381cccb3f178a53f_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\039932eefe76a96b8676b03e76ef02f8_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\046f814d9713d5135dc2f5169e4bb6ce_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\0555e2d03e6a891ddc57cf8ba3c2138a_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\0896c9e53aab3c097a1df3935eda0148_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\09308a688b222ca6b5b7b41968cad36f_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\0a09ba97f6a90a2a9f0b03e557dd499a_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\0b5da02f69ce4bfd49f34a5336f7b998_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\0c07a0428837a8fd4516ede49f707d85_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\0e26dc9f2db19d4feea73ebeef79878f_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\0fa92c052e29a89ec9ac420070212ca1_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\0fed84dbcb09e6d59baa27b32a4072e3_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\114d665286387f2894e978e78e979239_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\121fd33e1a2ac30200b69762bd6efff9_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\123177672944edef0ef2ed7b5e44e92e_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\13a0269ae16f6816319431afaac53c07_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\157f545f9708a4100cdd7e2d7087a84d_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\17245486068e630ccc763448fdbaec17_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\191c3b5f066ed056a0d3e0e4054bc812_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\1ac2c96bb0ed61f7c252f216bee8fca3_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\1d66b71347e9756159044546be2fa9bc_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\1e50d13796ff76181a6278d07dc3bda0_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\1e6a30bea1035feb42f085eefde8654b_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\1e73269b41ab357aed5c29820834849b_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\21706f81cf2e99a1438ff0404622aaf4_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\2250d67acb87c5b809560c511530cd34_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\229f31cc974d9ac23c01c64352395ab1_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\22e1b16eac9811556912fd59a7fd22f3_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\249ba335b0f39bb3c641a64e6acb3877_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\24b5c39256e269860d9f402fbbe34e80_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\2587bd85fb200a45a4f8ba801cdbcfe8_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\267c4b8dd9de646944952d779f51de74_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\26a3c2f3b0c8c34d278cee98460aa3fb_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\27f62ffb0bbc9db5ec5a7cbf7807eb29_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\28dd6a7080bca7e7a4bef28345a19235_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\29705c6f46ff16ea9803a098bad190f1_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\2a17a9f95eae0311a836b7a3d3fc4021_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\2dc74d4ef8dd9ec2db92d0cb09c96505_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\2e87d167d0ac56cc192790d70e0cc6b4_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\2ea331c18274274e6e88e434002bfacf_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\2f121eb44d6829e12d4fe02e5d5d3b2f_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\2f505d657983d6b7c03c5ede46ddc970_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\2f9cb78e4a29b4a7aef1cbff21445ee2_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\30930e63a34d16b5a9898529d5f6f9e5_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\32825348db91d5f4631728c4758d78f8_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\3390382654a70bca0e50273b367204dd_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\33b8d88accbd8f7601b16225346db636_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\35da1b4868f8569543e14def0a2941a2_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\3762972a197dc4c65642c245a0ea12c2_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\38d5449178b73ae1a5d9cc6f917168dc_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\3932098bf5d2f86ec962767504b2a0ca_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\3a536bdb9922122103b5d397be7a2305_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\3ad9b5b245d242f69ade3dada5c44595_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\3cc143e708e475c4ed568a82d6f034b0_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\3ed24013345c6dbd45bd24aecb3c3c7c_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\3ff00bdd76988dc7f452b8ecd6ea4f1c_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\40aefe4fc8e665ad191e3fdd0e81036a_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\40cc279eb60db2b44655ae80a958acd4_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\41125c834bca328b822c15d008ae763d_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\4142e112a299bc058171af735c32b104_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\41fd4ba2dcb3b28ee16d88529a053055_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\425a0620e6e8a1c86bd3f6b0735661ba_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\448db5699eb8a3c845ab502b8af011c0_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\44c73958cf6674e4445e8150ba0cbc66_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\46f30a871ba0976ac2e97db94a75092e_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\47b7e10b98c76c39f70e0574c6b0f77e_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\481a2f2ebce2c6fa4a93ecf300db5988_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\499a68731946ea5a8a64fbf990f64d3e_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\4b5f52962fc29f212c7bdca71330abbd_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\4c6e434c93c9ecf3bd79726ad751468e_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\4dbc0cd77199736c00d06882de2443e5_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\4e17243f1979f957e7e480ea63da19fa_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\50c4c0f6d1722b8a6eedadbc84c0e7fe_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\5240fd6c13562b2da9aa06a33519e280_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\5328c1b9e5f4123247a404fff90caf38_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\55ff233f779af4533843b6005db766e3_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\588c7ba22f89c4cf02872e3efeb5024f_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\5a21b95acec2e8d826baead513683df3_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\5b19a0c592ad148bf6eabf32158abded_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\5bb0d2dd1682d3341935c2d8078777df_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\5c2bcf528484f247ae9aca92457a11f8_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\5c635550f2555e1cc2922c85082c878e_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\5d1d05a17805159dfbb7d25f20a963f3_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\5e08d5ebc0d6dd933c61816932c451bb_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\5e3a81307fa2059d4fae4265f9fec6c2_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\5fc8d38b9f8343a1e4a2b96caf56909c_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\601e696353a809288411f89fc47f3a94_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\61d7847e283c8e54aeae1f5c267fa346_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\665aa2afda257bab74083e84110eee35_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\678ad9c9cab124e2d6135d74280f702e_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\68c8e6c9459efec1030d6d54edc2c4be_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\69deb7ab5a64019d223c7fbb7f05196b_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\6a38ce9994189effd240b00d066bbe0a_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\6ab62a1c1d8cba89663e6d229bbb4293_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\6e5c69a600c6a4dd11016d403b2a7842_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\6f1876e172450f4a7d99632c75e4264f_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\6fdb897b4744bf5abf9077b1b0ff06b6_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\7080c2eb03a9b9c0ad13313ec3c15c8f_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\7188807b14a02457c3ee2df2779f5df4_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\71e48b11e38f4c6f2e5b517372bff685_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\739f9f52fa4f89cfd464ef0bb6f2f948_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\74aec7e570f190a8c87121145d794e5a_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\75d71d5fcaf26c289f9f76aa6d2a07b6_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\774c2d74d664734a48ef2b5ae175cc19_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\7953272f641ecacf1aa988c4c5c1ba1e_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\79844882bd2ae9d55466b4aea5e5929f_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\7a2cf1bbe56bdab759fdbd37056ce22e_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\7afcf3f1d6f81d2c5e4158726b998fbd_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\7b694fca798f08642abb1eff6d3fe520_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\7cc2e4cb04d2afe273707084f394ccf6_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\7fbfbee109087953b6ed2636ef487131_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\832b8389547ac1a9e58ff9283924b2b6_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\8510eaf8f1667f958f7bffce6411205f_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\8528227aa8004f5461135e563cc1f1fe_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\86b6834336f138dda115941286ad0597_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\88d21d45f586258000182ac37a3b3734_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\8afcb4485f4acbb512a75fe470487bf2_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\8bf897c70a07f85ca3df7a96e58ce4a0_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\8cdb59d143e330131e563ac6fc412713_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\8d1462b8b643827122a8bef73f825d67_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\8e6ee9e403ef5cd76d68555dedfc3d00_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\8f9a94f7e599a1627f0cf3c654c7e219_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\905e5d03397217a340049547ac99203e_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\9197e1e5bee2ee693e87cc6f5abb7999_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\92099bfbce711ec14b4d49539b9d96c8_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\93e46d8aa0570bed1fe576009b0d5086_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\957b5f8a10e2b76c0cac2924629c8cbf_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\96ffe135c91122f56cffb7fd3ebc2593_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\97a92cee3f26b95087e59ce3f4c2d5b5_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\97ef376461c17fe606b6d72dc8665271_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\97f1c5ffcb7176bf01f51f2ff18bd1eb_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\9c1abe05d3db60d3861e7840d0bb31a0_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\9e09f6e5711afff12f82c4a4d3f372e5_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\9f959d27359717394fbee3f8307057b6_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\a04db53614fa458ae281bc73cc64e08e_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\a06b280924e515dd692b10181a0dabf2_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\a11587ea2541176933b089086952be60_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\a1414e2b70bff66b6f6feaac7e92b5d8_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\a2411046e3502c7c49e1eb06b53a8d84_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\a4c5838ba6ebca1ece12c0c189beebc0_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\a6688889aa8cc659f8988c381736835f_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\a71bd91511985b0a1b692b4618a4cacb_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\a8159d3b56ec460f771dca81ce26b9dd_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\a871dea2b8a7d9f8290c19df6f941fc8_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\a87db87264047de1574007831cd0d3ad_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\a8a0064ce20c44fa71cba6911e38b2d5_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\aad8c54f8ebb421728847b9a2c6d64d0_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\aafb0bbd619ed7f173faaa537ab46e1d_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\abeebcc5d392f747fb5de7f0e5ffe29d_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\ae18e40e0d40aa8858870c370ec0256d_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\ae970049f7e335fe14f0918c016ec618_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\af4482044f2b12a14da3332c3e33a315_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\b24e50dfe51e49ced07d7dffbb60250d_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\b2565f9868466565bfaa59e41d042a73_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\b3d123635440aaae3a9855439beb219f_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\b4161674f3ccbbc8bd699737853a6f9a_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\b61247103c1bee137f99ff427bff7f4b_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\b677573a874dc845a8bf5ee1802b3fd2_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\b84cb277cf119da3dade18ba95dcd38b_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\b85ff69874437c995e1f83f0a43a6ad4_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\b911ada06d68404e1ee4d6ede9db7ae7_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\be07a7a5a45a166e3dd4bf68d0aab389_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\be9489ea8e8656e3deee8b222f9f2c4e_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\bea4f00224036ddfbca9bc69f3f4cecc_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\bf44c020e53bdb7d08c6f677ec2e7a59_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\c1e2b156393e5f7e86bfce6ae3a98da2_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\c292b029b384c5166276f9c5f4fa35f8_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\c2b811e7768c53fffde9474ff6a538a0_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\c34c16f121fd59a51023387bc1a8b144_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\c455b6928052f0d218361c72cc6aa9cb_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\c572874e04e3d28acc8d3b75ffdef1b9_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\c5831cbd89f7656b98f849a2c2dbcb5a_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\c606dad50e9f89daf696899602e6d84f_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\c6e1f4e55cbc8be3b31691d9d74fd737_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\c91b8ae4ce0ad0c0be976528bb90dadd_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\ca7478ebc1e8e3c6dcc7e66145625652_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\cba0c7d624fb7378b5e87731deea7d19_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\cc3a4551a37bd5bcfba1079e816639b7_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\cd64e640d0c5331a07757c4ba6bcef3d_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\cf7102ac0670f0eed0df20c7abf99a22_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\d16da1c9cb41b2a15003a0fe4a1dfaa3_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\d243538f94ee09f4501b420ab5b879b0_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\d3e00a77d504daea41e3f3db1a6214b8_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\d4374ffb3a7fe99df1992b23453e3979_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\d4452621ef9b2851751e5974d7a80f18_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\d47631909090debed5f05e812cfafe5a_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\d6bc07cbd8f40096e2b4b196b82d30c1_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\d6c502831fff712c35299ee0e819d5f8_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\d89920b73013e6183ac310f5e469d164_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\da34d46fcde8638f566f57eeb273abdf_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\dabf631e01d5928333b7a6a6e3750c6c_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\db2c40f887b653b3b45ae3f562cb2163_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\dbcd365a9fb4138e2b23dd49e4566814_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\dc37d916535bfcb080e5de308833100a_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\de86727f4a8b9cee5da3a9ee5b4622a6_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\dec005a4f51e877fbe22ec2233aaf9c2_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\e14f8efde814e1a93205647b2bef009b_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\e382f771b622c0cf3281ea8ca46ea09e_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\e58389f11ce7109733a03fceb207c999_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\e61aecb6a6f9da6ca3fdb15b46dcaeea_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\f099b009bc846cf41bbbcdf3bc35b82c_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\f2a6265145c228437ff5ebb50a887cf9_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\f4148fc59e65b7b75b79a140a4c30c5e_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\f50bb3618a3e659c666534183def1c77_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\f64f1584c559bb367b646f3d1158d0b0_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\f6ecdd0a4bdec54e6ee8fa7d2944bbac_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\f72ce72e68eaa104b1ba6a74b4903b4f_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\f73b43f965ecf40c995acfc998de3762_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\f8e90653e00e9572196b83de3b9de1dc_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\f92e71491711a48809538e0e5cd42339_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\fb6e030f43d074796d456a349d7940f5_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\fced979ae3b4f73206ebfbcbeda5862f_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\fedaf167de18e703b1e4e0e2588af677_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\fef0d535e6b91c507ac3c714a612dfec_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\ff8c862065c5013b70ff6bb367ebe5ee_6ccde0a1-7de0-4806-9c8e-266d8d36c487 - error opening [4]
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\f_001bd2 - error opening [4]
C:\Users\user\AppData\Local\Google\Update\1.3.21.115\GoogleUpdateHelper.msi » MSI » required.cab » CAB - error reading archive
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3CBU12DX\igh-2[2].swf » CWS » file.swf - archive damaged - the file could not be extracted.
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\DITNJOIR\900x250_stg_gloryholecomp[1].swf » CWS » file.swf - archive damaged - the file could not be extracted.
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\V1NVP65V\900x250_stg_gloryholecomp[1].swf » CWS » file.swf - archive damaged - the file could not be extracted.
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WCDNFA7L\m_photog_a[1].swf » CWS » file.swf - archive damaged - the file could not be extracted.
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WCDNFA7L\m_winball_a[1].swf » CWS » file.swf - archive damaged - the file could not be extracted.
C:\Users\user\AppData\Local\Microsoft\Windows Live Mail\Sentinel\WLMailSearchSentinel.eml » MIME - is OK (internal scanning not performed)
C:\Users\user\AppData\Local\Microsoft\Windows Mail\Local Folders\Inbox\54E80482-00000001.eml » MIME - is OK (internal scanning not performed)
C:\Users\user\AppData\Local\Temp\jre-6u29-windows-i586-iftw-rv.exe » CAB » jusched - archive damaged - the file could not be extracted.
C:\Users\user\AppData\Local\Temp\jre-6u29-windows-i586-iftw-rv.exe » CAB » task.xml - archive damaged - the file could not be extracted.
C:\Users\user\AppData\Local\Temp\jre-6u29-windows-i586-iftw-rv.exe » CAB » task64.xml - archive damaged - the file could not be extracted.
C:\Users\user\AppData\Local\Temp\jre-6u31-windows-i586-iftw-rv.exe » CAB » jusched - archive damaged - the file could not be extracted.
C:\Users\user\AppData\Local\Temp\jre-6u31-windows-i586-iftw-rv.exe » CAB » task.xml - archive damaged - the file could not be extracted.
C:\Users\user\AppData\Local\Temp\jre-6u31-windows-i586-iftw-rv.exe » CAB » task64.xml - archive damaged - the file could not be extracted.
C:\Users\user\AppData\Local\Temp\jre-7u5-windows-i586-iftw.exe » CAB » jusched - archive damaged - the file could not be extracted.
C:\Users\user\AppData\Local\Temp\jre-7u5-windows-i586-iftw.exe » CAB » task.xml - archive damaged - the file could not be extracted.
C:\Users\user\AppData\Local\Temp\jre-7u5-windows-i586-iftw.exe » CAB » task64.xml - archive damaged - the file could not be extracted.
C:\Users\user\AppData\Local\Temp\DDMCache\7000.4664685.avi&b=390.ddr » SMARTINSTALLMAKER;VER=2 - error - unknown compression method
C:\Users\user\AppData\Local\Temp\{8C857CD8-0DF6-4A97-85AF-026E8134AB97}\GoogleUpdateHelper.msi » MSI » required.cab » CAB - error reading archive
C:\Users\user\Downloads\chromeinstall-6u27.exe » CAB » jusched - archive damaged - the file could not be extracted.
C:\Users\user\Downloads\chromeinstall-6u27.exe » CAB » task.xml - archive damaged - the file could not be extracted.
C:\Users\user\Downloads\chromeinstall-6u27.exe » CAB » task64.xml - archive damaged - the file could not be extracted.
C:\Users\user\Downloads\freevideotogif.exe » INNO » {app}\FreeVideotoGIFConverter.exe » ENIGMA - unpack error
C:\Windows\MEMORY.DMP - error opening [4]
C:\Windows\Installer\436c32c.msi » MSI » required.cab » CAB - error reading archive
C:\Windows\Logs\CBS\CBS.log - error opening [4]
C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe.config - error opening [4]
C:\Windows\Panther\UnattendGC\diagerr.xml - error opening [4]
C:\Windows\Panther\UnattendGC\diagwrn.xml - error opening [4]
C:\Windows\Panther\UnattendGC\setupact.log - error opening [4]
C:\Windows\Panther\UnattendGC\setuperr.log - error opening [4]
C:\Windows\PLA\System\System Diagnostics.xml - error opening [4]
C:\Windows\PLA\System\System Performance.xml - error opening [4]
C:\Windows\security\database\secedit.sdb - error opening [4]
C:\Windows\System32\restore\MachineGuid.txt - error opening [4]
C:\Windows\System32\sysprep\Panther\IE\diagerr.xml - error opening [4]
C:\Windows\System32\sysprep\Panther\IE\diagwrn.xml - error opening [4]
C:\Windows\System32\sysprep\Panther\IE\setupact.log - error opening [4]
C:\Windows\System32\sysprep\Panther\IE\setuperr.log - error opening [4]
C:\Windows\System32\wbem\AutoRecover\5774C77265BE4C55B5C6C9718979E015.mof - error opening [4]
C:\Windows\System32\wbem\AutoRecover\6F8564A71977AE6B940705DCC4847A8D.mof - error opening [4]
C:\Windows\System32\wbem\AutoRecover\75054C3771DF289038069A9BB1C1FB6E.mof - error opening [4]
C:\Windows\System32\wbem\AutoRecover\844A429FB6680A32838047A6271F8CD9.mof - error opening [4]
C:\Windows\System32\wbem\AutoRecover\97823DC673AD0F92AB9B83F4C177678B.mof - error opening [4]
C:\Windows\System32\wbem\AutoRecover\99A0139C6E79D7AD8910304DC76ADDCE.mof - error opening [4]
C:\Windows\System32\wbem\AutoRecover\D361F8B496FD6DAF7BEEF497E09C0DC1.mof - error opening [4]
C:\Windows\System32\wbem\AutoRecover\DFB9AD54AC2D3B8122567AAD3BF3EB7F.mof - error opening [4]
C:\Windows\System32\wbem\AutoRecover\E478A5DB75C9721E744C05D78DBACFD3.mof - error opening [4]
C:\Windows\System32\wbem\AutoRecover\E9D8A460B2C986DD5FF19F299F4A27EC.mof - error opening [4]
C:\Windows\System32\wbem\AutoRecover\EDB534A0AD75CF6CD3441C25046B8E9A.mof - error opening [4]
C:\Windows\System32\wbem\AutoRecover\F1326650D965B0087F10C6AA6C049D46.mof - error opening [4]
C:\Windows\System32\wbem\AutoRecover\F5E2A66F8CD81F282CEFFB9E8125CC6F.mof - error opening [4]
C:\Windows\System32\winevt\Logs\Application.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\HardwareEvents.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Internet Explorer.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Key Management Service.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Media Center.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Application-Experience%4Problem-Steps-Recorder.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Application-Experience%4Program-Compatibility-Assistant.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Application-Experience%4Program-Compatibility-Troubleshooter.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Application-Experience%4Program-Inventory.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Application-Experience%4Program-Telemetry.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Audio%4CaptureMonitor.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Audio%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Backup.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Bits-Client%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-CodeIntegrity%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Dhcp-Client%4Admin.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Dhcpv6-Client%4Admin.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-DPS%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-PCW%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-PLA%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-Scheduled%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-Scripted%4Admin.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-Scripted%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-ScriptedDiagnosticsProvider%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnostics-Networking%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnostics-Performance%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-DiskDiagnosticDataCollector%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-DriverFrameworks-UserMode%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Fault-Tolerant-Heap%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-GroupPolicy%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Help%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-HomeGroup Provider Service%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-EventTracing%4Admin.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-Power%4Thermal-Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-StoreMgr%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-WHEA%4Errors.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-WHEA%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Known Folders API Service.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-LanguagePackSetup%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-MUI%4Admin.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-MUI%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-NCSI%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-NetworkAccessProtection%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-NetworkAccessProtection%4WHC.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-NetworkLocationWizard%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-NetworkProfile%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-ParentalControls%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-PrintService%4Admin.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-ReadyBoost%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-ReliabilityAnalysisComponent%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\microsoft-windows-RemoteDesktopServices-RemoteDesktopSessionManager%4Admin.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Resource-Exhaustion-Detector%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Resource-Exhaustion-Resolver%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-RestartManager%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-TerminalServices-ClientUSBDevices%4Admin.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-TerminalServices-ClientUSBDevices%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-TerminalServices-LocalSessionManager%4Admin.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-TerminalServices-LocalSessionManager%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-TerminalServices-RDPClient%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-TerminalServices-RemoteConnectionManager%4Admin.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-TerminalServices-RemoteConnectionManager%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-UAC%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-UAC-FileVirtualization%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-User Profile Service%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-WER-Diag%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Windows Defender%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Windows Defender%4WHC.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Windows Firewall With Advanced Security%4ConnectionSecurity.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Windows Firewall With Advanced Security%4Firewall.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-WindowsBackup%4ActionCenter.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-WindowsSystemAssessmentTool%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-WindowsUpdateClient%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Winlogon%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-WLAN-AutoConfig%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Microsoft-Windows-WPD-MTPClassDriver%4Operational.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\ODiag.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\OSession.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Security.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Setup.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\System.evtx - error opening [4]
C:\Windows\System32\winevt\Logs\Windows PowerShell.evtx - error opening [4]
C:\Windows\Tasks\Adobe Flash Player Updater.job - error opening [4]
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job - error opening [4]
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job - error opening [4]
C:\Windows\winsxs\x86_microsoft-windows-n..n_service_datastore_31bf3856ad364e35_6.1.7600.16385_none_d104e6cf97534cc4\dnary.xsd - error opening [4]
C:\Windows\winsxs\x86_microsoft-windows-n..n_service_datastore_31bf3856ad364e35_6.1.7601.17514_none_d335fa979441d05e\dnary.xsd - error opening [4]
Number of scanned objects: 410316
Number of threats found: 0
Time of completion: 08:27:50 Total scanning time: 27311 sec (07:35:11)

Notes:
[4] Object cannot be opened. It may be in use by another application or operating system.

#11 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:34 AM

Posted 22 August 2012 - 04:15 AM

You're posting ESET security log again

Did you run ESET online scanner ?

C:\Program Files\ESET\EsetOnlineScanner\log.txt

Post the log content here

#12 thebritish

thebritish
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:08:34 AM

Posted 22 August 2012 - 04:58 AM

Yes I did run it. Thanks for helping me find the log, here it is:


ESETSmartInstaller@High as downloader log:
all ok
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=6bedc4f9dbc15e4dac8bab7f8b919aa8
# end=finished
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2012-08-20 06:53:37
# local_time=2012-08-20 07:53:37 (+0000, GMT Daylight Time)
# country="United Kingdom"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=5893 16776573 100 94 225373 97949562 0 0
# compatibility_mode=8201 39157117 100 100 5590 78633139 0 0
# scanned=124085
# found=1
# cleaned=0
# scan_time=5647
# nod_component=V3 Build:0x30000000
${Memory} multiple threats 00000000000000000000000000000000 I
ESETSmartInstaller@High as downloader log:
all ok
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=6bedc4f9dbc15e4dac8bab7f8b919aa8
# end=finished
# remove_checked=true
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2012-08-21 02:12:06
# local_time=2012-08-21 03:12:06 (+0000, GMT Daylight Time)
# country="United Kingdom"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=5893 16776573 100 94 12984 98017388 0 0
# compatibility_mode=8201 39157117 100 100 103 78700965 0 0
# scanned=124188
# found=1
# cleaned=0
# scan_time=7330
# nod_component=V3 Build:0x30000000
${Memory} multiple threats 00000000000000000000000000000000 I
ESETSmartInstaller@High as downloader log:
all ok
ESETSmartInstaller@High as downloader log:
all ok
esets_scanner_update returned -1 esets_gle=53251
ESETSmartInstaller@High as downloader log:
all ok
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=6bedc4f9dbc15e4dac8bab7f8b919aa8
# end=stopped
# remove_checked=true
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2012-08-21 08:58:49
# local_time=2012-08-21 09:58:49 (+0000, GMT Daylight Time)
# country="United Kingdom"
# lang=1033
# osver=6.0.6000 NT
# compatibility_mode=5893 16776573 100 94 29765 98034169 0 0
# compatibility_mode=8201 39157117 100 100 16884 78717746 0 0
# scanned=28719
# found=0
# cleaned=0
# scan_time=14955
# nod_component=V3 Build:0x30000000
ESETSmartInstaller@High as downloader log:
all ok
esets_scanner_update returned -1 esets_gle=53251
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=6bedc4f9dbc15e4dac8bab7f8b919aa8
# end=finished
# remove_checked=true
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2012-08-21 11:45:47
# local_time=2012-08-22 12:45:47 (+0000, GMT Daylight Time)
# country="United Kingdom"
# lang=1033
# osver=6.0.6000 NT
# compatibility_mode=5893 16776573 100 94 47091 98051495 0 0
# compatibility_mode=8201 39157117 100 100 16101 78735072 0 0
# scanned=124586
# found=0
# cleaned=0
# scan_time=7646
# nod_component=V3 Build:0x30000000

Edited by thebritish, 22 August 2012 - 05:03 AM.


#13 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:34 AM

Posted 22 August 2012 - 05:04 AM

Download

System look

Launch it and copy this script

:filefind
svchost.exe

Click on look,post the generated log

#14 thebritish

thebritish
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:08:34 AM

Posted 22 August 2012 - 05:49 AM

SystemLook 30.07.11 by jpshortstuff
Log created at 11:47 on 22/08/2012 by user
Administrator - Elevation successful

========== filefind ==========

Searching for "svchost.exe"
C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\svchost.exe --a---- 217672 bytes [15:24 21/08/2012] [12:46 03/07/2012] 8A7F34F0BBD076EC3815680A7309114F
C:\Windows\System32\svchost.exe --a---- 20992 bytes [23:19 13/07/2009] [01:14 14/07/2009] 54A47F6B5E09A77E61649109C6A08866
C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe --a---- 20992 bytes [23:19 13/07/2009] [01:14 14/07/2009] 54A47F6B5E09A77E61649109C6A08866

-= EOF =-

#15 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:34 AM

Posted 22 August 2012 - 05:58 AM

Download a new copy of TDSSkiller and post the new log

Run malwarebytes again until you get a clean log,post it here

download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users