Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Am I still infected?


  • Please log in to reply
18 replies to this topic

#1 Ms_Kim

Ms_Kim

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:04:31 AM

Posted 26 August 2012 - 02:07 PM

Hi
I am new here and hope you can help me.
I am normally very careful but for the first time in 10 years of being on the net, I've got caught.
I got hit by the ukash trojan which locked my PC. I managed to get into safe mode and ran MBAM which quarantined 3 ransome trojans. On rebooting normally the lock up screen is no longer appearing, but I am unsure if I got rid of it. I have also scanned again with MBAM, Avast and PC Matic which all come up clean, but how can I be sure it's gone? Is there anything else I can do?
I am running windows 7
Thanks in advance for any help

Edited by Ms_Kim, 26 August 2012 - 02:08 PM.


BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:31 PM

Posted 26 August 2012 - 02:08 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 Ms_Kim

Ms_Kim
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:04:31 AM

Posted 26 August 2012 - 02:12 PM

Thanks for your quick reply, do you want all logs in one post?

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:31 PM

Posted 26 August 2012 - 02:13 PM

yes :)

#5 Ms_Kim

Ms_Kim
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:04:31 AM

Posted 26 August 2012 - 02:32 PM

The avast scan appears to taking a long time, not sure if it's finished or not, will it inform me when it's done?

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:31 PM

Posted 26 August 2012 - 02:34 PM

After completion of scan,SAVE LOG option should be visible

#7 Ms_Kim

Ms_Kim
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:04:31 AM

Posted 26 August 2012 - 04:33 PM

Sorry for late reply, 3rd scan took a long time

Results of scans

20:15:34.0489 1824 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
20:15:34.0787 1824 ============================================================
20:15:34.0787 1824 Current date / time: 2012/08/26 20:15:34.0787
20:15:34.0787 1824 SystemInfo:
20:15:34.0787 1824
20:15:34.0787 1824 OS Version: 6.1.7601 ServicePack: 1.0
20:15:34.0787 1824 Product type: Workstation
20:15:34.0787 1824 ComputerName: KIM-PC
20:15:34.0787 1824 UserName: KIM
20:15:34.0787 1824 Windows directory: C:\Windows
20:15:34.0787 1824 System windows directory: C:\Windows
20:15:34.0787 1824 Running under WOW64
20:15:34.0787 1824 Processor architecture: Intel x64
20:15:34.0787 1824 Number of processors: 8
20:15:34.0787 1824 Page size: 0x1000
20:15:34.0787 1824 Boot type: Normal boot
20:15:34.0787 1824 ============================================================
20:15:35.0145 1824 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:15:35.0192 1824 ============================================================
20:15:35.0192 1824 \Device\Harddisk0\DR0:
20:15:35.0192 1824 MBR partitions:
20:15:35.0192 1824 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1C00800, BlocksNum 0x32000
20:15:35.0192 1824 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1C32800, BlocksNum 0x394E7000
20:15:35.0192 1824 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x3B119800, BlocksNum 0x395EC800
20:15:35.0192 1824 ============================================================
20:15:35.0254 1824 C: <-> \Device\Harddisk0\DR0\Partition2
20:15:35.0298 1824 D: <-> \Device\Harddisk0\DR0\Partition3
20:15:35.0298 1824 ============================================================
20:15:35.0298 1824 Initialize success
20:15:35.0298 1824 ============================================================
20:15:51.0233 4776 ============================================================
20:15:51.0233 4776 Scan started
20:15:51.0233 4776 Mode: Manual;
20:15:51.0233 4776 ============================================================
20:15:51.0596 4776 ================ Scan system memory ========================
20:15:51.0596 4776 System memory - ok
20:15:51.0597 4776 ================ Scan services =============================
20:15:51.0718 4776 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
20:15:51.0721 4776 1394ohci - ok
20:15:51.0752 4776 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
20:15:51.0756 4776 ACPI - ok
20:15:51.0765 4776 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
20:15:51.0767 4776 AcpiPmi - ok
20:15:51.0854 4776 [ 6D9FC1E7EA3C548F4D3455F0C3FEEF8C ] AdobeActiveFileMonitor7.0 c:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe
20:15:51.0857 4776 AdobeActiveFileMonitor7.0 - ok
20:15:51.0890 4776 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
20:15:51.0897 4776 adp94xx - ok
20:15:51.0918 4776 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
20:15:51.0923 4776 adpahci - ok
20:15:51.0947 4776 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
20:15:51.0950 4776 adpu320 - ok
20:15:51.0974 4776 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
20:15:51.0976 4776 AeLookupSvc - ok
20:15:52.0043 4776 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
20:15:52.0050 4776 AFD - ok
20:15:52.0081 4776 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
20:15:52.0083 4776 agp440 - ok
20:15:52.0103 4776 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
20:15:52.0105 4776 ALG - ok
20:15:52.0116 4776 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
20:15:52.0117 4776 aliide - ok
20:15:52.0163 4776 [ 9C616BA191B80F5CD1A1B9553E107100 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
20:15:52.0167 4776 AMD External Events Utility - ok
20:15:52.0182 4776 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
20:15:52.0183 4776 amdide - ok
20:15:52.0201 4776 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
20:15:52.0203 4776 AmdK8 - ok
20:15:52.0429 4776 [ 5165E83751B8FF40E5E4925996FCC506 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
20:15:52.0592 4776 amdkmdag - ok
20:15:52.0630 4776 [ 86AB3CF484260C4318F3A6E8B035F422 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
20:15:52.0636 4776 amdkmdap - ok
20:15:52.0661 4776 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
20:15:52.0663 4776 AmdPPM - ok
20:15:52.0689 4776 [ 6EC6D772EAE38DC17C14AED9B178D24B ] amdsata C:\Windows\system32\drivers\amdsata.sys
20:15:52.0691 4776 amdsata - ok
20:15:52.0714 4776 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
20:15:52.0718 4776 amdsbs - ok
20:15:52.0731 4776 [ 1142A21DB581A84EA5597B03A26EBAA0 ] amdxata C:\Windows\system32\drivers\amdxata.sys
20:15:52.0732 4776 amdxata - ok
20:15:52.0761 4776 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
20:15:52.0763 4776 AppID - ok
20:15:52.0781 4776 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
20:15:52.0782 4776 AppIDSvc - ok
20:15:52.0815 4776 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
20:15:52.0817 4776 Appinfo - ok
20:15:52.0832 4776 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
20:15:52.0834 4776 arc - ok
20:15:52.0846 4776 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
20:15:52.0848 4776 arcsas - ok
20:15:52.0885 4776 ASTSRV - ok
20:15:52.0921 4776 [ 55142B4F7A7E4C9C151C6000A6BF7809 ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
20:15:52.0922 4776 aswFsBlk - ok
20:15:52.0982 4776 [ C42D45089FD2EC63D13571362C258DC6 ] aswKbd C:\Windows\system32\drivers\aswKbd.sys
20:15:52.0984 4776 aswKbd - ok
20:15:53.0023 4776 [ AA9FDE3D630160B47DAB21BF8250111C ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
20:15:53.0025 4776 aswMonFlt - ok
20:15:53.0057 4776 [ 2A6675C24DF5159A9506CD13ECE5ABE9 ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
20:15:53.0059 4776 aswRdr - ok
20:15:53.0129 4776 [ 4E38475BDB51A867CCBA7D5DF7FDFC0C ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
20:15:53.0141 4776 aswSnx - ok
20:15:53.0174 4776 [ 9A49D80D65451AF22913AEF772CC3DA9 ] aswSP C:\Windows\system32\drivers\aswSP.sys
20:15:53.0179 4776 aswSP - ok
20:15:53.0191 4776 [ C3EC420451AC5300A22190AE38418FBA ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
20:15:53.0193 4776 aswTdi - ok
20:15:53.0203 4776 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
20:15:53.0205 4776 AsyncMac - ok
20:15:53.0233 4776 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
20:15:53.0235 4776 atapi - ok
20:15:53.0301 4776 [ D481083348138B4933ACFE95812DB71C ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
20:15:53.0304 4776 AtiHdmiService - ok
20:15:53.0475 4776 [ 5165E83751B8FF40E5E4925996FCC506 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
20:15:53.0514 4776 atikmdag - ok
20:15:53.0541 4776 [ 64F07381335E37C142F6D176705FFCA6 ] atksgt C:\Windows\system32\DRIVERS\atksgt.sys
20:15:53.0544 4776 atksgt - ok
20:15:53.0588 4776 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:15:53.0598 4776 AudioEndpointBuilder - ok
20:15:53.0611 4776 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
20:15:53.0616 4776 AudioSrv - ok
20:15:53.0669 4776 [ 04AC21E821F259845BD7367CEE057290 ] avast! Antivirus C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
20:15:53.0670 4776 avast! Antivirus - ok
20:15:53.0709 4776 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
20:15:53.0712 4776 AxInstSV - ok
20:15:53.0754 4776 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
20:15:53.0761 4776 b06bdrv - ok
20:15:53.0799 4776 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
20:15:53.0803 4776 b57nd60a - ok
20:15:53.0843 4776 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
20:15:53.0845 4776 BDESVC - ok
20:15:53.0860 4776 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
20:15:53.0861 4776 Beep - ok
20:15:53.0925 4776 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
20:15:53.0935 4776 BFE - ok
20:15:54.0006 4776 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
20:15:54.0020 4776 BITS - ok
20:15:54.0063 4776 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
20:15:54.0065 4776 blbdrive - ok
20:15:54.0096 4776 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
20:15:54.0098 4776 bowser - ok
20:15:54.0116 4776 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
20:15:54.0118 4776 BrFiltLo - ok
20:15:54.0135 4776 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
20:15:54.0136 4776 BrFiltUp - ok
20:15:54.0163 4776 [ 8EF0D5C41EC907751B8429162B1239ED ] Browser C:\Windows\System32\browser.dll
20:15:54.0166 4776 Browser - ok
20:15:54.0186 4776 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
20:15:54.0191 4776 Brserid - ok
20:15:54.0208 4776 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
20:15:54.0210 4776 BrSerWdm - ok
20:15:54.0225 4776 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
20:15:54.0226 4776 BrUsbMdm - ok
20:15:54.0236 4776 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
20:15:54.0237 4776 BrUsbSer - ok
20:15:54.0252 4776 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
20:15:54.0254 4776 BTHMODEM - ok
20:15:54.0276 4776 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
20:15:54.0278 4776 bthserv - ok
20:15:54.0292 4776 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
20:15:54.0295 4776 cdfs - ok
20:15:54.0323 4776 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
20:15:54.0326 4776 cdrom - ok
20:15:54.0360 4776 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
20:15:54.0362 4776 CertPropSvc - ok
20:15:54.0367 4776 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
20:15:54.0369 4776 circlass - ok
20:15:54.0396 4776 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
20:15:54.0402 4776 CLFS - ok
20:15:54.0474 4776 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:15:54.0476 4776 clr_optimization_v2.0.50727_32 - ok
20:15:54.0537 4776 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:15:54.0538 4776 clr_optimization_v2.0.50727_64 - ok
20:15:54.0625 4776 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:15:54.0628 4776 clr_optimization_v4.0.30319_32 - ok
20:15:54.0660 4776 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:15:54.0663 4776 clr_optimization_v4.0.30319_64 - ok
20:15:54.0681 4776 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
20:15:54.0683 4776 CmBatt - ok
20:15:54.0698 4776 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
20:15:54.0700 4776 cmdide - ok
20:15:54.0741 4776 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
20:15:54.0748 4776 CNG - ok
20:15:54.0792 4776 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
20:15:54.0793 4776 Compbatt - ok
20:15:54.0835 4776 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
20:15:54.0837 4776 CompositeBus - ok
20:15:54.0841 4776 COMSysApp - ok
20:15:54.0853 4776 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
20:15:54.0854 4776 crcdisk - ok
20:15:54.0894 4776 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
20:15:54.0898 4776 CryptSvc - ok
20:15:54.0944 4776 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
20:15:54.0955 4776 DcomLaunch - ok
20:15:55.0019 4776 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
20:15:55.0024 4776 defragsvc - ok
20:15:55.0071 4776 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
20:15:55.0074 4776 DfsC - ok
20:15:55.0117 4776 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
20:15:55.0123 4776 Dhcp - ok
20:15:55.0141 4776 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
20:15:55.0143 4776 discache - ok
20:15:55.0173 4776 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
20:15:55.0175 4776 Disk - ok
20:15:55.0209 4776 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
20:15:55.0213 4776 Dnscache - ok
20:15:55.0244 4776 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
20:15:55.0250 4776 dot3svc - ok
20:15:55.0275 4776 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
20:15:55.0279 4776 DPS - ok
20:15:55.0312 4776 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
20:15:55.0314 4776 drmkaud - ok
20:15:55.0358 4776 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
20:15:55.0371 4776 DXGKrnl - ok
20:15:55.0422 4776 [ 52A482DC61F24B498C8268866B90BB44 ] e1kexpress C:\Windows\system32\DRIVERS\e1k62x64.sys
20:15:55.0427 4776 e1kexpress - ok
20:15:55.0471 4776 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
20:15:55.0473 4776 EapHost - ok
20:15:55.0543 4776 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
20:15:55.0608 4776 ebdrv - ok
20:15:55.0642 4776 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
20:15:55.0645 4776 EFS - ok
20:15:55.0697 4776 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
20:15:55.0703 4776 ehRecvr - ok
20:15:55.0723 4776 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
20:15:55.0724 4776 ehSched - ok
20:15:55.0761 4776 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
20:15:55.0768 4776 elxstor - ok
20:15:55.0849 4776 [ 1E345F2A2D95DA3190596E691CDE9342 ] EPSON_PM_RPCV4_01 C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
20:15:55.0851 4776 EPSON_PM_RPCV4_01 - ok
20:15:55.0881 4776 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
20:15:55.0883 4776 ErrDev - ok
20:15:55.0915 4776 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
20:15:55.0922 4776 EventSystem - ok
20:15:55.0943 4776 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
20:15:55.0946 4776 exfat - ok
20:15:55.0969 4776 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
20:15:55.0973 4776 fastfat - ok
20:15:56.0020 4776 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
20:15:56.0032 4776 Fax - ok
20:15:56.0065 4776 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
20:15:56.0067 4776 fdc - ok
20:15:56.0085 4776 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
20:15:56.0088 4776 fdPHost - ok
20:15:56.0096 4776 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
20:15:56.0099 4776 FDResPub - ok
20:15:56.0108 4776 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
20:15:56.0110 4776 FileInfo - ok
20:15:56.0121 4776 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
20:15:56.0123 4776 Filetrace - ok
20:15:56.0171 4776 [ F76D04F7413B07DAA029F6520B64B4E8 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
20:15:56.0177 4776 FLEXnet Licensing Service - ok
20:15:56.0208 4776 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
20:15:56.0209 4776 flpydisk - ok
20:15:56.0248 4776 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
20:15:56.0253 4776 FltMgr - ok
20:15:56.0304 4776 [ B4447F606BB19FD8AD0BAFB59B90F5D9 ] FontCache C:\Windows\system32\FntCache.dll
20:15:56.0330 4776 FontCache - ok
20:15:56.0385 4776 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:15:56.0386 4776 FontCache3.0.0.0 - ok
20:15:56.0416 4776 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
20:15:56.0418 4776 FsDepends - ok
20:15:56.0455 4776 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
20:15:56.0456 4776 Fs_Rec - ok
20:15:56.0514 4776 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
20:15:56.0518 4776 fvevol - ok
20:15:56.0539 4776 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
20:15:56.0541 4776 gagp30kx - ok
20:15:56.0573 4776 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
20:15:56.0585 4776 gpsvc - ok
20:15:56.0671 4776 [ 816FD5A6F3C2F3D600900096632FC60E ] Greg_Service C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe
20:15:56.0681 4776 Greg_Service - ok
20:15:56.0741 4776 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:15:56.0743 4776 gupdate - ok
20:15:56.0772 4776 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:15:56.0774 4776 gupdatem - ok
20:15:56.0801 4776 [ CC839E8D766CC31A7710C9F38CF3E375 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
20:15:56.0803 4776 gusvc - ok
20:15:56.0825 4776 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
20:15:56.0827 4776 hcw85cir - ok
20:15:56.0870 4776 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
20:15:56.0876 4776 HdAudAddService - ok
20:15:56.0901 4776 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
20:15:56.0902 4776 HDAudBus - ok
20:15:56.0912 4776 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
20:15:56.0913 4776 HidBatt - ok
20:15:56.0929 4776 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
20:15:56.0931 4776 HidBth - ok
20:15:56.0942 4776 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
20:15:56.0945 4776 HidIr - ok
20:15:56.0979 4776 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
20:15:56.0983 4776 hidserv - ok
20:15:57.0020 4776 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
20:15:57.0022 4776 HidUsb - ok
20:15:57.0054 4776 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
20:15:57.0058 4776 hkmsvc - ok
20:15:57.0098 4776 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
20:15:57.0104 4776 HomeGroupListener - ok
20:15:57.0139 4776 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
20:15:57.0146 4776 HomeGroupProvider - ok
20:15:57.0168 4776 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
20:15:57.0170 4776 HpSAMD - ok
20:15:57.0225 4776 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
20:15:57.0236 4776 HTTP - ok
20:15:57.0321 4776 [ 129128E192F9470EB92DB28B6730B06B ] hugoio64 C:\Program Files (x86)\i-Menu\hugoio64.sys
20:15:57.0322 4776 hugoio64 - ok
20:15:57.0355 4776 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
20:15:57.0357 4776 hwpolicy - ok
20:15:57.0386 4776 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
20:15:57.0389 4776 i8042prt - ok
20:15:57.0454 4776 [ 660BF3255A1EB18ED803FD2FBA6AE400 ] IAANTMON C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
20:15:57.0458 4776 IAANTMON - ok
20:15:57.0493 4776 [ BE7D72FCF442C26975942007E0831241 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
20:15:57.0497 4776 iaStor - ok
20:15:57.0522 4776 [ 3DF4395A7CF8B7A72A5F4606366B8C2D ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
20:15:57.0529 4776 iaStorV - ok
20:15:57.0611 4776 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
20:15:57.0612 4776 IDriverT - ok
20:15:57.0663 4776 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:15:57.0671 4776 idsvc - ok
20:15:57.0707 4776 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
20:15:57.0709 4776 iirsp - ok
20:15:57.0747 4776 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
20:15:57.0761 4776 IKEEXT - ok
20:15:57.0878 4776 [ 5F6A3EA5BD7CA861863A3A06CECC115C ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
20:15:57.0948 4776 IntcAzAudAddService - ok
20:15:57.0965 4776 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
20:15:57.0966 4776 intelide - ok
20:15:57.0991 4776 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
20:15:57.0992 4776 intelppm - ok
20:15:58.0012 4776 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
20:15:58.0016 4776 IPBusEnum - ok
20:15:58.0053 4776 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:15:58.0056 4776 IpFilterDriver - ok
20:15:58.0095 4776 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
20:15:58.0104 4776 iphlpsvc - ok
20:15:58.0145 4776 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
20:15:58.0148 4776 IPMIDRV - ok
20:15:58.0165 4776 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
20:15:58.0167 4776 IPNAT - ok
20:15:58.0199 4776 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
20:15:58.0200 4776 IRENUM - ok
20:15:58.0214 4776 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
20:15:58.0216 4776 isapnp - ok
20:15:58.0239 4776 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
20:15:58.0244 4776 iScsiPrt - ok
20:15:58.0280 4776 [ 75DDB94A2A24F9F7037D10A2DDA06D36 ] JRAID C:\Windows\system32\DRIVERS\jraid.sys
20:15:58.0282 4776 JRAID - ok
20:15:58.0313 4776 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
20:15:58.0315 4776 kbdclass - ok
20:15:58.0344 4776 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
20:15:58.0346 4776 kbdhid - ok
20:15:58.0364 4776 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
20:15:58.0367 4776 KeyIso - ok
20:15:58.0413 4776 KMWDSERVICE - ok
20:15:58.0447 4776 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
20:15:58.0449 4776 KSecDD - ok
20:15:58.0466 4776 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
20:15:58.0469 4776 KSecPkg - ok
20:15:58.0484 4776 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
20:15:58.0486 4776 ksthunk - ok
20:15:58.0527 4776 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
20:15:58.0535 4776 KtmRm - ok
20:15:58.0557 4776 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
20:15:58.0565 4776 LanmanServer - ok
20:15:58.0607 4776 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:15:58.0615 4776 LanmanWorkstation - ok
20:15:58.0679 4776 [ 83BA097ACAAD0B00505634A62D90F93A ] lirsgt C:\Windows\system32\DRIVERS\lirsgt.sys
20:15:58.0681 4776 lirsgt - ok
20:15:58.0722 4776 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
20:15:58.0724 4776 lltdio - ok
20:15:58.0750 4776 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
20:15:58.0757 4776 lltdsvc - ok
20:15:58.0776 4776 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
20:15:58.0779 4776 lmhosts - ok
20:15:58.0813 4776 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
20:15:58.0816 4776 LSI_FC - ok
20:15:58.0833 4776 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
20:15:58.0835 4776 LSI_SAS - ok
20:15:58.0848 4776 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
20:15:58.0850 4776 LSI_SAS2 - ok
20:15:58.0867 4776 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
20:15:58.0870 4776 LSI_SCSI - ok
20:15:58.0897 4776 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
20:15:58.0900 4776 luafv - ok
20:15:58.0936 4776 [ 8FF2D95CBA49B405C5DE27039FF0BF35 ] MBfilt C:\Windows\system32\drivers\MBfilt64.sys
20:15:58.0938 4776 MBfilt - ok
20:15:58.0991 4776 [ F453D1E6D881E8F8717E20CCD4199E85 ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe
20:15:58.0993 4776 McComponentHostService - ok
20:15:59.0018 4776 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
20:15:59.0023 4776 Mcx2Svc - ok
20:15:59.0045 4776 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
20:15:59.0046 4776 megasas - ok
20:15:59.0067 4776 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
20:15:59.0072 4776 MegaSR - ok
20:15:59.0087 4776 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
20:15:59.0091 4776 MMCSS - ok
20:15:59.0102 4776 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
20:15:59.0104 4776 Modem - ok
20:15:59.0129 4776 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
20:15:59.0130 4776 monitor - ok
20:15:59.0144 4776 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
20:15:59.0146 4776 mouclass - ok
20:15:59.0177 4776 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
20:15:59.0179 4776 mouhid - ok
20:15:59.0207 4776 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
20:15:59.0210 4776 mountmgr - ok
20:15:59.0285 4776 [ 46297FA8E30A6007F14118FC2B942FBC ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
20:15:59.0287 4776 MozillaMaintenance - ok
20:15:59.0315 4776 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
20:15:59.0319 4776 mpio - ok
20:15:59.0337 4776 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
20:15:59.0339 4776 mpsdrv - ok
20:15:59.0379 4776 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
20:15:59.0393 4776 MpsSvc - ok
20:15:59.0426 4776 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
20:15:59.0429 4776 MRxDAV - ok
20:15:59.0459 4776 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
20:15:59.0463 4776 mrxsmb - ok
20:15:59.0493 4776 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:15:59.0498 4776 mrxsmb10 - ok
20:15:59.0526 4776 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:15:59.0529 4776 mrxsmb20 - ok
20:15:59.0539 4776 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
20:15:59.0540 4776 msahci - ok
20:15:59.0555 4776 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
20:15:59.0558 4776 msdsm - ok
20:15:59.0576 4776 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
20:15:59.0582 4776 MSDTC - ok
20:15:59.0613 4776 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
20:15:59.0615 4776 Msfs - ok
20:15:59.0632 4776 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
20:15:59.0634 4776 mshidkmdf - ok
20:15:59.0652 4776 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
20:15:59.0653 4776 msisadrv - ok
20:15:59.0689 4776 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
20:15:59.0694 4776 MSiSCSI - ok
20:15:59.0698 4776 msiserver - ok
20:15:59.0727 4776 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
20:15:59.0728 4776 MSKSSRV - ok
20:15:59.0752 4776 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
20:15:59.0754 4776 MSPCLOCK - ok
20:15:59.0761 4776 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
20:15:59.0762 4776 MSPQM - ok
20:15:59.0791 4776 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
20:15:59.0797 4776 MsRPC - ok
20:15:59.0819 4776 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
20:15:59.0821 4776 mssmbios - ok
20:15:59.0843 4776 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
20:15:59.0845 4776 MSTEE - ok
20:15:59.0855 4776 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
20:15:59.0857 4776 MTConfig - ok
20:15:59.0885 4776 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
20:15:59.0887 4776 Mup - ok
20:15:59.0916 4776 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
20:15:59.0926 4776 napagent - ok
20:15:59.0979 4776 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
20:15:59.0984 4776 NativeWifiP - ok
20:16:00.0032 4776 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys
20:16:00.0045 4776 NDIS - ok
20:16:00.0078 4776 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
20:16:00.0080 4776 NdisCap - ok
20:16:00.0101 4776 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
20:16:00.0103 4776 NdisTapi - ok
20:16:00.0153 4776 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
20:16:00.0156 4776 Ndisuio - ok
20:16:00.0182 4776 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
20:16:00.0186 4776 NdisWan - ok
20:16:00.0215 4776 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
20:16:00.0217 4776 NDProxy - ok
20:16:00.0296 4776 [ 7D2633295EB6FF2B938185874884059D ] Nero BackItUp Scheduler 4.0 C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
20:16:00.0305 4776 Nero BackItUp Scheduler 4.0 - ok
20:16:00.0332 4776 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
20:16:00.0334 4776 NetBIOS - ok
20:16:00.0370 4776 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
20:16:00.0374 4776 NetBT - ok
20:16:00.0386 4776 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
20:16:00.0389 4776 Netlogon - ok
20:16:00.0429 4776 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
20:16:00.0437 4776 Netman - ok
20:16:00.0463 4776 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
20:16:00.0472 4776 netprofm - ok
20:16:00.0562 4776 [ 2F06E01DE7A3E366185E65C41C9DEBF7 ] netr28x C:\Windows\system32\DRIVERS\netr28x.sys
20:16:00.0605 4776 netr28x - ok
20:16:00.0627 4776 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:16:00.0628 4776 NetTcpPortSharing - ok
20:16:00.0650 4776 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
20:16:00.0652 4776 nfrd960 - ok
20:16:00.0698 4776 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
20:16:00.0705 4776 NlaSvc - ok
20:16:00.0755 4776 [ 40777BD92D73A8FF3B252E4F4881E672 ] nlsInterface C:\Windows\system32\nlsInterface.exe
20:16:00.0760 4776 nlsInterface - ok
20:16:00.0804 4776 [ 2C761CC067ACF0FB4EA13930B09BFEEA ] nmwcdcx64 C:\Windows\system32\drivers\ccdcmbox64.sys
20:16:00.0805 4776 nmwcdcx64 - ok
20:16:00.0824 4776 [ CE90D1DD60DB810A45E13FCCEA47E890 ] nmwcdnsucx64 C:\Windows\system32\drivers\nmwcdnsucx64.sys
20:16:00.0825 4776 nmwcdnsucx64 - ok
20:16:00.0845 4776 [ F5A8219EA8A6B67280308FAE169B65C0 ] nmwcdnsux64 C:\Windows\system32\drivers\nmwcdnsux64.sys
20:16:00.0849 4776 nmwcdnsux64 - ok
20:16:00.0870 4776 [ 63051819D5CAC0FA49C425FC5E1A2B5C ] nmwcdx64 C:\Windows\system32\drivers\ccdcmbx64.sys
20:16:00.0872 4776 nmwcdx64 - ok
20:16:00.0908 4776 [ 351533ACC2A069B94E80BBFC177E8FDF ] NPF C:\Windows\system32\drivers\npf.sys
20:16:00.0910 4776 NPF - ok
20:16:00.0925 4776 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
20:16:00.0927 4776 Npfs - ok
20:16:00.0947 4776 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
20:16:00.0952 4776 nsi - ok
20:16:00.0968 4776 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
20:16:00.0969 4776 nsiproxy - ok
20:16:01.0032 4776 [ 05D78AA5CB5F3F5C31160BDB955D0B7C ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
20:16:01.0065 4776 Ntfs - ok
20:16:01.0076 4776 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
20:16:01.0078 4776 Null - ok
20:16:01.0120 4776 [ 5D9FD91F3D38DC9DA01E3CB5FA89CD48 ] nvraid C:\Windows\system32\drivers\nvraid.sys
20:16:01.0123 4776 nvraid - ok
20:16:01.0137 4776 [ F7CD50FE7139F07E77DA8AC8033D1832 ] nvstor C:\Windows\system32\drivers\nvstor.sys
20:16:01.0140 4776 nvstor - ok
20:16:01.0178 4776 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
20:16:01.0181 4776 nv_agp - ok
20:16:01.0248 4776 [ 3CDD83C8D838C04009B3871274B97D36 ] OberonGameConsoleService C:\Program Files (x86)\Packard Bell GameZone\GameConsole\OberonGameConsoleService.exe
20:16:01.0249 4776 OberonGameConsoleService - ok
20:16:01.0281 4776 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
20:16:01.0283 4776 ohci1394 - ok
20:16:01.0303 4776 [ 84DFFAD6904D29DAA208D28C0C00A8A6 ] optousb C:\Windows\system32\DRIVERS\optousb.sys
20:16:01.0305 4776 optousb - ok
20:16:01.0316 4776 [ 1B30BF9F42D6AC7CE27B8DC83F4B5913 ] optovcm C:\Windows\system32\DRIVERS\optovcm.sys
20:16:01.0318 4776 optovcm - ok
20:16:01.0358 4776 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:16:01.0360 4776 ose - ok
20:16:01.0383 4776 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
20:16:01.0392 4776 p2pimsvc - ok
20:16:01.0418 4776 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
20:16:01.0428 4776 p2psvc - ok
20:16:01.0460 4776 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
20:16:01.0462 4776 Parport - ok
20:16:01.0496 4776 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
20:16:01.0499 4776 partmgr - ok
20:16:01.0516 4776 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
20:16:01.0523 4776 PcaSvc - ok
20:16:01.0573 4776 [ BC0018C2D29F655188A0ED3FA94FDB24 ] pccsmcfd C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
20:16:01.0575 4776 pccsmcfd - ok
20:16:01.0604 4776 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
20:16:01.0608 4776 pci - ok
20:16:01.0626 4776 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
20:16:01.0628 4776 pciide - ok
20:16:01.0650 4776 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
20:16:01.0654 4776 pcmcia - ok
20:16:01.0726 4776 [ C654C50EBE6E11A6A5A4B239ABFB2E0F ] PCPitstop Scheduling C:\Program Files (x86)\PCPitstop\PCPitstopScheduleService.exe
20:16:01.0727 4776 PCPitstop Scheduling - ok
20:16:01.0746 4776 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
20:16:01.0748 4776 pcw - ok
20:16:01.0768 4776 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
20:16:01.0777 4776 PEAUTH - ok
20:16:01.0845 4776 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
20:16:01.0849 4776 PerfHost - ok
20:16:01.0914 4776 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
20:16:01.0960 4776 pla - ok
20:16:02.0010 4776 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
20:16:02.0020 4776 PlugPlay - ok
20:16:02.0039 4776 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
20:16:02.0044 4776 PNRPAutoReg - ok
20:16:02.0061 4776 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
20:16:02.0068 4776 PNRPsvc - ok
20:16:02.0101 4776 [ 9ABFF71FF6F3B9492686D3403FA5DCDB ] Point64 C:\Windows\system32\DRIVERS\point64k.sys
20:16:02.0103 4776 Point64 - ok
20:16:02.0124 4776 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
20:16:02.0134 4776 PolicyAgent - ok
20:16:02.0174 4776 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
20:16:02.0178 4776 Power - ok
20:16:02.0212 4776 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
20:16:02.0215 4776 PptpMiniport - ok
20:16:02.0228 4776 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
20:16:02.0231 4776 Processor - ok
20:16:02.0251 4776 [ 5C78838B4D166D1A27DB3A8A820C799A ] ProfSvc C:\Windows\system32\profsvc.dll
20:16:02.0258 4776 ProfSvc - ok
20:16:02.0275 4776 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
20:16:02.0278 4776 ProtectedStorage - ok
20:16:02.0320 4776 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
20:16:02.0323 4776 Psched - ok
20:16:02.0363 4776 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
20:16:02.0365 4776 PxHlpa64 - ok
20:16:02.0412 4776 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
20:16:02.0444 4776 ql2300 - ok
20:16:02.0464 4776 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
20:16:02.0467 4776 ql40xx - ok
20:16:02.0498 4776 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
20:16:02.0505 4776 QWAVE - ok
20:16:02.0519 4776 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
20:16:02.0521 4776 QWAVEdrv - ok
20:16:02.0536 4776 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
20:16:02.0538 4776 RasAcd - ok
20:16:02.0574 4776 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
20:16:02.0575 4776 RasAgileVpn - ok
20:16:02.0596 4776 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
20:16:02.0602 4776 RasAuto - ok
20:16:02.0627 4776 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
20:16:02.0630 4776 Rasl2tp - ok
20:16:02.0663 4776 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
20:16:02.0673 4776 RasMan - ok
20:16:02.0685 4776 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
20:16:02.0688 4776 RasPppoe - ok
20:16:02.0709 4776 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
20:16:02.0711 4776 RasSstp - ok
20:16:02.0731 4776 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
20:16:02.0736 4776 rdbss - ok
20:16:02.0758 4776 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
20:16:02.0760 4776 rdpbus - ok
20:16:02.0774 4776 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
20:16:02.0776 4776 RDPCDD - ok
20:16:02.0807 4776 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
20:16:02.0809 4776 RDPENCDD - ok
20:16:02.0818 4776 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
20:16:02.0820 4776 RDPREFMP - ok
20:16:02.0857 4776 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
20:16:02.0861 4776 RDPWD - ok
20:16:02.0905 4776 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
20:16:02.0909 4776 rdyboost - ok
20:16:02.0934 4776 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
20:16:02.0938 4776 RemoteAccess - ok
20:16:02.0970 4776 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
20:16:02.0977 4776 RemoteRegistry - ok
20:16:03.0011 4776 [ B60F58F175DE20A6739194E85B035178 ] rpcapd C:\Program Files (x86)\WinPcap\rpcapd.exe
20:16:03.0013 4776 rpcapd - ok
20:16:03.0023 4776 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
20:16:03.0029 4776 RpcEptMapper - ok
20:16:03.0054 4776 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
20:16:03.0057 4776 RpcLocator - ok
20:16:03.0099 4776 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
20:16:03.0108 4776 RpcSs - ok
20:16:03.0127 4776 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
20:16:03.0129 4776 rspndr - ok
20:16:03.0178 4776 [ D4AF0298E0031AEED81B241FF56E95D1 ] RTL8187 C:\Windows\system32\DRIVERS\wg111v2.sys
20:16:03.0185 4776 RTL8187 - ok
20:16:03.0197 4776 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
20:16:03.0200 4776 SamSs - ok
20:16:03.0228 4776 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
20:16:03.0231 4776 sbp2port - ok
20:16:03.0252 4776 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
20:16:03.0259 4776 SCardSvr - ok
20:16:03.0308 4776 [ D3022DBA20029F1899B555298A5E95A3 ] SCDEmu C:\Windows\system32\drivers\SCDEmu.sys
20:16:03.0310 4776 SCDEmu - ok
20:16:03.0346 4776 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
20:16:03.0348 4776 scfilter - ok
20:16:03.0402 4776 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
20:16:03.0427 4776 Schedule - ok
20:16:03.0469 4776 [ 6011CDF54BB6F4C69F38FACCDAD73D7E ] SCMNdisP C:\Windows\system32\DRIVERS\scmndisp.sys
20:16:03.0471 4776 SCMNdisP - ok
20:16:03.0500 4776 [ E2858D45D57E13EB142CCA3B83FB39B3 ] SCM_Service C:\Windows\SysWOW64\WinService.exe
20:16:03.0506 4776 SCM_Service - ok
20:16:03.0537 4776 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
20:16:03.0539 4776 SCPolicySvc - ok
20:16:03.0576 4776 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
20:16:03.0583 4776 SDRSVC - ok
20:16:03.0609 4776 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
20:16:03.0611 4776 secdrv - ok
20:16:03.0642 4776 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
20:16:03.0648 4776 seclogon - ok
20:16:03.0664 4776 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
20:16:03.0670 4776 SENS - ok
20:16:03.0680 4776 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
20:16:03.0685 4776 SensrSvc - ok
20:16:03.0701 4776 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
20:16:03.0702 4776 Serenum - ok
20:16:03.0723 4776 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
20:16:03.0726 4776 Serial - ok
20:16:03.0741 4776 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
20:16:03.0743 4776 sermouse - ok
20:16:03.0798 4776 [ C52572A3E609989C2CBEED503E95153E ] ServiceLayer C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
20:16:03.0804 4776 ServiceLayer - ok
20:16:03.0850 4776 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
20:16:03.0856 4776 SessionEnv - ok
20:16:03.0878 4776 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
20:16:03.0880 4776 sffdisk - ok
20:16:03.0895 4776 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
20:16:03.0897 4776 sffp_mmc - ok
20:16:03.0901 4776 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
20:16:03.0903 4776 sffp_sd - ok
20:16:03.0917 4776 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
20:16:03.0919 4776 sfloppy - ok
20:16:03.0957 4776 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
20:16:03.0964 4776 SharedAccess - ok
20:16:04.0004 4776 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:16:04.0014 4776 ShellHWDetection - ok
20:16:04.0029 4776 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:16:04.0031 4776 SiSRaid2 - ok
20:16:04.0044 4776 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
20:16:04.0047 4776 SiSRaid4 - ok
20:16:04.0075 4776 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
20:16:04.0078 4776 Smb - ok
20:16:04.0126 4776 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
20:16:04.0131 4776 SNMPTRAP - ok
20:16:04.0155 4776 [ 12583AF6CBE0050651EAF2723B3AD7B3 ] speedfan C:\Windows\syswow64\speedfan.sys
20:16:04.0160 4776 speedfan - ok
20:16:04.0173 4776 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
20:16:04.0175 4776 spldr - ok
20:16:04.0221 4776 [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler C:\Windows\System32\spoolsv.exe
20:16:04.0233 4776 Spooler - ok
20:16:04.0330 4776 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
20:16:04.0421 4776 sppsvc - ok
20:16:04.0432 4776 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
20:16:04.0435 4776 sppuinotify - ok
20:16:04.0459 4776 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
20:16:04.0464 4776 srv - ok
20:16:04.0482 4776 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
20:16:04.0486 4776 srv2 - ok
20:16:04.0502 4776 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
20:16:04.0505 4776 srvnet - ok
20:16:04.0536 4776 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
20:16:04.0544 4776 SSDPSRV - ok
20:16:04.0562 4776 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
20:16:04.0568 4776 SstpSvc - ok
20:16:04.0582 4776 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
20:16:04.0584 4776 stexstor - ok
20:16:04.0631 4776 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
20:16:04.0644 4776 stisvc - ok
20:16:04.0664 4776 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
20:16:04.0666 4776 swenum - ok
20:16:04.0693 4776 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
20:16:04.0705 4776 swprv - ok
20:16:04.0781 4776 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
20:16:04.0838 4776 SysMain - ok
20:16:04.0850 4776 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:16:04.0856 4776 TabletInputService - ok
20:16:04.0897 4776 [ F33FDC72298DF4BF9813A55D21F4EB31 ] taphss C:\Windows\system32\DRIVERS\taphss.sys
20:16:04.0899 4776 taphss - ok
20:16:04.0917 4776 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
20:16:04.0926 4776 TapiSrv - ok
20:16:04.0957 4776 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
20:16:04.0964 4776 TBS - ok
20:16:05.0020 4776 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
20:16:05.0066 4776 Tcpip - ok
20:16:05.0117 4776 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
20:16:05.0134 4776 TCPIP6 - ok
20:16:05.0166 4776 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
20:16:05.0168 4776 tcpipreg - ok
20:16:05.0206 4776 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
20:16:05.0208 4776 TDPIPE - ok
20:16:05.0234 4776 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
20:16:05.0236 4776 TDTCP - ok
20:16:05.0272 4776 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
20:16:05.0275 4776 tdx - ok
20:16:05.0301 4776 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
20:16:05.0303 4776 TermDD - ok
20:16:05.0352 4776 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
20:16:05.0366 4776 TermService - ok
20:16:05.0378 4776 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
20:16:05.0382 4776 Themes - ok
20:16:05.0397 4776 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
20:16:05.0399 4776 THREADORDER - ok
20:16:05.0418 4776 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
20:16:05.0423 4776 TrkWks - ok
20:16:05.0472 4776 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:16:05.0475 4776 TrustedInstaller - ok
20:16:05.0503 4776 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
20:16:05.0505 4776 tssecsrv - ok
20:16:05.0544 4776 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
20:16:05.0547 4776 TsUsbFlt - ok
20:16:05.0596 4776 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
20:16:05.0599 4776 tunnel - ok
20:16:05.0621 4776 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
20:16:05.0623 4776 uagp35 - ok
20:16:05.0658 4776 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
20:16:05.0663 4776 udfs - ok
20:16:05.0685 4776 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
20:16:05.0691 4776 UI0Detect - ok
20:16:05.0726 4776 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
20:16:05.0728 4776 uliagpkx - ok
20:16:05.0787 4776 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
20:16:05.0789 4776 umbus - ok
20:16:05.0802 4776 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
20:16:05.0804 4776 UmPass - ok
20:16:05.0892 4776 [ 9DC07E73A4ABB9ACF692113B36A5009F ] UnlockerDriver5 C:\Program Files\Unlocker\UnlockerDriver5.sys
20:16:05.0893 4776 UnlockerDriver5 - ok
20:16:05.0928 4776 [ 70DDE3A86DBEB1D6C3C30AD687B1877A ] Updater Service C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
20:16:05.0931 4776 Updater Service - ok
20:16:05.0953 4776 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
20:16:05.0963 4776 upnphost - ok
20:16:05.0988 4776 [ BCD611D240604CEEE7F90805361FAB50 ] upperdev C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys
20:16:05.0989 4776 upperdev - ok
20:16:06.0018 4776 [ 481DFF26B4DCA8F4CBAC1F7DCE1D6829 ] usbccgp C:\Windows\system32\drivers\usbccgp.sys
20:16:06.0021 4776 usbccgp - ok
20:16:06.0062 4776 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
20:16:06.0064 4776 usbcir - ok
20:16:06.0091 4776 [ 74EE782B1D9C241EFE425565854C661C ] usbehci C:\Windows\system32\drivers\usbehci.sys
20:16:06.0094 4776 usbehci - ok
20:16:06.0136 4776 [ DC96BD9CCB8403251BCF25047573558E ] usbhub C:\Windows\system32\drivers\usbhub.sys
20:16:06.0142 4776 usbhub - ok
20:16:06.0157 4776 [ 58E546BBAF87664FC57E0F6081E4F609 ] usbohci C:\Windows\system32\drivers\usbohci.sys
20:16:06.0159 4776 usbohci - ok
20:16:06.0188 4776 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
20:16:06.0190 4776 usbprint - ok
20:16:06.0268 4776 [ B5E6C4F280EBF0B16F74A5B415F2E0DF ] USBS3S4Detection C:\OEM\USBDECTION\USBS3S4Detection.exe
20:16:06.0270 4776 USBS3S4Detection - ok
20:16:06.0283 4776 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
20:16:06.0285 4776 usbscan - ok
20:16:06.0300 4776 [ 4ACEE387FA8FD39F83564FCD2FC234F2 ] usbser C:\Windows\system32\DRIVERS\usbser.sys
20:16:06.0302 4776 usbser - ok
20:16:06.0338 4776 [ D91BE2644B18B4E3C69982FE0E1E97D6 ] UsbserFilt C:\Windows\system32\DRIVERS\usbser_lowerfltx64j.sys
20:16:06.0340 4776 UsbserFilt - ok
20:16:06.0360 4776 [ D76510CFA0FC09023077F22C2F979D86 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:16:06.0363 4776 USBSTOR - ok
20:16:06.0382 4776 [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
20:16:06.0384 4776 usbuhci - ok
20:16:06.0402 4776 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
20:16:06.0409 4776 UxSms - ok
20:16:06.0419 4776 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
20:16:06.0422 4776 VaultSvc - ok
20:16:06.0448 4776 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
20:16:06.0450 4776 vdrvroot - ok
20:16:06.0490 4776 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
20:16:06.0502 4776 vds - ok
20:16:06.0515 4776 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
20:16:06.0517 4776 vga - ok
20:16:06.0533 4776 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
20:16:06.0535 4776 VgaSave - ok
20:16:06.0558 4776 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
20:16:06.0562 4776 vhdmp - ok
20:16:06.0571 4776 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
20:16:06.0573 4776 viaide - ok
20:16:06.0583 4776 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
20:16:06.0586 4776 volmgr - ok
20:16:06.0622 4776 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
20:16:06.0628 4776 volmgrx - ok
20:16:06.0647 4776 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
20:16:06.0653 4776 volsnap - ok
20:16:06.0665 4776 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
20:16:06.0669 4776 vsmraid - ok
20:16:06.0737 4776 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
20:16:06.0791 4776 VSS - ok
20:16:06.0811 4776 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
20:16:06.0813 4776 vwifibus - ok
20:16:06.0850 4776 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
20:16:06.0853 4776 vwififlt - ok
20:16:06.0878 4776 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
20:16:06.0889 4776 W32Time - ok
20:16:06.0912 4776 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
20:16:06.0914 4776 WacomPen - ok
20:16:06.0943 4776 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
20:16:06.0945 4776 WANARP - ok
20:16:06.0949 4776 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
20:16:06.0951 4776 Wanarpv6 - ok
20:16:07.0006 4776 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
20:16:07.0062 4776 wbengine - ok
20:16:07.0102 4776 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
20:16:07.0110 4776 WbioSrvc - ok
20:16:07.0139 4776 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
20:16:07.0148 4776 wcncsvc - ok
20:16:07.0160 4776 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:16:07.0166 4776 WcsPlugInService - ok
20:16:07.0191 4776 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
20:16:07.0192 4776 Wd - ok
20:16:07.0214 4776 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
20:16:07.0224 4776 Wdf01000 - ok
20:16:07.0243 4776 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
20:16:07.0250 4776 WdiServiceHost - ok
20:16:07.0254 4776 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
20:16:07.0261 4776 WdiSystemHost - ok
20:16:07.0293 4776 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
20:16:07.0299 4776 WebClient - ok
20:16:07.0316 4776 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
20:16:07.0325 4776 Wecsvc - ok
20:16:07.0343 4776 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
20:16:07.0349 4776 wercplsupport - ok
20:16:07.0387 4776 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
20:16:07.0393 4776 WerSvc - ok
20:16:07.0401 4776 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
20:16:07.0403 4776 WfpLwf - ok
20:16:07.0419 4776 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
20:16:07.0420 4776 WIMMount - ok
20:16:07.0428 4776 WinDefend - ok
20:16:07.0433 4776 WinHttpAutoProxySvc - ok
20:16:07.0487 4776 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
20:16:07.0492 4776 Winmgmt - ok
20:16:07.0569 4776 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
20:16:07.0618 4776 WinRM - ok
20:16:07.0669 4776 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
20:16:07.0671 4776 WinUsb - ok
20:16:07.0700 4776 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
20:16:07.0716 4776 Wlansvc - ok
20:16:07.0843 4776 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:16:07.0862 4776 wlidsvc - ok
20:16:07.0897 4776 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
20:16:07.0899 4776 WmiAcpi - ok
20:16:07.0922 4776 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
20:16:07.0925 4776 wmiApSrv - ok
20:16:07.0957 4776 WMPNetworkSvc - ok
20:16:07.0973 4776 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
20:16:07.0979 4776 WPCSvc - ok
20:16:08.0009 4776 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
20:16:08.0015 4776 WPDBusEnum - ok
20:16:08.0032 4776 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
20:16:08.0033 4776 ws2ifsl - ok
20:16:08.0046 4776 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
20:16:08.0053 4776 wscsvc - ok
20:16:08.0056 4776 WSearch - ok
20:16:08.0131 4776 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
20:16:08.0201 4776 wuauserv - ok
20:16:08.0216 4776 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
20:16:08.0219 4776 WudfPf - ok
20:16:08.0267 4776 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
20:16:08.0271 4776 WUDFRd - ok
20:16:08.0298 4776 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
20:16:08.0306 4776 wudfsvc - ok
20:16:08.0328 4776 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
20:16:08.0338 4776 WwanSvc - ok
20:16:08.0412 4776 [ 4A5CE13408945E525503B5F73D29B9C5 ] xnacc C:\Windows\system32\DRIVERS\xnacc.sys
20:16:08.0422 4776 xnacc - ok
20:16:08.0458 4776 [ 2C6BC21B2D5B58D8B1D638C1704CB494 ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys
20:16:08.0461 4776 xusb21 - ok
20:16:08.0539 4776 [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
20:16:08.0545 4776 YahooAUService - ok
20:16:08.0566 4776 ================ Scan global ===============================
20:16:08.0594 4776 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
20:16:08.0617 4776 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
20:16:08.0630 4776 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
20:16:08.0653 4776 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
20:16:08.0688 4776 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
20:16:08.0697 4776 [Global] - ok
20:16:08.0697 4776 ================ Scan MBR ==================================
20:16:08.0712 4776 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
20:16:08.0902 4776 \Device\Harddisk0\DR0 - ok
20:16:08.0903 4776 ================ Scan VBR ==================================
20:16:08.0906 4776 [ 7E223E68AACA7D2FE3C7E48732F2519A ] \Device\Harddisk0\DR0\Partition1
20:16:08.0908 4776 \Device\Harddisk0\DR0\Partition1 - ok
20:16:08.0914 4776 [ 6EDA9BB07BE69846687A8D2E61F3BA70 ] \Device\Harddisk0\DR0\Partition2
20:16:08.0916 4776 \Device\Harddisk0\DR0\Partition2 - ok
20:16:08.0938 4776 [ 266A14C2B5BC2A1D4D2142C35183B168 ] \Device\Harddisk0\DR0\Partition3
20:16:08.0940 4776 \Device\Harddisk0\DR0\Partition3 - ok
20:16:08.0940 4776 ============================================================
20:16:08.0940 4776 Scan finished
20:16:08.0940 4776 ============================================================
20:16:08.0950 3108 Detected object count: 0
20:16:08.0950 3108 Actual detected object count: 0
20:16:39.0408 4180 Deinitialize success



aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-26 20:17:00
-----------------------------
20:17:00.150 OS Version: Windows x64 6.1.7601 Service Pack 1
20:17:00.150 Number of processors: 8 586 0x1E05
20:17:00.150 ComputerName: KIM-PC UserName: KIM
20:17:01.084 Initialize success
20:17:01.396 AVAST engine defs: 12082600
20:17:17.886 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
20:17:17.889 Disk 0 Vendor: WDC_WD10 01.0 Size: 953869MB BusType: 3
20:17:17.900 Disk 0 MBR read successfully
20:17:17.903 Disk 0 MBR scan
20:17:17.907 Disk 0 Windows 7 default MBR code
20:17:17.911 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 14336 MB offset 2048
20:17:17.920 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 29362176
20:17:17.935 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 469454 MB offset 29566976
20:17:17.959 Disk 0 Partition 4 00 07 HPFS/NTFS NTFS 469977 MB offset 991008768
20:17:17.989 Disk 0 scanning C:\Windows\system32\drivers
20:17:24.380 Service scanning
20:17:38.343 Modules scanning
20:17:38.354 Disk 0 trace - called modules:
20:17:38.377 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
20:17:38.384 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8006589790]
20:17:38.390 3 CLASSPNP.SYS[fffff8800185143f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa80062ec050]
20:17:38.994 AVAST engine scan C:\Windows
20:17:40.973 AVAST engine scan C:\Windows\system32
20:19:07.593 AVAST engine scan C:\Windows\system32\drivers
20:19:15.315 AVAST engine scan C:\Users\KIM
20:35:01.799 Disk 0 MBR has been saved successfully to "C:\Users\KIM\Desktop\MBR.dat"
20:35:01.800 The log file has been saved successfully to "C:\Users\KIM\Desktop\aswMBR.txt"


D:\stuff from desktop\sims\sims2\files\installer_the_sims_2_homecrafter_plus.exe multiple threats cleaned by deleting - quarantined

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:31 PM

Posted 26 August 2012 - 08:38 PM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log

Edited by narenxp, 26 August 2012 - 08:38 PM.


#9 Ms_Kim

Ms_Kim
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:04:31 AM

Posted 27 August 2012 - 06:11 AM

It's not letting me post scan results, keeps saying I don't have permission, I've tried splitting them up but still can't post

Edited by Ms_Kim, 27 August 2012 - 06:27 AM.


#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:31 PM

Posted 27 August 2012 - 07:57 AM

PM me the logs,i will post it here

#11 Ms_Kim

Ms_Kim
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:04:31 AM

Posted 27 August 2012 - 09:59 AM

Ok thanks PM sent

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:31 PM

Posted 27 August 2012 - 10:41 AM

MiniToolBox by Farbar Version: 23-07-2012
Ran by KIM (administrator) on 27-08-2012 at 11:55:38
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================




========================= IP Configuration: ================================

Intel® 82578DC Gigabit Network Connection = Local Area Connection (Connected)
802.11n Wireless PCI Express Card LAN Adapter = Wireless Network Connection 3 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global defaultcurhoplimit=128 icmpredirects=enabled taskoffload=enabled
add address name="Wireless Network Connection 3" address=192.168.137.1 mask=255.255.255.0


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : KIM-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : Home

Wireless LAN adapter Wireless Network Connection 3:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : 802.11n Wireless PCI Express Card LAN Adapter #2
Physical Address. . . . . . . . . : 70-1A-04-EF-63-5D
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : Home
Description . . . . . . . . . . . : Intel® 82578DC Gigabit Network Connection
Physical Address. . . . . . . . . : 90-FB-A6-46-2A-8D
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::f8ee:c7a3:57e5:8a0a%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.0.2(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : 27 August 2012 09:58:40
Lease Expires . . . . . . . . . . : 28 August 2012 09:58:40
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DHCPv6 IAID . . . . . . . . . . . : 294714278
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-13-00-C4-71-90-FB-A6-46-2A-8D
DNS Servers . . . . . . . . . . . : 208.67.222.222
208.67.220.220
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{BBD2ABC0-B54B-4281-8036-58320204DA35}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.Home:

Connection-specific DNS Suffix . : Home
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::5efe:192.168.0.2%14(Preferred)
Default Gateway . . . . . . . . . :
DNS Servers . . . . . . . . . . . : 208.67.222.222
208.67.220.220
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:5ef5:79fd:206f:29b8:4f00:ac12(Preferred)
Link-local IPv6 Address . . . . . : fe80::206f:29b8:4f00:ac12%13(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter 6TO4 Adapter:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: resolver1.opendns.com
Address: 208.67.222.222

Name: google.com.Home
Address: 67.215.65.132


Pinging google.com [74.125.230.136] with 32 bytes of data:
Reply from 74.125.230.136: bytes=32 time=23ms TTL=58
Reply from 74.125.230.136: bytes=32 time=23ms TTL=58

Ping statistics for 74.125.230.136:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 23ms, Maximum = 23ms, Average = 23ms
Server: resolver1.opendns.com
Address: 208.67.222.222

Name: yahoo.com.Home
Address: 67.215.65.132


Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=1116ms TTL=55
Reply from 72.30.38.140: bytes=32 time=1172ms TTL=55

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 1116ms, Maximum = 1172ms, Average = 1144ms
Server: resolver1.opendns.com
Address: 208.67.222.222

Name: bleepingcomputer.com.Home
Address: 67.215.65.132


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
17...70 1a 04 ef 63 5d ......802.11n Wireless PCI Express Card LAN Adapter #2
11...90 fb a6 46 2a 8d ......Intel® 82578DC Gigabit Network Connection
1...........................Software Loopback Interface 1
12...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
14...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
18...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.2 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.0.0 255.255.255.0 On-link 192.168.0.2 276
192.168.0.2 255.255.255.255 On-link 192.168.0.2 276
192.168.0.255 255.255.255.255 On-link 192.168.0.2 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.0.2 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.0.2 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
13 58 ::/0 On-link
1 306 ::1/128 On-link
13 58 2001::/32 On-link
13 306 2001:0:5ef5:79fd:206f:29b8:4f00:ac12/128
On-link
11 276 fe80::/64 On-link
13 306 fe80::/64 On-link
14 281 fe80::5efe:192.168.0.2/128
On-link
13 306 fe80::206f:29b8:4f00:ac12/128
On-link
11 276 fe80::f8ee:c7a3:57e5:8a0a/128
On-link
1 306 ff00::/8 On-link
13 306 ff00::/8 On-link
11 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 08 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 08 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/26/2012 08:35:24 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (08/26/2012 08:35:22 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (08/26/2012 08:23:02 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (08/26/2012 08:22:55 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (08/26/2012 07:22:17 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (08/26/2012 07:22:17 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (08/26/2012 07:22:17 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (08/26/2012 07:22:17 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (08/24/2012 11:42:50 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (08/24/2012 11:42:50 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.


System errors:
=============
Error: (08/26/2012 09:00:27 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Windows Error Reporting Service service to connect.

Error: (08/26/2012 04:33:12 PM) (Source: ipnathlp) (User: )
Description: 0

Error: (08/24/2012 09:40:31 AM) (Source: Service Control Manager) (User: )
Description: The Intel® Matrix Storage Event Monitor service failed to start due to the following error:
%%1053

Error: (08/24/2012 09:40:31 AM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Intel® Matrix Storage Event Monitor service to connect.

Error: (08/24/2012 08:56:00 AM) (Source: Service Control Manager) (User: )
Description: The Windows Update service hung on starting.

Error: (08/24/2012 08:39:52 AM) (Source: ipnathlp) (User: )
Description: 0

Error: (08/24/2012 08:39:49 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
aswSnx

Error: (08/24/2012 08:39:20 AM) (Source: Service Control Manager) (User: )
Description: The Intel® Matrix Storage Event Monitor service failed to start due to the following error:
%%1053

Error: (08/24/2012 08:39:20 AM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Intel® Matrix Storage Event Monitor service to connect.

Error: (08/24/2012 02:22:24 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
aswSnx


Microsoft Office Sessions:
=========================
Error: (08/26/2012 08:35:24 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\KIM\Desktop\esetsmartinstaller_enu.exe

Error: (08/26/2012 08:35:22 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\KIM\Desktop\esetsmartinstaller_enu.exe

Error: (08/26/2012 08:23:02 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\KIM\Desktop\esetsmartinstaller_enu.exe

Error: (08/26/2012 08:22:55 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\KIM\Desktop\esetsmartinstaller_enu.exe

Error: (08/26/2012 07:22:17 PM) (Source: SideBySide)(User: )
Description: msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"c:\Windows\Installer\{67E03279-F703-408F-B4BF-46B5FC8D70CD}\WksWP.exe

Error: (08/26/2012 07:22:17 PM) (Source: SideBySide)(User: )
Description: msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"C:\Windows\Installer\{67E03279-F703-408F-B4BF-46B5FC8D70CD}\wksss.exe

Error: (08/26/2012 07:22:17 PM) (Source: SideBySide)(User: )
Description: msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"c:\Windows\Installer\{67E03279-F703-408F-B4BF-46B5FC8D70CD}\wksdb.exe

Error: (08/26/2012 07:22:17 PM) (Source: SideBySide)(User: )
Description: msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"c:\Windows\Installer\{67E03279-F703-408F-B4BF-46B5FC8D70CD}\WksCal.exe

Error: (08/24/2012 11:42:50 AM) (Source: SideBySide)(User: )
Description: msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"c:\Windows\Installer\{67E03279-F703-408F-B4BF-46B5FC8D70CD}\WksWP.exe

Error: (08/24/2012 11:42:50 AM) (Source: SideBySide)(User: )
Description: msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"C:\Windows\Installer\{67E03279-F703-408F-B4BF-46B5FC8D70CD}\wksss.exe


=========================== Installed Programs ============================

Acrobat.com (Version: 1.6.65)
Adobe AIR (Version: 3.3.0.3670)
Adobe Flash Player 11 Plugin (Version: 11.3.300.271)
Adobe Photoshop Elements 7.0 (Version: 7.0.1)
Adobe Photoshop Elements 7.0 (Version: 7.0.1.3)
Adobe Reader 9.5.2 MUI (Version: 9.5.2)
Adobe Shockwave Player 11.6 (Version: 11.6.4.634)
Advertising Center (Version: 0.0.0.2)
AF-HSS Toolbar (Version: 6.2.2.4)
Aiseesoft Streaming Video Recorder
Alien Skin Eye Candy 5 Impact
Alien Skin Eye Candy 5 Nature
Alien Skin Eye Candy 5 Textures
Alien Skin Xenofex 2.0
ALLCapture Enterprise 3.0
AM-DeadLink 4.5 (Version: 4.5)
AMD Accelerated Video Transcoding (Version: 2.00.0002)
AMD APP SDK Runtime (Version: 10.0.938.1)
AMD Catalyst Install Manager (Version: 8.0.881.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Media Foundation Decoders (Version: 1.0.70611.1329)
Angry Birds Rio (Version: 1.1.1)
Apple Application Support (Version: 1.2.1)
Apple Software Update (Version: 2.1.1.116)
ATI AVIVO64 Codecs (Version: 11.6.0.51125)
ATI Catalyst Registration (Version: 3.00.0000)
ATI Problem Report Wizard (Version: 3.0.804.0)
µTorrent (Version: 3.2.0)
avast! Free Antivirus (Version: 7.0.1466.0)
Azada &reg;
Belarc Advisor 8.1
Big Fish Games: Game Manager (Version: 3.0.1.60)
Botanicula
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center (Version: 2012.0611.1251.21046)
Catalyst Control Center Core Implementation (Version: 2010.0504.2152.37420)
Catalyst Control Center Graphics Full Existing (Version: 2010.0504.2152.37420)
Catalyst Control Center Graphics Full New (Version: 2010.0504.2152.37420)
Catalyst Control Center Graphics Light (Version: 2010.0504.2152.37420)
Catalyst Control Center Graphics Previews Common (Version: 2010.0504.2152.37420)
Catalyst Control Center Graphics Previews Common (Version: 2012.0611.1251.21046)
Catalyst Control Center Graphics Previews Vista (Version: 2010.0504.2152.37420)
Catalyst Control Center HydraVision Full (Version: 2010.0504.2152.37420)
Catalyst Control Center InstallProxy (Version: 2009.1019.2131.36819)
Catalyst Control Center InstallProxy (Version: 2012.0611.1251.21046)
Catalyst Control Center Localization All (Version: 2012.0611.1251.21046)
ccc-utility64 (Version: 2010.0504.2152.37420)
ccc-utility64 (Version: 2012.0611.1251.21046)
CCC Help Chinese Standard (Version: 2012.0611.1250.21046)
CCC Help Chinese Traditional (Version: 2012.0611.1250.21046)
CCC Help Czech (Version: 2012.0611.1250.21046)
CCC Help Danish (Version: 2012.0611.1250.21046)
CCC Help Dutch (Version: 2012.0611.1250.21046)
CCC Help English (Version: 2010.0504.2151.37420)
CCC Help English (Version: 2012.0611.1250.21046)
CCC Help Finnish (Version: 2012.0611.1250.21046)
CCC Help French (Version: 2012.0611.1250.21046)
CCC Help German (Version: 2012.0611.1250.21046)
CCC Help Greek (Version: 2012.0611.1250.21046)
CCC Help Hungarian (Version: 2012.0611.1250.21046)
CCC Help Italian (Version: 2012.0611.1250.21046)
CCC Help Japanese (Version: 2012.0611.1250.21046)
CCC Help Korean (Version: 2012.0611.1250.21046)
CCC Help Norwegian (Version: 2012.0611.1250.21046)
CCC Help Polish (Version: 2012.0611.1250.21046)
CCC Help Portuguese (Version: 2012.0611.1250.21046)
CCC Help Russian (Version: 2012.0611.1250.21046)
CCC Help Spanish (Version: 2012.0611.1250.21046)
CCC Help Swedish (Version: 2012.0611.1250.21046)
CCC Help Thai (Version: 2012.0611.1250.21046)
CCC Help Turkish (Version: 2012.0611.1250.21046)
CEP (Color Enable Package) v.9.2 (beta) (Version: 9.2 (beta))
Cleanse Uninstaller Pro 10.0 (Version: )
ColorWasher 2.05 (Plugin)
Compatibility Pack for the 2007 Office system (Version: 12.0.4518.1014)
Conduit Engine (Version: )
Core FTP LE 2.1
D3DX10 (Version: 15.4.2368.0902)
Dream Chronicles
DreamWoods2 (Version: 1.0)
EPSON Printer Software
EPSON Scan
ESET Online Scanner v3
Everything 1.2.1.371
Eye Candy 4000
Facebook Plug-In
Fairway Solitaire 1.00
Filter Forge 2.008
Filters Unlimited 2.0
FocalBlade 2.01 (Plugin)
Fraps (remove only)
Gloop!
Google Earth (Version: 6.1.0.5001)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.3.2710.138)
Google Update Helper (Version: 1.3.21.115)
HijackThis 2.0.2 (Version: 2.0.2)
HydraVision (Version: 4.2.180.0)
i-Menu 2.2
Identity Card (Version: 1.00.3002)
ImagXpress (Version: 7.0.74.0)
Intel® Matrix Storage Manager
IrfanView (remove only) (Version: 4.32)
Jacquie Lawson Quick Send Widget (Version: 1.0.3)
Jasc Animation Shop 3 (Version: 3.11)
Jasc Paint Shop Pro 9 (Version: 9.00.0000)
Jasc Paint Shop Pro Studio Additional Content
Java Auto Updater (Version: 2.1.6.0)
Java™ 7 Update 4 (Version: 7.0.40)
JavaFX 2.1.0 (Version: 2.1.0)
JDs Auto Speed Tester
JMicron JMB36X Driver (Version: 1.00.0000)
Junk Mail filter update (Version: 15.4.3502.0922)
LiveUpload to Facebook (Version: 3.2.3.0)
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
McAfee Security Scan Plus (Version: 2.0.181.2)
Metaboli (Version: 1.00.0006)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Calculator Plus (Version: 1.0.0)
Microsoft IntelliPoint 7.1 (Version: 7.10.344.0)
Microsoft Office FrontPage 2003 (Version: 11.0.5614.0)
Microsoft Office Outlook Connector (Version: 14.0.5118.5000)
Microsoft Office Professional Edition 2003 (Version: 11.0.5614.0)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Works (Version: 9.7.0621)
Mozilla Firefox 14.0.1 (x86 en-GB) (Version: 14.0.1)
Mozilla Maintenance Service (Version: 14.0.1)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Multimedia Keyboard Driver (Version: 2.0)
MyHeritage Family Tree Builder (Version: 6.0.0.5634)
Nero 9 Essentials
Nero ControlCenter (Version: 9.0.0.1)
Nero DiscSpeed (Version: 5.4.7.201)
Nero DiscSpeed Help (Version: 5.4.4.100)
Nero DriveSpeed (Version: 4.4.7.201)
Nero DriveSpeed Help (Version: 4.4.4.100)
Nero Express Help (Version: 9.4.9.100)
Nero InfoTool (Version: 6.4.7.201)
Nero InfoTool Help (Version: 6.4.4.100)
Nero Installer (Version: 4.4.8.1)
Nero Online Upgrade (Version: 1.3.0.0)
Nero StartSmart (Version: 9.4.11.209)
Nero StartSmart Help (Version: 9.4.11.208)
Nero StartSmart OEM (Version: 9.4.10.100)
NeroExpress (Version: 9.4.10.505)
neroxml (Version: 1.0.0)
NETGEAR WG111v2 wireless USB 2.0 adapter (Version: 1.0.0.133)
NexusFont 2.5 (ver 2.5.8.1582)
Nokia Connectivity Cable Driver (Version: 7.1.28.1)
Nokia Software Updater (Version: 02.04.008.41976)
Nuclear Coffee - VideoGet (Version: 2012)
NVIDIA DDS Utilities (Version: 1.0)
NVIDIA Drivers (Version: 1.7)
NVIDIA PhysX (Version: 9.10.0513)
ObjectDock Free (Version: 2.0)
OpenAL
Origin (Version: 8.3.7.3619)
Packard Bell GameZone Console (Version: 5.1.2.5)
Packard Bell InfoCentre (Version: 3.02.3000)
Packard Bell Recovery Management (Version: 4.05.3005)
Packard Bell Registration (Version: 1.02.3006)
Packard Bell ScreenSaver (Version: 1.1.0812)
Packard Bell Software Suite SE (Version: 2.01.3001)
Packard Bell Updater (Version: 1.01.3017)
Paint Shop Pro 7 Anniversary Edition (Version: 7.0.4.0000)
PC Connectivity Solution (Version: 10.12.0.0)
PC Inspector File Recovery (Version: 4.0)
PC Matic 1.1.0.48 (Version: 1.1.0.48)
PC Pitstop Driver Alert2 2.0.0.0 (Version: 2.0.0.0)
PC Pitstop Info Center 1.0.0.13 (Version: 1.0.0.13)
Peggle Deluxe 1.00
Photo Frame (Version: 5.0.0.2)
PowerISO
PSP Thumbnail Handler (Version: 2.10.49)
QuickTime (Version: 7.66.71.0)
RapidShare Manager (Version: 0.1.0.257)
Realtek High Definition Audio Driver (Version: 6.0.1.6602)
Recyclomania 1.00
RoboForm 7-7-9-9 (All Users) (Version: 7-7-9-9)
Scriptorium for TS2 (Version: 2.2f)
Shopandscan (Version: 1.0.0)
SimPE 0.72 (alpha)
Sims2Pack Clean Installer
SIW version 2010.03.11 (Version: 2010.03.11)
SoliLuxe 2.10
Sothink DHTML Menu 9 (Version: 9.3)
SpeedFan (remove only)
Suburban Mysteries The Labyrinth of the Past 1.00
swMSM (Version: 12.0.0.1)
Tales of Sorrow Strawsbrough Town 1.00
The Chronicles of Shakespeare A Midsummer Nights Dream 1.1
The Incredible Machine Series
The Sims 2 HomeCrafter Plus
The Sims 2 Nightlife
The Sims 2 Open For Business
The Sims 2 Pets
The Sims 2 University
The Sims™ 2 Apartment Life
The Sims™ 2 Bon Voyage
The Sims™ 2 FreeTime
The Sims™ 2 H&M® Fashion Stuff
The Sims™ 2 IKEA® Home Stuff
The Sims™ 2 Kitchen & Bath Interior Design Stuff
The Sims™ 2 Mansion and Garden Stuff
The Sims™ 2 Seasons
Top Ten Solitaire
Topaz InFocus (Version: 1.0.0)
Topaz Adjust 4 (64-bit) (Version: 4.1.0)
Topaz Adjust 4 (Version: 4.1.0)
Topaz Clean 3 (64-bit) (Version: 3.0.2)
Topaz Clean 3 (Version: 3.0.2)
Topaz DeJpeg 4 (64-bit) (Version: 4.0.2)
Topaz DeJpeg 4 (Version: 4.0.2)
Topaz DeNoise 5 (64-bit) (Version: 5.0.1)
Topaz DeNoise 5 (Version: 5.0.1)
Topaz Detail 2 (64-bit) (Version: 2.0.5)
Topaz Detail 2 (Version: 2.0.5)
Topaz Fusion Express 2 (64-bit) (Version: 2.0.1)
Topaz Fusion Express 2 (Version: 2.0.1)
Topaz InFocus (64-bit) (Version: 1.0.0)
Topaz ReMask 2 (64-bit) (Version: 2.0.5)
Topaz ReMask 2 (Version: 2.0.5)
Topaz Simplify 3 (64-bit) (Version: 3.0.2)
Topaz Simplify 3 (Version: 3.0.2)
Unity Web Player (Version: )
Unlocker 1.9.1-x64 (Version: 1.9.1)
Unwell Mel 1.00
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
Welcome Center (Version: 1.00.3008)
Windows Driver Package - Intel hdc (06/04/2009 9.1.1.1013) (Version: 06/04/2009 9.1.1.1013)
Windows Driver Package - Intel hdc (06/08/2010 7.0.0.1013) (Version: 06/08/2010 7.0.0.1013)
Windows Driver Package - Intel hdc (08/05/2009 9.1.1.1016) (Version: 08/05/2009 9.1.1.1016)
Windows Driver Package - Intel hdc (09/10/2010 9.1.2.1010) (Version: 09/10/2010 9.1.2.1010)
Windows Driver Package - Intel hdc (09/10/2010 9.2.0.1011) (Version: 09/10/2010 9.2.0.1011)
Windows Driver Package - Intel hdc (09/17/2009 9.1.1.1027) (Version: 09/17/2009 9.1.1.1027)
Windows Driver Package - Intel hdc (09/28/2010 9.2.0.1014) (Version: 09/28/2010 9.2.0.1014)
Windows Driver Package - Intel System (02/08/2010 9.1.1.1026) (Version: 02/08/2010 9.1.1.1026)
Windows Driver Package - Intel System (02/22/2011 9.2.0.1022) (Version: 02/22/2011 9.2.0.1022)
Windows Driver Package - Intel System (02/25/2011 9.2.0.1024) (Version: 02/25/2011 9.2.0.1024)
Windows Driver Package - Intel System (06/08/2010 1.0.0.0002) (Version: 06/08/2010 1.0.0.0002)
Windows Driver Package - Intel System (08/05/2009 9.1.1.1016) (Version: 08/05/2009 9.1.1.1016)
Windows Driver Package - Intel System (09/10/2010 9.2.0.1011) (Version: 09/10/2010 9.2.0.1011)
Windows Driver Package - Intel System (10/28/2009 9.1.1.1022) (Version: 10/28/2009 9.1.1.1022)
Windows Driver Package - Intel System (11/04/2009 9.1.2.1004) (Version: 11/04/2009 9.1.2.1004)
Windows Driver Package - Intel System (11/20/2010 9.2.0.1016) (Version: 11/20/2010 9.2.0.1016)
Windows Driver Package - Intel USB (08/05/2009 9.1.1.1016) (Version: 08/05/2009 9.1.1.1016)
Windows Driver Package - Intel USB (08/20/2009 9.1.1.1020) (Version: 08/20/2009 9.1.1.1020)
Windows Driver Package - Intel USB (10/08/2010 9.1.2.1012) (Version: 10/08/2010 9.1.2.1012)
Windows Driver Package - Intel USB (12/21/2010 9.2.0.1021) (Version: 12/21/2010 9.2.0.1021)
Windows Driver Package - Nokia pccsmcfd (08/22/2008 7.0.0.0) (Version: 08/22/2008 7.0.0.0)
Windows Driver Package - OPTO ELECTRONICS CO.,LTD (optousb) Ports (06/02/2008 2.0.5.5) (Version: 06/02/2008 2.0.5.5)
Windows Driver Package - Ralink Technology, Corp. (netr28x) Net (03/16/2011 3.01.16.0001) (Version: 03/16/2011 3.01.16.0001)
Windows Driver Package - Ralink Technology, Corp. (netr28x) Net (11/14/2011 3.02.07.0000) (Version: 11/14/2011 3.02.07.0000)
Windows Driver Package - Realtek Semiconductor Corp. HD Audio Driver (03/27/2012 6.0.1.6602) (Version: 03/27/2012 6.0.1.6602)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
WinPcap 4.1.2 (Version: 4.1.0.2001)
WinRAR archiver
Word Whomp To Go
Xenofex 1.0
Yahoo! Software Update
Zylom Games Player Plugin

========================= Memory info: ===================================

Percentage of memory in use: 37%
Total physical RAM: 6135.11 MB
Available physical RAM: 3828.4 MB
Total Pagefile: 12268.41 MB
Available Pagefile: 10069.39 MB
Total Virtual: 4095.88 MB
Available Virtual: 3954.74 MB

========================= Partitions: =====================================

1 Drive c: (Packard Bell) (Fixed) (Total:458.45 GB) (Free:311.48 GB) NTFS
2 Drive d: (DATA) (Fixed) (Total:458.96 GB) (Free:399.04 GB) NTFS

========================= Users: ========================================

User accounts for \\KIM-PC

Administrator Guest KIM


**** End of log ****



Farbar Service Scanner Version: 06-08-2012
Ran by KIM (administrator) on 27-08-2012 at 11:57:01
Running from "C:\Users\KIM\Desktop"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****


# AdwCleaner v1.801 - Logfile created 08/27/2012 at 12:00:03
# Updated 14/08/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : KIM - KIM-PC
# Boot Mode : Normal
# Running from : C:\Users\KIM\Desktop\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\Users\KIM\AppData\LocalLow\AF-HSS
Folder Deleted : C:\Users\KIM\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\KIM\AppData\LocalLow\ConduitEngine
Folder Deleted : C:\ProgramData\Trymedia
Folder Deleted : C:\Program Files (x86)\AF-HSS
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\ConduitEngine
Folder Deleted : C:\ProgramData\Partner

***** [Registry] *****

[*] Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2765711
Key Deleted : HKCU\Software\AF-HSS
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\conduitEngine
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKLM\SOFTWARE\AF-HSS
Key Deleted : HKLM\SOFTWARE\Classes\Conduit.Engine
Key Deleted : HKLM\SOFTWARE\Conduit
Key Deleted : HKLM\SOFTWARE\conduitEngine
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AF-HSS Toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngine

***** [Registre - GUID] *****

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F0381DBD-E018-4E07-AE40-D96AB15083F0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{2E165AC3-896B-4487-9B4F-AB5C67B2DE9C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DC758FDB-A357-4B67-8102-8E5918AA3009}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{2AD73BCA-F284-4D32-A7BE-74A41A64E6B0}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{AFE31251-A39D-44EA-A5B6-C921A20E312D}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B6DC19FD-1A1B-4483-A56D-FC3DE178C9AD}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{C99FDC39-A1AE-4B24-8D71-E5274F8D7C54}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F0381DBD-E018-4E07-AE40-D96AB15083F0}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DC758FDB-A357-4B67-8102-8E5918AA3009}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F0381DBD-E018-4E07-AE40-D96AB15083F0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2E165AC3-896B-4487-9B4F-AB5C67B2DE9C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2AD73BCA-F284-4D32-A7BE-74A41A64E6B0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F0381DBD-E018-4E07-AE40-D96AB15083F0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{F0381DBD-E018-4E07-AE40-D96AB15083F0}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{30F9B915-B755-4826-820B-08FBA6BD249D}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{F0381DBD-E018-4E07-AE40-D96AB15083F0}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{F0381DBD-E018-4E07-AE40-D96AB15083F0}]
[x64] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}
[x64] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
[x64] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

-\\ Mozilla Firefox v14.0.1 (en-GB)

Profile name : default
File : C:\Users\KIM\AppData\Roaming\Mozilla\Firefox\Profiles\3rft2rnj.default\prefs.js

C:\Users\KIM\AppData\Roaming\Mozilla\Firefox\Profiles\3rft2rnj.default\user.js ... Deleted !

Deleted : user_pref("CT2765711.IsMulticommunity", false);
Deleted : user_pref("ConduitEngine.IsMulticommunity", false);
Deleted : user_pref("browser.search.defaultthis.engineName", "AF-HSS Customized Web Search");
Deleted : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2765711&Sea[...]

*************************

AdwCleaner[S1].txt - [5191 octets] - [27/08/2012 12:00:03]

########## EOF - C:\AdwCleaner[S1].txt - [5319 octets] ##########

#13 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:31 PM

Posted 27 August 2012 - 10:42 AM

MBAM log?

download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here

#14 Ms_Kim

Ms_Kim
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:04:31 AM

Posted 27 August 2012 - 10:48 AM

Sorry forgot MBAM log here it is

Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org

Database version: v2012.08.27.02

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
KIM :: KIM-PC [administrator]

27/08/2012 10:12:37
mbam-log-2012-08-27 (10-12-37).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2P
Scan options disabled:
Objects scanned: 499559
Time elapsed: 1 hour(s), 37 minute(s), 42 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)


Rkill 2.3.3 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 08/27/2012 04:46:50 PM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1

Checking for Windows services to stop.

* No malware services found to stop.

Checking for processes to terminate.

* No malware processes found to kill.

Checking Registry for malware related settings.

* Explorer Policy Removed: NoActiveDesktopChanges [HKLM]

Backup Registry file created at:
C:\Users\KIM\Desktop\rkill\rkill-08-27-2012-04-46-53.reg

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks.
* No issues found.

Checking Windows Service Integrity:

* Background Intelligent Transfer Service (BITS) is not Running.
Startup Type set to: Manual

* AppMgmt [Missing Service]
* CscService [Missing Service]
* PeerDistSvc [Missing Service]
* UmRdpService [Missing Service]
* WatAdminSvc [Missing Service]

Searching for Missing Digital Signatures:

* No issues found.

Program finished at: 08/27/2012 04:47:01 PM
Execution time: 0 hours(s), 0 minute(s), and 10 seconds(s)

#15 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:31 PM

Posted 27 August 2012 - 10:55 AM

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot.If TFC locks up the system,run it in safemode

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Update your flash player

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp

Update your antivirus frequently,do not click on suspicious links

Safe surfing :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users