Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Please Help! Hidden/Missing Files, Icons, Black Desktop


  • Please log in to reply
25 replies to this topic

#1 ebartane

ebartane

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Local time:05:23 PM

Posted 05 September 2012 - 07:10 PM

Hello,

So last night I received a message that a change needed to be made to my hard drive. The message listed itself as being from Windows _________ (sorry I don't remember). I meant to hit that I didn't want the change, but accidentally clicked yes. Nothing happened at that time. I had been running a scan with Malwarebytes and restarted upon the completion of that scan.

When my computer restarted my desktop was black, I had only three icons on my desktop (recycle bin, google chrome and Malwarebytes). I also received several messages saying there was an issue with my harddrive. I immediately restarted in safe mode and began running scans with Malwarebytes and Avast. These scans uncovered several infections (one scan with Malwarebytes even listed about 1100 infections). Once these scans and a bootscan with Avast was complete I restarted by computer normally. Unfortunately, there was no change.

After some searching, I realized that my files were simply hidden and after downloading and running unhide.exe it appears that most of my files are back. However, my desktop is still black, my quick launch icons are gone, some of my desktop icons are gone (I notice specifically that Internet Explorer is gone) and the right side of my taskbar has several icons (about 11) listed instead of the previous minimized box thing that pulled up.

I need help making sure that the problem is gone and how to fix these remaining issues.

Thank you in advance.

Edited by Orange Blossom, 05 September 2012 - 07:15 PM.
moved to AII from Windows 7. ~ OB


BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:23 PM

Posted 05 September 2012 - 07:12 PM

Lets make sure if system is clean before fixing other issues.

Do not turn off your system restore unless instructed


Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 ebartane

ebartane
  • Topic Starter

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Local time:05:23 PM

Posted 05 September 2012 - 07:36 PM

Here is the TDSSkiller log:
20:14:40.0832 7120 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
20:14:41.0426 7120 ============================================================
20:14:41.0426 7120 Current date / time: 2012/09/05 20:14:41.0426
20:14:41.0426 7120 SystemInfo:
20:14:41.0426 7120
20:14:41.0426 7120 OS Version: 6.1.7601 ServicePack: 1.0
20:14:41.0426 7120 Product type: Workstation
20:14:41.0426 7120 ComputerName: ETHAN-PC
20:14:41.0427 7120 UserName: Ethan
20:14:41.0427 7120 Windows directory: C:\Windows
20:14:41.0427 7120 System windows directory: C:\Windows
20:14:41.0427 7120 Running under WOW64
20:14:41.0427 7120 Processor architecture: Intel x64
20:14:41.0427 7120 Number of processors: 4
20:14:41.0427 7120 Page size: 0x1000
20:14:41.0427 7120 Boot type: Normal boot
20:14:41.0427 7120 ============================================================
20:14:42.0259 7120 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:14:42.0271 7120 ============================================================
20:14:42.0271 7120 \Device\Harddisk0\DR0:
20:14:42.0271 7120 MBR partitions:
20:14:42.0271 7120 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
20:14:42.0271 7120 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x380FF000
20:14:42.0271 7120 ============================================================
20:14:42.0289 7120 C: <-> \Device\Harddisk0\DR0\Partition2
20:14:42.0290 7120 ============================================================
20:14:42.0290 7120 Initialize success
20:14:42.0290 7120 ============================================================
20:15:00.0019 6396 ============================================================
20:15:00.0019 6396 Scan started
20:15:00.0019 6396 Mode: Manual; TDLFS;
20:15:00.0019 6396 ============================================================
20:15:02.0656 6396 ================ Scan system memory ========================
20:15:02.0656 6396 System memory - ok
20:15:02.0660 6396 ================ Scan services =============================
20:15:02.0952 6396 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
20:15:02.0957 6396 1394ohci - ok
20:15:03.0012 6396 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
20:15:03.0019 6396 ACPI - ok
20:15:03.0052 6396 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
20:15:03.0054 6396 AcpiPmi - ok
20:15:03.0212 6396 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
20:15:03.0214 6396 AdobeARMservice - ok
20:15:03.0371 6396 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
20:15:03.0375 6396 AdobeFlashPlayerUpdateSvc - ok
20:15:03.0457 6396 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
20:15:03.0467 6396 adp94xx - ok
20:15:03.0508 6396 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
20:15:03.0515 6396 adpahci - ok
20:15:03.0573 6396 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
20:15:03.0577 6396 adpu320 - ok
20:15:03.0609 6396 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
20:15:03.0624 6396 AeLookupSvc - ok
20:15:03.0724 6396 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
20:15:03.0733 6396 AFD - ok
20:15:03.0799 6396 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
20:15:03.0801 6396 agp440 - ok
20:15:03.0848 6396 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
20:15:03.0862 6396 ALG - ok
20:15:03.0892 6396 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
20:15:03.0894 6396 aliide - ok
20:15:03.0902 6396 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
20:15:03.0904 6396 amdide - ok
20:15:03.0965 6396 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
20:15:03.0968 6396 AmdK8 - ok
20:15:04.0022 6396 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
20:15:04.0034 6396 AmdPPM - ok
20:15:04.0101 6396 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
20:15:04.0104 6396 amdsata - ok
20:15:04.0152 6396 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
20:15:04.0156 6396 amdsbs - ok
20:15:04.0189 6396 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
20:15:04.0191 6396 amdxata - ok
20:15:04.0265 6396 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
20:15:04.0267 6396 AppID - ok
20:15:04.0325 6396 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
20:15:04.0327 6396 AppIDSvc - ok
20:15:04.0381 6396 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
20:15:04.0384 6396 Appinfo - ok
20:15:04.0467 6396 [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
20:15:04.0470 6396 Apple Mobile Device - ok
20:15:04.0536 6396 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
20:15:04.0539 6396 arc - ok
20:15:04.0593 6396 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
20:15:04.0596 6396 arcsas - ok
20:15:04.0676 6396 [ DF59B8E8DF0BD2E0E303778A3806A17D ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
20:15:04.0678 6396 aswFsBlk - ok
20:15:04.0740 6396 [ F8E6AB4F876FEFF69250F2E0C29EF004 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
20:15:04.0742 6396 aswMonFlt - ok
20:15:04.0765 6396 [ AA92BC4BCBA40CA3AA3FFD1BE24F0C09 ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
20:15:04.0767 6396 aswRdr - ok
20:15:04.0846 6396 [ F06E230E1E8CA9437A6474B7B551CD37 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
20:15:04.0863 6396 aswSnx - ok
20:15:05.0034 6396 [ 3610CA74A69E380424F0452DEC5C1317 ] aswSP C:\Windows\system32\drivers\aswSP.sys
20:15:05.0042 6396 aswSP - ok
20:15:05.0085 6396 [ 87DE3E31CB0091D22351349869324065 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
20:15:05.0108 6396 aswTdi - ok
20:15:05.0167 6396 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
20:15:05.0169 6396 AsyncMac - ok
20:15:05.0240 6396 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
20:15:05.0242 6396 atapi - ok
20:15:05.0335 6396 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:15:05.0348 6396 AudioEndpointBuilder - ok
20:15:05.0365 6396 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
20:15:05.0374 6396 AudioSrv - ok
20:15:05.0541 6396 [ 2F7C0F3E39C45E0127FB78B2F18A41F3 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
20:15:05.0543 6396 avast! Antivirus - ok
20:15:05.0621 6396 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
20:15:05.0624 6396 AxInstSV - ok
20:15:05.0684 6396 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
20:15:05.0693 6396 b06bdrv - ok
20:15:05.0728 6396 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
20:15:05.0734 6396 b57nd60a - ok
20:15:05.0919 6396 [ 68B86DD9D455A6A8DE6D13C84FB5CE31 ] BackupService C:\Users\Ethan\AppData\Roaming\HP SimpleSave Application\uUACTokenSvc.exe
20:15:05.0922 6396 BackupService - ok
20:15:05.0983 6396 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
20:15:05.0986 6396 BDESVC - ok
20:15:06.0033 6396 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
20:15:06.0035 6396 Beep - ok
20:15:06.0120 6396 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
20:15:06.0134 6396 BFE - ok
20:15:06.0211 6396 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
20:15:06.0213 6396 blbdrive - ok
20:15:06.0300 6396 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
20:15:06.0321 6396 Bonjour Service - ok
20:15:06.0394 6396 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
20:15:06.0396 6396 bowser - ok
20:15:06.0432 6396 [ F46DD257FAD7D2D097EF32E72220A06C ] bpenum C:\Windows\system32\DRIVERS\bpenum.sys
20:15:06.0435 6396 bpenum - ok
20:15:06.0493 6396 [ E82060AED0F28ED8909F2B07FA276185 ] bpmp C:\Windows\system32\DRIVERS\bpmp.sys
20:15:06.0500 6396 bpmp - ok
20:15:06.0527 6396 [ FC6313A5A45C1AE53D0491F0057D5A4D ] bpusb C:\Windows\system32\Drivers\bpusb.sys
20:15:06.0529 6396 bpusb - ok
20:15:06.0560 6396 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
20:15:06.0562 6396 BrFiltLo - ok
20:15:06.0595 6396 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
20:15:06.0597 6396 BrFiltUp - ok
20:15:06.0674 6396 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
20:15:06.0677 6396 BridgeMP - ok
20:15:06.0752 6396 [ 8EF0D5C41EC907751B8429162B1239ED ] Browser C:\Windows\System32\browser.dll
20:15:06.0756 6396 Browser - ok
20:15:06.0806 6396 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
20:15:06.0814 6396 Brserid - ok
20:15:06.0872 6396 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
20:15:06.0874 6396 BrSerWdm - ok
20:15:06.0917 6396 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
20:15:06.0919 6396 BrUsbMdm - ok
20:15:06.0947 6396 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
20:15:06.0949 6396 BrUsbSer - ok
20:15:06.0974 6396 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
20:15:06.0977 6396 BTHMODEM - ok
20:15:07.0028 6396 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
20:15:07.0031 6396 bthserv - ok
20:15:07.0237 6396 catchme - ok
20:15:07.0311 6396 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
20:15:07.0330 6396 cdfs - ok
20:15:07.0398 6396 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
20:15:07.0401 6396 cdrom - ok
20:15:07.0471 6396 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
20:15:07.0474 6396 CertPropSvc - ok
20:15:07.0523 6396 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
20:15:07.0527 6396 circlass - ok
20:15:07.0588 6396 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
20:15:07.0595 6396 CLFS - ok
20:15:07.0654 6396 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:15:07.0675 6396 clr_optimization_v2.0.50727_32 - ok
20:15:07.0733 6396 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:15:07.0737 6396 clr_optimization_v2.0.50727_64 - ok
20:15:07.0845 6396 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:15:07.0848 6396 clr_optimization_v4.0.30319_32 - ok
20:15:07.0883 6396 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:15:07.0887 6396 clr_optimization_v4.0.30319_64 - ok
20:15:07.0922 6396 [ 50F92C943F18B070F166D019DFAB3D9A ] clwvd C:\Windows\system32\DRIVERS\clwvd.sys
20:15:07.0925 6396 clwvd - ok
20:15:07.0966 6396 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
20:15:07.0968 6396 CmBatt - ok
20:15:08.0020 6396 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
20:15:08.0022 6396 cmdide - ok
20:15:08.0093 6396 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
20:15:08.0103 6396 CNG - ok
20:15:08.0129 6396 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
20:15:08.0131 6396 Compbatt - ok
20:15:08.0186 6396 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
20:15:08.0188 6396 CompositeBus - ok
20:15:08.0200 6396 COMSysApp - ok
20:15:08.0226 6396 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
20:15:08.0228 6396 crcdisk - ok
20:15:08.0303 6396 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
20:15:08.0308 6396 CryptSvc - ok
20:15:08.0372 6396 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
20:15:08.0387 6396 DcomLaunch - ok
20:15:08.0429 6396 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
20:15:08.0436 6396 defragsvc - ok
20:15:08.0500 6396 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
20:15:08.0503 6396 DfsC - ok
20:15:08.0581 6396 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
20:15:08.0589 6396 Dhcp - ok
20:15:08.0622 6396 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
20:15:08.0624 6396 discache - ok
20:15:08.0660 6396 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
20:15:08.0663 6396 Disk - ok
20:15:08.0733 6396 [ C4AEBBEB530706B45B7916161A1F525D ] DMAgent C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe
20:15:08.0741 6396 DMAgent - ok
20:15:08.0815 6396 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
20:15:08.0822 6396 Dnscache - ok
20:15:08.0878 6396 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
20:15:08.0885 6396 dot3svc - ok
20:15:08.0958 6396 [ B42ED0320C6E41102FDE0005154849BB ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
20:15:08.0961 6396 Dot4 - ok
20:15:09.0045 6396 [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
20:15:09.0046 6396 Dot4Print - ok
20:15:09.0067 6396 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
20:15:09.0069 6396 dot4usb - ok
20:15:09.0146 6396 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
20:15:09.0152 6396 DPS - ok
20:15:09.0203 6396 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
20:15:09.0205 6396 drmkaud - ok
20:15:09.0308 6396 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
20:15:09.0328 6396 DXGKrnl - ok
20:15:09.0364 6396 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
20:15:09.0369 6396 EapHost - ok
20:15:09.0504 6396 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
20:15:09.0597 6396 ebdrv - ok
20:15:09.0667 6396 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
20:15:09.0672 6396 EFS - ok
20:15:09.0753 6396 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
20:15:09.0762 6396 ehRecvr - ok
20:15:09.0788 6396 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
20:15:09.0792 6396 ehSched - ok
20:15:09.0871 6396 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
20:15:09.0881 6396 elxstor - ok
20:15:09.0931 6396 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
20:15:09.0933 6396 ErrDev - ok
20:15:09.0994 6396 [ ACE57D5012B00971CCE04C61CFEEFAE6 ] ETD C:\Windows\system32\DRIVERS\ETD.sys
20:15:09.0999 6396 ETD - ok
20:15:10.0144 6396 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
20:15:10.0154 6396 EventSystem - ok
20:15:10.0253 6396 [ BDF87981C5FEA94FD259F110FB8B1A72 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
20:15:10.0271 6396 EvtEng - ok
20:15:10.0311 6396 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
20:15:10.0336 6396 exfat - ok
20:15:10.0376 6396 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
20:15:10.0381 6396 fastfat - ok
20:15:10.0564 6396 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
20:15:10.0582 6396 Fax - ok
20:15:10.0607 6396 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
20:15:10.0608 6396 fdc - ok
20:15:10.0658 6396 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
20:15:10.0661 6396 fdPHost - ok
20:15:10.0674 6396 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
20:15:10.0678 6396 FDResPub - ok
20:15:10.0715 6396 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
20:15:10.0718 6396 FileInfo - ok
20:15:10.0746 6396 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
20:15:10.0748 6396 Filetrace - ok
20:15:10.0776 6396 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
20:15:10.0778 6396 flpydisk - ok
20:15:10.0860 6396 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
20:15:10.0866 6396 FltMgr - ok
20:15:10.0947 6396 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
20:15:10.0970 6396 FontCache - ok
20:15:11.0045 6396 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:15:11.0047 6396 FontCache3.0.0.0 - ok
20:15:11.0083 6396 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
20:15:11.0085 6396 FsDepends - ok
20:15:11.0141 6396 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
20:15:11.0144 6396 Fs_Rec - ok
20:15:11.0225 6396 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
20:15:11.0230 6396 fvevol - ok
20:15:11.0317 6396 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
20:15:11.0333 6396 gagp30kx - ok
20:15:11.0387 6396 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
20:15:11.0389 6396 GEARAspiWDM - ok
20:15:11.0509 6396 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
20:15:11.0525 6396 gpsvc - ok
20:15:11.0609 6396 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:15:11.0625 6396 gupdate - ok
20:15:11.0747 6396 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:15:11.0749 6396 gupdatem - ok
20:15:11.0801 6396 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
20:15:11.0806 6396 gusvc - ok
20:15:11.0866 6396 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
20:15:11.0868 6396 hcw85cir - ok
20:15:11.0953 6396 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
20:15:11.0960 6396 HdAudAddService - ok
20:15:11.0997 6396 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
20:15:12.0001 6396 HDAudBus - ok
20:15:12.0027 6396 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
20:15:12.0031 6396 HECIx64 - ok
20:15:12.0070 6396 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
20:15:12.0073 6396 HidBatt - ok
20:15:12.0107 6396 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
20:15:12.0111 6396 HidBth - ok
20:15:12.0166 6396 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
20:15:12.0169 6396 HidIr - ok
20:15:12.0237 6396 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
20:15:12.0241 6396 hidserv - ok
20:15:12.0314 6396 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
20:15:12.0316 6396 HidUsb - ok
20:15:12.0368 6396 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
20:15:12.0373 6396 hkmsvc - ok
20:15:12.0425 6396 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
20:15:12.0433 6396 HomeGroupListener - ok
20:15:12.0489 6396 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
20:15:12.0499 6396 HomeGroupProvider - ok
20:15:12.0761 6396 [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
20:15:12.0764 6396 hpqcxs08 - ok
20:15:12.0826 6396 [ F3F72A2A86C22610BCA5439FA789DD52 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
20:15:12.0828 6396 hpqddsvc - ok
20:15:12.0887 6396 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
20:15:12.0908 6396 HpSAMD - ok
20:15:13.0105 6396 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
20:15:13.0140 6396 HTTP - ok
20:15:13.0188 6396 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
20:15:13.0190 6396 hwpolicy - ok
20:15:13.0241 6396 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
20:15:13.0244 6396 i8042prt - ok
20:15:13.0296 6396 [ A5F72BB0D024E7E463344105BE613AE4 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
20:15:13.0303 6396 iaStor - ok
20:15:13.0350 6396 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
20:15:13.0359 6396 iaStorV - ok
20:15:13.0461 6396 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:15:13.0477 6396 idsvc - ok
20:15:13.0806 6396 [ 677AA5991026A65ADA128C4B59CF2BAD ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
20:15:14.0141 6396 igfx - ok
20:15:14.0205 6396 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
20:15:14.0207 6396 iirsp - ok
20:15:14.0280 6396 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
20:15:14.0296 6396 IKEEXT - ok
20:15:14.0353 6396 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
20:15:14.0357 6396 Impcd - ok
20:15:14.0464 6396 [ A0C2C3D4C03C4FB896CFC53873784178 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
20:15:14.0502 6396 IntcAzAudAddService - ok
20:15:14.0545 6396 [ C6C1F19205DA83C801BE7C25F4E2EE07 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
20:15:14.0550 6396 IntcDAud - ok
20:15:14.0587 6396 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
20:15:14.0588 6396 intelide - ok
20:15:14.0632 6396 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
20:15:14.0633 6396 intelppm - ok
20:15:14.0660 6396 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
20:15:14.0665 6396 IPBusEnum - ok
20:15:14.0713 6396 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:15:14.0716 6396 IpFilterDriver - ok
20:15:14.0848 6396 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
20:15:14.0861 6396 iphlpsvc - ok
20:15:14.0903 6396 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
20:15:14.0906 6396 IPMIDRV - ok
20:15:14.0977 6396 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
20:15:14.0980 6396 IPNAT - ok
20:15:15.0086 6396 [ 50D6CCC6FF5561F9F56946B3E6164FB8 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
20:15:15.0112 6396 iPod Service - ok
20:15:15.0172 6396 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
20:15:15.0174 6396 IRENUM - ok
20:15:15.0237 6396 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
20:15:15.0239 6396 isapnp - ok
20:15:15.0286 6396 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
20:15:15.0292 6396 iScsiPrt - ok
20:15:15.0314 6396 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
20:15:15.0316 6396 kbdclass - ok
20:15:15.0386 6396 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
20:15:15.0388 6396 kbdhid - ok
20:15:15.0411 6396 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
20:15:15.0417 6396 KeyIso - ok
20:15:15.0479 6396 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
20:15:15.0482 6396 KSecDD - ok
20:15:15.0539 6396 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
20:15:15.0543 6396 KSecPkg - ok
20:15:15.0600 6396 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
20:15:15.0602 6396 ksthunk - ok
20:15:15.0652 6396 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
20:15:15.0663 6396 KtmRm - ok
20:15:15.0749 6396 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
20:15:15.0760 6396 LanmanServer - ok
20:15:15.0806 6396 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:15:15.0817 6396 LanmanWorkstation - ok
20:15:15.0861 6396 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
20:15:15.0863 6396 lltdio - ok
20:15:15.0910 6396 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
20:15:15.0920 6396 lltdsvc - ok
20:15:15.0951 6396 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
20:15:15.0956 6396 lmhosts - ok
20:15:16.0028 6396 [ 23D990150D56B670A62B21B9ABDD45EE ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
20:15:16.0034 6396 LMS - ok
20:15:16.0072 6396 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
20:15:16.0076 6396 LSI_FC - ok
20:15:16.0094 6396 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
20:15:16.0097 6396 LSI_SAS - ok
20:15:16.0123 6396 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
20:15:16.0126 6396 LSI_SAS2 - ok
20:15:16.0150 6396 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
20:15:16.0154 6396 LSI_SCSI - ok
20:15:16.0171 6396 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
20:15:16.0175 6396 luafv - ok
20:15:16.0236 6396 [ DC8490812A3B72811AE534F423B4C206 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
20:15:16.0250 6396 MBAMProtector - ok
20:15:16.0459 6396 [ 43683E970F008C93C9429EF428147A54 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
20:15:16.0467 6396 MBAMService - ok
20:15:16.0530 6396 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
20:15:16.0537 6396 Mcx2Svc - ok
20:15:16.0566 6396 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
20:15:16.0569 6396 megasas - ok
20:15:16.0618 6396 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
20:15:16.0624 6396 MegaSR - ok
20:15:16.0764 6396 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
20:15:16.0767 6396 Microsoft Office Groove Audit Service - ok
20:15:16.0811 6396 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
20:15:16.0819 6396 MMCSS - ok
20:15:16.0848 6396 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
20:15:16.0852 6396 Modem - ok
20:15:16.0888 6396 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
20:15:16.0890 6396 monitor - ok
20:15:16.0913 6396 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
20:15:16.0916 6396 mouclass - ok
20:15:16.0940 6396 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
20:15:16.0942 6396 mouhid - ok
20:15:16.0996 6396 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
20:15:16.0999 6396 mountmgr - ok
20:15:17.0055 6396 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
20:15:17.0060 6396 mpio - ok
20:15:17.0090 6396 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
20:15:17.0094 6396 mpsdrv - ok
20:15:17.0209 6396 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
20:15:17.0228 6396 MpsSvc - ok
20:15:17.0305 6396 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
20:15:17.0357 6396 MRxDAV - ok
20:15:17.0421 6396 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
20:15:17.0425 6396 mrxsmb - ok
20:15:17.0462 6396 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:15:17.0469 6396 mrxsmb10 - ok
20:15:17.0485 6396 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:15:17.0489 6396 mrxsmb20 - ok
20:15:17.0539 6396 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
20:15:17.0551 6396 msahci - ok
20:15:17.0571 6396 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
20:15:17.0575 6396 msdsm - ok
20:15:17.0601 6396 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
20:15:17.0609 6396 MSDTC - ok
20:15:17.0650 6396 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
20:15:17.0652 6396 Msfs - ok
20:15:17.0673 6396 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
20:15:17.0675 6396 mshidkmdf - ok
20:15:17.0725 6396 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
20:15:17.0727 6396 msisadrv - ok
20:15:17.0760 6396 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
20:15:17.0767 6396 MSiSCSI - ok
20:15:17.0774 6396 msiserver - ok
20:15:17.0831 6396 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
20:15:17.0833 6396 MSKSSRV - ok
20:15:17.0850 6396 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
20:15:17.0852 6396 MSPCLOCK - ok
20:15:17.0871 6396 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
20:15:17.0874 6396 MSPQM - ok
20:15:17.0934 6396 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
20:15:17.0942 6396 MsRPC - ok
20:15:17.0994 6396 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
20:15:17.0996 6396 mssmbios - ok
20:15:18.0012 6396 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
20:15:18.0014 6396 MSTEE - ok
20:15:18.0036 6396 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
20:15:18.0038 6396 MTConfig - ok
20:15:18.0072 6396 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
20:15:18.0075 6396 Mup - ok
20:15:18.0118 6396 [ 59AA4CFF0C9EDA2252BBF5B6C7C5AA21 ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
20:15:18.0124 6396 MyWiFiDHCPDNS - ok
20:15:18.0189 6396 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
20:15:18.0203 6396 napagent - ok
20:15:18.0257 6396 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
20:15:18.0265 6396 NativeWifiP - ok
20:15:18.0347 6396 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys
20:15:18.0373 6396 NDIS - ok
20:15:18.0416 6396 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
20:15:18.0419 6396 NdisCap - ok
20:15:18.0472 6396 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
20:15:18.0475 6396 NdisTapi - ok
20:15:18.0530 6396 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
20:15:18.0547 6396 Ndisuio - ok
20:15:18.0602 6396 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
20:15:18.0607 6396 NdisWan - ok
20:15:18.0657 6396 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
20:15:18.0662 6396 NDProxy - ok
20:15:18.0745 6396 [ 2334DC48997BA203B794DF3EE70521DB ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
20:15:18.0750 6396 Net Driver HPZ12 - ok
20:15:18.0795 6396 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
20:15:18.0797 6396 NetBIOS - ok
20:15:18.0862 6396 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
20:15:18.0871 6396 NetBT - ok
20:15:18.0900 6396 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
20:15:18.0905 6396 Netlogon - ok
20:15:18.0960 6396 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
20:15:18.0971 6396 Netman - ok
20:15:18.0998 6396 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
20:15:19.0012 6396 netprofm - ok
20:15:19.0050 6396 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:15:19.0053 6396 NetTcpPortSharing - ok
20:15:19.0291 6396 [ 9AA75919D0A5F33BEA0DF7B9DB09B755 ] NETwNs64 C:\Windows\system32\DRIVERS\NETwNs64.sys
20:15:19.0513 6396 NETwNs64 - ok
20:15:19.0562 6396 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
20:15:19.0565 6396 nfrd960 - ok
20:15:19.0641 6396 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
20:15:19.0652 6396 NlaSvc - ok
20:15:19.0692 6396 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
20:15:19.0694 6396 Npfs - ok
20:15:19.0726 6396 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
20:15:19.0732 6396 nsi - ok
20:15:19.0747 6396 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
20:15:19.0749 6396 nsiproxy - ok
20:15:19.0843 6396 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
20:15:19.0872 6396 Ntfs - ok
20:15:19.0907 6396 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
20:15:19.0909 6396 Null - ok
20:15:19.0956 6396 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
20:15:19.0960 6396 nvraid - ok
20:15:19.0984 6396 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
20:15:19.0989 6396 nvstor - ok
20:15:20.0034 6396 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
20:15:20.0038 6396 nv_agp - ok
20:15:20.0117 6396 [ 91B17F9DBB2E60FEAF27CADFB9998FFB ] NWADI C:\Windows\system32\DRIVERS\NWADIenum.sys
20:15:20.0129 6396 NWADI - ok
20:15:20.0169 6396 [ D944D4341429093F55CB7F0EC87C86B3 ] NWUSBCDFIL64 C:\Windows\system32\DRIVERS\NwUsbCdFil64.sys
20:15:20.0172 6396 NWUSBCDFIL64 - ok
20:15:20.0292 6396 [ A3FADCF96ABF4803E7A946CD48641AC3 ] NWUSBModem C:\Windows\system32\DRIVERS\nwusbmdm.sys
20:15:20.0311 6396 NWUSBModem - ok
20:15:20.0358 6396 [ A3FADCF96ABF4803E7A946CD48641AC3 ] NWUSBPort C:\Windows\system32\DRIVERS\nwusbser.sys
20:15:20.0363 6396 NWUSBPort - ok
20:15:20.0391 6396 [ A3FADCF96ABF4803E7A946CD48641AC3 ] NWUSBPort2 C:\Windows\system32\DRIVERS\nwusbser2.sys
20:15:20.0397 6396 NWUSBPort2 - ok
20:15:20.0558 6396 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
20:15:20.0566 6396 odserv - ok
20:15:20.0620 6396 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
20:15:20.0623 6396 ohci1394 - ok
20:15:20.0669 6396 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:15:20.0674 6396 ose - ok
20:15:20.0733 6396 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
20:15:20.0744 6396 p2pimsvc - ok
20:15:20.0777 6396 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
20:15:20.0791 6396 p2psvc - ok
20:15:20.0832 6396 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
20:15:20.0835 6396 Parport - ok
20:15:20.0882 6396 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
20:15:20.0885 6396 partmgr - ok
20:15:20.0925 6396 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
20:15:20.0934 6396 PcaSvc - ok
20:15:20.0987 6396 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
20:15:20.0992 6396 pci - ok
20:15:21.0010 6396 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
20:15:21.0013 6396 pciide - ok
20:15:21.0045 6396 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
20:15:21.0055 6396 pcmcia - ok
20:15:21.0088 6396 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
20:15:21.0091 6396 pcw - ok
20:15:21.0135 6396 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
20:15:21.0148 6396 PEAUTH - ok
20:15:21.0233 6396 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
20:15:21.0239 6396 PerfHost - ok
20:15:21.0536 6396 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
20:15:21.0637 6396 pla - ok
20:15:21.0801 6396 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
20:15:21.0815 6396 PlugPlay - ok
20:15:21.0880 6396 [ AC78DF349F0E4CFB8B667C0CFFF83CCE ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
20:15:21.0884 6396 Pml Driver HPZ12 - ok
20:15:21.0931 6396 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
20:15:21.0938 6396 PNRPAutoReg - ok
20:15:21.0977 6396 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
20:15:21.0987 6396 PNRPsvc - ok
20:15:22.0047 6396 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
20:15:22.0059 6396 PolicyAgent - ok
20:15:22.0117 6396 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
20:15:22.0127 6396 Power - ok
20:15:22.0183 6396 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
20:15:22.0186 6396 PptpMiniport - ok
20:15:22.0224 6396 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
20:15:22.0227 6396 Processor - ok
20:15:22.0289 6396 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
20:15:22.0298 6396 ProfSvc - ok
20:15:22.0367 6396 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
20:15:22.0372 6396 ProtectedStorage - ok
20:15:22.0421 6396 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
20:15:22.0425 6396 Psched - ok
20:15:22.0486 6396 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
20:15:22.0513 6396 ql2300 - ok
20:15:22.0574 6396 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
20:15:22.0578 6396 ql40xx - ok
20:15:22.0608 6396 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
20:15:22.0619 6396 QWAVE - ok
20:15:22.0649 6396 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
20:15:22.0673 6396 QWAVEdrv - ok
20:15:22.0703 6396 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
20:15:22.0705 6396 RasAcd - ok
20:15:22.0741 6396 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
20:15:22.0743 6396 RasAgileVpn - ok
20:15:22.0774 6396 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
20:15:22.0782 6396 RasAuto - ok
20:15:22.0831 6396 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
20:15:22.0835 6396 Rasl2tp - ok
20:15:22.0947 6396 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
20:15:22.0959 6396 RasMan - ok
20:15:23.0006 6396 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
20:15:23.0010 6396 RasPppoe - ok
20:15:23.0034 6396 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
20:15:23.0037 6396 RasSstp - ok
20:15:23.0103 6396 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
20:15:23.0110 6396 rdbss - ok
20:15:23.0125 6396 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
20:15:23.0128 6396 rdpbus - ok
20:15:23.0164 6396 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
20:15:23.0166 6396 RDPCDD - ok
20:15:23.0192 6396 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
20:15:23.0194 6396 RDPENCDD - ok
20:15:23.0208 6396 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
20:15:23.0217 6396 RDPREFMP - ok
20:15:23.0264 6396 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
20:15:23.0270 6396 RDPWD - ok
20:15:23.0341 6396 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
20:15:23.0346 6396 rdyboost - ok
20:15:23.0418 6396 [ 2528D733DA7F5AC8D3D32C74EE4CFF16 ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
20:15:23.0432 6396 RegSrvc - ok
20:15:23.0476 6396 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
20:15:23.0482 6396 RemoteAccess - ok
20:15:23.0525 6396 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
20:15:23.0534 6396 RemoteRegistry - ok
20:15:23.0608 6396 [ F12A68ED55053940CADD59CA5E3468DD ] RichVideo C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
20:15:23.0612 6396 RichVideo - ok
20:15:23.0629 6396 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
20:15:23.0637 6396 RpcEptMapper - ok
20:15:23.0662 6396 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
20:15:23.0694 6396 RpcLocator - ok
20:15:23.0817 6396 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
20:15:23.0831 6396 RpcSs - ok
20:15:23.0900 6396 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
20:15:23.0902 6396 rspndr - ok
20:15:24.0045 6396 [ BFE0EF0C4C15820698F50AD73AF5E35F ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
20:15:24.0053 6396 RTL8167 - ok
20:15:24.0098 6396 [ 4CA0DBA9E224473D664C25E411F5A3BD ] rtport C:\Windows\SysWOW64\drivers\rtport.sys
20:15:24.0100 6396 rtport - ok
20:15:24.0139 6396 [ 62DB6CC4B0818F1B5F3441241B098F12 ] SABI C:\Windows\system32\Drivers\SABI.sys
20:15:24.0141 6396 SABI - ok
20:15:24.0167 6396 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
20:15:24.0172 6396 SamSs - ok
20:15:24.0204 6396 [ D641337B75B9A9D5AE10687AA1097755 ] Samsung UPD Service C:\Windows\System32\SUPDSvc.exe
20:15:24.0214 6396 Samsung UPD Service - ok
20:15:24.0266 6396 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
20:15:24.0270 6396 sbp2port - ok
20:15:24.0313 6396 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
20:15:24.0323 6396 SCardSvr - ok
20:15:24.0371 6396 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
20:15:24.0374 6396 scfilter - ok
20:15:24.0449 6396 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
20:15:24.0474 6396 Schedule - ok
20:15:24.0528 6396 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
20:15:24.0531 6396 SCPolicySvc - ok
20:15:24.0684 6396 [ 1E1FDA546C41AE15EFE7D61C425C929F ] ScrybeUpdater C:\Program Files (x86)\Synaptics\Scrybe\Service\ScrybeUpdater.exe
20:15:24.0698 6396 ScrybeUpdater - ok
20:15:24.0754 6396 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
20:15:24.0763 6396 SDRSVC - ok
20:15:24.0841 6396 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
20:15:24.0844 6396 secdrv - ok
20:15:24.0921 6396 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
20:15:24.0942 6396 seclogon - ok
20:15:24.0984 6396 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
20:15:24.0992 6396 SENS - ok
20:15:25.0054 6396 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
20:15:25.0062 6396 SensrSvc - ok
20:15:25.0120 6396 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
20:15:25.0122 6396 Serenum - ok
20:15:25.0167 6396 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
20:15:25.0171 6396 Serial - ok
20:15:25.0257 6396 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
20:15:25.0259 6396 sermouse - ok
20:15:25.0334 6396 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
20:15:25.0343 6396 SessionEnv - ok
20:15:25.0393 6396 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
20:15:25.0395 6396 sffdisk - ok
20:15:25.0434 6396 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
20:15:25.0436 6396 sffp_mmc - ok
20:15:25.0470 6396 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
20:15:25.0472 6396 sffp_sd - ok
20:15:25.0530 6396 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
20:15:25.0532 6396 sfloppy - ok
20:15:25.0624 6396 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
20:15:25.0634 6396 SharedAccess - ok
20:15:25.0695 6396 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:15:25.0708 6396 ShellHWDetection - ok
20:15:25.0783 6396 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:15:25.0786 6396 SiSRaid2 - ok
20:15:25.0836 6396 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
20:15:25.0839 6396 SiSRaid4 - ok
20:15:25.0915 6396 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
20:15:25.0919 6396 SkypeUpdate - ok
20:15:25.0976 6396 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
20:15:25.0991 6396 Smb - ok
20:15:26.0071 6396 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
20:15:26.0078 6396 SNMPTRAP - ok
20:15:26.0131 6396 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
20:15:26.0154 6396 spldr - ok
20:15:26.0251 6396 [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler C:\Windows\System32\spoolsv.exe
20:15:26.0302 6396 Spooler - ok
20:15:26.0582 6396 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
20:15:26.0684 6396 sppsvc - ok
20:15:26.0741 6396 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
20:15:26.0749 6396 sppuinotify - ok
20:15:26.0808 6396 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
20:15:26.0817 6396 srv - ok
20:15:26.0849 6396 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
20:15:26.0857 6396 srv2 - ok
20:15:26.0878 6396 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
20:15:26.0882 6396 srvnet - ok
20:15:26.0921 6396 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
20:15:26.0932 6396 SSDPSRV - ok
20:15:26.0944 6396 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
20:15:26.0953 6396 SstpSvc - ok
20:15:26.0982 6396 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
20:15:26.0984 6396 stexstor - ok
20:15:27.0022 6396 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
20:15:27.0024 6396 StillCam - ok
20:15:27.0095 6396 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
20:15:27.0114 6396 stisvc - ok
20:15:27.0164 6396 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
20:15:27.0166 6396 swenum - ok
20:15:27.0195 6396 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
20:15:27.0211 6396 swprv - ok
20:15:27.0359 6396 [ 08425CD92972C6430F350A9697F4A553 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
20:15:27.0384 6396 SynTP - ok
20:15:27.0587 6396 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
20:15:27.0625 6396 SysMain - ok
20:15:27.0695 6396 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:15:27.0704 6396 TabletInputService - ok
20:15:27.0759 6396 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
20:15:27.0771 6396 TapiSrv - ok
20:15:27.0814 6396 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
20:15:27.0823 6396 TBS - ok
20:15:27.0934 6396 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
20:15:27.0969 6396 Tcpip - ok
20:15:28.0035 6396 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
20:15:28.0057 6396 TCPIP6 - ok
20:15:28.0107 6396 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
20:15:28.0110 6396 tcpipreg - ok
20:15:28.0138 6396 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
20:15:28.0140 6396 TDPIPE - ok
20:15:28.0187 6396 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
20:15:28.0190 6396 TDTCP - ok
20:15:28.0253 6396 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
20:15:28.0258 6396 tdx - ok
20:15:28.0279 6396 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
20:15:28.0294 6396 TermDD - ok
20:15:28.0343 6396 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
20:15:28.0362 6396 TermService - ok
20:15:28.0386 6396 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
20:15:28.0399 6396 Themes - ok
20:15:28.0424 6396 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
20:15:28.0429 6396 THREADORDER - ok
20:15:28.0452 6396 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
20:15:28.0476 6396 TrkWks - ok
20:15:28.0571 6396 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:15:28.0574 6396 TrustedInstaller - ok
20:15:28.0625 6396 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
20:15:28.0628 6396 tssecsrv - ok
20:15:28.0673 6396 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
20:15:28.0676 6396 TsUsbFlt - ok
20:15:28.0752 6396 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
20:15:28.0755 6396 tunnel - ok
20:15:28.0782 6396 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
20:15:28.0785 6396 uagp35 - ok
20:15:28.0845 6396 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
20:15:28.0855 6396 udfs - ok
20:15:28.0888 6396 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
20:15:28.0896 6396 UI0Detect - ok
20:15:28.0930 6396 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
20:15:28.0934 6396 uliagpkx - ok
20:15:28.0998 6396 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
20:15:29.0001 6396 umbus - ok
20:15:29.0030 6396 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
20:15:29.0033 6396 UmPass - ok
20:15:29.0160 6396 [ CBDEE152D73200EE49031A26310B9D3E ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
20:15:29.0185 6396 UNS - ok
20:15:29.0230 6396 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
20:15:29.0241 6396 upnphost - ok
20:15:29.0313 6396 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
20:15:29.0316 6396 USBAAPL64 - ok
20:15:29.0474 6396 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
20:15:29.0495 6396 usbaudio - ok
20:15:29.0558 6396 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
20:15:29.0579 6396 usbccgp - ok
20:15:29.0647 6396 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
20:15:29.0671 6396 usbcir - ok
20:15:29.0707 6396 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
20:15:29.0710 6396 usbehci - ok
20:15:29.0750 6396 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
20:15:29.0758 6396 usbhub - ok
20:15:29.0797 6396 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
20:15:29.0811 6396 usbohci - ok
20:15:29.0847 6396 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
20:15:29.0850 6396 usbprint - ok
20:15:29.0922 6396 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
20:15:29.0934 6396 usbscan - ok
20:15:30.0006 6396 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:15:30.0010 6396 USBSTOR - ok
20:15:30.0038 6396 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
20:15:30.0041 6396 usbuhci - ok
20:15:30.0124 6396 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
20:15:30.0130 6396 usbvideo - ok
20:15:30.0164 6396 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
20:15:30.0172 6396 UxSms - ok
20:15:30.0202 6396 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
20:15:30.0207 6396 VaultSvc - ok
20:15:30.0269 6396 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
20:15:30.0272 6396 vdrvroot - ok
20:15:30.0329 6396 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
20:15:30.0346 6396 vds - ok
20:15:30.0388 6396 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
20:15:30.0390 6396 vga - ok
20:15:30.0410 6396 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
20:15:30.0412 6396 VgaSave - ok
20:15:30.0469 6396 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
20:15:30.0475 6396 vhdmp - ok
20:15:30.0497 6396 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
20:15:30.0499 6396 viaide - ok
20:15:30.0530 6396 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
20:15:30.0533 6396 volmgr - ok
20:15:30.0581 6396 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
20:15:30.0588 6396 volmgrx - ok
20:15:30.0616 6396 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
20:15:30.0622 6396 volsnap - ok
20:15:31.0133 6396 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
20:15:31.0678 6396 vsmraid - ok
20:15:31.0784 6396 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
20:15:31.0834 6396 VSS - ok
20:15:31.0863 6396 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
20:15:31.0866 6396 vwifibus - ok
20:15:31.0940 6396 [ 6A3D66263414FF0D6FA754C646612F3F ] VWiFiFlt C:\Windows\system32\DRIVERS\vwififlt.sys
20:15:31.0963 6396 VWiFiFlt - ok
20:15:31.0974 6396 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
20:15:31.0976 6396 vwifimp - ok
20:15:32.0067 6396 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
20:15:32.0082 6396 W32Time - ok
20:15:32.0121 6396 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
20:15:32.0124 6396 WacomPen - ok
20:15:32.0208 6396 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
20:15:32.0212 6396 WANARP - ok
20:15:32.0220 6396 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
20:15:32.0222 6396 Wanarpv6 - ok
20:15:32.0308 6396 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
20:15:32.0331 6396 WatAdminSvc - ok
20:15:32.0416 6396 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
20:15:32.0450 6396 wbengine - ok
20:15:32.0502 6396 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
20:15:32.0518 6396 WbioSrvc - ok
20:15:32.0579 6396 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
20:15:32.0594 6396 wcncsvc - ok
20:15:32.0621 6396 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:15:32.0632 6396 WcsPlugInService - ok
20:15:32.0672 6396 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
20:15:32.0674 6396 Wd - ok
20:15:33.0145 6396 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
20:15:33.0768 6396 Wdf01000 - ok
20:15:33.0813 6396 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
20:15:33.0825 6396 WdiServiceHost - ok
20:15:33.0836 6396 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
20:15:33.0844 6396 WdiSystemHost - ok
20:15:34.0873 6396 [ D655B1A102E352D7801E7C8B36317A6D ] wdkmd C:\Windows\system32\DRIVERS\WDKMD.sys
20:15:35.0329 6396 wdkmd - ok
20:15:35.0440 6396 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
20:15:35.0453 6396 WebClient - ok
20:15:35.0492 6396 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
20:15:35.0513 6396 Wecsvc - ok
20:15:35.0540 6396 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
20:15:35.0548 6396 wercplsupport - ok
20:15:35.0597 6396 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
20:15:35.0606 6396 WerSvc - ok
20:15:35.0694 6396 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
20:15:35.0697 6396 WfpLwf - ok
20:15:35.0785 6396 [ F3C522691316A24328A7B58B0A86028D ] WiMAXAppSrv C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe
20:15:35.0798 6396 WiMAXAppSrv - ok
20:15:35.0824 6396 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
20:15:35.0826 6396 WIMMount - ok
20:15:35.0886 6396 WinDefend - ok
20:15:35.0899 6396 WinHttpAutoProxySvc - ok
20:15:35.0961 6396 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
20:15:35.0967 6396 Winmgmt - ok
20:15:36.0066 6396 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
20:15:36.0110 6396 WinRM - ok
20:15:36.0205 6396 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
20:15:36.0221 6396 WinUsb - ok
20:15:36.0285 6396 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
20:15:36.0311 6396 Wlansvc - ok
20:15:36.0387 6396 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
20:15:36.0398 6396 wlcrasvc - ok
20:15:36.0536 6396 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:15:36.0575 6396 wlidsvc - ok
20:15:36.0632 6396 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
20:15:36.0634 6396 WmiAcpi - ok
20:15:36.0677 6396 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
20:15:36.0681 6396 wmiApSrv - ok
20:15:36.0712 6396 WMPNetworkSvc - ok
20:15:36.0736 6396 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
20:15:36.0743 6396 WPCSvc - ok
20:15:36.0792 6396 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
20:15:36.0802 6396 WPDBusEnum - ok
20:15:36.0839 6396 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
20:15:36.0841 6396 ws2ifsl - ok
20:15:36.0910 6396 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
20:15:36.0919 6396 wscsvc - ok
20:15:36.0941 6396 WSearch - ok
20:15:37.0101 6396 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
20:15:37.0143 6396 wuauserv - ok
20:15:37.0163 6396 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
20:15:37.0166 6396 WudfPf - ok
20:15:37.0241 6396 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
20:15:37.0250 6396 WUDFRd - ok
20:15:37.0311 6396 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
20:15:37.0320 6396 wudfsvc - ok
20:15:37.0394 6396 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
20:15:37.0420 6396 WwanSvc - ok
20:15:37.0477 6396 ================ Scan global ===============================
20:15:37.0509 6396 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
20:15:37.0606 6396 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
20:15:37.0640 6396 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
20:15:37.0678 6396 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
20:15:37.0794 6396 [ 014A9CB92514E27C0107614DF764BC06 ] C:\Windows\system32\services.exe
20:15:37.0806 6396 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.b ) - infected
20:15:37.0806 6396 C:\Windows\system32\services.exe - detected Virus.Win64.ZAccess.b (0)
20:15:37.0807 6396 ================ Scan MBR ==================================
20:15:37.0833 6396 [ 2E5DEBB2116B3417023E0D6562D7ED07 ] \Device\Harddisk0\DR0
20:15:38.0317 6396 \Device\Harddisk0\DR0 - ok
20:15:38.0318 6396 ================ Scan VBR ==================================
20:15:38.0322 6396 [ 0F68E8F12C0E3A1CFCCA39CCF34C0CE4 ] \Device\Harddisk0\DR0\Partition1
20:15:38.0325 6396 \Device\Harddisk0\DR0\Partition1 - ok
20:15:38.0354 6396 [ 7FD2D6E9FE6F5457F7A3995314A121E6 ] \Device\Harddisk0\DR0\Partition2
20:15:38.0356 6396 \Device\Harddisk0\DR0\Partition2 - ok
20:15:38.0359 6396 ============================================================
20:15:38.0359 6396 Scan finished
20:15:38.0359 6396 ============================================================
20:15:38.0380 6704 Detected object count: 1
20:15:38.0380 6704 Actual detected object count: 1
20:16:06.0293 6704 C:\Windows\system32\services.exe - copied to quarantine
20:16:08.0274 6704 C:\Windows\assembly\GAC_32\desktop.ini - copied to quarantine
20:16:13.0222 6704 C:\Windows\assembly\GAC_64\desktop.ini - copied to quarantine
20:16:13.0423 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\@ - copied to quarantine
20:16:13.0452 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\L\00000004.@ - copied to quarantine
20:16:13.0455 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\L\1afb2d56 - copied to quarantine
20:16:13.0458 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\L\201d3dde - copied to quarantine
20:16:13.0462 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\00000004.@ - copied to quarantine
20:16:18.0543 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\00000008.@ - copied to quarantine
20:16:18.0572 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\000000cb.@ - copied to quarantine
20:16:18.0633 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz1142.tmp - copied to quarantine
20:16:18.0658 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz11D0.tmp - copied to quarantine
20:16:18.0687 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz1428.tmp - copied to quarantine
20:16:18.0721 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz147C.tmp - copied to quarantine
20:16:18.0779 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz17E6.tmp - copied to quarantine
20:16:18.0807 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz19A9.tmp - copied to quarantine
20:16:18.0853 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz1D11.tmp - copied to quarantine
20:16:18.0903 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz1D12.tmp - copied to quarantine
20:16:18.0955 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz2362.tmp - copied to quarantine
20:16:19.0028 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz243C.tmp - copied to quarantine
20:16:19.0079 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz243D.tmp - copied to quarantine
20:16:19.0123 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz2566.tmp - copied to quarantine
20:16:19.0175 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz25EB.tmp - copied to quarantine
20:16:19.0228 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz268.tmp - copied to quarantine
20:16:19.0300 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz2D14.tmp - copied to quarantine
20:16:19.0346 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz2ECE.tmp - copied to quarantine
20:16:19.0373 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz3101.tmp - copied to quarantine
20:16:19.0432 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz3513.tmp - copied to quarantine
20:16:19.0481 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz3641.tmp - copied to quarantine
20:16:19.0512 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz391F.tmp - copied to quarantine
20:16:19.0582 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz39E5.tmp - copied to quarantine
20:16:19.0633 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz3A87.tmp - copied to quarantine
20:16:19.0661 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz3AF5.tmp - copied to quarantine
20:16:19.0707 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz3DE0.tmp - copied to quarantine
20:16:19.0750 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz3F33.tmp - copied to quarantine
20:16:19.0790 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz479E.tmp - copied to quarantine
20:16:19.0878 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz47E5.tmp - copied to quarantine
20:16:19.0952 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz4833.tmp - copied to quarantine
20:16:19.0987 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz4C59.tmp - copied to quarantine
20:16:20.0075 6704 C:\Users\Ethan\AppData\Local\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\@ - copied to quarantine
20:16:35.0440 6704 Backup copy found, using it..
20:16:35.0533 6704 C:\Windows\assembly\GAC_32\desktop.ini - will be deleted on reboot
20:16:35.0533 6704 C:\Windows\assembly\GAC_64\desktop.ini - will be deleted on reboot
20:16:35.0559 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\@ - will be deleted on reboot
20:16:35.0581 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\00000004.@ - will be deleted on reboot
20:16:35.0581 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\00000008.@ - will be deleted on reboot
20:16:35.0582 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\000000cb.@ - will be deleted on reboot
20:16:35.0583 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz1142.tmp - will be deleted on reboot
20:16:35.0584 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz11D0.tmp - will be deleted on reboot
20:16:35.0584 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz1428.tmp - will be deleted on reboot
20:16:35.0585 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz147C.tmp - will be deleted on reboot
20:16:35.0586 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz17E6.tmp - will be deleted on reboot
20:16:35.0586 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz19A9.tmp - will be deleted on reboot
20:16:35.0587 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz1D11.tmp - will be deleted on reboot
20:16:35.0588 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz1D12.tmp - will be deleted on reboot
20:16:35.0589 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz2362.tmp - will be deleted on reboot
20:16:35.0589 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz243C.tmp - will be deleted on reboot
20:16:35.0590 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz243D.tmp - will be deleted on reboot
20:16:35.0590 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz2566.tmp - will be deleted on reboot
20:16:35.0591 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz25EB.tmp - will be deleted on reboot
20:16:35.0595 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz268.tmp - will be deleted on reboot
20:16:35.0596 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz2D14.tmp - will be deleted on reboot
20:16:35.0596 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz2ECE.tmp - will be deleted on reboot
20:16:35.0597 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz3101.tmp - will be deleted on reboot
20:16:35.0598 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz3513.tmp - will be deleted on reboot
20:16:35.0598 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz3641.tmp - will be deleted on reboot
20:16:35.0599 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz391F.tmp - will be deleted on reboot
20:16:35.0600 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz39E5.tmp - will be deleted on reboot
20:16:35.0600 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz3A87.tmp - will be deleted on reboot
20:16:35.0601 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz3AF5.tmp - will be deleted on reboot
20:16:35.0602 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz3DE0.tmp - will be deleted on reboot
20:16:35.0603 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz3F33.tmp - will be deleted on reboot
20:16:35.0604 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz479E.tmp - will be deleted on reboot
20:16:35.0604 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz47E5.tmp - will be deleted on reboot
20:16:35.0605 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz4833.tmp - will be deleted on reboot
20:16:35.0606 6704 C:\Windows\installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz4C59.tmp - will be deleted on reboot
20:16:35.0627 6704 C:\Users\Ethan\AppData\Local\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\@ - will be deleted on reboot
20:16:35.0630 6704 C:\Windows\system32\services.exe - will be cured on reboot
20:16:35.0630 6704 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.b ) - User select action: Cure
20:17:31.0052 6340 Deinitialize success

#4 ebartane

ebartane
  • Topic Starter

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Local time:05:23 PM

Posted 05 September 2012 - 10:47 PM

I had some problems with aswMBR. Three times while running the scan my computer shut down stating that there was a problem and my computer was shutting down to prevent damage. I then performed the scan in safe mode and it appeared to freeze while scanning. I was still able to save a log but I am unsure if its complete. Here is what I have:


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-09-05 22:38:05
-----------------------------
22:38:05.419 OS Version: Windows x64 6.1.7601 Service Pack 1
22:38:05.419 Number of processors: 4 586 0x2505
22:38:05.419 ComputerName: ETHAN-PC UserName: Ethan
22:38:07.057 Initialize success
22:38:08.959 AVAST engine defs: 12090502
22:38:10.641 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
22:38:10.643 Disk 0 Vendor: Hitachi_ PB4O Size: 476940MB BusType: 3
22:38:10.673 Disk 0 MBR read successfully
22:38:10.675 Disk 0 MBR scan
22:38:11.315 Disk 0 unknown MBR code
22:38:11.339 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
22:38:11.918 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 459262 MB offset 206848
22:38:11.974 Disk 0 Partition 3 00 27 Hidden NTFS WinRE NTFS 17575 MB offset 940775424
22:38:12.367 Disk 0 scanning C:\Windows\system32\drivers
22:38:30.730 Service scanning
22:39:00.115 Modules scanning
22:39:00.115 Disk 0 trace - called modules:
22:39:00.131 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
22:39:00.162 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800458c790]
22:39:00.162 3 CLASSPNP.SYS[fffff88001b5f43f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa80042b1050]
22:39:00.802 AVAST engine scan C:\Windows
22:39:04.967 AVAST engine scan C:\Windows\system32
22:41:27.083 AVAST engine scan C:\Windows\system32\drivers
22:41:41.158 AVAST engine scan C:\Users\Ethan
23:42:58.255 Disk 0 MBR has been saved successfully to "C:\Users\Ethan\Downloads\MBR.dat"
23:42:58.261 The log file has been saved successfully to "C:\Users\Ethan\Downloads\aswMBR.txt"

#5 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:23 PM

Posted 05 September 2012 - 10:50 PM

Go ahead with ESET scan.Also run TDSSkiller once again and post the new log

#6 ebartane

ebartane
  • Topic Starter

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Local time:05:23 PM

Posted 05 September 2012 - 10:55 PM

I apologize. Almost right after I posted previously aswMBR unfroze and was able to complete the scan. Here is the complete scan log. Again this was ran in safe mode.


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-09-05 22:38:05
-----------------------------
22:38:05.419 OS Version: Windows x64 6.1.7601 Service Pack 1
22:38:05.419 Number of processors: 4 586 0x2505
22:38:05.419 ComputerName: ETHAN-PC UserName: Ethan
22:38:07.057 Initialize success
22:38:08.959 AVAST engine defs: 12090502
22:38:10.641 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
22:38:10.643 Disk 0 Vendor: Hitachi_ PB4O Size: 476940MB BusType: 3
22:38:10.673 Disk 0 MBR read successfully
22:38:10.675 Disk 0 MBR scan
22:38:11.315 Disk 0 unknown MBR code
22:38:11.339 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
22:38:11.918 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 459262 MB offset 206848
22:38:11.974 Disk 0 Partition 3 00 27 Hidden NTFS WinRE NTFS 17575 MB offset 940775424
22:38:12.367 Disk 0 scanning C:\Windows\system32\drivers
22:38:30.730 Service scanning
22:39:00.115 Modules scanning
22:39:00.115 Disk 0 trace - called modules:
22:39:00.131 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
22:39:00.162 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800458c790]
22:39:00.162 3 CLASSPNP.SYS[fffff88001b5f43f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa80042b1050]
22:39:00.802 AVAST engine scan C:\Windows
22:39:04.967 AVAST engine scan C:\Windows\system32
22:41:27.083 AVAST engine scan C:\Windows\system32\drivers
22:41:41.158 AVAST engine scan C:\Users\Ethan
23:42:58.255 Disk 0 MBR has been saved successfully to "C:\Users\Ethan\Downloads\MBR.dat"
23:42:58.261 The log file has been saved successfully to "C:\Users\Ethan\Downloads\aswMBR.txt"
23:45:24.343 AVAST engine scan C:\ProgramData
23:51:21.566 Scan finished successfully
23:53:28.485 Disk 0 MBR has been saved successfully to "C:\Users\Ethan\Downloads\MBR.dat"
23:53:28.513 The log file has been saved successfully to "C:\Users\Ethan\Downloads\aswMBR2.txt"

#7 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:23 PM

Posted 05 September 2012 - 10:57 PM

No problem.Check my previous instructions.

#8 ebartane

ebartane
  • Topic Starter

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Local time:05:23 PM

Posted 06 September 2012 - 06:49 AM

Here is the ESET list of threats:


C:\TDSSKiller_Quarantine\05.09.2012_20.14.41\zasubsys0000\file0000\trzA44F.tmp Win64/Patched.B.Gen trojan deleted - quarantined
C:\TDSSKiller_Quarantine\05.09.2012_20.14.41\zasubsys0000\zafs0000\trzAC4C.tmp Win32/Sirefef.EZ trojan deleted - quarantined
C:\TDSSKiller_Quarantine\05.09.2012_20.14.41\zasubsys0000\zafs0000\trzBF7F.tmp Win64/Sirefef.AD trojan deleted - quarantined
C:\TDSSKiller_Quarantine\05.09.2012_20.14.41\zasubsys0000\zafs0000\trzD458.tmp Win64/Conedex.B trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\05.09.2012_20.14.41\zasubsys0000\zafs0000\trzD489.tmp a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\05.09.2012_20.14.41\zasubsys0000\zafs0000\trzD49A.tmp Win64/Sirefef.AP trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\05.09.2012_20.14.41\zasubsys0000\zafs0000\trzD4C9.tmp a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\05.09.2012_20.14.41\zasubsys0000\zafs0000\trzD578.tmp Win64/Conedex.B trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\05.09.2012_20.14.41\zasubsys0000\zafs0000\trzD5B7.tmp a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\05.09.2012_20.14.41\zasubsys0000\zafs0000\trzD5F7.tmp Win64/Conedex.B trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\05.09.2012_20.14.41\zasubsys0000\zafs0000\trzD696.tmp a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\05.09.2012_20.14.41\zasubsys0000\zafs0000\trzD6C6.tmp a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\05.09.2012_20.14.41\zasubsys0000\zafs0000\trzD715.tmp Win64/Sirefef.AP trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\05.09.2012_20.14.41\zasubsys0000\zafs0000\trzD755.tmp Win64/Sirefef.AP trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\05.09.2012_20.14.41\zasubsys0000\zafs0000\trzD794.tmp Win64/Sirefef.AP trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\05.09.2012_20.14.41\zasubsys0000\zafs0000\trzD7D4.tmp a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\05.09.2012_20.14.41\zasubsys0000\zafs0000\trzD7E4.tmp Win64/Sirefef.AP trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\05.09.2012_20.14.41\zasubsys0000\zafs0000\trzD883.tmp a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\05.09.2012_20.14.41\zasubsys0000\zafs0000\trzD903.tmp a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\05.09.2012_20.14.41\zasubsys0000\zafs0000\trzD991.tmp a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\05.09.2012_20.14.41\zasubsys0000\zafs0000\trzD9B1.tmp a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\05.09.2012_20.14.41\zasubsys0000\zafs0000\tsk0007.dta Win64/Agent.BA trojan cleaned by deleting - quarantined
C:\Windows\Installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz52FF.tmp Win64/Sirefef.AP trojan cleaned by deleting - quarantined
C:\Windows\Installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz54F5.tmp a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
C:\Windows\Installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz5909.tmp a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
C:\Windows\Installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz5944.tmp a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
C:\Windows\Installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz68E2.tmp a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
C:\Windows\Installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz6EF7.tmp Win64/Sirefef.AP trojan cleaned by deleting - quarantined
C:\Windows\Installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz79B3.tmp a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
C:\Windows\Installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz8D15.tmp a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
C:\Windows\Installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz8FC.tmp Win64/Sirefef.AP trojan cleaned by deleting - quarantined
C:\Windows\Installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz919B.tmp Win64/Sirefef.AP trojan cleaned by deleting - quarantined
C:\Windows\Installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz93C7.tmp Win64/Conedex.B trojan cleaned by deleting - quarantined
C:\Windows\Installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz96F9.tmp a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
C:\Windows\Installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz9C4C.tmp a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
C:\Windows\Installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trz9DED.tmp Win64/Conedex.B trojan cleaned by deleting - quarantined
C:\Windows\Installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trzA030.tmp Win64/Sirefef.AP trojan cleaned by deleting - quarantined
C:\Windows\Installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trzA7E4.tmp Win64/Sirefef.AP trojan cleaned by deleting - quarantined
C:\Windows\Installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trzB06A.tmp Win64/Conedex.B trojan cleaned by deleting - quarantined
C:\Windows\Installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trzB980.tmp Win64/Sirefef.AP trojan cleaned by deleting - quarantined
C:\Windows\Installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trzC433.tmp Win64/Conedex.B trojan cleaned by deleting - quarantined
C:\Windows\Installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trzC55D.tmp Win64/Sirefef.AP trojan cleaned by deleting - quarantined
C:\Windows\Installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trzC732.tmp a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
C:\Windows\Installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trzC8BA.tmp Win64/Conedex.B trojan cleaned by deleting - quarantined
C:\Windows\Installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trzCC60.tmp a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
C:\Windows\Installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trzD635.tmp a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
C:\Windows\Installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trzD71.tmp a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
C:\Windows\Installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trzDAC6.tmp a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
C:\Windows\Installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trzDBB7.tmp a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
C:\Windows\Installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trzDEAB.tmp a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
C:\Windows\Installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trzE513.tmp Win64/Sirefef.AP trojan cleaned by deleting - quarantined
C:\Windows\Installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trzE794.tmp Win64/Sirefef.AP trojan cleaned by deleting - quarantined
C:\Windows\Installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trzED85.tmp a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
C:\Windows\Installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trzF159.tmp Win64/Sirefef.AP trojan cleaned by deleting - quarantined
C:\Windows\Installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trzF1F2.tmp Win64/Conedex.B trojan cleaned by deleting - quarantined
C:\Windows\Installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trzF685.tmp Win64/Sirefef.AP trojan cleaned by deleting - quarantined
C:\Windows\Installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trzFC7E.tmp a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
C:\Windows\Installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trzFDB.tmp Win64/Sirefef.AP trojan cleaned by deleting - quarantined
C:\Windows\Installer\{e7d089c1-d3da-76b8-c2e2-c5740b08b62d}\U\trzFF6A.tmp Win64/Conedex.B trojan cleaned by deleting - quarantined

#9 ebartane

ebartane
  • Topic Starter

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Local time:05:23 PM

Posted 06 September 2012 - 06:54 AM

I ran TDSSkiller as before. I changed the parameters. It says no threats found.

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:23 PM

Posted 06 September 2012 - 06:59 AM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log

#11 ebartane

ebartane
  • Topic Starter

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Local time:05:23 PM

Posted 06 September 2012 - 09:30 PM

Here is the first Malware scan: No Infected Items!


Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org

Database version: v2012.09.06.12

Windows 7 Service Pack 1 x64 NTFS (Safe Mode/Networking)
Internet Explorer 9.0.8112.16421
Ethan :: ETHAN-PC [administrator]

9/6/2012 8:29:45 PM
mbam-log-2012-09-06 (20-29-45).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 545715
Time elapsed: 1 hour(s), 58 minute(s), 53 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:23 PM

Posted 06 September 2012 - 09:49 PM

Please run malwarebytes in normal mode and post the logs

#13 ebartane

ebartane
  • Topic Starter

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Local time:05:23 PM

Posted 07 September 2012 - 05:57 AM

Malwarebytes Normal Scan:


Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org

Database version: v2012.09.07.02

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Ethan :: ETHAN-PC [administrator]

Protection: Enabled

9/6/2012 10:55:24 PM
mbam-log-2012-09-06 (22-55-24).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 547395
Time elapsed: 2 hour(s), 33 minute(s), 30 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#14 ebartane

ebartane
  • Topic Starter

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Local time:05:23 PM

Posted 07 September 2012 - 06:00 AM

Mini Toolbar:


MiniToolBox by Farbar Version: 23-07-2012
Ran by Ethan (administrator) on 07-09-2012 at 06:58:56
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

127.0.0.1 localhost

========================= IP Configuration: ================================

Intel® Centrino® Advanced-N 6250 AGN = Wireless Network Connection (Connected)
Intel® Centrino® WiMAX 6250 = Local Area Connection 2 (Hardware not present)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global
add address name="Wireless Network Connection 3" address=192.168.16.2 mask=255.255.255.0


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Ethan-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 64-80-99-20-A5-99
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel® Centrino® Advanced-N 6250 AGN
Physical Address. . . . . . . . . : 64-80-99-20-A5-98
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::60e2:3be5:8182:dcf8%12(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.104(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Thursday, September 06, 2012 10:42:13 PM
Lease Expires . . . . . . . . . . : Saturday, September 08, 2012 6:54:26 AM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 375685273
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-91-EF-51-00-00-FF-00-20-10
DNS Servers . . . . . . . . . . . : 74.128.17.114
74.128.19.102
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : E8-11-32-4D-BE-85
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{719A39AE-159E-43E2-9B8A-FFBD460F6683}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{A1D97E98-42C4-4BDF-8890-881896C147BD}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{C51F78F4-ADE9-4666-B59F-F44874E52C36}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 9:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:2c63:757:9fe3:5d44(Preferred)
Link-local IPv6 Address . . . . . : fe80::2c63:757:9fe3:5d44%18(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: cache1.insightbb.com
Address: 74.128.17.114

Name: google.com
Addresses: 2607:f8b0:4009:803::1005
74.125.225.34
74.125.225.35
74.125.225.36
74.125.225.37
74.125.225.38
74.125.225.39
74.125.225.40
74.125.225.41
74.125.225.46
74.125.225.32
74.125.225.33


Pinging google.com [74.125.225.104] with 32 bytes of data:
Reply from 74.125.225.104: bytes=32 time=23ms TTL=53
Reply from 74.125.225.104: bytes=32 time=18ms TTL=53

Ping statistics for 74.125.225.104:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 18ms, Maximum = 23ms, Average = 20ms
Server: cache1.insightbb.com
Address: 74.128.17.114

Name: yahoo.com
Addresses: 72.30.38.140
98.138.253.109
98.139.183.24


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=103ms TTL=48
Reply from 98.138.253.109: bytes=32 time=98ms TTL=48

Ping statistics for 98.138.253.109:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 98ms, Maximum = 103ms, Average = 100ms
Server: cache1.insightbb.com
Address: 74.128.17.114

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
13...64 80 99 20 a5 99 ......Microsoft Virtual WiFi Miniport Adapter
12...64 80 99 20 a5 98 ......Intel® Centrino® Advanced-N 6250 AGN
10...e8 11 32 4d be 85 ......Realtek PCIe GBE Family Controller
1...........................Software Loopback Interface 1
19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
18...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.104 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.104 281
192.168.1.104 255.255.255.255 On-link 192.168.1.104 281
192.168.1.255 255.255.255.255 On-link 192.168.1.104 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.104 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.104 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
18 58 ::/0 On-link
1 306 ::1/128 On-link
18 58 2001::/32 On-link
18 306 2001:0:4137:9e76:2c63:757:9fe3:5d44/128
On-link
12 281 fe80::/64 On-link
18 306 fe80::/64 On-link
18 306 fe80::2c63:757:9fe3:5d44/128
On-link
12 281 fe80::60e2:3be5:8182:dcf8/128
On-link
1 306 ff00::/8 On-link
18 306 ff00::/8 On-link
12 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Catalog5 02 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 03 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

Catalog5 04 C:\Windows\SysWOW64\nwprovau.dll [File Not found] ()
Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 08 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 mswsock.dll [File Not found] ()
Catalog9 05 mswsock.dll [File Not found] ()
Catalog9 06 mswsock.dll [File Not found] ()
Catalog9 07 mswsock.dll [File Not found] ()
Catalog9 08 mswsock.dll [File Not found] ()
Catalog9 09 mswsock.dll [File Not found] ()
Catalog9 10 mswsock.dll [File Not found] ()
Catalog9 11 mswsock.dll [File Not found] ()
Catalog9 12 mswsock.dll [File Not found] ()
Catalog9 13 mswsock.dll [File Not found] ()
Catalog9 14 mswsock.dll [File Not found] ()
Catalog9 15 mswsock.dll [File Not found] ()
Catalog9 16 mswsock.dll [File Not found] ()
Catalog9 17 mswsock.dll [File Not found] ()
Catalog9 18 mswsock.dll [File Not found] ()
Catalog9 19 mswsock.dll [File Not found] ()
Catalog9 20 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 21 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 22 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 23 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 24 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 25 mswsock.dll [File Not found] ()
Catalog9 26 mswsock.dll [File Not found] ()
Catalog9 27 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 28 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 29 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 07 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

x64-Catalog5 08 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 mswsock.dll [File Not found] ()
x64-Catalog9 05 mswsock.dll [File Not found] ()
x64-Catalog9 06 mswsock.dll [File Not found] ()
x64-Catalog9 07 mswsock.dll [File Not found] ()
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (09/06/2012 10:40:20 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (09/05/2012 11:45:15 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (09/05/2012 09:45:39 PM) (Source: Application Hang) (User: )
Description: The program iexplore.exe version 9.0.8112.16447 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 17dc

Start Time: 01cd8bd1268e816a

Termination Time: 15

Application Path: C:\Program Files\Internet Explorer\iexplore.exe

Report Id:

Error: (09/05/2012 08:16:49 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (09/05/2012 05:55:15 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15647

Error: (09/05/2012 05:55:15 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 15647

Error: (09/05/2012 05:55:15 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (09/05/2012 01:30:57 PM) (Source: Application Hang) (User: )
Description: The program wmplayer.exe version 12.0.7601.17514 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: db0

Start Time: 01cd8b8c1370ba05

Termination Time: 30

Application Path: C:\Program Files (x86)\Windows Media Player\wmplayer.exe

Report Id: 71c4a7fb-f77f-11e1-8831-e811324dbe85

Error: (09/05/2012 01:29:57 PM) (Source: Application Hang) (User: )
Description: The program wmplayer.exe version 12.0.7601.17514 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 13c4

Start Time: 01cd8b8bf62c40e7

Termination Time: 30

Application Path: C:\Program Files (x86)\Windows Media Player\wmplayer.exe

Report Id: 4dd98371-f77f-11e1-8831-e811324dbe85

Error: (09/05/2012 01:29:07 PM) (Source: Application Hang) (User: )
Description: The program wmplayer.exe version 12.0.7601.17514 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: c0c

Start Time: 01cd8b8be52ab748

Termination Time: 40

Application Path: C:\Program Files (x86)\Windows Media Player\wmplayer.exe

Report Id: 2ffe96a2-f77f-11e1-8831-e811324dbe85


System errors:
=============
Error: (09/06/2012 10:43:47 PM) (Source: Service Control Manager) (User: )
Description: The Intel® PROSet/Wireless WiMAX Red Bend Device Management Service service hung on starting.

Error: (09/06/2012 10:42:22 PM) (Source: Service Control Manager) (User: )
Description: The Windows Defender service terminated with the following error:
%%126

Error: (09/06/2012 10:35:04 PM) (Source: WMPNetworkSvc) (User: )
Description: WMPNetworkSvc0x80004005

Error: (09/06/2012 10:33:48 PM) (Source: Service Control Manager) (User: )
Description: The Intel® PROSet/Wireless WiMAX Red Bend Device Management Service service hung on starting.

Error: (09/06/2012 10:32:16 PM) (Source: Service Control Manager) (User: )
Description: The Windows Defender service terminated with the following error:
%%126

Error: (09/06/2012 10:29:44 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (09/06/2012 10:29:44 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (09/06/2012 10:29:44 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (09/06/2012 10:27:44 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (09/06/2012 10:27:44 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068


Microsoft Office Sessions:
=========================
Error: (10/30/2011 08:49:31 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6565.5003, Microsoft Office Version: 12.0.6425.1000. This session lasted 1149785 seconds with 300 seconds of active time. This session ended with a crash.


=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
???? ??? Windows Live (Version: 15.4.3502.0922)
???? Windows Live (Version: 15.4.3502.0922)
?????? ??????? ?? Windows Live (Version: 15.4.3502.0922)
???????? ?? Messenger (Version: 15.4.3502.0922)
???????? ?????????? Windows Live (Version: 15.4.3502.0922)
????????? Messenger (Version: 15.4.3502.0922)
?????????? Windows Live (Version: 15.4.3502.0922)
??????????? ?? Windows Live (Version: 15.4.3502.0922)
µTorrent (Version: 2.2.1)
4500_G510af_Help (Version: 000.0.439.000)
4500G510af (Version: 000.0.423.000)
4500G510af_Software_Min (Version: 000.0.423.000)
64 Bit HP CIO Components Installer (Version: 7.2.8)
A-PDF Image Converter Pro
Adobe AIR (Version: 2.6.0.19140)
Adobe Flash Player 11 ActiveX (Version: 11.3.300.271)
Adobe Reader X (10.1.4) (Version: 10.1.4)
Adobe Shockwave Player 11.5 (Version: 11.5.9.620)
Amazon Add to Wish List IE Extension 1.2 (Version: 1.2)
„Messenger“ pagalbine priemone (Version: 15.4.3502.0922)
Apple Application Support (Version: 2.1.7)
Apple Mobile Device Support (Version: 5.1.1.4)
Apple Software Update (Version: 2.1.3.127)
Audacity 1.2.6
avast! Free Antivirus (Version: 7.0.1456.0)
„Windows Live Essentials“ (Version: 15.4.3502.0922)
„Windows Live Mail“ (Version: 15.4.3502.0922)
„Windows Live Messenger“ (Version: 15.4.3502.0922)
„Windows Live“ fotogalerija (Version: 15.4.3502.0922)
BatteryLifeExtender (Version: 1.0.10)
Best Buy pc app (Version: 3.0.0.0)
Best Buy pc app (Version: 3.2.420.5)
Best Case Bankruptcy (Version: 20)
Bing Rewards Client Installer (Version: 16.0.345.0)
Bonjour (Version: 3.0.0.10)
BufferChm (Version: 130.0.331.000)
Click to Call with Skype (Version: 5.6.8153)
Complemento Messenger (Version: 15.4.3502.0922)
Complément Messenger (Version: 15.4.3502.0922)
CyberLink Media Suite (Version: 8.0.2227)
CyberLink Media+ Player10 (Version: 10.0.1110.00)
CyberLink MediaShow (Version: 5.0.1130a)
CyberLink Power2Go (Version: 6.1.3802)
CyberLink PowerDirector (Version: 8.0.3306)
CyberLink YouCam (Version: 3.1.3509)
D3DX10 (Version: 15.4.2368.0902)
Destinations (Version: 130.0.0.0)
DeviceDiscovery (Version: 130.0.372.000)
DocMgr (Version: 130.0.000.000)
DocProc (Version: 13.0.0.0)
Doplnok programu Messenger (Version: 15.4.3502.0922)
Easy Content Share (Version: 1.0)
Easy Display Manager (Version: 3.2)
Easy Migration (Version: 1.0.0.5)
Easy Network Manager (Version: 4.4.6)
Easy SpeedUp Manager (Version: 2.1.1.1)
EasyBatteryManager (Version: 4.0.0.4)
EasyFileShare (Version: 1.0.11)
ESET Online Scanner v3
ETDWare PS/2-X64 8.0.7.1_WHQL (Version: 8.0.7.1)
Fast Start (Version: 2.2.0.0)
Fax (Version: 130.0.418.000)
Fotogalerija Windows Live (Version: 15.4.3502.0922)
Galeria de Fotografias do Windows Live (Version: 15.4.3502.0922)
Galeria fotografii uslugi Windows Live (Version: 15.4.3502.0922)
Galerie de photos Windows Live (Version: 15.4.3502.0922)
Galerie foto Windows Live (Version: 15.4.3502.0922)
Galería fotográfica de Windows Live (Version: 15.4.3502.0922)
Google Chrome (Version: 21.0.1180.89)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.4.3203.136)
Google Update Helper (Version: 1.3.21.115)
GPBaseService2 (Version: 130.0.371.000)
HP Customer Participation Program 13.0 (Version: 13.0)
HP Document Manager 2.0 (Version: 2.0)
HP Imaging Device Functions 13.0 (Version: 13.0)
HP Officejet 4500 G510a-f (Version: 13.0)
HP Smart Web Printing 4.5 (Version: 4.5)
HP Solution Center 13.0 (Version: 13.0)
HP Update (Version: 5.003.001.001)
HPProductAssistant (Version: 130.0.371.000)
HPSSupply (Version: 130.0.371.000)
Intel PROSet Wireless
Intel WiMAX Tutorial (Version: 1.5.3.1)
Intel® Control Center (Version: 1.2.1.1007)
Intel® Graphics Media Accelerator Driver (Version: 8.15.10.2202)
Intel® Management Engine Components (Version: 6.0.0.1179)
Intel® PROSet/Wireless WiFi Software (Version: 13.04.0000)
Intel® Rapid Storage Technology (Version: 9.6.3.1001)
Intel® Wireless Display
Intel® Wireless Display (Version: 1.3.9.0)
Intel® PROSet/Wireless WiMAX Software (Version: 2.03.2000)
iTunes (Version: 10.6.1.7)
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 35 (Version: 6.0.350)
JDownloader (Version: 0.89)
Junk Mail filter update (Version: 15.4.3502.0922)
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
MarketResearch (Version: 130.0.374.000)
Mesh Runtime (Version: 15.4.5722.2)
Messenger-kumppani (Version: 15.4.3502.0922)
Messenger ??? ?? (Version: 15.4.3502.0922)
Messenger ???? (Version: 15.4.3502.0922)
Messenger ????? (Version: 15.4.3502.0922)
Messenger Assistent (Version: 15.4.3502.0922)
Messenger Companion (Version: 15.4.3502.0922)
Messenger kíséro (Version: 15.4.3502.0922)
Messenger Pratilac (Version: 15.4.3502.0922)
Messenger Suradnik (Version: 15.4.3502.0922)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Default Manager (Version: 2.2.114.0)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ Run Time Lib Setup (Version: 1.0.0)
Mobile Broadband Generic Drivers (Version: 2.03.09.005.14)
Movie Color Enhancer (Version: 1.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
OCR Software by I.R.I.S. 13.0 (Version: 13.0)
Poczta uslugi Windows Live (Version: 15.4.3502.0922)
Podstawowe programy Windows Live (Version: 15.4.3502.0922)
Pomocnik Messenger (Version: 15.4.3502.0922)
Pošta Windows Live (Version: 15.4.3502.0922)
PS3 Media Server (Version: 1.21.1)
QuickTime (Version: 7.71.80.42)
Raccolta foto di Windows Live (Version: 15.4.3502.0922)
Realtek Ethernet Controller Driver (Version: 7.33.1125.2010)
Realtek High Definition Audio Driver (Version: 6.0.1.6257)
S?????? f?t???af??? t?? Windows Live (Version: 15.4.3502.0922)
Samsung AnyWeb Print (Version: 1.0)
Samsung AnyWeb Print (Version: 1.1.21.0)
Samsung Recovery Solution 5 (Version: 5.0.0.8)
Samsung Support Center (Version: 1.1.21)
Samsung Universal Print Driver (Version: 2.01.06.00:16)
Samsung Universal Scan Driver (Version: 1.2.1.0)
Samsung Update Plus (Version: 3.0.0.17)
Scan (Version: 13.0.0.0)
Shop for HP Supplies (Version: 13.0)
Skype™ 5.10 (Version: 5.10.116)
SmartWebPrinting (Version: 130.0.373.000)
SolutionCenter (Version: 130.0.373.000)
Spotify (Version: 0.5.1)
Spotify (Version: 0.8.3.222.g317ab79d)
Spremljevalec Messenger (Version: 15.4.3502.0922)
SRS Premium Sound Control Panel (Version: 1.10.1000)
Status (Version: 130.0.373.000)
Synaptics Gesture Suite featuring SYNAPTICS | Scrybe (Version: 1.5.81.13070)
Synaptics Pointing Device Driver (Version: 15.2.7.0)
Toolbox (Version: 130.0.648.000)
TrayApp (Version: 130.0.376.000)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2596598) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2687310) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
User Guide (Version: 1.0)
Verizon Wireless USB760 Firmware Updates (Version: 1.0.0)
VLC media player 1.1.9 (Version: 1.1.9)
WebReg (Version: 130.0.132.017)
Windows Live ?? (Version: 15.4.3502.0922)
Windows Live ?? ??? (Version: 15.4.3502.0922)
Windows Live ??? (Version: 15.4.3502.0922)
Windows Live ???? (Version: 15.4.3502.0922)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Fotótár (Version: 15.4.3502.0922)
Windows Live Foto-galerija (Version: 15.4.3502.0922)
Windows Live fotoattelu galerija (Version: 15.4.3502.0922)
Windows Live Fotogalerie (Version: 15.4.3502.0922)
Windows Live Fotogalleri (Version: 15.4.3502.0922)
Windows Live Fotogaléria (Version: 15.4.3502.0922)
Windows Live Fotograf Galerisi (Version: 15.4.3502.0922)
Windows Live Galeria de Fotos (Version: 15.4.3502.0922)
Windows Live Galerija fotografija (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3502.0922)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3502.0922)
Windows Live Pošta (Version: 15.4.3502.0922)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Temel Parçalar (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3502.0922)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Liven asennustyökalu (Version: 15.4.3502.0922)
Windows Liven sähköposti (Version: 15.4.3502.0922)
Windows Liven valokuvavalikoima (Version: 15.4.3502.0922)
WinRAR 4.00 (32-bit) (Version: 4.00.0)

========================= Memory info: ===================================

Percentage of memory in use: 35%
Total physical RAM: 3892.56 MB
Available physical RAM: 2525.06 MB
Total Pagefile: 7783.32 MB
Available Pagefile: 5543.48 MB
Total Virtual: 4095.88 MB
Available Virtual: 3972 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:448.5 GB) (Free:148 GB) NTFS

========================= Users: ========================================

User accounts for \\ETHAN-PC

Administrator Ethan Guest


**** End of log ****

#15 ebartane

ebartane
  • Topic Starter

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Local time:05:23 PM

Posted 07 September 2012 - 06:01 AM

FSS:


MiniToolBox by Farbar Version: 23-07-2012
Ran by Ethan (administrator) on 07-09-2012 at 06:58:56
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

127.0.0.1 localhost

========================= IP Configuration: ================================

Intel® Centrino® Advanced-N 6250 AGN = Wireless Network Connection (Connected)
Intel® Centrino® WiMAX 6250 = Local Area Connection 2 (Hardware not present)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global
add address name="Wireless Network Connection 3" address=192.168.16.2 mask=255.255.255.0


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Ethan-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 64-80-99-20-A5-99
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel® Centrino® Advanced-N 6250 AGN
Physical Address. . . . . . . . . : 64-80-99-20-A5-98
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::60e2:3be5:8182:dcf8%12(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.104(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Thursday, September 06, 2012 10:42:13 PM
Lease Expires . . . . . . . . . . : Saturday, September 08, 2012 6:54:26 AM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 375685273
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-91-EF-51-00-00-FF-00-20-10
DNS Servers . . . . . . . . . . . : 74.128.17.114
74.128.19.102
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : E8-11-32-4D-BE-85
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{719A39AE-159E-43E2-9B8A-FFBD460F6683}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{A1D97E98-42C4-4BDF-8890-881896C147BD}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{C51F78F4-ADE9-4666-B59F-F44874E52C36}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 9:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:2c63:757:9fe3:5d44(Preferred)
Link-local IPv6 Address . . . . . : fe80::2c63:757:9fe3:5d44%18(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: cache1.insightbb.com
Address: 74.128.17.114

Name: google.com
Addresses: 2607:f8b0:4009:803::1005
74.125.225.34
74.125.225.35
74.125.225.36
74.125.225.37
74.125.225.38
74.125.225.39
74.125.225.40
74.125.225.41
74.125.225.46
74.125.225.32
74.125.225.33


Pinging google.com [74.125.225.104] with 32 bytes of data:
Reply from 74.125.225.104: bytes=32 time=23ms TTL=53
Reply from 74.125.225.104: bytes=32 time=18ms TTL=53

Ping statistics for 74.125.225.104:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 18ms, Maximum = 23ms, Average = 20ms
Server: cache1.insightbb.com
Address: 74.128.17.114

Name: yahoo.com
Addresses: 72.30.38.140
98.138.253.109
98.139.183.24


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=103ms TTL=48
Reply from 98.138.253.109: bytes=32 time=98ms TTL=48

Ping statistics for 98.138.253.109:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 98ms, Maximum = 103ms, Average = 100ms
Server: cache1.insightbb.com
Address: 74.128.17.114

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
13...64 80 99 20 a5 99 ......Microsoft Virtual WiFi Miniport Adapter
12...64 80 99 20 a5 98 ......Intel® Centrino® Advanced-N 6250 AGN
10...e8 11 32 4d be 85 ......Realtek PCIe GBE Family Controller
1...........................Software Loopback Interface 1
19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
18...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.104 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.104 281
192.168.1.104 255.255.255.255 On-link 192.168.1.104 281
192.168.1.255 255.255.255.255 On-link 192.168.1.104 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.104 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.104 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
18 58 ::/0 On-link
1 306 ::1/128 On-link
18 58 2001::/32 On-link
18 306 2001:0:4137:9e76:2c63:757:9fe3:5d44/128
On-link
12 281 fe80::/64 On-link
18 306 fe80::/64 On-link
18 306 fe80::2c63:757:9fe3:5d44/128
On-link
12 281 fe80::60e2:3be5:8182:dcf8/128
On-link
1 306 ff00::/8 On-link
18 306 ff00::/8 On-link
12 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Catalog5 02 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 03 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

Catalog5 04 C:\Windows\SysWOW64\nwprovau.dll [File Not found] ()
Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 08 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 mswsock.dll [File Not found] ()
Catalog9 05 mswsock.dll [File Not found] ()
Catalog9 06 mswsock.dll [File Not found] ()
Catalog9 07 mswsock.dll [File Not found] ()
Catalog9 08 mswsock.dll [File Not found] ()
Catalog9 09 mswsock.dll [File Not found] ()
Catalog9 10 mswsock.dll [File Not found] ()
Catalog9 11 mswsock.dll [File Not found] ()
Catalog9 12 mswsock.dll [File Not found] ()
Catalog9 13 mswsock.dll [File Not found] ()
Catalog9 14 mswsock.dll [File Not found] ()
Catalog9 15 mswsock.dll [File Not found] ()
Catalog9 16 mswsock.dll [File Not found] ()
Catalog9 17 mswsock.dll [File Not found] ()
Catalog9 18 mswsock.dll [File Not found] ()
Catalog9 19 mswsock.dll [File Not found] ()
Catalog9 20 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 21 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 22 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 23 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 24 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 25 mswsock.dll [File Not found] ()
Catalog9 26 mswsock.dll [File Not found] ()
Catalog9 27 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 28 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 29 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 07 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

x64-Catalog5 08 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 mswsock.dll [File Not found] ()
x64-Catalog9 05 mswsock.dll [File Not found] ()
x64-Catalog9 06 mswsock.dll [File Not found] ()
x64-Catalog9 07 mswsock.dll [File Not found] ()
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (09/06/2012 10:40:20 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (09/05/2012 11:45:15 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (09/05/2012 09:45:39 PM) (Source: Application Hang) (User: )
Description: The program iexplore.exe version 9.0.8112.16447 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 17dc

Start Time: 01cd8bd1268e816a

Termination Time: 15

Application Path: C:\Program Files\Internet Explorer\iexplore.exe

Report Id:

Error: (09/05/2012 08:16:49 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (09/05/2012 05:55:15 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15647

Error: (09/05/2012 05:55:15 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 15647

Error: (09/05/2012 05:55:15 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (09/05/2012 01:30:57 PM) (Source: Application Hang) (User: )
Description: The program wmplayer.exe version 12.0.7601.17514 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: db0

Start Time: 01cd8b8c1370ba05

Termination Time: 30

Application Path: C:\Program Files (x86)\Windows Media Player\wmplayer.exe

Report Id: 71c4a7fb-f77f-11e1-8831-e811324dbe85

Error: (09/05/2012 01:29:57 PM) (Source: Application Hang) (User: )
Description: The program wmplayer.exe version 12.0.7601.17514 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 13c4

Start Time: 01cd8b8bf62c40e7

Termination Time: 30

Application Path: C:\Program Files (x86)\Windows Media Player\wmplayer.exe

Report Id: 4dd98371-f77f-11e1-8831-e811324dbe85

Error: (09/05/2012 01:29:07 PM) (Source: Application Hang) (User: )
Description: The program wmplayer.exe version 12.0.7601.17514 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: c0c

Start Time: 01cd8b8be52ab748

Termination Time: 40

Application Path: C:\Program Files (x86)\Windows Media Player\wmplayer.exe

Report Id: 2ffe96a2-f77f-11e1-8831-e811324dbe85


System errors:
=============
Error: (09/06/2012 10:43:47 PM) (Source: Service Control Manager) (User: )
Description: The Intel® PROSet/Wireless WiMAX Red Bend Device Management Service service hung on starting.

Error: (09/06/2012 10:42:22 PM) (Source: Service Control Manager) (User: )
Description: The Windows Defender service terminated with the following error:
%%126

Error: (09/06/2012 10:35:04 PM) (Source: WMPNetworkSvc) (User: )
Description: WMPNetworkSvc0x80004005

Error: (09/06/2012 10:33:48 PM) (Source: Service Control Manager) (User: )
Description: The Intel® PROSet/Wireless WiMAX Red Bend Device Management Service service hung on starting.

Error: (09/06/2012 10:32:16 PM) (Source: Service Control Manager) (User: )
Description: The Windows Defender service terminated with the following error:
%%126

Error: (09/06/2012 10:29:44 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (09/06/2012 10:29:44 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (09/06/2012 10:29:44 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (09/06/2012 10:27:44 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (09/06/2012 10:27:44 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068


Microsoft Office Sessions:
=========================
Error: (10/30/2011 08:49:31 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6565.5003, Microsoft Office Version: 12.0.6425.1000. This session lasted 1149785 seconds with 300 seconds of active time. This session ended with a crash.


=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
???? ??? Windows Live (Version: 15.4.3502.0922)
???? Windows Live (Version: 15.4.3502.0922)
?????? ??????? ?? Windows Live (Version: 15.4.3502.0922)
???????? ?? Messenger (Version: 15.4.3502.0922)
???????? ?????????? Windows Live (Version: 15.4.3502.0922)
????????? Messenger (Version: 15.4.3502.0922)
?????????? Windows Live (Version: 15.4.3502.0922)
??????????? ?? Windows Live (Version: 15.4.3502.0922)
µTorrent (Version: 2.2.1)
4500_G510af_Help (Version: 000.0.439.000)
4500G510af (Version: 000.0.423.000)
4500G510af_Software_Min (Version: 000.0.423.000)
64 Bit HP CIO Components Installer (Version: 7.2.8)
A-PDF Image Converter Pro
Adobe AIR (Version: 2.6.0.19140)
Adobe Flash Player 11 ActiveX (Version: 11.3.300.271)
Adobe Reader X (10.1.4) (Version: 10.1.4)
Adobe Shockwave Player 11.5 (Version: 11.5.9.620)
Amazon Add to Wish List IE Extension 1.2 (Version: 1.2)
„Messenger“ pagalbine priemone (Version: 15.4.3502.0922)
Apple Application Support (Version: 2.1.7)
Apple Mobile Device Support (Version: 5.1.1.4)
Apple Software Update (Version: 2.1.3.127)
Audacity 1.2.6
avast! Free Antivirus (Version: 7.0.1456.0)
„Windows Live Essentials“ (Version: 15.4.3502.0922)
„Windows Live Mail“ (Version: 15.4.3502.0922)
„Windows Live Messenger“ (Version: 15.4.3502.0922)
„Windows Live“ fotogalerija (Version: 15.4.3502.0922)
BatteryLifeExtender (Version: 1.0.10)
Best Buy pc app (Version: 3.0.0.0)
Best Buy pc app (Version: 3.2.420.5)
Best Case Bankruptcy (Version: 20)
Bing Rewards Client Installer (Version: 16.0.345.0)
Bonjour (Version: 3.0.0.10)
BufferChm (Version: 130.0.331.000)
Click to Call with Skype (Version: 5.6.8153)
Complemento Messenger (Version: 15.4.3502.0922)
Complément Messenger (Version: 15.4.3502.0922)
CyberLink Media Suite (Version: 8.0.2227)
CyberLink Media+ Player10 (Version: 10.0.1110.00)
CyberLink MediaShow (Version: 5.0.1130a)
CyberLink Power2Go (Version: 6.1.3802)
CyberLink PowerDirector (Version: 8.0.3306)
CyberLink YouCam (Version: 3.1.3509)
D3DX10 (Version: 15.4.2368.0902)
Destinations (Version: 130.0.0.0)
DeviceDiscovery (Version: 130.0.372.000)
DocMgr (Version: 130.0.000.000)
DocProc (Version: 13.0.0.0)
Doplnok programu Messenger (Version: 15.4.3502.0922)
Easy Content Share (Version: 1.0)
Easy Display Manager (Version: 3.2)
Easy Migration (Version: 1.0.0.5)
Easy Network Manager (Version: 4.4.6)
Easy SpeedUp Manager (Version: 2.1.1.1)
EasyBatteryManager (Version: 4.0.0.4)
EasyFileShare (Version: 1.0.11)
ESET Online Scanner v3
ETDWare PS/2-X64 8.0.7.1_WHQL (Version: 8.0.7.1)
Fast Start (Version: 2.2.0.0)
Fax (Version: 130.0.418.000)
Fotogalerija Windows Live (Version: 15.4.3502.0922)
Galeria de Fotografias do Windows Live (Version: 15.4.3502.0922)
Galeria fotografii uslugi Windows Live (Version: 15.4.3502.0922)
Galerie de photos Windows Live (Version: 15.4.3502.0922)
Galerie foto Windows Live (Version: 15.4.3502.0922)
Galería fotográfica de Windows Live (Version: 15.4.3502.0922)
Google Chrome (Version: 21.0.1180.89)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.4.3203.136)
Google Update Helper (Version: 1.3.21.115)
GPBaseService2 (Version: 130.0.371.000)
HP Customer Participation Program 13.0 (Version: 13.0)
HP Document Manager 2.0 (Version: 2.0)
HP Imaging Device Functions 13.0 (Version: 13.0)
HP Officejet 4500 G510a-f (Version: 13.0)
HP Smart Web Printing 4.5 (Version: 4.5)
HP Solution Center 13.0 (Version: 13.0)
HP Update (Version: 5.003.001.001)
HPProductAssistant (Version: 130.0.371.000)
HPSSupply (Version: 130.0.371.000)
Intel PROSet Wireless
Intel WiMAX Tutorial (Version: 1.5.3.1)
Intel® Control Center (Version: 1.2.1.1007)
Intel® Graphics Media Accelerator Driver (Version: 8.15.10.2202)
Intel® Management Engine Components (Version: 6.0.0.1179)
Intel® PROSet/Wireless WiFi Software (Version: 13.04.0000)
Intel® Rapid Storage Technology (Version: 9.6.3.1001)
Intel® Wireless Display
Intel® Wireless Display (Version: 1.3.9.0)
Intel® PROSet/Wireless WiMAX Software (Version: 2.03.2000)
iTunes (Version: 10.6.1.7)
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 35 (Version: 6.0.350)
JDownloader (Version: 0.89)
Junk Mail filter update (Version: 15.4.3502.0922)
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
MarketResearch (Version: 130.0.374.000)
Mesh Runtime (Version: 15.4.5722.2)
Messenger-kumppani (Version: 15.4.3502.0922)
Messenger ??? ?? (Version: 15.4.3502.0922)
Messenger ???? (Version: 15.4.3502.0922)
Messenger ????? (Version: 15.4.3502.0922)
Messenger Assistent (Version: 15.4.3502.0922)
Messenger Companion (Version: 15.4.3502.0922)
Messenger kíséro (Version: 15.4.3502.0922)
Messenger Pratilac (Version: 15.4.3502.0922)
Messenger Suradnik (Version: 15.4.3502.0922)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Default Manager (Version: 2.2.114.0)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ Run Time Lib Setup (Version: 1.0.0)
Mobile Broadband Generic Drivers (Version: 2.03.09.005.14)
Movie Color Enhancer (Version: 1.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
OCR Software by I.R.I.S. 13.0 (Version: 13.0)
Poczta uslugi Windows Live (Version: 15.4.3502.0922)
Podstawowe programy Windows Live (Version: 15.4.3502.0922)
Pomocnik Messenger (Version: 15.4.3502.0922)
Pošta Windows Live (Version: 15.4.3502.0922)
PS3 Media Server (Version: 1.21.1)
QuickTime (Version: 7.71.80.42)
Raccolta foto di Windows Live (Version: 15.4.3502.0922)
Realtek Ethernet Controller Driver (Version: 7.33.1125.2010)
Realtek High Definition Audio Driver (Version: 6.0.1.6257)
S?????? f?t???af??? t?? Windows Live (Version: 15.4.3502.0922)
Samsung AnyWeb Print (Version: 1.0)
Samsung AnyWeb Print (Version: 1.1.21.0)
Samsung Recovery Solution 5 (Version: 5.0.0.8)
Samsung Support Center (Version: 1.1.21)
Samsung Universal Print Driver (Version: 2.01.06.00:16)
Samsung Universal Scan Driver (Version: 1.2.1.0)
Samsung Update Plus (Version: 3.0.0.17)
Scan (Version: 13.0.0.0)
Shop for HP Supplies (Version: 13.0)
Skype™ 5.10 (Version: 5.10.116)
SmartWebPrinting (Version: 130.0.373.000)
SolutionCenter (Version: 130.0.373.000)
Spotify (Version: 0.5.1)
Spotify (Version: 0.8.3.222.g317ab79d)
Spremljevalec Messenger (Version: 15.4.3502.0922)
SRS Premium Sound Control Panel (Version: 1.10.1000)
Status (Version: 130.0.373.000)
Synaptics Gesture Suite featuring SYNAPTICS | Scrybe (Version: 1.5.81.13070)
Synaptics Pointing Device Driver (Version: 15.2.7.0)
Toolbox (Version: 130.0.648.000)
TrayApp (Version: 130.0.376.000)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2596598) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2687310) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
User Guide (Version: 1.0)
Verizon Wireless USB760 Firmware Updates (Version: 1.0.0)
VLC media player 1.1.9 (Version: 1.1.9)
WebReg (Version: 130.0.132.017)
Windows Live ?? (Version: 15.4.3502.0922)
Windows Live ?? ??? (Version: 15.4.3502.0922)
Windows Live ??? (Version: 15.4.3502.0922)
Windows Live ???? (Version: 15.4.3502.0922)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Fotótár (Version: 15.4.3502.0922)
Windows Live Foto-galerija (Version: 15.4.3502.0922)
Windows Live fotoattelu galerija (Version: 15.4.3502.0922)
Windows Live Fotogalerie (Version: 15.4.3502.0922)
Windows Live Fotogalleri (Version: 15.4.3502.0922)
Windows Live Fotogaléria (Version: 15.4.3502.0922)
Windows Live Fotograf Galerisi (Version: 15.4.3502.0922)
Windows Live Galeria de Fotos (Version: 15.4.3502.0922)
Windows Live Galerija fotografija (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3502.0922)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3502.0922)
Windows Live Pošta (Version: 15.4.3502.0922)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Temel Parçalar (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3502.0922)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Liven asennustyökalu (Version: 15.4.3502.0922)
Windows Liven sähköposti (Version: 15.4.3502.0922)
Windows Liven valokuvavalikoima (Version: 15.4.3502.0922)
WinRAR 4.00 (32-bit) (Version: 4.00.0)

========================= Memory info: ===================================

Percentage of memory in use: 35%
Total physical RAM: 3892.56 MB
Available physical RAM: 2525.06 MB
Total Pagefile: 7783.32 MB
Available Pagefile: 5543.48 MB
Total Virtual: 4095.88 MB
Available Virtual: 3972 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:448.5 GB) (Free:148 GB) NTFS

========================= Users: ========================================

User accounts for \\ETHAN-PC

Administrator Ethan Guest


**** End of log ****




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users